last executing test programs:

4m38.624880731s ago: executing program 1 (id=2):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c0000002500010125bd7000fdffffff550000000800030047"], 0x1c}, 0x1, 0x0, 0x0, 0x20004840}, 0x20028840)
sendmsg$nl_generic(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x20004840}, 0x20028840)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x2404c001}, 0x200c0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xe, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x71, 0x11, 0x42}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x5}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x6}, 0x70)
bpf$OBJ_PIN_PROG(0x11, &(0x7f0000000240)=@generic={0x0, r3}, 0x18)
r4 = syz_usb_connect(0x0, 0x24, &(0x7f0000000440)=ANY=[@ANYBLOB="120100002eab5a40401c3405cc6d010203010902120001000000000904"], 0x0)
syz_usb_control_io$sierra_net(r4, 0x0, 0x0)
syz_usb_connect$midi(0x1, 0x72, &(0x7f0000000000)={{0x12, 0x1, 0x250, 0x0, 0x0, 0x0, 0x40, 0x582, 0x27, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x60, 0x1, 0x1, 0xa, 0xa0, 0x1, "", {{{0x9, 0x4, 0x0, 0x0, 0x3, 0x1, 0x3, 0x30, 0x3, [@ms_header={0x7, 0x24, 0x1, 0x4, 0x7}, @midi_out_jack={0x13, 0x24, 0x3, 0x2, 0x3, 0x6, [{0x9, 0x2}, {0x81, 0x4}, {0x42, 0x80}, {0x3, 0x9}, {0xbb, 0x2}, {0x2, 0x4}], 0x2}], [{{0x9, 0x5, 0x6, 0x2, 0x40, 0xe, 0xe, 0x80, {0xb, 0x25, 0x1, 0x7, "018dd1c8d812fa"}}}, {{0x9, 0x5, 0xa, 0x0, 0x200, 0x0, 0x5, 0x8, {0x6, 0x25, 0x1, 0x2, "8237"}}}, {{0x9, 0x5, 0x80, 0x3, 0x20, 0x2, 0x8, 0x4, {0x8, 0x25, 0x1, 0x4, "ac99ed15"}}}]}}}}}]}}, &(0x7f00000005c0)={0xa, &(0x7f0000000080)={0xa, 0x6, 0x110, 0x9, 0x7, 0x4, 0x40, 0x1a}, 0x82, &(0x7f00000000c0)={0x5, 0xf, 0x82, 0x6, [@wireless={0xb, 0x10, 0x1, 0x4, 0x2c, 0xd3, 0x4, 0x5, 0xf}, @ext_cap={0x7, 0x10, 0x2, 0x2, 0x6, 0x8, 0x9}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x0, 0xf, 0x17, 0x9}, @ptm_cap={0x3}, @wireless={0xb, 0x10, 0x1, 0xc, 0x10, 0x2, 0x5, 0xe93, 0xe9}, @generic={0x53, 0x10, 0xb, "6f321d69415b0ce9418e06bb37fa4419d742066efd085313ed230b9ad80bc807f5afee2a092923b1bfc9cf4b04524812a4f7a2d0eabd9b9bd2f5dbcb89297ebabadd785f9e213e958468e21c54b14ea6"}]}, 0x3, [{0xf8, &(0x7f00000001c0)=@string={0xf8, 0x3, "5b87c413c1a1741a795124d1a5e01424828df52d9e622a4a93a7a9ee7de9843a5f580ae1c3bda242d18b1299c7c83a8f627e5a2aac6c7a098ee68de957efe2075974649ec5f8d91474c2c24b73bf674e15707771b85738e0a8ddf1fea104ca0557e4eca9152dab27f4e5b95d949ed470cefe2c6cdc90af713aac3f9164484b3580ea664a67eb5677ac6d9f8ddb1283a813b3d068cc1e188557f61d83650141a26609be502a71d75d4923d1e8e209727f871f769a8c462a57f25034ec8c17bf344a5168648e2b71ac88a4c31dbec674f66d52a22d64961043c05df9e068bef0e150dab5f3f0d10d7e130de74ec4e675e39834994a281f"}}, {0xb8, &(0x7f0000000480)=@string={0xb8, 0x3, "eec3e5632d5ebf159a36c7208553cf70bd6fe46dde65f874a24e63e92f7c88e9ca0a7531ff7165133f6fc8f3fd1e63856f6724a8fe324ce4be3f2c26be67f535228dd984f392ff5ced080978412c182bd48891e5bb045112642cea80d4bc118b6c848ccc210ca9fee0fe08152b07f49fef00741abad92aa34d252677249674a2782863923fd0acc8f8e5aea5828ff1b520f7ea0e577eec427be9edf87526fbfb214fa5b29775075add9207068705aab39dd908ae2248"}}, {0x22, &(0x7f0000000540)=@string={0x22, 0x3, "66eb00b956ee5224647e68c9ad7c55c3406e70c9923a5b8a1f1348387474fe67"}}]})
syz_usb_control_io$uac1(r4, 0x0, 0x0)
syz_usb_control_io$rtl8150(r4, &(0x7f0000000340)={0x14, 0x0, 0x0}, &(0x7f0000000580)={0x2c, &(0x7f0000000380)={0x20, 0x30, 0x5, "7922809d06"}, 0x0, 0x0, 0x0, 0x0})

4m36.30817162s ago: executing program 2 (id=3):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'ipvlan1\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x12, &(0x7f00000005c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="4c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="ef00000000000000140012800b0001006970766c616e00000400028008000500", @ANYRES32=r1], 0x4c}, 0x1, 0x0, 0x0, 0x4008040}, 0x0)

4m34.268757134s ago: executing program 2 (id=13):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [], {0x14}}, 0x28}}, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000340), r0)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000380)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_SET_SEC_PARAMS(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010025bd7000fcdbdf251500000008000300", @ANYRES32=r2, @ANYBLOB="28002b801c00038006000300feff000006000100039658fadc000200020000000800"], 0x44}, 0x1, 0x0, 0x0, 0x2000c894}, 0x4010084)

4m29.969728485s ago: executing program 1 (id=16):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
getrlimit(0xb, &(0x7f0000000040))
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
read$msr(r1, &(0x7f0000000580)=""/245, 0xf5)
socket(0x80000000000000a, 0x2, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, 0x0, 0x0)
bind$inet(r2, 0x0, 0x0)
fcntl$dupfd(r2, 0x406, r2)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, 0x0, 0x0)
prctl$PR_GET_SPECULATION_CTRL(0x23, 0x4, 0x4)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f00000003c0)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r3, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r3, &(0x7f0000000480)={0x18})
r4 = socket$netlink(0x10, 0x3, 0x4)
writev(r4, &(0x7f0000000080)=[{&(0x7f0000000200)="a10100001500add427323b470c45b4560a067fffffff81004e22000d00ff0028925aa80020007b00090080000efffeffe809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee00000000000000000200000000", 0x1a1}], 0x1)

4m29.96691934s ago: executing program 2 (id=17):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpgid(0x0)
prlimit64(r0, 0xe, &(0x7f0000000040)={0x100000000, 0x324}, &(0x7f00000000c0))
syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
geteuid()
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000000300)=""/102400, 0x19000)
bpf$MAP_UPDATE_ELEM(0x2, 0x0, 0x0)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x400000000a882, 0x0)
r3 = dup(r2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000002, 0x28011, r3, 0x0)

4m24.598241949s ago: executing program 2 (id=25):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x8000)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$userio(0xffffffffffffff9c, 0x0, 0x2002, 0x0)
openat$pidfd(0xffffffffffffff9c, 0x0, 0x80080, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
write$USERIO_CMD_SET_PORT_TYPE(r1, &(0x7f00000002c0)={0x1, 0x1}, 0x2)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet6(0xa, 0x80002, 0x0)
mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x1000002, 0x4018831, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x17)
r3 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x2, 0x400)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r3, 0xc1105517, &(0x7f0000000340)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x6, 0x20, 0x4, 0x0, 0x0, 0x0, 'syz1\x00', 0x0}) (fail_nth: 2)
ioctl$vim2m_VIDIOC_DQBUF(0xffffffffffffffff, 0xc0585611, &(0x7f0000000200)=@userptr={0x0, 0x1, 0x4, 0x2, 0x0, {0x0, 0x2710}, {0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '#\x00'}, 0x0, 0x2, {0x0}})

4m21.062998122s ago: executing program 2 (id=28):
r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
ioctl$USBDEVFS_DISCONNECT_CLAIM(0xffffffffffffffff, 0x8108551b, 0x0)
mremap(&(0x7f00007ff000/0x4000)=nil, 0x4000, 0x4000, 0x7, &(0x7f0000580000/0x4000)=nil)
close(r0)
add_key(&(0x7f0000000080)='user\x00', &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000600)="9f593361e9", 0x5, 0xfffffffffffffffe)
execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)

4m20.88976894s ago: executing program 2 (id=29):
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
getrlimit(0xb, &(0x7f0000000040))
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
read$msr(r1, &(0x7f0000000580)=""/245, 0xf5)
socket(0x80000000000000a, 0x2, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, 0x0, 0x0)
bind$inet(r2, 0x0, 0x0)
fcntl$dupfd(r2, 0x406, r2)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, 0x0, 0x0)
prctl$PR_GET_SPECULATION_CTRL(0x23, 0x4, 0x4)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f00000003c0)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r3, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r3, &(0x7f0000000480)={0x18})
r4 = socket$netlink(0x10, 0x3, 0x4)
writev(r4, &(0x7f0000000080)=[{&(0x7f0000000200)="a10100001500add427323b470c45b4560a067fffffff81004e22000d00ff0028925aa80020007b00090080000efffeffe809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee00000000000000000200000000", 0x1a1}], 0x1)

4m13.404038114s ago: executing program 32 (id=16):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
getrlimit(0xb, &(0x7f0000000040))
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
read$msr(r1, &(0x7f0000000580)=""/245, 0xf5)
socket(0x80000000000000a, 0x2, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, 0x0, 0x0)
bind$inet(r2, 0x0, 0x0)
fcntl$dupfd(r2, 0x406, r2)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, 0x0, 0x0)
prctl$PR_GET_SPECULATION_CTRL(0x23, 0x4, 0x4)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f00000003c0)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r3, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r3, &(0x7f0000000480)={0x18})
r4 = socket$netlink(0x10, 0x3, 0x4)
writev(r4, &(0x7f0000000080)=[{&(0x7f0000000200)="a10100001500add427323b470c45b4560a067fffffff81004e22000d00ff0028925aa80020007b00090080000efffeffe809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee00000000000000000200000000", 0x1a1}], 0x1)

4m5.409224642s ago: executing program 33 (id=29):
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
getrlimit(0xb, &(0x7f0000000040))
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
read$msr(r1, &(0x7f0000000580)=""/245, 0xf5)
socket(0x80000000000000a, 0x2, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, 0x0, 0x0)
bind$inet(r2, 0x0, 0x0)
fcntl$dupfd(r2, 0x406, r2)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, 0x0, 0x0)
prctl$PR_GET_SPECULATION_CTRL(0x23, 0x4, 0x4)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f00000003c0)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r3, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r3, &(0x7f0000000480)={0x18})
r4 = socket$netlink(0x10, 0x3, 0x4)
writev(r4, &(0x7f0000000080)=[{&(0x7f0000000200)="a10100001500add427323b470c45b4560a067fffffff81004e22000d00ff0028925aa80020007b00090080000efffeffe809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee00000000000000000200000000", 0x1a1}], 0x1)

14.956801944s ago: executing program 0 (id=503):
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000080)={0xaa, 0x79})
syz_open_dev$dvb_demux(&(0x7f0000001e00), 0x0, 0x2000)
syz_open_dev$dvb_demux(&(0x7f0000000080), 0x0, 0x41)
syz_open_dev$dvb_demux(&(0x7f0000001e00), 0x0, 0x2000)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000001080)={0x200000, 0x200000})
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x60081, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000140)=0x4)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000440)=0xf)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ffc000/0x3000)=nil, &(0x7f000012d000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f00005a4000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f000012d000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0}, 0x68)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={0xffffffffffffffff, 0x58}, 0xffffffffffffff17)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
setsockopt$inet_sctp_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f0000000100)={0x0, 0xa, 0x4, 0x7, 0x70, 0x80000000}, 0x14)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(r2)
close(0xffffffffffffffff)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = syz_open_dev$cec(&(0x7f0000000140), 0x0, 0x8000)
ioctl$KVM_CAP_DIRTY_LOG_RING(0xffffffffffffffff, 0x4068aea3, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
ioctl$CEC_S_MODE(r4, 0x40046109, &(0x7f0000000000)=0xe2)
close(r3)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYRES8=r5], 0x7c}, 0x1, 0x0, 0x0, 0x4010150}, 0x20040840)
sendmsg$NFT_BATCH(r5, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000480)=ANY=[@ANYBLOB="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"/412], 0x1a0}}, 0x40)
sendmsg$NFT_BATCH(r3, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1400000010000100000000000000000005777a9be94a656200000a400000000c0a0101000000000000000009fd00060900020073797a31000000000900010073797a310000000014000380100000800c000180060001000000000014000000110001000000000000"], 0x68}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000))
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)

14.220326763s ago: executing program 0 (id=510):
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x4, &(0x7f0000001a00)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x7ffd}, [@alu={0x7, 0x0, 0x6, 0x0, 0x0, 0x1}]}, &(0x7f0000000240)='syzkaller\x00', 0x7, 0x0, 0x0, 0x41100, 0x1}, 0x94)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r0, 0x404c534a, &(0x7f0000000380))
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=@updpolicy={0xfc, 0x19, 0x1, 0x70bd2d, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in=@local, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x20, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x8, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x1, 0x407ffffffffffe, 0x800000000000002}, 0xffffffff, 0x0, 0x2, 0x0, 0x6}, [@tmpl={0x44, 0x5, [{{@in6=@rand_addr=' \x01\x00', 0x0, 0x3c}, 0x2, @in=@remote, 0x6, 0x4, 0x3}]}]}, 0xfc}, 0x1, 0x0, 0x0, 0x4008000}, 0x20000000)
r2 = socket$key(0xf, 0x3, 0x2)
ioctl$sock_ipv6_tunnel_SIOCADD6RD(0xffffffffffffffff, 0x89f9, &(0x7f0000000140)={'sit0\x00', &(0x7f0000000080)={@private0, @broadcast, 0x4, 0x1a}})
sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207000902"], 0x10}}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000005c0)=ANY=[@ANYBLOB="b702000006000000bfa300000000000007030000407effff7a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b7000000000000009500000000000000496cf2827fb43a431ca7ebfcd0cd00006ed3d09a6175037958e271b60dedf8937f02008b6d83923dd29c034055d47dafe6c8dc3d5d78c07f34e4d5b3185b310efd4989147a00000000f110026e6d2ef831ab7ea0c34f17e3adeef3bb622003b538dfd8e012e71f6420b90adddff61b5b0a341a2d7cbdb90000bdb2ca76050000003a14817ac61e4dd11183a13477bf7e060e3670ef0e789f65f1328d6704902cbe7bc04b82d2789cb132658555cf476619f28d9961b626c57c2691208171656d60a17e3c1c4b751ca532e6ea09c346df3d7cb4ebd31a08b32808b80200000000000000334d83239d1d2e9ff10ff2d27080e71113610e10c358e8327e7050b6c860dac12233f9a1fb9c2aec61ce63a38d316ef49b66d6e42fd50117b89a9ab359b4eea0c6e95767d42b4e54861d0227dbfd2e6d7f715a5f3d74ca891c4594e8a4399e01eadd3964663e88535c133f7130856f75643619f567d2e24f29e5dad9326edb697a6ea0182babc18cefd07e002cab5ebfcaad34732181feb215139f15eadddcb0c7cbe31fbae7c34d5ac5e7e64c21add9191eadd6e1795ad6a0f7f8cd3fccbdc3dec04b25dfc17975238345d4f71af35910b158e56657b7218baaa7cbf781c0a99bd50499ccff0f000000000000c7beba3da8223fe5308e4e2833baace04f4087c4f0da0d9a88f9dbb593ddeb3f0932a4d0175b889b8eccf707882042e716df9b57b290c661d4e85031086e97bcc5ca0e221a0e34323c129102b7b7a643e82e88a1940b3c02ed9c92d6f64b1282dc519b00159830d7617001154c46bd3ca96318c570f0721fc7aa2a580900000000000000b4f22cdf550ef091a78098534f0d973058594119d06d5ea9a8d085734000000000000000c12346e47ad97f4ead7cf754a52e4b2d0f22d428bd705414888700a30e2366c6a06b3367a389ca39059787790017b0689a1f3db9c24db65c1e00015c1d573dab18fd0600885f1ea8f2fd299fc3cdafda323e9c7080397bc49d70c060d57bc88fbe09baa058b040360ab9261503d2f363fb099408885afc2bf9a4f8c3506b669e889f5e4be1b8e0d634ebc1057b7e98186fc5141bd670dba6f43279f73db9dec75070cd9ab0fd969169ef6d2857b6bf955012cf7fe50d133da86e0477e42b98a6cc999dc21c3ef408e633dfa35f14d6e734837d365e63845f3c1092f8e34fc7eac9e8af3904ea0f3698cd9492794b82649b50d726bff873339c4cad4ead1348474250eda2c8067ab730c1d85969b95a2a5687f2ed690000522a0b7426000000000000000000000000000000000000000093fc7a82b98f99d9dedf7ba17f5f0b6d15e552fbd21f7eecff10243a43af03eea84c4304a5d3f93c02000000000000000043e1ed82b9aa0ae92a499984a009000000937523f5292d12659906005cde64f903c3415c458a2b32c2318f0858f19c6def80e1481e8e1c0098fc3f38b7a57211adb15d824cfdcf229628c0de49860a44286fe0e257cfa4ce50f3d10763d442824414a73c06837fe08de62f8710ca977960b74d0000ce73da6022a8671d1a3575b4e18c28c73203bf134686dd65808452cb6b76fcb134252c78de9b240de7b4cd015a77f76bb6470c05fc980b3d8f3f964f432a4bf6cddd6222c2da006b6fdb9c8468ae1d986a893b9519444d16a6dfa92c04331a6698507048fab5ae402acd05fe621f22712dfd09004770b4278fa14547d8ce3c21188e5e4e2baacd98e8e451d6aaaf090000006ed1d9018000008dd952595d78e9583bf4ea5de36099e3cddcb24ebb6eddb9e87c9ece87a42c0000abdfc6ea55887dfa18d0aea1b6eca5a883702b0bf3aeebb225895db90e237157a34e9f447237ea5b391bddd1290f7ce987a0e36b8e71b1779bbe95ffa9c3e0f6ba66e4d48e75253e3d633811e4b3220616aafbe7a3a18375ae593eb58fd500426286472466823cb8e1800aaaa0d9463c0c4ea5541a55df6eeffec0b66482228816cdfccb98374c644eea45de7867a0efbad0ab2bc33b350440a90b791b2b33f74a112a3b91b40bed8db2df8633207f8387e04ca52ab0f3f7b058b13523b896800b992972d9609551c27a5916ea16069c5bf55b98d926d3c27e7945b2999600000000f857bc1332d200194f658b930780603134ae6b7f5092772bd5d880dbe21b790c475b14b7fe4fe002dffd651faa79bb0cee0cdac23c3218f2ddaa6f7ba04b696a30d313bed30ba8f35569a9b07ee7308da09c01a4b827aa17bc2213fc1572b0204dd456b11a454d1f3f14179974aae624ea59500f5e048b2780666de81a042563c57f49af25be909984aea1b81f33426f86b4b941c08dfe2bc8ec246ec1aae120c42405e428923f3a83d9ba5c373f5e8a54120b451e2806370f1ed60c9fd5d9af4d16cb0f413c324da52d4bd2e01d3ac2d578d72e2d63322dfc9245ce3e3a097fb82f4e3b61a57094616020f72f1c55ee3d325c7496a7c2f10cfea516ae436751227378f00ca0f1f6c1dcf879700dd90b96a330f92bff736c83ca53e7f02b734d1a9292896f5d7f244bfab4946c7042e88206f641eafcc5b4ba7a7880533cdeac995d1caf6936f356ecf07a0084e7adc2dc12417997b03087c7b3b44b06f6158a2a18ce0e56ffbeb22f40521dd9972583d413098aa80db98ef324a2bfb7961c07b47521973cf0bb6f5530f6216b447b35d6e06b72b22b29de42bb1bc8ce0a0e3500000000000000000000000000b92eb197e4149627920000008000000000801792756f90b37f0858efc387f559203f314a4b0ed750fa72e5948ac3fe5921c14ef578d413e7b2a9e2f87f7b44949fe14c00000000000047030c09f62d444b4981db81799776eeb444000000009705fa8b56779bc876ad4f8d8c8e50815c4c3b27487996c09121caf47f76158362c74904f89cbc588aae84567a83571ff72bb65c082b5a8dee145ff221159aed2768edc05a3167d84205d5af86553c21e1f023a51c0e179fccfbc201982e3ddcaa45613899d19082453b180ca0c525b8d3cfaf7d0bcddeb5d5c7166038f276a92941393ba5e51f77172822bd903d9f8b436656771774ed88daab0d0cfdd1bf4d30ab566ef94bb3ad66d830e10f7c1de13218aea21e7def613204c2b7c1ad48b01c208f4032e93408000000000000e96db049b92fc32ee34fe7a3419c8fbf03d61c159dc5864e030000a2c55b614d622b8de966c97e1940026f96db3c78ca18c9f08d1c47edf1a4d7298109f31b6078711ee72eacab84213bf50000000000000000000000000000001217887d0452aa6d26e4614d511710abeec84b78c027c160ba375dfa55a49b832ce4dfb91122193d514ed992c07f8cd6d897b314907e15642da228dbc03429e6e0e7ac118ed351c3b0c44bf5d8b58be573f8333aa8cc2ec5b5e305b3dee2562d415b4b9ed530797f55f9fe8510423409629a09000000000000009a35d9ca93e4b4591679547b8de8af1782451f7b8e1de508f1e9e525210d62bc850f8035040ad9e562be58797515b737bfb21d35ac560f99dbd18dad5e6345a464955e8141d75b6177e4fa176a020b0000000000006e76f0294fee7d19a0f327f8796d77b6e24b8df4bb438b527d10e657d49b844198ea9f93c4fd6fd2daa9bd87fd1e02ecc8075dca1280c201043257e9bd3c9a7aa150eb1711632b76d4dc0555d4bfcfd057980136d6e9000003b24fa300ef90bfe4ad364256937796f941c2faad94785f48777941f0cd3dba54ab6a5d5e91e90ac9ae994c3d4108b2fe7eca9413ac9bc138c74800487eb19c48db3f79be964808f109b5e36fc7fdd41def361427b6b9c118e5c9a0a1d5ca24886e33a7f81b2188ec75a5fc9302e3695bdcc9ab11201ef940569c995c21eeaefe2e8fc02e0433dc7371d1f72124ba263e554c30fdd7cd8c2da1e8706417da9ad8916551a1182fac08603dfc2f2279ba161c13984cd753b54a85e6f3010975e9ff51318b09fa13e2d38ce013aab41524c298c3719e31bcb1f102eaeee69a19e006bcdb1acc2664efa949a1a07bb3d7848d5e1381fbe63c522053a3bb32eb6345e10f7a12bf84e0e196a00833f464dd2f6547f14ebf137fce33efeb813211f31ff24d7dbb00f2574ccda59b3ea068fc2a18c37ee579f5a9ecc47da73684bcadd209ae5bbb7147df74d027d8d0adcdb54182c9de8053fc8b1b9d19c16c53d34db6e26f6a88d449f6abf3010100007e206a758a3f02816b4e097cfa3d46e45e7949c5b10691d49b9693a798a330a1ccb32d49772e80862df36dc0156b3f72cd85083f8e96ca1697457ec722766bd46ee2424975a38149bd57e5c0eb4087fc243e7e51b0aca9f0ab0668d7f2ee9ad9f267d8804417aa7e36a64d489bb84a1483fd3c3ecb024060002858cbb1f7708f5b41fca2fee7c03b1f862ce88dc313d913e041dd7583a1ac41c466757c5dd07ea2c5d62a000000000000000019a4e9a9c2cbc906f97fd6eb71b18d09a5df123ebbdb2827b43aed6a29e9942e402c1ae52e9cb98f3019d364fc21ea12023db91ced3c2f06550cef8a79ed39091e4776001187d0ab2f82478431d36470cc008d745ce8fd64c9aa64da230bb080945a557081b767beb75b1ea856a55c71b8fda672289aa6088630d48ac8039f19fec3acbcc5944a4e6fd44af8f10110db730a8d0d41b4ea36f9510f843a471963bd4621b9e43f08d341bb69df430ac6398c1b28bdd33b69b4b86d7c5f30cf728294e8ea1861ce50c367498945285f73c94d91210652eb4f3077cab6be2a3512eddbcb63d091d69fb1b26c8ada9a9f9355aea34fe55fd0d3011cb83ac03268dc66dd108a4e9944241e1d4ba69212ee0e7526e72c19346d08d3c3c82cb987f1bd2fd9ce2c88082ea23abbf23c6bd43fc9f9f8ea7656e25d3d73cd056b1f782de1fe349fc33546558366ed99940c0fda039272d277a3576d4e0469779d711e10b6bf040f7274fd9577c1c33326d2e60ee611ae226ef00e2944fb727832dc8dad36a6072aacfc4bcefb808ab7b3b95e0f60616320b2a9e1f8fac812daac9983639b35184803b7d192ce1f226e97fa23c37df95d067a54a8b412644cad9ecc251fbe418a81aaf00cc8d15758ff0eb885a40630396ba76b8fadc09e62ef70c8a0121e7e8322cb8bc0f50ad33a17143a29c14ecadd1b6244e31b888d8f3fa03208d3e9a4826a98f31995509015ebdc89f2f3106e54d5898d3758b9bfc9e4924e9cedf7f8fd584e7185703cc5f23741ffb480b5a87cd7efcceb409d354bdab211ebd50ab12b13c1b8ce93093a59a0f952153c2efd10e72ec9ee5fa2a00f9637851ddb81d059f9a363c4ada68dd25f19ee9e4841acee7c1b35ad6f9d54cf4939ce78a55a04e655d7746a3989c6f33b02f8497aacb6bfca7456111900000000000000000048d35af24acb66fdd4d1fb150138f0ee6abfc7049c94346868ed76d3a5df7335184386a5c532d425f1a098ff93efd05e5dd8b765121fbdfe5ef44f6472b939c31883f45889142e82086c2448da60d7a40774d71c2da2e7f6d4fe5d36923213cc7b7d71a1c90006e8f8d84953f284b0eb4366beff5df5595827dcd736e8cfab28cfa416e83c06213ca7fd21af56e3de1d80e77060447e20a8b317a4c06e24e99239824d08abf670a685bc46c8168bee4cfc30cc6d0dc030a592925bad3e0f805f0d4b2b600dc3f0c4c6f75bb4e49982f4198ac90ab77c5572c956d415858bad5ee117b3e5f1507bbd0d7a30388865deb11106a93225a81feb08f520767013a9ae65533aea538d"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000002c0)={0x9, &(0x7f0000000180)=[{0xffff, 0x4, 0xb, 0xe}, {0x1fd5, 0x4, 0x81, 0x6}, {0xff4d, 0x1, 0x5, 0x9}, {0xa, 0x2, 0x0, 0xfc3b}, {0x7, 0x6, 0x6, 0x9}, {0x1, 0x4, 0x1, 0x2}, {0x4, 0x5, 0x8}, {0x5, 0x1, 0x5, 0x4}, {0x2, 0x8, 0x6, 0x3}]})
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a30000000001400078005001500000000000800124000000006050005000000000005000400000000000d000300686173683a6d6163"], 0x5c}}, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000002300)={r3, 0x18000000000002a0, 0x22, 0x0, &(0x7f0000000580)="b9ff0300600d698cff9e13f008004de7f9c764360000002f00135433f6e31e17128c", 0x0, 0xfffffffe, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

11.377060831s ago: executing program 0 (id=511):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x8000)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$userio(0xffffffffffffff9c, 0x0, 0x2002, 0x0)
openat$pidfd(0xffffffffffffff9c, 0x0, 0x80080, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
write$USERIO_CMD_SET_PORT_TYPE(r1, &(0x7f00000002c0)={0x1, 0x1}, 0x2)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet6(0xa, 0x80002, 0x0)
r3 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x2, 0x400)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r3, 0xc1105517, &(0x7f0000000340)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x6, 0x20, 0x4, 0x0, 0x0, 0x0, 'syz1\x00', 0x0})
ioctl$vim2m_VIDIOC_DQBUF(0xffffffffffffffff, 0xc0585611, &(0x7f0000000200)=@userptr={0x0, 0x1, 0x4, 0x2, 0x0, {0x0, 0x2710}, {0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '#\x00'}, 0x0, 0x2, {0x0}})
getpgid(0xffffffffffffffff)

6.645396229s ago: executing program 0 (id=524):
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/user\x00')
ioctl$NS_GET_OWNER_UID(r0, 0x8008b70d, &(0x7f0000004200))
r1 = socket$unix(0x1, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0x10, &(0x7f0000000240)=0x8000, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000340)=0xfff)
connect$unix(r1, &(0x7f0000000080)=@abs={0x1, 0x0, 0x4e24}, 0x6e)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x9, 0x82, &(0x7f0000006680))
openat$incfs(0xffffffffffffff9c, &(0x7f0000000040)='.log\x00', 0x4bc681, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r2, 0x28, 0x8, &(0x7f0000000100)=0x147ae147ae147ad, 0x112)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x80042, 0x1bd)
close(r3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
pipe2(&(0x7f0000000000), 0x4800)

5.167012077s ago: executing program 0 (id=532):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x8000)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$userio(0xffffffffffffff9c, 0x0, 0x2002, 0x0)
openat$pidfd(0xffffffffffffff9c, 0x0, 0x80080, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
write$USERIO_CMD_SET_PORT_TYPE(r1, &(0x7f00000002c0)={0x1, 0x1}, 0x2)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet6(0xa, 0x80002, 0x0)
r3 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x2, 0x400)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r3, 0xc1105517, &(0x7f0000000340)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x6, 0x20, 0x4, 0x0, 0x0, 0x0, 'syz1\x00', 0x0})
ioctl$vim2m_VIDIOC_DQBUF(0xffffffffffffffff, 0xc0585611, &(0x7f0000000200)=@userptr={0x0, 0x1, 0x4, 0x2, 0x0, {0x0, 0x2710}, {0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '#\x00'}, 0x0, 0x2, {0x0}})
getpgid(0xffffffffffffffff)

4.732768983s ago: executing program 4 (id=535):
epoll_create1(0x0)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000480)='./cgroup\x00', &(0x7f00000004c0)={0x80040, 0x20, 0x1}, 0x18)

4.601043768s ago: executing program 3 (id=536):
r0 = socket(0x200000000000011, 0x2, 0xd)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x8000}, 0x4)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000440)=@newlink={0x44, 0x10, 0xffffffffffffffff, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, 0x4831, 0x1823}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_AGEING_TIME={0x8, 0x4, 0x7}, @IFLA_BR_MCAST_QUERIER={0x5, 0x19, 0x9}]}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x24000800)
getsockopt$IP_VS_SO_GET_INFO(r1, 0x0, 0x481, &(0x7f0000000000), &(0x7f0000000040)=0xc)
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x88800, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000002c00ed002bbd7000ffdbdf25077c0000100001800c00dd800800f400", @ANYRES32=r3, @ANYBLOB="080003"], 0x2c}, 0x1, 0x0, 0x0, 0xc000}, 0xc090)
setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f0000000100)={0x6, &(0x7f0000000080)=[{0x3, 0x7, 0xb, 0xae77}, {0x1, 0x46, 0x4, 0xbe}, {0x4, 0xf1, 0x8, 0x4c50}, {0x2, 0x6, 0x4, 0x45}, {0x5, 0xb, 0x3}, {0xff, 0x83, 0x7, 0x3414}]}, 0x10)
ioctl$IOMMU_VFIO_SET_IOMMU(r2, 0x3b66, 0x0)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
bind$bt_l2cap(r4, &(0x7f0000000200)={0x1f, 0x81, @none, 0x0, 0x1}, 0xe)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ptype\x00')
r6 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
r7 = syz_create_resource$binfmt(&(0x7f0000000180)='./file1\x00')
r8 = openat$binfmt(0xffffffffffffff9c, r7, 0x42, 0x1ff)
write$binfmt_script(r8, &(0x7f0000000080)={'#! ', './file1', [{}]}, 0x2)
write$binfmt_misc(r8, &(0x7f0000000040)='\t', 0x27)
close(r8)
execveat$binfmt(0xffffffffffffff9c, r7, 0x0, 0x0, 0x0)
syz_open_dev$dvb_demux(&(0x7f0000000180), 0x600000, 0x24080)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
ioctl$NILFS_IOCTL_SYNC(r6, 0x80086e8a, &(0x7f00000001c0))
sendmsg$NFT_BATCH(r9, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000f40)=ANY=[@ANYBLOB="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"], 0x138}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
sendmsg$NFT_BATCH(r9, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000440)={{0x14}, [@NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x201, 0x0, 0x0, {0xa, 0x0, 0x2}}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x3c}, 0x1, 0x0, 0x0, 0x1}, 0x20000010)
ioctl$SNDCTL_SEQ_OUTOFBAND(r6, 0x40085112, &(0x7f0000000200)=@raw={0xfe, 0x1, "0d1868c06f7f"})
preadv(r5, &(0x7f0000000040)=[{&(0x7f0000000240)=""/49, 0x31}], 0x1, 0x3a, 0x5)

4.440706541s ago: executing program 4 (id=537):
r0 = syz_open_dev$loop(&(0x7f0000000000), 0x400, 0x0)
ioctl$LOOP_GET_STATUS64(r0, 0x4c05, 0x0) (async)
r1 = socket$inet_icmp(0x2, 0x2, 0x1)
sendmmsg$inet(r1, &(0x7f0000000340)=[{{&(0x7f00000002c0)={0x2, 0x4e20, @empty}, 0x10, &(0x7f0000000000)=[{&(0x7f0000000400)='\b\x00\x00\x00(\x00\x00\x00', 0x8}], 0x1}}], 0x1, 0x40444c4)
ioctl$sock_inet_SIOCSIFBRDADDR(r1, 0x891a, &(0x7f0000000040)={'batadv_slave_1\x00', {0x2, 0x4e22, @loopback}})

4.007738098s ago: executing program 4 (id=538):
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x4014, &(0x7f0000001000)=ANY=[@ANYBLOB="6d706f6c3d62690bbe608ae7a8e257d632a80e6e643a302d4e3a", @ANYRESDEC])

3.927830884s ago: executing program 3 (id=539):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x3, 0x2)
ioctl$VIDIOC_QUERY_EXT_CTRL(r0, 0xc0e85667, &(0x7f0000000040)={0xc0000000, 0x4a2, "80ba0b5751281f391e137a6e89210c0dc3488a097e042311b9494be48eba8dc6", 0x5, 0x9, 0x9, 0x7, 0x1, 0x1b7f, 0x7f, 0x6, [0x8001, 0xfbff8001, 0x6, 0x5]})
r1 = syz_create_resource$binfmt(&(0x7f00000003c0)='./file0\x00')
openat$binfmt(0xffffffffffffff9c, r1, 0x42, 0x1ff)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002040), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x413, &(0x7f0000000340)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x8000}})
syz_fuse_handle_req(r2, &(0x7f0000009b40)="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", 0x2000, &(0x7f00000004c0)={&(0x7f0000000000)={0x50, 0x0, 0x203, {0x7, 0x29, 0xfffffffb, 0x48000010, 0x1, 0x3, 0xb, 0x2, 0x0, 0x0, 0x80, 0x97}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_NOTIFY_STORE(r2, &(0x7f0000000080)={0x28, 0x4, 0x0, {0x1, 0x8}}, 0x28)
r3 = socket$alg(0x26, 0x5, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000001c0)={0x64, 0x2, 0x6, 0x5, 0x0, 0x0, {0x0, 0x0, 0xfffc}, [@IPSET_ATTR_TYPENAME={0x12, 0x3, 'bitmap:ip,mac\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0x18, 0x7, 0x0, 0x1, [@IPSET_ATTR_CIDR={0x5, 0x3, 0x1f}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x64}, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000480)=ANY=[@ANYBLOB="021604000a00000026bd7000fcdbdf250800120002000200bc"], 0x50}}, 0x890)
bind$alg(r3, &(0x7f0000000100)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
r6 = accept4(r3, 0x0, 0x0, 0x80000)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000000)="ad00"/16, 0x10)
recvfrom$packet(r6, 0x0, 0x0, 0x0, 0x0, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r7, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000440)={0x58, r8, 0x813, 0x70bd23, 0x25dfdbfd, {}, [@TIPC_NLA_NODE={0x44, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x3e, 0x4, {'gcm(aes)\x00', 0x16, "78d9403689a0256bcd794a17ff7b0d56b0a9ad2b3677"}}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x20048044}, 0x20008000)

3.560335235s ago: executing program 4 (id=540):
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/user\x00')
ioctl$NS_GET_OWNER_UID(r0, 0x8008b70d, &(0x7f0000004200))
r1 = socket$unix(0x1, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0x10, &(0x7f0000000240)=0x8000, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000340)=0xfff)
connect$unix(r1, &(0x7f0000000080)=@abs={0x1, 0x0, 0x4e24}, 0x6e)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x9, 0x82, &(0x7f0000006680))
openat$incfs(0xffffffffffffff9c, &(0x7f0000000040)='.log\x00', 0x4bc681, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r2, 0x28, 0x8, &(0x7f0000000100)=0x147ae147ae147ad, 0x112)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x80042, 0x1bd)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
pipe2(&(0x7f0000000000), 0x4800)

2.940757874s ago: executing program 3 (id=541):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-serpent-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f", 0xcd}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)

2.639616267s ago: executing program 3 (id=542):
syz_emit_ethernet(0x34e, &(0x7f0000000780)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00cd04", 0x318, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x5, 0x1, 0x0, 0x0, [{0x3, 0xa, "a78c000005dc8080a2030003004003493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34060600000000000000dac15084dbaf736b41e5af0502"}, {0x0, 0x1, "000005000000000026000400"}, {0x0, 0x18, "fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829af02d7f44d92324a7051e460a13ddde25a5b85b9d930914625d8a049b4cf0d129806a610ad8477a2499a9a0527f75b655a6653d0363a979acf93f88eea07d68423e90280409de1657275f716a2bf3915d1783e8eb477b0d1170f0ecbdef4c23e1b76e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177704c5fd4698c934de4731f3f61effc978"}, {0x5, 0x1d, "06aa85616177c61bc943afcb84619755403946b0730a18d5c38cf7dcad830f2dc8674b87ba8b58f81ece27975cc39e595e9af90b4fe92a38d25551c2d9ebfc5dfc5a2a501b7e483de3f808895c5f4a1a2367bc591dd8b094822ff0dea07c9a1f643c822a18b79f7c5eba31fb68b2d734a6671e27182aee4df24a4a5cf390dab23b500b0c0272479611e4f7f4299ec4d926d443367b105185e6ecd9602ba95392343e9bbd047ef6bc1ba42399907ccd0a562db212baa39eb8164e240069f656d3a05fecf894222a141123f5ac010000000000000090aa235a670670ffc5dc49dfb58d00000000000000"}, {0x0, 0xb, "17dcea468000000000054740a5d4901b0aeff04c0300f3c75dc2d227a83b89483b1084743475671545e65eb2bce9ac946a3f0e2bc4000091394c02bcfbbb7d71138537d68e2d2c6393a9f3cc271a9ff09a48b5b303f4f0"}, {0xe, 0x7, "b8a3e10000a3e1100000006f00ffc0ffff00000000600000ff0bc0fe000000000000000000000000d9a0274400"/55}, {0x0, 0xc, "5e14ccb44d2d42cfb3f27fafb60845f90b6dfc2e37bc87c6905bbc94d33e1ea71a28105f543e868a8a53b360a9d33e2b1e26eb1d260600aa89c8f267d76ece1c9f6ae2e1eb3d8bf9c6ab2642c4808298e62afbf03269f1f98aea6ab3beb5fdc5fdaabc2c"}]}}}}}}, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd637f4b22667f2f"], 0xfdef)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb0100180000000200"/20], 0x0, 0x1a, 0x0, 0x1}, 0x28)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001740)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x5, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffffffffffc4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8000}, 0x94)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fed007907001175f37538e486dd63"], 0xcfa4)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000500)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWRULE={0x48, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_EXPRESSIONS={0x1c, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @synproxy={{0xd}, @val={0x4}}}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x70}, 0x1, 0x0, 0x0, 0x4000850}, 0x24044010)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x88be, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xff00}, 0x48)
bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000000)=@base={0xa, 0x16, 0xeb5, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0xfffffffd, 0x2}, 0x50)
fanotify_mark(0xffffffffffffffff, 0xd0, 0x0, 0xffffffffffffffff, 0x0)

1.088466912s ago: executing program 4 (id=543):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(r1, 0x4038ae7a, 0x0) (fail_nth: 1)

619.362134ms ago: executing program 0 (id=544):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000080)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000200000008000300", @ANYRES32=r2, @ANYBLOB="0800a0002609000008009f0005000000080026006c09"], 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r3 = syz_clone(0x200, 0x0, 0x0, 0x0, 0x0, 0x0)
ioprio_get$pid(0x2, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r4=>0x0)
r5 = openat$drirender128(0xffffffffffffff9c, &(0x7f0000000080), 0x40, 0x0)
r6 = signalfd4(r5, &(0x7f0000000100)={[0x5]}, 0x8, 0x800)
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
r8 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r8, 0x84, 0x1d, &(0x7f0000000200)={0x1, [<r9=>0x0]}, &(0x7f0000000080)=0x8)
ioctl$BTRFS_IOC_DEFRAG_RANGE(r7, 0x40309410, 0x0)
getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r7, 0x84, 0x76, &(0x7f0000000400)={r9, 0xa}, &(0x7f0000000440)=0x8)
setsockopt$inet_sctp_SCTP_CONTEXT(r6, 0x84, 0x11, &(0x7f0000000140)={r9, 0xba}, 0x8)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r4, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
r10 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
recvfrom(r10, 0x0, 0x0, 0x100, 0x0, 0x0)
prlimit64(r3, 0x3, &(0x7f0000000000)={0x3, 0x2}, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)

277.663038ms ago: executing program 3 (id=545):
epoll_create1(0x0)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000480)='./cgroup\x00', &(0x7f00000004c0)={0x80040, 0x20, 0x1}, 0x18)

137.522792ms ago: executing program 3 (id=546):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
r1 = syz_io_uring_setup(0x4b5, &(0x7f0000010400)={0x0, 0x2b2b, 0x400, 0x8}, &(0x7f0000010080), &(0x7f0000000000), &(0x7f0000000000))
io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000640)=""/4096, 0x1000}, {0x0}], 0x2)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r1, 0x10, 0x0, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x4, 0x1}, 0xe)
listen(r0, 0x90004)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="043e130100c90001"], 0x16)
syz_kvm_add_vcpu$x86(0x0, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$kcm(0x29, 0x7, 0x0)
ioctl$KVM_SET_FPU(0xffffffffffffffff, 0x41a0ae8d, &(0x7f00000002c0)={'\x00', 0x7591, 0x0, 0x47, 0x0, 0xfaf9, 0x54000, 0x54000, '\x00', 0x400})
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0xff, 0x7fff7ffc}]})
close_range(r2, 0xffffffffffffffff, 0x0)

0s ago: executing program 4 (id=547):
r0 = syz_open_dev$swradio(&(0x7f0000000100), 0x0, 0x2)
ioctl$VIDIOC_QBUF(r0, 0xc058560f, &(0x7f0000000240)=@multiplanar_userptr={0x5, 0x5, 0x4, 0x2, 0x8001, {0x77359400}, {0x1, 0xc, 0x5, 0x2, 0x63, 0xd, "934be2d4"}, 0xffffffff, 0x2, {0x0}, 0x2}) (fail_nth: 1)

kernel console output (not intermixed with test programs):

4 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  292.378931][ T6980] RSP: 002b:00007f85359fe028 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[  292.378955][ T6980] RAX: ffffffffffffffda RBX: 00007f8537a25fa0 RCX: 00007f85377ace59
[  292.378972][ T6980] RDX: 0000000000000001 RSI: 0000200000000480 RDI: 0000000000000003
[  292.378986][ T6980] RBP: 00007f85359fe090 R08: 0000000000000000 R09: 0000000000000000
[  292.379000][ T6980] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  292.379013][ T6980] R13: 00007f8537a26038 R14: 00007f8537a25fa0 R15: 00007ffca5cac6f8
[  292.379048][ T6980]  </TASK>
[  292.525721][ T5611] usb 4-1: USB disconnect, device number 25
[  293.085375][ T6677] hsr_slave_0: entered promiscuous mode
[  293.087343][ T6677] hsr_slave_1: entered promiscuous mode
[  293.091237][ T6677] debugfs: 'hsr0' already exists in 'hsr'
[  293.091269][ T6677] Cannot create hsr debugfs directory
[  294.730676][ T7009] FAULT_INJECTION: forcing a failure.
[  294.730676][ T7009] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  294.730725][ T7009] CPU: 0 UID: 0 PID: 7009 Comm: syz.0.259 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  294.730751][ T7009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  294.730764][ T7009] Call Trace:
[  294.730772][ T7009]  <TASK>
[  294.730781][ T7009]  dump_stack_lvl+0xe8/0x150
[  294.730814][ T7009]  should_fail_ex+0x46b/0x600
[  294.730858][ T7009]  _copy_from_user+0x2d/0xb0
[  294.730887][ T7009]  __copy_msghdr+0x3c5/0x5b0
[  294.730923][ T7009]  ___sys_sendmsg+0x213/0x360
[  294.730951][ T7009]  ? __lock_acquire+0x6b5/0x2cf0
[  294.730986][ T7009]  ? __pfx____sys_sendmsg+0x10/0x10
[  294.731023][ T7009]  ? kstrtouint+0x6e/0xe0
[  294.731084][ T7009]  ? __fget_files+0x2a/0x420
[  294.731105][ T7009]  ? __fget_files+0x3a6/0x420
[  294.731136][ T7009]  __sys_sendmmsg+0x282/0x4e0
[  294.731173][ T7009]  ? __pfx___sys_sendmmsg+0x10/0x10
[  294.731213][ T7009]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  294.731253][ T7009]  ? ksys_write+0x248/0x270
[  294.731281][ T7009]  ? __pfx_ksys_write+0x10/0x10
[  294.731314][ T7009]  __x64_sys_sendmmsg+0xa0/0xc0
[  294.731345][ T7009]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  294.731368][ T7009]  do_syscall_64+0x15f/0xf80
[  294.731396][ T7009]  ? trace_irq_disable+0x3b/0x140
[  294.731424][ T7009]  ? clear_bhb_loop+0x40/0x90
[  294.731452][ T7009]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  294.731474][ T7009] RIP: 0033:0x7f85377ace59
[  294.731496][ T7009] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  294.731515][ T7009] RSP: 002b:00007f85359fe028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  294.731539][ T7009] RAX: ffffffffffffffda RBX: 00007f8537a25fa0 RCX: 00007f85377ace59
[  294.731555][ T7009] RDX: 0000000000000001 RSI: 0000200000000680 RDI: 0000000000000003
[  294.731569][ T7009] RBP: 00007f85359fe090 R08: 0000000000000000 R09: 0000000000000000
[  294.731583][ T7009] R10: 0000000020000014 R11: 0000000000000246 R12: 0000000000000001
[  294.731596][ T7009] R13: 00007f8537a26038 R14: 00007f8537a25fa0 R15: 00007ffca5cac6f8
[  294.731632][ T7009]  </TASK>
[  296.086774][ T7022] FAULT_INJECTION: forcing a failure.
[  296.086774][ T7022] name failslab, interval 1, probability 0, space 0, times 0
[  296.086812][ T7022] CPU: 1 UID: 0 PID: 7022 Comm: syz.4.262 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  296.086837][ T7022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  296.086850][ T7022] Call Trace:
[  296.086859][ T7022]  <TASK>
[  296.086868][ T7022]  dump_stack_lvl+0xe8/0x150
[  296.086901][ T7022]  should_fail_ex+0x46b/0x600
[  296.086942][ T7022]  should_failslab+0xa8/0x100
[  296.086972][ T7022]  kmem_cache_alloc_node_noprof+0x8f/0x6e0
[  296.086997][ T7022]  ? __alloc_skb+0x1d0/0x7d0
[  296.087020][ T7022]  ? lockdep_hardirqs_on+0x7a/0x110
[  296.087061][ T7022]  __alloc_skb+0x1d0/0x7d0
[  296.087093][ T7022]  alloc_skb_with_frags+0xc8/0x760
[  296.087121][ T7022]  ? __lock_acquire+0x6b5/0x2cf0
[  296.087162][ T7022]  sock_alloc_send_pskb+0x884/0x9a0
[  296.087202][ T7022]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  296.087236][ T7022]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  296.087274][ T7022]  ? dev_get_by_index+0x22/0x2e0
[  296.087306][ T7022]  ? dev_get_by_index+0x22/0x2e0
[  296.087346][ T7022]  packet_sendmsg+0x315a/0x4fb0
[  296.087378][ T7022]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  296.087413][ T7022]  ? __lock_acquire+0x6b5/0x2cf0
[  296.087452][ T7022]  ? __lock_acquire+0x6b5/0x2cf0
[  296.087493][ T7022]  ? smack_socket_sendmsg+0x1f8/0x590
[  296.087530][ T7022]  ? __pfx_smack_socket_sendmsg+0x10/0x10
[  296.087568][ T7022]  ? __pfx_packet_sendmsg+0x10/0x10
[  296.087596][ T7022]  ? __might_fault+0xaf/0x130
[  296.087627][ T7022]  ? tomoyo_socket_sendmsg_permission+0x1e0/0x300
[  296.087683][ T7022]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  296.087707][ T7022]  ? __pfx_packet_sendmsg+0x10/0x10
[  296.087732][ T7022]  __sys_sendto+0x67f/0x710
[  296.087766][ T7022]  ? __pfx___sys_sendto+0x10/0x10
[  296.087821][ T7022]  ? ksys_write+0x248/0x270
[  296.087850][ T7022]  ? __pfx_ksys_write+0x10/0x10
[  296.087881][ T7022]  __x64_sys_sendto+0xde/0x100
[  296.087909][ T7022]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  296.087932][ T7022]  do_syscall_64+0x15f/0xf80
[  296.087960][ T7022]  ? trace_irq_disable+0x3b/0x140
[  296.087985][ T7022]  ? clear_bhb_loop+0x40/0x90
[  296.088013][ T7022]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  296.088035][ T7022] RIP: 0033:0x7f67a2c4ce59
[  296.088056][ T7022] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  296.088077][ T7022] RSP: 002b:00007f67a0e9e028 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  296.088101][ T7022] RAX: ffffffffffffffda RBX: 00007f67a2ec5fa0 RCX: 00007f67a2c4ce59
[  296.088119][ T7022] RDX: 0000000000000004 RSI: 0000200000000240 RDI: 0000000000000004
[  296.088134][ T7022] RBP: 00007f67a0e9e090 R08: 00002000000001c0 R09: 0000000000000014
[  296.088149][ T7022] R10: 0000000004044004 R11: 0000000000000246 R12: 0000000000000001
[  296.088163][ T7022] R13: 00007f67a2ec6038 R14: 00007f67a2ec5fa0 R15: 00007ffebfc437c8
[  296.088198][ T7022]  </TASK>
[  296.297175][ T5261] 8021q: adding VLAN 0 to HW filter on device eth9
[  296.607150][ T7028] FAULT_INJECTION: forcing a failure.
[  296.607150][ T7028] name failslab, interval 1, probability 0, space 0, times 0
[  296.607189][ T7028] CPU: 1 UID: 0 PID: 7028 Comm: syz.3.264 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  296.607214][ T7028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  296.607227][ T7028] Call Trace:
[  296.607236][ T7028]  <TASK>
[  296.607246][ T7028]  dump_stack_lvl+0xe8/0x150
[  296.607279][ T7028]  should_fail_ex+0x46b/0x600
[  296.607321][ T7028]  should_failslab+0xa8/0x100
[  296.607357][ T7028]  kmem_cache_alloc_node_noprof+0x8f/0x6e0
[  296.607382][ T7028]  ? __alloc_skb+0x1d0/0x7d0
[  296.607406][ T7028]  ? lockdep_hardirqs_on+0x7a/0x110
[  296.607440][ T7028]  __alloc_skb+0x1d0/0x7d0
[  296.607472][ T7028]  alloc_skb_with_frags+0xc8/0x760
[  296.607501][ T7028]  ? __lock_acquire+0x6b5/0x2cf0
[  296.607540][ T7028]  sock_alloc_send_pskb+0x884/0x9a0
[  296.607579][ T7028]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  296.607612][ T7028]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  296.607649][ T7028]  ? dev_get_by_index+0x22/0x2e0
[  296.607680][ T7028]  ? dev_get_by_index+0x22/0x2e0
[  296.607718][ T7028]  packet_sendmsg+0x315a/0x4fb0
[  296.607749][ T7028]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  296.607785][ T7028]  ? __lock_acquire+0x6b5/0x2cf0
[  296.607833][ T7028]  ? __lock_acquire+0x6b5/0x2cf0
[  296.607874][ T7028]  ? smack_socket_sendmsg+0x1f8/0x590
[  296.607912][ T7028]  ? __pfx_smack_socket_sendmsg+0x10/0x10
[  296.607948][ T7028]  ? __pfx_packet_sendmsg+0x10/0x10
[  296.607976][ T7028]  ? __might_fault+0xaf/0x130
[  296.608007][ T7028]  ? tomoyo_socket_sendmsg_permission+0x1e0/0x300
[  296.608056][ T7028]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  296.608078][ T7028]  ? __pfx_packet_sendmsg+0x10/0x10
[  296.608102][ T7028]  __sys_sendto+0x67f/0x710
[  296.608133][ T7028]  ? __pfx___sys_sendto+0x10/0x10
[  296.608185][ T7028]  ? ksys_write+0x248/0x270
[  296.608213][ T7028]  ? __pfx_ksys_write+0x10/0x10
[  296.608243][ T7028]  __x64_sys_sendto+0xde/0x100
[  296.608269][ T7028]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  296.608293][ T7028]  do_syscall_64+0x15f/0xf80
[  296.608319][ T7028]  ? trace_irq_disable+0x3b/0x140
[  296.608346][ T7028]  ? clear_bhb_loop+0x40/0x90
[  296.608373][ T7028]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  296.608395][ T7028] RIP: 0033:0x7f65979ece59
[  296.608416][ T7028] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  296.608436][ T7028] RSP: 002b:00007f6595c46028 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  296.608462][ T7028] RAX: ffffffffffffffda RBX: 00007f6597c65fa0 RCX: 00007f65979ece59
[  296.608477][ T7028] RDX: 0000000000000004 RSI: 0000200000000240 RDI: 0000000000000004
[  296.608491][ T7028] RBP: 00007f6595c46090 R08: 00002000000001c0 R09: 0000000000000014
[  296.608506][ T7028] R10: 0000000004044004 R11: 0000000000000246 R12: 0000000000000001
[  296.608519][ T7028] R13: 00007f6597c66038 R14: 00007f6597c65fa0 R15: 00007ffc46b24f58
[  296.608552][ T7028]  </TASK>
[  297.783145][ T7045] netlink: 8 bytes leftover after parsing attributes in process `syz.0.269'.
[  297.783174][ T7045] netlink: 12 bytes leftover after parsing attributes in process `syz.0.269'.
[  297.783201][ T7045] netlink: 'syz.0.269': attribute type 13 has an invalid length.
[  298.227592][ T7046] (syz.3.268,7046,0):ocfs2_get_sector:1714 ERROR: status = -5
[  298.227719][ T7046] (syz.3.268,7046,0):ocfs2_sb_probe:753 ERROR: status = -5
[  298.227832][ T7046] (syz.3.268,7046,0):ocfs2_fill_super:989 ERROR: superblock probe failed!
[  298.227926][ T7046] (syz.3.268,7046,0):ocfs2_fill_super:1177 ERROR: status = -5
[  298.975598][ T6794] bridge0: port 1(bridge_slave_0) entered blocking state
[  298.975746][ T6794] bridge0: port 1(bridge_slave_0) entered disabled state
[  298.976004][ T6794] bridge_slave_0: entered allmulticast mode
[  299.024483][ T6794] bridge_slave_0: entered promiscuous mode
[  299.349449][ T6794] bridge0: port 2(bridge_slave_1) entered blocking state
[  299.351177][ T6794] bridge0: port 2(bridge_slave_1) entered disabled state
[  299.351433][ T6794] bridge_slave_1: entered allmulticast mode
[  299.369688][ T6794] bridge_slave_1: entered promiscuous mode
[  299.389297][  T822] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  299.493779][ T6794] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  299.509148][ T6794] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  299.549061][  T822] usb 5-1: Using ep0 maxpacket: 8
[  299.556092][  T822] usb 5-1: New USB device found, idVendor=046d, idProduct=08dd, bcdDevice=ff.f4
[  299.556128][  T822] usb 5-1: New USB device strings: Mfr=8, Product=2, SerialNumber=3
[  299.556150][  T822] usb 5-1: Product: syz
[  299.556165][  T822] usb 5-1: Manufacturer: syz
[  299.556180][  T822] usb 5-1: SerialNumber: syz
[  299.611220][  T822] usb 5-1: config 0 descriptor??
[  299.643881][  T822] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08dd
[  299.880562][ T7063] netlink: 4 bytes leftover after parsing attributes in process `syz.0.276'.
[  299.880587][ T7063] netlink: 348 bytes leftover after parsing attributes in process `syz.0.276'.
[  299.880610][ T7063] netlink: 4 bytes leftover after parsing attributes in process `syz.0.276'.
[  299.880627][ T7063] netlink: 348 bytes leftover after parsing attributes in process `syz.0.276'.
[  299.880764][ T7063] netlink: 4 bytes leftover after parsing attributes in process `syz.0.276'.
[  299.975998][ T6794] team0: Port device team_slave_0 added
[  299.992532][ T7067] Illegal XDP return value 4291374392 on prog  (id 21) dev N/A, expect packet loss!
[  300.011280][ T7070] netlink: 156 bytes leftover after parsing attributes in process `syz.3.277'.
[  300.205894][ T6794] team0: Port device team_slave_1 added
[  300.390494][  T822] gspca_zc3xx: reg_w_i err -71
[  300.390590][  T822] gspca_zc3xx 5-1:0.0: probe with driver gspca_zc3xx failed with error -71
[  300.437063][  T822] usb 5-1: USB disconnect, device number 31
[  302.003637][ T7102] netlink: 8 bytes leftover after parsing attributes in process `syz.4.284'.
[  302.238819][ T5590] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  302.287160][ T6794] batman_adv: batadv0: Adding interface: batadv_slave_0
[  302.287174][ T6794] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  302.287192][ T6794] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  302.338234][ T7107] FAULT_INJECTION: forcing a failure.
[  302.338234][ T7107] name failslab, interval 1, probability 0, space 0, times 0
[  302.338271][ T7107] CPU: 1 UID: 0 PID: 7107 Comm: syz.3.286 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  302.338298][ T7107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  302.338311][ T7107] Call Trace:
[  302.338319][ T7107]  <TASK>
[  302.338328][ T7107]  dump_stack_lvl+0xe8/0x150
[  302.338357][ T7107]  should_fail_ex+0x46b/0x600
[  302.338414][ T7107]  should_failslab+0xa8/0x100
[  302.338441][ T7107]  kmem_cache_alloc_node_noprof+0x8f/0x6e0
[  302.338463][ T7107]  ? __alloc_skb+0x1d0/0x7d0
[  302.338484][ T7107]  ? lockdep_hardirqs_on+0x7a/0x110
[  302.338514][ T7107]  __alloc_skb+0x1d0/0x7d0
[  302.338542][ T7107]  netlink_sendmsg+0x5d4/0xb40
[  302.338576][ T7107]  ? __pfx_netlink_sendmsg+0x10/0x10
[  302.338615][ T7107]  ? unwind_get_return_address+0x4d/0x90
[  302.338649][ T7107]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  302.338675][ T7107]  ____sys_sendmsg+0x94c/0x9c0
[  302.338709][ T7107]  ? __pfx_____sys_sendmsg+0x10/0x10
[  302.338748][ T7107]  ? import_iovec+0x73/0xa0
[  302.338778][ T7107]  ___sys_sendmsg+0x2a5/0x360
[  302.338807][ T7107]  ? __lock_acquire+0x6b5/0x2cf0
[  302.338840][ T7107]  ? __pfx____sys_sendmsg+0x10/0x10
[  302.338900][ T7107]  ? __fget_files+0x2a/0x420
[  302.338918][ T7107]  ? __fget_files+0x3a6/0x420
[  302.338946][ T7107]  __x64_sys_sendmsg+0x1c3/0x2a0
[  302.338975][ T7107]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  302.339010][ T7107]  ? __pfx_ksys_write+0x10/0x10
[  302.339041][ T7107]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  302.339062][ T7107]  do_syscall_64+0x15f/0xf80
[  302.339086][ T7107]  ? trace_irq_disable+0x3b/0x140
[  302.339109][ T7107]  ? clear_bhb_loop+0x40/0x90
[  302.339133][ T7107]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  302.339153][ T7107] RIP: 0033:0x7f65979ece59
[  302.339172][ T7107] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  302.339188][ T7107] RSP: 002b:00007f6595c46028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  302.339209][ T7107] RAX: ffffffffffffffda RBX: 00007f6597c65fa0 RCX: 00007f65979ece59
[  302.339223][ T7107] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[  302.339235][ T7107] RBP: 00007f6595c46090 R08: 0000000000000000 R09: 0000000000000000
[  302.339247][ T7107] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  302.339259][ T7107] R13: 00007f6597c66038 R14: 00007f6597c65fa0 R15: 00007ffc46b24f58
[  302.339290][ T7107]  </TASK>
[  302.363504][  T822] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  302.388862][ T5590] usb 5-1: Using ep0 maxpacket: 8
[  302.392937][ T5590] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  302.392964][ T5590] usb 5-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  302.393026][ T5590] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[  302.393052][ T5590] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[  302.417980][ T5590] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  302.418011][ T5590] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  302.418032][ T5590] usb 5-1: Product: syz
[  302.418046][ T5590] usb 5-1: Manufacturer: syz
[  302.418060][ T5590] usb 5-1: SerialNumber: syz
[  302.625836][  T822] usb 1-1: Using ep0 maxpacket: 16
[  302.730324][  T822] usb 1-1: config 1 has too many interfaces: 129, using maximum allowed: 32
[  302.730360][  T822] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 129
[  302.730429][  T822] usb 1-1: config 1 interface 0 altsetting 93 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  302.730459][  T822] usb 1-1: config 1 interface 0 altsetting 93 bulk endpoint 0x82 has invalid maxpacket 96
[  302.730485][  T822] usb 1-1: config 1 interface 0 altsetting 93 bulk endpoint 0x3 has invalid maxpacket 8
[  302.730509][  T822] usb 1-1: config 1 interface 0 altsetting 93 has 3 endpoint descriptors, different from the interface descriptor's value: 18
[  302.730539][  T822] usb 1-1: config 1 interface 0 has no altsetting 0
[  302.820386][  T822] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a2, bcdDevice= 0.40
[  302.820408][  T822] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  302.820421][  T822] usb 1-1: SerialNumber: syz
[  302.935962][ T7103] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  302.936304][ T7103] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  302.964768][  T822] cdc_ether 1-1:1.0: missing cdc header descriptor
[  303.547466][ T5590] usb 5-1: 0:2 : does not exist
[  303.914726][ T7087] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  303.925781][ T7087] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  304.126135][ T6794] batman_adv: batadv0: Adding interface: batadv_slave_1
[  304.126154][ T6794] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  304.126183][ T6794] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  304.610704][  T822] cdc_subset 1-1:1.0 usb0: register 'cdc_subset' at usb-dummy_hcd.0-1, Linux Device, 2e:d5:f1:96:ff:02
[  304.722723][  T822] usb 1-1: USB disconnect, device number 19
[  304.751674][  T822] cdc_subset 1-1:1.0 usb0: unregister 'cdc_subset' usb-dummy_hcd.0-1, Linux Device
[  306.128098][ T5590] usb 5-1: USB disconnect, device number 32
[  308.606398][ T7141] (syz.0.294,7141,0):ocfs2_get_sector:1714 ERROR: status = -5
[  308.606466][ T7141] (syz.0.294,7141,0):ocfs2_sb_probe:753 ERROR: status = -5
[  308.606516][ T7141] (syz.0.294,7141,0):ocfs2_fill_super:989 ERROR: superblock probe failed!
[  308.606566][ T7141] (syz.0.294,7141,0):ocfs2_fill_super:1177 ERROR: status = -5
[  308.914697][ T6875] udevd[6875]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  309.464576][ T6794] hsr_slave_0: entered promiscuous mode
[  309.484569][ T6794] hsr_slave_1: entered promiscuous mode
[  309.498581][ T6794] debugfs: 'hsr0' already exists in 'hsr'
[  309.498820][ T6794] Cannot create hsr debugfs directory
[  310.269488][ T7160] netlink: 24 bytes leftover after parsing attributes in process `syz.0.301'.
[  310.281729][ T7160] overlayfs: failed lookup in lower (newroot/102, name='file1', err=-40): overlapping layers
[  310.386773][ T7161] netlink: 60 bytes leftover after parsing attributes in process `syz.4.300'.
[  312.418827][ T5708] usb 1-1: new full-speed USB device number 20 using dummy_hcd
[  312.455397][ T7163] Invalid ELF header len 9
[  312.479849][ T7163] netlink: 132 bytes leftover after parsing attributes in process `syz.4.302'.
[  312.492084][ T7150] team0: entered promiscuous mode
[  312.492110][ T7150] team_slave_0: entered promiscuous mode
[  312.492283][ T7150] team_slave_1: entered promiscuous mode
[  312.493504][ T7150] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  312.598987][ T5708] usb 1-1: device descriptor read/64, error -71
[  312.848888][ T5708] usb 1-1: new full-speed USB device number 21 using dummy_hcd
[  312.982003][ T5708] usb 1-1: device descriptor read/64, error -71
[  313.091647][ T5708] usb usb1-port1: attempt power cycle
[  314.892453][ T7214] FAULT_INJECTION: forcing a failure.
[  314.892453][ T7214] name failslab, interval 1, probability 0, space 0, times 0
[  314.892504][ T7214] CPU: 0 UID: 0 PID: 7214 Comm: syz.0.314 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  314.892529][ T7214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  314.892542][ T7214] Call Trace:
[  314.892551][ T7214]  <TASK>
[  314.892560][ T7214]  dump_stack_lvl+0xe8/0x150
[  314.892599][ T7214]  should_fail_ex+0x46b/0x600
[  314.892642][ T7214]  should_failslab+0xa8/0x100
[  314.892669][ T7214]  kmem_cache_alloc_noprof+0x87/0x680
[  314.892693][ T7214]  ? mas_alloc_nodes+0x291/0x350
[  314.892725][ T7214]  mas_alloc_nodes+0x291/0x350
[  314.892755][ T7214]  mas_preallocate+0x2d6/0x640
[  314.892788][ T7214]  ? __pfx_mas_preallocate+0x10/0x10
[  314.892828][ T7214]  ? __mas_set_range+0x12f/0x3c0
[  314.892868][ T7214]  __split_vma+0x33d/0xa30
[  314.892904][ T7214]  ? mas_next_slot+0xc3e/0xd10
[  314.892936][ T7214]  ? __pfx___split_vma+0x10/0x10
[  314.892986][ T7214]  ? mas_find+0xb0e/0xd30
[  314.893017][ T7214]  vms_gather_munmap_vmas+0x4fa/0x1380
[  314.893045][ T7214]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  314.893095][ T7214]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  314.893139][ T7214]  ? mas_find+0xa7d/0xd30
[  314.893173][ T7214]  mmap_region+0x945/0x2280
[  314.893224][ T7214]  ? __pfx_mmap_region+0x10/0x10
[  314.893268][ T7214]  ? __lock_acquire+0x6b5/0x2cf0
[  314.893307][ T7214]  ? __lock_acquire+0x6b5/0x2cf0
[  314.893339][ T7214]  ? __lock_acquire+0x6b5/0x2cf0
[  314.893442][ T7214]  ? __lock_acquire+0x6b5/0x2cf0
[  314.893496][ T7214]  ? __lock_acquire+0x6b5/0x2cf0
[  314.893529][ T7214]  ? __pfx_arch_get_unmapped_area_topdown+0x10/0x10
[  314.893565][ T7214]  ? __lock_acquire+0x6b5/0x2cf0
[  314.893596][ T7214]  ? cap_mmap_addr+0xaf/0x100
[  314.893628][ T7214]  ? bpf_lsm_mmap_addr+0x9/0x50
[  314.893658][ T7214]  ? shmem_mapping+0xd/0x50
[  314.893678][ T7214]  ? memfd_check_seals_mmap+0xcb/0x210
[  314.893713][ T7214]  do_mmap+0xc2f/0x10c0
[  314.893743][ T7214]  ? lockdep_hardirqs_on+0x7a/0x110
[  314.893772][ T7214]  ? __pfx_do_mmap+0x10/0x10
[  314.893793][ T7214]  ? rwbase_write_lock+0x568/0x730
[  314.893840][ T7214]  vm_mmap_pgoff+0x2cc/0x4f0
[  314.893870][ T7214]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  314.893901][ T7214]  ? __fget_files+0x2a/0x420
[  314.893921][ T7214]  ? __fget_files+0x3a6/0x420
[  314.893940][ T7214]  ? __fget_files+0x2a/0x420
[  314.893962][ T7214]  ksys_mmap_pgoff+0x4e8/0x720
[  314.893986][ T7214]  ? __x64_sys_mmap+0x7f/0x140
[  314.894012][ T7214]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  314.894035][ T7214]  do_syscall_64+0x15f/0xf80
[  314.894061][ T7214]  ? trace_irq_disable+0x3b/0x140
[  314.894085][ T7214]  ? clear_bhb_loop+0x40/0x90
[  314.894110][ T7214]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  314.894131][ T7214] RIP: 0033:0x7f85377ace59
[  314.894152][ T7214] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  314.894170][ T7214] RSP: 002b:00007f85359fe028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  314.894211][ T7214] RAX: ffffffffffffffda RBX: 00007f8537a25fa0 RCX: 00007f85377ace59
[  314.894229][ T7214] RDX: 000000000000000a RSI: 0000000000003000 RDI: 0000200000000000
[  314.894242][ T7214] RBP: 00007f85359fe090 R08: 0000000000000003 R09: 0000000000000000
[  314.894256][ T7214] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000001
[  314.894269][ T7214] R13: 00007f8537a26038 R14: 00007f8537a25fa0 R15: 00007ffca5cac6f8
[  314.894301][ T7214]  </TASK>
[  315.083050][ T5812] usb 4-1: new high-speed USB device number 26 using dummy_hcd
[  315.428780][ T5812] usb 4-1: Using ep0 maxpacket: 32
[  315.430006][   T37] audit: type=1326 audit(1778866589.775:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7217 comm="syz.0.315" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f85377ace59 code=0x0
[  315.478411][ T5812] usb 4-1: config index 0 descriptor too short (expected 35577, got 27)
[  315.478444][ T5812] usb 4-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  315.478462][ T5812] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 92
[  315.478485][ T5812] usb 4-1: config 1 has no interface number 0
[  315.478537][ T5812] usb 4-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  315.478567][ T5812] usb 4-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  315.478729][ T5812] usb 4-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  315.478755][ T5812] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  315.636250][ T5812] snd_usb_pod 4-1:1.1: Line 6 Pocket POD found
[  315.685666][ T6677] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  315.819601][ T6677] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  315.937998][ T6677] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  315.939176][ T5812] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now attached
[  316.195264][ T6677] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  316.233556][ T7210] netlink: 8 bytes leftover after parsing attributes in process `syz.3.313'.
[  316.386255][ T6677] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  316.402808][ T5812] usb 1-1: new high-speed USB device number 23 using dummy_hcd
[  316.471648][ T6677] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  316.484821][ T6677] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  316.532958][ T6677] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  316.578861][ T5812] usb 1-1: Using ep0 maxpacket: 16
[  316.587566][ T5812] usb 1-1: New USB device found, idVendor=054c, idProduct=0038, bcdDevice=16.f5
[  316.587830][ T5812] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  316.587852][ T5812] usb 1-1: Product: syz
[  316.587867][ T5812] usb 1-1: Manufacturer: syz
[  316.587882][ T5812] usb 1-1: SerialNumber: syz
[  317.332712][ T5708] snd_usb_pod 4-1:1.1: line6_send_raw_message_async_part: usb_submit_urb failed (-22)
[  318.457522][ T5812] usb 1-1: config 0 descriptor??
[  318.493569][ T5812] visor 1-1:0.0: Sony Clie 3.5 converter detected
[  318.638873][ T5792] usb 4-1: USB disconnect, device number 26
[  318.722267][ T5792] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now disconnected
[  318.832864][   T56] bridge_slave_1: left allmulticast mode
[  318.832905][   T56] bridge_slave_1: left promiscuous mode
[  318.833204][   T56] bridge0: port 2(bridge_slave_1) entered disabled state
[  318.972127][ T5812] usb 1-1: Sony Clie 3.5 converter now attached to ttyUSB0
[  319.040902][   T56] bridge_slave_0: left allmulticast mode
[  319.040943][   T56] bridge_slave_0: left promiscuous mode
[  319.041212][   T56] bridge0: port 1(bridge_slave_0) entered disabled state
[  319.078403][ T5927] usb 1-1: USB disconnect, device number 23
[  319.304210][ T5927] clie_3.5 ttyUSB0: Sony Clie 3.5 converter now disconnected from ttyUSB0
[  319.322338][ T5927] visor 1-1:0.0: device disconnected
[  319.463836][ T7254] netlink: 24 bytes leftover after parsing attributes in process `syz.3.320'.
[  319.595248][ T7254] overlayfs: failed lookup in lower (newroot/98, name='file1', err=-40): overlapping layers
[  319.675646][ T5606] Bluetooth: hci3: unexpected event for opcode 0x202a
[  320.839980][ T5792] usb 4-1: new full-speed USB device number 27 using dummy_hcd
[  321.014424][ T5792] usb 4-1: device descriptor read/64, error -71
[  321.163850][ T5608] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  321.187581][ T5608] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  321.219076][ T5608] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  321.269251][ T5608] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  321.270720][ T5608] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  321.320509][ T5792] usb 4-1: new full-speed USB device number 28 using dummy_hcd
[  321.468868][ T5792] usb 4-1: device descriptor read/64, error -71
[  321.579850][ T5792] usb usb4-port1: attempt power cycle
[  321.934358][ T5606] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201'
[  321.934387][ T5606] CPU: 1 UID: 0 PID: 5606 Comm: kworker/u9:2 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  321.934415][ T5606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  321.934430][ T5606] Workqueue: hci2 hci_rx_work
[  321.934463][ T5606] Call Trace:
[  321.934471][ T5606]  <TASK>
[  321.934481][ T5606]  dump_stack_lvl+0xe8/0x150
[  321.934511][ T5606]  sysfs_create_dir_ns+0x271/0x2a0
[  321.934547][ T5606]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  321.934572][ T5606]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  321.934633][ T5606]  ? rt_spin_unlock+0x160/0x200
[  321.934659][ T5606]  kobject_add_internal+0x631/0xd10
[  321.934701][ T5606]  kobject_add+0x163/0x240
[  321.934738][ T5606]  ? __pfx_kobject_add+0x10/0x10
[  321.934777][ T5606]  ? get_device_parent+0x370/0x3a0
[  321.934809][ T5606]  device_add+0x408/0xbb0
[  321.934839][ T5606]  hci_conn_add_sysfs+0xd5/0x210
[  321.934870][ T5606]  le_conn_complete_evt+0x10e6/0x16b0
[  321.934916][ T5606]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  321.934960][ T5606]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  321.934989][ T5606]  ? lockdep_hardirqs_on+0x7a/0x110
[  321.935019][ T5606]  ? skb_pull_data+0xfb/0x200
[  321.935055][ T5606]  hci_le_conn_complete_evt+0x187/0x470
[  321.935096][ T5606]  hci_event_packet+0x659/0xef0
[  321.935138][ T5606]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  321.935159][ T5606]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  321.935190][ T5606]  ? __pfx_hci_event_packet+0x10/0x10
[  321.935214][ T5606]  ? rt_spin_unlock+0x14f/0x200
[  321.935246][ T5606]  ? hci_send_to_monitor+0xe2/0x590
[  321.935271][ T5606]  hci_rx_work+0x3ee/0x1040
[  321.935309][ T5606]  ? process_scheduled_works+0xa70/0x1860
[  321.935336][ T5606]  process_scheduled_works+0xb5d/0x1860
[  321.935394][ T5606]  ? __pfx_process_scheduled_works+0x10/0x10
[  321.935427][ T5606]  ? assign_work+0x3d5/0x5e0
[  321.935458][ T5606]  worker_thread+0xa53/0xfc0
[  321.935512][ T5606]  kthread+0x388/0x470
[  321.935543][ T5606]  ? __pfx_worker_thread+0x10/0x10
[  321.935566][ T5606]  ? __pfx_kthread+0x10/0x10
[  321.935598][ T5606]  ret_from_fork+0x514/0xb70
[  321.935636][ T5606]  ? __pfx_ret_from_fork+0x10/0x10
[  321.935661][ T5606]  ? __switch_to+0xc79/0x1410
[  321.935698][ T5606]  ? __pfx_kthread+0x10/0x10
[  321.935732][ T5606]  ret_from_fork_asm+0x1a/0x30
[  321.935779][ T5606]  </TASK>
[  321.935823][ T5606] kobject: kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  321.935871][ T5606] Bluetooth: hci2: failed to register connection device
[  321.986070][ T5792] usb 4-1: new full-speed USB device number 29 using dummy_hcd
[  322.020958][ T5792] usb 4-1: device descriptor read/8, error -71
[  322.289555][ T5792] usb 4-1: new full-speed USB device number 30 using dummy_hcd
[  322.313080][ T5792] usb 4-1: device descriptor read/8, error -71
[  322.419434][ T5792] usb usb4-port1: unable to enumerate USB device
[  322.456129][ T7276] FAULT_INJECTION: forcing a failure.
[  322.456129][ T7276] name failslab, interval 1, probability 0, space 0, times 0
[  322.456156][ T7276] CPU: 1 UID: 0 PID: 7276 Comm: syz.4.326 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  322.456172][ T7276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  322.456180][ T7276] Call Trace:
[  322.456185][ T7276]  <TASK>
[  322.456191][ T7276]  dump_stack_lvl+0xe8/0x150
[  322.456212][ T7276]  should_fail_ex+0x46b/0x600
[  322.456237][ T7276]  should_failslab+0xa8/0x100
[  322.456255][ T7276]  kmem_cache_alloc_node_noprof+0x8f/0x6e0
[  322.456269][ T7276]  ? __alloc_skb+0x1d0/0x7d0
[  322.456283][ T7276]  ? lockdep_hardirqs_on+0x7a/0x110
[  322.456303][ T7276]  __alloc_skb+0x1d0/0x7d0
[  322.456320][ T7276]  netlink_sendmsg+0x5d4/0xb40
[  322.456343][ T7276]  ? __pfx_netlink_sendmsg+0x10/0x10
[  322.456360][ T7276]  ? unwind_get_return_address+0x4d/0x90
[  322.456380][ T7276]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  322.456396][ T7276]  ____sys_sendmsg+0x94c/0x9c0
[  322.456416][ T7276]  ? __pfx_____sys_sendmsg+0x10/0x10
[  322.456439][ T7276]  ? import_iovec+0x73/0xa0
[  322.456459][ T7276]  ___sys_sendmsg+0x2a5/0x360
[  322.456475][ T7276]  ? __lock_acquire+0x6b5/0x2cf0
[  322.456496][ T7276]  ? __pfx____sys_sendmsg+0x10/0x10
[  322.456533][ T7276]  ? __fget_files+0x2a/0x420
[  322.456544][ T7276]  ? __fget_files+0x3a6/0x420
[  322.456562][ T7276]  __x64_sys_sendmsg+0x1c3/0x2a0
[  322.456581][ T7276]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  322.456604][ T7276]  ? __pfx_ksys_write+0x10/0x10
[  322.456623][ T7276]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  322.456638][ T7276]  do_syscall_64+0x15f/0xf80
[  322.456654][ T7276]  ? trace_irq_disable+0x3b/0x140
[  322.456669][ T7276]  ? clear_bhb_loop+0x40/0x90
[  322.456684][ T7276]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  322.456697][ T7276] RIP: 0033:0x7f67a2c4ce59
[  322.456719][ T7276] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  322.456730][ T7276] RSP: 002b:00007f67a0e7d028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  322.456745][ T7276] RAX: ffffffffffffffda RBX: 00007f67a2ec6090 RCX: 00007f67a2c4ce59
[  322.456755][ T7276] RDX: 0000000000000000 RSI: 0000200000000180 RDI: 0000000000000003
[  322.456763][ T7276] RBP: 00007f67a0e7d090 R08: 0000000000000000 R09: 0000000000000000
[  322.456771][ T7276] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  322.456779][ T7276] R13: 00007f67a2ec6128 R14: 00007f67a2ec6090 R15: 00007ffebfc437c8
[  322.456798][ T7276]  </TASK>
[  322.693523][ T1336] ieee802154 phy0 wpan0: encryption failed: -22
[  322.693597][ T1336] ieee802154 phy1 wpan1: encryption failed: -22
[  322.830719][   T56] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  322.942775][   T56] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  322.977681][   T56] bond0 (unregistering): Released all slaves
[  323.032643][ T6677] kthread_run failed with err -4
[  323.441905][ T5606] Bluetooth: hci5: command tx timeout
[  324.690350][ T5792] usb 4-1: new high-speed USB device number 31 using dummy_hcd
[  324.868880][ T5792] usb 4-1: Using ep0 maxpacket: 8
[  324.874994][ T5792] usb 4-1: unable to get BOS descriptor or descriptor too short
[  324.877676][ T5792] usb 4-1: config 7 has an invalid interface number: 58 but max is 0
[  324.877707][ T5792] usb 4-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config
[  324.877729][ T5792] usb 4-1: config 7 has no interface number 0
[  324.883421][ T5792] usb 4-1: New USB device found, idVendor=1498, idProduct=a090, bcdDevice=48.0f
[  324.883454][ T5792] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  324.883478][ T5792] usb 4-1: Product: syz
[  324.883494][ T5792] usb 4-1: Manufacturer: syz
[  324.883510][ T5792] usb 4-1: SerialNumber: syz
[  325.377656][ T5792] usb 4-1: USB disconnect, device number 31
[  325.470652][   T56] hsr_slave_0: left promiscuous mode
[  325.510233][ T5606] Bluetooth: hci5: command tx timeout
[  325.564117][   T56] hsr_slave_1: left promiscuous mode
[  325.565237][   T56] batman_adv: batadv0: Removing interface: batadv_slave_0
[  325.597466][ T7310] FAULT_INJECTION: forcing a failure.
[  325.597466][ T7310] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  325.597505][ T7310] CPU: 1 UID: 0 PID: 7310 Comm: syz.4.336 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  325.597530][ T7310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  325.597544][ T7310] Call Trace:
[  325.597553][ T7310]  <TASK>
[  325.597562][ T7310]  dump_stack_lvl+0xe8/0x150
[  325.597596][ T7310]  should_fail_ex+0x46b/0x600
[  325.597639][ T7310]  _copy_to_user+0x31/0xb0
[  325.597678][ T7310]  simple_read_from_buffer+0xe1/0x170
[  325.597720][ T7310]  proc_fail_nth_read+0x1be/0x230
[  325.597760][ T7310]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  325.597799][ T7310]  ? rw_verify_area+0x2ac/0x4e0
[  325.597824][ T7310]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  325.597861][ T7310]  vfs_read+0x212/0xa80
[  325.597897][ T7310]  ? __pfx_vfs_read+0x10/0x10
[  325.597926][ T7310]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  325.597956][ T7310]  ? lockdep_hardirqs_on+0x7a/0x110
[  325.597992][ T7310]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  325.598019][ T7310]  ? mutex_lock_nested+0x152/0x1d0
[  325.598039][ T7310]  ? fdget_pos+0x252/0x320
[  325.598069][ T7310]  ksys_read+0x156/0x270
[  325.598097][ T7310]  ? __pfx_ksys_read+0x10/0x10
[  325.598132][ T7310]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  325.598157][ T7310]  do_syscall_64+0x15f/0xf80
[  325.598198][ T7310]  ? trace_irq_disable+0x3b/0x140
[  325.598225][ T7310]  ? clear_bhb_loop+0x40/0x90
[  325.598254][ T7310]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  325.598277][ T7310] RIP: 0033:0x7f67a2c0d68e
[  325.598297][ T7310] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  325.598316][ T7310] RSP: 002b:00007f67a0e9dfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  325.598340][ T7310] RAX: ffffffffffffffda RBX: 00007f67a0e9e6c0 RCX: 00007f67a2c0d68e
[  325.598357][ T7310] RDX: 000000000000000f RSI: 00007f67a0e9e0a0 RDI: 0000000000000004
[  325.598371][ T7310] RBP: 00007f67a0e9e090 R08: 0000000000000000 R09: 0000000000000000
[  325.598385][ T7310] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  325.598399][ T7310] R13: 00007f67a2ec6038 R14: 00007f67a2ec5fa0 R15: 00007ffebfc437c8
[  325.598433][ T7310]  </TASK>
[  325.842960][   T56] batman_adv: batadv0: Removing interface: batadv_slave_1
[  326.428829][ T7323] snd_virmidi snd_virmidi.0: control 0:0:0:syz0:0 is already present
[  327.569185][ T5608] Bluetooth: hci5: command tx timeout
[  327.575333][ T5708] IPVS: starting estimator thread 0...
[  328.068849][ T7334] IPVS: using max 6 ests per chain, 14400 per kthread
[  328.105051][ T5708] usb 1-1: new high-speed USB device number 24 using dummy_hcd
[  328.211788][ T5606] Bluetooth: hci2: command 0x0406 tx timeout
[  328.229761][   T56] team0 (unregistering): Port device team_slave_1 removed
[  328.248856][ T5708] usb 1-1: Using ep0 maxpacket: 8
[  328.282224][ T5708] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  328.282261][ T5708] usb 1-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  328.282276][ T5708] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  328.287205][ T5708] usb 1-1: config 0 descriptor??
[  328.334620][   T56] team0 (unregistering): Port device team_slave_0 removed
[  328.669381][ T5708] iowarrior 1-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  328.750126][ T5606] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  328.802378][ T5606] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  328.853028][ T5606] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  328.899436][ T5606] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  328.946096][ T5606] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  329.648762][ T5608] Bluetooth: hci5: command tx timeout
[  329.824275][ T7325] bridge1: trying to set multicast startup query interval above maximum, setting to 8640000 (86400000ms)
[  330.228237][   T37] audit: type=1326 audit(1778866604.665:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7350 comm="syz.4.344" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67a2c4ce59 code=0x7fc00000
[  330.245538][ T5792] usb 1-1: USB disconnect, device number 24
[  331.623163][ T5608] Bluetooth: hci1: command tx timeout
[  333.674793][ T5608] Bluetooth: hci1: command tx timeout
[  333.702400][ T7392] bridge0: port 1(bridge_slave_0) entered disabled state
[  333.708085][ T7392] bridge0: port 2(bridge_slave_1) entered disabled state
[  333.951361][ T7396] FAULT_INJECTION: forcing a failure.
[  333.951361][ T7396] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  333.951400][ T7396] CPU: 1 UID: 0 PID: 7396 Comm: syz.3.353 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  333.951425][ T7396] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  333.951438][ T7396] Call Trace:
[  333.951447][ T7396]  <TASK>
[  333.951456][ T7396]  dump_stack_lvl+0xe8/0x150
[  333.951487][ T7396]  should_fail_ex+0x46b/0x600
[  333.951528][ T7396]  _copy_from_user+0x2d/0xb0
[  333.951561][ T7396]  copy_clone_args_from_user+0x5dc/0x740
[  333.951611][ T7396]  ? __pfx_copy_clone_args_from_user+0x10/0x10
[  333.951664][ T7396]  __se_sys_clone3+0x142/0x360
[  333.951696][ T7396]  ? __pfx___se_sys_clone3+0x10/0x10
[  333.951758][ T7396]  ? __pfx_ksys_write+0x10/0x10
[  333.951793][ T7396]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  333.951818][ T7396]  do_syscall_64+0x15f/0xf80
[  333.951845][ T7396]  ? trace_irq_disable+0x3b/0x140
[  333.951872][ T7396]  ? clear_bhb_loop+0x40/0x90
[  333.951899][ T7396]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  333.951922][ T7396] RIP: 0033:0x7f65979ece59
[  333.951943][ T7396] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  333.951964][ T7396] RSP: 002b:00007f6595c45ef8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  333.951989][ T7396] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f65979ece59
[  333.952005][ T7396] RDX: 00007f6595c45f10 RSI: 0000000000000058 RDI: 00007f6595c45f10
[  333.952020][ T7396] RBP: 00007f6595c46090 R08: 0000000000000000 R09: 0000000000000058
[  333.952034][ T7396] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  333.952048][ T7396] R13: 00007f6597c66038 R14: 00007f6597c65fa0 R15: 00007ffc46b24f58
[  333.952084][ T7396]  </TASK>
[  335.039222][ T7420] snd_virmidi snd_virmidi.0: control 0:0:0:syz0:0 is already present
[  335.728703][ T5608] Bluetooth: hci1: command tx timeout
[  336.077416][ T7435] FAULT_INJECTION: forcing a failure.
[  336.077416][ T7435] name failslab, interval 1, probability 0, space 0, times 0
[  336.077455][ T7435] CPU: 0 UID: 0 PID: 7435 Comm: syz.3.362 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  336.077481][ T7435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  336.077494][ T7435] Call Trace:
[  336.077502][ T7435]  <TASK>
[  336.077512][ T7435]  dump_stack_lvl+0xe8/0x150
[  336.077545][ T7435]  should_fail_ex+0x46b/0x600
[  336.077587][ T7435]  should_failslab+0xa8/0x100
[  336.077616][ T7435]  __kmalloc_noprof+0xdf/0x7b0
[  336.077642][ T7435]  ? tomoyo_encode2+0x27f/0x530
[  336.077674][ T7435]  ? tomoyo_check_unix_address+0x167/0x7f0
[  336.077714][ T7435]  tomoyo_encode2+0x27f/0x530
[  336.077753][ T7435]  tomoyo_check_unix_address+0x3d9/0x7f0
[  336.077796][ T7435]  ? tomoyo_check_unix_address+0x167/0x7f0
[  336.077828][ T7435]  ? __pfx_tomoyo_check_unix_address+0x10/0x10
[  336.077878][ T7435]  ? __might_fault+0xaf/0x130
[  336.077916][ T7435]  tomoyo_socket_bind_permission+0x1ae/0x290
[  336.077969][ T7435]  security_socket_bind+0xc0/0x280
[  336.078007][ T7435]  __sys_bind+0x276/0x410
[  336.078035][ T7435]  ? __pfx___sys_bind+0x10/0x10
[  336.078074][ T7435]  ? __pfx_ksys_write+0x10/0x10
[  336.078126][ T7435]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  336.078151][ T7435]  __x64_sys_bind+0x7a/0x90
[  336.078177][ T7435]  do_syscall_64+0x15f/0xf80
[  336.078210][ T7435]  ? clear_bhb_loop+0x40/0x90
[  336.078239][ T7435]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  336.078261][ T7435] RIP: 0033:0x7f65979ece59
[  336.078284][ T7435] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  336.078310][ T7435] RSP: 002b:00007f6595c46028 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[  336.078337][ T7435] RAX: ffffffffffffffda RBX: 00007f6597c65fa0 RCX: 00007f65979ece59
[  336.078354][ T7435] RDX: 000000000000006e RSI: 0000200000000180 RDI: 0000000000000007
[  336.078369][ T7435] RBP: 00007f6595c46090 R08: 0000000000000000 R09: 0000000000000000
[  336.078383][ T7435] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  336.078397][ T7435] R13: 00007f6597c66038 R14: 00007f6597c65fa0 R15: 00007ffc46b24f58
[  336.078434][ T7435]  </TASK>
[  336.105864][ T7437] FAULT_INJECTION: forcing a failure.
[  336.105864][ T7437] name failslab, interval 1, probability 0, space 0, times 0
[  336.105898][ T7437] CPU: 0 UID: 0 PID: 7437 Comm: syz.0.363 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  336.105922][ T7437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  336.105934][ T7437] Call Trace:
[  336.105941][ T7437]  <TASK>
[  336.105950][ T7437]  dump_stack_lvl+0xe8/0x150
[  336.105979][ T7437]  should_fail_ex+0x46b/0x600
[  336.106017][ T7437]  should_failslab+0xa8/0x100
[  336.106043][ T7437]  __kmalloc_noprof+0xdf/0x7b0
[  336.106066][ T7437]  ? tomoyo_encode+0x28b/0x550
[  336.106101][ T7437]  tomoyo_encode+0x28b/0x550
[  336.106136][ T7437]  tomoyo_realpath_from_path+0x58d/0x5d0
[  336.106169][ T7437]  ? tomoyo_domain+0xd7/0x130
[  336.106194][ T7437]  ? tomoyo_path_number_perm+0x219/0x630
[  336.106221][ T7437]  tomoyo_path_number_perm+0x246/0x630
[  336.106249][ T7437]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  336.106274][ T7437]  ? __lock_acquire+0x6b5/0x2cf0
[  336.106314][ T7437]  ? do_raw_spin_lock+0x12b/0x2f0
[  336.106378][ T7437]  ? __fget_files+0x2a/0x420
[  336.106401][ T7437]  ? __fget_files+0x2a/0x420
[  336.106418][ T7437]  ? __fget_files+0x3a6/0x420
[  336.106435][ T7437]  ? __fget_files+0x2a/0x420
[  336.106457][ T7437]  security_file_ioctl+0xc3/0x2a0
[  336.106486][ T7437]  __se_sys_ioctl+0x47/0x170
[  336.106511][ T7437]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  336.106533][ T7437]  do_syscall_64+0x15f/0xf80
[  336.106557][ T7437]  ? trace_irq_disable+0x3b/0x140
[  336.106581][ T7437]  ? clear_bhb_loop+0x40/0x90
[  336.106606][ T7437]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  336.106625][ T7437] RIP: 0033:0x7f85377ace59
[  336.106644][ T7437] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  336.106661][ T7437] RSP: 002b:00007f85359fe028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  336.106684][ T7437] RAX: ffffffffffffffda RBX: 00007f8537a25fa0 RCX: 00007f85377ace59
[  336.106698][ T7437] RDX: 0000200000000900 RSI: 00000000000089f1 RDI: 0000000000000004
[  336.106711][ T7437] RBP: 00007f85359fe090 R08: 0000000000000000 R09: 0000000000000000
[  336.106723][ T7437] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  336.106736][ T7437] R13: 00007f8537a26038 R14: 00007f8537a25fa0 R15: 00007ffca5cac6f8
[  336.106768][ T7437]  </TASK>
[  336.106799][ T7437] ERROR: Out of memory at tomoyo_realpath_from_path.
[  337.733285][ T5929] usb 1-1: new high-speed USB device number 25 using dummy_hcd
[  337.808777][ T5608] Bluetooth: hci1: command tx timeout
[  337.888751][ T5929] usb 1-1: Using ep0 maxpacket: 8
[  337.890821][ T5929] usb 1-1: config 11 has an invalid interface number: 19 but max is 1
[  337.890853][ T5929] usb 1-1: config 11 has an invalid interface number: 81 but max is 1
[  337.890877][ T5929] usb 1-1: config 11 has no interface number 0
[  337.890887][ T5929] usb 1-1: config 11 has no interface number 1
[  337.891814][ T5929] usb 1-1: config 11 interface 19 altsetting 4 has an invalid descriptor for endpoint zero, skipping
[  337.891842][ T5929] usb 1-1: config 11 interface 81 altsetting 3 has a duplicate endpoint with address 0xD, skipping
[  337.891856][ T5929] usb 1-1: config 11 interface 81 altsetting 3 has a duplicate endpoint with address 0xD, skipping
[  337.891871][ T5929] usb 1-1: config 11 interface 81 altsetting 3 endpoint 0x5 has invalid maxpacket 512, setting to 64
[  337.891889][ T5929] usb 1-1: config 11 interface 81 altsetting 3 endpoint 0x4 has invalid maxpacket 512, setting to 64
[  337.891906][ T5929] usb 1-1: config 11 interface 81 altsetting 3 endpoint 0x7 has invalid maxpacket 1023, setting to 64
[  337.891922][ T5929] usb 1-1: config 11 interface 81 altsetting 3 has a duplicate endpoint with address 0x1, skipping
[  337.891937][ T5929] usb 1-1: config 11 interface 81 altsetting 3 endpoint 0xC has an invalid bInterval 72, changing to 10
[  337.891954][ T5929] usb 1-1: config 11 interface 81 altsetting 3 endpoint 0xC has invalid maxpacket 1608, setting to 1024
[  337.891970][ T5929] usb 1-1: config 11 interface 81 altsetting 3 has a duplicate endpoint with address 0xD, skipping
[  337.891984][ T5929] usb 1-1: config 11 interface 81 altsetting 3 endpoint 0x6 has invalid maxpacket 512, setting to 64
[  337.892005][ T5929] usb 1-1: config 11 interface 81 altsetting 3 has a duplicate endpoint with address 0xD, skipping
[  337.892018][ T5929] usb 1-1: config 11 interface 81 altsetting 3 has a duplicate endpoint with address 0x5, skipping
[  337.892032][ T5929] usb 1-1: config 11 interface 81 altsetting 3 has a duplicate endpoint with address 0x4, skipping
[  337.892046][ T5929] usb 1-1: config 11 interface 81 altsetting 3 has a duplicate endpoint with address 0x3, skipping
[  337.892059][ T5929] usb 1-1: config 11 interface 19 has no altsetting 0
[  337.892070][ T5929] usb 1-1: config 11 interface 81 has no altsetting 0
[  337.950851][ T5929] usb 1-1: New USB device found, idVendor=046d, idProduct=08c2, bcdDevice=56.ec
[  337.950883][ T5929] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  337.950903][ T5929] usb 1-1: Product: ခ
[  337.950918][ T5929] usb 1-1: Manufacturer: 、
[  337.950932][ T5929] usb 1-1: SerialNumber: 皲焷л影읳￴ࣩ䛤瑜韁隇⧚⩋䴫㷎럘㞹혓뵯옽⚤쨋譂ឺ콓ꛯ耳꨺䁐ꏟ⿖需倣鴢㦾涵笽㏻쒐艈껒┖쎍
[  338.741965][ T5929] uvcvideo 1-1:11.19: Found UVC 0.00 device ခ (046d:08c2)
[  338.742006][ T5929] uvcvideo 1-1:11.19: No valid video chain found.
[  338.895234][ T5929] usb 1-1: USB disconnect, device number 25
[  339.223351][ T7486] FAULT_INJECTION: forcing a failure.
[  339.223351][ T7486] name failslab, interval 1, probability 0, space 0, times 0
[  339.223390][ T7486] CPU: 1 UID: 0 PID: 7486 Comm: syz.4.376 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  339.223416][ T7486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  339.223429][ T7486] Call Trace:
[  339.223438][ T7486]  <TASK>
[  339.223463][ T7486]  dump_stack_lvl+0xe8/0x150
[  339.223496][ T7486]  should_fail_ex+0x46b/0x600
[  339.223539][ T7486]  should_failslab+0xa8/0x100
[  339.223575][ T7486]  __kmalloc_noprof+0xdf/0x7b0
[  339.223599][ T7486]  ? tomoyo_encode+0x28b/0x550
[  339.223640][ T7486]  tomoyo_encode+0x28b/0x550
[  339.223679][ T7486]  tomoyo_realpath_from_path+0x58d/0x5d0
[  339.223716][ T7486]  ? tomoyo_domain+0xd7/0x130
[  339.223746][ T7486]  ? tomoyo_path_number_perm+0x219/0x630
[  339.223776][ T7486]  tomoyo_path_number_perm+0x246/0x630
[  339.223810][ T7486]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  339.223838][ T7486]  ? __lock_acquire+0x6b5/0x2cf0
[  339.223871][ T7486]  ? do_raw_spin_lock+0x12b/0x2f0
[  339.223934][ T7486]  ? __fget_files+0x2a/0x420
[  339.223961][ T7486]  ? __fget_files+0x2a/0x420
[  339.223980][ T7486]  ? __fget_files+0x3a6/0x420
[  339.223999][ T7486]  ? __fget_files+0x2a/0x420
[  339.224024][ T7486]  security_file_ioctl+0xc3/0x2a0
[  339.224058][ T7486]  __se_sys_ioctl+0x47/0x170
[  339.224086][ T7486]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  339.224113][ T7486]  do_syscall_64+0x15f/0xf80
[  339.224140][ T7486]  ? trace_irq_disable+0x3b/0x140
[  339.224167][ T7486]  ? clear_bhb_loop+0x40/0x90
[  339.224194][ T7486]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  339.224215][ T7486] RIP: 0033:0x7f67a2c4ce59
[  339.224237][ T7486] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  339.224256][ T7486] RSP: 002b:00007f67a0e9e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  339.224280][ T7486] RAX: ffffffffffffffda RBX: 00007f67a2ec5fa0 RCX: 00007f67a2c4ce59
[  339.224297][ T7486] RDX: 0000200000000cc0 RSI: 00000000000089f8 RDI: 0000000000000003
[  339.224312][ T7486] RBP: 00007f67a0e9e090 R08: 0000000000000000 R09: 0000000000000000
[  339.224326][ T7486] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  339.224340][ T7486] R13: 00007f67a2ec6038 R14: 00007f67a2ec5fa0 R15: 00007ffebfc437c8
[  339.224377][ T7486]  </TASK>
[  339.227593][ T7486] ERROR: Out of memory at tomoyo_realpath_from_path.
[  340.164089][ T7259] bridge0: port 1(bridge_slave_0) entered blocking state
[  340.165460][ T7259] bridge0: port 1(bridge_slave_0) entered disabled state
[  340.165755][ T7259] bridge_slave_0: entered allmulticast mode
[  340.201089][ T7259] bridge_slave_0: entered promiscuous mode
[  340.272317][ T7259] bridge0: port 2(bridge_slave_1) entered blocking state
[  340.272444][ T7259] bridge0: port 2(bridge_slave_1) entered disabled state
[  340.272697][ T7259] bridge_slave_1: entered allmulticast mode
[  340.275609][ T7259] bridge_slave_1: entered promiscuous mode
[  340.651535][ T7508] tipc: Can't bind to reserved service type 1
[  340.879446][ T7259] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  340.907037][ T7512] netlink: 8 bytes leftover after parsing attributes in process `syz.0.383'.
[  341.000390][ T7259] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  341.022546][ T7512] bridge0: port 1(bridge_slave_0) entered disabled state
[  341.110772][ T7512] bridge_slave_0 (unregistering): left allmulticast mode
[  341.110798][ T7512] bridge_slave_0 (unregistering): left promiscuous mode
[  341.110864][ T7512] bridge0: port 1(bridge_slave_0) entered disabled state
[  341.138546][ T7515] netlink: 28 bytes leftover after parsing attributes in process `syz.0.383'.
[  341.264052][ T7337] bridge0: port 1(bridge_slave_0) entered blocking state
[  341.264203][ T7337] bridge0: port 1(bridge_slave_0) entered disabled state
[  341.264463][ T7337] bridge_slave_0: entered allmulticast mode
[  341.268518][ T7337] bridge_slave_0: entered promiscuous mode
[  341.737339][ T7337] bridge0: port 2(bridge_slave_1) entered blocking state
[  341.737482][ T7337] bridge0: port 2(bridge_slave_1) entered disabled state
[  341.737738][ T7337] bridge_slave_1: entered allmulticast mode
[  341.760906][ T7337] bridge_slave_1: entered promiscuous mode
[  341.774311][ T5608] Bluetooth: hci3: Malformed Event: 0x02
[  342.271648][ T7259] team0: Port device team_slave_0 added
[  342.368024][ T7259] team0: Port device team_slave_1 added
[  342.394308][ T7543] FAULT_INJECTION: forcing a failure.
[  342.394308][ T7543] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  342.394346][ T7543] CPU: 0 UID: 0 PID: 7543 Comm: syz.0.392 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  342.394371][ T7543] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  342.394385][ T7543] Call Trace:
[  342.394393][ T7543]  <TASK>
[  342.394402][ T7543]  dump_stack_lvl+0xe8/0x150
[  342.394461][ T7543]  should_fail_ex+0x46b/0x600
[  342.394552][ T7543]  _copy_to_user+0x31/0xb0
[  342.394583][ T7543]  simple_read_from_buffer+0xe1/0x170
[  342.394621][ T7543]  proc_fail_nth_read+0x1be/0x230
[  342.394661][ T7543]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  342.394699][ T7543]  ? rw_verify_area+0x2ac/0x4e0
[  342.394729][ T7543]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  342.394762][ T7543]  vfs_read+0x212/0xa80
[  342.394795][ T7543]  ? __pfx_vfs_read+0x10/0x10
[  342.394821][ T7543]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  342.394849][ T7543]  ? lockdep_hardirqs_on+0x7a/0x110
[  342.394877][ T7543]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  342.394905][ T7543]  ? mutex_lock_nested+0x152/0x1d0
[  342.394926][ T7543]  ? fdget_pos+0x252/0x320
[  342.394953][ T7543]  ksys_read+0x156/0x270
[  342.394981][ T7543]  ? __pfx_ksys_read+0x10/0x10
[  342.395013][ T7543]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.395037][ T7543]  do_syscall_64+0x15f/0xf80
[  342.395062][ T7543]  ? trace_irq_disable+0x3b/0x140
[  342.395089][ T7543]  ? clear_bhb_loop+0x40/0x90
[  342.395116][ T7543]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.395139][ T7543] RIP: 0033:0x7f853776d68e
[  342.395160][ T7543] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  342.395178][ T7543] RSP: 002b:00007f85359fdfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  342.395202][ T7543] RAX: ffffffffffffffda RBX: 00007f85359fe6c0 RCX: 00007f853776d68e
[  342.395219][ T7543] RDX: 000000000000000f RSI: 00007f85359fe0a0 RDI: 0000000000000004
[  342.395233][ T7543] RBP: 00007f85359fe090 R08: 0000000000000000 R09: 0000000000000000
[  342.395245][ T7543] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  342.395259][ T7543] R13: 00007f8537a26038 R14: 00007f8537a25fa0 R15: 00007ffca5cac6f8
[  342.395296][ T7543]  </TASK>
[  342.395878][ T7337] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  342.505717][ T7337] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  342.580823][ T7545] FAULT_INJECTION: forcing a failure.
[  342.580823][ T7545] name failslab, interval 1, probability 0, space 0, times 0
[  342.580860][ T7545] CPU: 0 UID: 0 PID: 7545 Comm: syz.0.393 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  342.580883][ T7545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  342.580895][ T7545] Call Trace:
[  342.580903][ T7545]  <TASK>
[  342.580912][ T7545]  dump_stack_lvl+0xe8/0x150
[  342.580943][ T7545]  should_fail_ex+0x46b/0x600
[  342.580989][ T7545]  should_failslab+0xa8/0x100
[  342.581016][ T7545]  __kmalloc_noprof+0xdf/0x7b0
[  342.581039][ T7545]  ? tomoyo_encode+0x28b/0x550
[  342.581075][ T7545]  tomoyo_encode+0x28b/0x550
[  342.581111][ T7545]  tomoyo_realpath_from_path+0x58d/0x5d0
[  342.581143][ T7545]  ? tomoyo_domain+0xd7/0x130
[  342.581170][ T7545]  ? tomoyo_path_number_perm+0x219/0x630
[  342.581196][ T7545]  tomoyo_path_number_perm+0x246/0x630
[  342.581225][ T7545]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  342.581250][ T7545]  ? __lock_acquire+0x6b5/0x2cf0
[  342.581288][ T7545]  ? do_raw_spin_lock+0x12b/0x2f0
[  342.581344][ T7545]  ? __fget_files+0x2a/0x420
[  342.581366][ T7545]  ? __fget_files+0x2a/0x420
[  342.581382][ T7545]  ? __fget_files+0x3a6/0x420
[  342.581400][ T7545]  ? __fget_files+0x2a/0x420
[  342.581422][ T7545]  security_file_ioctl+0xc3/0x2a0
[  342.581452][ T7545]  __se_sys_ioctl+0x47/0x170
[  342.581476][ T7545]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.581499][ T7545]  do_syscall_64+0x15f/0xf80
[  342.581524][ T7545]  ? trace_irq_disable+0x3b/0x140
[  342.581548][ T7545]  ? clear_bhb_loop+0x40/0x90
[  342.581572][ T7545]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.581593][ T7545] RIP: 0033:0x7f85377ace59
[  342.581613][ T7545] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  342.581630][ T7545] RSP: 002b:00007f85359fe028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  342.581652][ T7545] RAX: ffffffffffffffda RBX: 00007f8537a25fa0 RCX: 00007f85377ace59
[  342.581667][ T7545] RDX: 0000200000000000 RSI: 00000000c028aa03 RDI: 0000000000000003
[  342.581681][ T7545] RBP: 00007f85359fe090 R08: 0000000000000000 R09: 0000000000000000
[  342.581694][ T7545] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  342.581705][ T7545] R13: 00007f8537a26038 R14: 00007f8537a25fa0 R15: 00007ffca5cac6f8
[  342.581738][ T7545]  </TASK>
[  342.581762][ T7545] ERROR: Out of memory at tomoyo_realpath_from_path.
[  342.778894][ T5590] usb 4-1: new high-speed USB device number 32 using dummy_hcd
[  342.948853][ T5590] usb 4-1: device descriptor read/64, error -71
[  343.208818][ T5590] usb 4-1: new high-speed USB device number 33 using dummy_hcd
[  343.348927][ T5590] usb 4-1: device descriptor read/64, error -71
[  343.460585][ T5590] usb usb4-port1: attempt power cycle
[  343.664259][ T7259] batman_adv: batadv0: Adding interface: batadv_slave_0
[  343.664279][ T7259] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  343.664310][ T7259] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  343.949915][ T5590] usb 4-1: new high-speed USB device number 34 using dummy_hcd
[  344.704169][ T7259] batman_adv: batadv0: Adding interface: batadv_slave_1
[  344.704191][ T7259] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  344.704219][ T7259] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  344.722090][ T7337] team0: Port device team_slave_0 added
[  345.498191][ T5590] usb 4-1: device descriptor read/8, error -71
[  345.567123][ T7337] team0: Port device team_slave_1 added
[  345.953826][ T7570] FAULT_INJECTION: forcing a failure.
[  345.953826][ T7570] name failslab, interval 1, probability 0, space 0, times 0
[  345.953865][ T7570] CPU: 1 UID: 0 PID: 7570 Comm: syz.4.400 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  345.953891][ T7570] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  345.953905][ T7570] Call Trace:
[  345.953913][ T7570]  <TASK>
[  345.953922][ T7570]  dump_stack_lvl+0xe8/0x150
[  345.953955][ T7570]  should_fail_ex+0x46b/0x600
[  345.954005][ T7570]  should_failslab+0xa8/0x100
[  345.954032][ T7570]  __kmalloc_cache_noprof+0x84/0x690
[  345.954058][ T7570]  ? bpf_nf_link_attach+0x308/0x870
[  345.954087][ T7570]  bpf_nf_link_attach+0x308/0x870
[  345.954116][ T7570]  ? __pfx_bpf_nf_link_attach+0x10/0x10
[  345.954139][ T7570]  ? __fget_files+0x2a/0x420
[  345.954160][ T7570]  ? __fget_files+0x3a6/0x420
[  345.954178][ T7570]  ? __fget_files+0x2a/0x420
[  345.954202][ T7570]  ? bpf_prog_attach_check_attach_type+0x1ad/0x540
[  345.954240][ T7570]  link_create+0x3b4/0x850
[  345.954276][ T7570]  __sys_bpf+0x468/0x950
[  345.954302][ T7570]  ? __pfx___sys_bpf+0x10/0x10
[  345.954325][ T7570]  ? rt_mutex_slowunlock+0x1cb/0x300
[  345.954368][ T7570]  ? ksys_write+0x248/0x270
[  345.954396][ T7570]  ? __pfx_ksys_write+0x10/0x10
[  345.954436][ T7570]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  345.954461][ T7570]  __x64_sys_bpf+0x7c/0x90
[  345.954487][ T7570]  do_syscall_64+0x15f/0xf80
[  345.954516][ T7570]  ? trace_irq_disable+0x3b/0x140
[  345.954543][ T7570]  ? clear_bhb_loop+0x40/0x90
[  345.954571][ T7570]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  345.954593][ T7570] RIP: 0033:0x7f67a2c4ce59
[  345.954614][ T7570] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  345.954634][ T7570] RSP: 002b:00007f67a0e9e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  345.954659][ T7570] RAX: ffffffffffffffda RBX: 00007f67a2ec5fa0 RCX: 00007f67a2c4ce59
[  345.954676][ T7570] RDX: 0000000000000020 RSI: 0000200000002380 RDI: 000000000000001c
[  345.954690][ T7570] RBP: 00007f67a0e9e090 R08: 0000000000000000 R09: 0000000000000000
[  345.954705][ T7570] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  345.954719][ T7570] R13: 00007f67a2ec6038 R14: 00007f67a2ec5fa0 R15: 00007ffebfc437c8
[  345.954755][ T7570]  </TASK>
[  346.045747][ T7572] FAULT_INJECTION: forcing a failure.
[  346.045747][ T7572] name failslab, interval 1, probability 0, space 0, times 0
[  346.045783][ T7572] CPU: 0 UID: 0 PID: 7572 Comm: syz.3.401 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  346.045812][ T7572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  346.045824][ T7572] Call Trace:
[  346.045832][ T7572]  <TASK>
[  346.045840][ T7572]  dump_stack_lvl+0xe8/0x150
[  346.045870][ T7572]  should_fail_ex+0x46b/0x600
[  346.045907][ T7572]  should_failslab+0xa8/0x100
[  346.045933][ T7572]  __kmalloc_noprof+0xdf/0x7b0
[  346.045957][ T7572]  ? kfree+0x4d/0x6c0
[  346.045975][ T7572]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  346.046013][ T7572]  tomoyo_realpath_from_path+0xe3/0x5d0
[  346.046045][ T7572]  ? tomoyo_domain+0xd7/0x130
[  346.046070][ T7572]  ? tomoyo_path_number_perm+0x219/0x630
[  346.046097][ T7572]  tomoyo_path_number_perm+0x246/0x630
[  346.046126][ T7572]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  346.046159][ T7572]  ? __lock_acquire+0x6b5/0x2cf0
[  346.046190][ T7572]  ? do_raw_spin_lock+0x12b/0x2f0
[  346.046248][ T7572]  ? __fget_files+0x2a/0x420
[  346.046270][ T7572]  ? __fget_files+0x2a/0x420
[  346.046288][ T7572]  ? __fget_files+0x3a6/0x420
[  346.046305][ T7572]  ? __fget_files+0x2a/0x420
[  346.046328][ T7572]  security_file_ioctl+0xc3/0x2a0
[  346.046358][ T7572]  __se_sys_ioctl+0x47/0x170
[  346.046381][ T7572]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  346.046417][ T7572]  do_syscall_64+0x15f/0xf80
[  346.046441][ T7572]  ? trace_irq_disable+0x3b/0x140
[  346.046464][ T7572]  ? clear_bhb_loop+0x40/0x90
[  346.046502][ T7572]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  346.046521][ T7572] RIP: 0033:0x7f65979ece59
[  346.046540][ T7572] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  346.046557][ T7572] RSP: 002b:00007f6595c46028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  346.046580][ T7572] RAX: ffffffffffffffda RBX: 00007f6597c65fa0 RCX: 00007f65979ece59
[  346.046596][ T7572] RDX: 0000200000000180 RSI: 00000000c03864bc RDI: 000000000000000c
[  346.046609][ T7572] RBP: 00007f6595c46090 R08: 0000000000000000 R09: 0000000000000000
[  346.046621][ T7572] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  346.046633][ T7572] R13: 00007f6597c66038 R14: 00007f6597c65fa0 R15: 00007ffc46b24f58
[  346.046667][ T7572]  </TASK>
[  346.048463][ T7572] ERROR: Out of memory at tomoyo_realpath_from_path.
[  346.115151][ T7568] bond1: option miimon: invalid value (18446744073709551607)
[  346.115181][ T7568] bond1: option miimon: allowed values 0 - 2147483647
[  346.299877][ T7568] bond1 (unregistering): Released all slaves
[  346.347790][ T7576] snd_virmidi snd_virmidi.0: control 0:0:0:syz0:0 is already present
[  346.499991][ T7337] batman_adv: batadv0: Adding interface: batadv_slave_0
[  346.500011][ T7337] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  346.500042][ T7337] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  346.655759][ T7337] batman_adv: batadv0: Adding interface: batadv_slave_1
[  346.655779][ T7337] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  346.655808][ T7337] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  346.871032][ T7259] hsr_slave_0: entered promiscuous mode
[  346.872684][ T7259] hsr_slave_1: entered promiscuous mode
[  346.873734][ T7259] debugfs: 'hsr0' already exists in 'hsr'
[  346.873760][ T7259] Cannot create hsr debugfs directory
[  346.957617][ T7585] FAULT_INJECTION: forcing a failure.
[  346.957617][ T7585] name failslab, interval 1, probability 0, space 0, times 0
[  346.957654][ T7585] CPU: 0 UID: 0 PID: 7585 Comm: syz.4.406 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  346.957680][ T7585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  346.957692][ T7585] Call Trace:
[  346.957700][ T7585]  <TASK>
[  346.957710][ T7585]  dump_stack_lvl+0xe8/0x150
[  346.957741][ T7585]  should_fail_ex+0x46b/0x600
[  346.957782][ T7585]  should_failslab+0xa8/0x100
[  346.957812][ T7585]  __kmalloc_noprof+0xdf/0x7b0
[  346.957836][ T7585]  ? tomoyo_encode2+0x27f/0x530
[  346.957868][ T7585]  ? tomoyo_check_unix_address+0x167/0x7f0
[  346.957900][ T7585]  tomoyo_encode2+0x27f/0x530
[  346.957935][ T7585]  tomoyo_check_unix_address+0x3d9/0x7f0
[  346.957972][ T7585]  ? tomoyo_check_unix_address+0x167/0x7f0
[  346.958025][ T7585]  ? __pfx_tomoyo_check_unix_address+0x10/0x10
[  346.958064][ T7585]  ? __might_fault+0xaf/0x130
[  346.958091][ T7585]  ? __might_fault+0xaf/0x130
[  346.958120][ T7585]  tomoyo_socket_connect_permission+0x1b1/0x290
[  346.958164][ T7585]  security_socket_connect+0xc0/0x280
[  346.958193][ T7585]  __sys_connect+0x24f/0x450
[  346.958221][ T7585]  ? __pfx___sys_connect+0x10/0x10
[  346.958272][ T7585]  ? __pfx_ksys_write+0x10/0x10
[  346.958304][ T7585]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  346.958329][ T7585]  __x64_sys_connect+0x7a/0x90
[  346.958355][ T7585]  do_syscall_64+0x15f/0xf80
[  346.958383][ T7585]  ? trace_irq_disable+0x3b/0x140
[  346.958410][ T7585]  ? clear_bhb_loop+0x40/0x90
[  346.958437][ T7585]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  346.958460][ T7585] RIP: 0033:0x7f67a2c4ce59
[  346.958479][ T7585] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  346.958495][ T7585] RSP: 002b:00007f67a0e9e028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  346.958520][ T7585] RAX: ffffffffffffffda RBX: 00007f67a2ec5fa0 RCX: 00007f67a2c4ce59
[  346.958536][ T7585] RDX: 000000000000006e RSI: 00002000000000c0 RDI: 0000000000000004
[  346.958550][ T7585] RBP: 00007f67a0e9e090 R08: 0000000000000000 R09: 0000000000000000
[  346.958562][ T7585] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  346.958575][ T7585] R13: 00007f67a2ec6038 R14: 00007f67a2ec5fa0 R15: 00007ffebfc437c8
[  346.958614][ T7585]  </TASK>
[  347.319184][   T56] bridge_slave_1: left allmulticast mode
[  347.319226][   T56] bridge_slave_1: left promiscuous mode
[  347.319552][   T56] bridge0: port 2(bridge_slave_1) entered disabled state
[  347.410963][   T56] bridge_slave_0: left allmulticast mode
[  347.411004][   T56] bridge_slave_0: left promiscuous mode
[  347.411299][   T56] bridge0: port 1(bridge_slave_0) entered disabled state
[  347.862259][   T56] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  347.979978][   T56] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  348.041432][   T56] bond0 (unregistering): Released all slaves
[  348.328332][ T7337] hsr_slave_0: entered promiscuous mode
[  348.331978][ T7337] hsr_slave_1: entered promiscuous mode
[  348.346685][ T7337] debugfs: 'hsr0' already exists in 'hsr'
[  348.346716][ T7337] Cannot create hsr debugfs directory
[  349.128860][ T5792] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[  349.286430][ T5792] usb 5-1: unable to get BOS descriptor or descriptor too short
[  349.298505][ T5792] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 64, changing to 7
[  349.298831][   T56] hsr_slave_0: left promiscuous mode
[  349.325965][ T7620] FAULT_INJECTION: forcing a failure.
[  349.325965][ T7620] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  349.326000][ T7620] CPU: 0 UID: 0 PID: 7620 Comm: syz.0.416 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  349.326023][ T7620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  349.326034][ T7620] Call Trace:
[  349.326042][ T7620]  <TASK>
[  349.326050][ T7620]  dump_stack_lvl+0xe8/0x150
[  349.326079][ T7620]  should_fail_ex+0x46b/0x600
[  349.326117][ T7620]  _copy_from_user+0x2d/0xb0
[  349.326140][ T7620]  ___sys_recvmsg+0x175/0x590
[  349.326174][ T7620]  ? __pfx____sys_recvmsg+0x10/0x10
[  349.326205][ T7620]  ? __fget_files+0x2a/0x420
[  349.326253][ T7620]  do_recvmmsg+0x33a/0x800
[  349.326288][ T7620]  ? __pfx_do_recvmmsg+0x10/0x10
[  349.326326][ T7620]  ? rt_mutex_slowunlock+0x1cb/0x300
[  349.326363][ T7620]  __x64_sys_recvmmsg+0x198/0x250
[  349.326392][ T7620]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  349.326428][ T7620]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  349.326451][ T7620]  do_syscall_64+0x15f/0xf80
[  349.326483][ T7620]  ? trace_irq_disable+0x3b/0x140
[  349.326507][ T7620]  ? clear_bhb_loop+0x40/0x90
[  349.326532][ T7620]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  349.326551][ T7620] RIP: 0033:0x7f85377ace59
[  349.326571][ T7620] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  349.326589][ T7620] RSP: 002b:00007f85359fe028 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  349.326611][ T7620] RAX: ffffffffffffffda RBX: 00007f8537a25fa0 RCX: 00007f85377ace59
[  349.326627][ T7620] RDX: 000000000000041f RSI: 00002000000003c0 RDI: 0000000000000003
[  349.326640][ T7620] RBP: 00007f85359fe090 R08: 0000000000000000 R09: 0000000000000000
[  349.326659][ T7620] R10: 0000000000000040 R11: 0000000000000246 R12: 0000000000000001
[  349.326672][ T7620] R13: 00007f8537a26038 R14: 00007f8537a25fa0 R15: 00007ffca5cac6f8
[  349.326703][ T7620]  </TASK>
[  349.554635][ T5792] usb 5-1: New USB device found, idVendor=133e, idProduct=0815, bcdDevice= 0.40
[  349.554670][ T5792] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  349.554691][ T5792] usb 5-1: Product: syz
[  349.554706][ T5792] usb 5-1: Manufacturer: syz
[  349.554721][ T5792] usb 5-1: SerialNumber: syz
[  349.560266][   T56] hsr_slave_1: left promiscuous mode
[  349.565821][   T56] batman_adv: batadv0: Removing interface: batadv_slave_0
[  349.605581][   T56] batman_adv: batadv0: Removing interface: batadv_slave_1
[  349.869179][ T7614] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  349.873058][ T7614] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  351.250974][   T56] team0 (unregistering): Port device team_slave_1 removed
[  351.289621][   T56] team0 (unregistering): Port device team_slave_0 removed
[  351.734615][ T5792] snd-usb-audio 5-1:1.0: probe with driver snd-usb-audio failed with error -22
[  351.810652][ T5792] usb 5-1: USB disconnect, device number 33
[  351.903547][ T7634] FAULT_INJECTION: forcing a failure.
[  351.903547][ T7634] name failslab, interval 1, probability 0, space 0, times 0
[  351.903582][ T7634] CPU: 1 UID: 0 PID: 7634 Comm: syz.3.420 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  351.903610][ T7634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  351.903623][ T7634] Call Trace:
[  351.903631][ T7634]  <TASK>
[  351.903639][ T7634]  dump_stack_lvl+0xe8/0x150
[  351.903667][ T7634]  should_fail_ex+0x46b/0x600
[  351.903701][ T7634]  should_failslab+0xa8/0x100
[  351.903723][ T7634]  __kmalloc_noprof+0xdf/0x7b0
[  351.903743][ T7634]  ? bpf_test_init+0x9f/0x150
[  351.903770][ T7634]  bpf_test_init+0x9f/0x150
[  351.903794][ T7634]  bpf_prog_test_run_xdp+0x529/0x1160
[  351.903832][ T7634]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  351.903859][ T7634]  ? __fget_files+0x2a/0x420
[  351.903880][ T7634]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  351.903903][ T7634]  bpf_prog_test_run+0x2cd/0x340
[  351.903929][ T7634]  __sys_bpf+0x643/0x950
[  351.903953][ T7634]  ? __pfx___sys_bpf+0x10/0x10
[  351.903971][ T7634]  ? rt_mutex_slowunlock+0x1cb/0x300
[  351.904006][ T7634]  ? ksys_write+0x248/0x270
[  351.904029][ T7634]  ? __pfx_ksys_write+0x10/0x10
[  351.904056][ T7634]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  351.904075][ T7634]  __x64_sys_bpf+0x7c/0x90
[  351.904095][ T7634]  do_syscall_64+0x15f/0xf80
[  351.904118][ T7634]  ? trace_irq_disable+0x3b/0x140
[  351.904139][ T7634]  ? clear_bhb_loop+0x40/0x90
[  351.904161][ T7634]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  351.904178][ T7634] RIP: 0033:0x7f65979ece59
[  351.904196][ T7634] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  351.904213][ T7634] RSP: 002b:00007f6595c46028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  351.904235][ T7634] RAX: ffffffffffffffda RBX: 00007f6597c65fa0 RCX: 00007f65979ece59
[  351.904248][ T7634] RDX: 0000000000000050 RSI: 0000200000000240 RDI: 000000000000000a
[  351.904259][ T7634] RBP: 00007f6595c46090 R08: 0000000000000000 R09: 0000000000000000
[  351.904269][ T7634] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  351.904280][ T7634] R13: 00007f6597c66038 R14: 00007f6597c65fa0 R15: 00007ffc46b24f58
[  351.904309][ T7634]  </TASK>
[  351.906520][   T37] audit: type=1326 audit(1778866626.345:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7633 comm="syz.4.421" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67a2c4ce59 code=0x7ffc0000
[  351.939046][   T37] audit: type=1326 audit(1778866626.345:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7633 comm="syz.4.421" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67a2c4ce59 code=0x7ffc0000
[  351.988834][   T37] audit: type=1326 audit(1778866626.415:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7633 comm="syz.4.421" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f67a2c4ce59 code=0x7ffc0000
[  351.997636][   T37] audit: type=1326 audit(1778866626.435:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7633 comm="syz.4.421" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67a2c4ce59 code=0x7ffc0000
[  351.999052][   T37] audit: type=1326 audit(1778866626.445:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7633 comm="syz.4.421" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67a2c4ce59 code=0x7ffc0000
[  352.003158][   T37] audit: type=1326 audit(1778866626.445:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7633 comm="syz.4.421" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f67a2c4ce59 code=0x7ffc0000
[  352.003212][   T37] audit: type=1326 audit(1778866626.445:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7633 comm="syz.4.421" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67a2c4ce59 code=0x7ffc0000
[  352.003255][   T37] audit: type=1326 audit(1778866626.445:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7633 comm="syz.4.421" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67a2c4ce59 code=0x7ffc0000
[  352.015125][   T37] audit: type=1326 audit(1778866626.455:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7633 comm="syz.4.421" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f67a2c4ce59 code=0x7ffc0000
[  352.018102][   T37] audit: type=1326 audit(1778866626.455:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7633 comm="syz.4.421" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67a2c4ce59 code=0x7ffc0000
[  352.744923][  T822] usb 5-1: new high-speed USB device number 34 using dummy_hcd
[  352.920270][  T822] usb 5-1: Using ep0 maxpacket: 8
[  352.926518][  T822] usb 5-1: config 11 has an invalid interface number: 19 but max is 1
[  352.926552][  T822] usb 5-1: config 11 has an invalid interface number: 81 but max is 1
[  352.926577][  T822] usb 5-1: config 11 has no interface number 0
[  352.926595][  T822] usb 5-1: config 11 has no interface number 1
[  352.926665][  T822] usb 5-1: config 11 interface 19 altsetting 4 has an invalid descriptor for endpoint zero, skipping
[  352.926706][  T822] usb 5-1: config 11 interface 81 altsetting 3 has a duplicate endpoint with address 0xD, skipping
[  352.926732][  T822] usb 5-1: config 11 interface 81 altsetting 3 has a duplicate endpoint with address 0xD, skipping
[  352.926757][  T822] usb 5-1: config 11 interface 81 altsetting 3 endpoint 0x5 has invalid maxpacket 512, setting to 64
[  352.926787][  T822] usb 5-1: config 11 interface 81 altsetting 3 endpoint 0x4 has invalid maxpacket 512, setting to 64
[  352.926815][  T822] usb 5-1: config 11 interface 81 altsetting 3 endpoint 0x7 has invalid maxpacket 1023, setting to 64
[  352.926845][  T822] usb 5-1: config 11 interface 81 altsetting 3 has a duplicate endpoint with address 0x1, skipping
[  352.926869][  T822] usb 5-1: config 11 interface 81 altsetting 3 endpoint 0xC has an invalid bInterval 72, changing to 10
[  352.926898][  T822] usb 5-1: config 11 interface 81 altsetting 3 endpoint 0xC has invalid maxpacket 1608, setting to 1024
[  352.926928][  T822] usb 5-1: config 11 interface 81 altsetting 3 has a duplicate endpoint with address 0xD, skipping
[  352.926953][  T822] usb 5-1: config 11 interface 81 altsetting 3 endpoint 0x6 has invalid maxpacket 512, setting to 64
[  352.926983][  T822] usb 5-1: config 11 interface 81 altsetting 3 has a duplicate endpoint with address 0xD, skipping
[  352.927008][  T822] usb 5-1: config 11 interface 81 altsetting 3 has a duplicate endpoint with address 0x5, skipping
[  352.927034][  T822] usb 5-1: config 11 interface 81 altsetting 3 has a duplicate endpoint with address 0x4, skipping
[  352.927058][  T822] usb 5-1: config 11 interface 81 altsetting 3 has a duplicate endpoint with address 0x3, skipping
[  352.927083][  T822] usb 5-1: config 11 interface 19 has no altsetting 0
[  352.927102][  T822] usb 5-1: config 11 interface 81 has no altsetting 0
[  352.979616][  T822] usb 5-1: New USB device found, idVendor=046d, idProduct=08c2, bcdDevice=56.ec
[  352.979651][  T822] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  352.979672][  T822] usb 5-1: Product: ခ
[  352.979687][  T822] usb 5-1: Manufacturer: 、
[  352.979702][  T822] usb 5-1: SerialNumber: 皲焷л影읳￴ࣩ䛤瑜韁隇⧚⩋䴫㷎럘㞹혓뵯옽⚤쨋譂ឺ콓ꛯ耳꨺䁐ꏟ⿖需倣鴢㦾涵笽㏻쒐艈껒┖쎍
[  353.635394][ T7660] netlink: 28 bytes leftover after parsing attributes in process `syz.3.427'.
[  353.635434][ T7660] netlink: 28 bytes leftover after parsing attributes in process `syz.3.427'.
[  353.646684][ T7660] syz_tun: entered promiscuous mode
[  353.648789][ T7660] gretap0: entered promiscuous mode
[  353.650996][ T7660] hsr1: Slave B (gretap0) is not up; please bring it up to get a fully working HSR network
[  354.328227][  T822] uvcvideo 5-1:11.19: Found UVC 0.00 device ခ (046d:08c2)
[  354.328269][  T822] uvcvideo 5-1:11.19: No valid video chain found.
[  354.599814][  T822] usb 5-1: USB disconnect, device number 34
[  355.004194][ T5261] 8021q: adding VLAN 0 to HW filter on device eth9
[  355.145367][ T7679] binder: 7678:7679 ioctl 4018620d 0 returned -22
[  355.458919][ T5792] usb 4-1: new full-speed USB device number 36 using dummy_hcd
[  355.612402][ T5792] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  355.612436][ T5792] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 2
[  355.612496][ T5792] usb 4-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  355.612524][ T5792] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  355.662088][ T5792] usb 4-1: config 0 descriptor??
[  355.679801][ T5792] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  355.696922][ T5792] dvb-usb: bulk message failed: -22 (3/0)
[  355.719262][ T5792] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  355.726137][ T5792] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  355.726252][ T5792] usb 4-1: media controller created
[  355.776213][ T5792] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  355.792933][   T56] bridge_slave_1: left allmulticast mode
[  355.792977][   T56] bridge_slave_1: left promiscuous mode
[  355.793319][   T56] bridge0: port 2(bridge_slave_1) entered disabled state
[  355.918929][   T56] bridge_slave_0: left allmulticast mode
[  355.918969][   T56] bridge_slave_0: left promiscuous mode
[  355.919264][   T56] bridge0: port 1(bridge_slave_0) entered disabled state
[  355.922826][ T5792] dvb-usb: bulk message failed: -22 (6/0)
[  355.922960][ T5792] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  355.977715][ T5792] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.3/usb4/4-1/input/input5
[  356.143271][ T5792] dvb-usb: schedule remote query interval to 150 msecs.
[  356.143302][ T5792] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  356.463000][ T5590] dvb-usb: bulk message failed: -22 (1/0)
[  356.463067][ T5590] dvb-usb: error while querying for an remote control event.
[  356.622670][ T5590] dvb-usb: bulk message failed: -22 (1/0)
[  356.622709][ T5590] dvb-usb: error while querying for an remote control event.
[  356.623956][  T822] usb 4-1: USB disconnect, device number 36
[  357.435745][   T56] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  357.477717][  T822] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  357.592765][   T56] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  357.921451][   T56] bond0 (unregistering): Released all slaves
[  358.297600][ T7726] FAULT_INJECTION: forcing a failure.
[  358.297600][ T7726] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  358.297640][ T7726] CPU: 1 UID: 0 PID: 7726 Comm: syz.3.442 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  358.297667][ T7726] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  358.297681][ T7726] Call Trace:
[  358.297690][ T7726]  <TASK>
[  358.297699][ T7726]  dump_stack_lvl+0xe8/0x150
[  358.297732][ T7726]  should_fail_ex+0x46b/0x600
[  358.297775][ T7726]  _copy_from_user+0x2d/0xb0
[  358.297809][ T7726]  get_timespec64+0x96/0x1b0
[  358.297841][ T7726]  ? __pfx_get_timespec64+0x10/0x10
[  358.297885][ T7726]  __x64_sys_recvmmsg+0x14b/0x250
[  358.297942][ T7726]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  358.297984][ T7726]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  358.298008][ T7726]  do_syscall_64+0x15f/0xf80
[  358.298038][ T7726]  ? trace_irq_disable+0x3b/0x140
[  358.298065][ T7726]  ? clear_bhb_loop+0x40/0x90
[  358.298094][ T7726]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  358.298117][ T7726] RIP: 0033:0x7f65979ece59
[  358.298138][ T7726] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  358.298158][ T7726] RSP: 002b:00007f6595c25028 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  358.298183][ T7726] RAX: ffffffffffffffda RBX: 00007f6597c66090 RCX: 00007f65979ece59
[  358.298199][ T7726] RDX: 04000000000003b4 RSI: 00002000000037c0 RDI: 0000000000000003
[  358.298216][ T7726] RBP: 00007f6595c25090 R08: 0000200000003700 R09: 0000000000000000
[  358.298230][ T7726] R10: 0000000000002000 R11: 0000000000000246 R12: 0000000000000001
[  358.298245][ T7726] R13: 00007f6597c66128 R14: 00007f6597c66090 R15: 00007ffc46b24f58
[  358.298281][ T7726]  </TASK>
[  358.761329][ T7723] FAULT_INJECTION: forcing a failure.
[  358.761329][ T7723] name failslab, interval 1, probability 0, space 0, times 0
[  358.761377][ T7723] CPU: 0 UID: 0 PID: 7723 Comm: syz.4.441 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  358.761403][ T7723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  358.761415][ T7723] Call Trace:
[  358.761423][ T7723]  <TASK>
[  358.761432][ T7723]  dump_stack_lvl+0xe8/0x150
[  358.761466][ T7723]  should_fail_ex+0x46b/0x600
[  358.761507][ T7723]  should_failslab+0xa8/0x100
[  358.761536][ T7723]  __kmalloc_noprof+0xdf/0x7b0
[  358.761560][ T7723]  ? sock_kmalloc+0xd6/0x160
[  358.761595][ T7723]  sock_kmalloc+0xd6/0x160
[  358.761627][ T7723]  __ip_mc_join_group+0x372/0x500
[  358.761671][ T7723]  do_ip_setsockopt+0x22e1/0x2ea0
[  358.761710][ T7723]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  358.761742][ T7723]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  358.761772][ T7723]  ? __fget_files+0x2a/0x420
[  358.761805][ T7723]  ? __fget_files+0x2a/0x420
[  358.761831][ T7723]  ip_setsockopt+0x66/0x110
[  358.761860][ T7723]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  358.761885][ T7723]  do_sock_setsockopt+0x17c/0x1b0
[  358.761926][ T7723]  __x64_sys_setsockopt+0x143/0x1b0
[  358.761957][ T7723]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  358.761981][ T7723]  do_syscall_64+0x15f/0xf80
[  358.762010][ T7723]  ? trace_irq_disable+0x3b/0x140
[  358.762036][ T7723]  ? clear_bhb_loop+0x40/0x90
[  358.762064][ T7723]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  358.762085][ T7723] RIP: 0033:0x7f67a2c4ce59
[  358.762106][ T7723] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  358.762125][ T7723] RSP: 002b:00007f67a0e7d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  358.762149][ T7723] RAX: ffffffffffffffda RBX: 00007f67a2ec6090 RCX: 00007f67a2c4ce59
[  358.762166][ T7723] RDX: 0000000000000023 RSI: 0000000000000000 RDI: 0000000000000006
[  358.762180][ T7723] RBP: 00007f67a0e7d090 R08: 0000000000000008 R09: 0000000000000000
[  358.762194][ T7723] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[  358.762208][ T7723] R13: 00007f67a2ec6128 R14: 00007f67a2ec6090 R15: 00007ffebfc437c8
[  358.762243][ T7723]  </TASK>
[  359.056962][ T7735] FAULT_INJECTION: forcing a failure.
[  359.056962][ T7735] name failslab, interval 1, probability 0, space 0, times 0
[  359.056991][ T7735] CPU: 0 UID: 0 PID: 7735 Comm: syz.0.446 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  359.057011][ T7735] Tainted: [L]=SOFTLOCKUP
[  359.057016][ T7735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  359.057025][ T7735] Call Trace:
[  359.057030][ T7735]  <TASK>
[  359.057036][ T7735]  dump_stack_lvl+0xe8/0x150
[  359.057058][ T7735]  should_fail_ex+0x46b/0x600
[  359.057082][ T7735]  should_failslab+0xa8/0x100
[  359.057099][ T7735]  kmem_cache_alloc_node_noprof+0x8f/0x6e0
[  359.057113][ T7735]  ? __alloc_skb+0x1d0/0x7d0
[  359.057128][ T7735]  ? __local_bh_enable_ip+0x1c2/0x2b0
[  359.057152][ T7735]  __alloc_skb+0x1d0/0x7d0
[  359.057170][ T7735]  netlink_sendmsg+0x5d4/0xb40
[  359.057192][ T7735]  ? __pfx_netlink_sendmsg+0x10/0x10
[  359.057209][ T7735]  ? unwind_get_return_address+0x4d/0x90
[  359.057229][ T7735]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  359.057245][ T7735]  ____sys_sendmsg+0x94c/0x9c0
[  359.057266][ T7735]  ? __pfx_____sys_sendmsg+0x10/0x10
[  359.057288][ T7735]  ? import_iovec+0x73/0xa0
[  359.057305][ T7735]  ___sys_sendmsg+0x2a5/0x360
[  359.057321][ T7735]  ? __lock_acquire+0x6b5/0x2cf0
[  359.057341][ T7735]  ? __pfx____sys_sendmsg+0x10/0x10
[  359.057379][ T7735]  ? __fget_files+0x2a/0x420
[  359.057390][ T7735]  ? __fget_files+0x3a6/0x420
[  359.057416][ T7735]  __x64_sys_sendmsg+0x1c3/0x2a0
[  359.057442][ T7735]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  359.057465][ T7735]  ? __pfx_ksys_write+0x10/0x10
[  359.057485][ T7735]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.057499][ T7735]  do_syscall_64+0x15f/0xf80
[  359.057516][ T7735]  ? trace_irq_disable+0x3b/0x140
[  359.057531][ T7735]  ? clear_bhb_loop+0x40/0x90
[  359.057553][ T7735]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.057568][ T7735] RIP: 0033:0x7f85377ace59
[  359.057582][ T7735] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  359.057593][ T7735] RSP: 002b:00007f85359fe028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  359.057608][ T7735] RAX: ffffffffffffffda RBX: 00007f8537a25fa0 RCX: 00007f85377ace59
[  359.057618][ T7735] RDX: 0000000000008040 RSI: 0000200000000000 RDI: 0000000000000003
[  359.057631][ T7735] RBP: 00007f85359fe090 R08: 0000000000000000 R09: 0000000000000000
[  359.057639][ T7735] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  359.057647][ T7735] R13: 00007f8537a26038 R14: 00007f8537a25fa0 R15: 00007ffca5cac6f8
[  359.057667][ T7735]  </TASK>
[  359.256594][ T7739] netlink: 47 bytes leftover after parsing attributes in process `syz.0.448'.
[  359.256621][ T7739] netlink: 20 bytes leftover after parsing attributes in process `syz.0.448'.
[  359.428850][   T56] hsr_slave_0: left promiscuous mode
[  359.468854][   T56] hsr_slave_1: left promiscuous mode
[  359.469852][   T56] batman_adv: batadv0: Removing interface: batadv_slave_0
[  359.519512][   T56] batman_adv: batadv0: Removing interface: batadv_slave_1
[  359.989733][   T56] team0 (unregistering): Port device team_slave_1 removed
[  360.040519][   T56] team0 (unregistering): Port device team_slave_0 removed
[  360.546627][ T7753] binder: 7752:7753 ioctl 4018620d 0 returned -22
[  361.380688][ T7762] FAULT_INJECTION: forcing a failure.
[  361.380688][ T7762] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  361.380725][ T7762] CPU: 0 UID: 0 PID: 7762 Comm: syz.3.454 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  361.380750][ T7762] Tainted: [L]=SOFTLOCKUP
[  361.380756][ T7762] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  361.380767][ T7762] Call Trace:
[  361.380774][ T7762]  <TASK>
[  361.380782][ T7762]  dump_stack_lvl+0xe8/0x150
[  361.380815][ T7762]  should_fail_ex+0x46b/0x600
[  361.380849][ T7762]  _copy_from_user+0x2d/0xb0
[  361.380871][ T7762]  ___sys_sendmsg+0x1c6/0x360
[  361.380897][ T7762]  ? __lock_acquire+0x6b5/0x2cf0
[  361.380925][ T7762]  ? __pfx____sys_sendmsg+0x10/0x10
[  361.380980][ T7762]  ? __fget_files+0x2a/0x420
[  361.380996][ T7762]  ? __fget_files+0x3a6/0x420
[  361.381022][ T7762]  __x64_sys_sendmsg+0x1c3/0x2a0
[  361.381048][ T7762]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  361.381081][ T7762]  ? __pfx_ksys_write+0x10/0x10
[  361.381110][ T7762]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  361.381131][ T7762]  do_syscall_64+0x15f/0xf80
[  361.381154][ T7762]  ? trace_irq_disable+0x3b/0x140
[  361.381176][ T7762]  ? clear_bhb_loop+0x40/0x90
[  361.381199][ T7762]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  361.381217][ T7762] RIP: 0033:0x7f65979ece59
[  361.381236][ T7762] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  361.381252][ T7762] RSP: 002b:00007f6595c46028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  361.381272][ T7762] RAX: ffffffffffffffda RBX: 00007f6597c65fa0 RCX: 00007f65979ece59
[  361.381285][ T7762] RDX: 0000000024000840 RSI: 0000200000009b40 RDI: 0000000000000003
[  361.381296][ T7762] RBP: 00007f6595c46090 R08: 0000000000000000 R09: 0000000000000000
[  361.381307][ T7762] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  361.381317][ T7762] R13: 00007f6597c66038 R14: 00007f6597c65fa0 R15: 00007ffc46b24f58
[  361.381360][ T7762]  </TASK>
[  361.779559][ T7767] FAULT_INJECTION: forcing a failure.
[  361.779559][ T7767] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  361.779604][ T7767] CPU: 1 UID: 0 PID: 7767 Comm: syz.0.455 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  361.779634][ T7767] Tainted: [L]=SOFTLOCKUP
[  361.779642][ T7767] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  361.779655][ T7767] Call Trace:
[  361.779664][ T7767]  <TASK>
[  361.779673][ T7767]  dump_stack_lvl+0xe8/0x150
[  361.779707][ T7767]  should_fail_ex+0x46b/0x600
[  361.779751][ T7767]  prepare_alloc_pages+0x22a/0x6b0
[  361.779790][ T7767]  __alloc_frozen_pages_noprof+0x12f/0x380
[  361.779824][ T7767]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  361.779859][ T7767]  ? __pfx_policy_nodemask+0x10/0x10
[  361.779884][ T7767]  ? filemap_get_entry+0x378/0x3f0
[  361.779906][ T7767]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  361.779936][ T7767]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  361.779960][ T7767]  ? __pfx_filemap_get_entry+0x10/0x10
[  361.779988][ T7767]  alloc_pages_mpol+0xd1/0x380
[  361.780026][ T7767]  folio_alloc_mpol_noprof+0x3b/0x1e0
[  361.780058][ T7767]  shmem_get_folio_gfp+0x644/0x1a80
[  361.780113][ T7767]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  361.780152][ T7767]  shmem_fault+0x170/0x380
[  361.780182][ T7767]  ? do_pte_missing+0x12b5/0x2950
[  361.780211][ T7767]  __do_fault+0x138/0x2a0
[  361.780236][ T7767]  ? do_pte_missing+0x12b5/0x2950
[  361.780263][ T7767]  do_pte_missing+0x179c/0x2950
[  361.780297][ T7767]  ? handle_mm_fault+0xe7/0x13c0
[  361.780325][ T7767]  handle_mm_fault+0xd09/0x13c0
[  361.780356][ T7767]  ? handle_mm_fault+0xe7/0x13c0
[  361.780392][ T7767]  ? __pfx_handle_mm_fault+0x10/0x10
[  361.780438][ T7767]  ? lock_mm_and_find_vma+0xa7/0x340
[  361.780468][ T7767]  do_user_addr_fault+0x75b/0x1340
[  361.780513][ T7767]  exc_page_fault+0x6a/0xc0
[  361.780543][ T7767]  asm_exc_page_fault+0x26/0x30
[  361.780564][ T7767] RIP: 0010:iovec_from_user+0xfe/0x250
[  361.780590][ T7767] Code: 87 24 fd 4d 39 e5 0f 82 34 01 00 00 49 39 ed 0f 87 2b 01 00 00 48 89 5c 24 08 0f 01 cb 0f ae e8 49 ff cf 48 8b 1c 24 49 89 dd <49> 8b 6c 24 08 4d 8b 34 24 31 ff 48 89 ee e8 8f 89 24 fd 48 85 ed
[  361.780609][ T7767] RSP: 0018:ffffc90003a07b08 EFLAGS: 00050286
[  361.780630][ T7767] RAX: ffffffff849ff58f RBX: ffff888024a2a6c0 RCX: ffff888031868000
[  361.780646][ T7767] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  361.780660][ T7767] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  361.780673][ T7767] R10: dffffc0000000000 R11: fffffbfff1f11f1f R12: 0000200000003000
[  361.780690][ T7767] R13: ffff888024a2a6c0 R14: 0000000000000000 R15: 000000000000008e
[  361.780711][ T7767]  ? iovec_from_user+0x16f/0x250
[  361.780743][ T7767]  ? iovec_from_user+0x16f/0x250
[  361.780770][ T7767]  __import_iovec+0x163/0x7e0
[  361.780794][ T7767]  ? __lock_acquire+0x6b5/0x2cf0
[  361.780835][ T7767]  import_iovec+0x73/0xa0
[  361.780866][ T7767]  vfs_readv+0x1cc/0x850
[  361.780908][ T7767]  ? __pfx_vfs_readv+0x10/0x10
[  361.780956][ T7767]  ? __fget_files+0x2a/0x420
[  361.780983][ T7767]  ? __fget_files+0x3a6/0x420
[  361.781002][ T7767]  ? __fget_files+0x2a/0x420
[  361.781033][ T7767]  do_readv+0x15a/0x2e0
[  361.781067][ T7767]  ? __pfx_do_readv+0x10/0x10
[  361.781107][ T7767]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  361.781131][ T7767]  do_syscall_64+0x15f/0xf80
[  361.781158][ T7767]  ? trace_irq_disable+0x3b/0x140
[  361.781186][ T7767]  ? clear_bhb_loop+0x40/0x90
[  361.781213][ T7767]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  361.781236][ T7767] RIP: 0033:0x7f85377ace59
[  361.781257][ T7767] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  361.781275][ T7767] RSP: 002b:00007f85359fe028 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[  361.781298][ T7767] RAX: ffffffffffffffda RBX: 00007f8537a25fa0 RCX: 00007f85377ace59
[  361.781315][ T7767] RDX: 10000000000000fb RSI: 0000200000002940 RDI: 0000000000000004
[  361.781329][ T7767] RBP: 00007f85359fe090 R08: 0000000000000000 R09: 0000000000000000
[  361.781343][ T7767] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  361.781357][ T7767] R13: 00007f8537a26038 R14: 00007f8537a25fa0 R15: 00007ffca5cac6f8
[  361.781403][ T7767]  </TASK>
[  363.238559][ T7784] snd_virmidi snd_virmidi.0: control 0:0:0:syz0:0 is already present
[  363.434794][ T7259] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  363.556966][ T7792] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  363.724324][ T7259] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  363.727373][ T7259] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  363.937701][ T7259] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  364.031396][ T7259] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  364.548836][ T5812] usb 1-1: new high-speed USB device number 26 using dummy_hcd
[  364.698804][ T5812] usb 1-1: Using ep0 maxpacket: 32
[  364.701775][ T5812] usb 1-1: config 0 has an invalid interface number: 1 but max is 0
[  364.701806][ T5812] usb 1-1: config 0 has no interface number 0
[  364.707064][ T5812] usb 1-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=93.d8
[  364.707110][ T5812] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  364.707133][ T5812] usb 1-1: Product: syz
[  364.707149][ T5812] usb 1-1: Manufacturer: syz
[  364.707165][ T5812] usb 1-1: SerialNumber: syz
[  364.738073][ T5812] usb 1-1: config 0 descriptor??
[  364.767084][ T5812] usb 1-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state
[  364.767114][ T5812] usb 1-1: selecting invalid altsetting 1
[  364.767130][ T5812] usb 1-1: dvb_usb_ce6230: usb_set_interface() failed=-22
[  364.846165][ T5812] usb 1-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  364.846602][ T5812] dvbdev: DVB: registering new adapter (Intel CE9500 reference design)
[  364.846740][ T5812] usb 1-1: media controller created
[  364.982487][ T5812] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  366.279487][ T7259] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  366.452668][ T7259] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  366.456645][ T5812] usb 1-1: dvb_usb_ce6230: usb_control_msg() failed=-71
[  366.456712][ T5812] zl10353_read_register: readreg error (reg=127, ret==-71)
[  366.458105][ T5812] usb 1-1: dvb_usb_ce6230: usb_set_interface() failed=-71
[  366.539190][ T7259] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  366.933303][ T5812] usb 1-1: USB disconnect, device number 26
[  367.212369][ T7819] snd_virmidi snd_virmidi.0: control 0:0:0:syz0:0 is already present
[  367.474098][ T7833] netlink: 20 bytes leftover after parsing attributes in process `syz.0.472'.
[  368.044978][ T7337] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  368.210387][ T7337] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  368.211219][ T7858] fuse: Bad value for 'fd'
[  368.268285][ T7337] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  368.357468][ T7337] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  368.378233][ T7337] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  368.454118][ T7337] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  368.508282][ T7337] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  368.549495][ T7337] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  368.840941][ T7878] netlink: 24 bytes leftover after parsing attributes in process `syz.3.481'.
[  369.039357][ T7876] snd_virmidi snd_virmidi.0: control 0:0:0:syz0:0 is already present
[  369.067362][   T37] audit: type=1326 audit(1778866643.505:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7870 comm="syz.3.481" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65979ece59 code=0x7ffc0000
[  369.069167][   T37] audit: type=1326 audit(1778866643.505:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7870 comm="syz.3.481" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65979ece59 code=0x7ffc0000
[  369.083078][   T37] audit: type=1326 audit(1778866643.525:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7870 comm="syz.3.481" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f65979ad68e code=0x7ffc0000
[  369.083138][   T37] audit: type=1326 audit(1778866643.525:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7870 comm="syz.3.481" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f65979ecaeb code=0x7ffc0000
[  369.083185][   T37] audit: type=1326 audit(1778866643.525:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7870 comm="syz.3.481" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f65979ecaeb code=0x7ffc0000
[  369.192791][   T37] audit: type=1326 audit(1778866643.595:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7870 comm="syz.3.481" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f65979ecaeb code=0x7ffc0000
[  369.192844][   T37] audit: type=1326 audit(1778866643.635:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7870 comm="syz.3.481" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f65979ecaeb code=0x7ffc0000
[  369.246806][   T37] audit: type=1326 audit(1778866643.685:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7870 comm="syz.3.481" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f65979ecaeb code=0x7ffc0000
[  369.279270][ T7259] 8021q: adding VLAN 0 to HW filter on device bond0
[  369.322985][   T37] audit: type=1326 audit(1778866643.765:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7870 comm="syz.3.481" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f65979ecaeb code=0x7ffc0000
[  369.392664][ T5812] usb 4-1: new high-speed USB device number 37 using dummy_hcd
[  369.393750][   T37] audit: type=1326 audit(1778866643.835:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7870 comm="syz.3.481" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f65979ecaeb code=0x7ffc0000
[  369.617597][ T5812] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  369.617637][ T5812] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  369.617680][ T5812] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2cf6, bcdDevice= 0.00
[  369.617706][ T5812] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  369.687688][ T7259] 8021q: adding VLAN 0 to HW filter on device team0
[  369.769827][   T40] bridge0: port 1(bridge_slave_0) entered blocking state
[  369.770388][   T40] bridge0: port 1(bridge_slave_0) entered forwarding state
[  369.782364][ T7896] netlink: 8 bytes leftover after parsing attributes in process `syz.0.484'.
[  369.806978][   T40] bridge0: port 2(bridge_slave_1) entered blocking state
[  369.807132][   T40] bridge0: port 2(bridge_slave_1) entered forwarding state
[  369.922283][ T5812] usb 4-1: config 0 descriptor??
[  370.990157][ T7337] 8021q: adding VLAN 0 to HW filter on device bond0
[  371.910664][ T7927] snd_virmidi snd_virmidi.0: control 0:0:0:syz0:0 is already present
[  371.957873][ T7337] 8021q: adding VLAN 0 to HW filter on device team0
[  372.234331][ T5812] usbhid 4-1:0.0: can't add hid device: -71
[  372.234473][ T5812] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  372.288960][ T5812] usb 4-1: USB disconnect, device number 37
[  372.555541][  T102] bridge0: port 1(bridge_slave_0) entered blocking state
[  372.560407][  T102] bridge0: port 1(bridge_slave_0) entered forwarding state
[  372.907962][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  372.921415][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  374.190088][ T7963] binder: 7962:7963 ioctl 4018620d 0 returned -22
[  374.773321][ T7975] cgroup: Invalid name
[  375.188461][ T7259] 8021q: adding VLAN 0 to HW filter on device batadv0
[  376.425475][ T8002] FAULT_INJECTION: forcing a failure.
[  376.425475][ T8002] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  376.425523][ T8002] CPU: 1 UID: 0 PID: 8002 Comm: syz.3.504 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  376.425556][ T8002] Tainted: [L]=SOFTLOCKUP
[  376.425564][ T8002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  376.425578][ T8002] Call Trace:
[  376.425586][ T8002]  <TASK>
[  376.425596][ T8002]  dump_stack_lvl+0xe8/0x150
[  376.425629][ T8002]  should_fail_ex+0x46b/0x600
[  376.425670][ T8002]  _copy_from_user+0x2d/0xb0
[  376.425697][ T8002]  sctp_getsockopt_encap_port+0x111/0x450
[  376.425734][ T8002]  ? __pfx_sctp_getsockopt_encap_port+0x10/0x10
[  376.425764][ T8002]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  376.425810][ T8002]  ? __local_bh_enable_ip+0x1ae/0x2b0
[  376.425837][ T8002]  ? lockdep_hardirqs_on+0x7a/0x110
[  376.425871][ T8002]  sctp_getsockopt+0xa15/0xb90
[  376.425904][ T8002]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  376.425929][ T8002]  do_sock_getsockopt+0x51d/0x7e0
[  376.425964][ T8002]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  376.426011][ T8002]  ? __fget_files+0x3a6/0x420
[  376.426031][ T8002]  ? __fget_files+0x2a/0x420
[  376.426061][ T8002]  __x64_sys_getsockopt+0x1aa/0x250
[  376.426098][ T8002]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  376.426124][ T8002]  do_syscall_64+0x15f/0xf80
[  376.426153][ T8002]  ? trace_irq_disable+0x3b/0x140
[  376.426180][ T8002]  ? clear_bhb_loop+0x40/0x90
[  376.426208][ T8002]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  376.426240][ T8002] RIP: 0033:0x7f65979ece59
[  376.426262][ T8002] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  376.426280][ T8002] RSP: 002b:00007f6595c46028 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  376.426304][ T8002] RAX: ffffffffffffffda RBX: 00007f6597c65fa0 RCX: 00007f65979ece59
[  376.426320][ T8002] RDX: 0000000000000084 RSI: 0000000000000084 RDI: 0000000000000003
[  376.426333][ T8002] RBP: 00007f6595c46090 R08: 0000200000000040 R09: 0000000000000000
[  376.426348][ T8002] R10: 0000200000000440 R11: 0000000000000246 R12: 0000000000000001
[  376.426360][ T8002] R13: 00007f6597c66038 R14: 00007f6597c65fa0 R15: 00007ffc46b24f58
[  376.426393][ T8002]  </TASK>
[  377.217815][ T8021] binder: 8019:8021 ioctl 4018620d 0 returned -22
[  379.394780][ T7337] 8021q: adding VLAN 0 to HW filter on device batadv0
[  380.081102][ T8045] snd_virmidi snd_virmidi.0: control 0:0:0:syz0:0 is already present
[  380.349394][ T8051] binder: 8049:8051 ioctl 4018620d 0 returned -22
[  380.380065][ T8051] binder: 8049:8051 ioctl 4c07 0 returned -22
[  380.448326][ T5606] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  380.524353][ T5606] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  380.527346][ T5606] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  380.535933][ T5606] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  380.548698][ T5606] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  381.386068][ T1007] usb 4-1: new high-speed USB device number 38 using dummy_hcd
[  381.535956][ T1007] usb 4-1: Using ep0 maxpacket: 8
[  381.546469][ T1007] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 13
[  381.560701][ T1007] usb 4-1: New USB device found, idVendor=046d, idProduct=08ae, bcdDevice=11.58
[  381.560737][ T1007] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  381.560759][ T1007] usb 4-1: Product: syz
[  381.560774][ T1007] usb 4-1: Manufacturer: syz
[  381.560791][ T1007] usb 4-1: SerialNumber: syz
[  381.604963][ T7337] veth0_vlan: entered promiscuous mode
[  381.622054][ T1007] usb 4-1: config 0 descriptor??
[  381.701421][ T1007] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08ae
[  381.839335][ T1007] gspca_zc3xx: reg_w_i err -71
[  381.884799][ T7337] veth1_vlan: entered promiscuous mode
[  382.075350][ T8059] netlink: 'syz.3.515': attribute type 1 has an invalid length.
[  382.458910][ T1007] gspca_zc3xx: Unknown sensor - set to TAS5130C
[  382.459025][ T1007] gspca_zc3xx 4-1:0.0: probe with driver gspca_zc3xx failed with error -71
[  382.466226][ T1007] usb 4-1: USB disconnect, device number 38
[  382.690045][ T5608] Bluetooth: hci0: command tx timeout
[  383.536220][ T8075] syz.4.519 (8075) used greatest stack depth: 15936 bytes left
[  383.694651][ T8063] bond1: (slave dummy0): making interface the new active one
[  383.696125][ T8063] bond1: (slave dummy0): Enslaving as an active interface with an up link
[  383.843308][ T8066] ip6gre2: entered promiscuous mode
[  383.843342][ T8066] ip6gre2: entered allmulticast mode
[  384.094080][ T8086] FAULT_INJECTION: forcing a failure.
[  384.094080][ T8086] name failslab, interval 1, probability 0, space 0, times 0
[  384.094124][ T8086] CPU: 0 UID: 0 PID: 8086 Comm: syz.4.522 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  384.094155][ T8086] Tainted: [L]=SOFTLOCKUP
[  384.094164][ T8086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  384.094177][ T8086] Call Trace:
[  384.094186][ T8086]  <TASK>
[  384.094195][ T8086]  dump_stack_lvl+0xe8/0x150
[  384.094229][ T8086]  should_fail_ex+0x46b/0x600
[  384.094273][ T8086]  should_failslab+0xa8/0x100
[  384.094304][ T8086]  kmem_cache_alloc_noprof+0x87/0x680
[  384.094329][ T8086]  ? sctp_get_port_local+0x748/0x1770
[  384.094367][ T8086]  sctp_get_port_local+0x748/0x1770
[  384.094421][ T8086]  ? sctp_get_port_local+0x525/0x1770
[  384.094456][ T8086]  ? __pfx_sctp_get_port_local+0x10/0x10
[  384.094493][ T8086]  ? sctp_bind_addr_match+0x28b/0x2b0
[  384.094527][ T8086]  sctp_do_bind+0x4f1/0x9d0
[  384.094576][ T8086]  sctp_connect_new_asoc+0x270/0x6b0
[  384.094612][ T8086]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  384.094649][ T8086]  ? __local_bh_enable_ip+0x1ae/0x2b0
[  384.094675][ T8086]  ? lockdep_hardirqs_on+0x7a/0x110
[  384.094703][ T8086]  ? bpf_lsm_sctp_bind_connect+0x9/0x20
[  384.094729][ T8086]  ? security_sctp_bind_connect+0x7e/0x2c0
[  384.094765][ T8086]  sctp_sendmsg+0x14f2/0x29b0
[  384.094815][ T8086]  ? __pfx_sctp_sendmsg+0x10/0x10
[  384.094855][ T8086]  ? __might_fault+0xaf/0x130
[  384.094883][ T8086]  ? __might_fault+0xaf/0x130
[  384.094922][ T8086]  ? sock_rps_record_flow+0x19/0x350
[  384.094957][ T8086]  ? __pfx_inet_sendmsg+0x10/0x10
[  384.094987][ T8086]  ? inet_sendmsg+0x2f4/0x370
[  384.095016][ T8086]  ? __pfx_inet_sendmsg+0x10/0x10
[  384.095053][ T8086]  __sys_sendto+0x5f1/0x710
[  384.095089][ T8086]  ? __pfx___sys_sendto+0x10/0x10
[  384.095149][ T8086]  ? ksys_write+0x248/0x270
[  384.095179][ T8086]  ? __pfx_ksys_write+0x10/0x10
[  384.095212][ T8086]  __x64_sys_sendto+0xde/0x100
[  384.095241][ T8086]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  384.095266][ T8086]  do_syscall_64+0x15f/0xf80
[  384.095294][ T8086]  ? trace_irq_disable+0x3b/0x140
[  384.095321][ T8086]  ? clear_bhb_loop+0x40/0x90
[  384.095350][ T8086]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  384.095373][ T8086] RIP: 0033:0x7f67a2c4ce59
[  384.095395][ T8086] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  384.095415][ T8086] RSP: 002b:00007f67a0e9e028 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  384.095441][ T8086] RAX: ffffffffffffffda RBX: 00007f67a2ec5fa0 RCX: 00007f67a2c4ce59
[  384.095457][ T8086] RDX: 0000000000034000 RSI: 0000200000000180 RDI: 0000000000000003
[  384.095472][ T8086] RBP: 00007f67a0e9e090 R08: 0000200000000480 R09: 000000000000001c
[  384.095486][ T8086] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  384.095500][ T8086] R13: 00007f67a2ec6038 R14: 00007f67a2ec5fa0 R15: 00007ffebfc437c8
[  384.095539][ T8086]  </TASK>
[  384.170687][ T1336] ieee802154 phy0 wpan0: encryption failed: -22
[  384.170766][ T1336] ieee802154 phy1 wpan1: encryption failed: -22
[  384.769887][ T5608] Bluetooth: hci0: command tx timeout
[  385.707845][ T7337] veth0_macvtap: entered promiscuous mode
[  385.834573][ T8108] netlink: 16 bytes leftover after parsing attributes in process `syz.4.530'.
[  385.952914][ T8110] netlink: 24 bytes leftover after parsing attributes in process `syz.3.531'.
[  386.137303][ T8115] snd_virmidi snd_virmidi.0: control 0:0:0:syz0:0 is already present
[  386.149650][ T7337] veth1_macvtap: entered promiscuous mode
[  386.348437][ T8110] ip6gre3: entered promiscuous mode
[  386.348475][ T8110] ip6gre3: entered allmulticast mode
[  386.851913][ T5608] Bluetooth: hci0: command tx timeout
[  386.889777][ T8125] netlink: 'syz.3.536': attribute type 1 has an invalid length.
[  386.889804][ T8125] netlink: 4 bytes leftover after parsing attributes in process `syz.3.536'.
[  387.115360][ T7337] batman_adv: batadv0: Interface activated: batadv_slave_0
[  388.928841][ T5608] Bluetooth: hci0: command tx timeout
[  389.153354][ T8144] IPv6: addrconf: prefix option has invalid lifetime
[  389.302373][   T40] bridge_slave_1: left allmulticast mode
[  389.302417][   T40] bridge_slave_1: left promiscuous mode
[  389.302705][   T40] bridge0: port 2(bridge_slave_1) entered disabled state
[  389.542265][ T5606] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  389.604976][ T5606] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  389.615908][ T5606] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  389.634281][ T5606] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  389.635204][ T5606] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  390.061750][ T8154] FAULT_INJECTION: forcing a failure.
[  390.061750][ T8154] name failslab, interval 1, probability 0, space 0, times 0
[  390.061779][ T8154] CPU: 0 UID: 0 PID: 8154 Comm: syz.4.543 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  390.061798][ T8154] Tainted: [L]=SOFTLOCKUP
[  390.061802][ T8154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  390.061810][ T8154] Call Trace:
[  390.061815][ T8154]  <TASK>
[  390.061821][ T8154]  dump_stack_lvl+0xe8/0x150
[  390.061841][ T8154]  should_fail_ex+0x46b/0x600
[  390.061875][ T8154]  should_failslab+0xa8/0x100
[  390.061893][ T8154]  __kmalloc_noprof+0xdf/0x7b0
[  390.061906][ T8154]  ? kfree+0x4d/0x6c0
[  390.061918][ T8154]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  390.061947][ T8154]  tomoyo_realpath_from_path+0xe3/0x5d0
[  390.061968][ T8154]  ? tomoyo_domain+0xd7/0x130
[  390.061985][ T8154]  ? tomoyo_path_number_perm+0x219/0x630
[  390.062003][ T8154]  tomoyo_path_number_perm+0x246/0x630
[  390.062021][ T8154]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  390.062038][ T8154]  ? __lock_acquire+0x6b5/0x2cf0
[  390.062058][ T8154]  ? do_raw_spin_lock+0x12b/0x2f0
[  390.062094][ T8154]  ? __fget_files+0x2a/0x420
[  390.062108][ T8154]  ? __fget_files+0x2a/0x420
[  390.062118][ T8154]  ? __fget_files+0x3a6/0x420
[  390.062129][ T8154]  ? __fget_files+0x2a/0x420
[  390.062143][ T8154]  security_file_ioctl+0xc3/0x2a0
[  390.062163][ T8154]  __se_sys_ioctl+0x47/0x170
[  390.062178][ T8154]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  390.062192][ T8154]  do_syscall_64+0x15f/0xf80
[  390.062209][ T8154]  ? trace_irq_disable+0x3b/0x140
[  390.062224][ T8154]  ? clear_bhb_loop+0x40/0x90
[  390.062240][ T8154]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  390.062252][ T8154] RIP: 0033:0x7f67a2c4ce59
[  390.062265][ T8154] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  390.062277][ T8154] RSP: 002b:00007f67a0e9e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  390.062292][ T8154] RAX: ffffffffffffffda RBX: 00007f67a2ec5fa0 RCX: 00007f67a2c4ce59
[  390.062301][ T8154] RDX: 0000000000000000 RSI: 000000004038ae7a RDI: 0000000000000004
[  390.062309][ T8154] RBP: 00007f67a0e9e090 R08: 0000000000000000 R09: 0000000000000000
[  390.062317][ T8154] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  390.062324][ T8154] R13: 00007f67a2ec6038 R14: 00007f67a2ec5fa0 R15: 00007ffebfc437c8
[  390.062345][ T8154]  </TASK>
[  390.063855][ T8154] ERROR: Out of memory at tomoyo_realpath_from_path.
[  390.780926][   T40] bridge_slave_0: left allmulticast mode
[  390.780957][   T40] bridge_slave_0: left promiscuous mode
[  390.781142][   T40] bridge0: port 1(bridge_slave_0) entered disabled state
[  391.142731][ T8165] FAULT_INJECTION: forcing a failure.
[  391.142731][ T8165] name failslab, interval 1, probability 0, space 0, times 0
[  391.142782][ T8165] CPU: 1 UID: 0 PID: 8165 Comm: syz.4.547 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  391.142815][ T8165] Tainted: [L]=SOFTLOCKUP
[  391.142824][ T8165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  391.142837][ T8165] Call Trace:
[  391.142847][ T8165]  <TASK>
[  391.142856][ T8165]  dump_stack_lvl+0xe8/0x150
[  391.142888][ T8165]  should_fail_ex+0x46b/0x600
[  391.142930][ T8165]  should_failslab+0xa8/0x100
[  391.142960][ T8165]  __kmalloc_noprof+0xdf/0x7b0
[  391.142984][ T8165]  ? kfree+0x4d/0x6c0
[  391.143003][ T8165]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  391.143042][ T8165]  tomoyo_realpath_from_path+0xe3/0x5d0
[  391.143078][ T8165]  ? tomoyo_domain+0xd7/0x130
[  391.143108][ T8165]  ? tomoyo_path_number_perm+0x219/0x630
[  391.143139][ T8165]  tomoyo_path_number_perm+0x246/0x630
[  391.143169][ T8165]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  391.143197][ T8165]  ? __lock_acquire+0x6b5/0x2cf0
[  391.143233][ T8165]  ? do_raw_spin_lock+0x12b/0x2f0
[  391.143294][ T8165]  ? __fget_files+0x2a/0x420
[  391.143319][ T8165]  ? __fget_files+0x2a/0x420
[  391.143338][ T8165]  ? __fget_files+0x3a6/0x420
[  391.143358][ T8165]  ? __fget_files+0x2a/0x420
[  391.143382][ T8165]  security_file_ioctl+0xc3[  391.143382][ T8165]  security_file_ioctl+0xc3/0x2a0
[  391.143416][ T8165]  __se_sys_ioctl+0x47/0x170
[  391.143447][ T8165]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  391.143473][ T8165]  do_syscall_64+0x15f/0xf80
[  391.143502][ T8165]  ? trace_irq_disable+0x3b/0x140
[  391.143528][ T8165]  ? clear_bhb_loop+0x40/0x90
[  391.143556][ T8165]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  391.143578][ T8165] RIP: 0033:0x7f67a2c4ce59
[  391.143599][ T8165] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  391.143618][ T8165] RSP: 002b:00007f67a0e9e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  391.143643][ T8165] RAX: ffffffffffffffda RBX: 00007f67a2ec5fa0 RCX: 00007f67a2c4ce59
[  391.143659][ T8165] RDX: 0000200000000240 RSI: 00000000c058560f RDI: 0000000000000003
[  391.143673][ T8165] RBP: 00007f67a0e9e090 R08: 0000000000000000 R09: 0000000000000000
[  391.143686][ T8165] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  391.143700][ T8165] R13: 00007f67a2ec6038 R14: 00007f67a2ec5fa0 R15: 00007ffebfc437c8
[  391.143737][ T8165]  </TASK>
[  391.144368][ T8165] ERROR: Out of memory at tomoyo_realpath_from_path.
[  391.245990][ T5608] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201'
[  391.246032][ T5608] CPU: 1 UID: 0 PID: 5608 Comm: kworker/u9:3 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  391.246066][ T5608] Tainted: [L]=SOFTLOCKUP
[  391.246074][ T5608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  391.246088][ T5608] Workqueue: hci3 hci_rx_work
[  391.246121][ T5608] Call Trace:
[  391.246130][ T5608]  <TASK>
[  391.246140][ T5608]  dump_stack_lvl+0xe8/0x150
[  391.246171][ T5608]  sysfs_create_dir_ns+0x271/0x2a0
[  391.246207][ T5608]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  391.246233][ T5608]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  391.246272][ T5608]  ? rt_spin_unlock+0x160/0x200
[  391.246298][ T5608]  kobject_add_internal+0x631/0xd10
[  391.246340][ T5608]  kobject_add+0x163/0x240
[  391.246375][ T5608]  ? __pfx_kobject_add+0x10/0x10
[  391.246415][ T5608]  ? get_device_parent+0x370/0x3a0
[  391.246448][ T5608]  device_add+0x408/0xbb0
[  391.246479][ T5608]  hci_conn_add_sysfs+0xd5/0x210
[  391.246511][ T5608]  le_conn_complete_evt+0x10e6/0x16b0
[  391.246556][ T5608]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  391.246592][ T5608]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  391.246619][ T5608]  ? lockdep_hardirqs_on+0x7a/0x110
[  391.246650][ T5608]  ? skb_pull_data+0xfb/0x200
[  391.246687][ T5608]  hci_le_conn_complete_evt+0x187/0x470
[  391.246724][ T5608]  hci_event_packet+0x659/0xef0
[  391.246754][ T5608]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  391.246772][ T5608]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  391.246799][ T5608]  ? __pfx_hci_event_packet+0x10/0x10
[  391.246822][ T5608]  ? rt_spin_unlock+0x14f/0x200
[  391.246861][ T5608]  ? hci_send_to_monitor+0xe2/0x590
[  391.246888][ T5608]  hci_rx_work+0x3ee/0x1040
[  391.246921][ T5608]  ? process_scheduled_works+0xa70/0x1860
[  391.246948][ T5608]  process_scheduled_works+0xb5d/0x1860
[  391.247005][ T5608]  ? __pfx_process_scheduled_works+0x10/0x10
[  391.247053][ T5608]  ? assign_work+0x3d5/0x5e0
[  391.247082][ T5608]  worker_thread+0xa53/0xfc0
[  391.247139][ T5608]  kthread+0x388/0x470
[  391.247170][ T5608]  ? __pfx_worker_thread+0x10/0x10
[  391.247192][ T5608]  ? __pfx_kthread+0x10/0x10
[  391.247221][ T5608]  ret_from_fork+0x514/0xb70
[  391.247249][ T5608]  ? __pfx_ret_from_fork+0x10/0x10
[  391.247273][ T5608]  ? __switch_to+0xc79/0x1410
[  391.247309][ T5608]  ? __pfx_kthread+0x10/0x10
[  391.247340][ T5608]  ret_from_fork_asm+0x1a/0x30
[  391.247389][ T5608]  </TASK>
[  391.247451][ T5608] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  391.247496][ T5608] Bluetooth: hci3: failed to register connection device
[  391.366417][ T5608] ==================================================================
[  391.366438][ T5608] BUG: KASAN: slab-use-after-free in l2cap_sock_new_connection_cb+0x208/0x2f0
[  391.366478][ T5608] Read of size 8 at addr ffff88801167f7b0 by task kworker/u9:3/5608
[  391.366497][ T5608] 
[  391.366514][ T5608] CPU: 1 UID: 0 PID: 5608 Comm: kworker/u9:3 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  391.366548][ T5608] Tainted: [L]=SOFTLOCKUP
[  391.366556][ T5608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  391.366572][ T5608] Workqueue: hci3 hci_rx_work
[  391.366602][ T5608] Call Trace:
[  391.366613][ T5608]  <TASK>
[  391.366624][ T5608]  dump_stack_lvl+0xe8/0x150
[  391.366652][ T5608]  print_address_description+0x55/0x1e0
[  391.366676][ T5608]  ? l2cap_sock_new_connection_cb+0x208/0x2f0
[  391.366703][ T5608]  print_report+0x58/0x70
[  391.366724][ T5608]  kasan_report+0x117/0x150
[  391.366752][ T5608]  ? l2cap_sock_new_connection_cb+0x208/0x2f0
[  391.366784][ T5608]  l2cap_sock_new_connection_cb+0x208/0x2f0
[  391.366822][ T5608]  l2cap_connect_cfm+0x368/0x1560
[  391.366850][ T5608]  ? __pfx_l2cap_connect_cfm+0x10/0x10
[  391.366872][ T5608]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  391.366903][ T5608]  ? lockdep_hardirqs_on+0x7a/0x110
[  391.366932][ T5608]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  391.366961][ T5608]  ? mutex_lock_nested+0x152/0x1d0
[  391.366982][ T5608]  ? hci_connect_cfm+0x2c/0x140
[  391.367015][ T5608]  ? __pfx_l2cap_connect_cfm+0x10/0x10
[  391.367038][ T5608]  hci_connect_cfm+0x95/0x140
[  391.367069][ T5608]  le_conn_complete_evt+0x1134/0x16b0
[  391.367109][ T5608]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  391.367143][ T5608]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  391.367170][ T5608]  ? lockdep_hardirqs_on+0x7a/0x110
[  391.367198][ T5608]  ? skb_pull_data+0xfb/0x200
[  391.367232][ T5608]  hci_le_conn_complete_evt+0x187/0x470
[  391.367269][ T5608]  hci_event_packet+0x659/0xef0
[  391.367300][ T5608]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  391.367322][ T5608]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  391.367349][ T5608]  ? __pfx_hci_event_packet+0x10/0x10
[  391.367374][ T5608]  ? rt_spin_unlock+0x14f/0x200
[  391.367401][ T5608]  ? hci_send_to_monitor+0xe2/0x590
[  391.367424][ T5608]  hci_rx_work+0x3ee/0x1040
[  391.367455][ T5608]  ? process_scheduled_works+0xa70/0x1860
[  391.367482][ T5608]  process_scheduled_works+0xb5d/0x1860
[  391.367522][ T5608]  ? __pfx_process_scheduled_works+0x10/0x10
[  391.367550][ T5608]  ? assign_work+0x3d5/0x5e0
[  391.367576][ T5608]  worker_thread+0xa53/0xfc0
[  391.367614][ T5608]  kthread+0x388/0x470
[  391.367644][ T5608]  ? __pfx_worker_thread+0x10/0x10
[  391.367669][ T5608]  ? __pfx_kthread+0x10/0x10
[  391.367700][ T5608]  ret_from_fork+0x514/0xb70
[  391.367727][ T5608]  ? __pfx_ret_from_fork+0x10/0x10
[  391.367748][ T5608]  ? __switch_to+0xc79/0x1410
[  391.367778][ T5608]  ? __pfx_kthread+0x10/0x10
[  391.367806][ T5608]  ret_from_fork_asm+0x1a/0x30
[  391.367855][ T5608]  </TASK>
[  391.367863][ T5608] 
[  391.367869][ T5608] Allocated by task 5608:
[  391.367879][ T5608]  kasan_save_track+0x3e/0x80
[  391.367901][ T5608]  __kasan_kmalloc+0x93/0xb0
[  391.367921][ T5608]  __kmalloc_noprof+0x3e7/0x7b0
[  391.367944][ T5608]  sk_prot_alloc+0xe7/0x210
[  391.367968][ T5608]  sk_alloc+0x3a/0x390
[  391.367991][ T5608]  bt_sock_alloc+0x3b/0x310
[  391.368017][ T5608]  l2cap_sock_new_connection_cb+0xf1/0x2f0
[  391.368042][ T5608]  l2cap_connect_cfm+0x368/0x1560
[  391.368062][ T5608]  hci_connect_cfm+0x95/0x140
[  391.368090][ T5608]  le_conn_complete_evt+0x1134/0x16b0
[  391.368122][ T5608]  hci_le_conn_complete_evt+0x187/0x470
[  391.368152][ T5608]  hci_event_packet+0x659/0xef0
[  391.368173][ T5608]  hci_rx_work+0x3ee/0x1040
[  391.368198][ T5608]  process_scheduled_works+0xb5d/0x1860
[  391.368220][ T5608]  worker_thread+0xa53/0xfc0
[  391.368242][ T5608]  kthread+0x388/0x470
[  391.368267][ T5608]  ret_from_fork+0x514/0xb70
[  391.368287][ T5608]  ret_from_fork_asm+0x1a/0x30
[  391.368313][ T5608] 
[  391.368318][ T5608] Freed by task 8163:
[  391.368328][ T5608]  kasan_save_track+0x3e/0x80
[  391.368347][ T5608]  kasan_save_free_info+0x46/0x50
[  391.368376][ T5608]  __kasan_slab_free+0x5c/0x80
[  391.368397][ T5608]  kfree+0x1c5/0x6c0
[  391.368415][ T5608]  __sk_destruct+0x74b/0x9d0
[  391.368442][ T5608]  l2cap_sock_cleanup_listen+0xe0/0x440
[  391.368463][ T5608]  l2cap_sock_release+0x6e/0x270
[  391.368484][ T5608]  sock_close+0xc3/0x240
[  391.368514][ T5608]  __fput+0x461/0xa70
[  391.368545][ T5608]  task_work_run+0x1d9/0x270
[  391.368572][ T5608]  exit_to_user_mode_loop+0xf3/0x4d0
[  391.368595][ T5608]  do_syscall_64+0x33e/0xf80
[  391.368621][ T5608]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  391.368640][ T5608] 
[  391.368646][ T5608] The buggy address belongs to the object at ffff88801167f000
[  391.368646][ T5608]  which belongs to the cache kmalloc-2k of size 2048
[  391.368665][ T5608] The buggy address is located 1968 bytes inside of
[  391.368665][ T5608]  freed 2048-byte region [ffff88801167f000, ffff88801167f800)
[  391.368689][ T5608] 
[  391.368696][ T5608] The buggy address belongs to the physical page:
[  391.368707][ T5608] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x11678
[  391.368729][ T5608] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  391.368749][ T5608] flags: 0x80000000000040(head|node=0|zone=1)
[  391.368767][ T5608] page_type: f5(slab)
[  391.368787][ T5608] raw: 0080000000000040 ffff88801a011000 dead000000000100 dead000000000122
[  391.368807][ T5608] raw: 0000000000000000 0000000800080008 00000000f5000000 0000000000000000
[  391.368834][ T5608] head: 0080000000000040 ffff88801a011000 dead000000000100 dead000000000122
[  391.368852][ T5608] head: 0000000000000000 0000000800080008 00000000f5000000 0000000000000000
[  391.368871][ T5608] head: 0080000000000003 fffffffffffffe01 00000000ffffffff 00000000ffffffff
[  391.368889][ T5608] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000008
[  391.368898][ T5608] page dumped because: kasan: bad access detected
[  391.368910][ T5608] page_owner tracks the page as allocated
[  391.368918][ T5608] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5604, tgid 5604 (syz-executor), ts 97806085864, free_ts 93935970856
[  391.368957][ T5608]  post_alloc_hook+0x231/0x280
[  391.368981][ T5608]  get_page_from_freelist+0x27c8/0x2840
[  391.369007][ T5608]  __alloc_frozen_pages_noprof+0x18d/0x380
[  391.369034][ T5608]  allocate_slab+0x77/0x660
[  391.369062][ T5608]  refill_objects+0x33c/0x3d0
[  391.369089][ T5608]  __pcs_replace_empty_main+0x373/0x720
[  391.369121][ T5608]  __kmalloc_cache_noprof+0x44e/0x690
[  391.369146][ T5608]  rxrpc_alloc_connection+0x7b/0x600
[  391.369175][ T5608]  rxrpc_prealloc_service_connection+0x26/0x2f0
[  391.369207][ T5608]  rxrpc_service_prealloc_one+0x2f5/0xe20
[  391.369230][ T5608]  afs_charge_preallocation+0x394/0x4e0
[  391.369257][ T5608]  afs_open_socket+0x33c/0x3f0
[  391.369284][ T5608]  afs_net_init+0x6ce/0x8f0
[  391.369309][ T5608]  ops_init+0x35c/0x5c0
[  391.369331][ T5608]  setup_net+0x118/0x340
[  391.369350][ T5608]  copy_net_ns+0x50e/0x730
[  391.369369][ T5608] page last free pid 5587 tgid 5587 stack trace:
[  391.369381][ T5608]  __free_frozen_pages+0xfa6/0x10f0
[  391.369404][ T5608]  __folio_put+0x2eb/0x3a0
[  391.369423][ T5608]  skb_release_data+0x544/0xa60
[  391.369448][ T5608]  __kfree_skb+0x5d/0x210
[  391.369472][ T5608]  tcp_ack+0x284f/0x7e00
[  391.369500][ T5608]  tcp_rcv_established+0x1484/0x2800
[  391.369529][ T5608]  tcp_v4_do_rcv+0x959/0x13f0
[  391.369549][ T5608]  __release_sock+0x285/0x3d0
[  391.369577][ T5608]  __sk_flush_backlog+0x4b/0xe0
[  391.369606][ T5608]  tcp_sendmsg_locked+0x4167/0x5370
[  391.369637][ T5608]  tcp_sendmsg+0x2f/0x50
[  391.369666][ T5608]  sock_write_iter+0x40c/0x4f0
[  391.369696][ T5608]  vfs_write+0x629/0xba0
[  391.369717][ T5608]  ksys_write+0x156/0x270
[  391.369739][ T5608]  do_syscall_64+0x15f/0xf80
[  391.369765][ T5608]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  391.369786][ T5608] 
[  391.369791][ T5608] Memory state around the buggy address:
[  391.369804][ T5608]  ffff88801167f680: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  391.369828][ T5608]  ffff88801167f700: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  391.369844][ T5608] >ffff88801167f780: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  391.369855][ T5608]                                      ^
[  391.369868][ T5608]  ffff88801167f800: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  391.369883][ T5608]  ffff88801167f880: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  391.369895][ T5608] ==================================================================
[  391.373097][ T5608] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  391.373126][ T5608] CPU: 1 UID: 0 PID: 5608 Comm: kworker/u9:3 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  391.373157][ T5608] Tainted: [L]=SOFTLOCKUP
[  391.373166][ T5608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  391.373181][ T5608] Workqueue: hci3 hci_rx_work
[  391.373214][ T5608] Call Trace:
[  391.373222][ T5608]  <TASK>
[  391.373232][ T5608]  vpanic+0x56c/0xa60
[  391.373263][ T5608]  ? __pfx_vpanic+0x10/0x10
[  391.373289][ T5608]  ? __pfx___schedule+0x10/0x10
[  391.373318][ T5608]  panic+0xc5/0xd0
[  391.373343][ T5608]  ? __pfx_panic+0x10/0x10
[  391.373370][ T5608]  ? preempt_schedule_common+0x82/0xd0
[  391.373400][ T5608]  ? l2cap_sock_new_connection_cb+0x208/0x2f0
[  391.373428][ T5608]  check_panic_on_warn+0x89/0xb0
[  391.373459][ T5608]  ? l2cap_sock_new_connection_cb+0x208/0x2f0
[  391.373483][ T5608]  end_report+0x73/0x170
[  391.373508][ T5608]  ? l2cap_sock_new_connection_cb+0x208/0x2f0
[  391.373531][ T5608]  kasan_report+0x128/0x150
[  391.373558][ T5608]  ? l2cap_sock_new_connection_cb+0x208/0x2f0
[  391.373587][ T5608]  l2cap_sock_new_connection_cb+0x208/0x2f0
[  391.373614][ T5608]  l2cap_connect_cfm+0x368/0x1560
[  391.373641][ T5608]  ? __pfx_l2cap_connect_cfm+0x10/0x10
[  391.373662][ T5608]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  391.373691][ T5608]  ? lockdep_hardirqs_on+0x7a/0x110
[  391.373717][ T5608]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  391.373744][ T5608]  ? mutex_lock_nested+0x152/0x1d0
[  391.373762][ T5608]  ? hci_connect_cfm+0x2c/0x140
[  391.373792][ T5608]  ? __pfx_l2cap_connect_cfm+0x10/0x10
[  391.373814][ T5608]  hci_connect_cfm+0x95/0x140
[  391.373859][ T5608]  le_conn_complete_evt+0x1134/0x16b0
[  391.373898][ T5608]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  391.373934][ T5608]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  391.373964][ T5608]  ? lockdep_hardirqs_on+0x7a/0x110
[  391.373994][ T5608]  ? skb_pull_data+0xfb/0x200
[  391.374029][ T5608]  hci_le_conn_complete_evt+0x187/0x470
[  391.374066][ T5608]  hci_event_packet+0x659/0xef0
[  391.374093][ T5608]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  391.374116][ T5608]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  391.374146][ T5608]  ? __pfx_hci_event_packet+0x10/0x10
[  391.374175][ T5608]  ? rt_spin_unlock+0x14f/0x200
[  391.374202][ T5608]  ? hci_send_to_monitor+0xe2/0x590
[  391.374226][ T5608]  hci_rx_work+0x3ee/0x1040
[  391.374258][ T5608]  ? process_scheduled_works+0xa70/0x1860
[  391.374285][ T5608]  process_scheduled_works+0xb5d/0x1860
[  391.374325][ T5608]  ? __pfx_process_scheduled_works+0x10/0x10
[  391.374352][ T5608]  ? assign_work+0x3d5/0x5e0
[  391.374378][ T5608]  worker_thread+0xa53/0xfc0
[  391.374443][ T5608]  kthread+0x388/0x470
[  391.374479][ T5608]  ? __pfx_worker_thread+0x10/0x10
[  391.374506][ T5608]  ? __pfx_kthread+0x10/0x10
[  391.374535][ T5608]  ret_from_fork+0x514/0xb70
[  391.374562][ T5608]  ? __pfx_ret_from_fork+0x10/0x10
[  391.374584][ T5608]  ? __switch_to+0xc79/0x1410
[  391.374618][ T5608]  ? __pfx_kthread+0x10/0x10
[  391.374646][ T5608]  ret_from_fork_asm+0x1a/0x30
[  391.374678][ T5608]  </TASK>
[  391.375532][ T5608] Kernel Offset: disabled