last executing test programs:

11m48.332693958s ago: executing program 1 (id=2224):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=@delchain={0x24, 0x65, 0x4, 0x70bd29, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0x2, 0x1}, {0x7, 0x1}, {0x7, 0xf}}}, 0x24}, 0x1, 0x0, 0x0, 0x20000044}, 0x48c4)
syz_open_dev$mouse(&(0x7f0000000340), 0x0, 0xa342)
r0 = syz_open_dev$evdev(&(0x7f0000000280), 0x2, 0x822f01)
r1 = syz_open_dev$vim2m(&(0x7f0000000040), 0x1002, 0x2)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r2, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r2, &(0x7f0000007fc0), 0x800001d, 0xf000000)
mq_timedsend(0xffffffffffffffff, 0x0, 0xff7f, 0x0, 0x0)
setsockopt$inet6_IPV6_ADDRFORM(0xffffffffffffffff, 0x29, 0x1, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$XFS_IOC_FSBULKSTAT(r2, 0xc0105865, &(0x7f0000000400)={&(0x7f0000000080)=0xbfd, 0x2, 0x0, &(0x7f00000003c0)})
listen(r3, 0x5)
socket$vsock_stream(0x28, 0x1, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
pselect6(0x40, &(0x7f0000000240)={0x0, 0x0, 0x1ff, 0x7d, 0x1000000, 0x8000, 0x4, 0x1}, 0x0, &(0x7f00000002c0)={0x3ff, 0x6, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000006}, 0x0, 0x0)
ioctl$vim2m_VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f00000000c0)={0x8, 0x2, 0x1})
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r5, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r6 = dup(r5)
setsockopt$bt_hci_HCI_DATA_DIR(r6, 0x0, 0x1, 0x0, 0x0)
ioctl$vim2m_VIDIOC_QBUF(r1, 0xc044560f, &(0x7f00000001c0)=@mmap={0x0, 0x2, 0x0, 0x700, 0x0, {0x0, 0xea60}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "2063569a"}, 0x700})
ioctl$vim2m_VIDIOC_STREAMOFF(r1, 0x40045612, &(0x7f0000000000)=0x2)
write$char_usb(r0, &(0x7f0000000040)="e2", 0x12d8)

11m47.459589875s ago: executing program 1 (id=2233):
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x7, 0x10440)
ioctl$EVIOCGKEYCODE(r0, 0x80084504, &(0x7f0000000400)=""/94)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="040e06ff6232"], 0x9)
pipe2$watch_queue(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r2, &(0x7f0000000180)={0xa, 0x4001, 0x1, @dev={0xfe, 0x80, '\x00', 0x39}, 0x3e}, 0x1c)
setsockopt$sock_int(r2, 0x1, 0x12, &(0x7f0000000040)=0xfffffb6c, 0x4)
setsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r1, 0x84, 0x7, &(0x7f0000000080)={0x5}, 0x4)

11m47.391499953s ago: executing program 1 (id=2235):
socket$nl_route(0x10, 0x3, 0x0)
clock_gettime(0x1, &(0x7f0000000000)={<r0=>0x0, <r1=>0x0})
r2 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000000)='nr0\x00', 0x10)
sendmsg$DEVLINK_CMD_RATE_GET(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000002280)={&(0x7f0000000300)=ANY=[], 0x3c}, 0x1, 0x0, 0x0, 0x48818}, 0x4000000)
sendmmsg$inet(r2, &(0x7f00000020c0)=[{{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f00000004c0)='\f', 0x1}], 0x1, 0x0, 0x0, 0x2000000}}], 0xfdef, 0x0)
clock_settime(0x0, &(0x7f0000000040)={r0, r1+10000000})

11m47.307348304s ago: executing program 1 (id=2236):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x40010)

11m47.306986784s ago: executing program 1 (id=2237):
landlock_restrict_self(0xffffffffffffffff, 0x2)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
rt_sigprocmask(0x0, &(0x7f0000000400)={[0xfffff7feffff7ffc]}, 0x0, 0x8)
r0 = gettid()
tkill(r0, 0x12)
io_setup(0x2, &(0x7f00000001c0)=<r1=>0x0)
io_pgetevents(r1, 0xe7b, 0x3, &(0x7f0000000440)=[{}, {}, {}], 0x0, &(0x7f0000000380)={&(0x7f00000002c0)={[0x9]}, 0x8})
r2 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000)
ioctl$HIDIOCGREPORT(r2, 0x400c4807, &(0x7f0000000000)={0x2, 0x100, 0x9983})
r3 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000680)=ANY=[@ANYRESHEX=0x0, @ANYBLOB="70a79e5360c9e5b52f2aa706ba2b26f95749c5ab751002d2d6dace10cea76e579e3b5a25862c682662b81734798a64330eef98c45f61a503a1e0016f7cd3cf1daa59a0ff38416d0798105736e52d4504416b5be6ac773336d723e1fc2c13188913581c0253022c156c32032112422a04b14b731bab688610e065ae87efa94bdf8ea243bbbd5e3c6731ac7e0042fab11d35e1ef42bce1beff9813a45c55b7beabf25933988da7a2b669fa0b5230e07691", @ANYRES16=r1, @ANYRESOCT=r2, @ANYRES8=r0, @ANYRESHEX=r2], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x6, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000006000000000000002e01000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000009500000000000000"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x0, 0xe, 0x0, &(0x7f0000000200)="449d060721b9e6bb51f2f6f20504", 0x0, 0x100c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x9}, 0x4c)
r5 = socket(0xb, 0x6, 0x9)
setsockopt$inet_int(r5, 0x0, 0xb, &(0x7f00000000c0)=0x1002, 0x4)
mkdir(&(0x7f0000000100)='./file1\x00', 0xfa)
mount$fuse(0x0, 0x0, 0x0, 0x280800, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r6 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x1010408, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup.net/cgroup.procs\x00', 0x2, 0x128)
io_setup(0x8, &(0x7f0000000180)=<r7=>0x0)
io_submit(r7, 0x1, &(0x7f00000000c0)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x8, r4, &(0x7f00000002c0)='3', 0x1, 0x10000007}])
r8 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000180), 0x28800, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r8, 0xc018937b, &(0x7f0000000140)={{0x1, 0x1, 0xb8, r6}, './file0\x00'})
sendto$inet(r5, 0x0, 0xffe5, 0xe000, &(0x7f0000000000)={0x2, 0x4e20}, 0x10)
recvmsg(r5, &(0x7f0000000540)={0x0, 0x0, 0x0}, 0x2000)
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="040e06ff62204c"], 0x9)

11m45.750476202s ago: executing program 1 (id=2246):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
shutdown(r0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x800000, 0x0)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000280)={0x2, 0x7, 0x0, 0x3, 0x2, 0x0, 0x70bd29, 0x25dfdbfc}, 0x10}, 0x1, 0x7}, 0x0)
r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_NESTED_STATE(r4, 0x4048aecb, &(0x7f0000000780)=@vmx={0x1, 0x0, 0x2080, {0x60000, 0xc000, {}, 0x1, 0x4}, {"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", "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"}})
recvmmsg(r0, &(0x7f00000048c0)=[{{0x0, 0x0, &(0x7f0000004a00)=[{&(0x7f0000001a00)=""/4099, 0x1003}], 0x1}}], 0x1003, 0x10122, 0x0)
socket$packet(0x11, 0x3, 0x300)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r5, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r6 = socket$nl_rdma(0x10, 0x3, 0x14)
r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000500)='/sys/kernel/kexec_crash_size', 0x202, 0x0)
sendfile(r6, r7, 0x0, 0x6)
pselect6(0x40, &(0x7f0000000240)={0x0, 0x0, 0x1ff, 0xffffffffffffffdb, 0x2000000, 0x8000, 0x4, 0x1}, 0x0, &(0x7f00000002c0)={0x3ff, 0x6, 0xffffffffffffffff, 0x9, 0x4, 0xf, 0x80000006}, 0x0, 0x0)
copy_file_range(r1, &(0x7f0000000000)=0x3, r0, &(0x7f0000000080)=0x8, 0x5, 0x0)
r8 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r8, 0x0, 0x0)
r9 = accept4(r8, 0x0, 0x0, 0x80000)
sendmsg$SOCK_DIAG_BY_FAMILY(r9, &(0x7f0000002f00)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000002ec0)={&(0x7f0000002a40)={0x420, 0x14, 0x500, 0x70bd29, 0x25dfdbfd, {0x2b, 0x65}, [@INET_DIAG_REQ_BYTECODE={0x27, 0x1, "69a1a8c0a8868880be1644aa2d5740f6d638bb9690233ca8099f395a60d0ed792523da"}, @INET_DIAG_REQ_BYTECODE={0x6f, 0x1, "fbea4cf58543b5dcdf5ff88f0eaf0a22799d3ccd329d84447420812f34fb180adb31e0fe86355b9759657fbbf711f11d78b7a0f8c80d2e20304c8050c39882a85146f087ca3cb14aaacb00c90a5f82616b50f154041aff782d70b18d151d85cde9afd365b5b777e27fc238"}, @INET_DIAG_REQ_BYTECODE={0x9, 0x1, "1cbb0abbde"}, @INET_DIAG_REQ_BYTECODE={0xa0, 0x1, "ed6b9cc535697c20791e04d720963009bfb4ac3de4a9e610e7cadeaf0f734a305026c8b7256dceba5de8e6c0772cfd05e90d738f32638bd278c9d70592bd72768162663e5bf1b6c3425b79f7b34e6d8380850cfac5baf8616dcca68b97fef52c2cff9083c06704a50b4ab3dd6671cd53c4795fe3ececab4c7d6f969aa0e8f2d2059b9d76907213a50f531c79dc395fca70ed489fa9546779bc02df35"}, @INET_DIAG_REQ_BYTECODE={0x7d, 0x1, "cbb78d119b14f84da6928c8bd6e5ef05590bb9af4383188197797a4268bb583bb8d29f0b057d0523e9a0b0d30cc3a45537a4bb2d6a531d6df24f89ddf126630b714b5440fddbe00e728454333952fdcc9a88fa65c9752c5808d54b1da543414a4242d54a3e2b7f30d8b3723c127d8c6fb92718f14c321e3ba1"}, @INET_DIAG_REQ_BYTECODE={0x2f, 0x1, "48e8d10d7a96fcd0e8a19b7faa5423c93880787a1e52c06c9436e1a08fb122b8cfe2f19ec81493c735a0b1"}, @INET_DIAG_REQ_BYTECODE={0xac, 0x1, "1f60943633d86dacdbbe1d1e569b1eabbc3d62887898c617ca2db4affbd49fae559a57115e387ee04c18b3b0183806cb86923f7ac0c2ffbeaab07a3dbdb9f62d1b0c4aed2a9933b14bb0857b3fae11bbb5234b07f5b29b89bf19312958e9d0f0d1e23e07adf14bbce870094ab216fc00ff93006bc3a0d9a4e8d88572fc613da67f6c3d1483deca21bd56fc23dbab1400e63c3a1dfbe2430a50046a6e78ff819c4cf4e563c37df783"}, @INET_DIAG_REQ_BYTECODE={0x6a, 0x1, "4ccd469cecec0cf2c46d8275b6b904783dd39c9e3530f200d282a529e96ddaebba3f74d99ed03d24dad07803790e118f77868e0da4d9bce13c0175eceb81386be1db983a3c5c7aac831503dbcd16fd81905b51343356d71bf276bb31f6d91c667e44a767a00f"}, @INET_DIAG_REQ_BYTECODE={0xa4, 0x1, "b1692eb4e3eadfd6220980f1f70b75cb52fdc31dd8966a33449b457a207cbfc49dca7cbf6c795045bf26af56868770965d9fe9600e668a7d1f9df7fc03ebd549b1a3a8f651a392282cfcd3be417c7463ac2930acaef5f690f4104feac64c924bd1309c99c7e48f5766b584ec7ec0a3f4ca3256522c19dce984d000da14a472258f434ff79358b4b4e31656816f91629f316f58b789b8fa21b3b0cf1d5a64f06e"}, @INET_DIAG_REQ_BYTECODE={0x5a, 0x1, "3e92f12deae8d3d2e006c9eaf256760a6d25999bfa682d2a8b7a7406131e2c0581b6afe80e69a30ba92b75b6208e1ce740b6269626efff77a2e799ef63b5c02ac36948b6f3777c6cb79f5a776a204bc9dbcaaf52a897"}]}, 0x420}, 0x1, 0x0, 0x0, 0x10000840}, 0x0)
r10 = openat$dsp1(0xffffff9c, &(0x7f0000000140), 0x420002, 0x0)
ioctl$SNDCTL_DSP_GETODELAY(r10, 0x80045017, &(0x7f0000000180))

11m29.851277959s ago: executing program 32 (id=2246):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
shutdown(r0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x800000, 0x0)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000280)={0x2, 0x7, 0x0, 0x3, 0x2, 0x0, 0x70bd29, 0x25dfdbfc}, 0x10}, 0x1, 0x7}, 0x0)
r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_NESTED_STATE(r4, 0x4048aecb, &(0x7f0000000780)=@vmx={0x1, 0x0, 0x2080, {0x60000, 0xc000, {}, 0x1, 0x4}, {"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", "243af0202dc4e34731713086154c919b0baf97f9157b80477e086dec0d2004c5060396ab8704510dfeb8a13fac5721f472588a3cc80928620793341e9601c4b7065441400dd0625c9c3c577972a332736d12471c31fc3779186a5c41c9edc1dd3a68874af6bbee315b5ce2d792dc543232acb3822a0c38d477aa8d0c4b3e7cc61b2342b8d3dd9ff419ab074ee81e208e0ffa7e3d5314feedc86ecdb254889432f1498e2667c69193f5186489bfe478283247ac0ae60db5b64a60a0c07626656ff1b0f59f22a9467b5f74b1c2b97c94eb0dae3c1297ce3ee89c37888a956b5e5f49edcd1fde7b5cfdf2df824ed75168b8fbf8ce5301018360c1a606804952bb85113784b00dbda2b35addf806d111e78aaa5baee9dbf7b465b228336bf390ca0b84117146b52bfb587c76182ba98ee78ef948b7c3cb5999a4749236668c209edead64cf0c14483993a6d8260bc317d48931974b4eb744ffb1016e723883c28b81356189f70660139c6cd73fec3ca27e9825691e4a128a262b3829aa6979fbdb86809eed354d1dadbfc3b2e8fe076aadbe3fe1d8f3e353c053f4122348e912b1362450ef51f0f4378717a5af50cd5b63c34b28946fef79216d2931e21b4c833cf321631b865757d301a64c560187ec89e558a847bbb8493e2c693207be36a9c2d91a601839251ed77c9538a6fad6e3b0061f219f368430675bf23e0dcebc42c2d1936ba06c09071208b8db8dfbee306d642aea44a6cfb0753b965a8ccacfa11c94476a497a7d0c027ef369928ed31bdb66b11ae0371d1d52c25c9b5196158d23630273be437e84a496ddd254a1b960192e8792a79d3ee583957e284bd3e1d11cf8c422b879129b8b302231f48884145e9730cd5a9e7387a892a4dac44d0d4168849cbc14a64e639724e3d96857c19bf04ede0adab63e7680b553f8d17f00cc22b4128021e6c446b05c904c8b96ec1b861e496b6c214d286e4ff273e6783e8e389e2bd2738b2bdeaa7dc90c0974f7a0b56ea0d5e64693902b4bac3459a13f04b2a5099a601a98573d58d87180efdd5637d2d4999e6c4e230b9feb62ebfb836a15a250ad4707fd15c45d7457c7ccb2356af4193f75877abebd5d68599c0321549f5f152089674f152bd5af481d4546638c2942837de049bbf59eb57bf328f9327b25537e39bfb37a1b44a1dee929e87e461f5cd0c6bf4401e5653ce3529df475e52a660b43b55be098dd73762f1de5c95cc654720c9370c7003e59559de7194f20e3a8a11310ca6fdf2508bc056ddbf5d062cc547fe0ffe8080cb71a40f57860799db2ae17effe7709268d7a039596d555544b5ecfd92ac3f7b1cb03840e59779dbb80d263738161c4db273260231bbc275e074a1d85155109e3a674768270d326350d8d0a34634150effd9433600cedc2f287e18d446e58aa326afcba6a028f8d5c22c3ea8e6085ab23459ab3b857e72d61cbe51d37801f82ee8e56721350ee288c5834c6cdde4ec064aabf5a23efab3af7075ddb41b08e429507b70653ef093da68a5abda2ff20388ad75c76ca0baa389b46f3b5bdf01ad50d83aeaca66baa50d98afc3dd0c7570a9d41c9df41ce61da1015aab21265d01c2f380040febe015da3319eec89a07345f3a8ece47103f4b5d1fd89d9312d1c313cc059531bfbff58d2d58a98fe64a37ee5de0bbbf955928e01305a4b55d4820d874fd94ee466b2ce1a7703d7e174b6f419e3c08b0923b70fcd89da70d6fa2af368b5eb7f6d648440c31a1cf06be9ad76ecbd0fcc381d60210540e74349aae3f7a3e7cf13332d2fa1d473a9c7528a1eb53a7ef692a68588aed7c78fe437b7cfd59d972b13f1468f8559343e7049152b9d4bfa97cb6ab3065dc9623e7a5a5d0a996c9903609a27a250439168787499eee61a0688a7e4aa26db123f29c70bc50ac023edc358f935214d88488dfab2d2b47849654a7b5fdbd69f69190083b88e85b473f6ddcd00956dc1ef309e12012891a5cb77554687624a2b9f27ae7f36459512fb6f9b15dda37f19094f36498cac4961d21aaa823b9a421eb4a29c4add004909bac931a9af6e3abdf40c730fa6366d6081fd7ef633aec379228c849648a875f44e6f81a8a458439bb86f9dea3a45d94ffc25bb595b6234e70d179afcef54f1b92d06fd04449897fed4b358d742c1b40a841eea64a9088383ec324282f21581cf803d0305ec1e23442ea92b0266997baafccff74f2fae6ded8da351c4859a1e0f43bf711a3b3dda3c6b566d73de9cadf99701cc646d87e994d8251face6cc43205016c0f2a9733883fed529b72891702e05bea07bafe06383186e66c47bd255a206a0d75ecc4e0463f79de0cd61064ee95e325000bdaccf65c94d0bdfc3906a26ad837da93590a0f1b6fae5517e567d20ea58e5662088dc1a5ffc05f339a78257e480c750eee6ea1ca8b0df6c12340ae64a84a8727711484ad29fbe867577529c98823e7db4350b67aac1790e37bbee699c3a53f2ab980e14984148cf185776150f5578d6545aba06bc98b0986193d2d79839c2f659d727982e2effadacc4cf3b5a5e6ccfcb5cd69dfbef0a23f7a80a9bb341c90c28a42df0cd081a01fc908de45fe84f64b4b4ee3108aa94bdae32110bcc538baa379b5edf7d529ab71dc29351e16615ff919c28be0781ed713704827e9f47a9667831210f4b8dba616ef7660ec531d192c23e66bcb757deafdaa76fa19d9e6b4211d2accdc636183a2b6ba0bb826293ea285ffd12f631c58078b176842c362a62545c6bb231dfc1f0168917a10dadb0df9b42d56563ecf6b8c6ed1fcbbc2efc272cc5855335a83397fb97e97edc2852a907e4d2387b70b2c0ae061c1e13eec9c5dfff61aa8f5940af53ccceead8384f31962bb21764cf8bd57b61b84830bad7b37197796fa958e38d98aa9d8da0c9e2716594941ca5a23ea5e419245139d8549f7d8ed5f9297f8652cc6d9c580b34e96d656b3fe5606af35546d6e089091a41abc7e99bfc49a2a68311a0ec3f12ca57d043cf993392d52adc78d1cd1870cccabf08151f14f04904df87b9d303bca24c96859b754fb9768f21fbeaa163debc800140302cf360081c634af9b6b3610fb8a680eb0e172333a9f6d7d96537bd4ec6007212f3d53816deab4cbcd2c79bec29d3d58cdf69885b97e98287b71c5fae2860bffec5edd3c9b1728a1b90266c948dc87530287df11676959e4a8048b02d290f55d74a9b8687507550182ccaa29198fe557ff117a574aabf05d1ecb842bd9e70ba7345111369c2c57dfdb89cc9f80ac6995bb3221f88c4f5c1a391e812483b5a83aedf66bc6429b41c37b6bdd3785609d589f580bba28dbd0ebbd639935f279506737fd827a8390bacbdecf0de81f1960582f05795f93b0817e4778478d4c1b1a76a67c8629283d6a1480d2776dc9c961cdeb21b04fb6dfc879154864485af743ab28c4258d3778cb288ce004b2d2135b52f61359ef4c6ca965c048306ecb9f042dfcb8b6abeeac7b96a2b469ed34e589c9ad0fb56258715afcf3b710e4553a205f79b2af742bd06e1e8967d4e3141ea9f26ba7d45b2798c19fabc2dc5d7d69e9b22fdefb30951a1013e0503aa4418516e52ea40cd4b07c927c79d5800ccf3ec5bc13222f76665c1481d73f965f39c39b38fd9a9fe0a2189b39dc975cbc61f368b1fafe9cb5320bf8caa216d1064f2433e55e75ad76e24d7ba3956caac9c3d3508363484d9fb51e08adca5af71e391bec0b88be4a7b27eb46d64051caab635622d7ff199af7886d3b2b472184e5b4626453b860c6aa03767f0c6994600cb7c1a24f1d8dc9a8b4d3a6924ea5fbb2df314df7a98ecad4b28be639211d71b8cd8e91e512cabd84578d76a839b174d5ebdfcbfdb125d60949b639986839b126992566dbcafc1445a040fce83d2f8145bdbd83d7b4754a08763b8f0824b743acf32821acb1a1b866115c485d0ae1e3c7d7e578aaa3920235d00287a6675c35270458a6462282257abf65485f98f394529a0c9783b2aba7e8f50e7490039d2a88d535c38797dad72b07daca543c43509588e9566b49ca0ff41e8be090df2d29b3973471b88f16de227e475f0e704f85c449b93b5f94ed9f984bb57b27694e86c0f534b3106ca9f4d6a77fcb22601cf14b57ccfbee0a11022746d4876439d846089b5c9d525a243709455549fa6836dbf56d451a31a72937e27485cf5405d7dbfe2c2fa885f52bf95e657d47b4f82ef590d22de6b0ea9c1a4134d90bce20713ec0e0f656627a474efe36a3caba7adf977aeffae351fd8b4bcb2568ca0230a177ec3cf168bcabe9f2818131640bf8396a25c04e8b17c01b80f4c2cac208a53b40af66ec1365535a4df0d25b992a5ad1396a0c9e224345d7e47dfc1a623c16a9d7e99cba6c0146622fc3b9531cfdf7e8703e978f282f3f6c25fec3c96a76271890de0f72ab764a350a950e3e9fc0f109d17b38be29a05c9beb8e9f00b3c8e3f04c54f30f754e71c45405e4503742570fadb094907db0bafc8aa6ff32a9a7b9bcd9534ec08ee6dca6c644233faf398b1ade953cdf41fbc8079b1956c0f8ef5712f0afc8bdd87d79e4c8fd008d3399befcf6050a083b21443f972149bc439816c2da68e70505d5ca759392be600442efa556e333555a0ed340f15274b5b0245eeadc4f3c823a00efb723f0aecc0b08b83c54471d8af9024b76beb50d676a851979e237b452239de27d9fd8824972fbba1a113c8f22d9c48b396387a71bf3f1540c07c28f7369fd4f6a2d94cee8f2af6b97ef85a720921086807a960f386b41b54b856366b93be9d0e7c2475b0c1675580ad078b3782d4f185c6ada9795e5072d2620d5c3def44c3282169af3e7604cbc7852e6519a9337fa29ad590468e04aef819882f65828059b82279271c986e5eb1a52624c953bc8a0dc9ae4c013d07e66b4ce75d9be87d102962a1960a5cf692eecd74a68f41d7d5b098d04a28ba4ace845bdfb49bd2897cb39163ea104eea3b5080e2235e2e31ff6dc9cda7745d43e1b35bdf23fc0a7b4331a4a36a7cea0286b2ad0399456c3d12a17a998866e1000e0842a8076b600ee2e34c52432552c52b41f0ac465ab030e29fccec4a18e07937cf8daf232d595441bda37aa3b71d66ec0fb86e7bd72c557788b25430d88fb3350d3742c870fdd4dfa7901fbc76344537b2f6145b1e1d0fbf561ec85022d04bba0a8ba4754c6ed80a9564d4d2620b03fd856803d63e6224a24170002b5661386f69451efa0cdabd99a19ed66ac2156d8236fb020021e875771b170eb5bec3fadfe8be851e4e80b75fdab71a9136fd4c188382ff723f36ed46cfe24c91a147ea3697b31da59de429f31bf1f6154e9ce0bbc8606529bb77dd38455e005715abc98508e5b5cf2b4c9cfb6bd10c01a267f6f58f9daeac171cc6fbbce33a0f7a0be073b6bda98f76cc43dc5e314aa15b9f7defdd6992488a1e7552dc5661ee075fd33159e87f1c97b70dd83bd9f8d34b5d0f748d3ec0e479ce478850d2cbc6feba63549ad4ac379f773a51e9c7bd40f0891a36fa52a91a7700228b4b93e1f6331f85dcd5d671597d57fb369853a6ede7528ced5b1d5396a2e9b68ba1cdde4691a22144bd0291fa0ddd361a441bbcefbb8058f1ee629f90042de226a04affcaf07631c13b8d316d93df8683f43f8dbe7726187a8def49bda022723c26886193ef866f1f7b91de3d6284f9156839928a08a612b2bcc619364ed063cb8ef0813ca3524bd8d4508fcaab3cd0955abe861def83097a2b2f0a7e22e7d7a9c51a1e"}})
recvmmsg(r0, &(0x7f00000048c0)=[{{0x0, 0x0, &(0x7f0000004a00)=[{&(0x7f0000001a00)=""/4099, 0x1003}], 0x1}}], 0x1003, 0x10122, 0x0)
socket$packet(0x11, 0x3, 0x300)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r5, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r6 = socket$nl_rdma(0x10, 0x3, 0x14)
r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000500)='/sys/kernel/kexec_crash_size', 0x202, 0x0)
sendfile(r6, r7, 0x0, 0x6)
pselect6(0x40, &(0x7f0000000240)={0x0, 0x0, 0x1ff, 0xffffffffffffffdb, 0x2000000, 0x8000, 0x4, 0x1}, 0x0, &(0x7f00000002c0)={0x3ff, 0x6, 0xffffffffffffffff, 0x9, 0x4, 0xf, 0x80000006}, 0x0, 0x0)
copy_file_range(r1, &(0x7f0000000000)=0x3, r0, &(0x7f0000000080)=0x8, 0x5, 0x0)
r8 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r8, 0x0, 0x0)
r9 = accept4(r8, 0x0, 0x0, 0x80000)
sendmsg$SOCK_DIAG_BY_FAMILY(r9, &(0x7f0000002f00)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000002ec0)={&(0x7f0000002a40)={0x420, 0x14, 0x500, 0x70bd29, 0x25dfdbfd, {0x2b, 0x65}, [@INET_DIAG_REQ_BYTECODE={0x27, 0x1, "69a1a8c0a8868880be1644aa2d5740f6d638bb9690233ca8099f395a60d0ed792523da"}, @INET_DIAG_REQ_BYTECODE={0x6f, 0x1, "fbea4cf58543b5dcdf5ff88f0eaf0a22799d3ccd329d84447420812f34fb180adb31e0fe86355b9759657fbbf711f11d78b7a0f8c80d2e20304c8050c39882a85146f087ca3cb14aaacb00c90a5f82616b50f154041aff782d70b18d151d85cde9afd365b5b777e27fc238"}, @INET_DIAG_REQ_BYTECODE={0x9, 0x1, "1cbb0abbde"}, @INET_DIAG_REQ_BYTECODE={0xa0, 0x1, "ed6b9cc535697c20791e04d720963009bfb4ac3de4a9e610e7cadeaf0f734a305026c8b7256dceba5de8e6c0772cfd05e90d738f32638bd278c9d70592bd72768162663e5bf1b6c3425b79f7b34e6d8380850cfac5baf8616dcca68b97fef52c2cff9083c06704a50b4ab3dd6671cd53c4795fe3ececab4c7d6f969aa0e8f2d2059b9d76907213a50f531c79dc395fca70ed489fa9546779bc02df35"}, @INET_DIAG_REQ_BYTECODE={0x7d, 0x1, "cbb78d119b14f84da6928c8bd6e5ef05590bb9af4383188197797a4268bb583bb8d29f0b057d0523e9a0b0d30cc3a45537a4bb2d6a531d6df24f89ddf126630b714b5440fddbe00e728454333952fdcc9a88fa65c9752c5808d54b1da543414a4242d54a3e2b7f30d8b3723c127d8c6fb92718f14c321e3ba1"}, @INET_DIAG_REQ_BYTECODE={0x2f, 0x1, "48e8d10d7a96fcd0e8a19b7faa5423c93880787a1e52c06c9436e1a08fb122b8cfe2f19ec81493c735a0b1"}, @INET_DIAG_REQ_BYTECODE={0xac, 0x1, "1f60943633d86dacdbbe1d1e569b1eabbc3d62887898c617ca2db4affbd49fae559a57115e387ee04c18b3b0183806cb86923f7ac0c2ffbeaab07a3dbdb9f62d1b0c4aed2a9933b14bb0857b3fae11bbb5234b07f5b29b89bf19312958e9d0f0d1e23e07adf14bbce870094ab216fc00ff93006bc3a0d9a4e8d88572fc613da67f6c3d1483deca21bd56fc23dbab1400e63c3a1dfbe2430a50046a6e78ff819c4cf4e563c37df783"}, @INET_DIAG_REQ_BYTECODE={0x6a, 0x1, "4ccd469cecec0cf2c46d8275b6b904783dd39c9e3530f200d282a529e96ddaebba3f74d99ed03d24dad07803790e118f77868e0da4d9bce13c0175eceb81386be1db983a3c5c7aac831503dbcd16fd81905b51343356d71bf276bb31f6d91c667e44a767a00f"}, @INET_DIAG_REQ_BYTECODE={0xa4, 0x1, "b1692eb4e3eadfd6220980f1f70b75cb52fdc31dd8966a33449b457a207cbfc49dca7cbf6c795045bf26af56868770965d9fe9600e668a7d1f9df7fc03ebd549b1a3a8f651a392282cfcd3be417c7463ac2930acaef5f690f4104feac64c924bd1309c99c7e48f5766b584ec7ec0a3f4ca3256522c19dce984d000da14a472258f434ff79358b4b4e31656816f91629f316f58b789b8fa21b3b0cf1d5a64f06e"}, @INET_DIAG_REQ_BYTECODE={0x5a, 0x1, "3e92f12deae8d3d2e006c9eaf256760a6d25999bfa682d2a8b7a7406131e2c0581b6afe80e69a30ba92b75b6208e1ce740b6269626efff77a2e799ef63b5c02ac36948b6f3777c6cb79f5a776a204bc9dbcaaf52a897"}]}, 0x420}, 0x1, 0x0, 0x0, 0x10000840}, 0x0)
r10 = openat$dsp1(0xffffff9c, &(0x7f0000000140), 0x420002, 0x0)
ioctl$SNDCTL_DSP_GETODELAY(r10, 0x80045017, &(0x7f0000000180))

8m7.908836824s ago: executing program 0 (id=3015):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0xfca804a0, 0x0, 0x8, 0x0, &(0x7f0000000300)=""/8, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

8m7.831984346s ago: executing program 0 (id=3016):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x6, 0x4, &(0x7f0000000580)=ANY=[@ANYRESOCT=r0], &(0x7f00000005c0)='GPL\x00'}, 0x94)
r2 = socket(0x10, 0x803, 0x8)
sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x2d}, 0x1, 0x0, 0x0, 0x8801}, 0x8000)
r3 = socket$netlink(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), 0xffffffffffffffff)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r4, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)=ANY=[@ANYBLOB="1401000020000101000000000000000001"], 0x114}], 0x1}, 0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r5, 0x8933, &(0x7f0000010a40)={'wpan3\x00', <r6=>0x0})
sendmsg$NL802154_CMD_SET_SEC_PARAMS(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRESDEC=r5, @ANYBLOB="57b626bd7000fddbdf2515000000050029002100000008000300", @ANYRES32=r6], 0x24}, 0x1, 0x0, 0x0, 0x24000000}, 0x804)
getsockname$packet(r0, &(0x7f0000000600)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600000000ff6122314a000800", @ANYRES8=0x0, @ANYRES64=r3], 0x3c}}, 0x40000)
r8 = socket(0x9, 0x4, 0x0)
r9 = socket(0x28, 0x5, 0x0)
listen(r9, 0xb)
connect$vsock_stream(r8, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)
sendmmsg(r8, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000140)}], 0x1}}], 0x1, 0x0)
r10 = accept4$unix(r9, 0x0, 0x0, 0x800)
recvfrom$unix(r10, &(0x7f0000000500)=""/280, 0x118, 0x60, 0x0, 0x0)
r11 = openat$tcp_congestion(0xffffff9c, &(0x7f0000002000), 0x1, 0x0)
write$tcp_congestion(r11, &(0x7f0000002040)='cdg\x00', 0x4)
r12 = openat$binder_debug(0xffffff9c, &(0x7f0000000340)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0)
r13 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r13, 0x1, r12, &(0x7f00000026c0)={0x30000000})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000001c0)={r1, r7, 0x25, 0x0, @val=@netkit={@void, @value=r12}}, 0x1c)
r14 = syz_open_dev$sndctrl(&(0x7f0000000140), 0xa, 0x200a02)
ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r14, 0x80dc5521, &(0x7f0000000240)=""/242)
setsockopt$MRT6_ADD_MFC(0xffffffffffffffff, 0x29, 0xcc, &(0x7f00000002c0)={{0xa, 0x4e22, 0x401, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x9}, {0xa, 0x4e21, 0x7f, @mcast2, 0xc5}, 0x0, {[0x200, 0xfff, 0x9, 0x10001, 0x8000, 0xd0, 0xdbcd, 0xc76c]}}, 0x5c)

8m7.711507119s ago: executing program 0 (id=3017):
r0 = syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000400)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581", @ANYRES8], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000b00)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="00000f00000009003d140f3c369197d09647190890"], 0x0, 0x0, 0x0, 0x0}, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f0000000000), 0x0, 0x0)
ioctl$HIDIOCGUSAGE(r1, 0xd01c4813, &(0x7f0000000100)={0x2, 0xffffffff, 0x7fffffff, 0x2, 0x0, 0x8}) (fail_nth: 1)

8m4.679439346s ago: executing program 0 (id=3026):
syz_usb_connect(0x0, 0x2d, &(0x7f0000000180)=ANY=[@ANYBLOB="1201fb0009030320d812010079de01ec020109021b0001000003000904000001785ecc00090585020004"], 0x0)
r0 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
read$char_usb(r0, &(0x7f0000000000)=""/188, 0xbc)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="1400000016000b63d25a80648c2594f90224fc60", 0x14}], 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x400c801}, 0x4000000)
socket(0x10, 0x3, 0x4)
openat2$dir(0xffffff9c, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r4, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r6 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1b000000000000"], 0x48)
writev(r6, &(0x7f00000000c0)=[{&(0x7f0000000140)='2', 0x1}], 0x1)

8m1.631440692s ago: executing program 0 (id=3035):
r0 = eventfd(0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xf88e470f, 0xed}]})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000000180)={0x1})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000040)="0f01cb650f7410262e66f36d0f330f09660f3a0cb90000a6752066b9800000c00f326635004000000f300f01d7ba4100ed", 0x31}], 0x1, 0x4498bda7e2139f37, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000003c0)={[0x0, 0x5, 0x40, 0x40, 0x0, 0x3, 0x2004cb, 0x4000000000000000, 0x2, 0x2, 0x0, 0x1, 0x0, 0x2, 0x9, 0x1], 0x80a0000})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = openat$kvm(0xffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000780)={[0xd45, 0x1000009, 0xfffffffffffffffb, 0x10000000, 0x10000, 0x3, 0x4003004c2, 0xe, 0x9, 0xfffffffffffffffe, 0x1, 0x0, 0x3, 0x0, 0x9, 0x8d], 0x100000, 0x4880})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
syz_emit_ethernet(0x36, &(0x7f0000000000)={@local, @local, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "6410a6", 0x0, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x1e}, @local}}}}, 0x0)
sendmsg$nl_generic(r7, &(0x7f0000002780)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)={0x14, 0x40, 0x1, 0x7fffb, 0x4, {0x1}}, 0x14}}, 0x4008094)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007d0000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000003640)={r8, 0x27, 0xe, 0x0, &(0x7f0000000440)="f8ad48ccf77f5b08000000000000", 0x0, 0x0, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0}, 0x4c)
poll(&(0x7f0000000100)=[{r0}], 0x1, 0x1ff)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x2400, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x0)
r12 = syz_open_dev$dvb_demux(&(0x7f0000000140), 0x800, 0x140)
ioctl$DVB_DEMUX_DMX_SET_FILTER(r12, 0x403c6f2b, &(0x7f0000000200)={0x9, {"94d6d4eaf1441ec3fe6b3bccac1ab9f5", "1f56c3e8b37eb2ac1f35ba7837ef548b", "a268978fc8f73b9db7a182b7013e9d19"}, 0x3, 0x5})
ioctl$KVM_CAP_ENFORCE_PV_FEATURE_CPUID(r11, 0x4068aea3, &(0x7f0000000080)={0x94, 0x0, 0x1})

8m0.78061963s ago: executing program 0 (id=3040):
r0 = socket$netlink(0x10, 0x3, 0xc)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)
ioctl$XFS_IOC_ATTRLIST_BY_HANDLE(r0, 0x4038587a, &(0x7f0000000280)={{<r1=>r0, &(0x7f0000000040)=')-.#%\x00', 0x610902, &(0x7f0000000080)={@_ha_fsid={[0x10001, 0x8c9f]}, {0x7, 0x1000, 0x8001, 0x2}}, 0x3, &(0x7f00000000c0)={@_ha_fsid}, &(0x7f0000000100)=0x5}, {[0x4, 0x20000000, 0x1, 0x5]}, 0x5, 0x0, 0x0})
r2 = open(&(0x7f0000000180)='.\x00', 0x0, 0x0)
flock(r2, 0x2)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000440)='oom_adj\x00')
read$FUSE(r3, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'veth0_to_team\x00', <r5=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=@getchain={0x24, 0x11, 0x839, 0x70bd28, 0x0, {0x0, 0x0, 0x0, r5, {0x1, 0x2}, {0xd}, {0x11, 0xfff1}}}, 0x24}, 0x1, 0x0, 0x0, 0x84}, 0x0)
r6 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000440)=0xffffffffffffffff, 0x4)
r7 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000380)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26}, 0x20)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={r7, 0x20, &(0x7f0000000100)={0x0, 0x0, <r8=>0x0, 0x0}}, 0x10)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000000)=r8, 0x4)
r9 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0)
r10 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/compact_memory\x00', 0x1, 0x0)
sendfile(r10, r9, &(0x7f00000000c0)=0x58, 0x5)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f00000004c0)={{0x1, 0x1, 0x18, <r11=>r0, {0x3}}, './file0\x00'})
r12 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x1, 0x14, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000055a60701000000001000000018110000", @ANYRES32=r12, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018110000", @ANYRES32=r12, @ANYBLOB="0000000000000000b70200004300000085000000860000008500000011000000bf91000000000000b7020000010000008500000085000000b70000000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$DVB_DEMUX_DMX_EXPBUF(0xffffffffffffffff, 0xc00c6f3e, &(0x7f0000000580)={0x5, 0x0, <r13=>r0})
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x6, 0x1d, &(0x7f0000000300)=ANY=[@ANYBLOB="01b1f4fffcffffff1850000004000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000000850000000c00e5ffb60000000000000185100000fbffffff950000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7020000000000008500000086000000b7080000000000007b8af8ff00000000b7080000060000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70500000800000085000000a500000018140000", @ANYRES32=0x1, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'], 0xfffffffffffffffe, 0x8, 0x37, &(0x7f0000000400)=""/55, 0x81f00, 0x20, '\x00', r5, @xdp=0x25, r6, 0x8, &(0x7f0000000480)={0x8, 0x3}, 0x8, 0x10, 0x0, 0x0, r8, r9, 0x2, &(0x7f00000005c0)=[r11, r12, 0xffffffffffffffff, r13, 0xffffffffffffffff], &(0x7f0000000600)=[{0x4, 0x1, 0x7, 0x5}, {0x0, 0x4, 0x9, 0x3}], 0x10, 0xc916}, 0x94)

7m45.711635632s ago: executing program 33 (id=3040):
r0 = socket$netlink(0x10, 0x3, 0xc)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)
ioctl$XFS_IOC_ATTRLIST_BY_HANDLE(r0, 0x4038587a, &(0x7f0000000280)={{<r1=>r0, &(0x7f0000000040)=')-.#%\x00', 0x610902, &(0x7f0000000080)={@_ha_fsid={[0x10001, 0x8c9f]}, {0x7, 0x1000, 0x8001, 0x2}}, 0x3, &(0x7f00000000c0)={@_ha_fsid}, &(0x7f0000000100)=0x5}, {[0x4, 0x20000000, 0x1, 0x5]}, 0x5, 0x0, 0x0})
r2 = open(&(0x7f0000000180)='.\x00', 0x0, 0x0)
flock(r2, 0x2)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000440)='oom_adj\x00')
read$FUSE(r3, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'veth0_to_team\x00', <r5=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=@getchain={0x24, 0x11, 0x839, 0x70bd28, 0x0, {0x0, 0x0, 0x0, r5, {0x1, 0x2}, {0xd}, {0x11, 0xfff1}}}, 0x24}, 0x1, 0x0, 0x0, 0x84}, 0x0)
r6 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000440)=0xffffffffffffffff, 0x4)
r7 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000380)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26}, 0x20)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={r7, 0x20, &(0x7f0000000100)={0x0, 0x0, <r8=>0x0, 0x0}}, 0x10)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000000)=r8, 0x4)
r9 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0)
r10 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/compact_memory\x00', 0x1, 0x0)
sendfile(r10, r9, &(0x7f00000000c0)=0x58, 0x5)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f00000004c0)={{0x1, 0x1, 0x18, <r11=>r0, {0x3}}, './file0\x00'})
r12 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x1, 0x14, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000055a60701000000001000000018110000", @ANYRES32=r12, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018110000", @ANYRES32=r12, @ANYBLOB="0000000000000000b70200004300000085000000860000008500000011000000bf91000000000000b7020000010000008500000085000000b70000000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$DVB_DEMUX_DMX_EXPBUF(0xffffffffffffffff, 0xc00c6f3e, &(0x7f0000000580)={0x5, 0x0, <r13=>r0})
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x6, 0x1d, &(0x7f0000000300)=ANY=[@ANYBLOB="01b1f4fffcffffff1850000004000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000000850000000c00e5ffb60000000000000185100000fbffffff950000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7020000000000008500000086000000b7080000000000007b8af8ff00000000b7080000060000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70500000800000085000000a500000018140000", @ANYRES32=0x1, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'], 0xfffffffffffffffe, 0x8, 0x37, &(0x7f0000000400)=""/55, 0x81f00, 0x20, '\x00', r5, @xdp=0x25, r6, 0x8, &(0x7f0000000480)={0x8, 0x3}, 0x8, 0x10, 0x0, 0x0, r8, r9, 0x2, &(0x7f00000005c0)=[r11, r12, 0xffffffffffffffff, r13, 0xffffffffffffffff], &(0x7f0000000600)=[{0x4, 0x1, 0x7, 0x5}, {0x0, 0x4, 0x9, 0x3}], 0x10, 0xc916}, 0x94)

10.994181903s ago: executing program 3 (id=4617):
syz_usb_connect(0x0, 0x2d, &(0x7f0000000180)=ANY=[@ANYBLOB="1201fb0009030320d812010079de01ec020109021b0001000003000904000001785ecc00090585020004"], 0x0)
r0 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
read$char_usb(r0, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="1400000016000b63d25a80648c2594f90224fc60", 0x14}], 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x400c801}, 0x4000000)
socket(0x10, 0x3, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r6 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1b000000000000"], 0x48)
writev(r6, &(0x7f00000000c0)=[{&(0x7f0000000140)='2', 0x1}], 0x1)

10.925706817s ago: executing program 5 (id=4619):
mmap(&(0x7f000000c000/0x4000)=nil, 0x4000, 0xa, 0x31, 0xffffffffffffffff, 0x0)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, 0x0, &(0x7f0000048000), 0x0)

10.629561112s ago: executing program 5 (id=4620):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000f80)=@filter={'filter\x00', 0x4, 0x4, 0x4f4, 0xffffffff, 0x2e8, 0x220, 0x2e8, 0xfeffffff, 0xffff2000, 0x42c, 0x42c, 0x42c, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @ipv4={'\x00', '\xff\xff', @local}, [0xffffff00, 0xffffff00, 0x0, 0xffffff00], [0xff, 0xffffff00, 0xffffff00, 0xff], 'caif0\x00', 'vlan0\x00', {}, {}, 0x32, 0x4, 0x0, 0x1e}, 0x2f2, 0x1fc, 0x220, 0x0, {}, [@common=@inet=@hashlimit3={{0x17c}, {'macvlan1\x00', {0x4, 0x8000, 0x48, 0x0, 0xffff, 0x8, 0x196, 0xf, 0x18, 0x8}, {0x4f400000}}}]}, @common=@unspec=@NFQUEUE1={0x24, 'NFQUEUE\x00', 0x1, {0x8, 0x9}}}, {{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @rand_addr=' \x01\x00', [0xff000000, 0xff, 0xffffffff, 0xff], [0xff, 0xffffffff, 0x0, 0xff], 'team0\x00', 'veth0_virt_wifi\x00', {0xff}, {}, 0x29, 0x8, 0x6, 0xc}, 0x0, 0xa4, 0xc8}, @REJECT={0x24}}, {{@uncond, 0x0, 0x120, 0x144, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'veth1_virt_wifi\x00', {0xa, 0xd164, 0x4, 0x6fd, 0x6, 0xa, 0x2, 0x90, 0x18}, {0x200000}}}, @common=@icmp6={{0x24}, {0x8, "b30b", 0x1}}]}, @common=@unspec=@STANDARD={0x24, '\x00', 0x0, 0xfffffffffffffffe}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x550)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, 0x0, 0x4000004)
ioctl$sock_SIOCBRDELBR(r1, 0x89a2, &(0x7f0000000000)='bridge0\x00')
syz_emit_ethernet(0x56, &(0x7f0000000100)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0xd}, @dev, @void, {@ipv4={0x800, @icmp={{0xb, 0x4, 0x0, 0x0, 0x48, 0x0, 0x20, 0x0, 0x1, 0x0, @remote, @remote, {[@ssrr={0x89, 0x17, 0x1f, [@remote, @loopback, @initdev={0xac, 0x1e, 0x1, 0x0}, @private=0xa010100, @remote]}]}}, @source_quench={0x8, 0x0, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast, @dev}}}}}}, 0x0)
r2 = openat$tun(0xffffff9c, &(0x7f0000000080), 0x8200, 0x0)
write$tun(r2, &(0x7f0000000200)={@val={0x0, 0x6000}, @val={0x0, 0x80, 0x10, 0x6f9, 0x3, 0x2}, @eth={@local, @multicast, @void, {@ipv6={0x86dd, @icmpv6={0x6, 0x6, "889da7", 0xce, 0x3a, 0x0, @loopback, @rand_addr=' \x01\x00', {[@routing={0x3b, 0x6, 0x0, 0x80, 0x0, [@empty, @private1={0xfc, 0x1, '\x00', 0x1}, @remote]}, @fragment={0x2e, 0x0, 0x40, 0x1, 0x0, 0x0, 0x67}, @hopopts={0x1d, 0x3, '\x00', [@hao={0xc9, 0x10, @remote}, @jumbo={0xc2, 0x4, 0x800}, @pad1]}, @hopopts={0x2c, 0x2, '\x00', [@hao={0xc9, 0x10, @mcast2}, @ra={0x5, 0x2, 0x3}]}, @routing={0x49, 0x4, 0x3, 0x1, 0x0, [@remote, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}]}], @echo_request={0x80, 0x0, 0x0, 0x4, 0x8, "2c1bb48e9b5f1d81b897d333c34a3c583a48445ec650"}}}}}}}, 0x112)

10.62883166s ago: executing program 5 (id=4621):
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
listen(r0, 0x0)
listen(r0, 0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
recvmmsg(r1, &(0x7f0000001e80), 0x0, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mremap(&(0x7f000054e000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f000022c000/0x3000)=nil)
r3 = io_uring_setup(0x549c, &(0x7f0000000000)={0x0, 0x70e6, 0x2, 0x2, 0xf2})
io_uring_register$IORING_REGISTER_IOWQ_MAX_WORKERS(r3, 0x13, &(0x7f0000000400)=[0xe758, 0xf8de], 0x2)
syz_open_procfs(0xffffffffffffffff, 0x0)
unshare(0x6a040000)
mmap(&(0x7f00005f7000/0x1000)=nil, 0x1000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
r4 = openat$pmem0(0xffffffffffffff9c, &(0x7f0000002340), 0x80d01, 0x0)
pwrite64(r4, 0x0, 0x0, 0x2)
ioctl$BLKRRPART(r4, 0x125f, 0x1f)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x11, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
openat$qat_adf_ctl(0xffffff9c, &(0x7f0000000080), 0x0, 0x0)
openat$dsp1(0xffffff9c, &(0x7f0000000040), 0x840, 0x0)
madvise(&(0x7f0000177000/0x1000)=nil, 0x1000, 0xe)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xa)

8.86313514s ago: executing program 2 (id=4624):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d00000014000000110001"], 0xa8}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000032c0)=ANY=[@ANYBLOB="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"], 0x21c}, 0x1, 0x0, 0x0, 0x40044}, 0x20008000)
socket(0x23, 0x5, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000100)='syzkaller\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x40f00, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
close(0x3)
r4 = socket$kcm(0x2b, 0x1, 0x0)
syz_io_uring_setup(0x65ef, 0x0, &(0x7f0000000000)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0, &(0x7f0000000000))
syz_io_uring_submit(r5, r6, 0x0, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x6, 0x0, 0x0, 0x0, {0x1100}})
shutdown(r4, 0x1)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="13f4ffffffffa89b000008000000000000004d1c", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x1f, 0x11, &(0x7f00000009c0)=ANY=[@ANYBLOB="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", @ANYRES32=r7, @ANYBLOB="0000000000000000b703000008000000850000006a000000850000005000000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x14, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r8, r7}, 0xc)

8.860411393s ago: executing program 5 (id=4632):
r0 = openat$ttyS3(0xffffff9c, 0x0, 0x210100, 0x0)
syz_open_pts(r0, 0x81)
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SG_NEXT_CMD_LEN(r1, 0x2283, &(0x7f0000000380)=0x800)
ioctl$TIOCCBRK(0xffffffffffffffff, 0x5428)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @raw_data="dea233684c996156af0d4bd8e3300217e750b8c97b7123d48003e7e1d3be5f710c41a1db6719881876e9bcc6e2f73c67cc6b675eb43188b5b7f9f898868de9a9c5d536d418ba283121a73a5aba55a87d2a2525295f4492bbde02ad8bc8e88779f2de06f38e99172df4d45b6f13c813dee4230c204a93172922b778fef7a1f89ce876bb89d44cd705bbb28db4869dfac20d928950507acd92c02d17f51b0a627539f6e0a0bdb92004bc6252cd35e8cd100962db9a83ad63a4e7e1ca17c1b6aac63fefa9bebe429d00"})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = socket(0xa, 0x1, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000340)={'lo\x00', <r5=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="300000001c00070c2bbd70000000000002000000", @ANYRES32=r5, @ANYBLOB="4000100a14000100009a"], 0x30}, 0x1, 0x0, 0x0, 0x40000}, 0x20024090)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r7, 0xc0285700, &(0x7f0000000080)={0xffffffff, "5e5c3446aa0ecd604c893eba3198600b1891109654fe9676d14574be70b6225c", <r8=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000100))
ioctl$SYNC_IOC_MERGE(r8, 0xc0303e03, &(0x7f00000000c0)={"ff87c89d4e3e6bd4ae7ee3551b880c0ac56cb2a58b7da498a7045278c8043bbe", r8})
r9 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000300)='./binderfs/binder0\x00', 0x0, 0x0)
r10 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
r11 = dup3(r10, r9, 0x0)
ioctl$BINDER_WRITE_READ(r11, 0xc0306201, &(0x7f0000000640)={0x8, 0x0, &(0x7f0000000000)=[@decrefs={0x40086315}], 0x0, 0x0, 0x0})
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f0000001980)={0x0, 0x0, &(0x7f0000001940)={&(0x7f00000003c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="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"], 0x68}, 0x1, 0x0, 0x0, 0x80}, 0x0)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f00000011c0)={0xfc, {"a483885aed0d09f91b5e070987f70e06d038e7ff7fc6e5539b0d3e0e8b089b3f073063030890e0879b0af8c6e70a9b334a959b669a240d0a0af3988f7ef319520100ffe8d178708c523c921b1b5b31070d0773090acd3b78130daa61d8e8040000005802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801118c20b8f16bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399ea4727d145d546a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce7cd9f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a040200b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a64002bebc2407aed92fa9b6578b4779415d4ac01b75d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4350aeae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef64ab253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c4e72730d56bf068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827475e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcb32b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba36b37767b6b45a44957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b94025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40427db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b03512629f46366e7205dd8d6f37525c1a0e94210dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9154f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afa2d603994732d6b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02daee67918e5d6787463183b4b87c1050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21396532713e5b69cf767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7340002000000000000f288a4510de03dab19d26285e6a89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4108b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeaf1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b627cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e46a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5c92441918145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456015f08e5247d33ae2d35603ff8454c16f8342856935125102bb784ed7148b6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed608000000a006e39336d07c2b80817a28ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030f81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c00004f5d374755534d7f68f679c4ff516e9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c6b00000000000000f96f06817fb903729a7db6ff957697c9ede7885d94ffb0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f900000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c00", 0x1000}}, 0xffbc)
sendmsg$nl_route(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000023c0)=@newlink={0x38, 0x10, 0x1, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, 0x41800, 0x1}, [@IFLA_GROUP={0x8}, @IFLA_GSO_MAX_SIZE={0x8, 0x29, 0x10000}, @IFLA_TXQLEN={0x8, 0xd, 0x80}]}, 0x38}, 0x1, 0x0, 0x0, 0x24040051}, 0x24008080)

7.884996749s ago: executing program 5 (id=4626):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19)
mprotect(&(0x7f000002c000/0x1000)=nil, 0x1000, 0x2)
madvise(&(0x7f000001b000/0x3000)=nil, 0x3000, 0x9)
r0 = syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000280)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581", @ANYBLOB="f7", @ANYRESDEC], 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000b80)={0x44, &(0x7f0000000900)=ANY=[@ANYBLOB="0015b3"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x4c}}, 0x20000000)
gettid()
socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$unix(r4, &(0x7f00000bd000), 0x80001b4, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58)
r6 = accept4(r5, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000000200)="ad56b6cc0400aeb995298992ea5400c2", 0x10)
recvmmsg$unix(r6, &(0x7f00000053c0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0xa32, 0x60, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000c80)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r7, {0x0, 0xffe0}, {0xffff, 0xffff}, {0x10}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0xe, 0x3, 0x1, 0x1}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x51}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000500)=@newqdisc={0x170, 0x24, 0x400, 0x200000, 0x0, {0x60, 0x0, 0x0, r7, {}, {0xffff, 0xffff}, {0x10, 0xfffa}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x140, 0x2, [@TCA_GRED_STAB={0x104, 0x2, "abcc61b4e508c02286f1bafc7a22c407a52b0e13291c865d493f15736245f220cd4e40006df455836aa3bd3aaa2c9b95578719c46f89e0179832927deecf7465ea95bd97b018b7afaccdcb28bb42d677b73c44e790f0875fb4b795ca95b7dd712d2c5d69945535f92f74a71236749b077cc85e96554beb53c986a216051bd5979a8cfcfe9f98be58ff7944f6cfda8579dbaedceee578bfd1fb554b6e185e9315425ef0a3fc69d17ede93fc7c46357990604b9f12033688caa0b04adecfc926b3f6ca25bcb5432905e3f30ccbf10cf0f2d00858ba2bbd2702b8d4a7a7c744fbaa2fa35b1c586020d600"}, @TCA_GRED_PARMS={0x38, 0x1, {0x2ec, 0x2, 0x0, 0xc, 0x7, 0x5, 0x16, 0x9, 0x9, 0x5, 0x12, 0x20, 0x54, 0x5, 0x9, 0x1}}]}}]}, 0x170}}, 0x24040004)
syz_usb_ep_write(r0, 0x81, 0x8, &(0x7f0000000080)="00012c615bc20000")
r8 = socket$phonet_pipe(0x23, 0x5, 0x2)
getsockopt$PNPIPE_ENCAP(r8, 0x113, 0x1, &(0x7f0000001780), &(0x7f00000017c0)=0x4)
r9 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
read$char_usb(r9, &(0x7f0000000300)=""/219, 0xdb)
madvise(&(0x7f0000311000/0x400000)=nil, 0x400000, 0x64)

7.862101885s ago: executing program 4 (id=4627):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d00000014000000110001"], 0xa8}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000032c0)=ANY=[@ANYBLOB="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"], 0x21c}, 0x1, 0x0, 0x0, 0x40044}, 0x20008000)
socket(0x23, 0x5, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000100)='syzkaller\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x40f00, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
close(0x3)
r4 = socket$kcm(0x2b, 0x1, 0x0)
syz_io_uring_setup(0x65ef, 0x0, &(0x7f0000000000)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0, &(0x7f0000000000))
syz_io_uring_submit(r5, r6, 0x0, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x6, 0x0, 0x0, 0x0, {0x1100}})
shutdown(r4, 0x1)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="13f4ffffffffa89b000008000000000000004d1c", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x1f, 0x11, &(0x7f00000009c0)=ANY=[@ANYBLOB="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", @ANYRES32=r7, @ANYBLOB="0000000000000000b703000008000000850000006a000000850000005000000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x14, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r8, r7}, 0xc)

7.377423259s ago: executing program 3 (id=4628):
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, 0x0)
openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, 0x0, &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x40f00, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$FUSE_NOTIFY_INVAL_ENTRY(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="42000000030000000000000000000000000000000000000021000000000000002f70726f632f7379732f6e65742f697076342f76732f7365637572655f7463700000bc555369f59394dfabadf4ffc9ff029f7456386f40479f26c23546151ee3c73a71c7e5d48d3eb41e55c2c87093de"], 0x42)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x6)
syz_emit_ethernet(0x87a2f, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000040))
bind$alg(0xffffffffffffffff, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
r4 = memfd_create(&(0x7f0000000680)='\x103q}2\x9a\xce\xaf^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99\x18\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1f\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc7\x1d\xe7jDf\x87@\x8fg\tRJwe\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd99C\x9fF\x9c[M=\xa0^\xa8\xed)\xe8Z\xe8\x9b&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xc9\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7_\xfd\x17C=G\x0f\xe9u\x1d\xfeg\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05\xd7\xe7X\xc7/\xae5\x93wwT\x13\xbd,\xd6\x16\x84\xcd\xd1\xd8\xe1P_\xbf0\xd8\x8d%Yh\xb5\xb4\"\xf5\x93\xdeh\xce\xa5\xe8\xc8ZmH\x98\xaeb\xa5B5)\x80m\xff\xec\x88\x89\xf07{\x95\xc9\xd0\xee\xe1\x1d\x80\xcc]-\xc2\xa1\x02ELhI\xd9\xf5\xcfk\x8a&i\xc1\xff9T\x8e\xe2rY\xa3\xd2H9\xfe\x0e\x1e\xac\x0f\xc3\xbd{\xd9\xcc\xbe\xa9\x93\xe0\xa4W\x1cn>\xc1\xf1\x9e\"\x93\x19\x19\x1a\xcc\x7fy\xd2~\x05\x99\xe6\x00o\xca\xe0\xc6\xd4\xf5\xa0\xc8P\xd6\x05\xf3\xc6~E\xacI\xd4\xe9\xa1|>\x91.K\x81\xa9+\xcf\xff\xcb\xfa\x0f\xe7n\x83H\x12\xac\x80\x16\xf8\x87Q\x97Az\n`\xb6\xe13A\xec\x8d(\\D\xec\xa6\t1\xa0h\xfc\x1f\xdd1@-4\xb4:\xf8\xd5wP \x84m\xe2\xd9\xfcb\xa0\xc3\xc9\xe7W\x86\xd7$\xa4ml\xee\x97O\xb7\xfa\x19\x06U)j!\x91\'\x98\xd2kFN\xfa\x80)O\xb9(!n\x9d\x13\x15\xf1\x1a\xb8y\x14l\xd1', 0x7)
ioctl$FS_IOC_RESVSP(r4, 0x402c5828, &(0x7f00000000c0)={0x0, 0x0, 0x1, 0x762})
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000004c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c00000007000000050000000000000f05000000005115c13109"], 0x0, 0x2b, 0x0, 0x9}, 0x28)
mmap(&(0x7f0000200000/0x400000)=nil, 0x400000, 0xb, 0x2012, r4, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0cc5605, &(0x7f00000000c0)={0x1, @pix={0x0, 0x0, 0x35315258, 0x0, 0x0, 0x0, 0x7, 0x400}})
r5 = syz_io_uring_setup(0xefe, &(0x7f0000000080)={0x0, 0x4, 0x10000, 0xfffffff9, 0x2376}, &(0x7f0000000180)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0, &(0x7f0000000040)=<r8=>0x0)
syz_io_uring_submit(r6, r7, r8, &(0x7f0000000000)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x4004, @fd_index=0x4, 0x718a, 0x0, 0x0, 0x12, 0x1, {0x2}})
io_uring_enter(r5, 0x742f, 0x77ae, 0x1, 0x0, 0x0)

6.504820497s ago: executing program 2 (id=4629):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$kcm(0xa, 0x1, 0x106)
r0 = getpgid(0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
memfd_create(&(0x7f00000003c0)='%\x00\xae\xdb\xb8\x18\xc1\xecWbNO\xde^\xff\x19\x17QE{*X\xe3\xe2\x06\x00\x00\x00\xcc\xf6\xc0H\xa2\x83?\xe7\x89*\xf1\xc5b\v\xec\xe4\xb0\xa2\xc5\xee\x04\x98\xa9\xb9\xe5\x8c\xc3\x97B\xaa+\xf2o\xf6k\xcc\xf7\x057\x8d\xb1\xa0\x86\xe8\xda\x90\xc2\x1e\x15\x11\x92\x9d\xc1M\xe5@\v\x001\xae\x19$\xf8\x96\x81\xcbR\xae`\xd3\xf8_R~7\xf5\x1c\xc8\xf9\xe2z\x00<\xdc\x11\x89\xc9&f\x00\x00\x00\xe2\x83\xf1\x0eg\a\xec\xac\xa5\x94~v\x80P5\xf9/$', 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="020700"], 0x10}}, 0x0)
bind$inet(r3, 0x0, 0x0)
connect$inet(r3, &(0x7f0000000480)={0x2, 0x4, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@mcast2, @in6=@private2, 0x0, 0x0, 0x4e21, 0x1000, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x6, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x100000000000}}, {{@in6=@mcast2, 0x0, 0x33}, 0x0, @in=@loopback, 0x0, 0x0, 0x0, 0xb7, 0xfffffffe}}, 0xe4)
sendmmsg(r3, 0x0, 0x0, 0x0)
r5 = gettid()
timer_create(0x8, &(0x7f0000533fa0)={0x0, 0x21, 0x4, @tid=r5}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r6 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0)
readv(r6, &(0x7f0000000200)=[{&(0x7f00000004c0)=""/217, 0xd9}, {0x0, 0xfff2}], 0x2)

5.874890351s ago: executing program 4 (id=4630):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000f80)=@filter={'filter\x00', 0x4, 0x4, 0x4f4, 0xffffffff, 0x2e8, 0x220, 0x2e8, 0xfeffffff, 0xffff2000, 0x42c, 0x42c, 0x42c, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @ipv4={'\x00', '\xff\xff', @local}, [0xffffff00, 0xffffff00, 0x0, 0xffffff00], [0xff, 0xffffff00, 0xffffff00, 0xff], 'caif0\x00', 'vlan0\x00', {}, {}, 0x32, 0x4, 0x0, 0x1e}, 0x2f2, 0x1fc, 0x220, 0x0, {}, [@common=@inet=@hashlimit3={{0x17c}, {'macvlan1\x00', {0x4, 0x8000, 0x48, 0x0, 0xffff, 0x8, 0x196, 0xf, 0x18, 0x8}, {0x4f400000}}}]}, @common=@unspec=@NFQUEUE1={0x24, 'NFQUEUE\x00', 0x1, {0x8, 0x9}}}, {{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @rand_addr=' \x01\x00', [0xff000000, 0xff, 0xffffffff, 0xff], [0xff, 0xffffffff, 0x0, 0xff], 'team0\x00', 'veth0_virt_wifi\x00', {0xff}, {}, 0x29, 0x8, 0x6, 0xc}, 0x0, 0xa4, 0xc8}, @REJECT={0x24}}, {{@uncond, 0x0, 0x120, 0x144, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'veth1_virt_wifi\x00', {0xa, 0xd164, 0x4, 0x6fd, 0x6, 0xa, 0x2, 0x90, 0x18}, {0x200000}}}, @common=@icmp6={{0x24}, {0x8, "b30b", 0x1}}]}, @common=@unspec=@STANDARD={0x24, '\x00', 0x0, 0xfffffffffffffffe}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x550)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, 0x0, 0x4000004)
ioctl$sock_SIOCBRDELBR(r1, 0x89a2, &(0x7f0000000000)='bridge0\x00')
syz_emit_ethernet(0x56, &(0x7f0000000100)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0xd}, @dev, @void, {@ipv4={0x800, @icmp={{0xb, 0x4, 0x0, 0x0, 0x48, 0x0, 0x20, 0x0, 0x1, 0x0, @remote, @remote, {[@ssrr={0x89, 0x17, 0x1f, [@remote, @loopback, @initdev={0xac, 0x1e, 0x1, 0x0}, @private=0xa010100, @remote]}]}}, @source_quench={0x8, 0x0, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast, @dev}}}}}}, 0x0)
r2 = openat$tun(0xffffff9c, &(0x7f0000000080), 0x8200, 0x0)
write$tun(r2, &(0x7f0000000200)={@val={0x0, 0x6000}, @val={0x0, 0x80, 0x10, 0x6f9, 0x3, 0x2}, @eth={@local, @multicast, @void, {@ipv6={0x86dd, @icmpv6={0x6, 0x6, "889da7", 0xce, 0x3a, 0x0, @loopback, @rand_addr=' \x01\x00', {[@routing={0x3b, 0x6, 0x0, 0x80, 0x0, [@empty, @private1={0xfc, 0x1, '\x00', 0x1}, @remote]}, @fragment={0x2e, 0x0, 0x40, 0x1, 0x0, 0x0, 0x67}, @hopopts={0x1d, 0x3, '\x00', [@hao={0xc9, 0x10, @remote}, @jumbo={0xc2, 0x4, 0x800}, @pad1]}, @hopopts={0x2c, 0x2, '\x00', [@hao={0xc9, 0x10, @mcast2}, @ra={0x5, 0x2, 0x3}]}, @routing={0x49, 0x4, 0x3, 0x1, 0x0, [@remote, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}]}], @echo_request={0x80, 0x0, 0x0, 0x4, 0x8, "2c1bb48e9b5f1d81b897d333c34a3c583a48445ec650"}}}}}}}, 0x112)

5.798372756s ago: executing program 4 (id=4631):
r0 = openat$userio(0xffffffffffffff9c, &(0x7f0000000300), 0x22242, 0x0)
write$USERIO_CMD_SET_PORT_TYPE(r0, &(0x7f00000002c0)={0x1, 0x5}, 0x2)
read(r0, &(0x7f00000001c0)=""/93, 0x5d)

5.575573064s ago: executing program 3 (id=4633):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
getresgid(&(0x7f0000000040), &(0x7f0000000180)=<r1=>0x0, &(0x7f0000000240))
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x8000, &(0x7f0000000280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=r1])
mkdirat(0xffffffffffffff9c, &(0x7f00000021c0)='./file0\x00', 0x2d)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x5, 0x9, 0x6, 0x0, 0xb49, 0x0, 0x8, 0x2, 0x3}, 0x0)
mkdir(&(0x7f00000000c0)='./file0\x00', 0x22)
r4 = syz_open_dev$vim2m(&(0x7f0000000000), 0x1, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r4, 0xc0145608, 0x0)
r5 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
kexec_load(0x0, 0x1, &(0x7f0000000000)=[{0x0, 0x0, 0x7ffdd000}], 0xa0000)
unshare(0x62040200)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r5, 0x4018f50b, &(0x7f0000000100)={0xfffffffb, 0x0, 0x40})
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, 0x0, 0x4000000)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(0xffffffffffffffff, 0x3ba0, &(0x7f0000000340)={0x48, 0x5, 0x0, 0x0, 0xffffffffffffffff, 0x1})
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=ANY=[@ANYBLOB="600000000206010800000000000000000000000005000400000000000900020073797a31000000001400078008001240000000000500140008000000050005000a000000050001000600000011000300686173683a69702c706f7274"], 0x60}}, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000c80)=ANY=[@ANYBLOB="5c000000090601080000000000000000070000000900020073797a31000000000500010007000000340007801800018014000240fe8000000000000000000000000000bb060004400e1f00cd050007008800000006000540"], 0x5c}, 0x1, 0x0, 0x0, 0x10000042}, 0x90)
r9 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r9, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r9, &(0x7f0000002140)={0x2020}, 0x2020)
openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x60081, 0x0)

5.567987099s ago: executing program 2 (id=4634):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x145, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$netlink(0x10, 0x3, 0x14)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
r3 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xec25, 0x400, 0x1, 0x40000333}, &(0x7f00000000c0), &(0x7f00000001c0), &(0x7f0000000000))
r4 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
bind$netrom(r4, &(0x7f00000004c0)={{0x6, @rose, 0x6}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null]}, 0x48)
socket$alg(0x26, 0x5, 0x0)
r5 = openat$uinput(0xffffffffffffff9c, 0x0, 0x802, 0x0)
ioctl$UI_SET_EVBIT(r5, 0x40045564, 0x3)
write$uinput_user_dev(r5, &(0x7f0000000080)={'syz1\x00', {0x3ff, 0x3, 0x4}, 0x4d, [0x10004, 0x6, 0x9, 0x8a4, 0xfffffffe, 0x2, 0x7fffffff, 0x80000001, 0x4, 0x1, 0xfd, 0x3c6, 0x7, 0x7, 0xf70, 0x3c00, 0xe7, 0x4007, 0x401, 0xbc5e, 0x4, 0x1, 0x8, 0xffff, 0xe, 0xe, 0x10, 0x20000000, 0x15098855, 0x6, 0x2, 0xfffffffb, 0x6, 0xc, 0xfffffff7, 0x4, 0xe79, 0x7, 0x1, 0x1, 0x1, 0x4, 0x401, 0x9, 0xbdc7, 0xb, 0x1, 0x9, 0x3, 0x1, 0x6, 0x2, 0x5, 0x49, 0x5, 0x9, 0x0, 0x1, 0x1000, 0x3, 0x2, 0x6, 0x7ff, 0xb8547353], [0x4, 0xffffffff, 0x4, 0x5, 0x7ffffdff, 0x1, 0x550, 0x6, 0x2, 0xfffffffc, 0x10001, 0xc, 0x36, 0x4, 0x6, 0x1, 0x9, 0x98, 0x8, 0xe56d, 0xa4, 0x9, 0x99d, 0x8, 0x0, 0xd, 0x10001, 0xfffffffe, 0x6e38, 0x8000, 0xa, 0x6, 0x3, 0x0, 0x5, 0x7, 0x4, 0xd, 0x9, 0xfff, 0x4, 0x0, 0x40000040, 0x1, 0x8, 0x5, 0x8, 0x0, 0x34f1, 0x1ff, 0x4, 0x1b2c5a97, 0x0, 0x9, 0x8, 0x0, 0x1, 0x1, 0x6, 0x6, 0xac, 0x2, 0x54, 0xcfb9], [0x5, 0xdb8, 0x9, 0x4, 0x2, 0x200006, 0x5, 0x5, 0x2, 0x80, 0xfffffffd, 0xc8d3, 0x33, 0x9a45, 0x0, 0xee40000, 0x1, 0x1, 0x4, 0x69d, 0x8, 0xffff, 0x0, 0x0, 0x40000008, 0x2, 0x4, 0x800, 0x7, 0x9, 0x10000, 0x0, 0x1, 0xfffffffe, 0x3, 0x0, 0x4, 0x8c0, 0x9, 0x2, 0x8, 0x7, 0x6, 0x2, 0x81, 0x8, 0x1, 0x55f2, 0xdf46, 0xfffffffd, 0x7f, 0x9, 0x8000, 0x40, 0x3, 0x2, 0xa, 0x6, 0x2, 0xffffff00, 0xda15, 0x82, 0x3, 0x10], [0x0, 0x897, 0x8, 0x246d, 0x6, 0x101, 0x7fffffff, 0xd, 0x7ff, 0x606, 0x5, 0x9, 0x80000001, 0x2, 0xb, 0x2, 0x7, 0x1, 0x7, 0x8, 0x7ff, 0xffffffff, 0x0, 0x2, 0x6, 0x20c, 0xfffffffd, 0xa18, 0x61c8, 0x6, 0x7ff, 0x101, 0xff, 0x7, 0x9, 0x5, 0x7, 0x101, 0x9, 0x3000000, 0x20e, 0x4000006, 0x7, 0xfffffffd, 0x9, 0x1, 0x4, 0x100009, 0x100, 0x8, 0x3c, 0x1000, 0x3, 0x3, 0x15, 0x8000, 0x7, 0x81, 0x8, 0x7, 0xfffffffc, 0x4, 0x6, 0xeff]}, 0x45c)
io_uring_register$IORING_REGISTER_CLONE_BUFFERS(r3, 0x1e, &(0x7f0000000040)={r3}, 0x1)
syz_io_uring_setup(0x38eb, &(0x7f0000000040)={0x0, 0xabc0, 0x40, 0x2, 0x115}, 0x0, 0x0, &(0x7f0000000000))
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@gettfilter={0x3c, 0x2e, 0x100, 0x70bc25, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0x10, 0xfff1}, {0xe, 0xf}, {0x6, 0xffff}}, [{0x8, 0xb, 0x5}, {0x8, 0xb, 0x9}, {0x8, 0xb, 0xc11}]}, 0x3c}}, 0x0)
r6 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000040900010073797a30000000009c000000090a010400000000000000000700000308000a40000000000900020073797a30000000000900010073797a3000000000080005400000000d58001280200001800e000100636f6e6e6c696d69740000000c0002800800014000000008200001800e000100636f6e6e6c696d69740000000c00028008000140000000001400017b090001006cdbf80789f3f947dd000280080003"], 0xe4}, 0x1, 0x0, 0x0, 0x8001}, 0x20050840)
sendmsg$kcm(r6, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030041000b05d25a806c8c6394f90324fc60100000000a000200053582c137153e3704020180fc5409000c00", 0x33fe0}], 0x1}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000580)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
getsockopt$sock_int(r7, 0x1, 0x9, 0x0, &(0x7f0000000040))
sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="180000002e00010026bdf000fcdbdf1b04000000040010"], 0x18}, 0x1, 0x0, 0x0, 0x4000d}, 0x20000000)
close(0x3)
syz_usb_connect$uac1(0x3, 0xa2, 0x0, 0x0)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r8, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c)
listen(r8, 0x0)

4.939777916s ago: executing program 4 (id=4635):
r0 = openat$ttyS3(0xffffff9c, 0x0, 0x210100, 0x0)
syz_open_pts(r0, 0x81)
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SG_NEXT_CMD_LEN(r1, 0x2283, &(0x7f0000000380)=0x800)
ioctl$TIOCCBRK(0xffffffffffffffff, 0x5428)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @raw_data="dea233684c996156af0d4bd8e3300217e750b8c97b7123d48003e7e1d3be5f710c41a1db6719881876e9bcc6e2f73c67cc6b675eb43188b5b7f9f898868de9a9c5d536d418ba283121a73a5aba55a87d2a2525295f4492bbde02ad8bc8e88779f2de06f38e99172df4d45b6f13c813dee4230c204a93172922b778fef7a1f89ce876bb89d44cd705bbb28db4869dfac20d928950507acd92c02d17f51b0a627539f6e0a0bdb92004bc6252cd35e8cd100962db9a83ad63a4e7e1ca17c1b6aac63fefa9bebe429d00"})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = socket(0xa, 0x1, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000340)={'lo\x00', <r5=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="300000001c00070c2bbd70000000000002000000", @ANYRES32=r5, @ANYBLOB="4000100a14000100009a"], 0x30}, 0x1, 0x0, 0x0, 0x40000}, 0x20024090)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r7, 0xc0285700, &(0x7f0000000080)={0xffffffff, "5e5c3446aa0ecd604c893eba3198600b1891109654fe9676d14574be70b6225c", <r8=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000100))
ioctl$SYNC_IOC_MERGE(r8, 0xc0303e03, &(0x7f00000000c0)={"ff87c89d4e3e6bd4ae7ee3551b880c0ac56cb2a58b7da498a7045278c8043bbe", r8})
r9 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000300)='./binderfs/binder0\x00', 0x0, 0x0)
r10 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
r11 = dup3(r10, r9, 0x0)
ioctl$BINDER_WRITE_READ(r11, 0xc0306201, &(0x7f0000000640)={0x8, 0x0, &(0x7f0000000000)=[@decrefs={0x40086315}], 0x0, 0x0, 0x0})
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f0000001980)={0x0, 0x0, &(0x7f0000001940)={&(0x7f00000003c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="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"], 0x68}, 0x1, 0x0, 0x0, 0x80}, 0x0)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f00000011c0)={0xfc, {"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", 0x1000}}, 0xffbc)
sendmsg$nl_route(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000023c0)=@newlink={0x38, 0x10, 0x1, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, 0x41800, 0x1}, [@IFLA_GROUP={0x8}, @IFLA_GSO_MAX_SIZE={0x8, 0x29, 0x10000}, @IFLA_TXQLEN={0x8, 0xd, 0x80}]}, 0x38}, 0x1, 0x0, 0x0, 0x24040051}, 0x24008080)

4.627177328s ago: executing program 3 (id=4636):
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, 0x0)
openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x40f00, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
write$FUSE_NOTIFY_INVAL_ENTRY(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="42000000030000000000000000000000000000000000000021000000000000002f70726f632f7379732f6e65742f697076342f76732f7365637572655f7463700000bc555369f59394dfabadf4ffc9ff029f7456386f40479f26c23546151ee3c73a71c7e5d48d3eb41e55c2c87093de"], 0x42)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x6)
syz_emit_ethernet(0x87a2f, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000040))
bind$alg(0xffffffffffffffff, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
r3 = memfd_create(&(0x7f0000000680)='\x103q}2\x9a\xce\xaf^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99\x18\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1f\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc7\x1d\xe7jDf\x87@\x8fg\tRJwe\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd99C\x9fF\x9c[M=\xa0^\xa8\xed)\xe8Z\xe8\x9b&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xc9\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7_\xfd\x17C=G\x0f\xe9u\x1d\xfeg\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05\xd7\xe7X\xc7/\xae5\x93wwT\x13\xbd,\xd6\x16\x84\xcd\xd1\xd8\xe1P_\xbf0\xd8\x8d%Yh\xb5\xb4\"\xf5\x93\xdeh\xce\xa5\xe8\xc8ZmH\x98\xaeb\xa5B5)\x80m\xff\xec\x88\x89\xf07{\x95\xc9\xd0\xee\xe1\x1d\x80\xcc]-\xc2\xa1\x02ELhI\xd9\xf5\xcfk\x8a&i\xc1\xff9T\x8e\xe2rY\xa3\xd2H9\xfe\x0e\x1e\xac\x0f\xc3\xbd{\xd9\xcc\xbe\xa9\x93\xe0\xa4W\x1cn>\xc1\xf1\x9e\"\x93\x19\x19\x1a\xcc\x7fy\xd2~\x05\x99\xe6\x00o\xca\xe0\xc6\xd4\xf5\xa0\xc8P\xd6\x05\xf3\xc6~E\xacI\xd4\xe9\xa1|>\x91.K\x81\xa9+\xcf\xff\xcb\xfa\x0f\xe7n\x83H\x12\xac\x80\x16\xf8\x87Q\x97Az\n`\xb6\xe13A\xec\x8d(\\D\xec\xa6\t1\xa0h\xfc\x1f\xdd1@-4\xb4:\xf8\xd5wP \x84m\xe2\xd9\xfcb\xa0\xc3\xc9\xe7W\x86\xd7$\xa4ml\xee\x97O\xb7\xfa\x19\x06U)j!\x91\'\x98\xd2kFN\xfa\x80)O\xb9(!n\x9d\x13\x15\xf1\x1a\xb8y\x14l\xd1', 0x7)
ioctl$FS_IOC_RESVSP(r3, 0x402c5828, &(0x7f00000000c0)={0x0, 0x0, 0x1, 0x762})
mmap(&(0x7f0000200000/0x400000)=nil, 0x400000, 0xb, 0x2012, r3, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0cc5605, &(0x7f00000000c0)={0x1, @pix={0x0, 0x0, 0x35315258, 0x0, 0x0, 0x0, 0x7, 0x400}})
r4 = syz_io_uring_setup(0xefe, &(0x7f0000000080)={0x0, 0x4, 0x10000, 0xfffffff9, 0x2376}, &(0x7f0000000180)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0, &(0x7f0000000040)=<r7=>0x0)
syz_io_uring_submit(r5, r6, r7, &(0x7f0000000000)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x4004, @fd_index=0x4, 0x718a, 0x0, 0x0, 0x12, 0x1, {0x2}})
io_uring_enter(r4, 0x742f, 0x77ae, 0x1, 0x0, 0x0)

4.281839291s ago: executing program 5 (id=4637):
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, 0x0)
openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], 0x0, 0x2, 0xba, &(0x7f0000000140)=""/186, 0x40f00, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$FUSE_NOTIFY_INVAL_ENTRY(r0, &(0x7f0000000300)=ANY=[@ANYBLOB], 0x42)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x6)
syz_emit_ethernet(0x87a2f, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000040))
bind$alg(0xffffffffffffffff, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
r4 = memfd_create(&(0x7f0000000680)='\x103q}2\x9a\xce\xaf^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99\x18\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1f\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc7\x1d\xe7jDf\x87@\x8fg\tRJwe\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd99C\x9fF\x9c[M=\xa0^\xa8\xed)\xe8Z\xe8\x9b&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xc9\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7_\xfd\x17C=G\x0f\xe9u\x1d\xfeg\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05\xd7\xe7X\xc7/\xae5\x93wwT\x13\xbd,\xd6\x16\x84\xcd\xd1\xd8\xe1P_\xbf0\xd8\x8d%Yh\xb5\xb4\"\xf5\x93\xdeh\xce\xa5\xe8\xc8ZmH\x98\xaeb\xa5B5)\x80m\xff\xec\x88\x89\xf07{\x95\xc9\xd0\xee\xe1\x1d\x80\xcc]-\xc2\xa1\x02ELhI\xd9\xf5\xcfk\x8a&i\xc1\xff9T\x8e\xe2rY\xa3\xd2H9\xfe\x0e\x1e\xac\x0f\xc3\xbd{\xd9\xcc\xbe\xa9\x93\xe0\xa4W\x1cn>\xc1\xf1\x9e\"\x93\x19\x19\x1a\xcc\x7fy\xd2~\x05\x99\xe6\x00o\xca\xe0\xc6\xd4\xf5\xa0\xc8P\xd6\x05\xf3\xc6~E\xacI\xd4\xe9\xa1|>\x91.K\x81\xa9+\xcf\xff\xcb\xfa\x0f\xe7n\x83H\x12\xac\x80\x16\xf8\x87Q\x97Az\n`\xb6\xe13A\xec\x8d(\\D\xec\xa6\t1\xa0h\xfc\x1f\xdd1@-4\xb4:\xf8\xd5wP \x84m\xe2\xd9\xfcb\xa0\xc3\xc9\xe7W\x86\xd7$\xa4ml\xee\x97O\xb7\xfa\x19\x06U)j!\x91\'\x98\xd2kFN\xfa\x80)O\xb9(!n\x9d\x13\x15\xf1\x1a\xb8y\x14l\xd1', 0x7)
ioctl$FS_IOC_RESVSP(r4, 0x402c5828, &(0x7f00000000c0)={0x0, 0x0, 0x1, 0x762})
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000004c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c00000007000000050000000000000f05000000005115c13109"], 0x0, 0x2b, 0x0, 0x9}, 0x28)
mmap(&(0x7f0000200000/0x400000)=nil, 0x400000, 0xb, 0x2012, r4, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0cc5605, &(0x7f00000000c0)={0x1, @pix={0x0, 0x0, 0x35315258, 0x0, 0x0, 0x0, 0x7, 0x400}})
r5 = syz_io_uring_setup(0xefe, &(0x7f0000000080)={0x0, 0x4, 0x10000, 0xfffffff9, 0x2376}, &(0x7f0000000180)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0, &(0x7f0000000040)=<r8=>0x0)
syz_io_uring_submit(r6, r7, r8, &(0x7f0000000000)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x4004, @fd_index=0x4, 0x718a, 0x0, 0x0, 0x12, 0x1, {0x2}})
io_uring_enter(r5, 0x742f, 0x77ae, 0x1, 0x0, 0x0)

4.281552697s ago: executing program 4 (id=4638):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d00000014000000110001"], 0xa8}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000032c0)=ANY=[@ANYBLOB="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"], 0x21c}, 0x1, 0x0, 0x0, 0x40044}, 0x20008000)
socket(0x23, 0x5, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000100)='syzkaller\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x40f00, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
close(0x3)
r4 = socket$kcm(0x2b, 0x1, 0x0)
syz_io_uring_setup(0x65ef, 0x0, &(0x7f0000000000)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0, &(0x7f0000000000))
syz_io_uring_submit(r5, r6, 0x0, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x6, 0x0, 0x0, 0x0, {0x1100}})
shutdown(r4, 0x1)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="13f4ffffffffa89b000008000000000000004d1c", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x1f, 0x11, &(0x7f00000009c0)=ANY=[@ANYBLOB="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", @ANYRES32=r7, @ANYBLOB="0000000000000000b703000008000000850000006a000000850000005000000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x14, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r8, r7}, 0xc)

2.471229835s ago: executing program 2 (id=4639):
r0 = openat$ttyS3(0xffffff9c, 0x0, 0x210100, 0x0)
syz_open_pts(r0, 0x81)
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SG_NEXT_CMD_LEN(r1, 0x2283, &(0x7f0000000380)=0x800)
ioctl$TIOCCBRK(0xffffffffffffffff, 0x5428)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @raw_data="dea233684c996156af0d4bd8e3300217e750b8c97b7123d48003e7e1d3be5f710c41a1db6719881876e9bcc6e2f73c67cc6b675eb43188b5b7f9f898868de9a9c5d536d418ba283121a73a5aba55a87d2a2525295f4492bbde02ad8bc8e88779f2de06f38e99172df4d45b6f13c813dee4230c204a93172922b778fef7a1f89ce876bb89d44cd705bbb28db4869dfac20d928950507acd92c02d17f51b0a627539f6e0a0bdb92004bc6252cd35e8cd100962db9a83ad63a4e7e1ca17c1b6aac63fefa9bebe429d00"})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = socket(0xa, 0x1, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000340)={'lo\x00', <r5=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="300000001c00070c2bbd70000000000002000000", @ANYRES32=r5, @ANYBLOB="4000100a14000100009a"], 0x30}, 0x1, 0x0, 0x0, 0x40000}, 0x20024090)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r7, 0xc0285700, &(0x7f0000000080)={0xffffffff, "5e5c3446aa0ecd604c893eba3198600b1891109654fe9676d14574be70b6225c", <r8=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000100))
ioctl$SYNC_IOC_MERGE(r8, 0xc0303e03, &(0x7f00000000c0)={"ff87c89d4e3e6bd4ae7ee3551b880c0ac56cb2a58b7da498a7045278c8043bbe", r8})
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000300)='./binderfs/binder0\x00', 0x0, 0x0)
r11 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
r12 = dup3(r11, r10, 0x0)
ioctl$BINDER_WRITE_READ(r12, 0xc0306201, &(0x7f0000000640)={0x8, 0x0, &(0x7f0000000000)=[@decrefs={0x40086315}], 0x0, 0x0, 0x0})
sendmsg$TIPC_CMD_SET_LINK_TOL(r9, &(0x7f0000001980)={0x0, 0x0, &(0x7f0000001940)={&(0x7f00000003c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="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"], 0x68}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r13 = syz_open_dev$tty1(0xc, 0x4, 0x1)
write$UHID_INPUT(r13, &(0x7f00000011c0)={0xfc, {"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", 0x1000}}, 0xffbc)
sendmsg$nl_route(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000023c0)=@newlink={0x38, 0x10, 0x1, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, 0x41800, 0x1}, [@IFLA_GROUP={0x8}, @IFLA_GSO_MAX_SIZE={0x8, 0x29, 0x10000}, @IFLA_TXQLEN={0x8, 0xd, 0x80}]}, 0x38}, 0x1, 0x0, 0x0, 0x24040051}, 0x24008080)

2.294869876s ago: executing program 3 (id=4640):
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, 0x0)
openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x40f00, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
write$FUSE_NOTIFY_INVAL_ENTRY(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="42000000030000000000000000000000000000000000000021000000000000002f70726f632f7379732f6e65742f697076342f76732f7365637572655f7463700000bc555369f59394dfabadf4ffc9ff029f7456386f40479f26c23546151ee3c73a71c7e5d48d3eb41e55c2c87093de"], 0x42)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x6)
syz_emit_ethernet(0x87a2f, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000040))
bind$alg(0xffffffffffffffff, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x402c5828, &(0x7f00000000c0)={0x0, 0x0, 0x1, 0x762})
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000004c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c00000007000000050000000000000f05000000005115c13109"], 0x0, 0x2b, 0x0, 0x9}, 0x28)
mmap(&(0x7f0000200000/0x400000)=nil, 0x400000, 0xb, 0x2012, 0xffffffffffffffff, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0cc5605, &(0x7f00000000c0)={0x1, @pix={0x0, 0x0, 0x35315258, 0x0, 0x0, 0x0, 0x7, 0x400}})
r3 = syz_io_uring_setup(0xefe, &(0x7f0000000080)={0x0, 0x4, 0x10000, 0xfffffff9, 0x2376}, &(0x7f0000000180)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0, &(0x7f0000000040)=<r6=>0x0)
syz_io_uring_submit(r4, r5, r6, &(0x7f0000000000)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x4004, @fd_index=0x4, 0x718a, 0x0, 0x0, 0x12, 0x1, {0x2}})
io_uring_enter(r3, 0x742f, 0x77ae, 0x1, 0x0, 0x0)

658.910195ms ago: executing program 2 (id=4641):
r0 = openat$userio(0xffffffffffffff9c, &(0x7f0000000300), 0x22242, 0x0)
write$USERIO_CMD_SET_PORT_TYPE(r0, &(0x7f00000002c0)={0x1, 0x5}, 0x2)
write$USERIO_CMD_REGISTER(r0, &(0x7f0000000040), 0x2)
write$USERIO_CMD_SEND_INTERRUPT(r0, &(0x7f0000000080), 0x2)

368.521687ms ago: executing program 3 (id=4642):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$kcm(0xa, 0x1, 0x106)
r0 = getpgid(0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
memfd_create(&(0x7f00000003c0)='%\x00\xae\xdb\xb8\x18\xc1\xecWbNO\xde^\xff\x19\x17QE{*X\xe3\xe2\x06\x00\x00\x00\xcc\xf6\xc0H\xa2\x83?\xe7\x89*\xf1\xc5b\v\xec\xe4\xb0\xa2\xc5\xee\x04\x98\xa9\xb9\xe5\x8c\xc3\x97B\xaa+\xf2o\xf6k\xcc\xf7\x057\x8d\xb1\xa0\x86\xe8\xda\x90\xc2\x1e\x15\x11\x92\x9d\xc1M\xe5@\v\x001\xae\x19$\xf8\x96\x81\xcbR\xae`\xd3\xf8_R~7\xf5\x1c\xc8\xf9\xe2z\x00<\xdc\x11\x89\xc9&f\x00\x00\x00\xe2\x83\xf1\x0eg\a\xec\xac\xa5\x94~v\x80P5\xf9/$', 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="020700"], 0x10}}, 0x0)
bind$inet(r3, 0x0, 0x0)
connect$inet(r3, &(0x7f0000000480)={0x2, 0x4, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@mcast2, @in6=@private2, 0x0, 0x0, 0x4e21, 0x1000, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x6, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x100000000000}}, {{@in6=@mcast2, 0x0, 0x33}, 0x0, @in=@loopback, 0x0, 0x0, 0x0, 0xb7, 0xfffffffe}}, 0xe4)
sendmmsg(r3, 0x0, 0x0, 0x0)
r5 = gettid()
timer_create(0x8, &(0x7f0000533fa0)={0x0, 0x21, 0x4, @tid=r5}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r6 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0)
readv(r6, &(0x7f0000000200)=[{&(0x7f00000004c0)=""/217, 0xd9}, {0x0, 0xfff2}], 0x2)

363.407434ms ago: executing program 4 (id=4643):
r0 = openat$userio(0xffffffffffffff9c, &(0x7f0000000300), 0x22242, 0x0)
write$USERIO_CMD_REGISTER(r0, &(0x7f0000000040), 0x2)
read(r0, &(0x7f00000001c0)=""/93, 0x5d)

0s ago: executing program 2 (id=4644):
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, 0x0)
openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, 0x0, &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x40f00, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$FUSE_NOTIFY_INVAL_ENTRY(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="42000000030000000000000000000000000000000000000021000000000000002f70726f632f7379732f6e65742f697076342f76732f7365637572655f7463700000bc555369f59394dfabadf4ffc9ff029f7456386f40479f26c23546151ee3c73a71c7e5d48d3eb41e55c2c87093de"], 0x42)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x6)
syz_emit_ethernet(0x87a2f, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000040))
bind$alg(0xffffffffffffffff, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
r4 = memfd_create(&(0x7f0000000680)='\x103q}2\x9a\xce\xaf^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99\x18\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1f\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc7\x1d\xe7jDf\x87@\x8fg\tRJwe\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd99C\x9fF\x9c[M=\xa0^\xa8\xed)\xe8Z\xe8\x9b&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xc9\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7_\xfd\x17C=G\x0f\xe9u\x1d\xfeg\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05\xd7\xe7X\xc7/\xae5\x93wwT\x13\xbd,\xd6\x16\x84\xcd\xd1\xd8\xe1P_\xbf0\xd8\x8d%Yh\xb5\xb4\"\xf5\x93\xdeh\xce\xa5\xe8\xc8ZmH\x98\xaeb\xa5B5)\x80m\xff\xec\x88\x89\xf07{\x95\xc9\xd0\xee\xe1\x1d\x80\xcc]-\xc2\xa1\x02ELhI\xd9\xf5\xcfk\x8a&i\xc1\xff9T\x8e\xe2rY\xa3\xd2H9\xfe\x0e\x1e\xac\x0f\xc3\xbd{\xd9\xcc\xbe\xa9\x93\xe0\xa4W\x1cn>\xc1\xf1\x9e\"\x93\x19\x19\x1a\xcc\x7fy\xd2~\x05\x99\xe6\x00o\xca\xe0\xc6\xd4\xf5\xa0\xc8P\xd6\x05\xf3\xc6~E\xacI\xd4\xe9\xa1|>\x91.K\x81\xa9+\xcf\xff\xcb\xfa\x0f\xe7n\x83H\x12\xac\x80\x16\xf8\x87Q\x97Az\n`\xb6\xe13A\xec\x8d(\\D\xec\xa6\t1\xa0h\xfc\x1f\xdd1@-4\xb4:\xf8\xd5wP \x84m\xe2\xd9\xfcb\xa0\xc3\xc9\xe7W\x86\xd7$\xa4ml\xee\x97O\xb7\xfa\x19\x06U)j!\x91\'\x98\xd2kFN\xfa\x80)O\xb9(!n\x9d\x13\x15\xf1\x1a\xb8y\x14l\xd1', 0x7)
ioctl$FS_IOC_RESVSP(r4, 0x402c5828, &(0x7f00000000c0)={0x0, 0x0, 0x1, 0x762})
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000004c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c00000007000000050000000000000f05000000005115c13109"], 0x0, 0x2b, 0x0, 0x9}, 0x28)
mmap(&(0x7f0000200000/0x400000)=nil, 0x400000, 0xb, 0x2012, r4, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0cc5605, &(0x7f00000000c0)={0x1, @pix={0x0, 0x0, 0x35315258, 0x0, 0x0, 0x0, 0x7, 0x400}})
r5 = syz_io_uring_setup(0xefe, &(0x7f0000000080)={0x0, 0x4, 0x10000, 0xfffffff9, 0x2376}, &(0x7f0000000180)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0, &(0x7f0000000040)=<r8=>0x0)
syz_io_uring_submit(r6, r7, r8, &(0x7f0000000000)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x4004, @fd_index=0x4, 0x718a, 0x0, 0x0, 0x12, 0x1, {0x2}})
io_uring_enter(r5, 0x742f, 0x77ae, 0x1, 0x0, 0x0)

kernel console output (not intermixed with test programs):

ink: 'syz.5.3943': attribute type 1 has an invalid length.
[ 1027.937406][T21930] netlink: 760 bytes leftover after parsing attributes in process `syz.5.3943'.
[ 1027.982900][ T5992] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1027.985942][ T5992] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1027.990118][ T5992] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1027.993201][ T5992] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1028.200663][ T5992] usb 8-1: usb_control_msg returned -32
[ 1028.202581][ T5992] usbtmc 8-1:16.0: can't read capabilities
[ 1028.435283][T21932] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3944'.
[ 1029.610817][T21942] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3946'.
[ 1030.169076][T21949] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3948'.
[ 1030.624850][T15585] usb 8-1: USB disconnect, device number 90
[ 1031.206128][T21978] netlink: 'syz.5.3953': attribute type 1 has an invalid length.
[ 1031.209599][T21978] netlink: 760 bytes leftover after parsing attributes in process `syz.5.3953'.
[ 1031.806440][T21980] netlink: 'syz.2.3954': attribute type 1 has an invalid length.
[ 1031.808926][T21980] netlink: 96 bytes leftover after parsing attributes in process `syz.2.3954'.
[ 1032.051842][T16384] usb 7-1: new high-speed USB device number 125 using dummy_hcd
[ 1032.201700][T16384] usb 7-1: Using ep0 maxpacket: 32
[ 1032.213091][T16384] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1032.221708][T16384] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1032.224596][T16384] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1032.227306][T16384] usb 7-1: Product: syz
[ 1032.228614][T16384] usb 7-1: Manufacturer: syz
[ 1032.230066][T16384] usb 7-1: SerialNumber: syz
[ 1032.235032][T16384] usb 7-1: config 0 descriptor??
[ 1032.237140][T21980] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1032.242081][T16384] chaoskey 7-1:0.0: Unable to register with hwrng
[ 1032.262695][T21994] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3960'.
[ 1032.449740][T16384] usb 7-1: USB disconnect, device number 125
[ 1032.473402][T21999] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3961'.
[ 1033.219317][T22015] netlink: 'syz.2.3963': attribute type 1 has an invalid length.
[ 1033.222166][T22015] netlink: 760 bytes leftover after parsing attributes in process `syz.2.3963'.
[ 1033.461685][T16384] usb 7-1: new high-speed USB device number 126 using dummy_hcd
[ 1033.621633][T16384] usb 7-1: Using ep0 maxpacket: 32
[ 1033.624558][T16384] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1033.629146][T16384] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1033.632812][T16384] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1033.635383][T16384] usb 7-1: Product: syz
[ 1033.636707][T16384] usb 7-1: Manufacturer: syz
[ 1033.638190][T16384] usb 7-1: SerialNumber: syz
[ 1033.640895][T16384] usb 7-1: config 0 descriptor??
[ 1033.643393][T22015] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1033.650274][T16384] chaoskey 7-1:0.0: Unable to register with hwrng
[ 1033.855466][T20156] usb 7-1: USB disconnect, device number 126
[ 1033.970847][T22021] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3965'.
[ 1035.425763][T22031] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[ 1035.483582][T22033] netlink: 44 bytes leftover after parsing attributes in process `syz.2.3966'.
[ 1035.487265][T22029] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[ 1035.489378][T22029] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1035.492023][T22029] vhci_hcd vhci_hcd.0: Device attached
[ 1035.605910][T22032] vhci_hcd: connection closed
[ 1035.606205][  T189] vhci_hcd vhci_hcd.2: stop threads
[ 1035.609275][  T189] vhci_hcd vhci_hcd.2: release socket
[ 1035.616099][  T189] vhci_hcd vhci_hcd.2: disconnect device
[ 1035.629374][T22042] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3969'.
[ 1035.691708][   T50] vhci_hcd vhci_hcd.2: vhci_device speed not set
[ 1035.734034][T22045] 9p: Bad value for 'wfdno'
[ 1035.872197][ T6006] usb 8-1: new full-speed USB device number 91 using dummy_hcd
[ 1036.023180][ T6006] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1036.026532][ T6006] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1036.030941][ T6006] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1036.034090][ T6006] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1036.250824][ T6006] usb 8-1: usb_control_msg returned -32
[ 1036.253072][ T6006] usbtmc 8-1:16.0: can't read capabilities
[ 1036.356705][T22058] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3973'.
[ 1036.721050][T22065] netlink: 'syz.5.3974': attribute type 1 has an invalid length.
[ 1036.723766][T22065] netlink: 760 bytes leftover after parsing attributes in process `syz.5.3974'.
[ 1038.041684][T20156] usb 7-1: new high-speed USB device number 127 using dummy_hcd
[ 1038.089769][T22085] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3979'.
[ 1038.191648][T20156] usb 7-1: Using ep0 maxpacket: 32
[ 1038.196149][T20156] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1038.213352][T20156] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1038.216845][T20156] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1038.219452][T20156] usb 7-1: Product: syz
[ 1038.220805][T20156] usb 7-1: Manufacturer: syz
[ 1038.226740][T20156] usb 7-1: SerialNumber: syz
[ 1038.229702][T20156] usb 7-1: config 0 descriptor??
[ 1038.232483][T22081] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[ 1038.236881][T20156] hub 7-1:0.0: bad descriptor, ignoring hub
[ 1038.239628][T20156] hub 7-1:0.0: probe with driver hub failed with error -5
[ 1038.246639][T20156] chaoskey 7-1:0.0: Unable to register with hwrng
[ 1038.374962][ T5950] Bluetooth: hci0: unexpected event for opcode 0x0c12
[ 1038.705003][T15585] usb 8-1: USB disconnect, device number 91
[ 1038.873411][T22109] netlink: 'syz.4.3984': attribute type 1 has an invalid length.
[ 1038.876786][T22109] netlink: 760 bytes leftover after parsing attributes in process `syz.4.3984'.
[ 1039.329727][T22114] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3985'.
[ 1040.626687][T22127] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3988'.
[ 1040.857241][T22138] overlayfs: missing 'lowerdir'
[ 1040.941825][   T50] usb 7-1: USB disconnect, device number 127
[ 1041.086176][T22157] netlink: 'syz.3.3994': attribute type 1 has an invalid length.
[ 1041.092866][T22159] ALSA: mixer_oss: invalid OSS volume ''
[ 1041.098723][T22157] netlink: 760 bytes leftover after parsing attributes in process `syz.3.3994'.
[ 1041.361723][   T50] usb 8-1: new high-speed USB device number 92 using dummy_hcd
[ 1041.511631][   T50] usb 8-1: Using ep0 maxpacket: 32
[ 1041.514858][   T50] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1041.520028][   T50] usb 8-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1041.523208][   T50] usb 8-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1041.525765][   T50] usb 8-1: Product: syz
[ 1041.527216][   T50] usb 8-1: Manufacturer: syz
[ 1041.528785][   T50] usb 8-1: SerialNumber: syz
[ 1041.533893][   T50] usb 8-1: config 0 descriptor??
[ 1041.538957][T22157] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1041.546824][   T50] chaoskey 8-1:0.0: Unable to register with hwrng
[ 1041.755411][   T50] usb 8-1: USB disconnect, device number 92
[ 1041.766380][T22165] netlink: 'syz.4.3996': attribute type 1 has an invalid length.
[ 1041.787146][T22165] 8021q: adding VLAN 0 to HW filter on device bond2
[ 1041.869439][T22165] bond2: (slave geneve2): making interface the new active one
[ 1041.874491][T22165] bond2: (slave geneve2): Enslaving as an active interface with an up link
[ 1041.877421][ T1254] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1041.894002][ T1254] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1041.897560][ T1254] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1041.901277][ T1254] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1042.021887][T22171] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3997'.
[ 1042.412892][ T5950] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[ 1042.416832][ T5950] Bluetooth: hci0: Injecting HCI hardware error event
[ 1042.423883][ T5950] Bluetooth: hci0: hardware error 0x00
[ 1042.474899][T22176] netlink: 'syz.2.3999': attribute type 2 has an invalid length.
[ 1042.515632][T22178] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4000'.
[ 1043.239188][T22185] netlink: 24 bytes leftover after parsing attributes in process `syz.5.4002'.
[ 1043.327272][T22185] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4002'.
[ 1043.551761][T20156] usb 7-1: new full-speed USB device number 2 using dummy_hcd
[ 1043.703617][T20156] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1043.707744][T20156] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1043.713832][T20156] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1043.715305][T22201] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4006'.
[ 1043.717634][T20156] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1043.818373][T22205] netlink: 24 bytes leftover after parsing attributes in process `syz.5.4007'.
[ 1043.922201][T22210] netlink: 'syz.5.4008': attribute type 1 has an invalid length.
[ 1043.924731][T22210] netlink: 760 bytes leftover after parsing attributes in process `syz.5.4008'.
[ 1043.927550][T20156] usb 7-1: usb_control_msg returned -32
[ 1043.931219][T20156] usbtmc 7-1:16.0: can't read capabilities
[ 1044.189108][T22214] x_tables: ip_tables: osf match: only valid for protocol 6
[ 1044.211808][T22214] lo speed is unknown, defaulting to 1000
[ 1044.491716][ T5950] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 1045.002000][T22235] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4015'.
[ 1045.037881][T22241] openvswitch: netlink: Multiple metadata blocks provided
[ 1045.042923][T22241] netlink: 'syz.5.4017': attribute type 3 has an invalid length.
[ 1045.260472][T22246] netlink: 'syz.3.4019': attribute type 1 has an invalid length.
[ 1045.501651][  T829] usb 8-1: new high-speed USB device number 93 using dummy_hcd
[ 1045.651754][  T829] usb 8-1: Using ep0 maxpacket: 32
[ 1045.656643][  T829] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1045.663074][  T829] usb 8-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1045.671801][  T829] usb 8-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1045.675275][  T829] usb 8-1: Product: syz
[ 1045.681656][  T829] usb 8-1: Manufacturer: syz
[ 1045.683693][  T829] usb 8-1: SerialNumber: syz
[ 1045.692442][  T829] usb 8-1: config 0 descriptor??
[ 1045.695462][T22246] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[ 1045.702353][  T829] chaoskey 8-1:0.0: Unable to register with hwrng
[ 1045.766110][T22254] __nla_validate_parse: 1 callbacks suppressed
[ 1045.766131][T22254] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4023'.
[ 1045.772697][T22254] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4023'.
[ 1045.906779][T20156] usb 8-1: USB disconnect, device number 93
[ 1045.974988][T22267] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4026'.
[ 1046.052592][T22274] netlink: 'syz.5.4028': attribute type 1 has an invalid length.
[ 1046.071795][T22274] bond1: entered promiscuous mode
[ 1046.074382][T22274] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1046.092131][T22274] bond1: (slave bridge2): making interface the new active one
[ 1046.094629][T22274] bridge2: entered promiscuous mode
[ 1046.096923][T22274] bond1: (slave bridge2): Enslaving as an active interface with an up link
[ 1046.339578][   T50] usb 7-1: USB disconnect, device number 2
[ 1046.672225][T22286] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4031'.
[ 1047.406490][T22292] FAULT_INJECTION: forcing a failure.
[ 1047.406490][T22292] name failslab, interval 1, probability 0, space 0, times 0
[ 1047.410576][T22292] CPU: 3 UID: 0 PID: 22292 Comm: syz.2.4032 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1047.410595][T22292] Tainted: [L]=SOFTLOCKUP
[ 1047.410599][T22292] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1047.410606][T22292] Call Trace:
[ 1047.410611][T22292]  <TASK>
[ 1047.410615][T22292]  dump_stack_lvl+0x100/0x190
[ 1047.410651][T22292]  should_fail_ex.cold+0x5/0xa
[ 1047.410666][T22292]  should_failslab+0xc2/0x120
[ 1047.410679][T22292]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[ 1047.410699][T22292]  ? __alloc_skb+0x140/0x710
[ 1047.410719][T22292]  __alloc_skb+0x140/0x710
[ 1047.410736][T22292]  ? __alloc_skb+0x5b7/0x710
[ 1047.410753][T22292]  ? __pfx___alloc_skb+0x10/0x10
[ 1047.410771][T22292]  ? __pfx___might_resched+0x10/0x10
[ 1047.410792][T22292]  netlink_alloc_large_skb+0x69/0x150
[ 1047.410806][T22292]  netlink_sendmsg+0x680/0xda0
[ 1047.410821][T22292]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1047.410835][T22292]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[ 1047.410850][T22292]  ____sys_sendmsg+0x9e1/0xb70
[ 1047.410864][T22292]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1047.410878][T22292]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1047.410899][T22292]  ___sys_sendmsg+0x190/0x1e0
[ 1047.410915][T22292]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1047.410947][T22292]  __sys_sendmsg+0x170/0x220
[ 1047.410958][T22292]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1047.410974][T22292]  ? __pfx_ksys_write+0x10/0x10
[ 1047.410989][T22292]  __do_fast_syscall_32+0xe3/0x8c0
[ 1047.411004][T22292]  do_fast_syscall_32+0x32/0x70
[ 1047.411018][T22292]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1047.411033][T22292] RIP: 0023:0xf7f52f6c
[ 1047.411042][T22292] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 1047.411054][T22292] RSP: 002b:00000000f53f550c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[ 1047.411066][T22292] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000800001c0
[ 1047.411073][T22292] RDX: 00000000000000d0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1047.411084][T22292] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1047.411091][T22292] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1047.411097][T22292] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1047.411112][T22292]  </TASK>
[ 1048.483727][T22302] syzkaller0: entered promiscuous mode
[ 1048.485512][T22302] syzkaller0: entered allmulticast mode
[ 1048.489416][T22302] 0: reclassify loop, rule prio 0, protocol 800
[ 1049.038368][T22309] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4036'.
[ 1049.247225][T22321] netlink: 'syz.2.4039': attribute type 1 has an invalid length.
[ 1049.249697][T22321] netlink: 760 bytes leftover after parsing attributes in process `syz.2.4039'.
[ 1049.280092][T22324] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4040'.
[ 1049.485483][T22331] bond2: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[ 1049.492260][T22331] bond2: (slave lo): Enslaving as an active interface with an up link
[ 1049.495081][T22331] A link change request failed with some changes committed already. Interface tunl0 may have been left with an inconsistent configuration, please check.
[ 1049.499949][T22332] bridge0: port 3(syz_tun) entered blocking state
[ 1049.501721][T16384] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[ 1049.502621][T22332] bridge0: port 3(syz_tun) entered disabled state
[ 1049.507177][T22332] syz_tun: entered allmulticast mode
[ 1049.510476][T22332] syz_tun: entered promiscuous mode
[ 1049.678282][T16384] usb 7-1: Using ep0 maxpacket: 32
[ 1049.681275][T16384] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1049.686327][T16384] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1049.689163][T16384] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1049.692067][T16384] usb 7-1: Product: syz
[ 1049.693420][T16384] usb 7-1: Manufacturer: syz
[ 1049.694897][T16384] usb 7-1: SerialNumber: syz
[ 1049.697890][T16384] usb 7-1: config 0 descriptor??
[ 1049.700020][T22321] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1049.704757][T16384] chaoskey 7-1:0.0: Unable to register with hwrng
[ 1049.871892][  T829] usb 8-1: new high-speed USB device number 94 using dummy_hcd
[ 1049.915690][T16384] usb 7-1: USB disconnect, device number 3
[ 1050.031648][  T829] usb 8-1: Using ep0 maxpacket: 32
[ 1050.043415][  T829] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1050.049842][  T829] usb 8-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1050.061747][  T829] usb 8-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1050.064739][  T829] usb 8-1: Product: syz
[ 1050.066196][  T829] usb 8-1: Manufacturer: syz
[ 1050.068234][  T829] usb 8-1: SerialNumber: syz
[ 1050.072453][  T829] usb 8-1: config 0 descriptor??
[ 1050.075437][T22339] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[ 1050.081944][  T829] hub 8-1:0.0: bad descriptor, ignoring hub
[ 1050.084296][  T829] hub 8-1:0.0: probe with driver hub failed with error -5
[ 1050.089492][  T829] chaoskey 8-1:0.0: Unable to register with hwrng
[ 1050.493470][T22347] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4047'.
[ 1050.658382][T22352] syzkaller0: entered promiscuous mode
[ 1050.660284][T22352] syzkaller0: entered allmulticast mode
[ 1050.668202][T22352] 0: reclassify loop, rule prio 0, protocol 800
[ 1051.097284][T22366] EXT4-fs: Value of option "test_dummy_encryption" is unrecognized
[ 1051.208813][T22366] Cannot find del_set index 4 as target
[ 1051.762103][T22382] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4056'.
[ 1052.293510][T22386] netlink: 'syz.2.4057': attribute type 1 has an invalid length.
[ 1052.296058][T22386] netlink: 760 bytes leftover after parsing attributes in process `syz.2.4057'.
[ 1052.551634][T16384] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[ 1052.583079][T22388] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4058'.
[ 1052.721625][T16384] usb 7-1: Using ep0 maxpacket: 32
[ 1052.742876][T16384] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1052.747673][T16384] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1052.750516][T16384] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1052.753163][T16384] usb 7-1: Product: syz
[ 1052.754517][T16384] usb 7-1: Manufacturer: syz
[ 1052.755999][T16384] usb 7-1: SerialNumber: syz
[ 1052.762155][T16384] usb 7-1: config 0 descriptor??
[ 1052.764678][T22386] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1052.769330][T16384] chaoskey 7-1:0.0: Unable to register with hwrng
[ 1052.838822][   T50] usb 8-1: USB disconnect, device number 94
[ 1052.978596][T20156] usb 7-1: USB disconnect, device number 4
[ 1053.856605][T22415] syzkaller0: entered promiscuous mode
[ 1053.858665][T22415] syzkaller0: entered allmulticast mode
[ 1053.863076][T22415] 0: reclassify loop, rule prio 0, protocol 800
[ 1053.951046][T22418] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1055.126941][T22430] ALSA: mixer_oss: invalid OSS volume ''
[ 1055.303199][T22431] ALSA: mixer_oss: invalid OSS volume ''
[ 1056.735247][T22441] netlink: 'syz.2.4071': attribute type 1 has an invalid length.
[ 1056.737828][T22441] netlink: 760 bytes leftover after parsing attributes in process `syz.2.4071'.
[ 1057.171665][T20156] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[ 1057.410958][T22446] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4073'.
[ 1057.521750][T20156] usb 7-1: Using ep0 maxpacket: 32
[ 1057.524821][T20156] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1057.530240][T20156] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1057.533398][T20156] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1057.535958][T20156] usb 7-1: Product: syz
[ 1057.537306][T20156] usb 7-1: Manufacturer: syz
[ 1057.538968][T20156] usb 7-1: SerialNumber: syz
[ 1057.542351][T20156] usb 7-1: config 0 descriptor??
[ 1057.546387][T22441] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1057.551082][T20156] chaoskey 7-1:0.0: Unable to register with hwrng
[ 1057.754778][T16384] usb 7-1: USB disconnect, device number 5
[ 1058.568188][T22463] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4076'.
[ 1058.858712][T22471] tipc: Started in network mode
[ 1058.860367][T22471] tipc: Node identity 62fbe4992598, cluster identity 4711
[ 1058.863274][T22471] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1058.866743][T22471] syzkaller0: entered promiscuous mode
[ 1058.868641][T22471] syzkaller0: entered allmulticast mode
[ 1058.894536][T22471] tipc: Resetting bearer <eth:syzkaller0>
[ 1059.018060][T22470] tipc: Resetting bearer <eth:syzkaller0>
[ 1059.030959][T22470] tipc: Disabling bearer <eth:syzkaller0>
[ 1059.202523][T22477] IPVS: sync thread started: state = BACKUP, mcast_ifn = hsr0, syncid = 4, id = 0
[ 1059.293772][ T1415] ieee802154 phy0 wpan0: encryption failed: -22
[ 1059.295932][ T1415] ieee802154 phy1 wpan1: encryption failed: -22
[ 1059.454268][T22486] ALSA: mixer_oss: invalid OSS volume ''
[ 1059.721876][T22495] netlink: 'syz.5.4083': attribute type 1 has an invalid length.
[ 1059.724347][T22495] netlink: 760 bytes leftover after parsing attributes in process `syz.5.4083'.
[ 1060.459593][T22505] syzkaller0: entered promiscuous mode
[ 1060.461482][T22505] syzkaller0: entered allmulticast mode
[ 1060.466009][T22505] 0: reclassify loop, rule prio 0, protocol 800
[ 1060.576230][T22514] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4088'.
[ 1060.889325][T22524] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4090'.
[ 1061.190768][T22528] PKCS8: Unsupported PKCS#8 version
[ 1061.810053][T22545] netlink: 'syz.5.4095': attribute type 1 has an invalid length.
[ 1061.812717][T22545] netlink: 760 bytes leftover after parsing attributes in process `syz.5.4095'.
[ 1062.543001][T22555] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4097'.
[ 1062.999240][T22569] syzkaller0: entered promiscuous mode
[ 1063.001033][T22569] syzkaller0: entered allmulticast mode
[ 1063.019311][T22569] 0: reclassify loop, rule prio 0, protocol 800
[ 1064.569533][T22580] bridge2: entered promiscuous mode
[ 1064.581667][T22580] bridge2: entered allmulticast mode
[ 1065.375761][T22587] netlink: 'syz.3.4106': attribute type 1 has an invalid length.
[ 1065.379484][T22589] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4105'.
[ 1065.385445][T22587] netlink: 760 bytes leftover after parsing attributes in process `syz.3.4106'.
[ 1066.109205][T22600] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4108'.
[ 1066.467095][T22607] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4110'.
[ 1066.535729][T20156] usb 8-1: new high-speed USB device number 95 using dummy_hcd
[ 1066.911679][T20156] usb 8-1: Using ep0 maxpacket: 32
[ 1066.914550][T20156] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1066.918866][T20156] usb 8-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1066.921455][T20156] usb 8-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1066.924159][T20156] usb 8-1: Product: syz
[ 1066.925418][T20156] usb 8-1: Manufacturer: syz
[ 1066.926768][T20156] usb 8-1: SerialNumber: syz
[ 1066.929387][T20156] usb 8-1: config 0 descriptor??
[ 1066.931604][T22587] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1066.939459][T20156] chaoskey 8-1:0.0: Unable to register with hwrng
[ 1067.144197][T20156] usb 8-1: USB disconnect, device number 95
[ 1067.332788][T22616] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4111'.
[ 1067.336551][T22616] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4111'.
[ 1067.746996][T22626] netlink: 212368 bytes leftover after parsing attributes in process `syz.4.4115'.
[ 1067.754462][T22626] 9p: Bad value for 'wfdno'
[ 1067.808151][T22627] lo speed is unknown, defaulting to 1000
[ 1070.022253][T20156] usb 7-1: new full-speed USB device number 6 using dummy_hcd
[ 1070.183497][T20156] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1070.187621][T20156] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1070.202344][T20156] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1070.206205][T20156] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1070.431738][T20156] usb 7-1: usb_control_msg returned -32
[ 1070.433679][T20156] usbtmc 7-1:16.0: can't read capabilities
[ 1071.268008][T22673] netlink: 'syz.5.4125': attribute type 1 has an invalid length.
[ 1071.270958][T22673] netlink: 760 bytes leftover after parsing attributes in process `syz.5.4125'.
[ 1074.048480][T20156] usb 7-1: USB disconnect, device number 6
[ 1074.089763][T22681] batman_adv: batadv0: Adding interface: ipvlan2
[ 1074.095965][T22681] batman_adv: batadv0: The MTU of interface ipvlan2 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1074.114414][T22681] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1074.117845][T22681] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1074.121502][T22681] batman_adv: batadv0: Not using interface ipvlan2 (retrying later): interface not active
[ 1076.614331][T22704] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4132'.
[ 1076.618148][T22704] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4132'.
[ 1076.671684][   T40] audit: type=1326 audit(1076.522:13143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22707 comm="syz.2.4134" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f52f6c code=0x0
[ 1076.694848][T22715] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4135'.
[ 1076.697671][T22715] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4135'.
[ 1076.741255][T22715] bond3: entered promiscuous mode
[ 1076.743334][T22715] 8021q: adding VLAN 0 to HW filter on device bond3
[ 1076.911683][T16384] psmouse serio2: Failed to reset mouse on : -5
[ 1077.027119][T22720] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4136'.
[ 1077.103210][T22722] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4137'.
[ 1077.699834][T22728] netlink: 'syz.2.4139': attribute type 1 has an invalid length.
[ 1077.702693][T22728] netlink: 760 bytes leftover after parsing attributes in process `syz.2.4139'.
[ 1077.941739][   T50] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[ 1078.201732][   T50] usb 7-1: Using ep0 maxpacket: 32
[ 1078.207049][   T50] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1078.212093][   T50] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1078.215679][   T50] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1078.219014][   T50] usb 7-1: Product: syz
[ 1078.220836][   T50] usb 7-1: Manufacturer: syz
[ 1078.222770][   T50] usb 7-1: SerialNumber: syz
[ 1078.226282][   T50] usb 7-1: config 0 descriptor??
[ 1078.231336][T22728] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1078.244159][   T50] chaoskey 7-1:0.0: Unable to register with hwrng
[ 1078.450169][   T50] usb 7-1: USB disconnect, device number 7
[ 1078.908060][T22737] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4142'.
[ 1080.691641][T16384] misc userio: Buffer overflowed, userio client isn't keeping up
[ 1081.755751][T16384] input: PS/2 Generic Mouse as /devices/serio2/input/input38
[ 1081.971667][T16384] psmouse serio2: Failed to enable mouse on 
[ 1082.263682][T22779] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4151'.
[ 1083.467694][T22765] random: crng reseeded on system resumption
[ 1083.479231][T22765] Restarting kernel threads ...
[ 1083.482007][T22765] Done restarting kernel threads.
[ 1083.487476][ T5950] Bluetooth: hci1: unexpected event for opcode 0x0c7b
[ 1085.277491][   T40] audit: type=1326 audit(1085.172:13144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22801 comm="syz.2.4155" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1085.291430][   T40] audit: type=1326 audit(1085.172:13145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22801 comm="syz.2.4155" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1085.298357][   T40] audit: type=1326 audit(1085.182:13146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22801 comm="syz.2.4155" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1085.305255][   T40] audit: type=1326 audit(1085.202:13147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22801 comm="syz.2.4155" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1085.313878][   T40] audit: type=1326 audit(1085.212:13148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22801 comm="syz.2.4155" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1085.325307][   T40] audit: type=1326 audit(1085.222:13149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22801 comm="syz.2.4155" exe="/syz-executor" sig=0 arch=40000003 syscall=297 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1085.334308][   T40] audit: type=1326 audit(1085.222:13150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22801 comm="syz.2.4155" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1085.343590][   T40] audit: type=1326 audit(1085.232:13151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22801 comm="syz.2.4155" exe="/syz-executor" sig=0 arch=40000003 syscall=358 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1085.358422][   T40] audit: type=1326 audit(1085.252:13152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22801 comm="syz.2.4155" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1085.383878][   T40] audit: type=1326 audit(1085.282:13153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22801 comm="syz.2.4155" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1086.387024][T22820] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4160'.
[ 1086.927938][T22828] syzkaller0: entered promiscuous mode
[ 1086.929649][T22828] syzkaller0: entered allmulticast mode
[ 1086.934111][T22828] 0: reclassify loop, rule prio 0, protocol 800
[ 1087.558041][ T5950] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[ 1087.562543][ T5950] Bluetooth: hci1: Injecting HCI hardware error event
[ 1087.567418][ T5950] Bluetooth: hci1: hardware error 0x00
[ 1089.611648][ T5950] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[ 1091.061954][T22859] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4169'.
[ 1091.902735][ T6006] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[ 1092.075890][ T6006] usb 7-1: unable to get BOS descriptor or descriptor too short
[ 1092.081927][ T6006] usb 7-1: too many endpoints for config 1 interface 0 altsetting 13: 255, using maximum allowed: 30
[ 1092.085629][ T6006] usb 7-1: config 1 interface 0 altsetting 13 has 1 endpoint descriptor, different from the interface descriptor's value: 255
[ 1092.090590][ T6006] usb 7-1: config 1 interface 0 has no altsetting 0
[ 1092.096785][ T6006] usb 7-1: string descriptor 0 read error: -22
[ 1092.099189][ T6006] usb 7-1: New USB device found, idVendor=0458, idProduct=5012, bcdDevice= 0.40
[ 1092.102556][ T6006] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1092.444068][T22899] overlayfs: failed to clone upperpath
[ 1092.465198][T22881] ALSA: mixer_oss: invalid OSS volume ''
[ 1093.639133][ T6006] input: HID 0458:5012 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:1.0/0003:0458:5012.0014/input/input39
[ 1093.662988][ T6006] input: HID 0458:5012 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:1.0/0003:0458:5012.0014/input/input40
[ 1093.740950][ T6006] kye 0003:0458:5012.0014: input,hiddev1,hidraw1: USB HID vff.7f Device [HID 0458:5012] on usb-dummy_hcd.2-1/input0
[ 1093.756291][ T6006] usb 7-1: USB disconnect, device number 8
[ 1093.828978][T22910] fido_id[22910]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb7/report_descriptor': No such file or directory
[ 1093.967720][T22911] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4186'.
[ 1093.973894][ T1254] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1093.982028][ T1254] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1093.985781][ T1254] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1093.989607][ T1254] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1094.194779][T22925] syz.3.4190: vmalloc error: size 2147479872, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 1094.203970][T22925] CPU: 2 UID: 0 PID: 22925 Comm: syz.3.4190 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1094.204008][T22925] Tainted: [L]=SOFTLOCKUP
[ 1094.204016][T22925] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1094.204029][T22925] Call Trace:
[ 1094.204037][T22925]  <TASK>
[ 1094.204046][T22925]  dump_stack_lvl+0x100/0x190
[ 1094.204093][T22925]  warn_alloc.cold+0x95/0x1c1
[ 1094.204132][T22925]  ? __pfx_warn_alloc+0x10/0x10
[ 1094.204166][T22925]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1094.204202][T22925]  ? __lock_acquire+0x4a5/0x2630
[ 1094.204232][T22925]  ? __lock_acquire+0x4a5/0x2630
[ 1094.204264][T22925]  __vmalloc_node_range_noprof+0x1252/0x1530
[ 1094.204293][T22925]  ? do_raw_spin_lock+0x128/0x260
[ 1094.204328][T22925]  ? netlink_alloc_large_skb+0x9b/0x150
[ 1094.204356][T22925]  ? alloc_pages_mpol+0x25a/0x550
[ 1094.204382][T22925]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1094.204416][T22925]  ? rcu_is_watching+0x12/0xc0
[ 1094.204454][T22925]  __kvmalloc_node_noprof+0x3de/0xa00
[ 1094.204475][T22925]  ? netlink_alloc_large_skb+0x9b/0x150
[ 1094.204497][T22925]  ? netlink_alloc_large_skb+0x9b/0x150
[ 1094.204527][T22925]  netlink_alloc_large_skb+0x9b/0x150
[ 1094.204552][T22925]  netlink_sendmsg+0x680/0xda0
[ 1094.204580][T22925]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1094.204607][T22925]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[ 1094.204635][T22925]  sock_write_iter+0x524/0x5a0
[ 1094.204660][T22925]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1094.204683][T22925]  ? __pfx_sock_write_iter+0x10/0x10
[ 1094.204718][T22925]  ? bpf_lsm_file_permission+0x9/0x10
[ 1094.204739][T22925]  ? security_file_permission+0x76/0x210
[ 1094.204769][T22925]  ? rw_verify_area+0xce/0x6d0
[ 1094.204803][T22925]  vfs_write+0x6ac/0x1070
[ 1094.204823][T22925]  ? __pfx_sock_write_iter+0x10/0x10
[ 1094.204852][T22925]  ? __pfx_vfs_write+0x10/0x10
[ 1094.204870][T22925]  ? find_held_lock+0x2b/0x80
[ 1094.204908][T22925]  ksys_write+0x1f8/0x250
[ 1094.204928][T22925]  ? __pfx_ksys_write+0x10/0x10
[ 1094.204957][T22925]  __do_fast_syscall_32+0xe3/0x8c0
[ 1094.204986][T22925]  do_fast_syscall_32+0x32/0x70
[ 1094.205010][T22925]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1094.205036][T22925] RIP: 0023:0xf703ef6c
[ 1094.205053][T22925] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 1094.205077][T22925] RSP: 002b:00000000f542d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000004
[ 1094.205099][T22925] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080000280
[ 1094.205114][T22925] RDX: 00000000ffffff03 RSI: 0000000000000000 RDI: 0000000000000000
[ 1094.205127][T22925] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1094.205141][T22925] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 1094.205154][T22925] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1094.205184][T22925]  </TASK>
[ 1094.205193][T22925] Mem-Info:
[ 1094.317880][T22925] active_anon:1936 inactive_anon:2155 isolated_anon:0
[ 1094.317880][T22925]  active_file:11590 inactive_file:5180 isolated_file:0
[ 1094.317880][T22925]  unevictable:1768 dirty:180 writeback:0
[ 1094.317880][T22925]  slab_reclaimable:7743 slab_unreclaimable:82005
[ 1094.317880][T22925]  mapped:22260 shmem:3850 pagetables:1338
[ 1094.317880][T22925]  sec_pagetables:352 bounce:0
[ 1094.317880][T22925]  kernel_misc_reclaimable:0
[ 1094.317880][T22925]  free:31082 free_pcp:8031 free_cma:0
[ 1094.332358][T22925] Node 0 active_anon:12kB inactive_anon:76kB active_file:6808kB inactive_file:648kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:188kB dirty:28kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:7392kB pagetables:1356kB sec_pagetables:1160kB all_unreclaimable? yes Balloon:0kB
[ 1094.341966][T22925] Node 1 active_anon:7732kB inactive_anon:8544kB active_file:39552kB inactive_file:20072kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:88852kB dirty:692kB writeback:0kB shmem:11864kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:7520kB pagetables:3996kB sec_pagetables:248kB all_unreclaimable? no Balloon:0kB
[ 1094.352319][T22925] Node 0 DMA free:2556kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:92kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1094.361841][T22925] lowmem_reserve[]: 0 285 285 285 285
[ 1094.363579][T22925] Node 0 DMA32 free:24900kB boost:29392kB min:42460kB low:45724kB high:48988kB reserved_highatomic:2048KB free_highatomic:184KB active_anon:12kB inactive_anon:76kB active_file:6808kB inactive_file:648kB unevictable:3536kB writepending:28kB zspages:2372kB present:1032196kB managed:292452kB mlocked:0kB bounce:0kB free_pcp:448kB local_pcp:0kB free_cma:0kB
[ 1094.373812][T22925] lowmem_reserve[]: 0 0 0 0 0
[ 1094.375356][T22925] Node 1 DMA32 free:96872kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:7732kB inactive_anon:8544kB active_file:39552kB inactive_file:20072kB unevictable:3536kB writepending:692kB zspages:13032kB present:1048432kB managed:948212kB mlocked:0kB bounce:0kB free_pcp:31700kB local_pcp:19888kB free_cma:0kB
[ 1094.385609][T22925] lowmem_reserve[]: 0 0 0 0 0
[ 1094.387151][T22925] Node 0 DMA: 117*4kB (U) 67*8kB (U) 27*16kB (U) 11*32kB (U) 6*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 2556kB
[ 1094.391909][T22925] Node 0 DMA32: 883*4kB (UMEH) 253*8kB (UMEH) 73*16kB (UMH) 165*32kB (UMEH) 52*64kB (UME) 19*128kB (UME) 6*256kB (M) 5*512kB (M) 1*1024kB (M) 1*2048kB (U) 0*4096kB = 24932kB
[ 1094.397363][T22925] Node 1 DMA32: 1534*4kB (UME) 2518*8kB (UE) 3400*16kB (UE) 7*32kB (ME) 134*64kB (UME) 36*128kB (UE) 8*256kB (U) 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 96648kB
[ 1094.402626][T22925] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1094.405632][T22925] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1094.408563][T22925] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1094.411663][T22925] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[ 1094.414555][T22925] 21666 total pagecache pages
[ 1094.416046][T22925] 1025 pages in swap cache
[ 1094.417464][T22925] Free swap  = 32kB
[ 1094.418731][T22925] Total swap = 124996kB
[ 1094.420058][T22925] 524155 pages RAM
[ 1094.421258][T22925] 0 pages HighMem/MovableOnly
[ 1094.422854][T22925] 210149 pages reserved
[ 1094.424181][T22925] 0 pages cma reserved
[ 1094.969038][T22947] FAULT_INJECTION: forcing a failure.
[ 1094.969038][T22947] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1094.974149][T22947] CPU: 0 UID: 0 PID: 22947 Comm: syz.2.4195 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1094.974169][T22947] Tainted: [L]=SOFTLOCKUP
[ 1094.974173][T22947] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1094.974180][T22947] Call Trace:
[ 1094.974184][T22947]  <TASK>
[ 1094.974189][T22947]  dump_stack_lvl+0x100/0x190
[ 1094.974212][T22947]  should_fail_ex.cold+0x5/0xa
[ 1094.974226][T22947]  _copy_to_user+0x32/0xd0
[ 1094.974244][T22947]  bpf_test_finish.isra.0+0x510/0x660
[ 1094.974265][T22947]  ? __might_fault+0xc5/0x140
[ 1094.974282][T22947]  ? __pfx_bpf_test_finish.isra.0+0x10/0x10
[ 1094.974303][T22947]  ? _copy_from_user+0x59/0xd0
[ 1094.974319][T22947]  bpf_prog_test_run_xdp+0xa70/0x1670
[ 1094.974337][T22947]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1094.974353][T22947]  ? fput+0x79/0x100
[ 1094.974367][T22947]  ? __bpf_prog_get+0x97/0x2a0
[ 1094.974385][T22947]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1094.974397][T22947]  __sys_bpf+0x1725/0x4b90
[ 1094.974413][T22947]  ? __pfx___sys_bpf+0x10/0x10
[ 1094.974427][T22947]  ? proc_fail_nth_write+0x9f/0x220
[ 1094.974442][T22947]  ? find_held_lock+0x2b/0x80
[ 1094.974457][T22947]  ? find_held_lock+0x2b/0x80
[ 1094.974468][T22947]  ? ksys_write+0x190/0x250
[ 1094.974482][T22947]  ? __mutex_unlock_slowpath+0x15c/0x790
[ 1094.974503][T22947]  ? fput+0x79/0x100
[ 1094.974517][T22947]  ? ksys_write+0x1ac/0x250
[ 1094.974530][T22947]  __ia32_sys_bpf+0x79/0xf0
[ 1094.974544][T22947]  ? lockdep_hardirqs_on+0x78/0x100
[ 1094.974556][T22947]  __do_fast_syscall_32+0xe3/0x8c0
[ 1094.974572][T22947]  do_fast_syscall_32+0x32/0x70
[ 1094.974585][T22947]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1094.974600][T22947] RIP: 0023:0xf7f52f6c
[ 1094.974610][T22947] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 1094.974624][T22947] RSP: 002b:00000000f541650c EFLAGS: 00000292 ORIG_RAX: 0000000000000165
[ 1094.974640][T22947] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000800002c0
[ 1094.974651][T22947] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000
[ 1094.974660][T22947] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1094.974670][T22947] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 1094.974679][T22947] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1094.974701][T22947]  </TASK>
[ 1095.241870][T20156] usb 8-1: new high-speed USB device number 96 using dummy_hcd
[ 1095.394081][T20156] usb 8-1: unable to get BOS descriptor or descriptor too short
[ 1095.398515][T20156] usb 8-1: too many endpoints for config 1 interface 0 altsetting 13: 255, using maximum allowed: 30
[ 1095.403774][T20156] usb 8-1: config 1 interface 0 altsetting 13 has 1 endpoint descriptor, different from the interface descriptor's value: 255
[ 1095.409421][T20156] usb 8-1: config 1 interface 0 has no altsetting 0
[ 1095.415340][T20156] usb 8-1: string descriptor 0 read error: -22
[ 1095.418237][T20156] usb 8-1: New USB device found, idVendor=0458, idProduct=5012, bcdDevice= 0.40
[ 1095.422463][T20156] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1095.701201][T22957] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4198'.
[ 1095.877391][T20156] input: HID 0458:5012 as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:1.0/0003:0458:5012.0015/input/input41
[ 1095.955122][T20156] input: HID 0458:5012 as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:1.0/0003:0458:5012.0015/input/input42
[ 1096.024273][T20156] kye 0003:0458:5012.0015: input,hiddev1,hidraw1: USB HID vff.7f Device [HID 0458:5012] on usb-dummy_hcd.3-1/input0
[ 1096.086803][T16384] usb 8-1: USB disconnect, device number 96
[ 1096.795284][T22983] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4207'.
[ 1097.310219][T23005] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4210'.
[ 1097.621863][ T6006] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[ 1097.771651][ T6006] usb 7-1: Using ep0 maxpacket: 32
[ 1097.775381][ T6006] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1097.780584][ T6006] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1097.783583][ T6006] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1097.786134][ T6006] usb 7-1: Product: syz
[ 1097.787461][ T6006] usb 7-1: Manufacturer: syz
[ 1097.789099][ T6006] usb 7-1: SerialNumber: syz
[ 1097.794739][ T6006] usb 7-1: config 0 descriptor??
[ 1097.797157][T23007] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1097.801876][ T6006] chaoskey 7-1:0.0: Unable to register with hwrng
[ 1098.202274][T16384] usb 7-1: USB disconnect, device number 9
[ 1098.634888][T23025] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4216'.
[ 1100.105057][T23035] ALSA: mixer_oss: invalid OSS volume ''
[ 1100.188500][T23067] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4225'.
[ 1100.928424][T23089] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4235'.
[ 1102.682404][T23119] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4241'.
[ 1103.000039][T23127] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4245'.
[ 1103.436426][T23133] 9p: Bad value for 'rfdno'
[ 1103.593541][T23137] netlink: 212360 bytes leftover after parsing attributes in process `syz.4.4247'.
[ 1104.539968][T23148] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4250'.
[ 1105.504423][T23150] ALSA: mixer_oss: invalid OSS volume ''
[ 1105.864334][T23160] FAULT_INJECTION: forcing a failure.
[ 1105.864334][T23160] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1105.869640][T23160] CPU: 1 UID: 0 PID: 23160 Comm: syz.3.4252 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1105.869661][T23160] Tainted: [L]=SOFTLOCKUP
[ 1105.869665][T23160] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1105.869672][T23160] Call Trace:
[ 1105.869677][T23160]  <TASK>
[ 1105.869682][T23160]  dump_stack_lvl+0x100/0x190
[ 1105.869707][T23160]  should_fail_ex.cold+0x5/0xa
[ 1105.869721][T23160]  _copy_from_iter+0x1f4/0x1690
[ 1105.869739][T23160]  ? __asan_memset+0x23/0x50
[ 1105.869757][T23160]  ? __pfx__copy_from_iter+0x10/0x10
[ 1105.869776][T23160]  ? __pfx___alloc_skb+0x10/0x10
[ 1105.869800][T23160]  netlink_sendmsg+0x808/0xda0
[ 1105.869815][T23160]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1105.869830][T23160]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[ 1105.869845][T23160]  ____sys_sendmsg+0x9e1/0xb70
[ 1105.869859][T23160]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1105.869872][T23160]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1105.869893][T23160]  ___sys_sendmsg+0x190/0x1e0
[ 1105.869909][T23160]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1105.869940][T23160]  __sys_sendmsg+0x170/0x220
[ 1105.869952][T23160]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1105.869967][T23160]  ? __pfx_ksys_write+0x10/0x10
[ 1105.869982][T23160]  __do_fast_syscall_32+0xe3/0x8c0
[ 1105.869998][T23160]  do_fast_syscall_32+0x32/0x70
[ 1105.870012][T23160]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1105.870028][T23160] RIP: 0023:0xf703ef6c
[ 1105.870038][T23160] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 1105.870050][T23160] RSP: 002b:00000000f53eb50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[ 1105.870062][T23160] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00000000800004c0
[ 1105.870070][T23160] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1105.870076][T23160] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1105.870082][T23160] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1105.870089][T23160] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1105.870102][T23160]  </TASK>
[ 1106.565726][T23166] netlink: 'syz.4.4254': attribute type 1 has an invalid length.
[ 1106.568210][T23166] netlink: 1840 bytes leftover after parsing attributes in process `syz.4.4254'.
[ 1106.791982][T23169] binder: 23167:23169 ioctl c0306201 80000640 returned -22
[ 1106.922600][T23175] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4256'.
[ 1107.444989][T23184] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4267'.
[ 1107.539480][T23182] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[ 1107.543468][T23182] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[ 1108.693729][T23205] netlink: 'syz.4.4265': attribute type 1 has an invalid length.
[ 1108.693750][T23205] netlink: 1840 bytes leftover after parsing attributes in process `syz.4.4265'.
[ 1109.505620][T23211] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4268'.
[ 1109.678984][T23214] bridge0: port 4(syz_tun) entered blocking state
[ 1109.679068][T23214] bridge0: port 4(syz_tun) entered disabled state
[ 1109.679230][T23214] syz_tun: entered allmulticast mode
[ 1109.680333][T23214] syz_tun: entered promiscuous mode
[ 1111.827130][T23233] binder: 23223:23233 ioctl c0306201 80000640 returned -22
[ 1112.720812][T23244] netlink: 'syz.4.4277': attribute type 1 has an invalid length.
[ 1112.723458][T23244] netlink: 1840 bytes leftover after parsing attributes in process `syz.4.4277'.
[ 1113.379718][T23250] FAULT_INJECTION: forcing a failure.
[ 1113.379718][T23250] name failslab, interval 1, probability 0, space 0, times 0
[ 1113.521909][T23250] CPU: 1 UID: 0 PID: 23250 Comm: syz.2.4276 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1113.521933][T23250] Tainted: [L]=SOFTLOCKUP
[ 1113.521937][T23250] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1113.521944][T23250] Call Trace:
[ 1113.521949][T23250]  <TASK>
[ 1113.521954][T23250]  dump_stack_lvl+0x100/0x190
[ 1113.521977][T23250]  should_fail_ex.cold+0x5/0xa
[ 1113.521992][T23250]  should_failslab+0xc2/0x120
[ 1113.522006][T23250]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[ 1113.522029][T23250]  ? __alloc_skb+0x140/0x710
[ 1113.522051][T23250]  __alloc_skb+0x140/0x710
[ 1113.522068][T23250]  ? __alloc_skb+0x5b7/0x710
[ 1113.522085][T23250]  ? __pfx___alloc_skb+0x10/0x10
[ 1113.522103][T23250]  ? __pfx__copy_to_iter+0x10/0x10
[ 1113.522121][T23250]  netlink_dump+0x19b/0xd30
[ 1113.522135][T23250]  ? __pfx_netlink_dump+0x10/0x10
[ 1113.522147][T23250]  ? simple_copy_to_iter+0x4e/0x90
[ 1113.522181][T23250]  ? skb_copy_datagram_iter+0xa1/0x270
[ 1113.522199][T23250]  netlink_recvmsg+0x7dc/0xa90
[ 1113.522212][T23250]  ? __pfx_netlink_recvmsg+0x10/0x10
[ 1113.522227][T23250]  ? iovec_from_user+0xda/0x140
[ 1113.522244][T23250]  ____sys_recvmsg+0x5b3/0x640
[ 1113.522259][T23250]  ? __pfx_netlink_recvmsg+0x10/0x10
[ 1113.522272][T23250]  ? __pfx_____sys_recvmsg+0x10/0x10
[ 1113.522291][T23250]  ? ___sys_recvmsg+0x177/0x1a0
[ 1113.522305][T23250]  ? kfree+0x2ec/0x6b0
[ 1113.522319][T23250]  ? ____sys_recvmsg+0x346/0x640
[ 1113.522336][T23250]  ___sys_recvmsg+0x16a/0x1a0
[ 1113.522351][T23250]  ? __pfx____sys_recvmsg+0x10/0x10
[ 1113.522368][T23250]  ? find_held_lock+0x2b/0x80
[ 1113.522385][T23250]  ? __pfx___might_resched+0x10/0x10
[ 1113.522406][T23250]  do_recvmmsg+0x563/0x760
[ 1113.522423][T23250]  ? __pfx_do_recvmmsg+0x10/0x10
[ 1113.522438][T23250]  ? finish_task_switch.isra.0+0x205/0xb80
[ 1113.522452][T23250]  ? finish_task_switch.isra.0+0x205/0xb80
[ 1113.522465][T23250]  ? rcu_is_watching+0x12/0xc0
[ 1113.522483][T23250]  ? trace_sched_exit_tp+0x13a/0x180
[ 1113.522501][T23250]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1113.522519][T23250]  __sys_recvmmsg+0x21f/0x270
[ 1113.522531][T23250]  ? __pfx___sys_recvmmsg+0x10/0x10
[ 1113.522547][T23250]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[ 1113.522560][T23250]  ? __do_fast_syscall_32+0x94/0x8c0
[ 1113.522574][T23250]  ? lockdep_hardirqs_on+0x78/0x100
[ 1113.522586][T23250]  __do_fast_syscall_32+0xe3/0x8c0
[ 1113.522601][T23250]  do_fast_syscall_32+0x32/0x70
[ 1113.522615][T23250]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1113.522629][T23250] RIP: 0023:0xf7f52f6c
[ 1113.522640][T23250] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 1113.522651][T23250] RSP: 002b:00000000f538b50c EFLAGS: 00000292 ORIG_RAX: 0000000000000151
[ 1113.522663][T23250] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000080000c40
[ 1113.522670][T23250] RDX: 000000000000016c RSI: 0000000000010002 RDI: 0000000000000000
[ 1113.522677][T23250] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1113.522684][T23250] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 1113.522690][T23250] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1113.522704][T23250]  </TASK>
[ 1114.030785][T23256] lo speed is unknown, defaulting to 1000
[ 1114.550353][T23261] binder: 23259:23261 ioctl c0306201 80000640 returned -22
[ 1115.286080][T23274] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4286'.
[ 1115.943032][T23280] netlink: 'syz.3.4287': attribute type 1 has an invalid length.
[ 1115.950981][T23280] netlink: 1828 bytes leftover after parsing attributes in process `syz.3.4287'.
[ 1116.201852][ T6006] usb 8-1: new high-speed USB device number 97 using dummy_hcd
[ 1116.361613][ T6006] usb 8-1: Using ep0 maxpacket: 32
[ 1116.364595][ T6006] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1116.372389][ T6006] usb 8-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1116.375260][ T6006] usb 8-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1116.377888][ T6006] usb 8-1: Product: syz
[ 1116.379186][ T6006] usb 8-1: Manufacturer: syz
[ 1116.380681][ T6006] usb 8-1: SerialNumber: syz
[ 1116.395826][ T6006] usb 8-1: config 0 descriptor??
[ 1116.398270][T23280] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1116.413278][ T6006] chaoskey 8-1:0.0: Unable to register with hwrng
[ 1116.637465][ T6006] usb 8-1: USB disconnect, device number 97
[ 1117.701773][T15585] usb 8-1: new high-speed USB device number 98 using dummy_hcd
[ 1117.854093][T15585] usb 8-1: Using ep0 maxpacket: 32
[ 1117.857969][T15585] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1117.861309][T15585] usb 8-1: config 0 has no interfaces?
[ 1117.866321][T15585] usb 8-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1117.869319][T15585] usb 8-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1117.872173][T15585] usb 8-1: Product: syz
[ 1117.873516][T15585] usb 8-1: Manufacturer: syz
[ 1117.874981][T15585] usb 8-1: SerialNumber: syz
[ 1117.877791][T15585] usb 8-1: config 0 descriptor??
[ 1119.376049][T23309] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4296'.
[ 1120.498578][   T50] usb 8-1: USB disconnect, device number 98
[ 1120.608744][T23325] netlink: 'syz.3.4300': attribute type 1 has an invalid length.
[ 1120.635168][T23325] 8021q: adding VLAN 0 to HW filter on device bond4
[ 1120.713456][   T50] hid_parser_main: 5 callbacks suppressed
[ 1120.713472][   T50] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[ 1120.717660][   T50] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[ 1120.729465][T23325] bond4: (slave gretap2): making interface the new active one
[ 1120.730281][   T50] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[ 1120.734356][ T1415] ieee802154 phy0 wpan0: encryption failed: -22
[ 1120.734427][ T1415] ieee802154 phy1 wpan1: encryption failed: -22
[ 1120.739018][T23325] bond4: (slave gretap2): Enslaving as an active interface with an up link
[ 1120.739111][   T50] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[ 1120.751603][   T50] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[ 1120.754027][   T50] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[ 1120.756346][   T50] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[ 1120.769023][   T50] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[ 1120.771498][   T50] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[ 1120.779192][   T50] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[ 1120.791146][   T50] hid-generic 0000:0000:0000.0016: hidraw1: <UNKNOWN> HID v0.00 Device [Á“ƽZÄæwÇý[baÿ–é|\rnÀ)A¼#6”oÒ¯ô?•ða Iü¸äãs„Ö5hVõ3ñ®(;éò
[ 1120.791146][   T50] ãÑ�ƒPÔ$zÉ·‡X$©·à˜w[SÖì–ÀRìÑeÑzx—ÞuñS r»œÏláì[µ5l'˜ZCz2ñ] on ü’týDKÍí˜Y縣Ϫòž¿¹,ÇËúÒU›¾O�á‰èpŽ“‚{"iÌxúAý[Ëew·ßäÃ’}ÂZXª„A
[ 1120.956312][T23327] fido_id[23327]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[ 1121.420556][T23343] lo speed is unknown, defaulting to 1000
[ 1122.940857][T23361] syzkaller0: entered promiscuous mode
[ 1122.951704][T23361] syzkaller0: entered allmulticast mode
[ 1123.261679][T16384] usb 8-1: new high-speed USB device number 99 using dummy_hcd
[ 1123.422059][T16384] usb 8-1: Using ep0 maxpacket: 32
[ 1123.426871][T16384] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1123.430839][T16384] usb 8-1: config 0 has no interfaces?
[ 1123.435691][T16384] usb 8-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1123.439224][T16384] usb 8-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1123.442981][T16384] usb 8-1: Product: syz
[ 1123.444842][T16384] usb 8-1: Manufacturer: syz
[ 1123.446936][T16384] usb 8-1: SerialNumber: syz
[ 1123.450546][T16384] usb 8-1: config 0 descriptor??
[ 1124.365828][T23374] netlink: 272 bytes leftover after parsing attributes in process `syz.5.4312'.
[ 1126.026331][T23391] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4318'.
[ 1126.349604][T23401] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4320'.
[ 1126.983736][T16384] usb 8-1: USB disconnect, device number 99
[ 1127.025979][T23414] netlink: 300 bytes leftover after parsing attributes in process `syz.3.4322'.
[ 1127.745222][T23432] lo speed is unknown, defaulting to 1000
[ 1127.777143][   T40] kauditd_printk_skb: 40 callbacks suppressed
[ 1127.777164][   T40] audit: type=1326 audit(1127.672:13194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23431 comm="syz.4.4328" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f53f6c code=0x0
[ 1128.593289][T23445] netlink: 300 bytes leftover after parsing attributes in process `syz.4.4331'.
[ 1128.822724][T23454] netlink: 156 bytes leftover after parsing attributes in process `syz.2.4333'.
[ 1128.939093][T23458] random: crng reseeded on system resumption
[ 1129.184508][T23436] syz.2.4326 (23436) used greatest stack depth: 18176 bytes left
[ 1129.836826][T23464] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4335'.
[ 1130.054250][T23466] binder: 23465:23466 ioctl c0306201 80000640 returned -22
[ 1131.596163][T23488] netlink: 40 bytes leftover after parsing attributes in process `syz.4.4341'.
[ 1132.087150][T23495] binder: 23493:23495 ioctl c0306201 80000640 returned -22
[ 1134.577531][T23526] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4350'.
[ 1135.689146][T23531] netlink: 264 bytes leftover after parsing attributes in process `syz.2.4351'.
[ 1136.051405][T23540] netlink: 'syz.4.4354': attribute type 1 has an invalid length.
[ 1136.054176][T23540] netlink: 2096 bytes leftover after parsing attributes in process `syz.4.4354'.
[ 1136.910659][T15585] libceph: connect (1)[c::]:6789 error -101
[ 1136.913277][T15585] libceph: mon0 (1)[c::]:6789 connect error
[ 1136.918077][T15585] libceph: connect (1)[c::]:6789 error -101
[ 1136.921021][T15585] libceph: mon0 (1)[c::]:6789 connect error
[ 1137.081073][T23554] ceph: No mds server is up or the cluster is laggy
[ 1137.174126][T23535] Process accounting resumed
[ 1137.767267][T23565] netlink: 264 bytes leftover after parsing attributes in process `syz.4.4360'.
[ 1137.897130][T23571] syzkaller1: entered promiscuous mode
[ 1137.899073][T23571] syzkaller1: entered allmulticast mode
[ 1137.941110][T23577] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4364'.
[ 1139.542784][T23597] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4367'.
[ 1140.672452][T23595] ALSA: mixer_oss: invalid OSS volume ''
[ 1140.702048][T23616] netlink: 264 bytes leftover after parsing attributes in process `syz.4.4372'.
[ 1140.919006][T23614] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[ 1140.921849][T23614] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1140.952338][T23614] vhci_hcd vhci_hcd.0: Device attached
[ 1141.241827][T16384] usb 42-1: SetAddress Request (18) to port 0
[ 1141.243963][T16384] usb 42-1: new SuperSpeed USB device number 18 using vhci_hcd
[ 1141.467840][T23626] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4374'.
[ 1141.694958][T23622] vhci_hcd: connection reset by peer
[ 1141.697660][  T189] vhci_hcd vhci_hcd.2: stop threads
[ 1141.699877][  T189] vhci_hcd vhci_hcd.2: release socket
[ 1141.702462][  T189] vhci_hcd vhci_hcd.2: disconnect device
[ 1144.124143][T23657] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[ 1144.126869][T23657] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1144.151062][T23657] vhci_hcd vhci_hcd.0: Device attached
[ 1144.359811][T23669] netlink: 'syz.5.4383': attribute type 1 has an invalid length.
[ 1144.362933][T23669] netlink: 2096 bytes leftover after parsing attributes in process `syz.5.4383'.
[ 1144.630367][T23659] vhci_hcd: connection closed
[ 1144.631368][T21265] vhci_hcd vhci_hcd.2: stop threads
[ 1144.636168][T21265] vhci_hcd vhci_hcd.2: release socket
[ 1144.640553][T21265] vhci_hcd vhci_hcd.2: disconnect device
[ 1144.734447][T23671] siw: device registration error -23
[ 1144.875247][T23676] binder: 23672:23676 ioctl c0306201 80000640 returned -22
[ 1146.375363][T16384] usb 42-1: device descriptor read/8, error -110
[ 1146.881398][T23686] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4389'.
[ 1146.986691][T23688] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer.
[ 1147.152356][T23694] netlink: 'syz.5.4392': attribute type 1 has an invalid length.
[ 1147.154957][T23694] netlink: 2096 bytes leftover after parsing attributes in process `syz.5.4392'.
[ 1147.392087][T16384] usb usb42-port1: attempt power cycle
[ 1147.517225][T23702] lo speed is unknown, defaulting to 1000
[ 1147.527513][T23703] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4393'.
[ 1147.928217][T23713] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4398'.
[ 1147.941675][T23412] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[ 1147.972488][T16384] usb usb42-port1: unable to enumerate USB device
[ 1148.121939][T23412] usb 7-1: Using ep0 maxpacket: 32
[ 1148.125801][T23412] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1148.129661][T23412] usb 7-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1148.143356][T23412] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1148.151595][T23412] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1148.154772][T23412] usb 7-1: Product: syz
[ 1148.156427][T23412] usb 7-1: Manufacturer: syz
[ 1148.168430][T23412] usb 7-1: SerialNumber: syz
[ 1148.204747][T23412] usb 7-1: config 0 descriptor??
[ 1148.212660][T23412] hub 7-1:0.0: bad descriptor, ignoring hub
[ 1148.215308][T23412] hub 7-1:0.0: probe with driver hub failed with error -5
[ 1148.341701][   T40] audit: type=1326 audit(1148.232:13195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23716 comm="syz.5.4400" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa7f6c code=0x7ffc0000
[ 1148.348663][   T40] audit: type=1326 audit(1148.232:13196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23716 comm="syz.5.4400" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa7f6c code=0x7ffc0000
[ 1148.451698][   T40] audit: type=1326 audit(1148.252:13197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23716 comm="syz.5.4400" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf7fa7f6c code=0x7ffc0000
[ 1148.460790][   T40] audit: type=1326 audit(1148.252:13198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23716 comm="syz.5.4400" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa7f6c code=0x7ffc0000
[ 1148.469792][   T40] audit: type=1326 audit(1148.252:13199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23716 comm="syz.5.4400" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa7f6c code=0x7ffc0000
[ 1148.478339][   T40] audit: type=1326 audit(1148.252:13200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23716 comm="syz.5.4400" exe="/syz-executor" sig=0 arch=40000003 syscall=297 compat=1 ip=0xf7fa7f6c code=0x7ffc0000
[ 1148.486645][   T40] audit: type=1326 audit(1148.252:13201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23716 comm="syz.5.4400" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa7f6c code=0x7ffc0000
[ 1148.495321][   T40] audit: type=1326 audit(1148.252:13202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23716 comm="syz.5.4400" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa7f6c code=0x7ffc0000
[ 1148.502893][   T40] audit: type=1326 audit(1148.252:13203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23716 comm="syz.5.4400" exe="/syz-executor" sig=0 arch=40000003 syscall=358 compat=1 ip=0xf7fa7f6c code=0x7ffc0000
[ 1148.509519][   T40] audit: type=1326 audit(1148.252:13204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23716 comm="syz.5.4400" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa7f6c code=0x7ffc0000
[ 1151.171892][ T6006] usb 7-1: USB disconnect, device number 10
[ 1151.494367][T23748] netlink: 'syz.4.4410': attribute type 1 has an invalid length.
[ 1151.497338][T23748] netlink: 2096 bytes leftover after parsing attributes in process `syz.4.4410'.
[ 1151.683451][T23757] syz.3.4411: page allocation failure: order:9, mode:0x40dc0(GFP_KERNEL|__GFP_ZERO|__GFP_COMP), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 1151.697644][T23757] CPU: 1 UID: 0 PID: 23757 Comm: syz.3.4411 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1151.697667][T23757] Tainted: [L]=SOFTLOCKUP
[ 1151.697672][T23757] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1151.697681][T23757] Call Trace:
[ 1151.697686][T23757]  <TASK>
[ 1151.697692][T23757]  dump_stack_lvl+0x100/0x190
[ 1151.697717][T23757]  warn_alloc.cold+0x95/0x1c1
[ 1151.697740][T23757]  ? __pfx_warn_alloc+0x10/0x10
[ 1151.697760][T23757]  ? psi_memstall_leave+0x19c/0x2e0
[ 1151.697780][T23757]  ? __pfx___might_resched+0x10/0x10
[ 1151.697801][T23757]  __alloc_frozen_pages_noprof+0xf36/0x2ba0
[ 1151.697824][T23757]  ? radix_tree_node_alloc.constprop.0+0x66/0x340
[ 1151.697844][T23757]  ? tc_new_tfilter+0x9df/0x24a0
[ 1151.697857][T23757]  ? rtnetlink_rcv_msg+0x95e/0xe90
[ 1151.697869][T23757]  ? netlink_rcv_skb+0x159/0x420
[ 1151.697881][T23757]  ? netlink_unicast+0x5aa/0x870
[ 1151.697893][T23757]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1151.697911][T23757]  ? __sys_sendmsg+0x170/0x220
[ 1151.697922][T23757]  ? __do_fast_syscall_32+0xe3/0x8c0
[ 1151.697936][T23757]  ? do_fast_syscall_32+0x32/0x70
[ 1151.697954][T23757]  ? __lock_acquire+0x4a5/0x2630
[ 1151.697976][T23757]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1151.697990][T23757]  ? policy_nodemask+0xed/0x4f0
[ 1151.698004][T23757]  alloc_pages_mpol+0x1fb/0x550
[ 1151.698018][T23757]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1151.698034][T23757]  ? tcf_em_tree_validate+0x1d1/0xd60
[ 1151.698052][T23757]  ___kmalloc_large_node+0x104/0x150
[ 1151.698067][T23757]  __kmalloc_large_node_noprof+0x1c/0x70
[ 1151.698083][T23757]  __kmalloc_noprof+0x5be/0x850
[ 1151.698101][T23757]  ? __nla_parse+0x40/0x60
[ 1151.698114][T23757]  tcf_em_tree_validate+0x1d1/0xd60
[ 1151.698136][T23757]  ? __pfx_tcf_em_tree_validate+0x10/0x10
[ 1151.698156][T23757]  ? tcf_exts_validate+0x42/0x60
[ 1151.698174][T23757]  basic_change+0x3a5/0x1200
[ 1151.698188][T23757]  ? __pfx_basic_change+0x10/0x10
[ 1151.698209][T23757]  ? __pfx_basic_change+0x10/0x10
[ 1151.698222][T23757]  tc_new_tfilter+0x9df/0x24a0
[ 1151.698246][T23757]  ? __pfx_tc_new_tfilter+0x10/0x10
[ 1151.698260][T23757]  ? arch_stack_walk+0xa6/0xf0
[ 1151.698277][T23757]  ? __lock_acquire+0x4a5/0x2630
[ 1151.698298][T23757]  ? find_held_lock+0x2b/0x80
[ 1151.698310][T23757]  ? rtnetlink_rcv_msg+0x93a/0xe90
[ 1151.698323][T23757]  ? __pfx_tc_new_tfilter+0x10/0x10
[ 1151.698336][T23757]  rtnetlink_rcv_msg+0x95e/0xe90
[ 1151.698349][T23757]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1151.698363][T23757]  ? __lock_acquire+0x4a5/0x2630
[ 1151.698381][T23757]  netlink_rcv_skb+0x159/0x420
[ 1151.698394][T23757]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1151.698407][T23757]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1151.698425][T23757]  ? netlink_deliver_tap+0x1ae/0xcc0
[ 1151.698439][T23757]  netlink_unicast+0x5aa/0x870
[ 1151.698454][T23757]  ? __pfx_netlink_unicast+0x10/0x10
[ 1151.698466][T23757]  ? __pfx___might_resched+0x10/0x10
[ 1151.698488][T23757]  netlink_sendmsg+0x8b0/0xda0
[ 1151.698503][T23757]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1151.698517][T23757]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[ 1151.698533][T23757]  ____sys_sendmsg+0x9e1/0xb70
[ 1151.698547][T23757]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1151.698568][T23757]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1151.698589][T23757]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1151.698612][T23757]  ___sys_sendmsg+0x190/0x1e0
[ 1151.698631][T23757]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1151.698666][T23757]  __sys_sendmsg+0x170/0x220
[ 1151.698679][T23757]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1151.698691][T23757]  ? __ia32_sys_futex_time32+0x2f4/0x470
[ 1151.698720][T23757]  __do_fast_syscall_32+0xe3/0x8c0
[ 1151.698737][T23757]  do_fast_syscall_32+0x32/0x70
[ 1151.698751][T23757]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1151.698767][T23757] RIP: 0023:0xf703ef6c
[ 1151.698777][T23757] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 1151.698788][T23757] RSP: 002b:00000000f542d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[ 1151.698800][T23757] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800001c0
[ 1151.698809][T23757] RDX: 0000000000004000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1151.698817][T23757] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1151.698826][T23757] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 1151.698833][T23757] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1151.698848][T23757]  </TASK>
[ 1151.698852][T23757] Mem-Info:
[ 1151.845083][T23757] active_anon:5077 inactive_anon:2629 isolated_anon:0
[ 1151.845083][T23757]  active_file:7641 inactive_file:9200 isolated_file:0
[ 1151.845083][T23757]  unevictable:1768 dirty:257 writeback:0
[ 1151.845083][T23757]  slab_reclaimable:7793 slab_unreclaimable:81707
[ 1151.845083][T23757]  mapped:26073 shmem:6592 pagetables:1391
[ 1151.845083][T23757]  sec_pagetables:361 bounce:0
[ 1151.845083][T23757]  kernel_misc_reclaimable:0
[ 1151.845083][T23757]  free:33605 free_pcp:925 free_cma:0
[ 1151.862160][T23757] Node 0 active_anon:12kB inactive_anon:76kB active_file:280kB inactive_file:1692kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:620kB dirty:40kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:7352kB pagetables:1356kB sec_pagetables:1160kB all_unreclaimable? yes Balloon:0kB
[ 1151.873898][T23757] Node 1 active_anon:20596kB inactive_anon:10440kB active_file:30284kB inactive_file:35108kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:103672kB dirty:988kB writeback:0kB shmem:22832kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:7632kB pagetables:4208kB sec_pagetables:284kB all_unreclaimable? no Balloon:0kB
[ 1151.886043][T23757] Node 0 DMA free:2620kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:92kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1151.898166][T23757] lowmem_reserve[]: 0 285 285 285 285
[ 1151.900326][T23757] Node 0 DMA32 free:30440kB boost:29392kB min:42460kB low:45724kB high:48988kB reserved_highatomic:0KB free_highatomic:0KB active_anon:12kB inactive_anon:76kB active_file:280kB inactive_file:1692kB unevictable:3536kB writepending:40kB zspages:2368kB present:1032196kB managed:292452kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1151.912422][T23757] lowmem_reserve[]: 0 0 0 0 0
[ 1151.914373][T23757] Node 1 DMA32 free:100360kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:21096kB inactive_anon:10440kB active_file:30284kB inactive_file:35108kB unevictable:3536kB writepending:988kB zspages:12788kB present:1048432kB managed:948212kB mlocked:0kB bounce:0kB free_pcp:3784kB local_pcp:400kB free_cma:0kB
[ 1151.927207][T23757] lowmem_reserve[]: 0 0 0 0 0
[ 1151.929127][T23757] Node 0 DMA: 117*4kB (U) 67*8kB (U) 27*16kB (U) 13*32kB (U) 6*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 2620kB
[ 1151.934870][T23757] Node 0 DMA32: 924*4kB (UME) 306*8kB (UME) 105*16kB (UM) 178*32kB (UME) 71*64kB (UME) 29*128kB (UME) 8*256kB (M) 5*512kB (M) 2*1024kB (M) 1*2048kB (M) 0*4096kB = 30480kB
[ 1151.941467][T23757] Node 1 DMA32: 1317*4kB (UE) 2665*8kB (UME) 3619*16kB (UME) 111*32kB (UME) 111*64kB (UME) 24*128kB (UME) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 98220kB
[ 1151.947603][T23757] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1151.951233][T23757] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1151.955137][T23757] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1151.958894][T23757] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[ 1151.962623][T23757] 24726 total pagecache pages
[ 1151.964484][T23757] 1247 pages in swap cache
[ 1151.966149][T23757] Free swap  = 8kB
[ 1151.967404][T23757] Total swap = 124996kB
[ 1151.969087][T23757] 524155 pages RAM
[ 1151.970309][T23757] 0 pages HighMem/MovableOnly
[ 1151.971875][T23757] 210149 pages reserved
[ 1151.973139][T23757] 0 pages cma reserved
[ 1152.375235][T23770] binder: 23759:23770 ioctl c0306201 80000640 returned -22
[ 1156.282809][T23787] ALSA: mixer_oss: invalid OSS volume ''
[ 1156.695934][T23795] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4419'.
[ 1156.727729][T19144] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1156.734518][T19144] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1156.738356][T19144] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1156.742231][T19144] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1156.745796][T19144] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1156.772629][T23807] lo speed is unknown, defaulting to 1000
[ 1156.901017][T23807] chnl_net:caif_netlink_parms(): no params data found
[ 1157.006337][T23814] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4424'.
[ 1157.187536][T23807] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1157.189861][T23807] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1157.192282][T23807] bridge_slave_0: entered allmulticast mode
[ 1157.194967][T23807] bridge_slave_0: entered promiscuous mode
[ 1157.198268][T23807] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1157.200564][T23807] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1157.202966][T23807] bridge_slave_1: entered allmulticast mode
[ 1157.205711][T23807] bridge_slave_1: entered promiscuous mode
[ 1157.221203][T23807] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1157.225766][T23807] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1157.241439][T23807] team0: Port device team_slave_0 added
[ 1157.244782][T23807] team0: Port device team_slave_1 added
[ 1157.266068][T23807] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1157.268298][T23807] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1157.276698][T23807] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1157.281244][T23807] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1157.283603][T23807] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1157.291676][T23807] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1157.325276][T23807] hsr_slave_0: entered promiscuous mode
[ 1157.327995][T23807] hsr_slave_1: entered promiscuous mode
[ 1157.330202][T23807] debugfs: 'hsr0' already exists in 'hsr'
[ 1157.332254][T23807] Cannot create hsr debugfs directory
[ 1157.707090][T16613] syz_tun (unregistering): left allmulticast mode
[ 1157.709896][T16613] syz_tun (unregistering): left promiscuous mode
[ 1157.722186][T16613] bridge0: port 4(syz_tun) entered disabled state
[ 1157.824811][T23825] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4426'.
[ 1158.076699][T23832] FAULT_INJECTION: forcing a failure.
[ 1158.076699][T23832] name failslab, interval 1, probability 0, space 0, times 0
[ 1158.081470][T23832] CPU: 1 UID: 0 PID: 23832 Comm: syz.3.4425 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1158.081503][T23832] Tainted: [L]=SOFTLOCKUP
[ 1158.081508][T23832] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1158.081515][T23832] Call Trace:
[ 1158.081520][T23832]  <TASK>
[ 1158.081538][T23832]  dump_stack_lvl+0x100/0x190
[ 1158.081562][T23832]  should_fail_ex.cold+0x5/0xa
[ 1158.081577][T23832]  should_failslab+0xc2/0x120
[ 1158.081591][T23832]  __kvmalloc_node_noprof+0xfa/0xa00
[ 1158.081603][T23832]  ? simple_xattr_alloc+0x4a/0xa0
[ 1158.081621][T23832]  simple_xattr_alloc+0x4a/0xa0
[ 1158.081637][T23832]  simple_xattr_set+0x3d/0x3e0
[ 1158.081654][T23832]  shmem_xattr_handler_set+0x318/0x3b0
[ 1158.081671][T23832]  ? __pfx_shmem_xattr_handler_set+0x10/0x10
[ 1158.081684][T23832]  __vfs_setxattr+0x175/0x1e0
[ 1158.081697][T23832]  ? __pfx___vfs_setxattr+0x10/0x10
[ 1158.081709][T23832]  ? apparmor_capable+0x1d7/0x4d0
[ 1158.081725][T23832]  __vfs_setxattr_noperm+0x127/0x660
[ 1158.081741][T23832]  __vfs_setxattr_locked+0x127/0x2b0
[ 1158.081756][T23832]  vfs_setxattr+0x14a/0x390
[ 1158.081770][T23832]  ? __pfx_vfs_setxattr+0x10/0x10
[ 1158.081782][T23832]  ? mnt_get_write_access+0x52/0x2f0
[ 1158.081799][T23832]  ? mnt_get_write_access+0x52/0x2f0
[ 1158.081817][T23832]  do_setxattr+0x145/0x180
[ 1158.081830][T23832]  filename_setxattr+0x167/0x1d0
[ 1158.081844][T23832]  ? __pfx_filename_setxattr+0x10/0x10
[ 1158.081863][T23832]  ? do_getname+0x191/0x390
[ 1158.081880][T23832]  path_setxattrat+0x1ff/0x3b0
[ 1158.081894][T23832]  ? __pfx_path_setxattrat+0x10/0x10
[ 1158.081906][T23832]  ? finish_task_switch.isra.0+0x205/0xb80
[ 1158.081921][T23832]  ? rcu_is_watching+0x12/0xc0
[ 1158.081950][T23832]  ? __pfx___schedule+0x10/0x10
[ 1158.081962][T23832]  ? fput+0x79/0x100
[ 1158.081979][T23832]  __ia32_sys_setxattr+0xc4/0x140
[ 1158.081992][T23832]  ? __do_fast_syscall_32+0x94/0x8c0
[ 1158.082005][T23832]  ? lockdep_hardirqs_on+0x78/0x100
[ 1158.082017][T23832]  __do_fast_syscall_32+0xe3/0x8c0
[ 1158.082032][T23832]  do_fast_syscall_32+0x32/0x70
[ 1158.082046][T23832]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1158.082061][T23832] RIP: 0023:0xf703ef6c
[ 1158.082071][T23832] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 1158.082082][T23832] RSP: 002b:00000000f53eb50c EFLAGS: 00000292 ORIG_RAX: 00000000000000e2
[ 1158.082095][T23832] RAX: ffffffffffffffda RBX: 0000000080000000 RCX: 0000000080000100
[ 1158.082102][T23832] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002
[ 1158.082109][T23832] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1158.082115][T23832] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 1158.082122][T23832] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1158.082136][T23832]  </TASK>
[ 1158.179193][T23832] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[ 1158.181299][T23832] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1158.185121][T23832] vhci_hcd vhci_hcd.0: Device attached
[ 1158.326349][T23807] team0: Port device netdevsim0 removed
[ 1158.471784][   T50] usb 44-1: SetAddress Request (15) to port 0
[ 1158.473945][   T50] usb 44-1: new SuperSpeed USB device number 15 using vhci_hcd
[ 1158.532778][T23833] vhci_hcd: connection reset by peer
[ 1158.537847][T21265] vhci_hcd vhci_hcd.3: stop threads
[ 1158.540344][T21265] vhci_hcd vhci_hcd.3: release socket
[ 1158.543055][T21265] vhci_hcd vhci_hcd.3: disconnect device
[ 1158.578268][T23837] lo speed is unknown, defaulting to 1000
[ 1158.584628][T23807] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1158.586382][T23838] FAULT_INJECTION: forcing a failure.
[ 1158.586382][T23838] name failslab, interval 1, probability 0, space 0, times 0
[ 1158.591862][T23838] CPU: 1 UID: 0 PID: 23838 Comm: syz.2.4428 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1158.591881][T23838] Tainted: [L]=SOFTLOCKUP
[ 1158.591885][T23838] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1158.591892][T23838] Call Trace:
[ 1158.591897][T23838]  <TASK>
[ 1158.591902][T23838]  dump_stack_lvl+0x100/0x190
[ 1158.591924][T23838]  should_fail_ex.cold+0x5/0xa
[ 1158.591939][T23838]  should_failslab+0xc2/0x120
[ 1158.591953][T23838]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[ 1158.591973][T23838]  ? __alloc_skb+0x140/0x710
[ 1158.591993][T23838]  __alloc_skb+0x140/0x710
[ 1158.592010][T23838]  ? __alloc_skb+0x5b7/0x710
[ 1158.592027][T23838]  ? __pfx___alloc_skb+0x10/0x10
[ 1158.592049][T23838]  _sctp_make_chunk+0x51/0x270
[ 1158.592069][T23838]  sctp_make_abort+0x41/0x410
[ 1158.592088][T23838]  sctp_make_abort_violation+0x98/0x350
[ 1158.592100][T23838]  ? lock_acquire+0x1cf/0x380
[ 1158.592116][T23838]  ? __pfx_sctp_make_abort_violation+0x10/0x10
[ 1158.592131][T23838]  ? lock_acquire+0x1cf/0x380
[ 1158.592148][T23838]  sctp_sf_abort_violation+0x148/0xcf0
[ 1158.592160][T23838]  ? bpf_ksym_find+0x124/0x1c0
[ 1158.592175][T23838]  ? __pfx_sctp_cname+0x10/0x10
[ 1158.592193][T23838]  sctp_sf_ootb+0x45c/0x870
[ 1158.592207][T23838]  ? __kernel_text_address+0xd/0x30
[ 1158.592228][T23838]  ? __pfx_sctp_cname+0x10/0x10
[ 1158.592245][T23838]  sctp_do_sm+0x17a/0x5be0
[ 1158.592264][T23838]  ? stack_trace_save+0x8e/0xc0
[ 1158.592276][T23838]  ? __pfx_stack_trace_save+0x10/0x10
[ 1158.592288][T23838]  ? kasan_save_stack+0x3f/0x50
[ 1158.592299][T23838]  ? __pfx_sctp_do_sm+0x10/0x10
[ 1158.592315][T23838]  ? dst_release+0x259/0x330
[ 1158.592330][T23838]  ? ip_route_input_slow+0x17b7/0x3fa0
[ 1158.592345][T23838]  ? ip_route_input_noref+0x122/0x2e0
[ 1158.592375][T23838]  ? skb_pull+0x110/0x160
[ 1158.592390][T23838]  ? sctp_inq_pop+0x3f2/0xfa0
[ 1158.592406][T23838]  sctp_endpoint_bh_rcv+0x43f/0x880
[ 1158.592423][T23838]  ? __pfx_sctp_endpoint_bh_rcv+0x10/0x10
[ 1158.592437][T23838]  ? do_raw_spin_lock+0x128/0x260
[ 1158.592455][T23838]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1158.592474][T23838]  sctp_inq_push+0x1db/0x280
[ 1158.592490][T23838]  sctp_rcv+0x13e1/0x3c30
[ 1158.592511][T23838]  ? find_held_lock+0x2b/0x80
[ 1158.592522][T23838]  ? raw_local_deliver+0x620/0xd40
[ 1158.592543][T23838]  ? __pfx_sctp_rcv+0x10/0x10
[ 1158.592563][T23838]  ? find_held_lock+0x2b/0x80
[ 1158.592577][T23838]  ? __pfx_raw_local_deliver+0x10/0x10
[ 1158.592595][T23838]  ? __pfx_sctp4_rcv+0x10/0x10
[ 1158.592614][T23838]  ip_protocol_deliver_rcu+0x44c/0x4d0
[ 1158.592635][T23838]  ip_local_deliver_finish+0x3f2/0x6e0
[ 1158.592654][T23838]  ip_local_deliver+0x19a/0x1f0
[ 1158.592671][T23838]  ? __pfx_ip_local_deliver+0x10/0x10
[ 1158.592689][T23838]  ip_rcv+0x33a/0x3c0
[ 1158.592706][T23838]  ? __pfx_ip_rcv+0x10/0x10
[ 1158.592722][T23838]  __netif_receive_skb_one_core+0x197/0x1e0
[ 1158.592740][T23838]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[ 1158.592758][T23838]  ? lock_acquire+0x1cf/0x380
[ 1158.592776][T23838]  __netif_receive_skb+0x1f/0x120
[ 1158.592793][T23838]  netif_receive_skb+0x139/0x820
[ 1158.592810][T23838]  ? __pfx_netif_receive_skb+0x10/0x10
[ 1158.592831][T23838]  tun_rx_batched.isra.0+0x3f6/0x750
[ 1158.592846][T23838]  ? __pfx_tun_rx_batched.isra.0+0x10/0x10
[ 1158.592863][T23838]  ? tun_get_user+0x1c7e/0x3e10
[ 1158.592879][T23838]  tun_get_user+0x1e2e/0x3e10
[ 1158.592899][T23838]  ? __pfx_tun_get_user+0x10/0x10
[ 1158.592914][T23838]  ? __pfx_ref_tracker_alloc+0x10/0x10
[ 1158.592936][T23838]  ? find_held_lock+0x2b/0x80
[ 1158.592947][T23838]  ? tun_get+0x191/0x370
[ 1158.592959][T23838]  ? tun_get+0x191/0x370
[ 1158.592974][T23838]  tun_chr_write_iter+0xdc/0x200
[ 1158.592990][T23838]  vfs_write+0x6ac/0x1070
[ 1158.593002][T23838]  ? __pfx_tun_chr_write_iter+0x10/0x10
[ 1158.593018][T23838]  ? __pfx_vfs_write+0x10/0x10
[ 1158.593028][T23838]  ? find_held_lock+0x2b/0x80
[ 1158.593048][T23838]  ksys_write+0x12a/0x250
[ 1158.593059][T23838]  ? __pfx_ksys_write+0x10/0x10
[ 1158.593070][T23838]  ? __pfx_ksys_write+0x10/0x10
[ 1158.593085][T23838]  __do_fast_syscall_32+0xe3/0x8c0
[ 1158.593101][T23838]  do_fast_syscall_32+0x32/0x70
[ 1158.593114][T23838]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1158.593129][T23838] RIP: 0023:0xf7f52f6c
[ 1158.593140][T23838] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 1158.593151][T23838] RSP: 002b:00000000f53f550c EFLAGS: 00000292 ORIG_RAX: 0000000000000004
[ 1158.593163][T23838] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000280
[ 1158.593170][T23838] RDX: 000000000000003a RSI: 0000000000000000 RDI: 0000000000000000
[ 1158.593177][T23838] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1158.593183][T23838] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 1158.593190][T23838] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1158.593220][T23838]  </TASK>
[ 1158.598049][T23807] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1158.821952][T19144] Bluetooth: hci3: command tx timeout
[ 1158.862672][T23807] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1158.874048][T23807] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1159.035311][T23807] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1159.539001][T23807] 8021q: adding VLAN 0 to HW filter on device team0
[ 1159.595165][  T189] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1159.597509][  T189] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1159.605501][  T189] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1159.607772][  T189] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1159.769049][T23807] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1160.138966][T23868] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4433'.
[ 1160.226574][T23807] veth0_vlan: entered promiscuous mode
[ 1160.244552][T23807] veth1_vlan: entered promiscuous mode
[ 1160.260790][T23807] veth0_macvtap: entered promiscuous mode
[ 1160.264997][T23807] veth1_macvtap: entered promiscuous mode
[ 1160.274044][T23807] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1160.280907][T23807] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1160.287267][T21265] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1160.291348][T21265] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1160.295341][T21265] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1160.300835][T21265] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1160.360769][T21265] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1160.364572][T21265] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1160.399365][T21265] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1160.402043][T21265] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1160.891715][T19144] Bluetooth: hci3: command tx timeout
[ 1162.243824][T23896] lo speed is unknown, defaulting to 1000
[ 1162.701629][ T6006] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[ 1162.851641][ T6006] usb 7-1: Using ep0 maxpacket: 32
[ 1162.856539][ T6006] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid maxpacket 12336, setting to 1024
[ 1162.860346][ T6006] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1162.867171][ T6006] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1162.870286][ T6006] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1162.875947][ T6006] usb 7-1: Product: syz
[ 1162.880796][ T6006] usb 7-1: Manufacturer: syz
[ 1162.886878][ T6006] usb 7-1: SerialNumber: syz
[ 1162.904929][ T6006] usb 7-1: config 0 descriptor??
[ 1162.911233][T23903] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1162.934737][ T6006] chaoskey 7-1:0.0: Unable to register with hwrng
[ 1162.971663][T19144] Bluetooth: hci3: command tx timeout
[ 1163.263501][ T6006] usb 7-1: USB disconnect, device number 11
[ 1163.562078][   T50] usb 44-1: device descriptor read/8, error -110
[ 1163.800791][T23904] ALSA: mixer_oss: invalid OSS volume ''
[ 1163.952105][   T50] usb usb44-port1: attempt power cycle
[ 1164.541680][   T40] kauditd_printk_skb: 5 callbacks suppressed
[ 1164.541695][   T40] audit: type=1800 audit(1164.432:13210): pid=23911 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.4441" name="file1" dev="overlay" ino=2250 res=0 errno=0
[ 1164.902995][T23912] ALSA: mixer_oss: invalid OSS volume ''
[ 1164.907998][T23923] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4445'.
[ 1164.910852][T23923] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4445'.
[ 1164.961379][   T50] usb usb44-port1: unable to enumerate USB device
[ 1165.001629][T23927] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4447'.
[ 1165.061665][T19144] Bluetooth: hci3: command tx timeout
[ 1165.841694][T20156] usb 8-1: new high-speed USB device number 100 using dummy_hcd
[ 1165.991657][T20156] usb 8-1: Using ep0 maxpacket: 8
[ 1165.994792][T20156] usb 8-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[ 1165.998749][T20156] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1166.001501][T20156] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1166.059972][T23932] FAULT_INJECTION: forcing a failure.
[ 1166.059972][T23932] name failslab, interval 1, probability 0, space 0, times 0
[ 1166.065423][T23932] CPU: 3 UID: 0 PID: 23932 Comm: syz.2.4449 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1166.065452][T23932] Tainted: [L]=SOFTLOCKUP
[ 1166.065459][T23932] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1166.065469][T23932] Call Trace:
[ 1166.065476][T23932]  <TASK>
[ 1166.065483][T23932]  dump_stack_lvl+0x100/0x190
[ 1166.065518][T23932]  should_fail_ex.cold+0x5/0xa
[ 1166.065542][T23932]  should_failslab+0xc2/0x120
[ 1166.065563][T23932]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1166.065591][T23932]  ? radix_tree_node_alloc.constprop.0+0x66/0x340
[ 1166.065619][T23932]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 1166.065645][T23932]  radix_tree_node_alloc.constprop.0+0x66/0x340
[ 1166.065677][T23932]  idr_get_free+0x52e/0xa00
[ 1166.065715][T23932]  idr_alloc_u32+0x1ac/0x320
[ 1166.065737][T23932]  ? __pfx_idr_alloc_u32+0x10/0x10
[ 1166.065759][T23932]  ? __pfx___nla_validate_parse+0x10/0x10
[ 1166.065778][T23932]  ? lock_acquire+0x1cf/0x380
[ 1166.065810][T23932]  gen_new_kid+0x9a/0x140
[ 1166.065835][T23932]  ? __pfx_gen_new_kid+0x10/0x10
[ 1166.065867][T23932]  u32_change+0x20f5/0x3270
[ 1166.065901][T23932]  ? __pfx_u32_change+0x10/0x10
[ 1166.065926][T23932]  ? __mutex_unlock_slowpath+0x15c/0x790
[ 1166.065958][T23932]  ? lockdep_rtnl_is_held+0x26/0x40
[ 1166.065985][T23932]  ? __pfx_u32_change+0x10/0x10
[ 1166.066010][T23932]  tc_new_tfilter+0x9df/0x24a0
[ 1166.066048][T23932]  ? __pfx_tc_new_tfilter+0x10/0x10
[ 1166.066068][T23932]  ? arch_stack_walk+0xa6/0xf0
[ 1166.066095][T23932]  ? __lock_acquire+0x4a5/0x2630
[ 1166.066133][T23932]  ? find_held_lock+0x2b/0x80
[ 1166.066152][T23932]  ? rtnetlink_rcv_msg+0x93a/0xe90
[ 1166.066172][T23932]  ? __pfx_tc_new_tfilter+0x10/0x10
[ 1166.066193][T23932]  rtnetlink_rcv_msg+0x95e/0xe90
[ 1166.066215][T23932]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1166.066238][T23932]  ? __lock_acquire+0x4a5/0x2630
[ 1166.066267][T23932]  netlink_rcv_skb+0x159/0x420
[ 1166.066287][T23932]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1166.066308][T23932]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1166.066338][T23932]  ? netlink_deliver_tap+0x1ae/0xcc0
[ 1166.066363][T23932]  netlink_unicast+0x5aa/0x870
[ 1166.066386][T23932]  ? __pfx_netlink_unicast+0x10/0x10
[ 1166.066416][T23932]  netlink_sendmsg+0x8b0/0xda0
[ 1166.066441][T23932]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1166.066465][T23932]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[ 1166.066490][T23932]  ____sys_sendmsg+0x9e1/0xb70
[ 1166.066511][T23932]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1166.066533][T23932]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1166.066568][T23932]  ___sys_sendmsg+0x190/0x1e0
[ 1166.066595][T23932]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1166.066652][T23932]  __sys_sendmsg+0x170/0x220
[ 1166.066671][T23932]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1166.066699][T23932]  ? __pfx_ksys_write+0x10/0x10
[ 1166.066724][T23932]  __do_fast_syscall_32+0xe3/0x8c0
[ 1166.066748][T23932]  do_fast_syscall_32+0x32/0x70
[ 1166.066770][T23932]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1166.066792][T23932] RIP: 0023:0xf7f52f6c
[ 1166.066813][T23932] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 1166.066830][T23932] RSP: 002b:00000000f541650c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[ 1166.066849][T23932] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080006040
[ 1166.066860][T23932] RDX: 0000000020048850 RSI: 0000000000000000 RDI: 0000000000000000
[ 1166.066871][T23932] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1166.066881][T23932] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 1166.066891][T23932] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1166.066916][T23932]  </TASK>
[ 1166.246118][T23934] syzkaller0: entered promiscuous mode
[ 1166.247868][T23934] syzkaller0: entered allmulticast mode
[ 1166.512998][T23940] binder: 23938:23940 ioctl c0306201 80000640 returned -22
[ 1167.246978][T23941] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1167.247417][T23941] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1167.430081][T23941] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1167.467589][T23941] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1167.628357][   T13] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1167.631691][   T13] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1167.641660][   T13] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1167.645395][   T13] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1168.134277][ T1254] Bluetooth: Error in BCSP hdr checksum
[ 1168.391917][ T1254] Bluetooth: Error in BCSP hdr checksum
[ 1168.543457][T23945] ALSA: mixer_oss: invalid OSS volume ''
[ 1168.612973][T16384] usb 8-1: USB disconnect, device number 100
[ 1168.857875][T23969] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4459'.
[ 1169.245772][T23972] syzkaller0: entered promiscuous mode
[ 1169.247514][T23972] syzkaller0: entered allmulticast mode
[ 1169.932180][T19144] Bluetooth: hci2: Opcode 0x1003 failed: -110
[ 1169.971857][ T5992] usb 7-1: new full-speed USB device number 12 using dummy_hcd
[ 1170.147616][ T5992] usb 7-1: config 0 interface 0 altsetting 251 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1170.166621][ T5992] usb 7-1: config 0 interface 0 has no altsetting 0
[ 1170.186411][ T5992] usb 7-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1170.190042][ T5992] usb 7-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[ 1170.201592][ T5992] usb 7-1: Product: syz
[ 1170.203298][ T5992] usb 7-1: Manufacturer: syz
[ 1170.205206][ T5992] usb 7-1: SerialNumber: syz
[ 1170.218581][ T5992] usb 7-1: config 0 descriptor??
[ 1170.294157][ T5992] snd-usb-audio 7-1:0.0: probe with driver snd-usb-audio failed with error -22
[ 1170.302292][T22876] udevd[22876]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1170.471818][   T50] usb 7-1: USB disconnect, device number 12
[ 1171.204314][T23995] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4468'.
[ 1171.215300][T23995] team0: Port device team_slave_0 removed
[ 1171.493803][T16384] kernel read not supported for file /dsp1 (pid: 16384 comm: kworker/3:2)
[ 1171.541658][T24000] Invalid logical block size (18)
[ 1171.587371][T24004] bridge0: port 3(syz_tun) entered blocking state
[ 1171.589797][T24004] bridge0: port 3(syz_tun) entered disabled state
[ 1171.592978][T24004] syz_tun: entered allmulticast mode
[ 1171.595786][T24004] syz_tun: entered promiscuous mode
[ 1171.688459][T24009] tipc: Started in network mode
[ 1171.690154][T24009] tipc: Node identity 823f4ed327ab, cluster identity 4711
[ 1171.692589][T24009] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1171.695474][T24009] syzkaller0: entered promiscuous mode
[ 1171.697326][T24009] syzkaller0: entered allmulticast mode
[ 1171.715803][T24009] tipc: Resetting bearer <eth:syzkaller0>
[ 1171.719445][T24008] tipc: Resetting bearer <eth:syzkaller0>
[ 1171.730019][T24008] tipc: Disabling bearer <eth:syzkaller0>
[ 1172.734351][T24025] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4480'.
[ 1172.738004][T24025] FAULT_INJECTION: forcing a failure.
[ 1172.738004][T24025] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1172.743479][T24025] CPU: 3 UID: 0 PID: 24025 Comm: syz.2.4480 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1172.743498][T24025] Tainted: [L]=SOFTLOCKUP
[ 1172.743502][T24025] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1172.743509][T24025] Call Trace:
[ 1172.743514][T24025]  <TASK>
[ 1172.743519][T24025]  dump_stack_lvl+0x100/0x190
[ 1172.743541][T24025]  should_fail_ex.cold+0x5/0xa
[ 1172.743556][T24025]  _copy_from_iter+0x1f4/0x1690
[ 1172.743574][T24025]  ? __asan_memset+0x23/0x50
[ 1172.743592][T24025]  ? __pfx__copy_from_iter+0x10/0x10
[ 1172.743607][T24025]  ? __pfx___alloc_skb+0x10/0x10
[ 1172.743625][T24025]  ? __pfx___might_resched+0x10/0x10
[ 1172.743648][T24025]  netlink_sendmsg+0x808/0xda0
[ 1172.743663][T24025]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1172.743678][T24025]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[ 1172.743693][T24025]  ____sys_sendmsg+0x9e1/0xb70
[ 1172.743709][T24025]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1172.743722][T24025]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1172.743743][T24025]  ___sys_sendmsg+0x190/0x1e0
[ 1172.743759][T24025]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1172.743790][T24025]  __sys_sendmsg+0x170/0x220
[ 1172.743802][T24025]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1172.743817][T24025]  ? __pfx_ksys_write+0x10/0x10
[ 1172.743832][T24025]  __do_fast_syscall_32+0xe3/0x8c0
[ 1172.743847][T24025]  do_fast_syscall_32+0x32/0x70
[ 1172.743861][T24025]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1172.743876][T24025] RIP: 0023:0xf7f52f6c
[ 1172.743886][T24025] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 1172.743897][T24025] RSP: 002b:00000000f541650c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[ 1172.743908][T24025] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000100
[ 1172.743915][T24025] RDX: 0000000004040000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1172.743922][T24025] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1172.743928][T24025] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 1172.743935][T24025] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1172.743948][T24025]  </TASK>
[ 1173.433283][T24059] ALSA: mixer_oss: invalid OSS volume ''
[ 1173.453103][T24054] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(7)
[ 1173.455232][T24054] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1173.458269][T24054] vhci_hcd vhci_hcd.0: Device attached
[ 1173.741810][ T6006] usb 46-1: SetAddress Request (2) to port 0
[ 1173.747805][ T6006] usb 46-1: new SuperSpeed USB device number 2 using vhci_hcd
[ 1173.939835][T24060] vhci_hcd: connection reset by peer
[ 1173.941847][T21265] vhci_hcd vhci_hcd.4: stop threads
[ 1173.943473][T21265] vhci_hcd vhci_hcd.4: release socket
[ 1173.945257][T21265] vhci_hcd vhci_hcd.4: disconnect device
[ 1174.632049][T24074] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4491'.
[ 1174.635304][T24074] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4491'.
[ 1175.021054][T19144] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1175.025096][T19144] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1175.028151][T19144] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1175.031254][T19144] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1175.035384][T19144] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1175.135182][T24084] lo speed is unknown, defaulting to 1000
[ 1175.364419][T24084] chnl_net:caif_netlink_parms(): no params data found
[ 1175.430954][T24084] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1175.434102][T24084] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1175.437068][T24084] bridge_slave_0: entered allmulticast mode
[ 1175.441099][T24084] bridge_slave_0: entered promiscuous mode
[ 1175.454116][T24084] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1175.456432][T24084] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1175.458882][T24084] bridge_slave_1: entered allmulticast mode
[ 1175.461744][T24084] bridge_slave_1: entered promiscuous mode
[ 1175.479017][T24084] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1175.483559][T24084] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1175.498807][T24084] team0: Port device team_slave_0 added
[ 1175.502060][T24084] team0: Port device team_slave_1 added
[ 1175.515849][T24084] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1175.518080][T24084] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1175.526113][T24084] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1175.530434][T24084] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1175.535705][T24084] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1175.543949][T24084] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1175.567948][T24084] hsr_slave_0: entered promiscuous mode
[ 1175.570291][T24084] hsr_slave_1: entered promiscuous mode
[ 1175.572710][T24084] debugfs: 'hsr0' already exists in 'hsr'
[ 1175.574665][T24084] Cannot create hsr debugfs directory
[ 1175.645738][T24097] x_tables: duplicate underflow at hook 1
[ 1176.033161][  T189] erspan0: left allmulticast mode
[ 1176.036081][  T189] erspan0: left promiscuous mode
[ 1176.038449][  T189] bridge0: port 4(erspan0) entered disabled state
[ 1176.044959][  T189] bridge0: port 3(batadv0) entered disabled state
[ 1176.052077][  T189] bridge_slave_1: left allmulticast mode
[ 1176.054031][  T189] bridge_slave_1: left promiscuous mode
[ 1176.056309][  T189] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1176.062696][  T189] bridge_slave_0: left allmulticast mode
[ 1176.064649][  T189] bridge_slave_0: left promiscuous mode
[ 1176.066940][  T189] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1176.245593][T24109] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4501'.
[ 1176.270612][  T189] bond4 (unregistering): (slave gretap2): Releasing active interface
[ 1176.282700][T24106] blktrace: Concurrent blktraces are not allowed on sr0
[ 1176.540219][  T189] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1176.544219][  T189] bond0 (unregistering): (slave 
c
@0Ù): Releasing backup interface
[ 1176.550489][  T189] bond0 (unregistering): Released all slaves
[ 1176.563121][  T189] bond1 (unregistering): Released all slaves
[ 1176.576986][  T189] bond2 (unregistering): (slave lo): Releasing backup interface
[ 1176.580501][  T189] bond2 (unregistering): (slave lo): last VLAN challenged slave left bond - VLAN blocking is removed
[ 1176.585630][  T189] bond2 (unregistering): Released all slaves
[ 1176.597743][  T189] bond3 (unregistering): Released all slaves
[ 1176.605923][  T189] bond4 (unregistering): Released all slaves
[ 1176.667689][T24084] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1176.677903][T24084] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1176.684046][T24084] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1176.690621][T24084] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1176.736189][  T189] tipc: Left network mode
[ 1176.784926][  T189] IPVS: stopping backup sync thread 19033 ...
[ 1176.793894][T24084] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1176.827285][T24084] 8021q: adding VLAN 0 to HW filter on device team0
[ 1176.833760][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1176.836646][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1176.846199][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1176.849187][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1176.990637][T24084] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1177.044990][  T189] hsr_slave_0: left promiscuous mode
[ 1177.047479][  T189] hsr_slave_1: left promiscuous mode
[ 1177.050960][  T189] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1177.051920][ T5950] Bluetooth: hci2: command tx timeout
[ 1177.058791][  T189] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1177.071366][  T189] batman_adv: batadv0: Removing interface: ipvlan2
[ 1177.098937][  T189] pimreg (unregistering): left allmulticast mode
[ 1177.386747][  T189] team0 (unregistering): Port device team_slave_1 removed
[ 1177.541351][T24084] veth0_vlan: entered promiscuous mode
[ 1177.549144][T24084] veth1_vlan: entered promiscuous mode
[ 1177.594590][T24084] veth0_macvtap: entered promiscuous mode
[ 1177.599318][T24084] veth1_macvtap: entered promiscuous mode
[ 1177.619453][T24084] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1177.625252][T24084] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1177.648283][T21265] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1177.655067][T21265] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1177.658725][T21265] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1177.663596][T21265] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1177.786910][   T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1177.790139][   T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1177.845948][   T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1177.849471][   T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1178.529773][T24156] binder: 24152:24156 ioctl c0306201 80000640 returned -22
[ 1178.822162][ T6006] usb 46-1: device descriptor read/8, error -110
[ 1178.991121][T24164] FAULT_INJECTION: forcing a failure.
[ 1178.991121][T24164] name failslab, interval 1, probability 0, space 0, times 0
[ 1178.991204][T24164] CPU: 2 UID: 0 PID: 24164 Comm: syz.4.4512 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1178.991230][T24164] Tainted: [L]=SOFTLOCKUP
[ 1178.991236][T24164] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1178.991247][T24164] Call Trace:
[ 1178.991254][T24164]  <TASK>
[ 1178.991261][T24164]  dump_stack_lvl+0x100/0x190
[ 1178.991294][T24164]  should_fail_ex.cold+0x5/0xa
[ 1178.991315][T24164]  ? tomoyo_encode2+0xfb/0x3c0
[ 1178.991339][T24164]  should_failslab+0xc2/0x120
[ 1178.991360][T24164]  __kmalloc_noprof+0xe0/0x850
[ 1178.991387][T24164]  ? d_absolute_path+0x136/0x1b0
[ 1178.991417][T24164]  tomoyo_encode2+0xfb/0x3c0
[ 1178.991446][T24164]  tomoyo_encode+0x29/0x50
[ 1178.991477][T24164]  tomoyo_realpath_from_path+0x18c/0x690
[ 1178.991509][T24164]  tomoyo_path_number_perm+0x23c/0x580
[ 1178.991546][T24164]  ? tomoyo_path_number_perm+0x22e/0x580
[ 1178.991571][T24164]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1178.991592][T24164]  ? lock_acquire+0x1cf/0x380
[ 1178.991616][T24164]  ? find_held_lock+0x2b/0x80
[ 1178.991657][T24164]  ? find_held_lock+0x2b/0x80
[ 1178.991674][T24164]  ? hook_file_ioctl_common+0x146/0x410
[ 1178.991697][T24164]  ? __fget_files+0x215/0x3d0
[ 1178.991719][T24164]  ? __fget_files+0x21f/0x3d0
[ 1178.991742][T24164]  security_file_ioctl_compat+0xd3/0x230
[ 1178.991768][T24164]  __ia32_compat_sys_ioctl+0xc2/0x360
[ 1178.991798][T24164]  __do_fast_syscall_32+0xe3/0x8c0
[ 1178.991824][T24164]  do_fast_syscall_32+0x32/0x70
[ 1178.991845][T24164]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1178.991868][T24164] RIP: 0023:0xf705ef6c
[ 1178.991883][T24164] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 1178.991900][T24164] RSP: 002b:00000000f542c50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[ 1178.991919][T24164] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000080047456
[ 1178.991930][T24164] RDX: 00000000800010c0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1178.991940][T24164] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1178.991950][T24164] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 1178.991961][T24164] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1178.991985][T24164]  </TASK>
[ 1178.992222][T24164] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1179.035098][T24157] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1179.095919][T24157] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1179.137893][T24169] overlayfs: failed to clone lowerpath
[ 1179.151811][T24170] ALSA: mixer_oss: invalid OSS volume ''
[ 1179.192585][T24171] overlayfs: failed to clone lowerpath
[ 1179.212318][ T6006] usb usb46-port1: attempt power cycle
[ 1179.332403][ T5950] Bluetooth: hci2: command tx timeout
[ 1179.773253][ T6006] usb usb46-port1: unable to enumerate USB device
[ 1180.032220][T24157] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1180.075021][T24157] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1180.147095][T24173] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4514'.
[ 1180.476343][   T46] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1180.486440][   T46] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1180.491266][   T46] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1180.500052][   T46] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1180.821619][T23412] usb 8-1: new high-speed USB device number 101 using dummy_hcd
[ 1180.981672][T23412] usb 8-1: Using ep0 maxpacket: 32
[ 1180.993392][T23412] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[ 1180.997150][T23412] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 0
[ 1181.002251][T23412] usb 8-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1181.005188][T23412] usb 8-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1181.007863][T23412] usb 8-1: Product: syz
[ 1181.009505][T23412] usb 8-1: Manufacturer: syz
[ 1181.011420][T23412] usb 8-1: SerialNumber: syz
[ 1181.022325][T23412] usb 8-1: config 0 descriptor??
[ 1181.027483][T23412] hub 8-1:0.0: bad descriptor, ignoring hub
[ 1181.030013][T23412] hub 8-1:0.0: probe with driver hub failed with error -5
[ 1181.055368][T24174] ALSA: mixer_oss: invalid OSS volume ''
[ 1181.372421][ T5950] Bluetooth: hci2: command tx timeout
[ 1182.175756][ T1415] ieee802154 phy0 wpan0: encryption failed: -22
[ 1182.178237][ T1415] ieee802154 phy1 wpan1: encryption failed: -22
[ 1183.425153][T24215] binder: 24212:24215 ioctl c0306201 80000640 returned -22
[ 1183.451703][ T5950] Bluetooth: hci2: command tx timeout
[ 1184.024404][T24220] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4526'.
[ 1184.156063][   T50] usb 8-1: USB disconnect, device number 101
[ 1185.096770][T24223] ALSA: mixer_oss: invalid OSS volume ''
[ 1186.009124][T24244] binder: 24242:24244 ioctl c0306201 80000640 returned -22
[ 1186.970961][T24261] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(7)
[ 1186.973025][T24261] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1186.988204][T24261] vhci_hcd vhci_hcd.0: Device attached
[ 1187.251812][   T50] usb 46-1: SetAddress Request (6) to port 0
[ 1187.264334][   T50] usb 46-1: new SuperSpeed USB device number 6 using vhci_hcd
[ 1187.287013][   T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1187.291081][   T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1188.654603][T24264] vhci_hcd: connection reset by peer
[ 1188.656553][   T59] vhci_hcd vhci_hcd.4: stop threads
[ 1188.658349][   T59] vhci_hcd vhci_hcd.4: release socket
[ 1188.660275][   T59] vhci_hcd vhci_hcd.4: disconnect device
[ 1190.621862][ T5992] usb 9-1: new high-speed USB device number 61 using dummy_hcd
[ 1190.771629][ T5992] usb 9-1: Using ep0 maxpacket: 32
[ 1190.774529][ T5992] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[ 1190.777543][ T5992] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 0
[ 1190.784598][ T5992] usb 9-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1190.788373][ T5992] usb 9-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1190.791089][ T5992] usb 9-1: Product: syz
[ 1190.792749][ T5992] usb 9-1: Manufacturer: syz
[ 1190.794245][ T5992] usb 9-1: SerialNumber: syz
[ 1190.800147][ T5992] usb 9-1: config 0 descriptor??
[ 1190.886570][T24304] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4544'.
[ 1191.186906][ T5992] hub 9-1:0.0: bad descriptor, ignoring hub
[ 1191.189880][ T5992] hub 9-1:0.0: probe with driver hub failed with error -5
[ 1192.332396][   T50] usb 46-1: device descriptor read/8, error -110
[ 1193.592040][   T50] usb usb46-port1: attempt power cycle
[ 1193.641629][ T6006] usb 9-1: reset high-speed USB device number 61 using dummy_hcd
[ 1194.455091][T24325] ALSA: mixer_oss: invalid OSS volume ''
[ 1194.522828][   T50] usb usb46-port1: unable to enumerate USB device
[ 1196.771039][T24357] ALSA: mixer_oss: invalid OSS volume ''
[ 1197.470394][T24361] netlink: 'syz.3.4558': attribute type 1 has an invalid length.
[ 1197.473692][T24361] netlink: 760 bytes leftover after parsing attributes in process `syz.3.4558'.
[ 1197.515521][T24367] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4560'.
[ 1197.584247][   T50] usb 9-1: USB disconnect, device number 61
[ 1198.651629][T23870] usb 8-1: new high-speed USB device number 102 using dummy_hcd
[ 1198.781618][T23870] usb 8-1: device descriptor read/64, error -71
[ 1199.285334][T24364] ALSA: mixer_oss: invalid OSS volume ''
[ 1199.580383][T24379] binder: 24377:24379 ioctl c0306201 80000640 returned -22
[ 1199.611857][T23870] usb 8-1: new high-speed USB device number 103 using dummy_hcd
[ 1199.917760][T23870] usb 8-1: device descriptor read/64, error -71
[ 1200.049231][T24389] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4566'.
[ 1200.084457][T23870] usb usb8-port1: attempt power cycle
[ 1200.501679][T23870] usb 8-1: new high-speed USB device number 104 using dummy_hcd
[ 1200.546540][T24398] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4570'.
[ 1201.575307][T23870] usb 8-1: device not accepting address 104, error -71
[ 1201.655998][T24403] random: crng reseeded on system resumption
[ 1202.443008][T24400] Restarting kernel threads ...
[ 1202.445289][T24400] Done restarting kernel threads.
[ 1204.075190][T24404] ALSA: mixer_oss: invalid OSS volume ''
[ 1204.101603][T23412] usb 9-1: new high-speed USB device number 62 using dummy_hcd
[ 1204.147038][T24421] bridge0: port 3(syz_tun) entered blocking state
[ 1204.149363][T24421] bridge0: port 3(syz_tun) entered disabled state
[ 1204.152899][T24421] syz_tun: entered allmulticast mode
[ 1204.158485][T24421] syz_tun: entered promiscuous mode
[ 1204.271603][T23412] usb 9-1: Using ep0 maxpacket: 32
[ 1204.277590][T23412] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1204.285132][T23412] usb 9-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1204.287971][T23412] usb 9-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1204.290589][T23412] usb 9-1: Product: syz
[ 1204.299266][T23412] usb 9-1: Manufacturer: syz
[ 1204.300824][T23412] usb 9-1: SerialNumber: syz
[ 1204.307640][T23412] usb 9-1: config 0 descriptor??
[ 1204.309786][T24411] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1204.313992][T23412] hub 9-1:0.0: bad descriptor, ignoring hub
[ 1204.315889][T23412] hub 9-1:0.0: probe with driver hub failed with error -5
[ 1204.324837][T23412] chaoskey 9-1:0.0: Unable to register with hwrng
[ 1206.208315][T24431] binder: 24429:24431 ioctl c0306201 80000640 returned -22
[ 1207.155838][T24439] netlink: 'syz.5.4578': attribute type 1 has an invalid length.
[ 1207.159351][T24439] netlink: 760 bytes leftover after parsing attributes in process `syz.5.4578'.
[ 1207.211674][ T5950] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[ 1207.215029][ T5950] Bluetooth: hci3: Injecting HCI hardware error event
[ 1207.219215][T19144] Bluetooth: hci3: hardware error 0x00
[ 1207.247162][T24443] binder: 24440:24443 ioctl c0306201 80000640 returned -22
[ 1207.663846][   T50] usb 9-1: USB disconnect, device number 62
[ 1208.251627][T24450] random: crng reseeded on system resumption
[ 1208.283897][T24450] Restarting kernel threads ...
[ 1208.285971][T24450] Done restarting kernel threads.
[ 1209.371679][T19144] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1210.039199][T24466] binder: 24460:24466 ioctl c0306201 80000640 returned -22
[ 1212.341857][T19144] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[ 1212.348258][T24471] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4586'.
[ 1212.356428][T19144] Bluetooth: hci2: Injecting HCI hardware error event
[ 1212.361080][T19144] Bluetooth: hci2: hardware error 0x00
[ 1212.507870][T24473] binder: 24472:24473 ioctl c0306201 80000640 returned -22
[ 1214.411762][T19144] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[ 1214.798764][T24488] binder: 24484:24488 ioctl c0306201 80000640 returned -22
[ 1215.015713][T24491] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4592'.
[ 1215.807895][T24501] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4594'.
[ 1216.605945][T24520] binder: 24518:24520 ioctl c0306201 80000640 returned -22
[ 1218.131835][   T50] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[ 1218.291628][   T50] usb 7-1: Using ep0 maxpacket: 32
[ 1218.295443][   T50] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1218.301653][   T50] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1218.304632][   T50] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1218.307432][   T50] usb 7-1: Product: syz
[ 1218.309697][   T50] usb 7-1: Manufacturer: syz
[ 1218.311340][   T50] usb 7-1: SerialNumber: syz
[ 1218.324119][   T50] usb 7-1: config 0 descriptor??
[ 1218.339528][T24526] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1218.347367][   T50] hub 7-1:0.0: bad descriptor, ignoring hub
[ 1218.349956][   T50] hub 7-1:0.0: probe with driver hub failed with error -5
[ 1218.361755][   T50] chaoskey 7-1:0.0: Unable to register with hwrng
[ 1219.665491][T24543] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4605'.
[ 1221.294508][   T50] usb 7-1: USB disconnect, device number 13
[ 1221.346584][T24555] syzkaller0: entered promiscuous mode
[ 1221.348364][T24555] syzkaller0: entered allmulticast mode
[ 1221.358969][T24553] binder: 24548:24553 ioctl c0306201 80000640 returned -22
[ 1222.404436][T24568] netlink: 212360 bytes leftover after parsing attributes in process `syz.5.4610'.
[ 1222.451254][T24567] binder: 24561:24567 ioctl c0306201 80000640 returned -22
[ 1223.095481][T24572] binder: 24571:24572 ioctl c0306201 80000640 returned -22
[ 1223.491650][T23412] usb 8-1: new high-speed USB device number 106 using dummy_hcd
[ 1223.641649][T23412] usb 8-1: Using ep0 maxpacket: 32
[ 1223.645856][T23412] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1223.653109][T23412] usb 8-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1223.657041][T23412] usb 8-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1223.660895][T23412] usb 8-1: Product: syz
[ 1223.663787][T23412] usb 8-1: Manufacturer: syz
[ 1223.666423][T23412] usb 8-1: SerialNumber: syz
[ 1223.675456][T23412] usb 8-1: config 0 descriptor??
[ 1223.678544][T24577] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1223.685577][T23412] hub 8-1:0.0: bad descriptor, ignoring hub
[ 1223.688283][T23412] hub 8-1:0.0: probe with driver hub failed with error -5
[ 1223.695639][T23412] chaoskey 8-1:0.0: Unable to register with hwrng
[ 1226.821857][T23412] usb 8-1: USB disconnect, device number 106
[ 1226.870133][T24591] binder: 24587:24591 ioctl c0306201 80000640 returned -22
[ 1227.380109][T24602] lo speed is unknown, defaulting to 1000
[ 1227.431760][T14165] usb 8-1: new high-speed USB device number 107 using dummy_hcd
[ 1227.651821][T14165] usb 8-1: Using ep0 maxpacket: 32
[ 1227.655594][T14165] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1227.663218][T14165] usb 8-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1227.666090][T14165] usb 8-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1227.667673][T24609] binder: 24607:24609 ioctl c0306201 80000640 returned -22
[ 1227.668632][T14165] usb 8-1: Product: syz
[ 1227.668642][T14165] usb 8-1: Manufacturer: syz
[ 1227.668650][T14165] usb 8-1: SerialNumber: syz
[ 1227.672457][T14165] usb 8-1: config 0 descriptor??
[ 1227.672981][T24600] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1227.673767][T14165] hub 8-1:0.0: bad descriptor, ignoring hub
[ 1227.691590][T14165] hub 8-1:0.0: probe with driver hub failed with error -5
[ 1227.695188][T14165] chaoskey 8-1:0.0: Unable to register with hwrng
[ 1228.852461][T24614] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4624'.
[ 1228.946728][T24619] binder: 24615:24619 ioctl c0306201 80000640 returned -22
[ 1229.903053][T24627] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4627'.
[ 1230.441766][   T50] usb 8-1: USB disconnect, device number 107
[ 1232.297465][T24650] lo speed is unknown, defaulting to 1000
[ 1232.324329][T24652] netlink: 212360 bytes leftover after parsing attributes in process `syz.2.4634'.
[ 1232.837271][T24660] binder: 24658:24660 ioctl c0306201 80000640 returned -22
[ 1233.485207][T24664] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4638'.
[ 1235.365161][T24676] binder: 24673:24676 ioctl c0306201 80000640 returned -22
[ 1237.405938][T24689] misc userio: No port type given on /dev/userio
[ 1238.092722][  T189] ------------[ cut here ]------------
[ 1238.094501][  T189] conntrack cleanup blocked for 60s
[ 1238.094509][  T189] WARNING: net/netfilter/nf_conntrack_core.c:2511 at nf_conntrack_cleanup_net_list+0x4f7/0x690, CPU#3: kworker/u32:7/189
[ 1238.100129][  T189] Modules linked in:
[ 1238.102592][  T189] CPU: 3 UID: 0 PID: 189 Comm: kworker/u32:7 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1238.106592][  T189] Tainted: [L]=SOFTLOCKUP
[ 1238.107978][  T189] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1238.111104][  T189] Workqueue: netns cleanup_net
[ 1238.112753][  T189] RIP: 0010:nf_conntrack_cleanup_net_list+0x4f7/0x690
[ 1238.114890][  T189] Code: 29 c3 48 89 de e8 f9 89 5b f8 48 85 db 78 0f e8 0f 8f 5b f8 e8 6a 1c e3 01 e9 0e fc ff ff e8 00 8f 5b f8 48 8d 3d e9 04 3c 07 <67> 48 0f b9 3a eb de 4c 8b 6c 24 40 e8 e8 8e 5b f8 48 b8 00 00 00
SYZFAIL: failed to recv rpc
[ 1238.121414][  T189] RSP: 0000:ffffc90002c6f970 EFLAGS: 00010293
[ 1238.123666][  T189] RAX: 0000000000000000 RBX: ffffffffffffffff RCX: ffffffff89acb467
[ 1238.126163][  T189] RDX: ffff888023eba4c0 RSI: ffffffff89acb480 RDI: ffffffff90e8b970
[ 1238.129215][  T189] RBP: 0000000000000001 R08: 0000000000000007 R09: 0000000000000000
[ 1238.131924][  T189] R10: ffffffffffffffff R11: 0000000000000000 R12: 0000000000000001
[ 1238.134880][  T189] R13: 0000000000000001 R14: ffffc90002c6fb28 R15: dffffc0000000000
[ 1238.137754][  T189] FS:  0000000000000000(0000) GS:ffff888097440000(0000) knlGS:0000000000000000
[ 1238.140514][  T189] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1238.143594][  T189] CR2: 00000000803cbb18 CR3: 000000005ae7b000 CR4: 0000000000352ef0
[ 1238.146952][  T189] DR0: 0000000000000000 DR1: 00000000000001f8 DR2: 0000000000000002
[ 1238.149598][  T189] DR3: ffffffffefffff15 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[ 1238.152239][  T189] Call Trace:
[ 1238.153333][  T189]  <TASK>
[ 1238.154284][  T189]  ? nf_conntrack_cleanup_net_list+0x158/0x690
[ 1238.156245][  T189]  ? __pfx_nf_conntrack_cleanup_net_list+0x10/0x10
[ 1238.158778][  T189]  ? nf_conntrack_pernet_exit+0xaa/0x150
[ 1238.161013][  T189]  ? kfree+0x1f6/0x6b0
[ 1238.162723][  T189]  ? __pfx_nf_conntrack_pernet_exit+0x10/0x10
[ 1238.164682][  T189]  ops_undo_list+0x363/0xab0
[ 1238.166198][  T189]  ? __pfx_ops_undo_list+0x10/0x10
[ 1238.167911][  T189]  ? cleanup_net+0x332/0x920
[ 1238.169906][  T189]  ? idr_destroy+0x62/0x2e0
[ 1238.171479][  T189]  cleanup_net+0x499/0x920
[ 1238.172997][  T189]  ? __pfx_cleanup_net+0x10/0x10
[ 1238.174569][  T189]  ? rcu_is_watching+0x12/0xc0
[ 1238.176108][  T189]  process_one_work+0xa23/0x19a0
[ 1238.177803][  T189]  ? __pfx_process_one_work+0x10/0x10
[ 1238.180361][  T189]  ? __pfx_cleanup_net+0x10/0x10
[ 1238.182483][  T189]  worker_thread+0x5ef/0xe50
[ 1238.183979][  T189]  ? kthread+0x13a/0x450
[ 1238.185367][  T189]  ? __pfx_worker_thread+0x10/0x10
[ 1238.186983][  T189]  kthread+0x370/0x450
[ 1238.188617][  T189]  ? __pfx_kthread+0x10/0x10
[ 1238.190505][  T189]  ret_from_fork+0x754/0xd80
[ 1238.192609][  T189]  ? __pfx_ret_from_fork+0x10/0x10
[ 1238.195090][  T189]  ? __switch_to+0x7b4/0x1120
[ 1238.197107][  T189]  ? __pfx_kthread+0x10/0x10
[ 1238.199104][  T189]  ret_from_fork_asm+0x1a/0x30
[ 1238.201143][  T189]  </TASK>
[ 1238.202551][  T189] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1238.205615][  T189] CPU: 3 UID: 0 PID: 189 Comm: kworker/u32:7 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1238.210248][  T189] Tainted: [L]=SOFTLOCKUP
[ 1238.211916][  T189] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1238.215083][  T189] Workqueue: netns cleanup_net
[ 1238.216629][  T189] Call Trace:
[ 1238.217780][  T189]  <TASK>
[ 1238.218716][  T189]  dump_stack_lvl+0x100/0x190
[ 1238.220231][  T189]  vpanic+0x552/0x970
[ 1238.221527][  T189]  ? __pfx_vpanic+0x10/0x10
[ 1238.223041][  T189]  panic+0xd1/0xe0
[ 1238.224248][  T189]  ? __pfx_panic+0x10/0x10
[ 1238.226016][  T189]  ? check_panic_on_warn+0x1f/0x90
[ 1238.228135][  T189]  check_panic_on_warn.cold+0x19/0x34
[ 1238.229854][  T189]  ? nf_conntrack_cleanup_net_list+0x4f7/0x690
[ 1238.231822][  T189]  __warn.cold+0x191/0x348
[ 1238.233266][  T189]  __report_bug+0x296/0x3d0
[ 1238.234732][  T189]  ? nf_conntrack_cleanup_net_list+0x4f7/0x690
[ 1238.236680][  T189]  ? __pfx___report_bug+0x10/0x10
[ 1238.238722][  T189]  ? nf_conntrack_cleanup_net_list+0x4f0/0x690
[ 1238.240784][  T189]  ? nf_conntrack_cleanup_net_list+0x4d7/0x690
[ 1238.242749][  T189]  ? nf_ct_iterate_cleanup_net+0xd9/0x110
[ 1238.244556][  T189]  ? nf_ct_iterate_cleanup_net+0xd9/0x110
[ 1238.246380][  T189]  report_bug_entry+0xe1/0x290
[ 1238.247951][  T189]  ? nf_conntrack_cleanup_net_list+0x4f7/0x690
[ 1238.249910][  T189]  handle_bug+0x1cd/0x2a0
[ 1238.251295][  T189]  exc_invalid_op+0x17/0x50
[ 1238.252745][  T189]  asm_exc_invalid_op+0x1a/0x20
[ 1238.254299][  T189] RIP: 0010:nf_conntrack_cleanup_net_list+0x4f7/0x690
[ 1238.256414][  T189] Code: 29 c3 48 89 de e8 f9 89 5b f8 48 85 db 78 0f e8 0f 8f 5b f8 e8 6a 1c e3 01 e9 0e fc ff ff e8 00 8f 5b f8 48 8d 3d e9 04 3c 07 <67> 48 0f b9 3a eb de 4c 8b 6c 24 40 e8 e8 8e 5b f8 48 b8 00 00 00
[ 1238.262620][  T189] RSP: 0000:ffffc90002c6f970 EFLAGS: 00010293
[ 1238.264527][  T189] RAX: 0000000000000000 RBX: ffffffffffffffff RCX: ffffffff89acb467
[ 1238.267005][  T189] RDX: ffff888023eba4c0 RSI: ffffffff89acb480 RDI: ffffffff90e8b970
[ 1238.269528][  T189] RBP: 0000000000000001 R08: 0000000000000007 R09: 0000000000000000
[ 1238.271985][  T189] R10: ffffffffffffffff R11: 0000000000000000 R12: 0000000000000001
[ 1238.274401][  T189] R13: 0000000000000001 R14: ffffc90002c6fb28 R15: dffffc0000000000
[ 1238.276874][  T189]  ? nf_conntrack_cleanup_net_list+0x4d7/0x690
[ 1238.278863][  T189]  ? nf_conntrack_cleanup_net_list+0x4f0/0x690
[ 1238.280800][  T189]  ? nf_conntrack_cleanup_net_list+0x158/0x690
[ 1238.282756][  T189]  ? __pfx_nf_conntrack_cleanup_net_list+0x10/0x10
[ 1238.284804][  T189]  ? nf_conntrack_pernet_exit+0xaa/0x150
[ 1238.286603][  T189]  ? kfree+0x1f6/0x6b0
[ 1238.287953][  T189]  ? __pfx_nf_conntrack_pernet_exit+0x10/0x10
[ 1238.289899][  T189]  ops_undo_list+0x363/0xab0
[ 1238.291381][  T189]  ? __pfx_ops_undo_list+0x10/0x10
[ 1238.293002][  T189]  ? cleanup_net+0x332/0x920
[ 1238.294473][  T189]  ? idr_destroy+0x62/0x2e0
[ 1238.295829][  T189]  cleanup_net+0x499/0x920
[ 1238.297122][  T189]  ? __pfx_cleanup_net+0x10/0x10
[ 1238.298802][  T189]  ? rcu_is_watching+0x12/0xc0
[ 1238.300369][  T189]  process_one_work+0xa23/0x19a0
[ 1238.301961][  T189]  ? __pfx_process_one_work+0x10/0x10
[ 1238.303664][  T189]  ? __pfx_cleanup_net+0x10/0x10
[ 1238.305270][  T189]  worker_thread+0x5ef/0xe50
[ 1238.306750][  T189]  ? kthread+0x13a/0x450
[ 1238.308138][  T189]  ? __pfx_worker_thread+0x10/0x10
[ 1238.309775][  T189]  kthread+0x370/0x450
[ 1238.311082][  T189]  ? __pfx_kthread+0x10/0x10
[ 1238.312579][  T189]  ret_from_fork+0x754/0xd80
[ 1238.314072][  T189]  ? __pfx_ret_from_fork+0x10/0x10
[ 1238.315707][  T189]  ? __switch_to+0x7b4/0x1120
[ 1238.317287][  T189]  ? __pfx_kthread+0x10/0x10
[ 1238.318767][  T189]  ret_from_fork_asm+0x1a/0x30
[ 1238.320294][  T189]  </TASK>
[ 1238.321825][  T189] Kernel Offset: disabled
[ 1238.323195][  T189] Rebooting in 86400 seconds..