last executing test programs:

23m30.896574351s ago: executing program 3 (id=349):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000940)=@newtfilter={0x34, 0x2c, 0xd27, 0x70bd28, 0xfffff000, {0x0, 0x0, 0x0, r5, {0xf000, 0xffff}, {}, {0x7, 0xa}}, [@filter_kind_options=@f_route={{0xa}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x80}, 0x20000800)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r6)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
r7 = socket$kcm(0x11, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$kcm(r7, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0x7, r8, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000140)='\r', 0x1}], 0x1}, 0x4)

23m22.21701647s ago: executing program 3 (id=361):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000200)={0x28f, 0xfff, 0xa})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f0000000700)={0x0, &(0x7f0000000000)=[<r1=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_CURSOR(r0, 0xc01c64a3, &(0x7f0000000340)={0x3, r1, 0xfffffffa, 0x4, 0xb, 0x1fd, 0x1})
ioctl$DRM_IOCTL_MODE_CURSOR(r0, 0xc01c64a3, &(0x7f0000001880)={0x3, r1, 0xfff, 0x3ff, 0x2, 0x944})

23m21.647215399s ago: executing program 3 (id=362):
r0 = syz_open_procfs(0x0, 0x0)
syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0)

23m21.588789783s ago: executing program 3 (id=363):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)

23m19.449076392s ago: executing program 3 (id=367):
r0 = openat(0xffffffffffffffff, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f00000000c0)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f0000002800)={0x0, 0x0, {0x0, @struct}, {0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})
ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x4a102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x7}, 0x1c)
listen(r2, 0xfffffffc)
r3 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r3, &(0x7f00000001c0)='asymmetric\x00', &(0x7f0000000180)=@secondary)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r3, 0x0, 0x0)

23m17.926498546s ago: executing program 3 (id=369):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000940)=@newtfilter={0x34, 0x2c, 0xd27, 0x70bd28, 0xfffff000, {0x0, 0x0, 0x0, r5, {0xf000, 0xffff}, {}, {0x7, 0xa}}, [@filter_kind_options=@f_route={{0xa}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x80}, 0x20000800)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r6)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
r7 = socket$kcm(0x11, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$kcm(r7, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0x7, r8, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000140)='\r', 0x1}], 0x1}, 0x4)

23m2.915332228s ago: executing program 32 (id=369):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000940)=@newtfilter={0x34, 0x2c, 0xd27, 0x70bd28, 0xfffff000, {0x0, 0x0, 0x0, r5, {0xf000, 0xffff}, {}, {0x7, 0xa}}, [@filter_kind_options=@f_route={{0xa}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x80}, 0x20000800)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r6)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
r7 = socket$kcm(0x11, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$kcm(r7, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0x7, r8, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000140)='\r', 0x1}], 0x1}, 0x4)

12m29.343243119s ago: executing program 0 (id=2282):
getpeername(0xffffffffffffffff, 0x0, &(0x7f0000000140))
socket$kcm(0x10, 0x2, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000080))
setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x8008000000010, &(0x7f0000005e40), 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000500)={0xa00, 0x18, 0xfa00, {0x100000000000000, 0x0}}, 0xfc36)
pipe(&(0x7f00000045c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
vmsplice(r1, &(0x7f00000007c0)=[{&(0x7f0000001a00)="ce", 0x1}], 0x1, 0x1)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'cts(cbc(aes))\x00'}, 0x58)
accept4(r2, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$ieee802154(0x0, 0xffffffffffffffff)
sendmsg$IEEE802154_LLSEC_ADD_DEV(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x4, 0x700000000000000, 0x0, 0x2004c020}, 0x4004)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$CEC_DQEVENT(0xffffffffffffffff, 0xc0506107, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x8081)
writev(r3, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x9, 0xffffffffffffffff, 0x0, 0xfffffffffffffffd, 0x1000001000, 0x46}, 0x0, &(0x7f0000000000)={0x3ff, 0x7, 0xff00, 0x9, 0x0, 0xf, 0x7ffffffe}, 0x0, 0x0)

12m28.34589324s ago: executing program 0 (id=2286):
r0 = socket$inet6(0xa, 0x2, 0x0)
close(r0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)={0x28, 0x2, 0x3, 0x3, 0x0, 0x0, {}, [@NFQA_CFG_CMD={0x8, 0x1, {0x1}}, @NFQA_CFG_PARAMS={0x9, 0x2, {0x10000, 0x1}}]}, 0x28}, 0x1, 0x0, 0x0, 0x400c000}, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'bridge0\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f0000001300)={0x0, 0x0, &(0x7f0000001bc0)={&(0x7f00000000c0)=@bridge_newneigh={0x28, 0x1c, 0x1, 0x70bd28, 0x25dfdbfc, {0x7, 0x0, 0x0, r4, 0x2, 0x16b, 0xb}, [@NDA_LLADDR={0xa, 0x2, @broadcast}]}, 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x4040000)
r5 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r5, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r5, 0x84, 0x7c, &(0x7f00000002c0)={0x0, 0x0, 0x4}, 0x8)
bind$inet(r1, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
setsockopt$inet6_udp_int(r0, 0x11, 0x68, &(0x7f0000000080)=0xa40, 0x4)
recvmmsg(r1, &(0x7f0000004700)=[{{0x0, 0x0, 0x0}, 0x2fc3}], 0x1, 0x40000100, 0x0)
r6 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$inet6_udp_int(r6, 0x11, 0x67, &(0x7f0000000180)=0x7f, 0x4)
connect$inet6(r6, &(0x7f00000001c0)={0xa, 0x4e23, 0x3, @mcast1, 0x2}, 0x1c)
connect$inet6(r6, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @multicast1}}, 0x1c)
sendmsg$NFT_MSG_GETOBJ(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000400)={0x0}, 0x1, 0x0, 0x0, 0x48846}, 0x80)
write(r6, &(0x7f0000000300)="89ba41c97928dec7cec15a160d3dba2553b519a795020072aed129d4b5247c983455b3d757e8b2333a64d9abf416fd83f942661c47bcdf71f7d07ba20d03474a4a4bce636ea8d2b882b2b49ef18e2a96e41f206d930eda2769c5ee6d5e3d541ce9a21c3ce5cb5fbdad9a45de0000000000000000000000000000f1d3b9821c18", 0x80)

12m27.012045515s ago: executing program 0 (id=2290):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r0)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001800)=ANY=[@ANYBLOB="180000002500010324bd7002ffdbdf25010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x4008}, 0x0)
recvmmsg(r0, &(0x7f0000006900)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f00000017c0)=[{&(0x7f00000003c0)=""/4092, 0xffc}, {&(0x7f0000001e40)=""/232, 0xe8}], 0x2}, 0x5}, {{0x0, 0x0, 0x0}, 0x5}, {{0x0, 0x0, &(0x7f00000013c0)=[{&(0x7f0000004e40)=""/4096, 0x1000}, {&(0x7f0000000240)=""/172, 0xac}, {&(0x7f0000000000)=""/161, 0xa1}, {0x0}, {&(0x7f0000001440)=""/251, 0xfb}, {&(0x7f0000001f40)=""/260, 0x104}, {&(0x7f0000001d40)=""/249, 0xf9}, {&(0x7f0000001600)=""/105, 0x69}, {&(0x7f0000001a80)=""/85, 0x55}, {&(0x7f00000000c0)=""/82, 0x52}], 0xa}, 0x7f}], 0x4, 0x0, 0x0)
io_setup(0x401, &(0x7f0000000340)=<r1=>0x0)
io_getevents(r1, 0x0, 0x0, 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000540), 0x105a00, 0x0)
r2 = syz_open_dev$loop(&(0x7f0000000240), 0x8, 0x126402)
r3 = dup(r2)
read$FUSE(r3, &(0x7f0000003c40)={0x2020}, 0xffffff0a)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001840)=ANY=[@ANYBLOB="380000001800010000080000000000000a4000000000000000000000080080153ed5a1c6a922589d015fb7cd3fbfa3a1d1a57975b32fbe97aadbc787682b4e2c99e955b871050a25327b9132e9c524fc768fa6aabc7ede0bf3a6c8b7586ca7c9ac2957e737e7ebab8e8d4637a37d06ee943eaf1a3904f906b80012d2c2a2c51e36629706d212b0876e30d349cc0733a8c3117404629ae60cddefa2e19e484c16c27f570dbb438fee9d57f452542772c14e56b0645468bab2f5d898befb6f46962e5f8a5faf92", @ANYRES32=r4, @ANYBLOB="060015000700fdff0c00168008000100", @ANYRES32], 0x38}}, 0x10)
ioctl$VHOST_RESET_OWNER(0xffffffffffffffff, 0xaf02, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000ac0)={<r5=>0xffffffffffffffff})
getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000000380)={0x0, 0x0, <r6=>0x0}, &(0x7f0000000b40)=0xc)
setregid(r6, r6)
socket(0x10, 0x3, 0x0)
r7 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r7, &(0x7f0000000000)=@file={0x1, './file1\x00'}, 0x6e)
listen(r7, 0x0)
r8 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(r8, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000540)={0x4c, 0x14, 0x101, 0x70bd25, 0x25dfdbfd, {0x1, 0x1f, 0x8, 0x10, {0x4e24, 0x4e22, [0x3, 0x4d, 0xf, 0x9], [0x6, 0x0, 0x40000000, 0x7], 0x0, [0x1, 0x7fffffff]}, 0x9, 0xc7}}, 0x4c}, 0x1, 0x0, 0x0, 0x40480cc}, 0x80)

12m26.345098673s ago: executing program 0 (id=2293):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
mkdir(&(0x7f0000000080)='./file1\x00', 0x8)
mount(0x0, &(0x7f0000000200)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x8, &(0x7f0000000300)='usrquota')
chdir(&(0x7f00000000c0)='./file1\x00')
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r3, 0xffffffff80000800, 0x0, &(0x7f0000000340)={0x8000000000000000, 0x4, 0x100000001, 0x3, 0x24, 0x6, 0x6, 0xfffffffffffffffc, 0x100fff})
write$FUSE_GETXATTR(r3, &(0x7f0000002400)={0x18, 0x0, 0x0, {0xffff}}, 0x18)
sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x92}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r5 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000040)={<r6=>0xffffffffffffffff}, 0x13f, 0x6}}, 0x20)
r7 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r7, r7)
setpgid(r7, r7)
ioprio_get$pid(0x2, r7)
write$RDMA_USER_CM_CMD_NOTIFY(r5, &(0x7f0000001740)={0xf, 0x8, 0xfa00, {r6, 0x13}}, 0x10)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=@newqdisc={0x3c, 0x24, 0xe0b, 0xfefffffc, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0x9}, {0xffff, 0xffff}, {0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_NAT={0x8, 0xb, 0x1}]}}]}, 0x3c}}, 0x0)
sendto$packet(r0, &(0x7f0000000080)="39c394e534ecf02e7e0e9ca20800", 0xe, 0x0, &(0x7f0000000440)={0x11, 0x0, r4, 0x1, 0x95, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, 0x14)

12m26.102762646s ago: executing program 0 (id=2296):
r0 = openat$comedi(0xffffff9c, &(0x7f0000000100)='/dev/comedi0\x00', 0x101001, 0x0)
socket(0xa, 0x3, 0x3a)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
socket(0x1a, 0x1, 0x9)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$dsp1(0xffffff9c, &(0x7f00000002c0), 0x600, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x3, 0x8, 0x0, 0x0, 0x9, 0x1000, 0xfffffe0000000001, 0x26, 0xffffffff}, 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mremap(&(0x7f000054e000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f000022c000/0x3000)=nil)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
socket(0x2a, 0x2, 0x0)
mknod$loop(&(0x7f0000000200)='./file0\x00', 0x85c68e8ab9c77084, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f0000000140)={'dt2814\x00', [0x294, 0x2, 0x7fffffff, 0x8, 0x2f, 0x2006, 0xf1, 0x8, 0x80ffa, 0x2, 0x0, 0x8500, 0x1003, 0x1000004, 0xf, 0x10000, 0xffffffa8, 0x7ffffffd, 0x1ff, 0x200009ea, 0x20000010, 0x40000, 0x8, 0x4008, 0x746f, 0x8, 0x5, 0x8, 0x7a2e6ff0, 0x4, 0x7ffd]})
openat$cdrom(0xffffff9c, &(0x7f0000000200), 0x801, 0x0)
mmap(&(0x7f00004dc000/0x1000)=nil, 0x1000, 0x2, 0x12, 0xffffffffffffffff, 0x0)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f00000001c0), 0x88802, 0x0)
ioctl$PPPIOCNEWUNIT(r3, 0xc004743e, &(0x7f0000000140))
ioctl$PPPIOCSFLAGS1(r3, 0x40047459, &(0x7f00000000c0)=0x41)

12m25.740821732s ago: executing program 0 (id=2297):
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
mount(&(0x7f0000000140)=@sr0, 0x0, &(0x7f0000000000)='ntfs3\x00', 0x2208004, 0x0)
r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
socket$rxrpc(0x21, 0x2, 0xa)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getsockopt$inet_tcp_buf(0xffffffffffffffff, 0x6, 0xb, &(0x7f0000000400)=""/92, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x8001, 0x0, 0xaf, 0x0, 0xfffffe0000000001, 0x7, 0xffffffff}, 0x0)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
rename(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file1\x00')
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x20000080)
socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$xdp(0x2c, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
setsockopt$XDP_UMEM_REG(r3, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
futex(&(0x7f000000cffc), 0xc, 0x1, 0x0, &(0x7f0000000180), 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)

12m25.610212155s ago: executing program 33 (id=2297):
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
mount(&(0x7f0000000140)=@sr0, 0x0, &(0x7f0000000000)='ntfs3\x00', 0x2208004, 0x0)
r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
socket$rxrpc(0x21, 0x2, 0xa)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getsockopt$inet_tcp_buf(0xffffffffffffffff, 0x6, 0xb, &(0x7f0000000400)=""/92, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000240)={0x38, 0x0, 0x0, 0x8001, 0x0, 0xaf, 0x0, 0xfffffe0000000001, 0x7, 0xffffffff}, 0x0)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
rename(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file1\x00')
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x20000080)
socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$xdp(0x2c, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
setsockopt$XDP_UMEM_REG(r3, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
futex(&(0x7f000000cffc), 0xc, 0x1, 0x0, &(0x7f0000000180), 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)

11.453412308s ago: executing program 1 (id=4465):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x4, 0xe, &(0x7f0000000200)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x1}, 0x8, 0x10, &(0x7f00000001c0), 0x10}, 0x94)
sendmsg$802154_raw(0xffffffffffffffff, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f00000008c0)}}, 0x40450)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f0000006680))
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x129202, 0x0)
recvmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000003c0)=""/88, 0x58}], 0x1}, 0x10000)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000002b00)={'batadv0\x00', <r1=>0x0})
sendmsg$inet(0xffffffffffffffff, &(0x7f0000002c00)={&(0x7f0000000100)={0x2, 0x4e23, @multicast1}, 0x10, &(0x7f0000002a00)=[{&(0x7f0000000140)="c69317f2d1ba6fe0fbb3a699b568c95e2d1299fb5e783f5114a6978eebcd66ec72e533a7a6e00f09ae58234dc9ffcb24e866a417b3", 0x35}, {&(0x7f0000000280)="c3786b207469864bf09191a23134469e722220dc63806abc7c1c97576aaedd402d591de8b1178e5b04234b72969820f127580b401ffe87f7a445e225810ea409284318b735d72e18e092dc75f5ebf4d90f293c9adbd88095b687d1b1232d2c", 0x5f}, {&(0x7f0000000440)="0da12b7e2cc2694a97737559058bd535fe367601ec5887aa55795183aefd794750c7ee2eeee723ef54662a0aee367f3d7cb38ccd52c79c04e54937e1fff2bac808b72d0bdd0caa6f4fc080f2ac2a33b91b1671592845c8d94662eec2526e9abdb0373d1791201ccc6060116343539ac2865f03e5602e427c1de04b0ac377e695f0602de8eefc013a19d312c04b7b1f764c6d825f54cb06ea2e32f21e38054ab86dce703411c3bdbbef7ddfced4ba87b7ee71baab7b757b8da84b3f897e9be97b67177f6150fc8b48d5bb0825a9225d", 0xcf}, {&(0x7f0000001880)="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", 0x1000}, {&(0x7f0000002880)="54dad959f8ac1c44081ef4fa95f9586a00be82b72ab6d6a0b4fba3a6816edd7ee61fa2180ddade9debd35e4fcfce7d2ba4182926e1cb26ea701bb007cbf0477a842bb1c383314adf0cb824d6f4a69d14cdf8526b24032766d502e29434d1b6e724216573da03fc13fff3e0efd6e9463b5bf8ac0369c46f7c44cbac5098e455ab243dd5528879f47071cf3c51023e735f7626f2db5cd7ffa61d8bae0e5a7ae32b3dd8a9e75311cea2196e44002a6e717836c48a43eee97cdde4f9aa6b7b35571856838296d6b74a563df30d9c949ac48377a43aa121dd1946866650a18bb20ae5a0ea3e1d7e9097ad1d272ccce6b07d6b2ea8301e", 0xf4}, {&(0x7f0000002980)="94bea47edfa49492857fbba02ae420606c568af8e51a2470984f48c9f33aa366c5a7c9f31bbb3feae90a66f9aa2ec13950bec52b1d668df9a115473fa89fedaaa38024600f17118a0556a824a7d81743", 0x50}], 0x6, &(0x7f0000002b40)=[@ip_pktinfo={{0x18, 0x0, 0x8, {0x0, @local, @broadcast}}}, @ip_ttl={{0x10, 0x0, 0x2, 0x1}}, @ip_tos_int={{0x10, 0x0, 0x1, 0x2}}, @ip_pktinfo={{0x18, 0x0, 0x8, {r1, @initdev={0xac, 0x1e, 0x1, 0x0}, @local}}}, @ip_tos_u8={{0xd, 0x0, 0x1, 0xbf}}, @ip_retopts={{0x30, 0x0, 0x7, {[@timestamp={0x44, 0x14, 0x50, 0x0, 0x3, [0xc78d, 0x2, 0x9, 0x9]}, @lsrr={0x83, 0xf, 0x24, [@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}]}]}}}], 0x90}, 0x20000000)
r2 = fsopen(0x0, 0x1)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000240)='uid', &(0x7f00000008c0)='-\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00$\xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$\xc4\xbcF\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80=\x8a\xeb\n\xb8_\xe8\x96YY\xe3\xc7\xe6\xf28\x19\xa6\xa7\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\x1f\x03\x00\x00\x00\x00\x00\x00\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x85N\x1c\xc1\xcb\xfc\x85\xd2\n\x02\"\xf2\x81g\x90\x01n%\x7f_\xe1.f>>\xa5\xfb\"\xab\xdb\x06\x12e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9ak\x00\x00\x00\x00\x00\x00\x00\n\xa72\xa3\xef^\xe7\x8f', 0x0)
ioctl$SOUND_PCM_READ_CHANNELS(r0, 0x80045006, &(0x7f00000010c0))
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x300000a, 0x4031, 0xffffffffffffffff, 0x0)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r3, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x7}, 0x1c)
listen(r3, 0xfffffffc)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r4, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
socket(0x2a, 0x2, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x30, r6, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0xe}]}]}, 0x30}, 0x1, 0x0, 0x0, 0xaa34a4cfdf933201}, 0x10)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r7, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="010000000000000000000700000024000180060005004e230000060001000200051b08000300ac1414aa"], 0x38}, 0x1, 0x0, 0x0, 0x14}, 0x4000000)

10.45185511s ago: executing program 1 (id=4468):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
pwritev(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
openat$adsp1(0xffffffffffffff9c, 0x0, 0x2200, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0xaa34a4cfdf933201}, 0x10)
r2 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$inet(r2, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @local}, 0xfc, 0x0}, 0x30004001)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)={0x20, r4, 0x1, 0x70bd25, 0x0, {0x7}, [@MPTCP_PM_ATTR_ADDR={0xc, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x80}, 0x808)
r5 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x800)
mount$9p_fd(0x0, 0x0, &(0x7f0000000080), 0x804000, 0x0)
getsockopt$inet_IP_XFRM_POLICY(r5, 0x0, 0x11, &(0x7f0000000140)={{{@in6=@mcast1, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}}, {{@in=@dev}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe4)
read$FUSE(0xffffffffffffffff, &(0x7f0000000880)={0x2020, 0x0, 0x0, <r7=>0x0}, 0x2020)
setresuid(0xffffffffffffffff, r6, r7)
init_module(&(0x7f0000000100)=ANY=[@ANYBLOB="7f454c4607ff04fcffffffffffffffff03"], 0xfffd8, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

9.837782734s ago: executing program 5 (id=4470):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd25, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0xc0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0x1fffffffffffffcd, 0x0, 0x0, 0x2010000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(0xffffffffffffffff, 0x0, 0x40010)
r0 = syz_open_procfs(0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
read$FUSE(r0, 0x0, 0x0)
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
r1 = openat$kvm(0xffffff9c, &(0x7f0000000000), 0x41, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
ioctl$KVM_CAP_X86_DISABLE_EXITS(r2, 0x4068aea3, &(0x7f0000000200)={0x8f, 0x0, 0xe})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r2, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x6, 0x1, 0x2, 0x0, 0x0, 0x0, 0xfe, 0x0, 0x1, 0x4, 0xd, 0x20000004}, {0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x6, 0x5, 0x0, 0x5, 0x4}, {0x10001, 0x4, 0x9, 0x0, 0x0, 0x1d, 0x0, 0x10, 0x2, 0x0, 0x0, 0x0, 0x20000000000000}]})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000380)={[0xf, 0x3, 0x4, 0x1000000000000002, 0x102000000000002, 0x8000000d, 0x2004c8, 0xffff, 0x3, 0xffffffff, 0xffffffffffffffff, 0x7fffffffffffffff, 0xd0b, 0x4, 0x2000000000000003, 0x5], 0x80a0000, 0x4284})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

9.837097646s ago: executing program 4 (id=4471):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd25, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0xc0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0x1fffffffffffffcd, 0x0, 0x0, 0x2010000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(0xffffffffffffffff, 0x0, 0x40010)
r0 = syz_open_procfs(0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
read$FUSE(r0, 0x0, 0x0)
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
r1 = openat$kvm(0xffffff9c, &(0x7f0000000000), 0x41, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
ioctl$KVM_CAP_X86_DISABLE_EXITS(r2, 0x4068aea3, &(0x7f0000000200)={0x8f, 0x0, 0xe})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r2, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x6, 0x1, 0x2, 0x0, 0x0, 0x0, 0xfe, 0x0, 0x1, 0x4, 0xd, 0x20000004}, {0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x6, 0x5, 0x0, 0x5, 0x4}, {0x10001, 0x4, 0x9, 0x0, 0x0, 0x1d, 0x0, 0x10, 0x2, 0x0, 0x0, 0x0, 0x20000000000000}]})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000380)={[0xf, 0x3, 0x4, 0x1000000000000002, 0x102000000000002, 0x8000000d, 0x2004c8, 0xffff, 0x3, 0xffffffff, 0xffffffffffffffff, 0x7fffffffffffffff, 0xd0b, 0x4, 0x2000000000000003, 0x5], 0x80a0000, 0x4284})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

9.491577421s ago: executing program 1 (id=4472):
r0 = syz_io_uring_setup(0xc6c, &(0x7f0000000180)={0x0, 0xcc19, 0x130c8, 0x400006, 0x20e}, &(0x7f0000000240), &(0x7f0000000140), &(0x7f0000000000))
io_uring_register$IORING_REGISTER_PBUF_STATUS(r0, 0x1a, 0x0, 0x1)
syz_io_uring_setup(0x6f33, &(0x7f0000004080)={0x0, 0x168c, 0x20000, 0x1, 0x3e4}, 0x0, 0x0, 0x0)
setsockopt$inet_mtu(0xffffffffffffffff, 0x0, 0xa, &(0x7f00000001c0)=0x4, 0x1)
r1 = openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0)
r2 = socket$kcm(0x29, 0x2, 0x0)
write$cgroup_pressure(r2, &(0x7f0000000140)={'full'}, 0xfffffdef)
r3 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC_PROXY(r3, 0x0, 0xd2, &(0x7f0000000200)={@empty, @multicast2=0xe0000300, 0x0, "028a3f6c5805000000451697efe42811ee1df06e9264f7d866b1970548fc3c7b", 0xb2, 0xfffffff7, 0x4, 0x40000006}, 0x3c)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r4=>0x0)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r4, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000003, 0x8031, 0xffffffffffffffff, 0x0)
ioctl$int_in(r2, 0x5452, &(0x7f0000000240)=0x3)
sendmsg$kcm(r2, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x20000818)
r5 = openat(0xffffffffffffff9c, 0x0, 0x20842, 0x63)
write$P9_RLERRORu(r5, &(0x7f0000000300)=ANY=[], 0x10)
write$sndseq(0xffffffffffffffff, &(0x7f0000000000)=[{0x95, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}], 0x1c)
futex(&(0x7f0000004000), 0x4, 0x0, 0x0, 0x0, 0x0)
r6 = socket(0x10, 0xe, 0x100)
write(r6, &(0x7f0000000040)="1c0000005e001f3814584707f9f4", 0xe)
ioctl$SNDRV_TIMER_IOCTL_START(r1, 0x54a0)
write$binfmt_register(0xffffffffffffffff, &(0x7f0000000080)={0x3a, 'syz3', 0x3a, 'M', 0x3a, 0x2, 0x3a, '$*{', 0x3a, '', 0x3a, './file0/file0', 0x3a, [0x50]}, 0x31)

9.193992011s ago: executing program 2 (id=4473):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000000340)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)
getpeername(r0, &(0x7f00000000c0)=@phonet, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000640)=0x17ff, 0x4)
r1 = socket$kcm(0x10, 0x2, 0x0)
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r2, 0xc004500a, &(0x7f0000000080))
setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x8008000000010, &(0x7f0000005e40)="170000000a0001000003d68c5ee17688a2003208020300ecff3f0200000300000a000000009afc5ad9485bbb6a880000d6c8db0000dba67e060180000a0000f10607bdff59100ac45761407a681f009cee4a5acb3da400001fb700674f19b44e09f9315033bf79ac2dff060115003901000000000000ea000000000000000009ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e000"/184, 0xb8)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000500)={0xa00, 0x18, 0xfa00, {0x100000000000000, 0x0}}, 0xfc36)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$CEC_DQEVENT(0xffffffffffffffff, 0xc0506107, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x8081)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
sendmsg$RDMA_NLDEV_CMD_RES_MR_GET(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="200000000d14000827bd7000fbdbdf25"], 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x4000000)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x9, 0xffffffffffffffff, 0x0, 0xfffffffffffffffd, 0x1000001000, 0x46}, 0x0, &(0x7f0000000000)={0x3ff, 0x7, 0xff00, 0x9, 0x0, 0xf, 0x7ffffffe}, 0x0, 0x0)
sendmsg$kcm(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000380)="2e00000010008188e6b62aa73772cc9f1ba1f848110000005e140602000000000e000a001000000002900000121f", 0x2e}], 0x1}, 0x40)
sendmsg$kcm(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000010008188040f80ec59acbc0413a1f848110000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x8084)

8.700569949s ago: executing program 4 (id=4474):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x9}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
fsopen(0x0, 0x1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = syz_open_dev$vbi(&(0x7f0000000100), 0x0, 0x2)
ioctl$VIDIOC_G_EXT_CTRLS(r3, 0xc0185647, &(0x7f00000002c0)={0xf000000, 0x3e4, 0x84, 0xffffffffffffffff, 0x0, &(0x7f0000000280)={0xa00001, 0x4, '\x00', @string=0x0}})
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_new={'new ', 'default', 0x20, 'user:', 'syz', 0x20, 0xffd}, 0x2a, 0x0)
add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0x6c304000)
add_key$user(&(0x7f00000003c0), &(0x7f0000000440), 0x0, 0x0, 0xfffffffffffffffd)

8.698289618s ago: executing program 5 (id=4482):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd25, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0xc0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0x1fffffffffffffcd, 0x0, 0x0, 0x2010000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(0xffffffffffffffff, 0x0, 0x40010)
r0 = syz_open_procfs(0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
read$FUSE(r0, 0x0, 0x0)
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
r1 = openat$kvm(0xffffff9c, &(0x7f0000000000), 0x41, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
ioctl$KVM_CAP_X86_DISABLE_EXITS(r2, 0x4068aea3, &(0x7f0000000200)={0x8f, 0x0, 0xe})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r2, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x6, 0x1, 0x2, 0x0, 0x0, 0x0, 0xfe, 0x0, 0x1, 0x4, 0xd, 0x20000004}, {0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x6, 0x5, 0x0, 0x5, 0x4}, {0x10001, 0x4, 0x9, 0x0, 0x0, 0x1d, 0x0, 0x10, 0x2, 0x0, 0x0, 0x0, 0x20000000000000}]})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000380)={[0xf, 0x3, 0x4, 0x1000000000000002, 0x102000000000002, 0x8000000d, 0x2004c8, 0xffff, 0x3, 0xffffffff, 0xffffffffffffffff, 0x7fffffffffffffff, 0xd0b, 0x4, 0x2000000000000003, 0x5], 0x80a0000, 0x4284})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

6.415115931s ago: executing program 2 (id=4475):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'lo\x00', <r2=>0x0})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r4, 0x0, 0x0, 0x2, 0x0)
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, &(0x7f00000014c0)={0x2, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[], 0xa0}}, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000013c0)='./file0/file0\x00', 0x404c2, 0x0)
r7 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TDLS_OPER(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000a00)={&(0x7f0000000980)={0x20, r8, 0x1, 0x0, 0x25dfdbfd, {{0x8}, {@void, @val={0xc, 0x99, {0x1, 0x1}}}}}, 0x20}}, 0x0)
unlinkat(0xffffffffffffff9c, &(0x7f0000000180)='./file0/file0\x00', 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newqdisc={0x178, 0x24, 0xd0f, 0x200000, 0x0, {0x60, 0x0, 0x0, r2, {}, {0xffff, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x148, 0x2, [@TCA_GRED_STAB={0x104, 0x2, "abcc61b4e508c02286f1bafc7a22c407a52b0e13291c865d493f15736245f220cd4e40006df455836aa3bd3aaa2c9b95578719c46f89e01798d28b6d63cf7465ea95bd97b018b7afaccdcb28bb42d677b73c44e790f0875fb4b795ca95b7dd712d2c5d69945535f92f74a71236743acd06103cd77bd07f2df5989ee40e409b077cc85e96554beb53c986a216051bd5979a8cfcfe9f98be58ffcf44f6cfda8579dbaedceee578bfd1fb554b6e185e9315425ef0a3fc69d17ede93fc7c46357990f7acfdb8216ea52f604b9f12033688caa4b04adecfc926b3f6ca25bcb5432905e3f30ccbf10cf0f2d00858ba2bbd2702b8d4a7a7c744fbaa2fa35b1c586020d6"}, @TCA_GRED_PARMS={0x38, 0x1, {0x100, 0x5, 0x400, 0x9, 0x81, 0x101, 0xe, 0xc40, 0x7fffffff, 0xfffffffd, 0x20, 0xb, 0xff, 0x6, 0xca11, 0xfffe}}, @TCA_GRED_MAX_P={0x8, 0x4, 0x5}]}}]}, 0x178}, 0x1, 0x0, 0x0, 0x845}, 0x24008004)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0026}]})
acct(0x0)
fdatasync(r1)

6.31796358s ago: executing program 5 (id=4476):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
fsopen(0x0, 0x1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
unshare(0x6a040000)
sendmsg$nl_generic(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c0000002100090002000000ffdbdf25020000000800080046"], 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x844)
connect$bt_l2cap(r1, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
ioctl$sock_bt_hidp_HIDPCONNADD(0xffffffffffffffff, 0x400448c8, &(0x7f0000000600)={r1, r1, 0x2008, 0x0, 0x0, 0x6, 0xfe, 0x10cf, 0x5, 0x5, 0x2, 0x1, 'syz0\x00'})
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000640)={{0x14}, [@NFT_MSG_DELRULE={0x20, 0x8, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x48}, 0x1, 0x0, 0x0, 0xf3021be2a65b013}, 0x0)

6.076676754s ago: executing program 1 (id=4477):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_rdma(0x10, 0x3, 0x14)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x5, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0xffffffffffffffff, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_usbip_server_init(0x6)
ioctl$FE_SET_PROPERTY(0xffffffffffffffff, 0x40086f52, 0x0)
r4 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(r4, 0x560a, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x14, 0x33, 0x701, 0x0, 0x25dfdbfe, {0x3}}, 0x14}, 0x1, 0x0, 0x0, 0x4040004}, 0x24044094)

6.076478413s ago: executing program 4 (id=4478):
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000240)={0x18, 0x6, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000ffffff80e500020000000000c500fcff0000000085000000aa00000095"], &(0x7f00000001c0)='syzkaller\x00', 0x7, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x40004}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="07000000040000001800000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x9, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000010000000000000000181200", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_open_dev$vcsn(&(0x7f0000000000), 0x2, 0x60181)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000100)={{0x1}, &(0x7f0000000080), &(0x7f00000000c0)=r0}, 0x1c)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{0x1}, &(0x7f0000000140), &(0x7f0000000180)=r0}, 0x1c)
openat(0xffffffffffffffff, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r3, 0xaf01, 0x0)
r4 = eventfd(0xfffffff9)
ioctl$VHOST_SET_LOG_FD(r3, 0x4004af07, &(0x7f0000000240)=r4)
ioctl$VHOST_SET_VRING_KICK(r3, 0x4008af20, &(0x7f0000000040)={0x1, r4})
ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/246, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/70, 0x100000})
ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0x73, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r3, 0x4004af61, &(0x7f0000000000)=0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000700)={0xffffffffffffffff, 0x20, &(0x7f00000006c0)={&(0x7f0000000580)=""/246, 0xf6, 0x0, &(0x7f0000000680)=""/4, 0x4}}, 0x10)

5.126302274s ago: executing program 2 (id=4479):
syz_open_dev$vim2m(0x0, 0xbfb, 0x2)
openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)
setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000002a40)='system.posix_acl_default\x00', &(0x7f00000004c0)=ANY=[@ANYBLOB, @ANYBLOB], 0x2c, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = syz_open_dev$admmidi(&(0x7f0000000140), 0x20, 0x0)
r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0), 0x183383, 0x0)
read$midi(r2, &(0x7f0000000180)=""/187, 0xbb)
ioctl$SNDCTL_SEQ_PANIC(r3, 0x5100)
r4 = openat$incfs(0xffffffffffffff9c, 0x0, 0x1a10c1, 0x9c37611dc13d0d83)
fchown(r4, 0xffffffffffffffff, 0x0)
r5 = socket$kcm(0xa, 0x2, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x206000, 0x162)
ioctl$F2FS_IOC_RESIZE_FS(r2, 0x4008f510, &(0x7f0000000040)=0x5)
r6 = socket(0x2, 0x80805, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r6, 0x0, 0x482, &(0x7f0000000240)={0x84, @rand_addr=0x64010102, 0x4e20, 0x3, 'lc\x00', 0x3, 0xa7e, 0x49}, 0x2c)
setsockopt$IP_VS_SO_SET_ADDDEST(r6, 0x0, 0x487, &(0x7f0000000080)={{0x84, @private=0xa010102, 0x4f21, 0x3, 'lblcr\x00', 0x29, 0x5, 0x10}, {@multicast1, 0x4e20, 0x10048, 0x4, 0x44}}, 0x44)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x802000)
socket$inet6_tcp(0xa, 0x1, 0x0)
r7 = socket$inet_sctp(0x2, 0x5, 0x84)
sendmsg$NL80211_CMD_SET_BSS(r1, &(0x7f0000000480)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000440)={0x0, 0x4c}, 0x1, 0x0, 0x0, 0x80}, 0x4000004)
setsockopt$IP_VS_SO_SET_ADDDEST(r7, 0x0, 0x487, 0x0, 0x0)
sendmsg$sock(r5, 0x0, 0x0)

4.784332238s ago: executing program 4 (id=4480):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd25, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0xc0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0x1fffffffffffffcd, 0x0, 0x0, 0x2010000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(0xffffffffffffffff, 0x0, 0x40010)
r1 = syz_open_procfs(0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
read$FUSE(r1, 0x0, 0x0)
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
r2 = openat$kvm(0xffffff9c, &(0x7f0000000000), 0x41, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
ioctl$KVM_CAP_X86_DISABLE_EXITS(r3, 0x4068aea3, &(0x7f0000000200)={0x8f, 0x0, 0xe})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r3, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x6, 0x1, 0x2, 0x0, 0x0, 0x0, 0xfe, 0x0, 0x1, 0x4, 0xd, 0x20000004}, {0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x6, 0x5, 0x0, 0x5, 0x4}, {0x10001, 0x4, 0x9, 0x0, 0x0, 0x1d, 0x0, 0x10, 0x2, 0x0, 0x0, 0x0, 0x20000000000000}]})
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000380)={[0xf, 0x3, 0x4, 0x1000000000000002, 0x102000000000002, 0x8000000d, 0x2004c8, 0xffff, 0x3, 0xffffffff, 0xffffffffffffffff, 0x7fffffffffffffff, 0xd0b, 0x4, 0x2000000000000003, 0x5], 0x80a0000, 0x4284})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

3.807625897s ago: executing program 5 (id=4481):
socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000040), &(0x7f0000000080)=0x14)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x18, 0x3, &(0x7f00000005c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
syz_emit_ethernet(0x56, &(0x7f0000000040)={@link_local, @random="e157ae65e9c1", @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "062111", 0x20, 0x0, 0x0, @empty, @local, {[@hopopts={0x0, 0x2, '\x00', [@hao={0xc9, 0x10, @loopback}]}]}}}}}, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$OBJ_GET_MAP(0x7, 0x0, 0x0)
r3 = syz_clone(0x100411, 0x0, 0x0, 0x0, 0x0, 0x0)
tkill(r3, 0x13)
tkill(r3, 0x12)
waitid(0x1, r3, 0x0, 0x8, &(0x7f00000003c0))
fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1)
syz_open_procfs(0x0, &(0x7f00000001c0)='maps\x00')
socket$inet6_sctp(0xa, 0x801, 0x84)

3.807392981s ago: executing program 2 (id=4483):
msgsnd(0x0, 0x0, 0x0, 0x800)
syz_open_dev$loop(&(0x7f0000000040), 0xffffffff80000001, 0x1680a2)
openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/rcu_normal', 0x82802, 0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x6, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$netlink(0x10, 0x3, 0x6)
bind$netlink(r3, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r4, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r4, &(0x7f0000000480)={0x2, 0x4e23, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r4, 0x0, 0x11, &(0x7f0000000600)={{{@in6=@dev={0xfe, 0x80, '\x00', 0x4}, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x1, 0x4, 0x0, 0xfffffffffffffff8, 0x0, 0x6}, {0x0, 0xffffffff, 0x400000003, 0xfffffffffffffffc}, 0xfffffffc, 0x0, 0x1, 0x0, 0x6}, {{@in=@private=0xa010102, 0x4, 0x32}, 0x0, @in=@multicast1, 0x0, 0x0, 0x0, 0xb7, 0x2, 0xfffffffe}}, 0xe8)
sendmmsg(r4, &(0x7f0000007fc0), 0x800001d, 0x1c)

2.862015891s ago: executing program 4 (id=4484):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x4)
r1 = socket$netlink(0x10, 0x3, 0x0)
socket$packet(0x11, 0x3, 0x300)
socket$inet6_sctp(0xa, 0x5, 0x84)
syz_io_uring_setup(0x8d2, 0x0, 0x0, &(0x7f0000000080), &(0x7f0000000200))
io_uring_setup(0x30aa, 0x0)
openat$dsp1(0xffffffffffffff9c, &(0x7f00000000c0), 0x88a01, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x800, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
accept4(r1, &(0x7f0000000140)=@phonet, &(0x7f00000001c0)=0x80, 0x800)
r2 = syz_open_dev$sndmidi(&(0x7f0000000240), 0x2, 0x40102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2f)
mount(&(0x7f00000000c0)=@nullb, &(0x7f0000000040)='./cgroup\x00', 0x0, 0x208000, 0x0)
syz_open_dev$sndmidi(0x0, 0x2, 0x141102)
r3 = socket(0x10, 0x3, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a4c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc0800"], 0xb4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800e80010000d0428bd7000fcdbff2500008000", @ANYRES32=r3, @ANYBLOB="1000000000000000280012800b00010062726964676500001800028005001900840000"], 0x48}}, 0x4084)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
sendmmsg(r3, &(0x7f0000000000), 0x4000000000001f2, 0x0)
write$UHID_INPUT(r0, &(0x7f0000001040)={0x9, {"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", 0x35e}}, 0x1006)

2.73057264s ago: executing program 5 (id=4485):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd25, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0xc0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0x1fffffffffffffcd, 0x0, 0x0, 0x2010000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(0xffffffffffffffff, 0x0, 0x40010)
r1 = syz_open_procfs(0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
read$FUSE(r1, 0x0, 0x0)
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
r2 = openat$kvm(0xffffff9c, &(0x7f0000000000), 0x41, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
ioctl$KVM_CAP_X86_DISABLE_EXITS(r3, 0x4068aea3, &(0x7f0000000200)={0x8f, 0x0, 0xe})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r3, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x6, 0x1, 0x2, 0x0, 0x0, 0x0, 0xfe, 0x0, 0x1, 0x4, 0xd, 0x20000004}, {0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x6, 0x5, 0x0, 0x5, 0x4}, {0x10001, 0x4, 0x9, 0x0, 0x0, 0x1d, 0x0, 0x10, 0x2, 0x0, 0x0, 0x0, 0x20000000000000}]})
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000380)={[0xf, 0x3, 0x4, 0x1000000000000002, 0x102000000000002, 0x8000000d, 0x2004c8, 0xffff, 0x3, 0xffffffff, 0xffffffffffffffff, 0x7fffffffffffffff, 0xd0b, 0x4, 0x2000000000000003, 0x5], 0x80a0000, 0x4284})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

2.297333686s ago: executing program 2 (id=4486):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x9}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
fsopen(0x0, 0x1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = syz_open_dev$vbi(&(0x7f0000000100), 0x0, 0x2)
ioctl$VIDIOC_G_EXT_CTRLS(r3, 0xc0185647, &(0x7f00000002c0)={0xf000000, 0x3e4, 0x84, 0xffffffffffffffff, 0x0, &(0x7f0000000280)={0xa00001, 0x4, '\x00', @string=0x0}})
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_new={'new ', 'default', 0x20, 'user:', 'syz', 0x20, 0xffd}, 0x2a, 0x0)
add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0x6c304000)
add_key$user(&(0x7f00000003c0), &(0x7f0000000440), 0x0, 0x0, 0xfffffffffffffffd)

1.66775245s ago: executing program 5 (id=4487):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x3, 0x5, &(0x7f00000003c0)=ANY=[@ANYBLOB="18020000800000000000000000000000850000000e000000850000000700000095"], &(0x7f0000000680)='GPL\x00'}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x3, 0x14, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006100000018010000646c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000009b000000180100002020692500000000002020207b1a"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000c00)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x59, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
mount$9p_virtio(0x0, 0x0, 0x0, 0x3200006, &(0x7f0000019280)=ANY=[@ANYRES64])
r2 = openat$autofs(0xffffffffffffff9c, 0x0, 0x149000, 0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r2, 0xc018937a, &(0x7f0000000500)={{0x1, 0x1, 0x6b, 0xffffffffffffffff, {0x101}}, '\x00'})
getpid()
r3 = syz_open_procfs(0xffffffffffffffff, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r5 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
r6 = socket(0x15, 0x5, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001e00010329bd70000000000005"], 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x4004000)
getsockopt(r6, 0x200000000114, 0x2716, &(0x7f0000c35fff)=""/1, &(0x7f0000000000)=0xf002)
writev(r5, &(0x7f0000019680)=[{&(0x7f0000019480)="b1329129ccf4e8f05761cf50f76b31cbbe8f8b116fabb78d79b090aa2a5f79d7caec908d7bf510342e8a0a4ad439c8e0db3e8798b98ca1d347b8c5d20c41ddd2fd35a53570a1e66832de05b1fc9883903203396fffcb03e7e4159638dcbae8cb78d019621cc9e41c25abc93acbcea842393e6c0e7e784fe849a8a65e5b394c508a91f52045063d2e26ca", 0x8a}, {0x0}, {&(0x7f0000019600)="1ab675217b3dfd5a32aebeaa1283c4e0104b36e50345e79261cb98c485b048f91e86aff064664e61927aba7b6e570c72504986125abacd7e0e4ae5b2", 0x3c}], 0x3)
pread64(r3, &(0x7f0000000080)=""/102356, 0x18fd4, 0x200)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0xff05, 0x8000000, 0x0, {0x0, 0x0, 0x4a00, 0x0, 0xbc2a4219f6b34c13}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @batadv={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @multicast}]}, 0x40}}, 0x20000840)

1.557361011s ago: executing program 4 (id=4488):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$BPF_LINK_CREATE(0x1c, 0x0, 0x0)
keyctl$join(0x1, &(0x7f00000000c0)={'syz', 0x0})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000000080)=@newtaction={0x50, 0x30, 0x9, 0x0, 0x0, {}, [{0x3c, 0x1, [@m_skbedit={0x38, 0x1, 0x0, 0x0, {{0xc}, {0xc, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PTYPE={0x6}]}, {0x4}, {0xc, 0xa}, {0xc, 0x9}}}]}]}, 0x50}}, 0x0)
io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0xc89f, 0xc000, 0x0, 0x20002f7})
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
getpriority(0x0, r2)
sched_setattr(r2, &(0x7f0000000140)={0x38, 0x3, 0x8, 0x400, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0x118f, 0x800000}, 0x0)
r3 = add_key(&(0x7f0000000000)='big_key\x00', 0x0, &(0x7f00000002c0)="1d", 0x1, 0xfffffffffffffffe)
add_key$keyring(&(0x7f0000000000), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r3)
syz_open_dev$video(0x0, 0x1d24, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = syz_open_dev$vim2m(&(0x7f0000000040), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r5, 0xc0145608, &(0x7f00000000c0)={0x4, 0x2, 0x1})
ioctl$vim2m_VIDIOC_STREAMOFF(r5, 0x40045612, &(0x7f00000012c0)=0x2)
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
mremap(&(0x7f00007ff000/0x4000)=nil, 0x4000, 0x4000, 0x7, &(0x7f0000580000/0x4000)=nil)
mremap(&(0x7f000081e000/0x4000)=nil, 0x4000, 0x2000, 0x3, &(0x7f00007ff000/0x2000)=nil)
io_setup(0x2007, &(0x7f0000000980))
close_range(r4, 0xffffffffffffffff, 0x0)

631.553587ms ago: executing program 1 (id=4489):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x4)
socket$netlink(0x10, 0x3, 0x0)
syz_io_uring_setup(0x8d2, 0x0, 0x0, &(0x7f0000000080), &(0x7f0000000200))
io_uring_setup(0x30aa, 0x0)
openat$dsp1(0xffffffffffffff9c, &(0x7f00000000c0), 0x88a01, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x800, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000240), 0x2, 0x40102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2f)
mount(0x0, &(0x7f0000000040)='./cgroup\x00', 0x0, 0x208000, 0x0)
r2 = io_uring_setup(0xf08, &(0x7f000000c480)={0x0, 0xc46e, 0x2, 0x1ffff, 0x3})
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f0000000140)=[{0x0}], 0x1)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000001dc0), r3)
ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000001e00)={'wpan0\x00', <r5=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_DEV(r3, &(0x7f0000001ec0)={0x0, 0x0, &(0x7f0000001e80)={&(0x7f0000001e40)={0x2c, r4, 0x1, 0x70bd2d, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r5}, @NL802154_ATTR_SEC_DEVICE={0x10, 0x2e, 0x0, 0x1, {0xc}}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x8000)
io_uring_setup(0x6fa2, &(0x7f0000000600)={0x0, 0x41e28, 0x0, 0x4, 0x3d})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="1000000000000000280012800b"], 0x48}}, 0x4084)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4008840)
sendmmsg(0xffffffffffffffff, &(0x7f0000000340), 0x0, 0x20000000)
write$UHID_INPUT(r0, &(0x7f0000001040)={0x9, {"a2e3ad21ed0d09f90e3d090987f70e06d038e7ff7fc6e5539b0d5b0e8b099b3f36006e090890e0878f0e1ac6e7f89b334d959b4a9a240d5b67f3988f7ef319520100ffe8d178708c523c921b1b5b31070d074a0936cd3b78130daa61d8e8040000005802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0a6193973735b36d5b1b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000400000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617679314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec230911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918c91243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9963ac5a4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce7cd9f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d4ac01b75d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4b333bd5bc4e9ac2aed9e53803ed0ca4ae3a9737d214060005ea6f1783e287b3be3b64df07847754b8400daaa69bf5c8f4350aeae9ca1207e78283cd0b20ce0700c7e658828163e2d25c4aa348561f927eff7f3aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f05004b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d486046b2c0e2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee6157eb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93aec92a5de225727aa49c2d284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d78749a7a508ae54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29c60acebdbe8ddbd75c2f998d8a57f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40427db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95ff80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8870b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e0513007000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae8489d9e99c81769177c6d594f88a4facfd4c735a20307c737afa2d60299473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d946a2daee67918e5d6787463183b4b87c1050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810300000000000000a12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf000000800000000007b34449e15e065cc7340002000000000000f288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae0e797e8bd1f4108b7807fb36207685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ad50dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b9048017848416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342bb784ed7148b6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb806c43a006e39336d07c2b8081c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1db44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b00f1000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de9c0587c2cb5fe36d7d3e5db21b013b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cf4b23329072e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c6b00000000000000f96f06810002000000000000957697c9ede7885d94ffb0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f3e90d5943dbc10360a1a49700d1dfbf66d69f6fbafe1e83cdde8bb0d872a02238926407a4eddd5d0fc5a752f900000000000000100", 0x35e}}, 0x1006)

552.480765ms ago: executing program 1 (id=4490):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt(r0, 0x84, 0x19, &(0x7f00000002c0)="1a00000002000000", 0x8)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000024c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000000900010073797a30000000002c000000030a01020000000000000000010000000900010073797a30000000000900030073797a310000000038000000030a01040000000000000000010000010900030073797a32000000000c00024000000000000000010900010073797a30"], 0x7904}, 0x1, 0x0, 0x0, 0x4040}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = syz_open_dev$tty20(0xc, 0x4, 0x1)
close(0xffffffffffffffff)
ioctl$VT_RESIZEX(r5, 0x560a, &(0x7f0000000040)={0x0, 0x8, 0x0, 0x4})
setsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, &(0x7f0000000180), 0x10)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone3(&(0x7f000000c340)={0xa802100, 0x0, 0x0, 0x0, {0x2e}, 0x0, 0x0, 0x0, &(0x7f0000000340)=[0x0], 0x1}, 0x58)
syz_open_dev$tty1(0xc, 0x4, 0x1)
socket$nl_netfilter(0x10, 0x3, 0xc)

0s ago: executing program 2 (id=4491):
mkdirat(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x158)
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB='nr_inodes=1'])
lsetxattr$trusted_overlay_opaque(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0, 0x2)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
prlimit64(0x0, 0xe, 0x0, 0x0)
r1 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r1, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="e00000027fa80a010100000004"], 0x57)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=@newlink={0x28, 0x10, 0x1, 0x70bd25, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x40938, 0x3}, [@IFLA_GROUP={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x68010}, 0x0)
setsockopt$inet_mreqsrc(r1, 0x0, 0x28, 0x0, 0x0)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
fcntl$setownex(r5, 0xf, &(0x7f0000000140)={0x2, r3})
sendmmsg$unix(r4, &(0x7f0000011500)=[{{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000000)="11", 0x1}], 0x1, 0x0, 0x0, 0x4004040}}], 0x1, 0x40015)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r6, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000780)=ANY=[@ANYBLOB="540100001a0001000000000000000000fe800000000000000000000000000000ac1414bb00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000100000000320000007f0000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003cff4ce905b2f1edbfa9cfbcc45109000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000fc00000000480002006374722d73657270656e742d61767832000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001c001700"/279], 0x154}}, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$F2FS_IOC_FLUSH_DEVICE(0xffffffffffffffff, 0x4008f50a, 0x0)
r7 = socket$nl_audit(0x10, 0x3, 0x9)
ftruncate(r7, 0x685)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0x541b, &(0x7f0000000040)={<r8=>0xffffffffffffffff, 0x1})
close_range(r8, 0xffffffffffffffff, 0x0)

kernel console output (not intermixed with test programs):

htness: 128
[ 1237.134743][T20664] Sensor A: Contrast: 128
[ 1237.136291][T20664] Sensor A: Hue: 0
[ 1237.137619][T20664] Sensor A: Saturation: 128
[ 1237.139123][T20664] Sensor A: Pixel Rate: 160000000
[ 1237.140909][T20664] Sensor A: Horizontal Blanking: 800
[ 1237.142593][T20664] Sensor A: Vertical Blanking: 3223
[ 1237.144287][T20664] Sensor A: ==================  END STATUS  ==================
[ 1237.285587][T20667] comedi comedi3: comedi_test: 10 microvolt, 2046 microsecond waveform attached
[ 1237.703136][T20654] ceph: No mds server is up or the cluster is laggy
[ 1237.717198][ T1347] libceph: connect (1)[c::]:6789 error -101
[ 1237.722063][ T1347] libceph: mon0 (1)[c::]:6789 connect error
[ 1238.194510][   T40] audit: type=1326 audit(1779403892.208:3644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20670 comm="syz.5.3610" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fe8f7c code=0x0
[ 1239.112347][T20687] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1240.076906][T20701] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[ 1241.049114][T20706] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[ 1242.734581][T20725] binder: 20718:20725 ioctl c0285840 80000000 returned -22
[ 1242.880310][T20714] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1243.273693][T20714] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1243.557450][T20714] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1243.640993][   T40] audit: type=1326 audit(1779403897.230:3645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20728 comm="syz.1.3626" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f74f7c code=0x0
[ 1243.745167][T20736] rdma_rxe: rxe_newlink: failed to add gre0
[ 1243.763703][T20714] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1243.894820][T20736] 8021q: adding VLAN 0 to HW filter on device bond2
[ 1243.911978][T20736] 8021q: adding VLAN 0 to HW filter on device eth0
[ 1243.921024][T20736] 8021q: adding VLAN 0 to HW filter on device eth1
[ 1243.959267][T20736] 8021q: adding VLAN 0 to HW filter on device eth2
[ 1243.986862][T20736] 8021q: adding VLAN 0 to HW filter on device eth3
[ 1243.997726][T20736] 8021q: adding VLAN 0 to HW filter on device bond3
[ 1244.140412][T18551] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1244.169572][T18551] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1244.194333][   T46] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1244.214784][   T46] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1246.726177][T20765] binder: 20764:20765 ioctl c0285840 80000000 returned -22
[ 1248.207057][T20785] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3645'.
[ 1249.573176][T20799] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[ 1250.671406][T20813] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1250.716022][T20815] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[ 1250.783156][T20813] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1250.859505][T20813] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1250.934281][T20813] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1251.004811][   T46] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1251.017956][ T1157] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1251.026935][ T1157] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1251.046311][ T1157] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1251.757485][T20835] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3659'.
[ 1252.056510][T20836] bond2: Unable to set down delay as MII monitoring is disabled
[ 1252.066915][T20836] bond2 (unregistering): Released all slaves
[ 1252.601447][T20848] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1255.262506][T20873] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3673'.
[ 1255.814913][T20877] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(5)
[ 1255.817232][T20877] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1255.826523][T20877] vhci_hcd vhci_hcd.0: Device attached
[ 1255.850207][T20874] bond6: Unable to set down delay as MII monitoring is disabled
[ 1255.862217][T20874] bond6 (unregistering): Released all slaves
[ 1256.116828][ T7095] usb 48-1: SetAddress Request (6) to port 0
[ 1256.118855][ T7095] usb 48-1: new SuperSpeed USB device number 6 using vhci_hcd
[ 1256.214272][T20881] vhci_hcd: connection reset by peer
[ 1256.219799][ T1164] vhci_hcd vhci_hcd.5: stop threads
[ 1256.221941][ T1164] vhci_hcd vhci_hcd.5: release socket
[ 1256.224154][ T1164] vhci_hcd vhci_hcd.5: disconnect device
[ 1257.260104][T20903] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3680'.
[ 1258.659026][T20913] binder: 20911:20913 ioctl c0285840 80000000 returned -22
[ 1259.876937][T20926] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3686'.
[ 1260.249723][T20928] bond2: Unable to set down delay as MII monitoring is disabled
[ 1260.261225][T20928] bond2 (unregistering): Released all slaves
[ 1261.586989][ T7095] usb 48-1: device descriptor read/8, error -110
[ 1262.290479][ T7095] usb usb48-port1: attempt power cycle
[ 1263.451727][ T7095] usb usb48-port1: unable to enumerate USB device
[ 1263.911107][T20968] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(6)
[ 1263.911173][T20968] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1263.911377][T20968] vhci_hcd vhci_hcd.0: Device attached
[ 1263.950438][   T40] audit: type=1804 audit(1779403915.962:3646): pid=20971 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.3697" name="bus" dev="ramfs" ino=72045 res=1 errno=0
[ 1263.976252][   T40] audit: type=1804 audit(1779403915.981:3647): pid=20971 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.3697" name="bus" dev="ramfs" ino=72045 res=1 errno=0
[ 1264.240885][ T1347] usb 48-1: SetAddress Request (10) to port 0
[ 1264.243306][ T1347] usb 48-1: new SuperSpeed USB device number 10 using vhci_hcd
[ 1264.297671][T20969] vhci_hcd: connection reset by peer
[ 1264.299940][   T46] vhci_hcd vhci_hcd.5: stop threads
[ 1264.303763][   T46] vhci_hcd vhci_hcd.5: release socket
[ 1264.305934][   T46] vhci_hcd vhci_hcd.5: disconnect device
[ 1264.709510][T20981] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3698'.
[ 1264.715167][T20981] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3698'.
[ 1264.719977][T20981] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3698'.
[ 1264.724031][T20981] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3698'.
[ 1264.728412][T20981] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3698'.
[ 1264.732640][T20981] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3698'.
[ 1265.207636][   T40] audit: type=1326 audit(1779403917.144:3648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20989 comm="syz.4.3702" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1265.220087][   T40] audit: type=1326 audit(1779403917.144:3649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20989 comm="syz.4.3702" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1265.232068][   T40] audit: type=1326 audit(1779403917.144:3650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20989 comm="syz.4.3702" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1265.241277][   T40] audit: type=1326 audit(1779403917.144:3651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20989 comm="syz.4.3702" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1265.249686][   T40] audit: type=1326 audit(1779403917.144:3652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20989 comm="syz.4.3702" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1265.277931][   T40] audit: type=1326 audit(1779403917.144:3653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20989 comm="syz.4.3702" exe="/syz-executor" sig=0 arch=40000003 syscall=362 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1265.284402][T20990] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[ 1265.296754][   T40] audit: type=1326 audit(1779403917.144:3654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20989 comm="syz.4.3702" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1265.319048][   T40] audit: type=1326 audit(1779403917.144:3655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20989 comm="syz.4.3702" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1268.762034][T21045] block nbd0: server does not support multiple connections per device.
[ 1268.807899][T21041] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3713'.
[ 1268.818390][T21045] block nbd0: shutting down sockets
[ 1268.852516][T21049] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3713'.
[ 1269.133012][T21049] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3713'.
[ 1269.454494][T21049] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3713'.
[ 1270.057629][ T1347] usb 48-1: device descriptor read/8, error -110
[ 1270.114411][T21051] gre0 speed is unknown, defaulting to 1000
[ 1270.496913][ T1347] usb usb48-port1: attempt power cycle
[ 1270.857430][T21073] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3719'.
[ 1271.117248][ T1347] usb usb48-port1: unable to enumerate USB device
[ 1273.025965][T21098] x_tables: ip6_tables: SYNPROXY target: used from hooks PREROUTING, but only usable from INPUT/FORWARD
[ 1273.392092][T21102] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3725'.
[ 1274.141096][T21112] Can't find a SQUASHFS superblock on nullb0
[ 1274.850193][   T50] libceph: connect (1)[c::]:6789 error -99
[ 1274.852357][   T50] libceph: mon0 (1)[c::]:6789 connect error
[ 1274.910303][T21120] ceph: No mds server is up or the cluster is laggy
[ 1275.029540][ T5747] Bluetooth: hci2: command 0x1003 tx timeout
[ 1275.064964][T10712] Bluetooth: hci2: Opcode 0x1003 failed: -110
[ 1275.264136][T21127] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3733'.
[ 1276.836879][T21149] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3736'.
[ 1276.862591][T21149] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3736'.
[ 1276.878937][T21149] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3736'.
[ 1276.927230][T21149] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3736'.
[ 1276.942232][T21149] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3736'.
[ 1277.688312][T21155] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[ 1278.613869][T21163] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[ 1278.797815][T21167] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[ 1278.799938][T21167] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1278.805814][T21167] vhci_hcd vhci_hcd.0: Device attached
[ 1279.135134][   T50] usb 46-1: SetAddress Request (7) to port 0
[ 1279.151406][   T50] usb 46-1: new SuperSpeed USB device number 7 using vhci_hcd
[ 1279.797040][T21168] vhci_hcd: connection reset by peer
[ 1279.802218][ T1164] vhci_hcd vhci_hcd.4: stop threads
[ 1279.804855][ T1164] vhci_hcd vhci_hcd.4: release socket
[ 1279.808535][ T1164] vhci_hcd vhci_hcd.4: disconnect device
[ 1280.457225][T21179] Sensor A: =================  START STATUS  =================
[ 1280.460614][T21179] Sensor A: Test Pattern: 75% Colorbar
[ 1280.463456][T21179] Sensor A: Show Information: All
[ 1280.465754][T21179] Sensor A: Vertical Flip: false
[ 1280.468205][T21179] Sensor A: Horizontal Flip: false
[ 1280.470469][T21179] Sensor A: Brightness: 128
[ 1280.472412][T21179] Sensor A: Contrast: 128
[ 1280.474255][T21179] Sensor A: Hue: 0
[ 1280.475898][T21179] Sensor A: Saturation: 128
[ 1280.478131][T21179] Sensor A: Pixel Rate: 160000000
[ 1280.480618][T21179] Sensor A: Horizontal Blanking: 800
[ 1280.483379][T21179] Sensor A: Vertical Blanking: 3223
[ 1280.485836][T21179] Sensor A: ==================  END STATUS  ==================
[ 1280.664433][T21185] comedi comedi3: comedi_test: 10 microvolt, 2046 microsecond waveform attached
[ 1282.410432][T21198] binder: 21195:21198 ioctl c0285840 80000000 returned -22
[ 1283.538805][ T5748] libceph: connect (1)[c::]:6789 error -101
[ 1283.540824][ T5748] libceph: mon0 (1)[c::]:6789 connect error
[ 1283.595939][T21205] ceph: No mds server is up or the cluster is laggy
[ 1283.670392][T21209] ieee802154 phy0 wpan0: encryption failed: -22
[ 1283.880204][T21215] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[ 1284.638302][   T50] usb 46-1: device descriptor read/8, error -110
[ 1284.673451][   T40] kauditd_printk_skb: 40 callbacks suppressed
[ 1284.673549][   T40] audit: type=1804 audit(1779403935.109:3696): pid=21226 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.3758" name="bus" dev="ramfs" ino=72324 res=1 errno=0
[ 1284.707658][   T40] audit: type=1804 audit(1779403935.128:3697): pid=21226 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.5.3758" name="bus" dev="ramfs" ino=72324 res=1 errno=0
[ 1285.242932][   T50] usb usb46-port1: attempt power cycle
[ 1285.267476][   T40] audit: type=1326 audit(1779403935.636:3698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21229 comm="syz.1.3759" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f74f7c code=0x0
[ 1286.109765][   T50] usb usb46-port1: unable to enumerate USB device
[ 1287.889498][T21253] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3762'.
[ 1287.991397][T21254] netlink: 'syz.5.3774': attribute type 1 has an invalid length.
[ 1287.993912][T21254] netlink: 'syz.5.3774': attribute type 2 has an invalid length.
[ 1288.077142][T21256] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[ 1289.515913][T21271] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[ 1290.449722][T21279] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1292.801413][T21284] ptrace attach of ""[21288] was attempted by "/syz-executor exec"[21284]
[ 1292.827761][   T40] audit: type=1800 audit(1779403942.643:3699): pid=21284 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3781" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[ 1292.861279][T21284] debugfs: '1ùà^!‚lü1Ü*ø$pOcÚÉ”ÎÜr$åG—•µ�t:‹u^ù�½ü=¨˜%}帙m¼“+P	ßc·_\Sê' already exists in 'ieee80211'
[ 1293.388060][T21290] overlayfs: failed to resolve '/ile0': -2
[ 1293.833594][T21307] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[ 1295.303652][T21325] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[ 1295.881304][ T1432] ieee802154 phy0 wpan0: encryption failed: -22
[ 1295.884114][ T1432] ieee802154 phy1 wpan1: encryption failed: -22
[ 1296.178448][T21330] nvme_fabrics: unknown parameter or missing value 'syz0' in ctrl creation request
[ 1296.221972][   T40] audit: type=1326 audit(1779403945.772:3700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21329 comm="syz.2.3785" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3f7c code=0x7ffc0000
[ 1296.238951][   T40] audit: type=1326 audit(1779403945.772:3701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21329 comm="syz.2.3785" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3f7c code=0x7ffc0000
[ 1296.255239][   T40] audit: type=1326 audit(1779403945.772:3702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21329 comm="syz.2.3785" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3f7c code=0x7ffc0000
[ 1296.278162][   T40] audit: type=1326 audit(1779403945.772:3703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21329 comm="syz.2.3785" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3f7c code=0x7ffc0000
[ 1296.290343][   T40] audit: type=1326 audit(1779403945.772:3704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21329 comm="syz.2.3785" exe="/syz-executor" sig=0 arch=40000003 syscall=360 compat=1 ip=0xf7fc3f7c code=0x7ffc0000
[ 1296.304447][   T40] audit: type=1326 audit(1779403945.772:3705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21329 comm="syz.2.3785" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3f7c code=0x7ffc0000
[ 1296.319177][   T40] audit: type=1326 audit(1779403945.772:3706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21329 comm="syz.2.3785" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3f7c code=0x7ffc0000
[ 1296.326861][   T40] audit: type=1326 audit(1779403945.772:3707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21329 comm="syz.2.3785" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7fc3f7c code=0x7ffc0000
[ 1296.424938][T21330] kvm: kvm [21329]: vcpu0, guest rIP: 0x1a3 Unhandled WRMSR(0xc2) = 0x8000
[ 1296.439906][T21330] kvm: kvm [21329]: vcpu0, guest rIP: 0x1a3 Unhandled WRMSR(0xc2) = 0x8000
[ 1296.470421][T21330] kvm: kvm [21329]: vcpu0, guest rIP: 0x1a3 Unhandled WRMSR(0xc2) = 0x8000
[ 1296.478030][T21330] kvm: kvm [21329]: vcpu0, guest rIP: 0x1a3 Unhandled WRMSR(0xc2) = 0x8000
[ 1296.532668][T21330] kvm: kvm [21329]: vcpu0, guest rIP: 0x1a3 Unhandled WRMSR(0xc2) = 0x8000
[ 1296.540494][   T40] audit: type=1326 audit(1779403946.068:3708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21329 comm="syz.2.3785" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3f7c code=0x7ffc0000
[ 1298.547966][T21351] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[ 1298.630346][T21356] Cannot find add_set index 2 as target
[ 1298.637360][T21358] binder: 21352:21358 ioctl c0285840 80000000 returned -22
[ 1299.671583][T21366] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[ 1299.696222][T21368] Sensor A: =================  START STATUS  =================
[ 1299.699324][T21368] Sensor A: Test Pattern: 75% Colorbar
[ 1299.702425][T21368] Sensor A: Show Information: All
[ 1299.704878][T21368] Sensor A: Vertical Flip: false
[ 1299.710272][T21368] Sensor A: Horizontal Flip: false
[ 1299.712965][T21368] Sensor A: Brightness: 128
[ 1299.716492][T21368] Sensor A: Contrast: 128
[ 1299.718592][T21368] Sensor A: Hue: 0
[ 1299.720549][T21368] Sensor A: Saturation: 128
[ 1299.722641][T21368] Sensor A: Pixel Rate: 160000000
[ 1299.724712][T21368] Sensor A: Horizontal Blanking: 800
[ 1299.730851][T21368] Sensor A: Vertical Blanking: 3223
[ 1299.737519][T21368] Sensor A: ==================  END STATUS  ==================
[ 1299.832847][T21370] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3793'.
[ 1300.809884][T21379] comedi comedi3: comedi_test: 10 microvolt, 2046 microsecond waveform attached
[ 1300.959751][T21385] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[ 1300.965349][T21383] netlink: 'syz.1.3799': attribute type 1 has an invalid length.
[ 1301.011879][T21383] bond6: entered promiscuous mode
[ 1301.021445][T21383] 8021q: adding VLAN 0 to HW filter on device bond6
[ 1301.060240][T21383] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3799'.
[ 1301.063074][T21383] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3799'.
[ 1301.093804][T21383] bond6: (slave bridge2): making interface the new active one
[ 1301.096975][T21383] bridge2: entered promiscuous mode
[ 1301.101229][T21383] bond6: (slave bridge2): Enslaving as an active interface with an up link
[ 1301.146353][T21393] overlayfs: overlapping lowerdir path
[ 1303.452438][T21404] netlink: 'syz.4.3805': attribute type 1 has an invalid length.
[ 1303.455120][T21404] netlink: 'syz.4.3805': attribute type 2 has an invalid length.
[ 1303.466728][T21408] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[ 1303.537375][T21409] binder: 21405:21409 ioctl c0285840 80000000 returned -22
[ 1304.622008][T21419] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[ 1304.750178][T21425] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3809'.
[ 1305.272069][T15139] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[ 1305.840495][T15139] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1305.854605][T15139] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1305.869325][T15139] usb 6-1: Product: syz
[ 1305.875264][T15139] usb 6-1: Manufacturer: syz
[ 1305.882565][T15139] usb 6-1: SerialNumber: syz
[ 1306.008078][T15139] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1306.122120][ T9826] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1306.471757][   T40] kauditd_printk_skb: 1 callbacks suppressed
[ 1306.471798][   T40] audit: type=1326 audit(1779403955.235:3710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21438 comm="syz.4.3814" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf702ef7c code=0x0
[ 1307.275169][T21450] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3807'.
[ 1307.340751][ T9826] ath9k_htc 6-1:1.0: ath9k_htc: Target is unresponsive
[ 1307.343780][ T9826] ath9k_htc: Failed to initialize the device
[ 1307.375308][ T9826] usb 6-1: ath9k_htc: USB layer deinitialized
[ 1308.832336][ T9826] usb 6-1: USB disconnect, device number 13
[ 1308.882839][T21457] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[ 1309.815482][T21462] netlink: 'syz.1.3819': attribute type 1 has an invalid length.
[ 1309.818986][T21462] netlink: 'syz.1.3819': attribute type 2 has an invalid length.
[ 1309.836291][T21465] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[ 1311.045788][T21478] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[ 1311.457453][T21485] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5)
[ 1311.457484][T21485] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1311.458375][T21485] vhci_hcd vhci_hcd.0: Device attached
[ 1311.760599][   T50] usb 46-1: SetAddress Request (11) to port 0
[ 1311.760685][   T50] usb 46-1: new SuperSpeed USB device number 11 using vhci_hcd
[ 1312.384970][T21495] binder: 21492:21495 ioctl c0285840 80000000 returned -22
[ 1312.391095][   T40] audit: type=1326 audit(1779403960.645:3711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21490 comm="syz.5.3825" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fe8f7c code=0x0
[ 1313.403879][T21502] binder: 21500:21502 ioctl c0285840 80000000 returned -22
[ 1313.859139][T21486] vhci_hcd: connection reset by peer
[ 1313.867426][ T1164] vhci_hcd vhci_hcd.4: stop threads
[ 1313.870235][ T1164] vhci_hcd vhci_hcd.4: release socket
[ 1313.872098][ T1164] vhci_hcd vhci_hcd.4: disconnect device
[ 1313.938950][T21507] SQUASHFS error: Failed to read block 0x0: -5
[ 1313.941486][T21507] unable to read squashfs_super_block
[ 1315.036613][T21515] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[ 1315.891143][T21523] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[ 1315.897700][T21521] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[ 1316.068865][T21529] overlayfs: overlapping lowerdir path
[ 1317.018388][T21537] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[ 1317.053753][T21538] binder: 21532:21538 ioctl c0285840 80000000 returned -22
[ 1317.228108][   T50] usb 46-1: device descriptor read/8, error -110
[ 1317.474289][   T40] audit: type=1326 audit(1779403965.399:3712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21534 comm="syz.5.3838" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe8f7c code=0x7ffc0000
[ 1317.481366][   T40] audit: type=1326 audit(1779403965.399:3713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21534 comm="syz.5.3838" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe8f7c code=0x7ffc0000
[ 1317.698289][   T50] usb usb46-port1: attempt power cycle
[ 1318.021281][T21553] SQUASHFS error: Failed to read block 0x0: -5
[ 1318.038894][T21553] unable to read squashfs_super_block
[ 1318.336224][   T50] usb usb46-port1: unable to enumerate USB device
[ 1318.352014][T21557] syzkaller0: entered promiscuous mode
[ 1318.354378][T21557] syzkaller0: entered allmulticast mode
[ 1318.534224][T21565] binder: 21563:21565 ioctl c0285840 80000000 returned -22
[ 1320.475190][T21586] binder: 21581:21586 ioctl c0285840 80000000 returned -22
[ 1320.562284][   T40] audit: type=1326 audit(1779403968.243:3714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21579 comm="syz.2.3846" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fc3f7c code=0x0
[ 1321.733586][T21590] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[ 1322.236752][T21597] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[ 1323.110065][T21605] syzkaller0: entered promiscuous mode
[ 1323.111842][T21605] syzkaller0: entered allmulticast mode
[ 1324.225097][T21620] SQUASHFS error: Failed to read block 0x0: -5
[ 1324.228684][T21620] unable to read squashfs_super_block
[ 1324.809599][   T40] audit: type=1804 audit(1779403971.437:3715): pid=21616 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.3857" name="bus" dev="ramfs" ino=73524 res=1 errno=0
[ 1324.972137][   T40] audit: type=1804 audit(1779403971.437:3716): pid=21616 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.3857" name="bus" dev="ramfs" ino=73524 res=1 errno=0
[ 1326.983231][T21640] netlink: 'syz.4.3861': attribute type 1 has an invalid length.
[ 1327.011721][T21640] bond4: entered promiscuous mode
[ 1327.015159][T21640] 8021q: adding VLAN 0 to HW filter on device bond4
[ 1327.033272][T21640] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3861'.
[ 1327.037162][T21640] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3861'.
[ 1327.132044][T21640] bond4: (slave bridge1): making interface the new active one
[ 1327.135183][T21640] bridge1: entered promiscuous mode
[ 1327.204738][T21640] bond4: (slave bridge1): Enslaving as an active interface with an up link
[ 1328.181311][ T5748] usb 10-1: new high-speed USB device number 6 using dummy_hcd
[ 1328.366914][ T5748] usb 10-1: config 0 has no interfaces?
[ 1328.368960][ T5748] usb 10-1: New USB device found, idVendor=06cd, idProduct=010f, bcdDevice=d5.1b
[ 1328.372039][ T5748] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1328.378745][ T5748] usb 10-1: config 0 descriptor??
[ 1328.644258][ T9826] usb 10-1: USB disconnect, device number 6
[ 1328.810008][   T40] audit: type=1326 audit(1779403975.869:3717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21655 comm="syz.4.3866" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf702ef7c code=0x0
[ 1329.863703][T21680] SQUASHFS error: Failed to read block 0x0: -5
[ 1329.865892][T21680] unable to read squashfs_super_block
[ 1333.263047][T21715] overlayfs: missing 'lowerdir'
[ 1335.078042][   T40] audit: type=1326 audit(1779403981.639:3718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21723 comm="syz.2.3880" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3f7c code=0x7ffc0000
[ 1335.105631][   T40] audit: type=1326 audit(1779403981.639:3719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21723 comm="syz.2.3880" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3f7c code=0x7ffc0000
[ 1335.208166][   T40] audit: type=1326 audit(1779403981.648:3720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21723 comm="syz.2.3880" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fc3f7c code=0x7ffc0000
[ 1335.222723][   T40] audit: type=1326 audit(1779403981.648:3721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21723 comm="syz.2.3880" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3f7c code=0x7ffc0000
[ 1335.234491][   T40] audit: type=1326 audit(1779403981.648:3722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21723 comm="syz.2.3880" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3f7c code=0x7ffc0000
[ 1335.241464][   T40] audit: type=1326 audit(1779403981.648:3723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21723 comm="syz.2.3880" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7fc3f7c code=0x7ffc0000
[ 1335.265981][   T40] audit: type=1326 audit(1779403981.722:3724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21723 comm="syz.2.3880" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3f7c code=0x7ffc0000
[ 1335.278196][   T40] audit: type=1326 audit(1779403981.722:3725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21723 comm="syz.2.3880" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3f7c code=0x7ffc0000
[ 1335.320686][    C2] hpet: Lost 1 RTC interrupts
[ 1335.782335][T21744] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3883'.
[ 1335.922007][T21750] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1335.985050][T21751] team0: Mode changed to "activebackup"
[ 1336.070249][T21750] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1336.176146][T21750] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1336.253823][T21750] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1336.480414][ T6445] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1336.487491][T21756] SQUASHFS error: Failed to read block 0x0: -5
[ 1336.491808][T21756] unable to read squashfs_super_block
[ 1336.519483][ T1157] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1336.558726][ T6445] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1336.959315][   T46] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1337.815346][T21770] lo speed is unknown, defaulting to 1000
[ 1337.817951][T21770] lo speed is unknown, defaulting to 1000
[ 1337.836116][T21770] lo speed is unknown, defaulting to 1000
[ 1337.857773][T21770] smbdirect: ib_dev[syz2]: added: RNIC max_fast_reg_page_list_len=256 device_cap_flags=0x200000 kernel_cap_flags=0x10 page_size_cap=0x1000
[ 1337.862854][T21770] smbdirect: ib_dev[syz2]: num_ports=1 max_qp_rd_atom=128 max_qp_init_rd_atom=128 max_sgl_rd=0 max_sge_rd=1 max_cqe=3276800 max_qp_wr=32768 max_send_sge=6 max_recv_sge=6
[ 1337.868969][T21770] smbdirect: ib_dev[syz2]PORT[1]: iwarp=1 ib=0 roce=0 v1=0 v2=0 core_cap_flags=0x400008
[ 1338.040413][T21770] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[ 1338.305826][T21770] lo speed is unknown, defaulting to 1000
[ 1338.316375][T21770] lo speed is unknown, defaulting to 1000
[ 1338.323552][T21770] lo speed is unknown, defaulting to 1000
[ 1338.330369][T21770] lo speed is unknown, defaulting to 1000
[ 1340.143683][T21800] gre0 speed is unknown, defaulting to 1000
[ 1340.416309][T21800] lo speed is unknown, defaulting to 1000
[ 1340.960377][T21810] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[ 1341.266629][T21813] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3895'.
[ 1341.721445][   T40] audit: type=1326 audit(1779403987.409:3726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21806 comm="syz.4.3893" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1341.731796][   T40] audit: type=1326 audit(1779403987.409:3727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21806 comm="syz.4.3893" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1341.739660][   T40] audit: type=1326 audit(1779403987.418:3728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21806 comm="syz.4.3893" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1341.747547][   T40] audit: type=1326 audit(1779403987.418:3729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21806 comm="syz.4.3893" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1341.755486][   T40] audit: type=1326 audit(1779403987.418:3730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21806 comm="syz.4.3893" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1341.764218][   T40] audit: type=1326 audit(1779403987.427:3731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21806 comm="syz.4.3893" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1341.773009][   T40] audit: type=1326 audit(1779403987.787:3732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21806 comm="syz.4.3893" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1341.781470][   T40] audit: type=1326 audit(1779403987.787:3733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21806 comm="syz.4.3893" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1341.960954][    C2] hpet: Lost 1 RTC interrupts
[ 1342.339207][T21826] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1342.719362][T21826] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1343.189952][T21826] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1343.283519][T21826] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1343.304971][T21833] Invalid argument reading file caps for ./file0
[ 1343.380742][ T6445] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1343.392405][ T6445] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1343.405638][ T6445] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1343.414373][ T1164] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1343.553729][T21845] binder: 21841:21845 ioctl c0285840 80000000 returned -22
[ 1343.831156][T21851] x_tables: duplicate underflow at hook 1
[ 1343.909460][T21851] hub 8-0:1.0: USB hub found
[ 1343.912751][T21851] hub 8-0:1.0: 1 port detected
[ 1344.432318][T21854] netlink: 48 bytes leftover after parsing attributes in process `syz.4.3906'.
[ 1344.477671][   T40] audit: type=1326 audit(1779403990.326:3734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21853 comm="syz.4.3906" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf702ef7c code=0x0
[ 1345.940989][T21872] pim6reg: entered allmulticast mode
[ 1346.091555][T21865] team0: entered allmulticast mode
[ 1346.102417][T21865] team0: left allmulticast mode
[ 1346.109861][T21865] pim6reg: left allmulticast mode
[ 1346.866461][T21880] fuse: Unknown parameter '0x0000000000000004'
[ 1347.092903][T21890] netlink: 1010 bytes leftover after parsing attributes in process `syz.2.3917'.
[ 1347.096854][T21890] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[ 1348.407839][T21902] syz.4.3920: vmalloc error: size 34359742464, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 1348.417445][T21902] CPU: 2 UID: 0 PID: 21902 Comm: syz.4.3920 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1348.417480][T21902] Tainted: [L]=SOFTLOCKUP
[ 1348.417488][T21902] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1348.417522][T21902] Call Trace:
[ 1348.417532][T21902]  <TASK>
[ 1348.417541][T21902]  dump_stack_lvl+0x100/0x190
[ 1348.417636][T21902]  warn_alloc.cold+0x95/0x1c1
[ 1348.417717][T21902]  ? __pfx_warn_alloc+0x10/0x10
[ 1348.417803][T21902]  ? stack_depot_save_flags+0x27/0x9d0
[ 1348.418032][T21902]  ? __lock_acquire+0x4a5/0x2630
[ 1348.418061][T21902]  ? xskq_create+0xfb/0x1d0
[ 1348.418152][T21902]  __vmalloc_node_range_noprof+0x136c/0x1630
[ 1348.418181][T21902]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1348.418215][T21902]  ? xskq_create+0xfb/0x1d0
[ 1348.418246][T21902]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1348.418282][T21902]  ? xskq_create+0xfb/0x1d0
[ 1348.418306][T21902]  vmalloc_user_noprof+0x9e/0xe0
[ 1348.418331][T21902]  ? xskq_create+0xfb/0x1d0
[ 1348.418356][T21902]  xskq_create+0xfb/0x1d0
[ 1348.418381][T21902]  xsk_setsockopt+0x56f/0xab0
[ 1348.418406][T21902]  ? __pfx_xsk_setsockopt+0x10/0x10
[ 1348.418428][T21902]  ? find_held_lock+0x2b/0x80
[ 1348.418457][T21902]  ? aa_sock_opt_perm+0xfe/0x1b0
[ 1348.418531][T21902]  ? __pfx_xsk_setsockopt+0x10/0x10
[ 1348.418559][T21902]  do_sock_setsockopt+0xf3/0x1d0
[ 1348.418690][T21902]  __sys_setsockopt+0x119/0x190
[ 1348.418720][T21902]  __ia32_sys_setsockopt+0xbc/0x160
[ 1348.418745][T21902]  ? __do_fast_syscall_32+0x98/0x950
[ 1348.418765][T21902]  ? lockdep_hardirqs_on+0x78/0x100
[ 1348.418793][T21902]  __do_fast_syscall_32+0xe7/0x950
[ 1348.418810][T21902]  ? lockdep_hardirqs_on+0x78/0x100
[ 1348.418841][T21902]  do_fast_syscall_32+0x32/0x70
[ 1348.418859][T21902]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1348.418889][T21902] RIP: 0023:0xf702ef7c
[ 1348.418906][T21902] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 1348.418925][T21902] RSP: 002b:00000000f541d50c EFLAGS: 00000292 ORIG_RAX: 000000000000016e
[ 1348.418946][T21902] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000000011b
[ 1348.418960][T21902] RDX: 0000000000000002 RSI: 0000000080000080 RDI: 000000000000001c
[ 1348.418973][T21902] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1348.418985][T21902] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 1348.418998][T21902] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1348.419023][T21902]  </TASK>
[ 1348.419202][T21902] Mem-Info:
[ 1348.546345][T21902] active_anon:7231 inactive_anon:5353 isolated_anon:0
[ 1348.546345][T21902]  active_file:5404 inactive_file:15808 isolated_file:0
[ 1348.546345][T21902]  unevictable:1768 dirty:467 writeback:0
[ 1348.546345][T21902]  slab_reclaimable:6140 slab_unreclaimable:63063
[ 1348.546345][T21902]  mapped:29697 shmem:11668 pagetables:1550
[ 1348.546345][T21902]  sec_pagetables:320 bounce:0
[ 1348.546345][T21902]  kernel_misc_reclaimable:0
[ 1348.546345][T21902]  free:57435 free_pcp:8613 free_cma:0
[ 1348.569518][T21902] Node 0 active_anon:128kB inactive_anon:12kB active_file:172kB inactive_file:0kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:24kB dirty:4kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8428kB pagetables:1488kB sec_pagetables:1116kB all_unreclaimable? yes Balloon:0kB gpu_active:0kB gpu_reclaim:0kB
[ 1348.585059][T21902] Node 1 active_anon:28796kB inactive_anon:21400kB active_file:21444kB inactive_file:63232kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:118764kB dirty:1864kB writeback:0kB shmem:43136kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:6136kB pagetables:4712kB sec_pagetables:164kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB
[ 1348.600632][T21902] Node 0 DMA free:2340kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1348.614349][T21902] lowmem_reserve[]: 0 285 285 285 285
[ 1348.618034][T21902] Node 0 DMA32 free:32584kB boost:16384kB min:29472kB low:32744kB high:36016kB reserved_highatomic:0KB free_highatomic:0KB active_anon:128kB inactive_anon:12kB active_file:172kB inactive_file:0kB unevictable:3536kB writepending:4kB zspages:164kB present:1032196kB managed:292508kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1348.631747][T21902] lowmem_reserve[]: 0 0 0 0 0
[ 1348.637879][T21902] Node 1 DMA32 free:194816kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:28796kB inactive_anon:21400kB active_file:21444kB inactive_file:63232kB unevictable:3536kB writepending:1864kB zspages:5076kB present:1048432kB managed:948212kB mlocked:0kB bounce:0kB free_pcp:34464kB local_pcp:2348kB free_cma:0kB
[ 1348.702813][T21902] lowmem_reserve[]: 0 0 0 0 0
[ 1348.705647][T21902] Node 0 DMA: 23*4kB (UM) 7*8kB (UM) 7*16kB (UM) 9*32kB (UM) 4*64kB (UM) 2*128kB (M) 1*256kB (M) 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 2340kB
[ 1348.714173][T21902] Node 0 DMA32: 906*4kB (UME) 442*8kB (UME) 223*16kB (UME) 249*32kB (UME) 87*64kB (UME) 37*128kB (UME) 6*256kB (UME) 4*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 32584kB
[ 1348.724448][T21902] Node 1 DMA32: 1542*4kB (UME) 2609*8kB (UME) 2062*16kB (UME) 96*32kB (UME) 70*64kB (UME) 16*128kB (UME) 129*256kB (UME) 122*512kB (UM) 25*1024kB (UM) 2*2048kB (U) 0*4096kB = 194816kB
[ 1348.736288][T21902] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1348.740809][T21902] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1348.746186][T21902] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1348.751262][T21902] Node 1 hugepages_total=5 hugepages_free=0 hugepages_surp=1 hugepages_size=2048kB
[ 1348.755785][T21902] 34373 total pagecache pages
[ 1348.758786][T21902] 1497 pages in swap cache
[ 1348.761215][T21902] Free swap  = 60692kB
[ 1348.763808][T21902] Total swap = 124996kB
[ 1348.766111][T21902] 524155 pages RAM
[ 1348.768120][T21902] 0 pages HighMem/MovableOnly
[ 1348.770901][T21902] 210135 pages reserved
[ 1348.774110][T21902] 0 pages cma reserved
[ 1349.422718][ T1347] usb 10-1: new high-speed USB device number 7 using dummy_hcd
[ 1349.594261][ T1347] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1349.602396][ T1347] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1349.608826][ T1347] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1349.619346][ T1347] usb 10-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1349.625030][ T1347] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1349.651770][T21914] fuse: Unknown parameter '0x0000000000000003'
[ 1349.728276][ T1347] usb 10-1: config 0 descriptor??
[ 1349.924348][T21917] netlink: 1752 bytes leftover after parsing attributes in process `syz.2.3924'.
[ 1351.456448][   T40] kauditd_printk_skb: 11 callbacks suppressed
[ 1351.456467][   T40] audit: type=1326 audit(1779403996.770:3746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21905 comm="syz.5.3921" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fe8f7c code=0x0
[ 1351.680241][   T40] audit: type=1326 audit(1779403996.973:3747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21927 comm="syz.4.3927" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1351.693628][   T40] audit: type=1326 audit(1779403996.973:3748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21927 comm="syz.4.3927" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1351.703232][   T40] audit: type=1326 audit(1779403996.973:3749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21927 comm="syz.4.3927" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1351.712552][   T40] audit: type=1326 audit(1779403996.973:3750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21927 comm="syz.4.3927" exe="/syz-executor" sig=0 arch=40000003 syscall=360 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1351.721367][   T40] audit: type=1326 audit(1779403996.973:3751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21927 comm="syz.4.3927" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1351.730228][   T40] audit: type=1326 audit(1779403996.973:3752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21927 comm="syz.4.3927" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1351.738931][   T40] audit: type=1326 audit(1779403996.973:3753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21927 comm="syz.4.3927" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1352.515363][   T40] audit: type=1326 audit(1779403997.748:3754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21936 comm="syz.1.3930" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f74f7c code=0x0
[ 1352.621249][T21943] netlink: 124 bytes leftover after parsing attributes in process `syz.2.3929'.
[ 1352.868097][ T1347] usbhid 10-1:0.0: can't add hid device: -71
[ 1352.870938][ T1347] usbhid 10-1:0.0: probe with driver usbhid failed with error -71
[ 1352.893924][ T1347] usb 10-1: USB disconnect, device number 7
[ 1353.090914][T21953] nvme_fabrics: unknown parameter or missing value 'syz0' in ctrl creation request
[ 1353.177760][   T40] audit: type=1326 audit(1779403998.358:3755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21948 comm="syz.4.3932" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1353.208202][T21949] kvm: kvm [21948]: vcpu0, guest rIP: 0x1a3 Unhandled WRMSR(0xc2) = 0x8000
[ 1357.250475][   T40] kauditd_printk_skb: 14 callbacks suppressed
[ 1357.250492][   T40] audit: type=1326 audit(1779404002.115:3770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21988 comm="syz.2.3942" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fc3f7c code=0x0
[ 1358.389513][T21996] bridge3: entered promiscuous mode
[ 1358.391573][T21996] bridge3: entered allmulticast mode
[ 1358.737185][T22006] gre0 speed is unknown, defaulting to 1000
[ 1358.895943][T22006] lo speed is unknown, defaulting to 1000
[ 1359.685655][T22021] SQUASHFS error: Failed to read block 0x0: -5
[ 1359.689065][T22021] unable to read squashfs_super_block
[ 1362.370823][ T1432] ieee802154 phy0 wpan0: encryption failed: -22
[ 1362.373257][ T1432] ieee802154 phy1 wpan1: encryption failed: -22
[ 1362.895718][T22047] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(7)
[ 1362.898045][T22047] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1362.908797][T22047] vhci_hcd vhci_hcd.0: Device attached
[ 1363.383575][T22045] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[ 1363.386724][T22045] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1363.396123][ T1347] usb 48-1: SetAddress Request (14) to port 0
[ 1363.405533][ T1347] usb 48-1: new SuperSpeed USB device number 14 using vhci_hcd
[ 1363.528599][T22045] vhci_hcd vhci_hcd.0: Device attached
[ 1363.546168][T22048] vhci_hcd: connection reset by peer
[ 1363.549157][T18545] vhci_hcd vhci_hcd.5: stop threads
[ 1363.551737][T18545] vhci_hcd vhci_hcd.5: release socket
[ 1363.554326][T18545] vhci_hcd vhci_hcd.5: disconnect device
[ 1363.829105][   T50] usb 40-1: SetAddress Request (14) to port 0
[ 1363.831385][   T50] usb 40-1: new SuperSpeed USB device number 14 using vhci_hcd
[ 1364.424849][T22051] vhci_hcd: connection reset by peer
[ 1364.428134][T11321] vhci_hcd vhci_hcd.1: stop threads
[ 1364.430487][T11321] vhci_hcd vhci_hcd.1: release socket
[ 1364.433124][T11321] vhci_hcd vhci_hcd.1: disconnect device
[ 1365.339051][T22070] siw: device registration error -23
[ 1367.124640][T22085] overlayfs: missing 'lowerdir'
[ 1367.851605][   T29] IPVS: starting estimator thread 0...
[ 1367.956211][T22091] IPVS: using max 45 ests per chain, 108000 per kthread
[ 1368.963488][ T1347] usb 48-1: device descriptor read/8, error -110
[ 1370.203604][   T50] usb 40-1: device descriptor read/8, error -110
[ 1370.620376][ T1347] usb usb48-port1: attempt power cycle
[ 1370.883447][T22112] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5)
[ 1370.886240][T22112] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1370.890273][T22112] vhci_hcd vhci_hcd.0: Device attached
[ 1371.162048][   T50] usb usb40-port1: attempt power cycle
[ 1371.228561][ T1347] usb usb48-port1: unable to enumerate USB device
[ 1371.363840][   T29] usb 46-1: SetAddress Request (15) to port 0
[ 1371.376853][   T29] usb 46-1: new SuperSpeed USB device number 15 using vhci_hcd
[ 1371.841371][   T50] usb usb40-port1: unable to enumerate USB device
[ 1372.499719][T22127] siw: device registration error -23
[ 1373.117333][T22113] vhci_hcd: connection reset by peer
[ 1373.119603][ T1157] vhci_hcd vhci_hcd.4: stop threads
[ 1373.121917][ T1157] vhci_hcd vhci_hcd.4: release socket
[ 1373.124517][ T1157] vhci_hcd vhci_hcd.4: disconnect device
[ 1373.327743][T22132] SQUASHFS error: Failed to read block 0x0: -5
[ 1373.330272][T22132] unable to read squashfs_super_block
[ 1375.455832][T22181] netlink: 'syz.5.3978': attribute type 1 has an invalid length.
[ 1375.477612][T22181] bond2: entered promiscuous mode
[ 1375.480644][T22181] 8021q: adding VLAN 0 to HW filter on device bond2
[ 1375.506681][T22181] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3978'.
[ 1375.509797][T22181] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3978'.
[ 1375.535054][T22181] bond2: (slave bridge1): making interface the new active one
[ 1375.537510][T22181] bridge1: entered promiscuous mode
[ 1375.540750][T22181] bond2: (slave bridge1): Enslaving as an active interface with an up link
[ 1376.871493][   T29] usb 46-1: device descriptor read/8, error -110
[ 1377.391259][   T29] usb usb46-port1: attempt power cycle
[ 1377.887514][T22204] siw: device registration error -23
[ 1378.010207][T22205] bridge2: entered promiscuous mode
[ 1378.012790][T22205] bridge2: entered allmulticast mode
[ 1378.029845][   T29] usb usb46-port1: unable to enumerate USB device
[ 1378.376646][T22211] block nbd0: server does not support multiple connections per device.
[ 1378.388520][T22211] block nbd0: shutting down sockets
[ 1379.069142][   T40] audit: type=1326 audit(1779404022.259:3771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22216 comm="syz.2.3988" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3f7c code=0x7ffc0000
[ 1379.087436][   T40] audit: type=1326 audit(1779404022.259:3772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22216 comm="syz.2.3988" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3f7c code=0x7ffc0000
[ 1379.097408][   T40] audit: type=1326 audit(1779404022.269:3773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22216 comm="syz.2.3988" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3f7c code=0x7ffc0000
[ 1379.107539][   T40] audit: type=1326 audit(1779404022.269:3774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22216 comm="syz.2.3988" exe="/syz-executor" sig=0 arch=40000003 syscall=360 compat=1 ip=0xf7fc3f7c code=0x7ffc0000
[ 1379.116887][   T40] audit: type=1326 audit(1779404022.269:3775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22216 comm="syz.2.3988" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3f7c code=0x7ffc0000
[ 1379.126663][   T40] audit: type=1326 audit(1779404022.269:3776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22216 comm="syz.2.3988" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7fc3f7c code=0x7ffc0000
[ 1380.765171][   T40] audit: type=1326 audit(1779404023.736:3777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22228 comm="syz.5.3992" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fe8f7c code=0x0
[ 1381.792342][T22247] IPVS: stopping master sync thread 6750 ...
[ 1383.774183][T22262] syz.1.3998: vmalloc error: size 34359742464, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 1383.781118][T22262] CPU: 3 UID: 0 PID: 22262 Comm: syz.1.3998 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1383.781153][T22262] Tainted: [L]=SOFTLOCKUP
[ 1383.781161][T22262] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1383.781196][T22262] Call Trace:
[ 1383.781285][T22262]  <TASK>
[ 1383.781296][T22262]  dump_stack_lvl+0x100/0x190
[ 1383.781531][T22262]  warn_alloc.cold+0x95/0x1c1
[ 1383.781638][T22262]  ? __pfx_warn_alloc+0x10/0x10
[ 1383.781743][T22262]  ? stack_depot_save_flags+0x27/0x9d0
[ 1383.781871][T22262]  ? __lock_acquire+0x4a5/0x2630
[ 1383.781941][T22262]  ? xskq_create+0xfb/0x1d0
[ 1383.782020][T22262]  __vmalloc_node_range_noprof+0x136c/0x1630
[ 1383.782050][T22262]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1383.782086][T22262]  ? xskq_create+0xfb/0x1d0
[ 1383.782120][T22262]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1383.782160][T22262]  ? xskq_create+0xfb/0x1d0
[ 1383.782187][T22262]  vmalloc_user_noprof+0x9e/0xe0
[ 1383.782216][T22262]  ? xskq_create+0xfb/0x1d0
[ 1383.782241][T22262]  xskq_create+0xfb/0x1d0
[ 1383.782268][T22262]  xsk_setsockopt+0x56f/0xab0
[ 1383.782293][T22262]  ? __pfx_xsk_setsockopt+0x10/0x10
[ 1383.782317][T22262]  ? find_held_lock+0x2b/0x80
[ 1383.782346][T22262]  ? aa_sock_opt_perm+0xfe/0x1b0
[ 1383.782404][T22262]  ? __pfx_xsk_setsockopt+0x10/0x10
[ 1383.782432][T22262]  do_sock_setsockopt+0xf3/0x1d0
[ 1383.782543][T22262]  __sys_setsockopt+0x119/0x190
[ 1383.782572][T22262]  __ia32_sys_setsockopt+0xbc/0x160
[ 1383.782596][T22262]  ? __do_fast_syscall_32+0x98/0x950
[ 1383.782617][T22262]  ? lockdep_hardirqs_on+0x78/0x100
[ 1383.782649][T22262]  __do_fast_syscall_32+0xe7/0x950
[ 1383.782669][T22262]  ? lockdep_hardirqs_on+0x78/0x100
[ 1383.782703][T22262]  do_fast_syscall_32+0x32/0x70
[ 1383.782723][T22262]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1383.782747][T22262] RIP: 0023:0xf7f74f7c
[ 1383.782765][T22262] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 1383.782784][T22262] RSP: 002b:00000000f543650c EFLAGS: 00000292 ORIG_RAX: 000000000000016e
[ 1383.782803][T22262] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000000011b
[ 1383.782815][T22262] RDX: 0000000000000002 RSI: 0000000080000080 RDI: 000000000000001c
[ 1383.782826][T22262] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1383.782837][T22262] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 1383.782847][T22262] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1383.782872][T22262]  </TASK>
[ 1383.960395][T22262] Mem-Info:
[ 1383.961881][T22262] active_anon:3525 inactive_anon:15745 isolated_anon:7
[ 1383.961881][T22262]  active_file:4409 inactive_file:17942 isolated_file:0
[ 1383.961881][T22262]  unevictable:1768 dirty:589 writeback:0
[ 1383.961881][T22262]  slab_reclaimable:6073 slab_unreclaimable:63013
[ 1383.961881][T22262]  mapped:27914 shmem:18339 pagetables:1490
[ 1383.961881][T22262]  sec_pagetables:320 bounce:0
[ 1383.961881][T22262]  kernel_misc_reclaimable:0
[ 1383.961881][T22262]  free:53601 free_pcp:4526 free_cma:0
[ 1383.981514][T22262] Node 0 active_anon:128kB inactive_anon:12kB active_file:172kB inactive_file:0kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:24kB dirty:12kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8384kB pagetables:1492kB sec_pagetables:1116kB all_unreclaimable? yes Balloon:0kB gpu_active:0kB gpu_reclaim:0kB
[ 1383.996909][T22262] Node 1 active_anon:13972kB inactive_anon:62968kB active_file:17464kB inactive_file:71768kB unevictable:3536kB isolated(anon):28kB isolated(file):0kB mapped:111632kB dirty:2344kB writeback:0kB shmem:69820kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:6068kB pagetables:4468kB sec_pagetables:164kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB
[ 1384.011991][T22262] Node 0 DMA free:2340kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1384.038868][T22262] lowmem_reserve[]: 0 285 285 285 285
[ 1384.066970][T22262] Node 0 DMA32 free:32716kB boost:16384kB min:29472kB low:32744kB high:36016kB reserved_highatomic:0KB free_highatomic:0KB active_anon:128kB inactive_anon:12kB active_file:172kB inactive_file:0kB unevictable:3536kB writepending:12kB zspages:164kB present:1032196kB managed:292508kB mlocked:0kB bounce:0kB free_pcp:56kB local_pcp:0kB free_cma:0kB
[ 1384.081344][T22262] lowmem_reserve[]: 0 0 0 0 0
[ 1384.084339][T22262] Node 1 DMA32 free:183516kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:13968kB inactive_anon:59668kB active_file:17464kB inactive_file:71768kB unevictable:3536kB writepending:2348kB zspages:5044kB present:1048432kB managed:948212kB mlocked:0kB bounce:0kB free_pcp:17236kB local_pcp:12464kB free_cma:0kB
[ 1384.099413][T22262] lowmem_reserve[]: 0 0 0 0 0
[ 1384.101988][T22262] Node 0 DMA: 23*4kB (UM) 7*8kB (UM) 7*16kB (UM) 9*32kB (UM) 4*64kB (UM) 2*128kB (M) 1*256kB (M) 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 2340kB
[ 1384.109964][T22262] Node 0 DMA32: 883*4kB (UME) 444*8kB (UME) 222*16kB (UME) 252*32kB (UME) 89*64kB (UME) 37*128kB (UME) 6*256kB (UME) 4*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 32716kB
[ 1384.118793][T22262] Node 1 DMA32: 2215*4kB (UME) 2999*8kB (UME) 2425*16kB (UME) 415*32kB (UME) 97*64kB (UME) 38*128kB (UME) 110*256kB (UME) 108*512kB (UM) 0*1024kB 2*2048kB (UM) 0*4096kB = 183556kB
[ 1384.127774][T22262] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1384.132400][T22262] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1384.136759][T22262] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1384.141616][T22262] Node 1 hugepages_total=5 hugepages_free=0 hugepages_surp=1 hugepages_size=2048kB
[ 1384.146377][T22262] 41412 total pagecache pages
[ 1384.148854][T22262] 1581 pages in swap cache
[ 1384.151215][T22262] Free swap  = 60676kB
[ 1384.153242][T22262] Total swap = 124996kB
[ 1384.155408][T22262] 524155 pages RAM
[ 1384.157465][T22262] 0 pages HighMem/MovableOnly
[ 1384.160024][T22262] 210135 pages reserved
[ 1384.162382][T22262] 0 pages cma reserved
[ 1385.339222][T22274] gre0 speed is unknown, defaulting to 1000
[ 1386.546432][T22274] lo speed is unknown, defaulting to 1000
[ 1387.814887][   T40] audit: type=1326 audit(1779404030.337:3778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22287 comm="syz.5.4003" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fe8f7c code=0x0
[ 1391.885934][   T40] audit: type=1326 audit(1779404034.095:3779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22319 comm="syz.5.4012" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fe8f7c code=0x0
[ 1392.016207][   T40] audit: type=1326 audit(1779404034.178:3780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22322 comm="syz.4.4010" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1392.027409][   T40] audit: type=1326 audit(1779404034.178:3781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22322 comm="syz.4.4010" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1392.040871][   T40] audit: type=1326 audit(1779404034.178:3782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22322 comm="syz.4.4010" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1392.051126][   T40] audit: type=1326 audit(1779404034.178:3783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22322 comm="syz.4.4010" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1392.062139][   T40] audit: type=1326 audit(1779404034.178:3784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22322 comm="syz.4.4010" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1392.073111][   T40] audit: type=1326 audit(1779404034.178:3785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22322 comm="syz.4.4010" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1392.509550][   T40] audit: type=1326 audit(1779404034.667:3786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22322 comm="syz.4.4010" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1392.522899][   T40] audit: type=1326 audit(1779404034.667:3787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22322 comm="syz.4.4010" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1393.162174][T22332] block nbd0: server does not support multiple connections per device.
[ 1393.176617][T22332] block nbd0: shutting down sockets
[ 1394.167814][   T40] audit: type=1326 audit(1779404036.200:3788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22340 comm="syz.4.4017" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf702ef7c code=0x0
[ 1395.518372][T22358] random: crng reseeded on system resumption
[ 1397.297346][T22379] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1397.436234][T22379] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1398.051939][T22389] overlayfs: overlapping lowerdir path
[ 1398.164777][T22379] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1398.330656][T22391] ptrace attach of ""[22392] was attempted by "/syz-executor exec"[22391]
[ 1398.427325][   T40] audit: type=1800 audit(1779404040.123:3789): pid=22391 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.4027" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[ 1398.543898][T22379] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1399.050349][T22402] pim6reg: entered allmulticast mode
[ 1399.069353][T22395] /dev/sr0: Can't open blockdev
[ 1399.102509][T18551] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1399.190480][T18551] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1399.202481][T18551] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1399.244612][   T46] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1399.438786][T22402] team0: entered allmulticast mode
[ 1399.445980][T22402] team0: left allmulticast mode
[ 1399.449036][T22402] pim6reg: left allmulticast mode
[ 1402.772244][T22431] fuse: Unknown parameter '0x0000000000000003'
[ 1403.081735][T22440] overlayfs: missing 'lowerdir'
[ 1405.997322][T22458] tipc: Failed to remove unknown binding: 66,0,0/0:3229181123/3229181124
[ 1406.020894][T22458] tipc: Failed to remove unknown binding: 66,0,0/0:3229181123/3229181124
[ 1406.049936][T22461] tipc: Failed to remove unknown binding: 66,0,0/0:978960891/978960893
[ 1406.056875][T22460] block nbd0: server does not support multiple connections per device.
[ 1406.071275][T22460] block nbd0: shutting down sockets
[ 1406.253015][T22462] overlayfs: failed lookup in lower (newroot/996, name='file1', err=-40): overlapping layers
[ 1406.606661][   T40] audit: type=1326 audit(1779404047.638:3790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22467 comm="syz.4.4043" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf702ef7c code=0x0
[ 1406.980466][T22475] binder: 22468:22475 ioctl c0285840 80000000 returned -22
[ 1408.504865][T22496] overlayfs: missing 'lowerdir'
[ 1413.132452][   T40] audit: type=1326 audit(1779404053.704:3791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22526 comm="syz.4.4055" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf702ef7c code=0x0
[ 1413.945481][T22534] binder: 22532:22534 ioctl c0285840 80000000 returned -22
[ 1415.118912][T22540] block nbd0: server does not support multiple connections per device.
[ 1415.126748][T22540] block nbd0: shutting down sockets
[ 1415.170860][   T40] audit: type=1326 audit(1779404055.393:3792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22537 comm="syz.2.4059" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fc3f7c code=0x0
[ 1415.319680][T22545] netlink: 220 bytes leftover after parsing attributes in process `syz.5.4061'.
[ 1415.322893][T22545] netlink: 'syz.5.4061': attribute type 2 has an invalid length.
[ 1416.325632][T22553] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[ 1416.334973][T22555] syzkaller0: entered promiscuous mode
[ 1416.342074][T22555] syzkaller0: entered allmulticast mode
[ 1416.442279][T22559] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4063'.
[ 1416.531815][T22555] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1416.547869][T22554] tipc: Resetting bearer <eth:syzkaller0>
[ 1416.596982][T22554] tipc: Disabling bearer <eth:syzkaller0>
[ 1418.221437][T22573] random: crng reseeded on system resumption
[ 1418.908998][   T40] audit: type=1326 audit(1779404059.040:3793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22578 comm="syz.2.4068" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fc3f7c code=0x0
[ 1419.125803][T22584] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4069'.
[ 1419.879657][   T40] audit: type=1326 audit(1779404059.935:3794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22586 comm="syz.4.4072" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf702ef7c code=0x0
[ 1420.407098][T22596] block nbd0: server does not support multiple connections per device.
[ 1420.414434][T22596] block nbd0: shutting down sockets
[ 1422.015226][T22604] gre0 speed is unknown, defaulting to 1000
[ 1422.202271][T22604] lo speed is unknown, defaulting to 1000
[ 1423.237631][   T40] audit: type=1326 audit(1779404063.037:3795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22615 comm="syz.2.4077" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fc3f7c code=0x0
[ 1423.419411][   T40] audit: type=1326 audit(1779404063.203:3796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22620 comm="syz.4.4078" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf702ef7c code=0x0
[ 1427.283228][T22650] block nbd0: server does not support multiple connections per device.
[ 1427.296141][T22650] block nbd0: shutting down sockets
[ 1428.919816][ T1432] ieee802154 phy0 wpan0: encryption failed: -22
[ 1428.922755][ T1432] ieee802154 phy1 wpan1: encryption failed: -22
[ 1429.430263][T22661] overlayfs: failed lookup in lower (newroot/897, name='file1', err=-40): overlapping layers
[ 1430.089738][T22672] block nbd0: server does not support multiple connections per device.
[ 1430.093708][T22672] block nbd0: shutting down sockets
[ 1430.273041][   T29] libceph: connect (1)[c::]:6789 error -101
[ 1430.275287][   T29] libceph: mon0 (1)[c::]:6789 connect error
[ 1430.277699][   T29] libceph: connect (1)[c::]:6789 error -101
[ 1430.279739][   T29] libceph: mon0 (1)[c::]:6789 connect error
[ 1430.553845][ T1347] libceph: connect (1)[c::]:6789 error -101
[ 1430.557259][ T1347] libceph: mon0 (1)[c::]:6789 connect error
[ 1430.844981][T22676] ceph: No mds server is up or the cluster is laggy
[ 1431.156315][T22684] bridge2: entered promiscuous mode
[ 1431.158655][T22684] bridge2: entered allmulticast mode
[ 1431.290509][T22693] block nbd0: server does not support multiple connections per device.
[ 1431.299099][T22693] block nbd0: shutting down sockets
[ 1434.391088][T22710] overlayfs: failed lookup in lower (newroot/458, name='file1', err=-40): overlapping layers
[ 1435.049327][T22720] /dev/sr0: Can't open blockdev
[ 1436.175303][T22736] can0: slcan on ttyS3.
[ 1436.576510][T22736] can0 (unregistered): slcan off ttyS3.
[ 1436.632970][T22737] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 1437.190152][T22754] ALSA: mixer_oss: invalid OSS volume '01777777777777777777777'
[ 1442.122125][T11595] usb 6-1: new full-speed USB device number 14 using dummy_hcd
[ 1442.334184][T11595] usb 6-1: config 0 has an invalid interface number: 205 but max is 0
[ 1442.337178][T11595] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1442.340674][T11595] usb 6-1: config 0 has no interface number 0
[ 1442.342632][T11595] usb 6-1: config 0 interface 205 has no altsetting 0
[ 1442.347414][T11595] usb 6-1: New USB device found, idVendor=1822, idProduct=3202, bcdDevice=13.4a
[ 1442.351439][T11595] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1442.354699][T11595] usb 6-1: Product: syz
[ 1442.356189][T11595] usb 6-1: Manufacturer: syz
[ 1442.357771][T11595] usb 6-1: SerialNumber: syz
[ 1442.387320][T11595] usb 6-1: config 0 descriptor??
[ 1442.399084][T11595] dvb-usb: found a 'TwinhanDTV USB-Ter USB1.1 / Magic Box I / HAMA USB1.1 DVB-T device' in warm state.
[ 1442.403286][T11595] dvb-usb: bulk message failed: -22 (3/0)
[ 1442.428622][T11595] dvb-usb: will use the device's hardware PID filter (table count: 16).
[ 1442.432783][T11595] dvbdev: DVB: registering new adapter (TwinhanDTV USB-Ter USB1.1 / Magic Box I / HAMA USB1.1 DVB-T device)
[ 1442.438105][T11595] usb 6-1: media controller created
[ 1442.442191][T11595] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1442.451315][T11595] dvb-usb: bulk message failed: -22 (6/0)
[ 1442.457047][T11595] dvb-usb: no frontend was attached by 'TwinhanDTV USB-Ter USB1.1 / Magic Box I / HAMA USB1.1 DVB-T device'
[ 1442.464024][T11595] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.1/usb6/6-1/input/input26
[ 1442.476406][T11595] dvb-usb: schedule remote query interval to 150 msecs.
[ 1442.479771][T11595] dvb-usb: bulk message failed: -22 (3/0)
[ 1442.501113][T11595] dvb-usb: TwinhanDTV USB-Ter USB1.1 / Magic Box I / HAMA USB1.1 DVB-T device successfully initialized and connected.
qemu-system-x86_64: ahci: PRDT length for NCQ command (0x0) is smaller than the requested size (0xa8000)
[ 1442.657813][T11595] dvb-usb: bulk message failed: -22 (1/0)
[ 1442.668806][T11595] dvb-usb: error while querying for an remote control event.
[ 1442.717148][ T1127] ata1.00: Read log 0x10 page 0x00 failed, Emask 0x1
[ 1442.719892][ T1127] ata1: failed to read log page 10h (errno=-5)
[ 1442.722324][ T1127] ata1.00: exception Emask 0x1 SAct 0xc000 SErr 0x0 action 0x0
[ 1442.725506][ T1127] ata1.00: irq_stat 0x41000000
[ 1442.727668][ T1127] ata1.00: failed command: READ FPDMA QUEUED
[ 1442.730691][ T1127] ata1.00: cmd 60/40:70:ae:38:01/05:00:00:00:00/40 tag 14 ncq dma 688128 in
[ 1442.730691][ T1127]          res 50/00:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error)
[ 1442.737049][ T1127] ata1.00: status: { DRDY }
[ 1442.739003][ T1127] ata1.00: failed command: READ FPDMA QUEUED
[ 1442.741614][ T1127] ata1.00: cmd 60/c0:78:ee:3d:01/02:00:00:00:00/40 tag 15 ncq dma 360448 in
[ 1442.741614][ T1127]          res 50/04:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error)
[ 1442.748358][ T1127] ata1.00: status: { DRDY }
[ 1442.750517][ T1127] ata1.00: error: { ABRT }
[ 1442.753436][ T1127] ata1.00: configured for UDMA/100
[ 1442.756083][ T1127] sd 0:0:0:0: [sda] tag#14 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[ 1442.759741][ T1127] sd 0:0:0:0: [sda] tag#14 Sense Key : Aborted Command [current] 
[ 1442.763428][ T1127] sd 0:0:0:0: [sda] tag#14 Add. Sense: No additional sense information
[ 1442.766546][ T1127] sd 0:0:0:0: [sda] tag#14 CDB: Read(10) 28 00 00 01 38 ae 00 05 40 00
[ 1442.769845][ T1127] I/O error, dev sda, sector 80046 op 0x0:(READ) flags 0x84700 phys_seg 168 prio class 2
[ 1442.774701][ T1127] sd 0:0:0:0: [sda] tag#15 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[ 1442.778532][ T1127] sd 0:0:0:0: [sda] tag#15 Sense Key : Aborted Command [current] 
[ 1442.781434][ T1127] sd 0:0:0:0: [sda] tag#15 Add. Sense: No additional sense information
[ 1442.786983][ T1127] sd 0:0:0:0: [sda] tag#15 CDB: Read(10) 28 00 00 01 3d ee 00 02 c0 00
[ 1442.789787][ T1127] I/O error, dev sda, sector 81390 op 0x0:(READ) flags 0x84700 phys_seg 88 prio class 2
[ 1442.793799][ T1127] ata1: EH complete
[ 1442.848956][T11595] dvb-usb: bulk message failed: -22 (1/0)
[ 1442.893999][T11595] dvb-usb: error while querying for an remote control event.
[ 1443.075259][T11595] dvb-usb: bulk message failed: -22 (1/0)
[ 1443.078910][T11595] dvb-usb: error while querying for an remote control event.
[ 1443.259422][T11595] dvb-usb: bulk message failed: -22 (1/0)
[ 1443.263123][T11595] dvb-usb: error while querying for an remote control event.
[ 1443.432713][T11595] dvb-usb: bulk message failed: -22 (1/0)
[ 1443.434735][T11595] dvb-usb: error while querying for an remote control event.
[ 1444.469763][T11595] dvb-usb: bulk message failed: -22 (1/0)
[ 1444.471619][T11595] dvb-usb: error while querying for an remote control event.
[ 1444.649575][T11595] dvb-usb: bulk message failed: -22 (1/0)
[ 1444.653128][T11595] dvb-usb: error while querying for an remote control event.
[ 1445.229779][T22804] overlayfs: "xino" feature enabled using 3 upper inode bits.
[ 1445.312716][T11595] dvb-usb: bulk message failed: -22 (1/0)
[ 1445.315266][T11595] dvb-usb: error while querying for an remote control event.
[ 1445.349397][   T24] usb 6-1: USB disconnect, device number 14
[ 1445.399184][T22804] overlayfs: failed lookup in lower (/, name='tracing', err=-66): unsupported object type
[ 1445.402525][T22804] overlayfs: failed to look up (tracing) for ino (-66)
[ 1445.525799][T22809] netlink: 'syz.1.4119': attribute type 1 has an invalid length.
[ 1445.832752][   T24] dvb-usb: TwinhanDTV USB-Ter USB1.1 / Magic Box I successfully deinitialized and disconnected.
[ 1446.171887][T22809] 8021q: adding VLAN 0 to HW filter on device bond7
[ 1446.625885][T22811] bond7: (slave geneve2): making interface the new active one
[ 1446.676007][T22811] bond7: (slave geneve2): Enslaving as an active interface with an up link
[ 1446.702175][  T137] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1446.711195][  T137] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1446.721930][  T137] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1446.726803][  T137] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1447.150744][T22829] overlayfs: "xino" feature enabled using 3 upper inode bits.
[ 1447.234611][T22829] overlayfs: failed lookup in lower (/, name='tracing', err=-66): unsupported object type
[ 1447.237967][T22829] overlayfs: failed to look up (tracing) for ino (-66)
[ 1447.315164][T22831] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4121'.
[ 1448.827863][T22838] netlink: 1752 bytes leftover after parsing attributes in process `syz.1.4123'.
[ 1449.814809][T22846] ptrace attach of ""[22848] was attempted by "/syz-executor exec"[22846]
[ 1450.151746][   T40] audit: type=1800 audit(1779404087.890:3797): pid=22846 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.4124" name="SYSV00000000" dev="hugetlbfs" ino=2 res=0 errno=0
[ 1450.442267][T22852] netlink: 'syz.4.4129': attribute type 1 has an invalid length.
[ 1450.483467][T22852] 8021q: adding VLAN 0 to HW filter on device bond5
[ 1450.611249][T22852] bond5: (slave geneve2): making interface the new active one
[ 1450.647625][T22852] bond5: (slave geneve2): Enslaving as an active interface with an up link
[ 1451.706012][T22871] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[ 1451.740654][T22871] CIFS mount error: No usable UNC path provided in device string!
[ 1451.740654][T22871] 
[ 1451.745074][T22871] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1452.463456][T22880] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4133'.
[ 1453.206812][   T40] audit: type=1326 audit(1779404090.705:3798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22885 comm="syz.5.4135" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe8f7c code=0x7ffc0000
[ 1453.216467][   T40] audit: type=1326 audit(1779404090.715:3799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22885 comm="syz.5.4135" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe8f7c code=0x7ffc0000
[ 1453.224061][   T40] audit: type=1326 audit(1779404090.715:3800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22885 comm="syz.5.4135" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe8f7c code=0x7ffc0000
[ 1453.233957][   T40] audit: type=1326 audit(1779404090.715:3801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22885 comm="syz.5.4135" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe8f7c code=0x7ffc0000
[ 1453.242464][   T40] audit: type=1326 audit(1779404090.715:3802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22885 comm="syz.5.4135" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fe8f7c code=0x7ffc0000
[ 1453.250069][   T40] audit: type=1326 audit(1779404090.715:3803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22885 comm="syz.5.4135" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe8f7c code=0x7ffc0000
[ 1453.259683][   T40] audit: type=1326 audit(1779404090.715:3804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22885 comm="syz.5.4135" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe8f7c code=0x7ffc0000
[ 1453.267826][   T40] audit: type=1326 audit(1779404090.724:3805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22885 comm="syz.5.4135" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe8f7c code=0x7ffc0000
[ 1453.289812][   T40] audit: type=1326 audit(1779404090.724:3806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22885 comm="syz.5.4135" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe8f7c code=0x7ffc0000
[ 1454.545554][T22898] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 1456.018710][T22914] ptrace attach of ""[22915] was attempted by "/syz-executor exec"[22914]
[ 1456.140489][   T40] kauditd_printk_skb: 64 callbacks suppressed
[ 1456.140504][   T40] audit: type=1800 audit(1779404093.420:3871): pid=22914 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.4140" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[ 1456.655694][   T40] audit: type=1326 audit(1779404093.817:3872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22918 comm="syz.2.4142" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fc3f7c code=0x0
[ 1458.012440][   T40] audit: type=1326 audit(1779404095.137:3873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22932 comm="syz.2.4144" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fc3f7c code=0x0
[ 1459.892401][T22950] gre0 speed is unknown, defaulting to 1000
[ 1460.268529][T22950] lo speed is unknown, defaulting to 1000
[ 1462.463489][T22968] binder: 22965:22968 ioctl c0285840 80000000 returned -22
[ 1462.689668][T22977] overlayfs: "xino" feature enabled using 3 upper inode bits.
[ 1462.825287][T22977] overlayfs: failed lookup in lower (/, name='tracing', err=-66): unsupported object type
[ 1462.828781][T22977] overlayfs: failed to look up (tracing) for ino (-66)
[ 1464.395346][T22988] overlayfs: missing 'lowerdir'
[ 1465.181951][T22995] IPVS: set_ctl: invalid protocol: 20551 0.0.0.0:0
[ 1466.106920][T23000] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[ 1466.109848][T23000] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1466.223143][T23000] vhci_hcd vhci_hcd.0: Device attached
[ 1466.862574][ T1347] usb 40-1: SetAddress Request (18) to port 0
[ 1466.923706][ T1347] usb 40-1: new SuperSpeed USB device number 18 using vhci_hcd
[ 1467.011658][T23012] netlink: 'syz.2.4162': attribute type 1 has an invalid length.
[ 1467.068281][T23012] 8021q: adding VLAN 0 to HW filter on device bond6
[ 1467.106175][T23014] bond6: (slave geneve2): making interface the new active one
[ 1467.116154][T23014] bond6: (slave geneve2): Enslaving as an active interface with an up link
[ 1468.788531][T23002] vhci_hcd: connection reset by peer
[ 1468.997866][T17515] vhci_hcd vhci_hcd.1: stop threads
[ 1469.000566][T17515] vhci_hcd vhci_hcd.1: release socket
[ 1469.009336][T17515] vhci_hcd vhci_hcd.1: disconnect device
[ 1469.923136][T23037] overlayfs: "xino" feature enabled using 3 upper inode bits.
[ 1470.147796][T23037] overlayfs: failed lookup in lower (/, name='tracing', err=-66): unsupported object type
[ 1470.151566][T23037] overlayfs: failed to look up (tracing) for ino (-66)
[ 1472.429857][ T1347] usb 40-1: device descriptor read/8, error -110
[ 1473.603038][ T1347] usb usb40-port1: attempt power cycle
[ 1473.827779][T23047] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4168'.
[ 1474.087704][T23056] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4169'.
[ 1474.141078][   T40] audit: type=1326 audit(1779404109.843:3874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23049 comm="syz.1.4179" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f74f7c code=0x0
[ 1474.456332][ T1347] usb usb40-port1: unable to enumerate USB device
[ 1474.979728][   T40] audit: type=1326 audit(1779404110.803:3875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23057 comm="syz.5.4171" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe8f7c code=0x7ffc0000
[ 1474.990409][   T40] audit: type=1326 audit(1779404110.813:3876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23057 comm="syz.5.4171" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe8f7c code=0x7ffc0000
[ 1475.029510][   T40] audit: type=1326 audit(1779404110.850:3877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23057 comm="syz.5.4171" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf7fe8f7c code=0x7ffc0000
[ 1475.061254][   T40] audit: type=1326 audit(1779404110.850:3878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23057 comm="syz.5.4171" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe8f7c code=0x7ffc0000
[ 1475.073213][   T40] audit: type=1326 audit(1779404110.850:3879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23057 comm="syz.5.4171" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe8f7c code=0x7ffc0000
[ 1475.108952][   T40] audit: type=1326 audit(1779404110.868:3880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23057 comm="syz.5.4171" exe="/syz-executor" sig=0 arch=40000003 syscall=297 compat=1 ip=0xf7fe8f7c code=0x7ffc0000
[ 1475.132549][   T40] audit: type=1326 audit(1779404110.877:3881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23057 comm="syz.5.4171" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe8f7c code=0x7ffc0000
[ 1475.153927][   T40] audit: type=1326 audit(1779404110.887:3882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23057 comm="syz.5.4171" exe="/syz-executor" sig=0 arch=40000003 syscall=358 compat=1 ip=0xf7fe8f7c code=0x7ffc0000
[ 1475.166442][   T40] audit: type=1326 audit(1779404110.914:3883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23057 comm="syz.5.4171" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe8f7c code=0x7ffc0000
[ 1475.367077][T23062] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4171'.
[ 1475.382094][T23062] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4171'.
[ 1475.384359][T23061] CIFS mount error: No usable UNC path provided in device string!
[ 1475.384359][T23061] 
[ 1475.389454][T23061] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1475.558674][T23070] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5)
[ 1475.560810][T23070] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[ 1475.572564][T23070] vhci_hcd vhci_hcd.0: Device attached
[ 1475.831815][ T1347] usb 45-1: new low-speed USB device number 2 using vhci_hcd
[ 1476.928869][T23083] netlink: 'syz.5.4175': attribute type 1 has an invalid length.
[ 1477.078721][T23071] vhci_hcd: connection reset by peer
[ 1477.087628][  T137] vhci_hcd vhci_hcd.4: stop threads
[ 1477.089175][  T137] vhci_hcd vhci_hcd.4: release socket
[ 1477.098369][  T137] vhci_hcd vhci_hcd.4: disconnect device
[ 1477.193475][T23083] 8021q: adding VLAN 0 to HW filter on device bond3
[ 1477.231854][T23084] bond3: (slave geneve2): making interface the new active one
[ 1477.247326][T23084] bond3: (slave geneve2): Enslaving as an active interface with an up link
[ 1479.032879][T23101] gre0 speed is unknown, defaulting to 1000
[ 1479.731908][T23101] lo speed is unknown, defaulting to 1000
[ 1480.146917][   T24] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[ 1481.182833][   T24] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1481.316848][   T24] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1481.320678][   T24] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[ 1481.329218][   T24] usb 6-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[ 1481.333492][   T24] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1481.337008][   T24] usb 6-1: SerialNumber: syz
[ 1481.344373][ T1347] vhci_hcd vhci_hcd.4: vhci_device speed not set
[ 1481.727369][   T24] usb 6-1: 0:2 : does not exist
[ 1481.731030][   T24] usb 6-1: unit 5 not found!
[ 1481.789346][   T24] usb 6-1: USB disconnect, device number 15
[ 1481.814497][T23051] udevd[23051]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1483.164413][   T40] kauditd_printk_skb: 34 callbacks suppressed
[ 1483.164449][   T40] audit: type=1326 audit(1779404118.346:3918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23141 comm="syz.1.4188" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f74f7c code=0x0
[ 1483.800898][T23139] gre0 speed is unknown, defaulting to 1000
[ 1483.906864][T23139] lo speed is unknown, defaulting to 1000
[ 1484.626755][   T40] audit: type=1326 audit(1779404119.694:3919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23157 comm="syz.4.4194" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf702ef7c code=0x0
[ 1484.682596][T23161] netlink: 'syz.2.4193': attribute type 1 has an invalid length.
[ 1484.706321][T23161] bond7: entered promiscuous mode
[ 1484.709158][T23161] 8021q: adding VLAN 0 to HW filter on device bond7
[ 1484.741825][T23161] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4193'.
[ 1484.745666][T23161] bond7: entered allmulticast mode
[ 1484.774619][T23161] bond7: (slave bridge3): making interface the new active one
[ 1484.778323][T23161] bridge3: entered promiscuous mode
[ 1484.783206][T23161] bridge3: entered allmulticast mode
[ 1484.790473][T23161] bond7: (slave bridge3): Enslaving as an active interface with an up link
[ 1485.372822][T23165] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4195'.
[ 1485.385173][T23165] tmpfs: Bad value for 'grpquota_block_hardlimit'
[ 1486.757677][T23174] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4199'.
[ 1487.637576][   T40] audit: type=1326 audit(1779404122.445:3920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23186 comm="syz.2.4201" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fc3f7c code=0x0
[ 1488.460697][T23198] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5)
[ 1488.463627][T23198] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1488.480004][T23198] vhci_hcd vhci_hcd.0: Device attached
[ 1488.735593][T23202] tipc: Cannot configure node identity twice
[ 1488.738080][T23199] vhci_hcd: connection closed
[ 1488.738414][ T1157] vhci_hcd vhci_hcd.4: stop threads
[ 1488.741878][ T1157] vhci_hcd vhci_hcd.4: release socket
[ 1488.743844][ T1157] vhci_hcd vhci_hcd.4: disconnect device
[ 1489.167425][T23211] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 1490.453966][ T5748] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[ 1490.848352][ T5748] usb 6-1: Using ep0 maxpacket: 8
[ 1491.092910][T21440] usb 10-1: new high-speed USB device number 8 using dummy_hcd
[ 1491.255724][T21440] usb 10-1: Using ep0 maxpacket: 16
[ 1491.260448][T21440] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1491.264990][T21440] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1491.269135][T21440] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1491.274904][T21440] usb 10-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1491.279108][T21440] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1491.289092][T21440] usb 10-1: config 0 descriptor??
[ 1491.445916][ T5748] usb 6-1: New USB device found, idVendor=0fe9, idProduct=db01, bcdDevice=e9.9b
[ 1491.449092][ T5748] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1491.451976][ T5748] usb 6-1: Product: syz
[ 1491.453363][ T5748] usb 6-1: Manufacturer: syz
[ 1491.454998][ T5748] usb 6-1: SerialNumber: syz
[ 1491.459553][ T5748] usb 6-1: config 0 descriptor??
[ 1491.467135][ T5748] dvb-usb: found a 'DViCO FusionHDTV DVB-T USB (LGZ201)' in warm state.
[ 1491.471995][ T5748] dvb-usb: bulk message failed: -22 (2/0)
[ 1491.489986][ T5748] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[ 1491.494077][ T5748] dvbdev: DVB: registering new adapter (DViCO FusionHDTV DVB-T USB (LGZ201))
[ 1491.498668][ T5748] usb 6-1: media controller created
[ 1491.508684][ T5748] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1491.695324][ T5748] dvb-usb: bulk message failed: -22 (1/0)
[ 1491.730496][ T5748] DVB: Unable to find symbol mt352_attach()
[ 1491.732724][ T5748] dvb-usb: no frontend was attached by 'DViCO FusionHDTV DVB-T USB (LGZ201)'
[ 1491.754618][T21440] microsoft 0003:045E:07DA.0005: ignoring exceeding usage max
[ 1491.757613][T21440] microsoft 0003:045E:07DA.0005: unknown global tag 0xc
[ 1491.760072][T21440] microsoft 0003:045E:07DA.0005: item 0 1 1 12 parsing failed
[ 1491.762977][T21440] microsoft 0003:045E:07DA.0005: parse failed
[ 1491.765070][T21440] microsoft 0003:045E:07DA.0005: probe with driver microsoft failed with error -22
[ 1491.797226][ T5748] rc_core: IR keymap rc-dvico-portable not found
[ 1491.801053][ T5748] Registered IR keymap rc-empty
[ 1491.841286][ T5748] rc rc0: DViCO FusionHDTV DVB-T USB (LGZ201) as /devices/platform/dummy_hcd.1/usb6/6-1/rc/rc0
[ 1491.953583][ T5748] input: DViCO FusionHDTV DVB-T USB (LGZ201) as /devices/platform/dummy_hcd.1/usb6/6-1/rc/rc0/input29
[ 1491.973210][T21440] usb 10-1: USB disconnect, device number 8
[ 1492.049030][ T5748] dvb-usb: schedule remote query interval to 100 msecs.
[ 1492.110830][ T5748] dvb-usb: DViCO FusionHDTV DVB-T USB (LGZ201) successfully initialized and connected.
[ 1492.221306][ T7095] dvb-usb: bulk message failed: -22 (1/0)
[ 1492.236843][ T5748] usb 6-1: USB disconnect, device number 16
[ 1492.790942][ T5748] dvb-usb: DViCO FusionHDTV DVB-T USB (LGZ201) successfully deinitialized and disconnected.
[ 1494.623813][   T40] audit: type=1326 audit(1779404128.935:3921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23259 comm="syz.4.4218" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf702ef7c code=0x0
[ 1495.426844][T23265] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[ 1495.429095][T23265] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1495.445628][T23265] vhci_hcd vhci_hcd.0: Device attached
[ 1495.470267][ T1432] ieee802154 phy0 wpan0: encryption failed: -22
[ 1495.472354][ T1432] ieee802154 phy1 wpan1: encryption failed: -22
[ 1495.594393][   T40] audit: type=1326 audit(1779404129.840:3922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23269 comm="syz.5.4219" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fe8f7c code=0x0
[ 1495.826669][ T1347] usb 42-1: SetAddress Request (14) to port 0
[ 1495.828974][ T1347] usb 42-1: new SuperSpeed USB device number 14 using vhci_hcd
[ 1496.881981][   T40] audit: type=1326 audit(1779404131.022:3923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23283 comm="syz.5.4222" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fe8f7c code=0x0
[ 1497.548679][T23266] vhci_hcd: connection reset by peer
[ 1497.551462][T17515] vhci_hcd vhci_hcd.2: stop threads
[ 1497.553622][T17515] vhci_hcd vhci_hcd.2: release socket
[ 1497.556182][T17515] vhci_hcd vhci_hcd.2: disconnect device
[ 1497.960403][   T24] usb 9-1: new full-speed USB device number 7 using dummy_hcd
[ 1498.140291][   T24] usb 9-1: config 0 has an invalid interface number: 8 but max is 0
[ 1498.143849][   T24] usb 9-1: config 0 has no interface number 0
[ 1498.151259][   T24] usb 9-1: config 0 interface 8 altsetting 0 has an endpoint descriptor with address 0x9F, changing to 0x8F
[ 1498.158565][   T24] usb 9-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[ 1498.163109][   T24] usb 9-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[ 1498.164004][T23296] exFAT-fs (nbd1): unable to read boot sector
[ 1498.170917][T23296] exFAT-fs (nbd1): failed to read boot sector
[ 1498.171311][   T24] usb 9-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[ 1498.172950][T23296] exFAT-fs (nbd1): failed to recognize exfat type
[ 1498.177670][   T24] usb 9-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[ 1498.183014][   T24] usb 9-1: Product: syz
[ 1498.184371][   T24] usb 9-1: SerialNumber: syz
[ 1498.197365][   T24] usb 9-1: config 0 descriptor??
[ 1498.209460][   T24] cm109 9-1:0.8: invalid payload size 0, expected 4
[ 1498.217934][   T24] input: CM109 USB driver as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.8/input/input30
[ 1500.969165][    C2] cm109_urb_ctl_callback: 17 callbacks suppressed
[ 1500.969181][    C2] cm109 9-1:0.8: cm109_urb_ctl_callback: urb status -71
[ 1500.973599][    C2] cm109 9-1:0.8: cm109_urb_ctl_callback: urb status -71
[ 1500.976018][    C2] cm109 9-1:0.8: cm109_urb_ctl_callback: urb status -71
[ 1500.982072][    C2] cm109 9-1:0.8: cm109_urb_ctl_callback: urb status -71
[ 1500.984646][    C2] cm109 9-1:0.8: cm109_urb_ctl_callback: urb status -71
[ 1500.987010][    C2] cm109 9-1:0.8: cm109_urb_ctl_callback: urb status -71
[ 1500.989350][    C2] cm109 9-1:0.8: cm109_urb_ctl_callback: urb status -71
[ 1500.991688][    C2] cm109 9-1:0.8: cm109_urb_ctl_callback: urb status -71
[ 1500.994102][    C2] cm109 9-1:0.8: cm109_urb_ctl_callback: urb status -71
[ 1500.996487][    C2] cm109 9-1:0.8: cm109_urb_ctl_callback: urb status -71
[ 1501.014938][   T24] usb 9-1: USB disconnect, device number 7
[ 1501.016905][    C2] cm109 9-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[ 1501.099937][   T40] audit: type=1326 audit(1779404134.917:3924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23314 comm="syz.4.4230" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf702ef7c code=0x0
[ 1501.145967][   T24] cm109 9-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[ 1501.302674][   T40] audit: type=1326 audit(1779404135.102:3925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23319 comm="syz.5.4231" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fe8f7c code=0x0
[ 1501.481318][ T1347] usb 42-1: device descriptor read/8, error -110
[ 1502.383624][ T1347] usb usb42-port1: attempt power cycle
[ 1503.087572][T23334] netlink: 'syz.4.4233': attribute type 1 has an invalid length.
[ 1503.275011][ T1347] usb usb42-port1: unable to enumerate USB device
[ 1503.290537][   T40] audit: type=1326 audit(1779404136.939:3926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23337 comm="syz.1.4235" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f74f7c code=0x0
[ 1503.401358][   T40] audit: type=1326 audit(1779404137.050:3927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23342 comm="syz.2.4236" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3f7c code=0x7ffc0000
[ 1503.429056][   T40] audit: type=1326 audit(1779404137.050:3928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23342 comm="syz.2.4236" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3f7c code=0x7ffc0000
[ 1503.436173][   T40] audit: type=1326 audit(1779404137.050:3929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23342 comm="syz.2.4236" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fc3f7c code=0x7ffc0000
[ 1503.443130][   T40] audit: type=1326 audit(1779404137.050:3930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23342 comm="syz.2.4236" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3f7c code=0x7ffc0000
[ 1503.449767][   T40] audit: type=1326 audit(1779404137.050:3931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23342 comm="syz.2.4236" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3f7c code=0x7ffc0000
[ 1503.456444][   T40] audit: type=1326 audit(1779404137.050:3932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23342 comm="syz.2.4236" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7fc3f7c code=0x7ffc0000
[ 1503.463268][   T40] audit: type=1326 audit(1779404137.059:3933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23342 comm="syz.2.4236" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3f7c code=0x7ffc0000
[ 1505.108377][T23365] tipc: Started in network mode
[ 1505.111433][T23365] tipc: Node identity 4, cluster identity 4711
[ 1505.115955][T23365] tipc: Node number set to 4
[ 1505.625739][T23368] macsec1: entered promiscuous mode
[ 1505.628021][T23368] macsec1: entered allmulticast mode
[ 1505.699741][T23368] macvlan0: entered promiscuous mode
[ 1505.709422][T23368] netlink: 'syz.2.4240': attribute type 1 has an invalid length.
[ 1505.712547][T23368] netlink: 'syz.2.4240': attribute type 2 has an invalid length.
[ 1506.054932][T23378] netlink: 36 bytes leftover after parsing attributes in process `syz.1.4241'.
[ 1508.976661][   T40] kauditd_printk_skb: 8 callbacks suppressed
[ 1508.976679][   T40] audit: type=1326 audit(1779404142.183:3942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23392 comm="syz.4.4246" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf702ef7c code=0x0
[ 1513.133327][   T40] audit: type=1326 audit(1779404146.024:3943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23433 comm="syz.2.4252" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fc3f7c code=0x0
[ 1513.484154][T23443] netlink: 'syz.4.4254': attribute type 1 has an invalid length.
[ 1513.507420][T23443] bond6: entered promiscuous mode
[ 1513.509692][T23443] 8021q: adding VLAN 0 to HW filter on device bond6
[ 1513.536211][T23443] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4254'.
[ 1513.727604][T23443] bond6: entered allmulticast mode
[ 1513.830560][T23446] bond6: (slave bridge3): making interface the new active one
[ 1513.840616][T23446] bridge3: entered promiscuous mode
[ 1513.844866][T23446] bridge3: entered allmulticast mode
[ 1513.851148][T23446] bond6: (slave bridge3): Enslaving as an active interface with an up link
[ 1514.940207][   T40] audit: type=1326 audit(1779404147.695:3944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23460 comm="syz.2.4259" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fc3f7c code=0x0
[ 1517.034419][T23479] netlink: 32 bytes leftover after parsing attributes in process `syz.2.4261'.
[ 1518.403386][   T40] audit: type=1326 audit(1779404150.898:3945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23488 comm="syz.5.4271" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fe8f7c code=0x0
[ 1519.514830][T23502] netlink: 32 bytes leftover after parsing attributes in process `syz.2.4266'.
[ 1519.517946][T23502] openvswitch: netlink: Flow key attr not present in new flow.
[ 1520.842088][   T40] audit: type=1326 audit(1779404153.141:3946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23510 comm="syz.5.4269" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fe8f7c code=0x0
[ 1521.649749][ T5747] Bluetooth: hci2: command 0xfc11 tx timeout
[ 1521.661837][T10712] Bluetooth: hci2: Entering manufacturer mode failed (-110)
[ 1523.157302][T23529] gre0 speed is unknown, defaulting to 1000
[ 1523.655052][T23529] lo speed is unknown, defaulting to 1000
[ 1524.239507][T23542] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[ 1524.241581][T23542] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1524.246354][T23542] vhci_hcd vhci_hcd.0: Device attached
[ 1524.563842][ T1347] usb 42-1: SetAddress Request (18) to port 0
[ 1524.566870][ T1347] usb 42-1: new SuperSpeed USB device number 18 using vhci_hcd
[ 1524.741633][T23543] vhci_hcd: connection reset by peer
[ 1524.745278][T18551] vhci_hcd vhci_hcd.2: stop threads
[ 1524.750491][T18551] vhci_hcd vhci_hcd.2: release socket
[ 1524.753913][T18551] vhci_hcd vhci_hcd.2: disconnect device
[ 1526.263226][   T40] audit: type=1326 audit(1779404158.136:3947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23555 comm="syz.1.4280" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f74f7c code=0x0
[ 1528.636951][T23584] gre0 speed is unknown, defaulting to 1000
[ 1528.941737][T23584] lo speed is unknown, defaulting to 1000
[ 1530.045024][ T1347] usb 42-1: device descriptor read/8, error -110
[ 1531.420963][ T1347] usb usb42-port1: attempt power cycle
[ 1531.961776][T21440] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[ 1532.651561][ T1347] usb usb42-port1: unable to enumerate USB device
[ 1532.677935][T21440] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1532.685012][T21440] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.41
[ 1532.688376][T21440] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11
[ 1532.690936][T21440] usb 6-1: Product: syz
[ 1532.692313][T21440] usb 6-1: Manufacturer: syz
[ 1532.693828][T21440] usb 6-1: SerialNumber: syz
[ 1532.847287][T23612] netlink: 1752 bytes leftover after parsing attributes in process `syz.5.4300'.
[ 1532.960600][T21440] usblp 6-1:1.0: usblp0: USB Unidirectional printer dev 17 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[ 1533.067210][T21440] usb 6-1: USB disconnect, device number 17
[ 1533.078105][   T40] audit: type=1326 audit(1779404164.441:3948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23611 comm="syz.2.4292" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fc3f7c code=0x0
[ 1533.171411][T21440] usblp0: removed
[ 1533.670550][T23622] vivid-004: disconnect
[ 1535.874267][T23619] vivid-004: reconnect
[ 1538.957427][   T40] audit: type=1326 audit(1779404169.870:3949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23661 comm="syz.1.4303" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f74f7c code=0x0
[ 1539.446864][T23673] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4314'.
[ 1540.003251][   T40] audit: type=1326 audit(1779404170.839:3950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23681 comm="syz.1.4308" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f74f7c code=0x0
[ 1540.226468][   T40] audit: type=1326 audit(1779404171.033:3951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23674 comm="syz.4.4306" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf702ef7c code=0x0
[ 1540.831470][T23693] x_tables: duplicate underflow at hook 1
[ 1542.065028][   T40] audit: type=1326 audit(1779404172.732:3952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23694 comm="syz.1.4311" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f74f7c code=0x0
[ 1543.091037][T23711] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[ 1543.093848][T23711] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1543.097991][T23711] vhci_hcd vhci_hcd.0: Device attached
[ 1543.391344][T23711] ./bus: Can't lookup blockdev
[ 1543.434484][T23712] vhci_hcd: connection closed
[ 1543.434936][T17515] vhci_hcd vhci_hcd.2: stop threads
[ 1543.439257][T17515] vhci_hcd vhci_hcd.2: release socket
[ 1543.442023][T17515] vhci_hcd vhci_hcd.2: disconnect device
[ 1544.333100][T23727] gre0 speed is unknown, defaulting to 1000
[ 1544.357949][   T40] audit: type=1326 audit(1779404174.855:3953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23726 comm="syz.1.4325" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f74f7c code=0x0
[ 1544.381835][T23734] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(8)
[ 1544.384113][T23734] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1544.400274][T23734] vhci_hcd vhci_hcd.0: Device attached
[ 1544.575878][T23727] lo speed is unknown, defaulting to 1000
[ 1544.759319][ T1347] usb 46-1: SetAddress Request (20) to port 0
[ 1544.877819][ T1347] usb 46-1: new SuperSpeed USB device number 20 using vhci_hcd
[ 1546.383752][T23736] vhci_hcd: connection reset by peer
[ 1546.386364][ T1157] vhci_hcd vhci_hcd.4: stop threads
[ 1546.387940][ T1157] vhci_hcd vhci_hcd.4: release socket
[ 1546.390082][ T1157] vhci_hcd vhci_hcd.4: disconnect device
[ 1547.150344][   T29] libceph: connect (1)[c::]:6789 error -101
[ 1547.154644][   T29] libceph: mon0 (1)[c::]:6789 connect error
[ 1547.450605][   T29] libceph: connect (1)[c::]:6789 error -101
[ 1547.453419][   T29] libceph: mon0 (1)[c::]:6789 connect error
[ 1547.462147][   T40] audit: type=1326 audit(1779404177.699:3954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23767 comm="syz.4.4327" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1547.470761][   T40] audit: type=1326 audit(1779404177.699:3955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23767 comm="syz.4.4327" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1547.479691][   T40] audit: type=1326 audit(1779404177.699:3956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23767 comm="syz.4.4327" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1547.488479][   T40] audit: type=1326 audit(1779404177.699:3957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23767 comm="syz.4.4327" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1547.496924][   T40] audit: type=1326 audit(1779404177.699:3958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23767 comm="syz.4.4327" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1547.505709][   T40] audit: type=1326 audit(1779404177.708:3959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23767 comm="syz.4.4327" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf71661ab code=0x7ffc0000
[ 1547.514226][   T40] audit: type=1326 audit(1779404177.708:3960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23767 comm="syz.4.4327" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1547.522657][   T40] audit: type=1326 audit(1779404177.708:3961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23767 comm="syz.4.4327" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1547.530950][   T40] audit: type=1326 audit(1779404177.708:3962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23767 comm="syz.4.4327" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1547.539236][   T40] audit: type=1326 audit(1779404177.708:3963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23767 comm="syz.4.4327" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef7c code=0x7ffc0000
[ 1547.817459][T23769] ceph: No mds server is up or the cluster is laggy
[ 1548.055365][T23780] siw: device registration error -23
[ 1549.248713][T23792] comedi comedi3: comedi_test: 10 microvolt, 2046 microsecond waveform attached
[ 1550.408373][ T1347] usb 46-1: device descriptor read/8, error -110
[ 1550.974124][ T1347] usb usb46-port1: attempt power cycle
[ 1552.315001][T23807] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4337'.
[ 1553.168291][T23814] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4337'.
[ 1553.174724][ T1347] usb usb46-port1: unable to enumerate USB device
[ 1555.606876][T23832] netlink: 'syz.4.4344': attribute type 4 has an invalid length.
[ 1555.610297][T23832] netlink: 17 bytes leftover after parsing attributes in process `syz.4.4344'.
[ 1555.623199][T23832] openvswitch: netlink: IP tunnel attribute has 5 unknown bytes.
[ 1555.659740][T23834] bridge0: port 1(erspan0) entered blocking state
[ 1555.664373][T23834] bridge0: port 1(erspan0) entered disabled state
[ 1555.667314][T23834] erspan0: entered allmulticast mode
[ 1555.673562][T23834] erspan0: entered promiscuous mode
[ 1555.676816][T23834] bridge0: port 1(erspan0) entered blocking state
[ 1555.679691][T23834] bridge0: port 1(erspan0) entered forwarding state
[ 1555.701408][T23834] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4345'.
[ 1556.736677][T23852] netlink: 32 bytes leftover after parsing attributes in process `syz.5.4349'.
[ 1556.740471][T23852] openvswitch: netlink: Flow key attr not present in new flow.
[ 1558.916496][T10712] Bluetooth: hci2: Entering manufacturer mode failed (-110)
[ 1558.918640][ T5747] Bluetooth: hci2: command 0xfc11 tx timeout
[ 1558.965978][T11595] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[ 1561.046508][T11595] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[ 1561.512834][T23906] vivid-001: disconnect
[ 1562.022104][ T1432] ieee802154 phy0 wpan0: encryption failed: -22
[ 1562.024828][ T1432] ieee802154 phy1 wpan1: encryption failed: -22
[ 1562.638909][T23899] vivid-001: reconnect
[ 1564.384199][T23938] netlink: 'syz.4.4363': attribute type 10 has an invalid length.
[ 1564.464670][T23938] bond0: (slave dummy0): Releasing backup interface
[ 1564.498206][T23939] netlink: 'syz.4.4363': attribute type 10 has an invalid length.
[ 1564.562356][T23938] team0: Failed to send port change of device dummy0 via netlink (err -105)
[ 1564.567732][T23938] team0: Failed to send options change via netlink (err -105)
[ 1564.572238][T23938] team0: Port device dummy0 added
[ 1564.615008][T23939] team0: Failed to send port change of device dummy0 via netlink (err -105)
[ 1564.755159][T23939] team0: Failed to send options change via netlink (err -105)
[ 1564.759912][T23939] team0: Failed to send port change of device dummy0 via netlink (err -105)
[ 1564.767068][T23939] team0: Port device dummy0 removed
[ 1564.788822][T23939] bond0: (slave dummy0): Enslaving as an active interface with an up link
[ 1574.849121][T23957] netlink: 32 bytes leftover after parsing attributes in process `syz.1.4365'.
[ 1574.853177][T23957] openvswitch: netlink: Flow key attr not present in new flow.
[ 1575.459699][T23974] fuse: fd is not a fuse device
[ 1577.120810][T23987] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[ 1579.676103][   T10] usb 10-1: new high-speed USB device number 9 using dummy_hcd
[ 1579.849538][   T10] usb 10-1: Using ep0 maxpacket: 32
[ 1579.853345][   T10] usb 10-1: config 0 has an invalid interface number: 51 but max is 0
[ 1579.856849][   T10] usb 10-1: config 0 has no interface number 0
[ 1579.861217][   T10] usb 10-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[ 1579.865069][   T10] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1579.868370][   T10] usb 10-1: Product: syz
[ 1579.870140][   T10] usb 10-1: Manufacturer: syz
[ 1579.872366][   T10] usb 10-1: SerialNumber: syz
[ 1579.877568][   T10] usb 10-1: config 0 descriptor??
[ 1579.883541][   T10] quatech2 10-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[ 1580.112530][   T10] usb 10-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[ 1580.124088][   T10] usb 10-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[ 1580.184829][   T40] kauditd_printk_skb: 10 callbacks suppressed
[ 1580.184844][   T40] audit: type=1326 audit(1779404207.924:3974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24021 comm="syz.2.4379" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fc3f7c code=0x0
[ 1580.360237][T24007] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4375'.
[ 1580.658326][    C0] usb 10-1: qt2_read_bulk_callback - non-zero urb status: -71
[ 1580.658533][T11803] usb 10-1: USB disconnect, device number 9
[ 1580.681979][T11803] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[ 1580.694760][T11803] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[ 1580.706009][T11803] quatech2 10-1:0.51: device disconnected
[ 1584.830167][T24051] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1584.931847][T24051] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1585.277596][T24051] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1585.684709][T24051] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1585.804766][   T40] audit: type=1326 audit(1779404213.113:3975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24063 comm="syz.5.4388" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fe8f7c code=0x0
[ 1585.889780][  T137] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1585.923811][  T137] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1585.941729][  T137] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1585.970700][  T137] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1588.267423][   T40] audit: type=1326 audit(1779404215.393:3976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24093 comm="syz.4.4402" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf702ef7c code=0x0
[ 1590.797683][T24118] netlink: 'syz.2.4407': attribute type 1 has an invalid length.
[ 1590.801080][T24118] netlink: 'syz.2.4407': attribute type 2 has an invalid length.
[ 1593.563284][T24140] openvswitch: netlink: Flow actions may not be safe on all matching packets.
qemu-system-x86_64: ahci: PRDT length for NCQ command (0x0) is smaller than the requested size (0x1c1000)
[ 1595.354522][T24141] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[ 1595.356635][T24141] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1595.365702][T24141] vhci_hcd vhci_hcd.0: Device attached
[ 1595.599223][   T40] audit: type=1326 audit(1779404222.104:3977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24151 comm="syz.5.4406" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fe8f7c code=0x0
[ 1595.669612][   T29] usb 42-1: SetAddress Request (23) to port 0
[ 1595.747312][   T29] usb 42-1: new SuperSpeed USB device number 23 using vhci_hcd
[ 1595.751528][ T1127] ata1.00: Read log 0x10 page 0x00 failed, Emask 0x1
[ 1595.753789][ T1127] ata1: failed to read log page 10h (errno=-5)
[ 1595.755734][ T1127] ata1.00: exception Emask 0x1 SAct 0xc000 SErr 0x0 action 0x0
[ 1595.758148][ T1127] ata1.00: irq_stat 0x41000000
[ 1595.759666][ T1127] ata1.00: failed command: READ FPDMA QUEUED
[ 1595.761581][ T1127] ata1.00: cmd 60/08:70:b6:42:04/0e:00:00:00:00/40 tag 14 ncq dma 1839104 in
[ 1595.761581][ T1127]          res 50/00:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error)
[ 1595.767277][ T1127] ata1.00: status: { DRDY }
[ 1595.768769][ T1127] ata1.00: failed command: READ FPDMA QUEUED
[ 1595.770669][ T1127] ata1.00: cmd 60/88:78:d6:50:04/02:00:00:00:00/40 tag 15 ncq dma 331776 in
[ 1595.770669][ T1127]          res 50/04:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error)
[ 1595.776039][ T1127] ata1.00: status: { DRDY }
[ 1595.777459][ T1127] ata1.00: error: { ABRT }
[ 1595.780741][ T1127] ata1.00: configured for UDMA/100
[ 1595.782775][ T1127] sd 0:0:0:0: [sda] tag#14 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[ 1595.785849][ T1127] sd 0:0:0:0: [sda] tag#14 Sense Key : Aborted Command [current] 
[ 1595.788253][ T1127] sd 0:0:0:0: [sda] tag#14 Add. Sense: No additional sense information
[ 1595.790904][ T1127] sd 0:0:0:0: [sda] tag#14 CDB: Read(10) 28 00 00 04 42 b6 00 0e 08 00
[ 1595.793452][ T1127] I/O error, dev sda, sector 279222 op 0x0:(READ) flags 0x80700 phys_seg 107 prio class 2
[ 1595.796888][ T1127] sd 0:0:0:0: [sda] tag#15 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[ 1595.800723][ T1127] sd 0:0:0:0: [sda] tag#15 Sense Key : Aborted Command [current] 
[ 1595.803884][ T1127] sd 0:0:0:0: [sda] tag#15 Add. Sense: No additional sense information
[ 1595.807240][ T1127] sd 0:0:0:0: [sda] tag#15 CDB: Read(10) 28 00 00 04 50 d6 00 02 88 00
[ 1595.810667][ T1127] I/O error, dev sda, sector 282838 op 0x0:(READ) flags 0x80700 phys_seg 13 prio class 2
[ 1595.814826][ T1127] ata1: EH complete
[ 1596.054717][T24154] vhci_hcd: connection reset by peer
[ 1596.058335][T18551] vhci_hcd vhci_hcd.2: stop threads
[ 1596.060801][T18551] vhci_hcd vhci_hcd.2: release socket
[ 1596.063311][T18551] vhci_hcd vhci_hcd.2: disconnect device
[ 1596.741113][T24175] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4410'.
[ 1596.760110][T24175] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4410'.
[ 1598.330337][T24190] ptrace attach of "/syz-executor exec"[24192] was attempted by "/syz-executor exec"[24190]
[ 1599.008084][T24194] gre0 speed is unknown, defaulting to 1000
[ 1599.164225][T24194] lo speed is unknown, defaulting to 1000
[ 1601.071754][T24202] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4415'.
[ 1601.285806][   T29] usb 42-1: device descriptor read/8, error -110
[ 1601.483840][T24202] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4415'.
[ 1601.719518][   T29] usb usb42-port1: attempt power cycle
[ 1603.379437][   T29] usb usb42-port1: unable to enumerate USB device
[ 1603.815514][   T40] audit: type=1326 audit(1779404229.749:3978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24219 comm="syz.4.4422" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf702ef7c code=0x0
[ 1604.935529][   T10] libceph: connect (1)[c::]:6789 error -101
[ 1604.937891][   T10] libceph: mon0 (1)[c::]:6789 connect error
[ 1605.111758][T24230] ceph: No mds server is up or the cluster is laggy
[ 1605.219621][   T10] libceph: connect (1)[c::]:6789 error -101
[ 1605.223267][   T10] libceph: mon0 (1)[c::]:6789 connect error
[ 1605.473140][   T40] audit: type=1326 audit(1779404231.272:3979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24246 comm="syz.1.4425" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f74f7c code=0x0
[ 1606.415255][   T40] audit: type=1326 audit(1779404232.149:3980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24251 comm="syz.1.4426" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f74f7c code=0x0
[ 1609.114083][T24265] gre0 speed is unknown, defaulting to 1000
[ 1609.544268][   T40] audit: type=1326 audit(1779404235.039:3981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24268 comm="syz.4.4431" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf702ef7c code=0x0
[ 1609.551920][T24273] overlayfs: failed to clone upperpath
[ 1610.963845][T24291] netlink: 32 bytes leftover after parsing attributes in process `syz.1.4433'.
[ 1611.359047][T24265] lo speed is unknown, defaulting to 1000
[ 1611.590077][   T40] audit: type=1326 audit(1779404236.922:3982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24292 comm="syz.5.4435" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fe8f7c code=0x0
[ 1613.315675][T24321] 9p: Bad value for 'rfdno'
[ 1613.541154][   T40] audit: type=1326 audit(1779404238.722:3983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24324 comm="syz.1.4443" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f74f7c code=0x0
[ 1613.580971][   T40] audit: type=1326 audit(1779404238.768:3984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24328 comm="syz.2.4444" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fc3f7c code=0x0
[ 1613.735905][T24315] netlink: 'syz.5.4439': attribute type 1 has an invalid length.
[ 1615.233670][   T40] audit: type=1326 audit(1779404240.282:3985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24341 comm="syz.4.4445" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf702ef7c code=0x0
[ 1615.353241][   T40] audit: type=1326 audit(1779404240.393:3986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24345 comm="syz.5.4447" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fe8f7c code=0x0
[ 1615.519333][T24355] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1618.670121][T24373] ptrace attach of "/syz-executor exec"[24378] was attempted by "/syz-executor exec"[24373]
[ 1619.835470][   T40] audit: type=1326 audit(1779404244.538:3987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24391 comm="syz.1.4456" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f74f7c code=0x0
[ 1621.781052][   T40] audit: type=1326 audit(1779404246.338:3988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24396 comm="syz.2.4458" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fc3f7c code=0x0
[ 1622.128641][   T40] audit: type=1326 audit(1779404246.652:3989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24403 comm="syz.1.4459" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f74f7c code=0x0
[ 1622.899707][T24415] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(8)
[ 1622.901838][T24415] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1622.906682][T24415] vhci_hcd vhci_hcd.0: Device attached
[ 1623.035963][T24422] netlink: 'syz.1.4463': attribute type 10 has an invalid length.
[ 1623.041782][T24422] team0: Failed to send options change via netlink (err -105)
[ 1623.044796][T24422] team0: Port device dummy0 added
[ 1623.053492][T24422] netlink: 'syz.1.4463': attribute type 10 has an invalid length.
[ 1623.057357][T24422] team0: Failed to send port change of device dummy0 via netlink (err -105)
[ 1623.063216][T24422] team0: Failed to send options change via netlink (err -105)
[ 1623.066401][T24422] team0: Failed to send port change of device dummy0 via netlink (err -105)
[ 1623.070455][T24422] team0: Port device dummy0 removed
[ 1623.075486][T24422] dummy0: entered promiscuous mode
[ 1623.220302][T21440] usb 48-1: SetAddress Request (18) to port 0
[ 1623.225574][T21440] usb 48-1: new SuperSpeed USB device number 18 using vhci_hcd
[ 1623.303821][T24427] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4465'.
[ 1623.307232][T24427] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4465'.
[ 1623.668037][T24419] vhci_hcd: connection reset by peer
[ 1623.673165][  T137] vhci_hcd vhci_hcd.5: stop threads
[ 1623.682380][  T137] vhci_hcd vhci_hcd.5: release socket
[ 1623.685415][  T137] vhci_hcd vhci_hcd.5: disconnect device
[ 1623.813876][   T40] audit: type=1326 audit(1779404248.203:3990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24430 comm="syz.4.4467" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf702ef7c code=0x0
[ 1624.281493][T24443] Invalid ELF header type: 3 != 1
[ 1624.825473][   T40] audit: type=1326 audit(1779404249.145:3991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24445 comm="syz.5.4470" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fe8f7c code=0x0
[ 1624.842472][   T40] audit: type=1326 audit(1779404249.154:3992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24449 comm="syz.4.4471" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf702ef7c code=0x0
[ 1625.093639][T24446] netlink: 'syz.2.4469': attribute type 1 has an invalid length.
[ 1625.950373][T24464] netlink: 'syz.2.4473': attribute type 10 has an invalid length.
[ 1625.962324][T24464] team0: Device dummy0 failed to register rx_handler
[ 1626.007993][   T40] audit: type=1326 audit(1779404250.234:3993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24465 comm="syz.5.4482" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fe8f7c code=0x0
[ 1628.067454][T24464] netlink: 'syz.2.4473': attribute type 10 has an invalid length.
[ 1628.572370][ T1432] ieee802154 phy0 wpan0: encryption failed: -22
[ 1628.575483][ T1432] ieee802154 phy1 wpan1: encryption failed: -22
[ 1628.744644][T21440] usb 48-1: device descriptor read/8, error -110
[ 1628.972915][T24485] gre0 speed is unknown, defaulting to 1000
[ 1629.168663][T21440] usb usb48-port1: attempt power cycle
[ 1629.602556][T24485] lo speed is unknown, defaulting to 1000
[ 1629.792605][T21440] usb usb48-port1: unable to enumerate USB device
[ 1630.103582][   T40] audit: type=1326 audit(1779404254.019:3994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24501 comm="syz.4.4480" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf702ef7c code=0x0
[ 1632.143360][   T40] audit: type=1326 audit(1779404255.792:3995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24529 comm="syz.5.4485" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fe8f7c code=0x0
[ 1634.811867][T24558] 
[ 1634.812714][T24558] =====================================================
[ 1634.814792][T24558] WARNING: SOFTIRQ-safe -> SOFTIRQ-unsafe lock order detected
[ 1634.817097][T24558] syzkaller #0 Tainted: G             L     
[ 1634.819481][T24558] -----------------------------------------------------
[ 1634.821779][T24558] syz.2.4491/24558 [HC0[0]:SC0[0]:HE0:SE1] is trying to acquire:
[ 1634.824195][T24558] ffffffff8e40a098 (tasklist_lock){.+.+}-{3:3}, at: send_sigurg+0xed/0xc80
[ 1634.827149][T24558] 
[ 1634.827149][T24558] and this task is already holding:
[ 1634.829321][T24558] ffff8880239169a0 (&f_owner->lock){....}-{3:3}, at: send_sigurg+0x5f/0xc80
[ 1634.831892][T24558] which would create a new lock dependency:
[ 1634.833746][T24558]  (&f_owner->lock){....}-{3:3} -> (tasklist_lock){.+.+}-{3:3}
[ 1634.836079][T24558] 
[ 1634.836079][T24558] but this new dependency connects a SOFTIRQ-irq-safe lock:
[ 1634.839003][T24558]  (&dev->event_lock#2){..-.}-{3:3}
[ 1634.839024][T24558] 
[ 1634.839024][T24558] ... which became SOFTIRQ-irq-safe at:
[ 1634.843018][T24558]   lock_acquire+0x1b1/0x370
[ 1634.844517][T24558]   _raw_spin_lock_irqsave+0x3a/0x60
[ 1634.846277][T24558]   input_inject_event+0x9f/0x390
[ 1634.847958][T24558]   led_set_brightness+0x221/0x2a0
[ 1634.849650][T24558]   led_trigger_event+0xda/0x270
[ 1634.851185][T24558]   kbd_bh+0x217/0x300
[ 1634.852508][T24558]   tasklet_action_common+0x2de/0x3d0
[ 1634.854171][T24558]   handle_softirqs+0x1ea/0xa00
[ 1634.855638][T24558]   run_ksoftirqd+0x38/0x60
[ 1634.857022][T24558]   smpboot_thread_fn+0x3d3/0xaa0
[ 1634.858624][T24558]   kthread+0x370/0x450
[ 1634.859932][T24558]   ret_from_fork+0x72b/0xd50
[ 1634.861439][T24558]   ret_from_fork_asm+0x1a/0x30
[ 1634.863009][T24558] 
[ 1634.863009][T24558] to a SOFTIRQ-irq-unsafe lock:
[ 1634.865145][T24558]  (tasklist_lock){.+.+}-{3:3}
[ 1634.865161][T24558] 
[ 1634.865161][T24558] ... which became SOFTIRQ-irq-unsafe at:
[ 1634.869049][T24558] ...
[ 1634.869073][T24558]   lock_acquire+0x1b1/0x370
[ 1634.871505][T24558]   _raw_read_lock+0x5f/0x70
[ 1634.872987][T24558]   __do_wait+0x13b/0x8b0
[ 1634.874424][T24558]   do_wait+0x1ec/0x580
[ 1634.875722][T24558]   kernel_wait+0xa1/0x160
[ 1634.877104][T24558]   call_usermodehelper_exec_work+0xf6/0x180
[ 1634.878967][T24558]   process_one_work+0xa0e/0x1980
[ 1634.880569][T24558]   worker_thread+0x5ef/0xe50
[ 1634.882031][T24558]   kthread+0x370/0x450
[ 1634.883337][T24558]   ret_from_fork+0x72b/0xd50
[ 1634.884812][T24558]   ret_from_fork_asm+0x1a/0x30
[ 1634.886328][T24558] 
[ 1634.886328][T24558] other info that might help us debug this:
[ 1634.886328][T24558] 
[ 1634.889425][T24558] Chain exists of:
[ 1634.889425][T24558]   &dev->event_lock#2 --> &f_owner->lock --> tasklist_lock
[ 1634.889425][T24558] 
[ 1634.893478][T24558]  Possible interrupt unsafe locking scenario:
[ 1634.893478][T24558] 
[ 1634.896055][T24558]        CPU0                    CPU1
[ 1634.898018][T24558]        ----                    ----
[ 1634.900031][T24558]   lock(tasklist_lock);
[ 1634.901372][T24558]                                local_irq_disable();
[ 1634.903544][T24558]                                lock(&dev->event_lock#2);
[ 1634.905836][T24558]                                lock(&f_owner->lock);
[ 1634.907967][T24558]   <Interrupt>
[ 1634.909078][T24558]     lock(&dev->event_lock#2);
[ 1634.910673][T24558] 
[ 1634.910673][T24558]  *** DEADLOCK ***
[ 1634.910673][T24558] 
[ 1634.913240][T24558] 2 locks held by syz.2.4491/24558:
[ 1634.914924][T24558]  #0: ffff88802aea7dd0 (&u->lock){+.+.}-{3:3}, at: unix_stream_sendmsg+0x950/0x1310
[ 1634.918607][T24558]  #1: ffff8880239169a0 (&f_owner->lock){....}-{3:3}, at: send_sigurg+0x5f/0xc80
[ 1634.921598][T24558] 
[ 1634.921598][T24558] the dependencies between SOFTIRQ-irq-safe lock and the holding lock:
[ 1634.924747][T24558]     -> (&dev->event_lock#2){..-.}-{3:3} {
[ 1634.926611][T24558]        IN-SOFTIRQ-W at:
[ 1634.927959][T24558]                             lock_acquire+0x1b1/0x370
[ 1634.930088][T24558]                             _raw_spin_lock_irqsave+0x3a/0x60
[ 1634.932451][T24558]                             input_inject_event+0x9f/0x390
[ 1634.934737][T24558]                             led_set_brightness+0x221/0x2a0
[ 1634.937000][T24558]                             led_trigger_event+0xda/0x270
[ 1634.939345][T24558]                             kbd_bh+0x217/0x300
[ 1634.941555][T24558]                             tasklet_action_common+0x2de/0x3d0
[ 1634.944538][T24558]                             handle_softirqs+0x1ea/0xa00
[ 1634.946911][T24558]                             run_ksoftirqd+0x38/0x60
[ 1634.948980][T24558]                             smpboot_thread_fn+0x3d3/0xaa0
[ 1634.951255][T24558]                             kthread+0x370/0x450
[ 1634.953276][T24558]                             ret_from_fork+0x72b/0xd50
[ 1634.955422][T24558]                             ret_from_fork_asm+0x1a/0x30
[ 1634.957769][T24558]        INITIAL USE at:
[ 1634.959257][T24558]                            lock_acquire+0x1b1/0x370
[ 1634.961392][T24558]                            _raw_spin_lock_irqsave+0x3a/0x60
[ 1634.963730][T24558]                            input_inject_event+0x9f/0x390
[ 1634.966151][T24558]                            led_set_brightness+0x221/0x2a0
[ 1634.968450][T24558]                            kbd_led_trigger_activate+0xcb/0x110
[ 1634.970852][T24558]                            led_trigger_set+0x66b/0xbe0
[ 1634.973120][T24558]                            led_trigger_set_default+0x1e2/0x2f0
[ 1634.975914][T24558]                            led_classdev_register_ext+0x72b/0x990
[ 1634.978337][T24558]                            input_leds_connect+0x5af/0x8b0
[ 1634.980576][T24558]                            input_attach_handler.isra.0+0x177/0x1e0
[ 1634.983070][T24558]                            input_register_device.cold+0x139/0x375
[ 1634.985569][T24558]                            atkbd_connect+0x665/0x9e0
[ 1634.987739][T24558]                            serio_driver_probe+0x77/0xb0
[ 1634.989921][T24558]                            really_probe+0x241/0xa60
[ 1634.992015][T24558]                            __driver_probe_device+0x22e/0x480
[ 1634.994355][T24558]                            driver_probe_device+0x4c/0x1b0
[ 1634.996597][T24558]                            __driver_attach+0x21f/0x5d0
[ 1634.998792][T24558]                            bus_for_each_dev+0x13e/0x1d0
[ 1635.000973][T24558]                            serio_handle_event+0x247/0x8f0
[ 1635.003243][T24558]                            process_one_work+0xa0e/0x1980
[ 1635.005472][T24558]                            worker_thread+0x5ef/0xe50
[ 1635.007581][T24558]                            kthread+0x370/0x450
[ 1635.009531][T24558]                            ret_from_fork+0x72b/0xd50
[ 1635.011617][T24558]                            ret_from_fork_asm+0x1a/0x30
[ 1635.013796][T24558]      }
[ 1635.014707][T24558]      ... key      at: [<ffffffff9b4b58a0>] __key.7+0x0/0x40
[ 1635.017021][T24558]    -> (kbd_event_lock){....}-{3:3} {
[ 1635.018717][T24558]       INITIAL USE at:
[ 1635.020013][T24558]                          lock_acquire+0x1b1/0x370
[ 1635.022052][T24558]                          _raw_spin_lock_irqsave+0x3a/0x60
[ 1635.024327][T24558]                          vt_reset_unicode+0x1e/0x130
[ 1635.026442][T24558]                          reset_vc+0x77/0x280
[ 1635.028341][T24558]                          vc_init+0x9e/0x490
[ 1635.030270][T24558]                          con_init+0x448/0x5f0
[ 1635.032261][T24558]                          console_init+0x3f7/0x5e0
[ 1635.034310][T24558]                          start_kernel+0x30a/0x490
[ 1635.036335][T24558]                          x86_64_start_reservations+0x24/0x30
[ 1635.038695][T24558]                          x86_64_start_kernel+0x12b/0x130
[ 1635.040917][T24558]                          common_startup_64+0x13e/0x148
[ 1635.043110][T24558]     }
[ 1635.043996][T24558]     ... key      at: [<ffffffff8f513d98>] kbd_event_lock+0x18/0x60
[ 1635.046509][T24558]     ... acquired at:
[ 1635.047783][T24558]    _raw_spin_lock+0x2e/0x40
[ 1635.049258][T24558]    kbd_event+0x8a/0x1b70
[ 1635.050664][T24558]    input_handle_events_default+0x119/0x1b0
[ 1635.052556][T24558]    input_pass_values+0x753/0x880
[ 1635.054263][T24558]    input_handle_event+0x7e4/0x1500
[ 1635.055941][T24558]    input_inject_event+0x1ce/0x390
[ 1635.057558][T24558]    evdev_write+0x2dd/0x430
[ 1635.059033][T24558]    vfs_write+0x2aa/0x1070
[ 1635.060458][T24558]    ksys_write+0x1f8/0x250
[ 1635.061903][T24558]    __do_fast_syscall_32+0xe7/0x950
[ 1635.063570][T24558]    do_fast_syscall_32+0x32/0x70
[ 1635.065154][T24558]    entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1635.067198][T24558] 
[ 1635.067962][T24558]   -> (&tty->flow.lock){....}-{3:3} {
[ 1635.069683][T24558]      INITIAL USE at:
[ 1635.070961][T24558]                        lock_acquire+0x1b1/0x370
[ 1635.072990][T24558]                        _raw_spin_lock_irqsave+0x3a/0x60
[ 1635.075189][T24558]                        start_tty+0x21/0x180
[ 1635.077071][T24558]                        n_tty_set_termios+0x57e/0xf20
[ 1635.079192][T24558]                        tty_set_termios+0x6bf/0x980
[ 1635.081273][T24558]                        set_termios+0x5c8/0x880
[ 1635.083287][T24558]                        tty_mode_ioctl+0x17e/0xd40
[ 1635.085343][T24558]                        n_tty_ioctl_helper+0x47/0x2b0
[ 1635.087475][T24558]                        n_tty_ioctl+0x53/0x350
[ 1635.089419][T24558]                        tty_ioctl+0x11c2/0x1640
[ 1635.091494][T24558]                        __x64_sys_ioctl+0x18e/0x210
[ 1635.094062][T24558]                        do_syscall_64+0x10b/0xf80
[ 1635.096401][T24558]                        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1635.099021][T24558]    }
[ 1635.099900][T24558]    ... key      at: [<ffffffff9b461ca0>] __key.4+0x0/0x40
[ 1635.102221][T24558]    ... acquired at:
[ 1635.103475][T24558]    _raw_spin_lock_irqsave+0x3a/0x60
[ 1635.105154][T24558]    stop_tty+0x21/0x110
[ 1635.106489][T24558]    fn_hold+0xb8/0xe0
[ 1635.107769][T24558]    k_spec+0x100/0x140
[ 1635.109070][T24558]    kbd_event+0xe4c/0x1b70
[ 1635.110497][T24558]    input_handle_events_default+0x119/0x1b0
[ 1635.112400][T24558]    input_pass_values+0x753/0x880
[ 1635.113995][T24558]    input_handle_event+0x7e4/0x1500
[ 1635.115629][T24558]    input_inject_event+0x1ce/0x390
[ 1635.117279][T24558]    evdev_write+0x2dd/0x430
[ 1635.118752][T24558]    vfs_write+0x2aa/0x1070
[ 1635.120170][T24558]    ksys_write+0x1f8/0x250
[ 1635.121643][T24558]    __do_fast_syscall_32+0xe7/0x950
[ 1635.123294][T24558]    do_fast_syscall_32+0x32/0x70
[ 1635.124976][T24558]    entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1635.127012][T24558] 
[ 1635.127770][T24558]  -> (&new->fa_lock){....}-{3:3} {
[ 1635.129386][T24558]     INITIAL USE at:
[ 1635.130639][T24558]                      lock_acquire+0x1b1/0x370
[ 1635.132572][T24558]                      _raw_write_lock_irq+0x36/0x50
[ 1635.134620][T24558]                      fasync_remove_entry+0xb2/0x1e0
[ 1635.136692][T24558]                      fasync_helper+0xaf/0xd0
[ 1635.138590][T24558]                      lease_modify+0x22c/0x480
[ 1635.140538][T24558]                      locks_remove_file+0x330/0x610
[ 1635.142625][T24558]                      __fput+0x351/0xb50
[ 1635.144404][T24558]                      task_work_run+0x150/0x240
[ 1635.146376][T24558]                      exit_to_user_mode_loop+0x107/0x4f0
[ 1635.148553][T24558]                      __do_fast_syscall_32+0x608/0x950
[ 1635.150741][T24558]                      do_fast_syscall_32+0x32/0x70
[ 1635.152776][T24558]                      entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1635.155231][T24558]     INITIAL READ USE at:
[ 1635.156614][T24558]                           lock_acquire+0x1b1/0x370
[ 1635.158682][T24558]                           _raw_read_lock_irqsave+0x74/0x90
[ 1635.160944][T24558]                           kill_fasync+0x138/0x510
[ 1635.163014][T24558]                           lease_break_callback+0x23/0x30
[ 1635.165252][T24558]                           __break_lease+0x7e7/0x19f0
[ 1635.167376][T24558]                           vfs_mkdir+0x661/0x850
[ 1635.169338][T24558]                           filename_mkdirat+0x48b/0x5e0
[ 1635.171491][T24558]                           __ia32_sys_mkdirat+0x88/0xc0
[ 1635.173666][T24558]                           __do_fast_syscall_32+0xe7/0x950
[ 1635.175896][T24558]                           do_fast_syscall_32+0x32/0x70
[ 1635.178063][T24558]                           entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1635.180630][T24558]   }
[ 1635.181457][T24558]   ... key      at: [<ffffffff9b1d9860>] __key.0+0x0/0x40
[ 1635.183734][T24558]   ... acquired at:
[ 1635.184958][T24558]    _raw_read_lock_irqsave+0x74/0x90
[ 1635.186634][T24558]    kill_fasync+0x138/0x510
[ 1635.188075][T24558]    tty_wakeup+0xe8/0x120
[ 1635.189464][T24558]    __start_tty+0x104/0x140
[ 1635.190900][T24558]    n_tty_ioctl_helper+0x28d/0x2b0
[ 1635.192527][T24558]    n_tty_ioctl+0x53/0x350
[ 1635.193949][T24558]    tty_ioctl+0x11c2/0x1640
[ 1635.195397][T24558]    tty_compat_ioctl+0x87/0x420
[ 1635.196941][T24558]    __ia32_compat_sys_ioctl+0x2cf/0x360
[ 1635.198680][T24558]    __do_fast_syscall_32+0xe7/0x950
[ 1635.200310][T24558]    do_fast_syscall_32+0x32/0x70
[ 1635.201881][T24558]    entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1635.203910][T24558] 
[ 1635.204687][T24558] -> (&f_owner->lock){....}-{3:3} {
[ 1635.206725][T24558]    INITIAL USE at:
[ 1635.208144][T24558]                    lock_acquire+0x1b1/0x370
[ 1635.210105][T24558]                    _raw_write_lock_irq+0x36/0x50
[ 1635.212110][T24558]                    __f_setown+0x65/0x390
[ 1635.213936][T24558]                    fcntl_dirnotify+0x6a0/0xb00
[ 1635.215953][T24558]                    do_fcntl+0x996/0x1670
[ 1635.217800][T24558]                    do_compat_fcntl64+0x66d/0x720
[ 1635.219810][T24558]                    __do_fast_syscall_32+0xe7/0x950
[ 1635.221883][T24558]                    do_fast_syscall_32+0x32/0x70
[ 1635.223882][T24558]                    entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1635.226337][T24558]    INITIAL READ USE at:
[ 1635.227710][T24558]                         lock_acquire+0x1b1/0x370
[ 1635.229735][T24558]                         _raw_read_lock_irqsave+0x74/0x90
[ 1635.231990][T24558]                         send_sigio+0x31/0x3e0
[ 1635.233960][T24558]                         dnotify_handle_event+0x15e/0x2b0
[ 1635.236186][T24558]                         fsnotify_handle_inode_event.isra.0+0x1e3/0x410
[ 1635.238755][T24558]                         fsnotify+0x16ca/0x3440
[ 1635.240698][T24558]                         __fsnotify_parent+0x678/0xca0
[ 1635.242867][T24558]                         __kernel_read+0x5b2/0xac0
[ 1635.244903][T24558]                         integrity_kernel_read+0x7e/0xb0
[ 1635.247100][T24558]                         ima_calc_file_hash_tfm+0x25e/0x350
[ 1635.249345][T24558]                         ima_calc_file_hash+0x1e3/0x380
[ 1635.251499][T24558]                         ima_collect_measurement+0x94f/0xb30
[ 1635.253817][T24558]                         process_measurement+0xdfe/0x2350
[ 1635.256030][T24558]                         ima_file_check+0xcc/0x120
[ 1635.258070][T24558]                         security_file_post_open+0xc4/0x210
[ 1635.260320][T24558]                         path_openat+0x1418/0x31a0
[ 1635.262387][T24558]                         do_file_open+0x20e/0x430
[ 1635.264394][T24558]                         do_sys_openat2+0x10d/0x1e0
[ 1635.266477][T24558]                         __ia32_compat_sys_openat+0x12d/0x210
[ 1635.268725][T24558]                         __do_fast_syscall_32+0xe7/0x950
[ 1635.270903][T24558]                         do_fast_syscall_32+0x32/0x70
[ 1635.273312][T24558]                         entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1635.275952][T24558]  }
[ 1635.276762][T24558]  ... key      at: [<ffffffff9b1d98a0>] __key.1+0x0/0x40
[ 1635.278962][T24558]  ... acquired at:
[ 1635.280159][T24558]    _raw_read_lock_irqsave+0x74/0x90
[ 1635.281850][T24558]    send_sigio+0x31/0x3e0
[ 1635.283266][T24558]    kill_fasync+0x214/0x510
[ 1635.284721][T24558]    lease_break_callback+0x23/0x30
[ 1635.286346][T24558]    __break_lease+0x7e7/0x19f0
[ 1635.287868][T24558]    vfs_mkdir+0x661/0x850
[ 1635.289253][T24558]    filename_mkdirat+0x48b/0x5e0
[ 1635.290828][T24558]    __ia32_sys_mkdirat+0x88/0xc0
[ 1635.292408][T24558]    __do_fast_syscall_32+0xe7/0x950
[ 1635.294048][T24558]    do_fast_syscall_32+0x32/0x70
[ 1635.295764][T24558]    entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1635.297888][T24558] 
[ 1635.298644][T24558] 
[ 1635.298644][T24558] the dependencies between the lock to be acquired
[ 1635.298653][T24558]  and SOFTIRQ-irq-unsafe lock:
[ 1635.302849][T24558] -> (tasklist_lock){.+.+}-{3:3} {
[ 1635.304455][T24558]    HARDIRQ-ON-R at:
[ 1635.305721][T24558]                     lock_acquire+0x1b1/0x370
[ 1635.307624][T24558]                     _raw_read_lock+0x5f/0x70
[ 1635.309525][T24558]                     __do_wait+0x13b/0x8b0
[ 1635.311364][T24558]                     do_wait+0x1ec/0x580
[ 1635.313137][T24558]                     kernel_wait+0xa1/0x160
[ 1635.314986][T24558]                     call_usermodehelper_exec_work+0xf6/0x180
[ 1635.317437][T24558]                     process_one_work+0xa0e/0x1980
[ 1635.319978][T24558]                     worker_thread+0x5ef/0xe50
[ 1635.322243][T24558]                     kthread+0x370/0x450
[ 1635.324038][T24558]                     ret_from_fork+0x72b/0xd50
[ 1635.326009][T24558]                     ret_from_fork_asm+0x1a/0x30
[ 1635.327994][T24558]    SOFTIRQ-ON-R at:
[ 1635.329239][T24558]                     lock_acquire+0x1b1/0x370
[ 1635.331139][T24558]                     _raw_read_lock+0x5f/0x70
[ 1635.333066][T24558]                     __do_wait+0x13b/0x8b0
[ 1635.334902][T24558]                     do_wait+0x1ec/0x580
[ 1635.336656][T24558]                     kernel_wait+0xa1/0x160
[ 1635.338495][T24558]                     call_usermodehelper_exec_work+0xf6/0x180
[ 1635.340860][T24558]                     process_one_work+0xa0e/0x1980
[ 1635.342956][T24558]                     worker_thread+0x5ef/0xe50
[ 1635.344874][T24558]                     kthread+0x370/0x450
[ 1635.346637][T24558]                     ret_from_fork+0x72b/0xd50
[ 1635.348564][T24558]                     ret_from_fork_asm+0x1a/0x30
[ 1635.350529][T24558]    INITIAL USE at:
[ 1635.351744][T24558]                    lock_acquire+0x1b1/0x370
[ 1635.353998][T24558]                    _raw_write_lock_irq+0x36/0x50
[ 1635.356497][T24558]                    copy_process+0x4abe/0x7ed0
[ 1635.358570][T24558]                    kernel_clone+0x12e/0x9c0
[ 1635.360468][T24558]                    user_mode_thread+0xcc/0x110
[ 1635.362454][T24558]                    rest_init+0x21/0x260
[ 1635.364205][T24558]                    start_kernel+0x484/0x490
[ 1635.366068][T24558]                    x86_64_start_reservations+0x24/0x30
[ 1635.368223][T24558]                    x86_64_start_kernel+0x12b/0x130
[ 1635.370285][T24558]                    common_startup_64+0x13e/0x148
[ 1635.372340][T24558]    INITIAL READ USE at:
[ 1635.373712][T24558]                         lock_acquire+0x1b1/0x370
[ 1635.375726][T24558]                         _raw_read_lock+0x5f/0x70
[ 1635.377795][T24558]                         __do_wait+0x13b/0x8b0
[ 1635.380198][T24558]                         do_wait+0x1ec/0x580
[ 1635.382536][T24558]                         kernel_wait+0xa1/0x160
[ 1635.384516][T24558]                         call_usermodehelper_exec_work+0xf6/0x180
[ 1635.386946][T24558]                         process_one_work+0xa0e/0x1980
[ 1635.389070][T24558]                         worker_thread+0x5ef/0xe50
[ 1635.391092][T24558]                         kthread+0x370/0x450
[ 1635.392975][T24558]                         ret_from_fork+0x72b/0xd50
[ 1635.395019][T24558]                         ret_from_fork_asm+0x1a/0x30
[ 1635.397092][T24558]  }
[ 1635.397908][T24558]  ... key      at: [<ffffffff8e40a098>] tasklist_lock+0x18/0x40
[ 1635.400267][T24558]  ... acquired at:
[ 1635.401457][T24558]    lock_acquire+0x1b1/0x370
[ 1635.402968][T24558]    _raw_read_lock+0x5f/0x70
[ 1635.404808][T24558]    send_sigurg+0xed/0xc80
[ 1635.406404][T24558]    sk_send_sigurg+0x76/0x370
[ 1635.408171][T24558]    unix_stream_sendmsg+0xbbf/0x1310
[ 1635.409865][T24558]    ____sys_sendmsg+0x9e1/0xb70
[ 1635.411420][T24558]    ___sys_sendmsg+0x190/0x1e0
[ 1635.412952][T24558]    __sys_sendmmsg+0x2ff/0x430
[ 1635.414479][T24558]    __ia32_compat_sys_sendmmsg+0x9d/0x100
[ 1635.416287][T24558]    __do_fast_syscall_32+0xe7/0x950
[ 1635.417939][T24558]    do_fast_syscall_32+0x32/0x70
[ 1635.419518][T24558]    entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1635.421512][T24558] 
[ 1635.422313][T24558] 
[ 1635.422313][T24558] stack backtrace:
[ 1635.424160][T24558] CPU: 3 UID: 0 PID: 24558 Comm: syz.2.4491 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1635.424178][T24558] Tainted: [L]=SOFTLOCKUP
[ 1635.424183][T24558] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1635.424206][T24558] Call Trace:
[ 1635.424213][T24558]  <TASK>
[ 1635.424219][T24558]  dump_stack_lvl+0x100/0x190
[ 1635.424233][T24558]  check_irq_usage+0x7aa/0x810
[ 1635.424256][T24558]  ? check_noncircular+0x97/0x160
[ 1635.424274][T24558]  ? __lock_acquire+0x14cf/0x2630
[ 1635.424283][T24558]  __lock_acquire+0x14cf/0x2630
[ 1635.424296][T24558]  lock_acquire+0x1b1/0x370
[ 1635.424319][T24558]  ? send_sigurg+0xed/0xc80
[ 1635.424338][T24558]  ? _raw_read_lock_irqsave+0x8c/0x90
[ 1635.424356][T24558]  _raw_read_lock+0x5f/0x70
[ 1635.424371][T24558]  ? send_sigurg+0xed/0xc80
[ 1635.424388][T24558]  send_sigurg+0xed/0xc80
[ 1635.424405][T24558]  ? find_held_lock+0x2b/0x80
[ 1635.424419][T24558]  ? unix_stream_sendmsg+0xbb7/0x1310
[ 1635.424433][T24558]  sk_send_sigurg+0x76/0x370
[ 1635.424446][T24558]  unix_stream_sendmsg+0xbbf/0x1310
[ 1635.424458][T24558]  ? __pfx_tomoyo_socket_sendmsg_permission+0x10/0x10
[ 1635.424475][T24558]  ? __pfx_unix_stream_sendmsg+0x10/0x10
[ 1635.424488][T24558]  ? __might_fault+0xc5/0x140
[ 1635.424525][T24558]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[ 1635.424544][T24558]  ____sys_sendmsg+0x9e1/0xb70
[ 1635.424559][T24558]  ? __pfx_unix_stream_sendmsg+0x10/0x10
[ 1635.424571][T24558]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1635.424588][T24558]  ? futex_unqueue+0x133/0x2c0
[ 1635.424622][T24558]  ___sys_sendmsg+0x190/0x1e0
[ 1635.424640][T24558]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1635.424661][T24558]  ? __pfx___futex_wait+0x10/0x10
[ 1635.424683][T24558]  __sys_sendmmsg+0x2ff/0x430
[ 1635.424697][T24558]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1635.424712][T24558]  ? __pfx_do_futex+0x10/0x10
[ 1635.424726][T24558]  ? xfd_validate_state+0x129/0x190
[ 1635.424741][T24558]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[ 1635.424757][T24558]  ? lockdep_hardirqs_on+0x78/0x100
[ 1635.424773][T24558]  __do_fast_syscall_32+0xe7/0x950
[ 1635.424785][T24558]  do_fast_syscall_32+0x32/0x70
[ 1635.424796][T24558]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1635.424811][T24558] RIP: 0023:0xf7fc3f7c
[ 1635.424821][T24558] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 1635.424832][T24558] RSP: 002b:00000000f544450c EFLAGS: 00000292 ORIG_RAX: 0000000000000159
[ 1635.424844][T24558] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080011500
[ 1635.424851][T24558] RDX: 0000000000000001 RSI: 0000000000040015 RDI: 0000000000000000
[ 1635.424858][T24558] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1635.424864][T24558] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 1635.424871][T24558] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1635.424881][T24558]  </TASK>
[ 1635.486675][T24563] netlink: 104 bytes leftover after parsing attributes in process `syz.2.4491'.
[ 1635.635729][T24555] batman_adv: batadv0: Interface deactivated: macvlan2
[ 1635.650307][   T29] syz0: Port: 1 Link DOWN
[ 1635.650331][   T46] netdevsim netdevsim2 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1635.654970][   T46] netdevsim netdevsim2 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1635.657779][   T46] netdevsim netdevsim2 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1635.660553][   T46] netdevsim netdevsim2 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1635.674564][T24561] gre0 speed is unknown, defaulting to 1000
[ 1635.780836][T24561] lo speed is unknown, defaulting to 1000