last executing test programs:

1m14.80042476s ago: executing program 1 (id=2330):
socket$inet6(0xa, 0x4, 0xfffff0e8) (async)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94) (async)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async, rerun: 64)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async, rerun: 64)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async, rerun: 64)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) (rerun: 64)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) (async)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) (async, rerun: 32)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) (rerun: 32)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0) (async)
r3 = socket$inet(0x2, 0xa, 0x262)
ioctl$sock_inet_SIOCSARP(r3, 0x8955, &(0x7f0000000000)={{0x2, 0x0, @dev}, {0x1, @local}, 0x4a, {0x2, 0x0, @multicast2}}) (async)
ioctl$sock_inet_SIOCSARP(r3, 0x8953, &(0x7f0000000000)={{0x2, 0x4e22, @dev}, {0x0, @multicast}, 0x38, {0x2, 0x2, @remote}, 'syz_tun\x00'}) (async)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x2f)
setsockopt$inet_tcp_TCP_CONGESTION(r4, 0x6, 0xd, &(0x7f0000000340)='illinois', 0x8) (async, rerun: 32)
connect$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x16}}, 0x10) (async, rerun: 32)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=@newsa={0x14c, 0x10, 0x1, 0xfffffffe, 0x25dfdbfd, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, 0x714, 0x4e23, 0x5, 0x0, 0x0, 0x80, 0x3c}, {@in=@loopback, 0x4d4, 0x6c}, @in6=@dev={0xfe, 0x80, '\x00', 0x19}, {0x0, 0x192, 0x6, 0xffff, 0x18251c, 0x2, 0x7, 0x2}, {0xffffffffffffffff, 0x2a, 0x1f, 0x7b8}, {0x2, 0xfffffffc, 0xffffffbc}, 0x70bd2a, 0x0, 0x2, 0x1, 0x0, 0x20}, [@algo_comp={0x57, 0x3, {{'lzjh\x00'}, 0x78, "2c52b4879ff0ffff5971abf389a6a5"}}, @XFRMA_IF_ID={0x8, 0x1f, 0x2}]}, 0x14c}, 0x1, 0x0, 0x0, 0x8801}, 0x0) (async, rerun: 64)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc) (rerun: 64)
sendmsg$NFT_BATCH(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x48, 0x16, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x14, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}]}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x1}]}, @NFT_MSG_DELFLOWTABLE={0x48, 0x16, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x1c, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 'veth0_to_team\x00'}]}]}]}], {0x14, 0x10}}, 0xd8}}, 0x0) (async)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r7, &(0x7f0000000480)={0x2, 0x22, @multicast1}, 0x10) (async)
sendmmsg(r7, &(0x7f0000007fc0), 0x800001d, 0x1c)

1m14.572074243s ago: executing program 1 (id=2333):
syz_usb_connect(0x1, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="1a0100005c6b4408070a64006e40010203030902240001a82300000904000002ca744d00090503034d00ff99090805", @ANYRES32], &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000200)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d491009b3426c8928f3d97cb", 0x10)
r1 = accept4(r0, 0x0, 0x0, 0x0)
ioctl$int_in(r1, 0x5452, &(0x7f0000000100)=0x8000)
read$alg(r1, &(0x7f0000000000)=""/35, 0x23)
sendmsg$alg(r1, &(0x7f0000002a00)={0x0, 0x0, &(0x7f0000002980)=[{&(0x7f0000002800)='a', 0x1}], 0x1, 0x0, 0x0, 0x20000044}, 0x24040011)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000440)={'tunl0\x00', &(0x7f0000000400)={'syztnl0\x00', 0x0, 0x8000, 0x700, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x3, 0x14, 0x0, 0x0, 0x7, 0x0, 0x0, @multicast2, @private}}}})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000080)={0xffffffffffffffff, 0x0, 0x0}, 0x20)
socket(0x10, 0x3, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
socket$inet6(0xa, 0x80000, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x11, 0x4, 0x4, 0xff, 0x30000}, 0x50)
r2 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r2, &(0x7f0000000080)={0xa, 0x4e04, 0x3, @dev={0xfe, 0x80, '\x00', 0x25}, 0x23}, 0x1c)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
r3 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
read(r3, &(0x7f0000000380)=""/144, 0x90)

1m11.264952538s ago: executing program 1 (id=2343):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
memfd_create(&(0x7f0000000300)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\xafa\xac\x06\x9c&\xf5\xe3j\xfa\tcqM\xb8R\x86\xd9\xd2.\x9f\x12\xed\x10\f\xbd\x1a|\x8a\xbb\xda\xcfY\x98gU@\xf2M\xc0\xb5\xdf\x9a\x8d\xdb,n\xae\x0eT\x80\x8c\xfd\xd7\xb0\x94\x82t\x96\rKx\xc5\x9b\x8c\x87\x96\x8bc\xbc\xee\xcc\x9f\xe3F\x99V4\x8e;M\xa9\x823\xe3\xb3mG\x8f\xdb\xed\x1b\x05\xec\xfc\xd1\xb5\xfd\xec@\xdeU\xdd\xa4\xc1\xe4L)\x8e\xe5\x91\x8e\xd4\x89\xef\x95T\x05G\xac\xb8\xc1: )mh\xc7\xf1?\xbb\x13;\xad\x95\xd70\xb6\x0e\x7f\x84r\x0e\xbf\xc5\xf6\xd4\xdd\t\x14\x18\xf7\xefi\x93\x03\xd2\xf2\bK\"\xd2\xb5\xaa\xb8\xc8\xe0\xac\x99\xe8su\xcd\xc3E\x12\xd7\xdd\x96!\x16Tu\xe3\xf0\x84#R\xd9\xe3~Wj\xb0r\x87\'\xea\a\xcfOeK\x9daW\xf4\x87@\x9c\xf3\xf1K\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x91\xe6\xdb\xc2\xa5h\'\xdfIn\x97\x0263~\xeb\xbe(i\n\xc2k4\x7f\x12\xa9e`SOs\x8c\xb4\xe7FeQ\xc6$\x92j_U\xfa\b\xea\xb0bYkW\xc0\x05\aC{\xcc\x03T\x17\xa5Sk\x87P\xc2\x97D\xb2\xfa\x1b\x9fe\xf4\x10\x1a\xad\x92\xce\x88\x1b\xbc\xe14\x19\xaa\xd3\r\xf4\xa2\xc3\x9e=\xa0 \xe6j\xe5\x85\xf8\x97\x03\x15\xaa\x920\xdcrI\xd8\b\xfb\xc7\xe7xX\x00>d\xbb\xa71\xad\x9a\xfb\xe6\x13\x87\x93\\\xe5W-\xfc\xfd\xb8O\xb9j\xb8\xf2\x9dx\xb2\x86\xad\x92', 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x4, 0x6}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
openat$tun(0xffffffffffffff9c, 0x0, 0x404c03, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffffd, {0x0, 0x0, 0x0, r3, {0x0, 0x1}, {0xffff, 0xffff}, {0xffe0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@newtfilter={0x3c, 0x2c, 0xf3f, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0xb, 0xfff3}, {}, {0x7, 0xfff1}}, [@filter_kind_options=@f_flower={{0xb}, {0xc, 0x2, [@TCA_FLOWER_KEY_CT_ZONE={0x6, 0x5d, 0x9}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20041090}, 0xd0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0xfe, 0x7fff0006}]})
ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f62726964676500140001007767"], 0xa8}}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="6000000002060108000000000000000005000003050005000a000000050001000700000005000400000000000900020073797a310000000014000300686173683a69702c706f72742c697000140007800800064000000200080008"], 0x60}, 0x1, 0x0, 0x0, 0x90}, 0x40c0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000400)=ANY=[@ANYRES64=r5], 0x74}, 0x1, 0x0, 0x0, 0x10040003}, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080)='tmpfs\x00', 0x0, &(0x7f00000001c0)='grpquota')
r6 = creat(&(0x7f0000000440)='./file0/file0\x00', 0x188)
quotactl_fd$Q_SETINFO(r6, 0x0, 0x0, 0x0)
syz_fuse_handle_req(r6, &(0x7f0000001300)="171f680a7653f364b8bec8da8f9e3d74b95c18165746e5bcaad7335a845d413da6466ee95124bf8060873d047473c118c6fbc604a17eae3b3c1c0b01870857f6a07c3d0ed3443a900e5970f5fa0614408c8c19c74935ffee9d2ac98a1eabd61742ec9464974a56f0225af3f7d492cfe9e995a615e0ee717e9898f68c973b5ab763bb05fcbc093e0582e1ad2412d0ebadbfe0215f9eb5b008df635c98434ca7117115439feec1b198ee8e15678aae6f1858a206a72daa659d80d5e641d3e750bbad1576e28cabd2a9cba308e5f88ebe057d96aa7d22f6cf82c21f1234e95fae14682af84c97d9df088b3b71c4b9bc79dff4cda5a6fd9aba9dc7b66e25fe3a5527b972aee4cb8002bef9394cffe66553ca59884857f0f1437a9f2a7cbb75669e6955c25c06eedd3924b6185bbc4fb3f4e481458393bc4bf15844848e8eb499fab9f234e72d837fea38e0ca91a6b5e88890502ee40f35b1fb5b2a11c642c520b4b42e93e3cf2df94c17e6308d0d0531cfbbd0ad6931703c97474e022383298dbaf6c65191fe2dddb51cac2d876b6e80cce2d12c03a9dcd36e199dbd134594bd9e6b260fdc989b79685b9eeb11dc20388dea9861c92dd02d4e50dd63afe4e53e3860d418b5f8e9119dbfcc88b4f8ca091b547af4931820018af44f278a91086a4e22e93ba5f8a9b0aa5b98bd541ba22e83fbd05bbfa185061b0e8e39361521f07f1aedbe819f3d1ea5e74037d767e9b2788e0ddac91679dee96a608dac163262cc924fca4153909ec6c2f4405e789d940feff1841bfc9ad19a0c4520183e7dd48546cac767fee15a46411607a4e4022691857da365540aac7087b424d205ecafb29fb0b8395a622815b419f3ec55e103956e1046a93b1512b5f7ef1a8a116b476f75023f96ba552fbcf7cf8c0697f6eaa580f28d55337ddc18f138b82e0f74c5766c5e0e3bd6ee16647c720eb20d4ba8fd2bf83fd626ce9a67058568762f88f64fd0d62dc66177271d70abd05a8476b42722f67b2e96e75b903557c3154c3425c17f0f80f050215f060dd6fd4c9d62f4180e020a9a43ad5ab88abef4559868493ff41113faad62379e0a9ca3a0c0c49109d8bcf465ae4aa3bc25bd2679aa4f396d26a384bc56c24b88b50e6872a5a5f0684a28f9476449602189e2067448d84ba87719e9d0b3d679da2647b7e4d2fbf7b379136f6e64999bf80ef8852da21e574d4bf82c8730d40d6b6ac00024b86b40790b27f8102a4ca6a3b5de95ae62bc7f6ceb306c4d98184f366b0f4bd7dac55f2bf1ba85d253054787017c5e1abb30f1a498b5dabad8b26814f9bbca5ee3f7fc56c69b421d7088e9718e8e3951782d005d2cbedb0f041f1bb14e3613767b6157b2207e405f369d0e6f6b73ce54841130abed7387795c739c773d63df2f83cc000792ab1329cd248f78a4caea42e05a00603e1ddfa335bc16b55776d0d176d0f533d856da41cbdab1887b6d4c8785fefcf2def072ec4ec0e76288ad711e43b46a8de81a379cdd574c40d8dd99fa7b0ff4125185cef1f114f4bbba46362217765b4778d3d88b56b9f187685f7ecd06c37b11a137940fab833e823846cfec165496e55a25c142010fbe78cbf76d16561b38d2c9d6694ca1c8136997f53c0d4cf7cb6f5d6f4c69e769b35c7c8b288955ae4aa5f5b92184b4ae4c899e0820421ce1c176223c1a2fc58522efc81e8ed04b93aa9b067fd49d80999e9d8b817b8f327bc36e6e7368172516d412a068c025e1c3d0ccb45f15fab4665a063ef77a654a6fb7b19d7ac9baf6388c8db0f591efa348436c66a0e6ea17e3880cebb37df78e89582c587ef40571d0241b3bc0ec005a6c20c60a051d3bb8f3f822334cc7d0fe3a251ee8591f08d3a9511dba4bc2be526975e99d680a87bd3c5e5a17d529365c702802155c20119f4bcd7e7aae9bcf8a61b650588cce86ee8e57fc240c003e9197cc53ce969d43594e3f64405ec07a3c4fc2bd89dee218054c987387346a12bc478382fbc31dcd9501ea9c4b9e6a85e6979f4388473f00406144d9a43470fa844c62c3b96527861d4fa65b812335c261742e0d6e4ec34b03d2f18cafc942463b8b0cb6c3ff8ffeea263c547c2030de4bb2e8ae9fdbc0002f744d4022ec3f9bea41eec2873a326800fced5b839d1135963b134f667835a26d5e4d86497a5475e79f9f0908a9be57720155179b2404f5258ee784eb348df8248c8272514f366861b11f40444a6554d9c762639502a04be12fe5139270d37b7c6f218e809a7a468b52700795b092d8ab4db4032501170a915dd06720f4ff56ceb50125f54a80119f80958fa733cd99619f16d3697093863d8d89aa434082ec0441b1c812b27d032fa7ddaad7c07bbf6f528d7051202ee622b05ad408c9b50ee28abda4e282c181fb42df181661d296b932e9ad39220176bdff5e04fb4d75d2095cd2dfa251104b17f75989323091c45ac24bbc831ddf9962735ed68c2d4b31c7fd8fd349b92e7cd61621461deb44a76ae2d0c9cc4a75944a34e7e47ba9bee6164d868b63a3df2e1757b2368b81a7fa278f4e16a4d74b9f08913ba588dc463ef0119ee09917b33771e9fc55f8534bb30ef99f23da1274182b327ed4a059451aba33cea15b1067eabb99e0838e5b2bcab309fdd18312891e8fcebfd6a87c9aaabb345aa0b6a2f9a694ea8928e514f97126f2d13de6e24ada7ec0469f95c46f868c59c14a1f314091c063ac720462495696555e6b13d570d06ca4917a13e24739fbceaca4457a578a564ab26f3028db545ab00838527e514be2b29237a4e4e7c124112e0db93961920e8a532c9a9891cf2149c0123e62cb4c9bd9b4e36714489711f236d2f0ee2f9be0e5f65a99aafae132b19adb72b33e14147559aa8d5dec8408afbc75fd3d45fae1adf8a04aa22fdb36bda807ae996641a2466421854fccabcd191cfddfe61e872b1548fea418db31652d651a01caf6fee95a979c30b8547b285b3ac10f1aad5e591af4050ed3c14516a78e513e6d46fd26cee846fbc3fd9829008f464cd88770bd2ed7c78066d30dab114cf6c4bb981f347c6f745d730c1efda864238c1c4aac8c9e008beafa18484eefbc574dbf7d22c0a5763fe2d7dec5c6b7e3df058e1bfb22ddac262ba5baf386b0d1d1a55d85e9e726b1d263307eaa0a5cd6fe83d38ff1cc7741396b727e48603be4977e4cbf9e209734966c1d849510d311d3c4bb66fbf378838ca3e2d3b8e99e6287f21fd4524c3abafe234eb9dd6bef557d5d33343957f38e700b60f3a5b6f15cf597feb402fa3fb1f3eebf753938089c4a59bee57d38fccf97521614276e19d5a01abe7f80fa89ebd42bf049a22ef401afd33046cc150aa0b488755fbf5df925070c85aff79341fe6faeccbad8939c33f2f51e9b5d55d90574c8a3be25287716331e98789002f9d460a4c7a4c41e4af2e50d78f20a0831d167c8a8261b189ccc3f35013576df0a72a1e42f14d27c1c901867b4aa38bba128059a0da191cec48967f18fadaac9e2b454a3c54f7628e15088749f031ad3714f97e75ca1a59cdc99bce0ceae0eb11317d6fedaf80ba2228604c9bfde7f02cd0939f9b5741aeb6f3e25a8358cd39f84f3966eeb1bcf869643a8024aa92a9cffa9eb27ffa3148e7427a8fbae7f17ece92a3355f32117b7e4ff152ef891c28c4d6b4c8b7f8e9782f81adbad250b8156eddf37ab9bae2619a4ebc68e4a5a5f65f1e3857e26d17c53c9cf736212455a426fb42d1174fa686e196e2345517f90a48be14912dea8f0953ba4e28c5b5f3ea3bafa8ac4944f8b3e4474f61a3c1fa3a64af778797ff809f18465f3af0377dc649fcd021f1d234e77525edb5ae3608e90d30f8174a6752b7a0b6ecf86aeb2d107a4e824c998a6cb925d0bd64079006bd9a1aa34ba77d2fb8774d715430dbe379642e6ac0af37b9f4e01ff26d92b7a3aacb29e01d0162346fb5e79d3c346e29f25790cec11d77b3ad2cf4f44b3c430afb04bab1e3c29dfa27f5768e905873391514ed10c1ba5a9ae706472aa7b8a9f4b8e2e2395a5d43c82529b7c7e62ee97b15ac1e4d86a10159f6a94ccdf971320fff9da7a831a7f5397c57c2bdee5629da69a1fef07d438043c6ba8462da6974c9c4dd0dfc08e0519b15acb0f0521f9537ad0567ed0098817e0f93286fda171d9983a73514da1d9bbbda414e48fb499bd1a2d911f2369c22127fef3333923f6d08ce7045455777fdc81479c5a6b600adbf3cf8f43be4e2e7e08c7aefe63ee220b08aa0c19b0c887bece42a991296eb80a0264ad024efb5f3cf145795ae58d3617c66968a9ae55310f933c1a4134270ea259441f538331e5e99f638b77e1876e7e9e404e7ea6fab36949ff5b3641d3616efa9164a04fe48c9f0784d0dfdc8808a20602a0e5b969bd4b468a0a2153782999515fa50521709ddfdea5d89f453e416e9a7e63fade8dde2b010ea9b9741423e6bf84ed70e96f364eda2e08252d288f8d3aa6430b1607774c92b0935141db25af3885780335b3b01cd0965ae13dfeb3bbe0c83ba30a50971f9ad9130d3322acf32f861aaafde84fffd56190db73da0ff9220b11179d4a3a3f75f0ce66964b685112fc9c3166c971e74b9bb5c09fbce09a807eb1d8559cf61f13446c908abe4d60afc2a596de441713fd13b79fab668e5cb04c5b267bcef3692e76ab6d0ae904127b65366ac9cc798086e69af59b18879d322d53a0c729a61064aad15bfd8f3a3f86422873483fa07efca70a3276bbd3cc489c3c995bc7b788277c5be523e946403849e84df0ade45c99478930fa7ff3634503fea7d53893e4db3d1eab638c20e193138a500bb60919fdd05ded6d3845d2960b2f0bad124ed8ce3296f12ab55c20df88785026bcb025bcf7233ecccc7b713d66a80ea809f0326f6c12d9432b956416a1ac130d1a6637892ea5f3a44642abed09009dc47c3ce7c4528d6ec1d677b69442fb19ebd64e77aa1e37fb0c2e97049ee3dc5cc06be2224217aabbe198105a6bd6fd82e1ddb3d71845cb6a32fc97e69b2214f237b700d5b812f747544523a889426b7f8f3ef01a6821aae49100b991f97fb98be148a8fbc823400556a5f37b6dc27011eef6a8afd813a934491f9b42ea925cd93bcffd6fc0a53834a12fc5d630f59e8a94bb03a8cda1d6417359000ca9a0f397a222bc7798b488be5809214ca8645681d8bb21334766b40033d10bbe21e292314abf1f521859069ec1cea73f64fbac7ff039b1555d9e127379335763227f6e31b9e308f7b0c61976b7f665ccd0e36bca7e46e9ced7480c5817859a2fe3799c8aa1ec45674532e71907c72d022fda7ae90cfacb1615cd77bb975063b15cd74d12206222e1273e6f78d731ddcf8a17e611107087b3b89df8e8b99554f122a77908d279fd4db02c53fe8cdfefc76cb5cd12db86b7d53748ed6a21643f46b49b5909c9ca7d650b3687402ffa51cb8e96b11f545330f4967de3dfc2364073fa1f9ac6aee515bcf444a433f396804a0590283a1d53e3fb827745e39a2f8b76238b1b19598824311f790fe02a786c7c72e00bbc631ca2435d33aa24d6dfa6537afc041eab7fcb86de19c2b28f6d1191014a55da71ea3d1cfa238b7d5a959aefdba0940746a7c1d9d1b884355cbf7490ac0bcd5fde9d40a13e3af713f5aa5aabcfce8a4102122ac40bf6f46fe438662d436ec9a841aa054337a32055524d99c30e5fe628fc5bd39948acbea171f470423ad42774cfd188dfd94a7c3c4553a31b3633258f1a00a2f720cb763b144ffa6a93cfbb872238b0867c551ff745cf8adcd16d53918f176d7c27c5b7ae41991ad388afb545df174127834232946fc6fff0ae6af2718b3776730b4139c578d391ab4af7a17ca461bc2d02bfafd6308b7d1b6d198360f21d299b0d7abe9929bdd715b98e0bab5749a28d53c95da0e1e30966fc2c6bed050c176a679e3900caca5a1415ea0ef314532ea399874e0bd22bb0fc235d2491a96e59fdc232572cac1f6bcae5792a29c349508f7aa8faf78f5dcc1d319fa270819a14d856c7f84f1d17f7020f264f62fd2446722bc0f62741eff68810d5a0136761fd1e9c3e42e123f98cfdbfbadfd662aeb130385a1f37d5c95793c2a905e058d7c839a5f2c13432ab2073ffa2fda4d503ce7a3f2c238dc1ae7edde42f5a5c7368a0f6b9646f27be73d2bab64c57608c5b2d83499e804fffa44b77aad6c2d6a802f96866f3ba0ac54c968a08957b03e212eb2e100329f25bcdc4b352c30073f5a1af6c5955be3bb51f52ead13a2c5ee6a9f360e4fbe5e0fd68038bb01398d475d4aeadc3da0a8c9b33af98fcad4cc0403500aee84b7efc370a3d5533b0b0bcd8290f23e83dbb41a25276b58c4c9841e58d6adc750716f15b37968f56009384b1e77b6f088989246ffbd93efe3c5c058c23de720c00eccf2ec36b71ff1444fae2c8aa248bed7286955381f8d265af11fea47df74127bb9c77bee9689d53c2257d238783e9bc8f7cf74959039e9008e47e987907739c06b7de8d56f04189e4ffb700c7da71339b08c527dcc24caed89b0778abd79ad9b9c2745836e01a9d7454bc60f4762f0740f24370e7854cd24b91a730e1d2b3e32f005d6968ccbd2d259503850a0bfa863f3e41553857830d4b23aca6282cc2794c030b40fc245825ccbb7654261a259caa2679183b8c3b655878ecb6fc32f0f66e79539b235e02ee1fd7f8b6a90cef2111f6cfc8b6874dd42c551e955711e29714ebcd1f6de3cf0fac8b5f0e28775633a13fae334c4f1d61abeacd5475ce38662a6a087961d56a69296112a48e46104501b69989d8815c0d08584e106c44acdaf844b2454fa556f6f7598058a23f2a985468bce389cee2c87d856fcdb3012be3b31ed9c4678ba341008a7f9371cfcf6beb23ced68f661691ece124fe73f39a685bddf7bcafec97ecc240fc05964715ddbbdcbc0155f69afa73d6026d912dd04f3f15bb9b03aa2e51b3a368706a87c5751762ac7ddc676fbbd2fb99d2ff4a381d1300edc0331c87dd6abe8b4c9de19032a00a77ddfbb370af865916a3d86fb9a6eca9cbc48fe663fd3b007ae51f6326ab0034c5e9252cf47df201eae4e5b91019136cc4937c094b4d4822f6ce02b066a0d3c90a1f093f1efb6e9334526f0d723c149ea8b2bffd62b63621bf7c0239a942f2c59db7115d83b62a6a97125276918f4138c1d6de0b310dcae0825e345582671b9a9628fadcf1ee38dde6ea3417464189afa05272dfcf754c2e6deb3dbc8bb408231ab30365c700478dad5d067dd0bb3b1ae739478f7b5b8cceaacf22ffe00deff13178b4825246fdc1e57afcd86fd17a329ba569f34a5c1ff1fa8af07ae960cb375f149fa23a3735313be178dd24cc2cf6ef026d1ef153bb8afc61ad717ed425d928c9827fcb60787236372337bb49f41462adbd1550e50342b90b190876f9982f19b34adbb8ae8fe3315cb8d24655ab5e9d2db6e2591913f586f4f0df3f505755c1fcebff179670f4c91efac429b3a4df0907446164ebb7e4e85a6d95aa1c628eb7e33efb63ba2f22d7bbaff22f18bb4660c115134ca38e2320401f4297a2861101775e2cdf5e62e875d96f16ec9652e8ba040ccaec9e7a98eb0f618b4be88138e3eda290417b601a82e2ba7622b51f109c7b896ecff16159313ba317c3d171d4a4bfbaa49c83b4dbdf1614cfd9d952a137801d0b794aa07d1988b92770c33a361624744cbcc7e18fbfae8b1c5e9d7fa4fbc79f42e43bc1b5c5adb1474910effbcc7f6984b0dd35df886f5448d9d9b11d96d7b6196b8da07577cd7f39157726b015b8a4580fc3bb06af4b38ea57b60f53cb1d5d792d6b51f7549be37e475eb757dc7a95259e2c14acc8863e28fd53504416f41972dd8254fc4166008af7cabd1bbc04bab411ea44ce88c0ca263c96c62e5347c9a2f99ebba908f61fd59d304c812f86ee09913ea5780705f92f5bab0e4aa47e81aa79278158b6788ad6b7c0605d08c4442bc55a32aeea5b1dd4c85f8629eba2ea0446789c2096841b63b8157abdc7add90d25fa5bf96c83b135a6040a33ab83cbecb166643639146b9636f573e9c9325d0ffab12786674e9f0068fa73da89880443c208f64e7bfc6b16d167c09958ff2c67422bc86f12cb2a8103842bd734140ee4df3dacdfaeab6e3455c8cbe2964b590960694e86ef74a6ef0b8faac1567fabeeb42fb5b690a0c5224a22ed6f686abf98b0639d8dd9cc78084a7454a75a4a98867959b6100d76f7bcfc222d780e9874e4d256f48b33649ebbd4ebdf20c97a1a0a99152dfedaa2c94020d4c6e0e19d2281508882ec06c1c9652b488eeaafe6694723a4342c6cf8e5397fb301d047907d9940e91c4b77b03cb4895c9f6a644c26a8167d3f1a0957f0c7f12bee3e0c2a9e4dbf759b74dc45764a7b745cdb7fddc125b1b31d7c398bc649d72c160cab0aafaa4b134eda10a92a582d89dd2eeed5fc49ae744a1396c9daebe8e93356c72c1846bf2223783035728eccf0775d15e16dfc59a485f9aab6e2ed537559cf97efb8aa6793188cf5c27a480da8690263b456d25301e6680ea99b16b245c5c0e5cacb67b696bf74641cbd24bfcac7e93608ada3d37218623a8b14c2183a6f2126c3ce4864ae383f8062bed196ae40c350c4b2e07273cb6c59b39eb332fa9cf5d86ed32ace551bdd49138c20f72f2891fd3e1650eda280d687ea3f11c3e3a06b64440b07743851fdb3ab20e28dd0f817c560025b1b95e55db2773b337f47775c6f1f0137935b4bc7dbd47e2c5db7594185d6cc97ec7a1fa36afb1b147ac8f68b616de75363562b258233bb21f5e676ba8a2cb428d2cc6c05529b80e2188de7e6f23200c1a3e023346eb39da24b6f131ff9b1315fbe5b43bafd4c992ba447ae3f0aeeee93f6b49df17d5ceb88f25da8045362dc6a11cbca51a06159b13d81913334c0c450847b874eb6ada90411261f4f48e90e8d70ace53a70cf338e8b80641fe96370efcf9be12b2e650c17464312a43534a8ae85108ee7eaef9714996290d70ea9ce1349c1f9bbe1ffa2aa43ddbcf274845c885a830bac7d0f35d743e59f91fbbcd7c7b38b3059a300f28985188afab5fdcb85602b485f73ab671d05bb4907af3945d5b1102119c250330f1f5e6841d789299b4dc15a2569a4159e0123973adea7581c1f6e6726643460465c09b2a671cbb50af79883981e676d3ad5f6b7be4b08c5f512ee17e4b68e500a3eb7f74c3318db173ee3fb2d8c5f7a8ecd39ad204997fff0d459cf1f00749614a000222d1ccc149f461431d77d43a6c2b5086a530f020d277d60a6dbfacbb9863b1bb07f09300972c4ce8e1e17919991ee457de77b612fceb094241670e35dff7f03dd7900565fc99454958be110535f8ca013a994eedf0f429e9d83a96437a5bc0364f48b647c2114302907647c1655ef099da1bc40ec121e19f76fc83a34f5a20aced59aa860ab39cced6ae4b7c20bc4f539b0be84462f34986ac9c1317cfecb457e99cc621ab7487d7d7bcc60046609bb5341afaab4f8f0699ea439f6c50cce2ab59479f5f846bf9f45ee10a4452429fd7417eb7dd22943499536433e49fb0bcd0d7c1e4d63e18bf84bca5cf1c2cf51b614676b34506e738aaad6010a8cd846267a32f6152eeb6bf4fc3a1a1b8811dd978c849b041f78f6723ab30a38659ba92cc3f47fc32bdff3ea65f8777aadd1142201a2b109f2ad52e703fdd1b433e40101647698acc0ee29f34e2262090e01462d42e868efe9567e314613e8cc9946bd34a4660c7058f0db0def3ee4031574274e3699b54fb5009d9c7ee0b50e81287b0f58e58bcbce5dbe0354683ffbc9c0750629b7380a9830461af71cd0f1ce094ed6996ee56632cc40c28054b8594616605c1c8d429a75637942395e7b6f0a4743c6adc8c50c320e7bfb151cb36ece08f16dbbb15150bcacd1eff9e8ef032ecb3cb4f82a14b60332558ca908e1ab5b4fb654d5bdb6642315f2ac110d1b9000e22ebaf7ebf195cf9d30cdb0147b16a88efcde6058da4f324e5ad21a616e7b62e51b903dfe4f500f1710790a581a77733a9160ea0efc45b93dcd0bcf1b87c784eb890b6f35bb8d2131914d158f5c4b43011daf21ad0e989d9547f9134e97f91eae01695b5fb47c8f306bb009c3568e8f4e4f2787b4691997d65081e8ea099e89508fd7ce3fcabfc27acf2bba95714ea06f6df9f6d446bb997ff1e31ac44b9dfb48c352802a0e98d42d84dca6d92c24515ba9627f2d5cc476756add462ab8effe0319c450a8f2bfbc8a93a2499ddb91c4fa50e0676a09b21f5128736bdd57e8637012c0435559b2fbf678bf5ade9fb10ef2c07565b6ae5ae537cbbf556b3a5da9279435eda120d01c6b936f28de6e20f60a9d81fba795a58dc007ce71e90b402276b8b173d94ed395f1ed9fc12b06b49f8ce290a7287b227a5261a5b04d9764737e089fdd095c5f27443519d62b0d4a97d6a19d73db690cfb94bb3b24169ae9248a2898e118c33d83098944342d691f0bfb468deef663d4f586a2a56313fbbc2a397a131c077794f88bc0b67a6065b76f9d73917a8049bc6c1462d2298c4aa533a170d16f8e8107a9c3733f067cce5a9e4176063be81af8ef535fcaef8fa6c66a0f8f4ec88c9db4b452825a1c2b2dce642551505e05f8a8c059261183feac5cba4009a9c6f335d70fde547cdbabd920a8d9763c787c60f2e2421070db2acf6ebb5dc95ae44a1de12626f94c130dc480730983b1c2303b953495aecccea34d79673ad04b4ac1b3c8b409bb1cea2557d94814e47462c52a0a7f66e0e687b02e357fdc40dbbabcdf7f55cfde0aae91f9f3b329d2de5d936d807519f04726f1bb0e2cc5909988647039aa2b616c509f2c4277206889f1bc67f58bdddba4a6a3a9cc05268c838b3e4773ec05ffacfe7e8b6ef7bc9a6422184d30d2c69790d20128eaa3f8a9e3c6350d6bedfd62776286d88ea75150927f7e261e9cf1bd868d9d75ec08a0abd165f065a9285a03688d461d3614ba36170231a5358b05d36b4526c9b71ff3fc209028c5ba228f85e1a7f54d4ccc2739ff7e0daece5701c16f412748d5696c2cf6668614351f671eb749084f20c964bf4987400e935690044076ccfdc3848dced45ab5eff720c738f76aa9351273b81b38b55373d319dc7c27fa410dbb4a5bd427cabc772601f7253ac527623c283f51a5916816c5b6218f3375e9efa21a485ec07f7d6489eb088919259511b218ca478c401e09fef9b1fad3555ce04fb930d1dc633f8ffce7797d9dcfad574958e8b733ac0760c2c54dabaffa96e2feed005b776d7e78747408df6dbbdf4bbfc144961cbe304109ffa939868dfc6ffc19cfe932aa42bcaa272536f1b4f7bd81e84f2e99c8c9c45a2fcb00667b8902486f8ecd531e7ac69ec04cbc4dcbaadd3854938577a0dae431ce8462ae6df29a80ed3df9a98eff145892ca40c8eb0f81e616df7367df807f03887e310e46f0ceb93058b287d525f5c3e5d8eb206ba39b61e8d6de2dd9525daf5147d9bbf61606ef527c62e22beb2b83b16e5858d2d462b695c1974da32aaf5a681268006594951d", 0x2000, &(0x7f0000003e00)={&(0x7f0000003300)={0x50, 0x0, 0x6, {0x7, 0x2d, 0x8001, 0x80000, 0x4, 0x4, 0x1000, 0x0, 0x0, 0x0, 0x100, 0xed4}}, &(0x7f0000003380)={0x18, 0x0, 0x5000000, {0x9}}, &(0x7f00000033c0)={0x18, 0xfffffffffffffffe, 0x1, {0x80000000}}, &(0x7f0000003400)={0x18, 0x0, 0x3, {0x400}}, &(0x7f0000003440)={0x18, 0x0, 0xfff, {0xffffffff}}, &(0x7f0000003700)={0x28, 0x0, 0x9, {{0x1, 0x5, 0x1}}}, &(0x7f0000003740)={0x60, 0x0, 0x7, {{0xf, 0x5, 0x8, 0xfffffffffffff854, 0x5, 0x0, 0x10, 0x10}}}, &(0x7f00000037c0)={0x18, 0x0, 0x4, {0x7}}, &(0x7f0000003800)={0x1f, 0x0, 0x8, {'batadv_slave_0\x00'}}, &(0x7f0000003840)={0x20, 0x0, 0x100000000, {0x0, 0x1}}, &(0x7f0000003880)={0x78, 0x0, 0x0, {0x9, 0x4, 0x0, {0x4, 0x10001, 0x4, 0x6, 0xf8, 0x10000, 0x3, 0x7, 0x99e, 0x2000, 0x485, 0x0, 0x0, 0x1000, 0x8}}}, &(0x7f00000039c0)={0x90, 0x0, 0x68fc800, {0x6, 0x2, 0x9, 0x7, 0xdc, 0x2, {0x0, 0x4, 0x9, 0x7f, 0x1f2, 0x2, 0x80, 0x800, 0x80000000, 0xc000, 0xffffffff, 0x0, 0x0, 0x6, 0x7ff}}}, &(0x7f0000003a80)={0x70, 0x0, 0x4, [{0x5, 0x3, 0x7, 0x9, 'flower\x00'}, {0x0, 0x7, 0x1, 0x38, '%'}, {0x2, 0x6, 0x7, 0xffffff00, 'flower\x00'}]}, &(0x7f0000003b00)=ANY=[@ANYBLOB="10afefff0000000021853a2000000000"], &(0x7f0000003bc0)={0xa0, 0x0, 0x2, {{0x1, 0x1, 0x4b, 0x2, 0x4, 0xffffffff, {0x4, 0x3, 0x7, 0xffffffffffffff28, 0xffffffffffff1f6e, 0x2, 0xb, 0x40, 0x5, 0x6000, 0x6, 0x0, 0x0, 0x1, 0x2}}, {0x0, 0x2}}}, &(0x7f0000003c80)={0x20, 0x0, 0x7, {0x7fffffff, 0x0, 0x7fffffff}}, &(0x7f0000003cc0)={0x130, 0x0, 0x100, {0x0, 0xffffffff, 0x0, '\x00', {0x7ff, 0x380000, 0x9, 0x0, 0x0, 0x0, 0x3000, '\x00', 0x1000, 0x8, 0x69, 0x80000001, {0x0, 0x2}, {0xa25, 0x6}, {0x1, 0xd}, {0x8000}, 0x6, 0x2, 0x8, 0x3a9}}}})
r7 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/oss_mixer\x00', 0x602, 0x0)
writev(r7, &(0x7f00000010c0)=[{&(0x7f00000000c0)="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", 0x6e3}], 0x1)
close_range(r7, 0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)

1m9.892773181s ago: executing program 1 (id=2347):
mkdir(&(0x7f0000000080)='./file1\x00', 0x8)
mount(0x0, &(0x7f0000000200)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x8, &(0x7f0000000300)='usrquota')
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$SEG6(&(0x7f0000003e40), 0xffffffffffffffff)
sendmsg$SEG6_CMD_DUMPHMAC(r1, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000140)={0x14, r2, 0x307, 0x70bd27, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x801}, 0x4000)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=@newtaction={0x60, 0x30, 0xffff, 0x0, 0x0, {}, [{0x4c, 0x1, [@m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x9, 0xff, 0x2000000e, 0x8, 0x2}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x60}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
chdir(&(0x7f00000000c0)='./file1\x00')
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='blkio.bfq.idle_time\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r3, 0xffffffff80000800, 0x0, &(0x7f0000000340)={0x8000000000000000, 0x4, 0x1, 0x3, 0x24, 0x6, 0x6, 0xfffffffffffffffc, 0x100fff})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_GET_ADDR(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x1c, r5, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_TOKEN={0x8}]}, 0x1c}}, 0x0)
r6 = open(&(0x7f0000000280)='.\x00', 0x20000, 0x0)
r7 = openat$cgroup_ro(r6, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r7, &(0x7f0000000180), 0xfea7)

1m9.003742752s ago: executing program 1 (id=2349):
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000100)='syzkaller\x00', 0x2, 0xb9, &(0x7f0000000140)=""/185, 0x40f00, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1200000008000000040000000200000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe1d}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x401}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21}, &(0x7f0000000300)=<r2=>0x0)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r2, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0x42795000)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0x0, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x3736, 0x0, 0x0, 0x41100, 0x11, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
r3 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
r4 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0300000004000000040000004a"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000900)={0x10, 0xb, &(0x7f00000009c0)=@framed={{0x18, 0x2}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r4}}, @func={0x85, 0x0, 0x1, 0x0, 0x2}, @func={0x85, 0x0, 0x1, 0x0, 0x1}, @exit]}, &(0x7f0000000040)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0xa}, 0x94)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
fcntl$lock(r3, 0x410, &(0x7f00000000c0)={0x1, 0x1, 0x1, 0xfffe})
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x40, 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2141, 0x59)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000580)=ANY=[@ANYRES32=0x0, @ANYRES64=r0, @ANYBLOB="d4a8d882618b0ebc4334faeed3af85c5a2edb9f6ba365093551675174ceec449add133e9268dbfbc4bed4d113df6d8f2ed345016381ca1e058f697c19e388ac431db67d663b347775a0ead72c307d3cc803d39004102c6d32bea894051536fa7336d18e6d45d04f50190cc08134f1af13556efae13ba1cccdfb9013fc7217636a9505bf6e1bd3db9484aff4a32e7b122ae5822e6d1551110eb76b1111c9fbe3b7dc024732e2612189d52cd5b05416b539464efff5683424325d727ac30f49d13", @ANYRESDEC=r1, @ANYRESDEC=r1], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r5, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x3800, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_clone3(&(0x7f0000000380)={0x22140000, 0x0, 0x0, 0x0, {0x1a}, 0x0, 0x0, 0x0, 0x0}, 0x58)

1m7.863608044s ago: executing program 1 (id=2355):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x3, &(0x7f0000000000)=[{0x0, 0x4d, 0x8}, {0x5, 0x2, 0x0, 0xd46}, {0x3, 0x9, 0xc, 0x8000}]})
write$P9_RLCREATE(0xffffffffffffffff, &(0x7f0000000080)={0x18, 0xf, 0x1, {{0x0, 0x1, 0x8}, 0x7fc}}, 0x18)
stat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
quotactl_fd$Q_GETNEXTQUOTA(r0, 0xffffffff80000902, r1, &(0x7f0000000180))
r2 = syz_ublk_setup_io_uring(0x270, &(0x7f0000000200)={0x0, 0x6d29, 0x8, 0x0, 0x173}, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000300))
r3 = syz_io_uring_setup(0x6393, &(0x7f0000000340)={0x0, 0xb6f4, 0x80, 0x3, 0x21a, 0x0, r2}, &(0x7f00000003c0), &(0x7f0000000400), &(0x7f0000000440))
io_uring_register$IORING_REGISTER_RESTRICTIONS(r2, 0xb, &(0x7f0000000480)=[@ioring_restriction_register_op={0x0, 0x14}, @ioring_restriction_sqe_op={0x1, 0x1e}], 0x2)
r4 = openat(0xffffffffffffffff, &(0x7f00000004c0)='./file0\x00', 0x0, 0x3)
io_uring_register$IORING_REGISTER_RESTRICTIONS(r4, 0xb, &(0x7f0000000500)=[@ioring_restriction_sqe_flags_allowed={0x2, 0x13}, @ioring_restriction_sqe_op={0x1, 0x1c}, @ioring_restriction_sqe_op={0x1, 0x4}, @ioring_restriction_sqe_op={0x1, 0xd}], 0x4)
ioctl$F2FS_IOC_ABORT_ATOMIC_WRITE(r2, 0xf505, 0x0)
ioctl$SNDRV_PCM_IOCTL_PAUSE(r4, 0x40044145, &(0x7f0000000540)=0xffff0104)
ioctl$FICLONE(r2, 0x40049409, r2)
write$binfmt_register(r4, &(0x7f0000000580)={0x3a, 'syz2', 0x3a, 'M', 0x3a, 0x8, 0x3a, '-', 0x3a, '{.', 0x3a, './file0', 0x3a, [0x9, 0x4f, 0x50, 0x46, 0x46, 0x4f, 0x43, 0x50, 0x50, 0x50]}, 0x34)
r5 = openat$vcsu(0xffffff9c, &(0x7f00000005c0), 0x42, 0x0)
sendmsg$AUDIT_MAKE_EQUIV(r5, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000680)={&(0x7f0000000640)={0x28, 0x3f7, 0x200, 0x70bd27, 0x25dfdbfb, {0x7, 0x7, './file0', './file0'}, [""]}, 0x28}, 0x1, 0x0, 0x0, 0x40050}, 0x20000011)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCGSID(r6, 0x5429, &(0x7f0000000700)=<r7=>0x0)
timer_create(0x5, &(0x7f0000000740)={0x0, 0x17, 0x1, @tid=r7}, &(0x7f0000000780))
accept4$packet(r5, &(0x7f00000007c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000800)=0x14, 0x80400)
ioctl$BTRFS_IOC_START_SYNC(r3, 0x80089418, &(0x7f0000000840)=<r8=>0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r6, 0x81e8943c, &(0x7f0000000880)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, <r9=>0x0})
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r5, 0xc0c09425, &(0x7f0000000a80)={"2a83e52dea84f1f5028086c2860d4604", r8, r9, {0x10, 0x8}, {0xc, 0x7ff}, 0x9, [0x3, 0x0, 0x1, 0x5, 0x6, 0x0, 0x1, 0x0, 0x100000001, 0x3, 0x7, 0x4, 0x40, 0x101, 0x401, 0x4]})
r10 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$nfc(&(0x7f0000000b80), 0xffffffffffffffff)
ioctl$IOCTL_GET_NCIDEV_IDX(r5, 0x0, &(0x7f0000000bc0)=<r12=>0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000c00)=<r13=>0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r5, 0x0, &(0x7f0000000c40)=<r14=>0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r4, 0x0, &(0x7f0000000c80)=<r15=>0x0)
sendmsg$NFC_CMD_DEV_UP(r10, &(0x7f0000000d80)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000d40)={&(0x7f0000000cc0)={0x44, r11, 0x20, 0x70bd26, 0x25dfdbfb, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r12}, @NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r13}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r14}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r15}]}, 0x44}, 0x1, 0x0, 0x0, 0x20000010}, 0x4e000)
timer_settime(0x0, 0x1, &(0x7f0000000dc0)={{0x77359400}, {0x77359400}}, &(0x7f0000000e00))

51.114054848s ago: executing program 32 (id=2355):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x3, &(0x7f0000000000)=[{0x0, 0x4d, 0x8}, {0x5, 0x2, 0x0, 0xd46}, {0x3, 0x9, 0xc, 0x8000}]})
write$P9_RLCREATE(0xffffffffffffffff, &(0x7f0000000080)={0x18, 0xf, 0x1, {{0x0, 0x1, 0x8}, 0x7fc}}, 0x18)
stat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
quotactl_fd$Q_GETNEXTQUOTA(r0, 0xffffffff80000902, r1, &(0x7f0000000180))
r2 = syz_ublk_setup_io_uring(0x270, &(0x7f0000000200)={0x0, 0x6d29, 0x8, 0x0, 0x173}, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000300))
r3 = syz_io_uring_setup(0x6393, &(0x7f0000000340)={0x0, 0xb6f4, 0x80, 0x3, 0x21a, 0x0, r2}, &(0x7f00000003c0), &(0x7f0000000400), &(0x7f0000000440))
io_uring_register$IORING_REGISTER_RESTRICTIONS(r2, 0xb, &(0x7f0000000480)=[@ioring_restriction_register_op={0x0, 0x14}, @ioring_restriction_sqe_op={0x1, 0x1e}], 0x2)
r4 = openat(0xffffffffffffffff, &(0x7f00000004c0)='./file0\x00', 0x0, 0x3)
io_uring_register$IORING_REGISTER_RESTRICTIONS(r4, 0xb, &(0x7f0000000500)=[@ioring_restriction_sqe_flags_allowed={0x2, 0x13}, @ioring_restriction_sqe_op={0x1, 0x1c}, @ioring_restriction_sqe_op={0x1, 0x4}, @ioring_restriction_sqe_op={0x1, 0xd}], 0x4)
ioctl$F2FS_IOC_ABORT_ATOMIC_WRITE(r2, 0xf505, 0x0)
ioctl$SNDRV_PCM_IOCTL_PAUSE(r4, 0x40044145, &(0x7f0000000540)=0xffff0104)
ioctl$FICLONE(r2, 0x40049409, r2)
write$binfmt_register(r4, &(0x7f0000000580)={0x3a, 'syz2', 0x3a, 'M', 0x3a, 0x8, 0x3a, '-', 0x3a, '{.', 0x3a, './file0', 0x3a, [0x9, 0x4f, 0x50, 0x46, 0x46, 0x4f, 0x43, 0x50, 0x50, 0x50]}, 0x34)
r5 = openat$vcsu(0xffffff9c, &(0x7f00000005c0), 0x42, 0x0)
sendmsg$AUDIT_MAKE_EQUIV(r5, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000680)={&(0x7f0000000640)={0x28, 0x3f7, 0x200, 0x70bd27, 0x25dfdbfb, {0x7, 0x7, './file0', './file0'}, [""]}, 0x28}, 0x1, 0x0, 0x0, 0x40050}, 0x20000011)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCGSID(r6, 0x5429, &(0x7f0000000700)=<r7=>0x0)
timer_create(0x5, &(0x7f0000000740)={0x0, 0x17, 0x1, @tid=r7}, &(0x7f0000000780))
accept4$packet(r5, &(0x7f00000007c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000800)=0x14, 0x80400)
ioctl$BTRFS_IOC_START_SYNC(r3, 0x80089418, &(0x7f0000000840)=<r8=>0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r6, 0x81e8943c, &(0x7f0000000880)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, <r9=>0x0})
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r5, 0xc0c09425, &(0x7f0000000a80)={"2a83e52dea84f1f5028086c2860d4604", r8, r9, {0x10, 0x8}, {0xc, 0x7ff}, 0x9, [0x3, 0x0, 0x1, 0x5, 0x6, 0x0, 0x1, 0x0, 0x100000001, 0x3, 0x7, 0x4, 0x40, 0x101, 0x401, 0x4]})
r10 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$nfc(&(0x7f0000000b80), 0xffffffffffffffff)
ioctl$IOCTL_GET_NCIDEV_IDX(r5, 0x0, &(0x7f0000000bc0)=<r12=>0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000c00)=<r13=>0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r5, 0x0, &(0x7f0000000c40)=<r14=>0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r4, 0x0, &(0x7f0000000c80)=<r15=>0x0)
sendmsg$NFC_CMD_DEV_UP(r10, &(0x7f0000000d80)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000d40)={&(0x7f0000000cc0)={0x44, r11, 0x20, 0x70bd26, 0x25dfdbfb, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r12}, @NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r13}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r14}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r15}]}, 0x44}, 0x1, 0x0, 0x0, 0x20000010}, 0x4e000)
timer_settime(0x0, 0x1, &(0x7f0000000dc0)={{0x77359400}, {0x77359400}}, &(0x7f0000000e00))

8.959492816s ago: executing program 0 (id=2596):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x50)
socket$inet6_sctp(0xa, 0x1, 0x84)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd6016000000102b00fc0100000000000000e2ff0000000000fe80"], 0x0)
memfd_create(&(0x7f00000000c0)='-B\xd5N4\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\x8a\xd7Uw\x00\xbc\xa92\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x19\xea\xef\xe3\xe1@\x84\x13\xefZb:\x8f\t\x01B\xec\xde\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00@Ip]D\xd6\r\xac\v#co\xd5\xb9\xc806\xa8\x99\xffs7\xa1b1\xb1;i)j\x0e\x1e\xedI\xa2\x80\x89\x1d\xd9p!\xc86s\xe07(\xee\xf9<\"\xf0\xc8\xae\x96J\xe2]\x01\x86\xb7.<\xf5N\xd3\x94W1\xff\x18z>\xa7q,\xf7\x96\xb8{\x8e\xbf4\xe0\x95\x1ce\xe4\x85\xcdi\xed\xd3>\xeb\xa5\xaf\x87\x90@\xd1\xbd`^\xfa\xb6\x9cj\x13/\xc5\\W\x04\br\x17X\xe3\xfb\xc8\xd4\xaeX\xc9s\xd18\xd9L\xbf\xa0\xa6\xdf2\a\x99i\xb1/\x19@\x1cq\xeb?\xc1z:\x913\xfa8\xac\xd3q\xe4vPGU', 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x32, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0xfffffffd, @local, 0x2}, 0x1c)
sendmmsg$inet6(r1, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4001c00)

7.263673251s ago: executing program 0 (id=2598):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$F2FS_IOC_RELEASE_COMPRESS_BLOCKS(r0, 0x8008f512, &(0x7f00000000c0))
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = syz_open_dev$dri(&(0x7f0000000080), 0x1ff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
r7 = syz_io_uring_setup(0x320, &(0x7f0000001280)={0x0, 0xb70f, 0x800, 0x0, 0x1}, &(0x7f0000000000), &(0x7f0000001180), &(0x7f0000000000))
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r7, 0x0, &(0x7f0000002300)=[{&(0x7f0000000140)=""/4096, 0x1000}], 0x3100)
r8 = syz_open_procfs(0x0, 0x0)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, &(0x7f00000002c0)=""/251, &(0x7f0000000940), &(0x7f0000000200), 0xa7c}, 0x38)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r4, 0xc02064b2, &(0x7f0000000200)={0x28f, 0xfff, 0xa})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f0000000700)={0x0, &(0x7f0000000000)=[<r9=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_CURSOR(r4, 0xc01c64a3, &(0x7f0000000340)={0x3, r9, 0xfffffffa, 0x4, 0xb, 0x1fd, 0x1})
ioctl$DRM_IOCTL_MODE_CURSOR(r4, 0xc01c64a3, &(0x7f0000001880)={0x3, r9, 0xfff, 0x3ff, 0x2, 0x944})
r10 = creat(0x0, 0x0)
write$qrtrtun(r10, &(0x7f0000000340)="66bb0b760dc0f4ff", 0x8)
syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r8)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="400000001000390425bd7000fcdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="1000000000100000140012800b000100697036746e6c0000040002800c001a80080002800400de80"], 0x40}}, 0x0)
sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000100)=ANY=[@ANYBLOB, @ANYRES16=r1, @ANYBLOB="010100000000000000002b00000008000300", @ANYRES32=r2, @ANYBLOB="0c00000000000000f9"], 0x2c}}, 0x40080)

6.308483315s ago: executing program 0 (id=2604):
syz_usb_connect(0x1, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="1a0100005c6b4408070a64006e40010203030902240001a82300000904000002ca744d00090503034d00ff99090805", @ANYRES32], &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000200)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
accept4(r0, 0x0, 0x0, 0x0)
socket(0x10, 0x3, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2}, &(0x7f0000000300)=<r1=>0x0)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r1, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
r2 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
read(r2, &(0x7f0000000380)=""/144, 0x90)

5.43422327s ago: executing program 0 (id=2608):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
sendmmsg$inet6(r0, &(0x7f0000019680)=[{{&(0x7f0000000100)={0xa, 0x0, 0x0, @loopback={0x0, 0xac141414}}, 0x1c, 0x0}}], 0x1, 0x20004855)
mprotect(&(0x7f0000ff3000/0xb000)=nil, 0xb000, 0x5)
socket$inet_tcp(0x2, 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0900000005000000080000000f00000000000000e5bb6032bd0e6f3b4b90f7ae5fdc14a1483c1f2fe98ad6fbdf0c1cfa1c1642366264b8c7f9b8b6a831f43896283b09000000b03795b8f4447bc300524e07bd053013ba2ee81420ce61b15a5eff4158058ac82b29fe885c4d209fc502b2a576396c04483b5b0796d97b2539e752dc6d093214be3ec235799e628bb34d57de6b58f6b3e0dd476f82af4d6953534472f6343975fcb7b2e3a0fd94b6981dc5ae445ff3bd64f7d569a7f2a657f5877f1bcf0e807dd9df189778b6c72ce4c34273382b13a7c9e7f91c98654c598728c683b009fdfdbf2ef64e5fb38c5d3fffa6407f9de7c9e1bd21a9043d0fc0ff6a19d4d5cb419528b57452c52469a49c90384087d2bb9cea0dacd1c8663298e7a8ebd87210e88da7bcc458291018c303aa4d5c7753c423163b0d760c447c74020aaaa3820f2940e9b364b54b82d064d726942dabd039ecee53a2347b437024c7dd7530195e31bcdd3bf235c2cc330765c6006a8edd509cbbc755fbe9e1fefe906831c1ad242578ec6f6032c124c3b359692c4cb1935acb7f269880b48e019cb490c9803656cbc6516aa446b1e0eaa407879cd6a58a91a29b24ed2d3517ae08eb48c15ecf07f07625405b33acbf53ff7944dc9e7fe4d4069ef6fa34e2c9fd724bcc3895a131bc28b2878f88a0ffe08ade2f3ab38f379512510b7642cb2e0ab209b9f1", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007300000018110000", @ANYRES32=r1], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xe, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
write(0xffffffffffffffff, &(0x7f0000000040)="2e000000010002", 0x7)
r3 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r3, &(0x7f0000000100)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_udp_int(r3, 0x11, 0x68, &(0x7f0000000080)=0xa40, 0x4)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r5 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r4, &(0x7f00000002c0)=ANY=[@ANYBLOB="6f1bcabbbbbbbbbbbbaaaaaaaaaa28008100200086dd6d002000000811000000000000000000000000e200000000ff0200000000000000000000000000014f194e20"], 0x46)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000080)={r2}, 0xc)
r6 = syz_clone(0x800000, 0x0, 0x0, 0x0, 0x0, 0x0)
capset(&(0x7f0000000500)={0x20080522}, &(0x7f0000000200)={0x200002, 0x200003, 0x801, 0x4, 0x7})
mkdir(&(0x7f0000000040)='./file0\x00', 0xd9)
r7 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
modify_ldt$write2(0x11, &(0x7f0000000100)={0xb, 0x20001000, 0x2000, 0x1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x94)
fchdir(r7)
mount(0x0, &(0x7f00000010c0)='.\x00', &(0x7f0000000000)='proc\x00', 0x80, 0x0)
syz_open_procfs(r6, &(0x7f0000000540)='fd/3\x00')
setsockopt$sock_int(r0, 0x1, 0x9, &(0x7f0000000480)=0x7, 0x4)

5.252473425s ago: executing program 0 (id=2611):
pipe2(&(0x7f0000000040)={<r0=>0xffffffffffffffff}, 0x80880)
accept4$bt_l2cap(r0, 0x0, 0x0, 0x80000)
socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$ocfs2_control(0xffffff9c, &(0x7f0000000000), 0x400000, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r2, 0x10e, 0xb, &(0x7f0000000000)=0x2, 0x4)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000001c0)=@gettaction={0x20, 0x32, 0x605, 0x70bd25, 0x25dfdbfd, {}, [@action_dump_flags=@TCA_ROOT_FLAGS={0xfffffffffffffe83, 0x2, {0x1}}]}, 0x20}}, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0xc0)
syz_usb_connect(0x1, 0x3d, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000bdce4208110f80106afc0000000109022b00010000000009043700022ee5cd0009058010ff037f7902"], 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x6, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xfffffffd, {0x0, 0x0, 0x0, r7, {0x0, 0xfff3}, {0xffff, 0xffff}, {0xffe0, 0x9}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x4c840)
sendmsg$nl_route_sched(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@newtfilter={0x3c, 0x2c, 0xf3f, 0x70bd28, 0x25dfdbfd, {0x0, 0x0, 0x0, r7, {0x0, 0xfff3}, {0x0, 0xfff3}, {0xd, 0x300}}, [@filter_kind_options=@f_basic={{0xa}, {0xc, 0x2, [@TCA_BASIC_CLASSID={0x8}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20041004}, 0x0)

4.574401463s ago: executing program 3 (id=2615):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x4, 0x1}, 0xe)
listen(r0, 0x90004)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1, 0x50, 0xffffffffffffffff, 0x0)
r1 = socket(0x2c, 0x3, 0x1000)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, r1)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f00000001c0)=<r4=>0x0)
sched_setattr(r4, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0xb, 0x9, 0xfffffe0000000001, 0xfa11, 0x65aa}, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r5 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x800)
recvmsg$unix(r5, &(0x7f0000000cc0)={0x0, 0x0, 0x0}, 0x40000080)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000000140), 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4ad9, 0x0, &(0x7f00000003c0), 0x0, &(0x7f0000000000))
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x15)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
pread64(0xffffffffffffffff, &(0x7f0000001240)=""/102400, 0xffffff8c, 0x200000)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000000900010073797a30000000002c000000030a01020000000000000000010000000900010073797a30000000000900030073797a312000000038000000030a01040000000000000000010000010900010073797a30000000000c000240000000000000000109000300030000000000000014000000110001"], 0xac}, 0x1, 0x0, 0x0, 0x8040}, 0x0)
accept4(r0, &(0x7f0000000040)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x0, 0x0, @private1}}, 0x0, 0x800)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="043e130100c900", @ANYRES8], 0x16)

3.505732752s ago: executing program 3 (id=2618):
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000080)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x2, 0x2, 0x1, 0x1, {0xa, 0x4e23, 0xd55, @remote, 0xfffffffa}}}, 0x3a)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1/file0\x00', 0x0)
mount$bind(0x0, 0x0, 0x0, 0x1085408, 0x0)
r0 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)={0xb0, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @ipv4={'\x00', '\xff\xff', @private=0xa010102}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private2}, {0x14, 0x4, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_SEQ_ADJ_ORIG={0x1c, 0xf, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x6}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x1}, @CTA_SEQADJ_CORRECTION_POS={0x8}]}]}, 0xb0}, 0x1, 0x0, 0x0, 0x40}, 0x0)
mount$overlay(0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1/file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000001c0)='./bus\x00')
unlinkat(0xffffffffffffff9c, 0x0, 0x200)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r3 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000000), 0x80040, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
connect$bt_l2cap(r4, &(0x7f0000000000)={0x1f, 0x8ef, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)
syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$FOU_CMD_ADD(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000400)=ANY=[], 0x38}}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r2, 0x89f0, &(0x7f0000000400)={'ip6_vti0\x00', &(0x7f0000000300)={'syztnl2\x00', 0x0, 0x29, 0x5, 0x7, 0x7, 0x9, @remote, @local, 0x1, 0x8000, 0x5, 0x7f}})
sendmsg$ETHTOOL_MSG_STRSET_GET(r2, &(0x7f0000000700)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000006c0)={0x0, 0x180}, 0x1, 0x0, 0x0, 0x8004}, 0x8810)
r5 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4)
ioctl$sock_bt_bnep_BNEPCONNADD(r5, 0x400442c8, &(0x7f0000000080)=ANY=[@ANYRES32=r4])
ioctl$SNDCTL_DSP_STEREO(r3, 0xc0045003, &(0x7f0000000040)=0x1)

3.406657345s ago: executing program 3 (id=2619):
r0 = socket(0x10, 0x2, 0x0)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffc000/0x2000)=nil, 0x2000, &(0x7f0000000140)='/dev/hwrng\x00')
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f0000000000)='\x00')
socket$nl_generic(0x10, 0x3, 0x10)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x440, 0x0)
r1 = socket$kcm(0x29, 0x5, 0x0)
sendmmsg$inet(r1, &(0x7f0000001880)=[{{0x0, 0x4, &(0x7f00000010c0)=[{&(0x7f00000000c0)="c8", 0x1}], 0x1, 0x0, 0x0, 0x60ff}}, {{0x0, 0x0, &(0x7f0000001800)=[{&(0x7f0000001280)=',', 0x1}], 0x11}}], 0x2, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[], 0x0)
memfd_create(&(0x7f00000000c0)='-B\xd5N4\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\x8a\xd7Uw\x00\xbc\xa92\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x19\xea\xef\xe3\xe1@\x84\x13\xefZb:\x8f\t\x01B\xec\xde\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00@Ip]D\xd6\r\xac\v#co\xd5\xb9\xc806\xa8\x99\xffs7\xa1b1\xb1;i)j\x0e\x1e\xedI\xa2\x80\x89\x1d\xd9p!\xc86s\xe07(\xee\xf9<\"\xf0\xc8\xae\x96J\xe2]\x01\x86\xb7.<\xf5N\xd3\x94W1\xff\x18z>\xa7q,\xf7\x96\xb8{\x8e\xbf4\xe0\x95\x1ce\xe4\x85\xcdi\xed\xd3>\xeb\xa5\xaf\x87\x90@\xd1\xbd`^\xfa\xb6\x9cj\x13/\xc5\\W\x04\br\x17X\xe3\xfb\xc8\xd4\xaeX\xc9s\xd18\xd9L\xbf\xa0\xa6\xdf2\a\x99i\xb1/\x19@\x1cq\xeb?\xc1z:\x913\xfa8\xac\xd3q\xe4vPGU', 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x32, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
sendmsg$inet6(0xffffffffffffffff, 0x0, 0xc044)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x1c, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x2803, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x14)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1)
ioctl$KVM_SET_CPUID2(r5, 0x4048aecb, &(0x7f0000000480)={0x7, 0x0, [{0xb, 0xffffffff, 0x4, 0xffffff89, 0x6, 0x6, 0x3}, {0x1, 0x4, 0x0, 0x8, 0x0, 0x1, 0x5}, {0x0, 0x893, 0x0, 0x3ff, 0x7ffffdff, 0x8005, 0x31}, {0x80000019, 0xe5f, 0x1, 0x8, 0xdf3, 0x6, 0x80000001}, {0x80000000, 0x2ab, 0x1, 0xd, 0x3, 0x7ff, 0xad7}, {0xc0000000, 0x100, 0x4, 0x6, 0x400003, 0x40000002, 0xe0000}, {0x6, 0x2, 0x3f91c194927b8e21, 0xfffffff7, 0xffffbff9, 0xff, 0x6}]})
socket(0x400000000010, 0x3, 0x0)
r6 = userfaultfd(0x801)
ioctl$UFFDIO_REGISTER(r6, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(0xffffffffffffffff, 0xc028aa03, &(0x7f0000000040)={&(0x7f00002b9000/0x400000)=nil, &(0x7f00005cf000/0x4000)=nil, 0x400000, 0x2, 0x2})
write(r0, &(0x7f0000000040)="1c0000001a009b8a140000003b9b301f00"/28, 0x1c)
recvmmsg(r0, &(0x7f0000002ec0), 0x400000000000ec0, 0x2, &(0x7f00000001c0)={0x77359400})

3.153210813s ago: executing program 4 (id=2620):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000006100)={0x18, 0x3d, 0x107, 0xfffffffe, 0x0, {0x1, 0x7c}, [@nested={0x4, 0x1}]}, 0x18}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
pwritev(r1, &(0x7f00000007c0)=[{&(0x7f00000001c0)="5645ed576993a7497639a77242fd3b14eebbdf11cd213c43b63b05d1c136d7f56a926eed2ac4b2da7f153fa39136cf2454735c14317a8ca9eabcd3a6d8adccbcb7d2bc0852d3cd04bbbeadc5dd37f98b0aecab6d20a6b9c6c1140a520464c8", 0x5f}, {0x0}, {&(0x7f0000000640)="355ae5e0866a8ede7a09509e91158188c0", 0x11}], 0x3, 0x0, 0x1)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_RX(r2, 0x11a, 0x2, &(0x7f0000000100)=@ccm_128={{0x304}, "fbe0bbbdd1ba6f0a", "fe03bcb7a36c35991e7c1f032cf85f33", "389730d7", "beda07bffb9d4d15"}, 0x28)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
socket$vsock_stream(0x28, 0x1, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{0x0}], 0x1)
openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000240)={0x0, 0x0, 0x1ff, 0x7d, 0x1000000, 0x8000, 0x4, 0x1}, 0x0, &(0x7f00000002c0)={0x3ff, 0x6, 0xffffffffffffffff, 0x9, 0x0, 0x3, 0x80000006}, 0x0, 0x0)

2.142857095s ago: executing program 4 (id=2621):
close(0xffffffffffffffff)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x40440c5}, 0x0)
syz_genetlink_get_family_id$l2tp(0x0, 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x1, 0x620b, 0x0, 0xc0}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f0000000040)={0x84, @broadcast, 0x4e1e, 0x3, 'rr\x00', 0x1, 0x10000004, 0x8}, 0x2c)
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r1=>0x0})
syz_emit_ethernet(0x2a, &(0x7f0000000100)=ANY=[@ANYBLOB="bbbbbbbbbbbb8a0a63cdec5908060001080006040002aaaaaaeaaabbac1414bbaaaaaaaaaabbac"], 0x0)
sendto$packet(r0, &(0x7f0000000100)="f257a8ea7bc273dfaeab96850806", 0x2a, 0x0, &(0x7f0000000200)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @link_local}, 0x14) (fail_nth: 3)

2.130967848s ago: executing program 3 (id=2622):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x18, &(0x7f0000000000)=0xffff, 0x4)
sendmsg$inet6(r0, &(0x7f0000001280)={&(0x7f0000000040)={0xa, 0x4e21, 0x4, @mcast1, 0x5}, 0x1c, &(0x7f0000001240)=[{&(0x7f0000000100)="a39465b42c3123e8de584978f8bb2336a3f60b542a13ce1d29d93a3228e8a8f3af14e4d551399a95ad0e6e8c49e2bd7053", 0x31}, {&(0x7f0000000200)="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", 0x54a}], 0x2}, 0x80) (fail_nth: 3)

2.126100428s ago: executing program 2 (id=2623):
shmctl$IPC_INFO(0x0, 0x3, 0x0)
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x485, 0x0, 0x0)
r1 = socket(0x3, 0x80805, 0x0)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r2, 0x0, 0x482, &(0x7f0000000040)={0x84, @rand_addr=0x64010101, 0x0, 0x3, 'lblcr\x00', 0x1, 0x80005, 0x41}, 0x2c)
setsockopt$IP_VS_SO_SET_ADDDEST(r1, 0x0, 0x487, &(0x7f0000000000)={{0x84, @multicast2, 0x4e21, 0x3, 'lc\x00', 0x5, 0x8, 0x77}, {@remote, 0x4e20, 0x2, 0xcd}}, 0x44)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r4 = socket$unix(0x1, 0x2, 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
madvise(&(0x7f0000000000/0x400000)=nil, 0x40001e, 0x15)
ioctl$int_in(r4, 0x5452, &(0x7f0000000000)=0x2000005)
sendmmsg(r4, &(0x7f0000002dc0), 0x307017fdb7a66cb, 0x0)
ioctl$sock_SIOCBRDELBR(r0, 0x89a1, &(0x7f0000000240)='batadv_slave_0\x00')
r5 = syz_open_dev$video(&(0x7f0000000080), 0x7, 0x0)
syz_open_dev$dmmidi(&(0x7f0000000200), 0x480, 0x402000)
ioctl$VIDIOC_TRY_FMT(r5, 0xc0d05640, &(0x7f00000000c0)={0x9, @raw_data="8ff1418bc959a937387ca5d16ed0adafe8a9513a164056db534f8bcb568ad5a35b260b1db29d654acadb3455fb663fbbfc7263c1eb2ba445ebb087ffba37a02841427bc9e919941f2b8521bbae541da8e154303a0111e433c6de4b5c795340940baab0f63819c73f0dd71a8e307a98cc91692dd08c6b72b89c29e5651d69937e788207a17a1192d58353de293dbc831b2e6a2e90cddc38929c41ba04581f445e7b449d346e83ab266811ea5a9208ca5c55f43800bb52d20be08ec35b9648160fe09410a0ff02527c"})
sendmsg$netlink(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000640)={0x118, 0x2e, 0x1, 0x0, 0x25dfdbfe, "", [@nested={0x105, 0x1fa, 0x0, 0x1, [@typed={0x8, 0x18, 0x0, 0x0, @fd=r3}, @typed={0x14, 0xa, 0x0, 0x0, @ipv6=@empty}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a46cf26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f00ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c", @typed={0x4, 0xe9}, @typed={0x8, 0x23, 0x0, 0x0, @uid}]}]}, 0x118}], 0x1, 0x0, 0x0, 0x400c445}, 0x4844)

2.055222659s ago: executing program 4 (id=2624):
ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, &(0x7f0000000040)={'wlan0\x00', 0xfffffffe})
socket$rxrpc(0x21, 0x2, 0xa)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r0, 0x84, 0x8, &(0x7f0000001040)=0xfffffff8, 0x4)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="580000001000010400004009959e40c16c39e100", @ANYRES32=0x0, @ANYBLOB="01020400000000002800128008000100736974001c00028008000200c6120001060008001900000005000a00fd000000080004000100010008"], 0x58}}, 0x0)
r2 = socket$packet(0x11, 0x2, 0x300)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0xa, 0x8000000000002})
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r5 = syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x8c0002)
ioctl$USBDEVFS_SETCONFIGURATION(r5, 0x80045505, &(0x7f0000000000)=0x1)
r6 = dup3(r4, r3, 0x0)
r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r7, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r7, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r6, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000001040)={0x4c, 0x0, &(0x7f0000000ec0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x41, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r6, 0xc0306201, &(0x7f0000000c00)={0x44, 0x0, &(0x7f0000000a80)=[@transaction={0x40406300, {0x1, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = socket(0x10, 0x80002, 0x0)
r10 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r9, 0x8933, &(0x7f0000000280)={'batadv0\x00', <r11=>0x0})
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r9, 0x8933, &(0x7f00000002c0)={'batadv_slave_1\x00', <r12=>0x0})
sendmsg$BATADV_CMD_GET_NEIGHBORS(r8, &(0x7f0000004340)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="310300200000000000400800000008000300", @ANYRES32=r11, @ANYBLOB="08000600", @ANYRES32=r12, @ANYBLOB="f8791413fa30e0eb5acd589491c4cacff6b85c868b6aa393171674f4140747dcf0b8eb3f61b54e92bc73fadaebb46ffa0fbedb5e8c5ae4089b67868453aa2e02ab418a0fbc21ee692d"], 0x24}, 0x1, 0x0, 0x0, 0x400400c}, 0x0)
r13 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000003480)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
read$FUSE(r13, &(0x7f0000007fc0)={0x2020}, 0x2020)
setsockopt$packet_rx_ring(r2, 0x107, 0x5, 0x0, 0x0)

1.987418651s ago: executing program 3 (id=2625):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_encap(r4, 0x11, 0x64, &(0x7f0000000040)=0x2, 0x4)
setsockopt$inet6_udp_encap(r4, 0x11, 0x68, &(0x7f0000000000)=0x5, 0x4)
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000600)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6361, 0x5, 0xffffffff, 0x3}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000006c0)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x25dfdc01, {0x0, 0x0, 0x0, r3, {0x0, 0xd}, {0xffff, 0xb}, {0xffff, 0xffe0}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x14, 0x2, [@TCA_FQ_CODEL_CE_THRESHOLD={0x8, 0x7, 0xfffffff9}, @TCA_FQ_CODEL_CE_THRESHOLD_MASK={0x5, 0xb, 0x11}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x240040e0}, 0x4890)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r6=>0x0})
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$F2FS_IOC_GET_COMPRESS_OPTION(r2, 0x8002f515, &(0x7f0000000180))
sendmsg$NL80211_CMD_FRAME(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000140)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010000000000000000000200000008000300", @ANYRES32=r6, @ANYBLOB="08c9566000a02226edff0e00009f000d000000080026e35598e200"], 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
readv(r5, &(0x7f0000000980)=[{&(0x7f0000000440)=""/208, 0xd0}, {&(0x7f0000000540)=""/23, 0x17}, {&(0x7f0000000740)=""/105, 0x69}, {&(0x7f00000007c0)=""/119, 0x77}, {&(0x7f0000000840)=""/35, 0x23}, {&(0x7f0000000880)=""/7, 0x7}, {&(0x7f00000008c0)=""/91, 0x5b}, {&(0x7f0000000940)=""/56, 0x38}], 0x8)
ioctl$KVM_GET_API_VERSION(0xffffffffffffffff, 0xae00, 0x0)
r8 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r8, 0x107, 0xf, &(0x7f0000000100)=0x207, 0x4)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a14000000060a017f00000000000000000a0000061400000011000100fffffeff000000000000000a"], 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x24000840)
r9 = socket$packet(0x11, 0x3, 0x300)
r10 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x1, 0x40)
fanotify_init(0x2, 0x40000)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r10, 0xc2c45512, &(0x7f0000000640)={{0xd, 0x5, 0x81, 0x53, 'syz1\x00', 0x9}, 0x0, [0x380, 0xb, 0x0, 0xcc1, 0x80, 0x101, 0x80000001, 0xa6d8, 0x2, 0x1, 0x9, 0x8, 0x8, 0xfffefff7, 0x8, 0x10, 0x5, 0x4, 0x2ff, 0x80, 0x962, 0x0, 0x1, 0x4, 0x7fffffff, 0xc360, 0x80000001, 0x6, 0x60e3, 0x6, 0x0, 0x10000, 0x7, 0x1000009, 0x107430, 0x2, 0x5, 0x609, 0x1, 0x3, 0x8, 0x5, 0x9, 0x8, 0x9, 0x1, 0x8, 0x0, 0x1, 0x2, 0xfffffffe, 0x6, 0x9000, 0xe93, 0x4, 0x800, 0x7, 0x3, 0x50b, 0x0, 0x6, 0x7ff, 0x1000, 0xffffffff, 0x7, 0xf5, 0x7a, 0x2, 0x9, 0x2, 0x6, 0x7, 0x1000ac, 0x7, 0x7, 0x4, 0x8000, 0x5, 0x4, 0x7, 0xd, 0x9, 0x5, 0x0, 0x0, 0x40, 0x2, 0x8000, 0xfff, 0x3, 0x3b9, 0x6, 0x3, 0x4660917f, 0x487d, 0x8000, 0x1, 0x5, 0x3, 0x0, 0x800005, 0x4, 0x11, 0x1, 0x7, 0x9, 0xc, 0x4, 0x1, 0x1, 0x3ce, 0xa, 0x8, 0x9, 0x0, 0x6, 0xffffdff7, 0xffffbf90, 0xfffffffd, 0x7, 0x2, 0x0, 0x7, 0xa, 0x809, 0xbfffffff, 0x73938332, 0x7763]})
setsockopt$packet_fanout(r9, 0x107, 0x12, &(0x7f0000000000)={0xfffc, 0x6}, 0x4)
setsockopt$packet_fanout(r9, 0x107, 0x12, &(0x7f0000000040)={0xfffe, 0x3}, 0x4)

1.784565608s ago: executing program 4 (id=2626):
r0 = openat$vim2m(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
r1 = dup2(r0, 0xffffffffffffffff)
ioctl$IOCTL_VMCI_QUEUEPAIR_DETACH(r1, 0x7aa, &(0x7f0000000040)={{@hyper, 0x9}, 0x8, 0xffff}) (async)
r2 = syz_open_dev$amidi(&(0x7f0000000140), 0x2, 0x181)
ioctl$SNDRV_RAWMIDI_IOCTL_INFO(r2, 0x40045731, &(0x7f0000001000))

1.710157381s ago: executing program 2 (id=2627):
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000080)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x2, 0x2, 0x1, 0x1, {0xa, 0x4e23, 0xd55, @remote, 0xfffffffa}}}, 0x3a)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1/file0\x00', 0x0)
mount$bind(0x0, 0x0, 0x0, 0x1085408, 0x0)
r0 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)={0xb0, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @ipv4={'\x00', '\xff\xff', @private=0xa010102}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private2}, {0x14, 0x4, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_SEQ_ADJ_ORIG={0x1c, 0xf, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x6}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x1}, @CTA_SEQADJ_CORRECTION_POS={0x8}]}]}, 0xb0}, 0x1, 0x0, 0x0, 0x40}, 0x0)
mount$overlay(0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1/file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000001c0)='./bus\x00')
unlinkat(0xffffffffffffff9c, 0x0, 0x200)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r3 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000000), 0x80040, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
connect$bt_l2cap(r4, &(0x7f0000000000)={0x1f, 0x8ef, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)
syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$FOU_CMD_ADD(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000400)=ANY=[], 0x38}}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r2, 0x89f0, &(0x7f0000000400)={'ip6_vti0\x00', &(0x7f0000000300)={'syztnl2\x00', 0x0, 0x29, 0x5, 0x7, 0x7, 0x9, @remote, @local, 0x1, 0x8000, 0x5, 0x7f}})
sendmsg$ETHTOOL_MSG_STRSET_GET(r2, &(0x7f0000000700)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000006c0)={0x0, 0x180}, 0x1, 0x0, 0x0, 0x8004}, 0x8810)
r5 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4)
ioctl$sock_bt_bnep_BNEPCONNADD(r5, 0x400442c8, &(0x7f0000000080)=ANY=[@ANYRES32=r4])
ioctl$SNDCTL_DSP_STEREO(r3, 0xc0045003, &(0x7f0000000040)=0x1)

1.709827364s ago: executing program 4 (id=2628):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="400000001000030ffb4d000000000000000003008421354fda28dda01820bb9a534e5f5ff73ee654d575c529166e683ced3e24aa7c11adb851d0e0012b983db3dd616768ac560defade0689d6f47f950a51de4e7fea6ab67c9ffceaa128192d7b4a3d047c296111ce7730a6b", @ANYRES32=0x0, @ANYBLOB="2010000000000000200012800b00010067656e65766500001000028004000e000500090001000000"], 0x40}, 0x1, 0x0, 0x0, 0x81}, 0x40080)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', <r2=>0x0})
r3 = creat(&(0x7f0000000080)='./file0/file1\x00', 0x90)
write$cgroup_type(r3, &(0x7f0000000000), 0xd4ba103)
ioctl$SNDRV_TIMER_IOCTL_PAUSE(r3, 0x54a3)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f0000000240), 0x2, 0x40102)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2f)
r5 = socket$alg(0x26, 0x5, 0x0)
setsockopt$SO_TIMESTAMP(r5, 0x1, 0x1d, &(0x7f0000000380), 0x4)
r6 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r6, &(0x7f0000000380)=[{{&(0x7f0000000000)={0xa, 0x4e22, 0x4, @private1, 0xffffffff}, 0x1c, &(0x7f0000000300)=[{&(0x7f0000000040)="18", 0x1}], 0x1}}, {{&(0x7f0000000180)={0xa, 0x4e20, 0x101, @private0, 0x5}, 0x1c, &(0x7f0000000280)=[{&(0x7f0000000240)='B', 0x1}], 0x1}}], 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="440000001000090400"/20, @ANYRES32=r2, @ANYBLOB="020000000000000024001280110001006272696467655f736c617665000000000c00058005002b"], 0x44}, 0x1, 0x0, 0x0, 0x20000080}, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x16, 0x14, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r7}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @printk={@ld, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x73}}]}, &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r8, 0x0, 0x10, 0x38, &(0x7f00000006c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000700)=""/8, 0x60ff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

1.709037799s ago: executing program 2 (id=2629):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0xe2981)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue0\x00'})
write$sndseq(r0, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32={[0x2600, 0x0, 0x2000]}}], 0xffc8)

1.652150508s ago: executing program 2 (id=2630):
r0 = socket$qrtr(0x2a, 0x2, 0x0)
syz_emit_ethernet(0x14, &(0x7f0000001b40)=ANY=[@ANYBLOB="aaaaaaaaaaf5bbbbbb0200000063183a9c13d6b72f3b71474f98b8d74509f1d768f4c5ebae8a0a2feb9465ec961325fd83fc4bea403e95951f2ef643e7d7663a7613a015da36b0461ecf62279c2aba3cadfbb8cfde99db95aba1af1ce9d91ea6c993fe0619d5e48eaf7def6631bc285ccf6389756fd9f021a6e3d7dc5956988684a24f608e28074519c95a97a00b1212a95f25a686a825d7716986481c0d856e81e4d057ad826a2b23354d1de905ad5524378fc5748a7a4b017388fe2ce51d69ef133e57d27c2e39712ed83cc78a9674fd00adaabfd2ad79108b8445d88f50818204ca8e1a202eca9bf41bab442890d5ea82ca93b5b314e687c26484fa4ad7f2be09b2efd4f211"], 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000240)='net/dev_mcast\x00')
pread64(r1, &(0x7f0000000080)=""/201, 0xc9, 0x591f)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="6c0000006800010043001000fdffff7f0000040000000000040004000c000880050004000900000004000b001c000c80060001000b00000006000100070000000800030000000000240002"], 0x6c}, 0x1, 0x0, 0x0, 0x4008018}, 0x4000080)
ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>r1, {0x2}}, './file0\x00'})
syz_emit_ethernet(0xbe, &(0x7f0000000280)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff0800450000b00000000000119078ac141400ac1414aa00000000009c90780100000000000000f4cb985d86dd6266b5efb88a2c87eda081bac8b2f9a49d564054f1c9218f47b3cf8743eb4d9e776f94a6a58d36e006ac614f6f7bce9217cbfea31675d4a860cf6003977b1e4dbb16dc31cc76522bf19d5043edd2a8cc8c41345f8feb1a7a8e23043b8a465b1eee3324a137dfd5bf8bc91307c7193f7edd1efc4742dc481e6f57f901948177bcc5dea4829ba4683aebdc016e"], 0x0)
r4 = socket$inet(0x2, 0x3, 0x7f)
syz_emit_ethernet(0xfc6, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], 0x0)
setsockopt$inet_int(r4, 0x0, 0x2, &(0x7f00000000c0)=0x5716, 0x4)
syz_clone(0x4000000, &(0x7f00000003c0)="4311f504bdd691165ba48b38519fb1a8b1ab70a73a956443091b6f", 0x1b, &(0x7f0000001c80), &(0x7f0000001cc0), 0x0)
ioctl$sock_SIOCSPGRP(r4, 0x8902, 0x0)
setsockopt$inet6_opts(r3, 0x29, 0x36, &(0x7f0000001f40)=@fragment={0x73, 0x0, 0xa5, 0x1, 0x0, 0x4, 0x68}, 0x8)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000200), r3)
quotactl_fd$Q_SYNC(r2, 0xffffffff80000101, 0x0, 0x0)
getsockname$packet(r1, &(0x7f0000000380)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f00000001c0)=0x14)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c0000001b0a01030000e6ff00000000020000000900010073797a3000000000090003"], 0x7c}}, 0x0)
ioctl$BTRFS_IOC_ENCODED_READ(r1, 0x80789440, &(0x7f0000001ac0)={&(0x7f0000001a80)=[{&(0x7f0000000980)="087342eca6467690bd4f24112bfa062a01ec5a22e748d0df47b5259259bff114c9556c92f36c5079ded34bc53ab0c26993de0433389500858dabbc76f199f87d715fdb3a5ba189706de8ab682b70f177b3e772c5da593952c18645c3ca08fa3354579c1820f01eba0db2d0428f7efb5d553578c617c6ced7c578dcb66965b2ae0c0001a495f6e2096a944a28a4e0f886686f35f9e278630a77e906e659ccb185e48f174247ef7856d34814b3cc92ca4d5f10759e120a1ad8cf809094755119c9c538be99a1cb3fe2831168c2c9d759130ddd6b5412fd77c7fba73303746c8577533c34530bfa4250ec084c5169ef225094507d6f5021", 0xf6}, {&(0x7f0000000a80)="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", 0x1000}], 0x2, 0x3, 0x0, 0x34, 0x3, 0x2, 0x3})
getsockopt$inet_mreqn(r3, 0x0, 0x24, &(0x7f0000000400)={@private, @local, <r7=>0x0}, &(0x7f0000000440)=0xc)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r8=>0x0}}, 0x10)
syncfs(r1)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000540)={'team0\x00', <r9=>0x0})
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000640)={'sit0\x00', &(0x7f0000000580)={'erspan0\x00', <r10=>0x0, 0x700, 0x10, 0x9, 0x2d81ce82, {{0x1b, 0x4, 0x2, 0x2e, 0x6c, 0x66, 0x0, 0x9, 0x4, 0x0, @multicast2, @empty, {[@ssrr={0x89, 0x1b, 0x23, [@local, @remote, @empty, @loopback, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1]}, @cipso={0x86, 0x16, 0x1, [{0x1, 0x9, "ba0b5814f77c1b"}, {0x6, 0x7, "27652b0d80"}]}, @timestamp_addr={0x44, 0x24, 0xc, 0x1, 0x3, [{@empty, 0xc000000}, {@remote, 0xa8}, {@empty, 0xffffffc0}, {@broadcast, 0x2}]}]}}}}})
mount$pvfs2(&(0x7f0000001e00), &(0x7f0000001e40)='./file0\x00', &(0x7f0000001e80), 0x0, &(0x7f0000001ec0)=ANY=[@ANYBLOB="002c2c657468746f6f6c002c6f626a5f757365723d657468746f6f6c002c61756469742c6673636f6e746578743d757365725f752c7375626a5f75ef447365723d65727370616e30002c6673757569643d65366565626532312d336433622d383766342d636435342d6134326263373064"])
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r3, 0x89f3, &(0x7f0000000700)={'syztnl2\x00', &(0x7f0000000680)={'syztnl0\x00', <r11=>0x0, 0x10, 0x40, 0x3, 0xfffffff9, {{0x15, 0x4, 0x0, 0x0, 0x54, 0x65, 0x0, 0x6, 0x2f, 0x0, @broadcast, @initdev={0xac, 0x1e, 0x1, 0x0}, {[@cipso={0x86, 0x3d, 0x3, [{0x1, 0xf, "3620e78406fce1ebc7e4877dbc"}, {0x2, 0x5, "188aee"}, {0x7, 0xd, "bbb1dc1e7bdabf69a41f06"}, {0x5, 0xf, "63c2c6464c2bdbae9cef6272cb"}, {0x0, 0x7, 'G\'m`='}]}]}}}}})
sendmsg$ETHTOOL_MSG_COALESCE_GET(r1, &(0x7f0000000940)={&(0x7f0000001f80)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000900)={&(0x7f0000000740)=ANY=[@ANYBLOB, @ANYRES16=r9, @ANYRESDEC=r2, @ANYRES32=0x0, @ANYBLOB="1400020076657468305f6d61637674617000000008000100", @ANYRES32=r5, @ANYBLOB="1400020073697430000000000000000000000000080003000300000008000300000000001400020070696d3672656730000000000000000008000100", @ANYRES32=r7, @ANYBLOB="1c0001800800030003000000080003000200000008000100", @ANYRES32=r8, @ANYBLOB="3800018008000100", @ANYRES32=r9, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000300000000001400020076657468305f746f5f7465616d00000008000100", @ANYRES32=r10, @ANYBLOB="2000018008000100", @ANYRES32=r11, @ANYBLOB="1400020076657468305f746f5f626f6e640000004c000180080003000200000008000100", @ANYRES32=0x0, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="1400020067726530000000000000e00000000000"], 0x1a0}}, 0x10)
ioctl$SNDCTL_DSP_SYNC(r1, 0x5001, 0x0)
bind$qrtr(r0, &(0x7f0000000040)={0x2a, 0x1, 0x4000}, 0xc)

1.474650793s ago: executing program 2 (id=2631):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x50)
socket$inet6_sctp(0xa, 0x1, 0x84)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd6016000000102b00fc0100000000000000e2ff0000000000fe80"], 0x0)
memfd_create(&(0x7f00000000c0)='-B\xd5N4\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\x8a\xd7Uw\x00\xbc\xa92\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x19\xea\xef\xe3\xe1@\x84\x13\xefZb:\x8f\t\x01B\xec\xde\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00@Ip]D\xd6\r\xac\v#co\xd5\xb9\xc806\xa8\x99\xffs7\xa1b1\xb1;i)j\x0e\x1e\xedI\xa2\x80\x89\x1d\xd9p!\xc86s\xe07(\xee\xf9<\"\xf0\xc8\xae\x96J\xe2]\x01\x86\xb7.<\xf5N\xd3\x94W1\xff\x18z>\xa7q,\xf7\x96\xb8{\x8e\xbf4\xe0\x95\x1ce\xe4\x85\xcdi\xed\xd3>\xeb\xa5\xaf\x87\x90@\xd1\xbd`^\xfa\xb6\x9cj\x13/\xc5\\W\x04\br\x17X\xe3\xfb\xc8\xd4\xaeX\xc9s\xd18\xd9L\xbf\xa0\xa6\xdf2\a\x99i\xb1/\x19@\x1cq\xeb?\xc1z:\x913\xfa8\xac\xd3q\xe4vPGU', 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x32, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$inet6(0xa, 0x80002, 0x0)
sendmmsg$inet6(r1, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4001c00)

842.734743ms ago: executing program 0 (id=2632):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x50)
socket$inet6_sctp(0xa, 0x1, 0x84)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd6016000000102b00fc0100000000000000e2ff0000000000fe80"], 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x32, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0xfffffffd, @local, 0x2}, 0x1c)
sendmmsg$inet6(r1, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4001c00)

599.031314ms ago: executing program 3 (id=2633):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
bind$bt_l2cap(0xffffffffffffffff, 0x0, 0x0)
r1 = io_uring_setup(0x2937, &(0x7f00000000c0)={0x0, 0x2a68, 0x1000, 0x4000, 0x135a})
syz_open_dev$hidraw(&(0x7f0000000080), 0x7fff, 0x400)
syz_usb_connect$cdc_ncm(0x5, 0x6e, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000090000082502000000000000000109025c00020100f92a0904000001020900000524060001053408fa6e0d240f0100000000000d000a0006471a010000190581"], 0x0)
r2 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
syz_usb_disconnect(0xffffffffffffffff)
write$char_usb(r2, 0x0, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000280)=ANY=[], 0x0)
move_pages(0x0, 0x0, &(0x7f0000000000), 0x0, &(0x7f0000001680), 0x2)
r3 = getpgid(0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
fsopen(0x0, 0x1)
fchdir(0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x2, 0x7}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000005580)=""/102392, 0x18ff8)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
mount$cgroup(0x0, &(0x7f0000001180)='.\x00', &(0x7f00000000c0), 0x10012, &(0x7f0000000100)={[{@name={'name', 0x3d, 'blk-\xe5Mio\x8e\xfb\x10\xff\'\x8dR\"\xc9\xad\x13\xc0\xff\xbd\x84\xa4\xbe\xe1\xfa\xdf\xc8\xde\x03\x1fHt\xb5\f*\\O7\xe3\x16\x15\'\xdd`@\xde\xf5\xda\xa6;\x14@\xb0g\x9cx\xdau1!\xe5\xe6\x99\xb5f\x89\xc0\x98%\xc0|\x1a\xa7]\x03\x00\x00\x00\x00\x00\x00\x00\x85\xdf\xa4C\x04\x03s\xa0f\x1btEE\xf8\x1e\xa2 \xe0\xa1\x8c\r\xcf\b\xce\x14/\xbc\xd4\xfc\xc7.H.\x9a\xb1I\x82@\xba\",\x14\x02\x11\xae\xa23\xa7\xee\xa47s\xf2\xaa\xda\x90\xbf\xa2g\x82_\x1c\xfco>kM\xed\xb83\x1a\xca_\xe0T\xb8f\xce\x00\xdfy\r\x1e\xc8\xa6U&\x8d\x85\x1eu\xc8d\x8eI8\x9b\xe2\xaa\xf5(\xbf\b\x81g\x8d\x90\x02\xc4\xd5T\xe0\x8c\xaa\x8brj\x1bv\xe3\xbbV\x16\xfc\'\xdc>+\xed\xe7\x98\x85N\x02x&Th\f\x9d\xa6\x9fP\xe1\r\x15\x00\x83\xe4FN\xbe\x1e\xd0\xd3a\xedLY\xeb\x19\xe7\x1eL\xb9\xb9\x04\xd3f\"\x18\x1c@K\xde\xeemj\x9d\x13T,\xbf\xc6A\x83\xcc\xba \'\x12\x9d:\xcem\x82\xcb\x18\x94\xd1\xaf7\x12s\xfc\x02\xe4v<\xa0\'\xa7\xc0nx\x13\x17\xa3\xe9\bA2\xdf\xd58\x82\x90\xaf\r\x96\xba\xd5\x1e\x99&\x00\xb9\xd6\xa2\"\xd7d\xde\a?y\xd1A\xdb\v\x8d\xdc\xdd\b\x05\xe3\v\x01h\xa3.s\xf2\xd0\xf3i\x87]\xd8\x1f\xbf\x1e\x95\xd2Y\xca&\xf4\xb5\x1aP\fR]2\xc7h5x\xdc\x9ex\x87\x05[\xb0{\x16\x88\xed\'lH\xc2\x93\xd3\xf2\x8a\x94\x8e(4Z/\xd5\xe4\xe6\x16\x13]\xf4\xcd?\xd2\xf9\x12m\xe4\x15o'}}]})
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x400)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x20, &(0x7f0000000040)={@empty, @broadcast}, &(0x7f0000000080)=0xc)

581.927557ms ago: executing program 4 (id=2634):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'veth0\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000001c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0xb}, {0xffff, 0xffff}, {0x8}}, [@qdisc_kind_options=@q_mq={0x7}]}, 0x2c}}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xf88e470f, 0xed}]})
r2 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000300)=@file={0x1, './bus\x00'}, 0x6e)
setsockopt$RDS_CANCEL_SENT_TO(0xffffffffffffffff, 0x114, 0x1, 0x0, 0x0)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdir(&(0x7f0000000100)='./file1\x00', 0x13b)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f0000000140)='./file1\x00')
r6 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
sendmsg$netlink(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000002580)=[{&(0x7f0000000180)=ANY=[@ANYBLOB="1400000026000100000000000000000006"], 0x14}], 0x1}, 0x0)
r7 = open(&(0x7f0000000040)='./file0/file0\x00', 0x260400, 0x1c4)
write$FUSE_CREATE_OPEN(r7, &(0x7f0000000180)={0xa0, 0xffffffffffffffda, 0x0, {{0x4, 0x3, 0x5, 0x6, 0x3, 0x1, {0x0, 0x9, 0x20ff, 0x1, 0x89, 0xd615, 0x9, 0x7fffffff, 0xfffffffe, 0x8000, 0x0, 0x0, 0x0, 0x3ff, 0x1}}, {0x0, 0x13}}}, 0xa0)
sendfile(r7, r7, &(0x7f0000000080), 0x7f03)
r8 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(0xffffffffffffffff, 0x4008af60, &(0x7f0000000000)={@hyper})
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
listen(r8, 0x5)
ioctl$KVM_SET_REGS(r8, 0x4090ae82, &(0x7f0000000240)={[0xc45, 0x9, 0xfffffffffefffffd, 0x7, 0xfffc, 0x40007, 0x4002004c1, 0x7ff, 0x9, 0x7, 0x8, 0x83, 0x8c, 0x10000010, 0x4000000f, 0x8d], 0x25000, 0x2c0846})

0s ago: executing program 2 (id=2635):
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
syz_usb_connect$cdc_ecm(0x4, 0x6b, &(0x7f0000000140)={{0x12, 0x1, 0x250, 0x2, 0x0, 0x0, 0x0, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x59, 0x1, 0x1, 0x4, 0x0, 0x10, "", [{{0x9, 0x4, 0x0, 0x7, 0x3, 0x2, 0x6, 0x0, 0x0, {{0x8, 0x24, 0x6, 0x0, 0x0, "359884"}, {0x5, 0x24, 0x0, 0x7}, {0xd, 0x24, 0xf, 0x1, 0x8, 0x0, 0x3, 0x2}, [@mbim={0xc, 0x24, 0x1b, 0x8, 0x8, 0x9, 0x3, 0x1000, 0x7}, @ncm={0x6, 0x24, 0x1a, 0x1000, 0x5}]}, {[{{0x9, 0x5, 0x81, 0x3, 0x8, 0x3, 0x3, 0xa4}}], {{0x9, 0x5, 0x82, 0x2, 0x3ff, 0x1a, 0x81, 0x2}}, {{0x9, 0x5, 0x3, 0x2, 0x3ff, 0x80, 0x2, 0x8}}}}}]}}]}}, &(0x7f0000000580)={0xa, &(0x7f00000001c0)={0xa, 0x6, 0x300, 0x7, 0x0, 0xc3, 0x0, 0x6}, 0xf, &(0x7f0000000200)={0x5, 0xf, 0xf, 0x1, [@ss_cap={0xa, 0x10, 0x3, 0x0, 0x1, 0x6, 0x8, 0x7}]}, 0x9, [{0x1a, &(0x7f0000000240)=@string={0x1a, 0x3, "c4ddd886bc7a7480c948daaaf8dbe97a20e88ae3215b3362"}}, {0x4, &(0x7f0000000280)=@lang_id={0x4, 0x3, 0x827}}, {0x1c, &(0x7f00000002c0)=@string={0x1c, 0x3, "1b51398ecc1e684b51e19565df10b9eab02d2c3147239c9d795b"}}, {0x4, &(0x7f0000000300)=@lang_id={0x4, 0x3, 0x3001}}, {0xeb, &(0x7f0000000340)=@string={0xeb, 0x3, "402c6e384599622682ff76c50c385484aa9b7cc8c77cbecab8be7aa46bcdb298b26c382cc6ea8bc009f6ecbfc44b668535a8bd9ec630a170eb441e591a40a1e49c5b20bc57046886e4bef029989da1525c77dfcd5f4d24a460850a0d5f5e7fa130345cd1f858e91aa03b733b83224b8065862067d4a41553da163c5be1ef5c001f9a5101563cfbec3767e9d7df4ca63a98be6eb145a9a11570b38ab0faeb55aff40a57cd467964fd3b35bea17ff4a57bf2e42b0ea092445d21f5b1fdfd6710777b1c40a790924f970c7e6881f6ba30f8d2ae507b2111ae5f050256ec93b1dbdb3bc629562e863aa8c3"}}, {0x4d, &(0x7f0000000440)=@string={0x4d, 0x3, "e7e6773e486d8d2871aa202a625d43eff107f39ad08076e5fb2c8e055c65fc96df649e5872d1ae16f6af0d054ec9d0ee62b3bcf73c22638e1789808f96614b90a3498497e597c66af2b5f7"}}, {0x1a, &(0x7f00000004c0)=@string={0x1a, 0x3, "80fe0a1e444eee6007b2c3bd74ed2d640b77f7efd71c9e1e"}}, {0x4, &(0x7f0000000500)=@lang_id={0x4, 0x3, 0x2009}}, {0x4, &(0x7f0000000540)=@lang_id={0x4, 0x3, 0x401}}]})
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
r0 = syz_open_dev$char_usb(0xc, 0xb4, 0x800)
write$char_usb(r0, &(0x7f0000000080)="bf90033f06d513cbe5da584be9094971605e8d82b13825c4b40389a58b4361dcbe5692b3c10437cb1e22a4481855e6c7a5107ab3ba03a881df3e52863cc2fcb9aa1f23c39a8c4e33e18dfb74ba0662fc0263af45288e9d660cdc9234601cee73fe2c2bd74237d7148a83000000004eacb2e0b128c410870c848096de89e9dda0636ce537e346fd596aa6c4bed953d3d02edbb98ba86ffeb68451e508a17719d2758ae26d61", 0xa5)

0s ago: executing program 4 (id=2636):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x1e, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0x25}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r3=>0x0})
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000004f80), r4)
sendmsg$NL802154_CMD_SET_CHANNEL(r4, &(0x7f0000005100)={0x0, 0x0, &(0x7f00000050c0)={&(0x7f0000005040)={0x24, r5, 0x1, 0x70bd2c, 0x25dfdbfc, {}, [@NL802154_ATTR_PAGE={0x5, 0x7, 0x3}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000011}, 0x48010)
sendmsg$NL80211_CMD_NEW_STATION(r1, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000500)={0x50, r2, 0xb97534d5fe9704cf, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_STA_SUPPORTED_RATES={0x4}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0x580}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6}, @NL80211_ATTR_STA_FLAGS={0x4}, @NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES={0x6, 0xbe, '|q'}, @NL80211_ATTR_STA_PLINK_ACTION={0x5, 0x19, 0x1}]}, 0x50}, 0x1, 0x0, 0x0, 0x20008001}, 0x0)
r6 = syz_open_dev$vcsa(&(0x7f0000000000), 0x3ff, 0x101000)
sendmsg$NFT_MSG_GETCHAIN(r6, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000080)={0xf4, 0x4, 0xa, 0x801, 0x0, 0x0, {0x1, 0x0, 0x9}, [@NFTA_CHAIN_COUNTERS={0x4c, 0x8, 0x0, 0x1, [@NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x4}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x9}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0xf8d}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x6}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0xfffffffffffffffa}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x9}]}, @NFTA_CHAIN_COUNTERS={0x58, 0x8, 0x0, 0x1, [@NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x5}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0xc623}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0xffffffff}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x5}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0xfffffffffffffff7}, @NFTA_COUNTER_BYTES={0xc}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x4}]}, @NFTA_CHAIN_HOOK={0x18, 0x4, 0x0, 0x1, [@NFTA_HOOK_DEV={0x14, 0x3, 'geneve0\x00'}]}, @NFTA_CHAIN_POLICY={0x8, 0x5, 0x1, 0x0, 0xfffffffffffffffe}, @NFTA_CHAIN_FLAGS={0x8, 0xa, 0x1, 0x0, 0x1}, @NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x3}, @NFTA_CHAIN_POLICY={0x8, 0x5, 0x1, 0x0, 0xffffffffffffffff}]}, 0xf4}, 0x1, 0x0, 0x0, 0x4000}, 0x20000011)
r7 = openat$cdrom(0xffffff9c, &(0x7f0000000140), 0x880, 0x0)
ioctl$CDROMREADAUDIO(r7, 0x530e, 0x0)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r6, &(0x7f00000007c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000780)={&(0x7f0000000580)={0x1c4, r2, 0x100, 0x70bd26, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_REKEY_DATA={0x28, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_AKM={0x8, 0x4, 0x40}, @NL80211_REKEY_DATA_KCK={0x1c, 0x2, @kck_ext="58905cecfaa8d71d10ba3c1f0ac24df583803132d6f24333"}]}, @NL80211_ATTR_REKEY_DATA={0x34, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_KCK={0x1c, 0x2, @kck_ext="6206b29ab0c093a307febd660dbc040588769da1ecd965a4"}, @NL80211_REKEY_DATA_KEK={0x14, 0x1, @kek="8c273d1da419cd274c4dca3d6ed9645f"}]}, @NL80211_ATTR_REKEY_DATA={0xa8, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_KCK={0x1c, 0x2, @kck_ext="e8f2029474cf09dfd592806adf3e4199f690c89317493ce0"}, @NL80211_REKEY_DATA_KCK={0x14, 0x2, @kck="d556f310bec1704531e57ee8fd767248"}, @NL80211_REKEY_DATA_KEK={0x14, 0x1, @kek="1cfd4a9d8ec399adb82fe39dca93c7cd"}, @NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "a4e14e74a6e01528"}, @NL80211_REKEY_DATA_KCK={0x1c, 0x2, @kck_ext="43e4562457da0a891580e966ec08014bb86b97fa09556447"}, @NL80211_REKEY_DATA_KEK={0x14, 0x1, @kek="803ae106698a189f901636f6e713ff40"}, @NL80211_REKEY_DATA_KEK={0x24, 0x1, @kek_ext="1bf585881b11e31c69c499ec08689ed2c04c375ab15ab27e21dfe26b96776f03"}]}, @NL80211_ATTR_REKEY_DATA={0x3c, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_AKM={0x8, 0x4, 0x1}, @NL80211_REKEY_DATA_KCK={0x1c, 0x2, @kck_ext="550bc57cc86fb5a0f7508d9362abf45680d2b0425ad3868a"}, @NL80211_REKEY_DATA_KEK={0x14, 0x1, @kek="6183fd60863f9a6623ed1f0d618d6b5e"}]}, @NL80211_ATTR_REKEY_DATA={0x6c, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_AKM={0x8, 0x4, 0x5}, @NL80211_REKEY_DATA_AKM={0x8, 0x4, 0xfffff29b}, @NL80211_REKEY_DATA_KCK={0x14, 0x2, @kck="41f7d02825cf8720d8cdbaf5b4b83298"}, @NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "5ea75edf9f4a5cd4"}, @NL80211_REKEY_DATA_KEK={0x14, 0x1, @kek="3a0272ef39573c15f198bc2ffc82054a"}, @NL80211_REKEY_DATA_KEK={0x24, 0x1, @kek_ext="b53a152222d151f9586ff6d59b9ea74d55c11aee7886eb3c31669aa68a046f48"}]}, @NL80211_ATTR_REKEY_DATA={0x4}]}, 0x1c4}, 0x1, 0x0, 0x0, 0x4040000}, 0x40000)
socket$inet6_mptcp(0xa, 0x1, 0x106)

kernel console output (not intermixed with test programs):

�%H�J[~S'
[  785.764253][   T24] usb 7-1: USB disconnect, device number 67
[  786.440939][T15457] FAULT_INJECTION: forcing a failure.
[  786.440939][T15457] name failslab, interval 1, probability 0, space 0, times 0
[  786.447578][T15457] CPU: 1 UID: 0 PID: 15457 Comm: syz.2.2267 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  786.447605][T15457] Tainted: [L]=SOFTLOCKUP
[  786.447612][T15457] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  786.447623][T15457] Call Trace:
[  786.447629][T15457]  <TASK>
[  786.447636][T15457]  dump_stack_lvl+0x100/0x190
[  786.447662][T15457]  should_fail_ex.cold+0x5/0xa
[  786.447685][T15457]  should_failslab+0xc2/0x120
[  786.447707][T15457]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  786.447735][T15457]  ? __alloc_skb+0x140/0x710
[  786.447760][T15457]  ? __alloc_skb+0x5b7/0x710
[  786.447790][T15457]  __alloc_skb+0x140/0x710
[  786.447814][T15457]  ? __alloc_skb+0x5b7/0x710
[  786.447839][T15457]  ? __pfx___alloc_skb+0x10/0x10
[  786.447872][T15457]  pfkey_sendmsg+0x161/0x840
[  786.447917][T15457]  ____sys_sendmsg+0x9e1/0xb70
[  786.447938][T15457]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  786.447966][T15457]  ? __pfx_____sys_sendmsg+0x10/0x10
[  786.447997][T15457]  ___sys_sendmsg+0x190/0x1e0
[  786.448022][T15457]  ? __pfx____sys_sendmsg+0x10/0x10
[  786.448055][T15457]  ? find_held_lock+0x2b/0x80
[  786.448092][T15457]  __sys_sendmsg+0x170/0x220
[  786.448112][T15457]  ? __pfx___sys_sendmsg+0x10/0x10
[  786.448128][T15457]  ? __fget_files+0x21f/0x3d0
[  786.448155][T15457]  ? ksys_write+0x1ac/0x250
[  786.448176][T15457]  ? rcu_is_watching+0x12/0xc0
[  786.448200][T15457]  __do_fast_syscall_32+0xe7/0x950
[  786.448222][T15457]  ? lockdep_hardirqs_on+0x78/0x100
[  786.448250][T15457]  do_fast_syscall_32+0x32/0x70
[  786.448272][T15457]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  786.448295][T15457] RIP: 0023:0xf704efcc
[  786.448310][T15457] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  786.448326][T15457] RSP: 002b:00000000f541c50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  786.448343][T15457] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080000040
[  786.448354][T15457] RDX: 0000000004000050 RSI: 0000000000000000 RDI: 0000000000000000
[  786.448365][T15457] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  786.448375][T15457] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  786.448385][T15457] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  786.448409][T15457]  </TASK>
[  786.613773][ T1485] usb 6-1: new high-speed USB device number 55 using dummy_hcd
[  786.795549][ T1485] usb 6-1: Using ep0 maxpacket: 8
[  786.804981][ T1485] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  786.808735][ T1485] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xE2, changing to 0x82
[  786.815341][ T1485] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  786.829747][ T1485] usb 6-1: New USB device found, idVendor=04e8, idProduct=ff30, bcdDevice=a6.d1
[  786.839620][ T1485] usb 6-1: New USB device strings: Mfr=1, Product=34, SerialNumber=3
[  786.919699][ T1485] usb 6-1: Product: syz
[  786.921223][ T1485] usb 6-1: Manufacturer: syz
[  786.927741][ T1485] usb 6-1: SerialNumber: syz
[  786.938636][ T1485] usb 6-1: config 0 descriptor??
[  787.041196][ T1485] rc_core: IR keymap rc-imon-rsc not found
[  787.043530][ T1485] Registered IR keymap rc-empty
[  787.047669][ T1485] rc rc0: iMON Station as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0
[  787.055990][ T1485] input: iMON Station as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0/input78
[  788.073479][T15477] netlink: 'syz.3.2273': attribute type 1 has an invalid length.
[  788.319718][T15479] bond2: (slave bridge8): Enslaving as a backup interface with an up link
[  788.692345][T15482] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2274'.
[  789.070131][T15487] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  789.157427][T15491] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2278'.
[  789.161534][T15491] syzkaller0: entered promiscuous mode
[  789.163390][T15491] syzkaller0: entered allmulticast mode
[  789.529911][T15500] netlink: 76 bytes leftover after parsing attributes in process `syz.3.2280'.
[  790.234396][T15510] ALSA: mixer_oss: invalid OSS volume '�����Y��{��������U����D��D�'
[  790.237334][T15510] ALSA: mixer_oss: invalid OSS volume 'ߧ�4c�T���󯆩"�m!l�T.�Π����'
[  790.240058][T15510] ALSA: mixer_oss: invalid OSS volume 'lg�'
[  790.242348][T15510] ALSA: mixer_oss: invalid OSS volume '�)n���k�Ki��,r��WY\�ZV����?J`G'
[  790.245235][T15510] ALSA: mixer_oss: invalid OSS volume 'k�O0���$��g��{�
pl{��y;_A�RW��'
[  790.248134][T15510] ALSA: mixer_oss: invalid OSS volume '�'
[  790.250049][T15510] ALSA: mixer_oss: invalid OSS volume 'sv��Fu{Qby>��h%w���]'
[  790.252898][T15510] ALSA: mixer_oss: invalid OSS volume '�E���
=�v?��@4��8�@�h����L'
[  790.255501][T15510] ALSA: mixer_oss: invalid OSS volume '�+���?>3Iq��0:i��q�|��U�D�ř��'
[  790.259094][T15510] ALSA: mixer_oss: invalid OSS volume 'vӷ*xr��N0�ܗ���c��A�����d�h�'
[  790.262589][T15510] ALSA: mixer_oss: invalid OSS volume '��JM����%H�J[~S'
[  790.304596][    T9] usb 6-1: USB disconnect, device number 55
[  791.054788][T15515] lo speed is unknown, defaulting to 1000
[  791.440427][ T1485] kernel write not supported for file /comedi3 (pid: 1485 comm: kworker/1:2)
[  792.539205][T15536] lo speed is unknown, defaulting to 1000
[  792.639705][T15538] 9p: Bad value for 'wfdno'
[  792.700201][T15540] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  792.762666][T15542] netlink: 620 bytes leftover after parsing attributes in process `syz.1.2288'.
[  794.116092][ T1485] kernel write not supported for file /comedi3 (pid: 1485 comm: kworker/1:2)
[  794.614276][T15549] lo speed is unknown, defaulting to 1000
[  796.179852][T15564] ALSA: mixer_oss: invalid OSS volume '�����Y��{��������U����D��D�'
[  796.182837][T15564] ALSA: mixer_oss: invalid OSS volume 'ߧ�4c�T���󯆩"�m!l�T.�Π����'
[  796.186191][T15564] ALSA: mixer_oss: invalid OSS volume 'lg�'
[  796.188536][T15564] ALSA: mixer_oss: invalid OSS volume '�)n���k�Ki��,r��WY\�ZV����?J`G'
[  796.193454][T15564] ALSA: mixer_oss: invalid OSS volume 'k�O0���$��g��{�
pl{��y;_A�RW��'
[  796.197545][T15564] ALSA: mixer_oss: invalid OSS volume '�'
[  796.199918][T15564] ALSA: mixer_oss: invalid OSS volume 'sv��Fu{Qby>��h%w���]'
[  796.204656][T15564] ALSA: mixer_oss: invalid OSS volume '�E���
=�v?��@4��8�@�h����L'
[  796.207869][T15564] ALSA: mixer_oss: invalid OSS volume '�+���?>3Iq��0:i��q�|��U�D�ř��'
[  796.210784][T15564] ALSA: mixer_oss: invalid OSS volume 'vӷ*xr��N0�ܗ���c��A�����d�h�'
[  796.214063][T15564] ALSA: mixer_oss: invalid OSS volume '��JM����%H�J[~S'
[  796.440668][T15565] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2292'.
[  796.627115][T15565] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2292'.
[  797.253999][T15573] ALSA: mixer_oss: invalid OSS volume '�����Y��{��������U����D��D�'
[  797.257566][T15573] ALSA: mixer_oss: invalid OSS volume 'ߧ�4c�T���󯆩"�m!l�T.�Π����'
[  797.260969][T15573] ALSA: mixer_oss: invalid OSS volume 'lg�'
[  797.263951][T15573] ALSA: mixer_oss: invalid OSS volume '�)n���k�Ki��,r��WY\�ZV����?J`G'
[  797.267586][T15573] ALSA: mixer_oss: invalid OSS volume 'k�O0���$��g��{�
pl{��y;_A�RW��'
[  797.271667][T15573] ALSA: mixer_oss: invalid OSS volume '�'
[  797.274479][T15573] ALSA: mixer_oss: invalid OSS volume 'sv��Fu{Qby>��h%w���]'
[  797.277881][T15573] ALSA: mixer_oss: invalid OSS volume '�E���
=�v?��@4��8�@�h����L'
[  797.281857][T15573] ALSA: mixer_oss: invalid OSS volume '�+���?>3Iq��0:i��q�|��U�D�ř��'
[  797.285669][T15573] ALSA: mixer_oss: invalid OSS volume 'vӷ*xr��N0�ܗ���c��A�����d�h�'
[  797.288925][T15573] ALSA: mixer_oss: invalid OSS volume '��JM����%H�J[~S'
[  797.354440][ T5745] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  797.363257][ T5745] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  797.367937][ T5745] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  797.370710][ T5745] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  797.373981][ T5745] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  797.389433][ T5100] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  797.391914][ T5100] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  797.395682][ T5100] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  797.406223][ T5100] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  797.409001][ T5100] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  799.315075][T15579] lo speed is unknown, defaulting to 1000
[  799.629427][ T5100] Bluetooth: hci4: command tx timeout
[  799.803633][ T1485] kernel write not supported for file /comedi3 (pid: 1485 comm: kworker/1:2)
[  799.820588][T15595] lo speed is unknown, defaulting to 1000
[  799.860100][T15579] bridge0: port 1(bridge_slave_0) entered blocking state
[  799.862548][T15579] bridge0: port 1(bridge_slave_0) entered disabled state
[  799.865975][T15579] bridge_slave_0: entered allmulticast mode
[  799.869443][T15579] bridge_slave_0: entered promiscuous mode
[  799.883913][T15579] bridge0: port 2(bridge_slave_1) entered blocking state
[  799.887139][T15579] bridge0: port 2(bridge_slave_1) entered disabled state
[  799.889928][T15579] bridge_slave_1: entered allmulticast mode
[  799.893486][T15579] bridge_slave_1: entered promiscuous mode
[  799.927432][T15579] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  799.934413][T15579] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  800.097493][T15579] team0: Port device team_slave_0 added
[  800.106910][T15579] team0: Port device team_slave_1 added
[  800.134526][T15579] batman_adv: batadv0: Adding interface: batadv_slave_0
[  800.137585][T15579] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  800.153680][T15579] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  800.173394][T15579] batman_adv: batadv0: Adding interface: batadv_slave_1
[  800.180929][T15579] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  800.201855][T15579] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  800.228369][ T7190] usb 6-1: new low-speed USB device number 56 using dummy_hcd
[  800.255398][T15579] hsr_slave_0: entered promiscuous mode
[  800.258200][T15579] hsr_slave_1: entered promiscuous mode
[  800.260951][T15579] debugfs: 'hsr0' already exists in 'hsr'
[  800.263329][T15579] Cannot create hsr debugfs directory
[  800.335641][T15579] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  800.406750][T15579] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  800.412219][ T7190] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  800.415455][ T7190] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  800.420081][ T7190] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  800.424973][ T7190] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  800.428615][ T7190] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  800.435915][ T7190] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  800.438934][ T7190] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  800.443103][ T7190] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  800.448135][ T7190] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  800.452943][ T7190] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  800.459284][ T7190] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  800.462510][ T7190] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  800.467186][ T7190] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  800.472211][ T7190] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  800.476984][ T7190] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  800.484931][ T7190] usb 6-1: string descriptor 0 read error: -22
[  800.487786][ T7190] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  800.491677][ T7190] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  800.502452][ T7190] adutux 6-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  800.517381][T15579] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  800.586324][T15579] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  800.745147][T15579] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  800.749672][T15579] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  800.753033][T15579] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  800.758493][T15579] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  800.762533][T15579] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  800.774056][T15579] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  800.777403][T15579] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  800.782986][T15579] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  800.858666][T15579] 8021q: adding VLAN 0 to HW filter on device bond0
[  800.876655][T15579] 8021q: adding VLAN 0 to HW filter on device team0
[  800.885128][T14392] bridge0: port 1(bridge_slave_0) entered blocking state
[  800.888188][T14392] bridge0: port 1(bridge_slave_0) entered forwarding state
[  800.897590][ T6922] bridge0: port 2(bridge_slave_1) entered blocking state
[  800.900740][ T6922] bridge0: port 2(bridge_slave_1) entered forwarding state
[  801.187756][T15579] 8021q: adding VLAN 0 to HW filter on device batadv0
[  801.215501][T15579] veth0_vlan: entered promiscuous mode
[  801.229367][T15579] veth1_vlan: entered promiscuous mode
[  801.258531][T15579] veth0_macvtap: entered promiscuous mode
[  801.267643][T15579] veth1_macvtap: entered promiscuous mode
[  801.285548][T15579] batman_adv: batadv0: Interface activated: batadv_slave_0
[  801.297243][T15579] batman_adv: batadv0: Interface activated: batadv_slave_1
[  801.305577][ T1175] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  801.310461][ T1175] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  801.314705][ T1175] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  801.319917][ T1175] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  801.368934][ T6922] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  801.374619][ T6922] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  801.390034][ T6922] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  801.394173][ T6922] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  801.698772][T15637] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2303'.
[  801.707596][T15638] lo speed is unknown, defaulting to 1000
[  801.798169][ T1485] kernel write not supported for file /comedi3 (pid: 1485 comm: kworker/1:2)
[  801.852872][ T5100] Bluetooth: hci4: command tx timeout
[  803.186696][ T5855] usb 6-1: USB disconnect, device number 56
[  803.261790][T15664] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2309'.
[  803.399155][T15668] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  803.401968][T15668] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  803.413295][T15668] vhci_hcd vhci_hcd.0: Device attached
[  803.611836][T15668] rdma_rxe: rxe_newlink: failed to add wg2
[  803.711491][ T1485] usb 42-1: SetAddress Request (6) to port 0
[  803.714764][ T1485] usb 42-1: new SuperSpeed USB device number 6 using vhci_hcd
[  803.987454][T15669] vhci_hcd: connection reset by peer
[  803.992180][T14392] vhci_hcd vhci_hcd.2: stop threads
[  803.994675][T14392] vhci_hcd vhci_hcd.2: release socket
[  803.999715][T14392] vhci_hcd vhci_hcd.2: disconnect device
[  804.079372][ T5100] Bluetooth: hci4: command tx timeout
[  804.534712][T15694] ALSA: mixer_oss: invalid OSS volume '�����Y��{��������U����D��D�'
[  804.538224][T15694] ALSA: mixer_oss: invalid OSS volume 'ߧ�4c�T���󯆩"�m!l�T.�Π����'
[  804.542094][T15694] ALSA: mixer_oss: invalid OSS volume 'lg�'
[  804.544622][T15694] ALSA: mixer_oss: invalid OSS volume '�)n���k�Ki��,r��WY\�ZV����?J`G'
[  804.548107][T15694] ALSA: mixer_oss: invalid OSS volume 'k�O0���$��g��{�
pl{��y;_A�RW��'
[  804.551473][T15694] ALSA: mixer_oss: invalid OSS volume '�'
[  804.553510][T15694] ALSA: mixer_oss: invalid OSS volume 'sv��Fu{Qby>��h%w���]'
[  804.557165][T15694] ALSA: mixer_oss: invalid OSS volume '�E���
=�v?��@4��8�@�h����L'
[  804.560461][T15694] ALSA: mixer_oss: invalid OSS volume '�+���?>3Iq��0:i��q�|��U�D�ř��'
[  804.563907][T15694] ALSA: mixer_oss: invalid OSS volume 'vӷ*xr��N0�ܗ���c��A�����d�h�'
[  804.567198][T15694] ALSA: mixer_oss: invalid OSS volume '��JM����%H�J[~S'
[  804.670607][T15696] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2314'.
��������J�����������
[  806.258093][T15719] lo speed is unknown, defaulting to 1000
[  806.299021][ T5100] Bluetooth: hci4: command tx timeout
[  806.328537][   T54] kernel write not supported for file /comedi3 (pid: 54 comm: kworker/1:1)
[  806.745637][T15740] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2324'.
[  807.704722][T15756] ALSA: mixer_oss: invalid OSS volume '�����Y��{��������U����D��D�'
[  807.707490][T15756] ALSA: mixer_oss: invalid OSS volume 'ߧ�4c�T���󯆩"�m!l�T.�Π����'
[  807.710212][T15756] ALSA: mixer_oss: invalid OSS volume 'lg�'
[  807.712253][T15756] ALSA: mixer_oss: invalid OSS volume '�)n���k�Ki��,r��WY\�ZV����?J`G'
[  807.716035][T15756] ALSA: mixer_oss: invalid OSS volume 'k�O0���$��g��{�
pl{��y;_A�RW��'
[  807.718798][T15756] ALSA: mixer_oss: invalid OSS volume '�'
[  807.720720][T15756] ALSA: mixer_oss: invalid OSS volume 'sv��Fu{Qby>��h%w���]'
[  807.723254][T15756] ALSA: mixer_oss: invalid OSS volume '�E���
=�v?��@4��8�@�h����L'
[  807.725962][T15756] ALSA: mixer_oss: invalid OSS volume '�+���?>3Iq��0:i��q�|��U�D�ř��'
[  807.728777][T15756] ALSA: mixer_oss: invalid OSS volume 'vӷ*xr��N0�ܗ���c��A�����d�h�'
[  807.731906][T15756] ALSA: mixer_oss: invalid OSS volume '��JM����%H�J[~S'
[  807.943325][   T54] usb 8-1: new high-speed USB device number 51 using dummy_hcd
[  808.124889][   T54] usb 8-1: Using ep0 maxpacket: 8
[  808.133383][   T54] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  808.139375][   T54] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xE2, changing to 0x82
[  808.144223][   T54] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  808.157597][   T54] usb 8-1: New USB device found, idVendor=04e8, idProduct=ff30, bcdDevice=a6.d1
[  808.161518][   T54] usb 8-1: New USB device strings: Mfr=1, Product=34, SerialNumber=3
[  808.164890][   T54] usb 8-1: Product: syz
[  808.166677][   T54] usb 8-1: Manufacturer: syz
[  808.168894][   T54] usb 8-1: SerialNumber: syz
[  808.186383][   T54] usb 8-1: config 0 descriptor??
[  809.033194][   T54] rc_core: IR keymap rc-imon-rsc not found
[  809.036196][   T54] Registered IR keymap rc-empty
[  809.039731][   T54] rc rc0: iMON Station as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc0
[  809.045906][   T54] input: iMON Station as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc0/input79
[  809.129521][ T1485] usb 42-1: device descriptor read/8, error -110
[  809.568997][ T1485] usb usb42-port1: attempt power cycle
[  809.642178][ T1340] usb 6-1: new low-speed USB device number 57 using dummy_hcd
[  809.770637][T15746] usb 5-1: new high-speed USB device number 48 using dummy_hcd
[  809.807041][ T1340] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  809.810245][ T1340] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  809.813847][ T1340] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  809.818138][ T1340] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  809.821785][ T1340] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  809.826653][ T1340] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  809.829097][ T1340] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  809.832577][ T1340] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  809.837408][ T1340] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  809.842133][ T1340] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  809.848197][ T1340] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  809.851495][ T1340] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  809.856239][ T1340] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  809.861461][ T1340] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  809.866292][ T1340] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  809.874940][ T1340] usb 6-1: string descriptor 0 read error: -22
[  809.877554][ T1340] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  809.881907][ T1340] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  809.891402][ T1340] adutux 6-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  809.955987][T15746] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  809.960957][T15746] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  809.965702][T15746] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  809.971799][T15746] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  809.976166][T15746] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  809.985599][T15746] usb 5-1: config 0 descriptor??
[  810.178268][ T1485] usb usb42-port1: unable to enumerate USB device
[  810.458623][T15785] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  810.528617][T15746] plantronics 0003:047F:FFFF.0003: hiddev1,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  810.554541][T15793] netlink: 204 bytes leftover after parsing attributes in process `syz.2.2336'.
[  810.558826][T15793] netlink: 112 bytes leftover after parsing attributes in process `syz.2.2336'.
[  810.698358][ T1340] usb 5-1: USB disconnect, device number 48
[  810.810633][   T24] usb 8-1: USB disconnect, device number 51
[  811.115100][T15798] lo speed is unknown, defaulting to 1000
[  811.188415][T15746] kernel write not supported for file /comedi3 (pid: 15746 comm: kworker/1:0)
[  811.402277][T15806] 9p: Bad value for 'rfdno'
[  811.715480][   T24] usb 7-1: new high-speed USB device number 68 using dummy_hcd
[  811.907605][   T24] usb 7-1: Using ep0 maxpacket: 8
[  811.919642][   T24] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  811.923307][   T24] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xE2, changing to 0x82
[  811.926977][   T24] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  811.941600][   T24] usb 7-1: New USB device found, idVendor=04e8, idProduct=ff30, bcdDevice=a6.d1
[  811.945303][   T24] usb 7-1: New USB device strings: Mfr=1, Product=34, SerialNumber=3
[  811.948717][   T24] usb 7-1: Product: syz
[  811.961022][   T24] usb 7-1: Manufacturer: syz
[  811.963000][   T24] usb 7-1: SerialNumber: syz
[  811.970392][   T24] usb 7-1: config 0 descriptor??
[  812.027055][   T24] rc_core: IR keymap rc-imon-rsc not found
[  812.029047][   T24] Registered IR keymap rc-empty
[  812.032867][   T24] rc rc0: iMON Station as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0
[  812.041575][   T24] input: iMON Station as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0/input80
[  812.515950][ T1340] usb 6-1: USB disconnect, device number 57
[  812.728754][T15817] ALSA: mixer_oss: invalid OSS volume '�����Y��{��������U����D��D�'
[  812.731222][T15817] ALSA: mixer_oss: invalid OSS volume 'ߧ�4c�T���󯆩"�m!l�T.�Π����'
[  812.733575][T15817] ALSA: mixer_oss: invalid OSS volume 'lg�'
[  812.735307][T15817] ALSA: mixer_oss: invalid OSS volume '�)n���k�Ki��,r��WY\�ZV����?J`G'
[  812.737757][T15817] ALSA: mixer_oss: invalid OSS volume 'k�O0���$��g��{�
pl{��y;_A�RW��'
[  812.740285][T15817] ALSA: mixer_oss: invalid OSS volume '�'
[  812.742250][T15817] ALSA: mixer_oss: invalid OSS volume 'sv��Fu{Qby>��h%w���]'
[  812.745624][T15817] ALSA: mixer_oss: invalid OSS volume '�E���
=�v?��@4��8�@�h����L'
[  812.749347][T15817] ALSA: mixer_oss: invalid OSS volume '�+���?>3Iq��0:i��q�|��U�D�ř��'
[  812.753837][T15817] ALSA: mixer_oss: invalid OSS volume 'vӷ*xr��N0�ܗ���c��A�����d�h�'
[  812.757486][T15817] ALSA: mixer_oss: invalid OSS volume '��JM����%H�J[~S'
[  812.870597][T15820] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  812.919953][T15822] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  812.927817][T15822] input: syz1 as /devices/virtual/input/input81
[  812.930761][T15822] input: failed to attach handler leds to device input81, error: -6
[  813.093168][T15825] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2345'.
[  814.201641][T15832] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2348'.
[  814.788884][T15746] usb 7-1: USB disconnect, device number 68
[  815.134843][   T54] usb 5-1: new low-speed USB device number 49 using dummy_hcd
[  815.352745][   T54] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  815.363245][   T54] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  815.379431][   T54] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  815.398927][   T54] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  815.406016][   T54] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  815.413042][   T54] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  815.428658][   T54] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  815.447286][   T54] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  815.463774][   T54] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  815.481132][   T54] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  815.502138][   T54] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  815.509254][   T54] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  815.513434][   T54] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  815.517623][   T54] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  815.531621][   T54] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  815.541908][ T1432] ieee802154 phy0 wpan0: encryption failed: -22
[  815.556451][   T54] usb 5-1: string descriptor 0 read error: -22
[  815.558904][   T54] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  815.572274][   T54] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  815.621431][   T54] adutux 5-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  815.743339][T15852] bridge0: port 2(bridge_slave_1) entered disabled state
[  815.746254][T15852] bridge0: port 1(bridge_slave_0) entered disabled state
[  815.992440][T15852] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  816.013941][T15852] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  816.064986][T15860] FAULT_INJECTION: forcing a failure.
[  816.064986][T15860] name failslab, interval 1, probability 0, space 0, times 0
[  816.077401][T15860] CPU: 0 UID: 0 PID: 15860 Comm: syz.2.2356 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  816.077429][T15860] Tainted: [L]=SOFTLOCKUP
[  816.077435][T15860] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  816.077445][T15860] Call Trace:
[  816.077450][T15860]  <TASK>
[  816.077457][T15860]  dump_stack_lvl+0x100/0x190
[  816.077480][T15860]  should_fail_ex.cold+0x5/0xa
[  816.077506][T15860]  should_failslab+0xc2/0x120
[  816.077529][T15860]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  816.077554][T15860]  ? __pmd_alloc+0xbf/0x950
[  816.077584][T15860]  __pmd_alloc+0xbf/0x950
[  816.077606][T15860]  __handle_mm_fault+0xa9c/0x2a00
[  816.077633][T15860]  ? mt_find+0x45e/0x8e0
[  816.077661][T15860]  ? __pfx___handle_mm_fault+0x10/0x10
[  816.077685][T15860]  ? __pfx_mt_find+0x10/0x10
[  816.077717][T15860]  ? find_vma+0xbf/0x140
[  816.077734][T15860]  ? __pfx_find_vma+0x10/0x10
[  816.077753][T15860]  handle_mm_fault+0x36d/0xa20
[  816.077780][T15860]  do_user_addr_fault+0x74c/0x12f0
[  816.077808][T15860]  ? trace_page_fault_kernel+0x7a/0x200
[  816.077833][T15860]  exc_page_fault+0x6f/0xd0
[  816.077853][T15860]  asm_exc_page_fault+0x26/0x30
[  816.077868][T15860] RIP: 0010:_copy_from_user+0x93/0xd0
[  816.077893][T15860] Code: f1 10 fd 89 ee 4c 89 ef 48 b8 00 f0 ff ff ff 7f 00 00 48 39 c3 48 0f 47 d8 e8 f9 b9 7d fd 0f 01 cb 4c 89 ef 48 89 de 48 89 e9 <f3> a4 0f 1f 00 49 89 cc 48 89 cb 0f 01 ca 31 ff 48 89 ce e8 d5 eb
[  816.077908][T15860] RSP: 0018:ffffc9000e527978 EFLAGS: 00050246
[  816.077922][T15860] RAX: 0000000000000001 RBX: 0000000080000080 RCX: 0000000000000068
[  816.077933][T15860] RDX: 0000000000000001 RSI: 0000000080000080 RDI: ffffc9000e5279e0
[  816.077944][T15860] RBP: 0000000000000068 R08: 0000000000000001 R09: fffff52001ca4f48
[  816.077956][T15860] R10: ffffc9000e527a47 R11: 0000000000000000 R12: 0000000000000000
[  816.077968][T15860] R13: ffffc9000e5279e0 R14: ffffc9000e5279e0 R15: ffffc9000e527a70
[  816.077993][T15860]  ? _copy_from_user+0x87/0xd0
[  816.078017][T15860]  prctl_set_mm_map+0x144/0x7f0
[  816.078037][T15860]  ? __pfx_prctl_set_mm_map+0x10/0x10
[  816.078053][T15860]  ? __lock_acquire+0x4a5/0x2630
[  816.078077][T15860]  ? _kstrtoull+0x13c/0x1f0
[  816.078131][T15860]  ? get_pid_task+0x106/0x250
[  816.078156][T15860]  ? proc_fail_nth_write+0x9f/0x220
[  816.078183][T15860]  prctl_set_mm+0x5e6/0xf10
[  816.078201][T15860]  ? find_held_lock+0x2b/0x80
[  816.078220][T15860]  ? ksys_write+0x190/0x250
[  816.078237][T15860]  ? ksys_write+0x190/0x250
[  816.078259][T15860]  ? __pfx_prctl_set_mm+0x10/0x10
[  816.078290][T15860]  ? static_key_count+0x5a/0x70
[  816.078309][T15860]  ? security_task_prctl+0x11c/0x160
[  816.078346][T15860]  __do_sys_prctl+0x1a37/0x2310
[  816.078387][T15860]  ? __pfx___do_sys_prctl+0x10/0x10
[  816.078405][T15860]  ? ksys_write+0x1ac/0x250
[  816.078428][T15860]  ? rcu_is_watching+0x12/0xc0
[  816.078453][T15860]  __do_fast_syscall_32+0xe7/0x950
[  816.078473][T15860]  ? lockdep_hardirqs_on+0x78/0x100
[  816.078494][T15860]  do_fast_syscall_32+0x32/0x70
[  816.078514][T15860]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  816.078533][T15860] RIP: 0023:0xf704efcc
[  816.078546][T15860] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  816.078562][T15860] RSP: 002b:00000000f543d50c EFLAGS: 00000292 ORIG_RAX: 00000000000000ac
[  816.078585][T15860] RAX: ffffffffffffffda RBX: 0000000000000023 RCX: 000000000000000e
[  816.078597][T15860] RDX: 0000000080000080 RSI: 0000000000000068 RDI: 0000000000000000
[  816.078607][T15860] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  816.078616][T15860] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  816.078625][T15860] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  816.078646][T15860]  </TASK>
[  816.316025][   T85] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  816.320080][   T85] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  816.325167][   T85] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  816.328994][   T85] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  816.358805][T15863] ALSA: mixer_oss: invalid OSS volume '�����Y��{��������U����D��D�'
[  816.362433][T15863] ALSA: mixer_oss: invalid OSS volume 'ߧ�4c�T���󯆩"�m!l�T.�Π����'
[  816.365612][T15863] ALSA: mixer_oss: invalid OSS volume 'lg�'
[  816.368233][T15863] ALSA: mixer_oss: invalid OSS volume '�)n���k�Ki��,r��WY\�ZV����?J`G'
[  816.371737][T15863] ALSA: mixer_oss: invalid OSS volume 'k�O0���$��g��{�
pl{��y;_A�RW��'
[  816.375306][T15863] ALSA: mixer_oss: invalid OSS volume '�'
[  816.377651][T15863] ALSA: mixer_oss: invalid OSS volume 'sv��Fu{Qby>��h%w���]'
[  816.380789][T15863] ALSA: mixer_oss: invalid OSS volume '�E���
=�v?��@4��8�@�h����L'
[  816.383652][T15863] ALSA: mixer_oss: invalid OSS volume '�+���?>3Iq��0:i��q�|��U�D�ř��'
[  816.387154][T15863] ALSA: mixer_oss: invalid OSS volume 'vӷ*xr��N0�ܗ���c��A�����d�h�'
[  816.390654][T15863] ALSA: mixer_oss: invalid OSS volume '��JM����%H�J[~S'
[  816.561422][T15867] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2358'.
[  817.384329][T15872] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2360'.
[  817.507090][   T50] usb 7-1: new high-speed USB device number 69 using dummy_hcd
[  817.567509][T15876] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  817.678099][   T50] usb 7-1: Using ep0 maxpacket: 8
[  817.682164][   T50] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  817.686670][   T50] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xE2, changing to 0x82
[  817.691832][   T50] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  817.698757][   T50] usb 7-1: New USB device found, idVendor=04e8, idProduct=ff30, bcdDevice=a6.d1
[  817.702843][   T50] usb 7-1: New USB device strings: Mfr=1, Product=34, SerialNumber=3
[  817.706333][   T50] usb 7-1: Product: syz
[  817.708227][   T50] usb 7-1: Manufacturer: syz
[  817.710633][   T50] usb 7-1: SerialNumber: syz
[  817.715014][   T50] usb 7-1: config 0 descriptor??
[  817.763660][   T50] rc_core: IR keymap rc-imon-rsc not found
[  817.773870][   T50] Registered IR keymap rc-empty
[  817.793621][   T50] rc rc0: iMON Station as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0
[  817.829109][   T50] input: iMON Station as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0/input82
[  818.104961][    T9] usb 5-1: USB disconnect, device number 49
[  818.983261][T15898] input: syz0 as /devices/virtual/input/input83
[  818.993152][T15898] FAULT_INJECTION: forcing a failure.
[  818.993152][T15898] name failslab, interval 1, probability 0, space 0, times 0
[  818.997560][T15898] CPU: 3 UID: 0 PID: 15898 Comm: syz.0.2366 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  818.997578][T15898] Tainted: [L]=SOFTLOCKUP
[  818.997582][T15898] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  818.997589][T15898] Call Trace:
[  818.997604][T15898]  <TASK>
[  818.997609][T15898]  dump_stack_lvl+0x100/0x190
[  818.997626][T15898]  should_fail_ex.cold+0x5/0xa
[  818.997641][T15898]  should_failslab+0xc2/0x120
[  818.997654][T15898]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  818.997673][T15898]  ? alloc_empty_file+0x5b/0x1c0
[  818.997689][T15898]  ? stack_trace_save+0x8e/0xc0
[  818.997708][T15898]  alloc_empty_file+0x5b/0x1c0
[  818.997726][T15898]  path_openat+0xe8/0x31a0
[  818.997739][T15898]  ? kasan_save_stack+0x3f/0x50
[  818.997752][T15898]  ? kasan_save_stack+0x30/0x50
[  818.997765][T15898]  ? kasan_save_track+0x14/0x30
[  818.997779][T15898]  ? __kasan_slab_alloc+0x89/0x90
[  818.997794][T15898]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  818.997817][T15898]  ? do_getname+0x35/0x390
[  818.997839][T15898]  ? do_int80_emulation+0x141/0x700
[  818.997873][T15898]  ? asm_int80_emulation+0x1a/0x20
[  818.997886][T15898]  ? __pfx_path_openat+0x10/0x10
[  818.997904][T15898]  do_file_open+0x20e/0x430
[  818.997919][T15898]  ? __pfx_do_file_open+0x10/0x10
[  818.997942][T15898]  ? _raw_spin_unlock+0x28/0x50
[  818.997954][T15898]  ? alloc_fd+0x476/0x790
[  818.997970][T15898]  do_sys_openat2+0x10d/0x1e0
[  818.997988][T15898]  ? __pfx_do_sys_openat2+0x10/0x10
[  818.998004][T15898]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  818.998020][T15898]  ? __fget_files+0x21f/0x3d0
[  818.998035][T15898]  __ia32_compat_sys_openat+0x12d/0x210
[  818.998054][T15898]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  818.998072][T15898]  ? ksys_write+0x1ac/0x250
[  818.998086][T15898]  ? rcu_is_watching+0x12/0xc0
[  818.998102][T15898]  do_int80_emulation+0x141/0x700
[  818.998118][T15898]  asm_int80_emulation+0x1a/0x20
[  818.998129][T15898] RIP: 0023:0xf714616b
[  818.998139][T15898] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[  818.998150][T15898] RSP: 002b:00000000f53fd03c EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  818.998161][T15898] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 00000000f53fd100
[  818.998168][T15898] RDX: 0000000000004000 RSI: 0000000000000000 RDI: 0000000000000000
[  818.998175][T15898] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  818.998181][T15898] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  818.998188][T15898] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  818.998201][T15898]  </TASK>
��������J�����������
[  819.389222][T15907] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2368'.
[  820.066144][T15909] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2369'.
[  820.254860][T15918] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2372'.
[  820.285591][ T5745] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  820.295594][ T5745] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  820.305973][ T5745] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  820.321589][ T5745] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  820.324751][ T5745] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  820.441600][ T7190] usb 7-1: USB disconnect, device number 69
[  820.583800][T15928] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  820.586338][T15928] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  820.589790][T15928] vhci_hcd vhci_hcd.0: Device attached
[  820.707508][T15942] overlay: Unknown parameter 'subj_type'
[  820.709018][T15919] lo speed is unknown, defaulting to 1000
[  820.875201][T14249] usb 44-1: SetAddress Request (2) to port 0
[  820.880536][T14249] usb 44-1: new SuperSpeed USB device number 2 using vhci_hcd
[  820.949405][T15919] bridge0: port 1(bridge_slave_0) entered blocking state
[  820.981624][T15919] bridge0: port 1(bridge_slave_0) entered disabled state
[  820.985141][T15919] bridge_slave_0: entered allmulticast mode
[  820.989109][T15919] bridge_slave_0: entered promiscuous mode
[  820.994056][T15919] bridge0: port 2(bridge_slave_1) entered blocking state
[  820.997303][T15919] bridge0: port 2(bridge_slave_1) entered disabled state
[  821.000384][T15919] bridge_slave_1: entered allmulticast mode
[  821.004756][T15919] bridge_slave_1: entered promiscuous mode
[  821.031816][T15919] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  821.038533][T15919] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  821.065142][T15919] team0: Port device team_slave_0 added
[  821.070024][T15919] team0: Port device team_slave_1 added
[  821.094520][T15919] batman_adv: batadv0: Adding interface: batadv_slave_0
[  821.097929][T15919] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  821.108771][T15919] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  821.114075][T15919] batman_adv: batadv0: Adding interface: batadv_slave_1
[  821.116542][T15919] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  821.124725][T15919] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  821.152496][T15919] hsr_slave_0: entered promiscuous mode
[  821.154883][T15919] hsr_slave_1: entered promiscuous mode
[  821.157125][T15919] debugfs: 'hsr0' already exists in 'hsr'
[  821.158951][T15919] Cannot create hsr debugfs directory
[  821.224341][T15933] vhci_hcd: connection reset by peer
[  821.226916][   T85] vhci_hcd vhci_hcd.3: stop threads
[  821.233011][   T85] vhci_hcd vhci_hcd.3: release socket
[  821.237028][   T85] vhci_hcd vhci_hcd.3: disconnect device
[  821.380222][T15919] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  821.516453][T15919] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  821.630420][T15919] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  821.731401][T15919] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  821.875006][T15919] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  821.890990][T15919] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  821.896921][T15919] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  821.903647][T15919] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  821.906477][T15919] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  821.911251][T15919] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  821.914434][T15919] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  821.918379][T15919] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  821.969237][T15919] 8021q: adding VLAN 0 to HW filter on device bond0
[  821.979617][T15919] 8021q: adding VLAN 0 to HW filter on device team0
[  821.985238][   T85] bridge0: port 1(bridge_slave_0) entered blocking state
[  821.987644][   T85] bridge0: port 1(bridge_slave_0) entered forwarding state
[  821.997432][   T85] bridge0: port 2(bridge_slave_1) entered blocking state
[  821.999704][   T85] bridge0: port 2(bridge_slave_1) entered forwarding state
[  822.232923][T15919] 8021q: adding VLAN 0 to HW filter on device batadv0
[  822.266043][T15919] veth0_vlan: entered promiscuous mode
[  822.271628][T15919] veth1_vlan: entered promiscuous mode
[  822.288401][T15919] veth0_macvtap: entered promiscuous mode
[  822.292540][T15919] veth1_macvtap: entered promiscuous mode
[  822.304724][T15919] batman_adv: batadv0: Interface activated: batadv_slave_0
[  822.315001][T15919] batman_adv: batadv0: Interface activated: batadv_slave_1
[  822.321619][T14392] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  822.324578][T14392] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  822.330012][T14392] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  822.333355][T14392] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  822.401436][ T1175] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  822.408696][ T1175] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  822.424190][ T1175] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  822.427220][ T1175] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  822.540569][T15923] Bluetooth: hci0: command tx timeout
[  822.761561][T15975] lo speed is unknown, defaulting to 1000
[  822.842883][ T1485] kernel write not supported for file /comedi3 (pid: 1485 comm: kworker/1:2)
[  823.142467][T15990] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2380'.
[  823.147438][T15990] IPv6: sit1: Disabled Multicast RS
[  823.150167][T15990] sit1: entered allmulticast mode
[  823.194969][T15990] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.2380' sets config #1
[  823.316808][T15993] random: crng reseeded on system resumption
[  823.332778][T15993] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  823.751919][T15991] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2379'.
[  823.870579][T16004] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2382'.
[  824.328415][T16006] input: syz0 as /devices/virtual/input/input84
[  824.466649][T16009] ALSA: mixer_oss: invalid OSS volume '�����Y��{��������U����D��D�'
[  824.469464][T16009] ALSA: mixer_oss: invalid OSS volume 'ߧ�4c�T���󯆩"�m!l�T.�Π����'
[  824.472160][T16009] ALSA: mixer_oss: invalid OSS volume 'lg�'
[  824.474084][T16009] ALSA: mixer_oss: invalid OSS volume '�)n���k�Ki��,r��WY\�ZV����?J`G'
[  824.477218][T16009] ALSA: mixer_oss: invalid OSS volume 'k�O0���$��g��{�
pl{��y;_A�RW��'
[  824.479935][T16009] ALSA: mixer_oss: invalid OSS volume '�'
[  824.481780][T16009] ALSA: mixer_oss: invalid OSS volume 'sv��Fu{Qby>��h%w���]'
[  824.484339][T16009] ALSA: mixer_oss: invalid OSS volume '�E���
=�v?��@4��8�@�h����L'
[  824.487055][T16009] ALSA: mixer_oss: invalid OSS volume '�+���?>3Iq��0:i��q�|��U�D�ř��'
[  824.489659][T16009] ALSA: mixer_oss: invalid OSS volume 'vӷ*xr��N0�ܗ���c��A�����d�h�'
[  824.492277][T16009] ALSA: mixer_oss: invalid OSS volume '��JM����%H�J[~S'
[  824.773638][T15923] Bluetooth: hci0: command tx timeout
[  825.553630][T16018] random: crng reseeded on system resumption
[  825.567398][T16018] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  825.742645][T16027] random: crng reseeded on system resumption
[  825.759376][T16027] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  825.810290][    T9] usb 7-1: new low-speed USB device number 70 using dummy_hcd
[  825.923807][T16035] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2391'.
[  825.972302][    T9] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[  825.974966][    T9] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  825.978737][    T9] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  825.983386][    T9] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  825.987215][    T9] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  825.991610][    T9] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[  825.994504][    T9] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  825.998776][    T9] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  826.003103][    T9] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  826.007195][    T9] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  826.012430][    T9] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[  826.015953][    T9] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  826.020249][    T9] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  826.025554][    T9] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  826.029649][    T9] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  826.036915][    T9] usb 7-1: string descriptor 0 read error: -22
[  826.039563][    T9] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  826.042915][    T9] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  826.058263][    T9] adutux 7-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  826.301897][T14249] usb 44-1: device descriptor read/8, error -110
[  826.414275][    T9] usb 7-1: USB disconnect, device number 70
[  826.501688][T16041] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2392'.
[  826.736746][T14249] usb usb44-port1: attempt power cycle
[  826.996390][T15923] Bluetooth: hci0: command tx timeout
[  827.364246][T14249] usb usb44-port1: unable to enumerate USB device
[  827.650711][T16053] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2396'.
[  828.549997][ T1485] kernel write not supported for file /comedi3 (pid: 1485 comm: kworker/1:2)
[  828.618764][T16056] lo speed is unknown, defaulting to 1000
[  828.666409][T16060] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2397'.
[  829.208369][T15923] Bluetooth: hci0: command tx timeout
[  830.404078][T16073] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2402'.
[  830.407786][T16073] syzkaller0: entered promiscuous mode
[  830.409715][T16073] syzkaller0: entered allmulticast mode
[  831.376336][T16082] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2405'.
��������J�����������
[  831.549046][T16088] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  832.526448][T15580] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  832.536539][T15580] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  832.539475][T15580] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  832.543509][T15580] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  832.546834][T15580] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  833.651815][T16116] lo speed is unknown, defaulting to 1000
[  833.925078][T16102] lo speed is unknown, defaulting to 1000
[  834.207329][T16102] bridge0: port 1(bridge_slave_0) entered blocking state
[  834.210459][T16102] bridge0: port 1(bridge_slave_0) entered disabled state
[  834.213574][T16102] bridge_slave_0: entered allmulticast mode
[  834.217470][T16102] bridge_slave_0: entered promiscuous mode
[  834.222025][T16102] bridge0: port 2(bridge_slave_1) entered blocking state
[  834.225180][T16102] bridge0: port 2(bridge_slave_1) entered disabled state
[  834.228287][T16102] bridge_slave_1: entered allmulticast mode
[  834.232239][T16102] bridge_slave_1: entered promiscuous mode
[  834.257670][T16102] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  834.264143][T16102] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  834.290181][T16102] team0: Port device team_slave_0 added
[  834.295136][T16102] team0: Port device team_slave_1 added
[  834.371242][ T9184] syz_tun (unregistering): left allmulticast mode
[  834.381398][T16102] batman_adv: batadv0: Adding interface: batadv_slave_0
[  834.384311][T16102] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  834.395636][T16102] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  834.513761][T16102] batman_adv: batadv0: Adding interface: batadv_slave_1
[  834.523347][T16102] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  834.557831][T16102] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  834.695066][T16102] hsr_slave_0: entered promiscuous mode
[  834.698980][T16102] hsr_slave_1: entered promiscuous mode
[  834.702503][T16102] debugfs: 'hsr0' already exists in 'hsr'
[  834.711750][T16102] Cannot create hsr debugfs directory
[  834.775797][T15923] Bluetooth: hci2: command tx timeout
[  835.050799][T16140] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2415'.
[  835.053318][T16102] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  835.063433][T16102] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  835.066539][T16102] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  835.074629][T16102] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  835.077913][T16102] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  835.082692][T16102] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  835.089659][T16140] syzkaller0: entered promiscuous mode
[  835.092204][T16140] syzkaller0: entered allmulticast mode
[  835.102498][T16102] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  835.109622][T16102] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  835.123004][T16102] bridge0: port 2(bridge_slave_1) entered blocking state
[  835.125401][T16102] bridge0: port 2(bridge_slave_1) entered forwarding state
[  835.127780][T16102] bridge0: port 1(bridge_slave_0) entered blocking state
[  835.130150][T16102] bridge0: port 1(bridge_slave_0) entered forwarding state
[  835.154063][T16149] ALSA: mixer_oss: invalid OSS volume '�����Y��{��������U����D��D�'
[  835.156982][T16149] ALSA: mixer_oss: invalid OSS volume 'ߧ�4c�T���󯆩"�m!l�T.�Π����'
[  835.159633][T16149] ALSA: mixer_oss: invalid OSS volume 'lg�'
[  835.161870][T16149] ALSA: mixer_oss: invalid OSS volume '�)n���k�Ki��,r��WY\�ZV����?J`G'
[  835.162608][T16102] 8021q: adding VLAN 0 to HW filter on device bond0
[  835.165423][T16149] ALSA: mixer_oss: invalid OSS volume 'k�O0���$��g��{�
pl{��y;_A�RW��'
[  835.170719][T16149] ALSA: mixer_oss: invalid OSS volume '�'
[  835.172660][T16149] ALSA: mixer_oss: invalid OSS volume 'sv��Fu{Qby>��h%w���]'
[  835.175657][T16149] ALSA: mixer_oss: invalid OSS volume '�E���
=�v?��@4��8�@�h����L'
[  835.175905][T16102] 8021q: adding VLAN 0 to HW filter on device team0
[  835.178547][T16149] ALSA: mixer_oss: invalid OSS volume '�+���?>3Iq��0:i��q�|��U�D�ř��'
[  835.183512][T16149] ALSA: mixer_oss: invalid OSS volume 'vӷ*xr��N0�ܗ���c��A�����d�h�'
[  835.186657][T16149] ALSA: mixer_oss: invalid OSS volume '��JM����%H�J[~S'
[  835.315091][T16153] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2417'.
[  835.322008][T16153] syzkaller0: entered promiscuous mode
[  835.325022][T16153] syzkaller0: entered allmulticast mode
[  835.511088][T16102] 8021q: adding VLAN 0 to HW filter on device batadv0
[  835.722378][T16102] veth0_vlan: entered promiscuous mode
[  835.733061][T16102] veth1_vlan: entered promiscuous mode
[  835.764835][T16102] veth0_macvtap: entered promiscuous mode
[  835.776286][T16102] veth1_macvtap: entered promiscuous mode
[  835.790778][T16102] batman_adv: batadv0: Interface activated: batadv_slave_0
[  835.802187][T16102] batman_adv: batadv0: Interface activated: batadv_slave_1
[  835.810536][   T85] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  835.815625][   T85] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  835.819468][   T85] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  835.822587][   T85] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  835.912345][T14392] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  835.915025][T14392] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  836.011910][ T6922] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  836.016161][ T6922] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  836.231863][T16176] ALSA: mixer_oss: invalid OSS volume '�����Y��{��������U����D��D�'
[  836.234784][T16176] ALSA: mixer_oss: invalid OSS volume 'ߧ�4c�T���󯆩"�m!l�T.�Π����'
[  836.237568][T16176] ALSA: mixer_oss: invalid OSS volume 'lg�'
[  836.239498][T16176] ALSA: mixer_oss: invalid OSS volume '�)n���k�Ki��,r��WY\�ZV����?J`G'
[  836.242383][T16176] ALSA: mixer_oss: invalid OSS volume 'k�O0���$��g��{�
pl{��y;_A�RW��'
[  836.245377][T16176] ALSA: mixer_oss: invalid OSS volume '�'
[  836.247313][T16176] ALSA: mixer_oss: invalid OSS volume 'sv��Fu{Qby>��h%w���]'
[  836.249731][T16176] ALSA: mixer_oss: invalid OSS volume '�E���
=�v?��@4��8�@�h����L'
[  836.252754][T16176] ALSA: mixer_oss: invalid OSS volume '�+���?>3Iq��0:i��q�|��U�D�ř��'
[  836.255577][T16176] ALSA: mixer_oss: invalid OSS volume 'vӷ*xr��N0�ܗ���c��A�����d�h�'
[  836.258348][T16176] ALSA: mixer_oss: invalid OSS volume '��JM����%H�J[~S'
[  836.471601][   T40] audit: type=1326 audit(1777621474.597:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16171 comm="syz.0.2418" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70befcc code=0x7ffc0000
[  836.499492][   T40] audit: type=1326 audit(1777621474.607:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16171 comm="syz.0.2418" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70befcc code=0x7ffc0000
[  836.509419][   T40] audit: type=1326 audit(1777621474.625:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16171 comm="syz.0.2418" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf70befcc code=0x7ffc0000
[  836.515988][   T40] audit: type=1326 audit(1777621474.644:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16171 comm="syz.0.2418" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70befcc code=0x7ffc0000
[  836.524299][   T40] audit: type=1326 audit(1777621474.644:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16171 comm="syz.0.2418" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70befcc code=0x7ffc0000
[  836.531092][   T40] audit: type=1326 audit(1777621474.644:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16171 comm="syz.0.2418" exe="/syz-executor" sig=0 arch=40000003 syscall=296 compat=1 ip=0xf70befcc code=0x7ffc0000
[  836.537797][   T40] audit: type=1326 audit(1777621474.644:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16171 comm="syz.0.2418" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70befcc code=0x7ffc0000
[  836.544403][   T40] audit: type=1326 audit(1777621474.644:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16171 comm="syz.0.2418" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70befcc code=0x7ffc0000
[  836.891614][T16170] usb 8-1: new low-speed USB device number 52 using dummy_hcd
[  836.988123][T15923] Bluetooth: hci2: command tx timeout
[  836.991264][T16188] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  836.993875][T16188] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  837.004895][T16188] vhci_hcd vhci_hcd.0: Device attached
[  837.065463][T16170] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  837.069208][T16170] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  837.073572][T16170] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  837.078347][T16170] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  837.083382][T16170] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  837.088902][T16170] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  837.092079][T16170] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  837.112006][T16170] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  837.141967][T16170] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  837.182749][T16170] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  837.233882][T16170] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  837.290886][T16170] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  837.296670][T16191] bridge0: port 2(bridge_slave_1) entered disabled state
[  837.319594][T16170] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  837.470520][T15746] usb 42-1: SetAddress Request (10) to port 0
[  837.492903][T15746] usb 42-1: new SuperSpeed USB device number 10 using vhci_hcd
[  837.501424][T16170] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  837.524981][T16170] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  837.711028][T16170] usb 8-1: string descriptor 0 read error: -22
[  837.747008][ T5797] kernel write not supported for file /comedi3 (pid: 5797 comm: kworker/1:3)
[  837.756893][T16170] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  837.809017][T16170] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  838.280069][T16170] adutux 8-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  838.438874][T16191] 8021q: adding VLAN 0 to HW filter on device eth0
[  838.629137][T16191] 8021q: adding VLAN 0 to HW filter on device eth1
[  838.878013][T16191] 8021q: adding VLAN 0 to HW filter on device eth2
[  839.133712][    T9] usb 8-1: USB disconnect, device number 52
[  839.153730][T16191] 8021q: adding VLAN 0 to HW filter on device eth3
[  839.210921][T15923] Bluetooth: hci2: command tx timeout
[  839.255642][T16189] vhci_hcd: connection reset by peer
[  839.259020][T14392] vhci_hcd vhci_hcd.2: stop threads
[  839.261067][T14392] vhci_hcd vhci_hcd.2: release socket
[  839.263182][T14392] vhci_hcd vhci_hcd.2: disconnect device
[  839.642991][T16213] ALSA: mixer_oss: invalid OSS volume '�����Y��{��������U����D��D�'
[  839.647909][T16213] ALSA: mixer_oss: invalid OSS volume 'ߧ�4c�T���󯆩"�m!l�T.�Π����'
[  839.652032][T16213] ALSA: mixer_oss: invalid OSS volume 'lg�'
[  839.654966][T16213] ALSA: mixer_oss: invalid OSS volume '�)n���k�Ki��,r��WY\�ZV����?J`G'
[  839.659044][T16213] ALSA: mixer_oss: invalid OSS volume 'k�O0���$��g��{�
pl{��y;_A�RW��'
[  839.662610][T16213] ALSA: mixer_oss: invalid OSS volume '�'
[  839.683597][T16213] ALSA: mixer_oss: invalid OSS volume 'sv��Fu{Qby>��h%w���]'
[  839.687137][T16213] ALSA: mixer_oss: invalid OSS volume '�E���
=�v?��@4��8�@�h����L'
[  839.690766][T16213] ALSA: mixer_oss: invalid OSS volume '�+���?>3Iq��0:i��q�|��U�D�ř��'
[  839.694839][T16213] ALSA: mixer_oss: invalid OSS volume 'vӷ*xr��N0�ܗ���c��A�����d�h�'
[  839.698566][T16213] ALSA: mixer_oss: invalid OSS volume '��JM����%H�J[~S'
[  839.807796][T16199] lo speed is unknown, defaulting to 1000
[  839.988123][T16216] Bluetooth: MGMT ver 1.23
[  840.263941][T16229] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2433'.
[  840.729429][T16234] tmpfs: Unknown parameter 'defcontext'
[  841.364825][T16246] ALSA: mixer_oss: invalid OSS volume '�����Y��{��������U����D��D�'
[  841.367479][T16246] ALSA: mixer_oss: invalid OSS volume 'ߧ�4c�T���󯆩"�m!l�T.�Π����'
[  841.370284][T16246] ALSA: mixer_oss: invalid OSS volume 'lg�'
[  841.372412][T16246] ALSA: mixer_oss: invalid OSS volume '�)n���k�Ki��,r��WY\�ZV����?J`G'
[  841.375131][T16246] ALSA: mixer_oss: invalid OSS volume 'k�O0���$��g��{�
pl{��y;_A�RW��'
[  841.378049][T16246] ALSA: mixer_oss: invalid OSS volume '�'
[  841.380124][T16246] ALSA: mixer_oss: invalid OSS volume 'sv��Fu{Qby>��h%w���]'
[  841.382856][T16246] ALSA: mixer_oss: invalid OSS volume '�E���
=�v?��@4��8�@�h����L'
[  841.385624][T16246] ALSA: mixer_oss: invalid OSS volume '�+���?>3Iq��0:i��q�|��U�D�ř��'
[  841.388529][T16246] ALSA: mixer_oss: invalid OSS volume 'vӷ*xr��N0�ܗ���c��A�����d�h�'
[  841.392184][T16246] ALSA: mixer_oss: invalid OSS volume '��JM����%H�J[~S'
[  841.433250][T15923] Bluetooth: hci2: command tx timeout
[  841.433795][T16251] Scaler: =================  START STATUS  =================
[  841.437660][T16251] Scaler: ==================  END STATUS  ==================
[  841.689591][ T6144] usb 8-1: new high-speed USB device number 53 using dummy_hcd
[  841.776738][T16252] ubi16: attaching mtd0
[  841.799669][T16252] ubi16: scanning is finished
[  841.801403][T16252] ubi16: empty MTD device detected
[  841.849931][ T6144] usb 8-1: Using ep0 maxpacket: 8
[  841.853097][ T6144] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  841.856412][ T6144] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  841.859494][ T6144] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 60960, setting to 1024
[  841.863606][ T6144] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  841.866812][ T6144] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  841.870855][ T6144] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  841.873693][ T6144] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  842.023652][T16252] ubi16: attached mtd0 (name "mtdram test device", size 0 MiB)
[  842.026967][T16252] ubi16: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  842.030149][T16252] ubi16: min./max. I/O unit sizes: 1/64, sub-page size 1
[  842.033542][T16252] ubi16: VID header offset: 64 (aligned 64), data offset: 128
[  842.036869][T16252] ubi16: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  842.039736][T16252] ubi16: user volume: 0, internal volumes: 1, max. volumes count: 23
[  842.043526][T16252] ubi16: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 3879145879
[  842.047778][T16252] ubi16: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  842.056915][T16255] ubi16: background thread "ubi_bgt16d" started, PID 16255
[  842.132491][ T6144] usb 8-1: GET_CAPABILITIES returned 0
[  842.134275][ T6144] usbtmc 8-1:16.0: can't read capabilities
��������J�����������
[  842.552112][T16268] bridge0: port 1(bridge_slave_0) entered disabled state
[  842.560163][T16268] bridge_slave_0 (unregistering): left allmulticast mode
[  842.563109][T16268] bridge_slave_0 (unregistering): left promiscuous mode
[  842.567400][T16268] bridge0: port 1(bridge_slave_0) entered disabled state
[  842.587306][T14249] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  842.759724][T14249] usb 9-1: config 0 has an invalid interface number: 50 but max is 0
[  842.762438][T14249] usb 9-1: config 0 has no interface number 0
[  842.764615][T14249] usb 9-1: config 0 interface 50 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  842.772095][T14249] usb 9-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=e6.fc
[  842.775976][T14249] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  842.779324][T14249] usb 9-1: Product: syz
[  842.781391][T14249] usb 9-1: Manufacturer: syz
[  842.783397][T14249] usb 9-1: SerialNumber: syz
[  842.787826][T14249] usb 9-1: config 0 descriptor??
[  842.795792][T14249] yurex 9-1:0.50: USB YUREX device now attached to Yurex #1
[  842.881188][T16272] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  842.883562][T16272] IPv6: NLM_F_CREATE should be set when creating new route
[  842.971942][T15746] usb 42-1: device descriptor read/8, error -110
[  843.102625][ T7190] usb 9-1: USB disconnect, device number 2
[  843.111414][ T7190] yurex 9-1:0.50: USB YUREX #1 now disconnected
[  843.411310][T15746] usb usb42-port1: attempt power cycle
[  843.832020][   T40] audit: type=1800 audit(1777621481.494:63): pid=16281 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2450" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  843.936524][T16283] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2451'.
[  844.014837][T16286] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  844.064415][T15746] usb usb42-port1: unable to enumerate USB device
[  844.403953][T15746] usb 5-1: new low-speed USB device number 50 using dummy_hcd
[  844.566341][T15746] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  844.569785][T15746] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  844.574329][T15746] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  844.579336][T15746] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  844.584063][T15746] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  844.592296][T15746] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  844.597444][T15746] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  844.605838][T15746] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  844.623572][T15746] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  844.638193][T15746] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  844.657724][T15746] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  844.668027][T15746] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  844.681359][T15746] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  844.686913][T15746] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  844.691647][T15746] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  844.702359][T15746] usb 5-1: string descriptor 0 read error: -22
[  844.705773][T15746] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  844.714282][T15746] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  844.754918][T15746] adutux 5-1:168.0: ADU100  now attached to /dev/usb/adutux1
[  844.834955][ T6144] usb 8-1: USB disconnect, device number 53
[  845.030302][T14249] usb 5-1: USB disconnect, device number 50
[  845.092652][T16299] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  845.699080][T16319] lo speed is unknown, defaulting to 1000
[  845.701454][T16324] random: crng reseeded on system resumption
[  845.733152][T16321] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  846.121096][T15746] kernel write not supported for file /comedi3 (pid: 15746 comm: kworker/1:0)
[  846.357617][T16335] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2465'.
[  847.714736][T16350] netlink: 556 bytes leftover after parsing attributes in process `syz.3.2468'.
[  847.879600][T16360] bridge_slave_0 (unregistering): left allmulticast mode
[  847.882663][T16360] bridge_slave_0 (unregistering): left promiscuous mode
[  847.885770][T16360] bridge0: port 1(bridge_slave_0) entered disabled state
[  848.307832][T16365] netlink: 72 bytes leftover after parsing attributes in process `syz.4.2472'.
[  848.582825][T16368] xt_cluster: you have exceeded the maximum number of cluster nodes (37482740 > 32)
[  848.710626][T16372] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2476'.
[  849.104047][T16374] FAULT_INJECTION: forcing a failure.
[  849.104047][T16374] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  849.109371][T16374] CPU: 1 UID: 0 PID: 16374 Comm: syz.2.2477 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  849.109390][T16374] Tainted: [L]=SOFTLOCKUP
[  849.109394][T16374] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  849.109400][T16374] Call Trace:
[  849.109405][T16374]  <TASK>
[  849.109410][T16374]  dump_stack_lvl+0x100/0x190
[  849.109426][T16374]  should_fail_ex.cold+0x5/0xa
[  849.109441][T16374]  _copy_to_user+0x32/0xd0
[  849.109461][T16374]  simple_read_from_buffer+0xcb/0x170
[  849.109476][T16374]  proc_fail_nth_read+0x1af/0x230
[  849.109494][T16374]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  849.109513][T16374]  ? rw_verify_area+0xce/0x6d0
[  849.109524][T16374]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  849.109541][T16374]  vfs_read+0x1e4/0xb30
[  849.109555][T16374]  ? __pfx_vfs_read+0x10/0x10
[  849.109566][T16374]  ? find_held_lock+0x2b/0x80
[  849.109582][T16374]  ? __fget_files+0x215/0x3d0
[  849.109597][T16374]  ? __fget_files+0x21f/0x3d0
[  849.109613][T16374]  ksys_read+0x12a/0x250
[  849.109625][T16374]  ? __pfx_ksys_read+0x10/0x10
[  849.109637][T16374]  ? rcu_is_watching+0x12/0xc0
[  849.109651][T16374]  ? rcu_is_watching+0x12/0xc0
[  849.109666][T16374]  do_int80_emulation+0x141/0x700
[  849.109684][T16374]  asm_int80_emulation+0x1a/0x20
[  849.109695][T16374] RIP: 0023:0xf718616b
[  849.109705][T16374] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[  849.109716][T16374] RSP: 002b:00000000f543d4bc EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  849.109727][T16374] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f543d5d0
[  849.109734][T16374] RDX: 000000000000000f RSI: 0000000000000000 RDI: 0000000000000000
[  849.109741][T16374] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  849.109747][T16374] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  849.109753][T16374] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  849.109767][T16374]  </TASK>
[  849.809236][T16389] random: crng reseeded on system resumption
[  849.826000][T16389] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  850.355740][T16409] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2487'.
[  851.172586][T16418] bridge0: port 1(bridge_slave_0) entered disabled state
[  851.182488][T16418] bridge_slave_0 (unregistering): left allmulticast mode
[  851.184934][T16418] bridge_slave_0 (unregistering): left promiscuous mode
[  851.187318][T16418] bridge0: port 1(bridge_slave_0) entered disabled state
[  851.278621][T16421] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2489'.
[  851.363027][T16423] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2490'.
[  851.373710][T16423] syzkaller0: entered promiscuous mode
[  851.378512][T16423] syzkaller0: entered allmulticast mode
[  851.670415][   T24] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  851.845660][   T24] usb 9-1: config 0 has an invalid interface number: 50 but max is 0
[  851.853412][   T24] usb 9-1: config 0 has no interface number 0
[  851.857935][   T24] usb 9-1: config 0 interface 50 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  851.876517][   T24] usb 9-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=e6.fc
[  851.890108][   T24] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  851.905703][   T24] usb 9-1: Product: syz
[  851.911132][   T24] usb 9-1: Manufacturer: syz
[  851.913116][   T24] usb 9-1: SerialNumber: syz
[  851.922465][   T24] usb 9-1: config 0 descriptor??
[  851.938537][   T24] yurex 9-1:0.50: USB YUREX device now attached to Yurex #0
[  852.116265][T16432] random: crng reseeded on system resumption
[  852.187092][T15956] usb 9-1: USB disconnect, device number 3
[  852.209331][T16429] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  852.210358][T15956] yurex 9-1:0.50: USB YUREX #0 now disconnected
[  852.278203][T16436] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2493'.
[  852.283319][T16436] IPv6: sit1: Disabled Multicast RS
[  852.285603][T16436] sit1: entered allmulticast mode
[  852.337998][T16436] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.2493' sets config #1
[  852.417340][T16445] input: syz1 as /devices/virtual/input/input85
[  852.459846][T16447] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2498'.
[  852.664378][ T7190] usb 5-1: new low-speed USB device number 51 using dummy_hcd
[  852.854492][ T7190] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  852.867810][ T1340] usb 7-1: new full-speed USB device number 71 using dummy_hcd
[  852.868832][ T7190] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  852.888283][ T7190] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  852.898553][ T7190] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  852.902765][ T7190] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  852.910595][ T7190] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  852.914679][ T7190] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  852.918782][ T7190] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  852.923844][ T7190] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  852.927575][ T7190] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  852.936748][ T7190] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  852.939529][ T7190] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  852.944986][ T7190] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  852.948855][ T7190] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  852.952431][ T7190] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  852.963963][ T7190] usb 5-1: string descriptor 0 read error: -22
[  852.966344][ T7190] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  852.969749][ T7190] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  853.014918][ T7190] adutux 5-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  853.016844][ T1340] usb 7-1: device descriptor read/64, error -71
[  853.294643][ T1340] usb 7-1: new full-speed USB device number 72 using dummy_hcd
[  853.344371][T16458] lo speed is unknown, defaulting to 1000
[  853.427339][ T6144] usb 5-1: USB disconnect, device number 51
[  853.434353][ T1340] usb 7-1: device descriptor read/64, error -71
[  853.436870][   T54] kernel write not supported for file /comedi3 (pid: 54 comm: kworker/1:1)
[  853.457566][T16461] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2502'.
[  853.461752][T16461] syzkaller0: entered promiscuous mode
[  853.464466][T16461] syzkaller0: entered allmulticast mode
[  853.515524][T16465] FAULT_INJECTION: forcing a failure.
[  853.515524][T16465] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  853.520644][T16465] CPU: 0 UID: 0 PID: 16465 Comm: syz.0.2503 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  853.520670][T16465] Tainted: [L]=SOFTLOCKUP
[  853.520677][T16465] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  853.520686][T16465] Call Trace:
[  853.520692][T16465]  <TASK>
[  853.520699][T16465]  dump_stack_lvl+0x100/0x190
[  853.520722][T16465]  should_fail_ex.cold+0x5/0xa
[  853.520744][T16465]  __kvm_read_guest_page+0x186/0x250
[  853.520772][T16465]  kvm_fetch_guest_virt+0x128/0x1a0
[  853.520800][T16465]  __do_insn_fetch_bytes+0x5ef/0x7c0
[  853.520823][T16465]  ? __pfx___do_insn_fetch_bytes+0x10/0x10
[  853.520846][T16465]  ? __lock_acquire+0x4a5/0x2630
[  853.520868][T16465]  x86_decode_insn+0x3ca/0x6d80
[  853.520903][T16465]  ? __pfx_x86_decode_insn+0x10/0x10
[  853.520927][T16465]  ? vmx_cache_reg+0x54f/0x7b0
[  853.520943][T16465]  ? init_decode_cache+0xd/0x2a0
[  853.520966][T16465]  ? init_emulate_ctxt+0x415/0x6d0
[  853.520990][T16465]  ? __pfx_init_emulate_ctxt+0x10/0x10
[  853.521022][T16465]  ? __load_segment_descriptor+0x4b5/0x1590
[  853.521044][T16465]  x86_emulate_instruction+0x1dcc/0x1f80
[  853.521070][T16465]  ? is_bpf_text_address+0x94/0x1a0
[  853.521096][T16465]  handle_ud+0x103/0x5a0
[  853.521115][T16465]  ? __pfx_handle_ud+0x10/0x10
[  853.521138][T16465]  ? rcu_is_watching+0x12/0xc0
[  853.521156][T16465]  ? __vmx_complete_interrupts+0x129/0x570
[  853.521179][T16465]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  853.521206][T16465]  handle_exception_nmi+0xd0c/0x1bb0
[  853.521229][T16465]  ? __pfx_handle_exception_nmi+0x10/0x10
[  853.521249][T16465]  vmx_handle_exit+0x84c/0x1f30
[  853.521273][T16465]  vcpu_run+0x34cf/0x5ca0
[  853.521321][T16465]  ? x86_emulate_instruction+0x27e/0x1f80
[  853.521342][T16465]  ? __pfx_vcpu_run+0x10/0x10
[  853.521369][T16465]  ? complete_emulated_mmio+0x102/0x710
[  853.521395][T16465]  ? kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  853.521416][T16465]  kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  853.521444][T16465]  kvm_vcpu_ioctl+0x730/0x1720
[  853.521462][T16465]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  853.521478][T16465]  ? tomoyo_path_number_perm+0x188/0x580
[  853.521497][T16465]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  853.521515][T16465]  ? get_pid_task+0x106/0x250
[  853.521539][T16465]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  853.521562][T16465]  ? do_vfs_ioctl+0x226/0x13e0
[  853.521580][T16465]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  853.521605][T16465]  kvm_vcpu_compat_ioctl+0x20f/0x3c0
[  853.521622][T16465]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  853.521638][T16465]  ? __fget_files+0x21f/0x3d0
[  853.521661][T16465]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  853.521678][T16465]  __ia32_compat_sys_ioctl+0x2cf/0x360
[  853.521698][T16465]  __do_fast_syscall_32+0xe7/0x950
[  853.521719][T16465]  ? lockdep_hardirqs_on+0x78/0x100
[  853.521740][T16465]  do_fast_syscall_32+0x32/0x70
[  853.521760][T16465]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  853.521781][T16465] RIP: 0023:0xf70befcc
[  853.521795][T16465] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  853.521810][T16465] RSP: 002b:00000000f54ad50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  853.521847][T16465] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000000ae80
[  853.521859][T16465] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  853.521868][T16465] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  853.521877][T16465] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  853.521887][T16465] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  853.521909][T16465]  </TASK>
[  853.663740][ T1340] usb usb7-port1: attempt power cycle
[  853.856867][T16472] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2505'.
[  853.859858][T16472] tc_dump_action: action bad kind
[  854.021350][ T1340] usb 7-1: new full-speed USB device number 73 using dummy_hcd
[  854.043344][ T1340] usb 7-1: device descriptor read/8, error -71
[  854.128519][T14249] usb 5-1: new low-speed USB device number 52 using dummy_hcd
[  854.305068][ T1340] usb 7-1: new full-speed USB device number 74 using dummy_hcd
[  854.310481][T14249] usb 5-1: config 0 has an invalid interface number: 55 but max is 0
[  854.314060][T14249] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  854.318473][T14249] usb 5-1: config 0 has no interface number 0
[  854.321623][T14249] usb 5-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  854.325638][T14249] usb 5-1: config 0 interface 55 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  854.331277][T14249] usb 5-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  854.335318][T14249] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  854.338084][ T1340] usb 7-1: device descriptor read/8, error -71
[  854.342527][T14249] usb 5-1: config 0 descriptor??
[  854.351344][T14249] ldusb 5-1:0.55: Interrupt in endpoint not found
[  854.459773][ T1340] usb usb7-port1: unable to enumerate USB device
[  854.639415][T16477] ALSA: mixer_oss: invalid OSS volume '�����Y��{��������U����D��D�'
[  854.642591][T16477] ALSA: mixer_oss: invalid OSS volume 'ߧ�4c�T���󯆩"�m!l�T.�Π����'
[  854.646021][T16477] ALSA: mixer_oss: invalid OSS volume 'lg�'
[  854.648298][T16477] ALSA: mixer_oss: invalid OSS volume '�)n���k�Ki��,r��WY\�ZV����?J`G'
[  854.651482][T16477] ALSA: mixer_oss: invalid OSS volume 'k�O0���$��g��{�
pl{��y;_A�RW��'
[  854.655250][T16477] ALSA: mixer_oss: invalid OSS volume '�'
[  854.657639][T16477] ALSA: mixer_oss: invalid OSS volume 'sv��Fu{Qby>��h%w���]'
[  854.660717][T16477] ALSA: mixer_oss: invalid OSS volume '�E���
=�v?��@4��8�@�h����L'
[  854.663604][T16477] ALSA: mixer_oss: invalid OSS volume '�+���?>3Iq��0:i��q�|��U�D�ř��'
[  854.666251][T16477] ALSA: mixer_oss: invalid OSS volume 'vӷ*xr��N0�ܗ���c��A�����d�h�'
[  854.668895][T16477] ALSA: mixer_oss: invalid OSS volume '��JM����%H�J[~S'
[  854.983048][   T24] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  855.156827][   T24] usb 9-1: config 0 has an invalid interface number: 50 but max is 0
[  855.160376][   T24] usb 9-1: config 0 has no interface number 0
[  855.163954][   T24] usb 9-1: config 0 interface 50 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  855.171320][   T24] usb 9-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=e6.fc
[  855.175205][   T24] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  855.178908][   T24] usb 9-1: Product: syz
[  855.180826][   T24] usb 9-1: Manufacturer: syz
[  855.184769][   T24] usb 9-1: SerialNumber: syz
[  855.190916][   T24] usb 9-1: config 0 descriptor??
[  855.205036][   T24] yurex 9-1:0.50: USB YUREX device now attached to Yurex #0
[  855.660748][ T7190] usb 9-1: USB disconnect, device number 4
[  855.688820][ T7190] yurex 9-1:0.50: USB YUREX #0 now disconnected
[  855.858863][T16490] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2512'.
[  856.540359][T16496] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2514'.
[  856.938859][T16498] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2515'.
[  856.948020][T16498] syzkaller0: entered promiscuous mode
[  856.953152][T16498] syzkaller0: entered allmulticast mode
[  857.602046][T16509] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2517'.
[  857.606386][T16509] syzkaller0: entered promiscuous mode
[  857.608666][T16509] syzkaller0: entered allmulticast mode
[  857.773106][T16512] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2518'.
[  858.146550][   T54] usb 5-1: USB disconnect, device number 52
[  858.598313][T16517] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2520'.
[  858.631494][T16517] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.2520' sets config #1
[  858.688656][T16519] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2522'.
[  859.074140][T16540] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2526'.
[  859.078149][T16540] syzkaller0: entered promiscuous mode
[  859.079972][T16540] syzkaller0: entered allmulticast mode
[  859.235873][T15580] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  859.243494][T15580] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  859.248943][T15580] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  859.259747][T15580] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  859.266354][T15580] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  859.672116][T15460] syz_tun (unregistering): left allmulticast mode
[  859.876006][T16556] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2529'.
[  859.915895][ T1175] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  859.939221][T16558] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2530'.
[  859.984801][T16543] lo speed is unknown, defaulting to 1000
[  860.031333][ T1175] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
��������J�����������
[  860.166964][T16567] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.2532' sets config #1
[  860.201557][ T1175] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  860.488895][ T1175] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  860.595190][   T40] audit: type=1326 audit(1777621497.178:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16579 comm="syz.0.2538" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70befcc code=0x7ffc0000
[  860.606926][   T40] audit: type=1326 audit(1777621497.178:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16579 comm="syz.0.2538" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70befcc code=0x7ffc0000
[  860.617201][   T40] audit: type=1326 audit(1777621497.188:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16579 comm="syz.0.2538" exe="/syz-executor" sig=0 arch=40000003 syscall=62 compat=1 ip=0xf70befcc code=0x7ffc0000
[  860.627362][   T40] audit: type=1326 audit(1777621497.188:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16579 comm="syz.0.2538" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70befcc code=0x7ffc0000
[  860.637459][   T40] audit: type=1326 audit(1777621497.188:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16579 comm="syz.0.2538" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70befcc code=0x7ffc0000
[  860.647636][   T40] audit: type=1326 audit(1777621497.188:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16579 comm="syz.0.2538" exe="/syz-executor" sig=0 arch=40000003 syscall=241 compat=1 ip=0xf70befcc code=0x7ffc0000
[  860.649757][T16581] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  860.668417][   T40] audit: type=1326 audit(1777621497.188:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16579 comm="syz.0.2538" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70befcc code=0x7ffc0000
[  860.676201][   T40] audit: type=1326 audit(1777621497.188:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16579 comm="syz.0.2538" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70befcc code=0x7ffc0000
[  860.676518][T16581] overlayfs: overlapping lowerdir path
[  860.689762][   T40] audit: type=1326 audit(1777621497.197:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16579 comm="syz.0.2538" exe="/syz-executor" sig=0 arch=40000003 syscall=337 compat=1 ip=0xf70befcc code=0x7ffc0000
[  860.701041][   T40] audit: type=1326 audit(1777621497.197:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16579 comm="syz.0.2538" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70befcc code=0x7ffc0000
[  860.898562][T16543] bridge0: port 1(bridge_slave_0) entered blocking state
[  860.903595][T16543] bridge0: port 1(bridge_slave_0) entered disabled state
[  860.910605][T16543] bridge_slave_0: entered allmulticast mode
[  860.919842][T16543] bridge_slave_0: entered promiscuous mode
[  860.982728][T16543] bridge0: port 2(bridge_slave_1) entered blocking state
[  860.985096][T16543] bridge0: port 2(bridge_slave_1) entered disabled state
[  860.987507][T16543] bridge_slave_1: entered allmulticast mode
[  860.990906][T16543] bridge_slave_1: entered promiscuous mode
[  861.029386][T16543] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  861.047907][T16543] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  861.081924][ T1175] bridge_slave_1: left allmulticast mode
[  861.083862][ T1175] bridge_slave_1: left promiscuous mode
[  861.087667][ T1175] bridge0: port 2(bridge_slave_1) entered disabled state
[  861.125040][ T1175] dvmrp8: left allmulticast mode
[  861.128880][ T1175] batman_adv: batadv0: Interface deactivated: gretap1
[  861.229595][T16596] ALSA: mixer_oss: invalid OSS volume '�����Y��{��������U����D��D�'
[  861.232863][T16596] ALSA: mixer_oss: invalid OSS volume 'ߧ�4c�T���󯆩"�m!l�T.�Π����'
[  861.236203][T16596] ALSA: mixer_oss: invalid OSS volume 'lg�'
[  861.239268][T16596] ALSA: mixer_oss: invalid OSS volume '�)n���k�Ki��,r��WY\�ZV����?J`G'
[  861.245753][T16596] ALSA: mixer_oss: invalid OSS volume 'k�O0���$��g��{�
pl{��y;_A�RW��'
[  861.248944][T16596] ALSA: mixer_oss: invalid OSS volume '�'
[  861.251050][T16596] ALSA: mixer_oss: invalid OSS volume 'sv��Fu{Qby>��h%w���]'
[  861.253573][T16596] ALSA: mixer_oss: invalid OSS volume '�E���
=�v?��@4��8�@�h����L'
[  861.256342][T16596] ALSA: mixer_oss: invalid OSS volume '�+���?>3Iq��0:i��q�|��U�D�ř��'
[  861.258996][T16596] ALSA: mixer_oss: invalid OSS volume 'vӷ*xr��N0�ܗ���c��A�����d�h�'
[  861.261950][T16596] ALSA: mixer_oss: invalid OSS volume '��JM����%H�J[~S'
[  861.325043][ T1175] batman_adv: batadv0: Removing interface: gretap1
[  861.437470][T15580] Bluetooth: hci3: command tx timeout
[  861.929523][T16599] __nla_validate_parse: 2 callbacks suppressed
[  861.929536][T16599] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2541'.
[  862.016473][T16600] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.2541' sets config #1
[  862.462311][ T1175] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  862.473593][ T1175] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  862.482665][ T1175] bond0 (unregistering): Released all slaves
[  862.510191][T16543] team0: Port device team_slave_0 added
[  862.514712][ T5452] 8021q: adding VLAN 0 to HW filter on device eth2
[  862.594672][T16543] team0: Port device team_slave_1 added
[  862.625998][T16543] batman_adv: batadv0: Adding interface: batadv_slave_0
[  862.628993][T16543] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  862.639134][T16543] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  862.646010][T16543] batman_adv: batadv0: Adding interface: batadv_slave_1
[  862.647765][T16603] ALSA: mixer_oss: invalid OSS volume '�����Y��{��������U����D��D�'
[  862.652595][T16603] ALSA: mixer_oss: invalid OSS volume 'ߧ�4c�T���󯆩"�m!l�T.�Π����'
[  862.652593][T16543] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  862.656102][T16603] ALSA: mixer_oss: invalid OSS volume 'lg�'
[  862.668718][T16603] ALSA: mixer_oss: invalid OSS volume '�)n���k�Ki��,r��WY\�ZV����?J`G'
[  862.668992][T16543] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  862.671822][T16603] ALSA: mixer_oss: invalid OSS volume 'k�O0���$��g��{�
pl{��y;_A�RW��'
[  862.679905][T16603] ALSA: mixer_oss: invalid OSS volume '�'
[  862.682431][T16603] ALSA: mixer_oss: invalid OSS volume 'sv��Fu{Qby>��h%w���]'
[  862.685825][T16603] ALSA: mixer_oss: invalid OSS volume '�E���
=�v?��@4��8�@�h����L'
[  862.689867][T16603] ALSA: mixer_oss: invalid OSS volume '�+���?>3Iq��0:i��q�|��U�D�ř��'
[  862.693396][T16603] ALSA: mixer_oss: invalid OSS volume 'vӷ*xr��N0�ܗ���c��A�����d�h�'
[  862.699572][T16603] ALSA: mixer_oss: invalid OSS volume '��JM����%H�J[~S'
��������J�����������
[  862.753268][T16543] hsr_slave_0: entered promiscuous mode
[  862.756418][T16543] hsr_slave_1: entered promiscuous mode
[  862.761762][T16543] debugfs: 'hsr0' already exists in 'hsr'
[  862.767433][T16543] Cannot create hsr debugfs directory
[  862.924218][ T5452] 8021q: adding VLAN 0 to HW filter on device eth3
[  863.178098][T16620] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2545'.
[  863.656249][T16639] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2549'.
[  863.659955][T16639] syzkaller0: entered promiscuous mode
[  863.660304][T15580] Bluetooth: hci3: command tx timeout
[  863.662159][T16639] syzkaller0: entered allmulticast mode
[  863.691756][ T1175] hsr_slave_0: left promiscuous mode
[  863.696721][ T1175] hsr_slave_1: left promiscuous mode
[  863.699539][ T1175] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  863.702125][ T1175] batman_adv: batadv0: Removing interface: batadv_slave_0
[  863.708539][ T1175] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  863.711753][ T1175] batman_adv: batadv0: Removing interface: batadv_slave_1
[  863.729974][ T1175] veth1_macvtap: left promiscuous mode
[  863.733239][ T1175] veth0_macvtap: left promiscuous mode
[  863.858934][T16649] ALSA: mixer_oss: invalid OSS volume '�����Y��{��������U����D��D�'
[  863.862449][T16649] ALSA: mixer_oss: invalid OSS volume 'ߧ�4c�T���󯆩"�m!l�T.�Π����'
[  863.866050][T16649] ALSA: mixer_oss: invalid OSS volume 'lg�'
[  863.868558][T16649] ALSA: mixer_oss: invalid OSS volume '�)n���k�Ki��,r��WY\�ZV����?J`G'
[  863.872089][T16649] ALSA: mixer_oss: invalid OSS volume 'k�O0���$��g��{�
pl{��y;_A�RW��'
[  863.875694][T16649] ALSA: mixer_oss: invalid OSS volume '�'
[  863.878390][T16649] ALSA: mixer_oss: invalid OSS volume 'sv��Fu{Qby>��h%w���]'
[  863.881829][T16649] ALSA: mixer_oss: invalid OSS volume '�E���
=�v?��@4��8�@�h����L'
[  863.885917][T16649] ALSA: mixer_oss: invalid OSS volume '�+���?>3Iq��0:i��q�|��U�D�ř��'
[  863.889413][T16649] ALSA: mixer_oss: invalid OSS volume 'vӷ*xr��N0�ܗ���c��A�����d�h�'
[  863.893084][T16649] ALSA: mixer_oss: invalid OSS volume '��JM����%H�J[~S'
[  863.893556][ T1175] team0 (unregistering): Port device team_slave_1 removed
[  863.920371][ T1175] team0 (unregistering): Port device team_slave_0 removed
[  864.073820][T15746] kernel write not supported for file /comedi3 (pid: 15746 comm: kworker/1:0)
[  864.101266][T16651] lo speed is unknown, defaulting to 1000
[  864.340951][T16543] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  864.442785][T16543] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  864.447641][T16543] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  864.464752][T16543] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  864.468848][T16543] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  864.478098][T16543] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  864.484095][T16543] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  864.490256][T16543] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  864.632058][T16543] 8021q: adding VLAN 0 to HW filter on device bond0
[  864.652579][T16543] 8021q: adding VLAN 0 to HW filter on device team0
[  864.669158][ T1258] bridge0: port 1(bridge_slave_0) entered blocking state
[  864.672538][ T1258] bridge0: port 1(bridge_slave_0) entered forwarding state
[  864.698232][ T6922] bridge0: port 2(bridge_slave_1) entered blocking state
[  864.700829][ T6922] bridge0: port 2(bridge_slave_1) entered forwarding state
[  864.738848][ T1175] IPVS: stop unused estimator thread 0...
[  865.274552][T16543] 8021q: adding VLAN 0 to HW filter on device batadv0
[  865.411573][T16543] veth0_vlan: entered promiscuous mode
[  865.434621][T16543] veth1_vlan: entered promiscuous mode
[  865.499796][T16543] veth0_macvtap: entered promiscuous mode
[  865.505242][T16543] veth1_macvtap: entered promiscuous mode
[  865.513759][T16543] batman_adv: batadv0: Interface activated: batadv_slave_0
[  865.522695][T16543] batman_adv: batadv0: Interface activated: batadv_slave_1
[  865.534796][   T85] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  865.541956][   T85] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  865.583188][   T85] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  865.592376][   T85] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  865.662913][   T85] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  865.668512][   T85] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  865.705163][ T5974] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  865.709752][ T5974] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  865.770220][T16698] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  865.774716][T16698] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  865.893706][T15580] Bluetooth: hci3: command tx timeout
[  867.626722][T16710] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2560'.
[  867.629491][T16707] ALSA: mixer_oss: invalid OSS volume '�����Y��{��������U����D��D�'
[  867.640716][T16707] ALSA: mixer_oss: invalid OSS volume 'ߧ�4c�T���󯆩"�m!l�T.�Π����'
[  867.647568][T16707] ALSA: mixer_oss: invalid OSS volume 'lg�'
[  867.652674][T16707] ALSA: mixer_oss: invalid OSS volume '�)n���k�Ki��,r��WY\�ZV����?J`G'
[  867.660417][T16707] ALSA: mixer_oss: invalid OSS volume 'k�O0���$��g��{�
pl{��y;_A�RW��'
[  867.668076][T16707] ALSA: mixer_oss: invalid OSS volume '�'
[  867.678093][T16707] ALSA: mixer_oss: invalid OSS volume 'sv��Fu{Qby>��h%w���]'
[  867.681565][T16707] ALSA: mixer_oss: invalid OSS volume '�E���
=�v?��@4��8�@�h����L'
[  867.687277][T16707] ALSA: mixer_oss: invalid OSS volume '�+���?>3Iq��0:i��q�|��U�D�ř��'
[  867.693957][T16707] ALSA: mixer_oss: invalid OSS volume 'vӷ*xr��N0�ܗ���c��A�����d�h�'
[  867.699533][T16707] ALSA: mixer_oss: invalid OSS volume '��JM����%H�J[~S'
[  867.920600][T16720] ALSA: mixer_oss: invalid OSS volume '�����Y��{��������U����D��D�'
[  867.924405][T16720] ALSA: mixer_oss: invalid OSS volume 'ߧ�4c�T���󯆩"�m!l�T.�Π����'
[  867.928116][T16720] ALSA: mixer_oss: invalid OSS volume 'lg�'
[  867.930752][T16720] ALSA: mixer_oss: invalid OSS volume '�)n���k�Ki��,r��WY\�ZV����?J`G'
[  867.935795][T16720] ALSA: mixer_oss: invalid OSS volume 'k�O0���$��g��{�
pl{��y;_A�RW��'
[  867.939393][T16720] ALSA: mixer_oss: invalid OSS volume '�'
[  867.941649][T16720] ALSA: mixer_oss: invalid OSS volume 'sv��Fu{Qby>��h%w���]'
[  867.945060][T16720] ALSA: mixer_oss: invalid OSS volume '�E���
=�v?��@4��8�@�h����L'
[  867.948718][T16720] ALSA: mixer_oss: invalid OSS volume '�+���?>3Iq��0:i��q�|��U�D�ř��'
[  867.952172][T16720] ALSA: mixer_oss: invalid OSS volume 'vӷ*xr��N0�ܗ���c��A�����d�h�'
[  867.955663][T16720] ALSA: mixer_oss: invalid OSS volume '��JM����%H�J[~S'
[  868.042085][T16719] random: crng reseeded on system resumption
[  868.107603][T15580] Bluetooth: hci3: command tx timeout
[  868.135668][T16719] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  868.613823][T16729] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2565'.
[  868.892908][T16737] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  868.895739][T16737] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  868.912500][T16737] vhci_hcd vhci_hcd.0: Device attached
[  869.196241][T15746] usb 44-1: SetAddress Request (6) to port 0
[  869.201093][T15746] usb 44-1: new SuperSpeed USB device number 6 using vhci_hcd
[  869.262738][T16738] vhci_hcd: connection reset by peer
[  869.415043][ T1258] vhci_hcd vhci_hcd.3: stop threads
[  869.419893][ T1258] vhci_hcd vhci_hcd.3: release socket
[  869.422063][ T1258] vhci_hcd vhci_hcd.3: disconnect device
[  869.702159][T16747] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2569'.
[  870.106384][T16753] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2571'.
[  870.111259][T16753] IPv6: sit1: Disabled Multicast RS
[  870.113905][T16753] sit1: entered allmulticast mode
[  870.158842][T16753] usb usb1: usbfs: interface 0 claimed by hub while 'syz.2.2571' sets config #1
[  870.196402][T16749] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(7)
[  870.199006][T16749] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  870.210224][T16749] vhci_hcd vhci_hcd.0: Device attached
[  870.510659][T14249] usb 46-1: SetAddress Request (2) to port 0
[  870.520828][T14249] usb 46-1: new SuperSpeed USB device number 2 using vhci_hcd
[  870.578483][T16765] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2574'.
[  870.707375][T16756] vhci_hcd: connection reset by peer
[  870.709649][ T1175] vhci_hcd vhci_hcd.4: stop threads
[  870.714708][ T1175] vhci_hcd vhci_hcd.4: release socket
[  870.722091][ T1175] vhci_hcd vhci_hcd.4: disconnect device
[  870.955278][T15580] Bluetooth: hci4: link tx timeout
[  870.959800][T15580] Bluetooth: hci4: killing stalled connection 10:aa:aa:aa:aa:aa
[  870.965270][T15580] Bluetooth: hci4: link tx timeout
[  870.966992][T15580] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa
[  871.128083][T16774] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2579'.
[  871.303265][T16777] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[  871.305980][T16777] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  871.311843][T16777] vhci_hcd vhci_hcd.0: Device attached
[  871.477738][T16785] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  871.479958][T16785] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  871.484479][T16785] vhci_hcd vhci_hcd.0: Device attached
[  871.802905][ T7190] usb 38-1: SetAddress Request (6) to port 0
[  871.805403][ T7190] usb 38-1: new SuperSpeed USB device number 6 using vhci_hcd
��������J�����������
[  872.001787][T16782] vhci_hcd: connection closed
[  872.008570][ T1175] vhci_hcd vhci_hcd.2: stop threads
[  872.012426][ T1175] vhci_hcd vhci_hcd.2: release socket
[  872.014823][ T1175] vhci_hcd vhci_hcd.2: disconnect device
[  872.055961][T16793] ALSA: mixer_oss: invalid OSS volume '�����Y��{��������U����D��D�'
[  872.060220][T16793] ALSA: mixer_oss: invalid OSS volume 'ߧ�4c�T���󯆩"�m!l�T.�Π����'
[  872.063186][T16793] ALSA: mixer_oss: invalid OSS volume 'lg�'
[  872.065753][T16793] ALSA: mixer_oss: invalid OSS volume '�)n���k�Ki��,r��WY\�ZV����?J`G'
[  872.069137][T16793] ALSA: mixer_oss: invalid OSS volume 'k�O0���$��g��{�
pl{��y;_A�RW��'
[  872.072170][T16793] ALSA: mixer_oss: invalid OSS volume '�'
[  872.074522][T16793] ALSA: mixer_oss: invalid OSS volume 'sv��Fu{Qby>��h%w���]'
[  872.077296][T16793] ALSA: mixer_oss: invalid OSS volume '�E���
=�v?��@4��8�@�h����L'
[  872.080732][T16793] ALSA: mixer_oss: invalid OSS volume '�+���?>3Iq��0:i��q�|��U�D�ř��'
[  872.083701][T16793] ALSA: mixer_oss: invalid OSS volume 'vӷ*xr��N0�ܗ���c��A�����d�h�'
[  872.087058][T16793] ALSA: mixer_oss: invalid OSS volume '��JM����%H�J[~S'
[  872.167053][T16784] Process accounting resumed
[  872.269112][T16786] vhci_hcd: connection reset by peer
[  872.273998][ T1258] vhci_hcd vhci_hcd.0: stop threads
[  872.276424][ T1258] vhci_hcd vhci_hcd.0: release socket
[  872.280807][ T1258] vhci_hcd vhci_hcd.0: disconnect device
[  872.288492][T16797] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2583'.
[  872.292871][T16797] syzkaller0: entered promiscuous mode
[  872.298182][T16797] syzkaller0: entered allmulticast mode
[  873.163473][T15923] Bluetooth: hci4: command 0x0406 tx timeout
[  873.384544][T15854] usb 9-1: new low-speed USB device number 5 using dummy_hcd
[  873.421103][T16823] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2590'.
[  873.530811][T16833] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2592'.
[  873.577325][T15854] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  873.592171][T15854] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  873.599469][T15854] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  873.607379][T16837] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2594'.
[  873.610490][T15854] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  873.619010][T15854] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  873.654071][T15854] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  873.657808][T15854] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  873.661768][T15854] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  873.670925][T15854] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  873.685655][T15854] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  873.704731][T15854] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  873.708260][T15854] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  873.713913][T15854] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  873.725848][T15854] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  873.737138][T15854] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  873.767179][T15854] usb 9-1: string descriptor 0 read error: -22
[  873.772715][T15854] usb 9-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  873.787299][T15854] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  873.859701][   T40] kauditd_printk_skb: 48 callbacks suppressed
[  873.859813][   T40] audit: type=1326 audit(1777621509.512:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16829 comm="syz.3.2593" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2fcc code=0x7ffc0000
[  873.915337][T15854] adutux 9-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  873.924035][   T40] audit: type=1326 audit(1777621509.512:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16829 comm="syz.3.2593" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2fcc code=0x7ffc0000
[  873.985934][   T40] audit: type=1326 audit(1777621509.559:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16829 comm="syz.3.2593" exe="/syz-executor" sig=0 arch=40000003 syscall=358 compat=1 ip=0xf7ff2fcc code=0x7ffc0000
[  874.035459][   T40] audit: type=1326 audit(1777621509.578:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16829 comm="syz.3.2593" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2fcc code=0x7ffc0000
[  874.085415][   T40] audit: type=1326 audit(1777621509.578:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16829 comm="syz.3.2593" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2fcc code=0x7ffc0000
[  874.146558][   T40] audit: type=1326 audit(1777621509.643:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16829 comm="syz.3.2593" exe="/syz-executor" sig=0 arch=40000003 syscall=219 compat=1 ip=0xf7ff2fcc code=0x7ffc0000
[  874.201121][   T40] audit: type=1326 audit(1777621509.643:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16829 comm="syz.3.2593" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2fcc code=0x7ffc0000
[  874.245934][   T40] audit: type=1326 audit(1777621509.643:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16829 comm="syz.3.2593" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2fcc code=0x7ffc0000
[  874.276090][   T40] audit: type=1326 audit(1777621509.699:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16829 comm="syz.3.2593" exe="/syz-executor" sig=0 arch=40000003 syscall=163 compat=1 ip=0xf7ff2fcc code=0x7ffc0000
[  874.285493][   T40] audit: type=1326 audit(1777621509.699:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16829 comm="syz.3.2593" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2fcc code=0x7ffc0000
[  874.618660][T15746] usb 44-1: device descriptor read/8, error -110
[  875.330054][T15746] usb usb44-port1: attempt power cycle
[  875.382923][T15923] Bluetooth: hci4: command 0x0406 tx timeout
[  875.981117][T14249] usb 46-1: device descriptor read/8, error -110
[  876.047468][T15746] usb usb44-port1: unable to enumerate USB device
[  876.419837][T14249] usb usb46-port1: attempt power cycle
[  876.518186][    T9] usb 9-1: USB disconnect, device number 5
[  876.751759][T15580] Bluetooth: hci2: ACL packet for unknown connection handle 12
[  876.771629][T16891] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2600'.
[  876.791293][T16891] syzkaller0: entered promiscuous mode
[  876.795902][T16891] syzkaller0: entered allmulticast mode
[  877.040464][T14249] usb usb46-port1: unable to enumerate USB device
[  877.252851][ T7190] usb 38-1: device descriptor read/8, error -110
[  877.662548][T16921] lo speed is unknown, defaulting to 1000
[  877.671282][ T7190] usb usb38-port1: attempt power cycle
[  877.782186][T15746] kernel write not supported for file /comedi3 (pid: 15746 comm: kworker/1:0)
[  877.809035][   T24] usb 5-1: new low-speed USB device number 53 using dummy_hcd
[  877.991356][   T24] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  877.995763][   T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  878.004564][   T24] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  878.011687][   T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  878.019172][   T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  878.026236][   T24] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  878.029375][   T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  878.037442][   T24] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  878.042472][   T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  878.048416][   T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  878.054810][   T24] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  878.057701][   T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  878.061898][   T24] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  878.066267][   T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  878.069822][   T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  878.075911][   T24] usb 5-1: string descriptor 0 read error: -22
[  878.078063][   T24] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  878.080937][   T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  878.091426][   T24] adutux 5-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  878.283538][ T7190] usb usb38-port1: unable to enumerate USB device
[  878.317766][   T24] usb 5-1: USB disconnect, device number 53
[  878.625758][T16938] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2611'.
[  878.628686][T16938] tc_dump_action: action bad kind
[  878.740070][T16947] lo speed is unknown, defaulting to 1000
[  878.789907][T16951] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2614'.
[  878.794908][T16951] syzkaller0: entered promiscuous mode
[  878.796707][T16951] syzkaller0: entered allmulticast mode
[  878.898413][T15746] usb 5-1: new low-speed USB device number 54 using dummy_hcd
[  878.988954][T16947] netlink: 84 bytes leftover after parsing attributes in process `syz.4.2613'.
[  879.092434][T15746] usb 5-1: config 0 has an invalid interface number: 55 but max is 0
[  879.095072][T15746] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  879.098231][T15746] usb 5-1: config 0 has no interface number 0
[  879.100166][T15746] usb 5-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  879.103839][T15746] usb 5-1: config 0 interface 55 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  879.107935][T15746] usb 5-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  879.110779][T15746] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  879.114754][T15746] usb 5-1: config 0 descriptor??
[  879.118249][T15746] ldusb 5-1:0.55: Interrupt in endpoint not found
[  879.382976][   T40] kauditd_printk_skb: 6 callbacks suppressed
[  879.383151][   T40] audit: type=1326 audit(1777621514.762:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16956 comm="syz.3.2615" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2fcc code=0x7ffc0000
[  879.393633][   T40] audit: type=1326 audit(1777621514.762:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16956 comm="syz.3.2615" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2fcc code=0x7ffc0000
[  879.401732][   T40] audit: type=1326 audit(1777621514.762:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16956 comm="syz.3.2615" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7ff2fcc code=0x7ffc0000
[  879.409834][   T40] audit: type=1326 audit(1777621514.762:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16956 comm="syz.3.2615" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2fcc code=0x7ffc0000
[  879.418001][   T40] audit: type=1326 audit(1777621514.762:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16956 comm="syz.3.2615" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2fcc code=0x7ffc0000
[  879.426151][   T40] audit: type=1326 audit(1777621514.762:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16956 comm="syz.3.2615" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf7ff2fcc code=0x7ffc0000
[  879.433986][   T40] audit: type=1326 audit(1777621514.762:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16956 comm="syz.3.2615" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2fcc code=0x7ffc0000
[  879.441651][   T40] audit: type=1326 audit(1777621514.762:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16956 comm="syz.3.2615" exe="/syz-executor" sig=0 arch=40000003 syscall=297 compat=1 ip=0xf7ff2fcc code=0x7ffc0000
[  879.449398][   T40] audit: type=1326 audit(1777621514.762:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16956 comm="syz.3.2615" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2fcc code=0x7ffc0000
[  879.458207][   T40] audit: type=1326 audit(1777621514.771:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16956 comm="syz.3.2615" exe="/syz-executor" sig=0 arch=40000003 syscall=366 compat=1 ip=0xf7ff2fcc code=0x7ffc0000
[  879.863009][T16964] tipc: Started in network mode
[  879.865704][T16964] tipc: Node identity ff010000000000000000000000000001, cluster identity 4711
[  879.869828][T16964] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  881.186846][ T1432] ieee802154 phy0 wpan0: encryption failed: -22
[  881.752409][T16984] FAULT_INJECTION: forcing a failure.
[  881.752409][T16984] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  881.758659][T16984] CPU: 2 UID: 0 PID: 16984 Comm: syz.3.2622 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  881.758678][T16984] Tainted: [L]=SOFTLOCKUP
[  881.758682][T16984] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  881.758689][T16984] Call Trace:
[  881.758693][T16984]  <TASK>
[  881.758698][T16984]  dump_stack_lvl+0x100/0x190
[  881.758715][T16984]  should_fail_ex.cold+0x5/0xa
[  881.758729][T16984]  _copy_to_user+0x32/0xd0
[  881.758749][T16984]  simple_read_from_buffer+0xcb/0x170
[  881.758763][T16984]  proc_fail_nth_read+0x1af/0x230
[  881.758781][T16984]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  881.758799][T16984]  ? rw_verify_area+0xce/0x6d0
[  881.758810][T16984]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  881.758828][T16984]  vfs_read+0x1e4/0xb30
[  881.758846][T16984]  ? __pfx_vfs_read+0x10/0x10
[  881.758857][T16984]  ? find_held_lock+0x2b/0x80
[  881.758873][T16984]  ? __fget_files+0x215/0x3d0
[  881.758888][T16984]  ? __fget_files+0x21f/0x3d0
[  881.758905][T16984]  ksys_read+0x12a/0x250
[  881.758917][T16984]  ? __pfx_ksys_read+0x10/0x10
[  881.758929][T16984]  ? rcu_is_watching+0x12/0xc0
[  881.758943][T16984]  ? rcu_is_watching+0x12/0xc0
[  881.758958][T16984]  do_int80_emulation+0x141/0x700
[  881.758975][T16984]  asm_int80_emulation+0x1a/0x20
[  881.758986][T16984] RIP: 0023:0xf71f616b
[  881.758996][T16984] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[  881.759006][T16984] RSP: 002b:00000000f54b64bc EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  881.759017][T16984] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f54b65d0
[  881.759025][T16984] RDX: 000000000000000f RSI: 0000000000000000 RDI: 0000000000000000
[  881.759031][T16984] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  881.759037][T16984] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  881.759045][T16984] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  881.759065][T16984]  </TASK>
[  881.779968][T16986] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2624'.
[  881.832401][T15746] IPVS: starting estimator thread 0...
[  881.834653][T16986] IPv6: sit1: Disabled Multicast RS
[  881.837232][T16986] sit1: entered allmulticast mode
[  881.852900][T16988] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2625'.
[  881.856214][T16988] syzkaller0: entered promiscuous mode
[  881.858046][T16988] syzkaller0: entered allmulticast mode
[  881.881571][T16986] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.2624' sets config #1
[  881.892596][T16981] netlink: 'syz.2.2623': attribute type 10 has an invalid length.
[  881.895167][T16981] netlink: 232 bytes leftover after parsing attributes in process `syz.2.2623'.
[  881.933769][T16989] IPVS: using max 47 ests per chain, 112800 per kthread
[  882.090374][T17004] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2628'.
[  882.821481][T15746] usb 5-1: USB disconnect, device number 54
[  883.504125][    T9] usb 8-1: new high-speed USB device number 54 using dummy_hcd
[  883.675084][    T9] usb 8-1: Using ep0 maxpacket: 8
[  883.685953][    T9] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  883.689184][    T9] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 2
[  883.722878][    T9] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[  883.726516][    T9] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[  883.753000][    T9] usb 8-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  883.758024][    T9] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  883.864767][    T9] hub 8-1:1.0: bad descriptor, ignoring hub
[  883.867519][    T9] hub 8-1:1.0: probe with driver hub failed with error -5
[  883.877130][    T9] cdc_wdm 8-1:1.0: skipping garbage
[  883.880971][    T9] cdc_wdm 8-1:1.0: skipping garbage
[  883.885298][    T9] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[  883.887444][    T9] cdc_wdm 8-1:1.0: Unknown control protocol
[  884.375265][T17035] ------------[ cut here ]------------
[  884.378436][T17035] !chanctx_conf
[  884.378445][T17035] WARNING: net/mac80211/rate.c:53 at rate_control_rate_init+0x5c5/0x730, CPU#1: syz.4.2636/17035
[  884.383027][T17035] Modules linked in:
[  884.384462][T17035] CPU: 1 UID: 0 PID: 17035 Comm: syz.4.2636 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  884.388174][T17035] Tainted: [L]=SOFTLOCKUP
[  884.389586][T17035] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  884.393025][T17035] RIP: 0010:rate_control_rate_init+0x5c5/0x730
[  884.395127][T17035] Code: 48 8d 35 00 00 00 00 e8 29 72 e5 f6 e8 b4 c9 ee f6 e9 20 fe ff ff e8 6a 69 09 f7 90 0f 0b 90 e9 12 fe ff ff e8 5c 69 09 f7 90 <0f> 0b 90 eb b1 e8 51 69 09 f7 e8 0c d2 ed f6 31 ff 89 c3 89 c6 e8
[  884.401363][T17035] RSP: 0018:ffffc90006af71f0 EFLAGS: 00010287
[  884.404013][T17035] RAX: 00000000000007ee RBX: ffff88804cd28000 RCX: ffffc90035611000
[  884.406712][T17035] RDX: 0000000000080000 RSI: ffffffff8afe6e64 RDI: ffff888020c88000
[  884.409395][T17035] RBP: 0000000000000001 R08: 0000000000000005 R09: 0000000000000000
[  884.412087][T17035] R10: 0000000000000001 R11: 0000000000000000 R12: ffff88802abfde40
[  884.414750][T17035] R13: ffff888065820f20 R14: ffff8880550ac000 R15: 0000000000000000
[  884.417572][T17035] FS:  0000000000000000(0000) GS:ffff88809727d000(0063) knlGS:00000000f548db40
[  884.420413][T17035] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  884.422511][T17035] CR2: 0000000080030000 CR3: 0000000053470000 CR4: 0000000000352ef0
[  884.425108][T17035] Call Trace:
[  884.426230][T17035]  <TASK>
[  884.427198][T17035]  rate_control_rate_init_all_links+0x76/0x1f0
[  884.429159][T17035]  sta_apply_auth_flags.isra.0+0x4aa/0x500
[  884.431063][T17035]  sta_apply_parameters+0x1234/0x2090
[  884.432826][T17035]  ? __sta_info_alloc+0x1146/0x1cd0
[  884.436580][T17035]  ieee80211_add_station+0x3ff/0x760
[  884.438285][T17035]  nl80211_new_station+0x14a9/0x20f0
[  884.440017][T17035]  ? __pfx_nl80211_new_station+0x10/0x10
[  884.441827][T17035]  ? nl80211_pre_doit+0x19a/0xae0
[  884.443437][T17035]  genl_family_rcv_msg_doit+0x214/0x300
[  884.445308][T17035]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  884.447475][T17035]  ? genl_get_cmd+0x3e7/0x760
[  884.449056][T17035]  ? bpf_lsm_capable+0x9/0x10
[  884.450573][T17035]  ? security_capable+0x80/0x260
[  884.452158][T17035]  ? ns_capable+0xd2/0xf0
[  884.453556][T17035]  genl_rcv_msg+0x560/0x800
[  884.455027][T17035]  ? __pfx_genl_rcv_msg+0x10/0x10
[  884.456739][T17035]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  884.458460][T17035]  ? __pfx_nl80211_new_station+0x10/0x10
[  884.460248][T17035]  ? __pfx_nl80211_post_doit+0x10/0x10
[  884.462021][T17035]  netlink_rcv_skb+0x159/0x420
[  884.463557][T17035]  ? __pfx_genl_rcv_msg+0x10/0x10
[  884.465167][T17035]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  884.467076][T17035]  ? netlink_deliver_tap+0x1ae/0xcc0
[  884.468756][T17035]  genl_rcv+0x28/0x40
[  884.470048][T17035]  netlink_unicast+0x585/0x850
[  884.471705][T17035]  ? __pfx_netlink_unicast+0x10/0x10
[  884.473349][T17035]  netlink_sendmsg+0x8b0/0xda0
[  884.474924][T17035]  ? __pfx_netlink_sendmsg+0x10/0x10
[  884.476714][T17035]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  884.478536][T17035]  ____sys_sendmsg+0x9e1/0xb70
[  884.480076][T17035]  ? __pfx_netlink_sendmsg+0x10/0x10
[  884.481781][T17035]  ? __pfx_____sys_sendmsg+0x10/0x10
[  884.483792][T17035]  ? __pfx___futex_wait+0x10/0x10
[  884.485687][T17035]  ? __pfx_futex_wake_mark+0x10/0x10
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  884.487524][T17035]  ___sys_sendmsg+0x190/0x1e0
[  884.489417][T17035]  ? __pfx____sys_sendmsg+0x10/0x10
[  884.491233][T17035]  ? find_held_lock+0x2b/0x80
[  884.492709][T17035]  __sys_sendmsg+0x170/0x220
[  884.494409][T17035]  ? __pfx___sys_sendmsg+0x10/0x10
[  884.496074][T17035]  ? __ia32_sys_futex_time32+0x2f4/0x470
[  884.497768][T17035]  ? rcu_is_watching+0x12/0xc0
[  884.499576][T17035]  __do_fast_syscall_32+0xe7/0x950
[  884.501248][T17035]  ? lockdep_hardirqs_on+0x78/0x100
[  884.502956][T17035]  do_fast_syscall_32+0x32/0x70
[  884.504713][T17035]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  884.507359][T17035] RIP: 0023:0xf709efcc
[  884.509071][T17035] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  884.516409][T17035] RSP: 002b:00000000f548d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  884.520119][T17035] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080001080
[  884.522947][T17035] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  884.526129][T17035] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  884.529205][T17035] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  884.532347][T17035] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  884.535558][T17035]  </TASK>
[  884.536845][T17035] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  884.539354][T17035] CPU: 1 UID: 0 PID: 17035 Comm: syz.4.2636 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  884.543581][T17035] Tainted: [L]=SOFTLOCKUP
[  884.545307][T17035] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  884.549329][T17035] Call Trace:
[  884.550436][T17035]  <TASK>
[  884.551604][T17035]  dump_stack_lvl+0x100/0x190
[  884.553543][T17035]  vpanic+0x552/0x970
[  884.555201][T17035]  ? __pfx_vpanic+0x10/0x10
[  884.557067][T17035]  panic+0xd1/0xe0
[  884.558620][T17035]  ? __pfx_panic+0x10/0x10
[  884.560456][T17035]  check_panic_on_warn.cold+0x19/0x34
[  884.562659][T17035]  ? rate_control_rate_init+0x5c5/0x730
[  884.564839][T17035]  __warn.cold+0x191/0x328
[  884.566652][T17035]  __report_bug+0x296/0x3d0
[  884.568427][T17035]  ? rate_control_rate_init+0x5c5/0x730
[  884.570606][T17035]  ? __pfx___report_bug+0x10/0x10
[  884.572661][T17035]  ? kasan_save_track+0x14/0x30
[  884.574672][T17035]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  884.577275][T17035]  ? ieee80211_add_station+0x5f1/0x760
[  884.579491][T17035]  ? nl80211_new_station+0x14a9/0x20f0
[  884.581723][T17035]  ? genl_family_rcv_msg_doit+0x214/0x300
[  884.583666][T17035]  ? netlink_rcv_skb+0x159/0x420
[  884.585696][T17035]  ? netlink_unicast+0x585/0x850
[  884.587758][T17035]  ? netlink_sendmsg+0x8b0/0xda0
[  884.589806][T17035]  ? ____sys_sendmsg+0x9e1/0xb70
[  884.591814][T17035]  ? rate_control_rate_init+0x5c5/0x730
[  884.594063][T17035]  report_bug+0xb2/0x220
[  884.595812][T17035]  ? rate_control_rate_init+0x5c5/0x730
[  884.598064][T17035]  handle_bug+0x16a/0x2a0
[  884.599849][T17035]  exc_invalid_op+0x17/0x50
[  884.601727][T17035]  asm_exc_invalid_op+0x1a/0x20
[  884.603716][T17035] RIP: 0010:rate_control_rate_init+0x5c5/0x730
[  884.606215][T17035] Code: 48 8d 35 00 00 00 00 e8 29 72 e5 f6 e8 b4 c9 ee f6 e9 20 fe ff ff e8 6a 69 09 f7 90 0f 0b 90 e9 12 fe ff ff e8 5c 69 09 f7 90 <0f> 0b 90 eb b1 e8 51 69 09 f7 e8 0c d2 ed f6 31 ff 89 c3 89 c6 e8
[  884.613514][T17035] RSP: 0018:ffffc90006af71f0 EFLAGS: 00010287
[  884.615687][T17035] RAX: 00000000000007ee RBX: ffff88804cd28000 RCX: ffffc90035611000
[  884.618721][T17035] RDX: 0000000000080000 RSI: ffffffff8afe6e64 RDI: ffff888020c88000
[  884.621914][T17035] RBP: 0000000000000001 R08: 0000000000000005 R09: 0000000000000000
[  884.625108][T17035] R10: 0000000000000001 R11: 0000000000000000 R12: ffff88802abfde40
[  884.628339][T17035] R13: ffff888065820f20 R14: ffff8880550ac000 R15: 0000000000000000
[  884.631542][T17035]  ? rate_control_rate_init+0x5c4/0x730
[  884.633815][T17035]  rate_control_rate_init_all_links+0x76/0x1f0
[  884.636343][T17035]  sta_apply_auth_flags.isra.0+0x4aa/0x500
[  884.638430][T17035]  sta_apply_parameters+0x1234/0x2090
[  884.640512][T17035]  ? __sta_info_alloc+0x1146/0x1cd0
[  884.642608][T17035]  ieee80211_add_station+0x3ff/0x760
[  884.644777][T17035]  nl80211_new_station+0x14a9/0x20f0
[  884.646982][T17035]  ? __pfx_nl80211_new_station+0x10/0x10
[  884.649278][T17035]  ? nl80211_pre_doit+0x19a/0xae0
[  884.651360][T17035]  genl_family_rcv_msg_doit+0x214/0x300
[  884.653620][T17035]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  884.656101][T17035]  ? genl_get_cmd+0x3e7/0x760
[  884.658042][T17035]  ? bpf_lsm_capable+0x9/0x10
[  884.659544][T17035]  ? security_capable+0x80/0x260
[  884.661130][T17035]  ? ns_capable+0xd2/0xf0
[  884.662554][T17035]  genl_rcv_msg+0x560/0x800
[  884.664008][T17035]  ? __pfx_genl_rcv_msg+0x10/0x10
[  884.665634][T17035]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  884.667340][T17035]  ? __pfx_nl80211_new_station+0x10/0x10
[  884.669117][T17035]  ? __pfx_nl80211_post_doit+0x10/0x10
[  884.670854][T17035]  netlink_rcv_skb+0x159/0x420
[  884.672583][T17035]  ? __pfx_genl_rcv_msg+0x10/0x10
[  884.674219][T17035]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  884.675914][T17035]  ? netlink_deliver_tap+0x1ae/0xcc0
[  884.677592][T17035]  genl_rcv+0x28/0x40
[  884.678867][T17035]  netlink_unicast+0x585/0x850
[  884.680380][T17035]  ? __pfx_netlink_unicast+0x10/0x10
[  884.682094][T17035]  netlink_sendmsg+0x8b0/0xda0
[  884.683613][T17035]  ? __pfx_netlink_sendmsg+0x10/0x10
[  884.685268][T17035]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  884.687071][T17035]  ____sys_sendmsg+0x9e1/0xb70
[  884.688580][T17035]  ? __pfx_netlink_sendmsg+0x10/0x10
[  884.690261][T17035]  ? __pfx_____sys_sendmsg+0x10/0x10
[  884.691931][T17035]  ? __pfx___futex_wait+0x10/0x10
[  884.693543][T17035]  ? __pfx_futex_wake_mark+0x10/0x10
[  884.695213][T17035]  ___sys_sendmsg+0x190/0x1e0
[  884.696735][T17035]  ? __pfx____sys_sendmsg+0x10/0x10
[  884.698400][T17035]  ? find_held_lock+0x2b/0x80
[  884.699907][T17035]  __sys_sendmsg+0x170/0x220
[  884.701387][T17035]  ? __pfx___sys_sendmsg+0x10/0x10
[  884.702998][T17035]  ? __ia32_sys_futex_time32+0x2f4/0x470
[  884.704762][T17035]  ? rcu_is_watching+0x12/0xc0
[  884.706304][T17035]  __do_fast_syscall_32+0xe7/0x950
[  884.707935][T17035]  ? lockdep_hardirqs_on+0x78/0x100
[  884.709588][T17035]  do_fast_syscall_32+0x32/0x70
[  884.711132][T17035]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  884.713116][T17035] RIP: 0023:0xf709efcc
[  884.714421][T17035] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  884.720394][T17035] RSP: 002b:00000000f548d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  884.722989][T17035] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080001080
[  884.725451][T17035] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  884.727967][T17035] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  884.730438][T17035] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  884.733482][T17035] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  884.736823][T17035]  </TASK>
[  884.739048][T17035] Kernel Offset: disabled
[  884.740898][T17035] Rebooting in 86400 seconds..