last executing test programs:

47.632070936s ago: executing program 0 (id=6732):
socket$nl_generic(0x10, 0x3, 0x10)
inotify_init1(0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
lstat(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0))
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000300)={r0, 0x0, 0x0}, 0x20)
fsopen(&(0x7f0000000240)='jfs\x00', 0x0)
r1 = syz_genetlink_get_family_id$nfc(&(0x7f0000000b80), 0xffffffffffffffff)
sendmsg$NFC_CMD_VENDOR(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="01002dbd7000fedbdf251d0000000800010048d6b19c739db1b52117072409a3d88added34fd64264980e552b96baead58b961cac3f03cdc21ad56ce2a81437b9c4e535ebeddfb508c6b8d5d85367933a02cb95df4759babf65692901414adc3f43572985f3b10a0429e8e3a211922029956c8905021b25de352f2d7263796fdbb51a95a51b03abd89676d8fdc5f7daf3d2f76b23a8396e8e4a74d5a81ed0c07b9606c462665ede14e858b2c62544463292c896a233bf9e70ef27bd4996f5fd4fead2135184241a25cf603593a741fd14ee584a9f3369002dd59b461b0f63b9e67e4c095231c535e08064353e9aca57ba03239c9", @ANYRES32=0x0, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x2400c000}, 0x200048c0)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101b01)
ioctl$USBDEVFS_BULK(r2, 0xc0185502, &(0x7f0000000140)={{{0x1, 0x1}}, 0x3f00, 0x80000000, 0x0})

46.397329371s ago: executing program 0 (id=6727):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x1, 0xb, &(0x7f0000000100)=ANY=[@ANYBLOB="180800ec0c000000020000000000000018e8ffff"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x6, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
r1 = socket$igmp6(0xa, 0x3, 0x2)
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_NEW_STATION(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)={0x1c, r4, 0x1, 0x70bd2a, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r5}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x800)
readv(r3, &(0x7f0000000140)=[{&(0x7f00000001c0)=""/164, 0xa4}, {&(0x7f00000004c0)=""/4096, 0x1000}, {&(0x7f0000000340)=""/146, 0x92}, {&(0x7f0000000040)=""/9, 0x9}, {&(0x7f00000014c0)=""/216, 0xd8}, {&(0x7f00000015c0)=""/165, 0xa5}, {&(0x7f0000000080)}], 0x7)
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)={0x1c, 0x0, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a30000000004000ffff0900010073797a30000000000900020073797a3100000000140003"], 0x138}, 0x1, 0x0, 0x0, 0x20040855}, 0x0)
r6 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000040900010073797a30000000009c000000090a010400000000000000000700000308000a40000000000900020073797a30000000000900010073797a3000000000080005400000000d58001280200001800e000100636f6e6e6c696d69740000000c0002800800014000000008200001800e000100636f6e6e6c696d69740000000c00028008000140000000001400017b090001006cdbf80789f3f947dd0002800800"], 0xe4}, 0x1, 0x0, 0x0, 0x8001}, 0x20050840)
sendmsg$kcm(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000002880)=[{&(0x7f0000000040)="e03f030041000b05d25a806c8c6394f90324fc60100000000a000200053582c137153e3704020180fc5409000c00", 0x2e}, {&(0x7f00000002c0)="1f472df6ccc113341b43ecf5679a760fa5983551a676443679ddd0c8113880203364aa6aa8a9fbad94ea3b21c20972a5", 0x30}, {&(0x7f0000001680)="1b7565e58e2c2393d99429d46b948e565273eca46b169707d842ccc1b98a6b247b4b788a0f2dee9b8978f55d3fbaab68ec4210ad75bd4eeca4d2701054361ac7c95d7916e45fdb00f0c25bcd0321e8b5ae3841e0e870174cb628c1c6d71c93d8b834befde9527974875ce872da786a71ab640c07520794de5b0048bfdc17426a43190f18d843252c9fb1ad9333d9dc2c438cad9918623cd8ca59c7afce49b22da1decb6532ef5cac36ff19c884fcb1ea5110c140161b9ec2fbfb3b0a9cdedceaf768678a29b82fb5a6c091cd7202b401ba9284f118c075b273a62c86", 0xdc}, {&(0x7f0000001780)="7f6de954c9a03e4e71940c79bac8977287920652744b6f977e7f2bbeed72bf5381351de325b4e7d53821f00aafdf6474d66888fc7c0997909c794175de42bd6a3a45e6c4ede3f280e98f1bc87eaa6ac2f29e2e26c8782c6664cb129a4f182273b8b71991b967e7eb3f41d410dee5accd02fe72e5045c47d97203ba1f15c0b0ecc347f615e847302bb54ffd0e4f4c7fd3cff1e7a58e827eb48b1e95882ff48205d03fa69aa1cb8266be", 0xa9}, {&(0x7f0000001840)="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", 0x1000}, {&(0x7f0000002840)="df44c90eb34ae574a8a337be", 0xc}], 0x6}, 0x0)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000300)={0x0, 'syzkaller1\x00'})
write$tun(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="06000000bbbbbbbbbbbbaaaaaaaaaabb88f5"], 0x72)

45.705782888s ago: executing program 0 (id=6736):
socket$kcm(0x2, 0x200000000000001, 0x106)
socket$can_bcm(0x1d, 0x2, 0x2)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket$inet6(0xa, 0x3, 0xff)
ioctl$SNAPSHOT_S2RAM(0xffffffffffffffff, 0x330b)
connect$inet6(r0, &(0x7f0000000480)={0xa, 0xfffe, 0x3, @remote, 0x5}, 0x1c)
r1 = dup2(r0, r0)
sendmmsg$unix(r1, &(0x7f0000008380), 0x400000000000174, 0x4008890)
lseek(0xffffffffffffffff, 0x851, 0x0)
sendmsg$NL80211_CMD_ASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x404c045}, 0x20008041)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000050000000000000000000024000a20000000000a1f000000000000000000010000000900010073797a300000000058000000030a0104000000000000000001000000090003803d2175fbe782c2eb2b00048008000240172af2e40800014000000003080002401c791e7108000240423930ce08000140000000030900010073797a300000000088000000060a010400000000000000000100000008000b400000000014000480100001800b0001006e756d67656e00000900010073797a30000000004c0004804800018008000100666962003c000280080003400000000c08000140000000020800014000000030080002400000000308000140000000120800034000000000080003400000000a"], 0x122}, 0x1, 0x0, 0x0, 0x40000}, 0x48080)
r2 = add_key$keyring(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r2, &(0x7f00000028c0)='asymmetric\x00', &(0x7f0000002980)=@keyring)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000080)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f0000000100)='./file0\x00')
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000040), 0x208e24b)

45.548073333s ago: executing program 0 (id=6739):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
mkdirat(0xffffffffffffff9c, &(0x7f0000000800)='./file0\x00', 0x44)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r4 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r4, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x1)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000800)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffffd, {0x0, 0x0, 0x0, r3, {0x0, 0x1}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@newtfilter={0x8c, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x10, 0x4}, {}, {0x8, 0xf}}, [@filter_kind_options=@f_matchall={{0xd}, {0x50, 0x2, [@TCA_MATCHALL_ACT={0x4c, 0x2, [@m_gact={0x48, 0x1, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x4, 0xffffff00, 0x20000000, 0xc31, 0x7}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}]}]}}, @TCA_RATE={0x6, 0x5, {0xda, 0xc}}]}, 0x8c}, 0x1, 0x0, 0x0, 0x20000010}, 0x20000000)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) (async)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) (async)
socket(0x400000000010, 0x3, 0x0) (async)
socket$unix(0x1, 0x1, 0x0) (async)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'}) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000800)='./file0\x00', 0x44) (async)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) (async)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0) (async)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) (async)
move_mount(r4, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x1) (async)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000800)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffffd, {0x0, 0x0, 0x0, r3, {0x0, 0x1}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x0) (async)
sendmsg$nl_route_sched(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@newtfilter={0x8c, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x10, 0x4}, {}, {0x8, 0xf}}, [@filter_kind_options=@f_matchall={{0xd}, {0x50, 0x2, [@TCA_MATCHALL_ACT={0x4c, 0x2, [@m_gact={0x48, 0x1, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x4, 0xffffff00, 0x20000000, 0xc31, 0x7}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}]}]}}, @TCA_RATE={0x6, 0x5, {0xda, 0xc}}]}, 0x8c}, 0x1, 0x0, 0x0, 0x20000010}, 0x20000000) (async)

44.848211926s ago: executing program 0 (id=6745):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xf, 0x4, 0x8, 0x8}, 0x48)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=ANY=[@ANYBLOB="6c0000001000010400"/20, @ANYBLOB="5d580000000000001c001a8018000a801400070000000000000000000000000000000001140003006970766c616e310000000000000000001c0012800b0001006970766c616e00004c"], 0x6c}, 0x1, 0x0, 0x0, 0x840}, 0x84)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000100)=0x207, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'bridge0\x00', <r1=>0x0})
sendto$packet(r0, &(0x7f00000002c0)="05031600d3fc142e00004788031c0910", 0x10, 0x4, &(0x7f0000000140)={0x11, 0x86dd, r1, 0x1, 0x0, 0x6, @multicast}, 0x14)

44.468338298s ago: executing program 0 (id=6748):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000340)={@in={{0x2, 0x4e22, @local}}, 0x0, 0x0, 0x33, 0x0, "cebd7ceedb7b0ad952e966bbe242b92b746b023df2cb59e32e10366456deac64e782206bd4aee372005a52a40b7161161a8b2749fe184fb0d08bc63f90010a1ed2bf603d2c3fcc250c30136f9ef2ef8b"}, 0xd8)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x11) (fail_nth: 1)
shutdown(r0, 0x1)
recvfrom$inet(r0, 0x0, 0x0, 0x700, 0x0, 0x0)

44.34883497s ago: executing program 32 (id=6748):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000340)={@in={{0x2, 0x4e22, @local}}, 0x0, 0x0, 0x33, 0x0, "cebd7ceedb7b0ad952e966bbe242b92b746b023df2cb59e32e10366456deac64e782206bd4aee372005a52a40b7161161a8b2749fe184fb0d08bc63f90010a1ed2bf603d2c3fcc250c30136f9ef2ef8b"}, 0xd8)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x11) (fail_nth: 1)
shutdown(r0, 0x1)
recvfrom$inet(r0, 0x0, 0x0, 0x700, 0x0, 0x0)

11.516074555s ago: executing program 1 (id=6877):
syz_80211_inject_frame(&(0x7f00000003c0), 0x0, 0x0)
nanosleep(0x0, 0x0)
syz_80211_inject_frame(&(0x7f0000000400), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000001500)={<r0=>0x0, <r1=>0x0})
nanosleep(&(0x7f0000001540)={r0, r1+10000000}, 0x0)
syz_80211_inject_frame(&(0x7f0000000140)=@broadcast, 0x0, 0x0)

8.78801344s ago: executing program 1 (id=6889):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], 0x0, 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_LINKAT={0x27, 0x8, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000080)='./file0\x00', 0xffffffffffffffff, 0x0, 0x1})
io_uring_enter(0xffffffffffffffff, 0x4c6e, 0xc67a, 0x8, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r3 = socket$key(0xf, 0x3, 0x2)
setxattr$incfs_id(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), &(0x7f0000000280)={'0000000000000000000000000000000', 0x31}, 0x20, 0x1)
sendmsg$key(r3, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mkdir(&(0x7f0000000180)='./file0\x00', 0x30)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f00000005c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x4d0, 0x0, 0x18c, 0x203, 0x0, 0x19030000, 0x408, 0x2e0, 0x2e0, 0x408, 0x2e0, 0x3, 0x0, {[{{@uncond, 0x300, 0x2d4, 0x31c, 0x0, {}, [@common=@unspec=@bpf0={{0x230}, {0x13, [{0x0, 0x0, 0x8}, {}, {0x20}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x8}, {}, {0x0, 0x0, 0x0, 0xe}, {0x0, 0x0, 0x0, 0x3}, {0x0, 0x0, 0x3}, {0x2, 0x0, 0x4}, {}, {0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x8}, {}, {0x16}, {0x0, 0xff}, {}, {0x7}, {0x0, 0x0, 0x0, 0x4}, {0x0, 0x4, 0x0, 0x101}, {}, {0x0, 0x0, 0x5}, {}, {0x0, 0x0, 0x0, 0x9}, {0xfffc, 0x0, 0x0, 0x6}, {}, {0xfffe}, {}, {}, {}, {0xfffe, 0xfb}, {}, {0x7a04}, {}, {}, {0x20, 0x6}, {}, {}, {}, {0x0, 0x0, 0x0, 0x800}, {}, {0xb8c, 0x0, 0x0, 0xf00}, {0x0, 0x1, 0x0, 0x3}, {0x3, 0x1}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {0x0, 0xfd}, {}, {}, {0x0, 0x0, 0x0, 0xfffffffd}, {}, {0x0, 0xb}, {0x4, 0x2}]}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x2, 'syz0\x00', {0x8001}}}}, {{@uncond, 0x0, 0xa4, 0xec}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0xb, 'syz0\x00', {0x6c8}}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x52c)
r5 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
sendmmsg$inet(r5, &(0x7f0000000c40)=[{{&(0x7f0000000040)={0x2, 0x0, @multicast2}, 0x23, 0x0}}], 0x1e1730a30afb6559, 0x8014)

8.475599866s ago: executing program 3 (id=6883):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0}, 0x1, 0x0, 0x0, 0x80}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
socket$packet(0x11, 0x3, 0x300)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r3=>0x0})
sendmsg$BATADV_CMD_GET_NEIGHBORS(r2, &(0x7f0000004340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="310300000000fbdbdf250b00000008000300", @ANYRES32=r3], 0x1c}, 0x1, 0x0, 0x0, 0x4008000}, 0x4000000)
mkdir(0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, &(0x7f0000001500)=ANY=[@ANYBLOB="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"], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffedf, 0x10, &(0x7f0000000040)}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000380)={r4, 0x0, 0xe, 0x0, &(0x7f0000000040)="77d2bcbdedb6eddc072584bc4ed3", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r5, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x2f)
connect$inet(r5, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(r5, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r5, 0x6, 0xd, &(0x7f0000000040)='htcp', 0x4)
recvfrom$inet(r5, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
sendmsg$nl_route(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="20000000110001002bbd7000fbdbdf2500000000d3388d8ef7a70acc2665fd229416e3e56a50411aaf704d9173707b8214226cb5d8357ce7dd65132f36065687295d8e03f589255613e20d12c0008472aba60548c901f081fc0e1bfd1aa34bc05315b798a0b86276ee569400395b602a6763d716f607ae27841b0bb5cb427eb3f678681f874074c319213a660b3a971bbcf8c6165063e180e935092991ed18faa0f5471b982008dd85725390c3e5ae0a9c366fa0cffc7cee92862b699a24b5bd8891eac9ed2cb0a0876aeb78454c7972a1d917e50d94feaba2e4d31afc80", @ANYRES32, @ANYBLOB="0804000000000000"], 0x20}, 0x1, 0x200000000000000, 0x0, 0x4}, 0x40cc040)

8.376257178s ago: executing program 3 (id=6884):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_usbip_server_init(0x6)
setgroups(0x0, 0x0)
r3 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(r3, 0x560a, &(0x7f0000000040)={0x0, 0x8, 0x0, 0x4})
r4 = openat$yama_ptrace_scope(0xffffff9c, &(0x7f00000001c0), 0x2, 0x0)
ioctl$VFAT_IOCTL_READDIR_BOTH(r4, 0x82187201, &(0x7f0000000940)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
socket$netlink(0x10, 0x3, 0x15)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d00)={0x11, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="4544f0fffcff30c000"], &(0x7f0000000280)='syzkaller\x00', 0x6, 0x1e, &(0x7f0000000300)=""/30, 0x41000, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000bc0)={0x3, 0x4}, 0x8, 0x10, &(0x7f0000000c00)={0x4, 0xb, 0x902c}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000cc0)=[0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], 0x0, 0x10, 0x7}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
timer_create(0x2, &(0x7f00000003c0)={0x0, 0x1c, 0x0, @tid=r0}, &(0x7f0000000400))
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone3(&(0x7f000000c340)={0xa802100, 0x0, 0x0, 0x0, {0x2e}, 0x0, 0x0, 0x0, &(0x7f0000000340)=[0x0], 0x1}, 0x58)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r6 = dup(r5)
setsockopt$PNPIPE_ENCAP(r6, 0x113, 0x1, &(0x7f0000000180)=0x1, 0x4)
write$uinput_user_dev(r6, &(0x7f00000004c0)={'syz0\x00', {0x87, 0x3, 0x1, 0x9}, 0xb, [0x4, 0x6, 0x802, 0xe9a2, 0x1, 0x0, 0xa9ba, 0xc1f, 0x1, 0x7f5b, 0x3, 0x4, 0x5, 0x10004, 0x2, 0x3, 0x0, 0x3, 0xe, 0x3, 0x0, 0x2, 0xd9, 0x2, 0x6, 0x0, 0x3, 0x9, 0xfff, 0x8a0, 0x6, 0x8001, 0x33b5, 0x1, 0xfffffffc, 0x0, 0x9, 0xb, 0xcc, 0x4, 0x80, 0x401, 0x5, 0x5, 0xfffffffd, 0x8, 0xb, 0x3, 0xffff8001, 0x6, 0x3, 0x80000000, 0x1, 0xa, 0x7, 0x8, 0x5, 0x3, 0x1, 0x7fe, 0x7fff, 0x10000, 0x2, 0x8], [0x2, 0x1, 0x3, 0x7, 0x9, 0x6, 0x5, 0x4, 0x9, 0x7, 0x5, 0xdd5a, 0x6, 0x5, 0x7, 0x8, 0x5, 0xcc, 0xbc1, 0x80000, 0x0, 0x5e81339d, 0xffffc256, 0xb, 0x80000001, 0x0, 0x0, 0x4, 0x4, 0x7, 0x8, 0x10d, 0x1, 0x5, 0x5, 0xfffffb66, 0xfb5, 0x2, 0x0, 0x7, 0x2, 0x8000, 0x7fff, 0x1, 0x9425, 0x4, 0x6f, 0x80b, 0x1, 0x1, 0x525ba681, 0x4f74, 0x7, 0x1, 0x1, 0xfffffffd, 0x100, 0x6, 0x10000, 0x1306, 0x8b, 0x10000, 0xfe4, 0x3ff], [0x2, 0x40, 0x200, 0xfffffff9, 0x7aa, 0x10, 0x80, 0x8001, 0x5, 0x0, 0x9, 0x8, 0x7fffffff, 0x1, 0x1, 0x4, 0x8, 0xa9, 0x7, 0x49, 0x6, 0x4, 0x5, 0xa3, 0x40003, 0x2, 0x0, 0x3, 0x4c, 0x3, 0x5, 0x4, 0xd21e, 0x9, 0x12, 0x0, 0x2, 0xfff, 0x926, 0x800100, 0x7c83, 0xd, 0x1, 0x4, 0xf, 0x81, 0x47, 0x7, 0x0, 0x11, 0x2, 0xffd, 0x7, 0x7, 0x7ffd, 0x7ff, 0x10, 0x9, 0x10001, 0x8000001, 0x10001, 0x6, 0x71c], [0x81, 0x3, 0x10, 0x4e26, 0x3, 0x7, 0xfffffff3, 0x497, 0x4, 0x1, 0x3, 0x5, 0x56, 0xc28, 0x9, 0x5, 0x5, 0xa, 0x79a, 0x4, 0x9, 0x6, 0xc41f, 0x5, 0x8b6, 0xffffffff, 0x0, 0x0, 0x6a, 0x9, 0x0, 0x0, 0x1000, 0x10, 0xd, 0x6, 0x8000, 0x53, 0x78d, 0x4, 0x1, 0x9, 0xfffffff8, 0x9, 0x7, 0x7, 0x101, 0xa, 0x7, 0x4, 0x0, 0xb, 0x400400, 0x8, 0x5141, 0x8, 0x7, 0x9, 0x8, 0x0, 0x1, 0x8001, 0xfffffff7, 0x5]}, 0x45c)
pipe(&(0x7f0000000080))

6.9757483s ago: executing program 1 (id=6888):
r0 = socket(0xa, 0x3, 0xff)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0xce24, 0x6, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x34}}, 0xffffcd0b}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x4008054, &(0x7f0000000100)={0xa, 0x2, 0x7, @remote, 0xdb}, 0x18)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={0x0, 0x0, 0x96}, 0x28)
openat(0xffffffffffffff9c, 0x0, 0x300000d, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r4 = socket$inet(0x2, 0xa, 0x262)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000001c0), 0x4b301, 0x0)
r6 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r5, &(0x7f0000000000)={0x30000011})
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000000)=0x1a)
ioctl$sock_inet_SIOCSARP(r4, 0x8953, &(0x7f0000000000)={{0x2, 0x4e22, @dev}, {0x0, @remote}, 0x38, {0x2, 0xfffe, @broadcast}, 'syz_tun\x00'})
socket$nl_xfrm(0x10, 0x3, 0x6)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$inet_udp_int(r8, 0x11, 0x68, 0x0, &(0x7f00000002c0))
connect$inet(r7, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(r7, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
unshare(0x6a040000)

6.975469159s ago: executing program 2 (id=6890):
r0 = syz_io_uring_setup(0xdaa, &(0x7f0000000380)={0x0, 0x0, 0x13291, 0x0, 0x2000}, &(0x7f0000000100), &(0x7f0000000000))
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x7, @ipv4={'\x00', '\xff\xff', @local}, 0x1}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x2, &(0x7f0000000080)=@gcm_256={{0x304}, "491e8f6fda908499", "d656798feb353f99cb53000fac69957c56001000000000000020000000001200", "94444681", '\x00\t\x00\x00\x00YZ;'}, 0x38)
shutdown(r1, 0x1)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x4000000086a82, 0x0)
r3 = dup(r2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r3, 0x3554000)
io_setup(0x400e, &(0x7f0000000600)=<r4=>0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0x3, 0x1)
syz_clone3(&(0x7f0000000080)={0x21800000, &(0x7f0000000040)=<r5=>0xffffffffffffffff, 0x0, 0x0, {0x27}, 0x0, 0x0, 0x0, 0x0}, 0x58)
io_submit(r4, 0x1, &(0x7f0000001300)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x5, 0x6, r5, 0x0}])
syz_emit_ethernet(0x3e, &(0x7f0000000140)={@local, @multicast, @void, {@ipv4={0x800, @tcp={{0x7, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local, {[@rr={0x7, 0x3, 0xe0}, @generic={0x7, 0x2}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x6, 0x5}}}}}}, 0x0)
io_uring_enter(r0, 0x1, 0xffffffff, 0x1, 0x0, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
modify_ldt$write(0x1, &(0x7f0000000000)={0x4d, 0x20001000, 0x400, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1}, 0x10)
syz_clone3(&(0x7f000000c340)={0xa002100, 0x0, 0x0, 0x0, {0x38}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@ipv4_delroute={0x2c, 0x19, 0x901, 0x0, 0x0, {0x2, 0x18, 0x0, 0x0, 0xfe, 0x0, 0xfd, 0x1, 0x500}, [@RTA_DST={0x8, 0x1, @dev}, @RTA_PRIORITY={0x8, 0x6, 0xc}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000000}, 0x40)

6.419116s ago: executing program 4 (id=6894):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0}, 0x1, 0x0, 0x0, 0x80}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
socket$packet(0x11, 0x3, 0x300)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r3=>0x0})
sendmsg$BATADV_CMD_GET_NEIGHBORS(r2, &(0x7f0000004340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="310300000000fbdbdf250b00000008000300", @ANYRES32=r3], 0x1c}, 0x1, 0x0, 0x0, 0x4008000}, 0x4000000)
mkdir(0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, &(0x7f0000001500)=ANY=[@ANYBLOB="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"], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffedf, 0x10, &(0x7f0000000040)}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000380)={r4, 0x0, 0xe, 0x0, &(0x7f0000000040)="77d2bcbdedb6eddc072584bc4ed3", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r5, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x2f)
connect$inet(r5, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(r5, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r5, 0x6, 0xd, &(0x7f0000000040)='htcp', 0x4)
recvfrom$inet(r5, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
sendmsg$nl_route(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="20000000110001002bbd7000fbdbdf2500000000d3388d8ef7a70acc2665fd229416e3e56a50411aaf704d9173707b8214226cb5d8357ce7dd65132f36065687295d8e03f589255613e20d12c0008472aba60548c901f081fc0e1bfd1aa34bc05315b798a0b86276ee569400395b602a6763d716f607ae27841b0bb5cb427eb3f678681f874074c319213a660b3a971bbcf8c6165063e180e935092991ed18faa0f5471b982008dd85725390c3e5ae0a9c366fa0cffc7cee92862b699a24b5bd8891eac9ed2cb0a0876aeb78454c7972a1d917e50d94feaba2e4d31afc80", @ANYRES32, @ANYBLOB="0804000000000000"], 0x20}, 0x1, 0x200000000000000, 0x0, 0x4}, 0x40cc040)

5.309377938s ago: executing program 4 (id=6895):
r0 = syz_open_dev$dri(&(0x7f0000000340), 0x0, 0x0)
ioctl$DRM_IOCTL_GET_STATS(r0, 0x80f864ce, 0x0)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io$hid(r1, &(0x7f0000000080)={0x24, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x22, 0xf, {[@main=@item_4={0x3, 0x0, 0x8, '\t\x00'}, @local=@item_4={0x3, 0x2, 0x0, "93bf0280"}, @main=@item_4={0x3, 0x0, 0xb, "7488dffc"}]}}, 0x0}, 0x0)
r2 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0)
ioctl$HIDIOCGUSAGE(r2, 0xc018480b, 0x0)
ioctl$HIDIOCINITREPORT(r2, 0x4805, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r3, 0xffffffffffffffff, 0x0)

5.309057423s ago: executing program 2 (id=6896):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
fanotify_init(0x202, 0x0)
r1 = syz_io_uring_setup(0x1e1e, &(0x7f0000000200)={0x0, 0x86f7, 0x10100}, &(0x7f0000002000)=<r2=>0x0, &(0x7f0000000000)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x20})
io_uring_enter(r1, 0x48e9, 0x0, 0x2, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
r7 = dup(r6)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000"], 0x48)
read$qrtrtun(0xffffffffffffffff, &(0x7f00000004c0)=""/57, 0x39)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r7, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x2, @dev={0xfe, 0x80, '\x00', 0x30}, 0xb}, @in={0x2, 0x4e22, @local}], 0x2c)
openat$vim2m(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r9 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r9, 0x29, 0x20, &(0x7f0000000280)={@mcast2, 0x2, 0x1, 0x2, 0xa, 0xc53e, 0x8}, 0x20)
r10 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
read(r10, &(0x7f0000000040)=""/138, 0x8a)
socket$nl_netfilter(0x10, 0x3, 0xc)
ftruncate(r8, 0x6)

5.131305801s ago: executing program 3 (id=6897):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
mmap(&(0x7f0000d30000/0x3000)=nil, 0x3000, 0x0, 0x12, r1, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
write$bt_hci(r2, &(0x7f0000000580)=ANY=[@ANYBLOB='R\x00\x00\x00'], 0x8)
r3 = socket(0x10, 0x3, 0x0)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000180)={0x0, <r4=>0x0}, 0x0)
r5 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendmmsg$inet(r5, &(0x7f0000000b40)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000ac0)=[{&(0x7f00000008c0)="99cc6a27d9685c66b6dc476a3dd9c7af61e29d8168b55116c6710445eee400542c40b9319e855c7c6b95a3d67d6b1df6a2a8caf13728d2f90366324e30f5ae53097ce2980d1fcd7ada3d16733577642cd12b0d01d9cd1b4582f4fadf8eb90e037334", 0x62}, {&(0x7f0000000980)="437ef70cd5d9cf63ea0472f97821c07884214f7d2bd40d", 0x17}], 0x2}}], 0x2, 0x20005040)
ioctl$FS_IOC_GETFSMAP(r5, 0xc0c0583b, &(0x7f0000000300)={0x0, 0x0, 0x4, 0x0, '\x00', [{0x1, 0x2, 0xfffffffffffffffe, 0x1, 0x6, 0x7}, {0x3ff, 0x3ff, 0x13682b4e, 0x6, 0x5, 0x7}], ['\x00', '\x00', '\x00', '\x00']})
ioctl$TUNSETOWNER(r1, 0x400454cc, r4)
bpf$ITER_CREATE(0x21, 0x0, 0x0)
write(r0, &(0x7f0000000000)="2efff400010002", 0x7)

5.131071509s ago: executing program 1 (id=6898):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'macsec0\x00', 0x2})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000740)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=@newqdisc={0x74, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x5dfdbfb, {0x0, 0x0, 0x0, r3, {0x0, 0xe}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x44, 0x2, [@TCA_CAKE_WASH={0x8, 0xd, 0x1}, @TCA_CAKE_TARGET={0x8, 0x8, 0xe0}, @TCA_CAKE_FLOW_MODE={0x8, 0x5, 0x4}, @TCA_CAKE_BASE_RATE64={0xc, 0x2, 0xd8}, @TCA_CAKE_WASH={0x8}, @TCA_CAKE_BASE_RATE64={0xc, 0x2, 0x26}, @TCA_CAKE_WASH={0x8}]}}]}, 0x74}, 0x1, 0x0, 0x0, 0x4000000}, 0x20040084)
socket$unix(0x1, 0x1, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r4, 0x6, 0x1f, 0x0, 0x0)
r5 = socket$kcm(0x11, 0x3, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r6)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000d40)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0xc, [@struct={0x4, 0x1, 0x0, 0x4, 0x1, 0x2, [{0xa, 0x3, 0x1000000}]}, @int={0x0, 0x0, 0x0, 0x1, 0x5, 0x20}, @restrict={0x0, 0x0, 0x0, 0xb, 0x2}]}, {0x0, [0x61, 0x0, 0x30, 0x2e, 0x61, 0x61, 0x61, 0x0, 0x61, 0x2e]}}, 0x0, 0x58, 0x0, 0x1}, 0x28)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r8 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r8, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x20, &(0x7f0000000340)=[@in={0x2, 0x4e23, @private=0xa010100}, @in6={0xa, 0x4e22, 0x3, @dev={0xfe, 0x80, '\x00', 0xb}, 0x5}]}, &(0x7f0000000440)=0xd)
r9 = socket(0x400000000010, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x7, 0x3, &(0x7f00000000c0)=@framed={{0x62, 0xa, 0x0, 0xffc4, 0x0, 0x71, 0x10, 0xb8}}, &(0x7f0000000480)='GPL\x00'}, 0x94)
r10 = syz_usb_connect(0x2, 0x3f, &(0x7f00000007c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
syz_usb_control_io(r10, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r10, 0x0, &(0x7f0000000700)={0x44, &(0x7f00000004c0)=ANY=[@ANYBLOB="4008010000005095b07901cb02884c76e0b4fe4e3d2b46ca90e5d40a22f02dfb73380d9b2cf9eb561c71a3e424349e8240ff3a4f3b6fac01cce566b829279626f3f6d297eb97d2ef514b2f56c5fbbdbd8edc2e3ef72dab4c604191e9ef50b8adf363e51ead59eccc4ab79bd5bb85ff79c6569849035c13363781b317822e4458e65df2600f"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
sendmsg$TIPC_NL_MEDIA_SET(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000040)=ANY=[@ANYBLOB="b0000000", @ANYRES16, @ANYBLOB="01"], 0xb0}}, 0x0)
ioctl$FS_IOC_GETVERSION(r7, 0xc0105b08, &(0x7f0000000040))
r11 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r12=>0x0})
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000080)={0x1}, 0x4)
sendmsg$nl_route_sched(r9, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000bc0)=@newtfilter={0x40, 0x2c, 0xd3f, 0x30bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r12, {0xfff2, 0xfff3}, {}, {0x8, 0x300}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8, 0x1, {0x0, 0x7ffc}}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x0)
setsockopt$sock_attach_bpf(r5, 0x107, 0xf, &(0x7f0000000600), 0x56)

5.098579023s ago: executing program 3 (id=6899):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0x51)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x8)
socket$packet(0x11, 0x2, 0x300)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000100)='syzkaller\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x40f00, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0x8, 0x0, 0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_OPENAT={0x12, 0x81, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000340)='./file0\x00', 0x51, 0x30000, 0x23456})
io_uring_enter(0xffffffffffffffff, 0x4e0d, 0x217, 0xa5, 0x0, 0x32)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x2, 0x16, &(0x7f0000001600)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffe50}, 0x48)
r5 = syz_open_dev$sndctrl(&(0x7f0000000440), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r5, 0x40045532, &(0x7f0000000040))
openat$audio(0xffffffffffffff9c, &(0x7f0000000240), 0x141802, 0x0)
syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2c65)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/slabinfo\x00', 0x0, 0x0)
preadv(r6, &(0x7f0000004ec0)=[{&(0x7f0000004bc0)=""/68, 0x44}], 0x1, 0x8000, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)

3.605370455s ago: executing program 4 (id=6900):
syz_80211_inject_frame(&(0x7f00000003c0), 0x0, 0x0)
nanosleep(&(0x7f0000000cc0)={0x77359400}, 0x0)
syz_80211_inject_frame(0x0, 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000001500)={<r0=>0x0, <r1=>0x0})
nanosleep(&(0x7f0000001540)={r0, r1+10000000}, 0x0)
syz_80211_inject_frame(&(0x7f0000000140)=@broadcast, 0x0, 0x0)

3.380265703s ago: executing program 3 (id=6901):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)=@newtaction={0xac, 0x30, 0x2, 0x0, 0x0, {}, [{0x98, 0x1, [@m_vlan={0x4c, 0x15, 0x0, 0x0, {{0x9}, {0x14, 0x2, 0x0, 0x1, [@TCA_VLAN_PUSH_VLAN_PROTOCOL={0x6, 0x4, 0x88a8}, @TCA_VLAN_PUSH_VLAN_ID={0x6, 0x3, 0xda2}]}, {0xf, 0x6, "56ec059fdd14932fdaac49"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xac}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
syz_genetlink_get_family_id$ipvs(&(0x7f0000000340), r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket$kcm(0x2, 0x5, 0x0)
sendmsg$inet(r4, &(0x7f00000004c0)={&(0x7f0000000080)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x35}}, 0x10, &(0x7f0000000000)=[{&(0x7f0000000140)="9f", 0x1}], 0x1}, 0x4cbe8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x1e, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="180006000000000000001134e89b492538fb177100000000f403000000eaff00"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
r5 = socket$packet(0x11, 0x3, 0x300)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="2c00000040000701feffe3c274c9b5fff400000000017c00000400428010000180060004001c"], 0x2c}, 0x1, 0x0, 0x0, 0x48815}, 0xc000)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[], 0x30}}, 0x0)
r8 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$unlink(0x9, r8, r8)
recvmmsg(r5, &(0x7f0000000480)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
r9 = openat$cuse(0xffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$FUSE_NOTIFY_POLL(r9, &(0x7f0000000100)={0x18, 0x1, 0x0, {0x6b25}}, 0x18)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
syz_open_dev$dvb_frontend(&(0x7f0000000000), 0x0, 0x2a0002)
syz_open_procfs(0x0, &(0x7f0000000180)='fd/3\x00')

3.354417482s ago: executing program 2 (id=6902):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000340)='./binderfs/binder1\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100)={0x73622a85, 0x0, 0x1})
syz_open_dev$tty20(0xc, 0x4, 0x1)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000003c0)=ANY=[], &(0x7f0000000340)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000680)={r1, 0xffff0000, 0x0, 0x0, &(0x7f0000000000), 0x0, 0xf000, 0x720e, 0x0, 0x0, 0x0, 0x0}, 0x4c)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="fc000000190001000000000000000000ac1414aa00"/32, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000008000000000000004e4dc3d6be8e02000000000000761dddb4fef6046bd2d45162b548f02a000000000000000005000000000000000700000000000008000000000000000000000000000000000300000000000000000000000000000000000000000000000000020044000500ff010040000000000000000000000001000000003c000000080000ac14140c00"/166], 0xfc}}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000280), r4)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)={0x4c, r5, 0x7, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_OURS={0x20, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x1c, 0x3, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'basic\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}]}]}]}]}, 0x4c}}, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)=ANY=[@ANYRES16=r7, @ANYBLOB="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"], 0x58}, 0x1, 0x0, 0x0, 0x4}, 0x4000004)
sendmsg$TIPC_NL_MON_GET(r4, &(0x7f0000000140)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[@ANYBLOB="f80000", @ANYRES16=r7, @ANYBLOB="000425bd70004cc8fbdbdf2512000000780001802c0004001400010002004e210a01010100000000000000001400020002004e23ffffffff00000000000000000c000280080002000a00000008000300080000002400028008000200f9ffffff0800020000000000080001000300000008000100190000000d0001007564703a73797a3000000000380005803400028008000200030000000800010017000000080002009c00000008000400800000000800040006000000080001001a0000001800078008000200020000000c00030005000000000000001c000580070001006962000007000100696200000800010075647000"], 0xf8}}, 0x24040001)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000780), r3)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r9=>0x0})
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000180)={'gre0\x00', &(0x7f0000000000)={'syztnl2\x00', 0x0, 0x2000, 0x8000, 0x0, 0x7, {{0x5, 0x4, 0x0, 0x12, 0x14, 0x20, 0x4000, 0x0, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x41, 0x0}, @multicast1}}}})
sendmsg$NL80211_CMD_FRAME(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000280)=ANY=[@ANYBLOB="88020000", @ANYRES16=r8, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r9, @ANYBLOB="6102330050300100080211000001080211000000505050505050"], 0x288}, 0x1, 0x0, 0x0, 0x800}, 0x40000)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0x10a})

3.270353511s ago: executing program 2 (id=6903):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
socket$packet(0x11, 0x3, 0x300)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r3=>0x0})
sendmsg$BATADV_CMD_GET_NEIGHBORS(r2, &(0x7f0000004340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="310300000000fbdbdf250b00000008000300", @ANYRES32=r3], 0x1c}, 0x1, 0x0, 0x0, 0x4008000}, 0x4000000)
mkdir(0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, &(0x7f0000001500)=ANY=[@ANYBLOB="b702000010000000bfa300000000000007030000f0ffffff7a0af0ff0000000079a4f0ff00000000b706000000000081ad64020000000000450404000100ff0f1704000001130a00b7050000010000006a0af2fe0000000085000000a3000000b700000000000000950000000000000000e154cd8445974b26c933f7ffffffffe4fbffffff55bb2007ee51050512b5b42128aa090a79507df79f298129daa7a6b2f91af50342115e17392ac627c87867c000006146001e04aeacea799a22a2fa798b5adc43eb27d53319d0ad229e5752548300000000dbc2777df150b7cdd77b2314fd085f028f2ed1a4535550614e09d6378198a6097a670838337af2abd55a87ac0394b2f92ffab7d153d62058d0a413b2173619ccf55520f22c9ca8b6712f3024b7041b1df65b3e1b9bf115646d14ce53d13d0ccacda1ef0900094fa737c28b99938512c816fdcceaede3faedc51d29a47fc813a2ec00f4c7a53ac271d6d7f4ea6bf97f2f33e2ea2e534300bcb3fdc4b4861004eefbda7f54f82a804da4f86bb47a4a69bf9bc5fa96ee293fbd165a5a68488e40b030166565a097b1b44b451de736bb6d43db8dd63d4b77b206000000000000e254a6d491b849a5a787e814c4fd21a18986252a70f8f92eb6f0e8c7db4bf23242a1f2c28159f09943b1b0452d1b72183aacf4a84f9130b775dd4e9e3070756f97ad91935a6ddfa8f90e79321a0574fb30ff0000001989328c8ddc20ea011bf5742e0e0d4334db8b20ce3f9f16cb7fc20fb4791ec85821d0c48fb657c29b309c73f0977e7cde65a82b94c461d7962b0d2277a84af326f3813e2c25a61ec45c3af9948f17da954aff3fc8c108755f75ca13fb7c8bbd8b6e7dac1aba4b20dc7de058a4dfa7e85a8bdf1d41a2d8bda74d66f47cc180f82c5f573c6d294d3665016ac59dda0fde4745db06753a7ac74a2d32f7528751313694bf5700b20ef0c248ddd3da32396a614cacad4aff2066bb5d4045c958559b7dcb98a6273b8c651e24d9f679e4fbe948dfb4cc4a389469600241730459f0123fd39206000000000000eb55dad46de56ef907b059b90b8aa49afb9a79ae5498f6589880ed6eea7b9c670012be05e7de0940313c5870786554df26236ebced9390cb6941b8375d936a7d2120eca291963eb2d537d8ee4de5c12e28ef97d9ebd9c77f1774cf4683c960119451c31539b22809e1d7f0cda06a9fa87d64cb77872a2cd8a104e16bb1a2bacf13464ca03aff14a9aa4bd9539f5096412b92012e095b84c20243ff98df3347f011000000f27e3c33269c0e153b28b2d4410572bc45b9d3fa02208d304d455c36300000000022320178b00cc6ed7966130b547dbf8b497a6103876843ee04ed9ff002000000cd1d00000020000000ef19349ee7f31abc11c800000000000000000000000928ee53595a779d243a48cea769470424d28804c04b2c4324ab7f4a5c81921f0128dfd70b438af60b060000000000000056642b49b745f3bf2cf7908b6d7d748308eea09fc361b4735efbf3411718d6ee7aebf9ef679dbfae9fb4a79f8a836804ed3a1079b0282a12043408cd60b687dcff91af19010000000000000000456f7d2a42bd1304202274f20675eb781925440578e93046aaddea8ec4ca37f71c2710a7ea8ae0dc214e1cc275b26adfa892e6de92000000000000000000ddff004cff9ec780f535e62f4eeee50e5bafecea4d4134f9d006c8d6883eca5c9c58c9e9338c73de2f04f15d005387577f480000ea65559eb00e76e9d0ada201bcbb5c252b28a60ca770663da451790cc36000906d5a9fad98c308e39bd5ffb6151d79c1cee1cd102e3c8e63e9fba05e3633be3f00000015762e5f5a3a0bc33fdbe28a5ffc83f2b485185cc92fe7f791e8f6429309d6adab4b96508e5bf024ed8f8a005f2bbf96c89739f5cf1e750d50517a59a3ad09e8802e8f4f535447cc0fc9d5f99a73145dfcedad69da9cd4375c624600e78f4458542b14f29611f95d4a31838eeb20c20bb82aa31771cd379ec83554cea5e6539db7384e1f58d81f2f2653c4d9818708e25c89b552d7fcd116bce9c764c714c9402c21d1aac59efb28d4f91652f6000000000000000320f8059195729d60c534ee8e8ff0755b67fe4c25edb85bcff24c757aa8090000000000008c420eb4304f66e3a37aaf000000c42a575939206d0c0f0e9dd5fd545470f862f8c3c14fa9ecd1e877b0d8ca84c044859e85e6158f9184bc61a9a284db80e4636c25b96174327d82761c26e329555f9290af4100000000000000ff0ffd3763655500344bae34137f5ab0d534b8d63e4ca3b671f2de1cdf519192c6b59a601fd419adc16e2055b85058f793484305d7a1759782e4c571ee855a47bc00edf5e9020c09ab004321610b857e8717764b633b21cb32f0e03280e09758bd445ab91d20baca005452b79d7b574a247f1d2fe45b3c4e93da3d51de647c10dd49944dc87c92332af00f191b66b6a6f732a91f0e2e9120be61e58c79d497247d278888901d442ad7f8536607a644e9e3d769db497c3960dfde12182334caee994adc38a436367a54b9e182b78e9a0ceb9a2c4f63902c1ad1a7c5a08d0920a23c2a86abbdf357849a651733e57f31019876026888c8ccb85c86b4f8ffffff7f000000002c331fca0e541b7ca211c28ed61c525708a13d115b43f8b1894c8fa8a14dc4810f61ae96c18cc7130000000000002100000000000000000001000027c9a46157a3609b6fd9843ee19ec647249a9375de5858818f3c4a4fa6ce46f4d42b07199de8b99231ace58c77819ee214e49666c464d35ca9b5143ed3b3dc8c17a23692759ccf5a205311b7ab22532697b861dfb54609fd88e6043bd52ae84c1bb0c8000000edb3d42c68a27ef6a1296dfff4a979369b0e8ebc62887aa46e820a74f91381dcc198e353047db70686d147357024eb3cb94f1e89cb5ba0a56aa046b4dc521a3d9356b4b8b5917c4c860495b240e80063bde261fd00000000007271e28ef6806bc8e139c49b91c76bea3858f7f05b47d3e519f1634e8fbd8d31330d89069f9648a2ff93060ff073b3a113e47edf76f7d116d2b0976cf2ec447c030931651dd315003b7a6a5433a2bb560ae99ec4b227eda2e63a1c31a2c2bd48a822cbe92b6524e0cd8020ecaa34e19e7141d5e221509342bfe7d294d1eb3de6a50ca0301f89c2ee627e949c68b3a4a426a996d503a26e9a714ee5f72d8805dd1bfbd081f6a5d1f1289dfe14cb9194e26a44fac273461fc5c0e0a33db76cf059f40fa2640b6bfb74dd35391b8fa18479da9f4b6641fce9a24b96767b837ca037a1199735c375c705c798e0e208e4a5259d0bfa526b462af45a6eab34000000000000000000000000c4426344ec1a3366515dee221e747f55d7dd02534bc503b9b28277c253e410986bef2111a99cc448d652929f8a67a6a1d3f00dcad91aff428aade3f85714a1d3ef29acd4d49b62339c10c2ec0dac4728288e78980c1184d8223edbccbf9258b7374e79a1f8bf3fb73c8c6dbb7bbdfc399847db97c02461792e3a49dac16c60c3fcaab222025d78963c3ac899fa8b63f58a30212c9b2d7fe751e2046b78f86e22861b6504c667350244dd6d9189a8b9c45f8aaff9db694811ca86ed978f23eed7459c0382074170cf1e25b0e9ba3d1cc309353eea4cd8ab96bafda393276bdd8d32ead8db9e1b54d2d3d50e2815268fc1a6ec566981bc8ccfe6cc1897449ba5f26a9d66ac73e6f5c401376f23a314e0b9ff997d22f3e34b7524642c248aa813edaa626f0000000000000000000000000000000003ba34b611569a451564d3a5400f9097ffe7a37e765be352be71ee24250d6828562c7e24cb763062d6000c409de6a6135eae8a00000000008d797190a26c933f933aff5c521eeb7a84a62d148a846e74e76b515b6b8be29e8b69310fa130cf6d6b74f33205d3cc218ca554ed8085ae044f5bf2e89a0000bde05c114e7a020fc1a5fd3eeeb822008b2d7d1cc062b51b0aca4956b557e51a1385cc572b0074b0950fb1437de2590bf99ec7ceb69e1fe2465fce099c992d57b804a22e148ae3411523814aee03ee2df877edfabf4aa94f07c6fdd127e57a8bf7975f2e606c25a299980a6e52fcf7849d45bb38573fbba8afef1aa7a24c805f7aee3e39a3000000000000000000000000000000000000878f88c4742ac490951c36c610a0d266588ec6a0bd300cf160b5a5d9e9fafa49ecc8430832d795e727b7fc2b76e7fc4141fdbb82f45d3cdd3fb8d4b443ab4954fdf5c1b9a6ab3e457f098329307ccb0a1989b6c37509692e952e7244f48bc12569ff8eb30d0f887b85b5ef44fb9a7571319190be0c226ed72f346cc4aa071ae0c72fa8bd00d5590c4f4ba65d0c8e1f4870fe3c414681e41b40163eb1aa2a7429a2208cd6e69c7d959e87da3fd0101159a03ab7fe78881ee7a1ee7a2edff75fb18a181e0c54352be2b7a5b5273198291c28d9141deeb3cdba5d414ae4b0000000000000000000000000009eacd83458d8a606be71970497a4fd4ca3b48ca482ab3804e2fac216b3ba613608b1a465456a33fd08491d337d7344c01cfc9e73"], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffedf, 0x10, &(0x7f0000000040)}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000380)={r4, 0x0, 0xe, 0x0, &(0x7f0000000040)="77d2bcbdedb6eddc072584bc4ed3", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r5, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x2f)
connect$inet(r5, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(r5, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r5, 0x6, 0xd, &(0x7f0000000040)='htcp', 0x4)
recvfrom$inet(r5, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
sendmsg$nl_route(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="20000000110001002bbd7000fbdbdf2500000000d3388d8ef7a70acc2665fd229416e3e56a50411aaf704d9173707b8214226cb5d8357ce7dd65132f36065687295d8e03f589255613e20d12c0008472aba60548c901f081fc0e1bfd1aa34bc05315b798a0b86276ee569400395b602a6763d716f607ae27841b0bb5cb427eb3f678681f874074c319213a660b3a971bbcf8c6165063e180e935092991ed18faa0f5471b982008dd85725390c3e5ae0a9c366fa0cffc7cee92862b699a24b5bd8891eac9ed2cb0a0876aeb78454c7972a1d917e50d94feaba2e4d31afc80", @ANYRES32, @ANYBLOB="0804000000000000"], 0x20}, 0x1, 0x200000000000000, 0x0, 0x4}, 0x40cc040)

2.439492076s ago: executing program 2 (id=6904):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0x51)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x8)
socket$packet(0x11, 0x2, 0x300)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000100)='syzkaller\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x40f00, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0x8, 0x0, 0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_OPENAT={0x12, 0x81, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000340)='./file0\x00', 0x51, 0x30000, 0x23456})
io_uring_enter(0xffffffffffffffff, 0x4e0d, 0x217, 0xa5, 0x0, 0x32)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x2, 0x16, &(0x7f0000001600)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffe50}, 0x48)
r4 = syz_open_dev$sndctrl(&(0x7f0000000440), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r4, 0x40045532, &(0x7f0000000040))
openat$audio(0xffffffffffffff9c, &(0x7f0000000240), 0x141802, 0x0)
syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2c65)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/slabinfo\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000004ec0)=[{&(0x7f0000004bc0)=""/68, 0x44}], 0x1, 0x8000, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)

2.437908219s ago: executing program 3 (id=6912):
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fcffff09058b1e20"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
r1 = syz_open_dev$cec(&(0x7f00000000c0), 0xffffffffffffffff, 0xa2243)
ioctl$CEC_ADAP_S_LOG_ADDRS(r1, 0xc05c6104, &(0x7f0000000040)={'\x00\f\x00', 0x0, 0x5, 0x2, 0x0, 0xc, "00000000020000000000002100", "00004702", "0052008f", '\x00', ["fdfeffbf84a438dfc5d5c010", "d78cb8b0211a83be12ff0bff", "0000efffffffffffbfff00", "000003cefd70f14003556000"]})
ioctl$CEC_TRANSMIT(r1, 0xc0386105, &(0x7f0000000100)={0xfff7fffffffffff7, 0xffffffffffffffff, 0x6, 0x9, 0x9, 0x7fff, "16b0bc450cfc47961ed5d8167d4f7865", 0x1, 0x52, 0x1, 0x49, 0x9, 0x9, 0xd})
socket$inet(0x2, 0x6000000000000001, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x400000000010, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_io_uring_setup(0x462, &(0x7f0000000280)={0x0, 0x40000020, 0x10, 0x2, 0x34f}, &(0x7f00000000c0)=<r3=>0x0, &(0x7f0000000000)=<r4=>0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_WRITE_FIXED={0x5, 0x43, 0x0, @fd, 0x11e, 0x5, 0x0, 0x5, 0x0, {0x3}})
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x2, 0x4, r5, 0x0, 0x0, 0x0, 0x80000, 0x1})
io_uring_enter(r2, 0x47bc, 0x0, 0x0, 0x0, 0x0)
ioctl$CEC_ADAP_S_LOG_ADDRS(r1, 0xc05c6104, &(0x7f0000000140)={"4497acf4", 0xb, 0x15, 0x0, 0x8, 0x3000006, 'U\x00', "1575a859", '\x00', '\'q6O', ["aabe8459c62224475793e8a7", "000400000000000000000040", "0000000400"]})
syz_usb_control_io(r0, 0x0, &(0x7f0000000780)={0x84, &(0x7f00000004c0)=ANY=[@ANYBLOB="00000100000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, &(0x7f0000000300)={0x2c, &(0x7f0000000000)=ANY=[@ANYBLOB="0300000000000000"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_connect$midi(0x2, 0xc1, &(0x7f0000000800)=ANY=[@ANYBLOB="120110210000004030144b474000010203010902af0001014840040904faff080103008009050913ff"], &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0})
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c)
r6 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x30, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$EVIOCGMASK(r6, 0x5b02, 0x0)

2.188136505s ago: executing program 4 (id=6905):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
listen(r1, 0xa8c)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r3 = fsopen(&(0x7f0000000200)='affs\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
fremovexattr(r2, &(0x7f00000000c0)=@known='system.posix_acl_access\x00')
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
r7 = syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2)
ioctl$VIDIOC_G_EXT_CTRLS(r7, 0xc0205648, &(0x7f0000000000)={0xf030000, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
prctl$PR_SET_MM(0x23, 0x4, &(0x7f0000ffd000/0x2000)=nil)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="240000002000010327bd7000ffdbdf2502000000000081001e0000000800"], 0x24}, 0x1, 0x0, 0x0, 0x240480d4}, 0x0)
r8 = dup(r0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r8, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @empty, 0x7}], 0x1c)
sendmsg$inet6(r0, &(0x7f0000000800)={&(0x7f0000000000)={0xa, 0x4e24, 0x8, @ipv4={'\x00', '\xff\xff', @local}, 0x2}, 0x1c, &(0x7f0000000380)=[{&(0x7f0000000300)="8869757b7c49a5b97bd8512b3b17c7152248b738d5f5f293ff7672ec16d5dad814b9e18a2e9c93aed92e7af68f7abd89a09c4d147d7c987a66e2649047548a30623bd1d72a031e4dd5adeccf6eed2f0c67ad7250d4e0bd5c2bafcf35efd2a2a5df69f9ccebebb1b9184908cc9947de11", 0x70}], 0x1}, 0x4048043)

2.0474432s ago: executing program 1 (id=6906):
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r0, &(0x7f0000000000)=[{&(0x7f00000001c0)="580000001500add427323b472545b45602117fffffff81004e224e217f000001925aa80020007b00090080007f000001e809000000ff0000f03ac71009000008ffffffffffffffffffe7ee00000000000000000200000000", 0x58}], 0x1)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000004c0)={'syz_tun\x00', <r3=>0x0})
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010026bd7000fddbdf25050000000c00018008000100", @ANYRES32=r3, @ANYBLOB="1c0003801800038014000180080001000400000006000100f9f10000"], 0x3c}, 0x1, 0x0, 0x0, 0x4008040}, 0x404c094)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r2, 0x89f2, &(0x7f0000000980)={'sit0\x00', &(0x7f00000008c0)={'syztnl0\x00', <r4=>r3, 0x40, 0x8000, 0x2, 0x2, {{0x1c, 0x4, 0x3, 0x9, 0x70, 0x68, 0x0, 0x9, 0x2f, 0x0, @empty, @initdev={0xac, 0x1e, 0x1, 0x0}, {[@timestamp_addr={0x44, 0x44, 0x45, 0x1, 0x2, [{@multicast2, 0xba2}, {@dev={0xac, 0x14, 0x14, 0x10}, 0x5}, {@private=0xa010102, 0x8}, {@multicast2, 0x4}, {@broadcast, 0xd}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x3}, {@rand_addr=0x64010102, 0xffff866f}, {@initdev={0xac, 0x1e, 0x1, 0x0}}]}, @ra={0x94, 0x4, 0x1}, @noop, @lsrr={0x83, 0x13, 0x4b, [@local, @broadcast, @loopback, @empty]}]}}}}})
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x14, &(0x7f00000009c0)={@loopback, <r5=>0x0}, &(0x7f0000000a00)=0x14)
r6 = socket$inet6(0xa, 0x3, 0x4)
setsockopt$inet6_IPV6_XFRM_POLICY(r6, 0x29, 0x43, &(0x7f0000000340)={{{@in=@broadcast, @in=@initdev={0xac, 0x1e, 0x0, 0x0}}}, {{@in6=@mcast1}, 0x0, @in=@dev}}, 0xe8)
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r0, &(0x7f0000000c00)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000600)={0x15c, r1, 0x506, 0x70bd26, 0x25dfdbfd, {}, [@HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bond\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x68, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x0, 0x2, 'bond_slave_1\x00'}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}, @HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_hsr\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_INDEX={0xe, 0x1, r3}]}, @HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dvmrp1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}]}, 0x15c}}, 0x4000000)
r7 = socket$nl_audit(0x10, 0x3, 0x9)
getsockopt$sock_int(r7, 0x1, 0x28, 0x0, &(0x7f0000000140))
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000140)={'syztnl1\x00', &(0x7f0000000080)={'tunl0\x00', 0x0, 0x7, 0x8, 0x1, 0x6, {{0x26, 0x4, 0x1, 0x22, 0x98, 0x65, 0x0, 0x3, 0x29, 0x0, @broadcast, @initdev={0xac, 0x1e, 0x1, 0x0}, {[@ssrr={0x89, 0x1b, 0xc8, [@rand_addr=0x64010100, @remote, @multicast2, @rand_addr=0x64010102, @local, @multicast2]}, @ra={0x94, 0x4, 0x1}, @noop, @end, @rr={0x7, 0xb, 0x4c, [@local, @loopback]}, @cipso={0x86, 0x46, 0x0, [{0x5, 0x3, "a9"}, {0x7, 0x9, "5f1d2e8fa2bb32"}, {0x6, 0x7, "1c4e68497c"}, {0x7, 0x2}, {0x5, 0xc, "e3e966aea27819d95229"}, {0x1, 0x6, "b8f2acc2"}, {0x0, 0xc, "022d9337022e0de1abed"}, {0x0, 0xd, "0d776f8b49a89652206f4c"}]}, @rr={0x7, 0x7, 0xcc, [@multicast2]}, @rr={0x7, 0x7, 0x72, [@remote]}, @noop]}}}}})
getsockname$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'veth0_to_bond\x00', <r10=>0x0})
sendmsg$nl_route(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=@newlink={0x7c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x90646}, [@IFLA_LINKINFO={0x54, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x44, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6, 0x1, 0x4}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x34, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xe, 0x3}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x1, 0x8}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x8}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x9}}]}]}}}, @IFLA_LINK={0x8, 0x5, r10}]}, 0x7c}, 0x1, 0x0, 0x0, 0x600}, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={0xffffffffffffffff, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000280)=[0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x9, 0x1, &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000340)=[0x0], 0x0, 0xcc, &(0x7f0000000380)=[{}, {}, {}, {}, {}, {}, {}], 0x38, 0x10, &(0x7f00000003c0), &(0x7f0000000400), 0x8, 0xe8, 0x8, 0x8, &(0x7f0000000440)}}, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f00000005c0))
r11 = socket$nl_audit(0x10, 0x3, 0x9)
r12 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(r11, 0x8933, &(0x7f0000000140)={'team0\x00', <r13=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r12, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x58, 0x0, 0x1, 0x70bd2c, 0x25dfdbff, {}, [{{0x8, 0x1, r13}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x14, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0xfffff000}}}]}}]}, 0x58}, 0x1, 0x0, 0x0, 0x400}, 0x2000c040)
r14 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r14, 0x8933, &(0x7f0000000380)={'syzkaller0\x00'})
r15 = openat$userfaultfd(0xffffffffffffff9c, &(0x7f0000000040), 0x80800, 0x0)
r16 = ioctl$USERFAULTFD_IOC_NEW(r15, 0xaa00)
dup3(r15, r16, 0x80000)

1.930822811s ago: executing program 1 (id=6907):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_usbip_server_init(0x6)
setgroups(0x0, 0x0)
r3 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(r3, 0x560a, &(0x7f0000000040)={0x0, 0x8, 0x0, 0x4})
r4 = openat$yama_ptrace_scope(0xffffff9c, &(0x7f00000001c0), 0x2, 0x0)
ioctl$VFAT_IOCTL_READDIR_BOTH(r4, 0x82187201, &(0x7f0000000940)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
socket$netlink(0x10, 0x3, 0x15)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d00)={0x11, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="4544f0fffcff30c000"], &(0x7f0000000280)='syzkaller\x00', 0x6, 0x1e, &(0x7f0000000300)=""/30, 0x41000, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000bc0)={0x3, 0x4}, 0x8, 0x10, &(0x7f0000000c00)={0x4, 0xb, 0x902c}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000cc0)=[0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], 0x0, 0x10, 0x7}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
timer_create(0x2, &(0x7f00000003c0)={0x0, 0x1c, 0x0, @tid=r0}, &(0x7f0000000400))
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone3(&(0x7f000000c340)={0xa802100, 0x0, 0x0, 0x0, {0x2e}, 0x0, 0x0, 0x0, &(0x7f0000000340)=[0x0], 0x1}, 0x58)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r6 = dup(r5)
setsockopt$PNPIPE_ENCAP(r6, 0x113, 0x1, &(0x7f0000000180)=0x1, 0x4)
write$uinput_user_dev(r6, &(0x7f00000004c0)={'syz0\x00', {0x87, 0x3, 0x1, 0x9}, 0xb, [0x4, 0x6, 0x802, 0xe9a2, 0x1, 0x0, 0xa9ba, 0xc1f, 0x1, 0x7f5b, 0x3, 0x4, 0x5, 0x10004, 0x2, 0x3, 0x0, 0x3, 0xe, 0x3, 0x0, 0x2, 0xd9, 0x2, 0x6, 0x0, 0x3, 0x9, 0xfff, 0x8a0, 0x6, 0x8001, 0x33b5, 0x1, 0xfffffffc, 0x0, 0x9, 0xb, 0xcc, 0x4, 0x80, 0x401, 0x5, 0x5, 0xfffffffd, 0x8, 0xb, 0x3, 0xffff8001, 0x6, 0x3, 0x80000000, 0x1, 0xa, 0x7, 0x8, 0x5, 0x3, 0x1, 0x7fe, 0x7fff, 0x10000, 0x2, 0x8], [0x2, 0x1, 0x3, 0x7, 0x9, 0x6, 0x5, 0x4, 0x9, 0x7, 0x5, 0xdd5a, 0x6, 0x5, 0x7, 0x8, 0x5, 0xcc, 0xbc1, 0x80000, 0x0, 0x5e81339d, 0xffffc256, 0xb, 0x80000001, 0x0, 0x0, 0x4, 0x4, 0x7, 0x8, 0x10d, 0x1, 0x5, 0x5, 0xfffffb66, 0xfb5, 0x2, 0x0, 0x7, 0x2, 0x8000, 0x7fff, 0x1, 0x9425, 0x4, 0x6f, 0x80b, 0x1, 0x1, 0x525ba681, 0x4f74, 0x7, 0x1, 0x1, 0xfffffffd, 0x100, 0x6, 0x10000, 0x1306, 0x8b, 0x10000, 0xfe4, 0x3ff], [0x2, 0x40, 0x200, 0xfffffff9, 0x7aa, 0x10, 0x80, 0x8001, 0x5, 0x0, 0x9, 0x8, 0x7fffffff, 0x1, 0x1, 0x4, 0x8, 0xa9, 0x7, 0x49, 0x6, 0x4, 0x5, 0xa3, 0x40003, 0x2, 0x0, 0x3, 0x4c, 0x3, 0x5, 0x4, 0xd21e, 0x9, 0x12, 0x0, 0x2, 0xfff, 0x926, 0x800100, 0x7c83, 0xd, 0x1, 0x4, 0xf, 0x81, 0x47, 0x7, 0x0, 0x11, 0x2, 0xffd, 0x7, 0x7, 0x7ffd, 0x7ff, 0x10, 0x9, 0x10001, 0x8000001, 0x10001, 0x6, 0x71c], [0x81, 0x3, 0x10, 0x4e26, 0x3, 0x7, 0xfffffff3, 0x497, 0x4, 0x1, 0x3, 0x5, 0x56, 0xc28, 0x9, 0x5, 0x5, 0xa, 0x79a, 0x4, 0x9, 0x6, 0xc41f, 0x5, 0x8b6, 0xffffffff, 0x0, 0x0, 0x6a, 0x9, 0x0, 0x0, 0x1000, 0x10, 0xd, 0x6, 0x8000, 0x53, 0x78d, 0x4, 0x1, 0x9, 0xfffffff8, 0x9, 0x7, 0x7, 0x101, 0xa, 0x7, 0x4, 0x0, 0xb, 0x400400, 0x8, 0x5141, 0x8, 0x7, 0x9, 0x8, 0x0, 0x1, 0x8001, 0xfffffff7, 0x5]}, 0x45c)
pipe(&(0x7f0000000080))

399.238939ms ago: executing program 4 (id=6908):
r0 = syz_io_uring_setup(0xdaa, &(0x7f0000000380)={0x0, 0x0, 0x13291, 0x0, 0x2000}, &(0x7f0000000100), &(0x7f0000000000))
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x7, @ipv4={'\x00', '\xff\xff', @local}, 0x1}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x2, &(0x7f0000000080)=@gcm_256={{0x304}, "491e8f6fda908499", "d656798feb353f99cb53000fac69957c56001000000000000020000000001200", "94444681", '\x00\t\x00\x00\x00YZ;'}, 0x38)
shutdown(r1, 0x1)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x4000000086a82, 0x0)
r3 = dup(r2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r3, 0x3554000)
io_setup(0x400e, &(0x7f0000000600)=<r4=>0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0x3, 0x1)
syz_clone3(&(0x7f0000000080)={0x21800000, &(0x7f0000000040)=<r5=>0xffffffffffffffff, 0x0, 0x0, {0x27}, 0x0, 0x0, 0x0, 0x0}, 0x58)
io_submit(r4, 0x1, &(0x7f0000001300)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x5, 0x6, r5, 0x0}])
syz_emit_ethernet(0x3e, &(0x7f0000000140)={@local, @multicast, @void, {@ipv4={0x800, @tcp={{0x7, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local, {[@rr={0x7, 0x3, 0xe0}, @generic={0x7, 0x2}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x6, 0x5}}}}}}, 0x0)
io_uring_enter(r0, 0x1, 0xffffffff, 0x1, 0x0, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
modify_ldt$write(0x1, &(0x7f0000000000)={0x4d, 0x20001000, 0x400, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1}, 0x10)
syz_clone3(&(0x7f000000c340)={0xa002100, 0x0, 0x0, 0x0, {0x38}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@ipv4_delroute={0x2c, 0x19, 0x901, 0x0, 0x0, {0x2, 0x18, 0x0, 0x0, 0xfe, 0x0, 0xfd, 0x1, 0x500}, [@RTA_DST={0x8, 0x1, @dev}, @RTA_PRIORITY={0x8, 0x6, 0xc}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000000}, 0x40)

398.824117ms ago: executing program 2 (id=6909):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0x51)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x8)
socket$packet(0x11, 0x2, 0x300)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000100)='syzkaller\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x40f00, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0x8, 0x0, 0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_OPENAT={0x12, 0x81, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000340)='./file0\x00', 0x51, 0x30000, 0x23456})
io_uring_enter(0xffffffffffffffff, 0x4e0d, 0x217, 0xa5, 0x0, 0x32)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x2, 0x16, &(0x7f0000001600)=ANY=[@ANYBLOB="61128c000000000061134c0000000000bf200000000000002600020007ffffffbd0310000000000095002000000000006916000000000000bf6700000000000004070000b964b01a4607feff00200000540700000ee61e00bf150000000000000f5700000000000065070000d23700002c030000000000001f75000000000000bf54000000000000070000000400f9ffad430100000000007c000000000000000500000000000000950000000000000032ed3c5be95e5db67754bb12dc8c4ed68ecf264e0f84f9f17d3c30e3c7bdd2d17f2f175455000078af6d71d79a5e12814cb1d8a5d4601d295c45a6a0b9bdb7dd390700000500000000f18c30907d7bee45a0100000fe9de56c9d05000000c6c60bef0d742a81762bab8395fa64810b5b40d893ea8fe0185473d51b546cac3f1d5af65727546e7c955ccefa1f6ab689ffffff7f63ede202fa4e0a2127b8b83c71a51445dc8dfd13ff15f852a39e5b2ab7bcb8f512036a5ba6d04ae76002d4519af619e3cca4d69e0dee5eb106774a8f3e6916fcecc8158f0200000000c8fb735fd552bdc268694aeb0743e326c819b6cf5c8ac86f8a297dff0445a13d0045fb3cda30a673a6037ed8c85f21ec2c081bdce431e56723888fb126a19bc1172b84b3ebe174aba210d739a018f9bbec63222d20cecac4d03723f1c921b5bbf7949632cacfdd32b3a6aa57f1ad2e99e0e67a993716dbf580469f0f53acbb400001e3738270b315d362ed834f2af97787f696649a462e7e090000000000000045eac1f2014f720e83b7838e3eede14308d582685e1becd6f35154bcb4000000000000000000000000000000bc3af2b170ad3e2b26539cebca8f4ddc211bc3ccf0bd9d42ca019dd5d022cf74686e9fbe2562979eaed840a7afaab43176e65ec1118d46d1e827f3472f4445d353887a5ad103649afa1769080584f800031e03a651bb04000000ab04871bc47287cd31cc43ea0ffb567b4040c1458d0320ce7d0000413a0000000000000000005f37983f84e98a523d80bd56a57fa82b82f639601ae899a559944cb9a62a29ab028acfc1cb26a0f6a5480a55d624a0c544ba0dc828c22fe30000aa391598000000437d57fcf8295f63a70837f5cd4e5e77964522dc7ca3aa3476b7f2d851d27fd4de6eabb43e0799dc8d9fb7dc6c523ffbd74a6a40e4acb1ac872ade9d1f2ab779b8dbe843aeeda0426c767c00327b8c95b2bb6ddb55117669d9598c0f3598073f3a921c76beceff7e4fbf909a2cabf5b8ea5011db9020823b83abe54346c7af0a99fa077ffe7000feb9e44023a1749eb1d0d572b77d6e0d0fcd74031c8ef2629f5ecff4626746d6abe98a255e92c3c4f79bfcd0d91741380000cfeb73dec68ed56b5d3dfdf0cb8b71ad79000000000000000000000000000000dd434a25e95d0ec29d3adaccf89d0888031ecdfdb4dfbe444673be099ece7e4009c76c7108ef0a7e59fd6d906fbc3c9b412e0478cfee4485f423c63f49db43833c92eeeb647cebd4d7a93a17bcbb6bae5ff876375d4fe39cc2d292691672cc18ca372104ceb83a35ecedd97fc191d8f64d2b1d60c6d12911aada66c26aa4802c3514c3d92ec905000000b13f4a2575fbe943a6c40000000000000000000000000000028026b80c3899543223a6079ee96198b9a326db3be3a48af415ca28ca68c502550044ed8e29af8d763ef9b1f31befcad2ce5394601c7cdc233bff7f0000000000009fb3ad650f77e339768924dfdbeead13b88371154d743544a6091ec93e0d3fd5b4dc42911c1ba322fd4d6fbf19e617d51f964727bfd5cc5ba15370f6e1141d2271eded0b15e4316a1e4623272beb249a0928c417720be14c898f397411c88a7bcf3df46ab3efe7cd5e160c2afd3cc945f75011a102d952c7ad17a58d9be691c334ea35bae71e76e160cc2260bd028162917807ce89e11b5f261052ee0dde18efa1d802af2b7bcf6f8af41933cea0d0343261bccf64ca1c81045153eafbefdb91fbdff9ee3307d4a1837963b2dc2a3698d90e7915b098f19392e792adaea86052f4e948184001b6494e906925a092483adc7e9c8f7a29d226763c100aecae7f00619c36bceb9fb6dd7e55487d8485e498fdfc377fd3d266d21d46ab2f6b2ce22cd0aebba9b0ffbfe8ec3143c3734967c90b16ebbeeae1ce2baaae05aed6bf0f40c8a323f9235dc99698bd0b800067a901a79daada03cc77e74feb98b1586946b452764ff917a8ecc10e529c5bea49cad70e22df522c2803b6ef65df70223c6e22c3433e322d8dbd6e9b040065a9d6b3d5ae276cffe935d559bea88e1aa36b4e6c19e78457904297e77370e013b705a96548d47c609a93c45f4d1382b39c05dcc07d5b49ad75ddb3ce5b5b9416e03995da04647aa5e6fc1a6f5d663380967ccef9de49a90ced031335e3219ebd9d06c257a50497ec523f5ff7361261ccfe239d603364a42e2e81fc068fcbb9792b673827fe7018a988fbce55bb74cdb327ced4b77b8743fb3cb72cc280b9f62e4f92f46a19600b802cba88b7d0a938d9e0e6cfe5d66b874c9a0c6c04b96360d6f499d004179e5b6025c0e1050faec7ecd9de190a975db2f8c06a551236278c4766d7e22e3b85168c9851de6266c791252f919b4f8b257b5a786734e5142e4666c67aef5b7b2f88c6640995434aa8636993089c73f196c54ae829ad4307132655b075ae534fa7f1ea9a17e62357b0bd2bd1d62d34bfc1364640250136729ba4f763ff25c33e8acc806611792add8254e705fefd2a44d5b15e3b36f6b75c97c9c04c511d8cf9e24c61c8284a913a381cb1a5628878040000000000000017b68afd95d4abf7920de9ebe1c89661f4adc3d83d72b1b778e30c2bf2efbbcd054cf51f4205ebf9a98a0d9f18135cb1d8d567c3436fa697b72c3b0200000000000079c0b3339debc78352b2e65299223d7ef2bd540e78167b3ac92a4c4f826f6d0e5c4ebf4f7a70c03e2f5ddbebf168586360c3663531eb5995d228f011a10ffc8b17d716b0c528dab6d0c4fe2ee402348104bc5d4012babedee898c6d3e1017be2e9bc759d3ab4d615f5000000000000000000000000000000000000000000007fff0000000000e693e314adf7dc9f517d04f1e6ca367d30d31d3647c6059db6e1e9529eb1623ef99e2d9ac2ab4872f8e784b07a31110bef6d000000a6f9e89e6d50ee06ce716f94da60f1f22d9669560d296287c13c92070000ee7553eb2df17839542fa88d09f000e88a90cf4406b9000000000000000000000000f441d6a6f516c235c6f5863e7f454ee0e16b9aa2593eb31fa3836703e7765aaeb77a8770e518efaa6d3dd85e03b3b133eb749057cea9af75a0e6f633532f2891b8e263cb6eecea691842827bc7c8c0130187081c8d320642389f5f0c42dba0ff68e84d7b130906f17f6aa075a257310f2d92cb1d1e16468949f5675262ee318e735930b01d8f586e34537bcff7d6196f494cdcf3a712078d745db0f5687a78ee6d000b3d171a0f08299b52d207f32e9da311ca090000003a42732808515eec574f892622c5be497fc3d9ca122d7c18b9e54637812c8debc61f0e42d838e44a819b74bce1a56108bb0fde97a02475920532309c55b2c9ae9f281391ec5cc72a5e94cca1cbf1ff01000000000000bdb537a0c52bd45a9f966c25616cec30c3ea3246cb8e6aac7cf273638e6656a3e4ccadc348f0172028c99cc5f6d5c6d09ed65aa54549e73c28b7c8ad06ad3c5e3c27eec0eff1a6c84f1189919eefcee807fc081e004ffb7d3104af00ac92f1080211c4bee74381a0e31021918f27863fdbafb50f70857d52a1f7df51935a80b1980a4778d35f183ea517f55a98095305701ab3f3ae43f06e91bc7d85e3800b46926944fba9805a985e63e53a62232fcd3f01dbe1728f300e247a7ebe344f9749818ff3961b2a42664ccd680a90bbb6ab400e286acc8f9febef64594777f848ed1cf980a3da2f0f7745760a05887d0c28060d613dd6539d392fc21fee0b5131609664b821d7a994e6c5965a4fa1ec1790c54e54586907dcc5e8bac16e79da9c2444420900000000000000f888a94365b99b72796fca1b922fc9aefaf1546c17cbb1d2d2fd12cb1a49cad501a3ca218c595b667b634606c57987ebfb0783a4948e4561d5cda158fe74453ff4a837beeedba483842c57d6005b544b4f80003386edfd3d4a88a667bd41eefe0d808abed08a29e6bc370a80cc0366fb4080bfbaaa946fd47ab662c794846e403950bbc3a48bb276cbb08a8eab145c06221ef16a238e3d50ad18aea9a2cec97d3c2d0569caabe2bffe02506bc9cb7294c5d020536dd5e7a6351642112df3b55d0215aaec7e45598995e79699e47567e353e68b03f82be860b188554b734e1192f9c1a867b815ef52cdc3307c0cc9be05a40fde69c350e59f11f1d26a4d04d8c8b2c4a4d23ec931d14bc7807db773a614b670acf46f83f7c65a0f8d43c5f64705f0d27c46d4b686e867e9b0be76a7978a8f962bb5a070df97f2bf7612115cfe5ebdc7ad0bc5a5f3ace25347d0e5c347279d55aa67a967380000000000000000000000000000000000000000000000ed0942d980c754c6c69ef65c375ad018824f78b260d5f51bc3feba504408a8c8141d84f3f417603b5081680f346ff0ffbe4ae19e936511966965ce268b6345a0001c0f26a32e0a999fc869292e939dcf89b9bfd794f9c12d41959a00688cca43015a9eec58f647796adea520cd2abeb0b55c22949d10e5a05fee4543fdc1e02554a55b5fef2427a6e5708edc38fac53c2f961945a3f83cdf01979939b49bc6b1aef8c733401bbe473de8d64efbe0d123739f387d1c0d9e74f2175c174ada1678c7db79492e8dd0f34e2ccf419cf7f14ffa408b50a52685b36aed14aa22ad928191d5a2697646edc52a1c0c5d720ae690add2b34aed161f51cc1cb424f76098e1e1921e5a405f9d298a8461f2da30e47b7c6ed7c95c84c745f58723e4cddffae3b53b5b947f9435e589f9ae55b30ecd3827b2de5df31976870823da8058c2538c04e397f3d0ef90c11c74da984fa558697ecb57224ce8fa6f79aadbd7dbf3678e74d790bc2ee72769a3ada1dd504f8e4133ce1effd446bc9a2f139e65cc4bd83912af3122352506c7c2191b3705116b2f4fc20d4e93882bdd6ccea97f3a08d3565b0000000000000000000000000000d35fb97c2d7a9374294dcec3da3df9a13c4fc63b00426682534d894caee0b963a3"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffe50}, 0x48)
r5 = syz_open_dev$sndctrl(&(0x7f0000000440), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r5, 0x40045532, &(0x7f0000000040))
openat$audio(0xffffffffffffff9c, &(0x7f0000000240), 0x141802, 0x0)
syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2c65)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/slabinfo\x00', 0x0, 0x0)
preadv(r6, &(0x7f0000004ec0)=[{&(0x7f0000004bc0)=""/68, 0x44}], 0x1, 0x8000, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)

0s ago: executing program 4 (id=6910):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
fanotify_init(0x202, 0x0)
r1 = syz_io_uring_setup(0x1e1e, &(0x7f0000000200)={0x0, 0x86f7, 0x10100}, &(0x7f0000002000)=<r2=>0x0, &(0x7f0000000000)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x20})
io_uring_enter(r1, 0x48e9, 0x0, 0x2, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
r7 = dup(r6)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000"], 0x48)
read$qrtrtun(0xffffffffffffffff, &(0x7f00000004c0)=""/57, 0x39)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r7, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x2, @dev={0xfe, 0x80, '\x00', 0x30}, 0xb}, @in={0x2, 0x4e22, @local}], 0x2c)
openat$vim2m(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r9 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r9, 0x29, 0x20, &(0x7f0000000280)={@mcast2, 0x2, 0x1, 0x2, 0xa, 0xc53e, 0x8}, 0x20)
r10 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
read(r10, &(0x7f0000000040)=""/138, 0x8a)
socket$nl_netfilter(0x10, 0x3, 0xc)
ftruncate(r8, 0x6)

kernel console output (not intermixed with test programs):

1485.616204][T28175] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1485.616214][T28175] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1485.616238][T28175]  </TASK>
[ 1485.616248][T28175] imon:vfd_write: send packet #0 failed
[ 1485.666743][T14034] rc_core: IR keymap rc-imon-pad not found
[ 1485.699900][   T34] usb 6-1: USB disconnect, device number 40
[ 1485.709218][T14034] Registered IR keymap rc-empty
[ 1485.711725][T14034] imon 5-1:155.0: Looks like you're trying to use an IR protocol this device does not support
[ 1485.715983][T14034] imon 5-1:155.0: Unsupported IR protocol specified, overriding to iMON IR protocol
[ 1485.808572][T14034] rc rc1: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:155.0/rc/rc1
[ 1485.814580][T14034] input: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:155.0/rc/rc1/input61
[ 1485.822421][T14034] imon 5-1:155.0: iMON device (15c2:ffdc, intf0) on usb<5:30> initialized
[ 1485.885906][T28192] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6240'.
[ 1486.051041][T28179] imon:send_packet: task interrupted
[ 1486.053444][T28179] imon:send_packet: packet tx failed (-512)
[ 1486.062853][T28179] imon:vfd_write: send packet #0 failed
[ 1486.065834][T28179] imon:send_packet: packet tx failed (-32)
[ 1486.088710][T28179] imon:vfd_write: send packet #0 failed
[ 1486.094650][T14034] usb 5-1: USB disconnect, device number 30
[ 1486.334669][T28203] validate_nla: 41 callbacks suppressed
[ 1486.334689][T28203] netlink: 'syz.1.6243': attribute type 1 has an invalid length.
[ 1486.349444][T28203] 8021q: adding VLAN 0 to HW filter on device bond2
[ 1487.095053][   T34] libceph: connect (1)[c::]:6789 error -101
[ 1487.097916][   T34] libceph: mon0 (1)[c::]:6789 connect error
[ 1487.357080][   T34] libceph: connect (1)[c::]:6789 error -101
[ 1487.359681][   T34] libceph: mon0 (1)[c::]:6789 connect error
[ 1487.463918][T28231] netlink: 72 bytes leftover after parsing attributes in process `syz.1.6249'.
[ 1487.474264][T28231] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6249'.
[ 1487.876940][   T34] libceph: connect (1)[c::]:6789 error -101
[ 1487.879089][   T34] libceph: mon0 (1)[c::]:6789 connect error
[ 1487.920297][T28217] ceph: No mds server is up or the cluster is laggy
[ 1488.796335][T28262] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6257'.
[ 1488.799553][T28262] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6257'.
[ 1489.033876][T28265] netlink: 72 bytes leftover after parsing attributes in process `syz.0.6258'.
[ 1489.046163][T28265] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6258'.
[ 1489.225999][T28269] wlan1 speed is unknown, defaulting to 1000
[ 1489.535266][T28270] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(12)
[ 1489.538168][T28270] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1489.541713][T28270] vhci_hcd vhci_hcd.0: Device attached
[ 1489.644462][T28279] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1489.777190][   T34] usb 37-1: new high-speed USB device number 3 using vhci_hcd
[ 1489.876373][T28292] netlink: 72 bytes leftover after parsing attributes in process `syz.3.6268'.
[ 1489.885075][T28292] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6268'.
[ 1490.061168][T28272] vhci_hcd: connection reset by peer
[ 1490.063297][  T217] vhci_hcd vhci_hcd.0: stop threads
[ 1490.065606][  T217] vhci_hcd vhci_hcd.0: release socket
[ 1490.067602][  T217] vhci_hcd vhci_hcd.0: disconnect device
[ 1490.286696][T28250] Bluetooth: hci4: command 0x0419 tx timeout
[ 1490.524255][T28302] syzkaller0: entered promiscuous mode
[ 1490.526876][T28302] syzkaller0: entered allmulticast mode
[ 1490.531057][T28302] FAULT_INJECTION: forcing a failure.
[ 1490.531057][T28302] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1490.540173][T28302] CPU: 2 UID: 0 PID: 28302 Comm: syz.1.6271 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1490.540202][T28302] Tainted: [L]=SOFTLOCKUP
[ 1490.540209][T28302] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1490.540221][T28302] Call Trace:
[ 1490.540228][T28302]  <TASK>
[ 1490.540235][T28302]  dump_stack_lvl+0x100/0x190
[ 1490.540269][T28302]  should_fail_ex.cold+0x5/0xa
[ 1490.540292][T28302]  _copy_from_user+0x2e/0xd0
[ 1490.540315][T28302]  move_addr_to_kernel+0x65/0x170
[ 1490.540338][T28302]  get_compat_msghdr+0x3ee/0x4b0
[ 1490.540366][T28302]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 1490.540401][T28302]  ___sys_sendmsg+0x1b6/0x1e0
[ 1490.540424][T28302]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1490.540471][T28302]  __sys_sendmsg+0x170/0x220
[ 1490.540497][T28302]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1490.540528][T28302]  ? __pfx_ksys_write+0x10/0x10
[ 1490.540554][T28302]  __do_fast_syscall_32+0xe3/0x8c0
[ 1490.540584][T28302]  do_fast_syscall_32+0x32/0x70
[ 1490.540606][T28302]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1490.540626][T28302] RIP: 0023:0xf7f87f6c
[ 1490.540640][T28302] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 1490.540661][T28302] RSP: 002b:00000000f544650c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[ 1490.540678][T28302] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000080000280
[ 1490.540689][T28302] RDX: 0000000000004005 RSI: 0000000000000000 RDI: 0000000000000000
[ 1490.540699][T28302] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1490.540709][T28302] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 1490.540720][T28302] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1490.540744][T28302]  </TASK>
[ 1490.744489][T28312] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6275'.
[ 1490.752389][T28312] syz_tun: left allmulticast mode
[ 1490.754172][T28312] syz_tun: left promiscuous mode
[ 1490.755965][T28312] bridge0: port 3(syz_tun) entered disabled state
[ 1490.772736][T28312] bridge_slave_1: left allmulticast mode
[ 1490.774616][T28312] bridge_slave_1: left promiscuous mode
[ 1490.776672][T28312] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1490.780524][T28312] bridge_slave_0: left allmulticast mode
[ 1490.782421][T28312] bridge_slave_0: left promiscuous mode
[ 1490.784343][T28312] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1491.329332][T28337] program syz.2.6282 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1491.896267][T28332] cgroup: fork rejected by pids controller in /syz3
[ 1492.366812][T27624] Bluetooth: hci4: command 0x0419 tx timeout
[ 1492.676461][T28376] __nla_validate_parse: 2 callbacks suppressed
[ 1492.676473][T28376] netlink: 72 bytes leftover after parsing attributes in process `syz.0.6287'.
[ 1492.682934][T12735] usb 6-1: new high-speed USB device number 41 using dummy_hcd
[ 1492.690978][T28376] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6287'.
[ 1492.791427][T28380] FAULT_INJECTION: forcing a failure.
[ 1492.791427][T28380] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1492.796949][T28380] CPU: 2 UID: 0 PID: 28380 Comm: syz.2.6289 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1492.796975][T28380] Tainted: [L]=SOFTLOCKUP
[ 1492.796982][T28380] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1492.796993][T28380] Call Trace:
[ 1492.797000][T28380]  <TASK>
[ 1492.797007][T28380]  dump_stack_lvl+0x100/0x190
[ 1492.797035][T28380]  should_fail_ex.cold+0x5/0xa
[ 1492.797055][T28380]  copy_fpstate_to_sigframe+0x861/0xb20
[ 1492.797082][T28380]  ? __pfx_copy_fpstate_to_sigframe+0x10/0x10
[ 1492.797109][T28380]  ? rcu_is_watching+0x12/0xc0
[ 1492.797132][T28380]  ? x86_task_fpu+0x5f/0x90
[ 1492.797152][T28380]  get_sigframe+0x3fb/0x940
[ 1492.797177][T28380]  ? __pfx_get_sigframe+0x10/0x10
[ 1492.797199][T28380]  ? _raw_spin_unlock_irq+0x29/0x50
[ 1492.797219][T28380]  ? siginfo_layout+0x156/0x290
[ 1492.797248][T28380]  ia32_setup_rt_frame+0xed/0xb00
[ 1492.797281][T28380]  ? __pfx_ia32_setup_rt_frame+0x10/0x10
[ 1492.797307][T28380]  ? __pfx_vfs_read+0x10/0x10
[ 1492.797330][T28380]  ? find_held_lock+0x2b/0x80
[ 1492.797345][T28380]  ? __fget_files+0x215/0x3d0
[ 1492.797362][T28380]  arch_do_signal_or_restart+0x43f/0x770
[ 1492.797382][T28380]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 1492.797409][T28380]  ? ksys_read+0x1ac/0x250
[ 1492.797429][T28380]  exit_to_user_mode_loop+0x86/0x4a0
[ 1492.797452][T28380]  do_int80_emulation+0x4b8/0x6b0
[ 1492.797478][T28380]  asm_int80_emulation+0x1a/0x20
[ 1492.797497][T28380] RIP: 0023:0xf7155ca9
[ 1492.797510][T28380] Code: 90 55 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 <cd> 80 5b 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90
[ 1492.797552][T28380] RSP: 002b:00000000f541642c EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[ 1492.797567][T28380] RAX: 0000000000000003 RBX: 0000000000000004 RCX: 0000000080004080
[ 1492.797576][T28380] RDX: 0000000000002000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1492.797585][T28380] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1492.797595][T28380] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1492.797605][T28380] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1492.797628][T28380]  </TASK>
[ 1492.916851][T12735] usb 6-1: Using ep0 maxpacket: 32
[ 1492.921657][T12735] usb 6-1: config 155 has an invalid descriptor of length 0, skipping remainder of the config
[ 1492.926277][T12735] usb 6-1: config 155 interface 0 altsetting 0 has an endpoint descriptor with address 0xE2, changing to 0x82
[ 1492.933030][T12735] usb 6-1: config 155 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1492.937922][T12735] usb 6-1: config 155 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 11
[ 1492.952433][T12735] usb 6-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30
[ 1493.011334][T28388] 9pnet_virtio: no channels available for device syz
[ 1493.017848][T28388] overlay: Unknown parameter '/'
[ 1493.290084][T28393] netlink: 'syz.3.6292': attribute type 4 has an invalid length.
[ 1493.389142][T28393] wlan1 speed is unknown, defaulting to 1000
[ 1493.856753][T12735] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1493.859559][T12735] usb 6-1: Product: syz
[ 1493.860942][T12735] usb 6-1: Manufacturer: syz
[ 1493.862572][T12735] usb 6-1: SerialNumber: syz
[ 1493.892862][    C2] imon 6-1:155.0: imon usb_rx_callback_intf0: status(-71)
[ 1493.896381][T12735] input: iMON Panel, Knob and Mouse(15c2:ffdc) as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:155.0/input/input62
[ 1494.546753][T12735] imon 6-1:155.0: Unknown 0xffdc device, defaulting to VFD and iMON IR
[ 1494.550349][T12735]  (id 0x00)
[ 1494.596756][T12735] rc_core: IR keymap rc-imon-pad not found
[ 1494.599535][T12735] Registered IR keymap rc-empty
[ 1494.601796][T12735] imon 6-1:155.0: Looks like you're trying to use an IR protocol this device does not support
[ 1494.605775][T12735] imon 6-1:155.0: Unsupported IR protocol specified, overriding to iMON IR protocol
[ 1494.648992][T28399] netem: change failed
[ 1494.651523][T28399] FAULT_INJECTION: forcing a failure.
[ 1494.651523][T28399] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1494.655762][T28399] CPU: 0 UID: 0 PID: 28399 Comm: syz.2.6293 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1494.655779][T28399] Tainted: [L]=SOFTLOCKUP
[ 1494.655783][T28399] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1494.655790][T28399] Call Trace:
[ 1494.655794][T28399]  <TASK>
[ 1494.655799][T28399]  dump_stack_lvl+0x100/0x190
[ 1494.655820][T28399]  should_fail_ex.cold+0x5/0xa
[ 1494.655833][T28399]  _copy_from_user+0x2e/0xd0
[ 1494.655848][T28399]  move_addr_to_kernel+0x65/0x170
[ 1494.655861][T28399]  get_compat_msghdr+0x3ee/0x4b0
[ 1494.655877][T28399]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 1494.655899][T28399]  ___sys_sendmsg+0x1b6/0x1e0
[ 1494.655912][T28399]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1494.655944][T28399]  __sys_sendmsg+0x170/0x220
[ 1494.655960][T28399]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1494.655980][T28399]  ? __pfx_ksys_write+0x10/0x10
[ 1494.655993][T28399]  __do_fast_syscall_32+0xe3/0x8c0
[ 1494.656016][T28399]  do_fast_syscall_32+0x32/0x70
[ 1494.656032][T28399]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1494.656046][T28399] RIP: 0023:0xf7f52f6c
[ 1494.656056][T28399] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 1494.656067][T28399] RSP: 002b:00000000f541650c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[ 1494.656077][T28399] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800000c0
[ 1494.656084][T28399] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1494.656090][T28399] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1494.656096][T28399] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 1494.656105][T28399] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1494.656118][T28399]  </TASK>
[ 1494.687255][T12735] rc rc0: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:155.0/rc/rc0
[ 1494.709659][T28401] netlink: 'syz.0.6294': attribute type 1 has an invalid length.
[ 1494.712447][T12735] input: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:155.0/rc/rc0/input63
[ 1494.729686][T28401] 8021q: adding VLAN 0 to HW filter on device bond3
[ 1494.734080][T12735] imon 6-1:155.0: iMON device (15c2:ffdc, intf0) on usb<6:41> initialized
[ 1494.764968][T28401] bond3: entered allmulticast mode
[ 1494.789168][T28401] bond3: (slave ip6gretap1): making interface the new active one
[ 1494.791709][T28401] ip6gretap1: entered allmulticast mode
[ 1494.793960][T28401] bond3: (slave ip6gretap1): Enslaving as an active interface with an up link
[ 1494.798966][   T40] kauditd_printk_skb: 45 callbacks suppressed
[ 1494.798976][   T40] audit: type=1326 audit(1773730001.743:16068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28403 comm="syz.2.6295" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1494.808202][   T40] audit: type=1326 audit(1773730001.743:16069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28403 comm="syz.2.6295" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1494.814933][   T40] audit: type=1326 audit(1773730001.743:16070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28403 comm="syz.2.6295" exe="/syz-executor" sig=0 arch=40000003 syscall=343 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1494.822118][   T40] audit: type=1326 audit(1773730257.752:16071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28403 comm="syz.2.6295" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1494.829245][   T40] audit: type=1326 audit(1773730257.752:16072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28403 comm="syz.2.6295" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1494.836100][   T40] audit: type=1326 audit(1773730257.752:16073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28403 comm="syz.2.6295" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1494.843414][   T40] audit: type=1326 audit(1773730257.752:16074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28403 comm="syz.2.6295" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1494.850457][   T40] audit: type=1326 audit(1773730257.752:16075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28403 comm="syz.2.6295" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1494.851500][T28374] overlayfs: upper fs does not support RENAME_WHITEOUT.
[ 1494.857591][   T40] audit: type=1326 audit(1773730257.752:16076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28403 comm="syz.2.6295" exe="/syz-executor" sig=0 arch=40000003 syscall=369 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1494.860628][T28374] overlayfs: failed to set xattr on upper
[ 1494.867472][   T40] audit: type=1326 audit(1773730257.752:16077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28403 comm="syz.2.6295" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1494.881204][T28374] overlayfs: ...falling back to redirect_dir=nofollow.
[ 1494.883605][T28374] overlayfs: ...falling back to metacopy=off.
[ 1494.885655][T28374] overlayfs: ...falling back to index=off.
[ 1494.887746][T28374] overlayfs: ...falling back to uuid=null.
[ 1494.906686][   T34] vhci_hcd vhci_hcd.0: vhci_device speed not set
[ 1494.957881][T28374] imon:send_packet: task interrupted
[ 1494.959987][T28374] imon:send_packet: packet tx failed (-512)
[ 1494.962578][T28374] imon:vfd_write: send packet #0 failed
[ 1494.965374][T28374] imon:send_packet: packet tx failed (-32)
[ 1494.986549][T28374] imon:vfd_write: send packet #0 failed
[ 1494.990353][ T1324] usb 6-1: USB disconnect, device number 41
[ 1495.195592][T28407] netlink: 72 bytes leftover after parsing attributes in process `syz.0.6296'.
[ 1495.203224][T28407] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6296'.
[ 1495.392469][T28410] program syz.0.6297 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1495.684779][T28411] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1495.687589][T28411] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1495.693347][T28411] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1495.695864][T28411] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1496.006341][T28416] random: crng reseeded on system resumption
[ 1496.550934][T28421] netlink: 'syz.3.6300': attribute type 1 has an invalid length.
[ 1496.597487][T28421] FAULT_INJECTION: forcing a failure.
[ 1496.597487][T28421] name failslab, interval 1, probability 0, space 0, times 0
[ 1496.605149][T28421] CPU: 1 UID: 0 PID: 28421 Comm: syz.3.6300 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1496.605177][T28421] Tainted: [L]=SOFTLOCKUP
[ 1496.605183][T28421] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1496.605192][T28421] Call Trace:
[ 1496.605198][T28421]  <TASK>
[ 1496.605205][T28421]  dump_stack_lvl+0x100/0x190
[ 1496.605234][T28421]  should_fail_ex.cold+0x5/0xa
[ 1496.605254][T28421]  should_failslab+0xc2/0x120
[ 1496.605271][T28421]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[ 1496.605296][T28421]  ? __alloc_skb+0x140/0x710
[ 1496.605321][T28421]  __alloc_skb+0x140/0x710
[ 1496.605340][T28421]  ? __alloc_skb+0x5b7/0x710
[ 1496.605360][T28421]  ? __pfx___alloc_skb+0x10/0x10
[ 1496.605387][T28421]  netlink_alloc_large_skb+0x69/0x150
[ 1496.605413][T28421]  netlink_sendmsg+0x680/0xda0
[ 1496.605447][T28421]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1496.605474][T28421]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[ 1496.605525][T28421]  ____sys_sendmsg+0x9e1/0xb70
[ 1496.605542][T28421]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1496.605582][T28421]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1496.605611][T28421]  ___sys_sendmsg+0x190/0x1e0
[ 1496.605630][T28421]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1496.605671][T28421]  __sys_sendmsg+0x170/0x220
[ 1496.605700][T28421]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1496.605721][T28421]  ? __pfx_ksys_write+0x10/0x10
[ 1496.605735][T28421]  __do_fast_syscall_32+0xe3/0x8c0
[ 1496.605753][T28421]  do_fast_syscall_32+0x32/0x70
[ 1496.605769][T28421]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1496.605783][T28421] RIP: 0023:0xf704ef6c
[ 1496.605793][T28421] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 1496.605803][T28421] RSP: 002b:00000000f543d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[ 1496.605813][T28421] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000240
[ 1496.605820][T28421] RDX: 0000000000000884 RSI: 0000000000000000 RDI: 0000000000000000
[ 1496.605826][T28421] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1496.605832][T28421] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1496.605838][T28421] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1496.605852][T28421]  </TASK>
[ 1497.440644][T28439] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[ 1497.683122][T28442] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[ 1497.685850][T28442] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[ 1497.689256][T28442] vhci_hcd vhci_hcd.0: Device attached
[ 1497.716755][T28442] netlink: 'syz.2.6304': attribute type 1 has an invalid length.
[ 1497.756357][T28442] 8021q: adding VLAN 0 to HW filter on device bond2
[ 1497.788832][T28442] bond2: (slave geneve2): making interface the new active one
[ 1497.790002][T28429] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1497.793164][T28442] bond2: (slave geneve2): Enslaving as an active interface with an up link
[ 1497.935530][   T24] usb 41-1: new low-speed USB device number 3 using vhci_hcd
[ 1498.401418][T28443] vhci_hcd: connection reset by peer
[ 1498.404231][ T1230] vhci_hcd vhci_hcd.2: stop threads
[ 1498.407211][ T1230] vhci_hcd vhci_hcd.2: release socket
[ 1498.409888][ T1230] vhci_hcd vhci_hcd.2: disconnect device
[ 1498.826049][T28456] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6308'.
[ 1498.836456][T28456] bridge1: trying to set multicast query interval above maximum, setting to 8640000 (86400000ms)
[ 1498.840926][T28456] bridge1: trying to set multicast startup query interval above maximum, setting to 8640000 (86400000ms)
[ 1498.846341][T28456] bridge1: entered promiscuous mode
[ 1498.857983][T28456] netlink: 60 bytes leftover after parsing attributes in process `syz.0.6308'.
[ 1498.867166][T28456] syzkaller0: entered promiscuous mode
[ 1498.869588][T28456] syzkaller0: entered allmulticast mode
[ 1499.084682][T28250] Bluetooth: hci4: command 0x0419 tx timeout
[ 1499.219378][T28461] program syz.2.6309 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1499.814329][T28470] FAULT_INJECTION: forcing a failure.
[ 1499.814329][T28470] name failslab, interval 1, probability 0, space 0, times 0
[ 1499.819313][T28470] CPU: 1 UID: 0 PID: 28470 Comm: syz.0.6311 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1499.819343][T28470] Tainted: [L]=SOFTLOCKUP
[ 1499.819347][T28470] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1499.819354][T28470] Call Trace:
[ 1499.819358][T28470]  <TASK>
[ 1499.819363][T28470]  dump_stack_lvl+0x100/0x190
[ 1499.819383][T28470]  should_fail_ex.cold+0x5/0xa
[ 1499.819396][T28470]  should_failslab+0xc2/0x120
[ 1499.819408][T28470]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[ 1499.819425][T28470]  ? __alloc_skb+0x140/0x710
[ 1499.819442][T28470]  __alloc_skb+0x140/0x710
[ 1499.819456][T28470]  ? __alloc_skb+0x5b7/0x710
[ 1499.819469][T28470]  ? __pfx___alloc_skb+0x10/0x10
[ 1499.819487][T28470]  netlink_alloc_large_skb+0x69/0x150
[ 1499.819505][T28470]  netlink_sendmsg+0x680/0xda0
[ 1499.819524][T28470]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1499.819543][T28470]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[ 1499.819562][T28470]  ____sys_sendmsg+0x9e1/0xb70
[ 1499.819573][T28470]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1499.819590][T28470]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1499.819607][T28470]  ___sys_sendmsg+0x190/0x1e0
[ 1499.819620][T28470]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1499.819648][T28470]  __sys_sendmsg+0x170/0x220
[ 1499.819664][T28470]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1499.819684][T28470]  ? exit_to_user_mode_loop+0xdd/0x4a0
[ 1499.819701][T28470]  __do_fast_syscall_32+0xe3/0x8c0
[ 1499.819719][T28470]  do_fast_syscall_32+0x32/0x70
[ 1499.819735][T28470]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1499.819749][T28470] RIP: 0023:0xf7f46f6c
[ 1499.819759][T28470] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 1499.819769][T28470] RSP: 002b:00000000f53c450c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[ 1499.819780][T28470] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000200
[ 1499.819787][T28470] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1499.819793][T28470] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1499.819799][T28470] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 1499.819806][T28470] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1499.819819][T28470]  </TASK>
[ 1501.034837][   T40] kauditd_printk_skb: 5323 callbacks suppressed
[ 1501.034853][   T40] audit: type=1326 audit(1773730263.985:21401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28471 comm="syz.2.6313" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1501.063605][   T40] audit: type=1326 audit(1773730263.985:21402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28471 comm="syz.2.6313" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1501.074057][   T40] audit: type=1326 audit(1773730263.995:21403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28471 comm="syz.2.6313" exe="/syz-executor" sig=0 arch=40000003 syscall=343 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1501.083068][   T40] audit: type=1326 audit(1773730520.003:21404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28471 comm="syz.2.6313" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1501.095024][   T40] audit: type=1326 audit(1773730520.003:21405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28471 comm="syz.2.6313" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1501.104274][   T40] audit: type=1326 audit(1773730520.003:21406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28471 comm="syz.2.6313" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1501.113408][   T40] audit: type=1326 audit(1773730520.003:21407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28471 comm="syz.2.6313" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1501.122905][   T40] audit: type=1326 audit(1773730520.003:21408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28471 comm="syz.2.6313" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1501.132039][   T40] audit: type=1326 audit(1773730520.003:21409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28471 comm="syz.2.6313" exe="/syz-executor" sig=0 arch=40000003 syscall=369 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1501.141621][   T40] audit: type=1326 audit(1773730520.003:21410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28471 comm="syz.2.6313" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1501.163556][T28250] Bluetooth: hci4: command 0x0419 tx timeout
[ 1501.175593][T28467] random: crng reseeded on system resumption
[ 1502.448317][T28501] usb usb8: usbfs: process 28501 (syz.0.6320) did not claim interface 0 before use
[ 1502.699642][T28506] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6322'.
[ 1502.703660][T28506] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6322'.
[ 1503.028128][T28509] netlink: 'syz.2.6323': attribute type 1 has an invalid length.
[ 1503.076732][T28509] 8021q: adding VLAN 0 to HW filter on device bond3
[ 1503.092581][   T24] vhci_hcd vhci_hcd.2: vhci_device speed not set
[ 1503.118419][T28511] program syz.1.6321 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1503.422374][T27624] Bluetooth: hci4: command 0x0419 tx timeout
[ 1504.702478][T28528] futex_wake_op: syz.0.6327 tries to shift op by 32; fix this program
[ 1504.707005][T28528] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1504.714216][T28536] netlink: 32 bytes leftover after parsing attributes in process `syz.1.6330'.
[ 1504.816571][T28538] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1506.185960][T28563] program syz.0.6337 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1506.548537][   T40] kauditd_printk_skb: 132 callbacks suppressed
[ 1506.548579][   T40] audit: type=1326 audit(1773730525.496:21543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28567 comm="syz.3.6338" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x7ffc0000
[ 1506.558153][   T40] audit: type=1326 audit(1773730525.496:21544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28567 comm="syz.3.6338" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x7ffc0000
[ 1506.565296][   T40] audit: type=1326 audit(1773730525.496:21545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28567 comm="syz.3.6338" exe="/syz-executor" sig=0 arch=40000003 syscall=343 compat=1 ip=0xf704ef6c code=0x7ffc0000
[ 1506.572440][   T40] audit: type=1326 audit(1773730781.507:21546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28567 comm="syz.3.6338" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x7ffc0000
[ 1506.579621][   T40] audit: type=1326 audit(1773730781.507:21547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28567 comm="syz.3.6338" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x7ffc0000
[ 1506.586785][   T40] audit: type=1326 audit(1773730781.507:21548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28567 comm="syz.3.6338" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf704ef6c code=0x7ffc0000
[ 1506.591311][T28557] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1506.594112][   T40] audit: type=1326 audit(1773730781.507:21549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28567 comm="syz.3.6338" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x7ffc0000
[ 1506.630885][   T40] audit: type=1326 audit(1773730781.507:21550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28567 comm="syz.3.6338" exe="/syz-executor" sig=0 arch=40000003 syscall=369 compat=1 ip=0xf704ef6c code=0x7ffc0000
[ 1506.688872][   T40] audit: type=1326 audit(1773730781.507:21551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28567 comm="syz.3.6338" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x7ffc0000
[ 1506.697347][   T40] audit: type=1326 audit(1773730781.507:21552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28567 comm="syz.3.6338" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf704ef6c code=0x7ffc0000
[ 1507.470386][T27624] Bluetooth: hci4: command 0x0419 tx timeout
[ 1509.284924][T28588] netem: change failed
[ 1510.017097][T28603] program syz.3.6348 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1511.094407][T28594] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1511.156082][T28627] netlink: 'syz.2.6357': attribute type 1 has an invalid length.
[ 1511.175832][T28627] 8021q: adding VLAN 0 to HW filter on device bond4
[ 1511.312779][T28634] futex_wake_op: syz.0.6360 tries to shift op by 32; fix this program
[ 1511.316879][T28634] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1511.323783][T28634] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1511.378507][T28636] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1511.879351][T28658] 9pnet_virtio: no channels available for device syz
[ 1512.419468][T28652] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1512.600303][T28668] usb usb8: usbfs: process 28668 (syz.2.6369) did not claim interface 0 before use
[ 1512.678627][T28671] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6371'.
[ 1512.682142][T28671] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6371'.
[ 1512.690641][T28671] FAULT_INJECTION: forcing a failure.
[ 1512.690641][T28671] name failslab, interval 1, probability 0, space 0, times 0
[ 1512.694721][T28671] CPU: 3 UID: 0 PID: 28671 Comm: syz.1.6371 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1512.694739][T28671] Tainted: [L]=SOFTLOCKUP
[ 1512.694756][T28671] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1512.694763][T28671] Call Trace:
[ 1512.694768][T28671]  <TASK>
[ 1512.694772][T28671]  dump_stack_lvl+0x100/0x190
[ 1512.694792][T28671]  should_fail_ex.cold+0x5/0xa
[ 1512.694805][T28671]  should_failslab+0xc2/0x120
[ 1512.694817][T28671]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[ 1512.694834][T28671]  ? __alloc_skb+0x140/0x710
[ 1512.694851][T28671]  __alloc_skb+0x140/0x710
[ 1512.694864][T28671]  ? __alloc_skb+0x5b7/0x710
[ 1512.694878][T28671]  ? __pfx___alloc_skb+0x10/0x10
[ 1512.694897][T28671]  ? security_socket_getpeersec_dgram+0xe8/0x280
[ 1512.694911][T28671]  ? security_socket_getpeersec_dgram+0x6f/0x280
[ 1512.694926][T28671]  netlink_alloc_large_skb+0x69/0x150
[ 1512.694944][T28671]  netlink_sendmsg+0x680/0xda0
[ 1512.694963][T28671]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1512.694981][T28671]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[ 1512.695001][T28671]  ____sys_sendmsg+0x9e1/0xb70
[ 1512.695011][T28671]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1512.695028][T28671]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1512.695045][T28671]  ___sys_sendmsg+0x190/0x1e0
[ 1512.695058][T28671]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1512.695086][T28671]  __sys_sendmsg+0x170/0x220
[ 1512.695102][T28671]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1512.695121][T28671]  ? __pfx_ksys_write+0x10/0x10
[ 1512.695135][T28671]  __do_fast_syscall_32+0xe3/0x8c0
[ 1512.695153][T28671]  do_fast_syscall_32+0x32/0x70
[ 1512.695169][T28671]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1512.695184][T28671] RIP: 0023:0xf7f87f6c
[ 1512.695193][T28671] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 1512.695203][T28671] RSP: 002b:00000000f542550c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[ 1512.695213][T28671] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000800000c0
[ 1512.695220][T28671] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1512.695226][T28671] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1512.695232][T28671] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 1512.695238][T28671] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1512.695252][T28671]  </TASK>
[ 1512.830859][T28682] FAULT_INJECTION: forcing a failure.
[ 1512.830859][T28682] name failslab, interval 1, probability 0, space 0, times 0
[ 1512.834872][T28682] CPU: 0 UID: 0 PID: 28682 Comm: syz.3.6376 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1512.834893][T28682] Tainted: [L]=SOFTLOCKUP
[ 1512.834897][T28682] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1512.834903][T28682] Call Trace:
[ 1512.834907][T28682]  <TASK>
[ 1512.834912][T28682]  dump_stack_lvl+0x100/0x190
[ 1512.834932][T28682]  should_fail_ex.cold+0x5/0xa
[ 1512.834945][T28682]  ? tomoyo_encode2+0xfb/0x3c0
[ 1512.834957][T28682]  should_failslab+0xc2/0x120
[ 1512.834969][T28682]  __kmalloc_noprof+0xe0/0x850
[ 1512.834984][T28682]  ? d_absolute_path+0x136/0x1b0
[ 1512.835002][T28682]  tomoyo_encode2+0xfb/0x3c0
[ 1512.835017][T28682]  tomoyo_encode+0x29/0x50
[ 1512.835030][T28682]  tomoyo_realpath_from_path+0x18c/0x690
[ 1512.835047][T28682]  tomoyo_path_number_perm+0x23c/0x580
[ 1512.835059][T28682]  ? tomoyo_path_number_perm+0x22e/0x580
[ 1512.835071][T28682]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1512.835097][T28682]  ? find_held_lock+0x2b/0x80
[ 1512.835107][T28682]  ? hook_file_ioctl_common+0x146/0x410
[ 1512.835119][T28682]  ? __fget_files+0x215/0x3d0
[ 1512.835131][T28682]  ? __fget_files+0x21f/0x3d0
[ 1512.835143][T28682]  security_file_ioctl_compat+0xd3/0x230
[ 1512.835157][T28682]  __ia32_compat_sys_ioctl+0xc2/0x360
[ 1512.835174][T28682]  __do_fast_syscall_32+0xe3/0x8c0
[ 1512.835192][T28682]  do_fast_syscall_32+0x32/0x70
[ 1512.835209][T28682]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1512.835223][T28682] RIP: 0023:0xf704ef6c
[ 1512.835232][T28682] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 1512.835242][T28682] RSP: 002b:00000000f543d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[ 1512.835254][T28682] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00000000c01c64a3
[ 1512.835260][T28682] RDX: 0000000080000340 RSI: 0000000000000000 RDI: 0000000000000000
[ 1512.835266][T28682] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1512.835272][T28682] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 1512.835279][T28682] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1512.835292][T28682]  </TASK>
[ 1512.835303][T28682] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1513.260423][T28695] futex_wake_op: syz.0.6380 tries to shift op by 32; fix this program
[ 1513.265958][T28695] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1513.280372][T28695] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1513.347703][T28700] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1515.306463][T27624] Bluetooth: hci4: command 0x0419 tx timeout
[ 1515.716267][T28699] Bluetooth: hci4: Opcode 0x0c1a failed: -110
[ 1516.288671][T28725] usb usb8: usbfs: process 28725 (syz.2.6391) did not claim interface 0 before use
[ 1516.440669][   T40] kauditd_printk_skb: 2547 callbacks suppressed
[ 1516.440681][   T40] audit: type=1326 audit(1773730791.392:24100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28737 comm="syz.0.6397" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f46f6c code=0x7ffc0000
[ 1516.453690][   T40] audit: type=1326 audit(1773730791.402:24101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28737 comm="syz.0.6397" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f46f6c code=0x7ffc0000
[ 1516.463659][   T40] audit: type=1326 audit(1773730791.402:24102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28737 comm="syz.0.6397" exe="/syz-executor" sig=0 arch=40000003 syscall=343 compat=1 ip=0xf7f46f6c code=0x7ffc0000
[ 1516.477665][   T40] audit: type=1326 audit(1773731047.416:24103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28737 comm="syz.0.6397" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f46f6c code=0x7ffc0000
[ 1516.484463][   T40] audit: type=1326 audit(1773731047.416:24104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28737 comm="syz.0.6397" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f46f6c code=0x7ffc0000
[ 1516.493925][   T40] audit: type=1326 audit(1773731047.416:24105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28737 comm="syz.0.6397" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f46f6c code=0x7ffc0000
[ 1516.500941][   T40] audit: type=1326 audit(1773731047.416:24106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28737 comm="syz.0.6397" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f46f6c code=0x7ffc0000
[ 1516.527272][   T40] audit: type=1326 audit(1773731047.416:24107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28737 comm="syz.0.6397" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f46f6c code=0x7ffc0000
[ 1516.534353][   T40] audit: type=1326 audit(1773731047.416:24108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28737 comm="syz.0.6397" exe="/syz-executor" sig=0 arch=40000003 syscall=369 compat=1 ip=0xf7f46f6c code=0x7ffc0000
[ 1516.550600][   T40] audit: type=1326 audit(1773731047.416:24109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28737 comm="syz.0.6397" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f46f6c code=0x7ffc0000
[ 1516.753593][T28740] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6395'.
[ 1517.219809][T28749] fuse: Bad value for 'fd'
[ 1517.286167][T28743] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1517.526920][T28751] futex_wake_op: syz.2.6400 tries to shift op by 32; fix this program
[ 1517.533599][T28751] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1517.543617][T28751] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1517.607919][T28758] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1517.751789][T28764] usb usb8: usbfs: process 28764 (syz.3.6406) did not claim interface 0 before use
[ 1518.479163][T28767] netlink: 'syz.1.6407': attribute type 1 has an invalid length.
[ 1518.505515][T28767] 8021q: adding VLAN 0 to HW filter on device bond3
[ 1518.664972][T27624] Bluetooth: hci4: command 0x0419 tx timeout
[ 1518.943622][T28784] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6410'.
[ 1518.947819][T28784] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6410'.
[ 1519.524968][T28779] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1520.115063][T28803] usb usb8: usbfs: process 28803 (syz.0.6416) did not claim interface 0 before use
[ 1520.657135][T28815] netlink: 'syz.2.6420': attribute type 1 has an invalid length.
[ 1520.826913][T28815] 8021q: adding VLAN 0 to HW filter on device bond5
[ 1520.913739][T27624] Bluetooth: hci4: command 0x0419 tx timeout
[ 1521.765204][T28833] program syz.2.6424 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1522.201630][   T40] kauditd_printk_skb: 992 callbacks suppressed
[ 1522.201645][   T40] audit: type=1326 audit(1773731053.159:25102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28836 comm="syz.0.6425" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f46f6c code=0x7ffc0000
[ 1522.233111][   T40] audit: type=1326 audit(1773731053.179:25103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28836 comm="syz.0.6425" exe="/syz-executor" sig=0 arch=40000003 syscall=343 compat=1 ip=0xf7f46f6c code=0x7ffc0000
[ 1522.242573][   T40] audit: type=1326 audit(1773731309.181:25104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28836 comm="syz.0.6425" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f46f6c code=0x7ffc0000
[ 1522.273136][   T40] audit: type=1326 audit(1773731309.181:25105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28836 comm="syz.0.6425" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f46f6c code=0x7ffc0000
[ 1522.282523][   T40] audit: type=1326 audit(1773731309.181:25106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28836 comm="syz.0.6425" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f46f6c code=0x7ffc0000
[ 1522.312989][   T40] audit: type=1326 audit(1773731309.181:25107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28836 comm="syz.0.6425" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f46f6c code=0x7ffc0000
[ 1522.322516][   T40] audit: type=1326 audit(1773731309.181:25108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28836 comm="syz.0.6425" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f46f6c code=0x7ffc0000
[ 1522.362368][   T40] audit: type=1326 audit(1773731309.181:25109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28836 comm="syz.0.6425" exe="/syz-executor" sig=0 arch=40000003 syscall=369 compat=1 ip=0xf7f46f6c code=0x7ffc0000
[ 1522.382358][   T40] audit: type=1326 audit(1773731309.181:25110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28836 comm="syz.0.6425" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f46f6c code=0x7ffc0000
[ 1522.411998][   T40] audit: type=1326 audit(1773731309.181:25111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28836 comm="syz.0.6425" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf7f46f6c code=0x7ffc0000
[ 1522.710990][T28825] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1523.522455][T27624] Bluetooth: hci4: command 0x0419 tx timeout
[ 1523.909409][T28853] netlink: 'syz.1.6430': attribute type 1 has an invalid length.
[ 1523.924380][T28853] 8021q: adding VLAN 0 to HW filter on device bond4
[ 1525.294495][T28865] wlan1 speed is unknown, defaulting to 1000
[ 1525.842988][T28877] netlink: 36 bytes leftover after parsing attributes in process `syz.1.6436'.
[ 1529.743201][T28894] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1529.904311][T28898] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6440'.
[ 1529.907375][T28898] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6440'.
[ 1530.030888][T28903] netlink: 'syz.0.6442': attribute type 1 has an invalid length.
[ 1530.074614][T28903] 8021q: adding VLAN 0 to HW filter on device bond4
[ 1530.092235][   T40] kauditd_printk_skb: 1651 callbacks suppressed
[ 1530.092246][   T40] audit: type=1326 audit(1773731317.055:26763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28902 comm="syz.3.6443" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x7ffc0000
[ 1530.118041][   T40] audit: type=1326 audit(1773731317.055:26764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28902 comm="syz.3.6443" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x7ffc0000
[ 1530.149851][   T40] audit: type=1326 audit(1773731317.055:26765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28902 comm="syz.3.6443" exe="/syz-executor" sig=0 arch=40000003 syscall=343 compat=1 ip=0xf704ef6c code=0x7ffc0000
[ 1530.157440][   T40] audit: type=1326 audit(1773731573.061:26766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28902 comm="syz.3.6443" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x7ffc0000
[ 1530.169330][   T40] audit: type=1326 audit(1773731573.061:26767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28902 comm="syz.3.6443" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x7ffc0000
[ 1530.177212][   T40] audit: type=1326 audit(1773731573.061:26768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28902 comm="syz.3.6443" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf704ef6c code=0x7ffc0000
[ 1530.185733][   T40] audit: type=1326 audit(1773731573.061:26769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28902 comm="syz.3.6443" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x7ffc0000
[ 1530.192993][   T40] audit: type=1326 audit(1773731573.061:26770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28902 comm="syz.3.6443" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x7ffc0000
[ 1530.200978][   T40] audit: type=1326 audit(1773731573.061:26771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28902 comm="syz.3.6443" exe="/syz-executor" sig=0 arch=40000003 syscall=369 compat=1 ip=0xf704ef6c code=0x7ffc0000
[ 1530.207845][   T40] audit: type=1326 audit(1773731573.061:26772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28902 comm="syz.3.6443" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x7ffc0000
[ 1531.779028][T27624] Bluetooth: hci4: command 0x0419 tx timeout
[ 1532.094651][T28924] usb usb8: usbfs: process 28924 (syz.2.6449) did not claim interface 0 before use
[ 1532.124053][T28926] netlink: 72 bytes leftover after parsing attributes in process `syz.1.6450'.
[ 1532.134833][T28926] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6450'.
[ 1532.298980][T28939] netlink: 'syz.0.6456': attribute type 1 has an invalid length.
[ 1532.317784][T28939] 8021q: adding VLAN 0 to HW filter on device bond5
[ 1532.459032][T28945] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6455'.
[ 1532.461960][T28945] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6455'.
[ 1533.049933][T28941] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1533.200668][T28954] netlink: 72 bytes leftover after parsing attributes in process `syz.2.6460'.
[ 1533.211282][T28954] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6460'.
[ 1533.244273][T28956] usb usb8: usbfs: process 28956 (syz.2.6461) did not claim interface 0 before use
[ 1533.325209][T28959] fuse: Bad value for 'group_id'
[ 1533.328960][T28959] fuse: Bad value for 'group_id'
[ 1533.443659][T28964] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[ 1534.438068][T28985] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6467'.
[ 1534.441107][T28985] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6467'.
[ 1534.511987][T28987] netlink: 'syz.2.6468': attribute type 1 has an invalid length.
[ 1534.645767][T27624] Bluetooth: hci4: command 0x0419 tx timeout
[ 1534.685732][T28987] 8021q: adding VLAN 0 to HW filter on device bond6
[ 1535.100073][T28982] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1535.178445][T28994] create_pit_timer: 18 callbacks suppressed
[ 1535.178457][T28994] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1535.190222][T28994] kvm: pic: non byte read
[ 1535.193308][T28994] kvm: pic: non byte read
[ 1535.195942][T28994] kvm: pic: level sensitive irq not supported
[ 1535.200877][T28994] kvm: pic: non byte read
[ 1535.205935][T28994] kvm: pic: single mode not supported
[ 1535.207524][T28994] kvm: pic: non byte read
[ 1535.215705][T28994] kvm: pic: non byte read
[ 1535.219698][T28994] kvm: pic: non byte read
[ 1535.223440][T28994] kvm: pic: non byte read
[ 1535.278675][T29003] usb usb8: usbfs: process 29003 (syz.1.6473) did not claim interface 0 before use
[ 1535.340601][T29007] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 1535.392081][T29005] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1535.495180][T29008] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1535.553231][T29015] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1535.640498][T29021] netlink: 'syz.2.6477': attribute type 1 has an invalid length.
[ 1535.652619][T29021] 8021q: adding VLAN 0 to HW filter on device bond7
[ 1536.331488][T29033] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6479'.
[ 1536.335441][T29033] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6479'.
[ 1536.645966][T29028] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1536.999376][T29037] fuse: Bad value for 'group_id'
[ 1537.001939][T29037] fuse: Bad value for 'group_id'
[ 1537.104895][T29041] usb usb8: usbfs: process 29041 (syz.1.6482) did not claim interface 0 before use
[ 1537.261511][T29050] wlan1 speed is unknown, defaulting to 1000
[ 1537.265085][T29052] netlink: 'syz.3.6486': attribute type 1 has an invalid length.
[ 1537.278143][T29052] 8021q: adding VLAN 0 to HW filter on device bond3
[ 1537.563491][T29060] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1537.637823][T29068] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1537.708422][T29072] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1538.236751][T29064] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1538.547058][T29087] netlink: 'syz.0.6493': attribute type 1 has an invalid length.
[ 1538.550867][T29087] __nla_validate_parse: 2 callbacks suppressed
[ 1538.550924][T29087] netlink: 16150 bytes leftover after parsing attributes in process `syz.0.6493'.
[ 1538.709179][T29091] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6496'.
[ 1538.712265][T29091] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6496'.
[ 1539.617700][T29099] netlink: 'syz.2.6499': attribute type 1 has an invalid length.
[ 1539.629116][T29099] 8021q: adding VLAN 0 to HW filter on device bond8
[ 1539.694544][T27624] Bluetooth: hci4: command 0x0419 tx timeout
[ 1539.834231][T22380] usb 6-1: new high-speed USB device number 42 using dummy_hcd
[ 1540.194015][T22380] usb 6-1: Using ep0 maxpacket: 8
[ 1540.197635][T22380] usb 6-1: config 0 has no interfaces?
[ 1540.199767][T22380] usb 6-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a
[ 1540.203467][T22380] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1540.209414][T22380] usb 6-1: config 0 descriptor??
[ 1540.978638][T29116] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1540.982589][T29095] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1541.004341][T29095] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1541.090857][T12735] usb 6-1: USB disconnect, device number 42
[ 1541.705960][T29131] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1541.721987][T29135] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6508'.
[ 1541.725579][T29135] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6508'.
[ 1541.808136][T29137] netlink: 80 bytes leftover after parsing attributes in process `syz.0.6507'.
[ 1541.879064][T29136] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6507'.
[ 1541.887955][T29138] IPVS: sync thread started: state = BACKUP, mcast_ifn = vcan0, syncid = 0, id = 0
[ 1541.888897][T29134] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1542.121757][T29142] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1542.378362][T28250] Bluetooth: hci4: command 0x0419 tx timeout
[ 1542.525685][T29145] wlan1 speed is unknown, defaulting to 1000
[ 1543.443836][T29152] netlink: 'syz.3.6512': attribute type 1 has an invalid length.
[ 1543.461526][T29152] 8021q: adding VLAN 0 to HW filter on device bond4
[ 1543.476734][T29149] netfs: Couldn't get user pages (rc=-14)
[ 1543.613089][T29161] wlan1 speed is unknown, defaulting to 1000
[ 1543.879447][T29166] usb usb8: usbfs: process 29166 (syz.3.6517) did not claim interface 0 before use
[ 1543.917796][T29168] netlink: 72 bytes leftover after parsing attributes in process `syz.2.6518'.
[ 1543.959785][T29168] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6518'.
[ 1544.025876][T29170] netlink: 24 bytes leftover after parsing attributes in process `syz.2.6519'.
[ 1544.218781][T29173] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1544.303248][T29176] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1544.384218][T29178] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1544.412196][T27624] Bluetooth: hci4: command 0x0419 tx timeout
[ 1544.807443][T29182] netfs: Couldn't get user pages (rc=-14)
[ 1545.223931][T29198] usb usb8: usbfs: process 29198 (syz.1.6529) did not claim interface 0 before use
[ 1545.377006][T29200] netlink: 'syz.3.6523': attribute type 1 has an invalid length.
[ 1545.393622][T29200] 8021q: adding VLAN 0 to HW filter on device bond5
[ 1546.213428][T29218] netlink: 'syz.1.6533': attribute type 3 has an invalid length.
[ 1546.524269][   T40] kauditd_printk_skb: 825 callbacks suppressed
[ 1546.524283][   T40] audit: type=1804 audit(1773731589.499:27598): pid=29224 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.6534" name="/newroot/460/file0" dev="tmpfs" ino=2446 res=1 errno=0
[ 1546.526159][T29224] ref_ctr going negative. vaddr: 0x80ffd002, curr val: -2360, delta: 1
[ 1546.532499][   T40] audit: type=1326 audit(1773731589.499:27599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29225 comm="syz.1.6535" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1546.537768][T29224] ref_ctr increment failed for inode: 0x98e offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff88802b098c40
[ 1546.539015][   T40] audit: type=1326 audit(1773731589.499:27600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29225 comm="syz.1.6535" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1546.550995][T29224] ref_ctr going negative. vaddr: 0x80ffd002, curr val: -2360, delta: -1
[ 1546.567603][T29224] ref_ctr decrement failed for inode: 0x98e offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff88802b098c40
[ 1546.570779][   T40] audit: type=1326 audit(1773731589.499:27601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29225 comm="syz.1.6535" exe="/syz-executor" sig=0 arch=40000003 syscall=343 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1546.572771][T29224] uprobe: syz.2.6534:29224 failed to unregister, leaking uprobe
[ 1546.579363][   T40] audit: type=1326 audit(1773731845.511:27602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29225 comm="syz.1.6535" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1546.579391][   T40] audit: type=1326 audit(1773731845.511:27603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29225 comm="syz.1.6535" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1546.579414][   T40] audit: type=1326 audit(1773731845.511:27604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29225 comm="syz.1.6535" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1546.660801][   T40] audit: type=1326 audit(1773731845.511:27605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29225 comm="syz.1.6535" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1546.675872][   T40] audit: type=1326 audit(1773731845.511:27606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29225 comm="syz.1.6535" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1546.695803][   T40] audit: type=1326 audit(1773731845.511:27607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29225 comm="syz.1.6535" exe="/syz-executor" sig=0 arch=40000003 syscall=369 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1547.083679][T29232] overlayfs: statfs failed on './file0'
[ 1548.160160][T29236] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6538'.
[ 1549.613783][T29243] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1549.671168][T29244] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1549.723979][T29246] usb usb8: usbfs: process 29246 (syz.0.6541) did not claim interface 0 before use
[ 1549.728987][T29247] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1549.748732][T29249] netlink: 72 bytes leftover after parsing attributes in process `syz.1.6542'.
[ 1549.755689][T29249] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6542'.
[ 1552.753718][   T40] kauditd_printk_skb: 345 callbacks suppressed
[ 1552.753728][   T40] audit: type=1326 audit(1773731851.724:27953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29273 comm="syz.1.6551" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1552.772525][T29276] usb usb8: usbfs: process 29276 (syz.3.6552) did not claim interface 0 before use
[ 1552.778267][   T40] audit: type=1326 audit(1773731851.734:27954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29273 comm="syz.1.6551" exe="/syz-executor" sig=0 arch=40000003 syscall=343 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1552.785398][   T40] audit: type=1326 audit(1773732107.748:27955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29273 comm="syz.1.6551" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1552.799713][   T40] audit: type=1326 audit(1773732107.748:27956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29273 comm="syz.1.6551" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1552.806712][   T40] audit: type=1326 audit(1773732107.748:27957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29273 comm="syz.1.6551" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1552.813681][   T40] audit: type=1326 audit(1773732107.748:27958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29273 comm="syz.1.6551" exe="/syz-executor" sig=0 arch=40000003 syscall=369 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1552.820626][   T40] audit: type=1326 audit(1773732107.748:27959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29273 comm="syz.1.6551" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1552.827469][   T40] audit: type=1326 audit(1773732107.748:27960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29273 comm="syz.1.6551" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1552.834390][   T40] audit: type=1326 audit(1773732107.748:27961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29273 comm="syz.1.6551" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1552.841305][   T40] audit: type=1326 audit(1773732107.748:27962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29273 comm="syz.1.6551" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1552.921906][T29267] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6548'.
[ 1553.978378][T29286] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1554.123613][T29285] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1554.184851][T29287] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1554.238341][T29267] tipc: Resetting bearer <eth:syzkaller0>
[ 1554.251803][T29267] syzkaller0: left promiscuous mode
[ 1554.253529][T29267] syzkaller0: left allmulticast mode
[ 1554.258750][T29267] bridge2: left allmulticast mode
[ 1554.345040][T29290] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6555'.
[ 1554.348180][T29290] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6555'.
[ 1554.375000][  T217] netdevsim netdevsim2 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1554.397499][  T217] netdevsim netdevsim2 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1554.433162][  T217] netdevsim netdevsim2 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1554.436247][  T217] netdevsim netdevsim2 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1555.411957][T29316] usb usb8: usbfs: process 29316 (syz.0.6562) did not claim interface 0 before use
[ 1557.257915][T29328] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1557.313418][T29329] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1557.374047][T29330] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1558.586123][T29336] /dev/nullb0: Can't open blockdev
[ 1558.645532][T29332] program syz.3.6567 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1560.350857][T29343] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 1560.527097][   T40] kauditd_printk_skb: 337 callbacks suppressed
[ 1560.527117][   T40] audit: type=1326 audit(1773732115.502:28300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29346 comm="syz.0.6573" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f46f6c code=0x7ffc0000
[ 1560.540880][   T40] audit: type=1326 audit(1773732115.502:28301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29346 comm="syz.0.6573" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f46f6c code=0x7ffc0000
[ 1560.550270][   T40] audit: type=1326 audit(1773732115.502:28302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29346 comm="syz.0.6573" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf7f46f6c code=0x7ffc0000
[ 1560.560914][   T40] audit: type=1326 audit(1773732115.502:28303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29346 comm="syz.0.6573" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f46f6c code=0x7ffc0000
[ 1560.570526][   T40] audit: type=1326 audit(1773732115.502:28304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29346 comm="syz.0.6573" exe="/syz-executor" sig=0 arch=40000003 syscall=297 compat=1 ip=0xf7f46f6c code=0x7ffc0000
[ 1560.580305][   T40] audit: type=1326 audit(1773732115.502:28305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29346 comm="syz.0.6573" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f46f6c code=0x7ffc0000
[ 1560.589820][   T40] audit: type=1326 audit(1773732115.512:28306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29346 comm="syz.0.6573" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f46f6c code=0x7ffc0000
[ 1560.599772][   T40] audit: type=1326 audit(1773732115.522:28307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29346 comm="syz.0.6573" exe="/syz-executor" sig=0 arch=40000003 syscall=358 compat=1 ip=0xf7f46f6c code=0x7ffc0000
[ 1560.610475][   T40] audit: type=1326 audit(1773732115.522:28308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29346 comm="syz.0.6573" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f46f6c code=0x7ffc0000
[ 1560.620164][   T40] audit: type=1326 audit(1773732115.532:28309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29346 comm="syz.0.6573" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f46f6c code=0x7ffc0000
[ 1560.745618][T29355] program syz.2.6574 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1560.823760][T29352] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6573'.
[ 1561.033665][T29343] tmpfs: Bad value for 'mpol'
[ 1561.296978][T29365] program syz.1.6576 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1561.353598][   T54] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[ 1562.462835][   T54] usb 5-1: Using ep0 maxpacket: 8
[ 1562.471898][   T54] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[ 1562.476566][   T54] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1562.479805][   T54] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1562.483773][   T54] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1562.639744][   T54] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1562.644519][   T54] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1562.647514][   T54] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1563.078598][T29373] netlink: 76 bytes leftover after parsing attributes in process `syz.2.6577'.
[ 1563.662434][   T54] usb 5-1: usb_control_msg returned -71
[ 1563.665145][   T54] usbtmc 5-1:16.0: can't read capabilities
[ 1563.758388][T29378] netlink: 72 bytes leftover after parsing attributes in process `syz.0.6578'.
[ 1563.787732][   T54] usb 5-1: USB disconnect, device number 31
[ 1563.823697][T29378] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6578'.
[ 1564.607483][T29374] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6575'.
[ 1564.610528][T29374] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6575'.
[ 1565.038539][T29385] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6581'.
[ 1565.041984][T29385] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6581'.
[ 1565.327757][T29350] syz.1.6571 (29350) used greatest stack depth: 17112 bytes left
[ 1566.953068][T29402] syz.2.6587 (29402): /proc/29401/oom_adj is deprecated, please use /proc/29401/oom_score_adj instead.
[ 1567.059670][T29405] netlink: 72 bytes leftover after parsing attributes in process `syz.1.6588'.
[ 1567.069456][T29405] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6588'.
[ 1567.155808][T29407] kvm: apic: phys broadcast and lowest prio
[ 1567.164223][T29407] trusted_key: encrypted_key: insufficient parameters specified
[ 1567.389876][T29419] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6593'.
[ 1567.393857][T29419] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6593'.
[ 1567.891422][T29425] cgroup: fork rejected by pids controller in /syz2
[ 1568.304330][T29904] netlink: 'syz.1.6595': attribute type 1 has an invalid length.
[ 1568.319502][T29904] 8021q: adding VLAN 0 to HW filter on device bond5
[ 1568.391392][T29948] netlink: 774 bytes leftover after parsing attributes in process `syz.3.6597'.
[ 1568.401041][T29950] netlink: 72 bytes leftover after parsing attributes in process `syz.0.6598'.
[ 1568.414209][T29950] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6598'.
[ 1568.571706][T30084] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6601'.
[ 1568.832154][T30154] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6604'.
[ 1568.835256][T30154] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6604'.
[ 1570.829313][T30189] netlink: 'syz.2.6615': attribute type 1 has an invalid length.
[ 1570.847817][T30189] 8021q: adding VLAN 0 to HW filter on device bond9
[ 1572.373840][T30218] __nla_validate_parse: 4 callbacks suppressed
[ 1572.373858][T30218] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6617'.
[ 1572.380699][T30218] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6617'.
[ 1574.591809][   T40] kauditd_printk_skb: 48 callbacks suppressed
[ 1574.591821][   T40] audit: type=1326 audit(1773732129.579:28358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30234 comm="syz.1.6624" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1574.607914][   T40] audit: type=1326 audit(1773732129.599:28359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30234 comm="syz.1.6624" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1574.625364][   T40] audit: type=1326 audit(1773732129.599:28360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30234 comm="syz.1.6624" exe="/syz-executor" sig=0 arch=40000003 syscall=343 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1574.655733][   T40] audit: type=1326 audit(1773732385.600:28361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30234 comm="syz.1.6624" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1574.662775][   T40] audit: type=1326 audit(1773732385.600:28362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30234 comm="syz.1.6624" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1574.679947][   T40] audit: type=1326 audit(1773732385.600:28363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30234 comm="syz.1.6624" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1574.700224][   T40] audit: type=1326 audit(1773732385.600:28364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30234 comm="syz.1.6624" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1574.726712][   T40] audit: type=1326 audit(1773732385.600:28365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30234 comm="syz.1.6624" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1574.736758][   T40] audit: type=1326 audit(1773732385.600:28366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30234 comm="syz.1.6624" exe="/syz-executor" sig=0 arch=40000003 syscall=369 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1574.743643][   T40] audit: type=1326 audit(1773732385.600:28367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30234 comm="syz.1.6624" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1575.853266][T30249] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[ 1575.855445][T30249] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1575.860674][T30252] usb usb8: usbfs: process 30252 (syz.1.6628) did not claim interface 0 before use
[ 1575.930369][T30248] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6629'.
[ 1575.934158][T30248] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6629'.
[ 1576.663335][T30249] vhci_hcd vhci_hcd.0: Device attached
[ 1576.917681][T30250] vhci_hcd: connection closed
[ 1576.917993][T24072] vhci_hcd vhci_hcd.3: stop threads
[ 1576.922687][T24072] vhci_hcd vhci_hcd.3: release socket
[ 1576.925279][T24072] vhci_hcd vhci_hcd.3: disconnect device
[ 1576.935993][T12735] usb 44-1: enqueue for inactive port 0
[ 1578.085742][T12735] usb usb44-port1: attempt power cycle
[ 1578.276994][T27624] Bluetooth: hci4: SCO packet for unknown connection handle 345
[ 1578.655844][T30283] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1578.735241][T12735] usb usb44-port1: unable to enumerate USB device
[ 1578.738790][T30284] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1578.815896][T30285] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1579.206532][T30287] usb usb8: usbfs: process 30287 (syz.2.6639) did not claim interface 0 before use
[ 1579.247926][T30289] netlink: 'syz.0.6638': attribute type 1 has an invalid length.
[ 1579.262972][T30289] 8021q: adding VLAN 0 to HW filter on device bond6
[ 1579.733299][T30297] mkiss: ax0: crc mode is auto.
[ 1580.059197][T30307] trusted_key: encrypted_key: master key parameter 'defaultrusþÉ^wΖõŽ00000000000000004045' is invalid
[ 1580.065749][T30307] netlink: 'syz.3.6644': attribute type 12 has an invalid length.
[ 1580.069264][T30307] netlink: 132 bytes leftover after parsing attributes in process `syz.3.6644'.
[ 1580.111079][T30306] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6643'.
[ 1580.115174][T30306] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6643'.
[ 1580.573995][T30315] 9p: Bad value for 'version'
[ 1580.951027][T30326] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1581.014240][T30328] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1581.072449][T30329] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1582.199008][T30349] overlayfs: failed to resolve './file1': -2
[ 1582.260352][T30353] usb usb8: usbfs: process 30353 (syz.2.6656) did not claim interface 0 before use
[ 1582.268210][   T40] kauditd_printk_skb: 1074 callbacks suppressed
[ 1582.268222][   T40] audit: type=1804 audit(1773732393.253:29442): pid=30349 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.6653" name="/newroot/486/bus/bus" dev="tmpfs" ino=2579 res=1 errno=0
[ 1582.325200][T30355] 9p: Bad value for 'version'
[ 1582.494880][T30359] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6658'.
[ 1582.497988][T30359] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6658'.
[ 1583.442555][T30383] tmpfs: Bad value for 'mpol'
[ 1583.489484][T30387] overlayfs: failed to resolve './file1': -2
[ 1584.375382][T30402] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6669'.
[ 1584.377761][T30404] usb usb8: usbfs: process 30404 (syz.2.6670) did not claim interface 0 before use
[ 1584.383892][T30402] bridge2: trying to set multicast query interval above maximum, setting to 8640000 (86400000ms)
[ 1584.387573][T30402] bridge2: trying to set multicast startup query interval above maximum, setting to 8640000 (86400000ms)
[ 1584.391358][T30402] bridge2: entered promiscuous mode
[ 1584.399367][T30402] netlink: 60 bytes leftover after parsing attributes in process `syz.1.6669'.
[ 1584.411621][T30402] syzkaller0: entered promiscuous mode
[ 1584.413535][T30402] syzkaller0: entered allmulticast mode
[ 1584.892958][T30411] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6672'.
[ 1584.896126][T30411] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6672'.
[ 1586.724211][T30434] binder: 30433:30434 ioctl c0306201 800001c0 returned -14
[ 1586.770502][T30434] input: syz1 as /devices/virtual/input/input64
[ 1587.231627][T30439] netlink: 'syz.0.6678': attribute type 4 has an invalid length.
[ 1587.262098][T30441] netlink: 'syz.1.6679': attribute type 1 has an invalid length.
[ 1587.320870][T30441] 8021q: adding VLAN 0 to HW filter on device bond6
[ 1587.384893][T30439] wlan1 speed is unknown, defaulting to 1000
[ 1587.754592][T30456] FAULT_INJECTION: forcing a failure.
[ 1587.754592][T30456] name failslab, interval 1, probability 0, space 0, times 0
[ 1587.768441][T30456] CPU: 1 UID: 0 PID: 30456 Comm: syz.2.6680 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1587.768470][T30456] Tainted: [L]=SOFTLOCKUP
[ 1587.768477][T30456] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1587.768487][T30456] Call Trace:
[ 1587.768494][T30456]  <TASK>
[ 1587.768500][T30456]  dump_stack_lvl+0x100/0x190
[ 1587.768530][T30456]  should_fail_ex.cold+0x5/0xa
[ 1587.768550][T30456]  should_failslab+0xc2/0x120
[ 1587.768568][T30456]  __kvmalloc_node_noprof+0xfa/0xa00
[ 1587.768593][T30456]  ? seq_read_iter+0x819/0x1270
[ 1587.768625][T30456]  seq_read_iter+0x819/0x1270
[ 1587.768653][T30456]  seq_read+0x33b/0x4c0
[ 1587.768670][T30456]  ? __pfx_seq_read+0x10/0x10
[ 1587.768685][T30456]  ? __pfx___might_resched+0x10/0x10
[ 1587.768709][T30456]  ? rw_verify_area+0xce/0x6d0
[ 1587.768725][T30456]  ? __pfx_seq_read+0x10/0x10
[ 1587.768742][T30456]  vfs_read+0x1e4/0xb30
[ 1587.768767][T30456]  ? __pfx_vfs_read+0x10/0x10
[ 1587.768790][T30456]  ? __fget_files+0x215/0x3d0
[ 1587.768812][T30456]  ? __fget_files+0x21f/0x3d0
[ 1587.768834][T30456]  ksys_read+0x12a/0x250
[ 1587.768851][T30456]  ? __pfx_ksys_read+0x10/0x10
[ 1587.768866][T30456]  ? __pfx_ksys_write+0x10/0x10
[ 1587.768889][T30456]  __do_fast_syscall_32+0xe3/0x8c0
[ 1587.768917][T30456]  do_fast_syscall_32+0x32/0x70
[ 1587.768934][T30456]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1587.768970][T30456] RIP: 0023:0xf7f52f6c
[ 1587.768987][T30456] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 1587.769003][T30456] RSP: 002b:00000000f541650c EFLAGS: 00000292 ORIG_RAX: 0000000000000003
[ 1587.769015][T30456] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080002f00
[ 1587.769021][T30456] RDX: 00000000000000ae RSI: 0000000000000000 RDI: 0000000000000000
[ 1587.769028][T30456] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1587.769034][T30456] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 1587.769040][T30456] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1587.769054][T30456]  </TASK>
[ 1587.845134][   T54] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[ 1587.926726][T30458] usb usb8: usbfs: process 30458 (syz.2.6682) did not claim interface 0 before use
[ 1588.010095][   T54] usb 5-1: Using ep0 maxpacket: 16
[ 1588.013262][   T54] usb 5-1: config 0 has no interfaces?
[ 1588.015978][   T54] usb 5-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[ 1588.018907][   T54] usb 5-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[ 1588.021643][   T54] usb 5-1: Manufacturer: syz
[ 1588.024437][   T54] usb 5-1: config 0 descriptor??
[ 1588.642614][T30438] wlan1 speed is unknown, defaulting to 1000
[ 1588.968332][T30464] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6684'.
[ 1588.971507][T30464] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6684'.
[ 1589.526735][   T40] audit: type=1326 audit(1773732400.517:29443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30468 comm="syz.2.6686" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1589.545626][   T40] audit: type=1326 audit(1773732400.517:29444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30468 comm="syz.2.6686" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1589.557661][   T40] audit: type=1326 audit(1773732400.527:29445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30468 comm="syz.2.6686" exe="/syz-executor" sig=0 arch=40000003 syscall=343 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1589.565349][   T40] audit: type=1326 audit(1773732656.534:29446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30468 comm="syz.2.6686" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1589.573470][   T40] audit: type=1326 audit(1773732656.534:29447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30468 comm="syz.2.6686" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1589.581157][   T40] audit: type=1326 audit(1773732656.534:29448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30468 comm="syz.2.6686" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1589.589404][   T40] audit: type=1326 audit(1773732656.534:29449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30468 comm="syz.2.6686" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1589.596136][   T40] audit: type=1326 audit(1773732656.534:29450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30468 comm="syz.2.6686" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1589.607019][   T40] audit: type=1326 audit(1773732656.534:29451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30468 comm="syz.2.6686" exe="/syz-executor" sig=0 arch=40000003 syscall=369 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1589.619381][   T40] audit: type=1326 audit(1773732656.534:29452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30468 comm="syz.2.6686" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f52f6c code=0x7ffc0000
[ 1589.750352][T30471] ip6t_srh: unknown srh invflags 7160
[ 1590.283744][T14034] usb 5-1: USB disconnect, device number 32
[ 1590.342535][T30477] netlink: 'syz.0.6688': attribute type 1 has an invalid length.
[ 1590.390439][T30477] 8021q: adding VLAN 0 to HW filter on device bond7
[ 1590.468483][T30485] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6688'.
[ 1590.552630][T30489] netlink: 'syz.0.6691': attribute type 1 has an invalid length.
[ 1590.566929][T30489] 8021q: adding VLAN 0 to HW filter on device bond8
[ 1590.995240][T30506] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[ 1590.997456][T30506] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1591.002842][T30506] vhci_hcd vhci_hcd.0: Device attached
[ 1591.092809][T30505] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6695'.
[ 1591.109855][T30505] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6695'.
[ 1591.140367][T30510] random: crng reseeded on system resumption
[ 1591.274549][T14889] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1591.306968][T14889] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1591.350655][   T54] usb 44-1: SetAddress Request (52) to port 0
[ 1591.356463][   T54] usb 44-1: new SuperSpeed USB device number 52 using vhci_hcd
[ 1592.148831][T30515] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6698'.
[ 1592.152071][T30515] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6698'.
[ 1592.278390][T30517] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6697'.
[ 1592.827756][T30507] vhci_hcd: connection reset by peer
[ 1592.829700][   T71] vhci_hcd vhci_hcd.3: stop threads
[ 1592.831452][   T71] vhci_hcd vhci_hcd.3: release socket
[ 1592.833274][   T71] vhci_hcd vhci_hcd.3: disconnect device
[ 1592.975222][T30521] ip6t_srh: unknown srh invflags 7160
[ 1592.998168][T30523] netlink: 'syz.1.6700': attribute type 1 has an invalid length.
[ 1593.009736][T30523] 8021q: adding VLAN 0 to HW filter on device bond7
[ 1593.347955][T30537] netlink: 28 bytes leftover after parsing attributes in process `syz.1.6700'.
[ 1593.953225][T30551] usb usb8: usbfs: process 30551 (syz.1.6705) did not claim interface 0 before use
[ 1594.011400][T30552] 9pnet_virtio: no channels available for device syz
[ 1594.034266][T30536] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1594.688425][T30569] netlink: 'syz.0.6713': attribute type 1 has an invalid length.
[ 1594.702738][T30569] 8021q: adding VLAN 0 to HW filter on device bond9
[ 1594.903626][T30584] ip6t_srh: unknown srh invflags 7160
[ 1595.012814][T30574] kvm: requested 134933 ns i8254 timer period limited to 200000 ns
[ 1595.025489][T30574] kvm: requested 136609 ns i8254 timer period limited to 200000 ns
[ 1595.031628][T30574] kvm: requested 170133 ns i8254 timer period limited to 200000 ns
[ 1595.036197][T30574] kvm: requested 24304 ns i8254 timer period limited to 200000 ns
[ 1595.042008][T30574] kvm: requested 106438 ns i8254 timer period limited to 200000 ns
[ 1595.045948][T30574] kvm: requested 86323 ns i8254 timer period limited to 200000 ns
[ 1595.050246][T30574] kvm: requested 27657 ns i8254 timer period limited to 200000 ns
[ 1595.058181][T30574] kvm: requested 98057 ns i8254 timer period limited to 200000 ns
[ 1595.063280][T30574] kvm: requested 104761 ns i8254 timer period limited to 200000 ns
[ 1595.068303][T30574] kvm: requested 37714 ns i8254 timer period limited to 200000 ns
[ 1595.489890][T30593] FAULT_INJECTION: forcing a failure.
[ 1595.489890][T30593] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1595.494700][T30593] CPU: 3 UID: 0 PID: 30593 Comm: syz.1.6718 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1595.494730][T30593] Tainted: [L]=SOFTLOCKUP
[ 1595.494737][T30593] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1595.494747][T30593] Call Trace:
[ 1595.494754][T30593]  <TASK>
[ 1595.494759][T30593]  dump_stack_lvl+0x100/0x190
[ 1595.494780][T30593]  should_fail_ex.cold+0x5/0xa
[ 1595.494793][T30593]  _copy_to_user+0x32/0xd0
[ 1595.494807][T30593]  simple_read_from_buffer+0xcb/0x170
[ 1595.494825][T30593]  proc_fail_nth_read+0x1af/0x230
[ 1595.494839][T30593]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1595.494853][T30593]  ? rw_verify_area+0xce/0x6d0
[ 1595.494868][T30593]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1595.494883][T30593]  vfs_read+0x1e4/0xb30
[ 1595.494903][T30593]  ? __pfx_vfs_read+0x10/0x10
[ 1595.494918][T30593]  ? find_held_lock+0x2b/0x80
[ 1595.494929][T30593]  ? __fget_files+0x215/0x3d0
[ 1595.494941][T30593]  ? __fget_files+0x21f/0x3d0
[ 1595.494974][T30593]  ksys_read+0x12a/0x250
[ 1595.494984][T30593]  ? __pfx_ksys_read+0x10/0x10
[ 1595.494997][T30593]  do_int80_emulation+0x141/0x6b0
[ 1595.495015][T30593]  asm_int80_emulation+0x1a/0x20
[ 1595.495026][T30593] RIP: 0023:0xf7185cab
[ 1595.495036][T30593] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[ 1595.495046][T30593] RSP: 002b:00000000f54464bc EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[ 1595.495057][T30593] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f54465d0
[ 1595.495063][T30593] RDX: 000000000000000f RSI: 0000000000000000 RDI: 0000000000000000
[ 1595.495070][T30593] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1595.495075][T30593] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 1595.495082][T30593] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1595.495096][T30593]  </TASK>
[ 1595.506619][T27624] Bluetooth: hci4: command 0x0419 tx timeout
[ 1595.655702][T30597] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6719'.
[ 1595.694014][T30605] usb usb8: usbfs: process 30605 (syz.1.6720) did not claim interface 0 before use
[ 1596.392596][T30611] usb usb8: usbfs: process 30611 (syz.0.6722) did not claim interface 0 before use
[ 1596.465956][   T54] usb 44-1: device descriptor read/8, error -110
[ 1596.777731][T30613] usb usb8: usbfs: process 30613 (syz.0.6732) did not claim interface 0 before use
[ 1596.877979][   T54] usb usb44-port1: attempt power cycle
[ 1597.641918][T30624] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6734'.
[ 1597.645818][T30624] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6734'.
[ 1597.750880][T30625] syzkaller1: entered promiscuous mode
[ 1597.753186][T30625] syzkaller1: entered allmulticast mode
[ 1597.906092][   T54] usb usb44-port1: unable to enumerate USB device
[ 1598.663435][   T40] kauditd_printk_skb: 4757 callbacks suppressed
[ 1598.663452][   T40] audit: type=1326 audit(1773733433.651:34210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30655 comm="syz.1.6740" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1598.674277][T30652] syzkaller0: entered promiscuous mode
[ 1598.677963][T30652] syzkaller0: entered allmulticast mode
[ 1598.678847][   T40] audit: type=1326 audit(1773733433.671:34211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30655 comm="syz.1.6740" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1598.687856][T30654] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6735'.
[ 1598.691157][   T40] audit: type=1326 audit(1773733433.681:34212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30655 comm="syz.1.6740" exe="/syz-executor" sig=0 arch=40000003 syscall=343 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1598.692142][T30654] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6735'.
[ 1598.701758][   T40] audit: type=1326 audit(1773733689.694:34213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30655 comm="syz.1.6740" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1598.716445][   T40] audit: type=1326 audit(1773733689.694:34214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30655 comm="syz.1.6740" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1598.726505][   T40] audit: type=1326 audit(1773733689.694:34215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30655 comm="syz.1.6740" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1598.734200][   T40] audit: type=1326 audit(1773733689.694:34216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30655 comm="syz.1.6740" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1598.744287][   T40] audit: type=1326 audit(1773733689.694:34217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30655 comm="syz.1.6740" exe="/syz-executor" sig=0 arch=40000003 syscall=369 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1598.753666][   T40] audit: type=1326 audit(1773733689.694:34218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30655 comm="syz.1.6740" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1598.762846][   T40] audit: type=1326 audit(1773733689.694:34219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30655 comm="syz.1.6740" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1598.912765][T30661] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1598.986118][T30669] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1598.995686][T30669] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1599.288785][T30676] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6744'.
[ 1599.291932][T30676] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6744'.
[ 1599.553991][T27622] bridge0: port 3(syz_tun) entered disabled state
[ 1599.593252][T27622] syz_tun (unregistering): left allmulticast mode
[ 1599.595931][T27622] syz_tun (unregistering): left promiscuous mode
[ 1599.598721][T27622] bridge0: port 3(syz_tun) entered disabled state
[ 1599.685144][T30679] binder: 30677:30679 ioctl 4018620d 0 returned -22
[ 1599.756511][   T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1599.892540][   T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1600.004491][T28250] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1600.008845][   T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1600.009721][T28250] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1600.019373][T28250] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1600.022570][T28250] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1600.027954][T28250] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1600.062935][T30686] wlan1 speed is unknown, defaulting to 1000
[ 1600.160780][   T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1600.262204][T30686] chnl_net:caif_netlink_parms(): no params data found
[ 1600.347203][T30696] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[ 1600.350131][T30696] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1600.364053][T30696] vhci_hcd vhci_hcd.0: Device attached
[ 1600.439823][   T12] bridge_slave_1: left allmulticast mode
[ 1600.442315][   T12] bridge_slave_1: left promiscuous mode
[ 1600.444533][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1600.522176][T30707] random: crng reseeded on system resumption
[ 1600.532263][   T12] bridge_slave_0: left allmulticast mode
[ 1600.534388][   T12] bridge_slave_0: left promiscuous mode
[ 1600.536329][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1600.631275][T30712] create_pit_timer: 8 callbacks suppressed
[ 1600.631294][T30712] kvm: requested 134933 ns i8254 timer period limited to 200000 ns
[ 1600.644955][T14034] usb 40-1: SetAddress Request (59) to port 0
[ 1600.647100][T14034] usb 40-1: new SuperSpeed USB device number 59 using vhci_hcd
[ 1600.651078][T30712] kvm: requested 136609 ns i8254 timer period limited to 200000 ns
[ 1600.657318][T30712] kvm: requested 170133 ns i8254 timer period limited to 200000 ns
[ 1600.666075][T30712] kvm: requested 24304 ns i8254 timer period limited to 200000 ns
[ 1600.688518][T30712] kvm: requested 106438 ns i8254 timer period limited to 200000 ns
[ 1600.696252][T30712] kvm: requested 86323 ns i8254 timer period limited to 200000 ns
[ 1600.702374][T30712] kvm: requested 27657 ns i8254 timer period limited to 200000 ns
[ 1600.710312][T30712] kvm: requested 98057 ns i8254 timer period limited to 200000 ns
[ 1600.716002][T30712] kvm: requested 104761 ns i8254 timer period limited to 200000 ns
[ 1600.720004][   T12] bond3 (unregistering): (slave ip6gretap1): Releasing active interface
[ 1600.721166][T30712] kvm: requested 37714 ns i8254 timer period limited to 200000 ns
[ 1600.722954][   T12] ip6gretap1 (unregistering): left allmulticast mode
[ 1600.948607][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1600.955029][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1600.959808][   T12] bond0 (unregistering): Released all slaves
[ 1600.977497][   T12] bond1 (unregistering): Released all slaves
[ 1600.990030][   T12] bond2 (unregistering): Released all slaves
[ 1601.009271][   T12] bond3 (unregistering): Released all slaves
[ 1601.031953][   T12] bond4 (unregistering): Released all slaves
[ 1601.043455][   T12] bond5 (unregistering): Released all slaves
[ 1601.061705][   T12] bond6 (unregistering): Released all slaves
[ 1601.069670][   T12] bond7 (unregistering): Released all slaves
[ 1601.094343][   T12] bond8 (unregistering): Released all slaves
[ 1601.117440][   T12] bond9 (unregistering): Released all slaves
[ 1601.175906][T30686] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1601.178459][T30686] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1601.180859][T30686] bridge_slave_0: entered allmulticast mode
[ 1601.187220][T30686] bridge_slave_0: entered promiscuous mode
[ 1601.201505][T30686] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1601.284527][T30686] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1601.293765][T30686] bridge_slave_1: entered allmulticast mode
[ 1601.304506][   T12] IPVS: stopping backup sync thread 29138 ...
[ 1601.322136][T30686] bridge_slave_1: entered promiscuous mode
[ 1601.330615][  T217] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1601.341591][  T217] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1601.555280][T30697] vhci_hcd: connection reset by peer
[ 1601.562470][ T1230] vhci_hcd vhci_hcd.1: stop threads
[ 1601.564987][ T1230] vhci_hcd vhci_hcd.1: release socket
[ 1601.566946][ T1230] vhci_hcd vhci_hcd.1: disconnect device
[ 1601.663553][T30723] overlay: Unknown parameter '/'
[ 1601.865634][T30686] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1601.877874][T30686] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1601.944888][T30686] team0: Port device team_slave_0 added
[ 1601.959413][T30686] team0: Port device team_slave_1 added
[ 1601.978476][   T12] hsr_slave_0: left promiscuous mode
[ 1601.990492][   T12] hsr_slave_1: left promiscuous mode
[ 1602.011324][   T12] veth1_macvtap: left promiscuous mode
[ 1602.020950][   T12] veth0_macvtap: left promiscuous mode
[ 1602.022841][   T12] veth1_vlan: left promiscuous mode
[ 1602.031088][   T12] veth0_vlan: left promiscuous mode
[ 1602.073288][T27624] Bluetooth: hci1: command tx timeout
[ 1602.323165][   T12] team0 (unregistering): Port device team_slave_1 removed
[ 1602.376587][   T12] team0 (unregistering): Port device team_slave_0 removed
[ 1602.552171][T30686] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1602.558037][T30686] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1602.567082][T30686] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1602.576998][T30686] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1602.580094][T30686] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1602.590441][T30686] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1602.626251][T30686] hsr_slave_0: entered promiscuous mode
[ 1602.629385][T30686] hsr_slave_1: entered promiscuous mode
[ 1602.632389][T30686] debugfs: 'hsr0' already exists in 'hsr'
[ 1602.635156][T30686] Cannot create hsr debugfs directory
[ 1602.870165][T30686] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1603.785697][T30755] netlink: 'syz.2.6760': attribute type 1 has an invalid length.
[ 1604.152028][T27624] Bluetooth: hci1: command tx timeout
[ 1604.765614][T30686] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1604.772967][T30686] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1604.779528][T30686] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1604.846712][T30755] workqueue: Failed to create a rescuer kthread for wq "bond10": -EINTR
[ 1604.968777][T30686] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1604.980686][T30686] 8021q: adding VLAN 0 to HW filter on device team0
[ 1604.989016][T30467] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1604.991344][T30467] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1605.083826][T30467] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1605.086280][T30467] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1605.266464][T30686] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1605.333450][T30789] program syz.2.6764 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1605.414121][T30798] random: crng reseeded on system resumption
[ 1605.741534][T14034] usb 40-1: device descriptor read/8, error -110
[ 1605.896519][T30686] veth0_vlan: entered promiscuous mode
[ 1605.903503][T30686] veth1_vlan: entered promiscuous mode
[ 1605.919905][T30686] veth0_macvtap: entered promiscuous mode
[ 1605.932064][T30686] veth1_macvtap: entered promiscuous mode
[ 1605.940949][T30686] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1605.947987][T30686] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1605.954877][   T12] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1605.960733][   T12] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1606.141655][T14034] usb usb40-port1: attempt power cycle
[ 1606.221078][T27624] Bluetooth: hci1: command tx timeout
[ 1606.252285][   T12] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1606.255754][   T12] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1606.373411][T14889] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1606.376528][T14889] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1606.407961][T14889] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1606.411909][T14889] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1607.137177][T30824] wlan1 speed is unknown, defaulting to 1000
[ 1607.618079][T14034] usb usb40-port1: unable to enumerate USB device
[ 1608.189442][T30836] netlink: 72 bytes leftover after parsing attributes in process `syz.3.6770'.
[ 1608.208895][T30836] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6770'.
[ 1608.300085][T27624] Bluetooth: hci1: command tx timeout
[ 1608.376495][T30845] usb usb8: usbfs: process 30845 (syz.3.6772) did not claim interface 0 before use
[ 1608.529076][T30842] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6769'.
[ 1609.010525][T30848] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6773'.
[ 1609.014054][T30848] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6773'.
[ 1609.156541][T30850] random: crng reseeded on system resumption
[ 1609.405491][T30862] wlan1 speed is unknown, defaulting to 1000
[ 1609.450548][T30859] program syz.4.6775 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1609.840067][T30865] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1609.842678][T30865] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1609.862808][T30865] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1609.865355][T30865] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1610.443990][T30871] netlink: 72 bytes leftover after parsing attributes in process `syz.1.6779'.
[ 1610.449853][T30871] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6779'.
[ 1611.019548][T30882] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6783'.
[ 1611.022554][T30882] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6783'.
[ 1611.979622][T30896] netlink: 72 bytes leftover after parsing attributes in process `syz.4.6788'.
[ 1612.089175][T30899] binder: 30892:30899 ioctl 4018620d 0 returned -22
[ 1613.392676][T30931] __nla_validate_parse: 1 callbacks suppressed
[ 1613.392688][T30931] netlink: 72 bytes leftover after parsing attributes in process `syz.3.6797'.
[ 1613.401272][T30931] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6797'.
[ 1614.634871][T30943] xt_TPROXY: Can be used only with -p tcp or -p udp
[ 1615.169885][T30950] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6802'.
[ 1615.172811][T30950] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6802'.
[ 1615.261260][T30954] netlink: 'syz.3.6805': attribute type 1 has an invalid length.
[ 1615.279189][T30954] 8021q: adding VLAN 0 to HW filter on device bond6
[ 1615.352896][T30959] netlink: 'syz.3.6806': attribute type 1 has an invalid length.
[ 1615.371784][T30959] 8021q: adding VLAN 0 to HW filter on device bond7
[ 1615.437643][T30962] tipc: Started in network mode
[ 1615.439465][T30962] tipc: Node identity 56dab5affdb, cluster identity 4711
[ 1615.441866][T30962] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1615.445613][T30962] syzkaller0: MTU too low for tipc bearer
[ 1615.449453][T30962] tipc: Disabling bearer <eth:syzkaller0>
[ 1615.458970][T30962] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1616.601816][   T40] kauditd_printk_skb: 286 callbacks suppressed
[ 1616.601827][   T40] audit: type=1326 audit(1773733707.603:34506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30974 comm="syz.1.6811" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1616.613941][   T40] audit: type=1326 audit(1773733707.613:34507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30974 comm="syz.1.6811" exe="/syz-executor" sig=0 arch=40000003 syscall=343 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1616.628243][   T40] audit: type=1326 audit(1773733963.624:34508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30974 comm="syz.1.6811" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1616.639170][   T40] audit: type=1326 audit(1773733963.624:34509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30974 comm="syz.1.6811" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1616.646269][   T40] audit: type=1326 audit(1773733963.624:34510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30974 comm="syz.1.6811" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1616.653130][   T40] audit: type=1326 audit(1773733963.624:34511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30974 comm="syz.1.6811" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1616.660249][   T40] audit: type=1326 audit(1773733963.624:34512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30974 comm="syz.1.6811" exe="/syz-executor" sig=0 arch=40000003 syscall=369 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1616.667045][   T40] audit: type=1326 audit(1773733963.624:34513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30974 comm="syz.1.6811" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1616.675605][   T40] audit: type=1326 audit(1773733963.624:34514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30974 comm="syz.1.6811" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1616.687262][   T40] audit: type=1326 audit(1773733963.624:34515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30974 comm="syz.1.6811" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1616.979238][T30989] netlink: 'syz.1.6814': attribute type 1 has an invalid length.
[ 1617.007371][T30989] 8021q: adding VLAN 0 to HW filter on device bond8
[ 1617.564302][T31012] fuse: Bad value for 'group_id'
[ 1617.566069][T31012] fuse: Bad value for 'group_id'
[ 1617.680259][T31015] siw: device registration error -23
[ 1617.893361][T31020] FAULT_INJECTION: forcing a failure.
[ 1617.893361][T31020] name failslab, interval 1, probability 0, space 0, times 0
[ 1617.898970][T31020] CPU: 2 UID: 0 PID: 31020 Comm: syz.1.6818 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1617.898988][T31020] Tainted: [L]=SOFTLOCKUP
[ 1617.898993][T31020] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1617.898999][T31020] Call Trace:
[ 1617.899003][T31020]  <TASK>
[ 1617.899008][T31020]  dump_stack_lvl+0x100/0x190
[ 1617.899028][T31020]  should_fail_ex.cold+0x5/0xa
[ 1617.899040][T31020]  should_failslab+0xc2/0x120
[ 1617.899052][T31020]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1617.899066][T31020]  ? vhost_task_create+0xee/0x370
[ 1617.899083][T31020]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[ 1617.899097][T31020]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[ 1617.899113][T31020]  vhost_task_create+0xee/0x370
[ 1617.899128][T31020]  ? __pfx_vhost_task_create+0x10/0x10
[ 1617.899143][T31020]  ? register_lock_class+0x40/0x560
[ 1617.899163][T31020]  ? __pfx_vhost_task_fn+0x10/0x10
[ 1617.899180][T31020]  ? __pfx___mutex_lock+0x10/0x10
[ 1617.899200][T31020]  kvm_mmu_post_init_vm+0x1b3/0x370
[ 1617.899212][T31020]  kvm_arch_vcpu_ioctl_run+0x66/0x1830
[ 1617.899223][T31020]  ? kvm_vcpu_ioctl+0x155c/0x1730
[ 1617.899240][T31020]  kvm_vcpu_ioctl+0x730/0x1730
[ 1617.899255][T31020]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[ 1617.899270][T31020]  ? tomoyo_path_number_perm+0x188/0x580
[ 1617.899283][T31020]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1617.899299][T31020]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1617.899318][T31020]  ? do_vfs_ioctl+0x226/0x13e0
[ 1617.899334][T31020]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 1617.899355][T31020]  kvm_vcpu_compat_ioctl+0x20f/0x3c0
[ 1617.899370][T31020]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[ 1617.899385][T31020]  ? __fget_files+0x21f/0x3d0
[ 1617.899397][T31020]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[ 1617.899412][T31020]  __ia32_compat_sys_ioctl+0x2cf/0x360
[ 1617.899429][T31020]  __do_fast_syscall_32+0xe3/0x8c0
[ 1617.899446][T31020]  do_fast_syscall_32+0x32/0x70
[ 1617.899462][T31020]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1617.899476][T31020] RIP: 0023:0xf7f87f6c
[ 1617.899485][T31020] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 1617.899495][T31020] RSP: 002b:00000000f544650c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[ 1617.899506][T31020] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000ae80
[ 1617.899512][T31020] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1617.899518][T31020] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1617.899524][T31020] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 1617.899530][T31020] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1617.899543][T31020]  </TASK>
[ 1618.083059][T31022] syz.4.6819: calling unsupported SCSI_IOCTL_SEND_COMMAND
[ 1618.354235][T31028] netlink: 8188 bytes leftover after parsing attributes in process `syz.4.6822'.
[ 1618.527838][T31034] netlink: 'syz.4.6825': attribute type 1 has an invalid length.
[ 1618.548561][T31034] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1618.634296][T31040] netlink: 212408 bytes leftover after parsing attributes in process `syz.2.6826'.
[ 1618.760931][T31048] netlink: 'syz.2.6827': attribute type 1 has an invalid length.
[ 1619.286998][T31057] netlink: 44 bytes leftover after parsing attributes in process `syz.2.6837'.
[ 1619.290389][T31057] netlink: 51 bytes leftover after parsing attributes in process `syz.2.6837'.
[ 1620.125958][T31058] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1620.134062][T31058] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1620.138063][T31058] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1620.656111][T31071] x_tables: duplicate underflow at hook 1
[ 1621.132968][T31070] netlink: 12 bytes leftover after parsing attributes in process `syz.4.6831'.
[ 1621.136151][T31070] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6831'.
[ 1621.413441][T27624] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1621.816700][T15684] block nbd3: Receive control failed (result -110)
[ 1621.854863][T31082] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1622.145723][T31084] 0: reclassify loop, rule prio 0, protocol 700
[ 1622.210651][T31092] batadv_slave_1: entered promiscuous mode
[ 1622.214096][T31092] batadv_slave_1: left promiscuous mode
[ 1622.785934][   T40] kauditd_printk_skb: 44 callbacks suppressed
[ 1622.785946][   T40] audit: type=1326 audit(1773734481.797:34560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31093 comm="syz.1.6841" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1622.799109][   T40] audit: type=1326 audit(1773734481.807:34561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31093 comm="syz.1.6841" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1622.810436][   T40] audit: type=1326 audit(1773734481.807:34562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31093 comm="syz.1.6841" exe="/syz-executor" sig=0 arch=40000003 syscall=343 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1622.819910][   T40] audit: type=1326 audit(1773734737.814:34563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31093 comm="syz.1.6841" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1622.828920][   T40] audit: type=1326 audit(1773734737.814:34564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31093 comm="syz.1.6841" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1622.838459][   T40] audit: type=1326 audit(1773734737.814:34565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31093 comm="syz.1.6841" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7185cab code=0x7ffc0000
[ 1622.847086][   T40] audit: type=1326 audit(1773734737.814:34566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31093 comm="syz.1.6841" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7185cab code=0x7ffc0000
[ 1622.858568][   T40] audit: type=1326 audit(1773734737.814:34567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31093 comm="syz.1.6841" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1622.866142][   T40] audit: type=1326 audit(1773734737.814:34568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31093 comm="syz.1.6841" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1622.875595][   T40] audit: type=1326 audit(1773734737.814:34569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31093 comm="syz.1.6841" exe="/syz-executor" sig=0 arch=40000003 syscall=141 compat=1 ip=0xf7f87f6c code=0x7ffc0000
[ 1623.017823][T31098] bridge0: port 3(syz_tun) entered blocking state
[ 1623.020970][T31098] bridge0: port 3(syz_tun) entered disabled state
[ 1623.024084][T31098] syz_tun: entered allmulticast mode
[ 1623.029513][T31098] syz_tun: entered promiscuous mode
[ 1623.033400][T31098] bridge0: port 3(syz_tun) entered blocking state
[ 1623.036259][T31098] bridge0: port 3(syz_tun) entered forwarding state
[ 1623.444454][T31103] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5)
[ 1623.446545][T31103] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1623.492523][T15684] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1623.544621][T31103] vhci_hcd vhci_hcd.0: Device attached
[ 1623.822285][ T3246] usb 46-1: SetAddress Request (2) to port 0
[ 1623.824368][ T3246] usb 46-1: new SuperSpeed USB device number 2 using vhci_hcd
[ 1623.999383][T31105] vhci_hcd: connection reset by peer
[ 1624.002078][T14889] vhci_hcd vhci_hcd.4: stop threads
[ 1624.003863][T14889] vhci_hcd vhci_hcd.4: release socket
[ 1624.006248][T14889] vhci_hcd vhci_hcd.4: disconnect device
[ 1625.077674][T31124] netlink: 72 bytes leftover after parsing attributes in process `syz.1.6849'.
[ 1625.088134][T31124] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6849'.
[ 1625.410142][T31108] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1625.445541][T31114] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1625.670627][T31131] program syz.2.6851 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1627.431378][T15684] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1627.736072][T31138] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6853'.
[ 1627.739349][T31138] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6853'.
[ 1628.349923][   T40] kauditd_printk_skb: 5 callbacks suppressed
[ 1628.349936][   T40] audit: type=1326 audit(1773734743.286:34575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31144 comm="syz.4.6855" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 1628.359054][   T40] audit: type=1326 audit(1773734743.286:34576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31144 comm="syz.4.6855" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 1628.366402][   T40] audit: type=1326 audit(1773734743.286:34577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31144 comm="syz.4.6855" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 1628.373738][   T40] audit: type=1326 audit(1773734743.286:34578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31144 comm="syz.4.6855" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 1628.380961][   T40] audit: type=1326 audit(1773734743.286:34579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31144 comm="syz.4.6855" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cef6c code=0x7ffc0000
[ 1628.861420][ T3246] usb 46-1: device descriptor read/8, error -110
[ 1628.956758][T31162] netlink: 72 bytes leftover after parsing attributes in process `syz.4.6858'.
[ 1628.977577][T31162] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6858'.
[ 1629.168792][T31170] netlink: 84 bytes leftover after parsing attributes in process `syz.1.6861'.
[ 1629.173104][T31170] 0: reclassify loop, rule prio 0, protocol 700
[ 1629.214734][T31173] netlink: 72 bytes leftover after parsing attributes in process `syz.3.6862'.
[ 1629.233162][T31173] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6862'.
[ 1629.261264][ T3246] usb usb46-port1: attempt power cycle
[ 1629.425469][T31179] program syz.3.6864 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1630.470906][T31190] netlink: 80 bytes leftover after parsing attributes in process `syz.2.6863'.
[ 1630.477739][T31190] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6863'.
[ 1630.485545][T31192] IPVS: sync thread started: state = BACKUP, mcast_ifn = vcan0, syncid = 0, id = 0
[ 1630.531496][T31171] wlan1 speed is unknown, defaulting to 1000
[ 1630.832600][T31197] IPVS: sync thread started: state = BACKUP, mcast_ifn = bond_slave_1, syncid = 0, id = 0
[ 1630.979574][ T3246] usb usb46-port1: unable to enumerate USB device
[ 1631.058598][T29366] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[ 1631.730656][T31210] netlink: 'syz.1.6870': attribute type 1 has an invalid length.
[ 1632.009064][T29366] usb 9-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1632.063337][T29366] usb 9-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.41
[ 1632.066435][T29366] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11
[ 1632.069250][T29366] usb 9-1: Product: syz
[ 1632.070697][T29366] usb 9-1: Manufacturer: syz
[ 1632.072326][T29366] usb 9-1: SerialNumber: syz
[ 1632.197147][T29366] usb 9-1: can't set config #1, error -71
[ 1632.201061][T29366] usb 9-1: USB disconnect, device number 2
[ 1632.383576][T31220] wlan1 speed is unknown, defaulting to 1000
[ 1632.407700][T31223] netlink: 72 bytes leftover after parsing attributes in process `syz.4.6873'.
[ 1632.435980][T31222] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6873'.
[ 1632.585749][T31225] 9pnet_virtio: no channels available for device syz
[ 1632.649447][T31235] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1632.660182][T31235] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1632.717186][T31236] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1633.137766][T29366] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[ 1633.287605][T29366] usb 9-1: Using ep0 maxpacket: 8
[ 1633.291369][T29366] usb 9-1: config index 0 descriptor too short (expected 301, got 45)
[ 1633.294773][T29366] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1633.299444][T29366] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1633.303703][T29366] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1633.308287][T29366] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1633.313482][T29366] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1633.317121][T29366] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1633.531110][T29366] usb 9-1: usb_control_msg returned -32
[ 1633.532934][T29366] usbtmc 9-1:16.0: can't read capabilities
[ 1634.121957][T31245] x_tables: duplicate underflow at hook 1
[ 1635.452636][T31252] netlink: 84 bytes leftover after parsing attributes in process `syz.3.6880'.
[ 1635.456174][T31252] 0: reclassify loop, rule prio 0, protocol 700
[ 1635.528306][ T3246] usb 9-1: USB disconnect, device number 3
[ 1635.642518][T31257] netlink: 72 bytes leftover after parsing attributes in process `syz.3.6882'.
[ 1635.650544][T31257] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6882'.
[ 1635.692482][T31260] netlink: 'syz.3.6883': attribute type 1 has an invalid length.
[ 1636.886608][T31271] usb usb8: usbfs: process 31271 (syz.2.6886) did not claim interface 0 before use
[ 1637.008944][T31272] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[ 1637.011127][T31272] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1637.013911][T31272] vhci_hcd vhci_hcd.0: Device attached
[ 1637.325456][T24643] usb 44-1: SetAddress Request (56) to port 0
[ 1637.328074][T24643] usb 44-1: new SuperSpeed USB device number 56 using vhci_hcd
[ 1637.692554][T31291] netlink: 72 bytes leftover after parsing attributes in process `syz.4.6893'.
[ 1637.709210][T31291] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6893'.
[ 1637.709906][T31290] wlan1 speed is unknown, defaulting to 1000
[ 1637.740176][T31293] netlink: 'syz.4.6894': attribute type 1 has an invalid length.
[ 1638.970768][T31273] vhci_hcd: connection reset by peer
[ 1638.984703][ T1230] vhci_hcd vhci_hcd.3: stop threads
[ 1638.986921][ T1230] vhci_hcd vhci_hcd.3: release socket
[ 1638.988949][ T1230] vhci_hcd vhci_hcd.3: disconnect device
[ 1639.114511][ T3246] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[ 1639.266022][ T3246] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1639.270616][ T3246] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1639.274594][ T3246] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1639.279588][ T3246] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1639.283297][ T3246] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1639.288399][ T3246] usb 9-1: config 0 descriptor??
[ 1639.374400][T12735] usb 6-1: new full-speed USB device number 43 using dummy_hcd
[ 1639.556339][T12735] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1639.559513][T12735] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1639.563565][T12735] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1639.566750][T12735] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1639.708618][ T3246] plantronics 0003:047F:FFFF.0009: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[ 1639.775462][T12735] usb 6-1: usb_control_msg returned -32
[ 1639.777355][T12735] usbtmc 6-1:16.0: can't read capabilities
[ 1640.059839][T12735] usb 9-1: USB disconnect, device number 4
[ 1640.640045][T31323] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1640.860624][T31329] netlink: 72 bytes leftover after parsing attributes in process `syz.2.6902'.
[ 1640.868178][T31329] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6902'.
[ 1640.903491][T31332] netlink: 'syz.2.6903': attribute type 1 has an invalid length.
[ 1641.440732][T31322] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1642.137591][T14034] usb 6-1: USB disconnect, device number 43
[ 1642.165310][T31348] vlan3: entered allmulticast mode
[ 1642.167542][T31348] veth0_to_bond: entered allmulticast mode
[ 1642.366393][T24643] usb 44-1: device descriptor read/8, error -110
[ 1642.833184][T24643] usb usb44-port1: attempt power cycle
[ 1643.323695][T31355] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[ 1643.325862][T31355] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1643.328818][T31355] vhci_hcd vhci_hcd.0: Device attached
[ 1643.403273][T24643] usb usb44-port1: unable to enumerate USB device
[ 1643.595113][   T34] usb 40-1: SetAddress Request (63) to port 0
[ 1643.597640][   T34] usb 40-1: new SuperSpeed USB device number 63 using vhci_hcd
[ 1643.644925][T31356] vhci_hcd: connection reset by peer
[ 1643.647567][  T217] vhci_hcd vhci_hcd.1: stop threads
[ 1643.650600][  T217] vhci_hcd vhci_hcd.1: release socket
[ 1643.652457][  T217] vhci_hcd vhci_hcd.1: disconnect device
[ 1644.550635][ T5921] 
[ 1644.551476][ T5921] ======================================================
[ 1644.553774][ T5921] WARNING: possible circular locking dependency detected
[ 1644.556094][ T5921] syzkaller #0 Tainted: G             L     
[ 1644.558144][ T5921] ------------------------------------------------------
[ 1644.560361][ T5921] syz-executor/5921 is trying to acquire lock:
[ 1644.562322][ T5921] ffffffff8e9aa080 (fs_reclaim){+.+.}-{0:0}, at: prepare_alloc_pages+0x166/0x5f0
[ 1644.565242][ T5921] 
[ 1644.565242][ T5921] but task is already holding lock:
[ 1644.567569][ T5921] ffff8880516e2be0 (mapping.invalidate_lock#2){++++}-{4:4}, at: filemap_fault+0x859/0x2eb0
[ 1644.570733][ T5921] 
[ 1644.570733][ T5921] which lock already depends on the new lock.
[ 1644.570733][ T5921] 
[ 1644.573998][ T5921] 
[ 1644.573998][ T5921] the existing dependency chain (in reverse order) is:
[ 1644.576853][ T5921] 
[ 1644.576853][ T5921] -> #7 (mapping.invalidate_lock#2){++++}-{4:4}:
[ 1644.579408][ T5921]        down_read+0x99/0x460
[ 1644.580928][ T5921]        do_page_cache_ra+0xfe/0x160
[ 1644.582621][ T5921]        page_cache_ra_order+0xc4e/0xf30
[ 1644.584401][ T5921]        filemap_fault+0x191a/0x2eb0
[ 1644.586074][ T5921]        __do_fault+0x10d/0x550
[ 1644.587635][ T5921]        do_fault+0xabb/0x1990
[ 1644.589185][ T5921]        __handle_mm_fault+0x180f/0x2b60
[ 1644.590980][ T5921]        handle_mm_fault+0x36d/0xa20
[ 1644.592679][ T5921]        do_user_addr_fault+0x74c/0x12f0
[ 1644.594476][ T5921]        exc_page_fault+0x6f/0xd0
[ 1644.596152][ T5921]        asm_exc_page_fault+0x26/0x30
[ 1644.597864][ T5921]        _copy_from_iter+0x350/0x1690
[ 1644.599595][ T5921]        tcp_sendmsg_locked+0xc8f/0x45e0
[ 1644.601400][ T5921]        tcp_sendmsg+0x2e/0x50
[ 1644.602991][ T5921]        inet_sendmsg+0xb9/0x140
[ 1644.604621][ T5921]        sock_write_iter+0x4ea/0x5a0
[ 1644.606356][ T5921]        vfs_write+0x6ac/0x1070
[ 1644.607935][ T5921]        ksys_write+0x1f8/0x250
[ 1644.609540][ T5921]        __do_fast_syscall_32+0xe3/0x8c0
[ 1644.611370][ T5921]        do_fast_syscall_32+0x32/0x70
[ 1644.613132][ T5921]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1644.615410][ T5921] 
[ 1644.615410][ T5921] -> #6 (sk_lock-AF_INET){+.+.}-{0:0}:
[ 1644.617829][ T5921]        lock_sock_nested+0x41/0xf0
[ 1644.619459][ T5921]        inet_shutdown+0x67/0x410
[ 1644.621071][ T5921]        nbd_mark_nsock_dead+0xae/0x5c0
[ 1644.622845][ T5921]        recv_work+0x5fb/0x8c0
[ 1644.624368][ T5921]        process_one_work+0xa23/0x19a0
[ 1644.626144][ T5921]        worker_thread+0x5ef/0xe50
[ 1644.627774][ T5921]        kthread+0x370/0x450
[ 1644.629306][ T5921]        ret_from_fork+0x754/0xd80
[ 1644.630978][ T5921]        ret_from_fork_asm+0x1a/0x30
[ 1644.632719][ T5921] 
[ 1644.632719][ T5921] -> #5 (&nsock->tx_lock){+.+.}-{4:4}:
[ 1644.635240][ T5921]        __mutex_lock+0x1a2/0x1b90
[ 1644.636922][ T5921]        nbd_queue_rq+0x428/0x1080
[ 1644.638603][ T5921]        blk_mq_dispatch_rq_list+0x422/0x1e70
[ 1644.640585][ T5921]        __blk_mq_sched_dispatch_requests+0xcea/0x1620
[ 1644.642807][ T5921]        blk_mq_sched_dispatch_requests+0xd7/0x1c0
[ 1644.644927][ T5921]        blk_mq_run_hw_queue+0x23c/0x670
[ 1644.646771][ T5921]        blk_mq_dispatch_list+0x51d/0x1360
[ 1644.648695][ T5921]        blk_mq_flush_plug_list+0x130/0x600
[ 1644.650627][ T5921]        __blk_flush_plug+0x2c4/0x4b0
[ 1644.652372][ T5921]        __submit_bio+0x584/0x6c0
[ 1644.654043][ T5921]        submit_bio_noacct_nocheck+0x562/0xc10
[ 1644.656070][ T5921]        submit_bio_noacct+0xd17/0x2010
[ 1644.657904][ T5921]        submit_bh_wbc+0x59c/0x770
[ 1644.659576][ T5921]        block_read_full_folio+0x264/0x8e0
[ 1644.661500][ T5921]        filemap_read_folio+0xfc/0x3b0
[ 1644.663347][ T5921]        do_read_cache_folio+0x2d7/0x6b0
[ 1644.665221][ T5921]        read_part_sector+0xd1/0x370
[ 1644.666945][ T5921]        adfspart_check_ICS+0x93/0x910
[ 1644.668726][ T5921]        bdev_disk_changed+0x7f8/0xc80
[ 1644.670463][ T5921]        blkdev_get_whole+0x187/0x290
[ 1644.672197][ T5921]        bdev_open+0x2c7/0xe40
[ 1644.673774][ T5921]        blkdev_open+0x34e/0x4f0
[ 1644.675439][ T5921]        do_dentry_open+0x6d8/0x1660
[ 1644.677171][ T5921]        vfs_open+0x82/0x3f0
[ 1644.678700][ T5921]        path_openat+0x208c/0x31a0
[ 1644.680367][ T5921]        do_file_open+0x20e/0x430
[ 1644.682031][ T5921]        do_sys_openat2+0x10d/0x1e0
[ 1644.683735][ T5921]        __x64_sys_openat+0x12d/0x210
[ 1644.685525][ T5921]        do_syscall_64+0x106/0xf80
[ 1644.687203][ T5921]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1644.689307][ T5921] 
[ 1644.689307][ T5921] -> #4 (&cmd->lock){+.+.}-{4:4}:
[ 1644.691654][ T5921]        __mutex_lock+0x1a2/0x1b90
[ 1644.693336][ T5921]        nbd_queue_rq+0xba/0x1080
[ 1644.695023][ T5921]        blk_mq_dispatch_rq_list+0x422/0x1e70
[ 1644.697018][ T5921]        __blk_mq_sched_dispatch_requests+0xcea/0x1620
[ 1644.699239][ T5921]        blk_mq_sched_dispatch_requests+0xd7/0x1c0
[ 1644.701352][ T5921]        blk_mq_run_hw_queue+0x23c/0x670
[ 1644.703192][ T5921]        blk_mq_dispatch_list+0x51d/0x1360
[ 1644.704925][ T5921]        blk_mq_flush_plug_list+0x130/0x600
[ 1644.706867][ T5921]        __blk_flush_plug+0x2c4/0x4b0
[ 1644.708641][ T5921]        __submit_bio+0x584/0x6c0
[ 1644.710294][ T5921]        submit_bio_noacct_nocheck+0x562/0xc10
[ 1644.712310][ T5921]        submit_bio_noacct+0xd17/0x2010
[ 1644.714136][ T5921]        submit_bh_wbc+0x59c/0x770
[ 1644.715832][ T5921]        block_read_full_folio+0x264/0x8e0
[ 1644.717759][ T5921]        filemap_read_folio+0xfc/0x3b0
[ 1644.719501][ T5921]        do_read_cache_folio+0x2d7/0x6b0
[ 1644.721350][ T5921]        read_part_sector+0xd1/0x370
[ 1644.723393][ T5921]        adfspart_check_ICS+0x93/0x910
[ 1644.725245][ T5921]        bdev_disk_changed+0x7f8/0xc80
[ 1644.727033][ T5921]        blkdev_get_whole+0x187/0x290
[ 1644.728819][ T5921]        bdev_open+0x2c7/0xe40
[ 1644.730386][ T5921]        blkdev_open+0x34e/0x4f0
[ 1644.732043][ T5921]        do_dentry_open+0x6d8/0x1660
[ 1644.733978][ T5921]        vfs_open+0x82/0x3f0
[ 1644.735945][ T5921]        path_openat+0x208c/0x31a0
[ 1644.737853][ T5921]        do_file_open+0x20e/0x430
[ 1644.739719][ T5921]        do_sys_openat2+0x10d/0x1e0
[ 1644.741837][ T5921]        __x64_sys_openat+0x12d/0x210
[ 1644.744159][ T5921]        do_syscall_64+0x106/0xf80
[ 1644.746015][ T5921]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1644.748457][ T5921] 
[ 1644.748457][ T5921] -> #3 (set->srcu){.+.+}-{0:0}:
[ 1644.751266][ T5921]        __synchronize_srcu+0xa1/0x2a0
[ 1644.753373][ T5921]        blk_mq_quiesce_queue+0x149/0x1c0
[ 1644.755563][ T5921]        elevator_switch+0x17b/0x7e0
[ 1644.757834][ T5921]        elevator_change+0x352/0x530
[ 1644.759956][ T5921]        elevator_set_default+0x29e/0x360
[ 1644.762345][ T5921]        blk_register_queue+0x412/0x590
[ 1644.764600][ T5921]        __add_disk+0x73f/0xe40
[ 1644.766642][ T5921]        add_disk_fwnode+0x118/0x5c0
[ 1644.768867][ T5921]        nbd_dev_add+0x77a/0xb10
[ 1644.770981][ T5921]        nbd_init+0x291/0x2b0
[ 1644.772662][ T5921]        do_one_initcall+0x11d/0x760
[ 1644.774370][ T5921]        kernel_init_freeable+0x6e5/0x7a0
[ 1644.776603][ T5921]        kernel_init+0x1f/0x1e0
[ 1644.778689][ T5921]        ret_from_fork+0x754/0xd80
[ 1644.780785][ T5921]        ret_from_fork_asm+0x1a/0x30
[ 1644.782867][ T5921] 
[ 1644.782867][ T5921] -> #2 (&q->elevator_lock){+.+.}-{4:4}:
[ 1644.785871][ T5921]        __mutex_lock+0x1a2/0x1b90
[ 1644.787529][ T5921]        elevator_change+0x1bc/0x530
[ 1644.789246][ T5921]        elevator_set_none+0x92/0xf0
[ 1644.790931][ T5921]        blk_mq_update_nr_hw_queues+0x4c1/0x15f0
[ 1644.792970][ T5921]        nbd_start_device+0x1a6/0xbd0
[ 1644.794686][ T5921]        nbd_genl_connect+0xff2/0x1a40
[ 1644.796506][ T5921]        genl_family_rcv_msg_doit+0x214/0x300
[ 1644.798457][ T5921]        genl_rcv_msg+0x560/0x800
[ 1644.800094][ T5921]        netlink_rcv_skb+0x159/0x420
[ 1644.801773][ T5921]        genl_rcv+0x28/0x40
[ 1644.803200][ T5921]        netlink_unicast+0x5aa/0x870
[ 1644.804934][ T5921]        netlink_sendmsg+0x8b0/0xda0
[ 1644.806640][ T5921]        ____sys_sendmsg+0x9e1/0xb70
[ 1644.808364][ T5921]        ___sys_sendmsg+0x190/0x1e0
[ 1644.810284][ T5921]        __sys_sendmsg+0x170/0x220
[ 1644.812465][ T5921]        __do_fast_syscall_32+0xe3/0x8c0
[ 1644.814747][ T5921]        do_fast_syscall_32+0x32/0x70
[ 1644.816771][ T5921]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1644.818966][ T5921] 
[ 1644.818966][ T5921] -> #1 (&q->q_usage_counter(io)#49){++++}-{0:0}:
[ 1644.821879][ T5921]        blk_alloc_queue+0x610/0x790
[ 1644.823568][ T5921]        blk_mq_alloc_queue+0x174/0x290
[ 1644.825370][ T5921]        __blk_mq_alloc_disk+0x29/0x120
[ 1644.827142][ T5921]        nbd_dev_add+0x492/0xb10
[ 1644.828747][ T5921]        nbd_init+0x291/0x2b0
[ 1644.830283][ T5921]        do_one_initcall+0x11d/0x760
[ 1644.832013][ T5921]        kernel_init_freeable+0x6e5/0x7a0
[ 1644.833873][ T5921]        kernel_init+0x1f/0x1e0
[ 1644.835722][ T5921]        ret_from_fork+0x754/0xd80
[ 1644.838015][ T5921]        ret_from_fork_asm+0x1a/0x30
[ 1644.840357][ T5921] 
[ 1644.840357][ T5921] -> #0 (fs_reclaim){+.+.}-{0:0}:
[ 1644.842999][ T5921]        __lock_acquire+0x14b8/0x2630
[ 1644.844760][ T5921]        lock_acquire+0x1cf/0x380
[ 1644.846432][ T5921]        fs_reclaim_acquire+0xc4/0x100
[ 1644.848211][ T5921]        prepare_alloc_pages+0x166/0x5f0
[ 1644.850040][ T5921]        __alloc_frozen_pages_noprof+0x19a/0x2ba0
[ 1644.852114][ T5921]        alloc_pages_mpol+0x1fb/0x550
[ 1644.853883][ T5921]        folio_alloc_noprof+0x22/0x330
[ 1644.855702][ T5921]        filemap_alloc_folio_noprof.part.0+0x377/0x450
[ 1644.857860][ T5921]        __filemap_get_folio_mpol+0x6a4/0xe70
[ 1644.859833][ T5921]        filemap_fault+0x8a2/0x2eb0
[ 1644.861546][ T5921]        __do_fault+0x10d/0x550
[ 1644.863130][ T5921]        do_fault+0xabb/0x1990
[ 1644.864711][ T5921]        __handle_mm_fault+0x180f/0x2b60
[ 1644.866530][ T5921]        handle_mm_fault+0x36d/0xa20
[ 1644.868167][ T5921]        do_user_addr_fault+0x74c/0x12f0
[ 1644.869886][ T5921]        exc_page_fault+0x6f/0xd0
[ 1644.871443][ T5921]        asm_exc_page_fault+0x26/0x30
[ 1644.873099][ T5921]        _copy_from_iter+0x350/0x1690
[ 1644.874778][ T5921]        tcp_sendmsg_locked+0xc8f/0x45e0
[ 1644.876544][ T5921]        tcp_sendmsg+0x2e/0x50
[ 1644.878038][ T5921]        inet_sendmsg+0xb9/0x140
[ 1644.879562][ T5921]        sock_write_iter+0x4ea/0x5a0
[ 1644.881191][ T5921]        vfs_write+0x6ac/0x1070
[ 1644.882723][ T5921]        ksys_write+0x1f8/0x250
[ 1644.884219][ T5921]        __do_fast_syscall_32+0xe3/0x8c0
[ 1644.885975][ T5921]        do_fast_syscall_32+0x32/0x70
[ 1644.887615][ T5921]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1644.889685][ T5921] 
[ 1644.889685][ T5921] other info that might help us debug this:
[ 1644.889685][ T5921] 
[ 1644.892726][ T5921] Chain exists of:
[ 1644.892726][ T5921]   fs_reclaim --> sk_lock-AF_INET --> mapping.invalidate_lock#2
[ 1644.892726][ T5921] 
[ 1644.896828][ T5921]  Possible unsafe locking scenario:
[ 1644.896828][ T5921] 
[ 1644.899097][ T5921]        CPU0                    CPU1
[ 1644.900746][ T5921]        ----                    ----
[ 1644.902379][ T5921]   rlock(mapping.invalidate_lock#2);
[ 1644.904037][ T5921]                                lock(sk_lock-AF_INET);
[ 1644.906210][ T5921]                                lock(mapping.invalidate_lock#2);
[ 1644.908569][ T5921]   lock(fs_reclaim);
[ 1644.909814][ T5921] 
[ 1644.909814][ T5921]  *** DEADLOCK ***
[ 1644.909814][ T5921] 
[ 1644.912301][ T5921] 2 locks held by syz-executor/5921:
[ 1644.913996][ T5921]  #0: ffff888051008f20 (sk_lock-AF_INET){+.+.}-{0:0}, at: tcp_sendmsg+0x20/0x50
[ 1644.916904][ T5921]  #1: ffff8880516e2be0 (mapping.invalidate_lock#2){++++}-{4:4}, at: filemap_fault+0x859/0x2eb0
[ 1644.920170][ T5921] 
[ 1644.920170][ T5921] stack backtrace:
[ 1644.922067][ T5921] CPU: 3 UID: 0 PID: 5921 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1644.922083][ T5921] Tainted: [L]=SOFTLOCKUP
[ 1644.922087][ T5921] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1644.922093][ T5921] Call Trace:
[ 1644.922098][ T5921]  <TASK>
[ 1644.922103][ T5921]  dump_stack_lvl+0x100/0x190
[ 1644.922119][ T5921]  print_circular_bug.cold+0x178/0x1c7
[ 1644.922136][ T5921]  check_noncircular+0x146/0x160
[ 1644.922150][ T5921]  __lock_acquire+0x14b8/0x2630
[ 1644.922165][ T5921]  lock_acquire+0x1cf/0x380
[ 1644.922178][ T5921]  ? prepare_alloc_pages+0x166/0x5f0
[ 1644.922191][ T5921]  fs_reclaim_acquire+0xc4/0x100
[ 1644.922202][ T5921]  ? prepare_alloc_pages+0x166/0x5f0
[ 1644.922213][ T5921]  prepare_alloc_pages+0x166/0x5f0
[ 1644.922225][ T5921]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[ 1644.922242][ T5921]  ? find_held_lock+0x2b/0x80
[ 1644.922252][ T5921]  ? mark_held_locks+0x40/0x70
[ 1644.922264][ T5921]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1644.922278][ T5921]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1644.922295][ T5921]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1644.922313][ T5921]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1644.922327][ T5921]  ? __lock_acquire+0x4a5/0x2630
[ 1644.922339][ T5921]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1644.922356][ T5921]  ? policy_nodemask+0xed/0x4f0
[ 1644.922366][ T5921]  alloc_pages_mpol+0x1fb/0x550
[ 1644.922377][ T5921]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1644.922387][ T5921]  ? find_held_lock+0x2b/0x80
[ 1644.922396][ T5921]  ? filemap_get_entry+0x1a7/0x3b0
[ 1644.922412][ T5921]  ? filemap_get_entry+0x1a7/0x3b0
[ 1644.922429][ T5921]  folio_alloc_noprof+0x22/0x330
[ 1644.922441][ T5921]  filemap_alloc_folio_noprof.part.0+0x377/0x450
[ 1644.922454][ T5921]  ? __pfx_filemap_get_entry+0x10/0x10
[ 1644.922471][ T5921]  ? __pfx_filemap_alloc_folio_noprof.part.0+0x10/0x10
[ 1644.922486][ T5921]  __filemap_get_folio_mpol+0x6a4/0xe70
[ 1644.922504][ T5921]  filemap_fault+0x8a2/0x2eb0
[ 1644.922525][ T5921]  ? __pfx_filemap_fault+0x10/0x10
[ 1644.922542][ T5921]  ? __pfx_filemap_map_pages+0x10/0x10
[ 1644.922559][ T5921]  __do_fault+0x10d/0x550
[ 1644.922570][ T5921]  do_fault+0xabb/0x1990
[ 1644.922582][ T5921]  __handle_mm_fault+0x180f/0x2b60
[ 1644.922597][ T5921]  ? mt_find+0x45e/0x8e0
[ 1644.922612][ T5921]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1644.922625][ T5921]  ? __pfx_mt_find+0x10/0x10
[ 1644.922643][ T5921]  ? find_vma+0xbf/0x140
[ 1644.922655][ T5921]  ? __pfx_find_vma+0x10/0x10
[ 1644.922665][ T5921]  handle_mm_fault+0x36d/0xa20
[ 1644.922679][ T5921]  do_user_addr_fault+0x74c/0x12f0
[ 1644.922698][ T5921]  exc_page_fault+0x6f/0xd0
[ 1644.922713][ T5921]  asm_exc_page_fault+0x26/0x30
[ 1644.922723][ T5921] RIP: 0010:_copy_from_iter+0x350/0x1690
[ 1644.922737][ T5921] Code: 89 f5 44 89 f6 48 89 df 48 b8 00 f0 ff ff ff 7f 00 00 48 39 c5 48 0f 47 e8 e8 1c 55 81 fd 0f 01 cb 4c 89 f1 48 89 df 48 89 ee <f3> a4 0f 1f 00 48 89 cd 0f 01 ca 4d 89 f7 49 29 cf e9 a9 fe ff ff
[ 1644.922747][ T5921] RSP: 0018:ffffc90003907880 EFLAGS: 00050246
[ 1644.922756][ T5921] RAX: 0000000000000001 RBX: ffff88805b378000 RCX: 0000000000007c18
[ 1644.922762][ T5921] RDX: 0000000000000001 RSI: 00000000f3232000 RDI: ffff88805b3783e8
[ 1644.922769][ T5921] RBP: 00000000f3231c18 R08: 0000000000000001 R09: ffffed100b66ffff
[ 1644.922775][ T5921] R10: ffff88805b37ffff R11: 0000000000000000 R12: ffffc90003907c30
[ 1644.922782][ T5921] R13: 0000000000000000 R14: 0000000000008000 R15: 0000000000000000
[ 1644.922792][ T5921]  ? __pfx_tcp_leave_memory_pressure+0x10/0x10
[ 1644.922803][ T5921]  ? sk_leave_memory_pressure+0x81/0x140
[ 1644.922814][ T5921]  ? __pfx__copy_from_iter+0x10/0x10
[ 1644.922826][ T5921]  ? __sk_mem_schedule+0xd0/0x100
[ 1644.922842][ T5921]  tcp_sendmsg_locked+0xc8f/0x45e0
[ 1644.922857][ T5921]  ? __pfx_tcp_sendmsg_locked+0x10/0x10
[ 1644.922868][ T5921]  ? do_raw_spin_lock+0x128/0x260
[ 1644.922883][ T5921]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1644.922900][ T5921]  ? __local_bh_enable_ip+0x9e/0x120
[ 1644.922912][ T5921]  tcp_sendmsg+0x2e/0x50
[ 1644.922921][ T5921]  ? __pfx_tcp_sendmsg+0x10/0x10
[ 1644.922931][ T5921]  inet_sendmsg+0xb9/0x140
[ 1644.922942][ T5921]  sock_write_iter+0x4ea/0x5a0
[ 1644.922953][ T5921]  ? __pfx_inet_sendmsg+0x10/0x10
[ 1644.922963][ T5921]  ? __pfx_sock_write_iter+0x10/0x10
[ 1644.922973][ T5921]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1644.922990][ T5921]  ? bpf_lsm_file_permission+0x9/0x10
[ 1644.923007][ T5921]  ? security_file_permission+0x76/0x210
[ 1644.923020][ T5921]  ? rw_verify_area+0xce/0x6d0
[ 1644.923035][ T5921]  vfs_write+0x6ac/0x1070
[ 1644.923044][ T5921]  ? __pfx_sock_write_iter+0x10/0x10
[ 1644.923055][ T5921]  ? __pfx_vfs_write+0x10/0x10
[ 1644.923071][ T5921]  ? find_held_lock+0x2b/0x80
[ 1644.923080][ T5921]  ? count_memcg_events_mm.constprop.0+0xfa/0x2a0
[ 1644.923099][ T5921]  ? count_memcg_events_mm.constprop.0+0x109/0x2a0
[ 1644.923117][ T5921]  ksys_write+0x1f8/0x250
[ 1644.923126][ T5921]  ? __pfx_ksys_write+0x10/0x10
[ 1644.923137][ T5921]  __do_fast_syscall_32+0xe3/0x8c0
[ 1644.923153][ T5921]  do_fast_syscall_32+0x32/0x70
[ 1644.923168][ T5921]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1644.923182][ T5921] RIP: 0023:0xf707ef6c
[ 1644.923190][ T5921] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[ 1644.923200][ T5921] RSP: 002b:00000000ffaf3870 EFLAGS: 00000246 ORIG_RAX: 0000000000000004
[ 1644.923209][ T5921] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f3231c18
[ 1644.923216][ T5921] RDX: 00000000000453e8 RSI: 0000000000000000 RDI: 0000000000000000
[ 1644.923222][ T5921] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1644.923228][ T5921] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1644.923234][ T5921] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1644.923243][ T5921]  </TASK>
[ 1645.699244][T24656] bridge0: port 3(syz_tun) entered disabled state
[ 1645.705400][T24656] syz_tun (unregistering): left allmulticast mode
[ 1645.707504][T24656] syz_tun (unregistering): left promiscuous mode
[ 1645.709585][T24656] bridge0: port 3(syz_tun) entered disabled state
[ 1645.738906][T23922] tipc: Resetting bearer <eth:syzkaller0>
[ 1645.761373][T23922] tipc: Disabling bearer <eth:syzkaller0>
[ 1645.768390][T22854] syz_tun (unregistering): left allmulticast mode
[ 1645.771198][T22854] syz_tun (unregistering): left promiscuous mode
[ 1645.773812][T22854] bridge0: port 3(syz_tun) entered disabled state
SYZFAIL: failed to send rpc
fd=3 want=56 sent=0 n=-1 (errno 32: Broken pipe)
[ 1645.976063][T30467] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1646.084041][T30467] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1646.133623][T30467] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1646.226442][T31371] bridge0: port 3(syz_tun) entered disabled state
[ 1646.240489][T31371] syz_tun (unregistering): left allmulticast mode
[ 1646.243448][T31371] syz_tun (unregistering): left promiscuous mode
[ 1646.246317][T31371] bridge0: port 3(syz_tun) entered disabled state
[ 1646.253096][T30467] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1646.383381][T30467] bridge_slave_1: left allmulticast mode
[ 1646.385307][T30467] bridge_slave_1: left promiscuous mode
[ 1646.387196][T30467] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1646.396706][T30467] bridge_slave_0: left allmulticast mode
[ 1646.398578][T30467] bridge_slave_0: left promiscuous mode
[ 1646.400476][T30467] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1646.724208][T30467] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1646.729214][T30467] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1646.734210][T30467] bond0 (unregistering): Released all slaves
[ 1646.739633][T30467] bond1 (unregistering): (slave veth3): Releasing active interface
[ 1646.744415][T30467] bond1 (unregistering): Released all slaves
[ 1646.750533][T30467] bond2 (unregistering): Released all slaves
[ 1646.756926][T30467] bond3 (unregistering): Released all slaves
[ 1646.763490][T30467] bond4 (unregistering): Released all slaves
[ 1646.769832][T30467] bond5 (unregistering): Released all slaves
[ 1646.775893][T30467] bond6 (unregistering): Released all slaves
[ 1646.781897][T30467] bond7 (unregistering): Released all slaves
[ 1646.887532][T30467] tipc: Left network mode
[ 1646.920164][T30467] IPVS: stopping backup sync thread 31197 ...
[ 1647.103863][T30467] hsr_slave_0: left promiscuous mode
[ 1647.106722][T30467] hsr_slave_1: left promiscuous mode
[ 1647.112775][T30467] veth1_macvtap: left promiscuous mode
[ 1647.115324][T30467] veth0_macvtap: left promiscuous mode
[ 1647.117890][T30467] veth1_vlan: left promiscuous mode
[ 1647.120300][T30467] veth0_vlan: left promiscuous mode
[ 1647.214882][T30467] team0 (unregistering): Port device team_slave_1 removed
[ 1647.219309][T30467] team0 (unregistering): Port device team_slave_0 removed
[ 1647.524245][T30467] IPVS: stop unused estimator thread 0...
[ 1647.621383][T30467] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1647.693388][T30467] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1647.753931][T30467] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1647.865111][T30467] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1647.952791][T30467] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1648.035224][T30467] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1648.093599][T30467] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1648.175154][T30467] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1648.277234][T30467] bridge_slave_1: left allmulticast mode
[ 1648.279676][T30467] bridge_slave_1: left promiscuous mode
[ 1648.282662][T30467] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1648.287342][T30467] bridge_slave_0: left allmulticast mode
[ 1648.290128][T30467] bridge_slave_0: left promiscuous mode
[ 1648.292712][T30467] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1648.297867][T30467] bridge_slave_1: left allmulticast mode
[ 1648.300696][T30467] bridge_slave_1: left promiscuous mode
[ 1648.303338][T30467] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1648.307484][T30467] bridge_slave_0: left allmulticast mode
[ 1648.311860][T30467] bridge_slave_0: left promiscuous mode
[ 1648.314506][T30467] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1648.433053][T30467] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1648.438324][T30467] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1648.443336][T30467] bond0 (unregistering): Released all slaves
[ 1648.447811][T30467] bond1 (unregistering): Released all slaves
[ 1648.680783][   T34] usb 40-1: device descriptor read/8, error -110
[ 1648.756729][T30467] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1648.761521][T30467] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1648.764950][T30467] bond0 (unregistering): Released all slaves
[ 1648.768082][T30467] bond1 (unregistering): Released all slaves
[ 1648.772194][T30467] bond2 (unregistering): Released all slaves
[ 1648.776114][T30467] bond3 (unregistering): Released all slaves
[ 1648.780427][T30467] bond4 (unregistering): Released all slaves
[ 1648.785220][T30467] bond5 (unregistering): Released all slaves
[ 1648.790102][T30467] bond6 (unregistering): Released all slaves
[ 1648.794124][T30467] bond7 (unregistering): Released all slaves
[ 1648.799205][T30467] bond8 (unregistering): Released all slaves
[ 1649.080043][   T34] usb usb40-port1: attempt power cycle
[ 1649.220880][T30467] hsr_slave_0: left promiscuous mode
[ 1649.223059][T30467] hsr_slave_1: left promiscuous mode
[ 1649.226784][T30467] hsr_slave_0: left promiscuous mode
[ 1649.228765][T30467] hsr_slave_1: left promiscuous mode
[ 1649.234894][T30467] veth1_macvtap: left promiscuous mode
[ 1649.236689][T30467] veth0_macvtap: left promiscuous mode
[ 1649.238803][T30467] veth1_vlan: left promiscuous mode
[ 1649.241476][T30467] veth0_vlan: left promiscuous mode
[ 1649.244443][T30467] veth1_macvtap: left promiscuous mode
[ 1649.246782][T30467] veth0_macvtap: left promiscuous mode
[ 1649.249105][T30467] veth1_vlan: left promiscuous mode
[ 1649.251179][T30467] veth0_vlan: left promiscuous mode
[ 1649.332725][T30467] team0 (unregistering): Port device team_slave_1 removed
[ 1649.337304][T30467] team0 (unregistering): Port device team_slave_0 removed
[ 1649.421534][T30467] team0 (unregistering): Port device team_slave_1 removed
[ 1649.426198][T30467] team0 (unregistering): Port device team_slave_0 removed
[ 1649.639872][   T34] usb usb40-port1: unable to enumerate USB device
[ 1649.944026][T30467] IPVS: stop unused estimator thread 0...