last executing test programs:

1m58.805649564s ago: executing program 3 (id=1324):
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000200)={0x0, @in6={{0xa, 0x4e22, 0x400, @private2, 0x200}}, 0x7, 0x1, 0xf06, 0x5, 0xb4, 0x7f, 0x8}, 0x9c)
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000100)={0x40000000, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="021800001c000000000000000000000005000600000000000a00000000000000000000000000000000000000000000000000000000000000020012000000000000000000fcffffff0600ff0000000000400300000000000000000000000000000000000001000000fe8000000000002100000000000000bb050005002b0000000a00000000000000fc010000000200000002000000000000000000000000000008001900000000000a"], 0xe0}}, 0x0)

1m58.755402141s ago: executing program 3 (id=1326):
socket$nl_generic(0x10, 0x3, 0x10)
openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0)
fsopen(0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x5a, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
r1 = socket$inet6(0xa, 0x2, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_GET_MESH_CONFIG(r2, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x8000)
getsockname$packet(r2, &(0x7f0000000180)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000580)=ANY=[], 0x64}, 0x1, 0x0, 0x0, 0x48810}, 0xf022ea101ded76ac)
sendmmsg$inet(r1, &(0x7f0000000600)=[{{&(0x7f0000000040)={0x2, 0x4e25, @local}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x18, 0x0, 0x8, {r3, @empty, @loopback}}}], 0x18, 0x3f}}], 0x1, 0xc0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs={0x1, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r6, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0x10a})
r7 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000002780)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
read$FUSE(r7, &(0x7f0000000480)={0x2020}, 0x2020)
recvmmsg(r4, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
ioctl$TUNSETTXFILTER(0xffffffffffffffff, 0x400454d1, &(0x7f0000000500)=ANY=[])
socket$inet(0x10, 0x3, 0x0)
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, 0x0, 0x0)
openat$mixer(0xffffffffffffff9c, &(0x7f00000016c0), 0x0, 0x0)

1m58.44039815s ago: executing program 3 (id=1327):
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x10, 0x8, &(0x7f0000001340)=ANY=[@ANYBLOB="beaa000000000000791008000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000bf03000000000000850000000c000000b70000000000000095"], &(0x7f0000000580)='syzkaller\x00'}, 0x94) (fail_nth: 41)

1m58.396049204s ago: executing program 3 (id=1328):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f42000)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2c)
mount$tmpfs(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000400), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='huge=always'])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.stat\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$RDMA_NLDEV_CMD_STAT_DEL(r0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="18000000012abd7000fedbdf250800030001000000000000240ad96f0300fc75c350398b3bf0eb5fdef173e6b85d80d304"], 0x18}, 0x1, 0x0, 0x0, 0x815}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x70, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x44, 0x4, 0x0, 0x1, [{0x40, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x30, 0x2, 0x0, 0x1, [@NFTA_MATCH_REV={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_MATCH_INFO={0x18, 0x3, "c6a41d10fffff500e90600000000000010000000"}, @NFTA_MATCH_NAME={0xa, 0x1, 'owner\x00'}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x98}}, 0x4048010)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x28011, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x9)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)

1m58.133420399s ago: executing program 3 (id=1331):
r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./cgroup/pids.max\x00', 0x680281, 0x140)
write$P9_RWSTAT(r0, &(0x7f0000000000)={0x30, 0x7f, 0x2}, 0x7)
r1 = fsopen(&(0x7f00000001c0)='devpts\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x0)
close(r2)
fsconfig$FSCONFIG_SET_FLAG(r1, 0x0, &(0x7f0000000040)='ro\x00', 0x0, 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r1, 0x7, 0x0, 0x0, 0x0)
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r3, 0xaf01, 0x0)

1m57.389564334s ago: executing program 3 (id=1340):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0x1, 0x41}, 0x50)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r3=>0x0})
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000004340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)={0x24, r2, 0x331, 0x0, 0x0, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r3}, @BATADV_ATTR_HARD_IFINDEX={0x4}]}, 0x24}}, 0x0)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
msgctl$MSG_STAT(0x0, 0xb, 0x0)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$dri(0x0, 0xd21, 0x4000)
r4 = openat$kvm(0xffffff9c, &(0x7f0000000100), 0x41, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="840000001000010029bd7000ffdbdf2500000000", @ANYRES64=r3, @ANYBLOB="4db20200201a0100140003006e657464657673696d30000000000000480016804400018040000c8014000104ff0300ff88a8000014000100390e00003f0000000d000000810000001400010006000000af0600000700000088a8000005001100060000000000000000000000337289ae8504346600e663960b2466b8aeb6d543ca7b0ab342095dd8aa80a9436ac2f322cd6bb964e3248157af44c58b53fb284ad18ee521b78b0b06ef2dad6158b7e9a5a099c23ff2e5a4f76b865a82818641f06dd6e5a447eed69dd0eb0c356e744afe52ad9e3f7a4ee55afa2316f56ff79b8928a92f1afe8c6d0077f0960092ad769d4294fff153"], 0x84}, 0x1, 0x0, 0x0, 0xc1}, 0x0)
ioctl$KVM_CREATE_PIT2(r5, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_open_dev$swradio(0x0, 0x0, 0x2)
ioctl$KVM_SET_PIT(r5, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x0, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x7}, {0x0, 0x4, 0x9, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}]})
msgget$private(0x0, 0x4a0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="6c00000010000504000000000000000000001f00", @ANYRES32=0x0, @ANYBLOB="5d580000000000001c001a8018000a801400070000000000000000000000000000000001140003006970766c616e310000000000000000001c0012800b0001006970766c616e00000c0002800600010000000000"], 0x6c}, 0x1, 0x0, 0x0, 0x840}, 0x0)

1m57.279083754s ago: executing program 32 (id=1340):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0x1, 0x41}, 0x50)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r3=>0x0})
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000004340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)={0x24, r2, 0x331, 0x0, 0x0, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r3}, @BATADV_ATTR_HARD_IFINDEX={0x4}]}, 0x24}}, 0x0)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
msgctl$MSG_STAT(0x0, 0xb, 0x0)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$dri(0x0, 0xd21, 0x4000)
r4 = openat$kvm(0xffffff9c, &(0x7f0000000100), 0x41, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="840000001000010029bd7000ffdbdf2500000000", @ANYRES64=r3, @ANYBLOB="4db20200201a0100140003006e657464657673696d30000000000000480016804400018040000c8014000104ff0300ff88a8000014000100390e00003f0000000d000000810000001400010006000000af0600000700000088a8000005001100060000000000000000000000337289ae8504346600e663960b2466b8aeb6d543ca7b0ab342095dd8aa80a9436ac2f322cd6bb964e3248157af44c58b53fb284ad18ee521b78b0b06ef2dad6158b7e9a5a099c23ff2e5a4f76b865a82818641f06dd6e5a447eed69dd0eb0c356e744afe52ad9e3f7a4ee55afa2316f56ff79b8928a92f1afe8c6d0077f0960092ad769d4294fff153"], 0x84}, 0x1, 0x0, 0x0, 0xc1}, 0x0)
ioctl$KVM_CREATE_PIT2(r5, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_open_dev$swradio(0x0, 0x0, 0x2)
ioctl$KVM_SET_PIT(r5, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x0, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x7}, {0x0, 0x4, 0x9, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}]})
msgget$private(0x0, 0x4a0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="6c00000010000504000000000000000000001f00", @ANYRES32=0x0, @ANYBLOB="5d580000000000001c001a8018000a801400070000000000000000000000000000000001140003006970766c616e310000000000000000001c0012800b0001006970766c616e00000c0002800600010000000000"], 0x6c}, 0x1, 0x0, 0x0, 0x840}, 0x0)

5.524525415s ago: executing program 2 (id=1979):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000140)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="56c78e3c733d76696e65459beb1fb664f6ce6c0c7274696f7874656e642c6163638173733d616e792c63616368653d66736361636865"])
chdir(&(0x7f0000000000)='./file0\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f00000000c0), 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000000)='syz_tun\x00', 0x10)
sendto$inet(r1, 0x0, 0x0, 0x20000800, &(0x7f0000000040)={0x2, 0x3, @remote}, 0x10)
syz_emit_ethernet(0x2a, &(0x7f0000000080)={@local, @random="5a01f3c2f136", @void, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x2, @local, @remote, @local, @remote}}}}, 0x0)
r2 = syz_open_dev$usbmon(&(0x7f00000005c0), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000200))
mmap(&(0x7f0000be6000/0x4000)=nil, 0x4000, 0x3000008, 0x4010, r0, 0xe3036000)
recvmmsg(r0, &(0x7f0000000580), 0x0, 0xcb82c7193076758, &(0x7f0000000240)={0x0, 0x989680})
vmsplice(r2, &(0x7f0000000540)=[{&(0x7f0000000180)}, {&(0x7f0000000280)="7caa5f879d82c479fd4c59297ce23a682064c8aee0f48bfab866e2c2a733f84dbd137575d05ae9128a897a3cc628c1989afcc8de36c9fdf903a79b4d9092c6631d26c129f241fbd8c963bf8a0c7c39df8e964f08a24ef22b7fd9ffa1a4cfb26968d56e7cddfbe1c169b4c76ee0d655dd42b400d0d0a68867cb4f83a912264f43662e0cdfac4d122f4ce079d98acbe7d25e77401f242b49a153c89702a44ddb0f0b7273ffc85277f461c80aaf876eec58d724dd5e7e48002a5242085cb6012ba389c09ab0470a886b231ae10d7ac99bba317612022474d4a8dce7ea38060ba1818295a875a420c0ae7e5ea5", 0xeb}, {0x0}, {&(0x7f00000003c0)="991a8b9469d9a47dc84a34253f03105173e8e4c75452246c9c9e68165f74ded1802af6558d16fbe6c5a3b9f1840c219afe2a6deb520066da01e8476899057e9a6b333c5f257c1d32391623e8a6e8571fbb1d5e62f1c0821d178759a8adbe6de826ad20f6ee7cc6239618922ee79e1cc55b1c4c41ba2d7056d00913e72a867ae494b22b5fae71b06d63c0f68add85d5ccd1d5c40ef548eb83dad50f5892baa87047b7c8047655825d922647626cf6e57910fded7df18045ca170d1f91c35a3f494c873d5a3c7cc059adb1f5a60f8945468fdd5233a2c434bae671520550f21cdee4a622", 0xe3}], 0x4, 0x2)
timer_create(0x0, &(0x7f0000000100)={0x0, 0x11, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000000))
r3 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
readv(r3, &(0x7f0000001440)=[{&(0x7f0000000040)=""/20, 0x14}], 0x1)
read$sequencer(r0, &(0x7f0000000180)=""/53, 0x35)
r4 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r4, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)
sendmmsg(r4, &(0x7f0000000100)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000001, 0x13, r2, 0x0)

5.338316646s ago: executing program 2 (id=1984):
syz_usb_connect(0x3, 0x24, &(0x7f0000000040)={{0x12, 0x1, 0x201, 0xd1, 0xa0, 0x5e, 0x20, 0xccd, 0x102, 0x890e, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x8, 0x54, 0x40, 0x1, "", [{{0x9, 0x4, 0xbc, 0x80, 0x0, 0xc, 0xf1, 0xc7, 0x7f}}]}}]}}, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
r0 = syz_open_dev$I2C(&(0x7f0000000000), 0x2, 0x40402)
ioctl$I2C_SMBUS(r0, 0x720, &(0x7f0000000100)={0x1, 0x9, 0x6, &(0x7f0000000240)={0x10, "0000000000000000000000000000000000000000000000000000001a00"}})

4.604122852s ago: executing program 1 (id=1992):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x210a81, 0x0)
close(r0)
socket$kcm(0x11, 0x3, 0x0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @private1, 0x200000}, 0x1c)
sendto$inet6(r1, &(0x7f00000001c0)='O', 0x1, 0x80, &(0x7f0000000280)={0xa, 0x0, 0x0, @private2}, 0x1c)
shutdown(r1, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x12, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x40f00, 0x4a, '\x00', 0x0, @cgroup_sock_addr=0x1e, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x1009}, 0x94)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e21, @local}, 0x10)
connect$inet(r2, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x40000, 0x25dfdbfb, {0x0, 0x0, 0x0, r4, {0x0, 0xb}, {0xffff, 0xffff}, {0x3, 0xfff3}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x6, 0x6b7, 0x80, 0x0, 0x1, 0x91b1}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000400}, 0x24000000)
sendto$inet(r2, &(0x7f0000000900)="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", 0xffffff5d, 0x12, 0x0, 0x0)
recvfrom$inet(r2, &(0x7f0000000080), 0xffffffffffffffa9, 0xc9100120, 0x0, 0x1500)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='freezer.self_freezing\x00', 0x275a, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r5, 0x89f3, &(0x7f0000000240)={'gretap0\x00', &(0x7f0000000040)={'gretap0\x00', 0x0, 0x10, 0x0, 0xff, 0xfffffff8, {{0xe, 0x4, 0x1, 0x5, 0x38, 0x66, 0x0, 0x40, 0x63ab823e29ef007a, 0x0, @loopback, @private=0xa010102, {[@ssrr={0x89, 0x23, 0x8c, [@initdev={0xac, 0x1e, 0x0, 0x0}, @initdev={0xac, 0x1e, 0x1, 0x0}, @remote, @broadcast, @broadcast, @loopback, @private=0xa010101, @multicast2]}]}}}}})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x38}}, 0x4010)
r6 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f00000001c0)={0x0, 0x397, &(0x7f0000000180)={0x0, 0xff90}}, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa)
r7 = socket(0x10, 0x803, 0x0)
r8 = socket(0x1, 0x803, 0x0)
getsockname$packet(r8, &(0x7f0000000440)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xfffffffffffffeee)
sendmsg$nl_route(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="340000001400b59500000000000000000a400000", @ANYRES32=r9, @ANYBLOB="04000200ff0200004a000000008099ec00"], 0x34}}, 0x0)
r10 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r10, &(0x7f00000002c0), 0x40000000000009f, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)

3.883427434s ago: executing program 0 (id=1998):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000000), 0x80002, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000080)=0x40000)
syz_usb_connect(0x0, 0x10b, &(0x7f0000000000)=ANY=[@ANYBLOB="05010900b24b6a10e6040300770100000001090224000b010000000904000302ccd4280009050b02000000040009058a02"], 0x0)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000f00)=ANY=[@ANYBLOB="300000001800dd8d0000000000000000020000000000000900000000060015000a0000000c00168008000100bc"], 0x30}, 0x1, 0x0, 0x0, 0x1}, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff})
setsockopt$TIPC_SRC_DROPPABLE(r2, 0x10f, 0x80, &(0x7f0000001640)=0x4f1d, 0x4)
r3 = socket$inet6(0xa, 0x80002, 0x0)
sendmmsg$inet6(r3, &(0x7f0000000480)=[{{&(0x7f0000000080)={0xa, 0x4e22, 0x4, @mcast1, 0x6}, 0x1c, 0x0, 0x0, &(0x7f0000000e40)=ANY=[@ANYBLOB="1400000029000000370000008900000000000000100000002900000008000000d20000007400000029000000370000002f0b00000000000005020000c204000000130738000000020c40060004000000000000008000000000000000070000000000000007000000000000000400000000000000000001000000000005020007c910fe8000000000000000000000000000bb040181000000540200002900000037"], 0x2ec}}], 0x1, 0x4000001)
sendmmsg$inet(r2, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0}}], 0x40001b6, 0xf5)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x148f6141aad374e5, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd1}, 0x94)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r4=>0xffffffffffffffff})
recvmsg(r4, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000400)=""/50, 0x32}, {&(0x7f0000000500)=""/240, 0xf0}], 0x2, &(0x7f0000000640)=""/23, 0x17}, 0x10023)
r5 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, 0x0)
ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000440)={[0x0, 0x100000000, 0x0, 0x7f, 0x100000, 0x0, 0x2004c8, 0x10008000000, 0x4, 0x7649, 0x1, 0x0, 0x5, 0x0, 0x2, 0xffffffffffffffff], 0x0, 0x114000})
r6 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCETHTOOL(r6, 0x8946, &(0x7f0000000000)={'syz_tun\x00', &(0x7f0000000140)=@ethtool_link_settings={0x4c, 0x32, 0xf7, 0x3, 0x80, 0x9, 0xc2, 0xc, 0x66, 0x4, [0x20040, 0xd, 0x10, 0x40, 0x6, 0x8, 0xfffffeff, 0x202174]}})
ioctl$F2FS_IOC_RESIZE_FS(r6, 0x4008f510, &(0x7f00000001c0)=0xffffffffffff8001)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
openat$autofs(0xffffff9c, &(0x7f0000000240), 0x80, 0x0)
syz_usb_connect(0x0, 0x34, &(0x7f00000000c0)=ANY=[], 0x0)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f00000002c0)={[0x4, 0x5, 0x6, 0x4004, 0x2, 0x4, 0xefffffffffffffff, 0x0, 0x0, 0x2000000, 0x0, 0xb9, 0x2, 0xffffffffffffffff, 0x6, 0x3], 0x0, 0x41901})
r7 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_FLUSH(r7, 0x0, 0xd4, &(0x7f0000000040)=0x1, 0x4)
fcntl$getflags(0xffffffffffffffff, 0x1)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

3.724636434s ago: executing program 1 (id=1999):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x2, 0x13, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000090ffffff0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000020200008500000072000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)

3.724408328s ago: executing program 1 (id=2000):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a4c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40ffff"], 0xb4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800e80010000d0428bd7000fcdbff2500008000", @ANYRES32=r0, @ANYBLOB="1000000000000000280012800b00010062726964676500001800028005001900840000000c001e"], 0x48}}, 0x4084)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)

3.644534021s ago: executing program 2 (id=2001):
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="2800000009000000000000000000000001"], 0x28)
chdir(0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0xbd228beef318bda7, 0x0)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0)
listxattr(&(0x7f0000000040)='./bus\x00', &(0x7f0000000080)=""/22, 0x16)
r2 = open(&(0x7f0000000000)='./bus\x00', 0x109a7c, 0x40)
read$FUSE(r2, &(0x7f0000001b00)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_GETXATTR(r0, &(0x7f0000003b40)={0x18, 0xfffffffffffffffe, r3, {0x2}}, 0x18)
write$UHID_INPUT(r2, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x14, r6, 0x9c3fa077fa966179, 0x12, 0x0, {{0x7e}, {@void, @void}}}, 0x14}, 0x1, 0x0, 0x0, 0x8}, 0x4040800)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ipvs(&(0x7f00000018c0), r7)
sendmsg$IPVS_CMD_NEW_DAEMON(r7, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f00000004c0)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="01002abd7000ffdbdf25090000006400038008000100013f00000800030004000000140002007665744e315f6d616376746170000000060004000200000008000500e0000000140002006970766c616e31"], 0x78}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="10000000040000000800000008"], 0x50)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000003000000b704000000000400850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r10, 0x5, 0xe, 0x0, &(0x7f0000000000)="7993ff01198cf48ccfb45c33fb8f", 0x0, 0x400, 0x503, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffff80fe, 0x4}, 0x1e)
sendmsg$IPVS_CMD_SET_CONFIG(r4, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000340)={0x13c, r8, 0x300, 0x70bd2a, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DEST={0x4c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e22}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0xe}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e24}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0xf9ef}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0xa}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x6}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x590}, @IPVS_DEST_ATTR_TUN_TYPE={0x5}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0xf0}]}, @IPVS_CMD_ATTR_DAEMON={0x3c, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast1}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @dev={0xfe, 0x80, '\x00', 0xe}}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x5}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7f}, @IPVS_CMD_ATTR_DEST={0x38, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_TYPE={0x5}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x5}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x3e17}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x12}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@rand_addr=' \x01\x00'}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xffff}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x3}, @IPVS_CMD_ATTR_DAEMON={0x2c, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'pim6reg0\x00'}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'nicvf0\x00'}]}, @IPVS_CMD_ATTR_DEST={0x24, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0xff}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x3}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x3}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0xfffffffe}]}]}, 0x13c}, 0x1, 0x0, 0x0, 0x40000}, 0x40800)
sendmsg$NL80211_CMD_SET_STATION(r4, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x30, r6, 0x200, 0x70bd28, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x200}}}}, [@NL80211_ATTR_VLAN_ID={0x6, 0x11a, 0x4}, @NL80211_ATTR_STA_PLINK_STATE={0x5, 0x74, 0x2}]}, 0x30}, 0x1, 0x0, 0x0, 0x10}, 0x4008080)

3.60374349s ago: executing program 2 (id=2002):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x40, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, <r2=>0x0, 0x0, <r3=>0x0}, 0xfffffe14)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r4 = syz_usb_connect(0x2, 0x3f, &(0x7f00000007c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
syz_usb_control_io(r4, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r4, 0x0, 0x0)
r5 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)={0x60, 0x2, 0x6, 0x3, 0x0, 0x0, {0x7, 0x0, 0x7}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0x5}, @IPSET_ATTR_MAXELEM={0x8, 0x13, 0x1, 0x0, 0xe}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x1}, @IPSET_ATTR_TYPENAME={0x12, 0x3, 'hash:net,port\x00'}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000}, 0x20004080)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="50000000090601020000000000000000020000840900020073797a31000000000500010007000000280007800c00018008000140fffffff70500070088000000060004404e22000006000540"], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x90)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x4}, 0x0)
ioctl$FS_IOC_GETVERSION(r5, 0x40025b0c, &(0x7f0000000040))
write$FUSE_INIT(r1, &(0x7f0000000040)={0x50, 0x0, r2, {0x7, 0x1f, 0x8, 0x10208, 0x83, 0xffff, 0x0, 0xabe6, 0x0, 0x0, 0x80, 0x8001}}, 0x50)
syz_fuse_handle_req(r1, &(0x7f000000e3c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d838aae8c05dd22d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r1, &(0x7f0000004200)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)={0x78, 0x0, 0x80, {0xc, 0x3, 0x0, {0xfffffffffffffffd, 0x0, 0xfffffffffffffffc, 0x0, 0x8, 0xffffffff, 0xfffffffe, 0x0, 0x80000, 0x8000, 0x0, 0x0, r3, 0x1, 0x3}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20c01, 0x0)
r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r9, 0x800448d2, &(0x7f00000002c0))
writev(r8, &(0x7f0000000200)=[{&(0x7f0000000240)="6e6ef2", 0x3}], 0x1)
creat(&(0x7f0000000140)='./file0\x00', 0x8)
dup3(r1, r8, 0x6700000000000000)
close_range(r0, 0xffffffffffffffff, 0x0)

3.52487723s ago: executing program 1 (id=2003):
openat(0xffffffffffffff9c, 0x0, 0x8042, 0x90)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0x10, 0x0, 0x25dfdbfb, {{@in6=@private0, @in6=@private0={0xfc, 0x0, '\x00', 0x1}, 0x0, 0x4, 0x4e24, 0x0, 0xa, 0x60, 0x20, 0x3b, 0x0, 0xee01}, {0x0, 0x4, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, {0xfffffffffffffffe}, 0x9, 0x0, 0x0, 0x1, 0x2}}, 0xb8}, 0x1, 0x0, 0x0, 0x80}, 0x50)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9"], 0xb8}}, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc0000000000000001"], 0xb8}, 0x1, 0x0, 0x0, 0x40000000}, 0x4008000)
r2 = syz_usb_connect(0x0, 0x36, &(0x7f0000000540)=ANY=[@ANYBLOB="120141014813442024040075ee69010203010902240001000010000904b8"], 0x0)
syz_usb_control_io$uac1(r2, 0x0, 0x0)
syz_usb_control_io$uac1(r2, 0x0, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc000000000000000000000000000000ac1e000100000000000000000000030000000000000000000a0040"], 0xb8}}, 0x0)

2.574179745s ago: executing program 4 (id=2004):
openat$cuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_open_dev$cec(&(0x7f0000000480), 0x0, 0x400)
socket$inet_sctp(0x2, 0x1, 0x84)
mkdir(&(0x7f00000003c0)='./file0\x00', 0x10)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='map_files\x00')
mount$tmpfs(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x802, &(0x7f00000000c0)=ANY=[@ANYBLOB='huge=always,huge=within_size,nr_blocks=', @ANYRESDEC=r1])
chdir(&(0x7f0000000140)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
ftruncate(r2, 0x8008976)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, r2, 0x0)
write$binfmt_script(r2, &(0x7f0000000400)={'#! ', '', [], 0xa, "201100000000b073dbc2e1e649efc1d73828a06efe233dc8013ff03212750dda49e8d9eed99dedf65d632853f4dfe6d11ac5eb9dc22d5ec2b368dd84d61c"}, 0xffffff9b)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
rmdir(&(0x7f0000000040)='./file0/../file0/file0\x00')
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r3=>0x0, 0x0, <r4=>0x0}, 0x2020)
symlink(&(0x7f0000000080)='./file0/../file0/file0\x00', &(0x7f0000000140)='./file0/../file0/file0\x00')
write$FUSE_INIT(r0, &(0x7f0000000380)={0x50, 0x0, r3, {0x7, 0x28, 0x7, 0x10810401, 0x2, 0x0, 0x20, 0x0, 0x0, 0x0, 0x1, 0xffffffec}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000e00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={0x90, 0x0, 0x2, {0x0, 0x3, 0xbd16, 0x5, 0x7, 0x6, {0x4, 0x5, 0x7, 0x6, 0x8003, 0xf, 0xa734, 0x200, 0x7, 0xc890c63e415ce913, 0x101, 0x0, r4, 0xffff0000, 0x10}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)

2.573791811s ago: executing program 0 (id=2005):
openat$sequencer2(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x4a102)
writev(r0, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_FLUSH(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000040601010000000000000000000000000500010007"], 0x1c}, 0x1, 0xfff0, 0x5000000}, 0x0)

2.501925941s ago: executing program 0 (id=2006):
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x2e0200, 0x0)
r1 = dup(r0)
r2 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r2, 0x40000000af01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000340))
ioctl$VHOST_NET_SET_BACKEND(r2, 0x4008af30, &(0x7f00000003c0)={0x1, r1})
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_open_dev$dri(&(0x7f0000000040), 0x6, 0x802)
sendmsg$IPSET_CMD_LIST(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x24, 0x7, 0x6, 0x5, 0x0, 0x0, {0x5, 0x0, 0x1}, [@IPSET_ATTR_FLAGS={0x8, 0x6, 0x1, 0x0, 0xc}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x4008044}, 0x4084080)

2.500149915s ago: executing program 0 (id=2007):
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
rmdir(&(0x7f0000000040)='./cgroup/../file0\x00')
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000001880))
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, 0x0, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000280), 0x2, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
read$FUSE(r1, 0x0, 0x0)
syz_fuse_handle_req(r1, 0x0, 0x0, &(0x7f0000000b40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)={0x130, 0x0, 0x9, {0x0, 0xfffffff7, 0x0, '\x00', {0x1, 0xd, 0x400adf, 0xc, 0x0, 0x0, 0x6000, '\x00', 0x100000002, 0x8, 0xfffffffc, 0x8, {0xb, 0x3ff}, {0x200231, 0x6}, {0x0, 0x7}, {0xffffffff7fffffff, 0x4a00}, 0xb, 0x4000000b, 0x7, 0xc}}}})
gettid()
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB, @ANYRESHEX=r2, @ANYBLOB, @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r2, 0x0, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000e00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={0x90, 0x0, 0x2, {0x0, 0x3, 0xbd16, 0x5, 0x7, 0x7f, {0x1, 0x5, 0x7, 0x6, 0x3, 0xf, 0xa734, 0x200, 0x7, 0xc890c63e415ce913, 0x101, 0x0, 0x0, 0xffff0000, 0x10}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_clone3(&(0x7f00000005c0)={0x280a00300, 0x0, 0x0, 0x0, {0x14}, 0x0, 0x0, 0x0, 0x0, 0x0, {r0}}, 0x58) (fail_nth: 45)

1.724548867s ago: executing program 4 (id=2008):
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000200)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB='/\x00'/12, @ANYRES32, @ANYBLOB="0fac60a8af378a26292dde32e3a89d4c3d0683fc79a5e16b676e8d6a4cc54132da1fc3a7125b75995f742611665792e54ad77251683a3c6d90712468c2a5c42b67a14aba2ec612a14028bb7a0b1b3eb6fc8cc17c0db192efa2f8e5c3f45a26a450be5f86ddd72c82eb894852"], 0x20)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, 0x0, 0x4008010)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000020000030900010073797a310000001b18010000030a010400000000000000000100ffff0900030073797a31000000002000048008000140000000051400030076657468315f6d6163767461700000000900010073797a3100"], 0x160}}, 0x0)

1.724333519s ago: executing program 4 (id=2009):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="14000000100001000000000000000000001d000a20000000000a01010000000000000000020000030900010073797a310000000018010000030a010400000000000000000100ffff0900030073797a31000000002000048008000140000000051400030076657468315f6d6163767461700000000900010073797a3100000000280008"], 0x160}}, 0x0)

1.633932119s ago: executing program 4 (id=2010):
socket$inet6(0xa, 0x2, 0x0)
syz_usb_connect(0x0, 0x371, 0x0, 0x0)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, 0x0, 0x0)
setsockopt$inet_sctp_SCTP_AUTH_DEACTIVATE_KEY(0xffffffffffffffff, 0x84, 0x23, 0x0, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x4ec, 0x340, 0x25, 0x148, 0x0, 0x60, 0x458, 0x2a8, 0x2a8, 0x458, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'geneve0\x00', {0x44, 0x0, 0x9, 0x0, 0x0, 0xffffffff, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0xb1, 'syz0\x00'}}}, {{@ip={@broadcast, @multicast1, 0x0, 0x0, 'veth1_to_bond\x00', 'veth0\x00', {0xff}}, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@unspec=@cgroup0={{0x28}, {0x4}}, @common=@unspec=@statistic={{0x38}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x8000, 'syz0\x00', {0x481c}}}}], {{'\x00', 0xc8, 0x70, 0x94}, {0x24}}}}, 0x548)

1.632786665s ago: executing program 0 (id=2011):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x21c0, 0x103)
r0 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r0, 0x40f, 0x8000003d)
r1 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000880)=@newqdisc={0x48, 0x24, 0xd0f, 0x70bd2b, 0x0, {0x60, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0xa}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0xb, '\x00', 0x4bb, 0x0, 0x1ff, 0x3}}}}]}, 0x48}}, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x21c0, 0x103) (async)
open(&(0x7f0000000280)='.\x00', 0x0, 0x0) (async)
fcntl$notify(r0, 0x40f, 0x8000003d) (async)
socket(0x10, 0x3, 0x0) (async)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)) (async)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00'}) (async)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000880)=@newqdisc={0x48, 0x24, 0xd0f, 0x70bd2b, 0x0, {0x60, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0xa}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0xb, '\x00', 0x4bb, 0x0, 0x1ff, 0x3}}}}]}, 0x48}}, 0x0) (async)

1.584448277s ago: executing program 0 (id=2012):
socket$nl_generic(0x10, 0x3, 0x10)
openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0)
fsopen(0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x5a, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
ioctl$TUNSETTXFILTER(0xffffffffffffffff, 0x400454d1, &(0x7f0000000500)=ANY=[])
r3 = socket$nl_generic(0x10, 0x3, 0x10)
recvmsg(r3, &(0x7f0000004ac0)={0x0, 0x0, 0x0}, 0x4002)
recvmsg(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000002440)=[{&(0x7f0000002a00)=""/4106, 0x679}, {&(0x7f0000001440)=""/4096, 0x1000}], 0x2}, 0x100)
sendmsg$nl_generic(r3, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000400)=ANY=[@ANYBLOB="1c0000001000010700000000000000000a0000000600010018"], 0x1c}}, 0x0)
socket$inet(0x10, 0x800, 0x0)
socket$netlink(0x10, 0x3, 0x0)

1.092464282s ago: executing program 4 (id=2013):
socket$inet6_sctp(0xa, 0x1, 0x84)
r0 = memfd_create(&(0x7f00000000c0)='-B\xd5N4\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\x8a\xd7Uw\x00\xbc\xa92\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x19\xea\xef\xe3\xe1@\x84\x13\xefZb:\x8f\t\x01B\xec\xde\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00@Ip]D\xd6\r\xac\v#co\xd5\xb9\xc806\xa8\x99\xffs7\xa1b1\xb1;i)j\x0e\x1e\xedI\xa2\x80\x89\x1d\xd9p!\xc86s\xe07(\xee\xf9<\"\xf0\xc8\xae\x96J\xe2]\x01\x86\xb7.<\xf5N\xd3\x94W1\xff\x18z>\xa7q,\xf7\x96\xb8{\x8e\xbf4\xe0\x95\x1ce\xe4\x85\xcdi\xed\xd3>\xeb\xa5\xaf\x87\x90@\xd1\xbd`^\xfa\xb6\x9cj\x13/\xc5\\W\x04\br\x17X\xe3\xfb\xc8\xd4\xaeX\xc9s\xd18\xd9L\xbf\xa0\xa6\xdf2\a\x99i\xb1/\x19@\x1cq\xeb?\xc1z:\x913\xfa8\xac\xd3q\xe4vPGU', 0x5)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x20002)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x32, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = socket$inet(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x4000000000000, 0x40, &(0x7f0000000100)=@raw={'raw\x00', 0x8, 0x3, 0x228, 0x0, 0x8, 0xfa04, 0xb8, 0x6c02, 0x194, 0x194, 0x194, 0x194, 0x194, 0x3, 0x0, {[{{@ip={@empty=0x1e00, @broadcast, 0xffffff00, 0x0, 'veth0_to_hsr\x00', 'veth1\x00', {}, {}, 0x6}, 0x0, 0x94, 0xb8, 0x0, {0x0, 0x74020000}, [@inet=@rpfilter={{0x24}, {0x2}}]}, @common=@inet=@TCPMSS={0x24, 'TCPMSS\x00', 0x0, {0xffff}}}, {{@ip={@multicast2, @dev, 0x0, 0x0, '\x00', 'tunl0\x00', {}, {}, 0x29, 0x2}, 0x0, 0x94, 0xdc, 0x0, {}, [@inet=@rpfilter={{0x24}, {0xa}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x3ff, 'snmp\x00'}}}], {{'\x00', 0x0, 0x70, 0x94}, {0x24}}}}, 0x284)
r3 = add_key$user(0x0, &(0x7f0000000440)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$SNAPSHOT_S2RAM(r0, 0x330b)
r4 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
keyctl$dh_compute(0x17, &(0x7f0000000800)={r3, r3, r4}, 0x0, 0x0, &(0x7f0000000480)={&(0x7f00000000c0)={'wp256\x00'}, 0x0, 0x8})
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x300000a, 0x4031, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0xd, 0x3, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000950000000000000008ff39aabb7182ae9ca7e25ec428c5e77c0b8d5990acaf2462e1e1f8b393a9cfa75792efb7b7bcd21ffa4cf636fae40367e3e4c8f0d826785a855e9f58693b8f85473a8a1c4d804837c60308294b10342eee15c1c19d718f82b2f938ae055513"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x94)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x12)
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
r5 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r6 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r6, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000630000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$char_usb(r5, &(0x7f0000000440)="64e99d", 0x3)
syz_clone3(&(0x7f0000000840)={0x2148600, &(0x7f0000000400), &(0x7f00000004c0), &(0x7f0000000500)=<r7=>0x0, {0x23}, &(0x7f0000000600)=""/132, 0x84, &(0x7f00000006c0)=""/240, &(0x7f00000007c0)=[0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0], 0x9, {r5}}, 0x58)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r5, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f0000000240)=[0x1], 0x0, 0x0, 0x1, 0x0, r7}}, 0x3c)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'bridge0\x00'})
r8 = socket(0x10, 0x3, 0x0)
sendmmsg(r8, &(0x7f0000000000), 0x4000000000001f2, 0x0)

328.562137ms ago: executing program 2 (id=2014):
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000100), 0x40800, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000040)={0x190, 0x258, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {0x0, 0x0, 0x1}, {0x0, 0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x70020000})

328.276157ms ago: executing program 1 (id=2015):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000043c0)={0x1c, 0x10, 0x21, 0x70bd2c, 0xfffffffd, {0x3}, [@nested={0x8, 0x1, 0x0, 0x1, [@nested={0x4, 0x5b}]}]}, 0x1c}}, 0x0)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000004440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000801", @ANYRES16, @ANYBLOB="00022bbd"], 0x14}, 0x1, 0x0, 0x0, 0xc051}, 0x80)
r1 = socket$inet(0x2, 0x3, 0xd)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000200)={0x1, &(0x7f0000000000)=[{0x7, 0x0, 0x0, 0xfffffffb}]})
getsockopt$inet_mreqsrc(r1, 0x0, 0x53, &(0x7f0000000000)={@dev, @local, @broadcast}, &(0x7f0000000040)=0x28)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000c40), 0x2)
ioctl$UDMABUF_CREATE_LIST(r3, 0x40087543, &(0x7f0000000c80)={0x1, 0x1, [{0xffffffffffffffff, 0x0, 0x1000, 0x1000000000000}]})
r4 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r4, 0x7a7, &(0x7f0000000040)=0x90000)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x0)
execve(&(0x7f0000000740)='./file0\x00', 0x0, 0x0)
link(&(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
rename(&(0x7f0000000180)='./file0\x00', &(0x7f0000000440)='./file0\x00')
ioctl$IOCTL_VMCI_INIT_CONTEXT(r4, 0x7a0, &(0x7f0000000000)={@local})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r4, 0x7a8, &(0x7f0000000540)={{@hyper, 0x2}, @hyper, 0xf00, 0x0, 0x5e})
r5 = fsopen(&(0x7f00000001c0)='bpf\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
r6 = fsmount(r5, 0x1, 0x0)
prctl$PR_GET_TSC(0x43, 0x0)
fchdir(r6)
connect$inet(r6, &(0x7f0000000080)={0x2, 0x4e22, @private=0xa010101}, 0x10)
r7 = dup(r2)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000700)={'bridge0\x00', <r8=>0x0})
sendmsg$nl_route(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=@newlink={0x68, 0x10, 0x401, 0xfffffffc, 0x80, {0x0, 0x0, 0x0, 0x0, 0x1503}, [@IFLA_LINKINFO={0x40, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x30, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MACADDR_DATA={0x1c, 0x5, 0x0, 0x1, [{0xa, 0x4, @local}, {0xa, 0x4, @local}]}, @IFLA_MACVLAN_MACADDR_MODE={0x8, 0x3, 0x3}, @IFLA_MACVLAN_MODE={0x8, 0x1, 0x10}]}}}, @IFLA_LINK={0x8, 0x5, r8}]}, 0x68}, 0x1, 0x0, 0x0, 0xc4}, 0x0)

194.777182ms ago: executing program 1 (id=2016):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x4, 0xe, &(0x7f0000000200)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x7ffffc}, 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
ioctl$vim2m_VIDIOC_ENUM_FMT(0xffffffffffffffff, 0xc0405668, &(0x7f0000000100)={0x0, 0x38fcbf56847867ce, 0x2, "bc3eb5d639a8f4030400000000100000000000000004001300ffffffffffec00", 0x32344d59})
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
sendmsg$802154_raw(r0, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f00000008c0)="4620988e107f20c07c421931422fbbe5a2862c89504a0b16b6bcb31dffeb99f6ad34b502696e7ad4974ffe8c4e73ee118382328b37f94d383c8c48bf5cf8aaeccebf94e2936935b5eb826381ab2c0e17c0219cc622d8bf065cf4a4caedcc90061575880b1bd2de26dcb828496db0a4808f926eacc7f5186706f831ffde4d79eb432d96aa3bf65d74d1756253f2e64825f037dc42e2000295b70b8f91fe4761b339aefd9846f7a4db9fb0cf8aa4bdd776ed846f725cc53b59edf31cc58470d9934fd3a051aed612af049181342e1d96a59060dd3c848d08f444", 0xd9}}, 0x40450)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f0000006680))
r1 = syz_open_dev$cec(&(0x7f00000001c0), 0x0, 0x4400)
ioctl$CEC_S_MODE(r1, 0x40046109, &(0x7f0000000140)=0x11)
r2 = socket(0x2, 0x1, 0x0)
r3 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x0)
ioctl$NBD_SET_SOCK(r3, 0xab00, r2)
ioctl$NBD_DO_IT(r3, 0xab03)
ioctl$NBD_CLEAR_SOCK(r3, 0xab04)
r4 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x129202, 0x0)
r5 = fsopen(&(0x7f00000000c0)='binfmt_misc\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r5, 0x1, &(0x7f0000000240)='uid', &(0x7f00000008c0)='-\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00$\xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$\xc4\xbcF\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80=\x8a\xeb\n\xb8_\xe8\x96YY\xe3\xc7\xe6\xf28\x19\xa6\xa7\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\x1f\x03\x00\x00\x00\x00\x00\x00\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x85N\x1c\xc1\xcb\xfc\x85\xd2\n\x02\"\xf2\x81g\x90\x01n%\x7f_\xe1.f>>\xa5\xfb\"\xab\xdb\x06\x12e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9ak\x00\x00\x00\x00\x00\x00\x00\n\xa72\xa3\xef^\xe7\x8f', 0x0)
ioctl$SOUND_PCM_READ_CHANNELS(r4, 0x80045006, &(0x7f00000010c0))
mmap(&(0x7f000078d000/0x3000)=nil, 0x3000, 0x2, 0x8031, 0xffffffffffffffff, 0xe37f5000)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x300000a, 0x4031, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xd, 0x3, &(0x7f0000346fc8)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x94)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22, 0xfffffffd, @empty, 0x3165}, 0x1c)
listen(r6, 0xfffffffc)
r7 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r7, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000200), r0)
r9 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r9, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r8, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000180)=ANY=[@ANYRES16=r9], 0x30}, 0x1, 0x0, 0x0, 0xaa34a4cfdf933201}, 0x4010)
socket$nl_generic(0x10, 0x3, 0x10)

449.007µs ago: executing program 4 (id=2017):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x48)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
sigaltstack(0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x6, 0x21, &(0x7f0000000900)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x60000000}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xc}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x80000001}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000000)='GPL\x00', 0x3, 0x0, 0x0, 0x41100, 0x66, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0x2107, 0x0, &(0x7f0000000100), 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)

0s ago: executing program 2 (id=2018):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="05000000070020214200000040"], 0x50)
r0 = socket(0x28, 0x6, 0x1002)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0xb, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000140000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x400000, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x1)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x4, 0x0, 0x0, 0x1000, &(0x7f0000004000/0x1000)=nil})
ioctl$KVM_SET_MEMORY_ATTRIBUTES(r3, 0x4020aed2, &(0x7f0000000000)={0x0, 0xe000, 0x8})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r4, 0x1, 0x32, &(0x7f00000000c0)=r1, 0x4)
sendmsg$unix(r5, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r6=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs={0x1}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x0, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, r0)
prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x2, 0x7ffc0002}]})
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x100000001, 0xfffffe0000000001, 0xfa11, 0x65aa}, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r7, 0x6, 0x13, &(0x7f0000000240)=0x100000001, 0x4)
connect$inet6(r7, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r7, 0x6, 0x1f, &(0x7f00000002c0), 0xfffffffffffffe4f)
setsockopt$inet6_tcp_TLS_TX(r7, 0x11a, 0x1, &(0x7f00000000c0)=@gcm_128={{0x303, 0x37}, "475566172f45f011", "bd14060000000000000092f94413582b", "00001000", "4e67cb72f328ac2f"}, 0x28)
execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0)
r8 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
r9 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r9, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r10=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_CURSOR2(r8, 0xc02464bb, &(0x7f0000000000)={0x2, r10, 0x0, 0x10, 0x8, 0x1, 0x9, 0x0, 0x8db})
syz_io_uring_setup(0xbaf2, &(0x7f00000000c0)={0x0, 0xa5f5, 0x2000, 0x10002, 0x131, 0x0, r8}, &(0x7f0000000140), &(0x7f0000000180), &(0x7f0000000300))

kernel console output (not intermixed with test programs):

tyS3.
[  290.540399][T10247] can0 (unregistered): slcan off ttyS3.
[  290.607827][T10255] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1505'.
[  290.622206][ T5888] usb 6-1: USB disconnect, device number 30
[  290.860833][T10273] FAULT_INJECTION: forcing a failure.
[  290.860833][T10273] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  290.865444][T10273] CPU: 3 UID: 0 PID: 10273 Comm: syz.2.1510 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  290.865462][T10273] Tainted: [L]=SOFTLOCKUP
[  290.865466][T10273] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  290.865473][T10273] Call Trace:
[  290.865477][T10273]  <TASK>
[  290.865481][T10273]  dump_stack_lvl+0x100/0x190
[  290.865506][T10273]  should_fail_ex.cold+0x5/0xa
[  290.865520][T10273]  _copy_to_user+0x32/0xd0
[  290.865543][T10273]  bpf_test_finish.isra.0+0x4df/0x660
[  290.865564][T10273]  ? __pfx_bpf_test_finish.isra.0+0x10/0x10
[  290.865577][T10273]  ? skb_checksum+0x7f4/0x950
[  290.865595][T10273]  bpf_prog_test_run_skb+0x248e/0x3540
[  290.865613][T10273]  ? __fget_files+0x161/0x3d0
[  290.865629][T10273]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  290.865643][T10273]  ? fput+0x79/0x100
[  290.865658][T10273]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  290.865671][T10273]  __sys_bpf+0x1725/0x4b90
[  290.865681][T10273]  ? __pfx___schedule+0x10/0x10
[  290.865699][T10273]  ? __pfx___sys_bpf+0x10/0x10
[  290.865709][T10273]  ? preempt_schedule_thunk+0x16/0x30
[  290.865725][T10273]  ? preempt_schedule_common+0x42/0xc0
[  290.865738][T10273]  ? preempt_schedule_thunk+0x16/0x30
[  290.865755][T10273]  ? find_held_lock+0x2b/0x80
[  290.865768][T10273]  ? ksys_write+0x190/0x250
[  290.865782][T10273]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  290.865795][T10273]  ? kernel_write+0x5f3/0x6c0
[  290.865814][T10273]  ? fput+0x79/0x100
[  290.865827][T10273]  ? ksys_write+0x1ac/0x250
[  290.865840][T10273]  __ia32_sys_bpf+0x79/0xf0
[  290.865851][T10273]  ? lockdep_hardirqs_on+0x78/0x100
[  290.865864][T10273]  __do_fast_syscall_32+0xe7/0x950
[  290.865877][T10273]  ? lockdep_hardirqs_on+0x78/0x100
[  290.865890][T10273]  do_fast_syscall_32+0x32/0x70
[  290.865903][T10273]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  290.865917][T10273] RIP: 0023:0xf707efcc
[  290.865926][T10273] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  290.865936][T10273] RSP: 002b:00000000f546d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000165
[  290.865947][T10273] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000800002c0
[  290.865953][T10273] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000
[  290.865960][T10273] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  290.865965][T10273] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  290.865972][T10273] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  290.865985][T10273]  </TASK>
[  291.180903][T10276] netlink: 'syz.0.1512': attribute type 1 has an invalid length.
[  291.184219][T10276] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1512'.
[  291.202461][T10278] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1513'.
[  291.207806][T10278] netlink: 'syz.4.1513': attribute type 7 has an invalid length.
[  291.213351][T10278] gretap0: entered promiscuous mode
[  291.217191][T10278] gretap0: left promiscuous mode
[  291.496059][   T40] audit: type=1326 audit(1777193845.435:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10291 comm="syz.4.1518" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f83fcc code=0x0
[  291.625500][   T50] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[  292.896662][   T50] usb 5-1: too many configurations: 11, using maximum allowed: 8
[  292.997831][T10317] xt_TCPMSS: Only works on TCP SYN packets
[  293.002217][T10317] trusted_key: encrypted_key: insufficient parameters specified
[  293.064136][   T39] usb 6-1: new high-speed USB device number 31 using dummy_hcd
[  293.214127][   T39] usb 6-1: Using ep0 maxpacket: 32
[  293.218404][   T39] usb 6-1: unable to get BOS descriptor or descriptor too short
[  293.223101][   T39] usb 6-1: config 8 has an invalid interface number: 188 but max is 0
[  293.226700][   T39] usb 6-1: config 8 has no interface number 0
[  293.229480][   T39] usb 6-1: config 8 interface 188 has no altsetting 0
[  293.237239][   T39] usb 6-1: string descriptor 0 read error: -22
[  293.240092][   T39] usb 6-1: New USB device found, idVendor=0ccd, idProduct=0102, bcdDevice=89.0e
[  293.244204][   T39] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  293.255256][   T39] dvb-usb: found a 'Terratec Cinergy S2 USB HD Rev.3' in warm state.
[  293.258693][   T39] dw2102: su3000_power_ctrl: 1, initialized 0
[  293.261405][   T39] dvb-usb: bulk message failed: -22 (2/0)
[  293.268445][   T39] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  293.274906][   T39] dvbdev: DVB: registering new adapter (Terratec Cinergy S2 USB HD Rev.3)
[  293.278574][   T39] usb 6-1: media controller created
[  293.281088][   T39] dvb-usb: bulk message failed: -22 (6/0)
[  293.283534][   T39] dw2102: i2c transfer failed.
[  293.285897][   T39] dvb-usb: bulk message failed: -22 (6/0)
[  293.288406][   T39] dw2102: i2c transfer failed.
[  293.290613][   T39] dvb-usb: bulk message failed: -22 (6/0)
[  293.293019][   T39] dw2102: i2c transfer failed.
[  293.295318][   T39] dvb-usb: bulk message failed: -22 (6/0)
[  293.298101][   T39] dw2102: i2c transfer failed.
[  293.300368][   T39] dvb-usb: bulk message failed: -22 (6/0)
[  293.302933][   T39] dw2102: i2c transfer failed.
[  293.305212][   T39] dvb-usb: bulk message failed: -22 (6/0)
[  293.307752][   T39] dw2102: i2c transfer failed.
[  293.310042][   T39] dvb-usb: MAC address: 02:02:02:02:02:02
[  293.323626][   T39] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  293.341845][   T39] dvb-usb: bulk message failed: -22 (3/0)
[  293.344822][   T39] dw2102: command 0x0e transfer failed.
[  293.347281][   T39] dvb-usb: bulk message failed: -22 (3/0)
[  293.349803][   T39] dw2102: command 0x0e transfer failed.
[  293.654501][   T39] dvb-usb: bulk message failed: -22 (3/0)
[  293.656598][   T39] dw2102: command 0x0e transfer failed.
[  293.659189][   T39] dvb-usb: bulk message failed: -22 (3/0)
[  293.661730][   T39] dw2102: command 0x0e transfer failed.
[  293.664271][   T39] dvb-usb: bulk message failed: -22 (1/0)
[  293.666859][   T39] dw2102: command 0x51 transfer failed.
[  293.669476][T10314] dvb-usb: bulk message failed: -22 (5/0)
[  293.672719][T10314] dw2102: i2c transfer failed.
[  293.700997][   T39] DVB: Unable to find symbol ds3000_attach()
[  293.703931][   T39] dvb-usb: no frontend was attached by 'Terratec Cinergy S2 USB HD Rev.3'
[  293.754144][   T39] rc_core: IR keymap rc-su3000 not found
[  293.755949][   T39] Registered IR keymap rc-empty
[  293.758239][   T39] rc rc0: Terratec Cinergy S2 USB HD Rev.3 as /devices/platform/dummy_hcd.1/usb6/6-1/rc/rc0
[  293.767654][   T39] input: Terratec Cinergy S2 USB HD Rev.3 as /devices/platform/dummy_hcd.1/usb6/6-1/rc/rc0/input32
[  293.778772][   T39] dvb-usb: schedule remote query interval to 150 msecs.
[  293.783421][   T39] dw2102: su3000_power_ctrl: 0, initialized 1
[  293.785441][   T39] dvb-usb: Terratec Cinergy S2 USB HD Rev.3 successfully initialized and connected.
[  293.792536][   T39] usb 6-1: USB disconnect, device number 31
[  294.235703][T10321] __nla_validate_parse: 7 callbacks suppressed
[  294.235777][T10321] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1526'.
[  294.272753][   T50] usb 5-1: unable to read config index 2 descriptor/start: -71
[  294.287042][   T50] usb 5-1: can't read configurations, error -71
[  294.323374][   T39] dvb-usb: Terratec Cinergy S2 USB HD Rev.3 successfully deinitialized and disconnected.
[  294.459899][T10326] syzkaller0: entered promiscuous mode
[  294.462307][T10326] syzkaller0: entered allmulticast mode
[  294.483220][T10326] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  294.488866][T10325] tipc: Resetting bearer <eth:syzkaller0>
[  294.500203][T10325] tipc: Disabling bearer <eth:syzkaller0>
[  295.437880][T10333] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1531'.
[  295.746774][T10340] fuse: Bad value for 'group_id'
[  295.748502][T10340] fuse: Bad value for 'group_id'
[  295.760922][T10348] netlink: 'syz.1.1535': attribute type 3 has an invalid length.
[  296.924147][   T24] usb 6-1: new high-speed USB device number 32 using dummy_hcd
[  297.074101][   T24] usb 6-1: Using ep0 maxpacket: 32
[  297.077452][   T24] usb 6-1: config index 0 descriptor too short (expected 29220, got 36)
[  297.080391][   T24] usb 6-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  297.083136][   T24] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 81
[  297.086116][   T24] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  297.089230][   T24] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  297.092226][   T24] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  297.096490][   T24] usb 6-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  297.099458][   T24] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  297.104194][   T24] usb 6-1: config 0 descriptor??
[  297.365863][T10348] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  297.370867][T10348] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  297.527840][   T24] usblp 6-1:0.0: usblp0: USB Bidirectional printer dev 32 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  297.577748][  T855] usb 6-1: USB disconnect, device number 32
[  297.590489][  T855] usblp0: removed
[  297.726234][T10366] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  297.878351][T10375] FAULT_INJECTION: forcing a failure.
[  297.878351][T10375] name failslab, interval 1, probability 0, space 0, times 0
[  297.883160][T10375] CPU: 0 UID: 0 PID: 10375 Comm: syz.2.1545 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  297.883178][T10375] Tainted: [L]=SOFTLOCKUP
[  297.883182][T10375] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  297.883188][T10375] Call Trace:
[  297.883192][T10375]  <TASK>
[  297.883197][T10375]  dump_stack_lvl+0x100/0x190
[  297.883214][T10375]  should_fail_ex.cold+0x5/0xa
[  297.883228][T10375]  should_failslab+0xc2/0x120
[  297.883241][T10375]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  297.883260][T10375]  ? skb_clone+0x190/0x400
[  297.883273][T10375]  skb_clone+0x190/0x400
[  297.883283][T10375]  netlink_deliver_tap+0xaed/0xcc0
[  297.883300][T10375]  netlink_dump+0x631/0xd00
[  297.883313][T10375]  ? __pfx_netlink_dump+0x10/0x10
[  297.883334][T10375]  __netlink_dump_start+0x6d6/0x990
[  297.883348][T10375]  ip_set_dump+0x1c2/0x200
[  297.883363][T10375]  ? __pfx_ip_set_dump+0x10/0x10
[  297.883377][T10375]  ? __pfx_ip_set_dump_start+0x10/0x10
[  297.883392][T10375]  ? __pfx_ip_set_dump_do+0x10/0x10
[  297.883401][T10375]  ? __pfx_ip_set_dump_done+0x10/0x10
[  297.883421][T10375]  nfnetlink_rcv_msg+0x9d5/0x11e0
[  297.883436][T10375]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  297.883448][T10375]  ? kfree_skbmem+0x19f/0x210
[  297.883474][T10375]  ? __pfx___dev_queue_xmit+0x10/0x10
[  297.883490][T10375]  netlink_rcv_skb+0x159/0x420
[  297.883503][T10375]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  297.883514][T10375]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  297.883533][T10375]  ? ns_capable+0xd2/0xf0
[  297.883547][T10375]  nfnetlink_rcv+0x1b3/0x440
[  297.883564][T10375]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  297.883580][T10375]  ? netlink_deliver_tap+0x1ae/0xcc0
[  297.883595][T10375]  netlink_unicast+0x585/0x850
[  297.883610][T10375]  ? __pfx_netlink_unicast+0x10/0x10
[  297.883626][T10375]  netlink_sendmsg+0x8b0/0xda0
[  297.883642][T10375]  ? __pfx_netlink_sendmsg+0x10/0x10
[  297.883657][T10375]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  297.883675][T10375]  ____sys_sendmsg+0x9e1/0xb70
[  297.883687][T10375]  ? __pfx_netlink_sendmsg+0x10/0x10
[  297.883701][T10375]  ? __pfx_____sys_sendmsg+0x10/0x10
[  297.883720][T10375]  ___sys_sendmsg+0x190/0x1e0
[  297.883735][T10375]  ? __pfx____sys_sendmsg+0x10/0x10
[  297.883755][T10375]  ? find_held_lock+0x2b/0x80
[  297.883777][T10375]  __sys_sendmsg+0x170/0x220
[  297.883792][T10375]  ? __pfx___sys_sendmsg+0x10/0x10
[  297.883805][T10375]  ? __fget_files+0x21f/0x3d0
[  297.883830][T10375]  ? ksys_write+0x1ac/0x250
[  297.883852][T10375]  ? rcu_is_watching+0x12/0xc0
[  297.883876][T10375]  __do_fast_syscall_32+0xe7/0x950
[  297.883897][T10375]  ? lockdep_hardirqs_on+0x78/0x100
[  297.883918][T10375]  do_fast_syscall_32+0x32/0x70
[  297.883939][T10375]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  297.883962][T10375] RIP: 0023:0xf707efcc
[  297.883976][T10375] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  297.883989][T10375] RSP: 002b:00000000f546d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  297.884005][T10375] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800001c0
[  297.884024][T10375] RDX: 0000000004084080 RSI: 0000000000000000 RDI: 0000000000000000
[  297.884031][T10375] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  297.884037][T10375] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  297.884043][T10375] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  297.884058][T10375]  </TASK>
[  298.088895][T10379] FAULT_INJECTION: forcing a failure.
[  298.088895][T10379] name failslab, interval 1, probability 0, space 0, times 0
[  298.092999][T10379] CPU: 0 UID: 0 PID: 10379 Comm: syz.4.1548 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  298.093017][T10379] Tainted: [L]=SOFTLOCKUP
[  298.093020][T10379] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  298.093027][T10379] Call Trace:
[  298.093031][T10379]  <TASK>
[  298.093035][T10379]  dump_stack_lvl+0x100/0x190
[  298.093052][T10379]  should_fail_ex.cold+0x5/0xa
[  298.093066][T10379]  should_failslab+0xc2/0x120
[  298.093078][T10379]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  298.093096][T10379]  ? __alloc_skb+0x140/0x710
[  298.093111][T10379]  ? __alloc_skb+0x5b7/0x710
[  298.093128][T10379]  __alloc_skb+0x140/0x710
[  298.093143][T10379]  ? __alloc_skb+0x5b7/0x710
[  298.093159][T10379]  ? __pfx___alloc_skb+0x10/0x10
[  298.093178][T10379]  pfkey_sendmsg+0x46c/0x840
[  298.093196][T10379]  ____sys_sendmsg+0x9e1/0xb70
[  298.093209][T10379]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  298.093228][T10379]  ? __pfx_____sys_sendmsg+0x10/0x10
[  298.093255][T10379]  ___sys_sendmsg+0x190/0x1e0
[  298.093279][T10379]  ? __pfx____sys_sendmsg+0x10/0x10
[  298.093313][T10379]  ? find_held_lock+0x2b/0x80
[  298.093352][T10379]  __sys_sendmsg+0x170/0x220
[  298.093366][T10379]  ? __pfx___sys_sendmsg+0x10/0x10
[  298.093375][T10379]  ? __fget_files+0x21f/0x3d0
[  298.093390][T10379]  ? ksys_write+0x1ac/0x250
[  298.093403][T10379]  ? rcu_is_watching+0x12/0xc0
[  298.093417][T10379]  __do_fast_syscall_32+0xe7/0x950
[  298.093431][T10379]  ? lockdep_hardirqs_on+0x78/0x100
[  298.093444][T10379]  do_fast_syscall_32+0x32/0x70
[  298.093457][T10379]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  298.093471][T10379] RIP: 0023:0xf7f83fcc
[  298.093480][T10379] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  298.093491][T10379] RSP: 002b:00000000f544650c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  298.093501][T10379] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000040
[  298.093508][T10379] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000000
[  298.093514][T10379] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  298.093519][T10379] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  298.093525][T10379] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  298.093538][T10379]  </TASK>
[  298.097299][T10380] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1546'.
[  298.364576][T10391] can0: slcan on ttyS3.
[  298.445083][T10391] can0 (unregistered): slcan off ttyS3.
[  299.946520][T10406] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1555'.
[  301.543588][T10419] trusted_key: encrypted_key: insufficient parameters specified
[  302.298409][T10425] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1563'.
[  302.301384][T10425] netlink: 'syz.0.1563': attribute type 7 has an invalid length.
[  302.304104][T10425] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1563'.
[  302.317206][T10425] gretap0: entered promiscuous mode
[  302.322403][T10425] gretap0: left promiscuous mode
[  302.345614][T10427] netlink: 'syz.1.1564': attribute type 3 has an invalid length.
[  302.604447][   T24] usb 6-1: new high-speed USB device number 33 using dummy_hcd
[  302.705883][T10440] bond1 (unregistering): Released all slaves
[  302.784256][   T24] usb 6-1: Using ep0 maxpacket: 32
[  302.787389][   T24] usb 6-1: config index 0 descriptor too short (expected 29220, got 36)
[  302.790149][   T24] usb 6-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  302.792895][   T24] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 81
[  302.797229][   T24] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  302.800388][   T24] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  302.803618][   T24] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  302.808116][   T24] usb 6-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  302.811133][   T24] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  302.816204][   T24] usb 6-1: config 0 descriptor??
[  303.030815][T10427] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  303.034485][   T24] usblp 6-1:0.0: usblp0: USB Bidirectional printer dev 33 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  303.041936][T10427] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  303.256945][   T24] usb 6-1: USB disconnect, device number 33
[  303.265703][   T24] usblp0: removed
[  303.656255][T10445] netlink: 'syz.2.1570': attribute type 3 has an invalid length.
[  303.664117][ T6638] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  303.794097][ T6638] usb 9-1: device descriptor read/64, error -71
[  303.797827][T10447] netlink: 164 bytes leftover after parsing attributes in process `syz.1.1571'.
[  303.914164][   T39] usb 7-1: new high-speed USB device number 32 using dummy_hcd
[  304.034111][ T6638] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  304.074720][   T39] usb 7-1: Using ep0 maxpacket: 32
[  304.078295][   T39] usb 7-1: config index 0 descriptor too short (expected 29220, got 36)
[  304.081933][   T39] usb 7-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  304.086106][   T39] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 81
[  304.089333][   T39] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  304.092305][   T39] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  304.095320][   T39] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  304.100228][   T39] usb 7-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  304.104100][   T39] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  304.109505][   T39] usb 7-1: config 0 descriptor??
[  304.164430][ T6638] usb 9-1: device descriptor read/64, error -71
[  304.276498][ T6638] usb usb9-port1: attempt power cycle
[  304.320688][T10445] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  304.321614][   T39] usblp 7-1:0.0: usblp0: USB Bidirectional printer dev 32 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  304.326171][T10445] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  304.539472][   T24] usb 7-1: USB disconnect, device number 32
[  304.549254][   T24] usblp0: removed
[  304.599231][T10455] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  304.635518][ T6638] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  304.679258][ T6638] usb 9-1: device descriptor read/8, error -71
[  304.974665][ T6638] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[  304.994534][ T6638] usb 9-1: device descriptor read/8, error -71
[  305.067528][T10465] SET target dimension over the limit!
[  305.114455][ T6638] usb usb9-port1: unable to enumerate USB device
[  305.304244][ T1036] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  305.454263][ T1036] usb 5-1: Using ep0 maxpacket: 32
[  305.459130][ T1036] usb 5-1: config 155 has an invalid descriptor of length 0, skipping remainder of the config
[  305.463558][ T1036] usb 5-1: config 155 interface 0 altsetting 0 has an endpoint descriptor with address 0xE2, changing to 0x82
[  305.468758][ T1036] usb 5-1: config 155 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  305.473513][ T1036] usb 5-1: config 155 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 11
[  305.481994][ T1036] usb 5-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30
[  305.486201][ T1036] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  305.489718][ T1036] usb 5-1: Product: syz
[  305.491582][ T1036] usb 5-1: Manufacturer: syz
[  305.493637][ T1036] usb 5-1: SerialNumber: syz
[  305.509523][    C0] imon 5-1:155.0: imon usb_rx_callback_intf0: status(-71)
[  305.518222][ T1036] input: iMON Panel, Knob and Mouse(15c2:ffdc) as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:155.0/input/input33
[  305.724412][ T1036] imon 5-1:155.0: Unknown 0xffdc device, defaulting to VFD and iMON IR
[  305.732015][ T1036]  (id 0x00)
[  305.784112][ T1036] rc_core: IR keymap rc-imon-pad not found
[  305.786083][ T1036] Registered IR keymap rc-empty
[  305.787728][ T1036] imon 5-1:155.0: Looks like you're trying to use an IR protocol this device does not support
[  305.790987][ T1036] imon 5-1:155.0: Unsupported IR protocol specified, overriding to iMON IR protocol
[  305.938654][ T1036] rc rc0: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:155.0/rc/rc0
[  305.956086][ T1036] input: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:155.0/rc/rc0/input34
[  305.983642][ T1036] imon 5-1:155.0: iMON device (15c2:ffdc, intf0) on usb<5:32> initialized
[  306.230654][T10465] imon:send_packet: packet tx failed (-71)
[  306.230957][  T855] usb 5-1: USB disconnect, device number 32
[  306.264205][T10465] imon:vfd_write: send packet #0 failed
[  306.268050][T10486] imon:display_open: display port is already open
[  306.473999][ T5101] Bluetooth: hci2: ACL packet for unknown connection handle 201
[  306.614266][ T5101] Bluetooth: hci2: command 0x040f tx timeout
[  306.801857][T10511] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[  306.803960][T10511] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  306.811170][T10511] vhci_hcd vhci_hcd.0: Device attached
[  307.077473][T10518] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1594'.
[  307.084126][ T1036] usb 45-1: new high-speed USB device number 2 using vhci_hcd
[  307.508595][T10513] vhci_hcd: connection reset by peer
[  307.513005][   T58] vhci_hcd vhci_hcd.4: stop threads
[  307.515958][   T58] vhci_hcd vhci_hcd.4: release socket
[  307.518566][   T58] vhci_hcd vhci_hcd.4: disconnect device
[  307.906622][T10525] syzkaller0: entered promiscuous mode
[  307.908987][T10525] syzkaller0: entered allmulticast mode
[  307.929356][T10525] tc action pedit 'at' offset 16391 out of bounds
[  307.931642][T10525] tc action pedit 'at' offset 16391 out of bounds
[  307.934806][T10525] tc action pedit 'at' offset 16391 out of bounds
[  307.936733][T10525] tc action pedit 'at' offset 16391 out of bounds
[  307.938632][T10525] tc action pedit 'at' offset 16391 out of bounds
[  307.940532][T10525] tc action pedit 'at' offset 16391 out of bounds
[  307.942404][T10525] tc action pedit 'at' offset 16391 out of bounds
[  307.944344][T10525] tc action pedit 'at' offset 16391 out of bounds
[  307.946145][T10525] tc action pedit 'at' offset 16391 out of bounds
[  307.947974][T10525] tc action pedit 'at' offset 16391 out of bounds
[  307.949920][T10525] TC_ACT_REPEAT abuse ?
[  308.476341][T10536] syz.4.1602 (10536): drop_caches: 2
[  308.483298][T10536] syz.4.1602 (10536): drop_caches: 2
[  308.490549][T10536] syz.4.1602 (10536): drop_caches: 2
[  309.480169][T10547] loop3: detected capacity change from 0 to 7
[  309.489903][T10547] Dev loop3: unable to read RDB block 7
[  309.494386][T10547]  loop3: AHDI p3 p4
[  309.496134][T10547] loop3: partition table partially beyond EOD, truncated
[  309.500983][T10547] loop3: p3 start 1702000233 is beyond EOD, truncated
[  310.119812][T10563] syzkaller0: entered promiscuous mode
[  310.121862][T10563] syzkaller0: entered allmulticast mode
[  310.136570][T10563] tipc: Started in network mode
[  310.138412][T10563] tipc: Node identity 7653b4859018, cluster identity 4711
[  310.141142][T10563] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  310.147057][T10562] tipc: Resetting bearer <eth:syzkaller0>
[  310.177459][T10562] tipc: Disabling bearer <eth:syzkaller0>
[  310.784508][   T40] audit: type=1800 audit(1777193864.715:107): pid=10574 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1615" name="bus" dev="tmpfs" ino=353 res=0 errno=0
[  310.889910][ T5101] Bluetooth: hci2: ACL packet for unknown connection handle 201
[  310.939775][T10584] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1621'.
[  310.943731][T10584] netlink: 'syz.4.1621': attribute type 7 has an invalid length.
[  310.947519][T10584] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1621'.
[  310.964773][T10584] gretap0: entered promiscuous mode
[  310.969605][T10584] gretap0: left promiscuous mode
[  311.206165][T10590] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1623'.
[  311.210298][T10590] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1623'.
[  311.222214][T10592] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1624'.
[  311.318782][T10597] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  311.356962][T10600] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1627'.
[  311.464216][   T39] usb 7-1: new high-speed USB device number 33 using dummy_hcd
[  311.624180][   T39] usb 7-1: Using ep0 maxpacket: 32
[  311.627330][   T39] usb 7-1: config 0 has an invalid interface number: 184 but max is 0
[  311.630166][   T39] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  311.633263][   T39] usb 7-1: config 0 has no interface number 0
[  311.637119][   T39] usb 7-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  311.640129][   T39] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  311.642602][   T39] usb 7-1: Product: syz
[  311.644317][   T39] usb 7-1: Manufacturer: syz
[  311.646020][   T39] usb 7-1: SerialNumber: syz
[  311.649483][   T39] usb 7-1: config 0 descriptor??
[  311.656185][   T39] smsc75xx 7-1:0.184 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22
[  311.660459][   T39] smsc75xx 7-1:0.184: probe with driver smsc75xx failed with error -22
[  311.754174][ T5825] usb 6-1: new full-speed USB device number 34 using dummy_hcd
[  311.926202][ T5825] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  311.933303][ T5825] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  311.939471][ T5825] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  311.943509][ T5825] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  312.153364][ T5825] usb 6-1: usb_control_msg returned -32
[  312.155246][ T5825] usbtmc 6-1:16.0: can't read capabilities
[  312.217763][ T1036] vhci_hcd vhci_hcd.4: vhci_device speed not set
[  312.562527][T10613] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1623'.
[  314.218127][ T5825] usb 7-1: USB disconnect, device number 33
[  314.300724][T10631] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1635'.
[  314.308908][T10634] MTD: Attempt to mount non-MTD device "/dev/nullb0"
[  314.326573][T10634] VFS: Can't find a romfs filesystem on dev nullb0.
[  314.326573][T10634] 
[  314.455058][ T1036] usb 6-1: USB disconnect, device number 34
[  314.894415][ T1036] usb 6-1: new high-speed USB device number 35 using dummy_hcd
[  315.254385][ T1036] usb 6-1: config index 0 descriptor too short (expected 39, got 27)
[  315.577156][ T1036] usb 6-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  315.894940][ T1036] usb 6-1: config 0 interface 0 has no altsetting 0
[  315.903250][ T1036] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  315.906767][ T1036] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  315.909720][ T1036] usb 6-1: Product: syz
[  315.911254][ T1036] usb 6-1: Manufacturer: syz
[  315.913115][ T1036] usb 6-1: SerialNumber: syz
[  315.917891][ T1036] usb 6-1: config 0 descriptor??
[  315.924456][ T1036] hub 6-1:0.0: bad descriptor, ignoring hub
[  315.927130][ T1036] hub 6-1:0.0: probe with driver hub failed with error -5
[  315.932094][ T1036] usb 6-1: selecting invalid altsetting 0
[  315.939278][T10663] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1644'.
[  316.151770][T10669] netlink: 'syz.4.1647': attribute type 2 has an invalid length.
[  316.155243][T10669] netlink: 'syz.4.1647': attribute type 8 has an invalid length.
[  316.161980][T10669] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1647'.
[  316.307025][T10674] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  316.958311][T10649] usb 6-1: reset high-speed USB device number 35 using dummy_hcd
[  317.133988][T10649] usb 6-1: device firmware changed
[  317.396000][ T5825] usb 6-1: USB disconnect, device number 35
[  317.938027][T10684] A link change request failed with some changes committed already. Interface dvmrp0 may have been left with an inconsistent configuration, please check.
[  318.090242][T10686] 9pnet_virtio: no channels available for device syz
[  318.181158][ T5101] Bluetooth: hci2: ACL packet for unknown connection handle 201
[  318.197447][T10686] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  318.229866][T10696] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1656'.
[  318.451902][T10702] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  318.634169][   T24] usb 9-1: new full-speed USB device number 10 using dummy_hcd
[  318.636171][T10702] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  318.750616][T10702] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  318.805920][   T24] usb 9-1: config 0 has no interfaces?
[  318.810189][   T24] usb 9-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  318.813481][   T24] usb 9-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  318.816811][   T24] usb 9-1: Product: syz
[  318.818259][   T24] usb 9-1: Manufacturer: syz
[  318.820773][   T24] usb 9-1: SerialNumber: syz
[  318.825452][   T24] usb 9-1: config 0 descriptor??
[  318.856975][T10702] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  318.985801][   T46] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  318.994596][   T46] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  319.013919][   T46] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  319.036285][   T46] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  319.120689][ T1036] usb 9-1: USB disconnect, device number 10
[  320.006201][T10735] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  320.058947][T10739] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1665'.
[  320.063025][T10739] netlink: 'syz.0.1665': attribute type 7 has an invalid length.
[  320.066796][T10739] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1665'.
[  320.097116][T10739] gretap0: entered promiscuous mode
[  320.109733][T10739] gretap0: left promiscuous mode
[  320.267586][T10745] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1669'.
[  320.278629][T10746] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1667'.
[  320.346717][T10751] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  320.349967][T10751] netdevsim netdevsim0 eth3 (unregistering): unset [1, 1] type 2 family 0 port 2563 - 0
[  320.364337][T10753] netlink: 'syz.2.1673': attribute type 3 has an invalid length.
[  320.442142][T10751] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  320.448125][T10751] netdevsim netdevsim0 eth2 (unregistering): unset [1, 1] type 2 family 0 port 2563 - 0
[  320.509755][T10751] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  320.513472][T10751] netdevsim netdevsim0 eth1 (unregistering): unset [1, 1] type 2 family 0 port 2563 - 0
[  320.604229][   T39] usb 7-1: new high-speed USB device number 34 using dummy_hcd
[  320.634141][ T5938] usb 5-1: new full-speed USB device number 33 using dummy_hcd
[  320.644104][T10751] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  320.648426][T10751] netdevsim netdevsim0 eth0 (unregistering): unset [1, 1] type 2 family 0 port 2563 - 0
[  320.738723][ T3603] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 2563 - 0
[  320.742312][ T3603] netdevsim netdevsim0 eth0: set [1, 1] type 2 family 0 port 6081 - 0
[  320.754194][   T39] usb 7-1: Using ep0 maxpacket: 32
[  320.759038][ T3603] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 2563 - 0
[  320.762705][   T39] usb 7-1: config index 0 descriptor too short (expected 29220, got 36)
[  320.763442][ T3603] netdevsim netdevsim0 eth1: set [1, 1] type 2 family 0 port 6081 - 0
[  320.767024][   T39] usb 7-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  320.773526][   T39] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 81
[  320.777703][   T39] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  320.781905][   T39] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  320.785829][ T3603] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 2563 - 0
[  320.786152][   T39] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  320.793305][ T3603] netdevsim netdevsim0 eth2: set [1, 1] type 2 family 0 port 6081 - 0
[  320.794931][   T39] usb 7-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  320.801961][   T39] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  320.806520][ T5938] usb 5-1: config 0 has no interfaces?
[  320.808418][ T3603] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 2563 - 0
[  320.811568][ T5938] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  320.811620][ T3603] netdevsim netdevsim0 eth3: set [1, 1] type 2 family 0 port 6081 - 0
[  320.815911][   T39] usb 7-1: config 0 descriptor??
[  320.822151][ T5938] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  320.824797][ T5938] usb 5-1: Product: syz
[  320.826861][ T5938] usb 5-1: Manufacturer: syz
[  320.829557][ T5938] usb 5-1: SerialNumber: syz
[  320.837958][ T5938] usb 5-1: config 0 descriptor??
[  321.033604][T10753] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  321.036612][   T39] usblp 7-1:0.0: usblp0: USB Bidirectional printer dev 34 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  321.039854][T10753] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  321.108099][   T39] usb 5-1: USB disconnect, device number 33
[  321.252739][ T5825] usb 7-1: USB disconnect, device number 34
[  321.258950][ T5825] usblp0: removed
[  321.738562][ T1432] ieee802154 phy0 wpan0: encryption failed: -22
[  321.795906][ T1432] ieee802154 phy1 wpan1: encryption failed: -22
[  321.965711][T10775] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  322.451080][T10784] syzkaller0: entered promiscuous mode
[  322.453548][T10784] syzkaller0: entered allmulticast mode
[  322.487140][T10784] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  322.493531][T10783] tipc: Resetting bearer <eth:syzkaller0>
[  322.542768][T10783] tipc: Disabling bearer <eth:syzkaller0>
[  322.630487][T10795] netlink: 'syz.2.1685': attribute type 3 has an invalid length.
[  322.713271][T10803] netlink: 'syz.1.1687': attribute type 1 has an invalid length.
[  322.739765][T10803] 8021q: adding VLAN 0 to HW filter on device bond2
[  322.782100][T10803] bond2: (slave veth3): Enslaving as an active interface with a down link
[  322.801250][T10803] 8021q: adding VLAN 0 to HW filter on device batadv1
[  322.805142][T10803] bond2: (slave batadv1): making interface the new active one
[  322.808561][T10803] batadv1: entered promiscuous mode
[  322.810798][T10803] bond2: (slave batadv1): Enslaving as an active interface with an up link
[  322.847931][T10803] bond2 (unregistering): (slave veth3): Releasing active interface
[  322.871149][T10803] bond2 (unregistering): (slave batadv1): Releasing active interface
[  322.881047][T10803] bond2 (unregistering): Released all slaves
[  322.894213][ T5742] usb 7-1: new high-speed USB device number 35 using dummy_hcd
[  322.930089][T10808] netlink: 'syz.4.1684': attribute type 4 has an invalid length.
[  322.958333][T10808] netlink: 'syz.4.1684': attribute type 4 has an invalid length.
[  323.064085][ T5742] usb 7-1: Using ep0 maxpacket: 32
[  323.067644][ T5742] usb 7-1: config index 0 descriptor too short (expected 29220, got 36)
[  323.070676][ T5742] usb 7-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  323.074913][ T5742] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 81
[  323.085156][ T5742] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  323.099072][ T5742] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  323.113414][ T5742] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  323.119227][T10811] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  323.128562][ T5742] usb 7-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  323.131884][ T5742] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  323.140319][ T5742] usb 7-1: config 0 descriptor??
[  323.354295][T10795] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  323.405243][T10795] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  323.434445][ T5742] usblp 7-1:0.0: usblp0: USB Bidirectional printer dev 35 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  323.632646][   T10] usb 7-1: USB disconnect, device number 35
[  323.646539][   T10] usblp0: removed
[  324.226831][T10821] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1692'.
[  324.236078][T10821] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1692'.
[  324.259943][T10821] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1692'.
[  324.267340][T10821] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1692'.
[  324.376685][T10821] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1692'.
[  324.379728][T10821] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1692'.
[  324.407701][T10831] Invalid source name
[  324.527795][T10819] Process accounting resumed
[  325.154274][ T5825] usb 6-1: new full-speed USB device number 37 using dummy_hcd
[  325.174090][ T5101] Bluetooth: hci2: command 0x040f tx timeout
[  325.506861][ T5825] usb 6-1: not running at top speed; connect to a high speed hub
[  325.546497][ T5825] usb 6-1: config 0 has an invalid interface number: 239 but max is 2
[  325.565087][ T5825] usb 6-1: config 0 has an invalid interface number: 96 but max is 2
[  325.589804][ T5825] usb 6-1: config 0 has an invalid interface number: 227 but max is 2
[  325.611174][ T5825] usb 6-1: config 0 has an invalid interface number: 142 but max is 2
[  325.623437][ T5825] usb 6-1: config 0 has an invalid interface number: 183 but max is 2
[  325.639426][ T5825] usb 6-1: config 0 has 5 interfaces, different from the descriptor's value: 3
[  325.665236][ T5825] usb 6-1: config 0 has no interface number 0
[  325.674103][ T5825] usb 6-1: config 0 has no interface number 1
[  325.687009][ T5825] usb 6-1: config 0 has no interface number 2
[  325.695067][ T5825] usb 6-1: config 0 has no interface number 3
[  325.706579][ T5825] usb 6-1: config 0 has no interface number 4
[  325.715716][ T5825] usb 6-1: config 0 interface 239 altsetting 129 has an invalid descriptor for endpoint zero, skipping
[  325.731478][ T5825] usb 6-1: config 0 interface 96 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 4
[  325.747168][ T5825] usb 6-1: config 0 interface 96 altsetting 1 has an invalid descriptor for endpoint zero, skipping
[  325.756399][ T5825] usb 6-1: config 0 interface 96 altsetting 1 endpoint 0x6 has invalid maxpacket 512, setting to 64
[  325.761993][ T5825] usb 6-1: config 0 interface 96 altsetting 1 endpoint 0xF has invalid maxpacket 1023, setting to 64
[  325.768614][ T5825] usb 6-1: config 0 interface 96 altsetting 1 endpoint 0xC has invalid maxpacket 512, setting to 64
[  325.772121][ T5825] usb 6-1: config 0 interface 96 altsetting 1 has a duplicate endpoint with address 0xC, skipping
[  325.775703][ T5825] usb 6-1: config 0 interface 96 altsetting 1 endpoint 0x7 has invalid maxpacket 1032, setting to 64
[  325.779157][ T5825] usb 6-1: config 0 interface 227 altsetting 255 endpoint 0xE has invalid maxpacket 1023, setting to 64
[  325.782763][ T5825] usb 6-1: config 0 interface 227 altsetting 255 has 3 endpoint descriptors, different from the interface descriptor's value: 8
[  325.787184][ T5825] usb 6-1: config 0 interface 142 altsetting 31 endpoint 0xD has an invalid bInterval 0, changing to 4
[  325.790680][ T5825] usb 6-1: config 0 interface 142 altsetting 31 has a duplicate endpoint with address 0xF, skipping
[  325.794355][ T5825] usb 6-1: config 0 interface 142 altsetting 31 has a duplicate endpoint with address 0x1, skipping
[  325.797766][ T5825] usb 6-1: config 0 interface 142 altsetting 31 has 4 endpoint descriptors, different from the interface descriptor's value: 16
[  325.801884][ T5825] usb 6-1: too many endpoints for config 0 interface 183 altsetting 57: 61, using maximum allowed: 30
[  325.805617][ T5825] usb 6-1: config 0 interface 183 altsetting 57 has a duplicate endpoint with address 0x8, skipping
[  325.810229][ T5825] usb 6-1: config 0 interface 183 altsetting 57 has 1 endpoint descriptor, different from the interface descriptor's value: 61
[  325.814623][ T5825] usb 6-1: config 0 interface 239 has no altsetting 0
[  325.816905][ T5825] usb 6-1: config 0 interface 96 has no altsetting 0
[  325.819074][ T5825] usb 6-1: config 0 interface 227 has no altsetting 0
[  325.821223][ T5825] usb 6-1: config 0 interface 142 has no altsetting 0
[  325.823400][ T5825] usb 6-1: config 0 interface 183 has no altsetting 0
[  325.827925][ T5825] usb 6-1: New USB device found, idVendor=04cb, idProduct=0100, bcdDevice= 2.e8
[  325.830824][ T5825] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  325.833377][ T5825] usb 6-1: Manufacturer: 嫊ꃙ鹭뿰螱嚳댐ݲ鉣曥챖壃硔ꆜᔁॄꜲ댼⚶䏨ई퇠拃䴡튍彤捎
[  325.837686][ T5825] usb 6-1: SerialNumber: Ѝ
[  325.840787][ T5825] usb 6-1: config 0 descriptor??
[  325.845613][T10840] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  326.047098][T10854] netlink: 'syz.2.1701': attribute type 3 has an invalid length.
[  326.058064][ T5825] usb-storage 6-1:0.239: USB Mass Storage device detected
[  326.067200][ T5825] usb-storage 6-1:0.239: Quirks match for vid 04cb pid 0100: 9
[  326.119061][ T5825] usb-storage 6-1:0.96: USB Mass Storage device detected
[  326.131843][ T5825] usb-storage 6-1:0.96: Quirks match for vid 04cb pid 0100: 9
[  326.199978][ T5825] usb-storage 6-1:0.227: USB Mass Storage device detected
[  326.204109][ T5825] usb-storage 6-1:0.227: Quirks match for vid 04cb pid 0100: 9
[  326.296110][   T24] usb 7-1: new high-speed USB device number 36 using dummy_hcd
[  326.304394][ T5825] usb-storage 6-1:0.142: USB Mass Storage device detected
[  326.327953][ T5825] usb-storage 6-1:0.142: Quirks match for vid 04cb pid 0100: 9
[  326.380721][ T5825] usb-storage 6-1:0.183: USB Mass Storage device detected
[  326.386229][ T5825] usb-storage 6-1:0.183: Quirks match for vid 04cb pid 0100: 9
[  326.450047][ T5825] usb 6-1: USB disconnect, device number 37
[  326.454769][   T24] usb 7-1: Using ep0 maxpacket: 32
[  326.463960][   T24] usb 7-1: config index 0 descriptor too short (expected 29220, got 36)
[  326.472393][   T24] usb 7-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  326.478362][   T24] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 81
[  326.487768][   T24] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  326.496992][   T24] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  326.500669][   T24] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  326.506379][   T24] usb 7-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  326.510255][   T24] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  326.519220][   T24] usb 7-1: config 0 descriptor??
[  326.574269][   T39] usb 5-1: new high-speed USB device number 34 using dummy_hcd
[  326.704444][   T39] usb 5-1: device descriptor read/64, error -71
[  326.729890][   T24] usblp 7-1:0.0: usblp0: USB Bidirectional printer dev 36 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  326.733340][T10854] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  326.733722][T10854] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  326.747767][T10875] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1705'.
[  326.944136][   T39] usb 5-1: new high-speed USB device number 35 using dummy_hcd
[  326.949855][ T5742] usb 7-1: USB disconnect, device number 36
[  326.958048][ T5742] usblp0: removed
[  327.034136][   T24] usb 9-1: new high-speed USB device number 11 using dummy_hcd
[  327.084112][   T39] usb 5-1: device descriptor read/64, error -71
[  327.194252][   T39] usb usb5-port1: attempt power cycle
[  327.194367][   T24] usb 9-1: Using ep0 maxpacket: 8
[  327.199704][   T24] usb 9-1: config index 0 descriptor too short (expected 301, got 45)
[  327.203168][   T24] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  327.207234][   T24] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  327.210443][   T24] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  327.213591][   T24] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  327.218371][   T24] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  327.222219][   T24] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  327.437795][   T24] usb 9-1: usb_control_msg returned -32
[  327.440201][   T24] usbtmc 9-1:16.0: can't read capabilities
[  327.534335][   T39] usb 5-1: new high-speed USB device number 36 using dummy_hcd
[  327.566977][   T39] usb 5-1: device descriptor read/8, error -71
[  327.804321][   T39] usb 5-1: new high-speed USB device number 37 using dummy_hcd
[  327.824867][   T39] usb 5-1: device descriptor read/8, error -71
[  327.915092][T10885] Failed to get privilege flags for destination (handle=0x2:0x0)
[  327.918793][T10884] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1709'.
[  327.934339][   T39] usb usb5-port1: unable to enumerate USB device
[  328.306774][T10902] usbtmc 9-1:16.0: INITIATE_CLEAR returned 0
[  328.321394][T10902] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1706'.
[  329.885998][ T1036] usb 9-1: USB disconnect, device number 11
[  329.937257][T10936] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  330.587186][T10951] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1733'.
[  330.620971][T10953] syzkaller0: entered promiscuous mode
[  330.622738][T10953] syzkaller0: entered allmulticast mode
[  330.727936][T10955] netlink: 72 bytes leftover after parsing attributes in process `syz.2.1731'.
[  330.889284][T10961] netlink: 'syz.0.1737': attribute type 1 has an invalid length.
[  330.914177][T10961] 8021q: adding VLAN 0 to HW filter on device bond2
[  330.946125][T10961] vlan1: entered allmulticast mode
[  330.947922][T10961] bond2: entered allmulticast mode
[  330.971472][T10961] bond2: (slave geneve4): making interface the new active one
[  330.974799][T10961] geneve4: entered allmulticast mode
[  330.979202][T10961] bond2: (slave geneve4): Enslaving as an active interface with an up link
[  331.053883][T10961] 9p: Could not find request transport: virti�
[  331.416392][T10977] netlink: 'syz.0.1742': attribute type 3 has an invalid length.
[  331.486127][T10978] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  331.488381][T10978] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  331.491559][T10978] vhci_hcd vhci_hcd.0: Device attached
[  331.724212][ T1036] usb 5-1: new high-speed USB device number 38 using dummy_hcd
[  331.774315][ T5742] usb 42-1: SetAddress Request (2) to port 0
[  331.785189][ T5742] usb 42-1: new SuperSpeed USB device number 2 using vhci_hcd
[  331.821923][T10978] A link change request failed with some changes committed already. Interface dvmrp0 may have been left with an inconsistent configuration, please check.
[  331.874268][ T1036] usb 5-1: Using ep0 maxpacket: 32
[  331.877603][ T1036] usb 5-1: config index 0 descriptor too short (expected 29220, got 36)
[  331.881981][ T1036] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  331.889951][ T1036] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 81
[  331.900117][ T1036] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  331.909497][ T1036] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  331.912648][ T1036] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  331.917216][ T1036] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  331.920199][ T1036] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  331.924762][ T1036] usb 5-1: config 0 descriptor??
[  331.984302][ T5749] Bluetooth: hci2: command 0x040f tx timeout
[  331.995930][T10992] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  332.129623][T10977] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  332.136950][ T1036] usblp 5-1:0.0: usblp0: USB Bidirectional printer dev 38 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  332.140868][T10977] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  332.264817][T10979] vhci_hcd: connection reset by peer
[  332.269108][ T1259] vhci_hcd vhci_hcd.2: stop threads
[  332.271151][ T1259] vhci_hcd vhci_hcd.2: release socket
[  332.273357][ T1259] vhci_hcd vhci_hcd.2: disconnect device
[  332.336051][ T5101] Bluetooth: hci2: ACL packet for unknown connection handle 201
[  332.347988][ T1036] usb 5-1: USB disconnect, device number 38
[  332.360008][ T1036] usblp0: removed
[  333.386277][T11009] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  333.404368][T11012] fuse: Bad value for 'fd'
[  333.599821][T11017] Cache volume key already in use (9p,syz,)
[  333.701549][T11023] fuse: Bad value for 'fd'
[  333.719813][T11019] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  333.964108][   T50] usb 5-1: new full-speed USB device number 39 using dummy_hcd
[  334.006080][T11031] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1761'.
[  334.198242][T11042] syzkaller0: entered promiscuous mode
[  334.200039][T11042] syzkaller0: entered allmulticast mode
[  334.205606][   T50] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  334.216661][   T50] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  334.223909][   T50] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  334.228800][   T50] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  334.297830][T11044] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[  334.299970][T11044] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  334.312902][T11044] vhci_hcd vhci_hcd.0: Device attached
[  334.446172][   T50] usb 5-1: usb_control_msg returned -32
[  334.448353][   T50] usbtmc 5-1:16.0: can't read capabilities
[  334.544524][T11044] bridge0: port 1(bridge_slave_0) entered disabled state
[  334.552723][T11044] bridge0: port 2(bridge_slave_1) entered disabled state
[  334.558098][T11049] netlink: 'syz.2.1765': attribute type 61 has an invalid length.
[  334.585319][T11044] 8021q: adding VLAN 0 to HW filter on device eth0
[  334.590915][T11044] 8021q: adding VLAN 0 to HW filter on device eth1
[  334.605581][T11044] 8021q: adding VLAN 0 to HW filter on device eth2
[  334.609096][T11044] 8021q: adding VLAN 0 to HW filter on device eth3
[  334.614198][   T29] usb 46-1: SetAddress Request (2) to port 0
[  334.616173][   T29] usb 46-1: new SuperSpeed USB device number 2 using vhci_hcd
[  335.314353][T11053] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1766'.
[  335.347906][   T40] audit: type=1326 audit(1777193889.275:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11052 comm="syz.2.1766" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf707efcc code=0x0
[  335.398604][T11055] netlink: 'syz.2.1766': attribute type 39 has an invalid length.
[  335.744124][ T5101] Bluetooth: hci2: command 0x040f tx timeout
[  336.555733][T11045] vhci_hcd: connection reset by peer
[  336.557703][ T1259] vhci_hcd vhci_hcd.4: stop threads
[  336.561037][ T1259] vhci_hcd vhci_hcd.4: release socket
[  336.562884][ T1259] vhci_hcd vhci_hcd.4: disconnect device
[  336.624565][T11059] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  336.694546][ T1036] usb 5-1: USB disconnect, device number 39
[  336.757443][T11065] random: crng reseeded on system resumption
[  336.815480][T11069] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1771'.
[  336.854220][ T5742] usb 42-1: device descriptor read/8, error -110
[  337.364960][ T5742] usb usb42-port1: attempt power cycle
[  337.454483][ T5887] usb 6-1: new high-speed USB device number 38 using dummy_hcd
[  337.614559][ T5887] usb 6-1: Using ep0 maxpacket: 8
[  337.632408][ T5887] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  337.639194][ T5887] usb 6-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  337.648298][ T5887] usb 6-1: config 16 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  337.674651][ T5887] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  337.688470][ T5101] Bluetooth: hci2: ACL packet for unknown connection handle 201
[  337.707287][T11087] tmpfs: Unknown parameter ''
[  337.711678][ T5887] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  337.716498][T11087] netlink: 268 bytes leftover after parsing attributes in process `syz.2.1775'.
[  337.719478][T11087] netlink: 136 bytes leftover after parsing attributes in process `syz.2.1775'.
[  337.788396][ T5887] usbtmc 6-1:16.0: bulk endpoints not found
[  337.945940][T11091] fuse: Bad value for 'fd'
[  337.999012][ T5742] usb usb42-port1: unable to enumerate USB device
[  338.704191][ T5101] Bluetooth: hci2: command 0x040f tx timeout
[  339.144108][   T24] usb 9-1: new full-speed USB device number 12 using dummy_hcd
[  339.295364][   T24] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  339.298405][   T24] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  339.302394][   T24] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  339.305342][   T24] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  339.515137][   T24] usb 9-1: usb_control_msg returned -32
[  339.516983][   T24] usbtmc 9-1:16.0: can't read capabilities
[  339.654377][   T29] usb 46-1: device descriptor read/8, error -110
[  339.773659][T11105] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1780'.
[  339.777727][T11105] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1780'.
[  339.937107][   T39] usb 6-1: USB disconnect, device number 38
[  340.024446][ T6638] usb 7-1: new high-speed USB device number 37 using dummy_hcd
[  340.037109][T11108] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1781'.
[  340.055078][   T29] usb usb46-port1: attempt power cycle
[  340.175088][ T6638] usb 7-1: Using ep0 maxpacket: 32
[  340.182610][ T6638] usb 7-1: config 0 has an invalid interface number: 184 but max is 0
[  340.189769][ T6638] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  340.197002][ T6638] usb 7-1: config 0 has no interface number 0
[  340.209829][ T6638] usb 7-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  340.215032][ T6638] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  340.226085][ T6638] usb 7-1: Product: syz
[  340.230646][ T6638] usb 7-1: Manufacturer: syz
[  340.235077][ T6638] usb 7-1: SerialNumber: syz
[  340.256531][ T6638] usb 7-1: config 0 descriptor??
[  340.261457][ T6638] smsc75xx 7-1:0.184 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22
[  340.272014][ T6638] smsc75xx 7-1:0.184: probe with driver smsc75xx failed with error -22
[  340.309528][T11122] FAULT_INJECTION: forcing a failure.
[  340.309528][T11122] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  340.315837][T11122] CPU: 1 UID: 0 PID: 11122 Comm: syz.0.1785 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  340.315865][T11122] Tainted: [L]=SOFTLOCKUP
[  340.315871][T11122] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  340.315882][T11122] Call Trace:
[  340.315932][T11122]  <TASK>
[  340.315939][T11122]  dump_stack_lvl+0x100/0x190
[  340.315990][T11122]  should_fail_ex.cold+0x5/0xa
[  340.316011][T11122]  _copy_from_user+0x2e/0xd0
[  340.316066][T11122]  __sys_bpf+0x243/0x4b90
[  340.316087][T11122]  ? __pfx___sys_bpf+0x10/0x10
[  340.316102][T11122]  ? get_pid_task+0x106/0x250
[  340.316129][T11122]  ? proc_fail_nth_write+0x9f/0x220
[  340.316155][T11122]  ? find_held_lock+0x2b/0x80
[  340.316182][T11122]  ? find_held_lock+0x2b/0x80
[  340.316204][T11122]  ? ksys_write+0x190/0x250
[  340.316251][T11122]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  340.316333][T11122]  ? kernel_write+0x5f3/0x6c0
[  340.316364][T11122]  ? fput+0x79/0x100
[  340.316386][T11122]  ? ksys_write+0x1ac/0x250
[  340.316407][T11122]  __ia32_sys_bpf+0x79/0xf0
[  340.316425][T11122]  ? lockdep_hardirqs_on+0x78/0x100
[  340.316446][T11122]  __do_fast_syscall_32+0xe7/0x950
[  340.316467][T11122]  ? lockdep_hardirqs_on+0x78/0x100
[  340.316488][T11122]  do_fast_syscall_32+0x32/0x70
[  340.316511][T11122]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  340.316533][T11122] RIP: 0023:0xf6fcefcc
[  340.316548][T11122] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  340.316564][T11122] RSP: 002b:00000000f53bd50c EFLAGS: 00000292 ORIG_RAX: 0000000000000165
[  340.316581][T11122] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000cc0
[  340.316592][T11122] RDX: 000000000000000c RSI: 0000000000000000 RDI: 0000000000000000
[  340.316606][T11122] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  340.316617][T11122] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  340.316627][T11122] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  340.316649][T11122]  </TASK>
[  340.486742][T11126] syzkaller0: entered promiscuous mode
[  340.488665][T11126] syzkaller0: entered allmulticast mode
[  340.503569][T11126] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  340.508183][T11125] tipc: Resetting bearer <eth:syzkaller0>
[  340.524173][T11125] tipc: Disabling bearer <eth:syzkaller0>
[  340.694613][   T29] usb usb46-port1: unable to enumerate USB device
[  340.946086][   T39] usb 9-1: USB disconnect, device number 12
[  341.153775][T11136] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  341.189100][T11137] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1780'.
[  341.210248][T11135] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1790'.
[  341.248147][T11136] overlayfs: failed lookup in lower (/, name='tracing', err=-66): unsupported object type
[  341.253739][T11136] overlayfs: failed to look up (tracing) for ino (-66)
[  341.744119][   T24] usb 9-1: new high-speed USB device number 13 using dummy_hcd
[  341.904113][   T24] usb 9-1: Using ep0 maxpacket: 8
[  341.909248][   T24] usb 9-1: config index 0 descriptor too short (expected 301, got 45)
[  341.924094][   T24] usb 9-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  341.927362][   T24] usb 9-1: config 16 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  341.931466][   T24] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  341.937061][   T24] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  341.947659][   T24] usbtmc 9-1:16.0: bulk endpoints not found
[  342.364702][T11147] tmpfs: Unknown parameter ''
[  342.370695][T11147] netlink: 268 bytes leftover after parsing attributes in process `syz.1.1793'.
[  342.373723][T11147] netlink: 136 bytes leftover after parsing attributes in process `syz.1.1793'.
[  342.660430][T11153] comedi comedi3: pcl818: I/O base address or length out of range
[  342.787830][   T10] usb 7-1: USB disconnect, device number 37
[  342.918894][T11160] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  342.921079][T11160] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  342.930643][T11160] vhci_hcd vhci_hcd.0: Device attached
[  343.194158][   T29] usb 40-1: SetAddress Request (2) to port 0
[  343.200311][   T29] usb 40-1: new SuperSpeed USB device number 2 using vhci_hcd
[  343.702195][T11161] vhci_hcd: connection reset by peer
[  343.704925][ T3603] vhci_hcd vhci_hcd.1: stop threads
[  343.706744][ T3603] vhci_hcd vhci_hcd.1: release socket
[  343.708472][ T3603] vhci_hcd vhci_hcd.1: disconnect device
[  344.240052][T11172] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1799'.
[  344.359929][ T5887] usb 9-1: USB disconnect, device number 13
[  344.666618][T11186] netlink: 'syz.2.1801': attribute type 1 has an invalid length.
[  344.701423][T11186] 8021q: adding VLAN 0 to HW filter on device bond1
[  344.764324][T11192] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  345.669090][T11201] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1808'.
[  346.014224][  T855] usb 9-1: new high-speed USB device number 14 using dummy_hcd
[  346.164679][  T855] usb 9-1: too many configurations: 11, using maximum allowed: 8
[  346.247311][  T855] usb 9-1: string descriptor 0 read error: -71
[  346.249457][  T855] usb 9-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  346.253117][  T855] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  346.269944][  T855] usb 9-1: can't set config #1, error -71
[  346.275561][  T855] usb 9-1: USB disconnect, device number 14
[  346.757709][T11223] netlink: 72 bytes leftover after parsing attributes in process `syz.2.1814'.
[  346.774151][ T5101] Bluetooth: hci2: command 0x040f tx timeout
[  348.013187][T11261] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1817'.
[  348.296630][   T29] usb 40-1: device descriptor read/8, error -110
[  348.431901][T11267] netlink: 'syz.1.1818': attribute type 1 has an invalid length.
[  348.531852][T11267] 8021q: adding VLAN 0 to HW filter on device bond3
[  348.696730][   T29] usb usb40-port1: attempt power cycle
[  348.847920][T11272] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  348.889910][T11275] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  349.001076][T11275] overlayfs: failed lookup in lower (/, name='tracing', err=-66): unsupported object type
[  349.004764][T11275] overlayfs: failed to look up (tracing) for ino (-66)
[  349.265477][   T29] usb usb40-port1: unable to enumerate USB device
[  349.655521][T11283] FAULT_INJECTION: forcing a failure.
[  349.655521][T11283] name failslab, interval 1, probability 0, space 0, times 0
[  349.659574][T11283] CPU: 3 UID: 0 PID: 11283 Comm: syz.2.1824 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  349.659592][T11283] Tainted: [L]=SOFTLOCKUP
[  349.659596][T11283] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  349.659602][T11283] Call Trace:
[  349.659606][T11283]  <TASK>
[  349.659611][T11283]  dump_stack_lvl+0x100/0x190
[  349.659664][T11283]  should_fail_ex.cold+0x5/0xa
[  349.659677][T11283]  should_failslab+0xc2/0x120
[  349.659690][T11283]  __kmalloc_cache_noprof+0x7a/0x6f0
[  349.659704][T11283]  ? do_check_common+0x380/0xd450
[  349.659720][T11283]  do_check_common+0x380/0xd450
[  349.659735][T11283]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  349.659750][T11283]  ? bpf_base_func_proto+0x85/0xe60
[  349.659768][T11283]  ? bpf_sk_base_func_proto+0x173/0x1a0
[  349.659803][T11283]  ? bpf_get_call_summary+0x100/0x810
[  349.659819][T11283]  ? __pfx_do_check_common+0x10/0x10
[  349.659836][T11283]  ? __pfx_bpf_compute_live_registers+0x10/0x10
[  349.659856][T11283]  bpf_check+0xa8a4/0xabe0
[  349.659868][T11283]  ? trace_contention_end+0x122/0x170
[  349.659889][T11283]  ? __pfx_bpf_check+0x10/0x10
[  349.659902][T11283]  ? find_held_lock+0x2b/0x80
[  349.659919][T11283]  ? find_held_lock+0x2b/0x80
[  349.659935][T11283]  ? __asan_memset+0x23/0x50
[  349.659950][T11283]  ? lsm_blob_alloc+0x2b/0x90
[  349.659991][T11283]  ? bpf_prog_load+0x1c0f/0x2b30
[  349.660000][T11283]  bpf_prog_load+0x1c0f/0x2b30
[  349.660013][T11283]  ? __pfx_bpf_prog_load+0x10/0x10
[  349.660033][T11283]  ? bpf_lsm_bpf+0x9/0x10
[  349.660046][T11283]  __sys_bpf+0x223a/0x4b90
[  349.660057][T11283]  ? __pfx___sys_bpf+0x10/0x10
[  349.660066][T11283]  ? get_pid_task+0x106/0x250
[  349.660082][T11283]  ? proc_fail_nth_write+0x9f/0x220
[  349.660117][T11283]  ? find_held_lock+0x2b/0x80
[  349.660132][T11283]  ? find_held_lock+0x2b/0x80
[  349.660146][T11283]  ? ksys_write+0x190/0x250
[  349.660160][T11283]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  349.660193][T11283]  ? kernel_write+0x5f3/0x6c0
[  349.660212][T11283]  ? fput+0x79/0x100
[  349.660226][T11283]  ? ksys_write+0x1ac/0x250
[  349.660239][T11283]  __ia32_sys_bpf+0x79/0xf0
[  349.660254][T11283]  ? lockdep_hardirqs_on+0x78/0x100
[  349.660267][T11283]  __do_fast_syscall_32+0xe7/0x950
[  349.660281][T11283]  ? lockdep_hardirqs_on+0x78/0x100
[  349.660294][T11283]  do_fast_syscall_32+0x32/0x70
[  349.660308][T11283]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  349.660322][T11283] RIP: 0023:0xf707efcc
[  349.660331][T11283] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  349.660342][T11283] RSP: 002b:00000000f546d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000165
[  349.660353][T11283] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000600
[  349.660360][T11283] RDX: 0000000000000094 RSI: 0000000000000000 RDI: 0000000000000000
[  349.660366][T11283] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  349.660372][T11283] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  349.660378][T11283] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  349.660392][T11283]  </TASK>
[  349.996745][T11292] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1826'.
[  349.999633][T11292] netlink: 'syz.2.1826': attribute type 5 has an invalid length.
[  350.002177][T11292] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1826'.
[  350.009874][T11292] geneve4: entered promiscuous mode
[  350.011588][T11292] geneve4: entered allmulticast mode
[  350.037919][   T78] netdevsim netdevsim2 netdevsim0: set [1, 3] type 2 family 0 port 319 - 0
[  350.041280][   T78] netdevsim netdevsim2 netdevsim1: set [1, 3] type 2 family 0 port 319 - 0
[  350.045823][   T78] netdevsim netdevsim2 netdevsim2: set [1, 3] type 2 family 0 port 319 - 0
[  350.050329][   T78] netdevsim netdevsim2 netdevsim3: set [1, 3] type 2 family 0 port 319 - 0
[  350.112511][T11295] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1827'.
[  350.230708][T11297] comedi comedi3: 8255: I/O base address not correctly aligned
[  350.452591][T11300] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  350.649090][T11303] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  350.651193][T11303] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  350.654717][T11303] vhci_hcd vhci_hcd.0: Device attached
[  350.954230][   T29] usb 42-1: SetAddress Request (6) to port 0
[  350.957539][   T29] usb 42-1: new SuperSpeed USB device number 6 using vhci_hcd
[  351.001035][ T5101] Bluetooth: hci2: ACL packet for unknown connection handle 201
[  351.023619][T11312] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  351.147912][T11304] vhci_hcd: connection reset by peer
[  351.153644][T11249] vhci_hcd vhci_hcd.2: stop threads
[  351.155494][T11249] vhci_hcd vhci_hcd.2: release socket
[  351.157785][T11249] vhci_hcd vhci_hcd.2: disconnect device
[  351.186604][T11322] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1836'.
[  351.232320][T11324] Cache volume key already in use (9p,syz,)
[  351.354167][  T855] usb 5-1: new low-speed USB device number 40 using dummy_hcd
[  351.359402][T11325] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  351.427697][T11328] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1837'.
[  351.432650][T11328] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1837'.
[  351.437070][T11328] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1837'.
[  351.441359][T11328] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1837'.
[  351.450978][T11328] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1837'.
[  351.507986][  T855] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  351.512103][  T855] usb 5-1: config 0 has no interface number 0
[  351.514790][  T855] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  351.518289][  T855] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  351.522217][  T855] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  351.526514][  T855] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  351.531166][  T855] usb 5-1: config 0 descriptor??
[  351.533828][T11320] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  351.540406][  T855] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  351.547334][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  351.549876][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  351.586411][T11336] netlink: 'syz.1.1842': attribute type 30 has an invalid length.
[  351.821667][   T24] usb 5-1: USB disconnect, device number 40
[  351.940037][T11349] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  352.272314][T11359] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  352.496732][T11370] FAULT_INJECTION: forcing a failure.
[  352.496732][T11370] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  352.500952][T11370] CPU: 3 UID: 0 PID: 11370 Comm: syz.2.1849 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  352.500971][T11370] Tainted: [L]=SOFTLOCKUP
[  352.500975][T11370] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  352.500982][T11370] Call Trace:
[  352.500987][T11370]  <TASK>
[  352.500992][T11370]  dump_stack_lvl+0x100/0x190
[  352.501009][T11370]  should_fail_ex.cold+0x5/0xa
[  352.501024][T11370]  _copy_to_user+0x32/0xd0
[  352.501042][T11370]  bpf_prog_test_run_raw_tp+0x53d/0x700
[  352.501059][T11370]  ? __pfx_bpf_prog_test_run_raw_tp+0x10/0x10
[  352.501073][T11370]  ? fput+0x79/0x100
[  352.501088][T11370]  ? __bpf_prog_get+0x97/0x2a0
[  352.501102][T11370]  ? __pfx_bpf_prog_test_run_raw_tp+0x10/0x10
[  352.501115][T11370]  __sys_bpf+0x1725/0x4b90
[  352.501128][T11370]  ? __pfx___sys_bpf+0x10/0x10
[  352.501137][T11370]  ? get_pid_task+0x106/0x250
[  352.501153][T11370]  ? proc_fail_nth_write+0x9f/0x220
[  352.501170][T11370]  ? find_held_lock+0x2b/0x80
[  352.501187][T11370]  ? find_held_lock+0x2b/0x80
[  352.501200][T11370]  ? ksys_write+0x190/0x250
[  352.501214][T11370]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  352.501228][T11370]  ? kernel_write+0x5f3/0x6c0
[  352.501247][T11370]  ? fput+0x79/0x100
[  352.501261][T11370]  ? ksys_write+0x1ac/0x250
[  352.501274][T11370]  __ia32_sys_bpf+0x79/0xf0
[  352.501285][T11370]  ? lockdep_hardirqs_on+0x78/0x100
[  352.501298][T11370]  __do_fast_syscall_32+0xe7/0x950
[  352.501312][T11370]  ? lockdep_hardirqs_on+0x78/0x100
[  352.501325][T11370]  do_fast_syscall_32+0x32/0x70
[  352.501339][T11370]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  352.501353][T11370] RIP: 0023:0xf707efcc
[  352.501363][T11370] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  352.501374][T11370] RSP: 002b:00000000f546d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000165
[  352.501385][T11370] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000cc0
[  352.501391][T11370] RDX: 000000000000000c RSI: 0000000000000000 RDI: 0000000000000000
[  352.501398][T11370] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  352.501416][T11370] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  352.501427][T11370] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  352.501441][T11370]  </TASK>
[  352.587122][  T855] usb 9-1: new high-speed USB device number 15 using dummy_hcd
[  352.734618][  T855] usb 9-1: too many configurations: 70, using maximum allowed: 8
[  352.739752][  T855] usb 9-1: config index 0 descriptor too short (expected 65505, got 72)
[  352.744461][  T855] usb 9-1: config index 1 descriptor too short (expected 65505, got 72)
[  352.749007][  T855] usb 9-1: config index 2 descriptor too short (expected 65505, got 72)
[  352.753459][  T855] usb 9-1: config index 3 descriptor too short (expected 65505, got 72)
[  352.757253][  T855] usb 9-1: config index 4 descriptor too short (expected 65505, got 72)
[  352.764650][  T855] usb 9-1: config index 5 descriptor too short (expected 65505, got 72)
[  352.769250][  T855] usb 9-1: config index 6 descriptor too short (expected 65505, got 72)
[  352.776265][  T855] usb 9-1: config index 7 descriptor too short (expected 65505, got 72)
[  352.782005][  T855] usb 9-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  352.785865][  T855] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  352.788733][  T855] usb 9-1: Product: syz
[  352.790444][  T855] usb 9-1: Manufacturer: syz
[  352.792458][  T855] usb 9-1: SerialNumber: syz
[  352.798670][  T855] usb 9-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  352.839219][ T5938] usb 9-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  353.024332][   T39] usb 7-1: new high-speed USB device number 38 using dummy_hcd
[  353.042740][T11384] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  353.184557][   T39] usb 7-1: too many configurations: 11, using maximum allowed: 8
[  353.298770][T11358] random: crng reseeded on system resumption
[  353.299190][   T39] usb 7-1: string descriptor 0 read error: -71
[  353.312620][   T39] usb 7-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  353.319280][   T39] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  353.346484][   T39] usb 7-1: can't set config #1, error -71
[  353.360994][   T39] usb 7-1: USB disconnect, device number 38
[  353.477993][T11358] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  353.483849][T11358] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  353.493389][T11358] 9p: Bad value for 'rfdno'
[  353.512140][  T855] usb 9-1: USB disconnect, device number 15
[  353.895565][ T5938] ath9k_htc 9-1:1.0: ath9k_htc: Target is unresponsive
[  353.901618][ T5938] ath9k_htc: Failed to initialize the device
[  353.907949][  T855] usb 9-1: ath9k_htc: USB layer deinitialized
[  354.635310][T11416] __nla_validate_parse: 1 callbacks suppressed
[  354.635323][T11416] netlink: 72 bytes leftover after parsing attributes in process `syz.2.1867'.
[  354.834613][T11417] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  355.584198][   T24] usb 6-1: new high-speed USB device number 39 using dummy_hcd
[  355.734907][   T24] usb 6-1: too many configurations: 70, using maximum allowed: 8
[  355.740166][   T24] usb 6-1: config index 0 descriptor too short (expected 65505, got 72)
[  355.745582][   T24] usb 6-1: config index 1 descriptor too short (expected 65505, got 72)
[  355.750964][   T24] usb 6-1: config index 2 descriptor too short (expected 65505, got 72)
[  355.756873][   T24] usb 6-1: config index 3 descriptor too short (expected 65505, got 72)
[  355.763074][   T24] usb 6-1: config index 4 descriptor too short (expected 65505, got 72)
[  355.768575][   T24] usb 6-1: config index 5 descriptor too short (expected 65505, got 72)
[  355.773819][   T24] usb 6-1: config index 6 descriptor too short (expected 65505, got 72)
[  355.781034][   T24] usb 6-1: config index 7 descriptor too short (expected 65505, got 72)
[  355.787223][   T24] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  355.790205][   T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  355.792866][   T24] usb 6-1: Product: syz
[  355.794395][   T24] usb 6-1: Manufacturer: syz
[  355.796145][   T24] usb 6-1: SerialNumber: syz
[  355.803614][   T24] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  355.818394][ T5825] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  356.054251][   T29] usb 42-1: device descriptor read/8, error -110
[  356.269587][T11427] random: crng reseeded on system resumption
[  356.320208][T11427] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  356.327106][T11427] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  356.334382][T11427] 9p: Bad value for 'rfdno'
[  356.337304][T11434] netlink: 'syz.4.1871': attribute type 3 has an invalid length.
[  356.345628][ T5938] usb 6-1: USB disconnect, device number 39
[  356.614119][   T24] usb 9-1: new high-speed USB device number 16 using dummy_hcd
[  356.684690][   T29] usb usb42-port1: attempt power cycle
[  356.774188][ T5101] Bluetooth: hci2: command 0x040f tx timeout
[  356.784283][   T24] usb 9-1: Using ep0 maxpacket: 32
[  356.787606][   T24] usb 9-1: config index 0 descriptor too short (expected 29220, got 36)
[  356.790054][   T24] usb 9-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  356.792618][   T24] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 81
[  356.795577][   T24] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  356.798594][   T24] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  356.801323][   T24] usb 9-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  356.805206][   T24] usb 9-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  356.807932][   T24] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  356.816342][   T24] usb 9-1: config 0 descriptor??
[  356.859176][ T5825] ath9k_htc 6-1:1.0: ath9k_htc: Target is unresponsive
[  356.861295][ T5825] ath9k_htc: Failed to initialize the device
[  356.864824][ T5938] usb 6-1: ath9k_htc: USB layer deinitialized
[  357.053767][T11434] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  357.058154][   T24] usblp 9-1:0.0: usblp0: USB Bidirectional printer dev 16 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  357.063074][T11434] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  357.123946][T11444] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1876'.
[  357.247549][T11450] usb 9-1: USB disconnect, device number 16
[  357.262190][T11450] usblp0: removed
[  357.285196][T11451] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  357.316210][   T29] usb usb42-port1: unable to enumerate USB device
[  358.121410][T11457] hub 9-0:1.0: USB hub found
[  358.125662][T11457] hub 9-0:1.0: 1 port detected
[  358.715289][T11468] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  358.781675][T11473] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  358.786398][T11473] team0: Port device macvlan2 added
[  358.792040][T11473] misc userio: The device must be registered before sending interrupts
[  359.050581][    C3] sr 2:0:0:0: [sr0] tag#31 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[  359.054113][    C3] sr 2:0:0:0: [sr0] tag#31 CDB: Extended copy(LID4) 83 e1 5e d5 7c fc
[  360.757248][T11496] netlink: 'syz.0.1892': attribute type 30 has an invalid length.
[  360.775888][ T5101] Bluetooth: hci2: command 0x040f tx timeout
[  360.941942][T11499] loop3: detected capacity change from 0 to 7
[  361.786335][T11499] Dev loop3: unable to read RDB block 7
[  361.788939][T11499]  loop3: AHDI p3 p4
[  361.790636][T11499] loop3: partition table partially beyond EOD, truncated
[  361.794627][T11499] loop3: p3 start 1702000233 is beyond EOD, truncated
[  361.887751][T11505] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  362.224119][ T1036] usb 5-1: new full-speed USB device number 41 using dummy_hcd
[  362.385588][ T1036] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  362.388853][ T1036] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  362.393389][ T1036] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  362.396731][ T1036] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  362.445366][T11516] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  362.605473][ T1036] usb 5-1: usb_control_msg returned -32
[  362.607369][ T1036] usbtmc 5-1:16.0: can't read capabilities
[  362.781530][T11522] FAULT_INJECTION: forcing a failure.
[  362.781530][T11522] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  362.785770][T11522] CPU: 3 UID: 0 PID: 11522 Comm: syz.1.1902 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  362.785789][T11522] Tainted: [L]=SOFTLOCKUP
[  362.785793][T11522] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  362.785800][T11522] Call Trace:
[  362.785803][T11522]  <TASK>
[  362.785808][T11522]  dump_stack_lvl+0x100/0x190
[  362.785825][T11522]  should_fail_ex.cold+0x5/0xa
[  362.785840][T11522]  _copy_to_user+0x32/0xd0
[  362.785858][T11522]  simple_read_from_buffer+0xcb/0x170
[  362.785872][T11522]  proc_fail_nth_read+0x1af/0x230
[  362.785889][T11522]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  362.785907][T11522]  ? rw_verify_area+0xce/0x6d0
[  362.785917][T11522]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  362.785934][T11522]  vfs_read+0x1e4/0xb30
[  362.785947][T11522]  ? __pfx_vfs_read+0x10/0x10
[  362.785958][T11522]  ? find_held_lock+0x2b/0x80
[  362.785972][T11522]  ? __fget_files+0x215/0x3d0
[  362.785988][T11522]  ? __fget_files+0x21f/0x3d0
[  362.786008][T11522]  ksys_read+0x12a/0x250
[  362.786019][T11522]  ? __pfx_ksys_read+0x10/0x10
[  362.786031][T11522]  ? rcu_is_watching+0x12/0xc0
[  362.786044][T11522]  ? rcu_is_watching+0x12/0xc0
[  362.786058][T11522]  do_int80_emulation+0x141/0x700
[  362.786075][T11522]  asm_int80_emulation+0x1a/0x20
[  362.786085][T11522] RIP: 0023:0xf716616b
[  362.786095][T11522] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[  362.786105][T11522] RSP: 002b:00000000f541d4bc EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  362.786116][T11522] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000f541d5d0
[  362.786124][T11522] RDX: 000000000000000f RSI: 0000000000000000 RDI: 0000000000000000
[  362.786130][T11522] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  362.786136][T11522] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  362.786142][T11522] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  362.786157][T11522]  </TASK>
[  362.886190][T11527] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1903'.
[  362.981016][T11536] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1906'.
[  362.985248][T11536] IPv6: Can't replace route, no match found
[  363.124074][T11541] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  363.824150][  T855] usb 9-1: new high-speed USB device number 17 using dummy_hcd
[  363.984851][  T855] usb 9-1: too many configurations: 11, using maximum allowed: 8
[  364.010700][  T855] usb 9-1: string descriptor 0 read error: -71
[  364.012809][  T855] usb 9-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  364.016091][  T855] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  364.026223][  T855] usb 9-1: can't set config #1, error -71
[  364.032561][  T855] usb 9-1: USB disconnect, device number 17
[  365.015666][  T855] usb 5-1: USB disconnect, device number 41
[  365.159730][T11578] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1918'.
[  365.163700][T11578] netlink: 'syz.1.1918': attribute type 5 has an invalid length.
[  365.167183][T11578] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1918'.
[  365.177883][ T5101] Bluetooth: hci2: command 0x040f tx timeout
[  365.181016][T11578] geneve4: entered promiscuous mode
[  365.183465][T11578] geneve4: entered allmulticast mode
[  365.188222][   T13] netdevsim netdevsim1 eth0: set [1, 1] type 2 family 0 port 262 - 0
[  365.193690][   T13] netdevsim netdevsim1 eth1: set [1, 1] type 2 family 0 port 262 - 0
[  365.199367][   T13] netdevsim netdevsim1 eth2: set [1, 1] type 2 family 0 port 262 - 0
[  365.205103][   T13] netdevsim netdevsim1 eth3: set [1, 1] type 2 family 0 port 262 - 0
[  365.491339][T11583] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1921'.
[  365.494469][T11583] netlink: 'syz.4.1921': attribute type 7 has an invalid length.
[  365.497338][T11583] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1921'.
[  365.517819][T11583] gretap0: entered promiscuous mode
[  365.525739][T11583] gretap0: left promiscuous mode
[  366.469602][T11597] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1924'.
[  366.492647][T11597] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1924'.
[  366.744166][ T5825] usb 7-1: new high-speed USB device number 39 using dummy_hcd
[  366.894410][ T5825] usb 7-1: Using ep0 maxpacket: 32
[  366.915356][ T5825] usb 7-1: config 0 has an invalid interface number: 184 but max is 0
[  366.957116][ T5825] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  366.964952][T11610] FAULT_INJECTION: forcing a failure.
[  366.964952][T11610] name failslab, interval 1, probability 0, space 0, times 0
[  366.969442][ T5825] usb 7-1: config 0 has no interface number 0
[  366.978938][ T5825] usb 7-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  366.982651][ T5825] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  366.985830][ T5825] usb 7-1: Product: syz
[  366.989216][ T5825] usb 7-1: Manufacturer: syz
[  366.991207][T11610] CPU: 3 UID: 0 PID: 11610 Comm: syz.4.1927 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  366.991233][T11610] Tainted: [L]=SOFTLOCKUP
[  366.991238][T11610] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  366.991247][T11610] Call Trace:
[  366.991291][T11610]  <TASK>
[  366.991298][ T5825] usb 7-1: SerialNumber: syz
[  366.991299][T11610]  dump_stack_lvl+0x100/0x190
[  366.991351][T11610]  should_fail_ex.cold+0x5/0xa
[  366.991372][T11610]  should_failslab+0xc2/0x120
[  366.991391][T11610]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  366.991417][T11610]  ? sock_alloc_inode+0x26/0x290
[  366.991468][T11610]  ? __pfx_sock_alloc_inode+0x10/0x10
[  366.991489][T11610]  sock_alloc_inode+0x26/0x290
[  366.991507][T11610]  ? __pfx_sock_alloc_inode+0x10/0x10
[  366.991524][T11610]  alloc_inode+0x68/0x250
[  366.991550][T11610]  sock_alloc+0x44/0x280
[  366.991567][T11610]  ? security_socket_create+0x7f/0x250
[  366.991619][T11610]  __sock_create+0xc2/0x860
[  366.991639][T11610]  ? __fget_files+0x21f/0x3d0
[  366.991660][T11610]  __sys_socket+0x14d/0x260
[  366.991682][T11610]  ? __pfx___sys_socket+0x10/0x10
[  366.991703][T11610]  ? fput+0x79/0x100
[  366.991725][T11610]  ? ksys_write+0x1ac/0x250
[  366.991748][T11610]  __ia32_sys_socket+0x72/0xb0
[  366.991768][T11610]  ? lockdep_hardirqs_on+0x78/0x100
[  366.991831][T11610]  __do_fast_syscall_32+0xe7/0x950
[  366.991876][T11610]  ? lockdep_hardirqs_on+0x78/0x100
[  366.991898][T11610]  do_fast_syscall_32+0x32/0x70
[  366.991918][T11610]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  366.991941][T11610] RIP: 0023:0xf7f83fcc
[  366.991956][T11610] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  366.991973][T11610] RSP: 002b:00000000f540450c EFLAGS: 00000292 ORIG_RAX: 0000000000000167
[  366.991992][T11610] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000000000002
[  366.992003][T11610] RDX: 0000000000000073 RSI: 0000000000000000 RDI: 0000000000000000
[  366.992014][T11610] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  366.992024][T11610] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  366.992033][T11610] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  366.992062][T11610]  </TASK>
[  367.004132][T11610] socket: no more sockets
[  367.093019][ T5825] usb 7-1: config 0 descriptor??
[  367.119977][ T5825] smsc75xx 7-1:0.184 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22
[  367.126313][ T5825] smsc75xx 7-1:0.184: probe with driver smsc75xx failed with error -22
[  368.153424][T11624] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1924'.
[  368.497696][T11627] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  368.573406][T11630] netlink: 'syz.4.1931': attribute type 3 has an invalid length.
[  368.814165][  T855] usb 9-1: new high-speed USB device number 18 using dummy_hcd
[  368.912647][T11636] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1934'.
[  368.915664][T11636] netlink: 'syz.0.1934': attribute type 30 has an invalid length.
[  368.922504][ T1157] netdevsim netdevsim0 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  368.927547][ T1157] netdevsim netdevsim0 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  368.932405][ T1157] netdevsim netdevsim0 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  368.938803][ T1157] netdevsim netdevsim0 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  368.964101][  T855] usb 9-1: Using ep0 maxpacket: 32
[  368.967315][  T855] usb 9-1: config index 0 descriptor too short (expected 29220, got 36)
[  368.970334][  T855] usb 9-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  368.973018][  T855] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 81
[  368.977025][  T855] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  368.980903][  T855] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  368.984334][  T855] usb 9-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  368.990765][  T855] usb 9-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  368.993995][  T855] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  369.013322][  T855] usb 9-1: config 0 descriptor??
[  369.035165][   T40] audit: type=1800 audit(1777193922.975:109): pid=11642 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1937" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[  369.096554][T11644] SET target dimension over the limit!
[  369.226472][T11630] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  369.230433][  T855] usblp 9-1:0.0: usblp0: USB Bidirectional printer dev 18 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  369.238486][T11630] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  369.334238][ T5938] usb 6-1: new high-speed USB device number 40 using dummy_hcd
[  369.450593][  T855] usb 9-1: USB disconnect, device number 18
[  369.457748][  T855] usblp0: removed
[  369.473063][   T24] usb 7-1: USB disconnect, device number 39
[  369.484110][ T5938] usb 6-1: Using ep0 maxpacket: 32
[  369.488802][ T5938] usb 6-1: config 155 has an invalid descriptor of length 0, skipping remainder of the config
[  369.497421][ T5938] usb 6-1: config 155 interface 0 altsetting 0 has an endpoint descriptor with address 0xE2, changing to 0x82
[  369.505733][ T5938] usb 6-1: config 155 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  369.510773][ T5938] usb 6-1: config 155 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 11
[  369.518260][ T5938] usb 6-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30
[  369.521453][ T5938] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  369.524997][ T5938] usb 6-1: Product: syz
[  369.526591][ T5938] usb 6-1: Manufacturer: syz
[  369.528161][ T5938] usb 6-1: SerialNumber: syz
[  369.533608][    C3] imon 6-1:155.0: imon usb_rx_callback_intf0: status(-71)
[  369.538564][ T5938] input: iMON Panel, Knob and Mouse(15c2:ffdc) as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:155.0/input/input37
[  369.754144][ T5938] imon 6-1:155.0: Unknown 0xffdc device, defaulting to VFD and iMON IR
[  369.757890][ T5938]  (id 0x00)
[  369.814149][ T5938] rc_core: IR keymap rc-imon-pad not found
[  369.816083][ T5938] Registered IR keymap rc-empty
[  369.818065][ T5938] imon 6-1:155.0: Looks like you're trying to use an IR protocol this device does not support
[  369.821421][ T5938] imon 6-1:155.0: Unsupported IR protocol specified, overriding to iMON IR protocol
[  369.894213][   T24] usb 7-1: new full-speed USB device number 40 using dummy_hcd
[  369.954902][ T5938] rc rc0: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:155.0/rc/rc0
[  369.962247][ T5938] input: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:155.0/rc/rc0/input38
[  369.977842][ T5938] imon 6-1:155.0: iMON device (15c2:ffdc, intf0) on usb<6:40> initialized
[  370.065619][   T24] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  370.069252][   T24] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  370.074219][   T24] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  370.074455][T11657] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1941'.
[  370.077435][   T24] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  370.081070][T11657] netlink: 'syz.4.1941': attribute type 30 has an invalid length.
[  370.088429][ T3603] netdevsim netdevsim4 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  370.090848][T11657] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1941'.
[  370.094543][ T3603] netdevsim netdevsim4 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  370.097585][ T3603] netdevsim netdevsim4 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  370.098134][T11657] netlink: 'syz.4.1941': attribute type 30 has an invalid length.
[  370.100227][ T3603] netdevsim netdevsim4 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  370.119328][T11657] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(8)
[  370.121428][T11657] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  370.125096][T11657] vhci_hcd vhci_hcd.0: Device attached
[  370.127617][T11658] vhci_hcd: unknown pdu 2
[  370.129838][  T139] vhci_hcd vhci_hcd.4: stop threads
[  370.131576][  T139] vhci_hcd vhci_hcd.4: release socket
[  370.133408][  T139] vhci_hcd vhci_hcd.4: disconnect device
[  370.247407][T11644] imon:send_packet: packet tx failed (-71)
[  370.248433][ T1036] usb 6-1: USB disconnect, device number 40
[  370.264116][T11644] imon:vfd_write: send packet #0 failed
[  370.266051][T11661] imon:display_open: display port is already open
[  370.294331][   T24] usb 7-1: usb_control_msg returned -32
[  370.296188][   T24] usbtmc 7-1:16.0: can't read capabilities
[  370.534322][ T5101] Bluetooth: hci2: command 0x040f tx timeout
[  370.650533][T11663] Set syz1 is full, maxelem 14 reached
[  370.953296][T11667] netlink: 204 bytes leftover after parsing attributes in process `syz.0.1943'.
[  371.006203][T11671] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1945'.
[  371.009376][T11671] netlink: 'syz.1.1945': attribute type 30 has an invalid length.
[  371.016329][ T3603] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  371.019773][ T3603] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  371.023559][ T3603] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  371.028082][ T3603] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  371.928004][T11675] FAULT_INJECTION: forcing a failure.
[  371.928004][T11675] name failslab, interval 1, probability 0, space 0, times 0
[  371.933275][T11675] CPU: 3 UID: 0 PID: 11675 Comm: syz.4.1948 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  371.933304][T11675] Tainted: [L]=SOFTLOCKUP
[  371.933312][T11675] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  371.933322][T11675] Call Trace:
[  371.933330][T11675]  <TASK>
[  371.933338][T11675]  dump_stack_lvl+0x100/0x190
[  371.933417][T11675]  should_fail_ex.cold+0x5/0xa
[  371.933442][T11675]  should_failslab+0xc2/0x120
[  371.933462][T11675]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[  371.933482][T11675]  ? bpf_push_jmp_history+0x243/0x750
[  371.933514][T11675]  krealloc_node_align_noprof+0x321/0x3e0
[  371.933535][T11675]  bpf_push_jmp_history+0x243/0x750
[  371.933564][T11675]  do_check_common+0xb58d/0xd450
[  371.933592][T11675]  ? __pfx___sanitizer_cov_trace_const_cmp4+0x1/0x10
[  371.933633][T11675]  ? __pfx_do_check_common+0x10/0x10
[  371.933662][T11675]  ? __pfx_bpf_compute_live_registers+0x10/0x10
[  371.933696][T11675]  bpf_check+0xa8a4/0xabe0
[  371.933718][T11675]  ? trace_contention_end+0x122/0x170
[  371.933757][T11675]  ? __pfx_bpf_check+0x10/0x10
[  371.933780][T11675]  ? find_held_lock+0x2b/0x80
[  371.933811][T11675]  ? find_held_lock+0x2b/0x80
[  371.933837][T11675]  ? __asan_memset+0x23/0x50
[  371.933863][T11675]  ? lsm_blob_alloc+0x2b/0x90
[  371.933917][T11675]  ? bpf_prog_load+0x1c0f/0x2b30
[  371.933936][T11675]  bpf_prog_load+0x1c0f/0x2b30
[  371.933957][T11675]  ? __pfx_bpf_prog_load+0x10/0x10
[  371.933994][T11675]  ? bpf_lsm_bpf+0x9/0x10
[  371.934030][T11675]  __sys_bpf+0x223a/0x4b90
[  371.934053][T11675]  ? __pfx___sys_bpf+0x10/0x10
[  371.934068][T11675]  ? get_pid_task+0x106/0x250
[  371.934095][T11675]  ? proc_fail_nth_write+0x9f/0x220
[  371.934123][T11675]  ? find_held_lock+0x2b/0x80
[  371.934150][T11675]  ? find_held_lock+0x2b/0x80
[  371.934171][T11675]  ? ksys_write+0x190/0x250
[  371.934198][T11675]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  371.934280][T11675]  ? kernel_write+0x5f3/0x6c0
[  371.934316][T11675]  ? fput+0x79/0x100
[  371.934342][T11675]  ? ksys_write+0x1ac/0x250
[  371.934367][T11675]  __ia32_sys_bpf+0x79/0xf0
[  371.934388][T11675]  ? lockdep_hardirqs_on+0x78/0x100
[  371.934412][T11675]  __do_fast_syscall_32+0xe7/0x950
[  371.934437][T11675]  ? lockdep_hardirqs_on+0x78/0x100
[  371.934462][T11675]  do_fast_syscall_32+0x32/0x70
[  371.934488][T11675]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  371.934514][T11675] RIP: 0023:0xf7f83fcc
[  371.934532][T11675] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  371.934552][T11675] RSP: 002b:00000000f544650c EFLAGS: 00000292 ORIG_RAX: 0000000000000165
[  371.934570][T11675] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000600
[  371.934580][T11675] RDX: 0000000000000094 RSI: 0000000000000000 RDI: 0000000000000000
[  371.934593][T11675] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  371.934603][T11675] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  371.934616][T11675] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  371.934642][T11675]  </TASK>
[  372.524748][ T5938] usb 7-1: USB disconnect, device number 40
[  372.648321][T11700] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1952'.
[  372.762672][T11704] loop5: detected capacity change from 0 to 7
[  372.769974][    C0] blk_print_req_error: 47 callbacks suppressed
[  372.769985][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  372.775094][    C0] buffer_io_error: 47 callbacks suppressed
[  372.775103][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  372.784097][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  372.787064][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  372.790877][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  372.794170][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  372.798477][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  372.801580][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  372.805453][    C3] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  372.808943][    C3] Buffer I/O error on dev loop5, logical block 0, async page read
[  372.811676][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  372.814767][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  372.820872][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  372.823897][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  372.826659][T11704] ldm_validate_partition_table(): Disk read failed.
[  372.828963][T11704] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  372.832369][T11704] Buffer I/O error on dev loop5, logical block 0, async page read
[  372.835245][T11704] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  372.838551][T11704] Buffer I/O error on dev loop5, logical block 0, async page read
[  372.841120][T11704] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  372.844400][T11704] Buffer I/O error on dev loop5, logical block 0, async page read
[  372.847157][T11704] Dev loop5: unable to read RDB block 0
[  372.849508][T11704]  loop5: unable to read partition table
[  372.851542][T11704] loop5: partition table beyond EOD, truncated
[  372.854795][T11704] loop_reread_partitions: partition scan of loop5 (���W������ý�*���	���%���4FLQk݊5) failed (rc=-5)
[  372.906675][T11707] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1954'.
[  372.910266][T11707] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1954'.
[  372.913824][T11707] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1954'.
[  372.984747][T11709] netlink: 'syz.2.1955': attribute type 5 has an invalid length.
[  373.091940][T11709] geneve5: entered promiscuous mode
[  373.095951][T11709] geneve5: entered allmulticast mode
[  373.124115][ T5825] usb 9-1: new high-speed USB device number 19 using dummy_hcd
[  373.199048][T11714] FAULT_INJECTION: forcing a failure.
[  373.199048][T11714] name failslab, interval 1, probability 0, space 0, times 0
[  373.206637][T11714] CPU: 3 UID: 0 PID: 11714 Comm: syz.2.1957 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  373.206667][T11714] Tainted: [L]=SOFTLOCKUP
[  373.206674][T11714] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  373.206685][T11714] Call Trace:
[  373.206693][T11714]  <TASK>
[  373.206701][T11714]  dump_stack_lvl+0x100/0x190
[  373.206730][T11714]  should_fail_ex.cold+0x5/0xa
[  373.206756][T11714]  should_failslab+0xc2/0x120
[  373.206780][T11714]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  373.206808][T11714]  ? skb_clone+0x190/0x400
[  373.206832][T11714]  skb_clone+0x190/0x400
[  373.206851][T11714]  raw6_local_deliver+0x373/0xaf0
[  373.206890][T11714]  ip6_protocol_deliver_rcu+0x1f1/0x1500
[  373.206932][T11714]  ip6_input_finish+0x1e4/0x4a0
[  373.206959][T11714]  ip6_input+0x105/0x2f0
[  373.206983][T11714]  ? __pfx_ip6_input+0x10/0x10
[  373.207007][T11714]  ip6_list_rcv_finish.constprop.0+0xb0d/0x1060
[  373.207041][T11714]  ? __pfx_ip6_list_rcv_finish.constprop.0+0x10/0x10
[  373.207068][T11714]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  373.207101][T11714]  ipv6_list_rcv+0x33c/0x450
[  373.207129][T11714]  ? __pfx_ipv6_list_rcv+0x10/0x10
[  373.207160][T11714]  ? __pfx_ipv6_list_rcv+0x10/0x10
[  373.207186][T11714]  __netif_receive_skb_list_core+0x554/0x940
[  373.207216][T11714]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  373.207244][T11714]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[  373.207272][T11714]  ? lock_acquire+0x1b1/0x370
[  373.207301][T11714]  netif_receive_skb_list_internal+0x722/0xd40
[  373.207334][T11714]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[  373.207366][T11714]  ? __asan_memset+0x23/0x50
[  373.207412][T11714]  ? eth_type_trans+0x2e3/0x720
[  373.207442][T11714]  netif_receive_skb_list+0x55/0x4f0
[  373.207471][T11714]  xdp_test_run_batch.constprop.0+0x16b6/0x1ca0
[  373.207506][T11714]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[  373.207531][T11714]  ? find_held_lock+0x2b/0x80
[  373.207563][T11714]  ? ktime_get+0x23e/0x320
[  373.207588][T11714]  ? ktime_get+0x1a4/0x320
[  373.207620][T11714]  bpf_test_run_xdp_live+0x367/0x760
[  373.207643][T11714]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  373.207666][T11714]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  373.207696][T11714]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  373.207733][T11714]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[  373.207789][T11714]  ? 0xffffffffa0205f80
[  373.207808][T11714]  ? 0xffffffffa0205f80
[  373.207824][T11714]  ? 0xffffffffa0205f80
[  373.207845][T11714]  bpf_prog_test_run_xdp+0xd7d/0x1670
[  373.207884][T11714]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  373.207916][T11714]  ? fput+0x79/0x100
[  373.207941][T11714]  ? __bpf_prog_get+0x97/0x2a0
[  373.207966][T11714]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  373.207989][T11714]  __sys_bpf+0x1725/0x4b90
[  373.208013][T11714]  ? __pfx___sys_bpf+0x10/0x10
[  373.208030][T11714]  ? get_pid_task+0x106/0x250
[  373.208060][T11714]  ? proc_fail_nth_write+0x9f/0x220
[  373.208088][T11714]  ? find_held_lock+0x2b/0x80
[  373.208116][T11714]  ? find_held_lock+0x2b/0x80
[  373.208140][T11714]  ? ksys_write+0x190/0x250
[  373.208166][T11714]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  373.208188][T11714]  ? kernel_write+0x5f3/0x6c0
[  373.208224][T11714]  ? fput+0x79/0x100
[  373.208247][T11714]  ? ksys_write+0x1ac/0x250
[  373.208271][T11714]  __ia32_sys_bpf+0x79/0xf0
[  373.208291][T11714]  ? lockdep_hardirqs_on+0x78/0x100
[  373.208312][T11714]  __do_fast_syscall_32+0xe7/0x950
[  373.208336][T11714]  ? lockdep_hardirqs_on+0x78/0x100
[  373.208358][T11714]  do_fast_syscall_32+0x32/0x70
[  373.208382][T11714]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  373.208406][T11714] RIP: 0023:0xf707efcc
[  373.208422][T11714] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  373.208436][T11714] RSP: 002b:00000000f546d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000165
[  373.208453][T11714] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000600
[  373.208462][T11714] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[  373.208471][T11714] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  373.208479][T11714] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  373.208488][T11714] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  373.208511][T11714]  </TASK>
[  373.296250][ T5825] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  373.794196][ T5825] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  373.805938][ T5825] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  373.811115][ T5825] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  373.814849][ T5825] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  373.819823][ T5825] usb 9-1: config 0 descriptor??
[  373.830918][T11725] sctp: [Deprecated]: syz.0.1962 (pid 11725) Use of struct sctp_assoc_value in delayed_ack socket option.
[  373.830918][T11725] Use struct sctp_sack_info instead
[  373.839484][T11725] __nla_validate_parse: 4 callbacks suppressed
[  373.839500][T11725] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1962'.
[  374.094857][T11737] syzkaller0: entered promiscuous mode
[  374.097345][T11737] syzkaller0: entered allmulticast mode
[  374.265268][ T5825] plantronics 0003:047F:FFFF.0003: reserved main item tag 0xd
[  374.273725][ T5825] hid_parser_main: 22 callbacks suppressed
[  374.273748][ T5825] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[  374.279727][ T5825] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[  374.282951][ T5825] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[  374.286248][ T5825] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[  374.289502][ T5825] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[  374.572536][ T5825] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  374.610176][ T1036] IPVS: starting estimator thread 0...
[  374.615051][T11680] IPVS: set_ctl: invalid protocol: 43 172.20.20.170:20002
[  374.648216][T11680] IPVS: sed: FWM 3 0x00000003 - no destination available
[  374.714248][T11746] IPVS: using max 45 ests per chain, 108000 per kthread
[  374.715914][   T29] usb 9-1: USB disconnect, device number 19
[  375.118301][T11748] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1970'.
[  376.233555][T11768] kernel profiling enabled (shift: 6)
[  376.273087][T11765] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1975'.
[  376.775394][T11777] netlink: 'syz.4.1978': attribute type 3 has an invalid length.
[  377.015724][ T1036] usb 9-1: new high-speed USB device number 20 using dummy_hcd
[  377.174143][ T1036] usb 9-1: Using ep0 maxpacket: 32
[  377.175663][T11784] IPVS: set_ctl: invalid protocol: 1 0.0.0.0:1536
[  377.179655][ T1036] usb 9-1: config index 0 descriptor too short (expected 29220, got 36)
[  377.179674][ T1036] usb 9-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  377.179685][ T1036] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 81
[  377.179741][ T1036] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  377.179753][ T1036] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  377.194610][ T1036] usb 9-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  377.199101][ T1036] usb 9-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  377.202045][ T1036] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  377.206302][ T1036] usb 9-1: config 0 descriptor??
[  377.213556][T11786] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1983'.
[  377.217213][T11786] netlink: 'syz.1.1983': attribute type 7 has an invalid length.
[  377.219720][T11786] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1983'.
[  377.219866][T11788] ldm_validate_partition_table(): Disk read failed.
[  377.226311][T11788] Dev nbd0: unable to read RDB block 0
[  377.229195][T11788]  nbd0: unable to read partition table
[  377.229641][T11786] gretap0: entered promiscuous mode
[  377.231623][T11781] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  377.235444][T11788] block nbd0: Cannot use ioctl interface on a netlink controlled device.
[  377.242338][T11786] gretap0: left promiscuous mode
[  377.246616][T11788] block nbd0: Cannot use ioctl interface on a netlink controlled device.
[  377.350998][T11794] syzkaller0: entered promiscuous mode
[  377.352816][T11794] syzkaller0: entered allmulticast mode
[  377.371040][T11794] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  377.375039][T11793] tipc: Resetting bearer <eth:syzkaller0>
[  377.392179][T11793] tipc: Disabling bearer <eth:syzkaller0>
[  377.417736][T11777] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  377.421086][T11777] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  377.423823][ T1036] usblp 9-1:0.0: usblp0: USB Bidirectional printer dev 20 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  377.632276][ T5887] usb 9-1: USB disconnect, device number 20
[  377.640301][ T5887] usblp0: removed
[  377.704396][T11800] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  377.834361][   T59] usb 7-1: new high-speed USB device number 41 using dummy_hcd
[  377.984083][   T59] usb 7-1: Using ep0 maxpacket: 32
[  377.987770][   T59] usb 7-1: unable to get BOS descriptor or descriptor too short
[  377.995122][   T59] usb 7-1: config 8 has an invalid interface number: 188 but max is 0
[  377.997856][   T59] usb 7-1: config 8 has no interface number 0
[  377.999804][   T59] usb 7-1: config 8 interface 188 has no altsetting 0
[  378.005069][   T59] usb 7-1: string descriptor 0 read error: -22
[  378.007568][   T59] usb 7-1: New USB device found, idVendor=0ccd, idProduct=0102, bcdDevice=89.0e
[  378.010487][   T59] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  378.016544][   T59] dvb-usb: found a 'Terratec Cinergy S2 USB HD Rev.3' in warm state.
[  378.024755][   T59] dw2102: su3000_power_ctrl: 1, initialized 0
[  378.026638][   T59] dvb-usb: bulk message failed: -22 (2/0)
[  378.029835][   T59] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  378.033103][   T59] dvbdev: DVB: registering new adapter (Terratec Cinergy S2 USB HD Rev.3)
[  378.036038][   T59] usb 7-1: media controller created
[  378.037724][   T59] dvb-usb: bulk message failed: -22 (6/0)
[  378.039486][   T59] dw2102: i2c transfer failed.
[  378.040953][   T59] dvb-usb: bulk message failed: -22 (6/0)
[  378.042716][   T59] dw2102: i2c transfer failed.
[  378.044913][   T59] dvb-usb: bulk message failed: -22 (6/0)
[  378.048092][   T59] dw2102: i2c transfer failed.
[  378.049714][   T59] dvb-usb: bulk message failed: -22 (6/0)
[  378.051666][   T59] dw2102: i2c transfer failed.
[  378.053257][   T59] dvb-usb: bulk message failed: -22 (6/0)
[  378.055230][   T59] dw2102: i2c transfer failed.
[  378.056777][   T59] dvb-usb: bulk message failed: -22 (6/0)
[  378.058665][   T59] dw2102: i2c transfer failed.
[  378.060240][   T59] dvb-usb: MAC address: 02:02:02:02:02:02
[  378.074489][   T59] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  378.093955][   T59] dvb-usb: bulk message failed: -22 (3/0)
[  378.095995][   T59] dw2102: command 0x0e transfer failed.
[  378.097999][   T59] dvb-usb: bulk message failed: -22 (3/0)
[  378.099803][   T59] dw2102: command 0x0e transfer failed.
[  378.293671][T11819] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  378.404472][   T59] dvb-usb: bulk message failed: -22 (3/0)
[  378.406945][   T59] dw2102: command 0x0e transfer failed.
[  378.409410][   T59] dvb-usb: bulk message failed: -22 (3/0)
[  378.411745][   T59] dw2102: command 0x0e transfer failed.
[  378.413911][   T59] dvb-usb: bulk message failed: -22 (1/0)
[  378.416069][   T59] dw2102: command 0x51 transfer failed.
[  378.417942][T11798] dvb-usb: bulk message failed: -22 (5/0)
[  378.420568][T11798] dw2102: i2c transfer failed.
[  378.434380][   T59] DVB: Unable to find symbol ds3000_attach()
[  378.436600][   T59] dvb-usb: no frontend was attached by 'Terratec Cinergy S2 USB HD Rev.3'
[  378.484133][   T59] rc_core: IR keymap rc-su3000 not found
[  378.486152][   T59] Registered IR keymap rc-empty
[  378.490275][   T59] rc rc0: Terratec Cinergy S2 USB HD Rev.3 as /devices/platform/dummy_hcd.2/usb7/7-1/rc/rc0
[  378.495233][   T59] input: Terratec Cinergy S2 USB HD Rev.3 as /devices/platform/dummy_hcd.2/usb7/7-1/rc/rc0/input40
[  378.500747][   T59] dvb-usb: schedule remote query interval to 150 msecs.
[  378.503499][   T59] dw2102: su3000_power_ctrl: 0, initialized 1
[  378.506263][   T59] dvb-usb: Terratec Cinergy S2 USB HD Rev.3 successfully initialized and connected.
[  378.511444][   T59] usb 7-1: USB disconnect, device number 41
[  378.550477][T11824] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1994'.
[  378.563751][   T59] dvb-usb: Terratec Cinergy S2 USB HD Rev.3 successfully deinitialized and disconnected.
[  378.920869][T11840] netlink: 'syz.1.2000': attribute type 30 has an invalid length.
[  378.994155][ T5938] usb 5-1: new high-speed USB device number 42 using dummy_hcd
[  379.009779][T11842] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2001'.
[  379.133815][T11847] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2003'.
[  379.137784][T11847] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2003'.
[  379.144151][ T5938] usb 5-1: Using ep0 maxpacket: 16
[  379.152512][ T5938] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 11
[  379.156973][ T5938] usb 5-1: config 1 interface 0 altsetting 3 endpoint 0xB has invalid wMaxPacketSize 0
[  379.161124][ T5938] usb 5-1: config 1 interface 0 altsetting 3 bulk endpoint 0xB has invalid maxpacket 0
[  379.165492][ T5938] usb 5-1: config 1 interface 0 altsetting 3 endpoint 0x8A has invalid wMaxPacketSize 0
[  379.169094][ T5938] usb 5-1: config 1 interface 0 altsetting 3 bulk endpoint 0x8A has invalid maxpacket 0
[  379.172376][ T5938] usb 5-1: config 1 interface 0 has no altsetting 0
[  379.176494][ T5938] usb 5-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77
[  379.179415][ T5938] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  379.187479][ T5938] ums-sddr09 5-1:1.0: USB Mass Storage device detected
[  379.354241][   T59] usb 7-1: new full-speed USB device number 42 using dummy_hcd
[  379.384324][  T855] usb 6-1: new high-speed USB device number 41 using dummy_hcd
[  379.449905][T11850] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  379.453644][T11850] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  379.505462][   T59] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  379.508734][   T59] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  379.513044][   T59] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  379.518492][   T59] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  379.544109][  T855] usb 6-1: Using ep0 maxpacket: 32
[  379.547219][  T855] usb 6-1: config 0 has an invalid interface number: 184 but max is 0
[  379.549928][  T855] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  379.553191][  T855] usb 6-1: config 0 has no interface number 0
[  379.557191][  T855] usb 6-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  379.560093][  T855] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  379.562585][  T855] usb 6-1: Product: syz
[  379.563978][  T855] usb 6-1: Manufacturer: syz
[  379.565706][  T855] usb 6-1: SerialNumber: syz
[  379.568463][  T855] usb 6-1: config 0 descriptor??
[  379.571382][  T855] smsc75xx 6-1:0.184 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22
[  379.574765][  T855] smsc75xx 6-1:0.184: probe with driver smsc75xx failed with error -22
[  379.596127][ T5938] ums-sddr09 5-1:1.0: probe with driver ums-sddr09 failed with error -22
[  379.601136][ T5938] usb 5-1: USB disconnect, device number 42
[  379.731826][   T59] usb 7-1: usb_control_msg returned -32
[  379.733616][   T59] usbtmc 7-1:16.0: can't read capabilities
[  380.249730][T11867] FAULT_INJECTION: forcing a failure.
[  380.249730][T11867] name failslab, interval 1, probability 0, space 0, times 0
[  380.253542][T11867] CPU: 2 UID: 0 PID: 11867 Comm: syz.0.2007 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  380.253560][T11867] Tainted: [L]=SOFTLOCKUP
[  380.253564][T11867] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  380.253571][T11867] Call Trace:
[  380.253576][T11867]  <TASK>
[  380.253581][T11867]  dump_stack_lvl+0x100/0x190
[  380.253641][T11867]  should_fail_ex.cold+0x5/0xa
[  380.253656][T11867]  should_failslab+0xc2/0x120
[  380.253669][T11867]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  380.253685][T11867]  ? ptlock_alloc+0x1f/0x70
[  380.253704][T11867]  ptlock_alloc+0x1f/0x70
[  380.253719][T11867]  pte_alloc_one+0x82/0x3d0
[  380.253734][T11867]  __pte_alloc+0x6d/0x3e0
[  380.253746][T11867]  ? __pfx___pte_alloc+0x10/0x10
[  380.253758][T11867]  ? _raw_spin_unlock+0x28/0x50
[  380.253811][T11867]  ? __pmd_alloc+0x3fb/0x950
[  380.253827][T11867]  copy_page_range+0x3dbb/0x5b00
[  380.253850][T11867]  ? find_held_lock+0x2b/0x80
[  380.253872][T11867]  ? mas_wr_store_entry+0xa1/0x1e80
[  380.253887][T11867]  ? __pfx_copy_page_range+0x10/0x10
[  380.253905][T11867]  ? mas_store+0x666/0xac0
[  380.253921][T11867]  ? __pfx_mas_store+0x10/0x10
[  380.253938][T11867]  ? __pfx___vma_start_write+0x10/0x10
[  380.253956][T11867]  dup_mmap+0xd25/0x2180
[  380.253976][T11867]  ? __pfx_dup_mmap+0x10/0x10
[  380.253989][T11867]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  380.254004][T11867]  ? __lock_acquire+0x4a5/0x2630
[  380.254027][T11867]  ? find_held_lock+0x2b/0x80
[  380.254042][T11867]  ? __percpu_counter_init_many+0x2bc/0x3b0
[  380.254091][T11867]  copy_process+0x7b37/0x7fa0
[  380.254114][T11867]  ? __pfx_copy_process+0x10/0x10
[  380.254132][T11867]  ? _copy_from_user+0x59/0xd0
[  380.254151][T11867]  kernel_clone+0x12e/0x9c0
[  380.254165][T11867]  ? find_held_lock+0x2b/0x80
[  380.254178][T11867]  ? get_pid_task+0xfc/0x250
[  380.254195][T11867]  ? __pfx_kernel_clone+0x10/0x10
[  380.254213][T11867]  ? proc_fail_nth_write+0x9f/0x220
[  380.254229][T11867]  ? find_held_lock+0x2b/0x80
[  380.254245][T11867]  __do_sys_clone3+0x214/0x290
[  380.254260][T11867]  ? __pfx___do_sys_clone3+0x10/0x10
[  380.254275][T11867]  ? ksys_write+0x190/0x250
[  380.254292][T11867]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  380.254308][T11867]  ? __fget_files+0x21f/0x3d0
[  380.254327][T11867]  ? rcu_is_watching+0x12/0xc0
[  380.254341][T11867]  __do_fast_syscall_32+0xe7/0x950
[  380.254355][T11867]  ? lockdep_hardirqs_on+0x78/0x100
[  380.254369][T11867]  do_fast_syscall_32+0x32/0x70
[  380.254383][T11867]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  380.254397][T11867] RIP: 0023:0xf6fcefcc
[  380.254407][T11867] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  380.254417][T11867] RSP: 002b:00000000f537b3dc EFLAGS: 00000286 ORIG_RAX: 00000000000001b3
[  380.254428][T11867] RAX: ffffffffffffffda RBX: 00000000f537b410 RCX: 0000000000000058
[  380.254435][T11867] RDX: 0000000000000000 RSI: 0000000080a00200 RDI: 0000000000000002
[  380.254441][T11867] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  380.254447][T11867] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  380.254453][T11867] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  380.254467][T11867]  </TASK>
[  380.294240][ T5101] Bluetooth: hci2: command 0x040f tx timeout
[  380.474231][T11868] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2003'.
[  380.909431][T11870] netlink: 204 bytes leftover after parsing attributes in process `syz.4.2008'.
[  380.943372][T11872] netlink: 164 bytes leftover after parsing attributes in process `syz.4.2009'.
[  381.669654][T11888] xt_TCPMSS: Only works on TCP SYN packets
[  381.724717][T11888] trusted_key: encrypted_key: insufficient parameters specified
[  382.068406][ T5887] usb 7-1: USB disconnect, device number 42
[  382.221545][   T29] usb 6-1: USB disconnect, device number 41
[  382.258265][T11890] netlink: 'syz.1.2015': attribute type 1 has an invalid length.
[  382.406464][T11890] macvlan2: entered promiscuous mode
[  382.408563][T11890] bridge0: entered promiscuous mode
[  382.643329][ T5101] block nbd1: Receive control failed (result -107)
[  382.652112][ T5101] 
[  382.652978][ T5101] ======================================================
[  382.655821][ T5101] WARNING: possible circular locking dependency detected
[  382.658488][ T5101] syzkaller #0 Tainted: G             L     
[  382.660515][ T5101] ------------------------------------------------------
[  382.662697][ T5101] kworker/u33:1/5101 is trying to acquire lock:
[  382.664678][ T5101] ffff888026c90260 (sk_lock-AF_INET){+.+.}-{0:0}, at: inet_shutdown+0x67/0x410
[  382.667517][ T5101] 
[  382.667517][ T5101] but task is already holding lock:
[  382.669779][ T5101] ffff88804ccee668 (&nsock->tx_lock){+.+.}-{4:4}, at: recv_work+0x5e7/0x8c0
[  382.672483][ T5101] 
[  382.672483][ T5101] which lock already depends on the new lock.
[  382.672483][ T5101] 
[  382.675761][ T5101] 
[  382.675761][ T5101] the existing dependency chain (in reverse order) is:
[  382.678590][ T5101] 
[  382.678590][ T5101] -> #6 (&nsock->tx_lock){+.+.}-{4:4}:
[  382.681029][ T5101]        __mutex_lock+0x1a4/0x1b10
[  382.682621][ T5101]        nbd_queue_rq+0x428/0x1080
[  382.684258][ T5101]        blk_mq_dispatch_rq_list+0x422/0x1e70
[  382.686317][ T5101]        __blk_mq_sched_dispatch_requests+0xcea/0x1620
[  382.688877][ T5101]        blk_mq_sched_dispatch_requests+0xd7/0x1c0
[  382.690973][ T5101]        blk_mq_run_hw_queue+0x23c/0x670
[  382.692752][ T5101]        blk_mq_dispatch_list+0x51d/0x1360
[  382.694697][ T5101]        blk_mq_flush_plug_list+0x130/0x600
[  382.696584][ T5101]        __blk_flush_plug+0x2c4/0x4b0
[  382.698335][ T5101]        __submit_bio+0x584/0x6c0
[  382.700016][ T5101]        submit_bio_noacct_nocheck+0x543/0xbf0
[  382.702148][ T5101]        submit_bio_noacct+0xd18/0x2000
[  382.704279][ T5101]        submit_bh_wbc+0x681/0x890
[  382.706084][ T5101]        block_read_full_folio+0x4c8/0x8e0
[  382.708185][ T5101]        filemap_read_folio+0xfc/0x3b0
[  382.709993][ T5101]        do_read_cache_folio+0x2d7/0x6b0
[  382.711824][ T5101]        read_part_sector+0xd1/0x370
[  382.713689][ T5101]        adfspart_check_ICS+0x91/0x7d0
[  382.715464][ T5101]        bdev_disk_changed+0x7a3/0x1250
[  382.717514][ T5101]        blkdev_get_whole+0x187/0x290
[  382.719343][ T5101]        bdev_open+0x2c7/0xe40
[  382.721114][ T5101]        blkdev_open+0x34e/0x4f0
[  382.722996][ T5101]        do_dentry_open+0x6d8/0x1660
[  382.725082][ T5101]        vfs_open+0x82/0x3f0
[  382.727009][ T5101]        path_openat+0x208c/0x31a0
[  382.729021][ T5101]        do_file_open+0x20e/0x430
[  382.730920][ T5101]        do_sys_openat2+0x10d/0x1e0
[  382.732928][ T5101]        __x64_sys_openat+0x12d/0x210
[  382.735012][ T5101]        do_syscall_64+0x10b/0xf80
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  382.736931][ T5101]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  382.738908][ T5101] 
[  382.738908][ T5101] -> #5 (&cmd->lock){+.+.}-{4:4}:
[  382.741156][ T5101]        __mutex_lock+0x1a4/0x1b10
[  382.742802][ T5101]        nbd_queue_rq+0xba/0x1080
[  382.744512][ T5101]        blk_mq_dispatch_rq_list+0x422/0x1e70
[  382.746431][ T5101]        __blk_mq_sched_dispatch_requests+0xcea/0x1620
[  382.748451][ T5101]        blk_mq_sched_dispatch_requests+0xd7/0x1c0
[  382.750409][ T5101]        blk_mq_run_hw_queue+0x23c/0x670
[  382.752109][ T5101]        blk_mq_dispatch_list+0x51d/0x1360
[  382.753849][ T5101]        blk_mq_flush_plug_list+0x130/0x600
[  382.755730][ T5101]        __blk_flush_plug+0x2c4/0x4b0
[  382.757456][ T5101]        __submit_bio+0x584/0x6c0
[  382.759077][ T5101]        submit_bio_noacct_nocheck+0x543/0xbf0
[  382.760959][ T5101]        submit_bio_noacct+0xd18/0x2000
[  382.762642][ T5101]        submit_bh_wbc+0x681/0x890
[  382.764187][ T5101]        block_read_full_folio+0x4c8/0x8e0
[  382.765981][ T5101]        filemap_read_folio+0xfc/0x3b0
[  382.767769][ T5101]        do_read_cache_folio+0x2d7/0x6b0
[  382.769454][ T5101]        read_part_sector+0xd1/0x370
[  382.771064][ T5101]        adfspart_check_ICS+0x91/0x7d0
[  382.772710][ T5101]        bdev_disk_changed+0x7a3/0x1250
[  382.774389][ T5101]        blkdev_get_whole+0x187/0x290
[  382.776051][ T5101]        bdev_open+0x2c7/0xe40
[  382.777551][ T5101]        blkdev_open+0x34e/0x4f0
[  382.779030][ T5101]        do_dentry_open+0x6d8/0x1660
[  382.780797][ T5101]        vfs_open+0x82/0x3f0
[  382.782491][ T5101]        path_openat+0x208c/0x31a0
[  382.784321][ T5101]        do_file_open+0x20e/0x430
[  382.786022][ T5101]        do_sys_openat2+0x10d/0x1e0
[  382.787768][ T5101]        __x64_sys_openat+0x12d/0x210
[  382.789452][ T5101]        do_syscall_64+0x10b/0xf80
[  382.790992][ T5101]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  382.792959][ T5101] 
[  382.792959][ T5101] -> #4 (set->srcu){.+.+}-{0:0}:
[  382.795073][ T5101]        __synchronize_srcu+0xa2/0x300
[  382.796710][ T5101]        blk_mq_quiesce_queue+0x149/0x1c0
[  382.798497][ T5101]        elevator_switch+0x17b/0x7e0
[  382.800095][ T5101]        elevator_change+0x352/0x530
[  382.801751][ T5101]        elevator_set_default+0x29e/0x360
[  382.803517][ T5101]        blk_register_queue+0x48e/0x630
[  382.805234][ T5101]        __add_disk+0x73f/0xe40
[  382.806832][ T5101]        add_disk_fwnode+0x118/0x5c0
[  382.808644][ T5101]        nbd_dev_add+0x77a/0xb10
[  382.810465][ T5101]        nbd_init+0x291/0x2b0
[  382.812121][ T5101]        do_one_initcall+0x121/0x750
[  382.813720][ T5101]        kernel_init_freeable+0x6ea/0x7b0
[  382.815488][ T5101]        kernel_init+0x1f/0x1e0
[  382.817152][ T5101]        ret_from_fork+0x72b/0xd50
[  382.819208][ T5101]        ret_from_fork_asm+0x1a/0x30
[  382.821315][ T5101] 
[  382.821315][ T5101] -> #3 (&q->elevator_lock){+.+.}-{4:4}:
[  382.824069][ T5101]        __mutex_lock+0x1a4/0x1b10
[  382.825737][ T5101]        elevator_change+0x1bc/0x530
[  382.827600][ T5101]        elevator_set_none+0x92/0xf0
[  382.829866][ T5101]        blk_mq_update_nr_hw_queues+0x4c1/0x15f0
[  382.832421][ T5101]        nbd_start_device+0x1a6/0xbd0
[  382.834474][ T5101]        nbd_genl_connect+0xff2/0x1a40
[  382.836725][ T5101]        genl_family_rcv_msg_doit+0x214/0x300
[  382.839273][ T5101]        genl_rcv_msg+0x560/0x800
[  382.841430][ T5101]        netlink_rcv_skb+0x159/0x420
[  382.843623][ T5101]        genl_rcv+0x28/0x40
[  382.845191][ T5101]        netlink_unicast+0x585/0x850
[  382.846997][ T5101]        netlink_sendmsg+0x8b0/0xda0
[  382.849095][ T5101]        ____sys_sendmsg+0x9e1/0xb70
[  382.850980][ T5101]        ___sys_sendmsg+0x190/0x1e0
[  382.852933][ T5101]        __sys_sendmsg+0x170/0x220
[  382.854872][ T5101]        __do_fast_syscall_32+0xe7/0x950
[  382.857213][ T5101]        do_fast_syscall_32+0x32/0x70
[  382.859464][ T5101]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  382.862257][ T5101] 
[  382.862257][ T5101] -> #2 (&q->q_usage_counter(io)#49){++++}-{0:0}:
[  382.865732][ T5101]        blk_alloc_queue+0x610/0x790
[  382.867472][ T5101]        blk_mq_alloc_queue+0x174/0x290
[  382.869740][ T5101]        __blk_mq_alloc_disk+0x29/0x120
[  382.872115][ T5101]        nbd_dev_add+0x492/0xb10
[  382.874338][ T5101]        nbd_init+0x291/0x2b0
[  382.876473][ T5101]        do_one_initcall+0x121/0x750
[  382.878828][ T5101]        kernel_init_freeable+0x6ea/0x7b0
[  382.881263][ T5101]        kernel_init+0x1f/0x1e0
[  382.883318][ T5101]        ret_from_fork+0x72b/0xd50
[  382.885462][ T5101]        ret_from_fork_asm+0x1a/0x30
[  382.887644][ T5101] 
[  382.887644][ T5101] -> #1 (fs_reclaim){+.+.}-{0:0}:
[  382.890602][ T5101]        fs_reclaim_acquire+0xc4/0x100
[  382.892354][ T5101]        kmem_cache_alloc_node_noprof+0x53/0x6f0
[  382.894335][ T5101]        __alloc_skb+0x140/0x710
[  382.895980][ T5101]        tcp_stream_alloc_skb+0x34/0x660
[  382.897853][ T5101]        tcp_sendmsg_locked+0x13cd/0x4500
[  382.899690][ T5101]        tcp_sendmsg+0x2e/0x50
[  382.901285][ T5101]        inet_sendmsg+0xb9/0x140
[  382.902850][ T5101]        sock_write_iter+0x4ea/0x5a0
[  382.904472][ T5101]        vfs_write+0x6ac/0x1070
[  382.905971][ T5101]        ksys_write+0x1f8/0x250
[  382.907513][ T5101]        do_syscall_64+0x10b/0xf80
[  382.909486][ T5101]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  382.911463][ T5101] 
[  382.911463][ T5101] -> #0 (sk_lock-AF_INET){+.+.}-{0:0}:
[  382.913803][ T5101]        __lock_acquire+0x14b8/0x2630
[  382.915485][ T5101]        lock_acquire+0x1b1/0x370
[  382.917141][ T5101]        lock_sock_nested+0x41/0xf0
[  382.918842][ T5101]        inet_shutdown+0x67/0x410
[  382.920428][ T5101]        nbd_mark_nsock_dead+0xae/0x5c0
[  382.922577][ T5101]        recv_work+0x5fb/0x8c0
[  382.924191][ T5101]        process_one_work+0xa0e/0x1980
[  382.926017][ T5101]        worker_thread+0x5ef/0xe50
[  382.927694][ T5101]        kthread+0x370/0x450
[  382.929607][ T5101]        ret_from_fork+0x72b/0xd50
[  382.931384][ T5101]        ret_from_fork_asm+0x1a/0x30
[  382.933124][ T5101] 
[  382.933124][ T5101] other info that might help us debug this:
[  382.933124][ T5101] 
[  382.936265][ T5101] Chain exists of:
[  382.936265][ T5101]   sk_lock-AF_INET --> &cmd->lock --> &nsock->tx_lock
[  382.936265][ T5101] 
[  382.940444][ T5101]  Possible unsafe locking scenario:
[  382.940444][ T5101] 
[  382.942924][ T5101]        CPU0                    CPU1
[  382.944594][ T5101]        ----                    ----
[  382.946212][ T5101]   lock(&nsock->tx_lock);
[  382.947815][ T5101]                                lock(&cmd->lock);
[  382.949797][ T5101]                                lock(&nsock->tx_lock);
[  382.951937][ T5101]   lock(sk_lock-AF_INET);
[  382.953252][ T5101] 
[  382.953252][ T5101]  *** DEADLOCK ***
[  382.953252][ T5101] 
[  382.955895][ T5101] 3 locks held by kworker/u33:1/5101:
[  382.957699][ T5101]  #0: ffff888026ef7140 ((wq_completion)nbd1-recv){+.+.}-{0:0}, at: process_one_work+0x12d6/0x1980
[  382.961317][ T5101]  #1: ffffc90002d0fd08 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x973/0x1980
[  382.965393][ T5101]  #2: ffff88804ccee668 (&nsock->tx_lock){+.+.}-{4:4}, at: recv_work+0x5e7/0x8c0
[  382.968679][ T5101] 
[  382.968679][ T5101] stack backtrace:
[  382.970338][ T5101] CPU: 1 UID: 0 PID: 5101 Comm: kworker/u33:1 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  382.970355][ T5101] Tainted: [L]=SOFTLOCKUP
[  382.970359][ T5101] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  382.970367][ T5101] Workqueue: nbd1-recv recv_work
[  382.970382][ T5101] Call Trace:
[  382.970389][ T5101]  <TASK>
[  382.970395][ T5101]  dump_stack_lvl+0x100/0x190
[  382.970407][ T5101]  print_circular_bug.cold+0x178/0x1c7
[  382.970425][ T5101]  check_noncircular+0x146/0x160
[  382.970444][ T5101]  __lock_acquire+0x14b8/0x2630
[  382.970455][ T5101]  ? preempt_schedule_notrace_thunk+0x16/0x30
[  382.970472][ T5101]  lock_acquire+0x1b1/0x370
[  382.970481][ T5101]  ? inet_shutdown+0x67/0x410
[  382.970495][ T5101]  lock_sock_nested+0x41/0xf0
[  382.970510][ T5101]  ? inet_shutdown+0x67/0x410
[  382.970522][ T5101]  inet_shutdown+0x67/0x410
[  382.970535][ T5101]  nbd_mark_nsock_dead+0xae/0x5c0
[  382.970552][ T5101]  recv_work+0x5fb/0x8c0
[  382.970564][ T5101]  ? __lock_acquire+0xd73/0x2630
[  382.970574][ T5101]  ? __pfx_recv_work+0x10/0x10
[  382.970584][ T5101]  ? debug_object_deactivate+0x2e4/0x3b0
[  382.970602][ T5101]  ? rcu_is_watching+0x12/0xc0
[  382.970616][ T5101]  process_one_work+0xa0e/0x1980
[  382.970629][ T5101]  ? __pfx_process_one_work+0x10/0x10
[  382.970642][ T5101]  ? __pfx_recv_work+0x10/0x10
[  382.970653][ T5101]  worker_thread+0x5ef/0xe50
[  382.970666][ T5101]  ? kthread+0x13a/0x450
[  382.970674][ T5101]  ? __pfx_worker_thread+0x10/0x10
[  382.970684][ T5101]  kthread+0x370/0x450
[  382.970692][ T5101]  ? __pfx_kthread+0x10/0x10
[  382.970702][ T5101]  ret_from_fork+0x72b/0xd50
[  382.970713][ T5101]  ? __pfx_ret_from_fork+0x10/0x10
[  382.970725][ T5101]  ? __switch_to+0x800/0x1100
[  382.970739][ T5101]  ? __pfx_kthread+0x10/0x10
[  382.970749][ T5101]  ret_from_fork_asm+0x1a/0x30
[  382.970765][ T5101]  </TASK>
[  383.046462][T11894] block nbd1: shutting down sockets
[  383.063594][T11905] loop5: detected capacity change from 0 to 7
[  383.074598][    C1] blk_print_req_error: 21 callbacks suppressed
[  383.074615][    C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  383.080354][    C1] buffer_io_error: 21 callbacks suppressed
[  383.080370][    C1] Buffer I/O error on dev loop5, logical block 0, async page read
[  383.107725][    C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  383.110319][    C1] Buffer I/O error on dev loop5, logical block 0, async page read
[  383.112976][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  383.116672][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  383.119943][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  383.123401][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  383.126608][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  383.130082][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  383.133220][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  383.136800][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  383.139794][T11905] ldm_validate_partition_table(): Disk read failed.
[  383.142224][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  383.142247][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  383.151412][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  383.154646][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  383.157624][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  383.160723][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  383.163869][    C3] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  383.167688][    C3] Buffer I/O error on dev loop5, logical block 0, async page read
[  383.171211][T11905] Dev loop5: unable to read RDB block 0
[  383.173710][T11905]  loop5: unable to read partition table
[  383.175495][ T1432] ieee802154 phy0 wpan0: encryption failed: -22
[  383.176537][T11905] loop5: partition table beyond EOD, truncated
[  383.178932][ T1432] ieee802154 phy1 wpan1: encryption failed: -22
[  383.188713][T11905] loop_reread_partitions: partition scan of loop5 (���W������ý�*���	���%���4FLQk݊5) failed (rc=-5)
[  383.321221][ T1157] netdevsim netdevsim4 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  383.325214][ T1157] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  383.448554][ T1157] netdevsim netdevsim4 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  383.452566][ T1157] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  383.537523][ T1157] netdevsim netdevsim4 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  383.540849][ T1157] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  383.677375][ T1157] netdevsim netdevsim4 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  383.680589][ T1157] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  383.822521][ T1157] bridge_slave_1: left allmulticast mode
[  383.825094][ T1157] bridge_slave_1: left promiscuous mode
[  383.827946][ T1157] bridge0: port 2(bridge_slave_1) entered disabled state
[  383.832562][ T1157] bridge_slave_0: left allmulticast mode
[  383.834971][ T1157] bridge_slave_0: left promiscuous mode
[  383.837715][ T1157] bridge0: port 1(bridge_slave_0) entered disabled state
[  384.122536][ T1157] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  384.127614][ T1157] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  384.132267][ T1157] bond0 (unregistering): Released all slaves
[  384.137839][ T5452] 8021q: adding VLAN 0 to HW filter on device eth6
[  384.244344][ T1157] tipc: Left network mode
[  384.255892][ T5452] 8021q: adding VLAN 0 to HW filter on device eth7
[  384.359223][ T5452] 8021q: adding VLAN 0 to HW filter on device eth8
[  384.457539][ T5452] 8021q: adding VLAN 0 to HW filter on device eth9
[  384.535910][ T1157] hsr_slave_0: left promiscuous mode
[  384.538606][ T1157] hsr_slave_1: left promiscuous mode
[  384.541141][ T1157] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  384.544134][ T1157] batman_adv: batadv0: Removing interface: batadv_slave_0
[  384.547473][ T1157] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  384.550509][ T1157] batman_adv: batadv0: Removing interface: batadv_slave_1
[  384.556376][ T1157] veth1_macvtap: left promiscuous mode
[  384.558692][ T1157] veth0_macvtap: left promiscuous mode
[  384.561024][ T1157] veth1_vlan: left promiscuous mode
[  384.563218][ T1157] veth0_vlan: left promiscuous mode
[  384.652770][ T1157] team0 (unregistering): Port device team_slave_1 removed
[  384.659702][ T1157] team0 (unregistering): Port device team_slave_0 removed
[  385.086673][ T1157] IPVS: stop unused estimator thread 0...
[  385.207471][ T1157] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  385.210614][ T1157] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 1792 - 0
[  385.213607][ T1157] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 2] type 2 family 0 port 13315 - 0
[  385.216831][ T1157] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 3] type 2 family 0 port 319 - 0
[  385.277959][ T1157] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  385.281249][ T1157] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 1792 - 0
[  385.286765][ T1157] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 2] type 2 family 0 port 13315 - 0
[  385.290174][ T1157] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 3] type 2 family 0 port 319 - 0
[  385.357144][ T1157] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  385.361420][ T1157] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 1792 - 0
[  385.365709][ T1157] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 2] type 2 family 0 port 13315 - 0
[  385.370007][ T1157] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 3] type 2 family 0 port 319 - 0
[  385.448408][ T1157] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  385.452568][ T1157] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 1792 - 0
[  385.456877][ T1157] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 2] type 2 family 0 port 13315 - 0
[  385.461241][ T1157] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 3] type 2 family 0 port 319 - 0
[  385.539898][ T1157] netdevsim netdevsim1 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  385.543519][ T1157] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 16896 - 0
[  385.547688][ T1157] netdevsim netdevsim1 eth3 (unregistering): unset [1, 1] type 2 family 0 port 262 - 0
[  385.616208][ T1157] netdevsim netdevsim1 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  385.619324][ T1157] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 16896 - 0
[  385.622288][ T1157] netdevsim netdevsim1 eth2 (unregistering): unset [1, 1] type 2 family 0 port 262 - 0
[  385.671758][ T5452] 8021q: adding VLAN 0 to HW filter on device eth10
[  385.676707][ T1157] netdevsim netdevsim1 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  385.680480][ T1157] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 16896 - 0
[  385.683912][ T1157] netdevsim netdevsim1 eth1 (unregistering): unset [1, 1] type 2 family 0 port 262 - 0
[  385.799504][ T1157] netdevsim netdevsim1 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  385.803824][ T1157] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 16896 - 0
[  385.808381][ T1157] netdevsim netdevsim1 eth0 (unregistering): unset [1, 1] type 2 family 0 port 262 - 0
[  385.819068][ T5452] 8021q: adding VLAN 0 to HW filter on device eth11
[  385.890107][ T1157] bridge_slave_1: left allmulticast mode
[  385.892018][ T1157] bridge_slave_1: left promiscuous mode
[  385.893955][ T1157] bridge0: port 2(bridge_slave_1) entered disabled state
[  385.899452][ T1157] bridge_slave_0: left allmulticast mode
[  385.901724][ T1157] bridge_slave_0: left promiscuous mode
[  385.903861][ T1157] bridge0: port 1(bridge_slave_0) entered disabled state
[  386.145841][ T1157] team0: Port device macvlan2 removed
[  386.149421][ T1157] bond0 (unregistering): Released all slaves
[  386.152756][ T1157] bond1 (unregistering): Released all slaves
[  386.222271][ T1157] bridge0 (unregistering): left promiscuous mode
[  386.341669][ T1157] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  386.345265][ T1157] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  386.348371][ T1157] bond0 (unregistering): Released all slaves
[  386.351480][ T1157] bond1 (unregistering): Released all slaves
[  386.355835][ T1157] bond2 (unregistering): Released all slaves
[  386.359951][ T1157] bond3 (unregistering): Released all slaves
[  386.365369][ T5452] 8021q: adding VLAN 0 to HW filter on device eth12
[  386.408135][ T1157] tipc: Left network mode
[  386.427098][ T1157] tipc: Left network mode
[  386.479773][ T5452] 8021q: adding VLAN 0 to HW filter on device eth13
[  386.605237][ T5452] 8021q: adding VLAN 0 to HW filter on device eth14
[  386.735473][ T5452] 8021q: adding VLAN 0 to HW filter on device eth15
[  386.768525][ T1157] hsr_slave_0: left promiscuous mode
[  386.771137][ T1157] hsr_slave_1: left promiscuous mode
[  386.779708][ T1157] hsr_slave_0: left promiscuous mode
[  386.782324][ T1157] hsr_slave_1: left promiscuous mode
[  386.785018][ T1157] batman_adv: batadv0: Removing interface: batadv_slave_0
[  386.788426][ T1157] batman_adv: batadv0: Removing interface: batadv_slave_1
[  386.795233][ T1157] veth1_macvtap: left promiscuous mode
[  386.797600][ T1157] veth0_macvtap: left promiscuous mode
[  386.799944][ T1157] veth1_vlan: left promiscuous mode
[  386.802176][ T1157] veth0_vlan: left promiscuous mode
[  386.875520][   T12] smbdirect: ib_dev[syz0] removed
[  387.026554][ T1157] team0 (unregistering): Port device team_slave_1 removed
[  387.032808][ T1157] team0 (unregistering): Port device team_slave_0 removed
[  387.058322][   T29] infiniband syz0: ib_query_port failed (-19)
[  387.172825][ T5452] 8021q: adding VLAN 0 to HW filter on device eth16
[  387.265385][ T5452] 8021q: adding VLAN 0 to HW filter on device eth17
[  387.591279][ T1157] IPVS: stop unused estimator thread 0...