last executing test programs:

55.767588198s ago: executing program 0 (id=1450):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0a000000050000000200000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x2, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000900000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0xb, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r4, 0x2000000, 0x11, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB], 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x0)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x7}, 0x8)
ioctl$sock_TIOCINQ(r1, 0x541b, 0x0)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000000)={0x0, 0x9}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
socket(0x10, 0x803, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f05ebbee1, 0x8031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x800448d3, &(0x7f00000000c0))
sendmmsg$inet6(r2, &(0x7f0000000480)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback, 0x80020}, 0x1c, &(0x7f0000000300)=[{&(0x7f00000034c0)='\x00', 0x1}], 0x1}}], 0x1, 0x0)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r2, 0x84, 0x77, &(0x7f00000009c0)=ANY=[@ANYBLOB="12e01b3989dd", @ANYRES32=r1], 0x1000f)
sendmsg$IPCTNL_MSG_CT_NEW(r0, 0x0, 0x8080)

55.514582031s ago: executing program 0 (id=1451):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)={{0x14}, [@NFT_MSG_NEWSET={0x44, 0x9, 0xa, 0x401, 0x0, 0xf5ffffff, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xd}, @NFTA_SET_GC_INTERVAL={0x8, 0xc, 0x1, 0x0, 0x4}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0xa, 0x84}}}, 0x6c}}, 0x20050800)

55.514351478s ago: executing program 0 (id=1452):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x4c, 0x9, 0x6, 0x801, 0x0, 0x0, {0x5}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x24, 0x7, 0x0, 0x1, [@IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e21}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @private=0xa010101}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0x10004893}, 0x80)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_SB_POOL_SET(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="cc000000", @ANYRES16=r1, @ANYBLOB="000227bd7000fbdbdf25100000000e0001006e657464657673696d0000000f0002006e657464657673696d30000008000b0076070000060011000101000008001300010000000500140001000000080001007063690011000200303030303a30303a31302e300000000008000b00050000000600110000020000080013000002000005001400000000000800303a30303a31302e300000000008000b0000040000060011000f0000000800130061ed0000050014000100"/198], 0xcc}, 0x1, 0x0, 0x0, 0x800}, 0x20040050)

55.438977203s ago: executing program 0 (id=1453):
mkdir(&(0x7f0000000080)='./file1\x00', 0x8)
mount(0x0, &(0x7f0000000200)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x8, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000140)='./file1\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x402, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r1 = openat$comedi(0xffffff9c, &(0x7f0000000100)='/dev/comedi0\x00', 0x40000, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000002, 0x38011, r1, 0x43de8000)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
quotactl_fd$Q_SETQUOTA(r0, 0xffffffff80000800, 0x0, &(0x7f0000000340)={0x0, 0x1, 0xa000200000a958, 0x40000000003, 0x0, 0x6, 0x100, 0xffffffff, 0x100fff})
open(&(0x7f00000000c0)='.\x00', 0xd5b203, 0x8)

55.36850858s ago: executing program 0 (id=1454):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = syz_open_dev$dvb_demux(&(0x7f0000000080), 0x0, 0x41)
ioctl$DVB_DEMUX_DMX_SET_PES_FILTER(r1, 0x40146f2c, &(0x7f00000000c0)={0x1, 0x0, 0x3, 0x13, 0x4})
ioctl$DVB_DEMUX_DMX_REMOVE_PID(r1, 0x40026f34, &(0x7f0000000040)=0x1)
socket$inet_tcp(0x2, 0x1, 0x0)
r2 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000240)={'lo\x00'})
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
ioctl$KVM_GET_STATS_FD_cpu(r3, 0xaece)
pselect6(0x0, 0x0, 0x0, &(0x7f00000002c0)={0x3ff, 0x6, 0xffffffffffffffff, 0x9, 0x0, 0xa, 0x80000006, 0x400}, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b20, &(0x7f0000000080)={'wlan1\x00', @link_local})
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
close_range(r4, 0xffffffffffffffff, 0x0)

53.654558713s ago: executing program 0 (id=1460):
socket(0x1e, 0x3, 0x3)
socket(0x2, 0x80805, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_open_procfs(0x0, &(0x7f0000000240)='mountstats\x00')
pread64(r0, &(0x7f0000000480)=""/209, 0xd1, 0x2)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x0)
ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r1, 0x40505331, &(0x7f0000000540)={{}, {0x18}, 0x0, 0x7})
read$FUSE(r0, &(0x7f0000002c40)={0x2020}, 0x2020)
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
syz_usb_connect$uac1(0x0, 0xa4, &(0x7f00000003c0)=ANY=[@ANYBLOB="2a01000020000040b708000000000000030109029200030172e5000904000000010100000a24010000000201020c0d2407000005000000000000000c240000e9fffff5", @ANYRES8=r2, @ANYBLOB="05"], 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000000)=0x15)
ioctl$TCSETS(r3, 0x40384708, &(0x7f0000000040)={0x8, 0x1, 0x9, 0x3, 0x1a, "3eccd2000500"})
syz_usb_control_io(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

53.627409481s ago: executing program 32 (id=1460):
socket(0x1e, 0x3, 0x3)
socket(0x2, 0x80805, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_open_procfs(0x0, &(0x7f0000000240)='mountstats\x00')
pread64(r0, &(0x7f0000000480)=""/209, 0xd1, 0x2)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x0)
ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r1, 0x40505331, &(0x7f0000000540)={{}, {0x18}, 0x0, 0x7})
read$FUSE(r0, &(0x7f0000002c40)={0x2020}, 0x2020)
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
syz_usb_connect$uac1(0x0, 0xa4, &(0x7f00000003c0)=ANY=[@ANYBLOB="2a01000020000040b708000000000000030109029200030172e5000904000000010100000a24010000000201020c0d2407000005000000000000000c240000e9fffff5", @ANYRES8=r2, @ANYBLOB="05"], 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000000)=0x15)
ioctl$TCSETS(r3, 0x40384708, &(0x7f0000000040)={0x8, 0x1, 0x9, 0x3, 0x1a, "3eccd2000500"})
syz_usb_control_io(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

14.083553481s ago: executing program 2 (id=1655):
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="0b000000070000000200000022ff000001000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00', @ANYRES32], 0x48)
r0 = openat$kvm(0xffffff9c, &(0x7f0000000540), 0x8000, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0xfffff34, 0x0, [{0xf88e470f, 0xed}]})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x2, 0x9, 0xfffffffffffffffd, 0x77, 0x2, 0x2, 0x4002004c4, 0x1004, 0x8000000000000000, 0xc591, 0x0, 0x1, 0xffffffffffffffff, 0x2000000000000000, 0x5, 0x8d], 0xeeee8000, 0x2014d3})
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c09425, &(0x7f0000000380)={"b8e50a31a002b94fcd8fc4db3056309d", 0x0, 0x0, {0x7, 0x100}, {0xffffffffffffff7f, 0x5}, 0x51, [0x7, 0x3, 0xe, 0x2, 0x9, 0x8, 0xd8e, 0x7fc0000, 0x5, 0x0, 0x6, 0x3, 0x5, 0x49, 0xfffffffffffffffe, 0xc]})
openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0xffffffffffffff7c, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee7, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0xfffffffffffffeef, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000800)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
syz_open_dev$I2C(&(0x7f0000000040), 0x1, 0x2003)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

7.779407239s ago: executing program 4 (id=1663):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x300000d, 0x1)
r1 = syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x101301)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000300)=@o_path={0x0, r0, 0x4000, r1}, 0x14)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x18, 0xe, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x1}, [@map_val={0x18, 0xb, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x43}, @ldst={0x2, 0x0, 0xeb44494573537605, 0xb, 0x9, 0x1, 0x8}, @ldst={0x3, 0x1, 0x2, 0x7, 0x1, 0x18, 0x1}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, 0x1}}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @alu={0x7, 0x0, 0x9, 0x2, 0x0, 0x8, 0x10}, @call={0x85, 0x0, 0x0, 0xa3}]}, &(0x7f0000000340)='GPL\x00', 0x2, 0x9c, &(0x7f0000000440)=""/156, 0x40f00, 0x21, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000500)={0x4, 0x8, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x6, &(0x7f0000000540)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0xffffffffffffffff], &(0x7f0000000580)=[{0x2, 0x4, 0x3, 0x9}, {0x0, 0x3, 0x9}, {0x2, 0x1, 0x2, 0x2}, {0x1, 0x4, 0xe, 0x8}, {0x2, 0x1, 0xb, 0x4}, {0x2, 0x3, 0x1, 0xa}], 0x10, 0xe}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@bloom_filter={0x1e, 0x7, 0xfffeffff, 0xfffffffc, 0x5003, r0, 0x26ed, '\x00', 0x0, r0, 0x0, 0x4, 0x0, 0xa}, 0x50)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x16, 0x17, &(0x7f00000004c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, {{0x18, 0x1, 0x1, 0x0, r4}}, {}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r4}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r4}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000780)=@bpf_ext={0x1c, 0x5, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0xffff}, [@func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffc}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x5}]}, &(0x7f0000000040)='GPL\x00', 0x200, 0xf8, &(0x7f0000000140)=""/248, 0x41000, 0x12, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f0000000240)={0x0, 0x4}, 0x8, 0x10, &(0x7f0000000280)={0x4, 0xd, 0xa, 0x4}, 0x10, 0x14f6e, r2, 0x6, &(0x7f0000000100)=[r3, r0, r4], &(0x7f0000000700)=[{0x4, 0x5, 0x6, 0x8}, {0x3, 0x2, 0xb, 0x9}, {0x2, 0x1, 0xb}, {0x3, 0x4, 0x10, 0x3}, {0x0, 0x9, 0x6, 0xa}, {0x3, 0x4, 0x4, 0x3}], 0x10, 0x8}, 0x94)

7.779108785s ago: executing program 4 (id=1664):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006180)={0x2020, 0x0, <r1=>0x0, <r2=>0x0, <r3=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000004180)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x1, {0x6, 0x2, 0xffffffffffffeffe, 0xfffffffffffffffd, 0x0, 0x0, {0x40, 0x8, 0xb, 0xffff, 0x0, 0x1, 0x0, 0x0, 0x120, 0x2000, 0x0, r2, r3, 0x501, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0d000a12f7fc"], 0x50)
write$FUSE_INIT(r0, &(0x7f0000000440)={0x50, 0x0, r1, {0x7, 0x29, 0x0, 0x1004cc80, 0x40, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}, 0x50)
r4 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$VFAT_IOCTL_READDIR_BOTH(r4, 0x2202, 0x0)

6.880725728s ago: executing program 4 (id=1665):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
bind$inet6(r4, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
listen(r4, 0x4)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r4, 0x84, 0x1, &(0x7f0000000200)={0x0, 0xfd1c, 0x4, 0x400, 0xed, 0x1}, 0x14)
sendmmsg$inet6(r3, &(0x7f0000000000)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, &(0x7f0000000240)=[{&(0x7f0000000140)="f6", 0x1}], 0x1}}], 0x3ffffffffffffd1, 0x0)
r5 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000140), 0x40001, 0x0)
ioctl$IOMMU_TEST_OP_SET_TEMP_MEMORY_LIMIT(r5, 0x3ba0, &(0x7f0000000400)={0x48, 0x9, 0x0, 0x0, 0x541})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x6, 0x100000b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x16, 0x10, &(0x7f0000000800)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}, {{0x18, 0x1, 0x1, 0x0, r6}}, {}, [@call={0x85, 0x0, 0x0, 0xa0}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000200)='syzkaller\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001}, 0x94)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600707, 0x18)

4.081909507s ago: executing program 3 (id=1666):
syz_open_procfs(0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x6, 0x14, 0x0, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x4, 0x1}, 0xe)
listen(r0, 0x90004)
accept4(r0, &(0x7f0000000040)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x0, 0x0, @private1}}, 0x0, 0x800)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="043e130100c90001"], 0x16)
sendmsg$NLBL_UNLABEL_C_STATICADD(0xffffffffffffffff, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r1 = getpid()
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r2 = creat(&(0x7f0000000100)='./file0/file0\x00', 0x22)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x12, r3, 0x0)
r4 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000000080))
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000000340)={{&(0x7f0000ffa000/0x4000)=nil, 0x4000}, 0x1})
write$UHID_CREATE2(r3, &(0x7f0000000340)=ANY=[], 0x118)
ioctl$UFFDIO_ZEROPAGE(r4, 0xc020aa07, &(0x7f0000000280)={{&(0x7f0000ffc000/0x2000)=nil, 0x2000}})
syz_clone3(&(0x7f00000003c0)={0x385200080, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r2}}, 0x58)
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)

3.764594842s ago: executing program 3 (id=1669):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000000000105509147200ed0000000109022400010000000009040000030300000009210000000122050009058103"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xe, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], 0x0}, 0x94)
sendmsg$nl_xfrm(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f0000000b40)=@updpolicy={0xfc, 0x19, 0x1, 0x70bd2d, 0x25dfdbfe, {{@in6=@loopback, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xc, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x81, 0x7ffffffffffffffd, 0x407ffffffffffe, 0x8001}, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, [@tmpl={0x44, 0x5, [{{@in=@empty, 0x4d3, 0x2b}, 0xa, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x34ff, 0x0, 0x3, 0x6, 0x2, 0x97}]}]}, 0xfc}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
r3 = socket$key(0xf, 0x3, 0x2)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000140)={0x1, <r4=>0xffffffffffffffff}, 0x4)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{0x1, <r5=>0xffffffffffffffff}, &(0x7f0000000180), &(0x7f00000001c0)=r2}, 0x1c)
r6 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r6, 0x107, 0xf, &(0x7f0000000240)=0x5000, 0x4)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000000c0)={'erspan0\x00', <r7=>0x0})
sendto$packet(r6, &(0x7f0000000180)="0b032200eb1025120212475400f6a13bb1000000080086dd4803", 0x10300, 0x0, &(0x7f0000000140)={0x11, 0x0, r7}, 0x14)
r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000007c0)=@generic={&(0x7f0000000780)='./file0\x00', 0x0, 0x10}, 0x14)
r9 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000840)=@generic={&(0x7f0000000800)='./file0\x00', 0x0, 0x18}, 0x14)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000c40)={0x6, 0x23, &(0x7f00000004c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffa, 0x0, 0x0, 0x0, 0x10001}, [@map_fd={0x18, 0x1}, @printk={@lld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x68dc}}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x80000000}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r4}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x6}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}]}, &(0x7f0000000600)='syzkaller\x00', 0x8, 0x8b, &(0x7f0000000640)=""/139, 0x41000, 0x0, '\x00', r7, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000700)={0x6, 0x5}, 0x8, 0x10, &(0x7f0000000740)={0x2, 0x2, 0x9, 0x9}, 0x10, 0x0, 0x0, 0x6, &(0x7f0000000900)=[r2, 0x1, 0xffffffffffffffff, 0xffffffffffffffff, r8, r9], &(0x7f0000000940)=[{0x2, 0x4, 0xb, 0x9}, {0x0, 0x2, 0x2}, {0x1, 0x5, 0x7, 0xb}, {0x1, 0x5, 0x0, 0x5}, {0x1, 0x2, 0x10, 0x5}, {0x5, 0x4, 0x8, 0x6}]}, 0x94)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
r11 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100), 0x161842, 0x0)
ioctl$PPPIOCNEWUNIT(r11, 0xc004743e, &(0x7f0000000040))
ioctl$PPPIOCSACTIVE(r11, 0x40047459, &(0x7f0000000080)={0xfffffffffffffe43, 0x0})
ppoll(&(0x7f00000000c0)=[{r11}], 0x1, 0x0, 0x0, 0x0)
write$ppp(r11, &(0x7f0000000200)="bc72", 0x2)
sendmsg$NFT_BATCH(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x3}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x9c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x8}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x74, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_EXTHDR_OFFSET={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x22}, @NFTA_EXTHDR_TYPE={0x5, 0x2, 0x7}]}}}, {0x3c, 0x1, 0x0, 0x1, @bitwise={{0xc}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_BITWISE_LEN={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_BITWISE_SREG={0x8, 0x1, 0x1, 0x0, 0x14}, @NFTA_BITWISE_DREG={0x8, 0x2, 0x1, 0x0, 0x12}, @NFTA_BITWISE_DATA={0x8, 0x7, 0x0, 0x1, [@NFTA_DATA_VALUE={0x4}]}, @NFTA_BITWISE_OP={0x8, 0x6, 0x1, 0x0, 0x2}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x110}}, 0x0)
sendmsg$key(r3, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207000902"], 0x10}}, 0x0)
socket$kcm(0xa, 0x922000000003, 0x11)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x28c81, 0x0)
r12 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r13 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r13, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="8c82f603", @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800b00010065727370616e0000180002800400120008000100", @ANYRES32=0x0, @ANYBLOB="0600020000000000"], 0x48}, 0x1, 0x0, 0x0, 0x20040890}, 0x856)
close_range(r12, 0xffffffffffffffff, 0x0)

3.674509868s ago: executing program 2 (id=1671):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'syzkaller1\x00', 0x2})
r1 = socket$igmp6(0xa, 0x3, 0x2)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000300)={0x0, 'syzkaller1\x00', {0x2}})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="0000300080000060000000bbbbbbbbbb81000002"], 0x3a)

3.428777445s ago: executing program 2 (id=1674):
modify_ldt$read_default(0x2, &(0x7f0000000040)=""/47, 0x2f)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='ns\x00')
r2 = fcntl$getown(r1, 0x9)
setpriority(0x2, r2, 0x3)
renameat2(r1, &(0x7f0000000380)='./cgroup\x00', r1, &(0x7f00000003c0)='./mnt\x00', 0x2)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r4=>0x0})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0), 0xffffffffffffffff)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r7)
sendmsg$NLBL_CIPSOV4_C_ADD(r7, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000200)={0x40, r8, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSLVLLST={0x18, 0x8, 0x0, 0x1, [{0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x7f}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x3d}]}]}, @NLBL_CIPSOV4_A_TAGLST={0x4}]}, 0x40}}, 0x0)
sendmsg$TIPC_NL_BEARER_ADD(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)={0x28, r6, 0x4c1dad3e3d6a7499, 0x70bd25, 0x25dfdbfb, {}, [@TIPC_NLA_BEARER={0x14, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x28}}, 0x2400c000)
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r4, @ANYBLOB="0a00340002020202afd3f97049aa5fc3066bdfe2"], 0x30}, 0x1, 0x0, 0x0, 0x20011}, 0x0)

3.427374512s ago: executing program 4 (id=1675):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f00000000c0), 0x10)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYRES16=r0], 0x448}}, 0x0)
sendmmsg$inet(r0, &(0x7f0000001b00)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000080)="050000007402b8f4191db62b", 0xc}, {&(0x7f0000000440)="9f336d70bf41f19e47e98b4015e3b0384d86a1ceb4e530554ebc8154bf392bcf9ce0b09f879bd7aaf9d086e3", 0x2c}], 0x2}}, {{0x0, 0x0, &(0x7f0000000100), 0x2}}], 0x40000000000003a, 0x0)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r3 = syz_open_dev$mouse(&(0x7f0000000180), 0x0, 0x2)
readv(r3, &(0x7f0000000980)=[{&(0x7f0000000000)=""/58, 0x3a}], 0x1)
write$P9_RMKNOD(r3, &(0x7f0000000080)={0x14, 0x13, 0x2, {0x40, 0x0, 0x2}}, 0x14)
ptrace(0x10, r1)
ptrace$getregset(0x420e, r1, 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = socket$kcm(0x10, 0x400000002, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = socket(0x23, 0x2, 0x0)
sendmsg$IPSET_CMD_RENAME(r5, &(0x7f0000000200)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000001c0)={0x0, 0x84}, 0x1, 0x0, 0x0, 0x4}, 0x4040)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000001040)={0xfc, {"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", 0x1000}}, 0x1006)
timer_create(0x3, 0x0, &(0x7f00000003c0))
sendmsg$inet(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000140)="1c0000005e007f029ea69801d76ab0a272a2a788bab6c95f79725074", 0xd5}], 0x1}, 0x0)
sendmmsg(r5, &(0x7f0000000e00)=[{{&(0x7f0000000480)=@vsock={0x28, 0x0, 0xffffffff, @my=0x0}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000500)="61b12ddcd507fc5ce4fbde8079e57a68e80279ce5b5f057361adb91f7401f1ff87c80b69e01d79e159e8cf0468c6", 0x2e}, {&(0x7f0000000540)="48109b897eb3157bb878fd320ac456d4a176dfa9c6c18d2d563f860f32798ea471acb7bfa7642b8b65620fd256f36c6f3d01eea83687c7a6724e584ae9a153bc622bc4a24e926502106702a67f7a35397f66a953ad7701ce13f63295da2238f0a779426ec3bdbb917b29d185b231bbb346367001d348cfea198321692ad8e738e4a476aa923a6a73a48ceb117bf4214c3183aab66195", 0x96}], 0x2, &(0x7f0000000a00)=[{0x60, 0x10c, 0x81900000, "178a163f5d43a6e3e96d633c90ed69382032fa8dd51521b9e8990d77acdff029f1af7945ddddeb7fa739ecb07ec71040f7f46742668a826b9ab3e63d345f02da716af31192cd2d88390691e16e9dd30922"}, {0xd0, 0x1ad, 0x8f1c, "9421f7d1e10aad437123e37a5e3f6842bc81bafb180d7ba944996b61d2e0376634b0ab5a993e2c2ac42454c610386c04fe282a16a55d8e6d6fd5a7df9e0c919c9e91035060f5d2e090c64828772adc6cc93fbdf228471a69158273814db0ca5d591b05ceb20c716521ed1f5291d606128e3ef05165e97eb7b729c40a788252b5bdd9138fa280c64cfc942761fc2d71e980b7334612da99d2c412ed38acc7c11ffd0a91c6593c1e9f0bc43a846e6f2a4d582b0af35c37b0b7079309ff8cded17cf9"}, {0x100, 0x108, 0x40, "2022772d0180902ce6a94ebbf147a62df54b540c00ebd86470dbf57f59685b110c1322dbaaae83f9092b31d0d5bc07c5ac4303bf2fd38597de57693c79e6fd0cb9c18a905d57b16699d24cee7599b8a9bff1961e9288b657fc08592abe7ee5cabae3b0348f0fb0cdfaece549392546c69700776ede45a3f7ff455e71d79b9f073554a1372810b765dbae4bddc3d00d7f4bcb524b73067f80569e59f024b4ed10f222771418c269f93e71d475f34413bf01130700377477190c5bcc100213655d34e57d796027a6f4a5912d4ea213a19635add793d364aa48e0ed900459ec0f709c6e3a626cce4e81eab8487190766c3f22b560be"}, {0xcc, 0x3a, 0x6, "e2e6c5c276f2a3862503c24062055c1f08c24052a622e36316c4ccde0ed55aa4344bdc16298a983ca42bd1c1f2809599c69fb7f0fd903fe73f7162414b63cb62921ce7652c9ccca67f6587084919b5bfc3dbf83969c47d0ed57977d9c94155b7ff432b2b8b4904cfbc165ad679c41dcf11b3f7431db6c6717d4ea1040f42cd576a388c573b6e0863cb47fb1bfad0be267cc101f6e9c22ff9f1c2131f1f6ec03d2f4ce88e88d3066e1e8cfb00e3f35b8687ce48585728c0735ca8256836f8"}, {0xe0, 0x88, 0xd, "a779caa2b8e1b272eed0830f7db0889bc78622f397cb8bcc72a1771750c68df2624a031278db39c03bfac856673a815bf350d93591e308424535449fafab643c41fe085e9d7a3664397a7f50063328a5c90f3cf62cbe1c363429d25d552a76f05e9ea221c39251fc0cfc14341b5f96e14971ccb6bb190835ca0549289a324376211a48df6dcaef70ee635f208765f61a3ba153ed2c56b3e4fe6f666b450e3bbc23c694ba88fce5f58e80378c35dd332df15055d32d79e11ec61a1ec765496a8679d2d4e5ffd41d167b8f166b418efaaa9e655773"}], 0x3dc}}], 0x1, 0x40010)

3.267506495s ago: executing program 2 (id=1676):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0xc0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000180)=0x4, 0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
r2 = userfaultfd(0x801)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x108})
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x3})
syz_io_uring_setup(0x867, &(0x7f0000000140)={0x0, 0x9164, 0x1000, 0x1, 0x359}, &(0x7f00000002c0), &(0x7f0000ff4000), &(0x7f0000000000))
close_range(r2, r2, 0x0)
fsconfig$FSCONFIG_SET_BINARY(r1, 0x6, 0x0, 0x0, 0x0)
r3 = fsmount(r1, 0x0, 0x0)
openat$cgroup_subtree(r3, &(0x7f00000006c0), 0x2, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r3, 0xc0502100, &(0x7f0000000480)={0x0, <r4=>0x0})
timer_create(0x0, &(0x7f00000002c0)={0x0, 0x21, 0x2}, &(0x7f0000000180)=<r5=>0x0)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
r6 = socket$tipc(0x1e, 0x5, 0x0)
listen(r6, 0x0)
socket$tipc(0x1e, 0x5, 0x0)
accept4(r6, &(0x7f0000000280)=@xdp, &(0x7f00000001c0)=0x80, 0x80800)
timer_settime(r5, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0)
syz_open_procfs$pagemap(r4, &(0x7f0000000500))

3.2637837s ago: executing program 4 (id=1677):
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000280)='syzkaller\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="010000000300000004000000ff07"], 0x48)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f00000003c0)="057e30aae10df4f97559054b9a301ecfe91b645115e1421774006df60cb393573839b0078ce169ec2fde0afea66b5bbefa9d4f3cd8c2458336ceb1f0efe647d6d7b1cdbd12c9b8e3a822cbd51494bf79a1dbe5c22338ce37ed467a1d3d616564cbb81faa2e935b2697c12efb0ed141fa2eaad4747725c4bf20f8975e402b03eb77d1aa3f10f512397b5037b1b4cd4b7c08c03dc5e52a066e5982969fa044125ae251f46c26e2536cc8b77e8edb251378be4beedfb8dca0d449123f57677ca3da5bdebf91b195f1a5d49d7c292f20f58d490de36d8ee0e8a86bd04c3165549465cbee7891fc747d7def370ce644db894b56bd53af0d0e261bcfa6bf72a684dafc5bcafe07ece74cbd1d5fa32716dd03f7acd4f32d935438c91e033beaf49e3963e13d05e7a8334a858639636799f04a9033193e7d18a2a4b20bcc96811bb5efe476db70a76b7456ac4e71f3e89c00da0c7761c188570c7902bf2fee1be273be8a9f7a2d7508ef2188d3ba1db4fa9d1533d2f2a288cdfe3b0c50908d56ba69e81386e7e979e9d7ff78685ffb8de6baea2451762736a2bbafa11d541790b0564aef9b0b80fa24832090b84341a9fdf712d3296f911020f8021eda8130befaaab01cbe91dfc5768e6ff31ec50dd88596832a9f5fd4f558d367f40e454d3c97ad16a7f30b93629ee2def77b99f8a17c157529b0782fd847a4c75a2302ca96bbdcff660c2cca753e1a8c60dbcfb319a1594565a2e15bb6124316e196e3cafaf1a29eef84a0908d1dc80af7e333c65736699f1254addf2ab582f5c87c4f6ca234d7ca9673dc29444044b95abdaea958274e39aeb163ee2d05bc2ade5c33a0466e14fbdf8aa70ca2964c06ee5bc57b894b0143a7a503cc43574a07958940b029678df44d6c82fa2e6937ea6aeb5b8f33c21628e3b0d623c23c2e5a3546194fea742d90c1d61f343a005b9e58c3e8292b256fd0ecca81cda433f3bb0ed633607f0b635cdd8b4919bfa37c1e99df087d3f8f3ba5dec7930657eb3a4d8febb5234e048881fbfc499fe5eb6a0ce34546f7010ae2291e6731d0798ca451387a123998e68f6f577ba4e556bb9a119011a191a6bbcf55beb1fb0b8252deeed5721b271b964534a04462720c4c03e8ea7f120cfa1be630e7fc680d1f6e067075c72f642babcacf6b00cd3fdb9f3200e4ff8935b17ebe222053c78c3752666088017c2150dd014b9578af6adb15527a483eff5bb623710ca7b37ed49ff7cf1525f296af6f27846524e4aaea7476a2d08dceeca84a1ab11e2767abff12d10deaf63681dcabe9b1fb9ebe207d8e3793dba9a73a02ebea4e3a072397a88c47795d5e88b2040c9fe3f96f66f8f7d593547c8fc8f4e75a1c20962ecf2dd1e7bddf896f2a6c5f37a8784e2bc5b10cef2feab3b6eee7430908eeadd372248041a09b0c29385cd7a75754d2c429e72bf5fdac34097bbbbb3790f86399c60cb5054fbeb8eb1241608b506beb135091c18110c1d10d9a80f4adb11a6fd3001957cae0b4f8f730cc4fa4a7328e23f390caab014cfeec0ebfd0e14021f47fe330a68680678d23e7ca1ff18e7e242f4c1e3cca51dec73c58b596c2a92267ee76d3657c1e2b34102b09fa4c59c2619148440bf26802c6f858b8eee6d8c697bad2c4d5a0f76c6a4cdd3b8fdc21e447920491ef40578b68a7a5dfda04fa235fac01ad4e824b627137dc48807100e52ec5ae2f3a3fd84d68b824033b4f0ee28a9e72333b4e209ae905d0781e4fe8116e03b1ca5c3b1ea84974cabaa0214ed15bfe01e974491e8a20f9d03ed1b73799b083f3a65e809c3ff3cf126288fc1627409d46f78b5fe8b8ba0b3ddc3ac79aecd6eee2e0cc59826e5798f48f80f0c7f549b3a656e9acbc5e51bdc3becef93533166c1d9ffe4335ec973d3d27ce5987d150f554c4095650528578fe4858b670b0786f23c886612191f89ec57970dbc0e33cd62b57a08fa940b339577fd12d07dec2ac50e9e0b27f0716b3233803153389a95df956637af8d9778e27bce49ab0a832978712a074d3f7516ad512ed0d9b43049b5990c841a7b7146a24c62fb70645b8d85b6c8863d5c6aab03638ffa4e30c8de24383cf320eee735a4fd37262d473076f495da8b2f0f028b8f178c238010738d6afb1dc2e48089e80f6a7658ad3496f1a1f7f78abdcf934c733d22abb0671a0d41b9b33a5faf99d7b82166e27df0f97a7953dcc1fb364478200253757e8311ba61cb4c78a380cdd820553c7296816210f64b34619966f1540a407c8d6e8e30788909de19ede4116d09a14ce26ad59957add80b90602855c0134ba7fe8afd4493f7cd9ced61fda7d0ae02505c046acf68d68ecd9b1507a4d4eba4c2c834777b2c3c5a8b3c06677fe468072dcab48c1ac9deec30265c7f6c5864df89e25bba52715c82e9921db601b3935f5047b8cc07351b9965b1a1f6ef36c1fba89d9d96e332eacc1e8a78e09d7d6ba30845866449ed5264f763735d4e7cc133dba4b296b2dd9331efea01e5b3d05f38055e41c49993d679ef133b9b1af435fd0ac5fad33f571c76d02c40d4e301110b4442aa134364f0456da0cf362b2c27ebd667c0969ae09dad18becba9d6918fb1e741f685735cc7078f0e6328181a83da67516fac31522f9d9fc64a4b769e57e76bfff6f9867fa2fee1e7dddd11128322210e44eeef6db7269dfa1bfbd9099dd6f8219d585c22c20483251447772719a6115ccb690609de352989610a138110c884562b65de3cf63c3ebe9adfeb53c6e4ecc637c98b60161f71952b84c6fc4cea6af0ed533144bde4f8fbab2d3ffe0b2a5d0c55ec9979ea85a25045ad3a84becf0e891b89c1a83178d7368aea4bdfa0ebd46b8e110a2972c8ac96e10ac630e89f8d76bf35b03b5ecd393d1986fc61318e08ef02721e5f2cd2fe098ebcd1bd30a8f87b2a5650b51dd50d0d78ab7fe66490f5827372f1779d3d389e9fa66bd0296f0203af010d8f76783837cdde2555a90be577626a12de47d4da638efd0017750a230485f6ade34a27284d85dd87f9db8a832c571106d8296629418777b4d933fa049f0f4e5958c193e889305074091be14c66a4bf02cdfe1e8d26a5d21fa78c5628a7ee3d7a0c550296b2f0625e2dd18d45f2d45bee6746d4462c92bc3cf50503c7479bd121393821afe1cd7144ea37f4e8e5ee21f739024ad25af9430dee006b76617725556ff8a820b767fa821629819732f086a5fdf2ccb4edae0aceb3d6dea698e798ead905a2eef9065d633b007271e93101a71cbe385f56e32b3a8fb081c5c1ab09b729f89294a0007df3a3b8e93686020d993b812c6f85fe1618db897cd67be6cd5053dc8490bbebee133d140503c4aa51eea0c156523a1d81ae849dbe5a273bfc0de94836f8160ea9f146147fc02dd7b55dca6a2a43692268ee98f51fcd2d3faa76071d9716e877b2a3dcb51a51d5359a2ee705da52b43306f1f3caf33342fc281bc9c58d1ce05ecdeca371e3a788542f8fa999e4d8e10e66f0b6053d7d4cfc6acb815628bc2409b3dec01726121c267b3ee85fd61bbbdda68ae2c13026863e4a54b93d956fe692707a179411c841ca7d2f33a5223181b18b7ba2eebdd7c2a8dec3ac2a317b5fbd996e8598c394ee627308f0e887480a8dcd59b0256b636f4c62566501a733fa74232945ba1d9e2bae347391bf9ae2da4d3af2b262b772421fd3a5cab46862ea6049f5c9c76dd8549ce0e6c31c792b81b6b21f0bcca18bb2fa6a9d4d6e0a837bb119e2e002a69d6ca95a4b2acc463076c2e05731ef0cfaea84387a6baf6737cc14a25f5329ea924090311213344625a69ee382dd4bc72e00e63329956f3e021092585c9affa06a95bd0ef653ae9ff0abed5ee561ada4f83d8ef202d9c0b2225ebe8660cc408859d45e0332f4f78f6a339bce9d12ca2bc5116a8fd4007c485f5c1c41af96c41d96db35411842d7babc05c8b228066dccb9b67f348974363be521e41fa94d2034a0bc1e87360a80606e1e1bfa8e6399601b30bf93ac41129869158bc2b791b50e51519133ab58afd4023d4d721129b1307f054103a47c49e0524ac4df511c3409fa62d8b5c1a897794600f53efdcc987e06bffd77c9fc75fb7221ef29ed2f7e3e8abcb4a1875b85bd5176a6fba9a361d8684876508443bd50e630f4c684002b15930cf81d740b880eed25d22d8de8c00066790df084fea7c5021184a210a6d24f9bc862c4e3eafbb1782fa240ecfa5959d7a681bae84e8a96a5ff45dea4f9e16dd2cff2dccc6cf4042b44b7ad1f55dc1db5998ed40a409c0e67e1e64fab423d2c00fabb8976d9dacf0c82530e356a99f75082f3411adddfe4ab1ad3b55599fa15450dd5feee23591f1ce398e4c5ae8aad71ad26ea189c333c8467d1eaba9589bb8c41bbfe8c0c173e5446bc06b578c1db849fabe5fcd8fe0fca94bdc799b53b897249826037499e8b6213d640724fda1bcc9341ac61fbea02c8f39a53c496902d5c7922f678a273cdf5ffff38ea028ae19dc72f0b0688f2b9b7d5a9c04153c10ff4168cf9f243dea03b336be778f6c79d67a2d0ade82863eaf95d6fc7f745569864f369f4b39177c356c8c393bded485df28622f01251e58f3d39498520ff90e6c670f0dce5b494cb1d78dfad108406dc5857086d386bd42bd03fe716f049407e5e55caa0e73e96c1a4f6d5791ce7195b2ce72de52ed617ecefaeeabfa9350af49d1d91f9a4b97dc0808869b916f34ee242c40fe8c8aee57b6ddb69f9a10636e481dfa059ef001bad7020266f0d74b14edce6c18ffef854768a60885bad798658a6b9d0b438c483ba159346d5ce0771f53ff18e0bd47d8583bd56237f8da2747ac7eb2a87b6e26c4820d4fe18b76e06bb6e0c0cdf478b4aecd381c2a6ca9f10ec433f0aca63a66d04f70557baf9f2844005351a21664c2430fb0002cd03bcf0b2004068a2567f91a9fbee8c6d948fb35d48527b23e1398ce9f535e2b0b33c2bc31ab737ba4b980f46f5d424e33892c8093f3cd18510a3157afc023f63ad3ba999e950747c78c06ab141a26d74ffc049a6f76c465f9f9f03a8d339a8e61fef26a5239fbc11c01a87800c81efd7b9f28ee2ab2ed88a383f5013bfd6671ea3086121b235a0cc45ccb300c02588895f8d13ec7e00a3aaaa8b0e739f666fd1b13a90b23998704859c9c76108ed7ecdc63770e6ebaa0aeb9208b92ec4e948ac7fc81cc6f305f06c2f2d8c9267463af92e185ff627eed54313fa2ee0bff2cfa8be411982fd19fa88db5ec99f238f88782f8c7a957bef14f79351b63799a4cce160357c068987a5516b04c79644c140850cddc8bd5541fcca9e30826aad864240f434bd1fc67b58e3d664f782e9e46edcb34e2db98a39c23e334e51c71c9fa466470992cc1fbc36c3c8ff4340be67f9b85a74c9114cb9fe5ca4dcbb641ea17a54ba4658aeaa515109e117625a6196dd66d3584d293b468fce63b5a9c4b9461700c74ae955539bfbbe3eccfa7d9c9f737792a9d4b978baa2e92819e88340b73c88c2900b723248b18ae9414cb37a64ef8cb8ca85cda9677d9f1e71a6b70fe3ad17f2d13c1df48d93bfa50fd939a72ea26f9fbeaa6f8af2eec91b04a8fa7dc14fec0f54fcd1c5c848b4432f979f10e661cd2d7f8ff669ce99f9813fc5440fbbeb35f1a5e5115f5ca35dcc270bdbcae07a9ae8e22aabf8178379dee08874ec7840de27815890a88fc9a3bcfa88a33f9baef9af0ae01b2bd34a907f1151cb14bc8b396bc43a60f884f425e4a04348cc645aae68db49980139ddad0fed303e40b124fd654b36c961a56c44cc3686a7529b1f1ee47da3a0f1158542337df15780444790a2ff1b57e062f0db66730c9f98de395f939f44188225211c514447f67fcbf320a34c43ce09ed272bb992db3a35ae2c3c491c36f2de88984129fcea1ffd235aff7bef7fa95d65894db9a5f1b348efcb571a81b3d73ccd07cbef052389001e4d456800e05ca53bcf3485ce05791ff65a9f7913416ae26972f34f51a3270580b81307ce31c98eda06f3b35890ce317e79a16d728cd0bb6a3835667555c0c5138cfa5305a91db1f873b2a75b82ffcb27616ee67777708f7dc2ed9ddbeb38a60f446d3ac88ded25265c25ef38b0755a9d34bab5e669b6501d8c9787aae7eced9945cad3d4d1c32fa68b48a1d773750f814631db3e088c1b5e7ffa854ea1343d94ec1343918d7a1c5a095bb72b00eb3bff210aeec0b8a581a2a13429b83a193f4d447059265b63c4b8f8ea1b9494f65e79844d956c5d80780849dc086506e9eba002e682a1bae1543f8289588c574bb6ca9a2e57b908aaffed23ecf3536abaf96fe08291f3d70773288b4698e972b0187385dfff4cba59175814e75e7e5146205c7f2d2f749583b393f46c448c152d8be50d60ed8d8bdb30fc7925656a0f90b1de967c729980815e5f19ed453fbefcff67832cb90d753410a0b18eb7504600b11b0360c3d3594d48d832160d357afc1f17dc71dccabef7bbcf1fdd55b48cb02135c32650ab07b902f36b48be9376b2dd68343eacfe80d9dab3205a393a4c6ffd405f6db323dea11be4f22ce50df1e0cfec9e9b1e23acb94d66ea787d08f615a7c7288cdf1921a13a85d885e47cf1067d89ebad5b92ce5000000008d74bd2d5b78366f998cc35bf35e45d06128f1c5984fabee7542642bbf6d981b60759d3e7900e5b3d1d7310f90df0c88a600ff2f39932bf7411e61c692c9444dc9ae0dff28c0b94292c430ac4464e83ce8a29b886f45c98b8396667740c5be51e592eac0250d6e479505d36e930ca3a32cb671d58707d25b10e2660cd5e661b08e268c8bf1b3cbceb2d995a2a6fdfe5475cccc965f71baa7c84054e3bb6cbcb7167b06c708cd72ad4301e943dd1b2b2c325f682be3eaae730a8ed8bc3134b28d1ce04543bc66a529744561c42d25e65c7b5cc2a17875ebf35e53aa46e1edec29ff8d046a7e01459d9639c10d1df998cd9a12d7e50b2dc71ee7338cf71beb72d5020dc69eeafc354bf822d65ee0328eb07d04ac0d266fdb53227a158411da5ded254b3c359ee710e0278e1a06f06002538e108450fd6b11949fdc618a29baf34f232aa192230ddb318aa6d59d122257e50713fe73e6c0059399589c382dc901a8c3381139436f7331b69f457bbb38ed54daaa07a52cceb053c32690836c664b73d86261216b8610fc7b4d53dd3e5d9bcb3e25528e132911cac37e7f2618274c733b5ae02f9c27638d9e11988f1dfbb281ffd8cddf8558a481861cbe9d53a4ad8282d3587449cd51759ca397eda122d286e117d01539359870b94c98a3ce383ed1d280bcceb228acf73193e87fd3650e4dfd563cc55bfbc8626a41293cc90ef76e28e2dedaf968602d2997ae1c2752a0febe3a78f3756d40201ae13074091238324422caabe22c66b7866065264261fc2c3e0569493468d1c1c36259aedd5f078a231e72decd70f4de8532f6753287435296f33a096bc1c8b0ebb68c9f783881e45ac54159ec1c2f9e1f5cb48f96729a62d1b4fdaa89ef5de8741bca04e953534dc977e881a61281812af435206378eff173d7929ab4967e511bdc14e6d49cba517b0563c14fcd6ba38ef32bc48a00643416d7e34f7465b3e6240589d854db4d9714e998f2edf3a03986598a52aaf647d938f4a8e07c1c29615803af6cd403d261ad6da3c1c804034b4a4eef3ea1cc8db39d9e171b3f6dd074388577a4eb901c25c8031e4592cea80b6354850657f53b2acd910ec2c5a7db6abb0153e051dadfbcdf047e35591b96b5657ca55d99ef6fb48e07c34321cd20c40b30a646132f8afcb9426fe84a790567fb847076a8762ca29cfb037e0c948edc12122a1160a55d465f5c912406a10dc0d3c1156cd207e9ffe906d267c9c870521934e1c56af460c0ad0dea9c929acf85768e22bb65eca6e25e4ec8e6edb7a6215e8c7e5fdb56c7131b156ab6a78fc808f8f17a2708ff68b37778c00b3b546004fb2b2c588d8ca8276d281026bfe896698569814410422f27421b8fc5c09d47635f17ddf6b9f56a203c991514678c18a4afabe1eeca6fce1187fffcb6ebdacfc6cac9750766ed40c80e7eceb342a3fa6f86d014949f9d111bfd96e2a39d364f2e2722f2d9ab0577befe26055890161d780e52eff4022461c1d3b019b86af28c4f02fd1f7496d8c141344ad5756bcdc45158f3af7aac227c8853f607cae412db6fa924c039859fe455857bd5fde66cc1b773c12f516401a31c80d750079247c128a103361e7f0a392d21b4b1b594307ff6b37e5a242666209ec517561e04645b92e7cf3cff1a6c76c900d12d9556e2962c535401b1e61fa85e06551ed678703fb3bf8590f2608ae3c278b8d1ac286af38061afbbc3cb27ee7adc6ad299151cd00a84506e6a97648ff99f2a9d35d8421e71589437406fa8e6def8ce34c9abe5de3481c492887176d4485dac794b84567d5ebaf68d0007cb2256a0f1ce4318f6891f750fa9696fed3525059688cf973e70d688b1759cd0f3dfb0b2a7078174b978767cbdbfc3f7d5850e2f7772e2bd6e3ed69ef13cc141238b5ee04b6615e33c42fcd6cf979a0ac848458b713b9a988c1e3fc32f2a182fc0cab2e6933e9aa5c2d77db8c6a1802b43bd8220ff0ca92229fc26a44761d00eeebec834e5f7d382b4f58a2759c56e53b163dae034ffa1970acc57165746e575470e13c4044f392ae4bea93e7d666256436507bb987a247785301274d4f262f94989cdc94b209b7499bd0cb4437525b72be79c87c6076533e4a14799a60bd3563d46ee4767108bed7e637cfed6f3139637bb01f36385dc5873eed726fbec9a87da294cc11db8b49fe45b798ae74e1a8cb0f2907eb0178d2baf5f0f88f654baab9f147741945c496ddea1cfed65a82e913a131c4ac7bb6f0d8d5d28225dab8a33c6e60c0d2b2d5dbd8c35089f13f9a2ae81ec9addaefea9b8ddabc8cdeb6437381ce346db6e14d9d1e8bb4662b508d61da77fc8d9ebebceb1c23be5d0a7bba4a48c0591333ab7779bae78ff23c4bbf8a8cf30f3120a5b63a047064d7ed7d37191cf39b6d1e8ffe3b47379767bd691cb855a9c938e9a0235a5ec9c316a6dceca63fa5fe6df0b9f0d6b38add216aaf2726d3377ab827b00b4cbf490708a0f679b8cd7caadb3dee40cc98f778917d6a6263fcc0747bf75fd676d84abb7d10087da323f95c2571139fd4c9826ad5db6ee4c246b9da20592cae11f9264bd2945aa1a427b2acefb514a2daafbbae35ff761eb1e3b98b4a1dfca348b8c4ff96325a618d677180ceb7e916654ecc2deecb4e61d01080f44b98776b1b43aebeffe2c14006dd1d78c8babf1179f42fd20d87654d3246d41e9dc633eac1741be44f8d751d8c9fd57316fe06d60872939b7a2906bb27a299a3408a51d74e5d98417f05f85fc1b332e103e79203e9fe344dc1d1572de39d914c5270c839870d2b33da5a6efc08c4f0c8227cc35a7f77c6a55f80ceef90e217c80e5ecb4c236685f5219787b01612cfbac90794e8269c07fb7ca4f7dba4defb2aae2b37f7b1696e78de15dbb1b6d4ee0cc4c0fae274b2c2de9343862de1d9847515ad235b1837daa9b814f19e895ae3966ed262e3e7add9f19009e6b61462917b29502b67e124c43538a6bcab7296529e01bb26ab8b3ef094ed057383c4f92790b6f705ae9d943c4e8dad84f6ef82b54d062713c16960fb475d74d46a1b16062563da3391cc6ff5185162c31ff7339e4837e38adab8ab911abaaa006e313dd19a1f92b4f7bede4525b154e1b9f796136a85f3602da011ae2232be902347e08ce0bbf3d23d91c4aac11c8824caafa1d1ff0343ce655802c1915f3ae7c0c670b18e56e139be66a33613afcb3b1928613b3afba9d635070af678216d57023d1911f0eb7ebddefc96f0efd8e9dc10e8a87a68393e19733ef900c6264722940750ae16f664e445414e85e98570303c6d87d7f265cfae0a1e9314fc14674c2871c0d59bbe2eddaf9330a4e2a28673af73910d6cb90790f800e89d55a2930910a8430ade9551819d83d5ea6da4e58326b7ce555d01da86ea78200f0219ec92473da95cd5a632c525ca9fbcddebb8168881cdb2f5da787d0e31881e2b17d78184f3a0bed8662486d3937dab275d050b9dd5a2ce904208a91a467afc33e10fb6c1ca788a5ef30d6e8b615ec0ae1503fea7006569559b7b155c31b196b85881c5671173c06fc5373e9fd973e7111ed45874609bf3c88c6db732210a3ea04cb68662bbc2048bb55d811482af5c658e29bd18c57ffa25e88d7297cd20d4c2b13007cfae89f4dcd90177a0806a2ceb2095333b58f828c093b9bf63cd07e3d56a446fd12e755fd651211bc160948836939c17623b317b9e935307044bab2c11879a62288e7ecbbb97f10f52516f517b7b8e44cff5964fdfaf8044065056b48db13b1365004c336afa3535af1242c9b7271b8b1ba2213fcbb80926bcd394815cd7c27e3aeb2348dc45f5e06e32f5bd56d1c472f41b564ec0939cd012028412883cc098d086fd43858747b746be72b979d175f6a6447fc5908616dec7fc6c962e12e96e09bd068acd2fcf0ce1cc26d9f82b2b91bc9aafcbf8435011f73b6a8ea1bb2f3289b23236136b31656600762feff53e607df8cf3c9a7f257b212630c19f142e4cf5094250b629cabb145c77f1f14ad60ab7617078f810a766cfa341fb7c16086609bc0a768fb1cd782606f32b83a0a55d883269a05b80275612dc571cb993ea9e447b4d32570d412203ab4c8b050b63bb5ac0f8d6f4e9a1644e4b622587b2ae125c2093bd363493d58544d6303a0de17780fcd83e993aa83f4432274eee1e6333fcdc77bcfdea95b8b9ed787723e35b71f1dbe89ff1e3e6fde146c05b6fe9eae52b472624e412253a63e7fcf1b77dbff7509eec5a55501e222f66bd84d36663cd244fa1556bd34b4c9957a93a71e63961ffc7700c5545acdd3e79da41e1cfaca0956d4978222cda23a574d691dbb6c6bd083c70c2782c045bbbe0fcaa10efbc002af6832e3fa7dda0ec8ff6ded69302d55d5a62a7ec213f16ecc5e3304a83103d1c2b21e04e3f5f3730339a630a407e8cc6a5afd2f2ed78ff992035a3783a2708195a46e565a9113be8c228ccaae3510363b475732ad48fe8ff34801f4c35132359d4c5c5bff65141f4a8684d462cf5d97b44496440fff3f7a28d28bbaa8e6db2a6064cbe9fca4679afe8ca6dd27a25c56f3e58165040f19a0455199a0ece4583f060979427f2f3495f40a83bc6ee3eaadab18705d464662b8aba9c7aa2f29114f7acc247548a85bd44723064abeee18f7f558f6d0d74fa08103dd906124454745d23005c425b260b0034372123b642a0cbebbc1a0bcf0cfc3639876eceac5f9734057ff659cfd35b1a3eaa768b86d66244aabc23a45676a59d492614f1c0011c9253e53fc7bb3e20d303afdb5b6614dcc7bbf72a339e414672aac23c2e2983083f08dbc34e3452def00f402598b6aaa4f0d896d1648b1442621993b7d0c930560cb6152b9ce59f94356726816a224fca84da5dbde6675d20f546a3e4635e82ff9575cac9160e6819f", 0xfffffffffffffd8a, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000), &(0x7f00000000c0), 0xce4, r3}, 0x38)

950.535809ms ago: executing program 1 (id=1682):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0b00000007000000010001004900000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_route(0x10, 0x3, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket(0x400000000010, 0x3, 0x0)
socket$unix(0x1, 0x1, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0xc, 0x8, &(0x7f0000000d80)=ANY=[@ANYBLOB="1800000000000000000000000000000018020000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000000850000000d000000b70000000000000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r2, 0x3e8, 0xf, 0x0, &(0x7f0000000080)="c1df07000000d30a298ee688884787", 0x0, 0x3ff, 0x0, 0xf0, 0x0, 0x0, 0x0, 0x4}, 0x50)

950.078021ms ago: executing program 4 (id=1683):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
bind$inet6(r4, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
listen(r4, 0x4)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r4, 0x84, 0x1, &(0x7f0000000200)={0x0, 0xfd1c, 0x4, 0x400, 0xed, 0x1}, 0x14)
sendmmsg$inet6(r3, &(0x7f0000000000)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, &(0x7f0000000240)=[{&(0x7f0000000140)="f6", 0x1}], 0x1}}], 0x3ffffffffffffd1, 0x0)
r5 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000140), 0x40001, 0x0)
ioctl$IOMMU_TEST_OP_SET_TEMP_MEMORY_LIMIT(r5, 0x3ba0, &(0x7f0000000400)={0x48, 0x9, 0x0, 0x0, 0x541})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x6, 0x100000b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x16, 0x10, &(0x7f0000000800)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}, {{0x18, 0x1, 0x1, 0x0, r6}}, {}, [@call={0x85, 0x0, 0x0, 0xa0}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000200)='syzkaller\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001}, 0x94)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600707, 0x18)

875.021759ms ago: executing program 1 (id=1684):
r0 = socket$kcm(0x10, 0x2, 0x4)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000})
sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000840)="89000040120081ae08060cdc030000fe7f030006000000000001ffca1b1f0000000024c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00150c00014003080c00bdad446b31007a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947e", 0x75}, {&(0x7f0000000140)="11d6cb557c8496a2fe7a81f38210bfa9b70ee09c", 0x14}], 0x2}, 0x4000000)

811.902818ms ago: executing program 1 (id=1685):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, 0xffffffffffffffff, 0x0)
syz_clone(0x81000000, 0x0, 0x0, 0x0, 0x0, 0x0)
ftruncate(0xffffffffffffffff, 0xc17a) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) (async, rerun: 32)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async, rerun: 32)
syz_emit_ethernet(0x9a, &(0x7f00000000c0)=ANY=[@ANYBLOB="ffffffffffbfaaaaaaaaaabb86dd600107000064110000000000000000000000ffff64010102ff02000000000000000010c4b415e8b98fe50b0000000000014e220e2200309078020000000200000004000000bb577147f8c63bab95cc025f2c123662d48c6e01d8630bf2addfd0edf624317d8ab859c3d9fe9a2f9edb8e36339e135d1f142a168a75d33e838bef40d2fcff6cb8d91538c6c43b46ecc74e84"], 0x0) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) (async)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600002, 0x600002, 0x7, &(0x7f0000a00000/0x600000)=nil)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil) (async)
mbind(&(0x7f00005f7000/0x2000)=nil, 0x2000, 0x1, 0x0, 0x0, 0x0) (async)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
r2 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffa)
request_key(&(0x7f0000000000)='cifs.spnego\x00', &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000080)='\x00', r2)
keyctl$read(0xb, r2, &(0x7f0000000000)=""/28, 0x1c)

577.113426ms ago: executing program 1 (id=1686):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000080)={0x15, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="7daa000000000000711013000000000089a3d4ff0000000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="1f00000000000000000000000010"], 0x48)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_X86_SET_MSR_FILTER(r1, 0x4104aec6, 0x0)
socket$packet(0x11, 0x2, 0x300)
socket$packet(0x11, 0x2, 0x300)
r2 = memfd_create(&(0x7f0000000500)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x1c\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\x83\x11\v}k+\xeb\xc3\xc0O\xae\xd2\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xac\xbe\xe1}knh#\xcf)\x0f\xc8\xc0\"\x9cc\x10d\xee\xa9\x8b\x06\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\xcf~\xb901nEy\x82\x83\x80\xd3O\x00|hP\x00\x00\x00\x00\x00\x00\x00\x05\x86\xfe\xd9\xa5\xc6\nSy\xa3N\xba-]\'q\xc6\xfb\x02\x9a\xa9Z\xa8\x80Bx\xbd74\xcf\"\xa5\xea$\x95\xfd\x06T\xef\x89\xe4j\x06\xdc\x15\xe7\xc3\xb5H\xf7\xdc\xee\x182\xab\xe2?\"\xbewm\x9d\xd8x\xd92\xeeS/\xd2\xcd[\x9dcO1\xcb\x12lZ$\xa7\x9d\xf8b\xf6}\xc5``\xfe0\x8a\'v-\x99`?\x97\x8c\xdd\xd6\xfa\xa2\x06>\xf3\xe2uI\xe65C\xdb\x84\xe6eU\xe8RK\xd6=s\xcd\x9d\x1f#3\xc5\x16\xd0\xbbD\xc5\xde\xc8/\v\xa5W\xbep\x87\x15\x10\xcdm\xa7\x93\x01\x1c,9V8\xdc\xfd\xb7\xc0\xfc\x04\x00p\xad\x12\xb2\xbf\xfbFZ\x1a\f\x99\x05\xe4\x1eP\xed\x87\x89\xbeo\xfbv\xb6\x8a\xee\xf6Oc8\xaf\x11[\xc3\x98w-\xf0\xb2z\xc7\xaf;\x92\xad4\x1b\x92L\x97<\xbdh\x80\xf2\xc0\xd0n)K\xf2#Ncp\xe4\xb4\xfb\x94\x18\xc2-TWA\x13\xfe\xea\xad\v\xc4\xa5\x02\xf9\xed]\xf4\\\x01\xab\xdc\xb6\xcdP\x93\xf2\xc3\x96\xf2\xc0\xd6-x\xd5\xd6\xc7\x9d\xa5\x1f\xd2t\xd7\x8f}b\x9749\xd4a7\x18\xe0\x91KV7[\xb8\x8dL\xc8\xc8\x8f>sbE\xf5\xa7\xdb|\xb0m\x16c\x84\r\"\xf2\x92s\xeb\xaf\x1c\x00\xf4\x8dL\xa5\x10\x89FB\xfb8\xf9\x9d\xcbm\x1c\x91\xe9fd$5\xdc\xad\xec\xef\x90\xd9\xefX\xd2m\x9e\xec\x94w\xb3\xf9\xd9\x0eu-z\x81\xbb\xa6\xc0\x00\xa1\xd9\xcbI\xda\xa3\b\x9e@\xb8\xc8k\xdeQ/\xb8X\x9c\xff4Np~\xc4\xc1_\x1c#zX\a\xd41\x1c\x7fH\x91\xd9k\x05\x1f\n\b\b\x88\xd6\xcf4i\xa0B\xe7\x9c\x9c\xe6\xcax\xca\xa1E#6\xe9\xf31W\xd0\x1bY3/\x00I#\xfa\xb0\f\xd5!\x9fR[\x0e\xdb`\xdb\x82M\'k\x16(\xfa\xc2\xec\x96e\\Q\xe9\x19\xe1u\x86\xcb\xc3\xb0\xb8\x19\xb9l\x1fk!R\xb1P\x8b\xda\xffE\x89\x97\n\x17m\xd10\x1a\xe7Qz\xd8\bi\x8dRw+\xa1^N\xaf\x1b\x1dg\x8f$\xbe\x93\x8d\x8b\xfd\r\xee<\x84\x95\x82)TH\xcac9\x98\x13WW@;\xb4\xd5\x0f\xa1\xb3xX(\x80\xe8\x89\xed e.\xe04\xba\x9c=\xc6\x04\f\xbf\x06\xce5\xf99GD8@\xd2\r\xd0\xdf@\xe3\xbe\"qq#]\x86W\tA\xa7\x91\x85\xae\x9c\x8dO\xa6\xa3\xf9i\x83\xc5\xa8C\x164\xef\xa4\\\a\xaa%\x94!3k]\xd5\xbe\'U\xf17', 0x1)
dup(r2)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
writev(r3, &(0x7f0000000000)=[{&(0x7f0000000080), 0x62}, {&(0x7f0000000100)="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", 0x682c}, {&(0x7f0000001480)="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", 0x1001}], 0x3)

513.037681ms ago: executing program 1 (id=1687):
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r0, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000000), &(0x7f00000001c0)='%pK    \x00'}, 0x1c)
sendmsg$IPSET_CMD_FLUSH(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc011}, 0x800)
r1 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffffd, {0x0, 0x0, 0x0, r2, {0x0, 0xfff3}, {0xffff, 0xffff}, {0xffe0, 0x3}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x4c840)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=@newtfilter={0x64, 0x2c, 0xf3f, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r2, {0xb, 0xc}, {0x0, 0xfff3}, {0xd, 0x4}}, [@filter_kind_options=@f_basic={{0xa}, {0x34, 0x2, [@TCA_BASIC_EMATCHES={0x30, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x1}}, @TCA_EMATCH_TREE_LIST={0x24, 0x2, 0x0, 0x1, [@TCF_EM_META={0x20, 0x1, 0x0, 0x0, {{0x7, 0x4, 0x4}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x5, 0xe, 0x1}, {0x5, 0xc0}}}, @TCA_EM_META_LVALUE={0x5, 0x2, [@TCF_META_TYPE_VAR='C']}]}}]}]}]}}]}, 0x64}, 0x1, 0x0, 0x0, 0x20041090}, 0x0)
r3 = socket(0x10, 0x3, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_inet_SIOCSARP(r4, 0x8955, &(0x7f0000000500)={{0x2, 0x4e22, @multicast2}, {0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x43}}, 0x28, {0x2, 0x4e20, @initdev={0xac, 0x1e, 0x0, 0x0}}, 'batadv0\x00'})
r5 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000040)={'veth0_to_team\x00', 0x7101})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r0}, &(0x7f0000000340), &(0x7f0000000580)=r0}, 0x1c)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0xc, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r6 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r6, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000500)='/sys/kernel/address_bits', 0x202, 0x0)
ioctl$LOOP_CONFIGURE(0xffffffffffffffff, 0x4c0a, &(0x7f0000000080)={0xffffffffffffffff, 0x0, {0x0, 0x0, 0x0, 0x6, 0x4000000000000ffd, 0x0, 0x0, 0x1d, 0x14, "faf98317e5a1149989fc8dbe43ea6acc96e3a2503dc3bd3fe37d58128bbad0099cebdc25f5d69098c8b534464c516bdd8a0f350000e35abdb80e38f5eb010001", "32d8cc263d9e234b02000000000000004a6783cdd3dfe7800b2d7b6aa54cc5001fcaed1e831fa79a000000020000000000000400", "67523760fd40f78d2cfc03d81a8ca55ba139c01802c4dae4162e43ac61b7ad33", [0x8, 0x5]}})
r7 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x0, 0x0)
ioctl$COMEDI_DEVCONFIG(r7, 0x40946400, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f00000003c0)={{{@in6=@ipv4={""/10, ""/2, @remote}, @in=@multicast2}}, {{@in=@dev}, 0x0, @in6=@private0}}, &(0x7f0000000540)=0xe4)

488.762388ms ago: executing program 2 (id=1688):
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
socket(0x400000000010, 0x3, 0x0)
socket$unix(0x1, 0x1, 0x0)
socket$unix(0x1, 0x1, 0x0)
socket$unix(0x1, 0x1, 0x0)
socket(0x400000000010, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$kcm(0x11, 0x3, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000006c0)={'bridge_slave_1\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000700)=ANY=[@ANYBLOB="1c0000005e000100000000000001000002000000", @ANYRES32=r2, @ANYRES32=r0], 0x1c}}, 0x0)

427.158969ms ago: executing program 3 (id=1689):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x1, 0x4, &(0x7f0000006680))
openat$vga_arbiter(0xffffffffffffff9c, 0x0, 0x80082, 0x0)
sendfile64(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x80)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0xc1)
openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000100)='./file0\x00', &(0x7f00000004c0), 0x20, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
openat$sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_rfc1337\x00', 0x2, 0x0)
unlinkat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file1\x00', 0x0)
r0 = socket(0x10, 0x3, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/hardlockup_count', 0x800, 0x4)
read$char_usb(r1, &(0x7f0000000040)=""/236, 0xec)
io_uring_register$IORING_REGISTER_FILES_UPDATE2(r1, 0xe, &(0x7f0000001cc0)={0x8, 0x0, &(0x7f0000001c40)=[{&(0x7f00000002c0)=""/109, 0x6d}, {&(0x7f0000000c40)=""/4096, 0x1000}], &(0x7f0000001c80)=[0x1], 0x2}, 0x20)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000740)=ANY=[@ANYBLOB="7000000010000304000080000000000000007400", @ANYRES32=r2, @ANYBLOB="0000000003120100500012800b0001006272696467650000400002800800050001000000060027"], 0x70}, 0x1, 0x0, 0x0, 0x800}, 0x40)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0xc048894)
r3 = socket(0x10, 0x6, 0x785f4d85)
setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000080)='dctcp-reno', 0xa)
setxattr$trusted_overlay_redirect(&(0x7f0000000240)='./file1\x00', &(0x7f0000000340), &(0x7f00000003c0)='./file0/file1\x00', 0xe, 0x1)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125093, 0x0)
ioctl$UFFDIO_ZEROPAGE(r1, 0xc020aa04, &(0x7f0000000180)={{&(0x7f0000000000/0x3000)=nil, 0x3000}})

426.781725ms ago: executing program 1 (id=1690):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000500)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_tcp(0x2, 0x1, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x100, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x8)
ioctl$KVM_HYPERV_EVENTFD(r2, 0x4018aebd, &(0x7f0000000080)={0x4000})
openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x68c81, 0x0)
openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000), 0x8502, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$COMEDI_DEVCONFIG(0xffffffffffffffff, 0x40946400, &(0x7f0000000100)={'aio_iiro_16\x00', [0x8001, 0x2000000a, 0x4, 0x4, 0x2, 0x4, 0x7f, 0x7, 0x1, 0x7fff, 0x5e, 0x1, 0x8, 0x40000002, 0x6, 0x4, 0x4001, 0x9, 0x8, 0x40000003, 0x89, 0x10d, 0xf2a, 0x2, 0xd, 0x8, 0x5, 0x40000006, 0x6, 0x10001, 0xfffffff4]})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1)
r7 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r8 = dup(r7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r8, 0x6000)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1)
ioctl$KVM_PRE_FAULT_MEMORY(r6, 0xc040aed5, &(0x7f00000000c0)={0xf000, 0x118000})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
prctl$PR_SET_MM(0x23, 0x7, &(0x7f0000ffd000/0x3000)=nil)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, &(0x7f0000000200)='source', &(0x7f00000002c0)='\\/\xe9\x838\x9d<\f\x91\a\xd4$\xae$\x91&6n @\xf4M\xba\xf2<\xd6A\xdb\xd7\xbeY@g\xcc\xca\n@\x06\xa3\xfe%\x02\x96\xb7b\xa7\x15R.\xa3`fd\xdc\x8b\x18rBl{\x82\xda\xbeA\x17\n\f\xcd=\'\x11\x1bZ\x8e\xa1\xc3j$v\xefw\x96/\xff\xa2\xfc\xe3\xb8\xc7\x0f\xaaQ\x98F*T\xd5\xcd4g+\xbd\xd1\xe0R\x9d\x18\x19a:\xa2\xdf\xbe\x8b\x89\x81', 0x0)

375.63826ms ago: executing program 3 (id=1691):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0) (async)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000005580)='/sys/kernel/vmcoreinfo', 0x80cc0, 0x0)
sendfile(r1, r2, 0x0, 0x1335f0a6) (async)
bind$inet6(r0, &(0x7f0000000180)={0xa, 0x4e22, 0x0, @loopback}, 0x1c)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0) (async)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r4, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0xbe, &(0x7f00000006c0)=ANY=[@ANYBLOB="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"], 0x0)
r5 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x23, &(0x7f00000004c0)={{{@in=@multicast1, @in=@broadcast, 0x0, 0x8001, 0x0, 0x0, 0xa, 0x0, 0x80, 0x5e}, {0x0, 0x0, 0x0, 0x800, 0x7}, {0x0, 0x100, 0x40000e6}, 0x0, 0x0, 0x0, 0x0, 0x2}, {{@in=@remote, 0x404d3, 0x2b}, 0x0, @in=@multicast2, 0x3502, 0x0, 0x0, 0x0, 0x0, 0x6}}, 0xe8)
r6 = socket$key(0xf, 0x3, 0x2)
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r7, 0x84, 0x6b, &(0x7f0000000380)=[@in6={0xa, 0x0, 0x0, @remote, 0x9}], 0x1c) (async)
recvmsg(r7, &(0x7f00000008c0)={0x0, 0x0, 0x0}, 0x0) (async)
setsockopt(r7, 0x84, 0x7f, &(0x7f0000000040)="020000000980ffff", 0x8) (async)
setsockopt$sock_int(r6, 0x1, 0x8, &(0x7f00000001c0), 0x4) (async)
sendmsg$key(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=ANY=[@ANYBLOB="020b000102"], 0x10}}, 0x0)
sendmsg$key(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="0212000002"], 0x10}}, 0x0) (async)
r8 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0xf9, 0x7fff7ffc}]})
close_range(r8, 0xffffffffffffffff, 0x200000000000000) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2b}, 0x94)
syz_emit_vhci(&(0x7f0000000300)=ANY=[@ANYBLOB="040e04093520"], 0x7) (async)
r9 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7}, 0x94)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r9, 0x5, 0x1, 0x0, &(0x7f0000000080)='%', 0x0, 0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x4c) (async)
recvmmsg(r4, &(0x7f00000027c0)=[{{0x0, 0x0, &(0x7f0000002580)}, 0x200}, {{&(0x7f00000000c0)=@isdn, 0x80, &(0x7f0000000a40)=[{&(0x7f00000003c0)=""/179, 0xb3}, {&(0x7f0000000900)=""/143, 0x8f}, {&(0x7f00000009c0)=""/74, 0x4a}], 0x3}, 0x9}, {{&(0x7f0000000a80)=@alg, 0x80, &(0x7f0000000e80)=[{&(0x7f0000000b00)=""/60, 0x3c}, {&(0x7f0000000b40)=""/231, 0xe7}, {&(0x7f0000000c40)=""/216, 0xd8}, {&(0x7f0000000d40)=""/111, 0x6f}, {&(0x7f0000000dc0)=""/135, 0x87}], 0x5, &(0x7f0000000ec0)=""/229, 0xe5}, 0x80}, {{&(0x7f0000000fc0)=@can, 0x80, &(0x7f0000002400)=[{&(0x7f0000001040)=""/182, 0xb6}, {&(0x7f0000001100)=""/18, 0x12}, {&(0x7f0000001140)=""/107, 0x6b}, {&(0x7f00000011c0)=""/19, 0x13}, {&(0x7f0000001200)=""/108, 0x6c}, {&(0x7f0000001280)=""/210, 0xd2}, {&(0x7f0000001380)=""/4096, 0x1000}, {&(0x7f0000002380)=""/70, 0x46}], 0x8, &(0x7f0000002440)=""/254, 0xfe}, 0x80000001}, {{0x0, 0x0, &(0x7f0000002640)=[{&(0x7f0000002540)=""/76, 0x4c}, {&(0x7f00000025c0)=""/81, 0x51}], 0x2, &(0x7f00000026c0)=""/232, 0xe8}, 0x8b40}], 0x5, 0x40002103, 0x0) (async)
sendto$inet6(r3, 0x0, 0x0, 0x24040014, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @empty}, 0x1c) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={0x0}, 0x1, 0x0, 0x0, 0x4008848}, 0xc884) (async)
socket$inet_udp(0x2, 0x2, 0x0)

274.622313ms ago: executing program 2 (id=1692):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000500)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_tcp(0x2, 0x1, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x100, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x8)
ioctl$KVM_HYPERV_EVENTFD(r2, 0x4018aebd, &(0x7f0000000080)={0x4000})
openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x68c81, 0x0)
openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000), 0x8502, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$COMEDI_DEVCONFIG(0xffffffffffffffff, 0x40946400, &(0x7f0000000100)={'aio_iiro_16\x00', [0x8001, 0x2000000a, 0x4, 0x4, 0x2, 0x4, 0x7f, 0x7, 0x1, 0x7fff, 0x5e, 0x1, 0x8, 0x40000002, 0x6, 0x4, 0x4001, 0x9, 0x8, 0x40000003, 0x89, 0x10d, 0xf2a, 0x2, 0xd, 0x8, 0x5, 0x40000006, 0x6, 0x10001, 0xfffffff4]})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1)
r7 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r8 = dup(r7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r8, 0x6000)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1)
ioctl$KVM_PRE_FAULT_MEMORY(r6, 0xc040aed5, &(0x7f00000000c0)={0xf000, 0x118000})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
r9 = fsopen(&(0x7f0000000280)='cifs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r9, 0x1, &(0x7f0000000200)='source', &(0x7f00000002c0)='\\/\xe9\x838\x9d<\f\x91\a\xd4$\xae$\x91&6n @\xf4M\xba\xf2<\xd6A\xdb\xd7\xbeY@g\xcc\xca\n@\x06\xa3\xfe%\x02\x96\xb7b\xa7\x15R.\xa3`fd\xdc\x8b\x18rBl{\x82\xda\xbeA\x17\n\f\xcd=\'\x11\x1bZ\x8e\xa1\xc3j$v\xefw\x96/\xff\xa2\xfc\xe3\xb8\xc7\x0f\xaaQ\x98F*T\xd5\xcd4g+\xbd\xd1\xe0R\x9d\x18\x19a:\xa2\xdf\xbe\x8b\x89\x81', 0x0)

274.465813ms ago: executing program 3 (id=1693):
r0 = syz_open_dev$vim2m(&(0x7f00000001c0), 0x1f7ff6, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000040)={0x1, 0x1, 0x1})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xe1000, 0x280000b, 0x28011, r0, 0x1000000)

0s ago: executing program 3 (id=1694):
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
clock_settime(0x0, &(0x7f0000000240)={0x77359400})
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, 0x0, 0x0)
r1 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0301, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, &(0x7f0000001340))
ioctl$SNDCTL_DSP_CHANNELS(r1, 0xc0045006, &(0x7f0000000180)=0x6f)
write$dsp(r1, &(0x7f00000012c0)="a52876830a602214f6b4e928d758f38a5a7cb4b31c4c09289e9ebb6286784ca3", 0x4000)
syz_usb_connect(0x0, 0x24, 0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
write$UHID_INPUT(r3, &(0x7f0000010140)={0x8, {"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", 0x1000}}, 0x1006)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x5, 0x10012, r3, 0x0)
r4 = openat$zero(0xffffff9c, &(0x7f0000000280), 0x80200, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION2(r3, 0x40a0ae49, &(0x7f0000000400)={0x1fe, 0x80a389b74c0437d1, 0x70000, 0x1000, &(0x7f0000ffe000/0x1000)=nil, 0x800, r4})
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, &(0x7f0000000000)=0x639)
readv(0xffffffffffffffff, &(0x7f0000000180)=[{&(0x7f00000000c0)=""/162, 0xa2}, {0x0}], 0x2)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(0xffffffffffffffff, 0xc1105517, &(0x7f00000002c0)={{0x0, 0x6, 0xfefe, 0x0, 'syz0\x00', 0xfffffefd}, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 'syz0\x00', 0x0})
pipe(&(0x7f0000000000)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
vmsplice(r6, &(0x7f00000000c0)=[{&(0x7f0000000180)="77690addcfbe1fbb66ec", 0xff3b}], 0x1, 0x1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
splice(r7, 0x0, r6, 0x0, 0x10000008ebc, 0x0)
splice(r5, 0x0, r8, 0x0, 0x25a5, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'ipvlan1\x00'})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x2004c084}, 0x4000)

kernel console output (not intermixed with test programs):

181] futex_wake_op: syz.2.968 tries to shift op by -1; fix this program
[  266.470541][ T9223] futex_wake_op: syz.2.978 tries to shift op by -1; fix this program
[  268.176697][ T9254] futex_wake_op: syz.3.988 tries to shift op by -1; fix this program
[  269.160380][ T9282] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  269.665675][ T9289] futex_wake_op: syz.2.997 tries to shift op by -1; fix this program
[  270.877254][  T855] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  271.377265][ T1431] ieee802154 phy0 wpan0: encryption failed: -22
[  271.422309][ T1431] ieee802154 phy1 wpan1: encryption failed: -22
[  271.528692][  T855] usb 5-1: Using ep0 maxpacket: 16
[  271.923779][  T855] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  271.927980][  T855] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  271.932871][  T855] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  271.945828][  T855] usb 5-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  271.952634][  T855] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  271.962238][  T855] usb 5-1: config 0 descriptor??
[  272.526742][ T9310] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1003'.
[  272.841091][ T9310] random: crng reseeded on system resumption
[  273.059141][  T855] usbhid 5-1:0.0: can't add hid device: -71
[  273.063988][  T855] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  273.077565][  T855] usb 5-1: USB disconnect, device number 7
[  276.327434][  T855] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  276.487432][  T855] usb 5-1: Using ep0 maxpacket: 16
[  276.493221][  T855] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  276.508797][  T855] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  276.513146][  T855] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  276.519566][  T855] usb 5-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  276.522908][  T855] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  276.526420][ T9415] futex_wake_op: syz.1.1035 tries to shift op by -1; fix this program
[  276.538044][  T855] usb 5-1: config 0 descriptor??
[  276.993016][ T9404] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1030'.
[  277.086459][ T9404] random: crng reseeded on system resumption
[  277.176535][  T855] usbhid 5-1:0.0: can't add hid device: -71
[  277.178599][  T855] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  277.199151][  T855] usb 5-1: USB disconnect, device number 8
[  277.826639][ T9441] fuse: Bad value for 'group_id'
[  277.828843][ T9441] fuse: Bad value for 'group_id'
[  278.111719][  T841] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  278.272384][  T841] usb 6-1: Using ep0 maxpacket: 16
[  278.276910][  T841] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  278.281010][  T841] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  278.284395][  T841] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  278.289009][  T841] usb 6-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  278.292052][  T841] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  278.297987][  T841] usb 6-1: config 0 descriptor??
[  278.410908][ T5822] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  278.581929][ T5822] usb 7-1: Using ep0 maxpacket: 16
[  278.585059][ T5822] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  278.588767][ T5822] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  278.591964][ T5822] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  278.596284][ T5822] usb 7-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  278.599299][ T5822] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  278.604572][ T5822] usb 7-1: config 0 descriptor??
[  278.739166][ T9443] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1043'.
[  278.835091][ T9443] random: crng reseeded on system resumption
[  278.913420][  T841] usbhid 6-1:0.0: can't add hid device: -71
[  278.916693][  T841] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  278.923925][  T841] usb 6-1: USB disconnect, device number 9
[  279.050835][ T9454] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1046'.
[  279.249119][ T9454] random: crng reseeded on system resumption
[  279.343927][ T5822] usbhid 7-1:0.0: can't add hid device: -71
[  279.346070][ T5822] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  279.624614][ T5822] usb 7-1: USB disconnect, device number 6
[  281.118785][ T5831] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  281.927085][ T5831] usb 5-1: Using ep0 maxpacket: 16
[  281.939433][ T5831] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  281.948228][ T5831] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  281.954375][ T5831] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  281.964509][ T5831] usb 5-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  281.969516][ T5831] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  281.973739][ T5831] usb 5-1: config 0 descriptor??
[  281.998074][ T9509] fuse: Invalid rootmode
[  282.415829][ T9491] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1055'.
[  282.498704][ T9491] random: crng reseeded on system resumption
[  282.562188][ T5831] usbhid 5-1:0.0: can't add hid device: -71
[  282.569368][ T5831] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  282.576846][ T5831] usb 5-1: USB disconnect, device number 9
[  284.534074][    T0] NOHZ tick-stop error: local softirq work is pending, handler #240!!!
[  285.017356][ T6222] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  285.102784][ T9558] fuse: Bad value for 'rootmode'
[  285.228616][ T6222] usb 6-1: Using ep0 maxpacket: 16
[  285.245909][ T6222] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  285.251228][ T6222] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  285.256123][ T6222] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  285.262432][ T6222] usb 6-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  285.266455][ T6222] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  285.298186][ T6222] usb 6-1: config 0 descriptor??
[  285.794319][ T9549] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1069'.
[  285.934860][ T9562] random: crng reseeded on system resumption
[  287.498962][ T6222] usbhid 6-1:0.0: can't add hid device: -71
[  287.501306][ T6222] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  287.525752][ T6222] usb 6-1: USB disconnect, device number 10
[  289.841531][ T9621] futex_wake_op: syz.2.1088 tries to shift op by -1; fix this program
[  292.481663][ T9664] futex_wake_op: syz.3.1099 tries to shift op by -1; fix this program
[  293.907111][ T5844] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  294.076666][ T5844] usb 6-1: Using ep0 maxpacket: 16
[  294.083271][ T5844] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  294.087409][ T5844] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  294.093202][ T5844] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  294.104099][ T5844] usb 6-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  294.107260][ T5844] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  294.113761][ T5844] usb 6-1: config 0 descriptor??
[  294.557376][ T9691] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1106'.
[  294.725761][ T9691] random: crng reseeded on system resumption
[  295.643078][ T5844] usbhid 6-1:0.0: can't add hid device: -71
[  295.699211][ T5844] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  295.704850][ T5844] usb 6-1: USB disconnect, device number 11
[  295.847329][ T9733] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1116'.
[  295.850356][ T9733] netem: invalid attributes len -8
[  295.852441][ T9733] netem: change failed
[  295.978823][  T855] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[  296.139402][  T855] usb 8-1: Using ep0 maxpacket: 16
[  296.145992][  T855] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  296.153680][  T855] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  296.163795][  T855] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  296.173113][  T855] usb 8-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  296.179512][  T855] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  296.195449][  T855] usb 8-1: config 0 descriptor??
[  296.433708][ T9752] fuse: Unknown parameter 'use00000000000000000000'
[  296.638646][ T9726] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1114'.
[  296.714594][ T9726] random: crng reseeded on system resumption
[  296.806961][  T855] usbhid 8-1:0.0: can't add hid device: -71
[  296.809307][  T855] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[  296.813322][  T855] usb 8-1: USB disconnect, device number 11
[  298.799981][  T855] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  298.911524][ T9808] fuse: Unknown parameter 'user_i00000000000000000000'
[  298.927178][ T9804] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1131'.
[  298.930435][ T9804] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1131'.
[  298.938279][ T9804] ip6gretap0: entered promiscuous mode
[  298.941070][ T9804] syz_tun: entered promiscuous mode
[  298.972428][  T855] usb 5-1: Using ep0 maxpacket: 16
[  298.976601][  T855] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  298.981836][  T855] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  298.986224][  T855] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  298.991976][  T855] usb 5-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  298.996416][  T855] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  299.004496][  T855] usb 5-1: config 0 descriptor??
[  299.454855][ T9789] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1129'.
[  299.538642][ T9789] random: crng reseeded on system resumption
[  299.619557][  T855] usbhid 5-1:0.0: can't add hid device: -71
[  299.626783][  T855] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  299.646176][  T855] usb 5-1: USB disconnect, device number 10
[  299.668277][ T9821] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1136'.
[  299.672301][ T9821] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1136'.
[  299.675278][ T9821] netlink: 'syz.3.1136': attribute type 11 has an invalid length.
[  299.678160][ T9821] netlink: 'syz.3.1136': attribute type 12 has an invalid length.
[  299.718320][ T5743] Bluetooth: hci1: Malformed HCI Event
[  301.177351][ T9854] futex_wake_op: syz.2.1145 tries to shift op by -1; fix this program
[  301.345550][ T9875] FAULT_INJECTION: forcing a failure.
[  301.345550][ T9875] name failslab, interval 1, probability 0, space 0, times 1
[  301.351642][ T9875] CPU: 1 UID: 0 PID: 9875 Comm: syz.2.1149 Not tainted syzkaller #0 PREEMPT(full) 
[  301.351665][ T9875] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  301.351676][ T9875] Call Trace:
[  301.351709][ T9875]  <TASK>
[  301.351716][ T9875]  dump_stack_lvl+0x100/0x190
[  301.351742][ T9875]  should_fail_ex.cold+0x5/0xa
[  301.351765][ T9875]  should_failslab+0xc2/0x120
[  301.351785][ T9875]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  301.351814][ T9875]  ? __alloc_skb+0x140/0x710
[  301.351836][ T9875]  __alloc_skb+0x140/0x710
[  301.351851][ T9875]  ? __alloc_skb+0x5b7/0x710
[  301.351867][ T9875]  ? __pfx___alloc_skb+0x10/0x10
[  301.351883][ T9875]  ? find_held_lock+0x2b/0x80
[  301.351907][ T9875]  ? fdb_to_nud+0xe7/0x330
[  301.351930][ T9875]  fdb_notify+0xa2/0x190
[  301.351953][ T9875]  __br_fdb_add+0x88f/0xd40
[  301.351982][ T9875]  br_fdb_add+0x5f4/0xdc0
[  301.352012][ T9875]  ? __pfx_br_fdb_add+0x10/0x10
[  301.352041][ T9875]  ? __nla_parse+0x40/0x60
[  301.352064][ T9875]  ? __pfx_br_fdb_add+0x10/0x10
[  301.352088][ T9875]  rtnl_fdb_add+0x644/0xab0
[  301.352113][ T9875]  ? __pfx_rtnl_fdb_add+0x10/0x10
[  301.352152][ T9875]  ? __pfx_rtnl_fdb_add+0x10/0x10
[  301.352187][ T9875]  rtnetlink_rcv_msg+0x3c9/0xe90
[  301.352209][ T9875]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  301.352235][ T9875]  ? ref_tracker_free+0x37e/0x6c0
[  301.352287][ T9875]  netlink_rcv_skb+0x159/0x420
[  301.352312][ T9875]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  301.352333][ T9875]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  301.352366][ T9875]  ? netlink_deliver_tap+0x1ae/0xcc0
[  301.352394][ T9875]  netlink_unicast+0x585/0x850
[  301.352439][ T9875]  ? __pfx_netlink_unicast+0x10/0x10
[  301.352475][ T9875]  netlink_sendmsg+0x8b0/0xda0
[  301.352504][ T9875]  ? __pfx_netlink_sendmsg+0x10/0x10
[  301.352531][ T9875]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  301.352561][ T9875]  ____sys_sendmsg+0x9e1/0xb70
[  301.352584][ T9875]  ? __pfx_netlink_sendmsg+0x10/0x10
[  301.352609][ T9875]  ? __pfx_____sys_sendmsg+0x10/0x10
[  301.352644][ T9875]  ___sys_sendmsg+0x190/0x1e0
[  301.352670][ T9875]  ? __pfx____sys_sendmsg+0x10/0x10
[  301.352707][ T9875]  ? find_held_lock+0x2b/0x80
[  301.352746][ T9875]  __sys_sendmsg+0x170/0x220
[  301.352766][ T9875]  ? __pfx___sys_sendmsg+0x10/0x10
[  301.352782][ T9875]  ? __fget_files+0x21f/0x3d0
[  301.352810][ T9875]  ? ksys_write+0x1ac/0x250
[  301.352832][ T9875]  ? rcu_is_watching+0x12/0xc0
[  301.352856][ T9875]  __do_fast_syscall_32+0xe7/0x950
[  301.352881][ T9875]  ? lockdep_hardirqs_on+0x78/0x100
[  301.352906][ T9875]  do_fast_syscall_32+0x32/0x70
[  301.352930][ T9875]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  301.352953][ T9875] RIP: 0023:0xf706efcc
[  301.352969][ T9875] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  301.352985][ T9875] RSP: 002b:00000000f545d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  301.353002][ T9875] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000800001c0
[  301.353013][ T9875] RDX: 0000000000000840 RSI: 0000000000000000 RDI: 0000000000000000
[  301.353023][ T9875] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  301.353033][ T9875] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  301.353043][ T9875] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  301.353066][ T9875]  </TASK>
[  301.629921][ T9876] netlink: 260 bytes leftover after parsing attributes in process `syz.0.1147'.
[  302.065286][ T9895] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1156'.
[  302.093489][ T9898] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1157'.
[  302.594019][ T9918] FAULT_INJECTION: forcing a failure.
[  302.594019][ T9918] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  302.599607][ T9918] CPU: 0 UID: 0 PID: 9918 Comm: syz.3.1163 Not tainted syzkaller #0 PREEMPT(full) 
[  302.599628][ T9918] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  302.599636][ T9918] Call Trace:
[  302.599641][ T9918]  <TASK>
[  302.599647][ T9918]  dump_stack_lvl+0x100/0x190
[  302.599684][ T9918]  should_fail_ex.cold+0x5/0xa
[  302.599704][ T9918]  _copy_from_user+0x2e/0xd0
[  302.599728][ T9918]  get_compat_msghdr+0xb3/0x4b0
[  302.599746][ T9918]  ? __pfx_get_compat_msghdr+0x10/0x10
[  302.599770][ T9918]  ___sys_sendmsg+0x1b6/0x1e0
[  302.599791][ T9918]  ? __pfx____sys_sendmsg+0x10/0x10
[  302.599820][ T9918]  ? find_held_lock+0x2b/0x80
[  302.599851][ T9918]  __sys_sendmsg+0x170/0x220
[  302.599866][ T9918]  ? __pfx___sys_sendmsg+0x10/0x10
[  302.599879][ T9918]  ? __fget_files+0x21f/0x3d0
[  302.599900][ T9918]  ? ksys_write+0x1ac/0x250
[  302.599918][ T9918]  ? rcu_is_watching+0x12/0xc0
[  302.599937][ T9918]  __do_fast_syscall_32+0xe7/0x950
[  302.599957][ T9918]  ? lockdep_hardirqs_on+0x78/0x100
[  302.599976][ T9918]  do_fast_syscall_32+0x32/0x70
[  302.599995][ T9918]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  302.600013][ T9918] RIP: 0023:0xf7f93fcc
[  302.600025][ T9918] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  302.600038][ T9918] RSP: 002b:00000000f545650c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  302.600052][ T9918] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000040
[  302.600061][ T9918] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  302.600068][ T9918] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  302.600075][ T9918] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  302.600083][ T9918] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  302.600101][ T9918]  </TASK>
[  303.137885][ T9924] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[  303.140409][ T9924] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  303.146189][ T9924] vhci_hcd vhci_hcd.0: Device attached
[  303.449470][  T855] usb 44-1: SetAddress Request (6) to port 0
[  303.451626][  T855] usb 44-1: new SuperSpeed USB device number 6 using vhci_hcd
[  303.852934][ T9926] vhci_hcd: connection reset by peer
[  303.863197][  T102] vhci_hcd vhci_hcd.3: stop threads
[  303.868608][  T102] vhci_hcd vhci_hcd.3: release socket
[  303.875004][  T102] vhci_hcd vhci_hcd.3: disconnect device
[  304.179374][ T9948] netlink: 'syz.2.1170': attribute type 1 has an invalid length.
[  304.184160][ T9948] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1170'.
qemu-system-x86_64: ahci: PRDT length for NCQ command (0x0) is smaller than the requested size (0x79000)
[  305.010641][ T1127] ata1.00: Read log 0x10 page 0x00 failed, Emask 0x1
[  305.016320][ T1127] ata1: failed to read log page 10h (errno=-5)
[  305.018400][ T1127] ata1.00: NCQ disabled due to excessive errors
[  305.021555][ T1127] ata1.00: exception Emask 0x1 SAct 0x4000 SErr 0x0 action 0x0
[  305.025442][ T1127] ata1.00: irq_stat 0x41000008
[  305.028492][ T1127] ata1.00: failed command: WRITE FPDMA QUEUED
[  305.031948][ T1127] ata1.00: cmd 61/c8:70:6e:2d:0a/03:00:00:00:00/40 tag 14 ncq dma 495616 out
[  305.031948][ T1127]          res 50/04:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error)
[  305.041506][ T1127] ata1.00: status: { DRDY }
[  305.043029][ T1127] ata1.00: error: { ABRT }
[  305.048162][ T1127] ata1.00: configured for UDMA/100
[  305.050718][ T1127] ata1: EH complete
[  305.324963][ T9959] warning: `syz.3.1171' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  306.782435][ T5831] usb 6-1: new full-speed USB device number 12 using dummy_hcd
[  306.956542][ T9972] futex_wake_op: syz.0.1175 tries to shift op by -1; fix this program
[  308.855677][  T855] usb 44-1: device descriptor read/8, error -110
[  309.326611][  T855] usb usb44-port1: attempt power cycle
[  309.518024][ T5831] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  309.699673][ T5831] usb 7-1: Using ep0 maxpacket: 8
[  309.705882][ T5831] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  309.712693][ T5831] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xE2, changing to 0x82
[  309.717881][ T5831] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  309.725769][ T5831] usb 7-1: New USB device found, idVendor=04e8, idProduct=ff30, bcdDevice=a6.d1
[  309.729970][ T5831] usb 7-1: New USB device strings: Mfr=1, Product=34, SerialNumber=3
[  309.733635][ T5831] usb 7-1: Product: syz
[  309.735731][ T5831] usb 7-1: Manufacturer: syz
[  309.737901][ T5831] usb 7-1: SerialNumber: syz
[  309.744275][ T5831] usb 7-1: config 0 descriptor??
[  309.795939][ T5831] rc_core: IR keymap rc-imon-rsc not found
[  309.800041][ T5831] Registered IR keymap rc-empty
[  309.806164][ T5831] rc rc0: iMON Station as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0
[  309.816158][ T5831] input: iMON Station as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0/input6
[  309.953753][  T855] usb usb44-port1: unable to enumerate USB device
[  310.221066][T10012] netlink: 'syz.2.1184': attribute type 1 has an invalid length.
[  310.226070][T10012] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1184'.
[  310.235557][T10012] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1184'.
[  310.351844][ T5154] usb 7-1: USB disconnect, device number 7
[  312.069819][T10022] lo speed is unknown, defaulting to 1000
[  312.599247][T10037] process 'syz.0.1196' launched './file1' with NULL argv: empty string added
[  312.670437][T10047] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1197'.
[  312.926998][ T6624] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  314.016834][ T6624] usb 5-1: Using ep0 maxpacket: 8
[  314.019857][ T6624] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  314.022570][ T6624] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  314.025809][ T6624] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  314.033033][ T6624] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  314.036265][ T6624] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  314.045186][ T6624] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  314.616711][ T6624] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  314.842362][ T6624] usb 5-1: usb_control_msg returned -71
[  314.844245][ T6624] usbtmc 5-1:16.0: can't read capabilities
[  314.918104][ T6624] usb 5-1: USB disconnect, device number 11
[  315.142293][T10089] lo speed is unknown, defaulting to 1000
[  315.172336][T10093] dlm: non-version read from control device 36
[  315.363847][T10094] lo speed is unknown, defaulting to 1000
[  315.423898][ T6624] IPVS: starting estimator thread 0...
[  315.534360][T10098] IPVS: using max 48 ests per chain, 115200 per kthread
[  316.008365][T10104] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  316.011420][T10104] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  316.016091][T10104] vhci_hcd vhci_hcd.0: Device attached
[  316.305789][ T5822] usb 40-1: SetAddress Request (6) to port 0
[  316.308555][ T5822] usb 40-1: new SuperSpeed USB device number 6 using vhci_hcd
[  316.684024][T10105] vhci_hcd: connection reset by peer
[  316.689412][   T87] vhci_hcd vhci_hcd.1: stop threads
[  316.691365][   T87] vhci_hcd vhci_hcd.1: release socket
[  316.693280][   T87] vhci_hcd vhci_hcd.1: disconnect device
[  316.739604][T10112] FAULT_INJECTION: forcing a failure.
[  316.739604][T10112] name failslab, interval 1, probability 0, space 0, times 0
[  316.747750][T10112] CPU: 3 UID: 0 PID: 10112 Comm: syz.3.1211 Not tainted syzkaller #0 PREEMPT(full) 
[  316.747773][T10112] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  316.747783][T10112] Call Trace:
[  316.747789][T10112]  <TASK>
[  316.747795][T10112]  dump_stack_lvl+0x100/0x190
[  316.747820][T10112]  should_fail_ex.cold+0x5/0xa
[  316.747842][T10112]  ? tomoyo_encode2+0xfb/0x3c0
[  316.747862][T10112]  should_failslab+0xc2/0x120
[  316.747883][T10112]  __kmalloc_noprof+0xe0/0x850
[  316.747909][T10112]  ? d_absolute_path+0x136/0x1b0
[  316.747931][T10112]  tomoyo_encode2+0xfb/0x3c0
[  316.747961][T10112]  tomoyo_encode+0x29/0x50
[  316.747980][T10112]  tomoyo_realpath_from_path+0x18c/0x690
[  316.748008][T10112]  tomoyo_path_number_perm+0x23c/0x580
[  316.748024][T10112]  ? tomoyo_path_number_perm+0x22e/0x580
[  316.748043][T10112]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  316.748060][T10112]  ? get_pid_task+0x106/0x250
[  316.748103][T10112]  ? find_held_lock+0x2b/0x80
[  316.748123][T10112]  ? __fget_files+0x215/0x3d0
[  316.748141][T10112]  ? hook_file_ioctl_common+0x149/0x410
[  316.748158][T10112]  ? __fget_files+0x215/0x3d0
[  316.748181][T10112]  ? __fget_files+0x21f/0x3d0
[  316.748204][T10112]  security_file_ioctl_compat+0xd3/0x230
[  316.748224][T10112]  __ia32_compat_sys_ioctl+0xc2/0x360
[  316.748244][T10112]  __do_fast_syscall_32+0xe7/0x950
[  316.748266][T10112]  ? lockdep_hardirqs_on+0x78/0x100
[  316.748289][T10112]  do_fast_syscall_32+0x32/0x70
[  316.748312][T10112]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  316.748334][T10112] RIP: 0023:0xf7f93fcc
[  316.748349][T10112] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  316.748365][T10112] RSP: 002b:00000000f543550c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  316.748381][T10112] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000040946400
[  316.748391][T10112] RDX: 00000000800000c0 RSI: 0000000000000000 RDI: 0000000000000000
[  316.748400][T10112] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  316.748409][T10112] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  316.748418][T10112] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  316.748442][T10112]  </TASK>
[  316.854412][T10112] ERROR: Out of memory at tomoyo_realpath_from_path.
[  316.917656][T10119] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1214'.
[  317.222663][  T855] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  317.521858][  T855] usb 5-1: Using ep0 maxpacket: 8
[  317.829129][  T855] usb 5-1: config 0 interface 0 altsetting 254 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  317.833862][  T855] usb 5-1: config 0 interface 0 altsetting 254 endpoint 0x81 has invalid wMaxPacketSize 0
[  317.838135][  T855] usb 5-1: config 0 interface 0 has no altsetting 0
[  317.840356][  T855] usb 5-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  317.843673][  T855] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  317.850659][  T855] usb 5-1: config 0 descriptor??
[  318.290351][  T855] mcp2221 0003:04D8:00DD.0002: unknown main item tag 0x0
[  318.293281][  T855] mcp2221 0003:04D8:00DD.0002: unknown main item tag 0x0
[  318.296471][  T855] mcp2221 0003:04D8:00DD.0002: unknown main item tag 0x0
[  318.299173][  T855] mcp2221 0003:04D8:00DD.0002: unknown main item tag 0x0
[  318.301628][  T855] mcp2221 0003:04D8:00DD.0002: unknown main item tag 0x0
[  318.304663][  T855] mcp2221 0003:04D8:00DD.0002: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.0-1/input0
[  318.623343][ T6624] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  318.710145][ T5831] usb 5-1: USB disconnect, device number 12
[  318.782834][ T6624] usb 7-1: Using ep0 maxpacket: 16
[  318.795548][ T6624] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  318.799591][ T6624] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  318.804928][ T6624] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  318.814609][ T6624] usb 7-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  318.820836][ T6624] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  318.905659][ T6624] usb 7-1: config 0 descriptor??
[  319.466395][T10137] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1218'.
[  319.617309][T10137] random: crng reseeded on system resumption
[  319.852299][ T6624] usbhid 7-1:0.0: can't add hid device: -71
[  319.856322][ T6624] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  319.870385][ T6624] usb 7-1: USB disconnect, device number 8
[  320.462420][T10169] netlink: 'syz.1.1228': attribute type 1 has an invalid length.
[  320.517524][T10171] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1228'.
[  320.698626][T10169] bond1: entered promiscuous mode
[  320.700660][T10169] 8021q: adding VLAN 0 to HW filter on device bond1
[  320.714494][T10171] 8021q: adding VLAN 0 to HW filter on device bond1
[  320.717626][T10171] bond1: (slave vcan1): The slave device specified does not support setting the MAC address
[  320.721731][T10171] bond1: (slave vcan1): Setting fail_over_mac to active for active-backup mode
[  320.728527][T10171] bond1: (slave vcan1): making interface the new active one
[  320.731490][T10171] vcan1: entered promiscuous mode
[  320.737243][T10171] bond1: (slave vcan1): Enslaving as an active interface with an up link
[  320.780412][T10174] syz.2.1229 uses obsolete (PF_INET,SOCK_PACKET)
[  321.408445][T10186] capability: warning: `syz.1.1231' uses deprecated v2 capabilities in a way that may be insecure
[  321.751924][ T5822] usb 40-1: device descriptor read/8, error -110
[  322.235065][ T5822] usb usb40-port1: attempt power cycle
[  322.683293][ T1346] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  322.704591][ T5844] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  322.854343][ T1346] usb 6-1: Using ep0 maxpacket: 16
[  322.854635][ T5822] usb usb40-port1: unable to enumerate USB device
[  322.858311][ T1346] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  322.864000][ T1346] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  322.868211][ T1346] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  322.873575][ T1346] usb 6-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  322.879702][ T5844] usb 5-1: Using ep0 maxpacket: 8
[  322.882214][ T1346] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  322.888080][ T5844] usb 5-1: config 0 interface 0 altsetting 254 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  322.895686][ T5844] usb 5-1: config 0 interface 0 altsetting 254 endpoint 0x81 has invalid wMaxPacketSize 0
[  322.902913][ T5844] usb 5-1: config 0 interface 0 has no altsetting 0
[  322.912287][ T1346] usb 6-1: config 0 descriptor??
[  322.922225][ T5844] usb 5-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  322.939453][ T5844] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  322.952435][ T5844] usb 5-1: config 0 descriptor??
[  322.990139][T10228] fuse: Unknown parameter '0x0000000000000003'
[  323.368245][T10222] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1242'.
[  323.449963][T10222] random: crng reseeded on system resumption
[  323.491725][ T5844] mcp2221 0003:04D8:00DD.0003: unknown main item tag 0x0
[  323.494981][ T5844] mcp2221 0003:04D8:00DD.0003: unknown main item tag 0x0
[  323.498557][ T5844] mcp2221 0003:04D8:00DD.0003: unknown main item tag 0x0
[  323.501330][ T5844] mcp2221 0003:04D8:00DD.0003: unknown main item tag 0x0
[  323.503734][ T5844] mcp2221 0003:04D8:00DD.0003: unknown main item tag 0x0
[  323.507281][ T5844] mcp2221 0003:04D8:00DD.0003: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.0-1/input0
[  323.521794][ T1346] usbhid 6-1:0.0: can't add hid device: -71
[  323.523970][ T1346] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  323.531422][ T1346] usb 6-1: USB disconnect, device number 13
[  323.726719][ T1346] usb 5-1: USB disconnect, device number 13
[  325.345815][T10278] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1257'.
[  325.348808][T10278] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1257'.
[  326.324957][T10294] bridge0: port 1(bridge_slave_0) entered disabled state
[  326.334788][T10294] bridge_slave_0 (unregistering): left allmulticast mode
[  326.336901][T10294] bridge_slave_0 (unregistering): left promiscuous mode
[  326.341187][T10294] bridge0: port 1(bridge_slave_0) entered disabled state
[  326.732741][T10311] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1266'.
[  329.223147][ T6222] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  329.383370][ T6222] usb 5-1: Using ep0 maxpacket: 16
[  329.386499][ T6222] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  329.390118][ T6222] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  329.393319][ T6222] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  329.397667][ T6222] usb 5-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  329.400657][ T6222] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  329.405667][ T6222] usb 5-1: config 0 descriptor??
[  329.611451][T10303] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  329.675466][T10359] fuse: Unknown parameter '0x0000000000000003'
[  329.717552][T10362] netlink: 120 bytes leftover after parsing attributes in process `syz.3.1276'.
[  329.855367][T10350] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1273'.
[  329.956466][T10350] random: crng reseeded on system resumption
[  330.033853][ T6222] usbhid 5-1:0.0: can't add hid device: -71
[  330.043531][ T6222] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  330.062928][ T6222] usb 5-1: USB disconnect, device number 14
[  331.227657][T10378] GUP no longer grows the stack in syz.0.1281 (10378): 80001000-80c01000 (80000000)
[  331.239337][T10378] CPU: 3 UID: 0 PID: 10378 Comm: syz.0.1281 Not tainted syzkaller #0 PREEMPT(full) 
[  331.239355][T10378] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  331.239362][T10378] Call Trace:
[  331.239368][T10378]  <TASK>
[  331.239373][T10378]  dump_stack_lvl+0x100/0x190
[  331.239389][T10378]  gup_vma_lookup.cold+0x83/0x96
[  331.239408][T10378]  __get_user_pages+0x241/0x32a0
[  331.239426][T10378]  ? down_read_killable+0x307/0x4b0
[  331.239444][T10378]  ? __pfx___get_user_pages+0x10/0x10
[  331.239457][T10378]  ? __pfx_gup_fast_fallback+0x10/0x10
[  331.239474][T10378]  get_user_pages_unlocked+0x1cb/0x7d0
[  331.239491][T10378]  ? __pfx_get_user_pages_unlocked+0x10/0x10
[  331.239504][T10378]  ? get_user_pages_fast_only+0xae/0xf0
[  331.239519][T10378]  ? __pfx_get_user_pages_fast_only+0x10/0x10
[  331.239534][T10378]  ? __pfx___might_resched+0x10/0x10
[  331.239550][T10378]  hva_to_pfn+0x871/0xd60
[  331.239564][T10378]  ? __kasan_check_byte+0x13/0x50
[  331.239577][T10378]  ? __pfx_hva_to_pfn+0x10/0x10
[  331.239590][T10378]  ? __lock_acquire+0x4a5/0x2630
[  331.239601][T10378]  ? unwind_next_frame+0x3be/0x2090
[  331.239615][T10378]  ? rcu_is_watching+0x12/0xc0
[  331.239633][T10378]  kvm_follow_pfn+0x291/0x430
[  331.239647][T10378]  __kvm_faultin_pfn+0x11c/0x1a0
[  331.239660][T10378]  ? __pfx___kvm_faultin_pfn+0x10/0x10
[  331.239673][T10378]  ? __pfx_xa_load+0x10/0x10
[  331.239690][T10378]  ? vmx_vcpu_pi_load+0x102/0x8d0
[  331.239707][T10378]  kvm_mmu_faultin_pfn+0xb73/0x2270
[  331.239726][T10378]  ? __pfx_fast_page_fault+0x10/0x10
[  331.239742][T10378]  ? __pfx_kvm_mmu_faultin_pfn+0x10/0x10
[  331.239757][T10378]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  331.239769][T10378]  ? vmx_vcpu_load_vmcs+0x21d/0x760
[  331.239784][T10378]  ? __kvm_mmu_topup_memory_cache+0x332/0x5f0
[  331.239801][T10378]  kvm_tdp_page_fault+0x182/0x3d0
[  331.239813][T10378]  kvm_mmu_do_page_fault+0x5a4/0x6c0
[  331.239826][T10378]  ? __pfx_kvm_mmu_do_page_fault+0x10/0x10
[  331.239836][T10378]  ? find_held_lock+0x2b/0x80
[  331.239850][T10378]  ? finish_task_switch.isra.0+0x2c6/0x1010
[  331.239866][T10378]  ? kvm_sched_in+0x9a/0xf0
[  331.239880][T10378]  ? finish_task_switch.isra.0+0x795/0x1010
[  331.239896][T10378]  kvm_mmu_page_fault+0x1dd/0x1a70
[  331.239914][T10378]  ? __pfx_kvm_mmu_page_fault+0x10/0x10
[  331.239930][T10378]  ? __pfx___schedule+0x10/0x10
[  331.239945][T10378]  handle_ept_violation+0x324/0x7b0
[  331.239960][T10378]  ? __pfx_handle_ept_violation+0x10/0x10
[  331.239974][T10378]  vmx_handle_exit+0x84c/0x1f30
[  331.239997][T10378]  vcpu_run+0x34cf/0x5ca0
[  331.240017][T10378]  ? __pfx_vcpu_run+0x10/0x10
[  331.240037][T10378]  ? rcu_is_watching+0x12/0xc0
[  331.240053][T10378]  ? kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  331.240067][T10378]  kvm_arch_vcpu_ioctl_run+0x5b6/0x1890
[  331.240087][T10378]  kvm_vcpu_ioctl+0x730/0x1720
[  331.240100][T10378]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  331.240111][T10378]  ? tomoyo_path_number_perm+0x188/0x580
[  331.240123][T10378]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  331.240139][T10378]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  331.240156][T10378]  ? do_vfs_ioctl+0x226/0x13e0
[  331.240167][T10378]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  331.240183][T10378]  kvm_vcpu_compat_ioctl+0x20f/0x3c0
[  331.240194][T10378]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  331.240205][T10378]  ? __fget_files+0x21f/0x3d0
[  331.240220][T10378]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  331.240231][T10378]  __ia32_compat_sys_ioctl+0x2cf/0x360
[  331.240244][T10378]  __do_fast_syscall_32+0xe7/0x950
[  331.240258][T10378]  ? lockdep_hardirqs_on+0x78/0x100
[  331.240273][T10378]  do_fast_syscall_32+0x32/0x70
[  331.240287][T10378]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  331.240301][T10378] RIP: 0023:0xf70aefcc
[  331.240311][T10378] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  331.240321][T10378] RSP: 002b:00000000f549d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  331.240332][T10378] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000000000ae80
[  331.240339][T10378] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  331.240344][T10378] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  331.240350][T10378] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  331.240356][T10378] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  331.240369][T10378]  </TASK>
[  333.939378][T10398] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1285'.
[  334.097451][T10400] netlink: 'syz.0.1286': attribute type 3 has an invalid length.
[  334.395345][   T54] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  334.399779][T10413] ip6gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue
[  334.566384][   T54] usb 5-1: Using ep0 maxpacket: 16
[  334.575571][   T54] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  334.580567][   T54] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  334.592678][   T54] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  334.601706][   T54] usb 5-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  334.605790][   T54] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  334.635105][   T54] usb 5-1: config 0 descriptor??
[  335.084020][T10407] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1289'.
[  335.257703][T10407] random: crng reseeded on system resumption
[  335.456253][   T54] usbhid 5-1:0.0: can't add hid device: -71
[  335.459490][   T54] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  335.469337][   T54] usb 5-1: USB disconnect, device number 15
[  336.992837][ T1431] ieee802154 phy1 wpan1: encryption failed: -22
[  337.978377][T10459] sch_tbf: burst 255 is lower than device syzkaller0 mtu (1500) !
[  337.993053][T10459] syzkaller0: entered promiscuous mode
[  337.994953][T10459] syzkaller0: entered allmulticast mode
[  338.242178][   T54] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  338.408038][   T54] usb 6-1: config 0 has no interfaces?
[  338.413332][   T54] usb 6-1: New USB device found, idVendor=06cd, idProduct=010f, bcdDevice=d5.1b
[  338.419832][   T54] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  338.429230][   T54] usb 6-1: config 0 descriptor??
[  338.648201][   T39] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  338.661740][   T54] usb 6-1: USB disconnect, device number 14
[  338.728247][T10461] PF_CAN: dropped non conform CAN XL skbuff: dev type 280, len 40
[  338.820144][   T39] usb 7-1: Using ep0 maxpacket: 16
[  338.826526][   T39] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  338.831213][   T39] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  338.838454][   T39] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  338.854260][   T39] usb 7-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  338.861936][   T39] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  338.873549][   T39] usb 7-1: config 0 descriptor??
[  339.311403][T10471] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1307'.
[  339.376654][T10471] random: crng reseeded on system resumption
[  339.461274][   T39] usbhid 7-1:0.0: can't add hid device: -71
[  339.463353][   T39] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  339.471867][   T39] usb 7-1: USB disconnect, device number 9
[  339.770264][ T6624] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[  339.908737][T10493] Illegal XDP return value 4294967274 on prog  (id 150) dev N/A, expect packet loss!
[  339.930594][ T6624] usb 8-1: Using ep0 maxpacket: 8
[  339.934825][ T6624] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  339.940984][ T6624] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  339.948156][ T6624] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  339.952030][ T6624] usb 8-1: config 0 descriptor??
[  340.064229][T10501] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1317'.
[  340.172367][T10503] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1318'.
[  340.175267][T10482] fuse: Unknown parameter 'proup_id'
[  340.236931][ T6624] iowarrior 8-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  340.292417][ T6624] lo speed is unknown, defaulting to 1000
[  340.835457][T10527] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[  340.837603][T10527] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  340.840426][T10527] vhci_hcd vhci_hcd.0: Device attached
[  341.148948][   T54] usb 40-1: SetAddress Request (10) to port 0
[  341.153714][   T54] usb 40-1: new SuperSpeed USB device number 10 using vhci_hcd
[  341.186439][T10536] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1328'.
[  341.199955][   T40] audit: type=1326 audit(1778048547.707:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10537 comm="syz.0.1329" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70aefcc code=0x7ffc0000
[  341.207195][   T40] audit: type=1326 audit(1778048547.716:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10537 comm="syz.0.1329" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70aefcc code=0x7ffc0000
[  341.215570][   T40] audit: type=1326 audit(1778048547.716:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10537 comm="syz.0.1329" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70aefcc code=0x7ffc0000
[  341.222949][   T40] audit: type=1326 audit(1778048547.716:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10537 comm="syz.0.1329" exe="/syz-executor" sig=0 arch=40000003 syscall=360 compat=1 ip=0xf70aefcc code=0x7ffc0000
[  341.230777][   T40] audit: type=1326 audit(1778048547.716:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10537 comm="syz.0.1329" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70aefcc code=0x7ffc0000
[  341.239740][   T40] audit: type=1326 audit(1778048547.716:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10537 comm="syz.0.1329" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70aefcc code=0x7ffc0000
[  341.247856][   T40] audit: type=1326 audit(1778048547.725:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10537 comm="syz.0.1329" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf70aefcc code=0x7ffc0000
[  341.259053][   T40] audit: type=1326 audit(1778048547.725:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10537 comm="syz.0.1329" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70aefcc code=0x7ffc0000
[  341.266148][   T40] audit: type=1326 audit(1778048547.725:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10537 comm="syz.0.1329" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70aefcc code=0x7ffc0000
[  341.273533][   T40] audit: type=1326 audit(1778048547.725:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10537 comm="syz.0.1329" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf70aefcc code=0x7ffc0000
[  341.296078][T10542] input: syz1 as /devices/virtual/input/input7
[  341.554254][T10528] vhci_hcd: connection reset by peer
[  341.557970][   T87] vhci_hcd vhci_hcd.1: stop threads
[  341.559910][   T87] vhci_hcd vhci_hcd.1: release socket
[  341.562286][   T87] vhci_hcd vhci_hcd.1: disconnect device
[  342.473940][   T39] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  342.644775][   T39] usb 6-1: Using ep0 maxpacket: 8
[  342.648050][   T39] usb 6-1: config 1 interface 0 altsetting 5 endpoint 0x82 has invalid wMaxPacketSize 0
[  342.651917][   T39] usb 6-1: config 1 interface 0 altsetting 5 bulk endpoint 0x82 has invalid maxpacket 0
[  342.655114][   T39] usb 6-1: config 1 interface 0 altsetting 5 bulk endpoint 0x3 has invalid maxpacket 64
[  342.660104][   T39] usb 6-1: config 1 interface 0 altsetting 5 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  342.667055][   T39] usb 6-1: config 1 interface 0 has no altsetting 0
[  342.672880][   T39] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  342.679682][   T39] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  342.683189][   T39] usb 6-1: Product: Ó¿
[  342.685018][   T39] usb 6-1: Manufacturer: 罇ｸ㺷禛즑갶ᵻỸ��譔芇헒ά귶랉�橗ۨ稒풊닆꧈첺踇횮௢몘钯ݮᷩ꺶ꪅ�欜䊽ᷱ
[  342.691109][   T39] usb 6-1: SerialNumber: �
[  342.695583][T10557] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  342.756091][ T5822] usb 8-1: USB disconnect, device number 12
[  342.827228][T10566] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1339'.
[  343.178823][   T39] cdc_ether 6-1:1.0: probe with driver cdc_ether failed with error -22
[  343.184025][   T39] usb 6-1: USB disconnect, device number 15
[  343.356559][T10572] mmap: syz.2.1342 (10572) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  343.915904][T10593] syz.0.1343 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  345.273885][T10608] syzkaller1: entered promiscuous mode
[  345.280381][T10608] syzkaller1: entered allmulticast mode
[  345.915565][T10621] hfs: can't find a HFS filesystem on dev loop2
[  346.556101][   T54] usb 40-1: device descriptor read/8, error -110
[  346.994737][   T54] usb usb40-port1: attempt power cycle
[  347.143051][T10649] FAULT_INJECTION: forcing a failure.
[  347.143051][T10649] name failslab, interval 1, probability 0, space 0, times 0
[  347.148676][T10649] CPU: 0 UID: 0 PID: 10649 Comm: syz.3.1360 Not tainted syzkaller #0 PREEMPT(full) 
[  347.148699][T10649] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  347.148709][T10649] Call Trace:
[  347.148716][T10649]  <TASK>
[  347.148723][T10649]  dump_stack_lvl+0x100/0x190
[  347.148749][T10649]  should_fail_ex.cold+0x5/0xa
[  347.148772][T10649]  should_failslab+0xc2/0x120
[  347.148808][T10649]  __kmalloc_cache_noprof+0x7a/0x6f0
[  347.148839][T10649]  ? sctp_add_bind_addr+0xae/0x3e0
[  347.148864][T10649]  ? __sctp_v6_cmp_addr+0x206/0x530
[  347.148885][T10649]  sctp_add_bind_addr+0xae/0x3e0
[  347.148910][T10649]  sctp_copy_local_addr_list+0x349/0x550
[  347.148940][T10649]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  347.148970][T10649]  ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360
[  347.148988][T10649]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  347.149015][T10649]  sctp_bind_addr_copy+0xe0/0x530
[  347.149046][T10649]  sctp_connect_new_asoc+0x1c9/0x770
[  347.149070][T10649]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  347.149096][T10649]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  347.149124][T10649]  sctp_sendmsg+0x171a/0x22b0
[  347.149152][T10649]  ? __pfx_sctp_sendmsg+0x10/0x10
[  347.149177][T10649]  ? aa_sk_perm+0x309/0xaa0
[  347.149200][T10649]  ? __pfx_aa_sk_perm+0x10/0x10
[  347.149217][T10649]  ? __might_fault+0xc5/0x140
[  347.149250][T10649]  ? __pfx_sctp_sendmsg+0x10/0x10
[  347.149273][T10649]  inet_sendmsg+0x11c/0x140
[  347.149300][T10649]  __sys_sendto+0x446/0x4b0
[  347.149326][T10649]  ? __pfx_inet_sendmsg+0x10/0x10
[  347.149351][T10649]  ? __pfx___sys_sendto+0x10/0x10
[  347.149387][T10649]  ? __fget_files+0x215/0x3d0
[  347.149407][T10649]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  347.149442][T10649]  ? fput+0x79/0x100
[  347.149466][T10649]  ? ksys_write+0x1ac/0x250
[  347.149486][T10649]  __ia32_sys_sendto+0xdd/0x1b0
[  347.149503][T10649]  ? __do_fast_syscall_32+0x98/0x950
[  347.149525][T10649]  ? lockdep_hardirqs_on+0x78/0x100
[  347.149545][T10649]  __do_fast_syscall_32+0xe7/0x950
[  347.149567][T10649]  ? lockdep_hardirqs_on+0x78/0x100
[  347.149590][T10649]  do_fast_syscall_32+0x32/0x70
[  347.149614][T10649]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  347.149636][T10649] RIP: 0023:0xf7f93fcc
[  347.149651][T10649] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  347.149667][T10649] RSP: 002b:00000000f545650c EFLAGS: 00000292 ORIG_RAX: 0000000000000171
[  347.149683][T10649] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080847fff
[  347.149694][T10649] RDX: 0000000000034000 RSI: 00000000000000e0 RDI: 000000008005ffe4
[  347.149704][T10649] RBP: 000000000000001c R08: 0000000000000000 R09: 0000000000000000
[  347.149714][T10649] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  347.149724][T10649] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  347.149749][T10649]  </TASK>
[  347.432146][  T841] usb 6-1: new low-speed USB device number 16 using dummy_hcd
[  347.617231][   T54] usb usb40-port1: unable to enumerate USB device
[  347.619834][  T841] usb 6-1: config index 0 descriptor too short (expected 1307, got 27)
[  347.622676][  T841] usb 6-1: config 0 has an invalid interface number: 0 but max is -1
[  347.625595][  T841] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 0
[  347.635180][  T841] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[  347.641184][  T841] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  347.645859][  T841] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  347.652842][  T841] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246
[  347.665505][  T841] usb 6-1: string descriptor 0 read error: -22
[  347.667745][  T841] usb 6-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[  347.672670][  T841] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  347.682020][  T841] usb 6-1: config 0 descriptor??
[  347.698004][  T841] hub 6-1:0.0: bad descriptor, ignoring hub
[  347.700658][  T841] hub 6-1:0.0: probe with driver hub failed with error -5
[  347.709922][  T841] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input8
[  347.986482][T10678] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  347.993554][T10678] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  348.675891][T10687] netlink: 'syz.2.1373': attribute type 10 has an invalid length.
[  348.682484][T10687] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1373'.
[  348.687108][T10687] dummy0: entered promiscuous mode
[  348.690114][T10687] bridge0: port 1(dummy0) entered blocking state
[  348.692567][T10687] bridge0: port 1(dummy0) entered disabled state
[  348.694968][T10687] dummy0: entered allmulticast mode
[  348.698077][T10687] bridge0: port 1(dummy0) entered blocking state
[  348.701043][T10687] bridge0: port 1(dummy0) entered forwarding state
[  349.681451][T10688] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -4
[  349.685448][T10688] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -4
[  349.689554][T10688] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  349.698359][   T40] kauditd_printk_skb: 320 callbacks suppressed
[  349.698373][   T40] audit: type=1800 audit(1778048555.652:340): pid=10688 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1370" name="regulatory.db" dev="sda1" ino=448 res=0 errno=0
[  349.772546][ T5831] IPVS: starting estimator thread 0...
[  349.879950][T10697] IPVS: using max 28 ests per chain, 67200 per kthread
[  350.159100][T10709] program syz.2.1377 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  350.370676][ T5154] usb 6-1: USB disconnect, device number 16
[  350.592307][T10714] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1378'.
[  351.159884][T10721] fuse: Invalid rootmode
[  351.418919][   T40] audit: type=1326 audit(1778048557.271:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10725 comm="syz.0.1381" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70aefcc code=0x0
[  351.532533][T10733] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1381'.
[  353.247158][T10809] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1390'.
[  353.258170][T10809] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1390'.
[  353.337900][T10814] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  353.608306][T10825] overlayfs: missing 'lowerdir'
[  353.823535][T10838] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1399'.
[  354.324719][ T6222] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  354.508330][ T6222] usb 7-1: Using ep0 maxpacket: 16
[  354.513175][ T6222] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  354.518112][ T6222] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  354.521518][ T6222] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  354.525971][ T6222] usb 7-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  354.529705][ T6222] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  354.536937][ T6222] usb 7-1: config 0 descriptor??
[  354.903774][T10852] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  354.908355][T10852] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  354.973206][T10841] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1400'.
[  354.987340][ T5831] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  355.094713][T10857] random: crng reseeded on system resumption
[  356.154371][ T6222] usbhid 7-1:0.0: can't add hid device: -71
[  356.156405][ T6222] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  356.160066][ T6222] usb 7-1: USB disconnect, device number 10
[  356.309946][T10868] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  356.315493][T10868] bridge0: port 2(bridge_slave_1) entered disabled state
[  357.162830][T10884] netlink: 'syz.0.1414': attribute type 10 has an invalid length.
[  357.166520][T10884] macvlan1: entered promiscuous mode
[  357.168707][T10884] macvlan1: entered allmulticast mode
[  357.177316][T10884] veth1_vlan: entered allmulticast mode
[  357.192743][T10884] bond0: (slave macvlan1): Enslaving as an active interface with an up link
[  357.253411][T10884] 9p: Bad value for 'wfdno'
[  357.492573][T10893] FAULT_INJECTION: forcing a failure.
[  357.492573][T10893] name failslab, interval 1, probability 0, space 0, times 0
[  357.511534][T10893] CPU: 3 UID: 0 PID: 10893 Comm: syz.3.1418 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  357.511579][T10893] Tainted: [L]=SOFTLOCKUP
[  357.511585][T10893] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  357.511595][T10893] Call Trace:
[  357.511601][T10893]  <TASK>
[  357.511608][T10893]  dump_stack_lvl+0x100/0x190
[  357.511633][T10893]  should_fail_ex.cold+0x5/0xa
[  357.511655][T10893]  ? tomoyo_realpath_from_path+0xb6/0x690
[  357.511677][T10893]  should_failslab+0xc2/0x120
[  357.511697][T10893]  __kmalloc_noprof+0xe0/0x850
[  357.511730][T10893]  ? kfree+0x1dd/0x6c0
[  357.511757][T10893]  tomoyo_realpath_from_path+0xb6/0x690
[  357.511784][T10893]  tomoyo_path_number_perm+0x23c/0x580
[  357.511801][T10893]  ? tomoyo_path_number_perm+0x22e/0x580
[  357.511820][T10893]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  357.511839][T10893]  ? get_pid_task+0x106/0x250
[  357.511889][T10893]  ? find_held_lock+0x2b/0x80
[  357.511913][T10893]  ? __fget_files+0x215/0x3d0
[  357.511933][T10893]  ? hook_file_ioctl_common+0x149/0x410
[  357.511951][T10893]  ? __fget_files+0x215/0x3d0
[  357.511975][T10893]  ? __fget_files+0x21f/0x3d0
[  357.512000][T10893]  security_file_ioctl_compat+0xd3/0x230
[  357.512021][T10893]  __ia32_compat_sys_ioctl+0xc2/0x360
[  357.512044][T10893]  __do_fast_syscall_32+0xe7/0x950
[  357.512068][T10893]  ? lockdep_hardirqs_on+0x78/0x100
[  357.512093][T10893]  do_fast_syscall_32+0x32/0x70
[  357.512117][T10893]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  357.512140][T10893] RIP: 0023:0xf7f93fcc
[  357.512156][T10893] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  357.512172][T10893] RSP: 002b:00000000f545650c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  357.512190][T10893] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000040046109
[  357.512202][T10893] RDX: 0000000080000040 RSI: 0000000000000000 RDI: 0000000000000000
[  357.512212][T10893] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  357.512221][T10893] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  357.512231][T10893] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  357.512256][T10893]  </TASK>
[  357.513583][T10893] ERROR: Out of memory at tomoyo_realpath_from_path.
[  358.090096][T10898] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(11)
[  358.093032][T10898] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  358.095931][T10898] vhci_hcd vhci_hcd.0: Device attached
[  358.110050][T10898] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1419'.
[  358.360588][T10902] kvm: pic: non byte read
[  358.364431][T10902] kvm: pic: non byte read
[  358.368226][T10902] kvm: pic: level sensitive irq not supported
[  358.368514][T10902] kvm: pic: non byte read
[  358.373537][T10902] kvm: pic: level sensitive irq not supported
[  358.373809][T10902] kvm: pic: non byte read
[  358.377800][ T5886] usb 43-1: new high-speed USB device number 2 using vhci_hcd
[  358.379251][T10902] kvm: pic: level sensitive irq not supported
[  358.381218][T10902] kvm: pic: non byte read
[  358.692676][T10914] fuse: Bad value for 'rootmode'
[  358.720719][T10899] vhci_hcd: connection reset by peer
[  358.723795][   T87] vhci_hcd vhci_hcd.3: stop threads
[  358.725721][   T87] vhci_hcd vhci_hcd.3: release socket
[  358.730637][   T87] vhci_hcd vhci_hcd.3: disconnect device
[  360.665047][T10940] netlink: 'syz.3.1432': attribute type 12 has an invalid length.
[  360.668243][T10940] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1432'.
[  360.673515][T10939] netlink: 'syz.3.1432': attribute type 12 has an invalid length.
[  360.677109][T10939] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1432'.
[  361.591335][ T5822] libceph: connect (1)[c::]:6789 error -101
[  361.593475][ T5822] libceph: mon0 (1)[c::]:6789 connect error
[  361.643125][T10945] ceph: No mds server is up or the cluster is laggy
[  361.678065][T10949] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1431'.
[  361.869718][  T841] libceph: connect (1)[c::]:6789 error -101
[  361.871880][  T841] libceph: mon0 (1)[c::]:6789 connect error
[  362.419047][  T841] libceph: connect (1)[c::]:6789 error -101
[  362.423485][  T841] libceph: mon0 (1)[c::]:6789 connect error
[  362.985218][T10972] 9p: Bad value for 'rfdno'
[  364.081008][ T5886] vhci_hcd vhci_hcd.3: vhci_device speed not set
[  365.048823][T10986] ALSA: mixer_oss: invalid OSS volume ''
[  365.496742][T10994] openvswitch: netlink: Missing key (keys=40, expected=80)
[  366.726628][T11007] netlink: 'syz.1.1448': attribute type 39 has an invalid length.
[  366.921864][T11010] binder: 11006:11010 ioctl c0285840 80000000 returned -22
[  369.134943][ T1158] smc: removing ib device syz1
[  369.147434][ T5822] syz1: Port: 1 Link DOWN
[  369.207146][ T1158] smbdirect: ib_dev[syz1] removed
[  369.766034][   T54] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  369.947786][   T54] usb 6-1: Using ep0 maxpacket: 32
[  369.952908][   T54] usb 6-1: unable to get BOS descriptor or descriptor too short
[  369.957351][   T54] usb 6-1: config 8 has an invalid interface number: 188 but max is 0
[  369.960991][   T54] usb 6-1: config 8 has no interface number 0
[  369.963563][   T54] usb 6-1: config 8 interface 188 has no altsetting 0
[  369.969661][   T54] usb 6-1: string descriptor 0 read error: -22
[  369.972372][   T54] usb 6-1: New USB device found, idVendor=0ccd, idProduct=0102, bcdDevice=89.0e
[  369.976018][   T54] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  369.986220][   T54] dvb-usb: found a 'Terratec Cinergy S2 USB HD Rev.3' in warm state.
[  369.989749][   T54] dw2102: su3000_power_ctrl: 1, initialized 0
[  369.993218][   T54] dvb-usb: bulk message failed: -22 (2/0)
[  370.071238][   T54] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  370.074920][   T54] dvbdev: DVB: registering new adapter (Terratec Cinergy S2 USB HD Rev.3)
[  370.082612][   T54] usb 6-1: media controller created
[  370.084646][   T54] dvb-usb: bulk message failed: -22 (6/0)
[  370.142031][   T54] dw2102: i2c transfer failed.
[  370.143824][   T54] dvb-usb: bulk message failed: -22 (6/0)
[  370.146718][   T54] dw2102: i2c transfer failed.
[  370.148336][   T54] dvb-usb: bulk message failed: -22 (6/0)
[  370.150292][   T54] dw2102: i2c transfer failed.
[  370.153355][   T54] dvb-usb: bulk message failed: -22 (6/0)
[  370.155303][   T54] dw2102: i2c transfer failed.
[  370.157617][   T54] dvb-usb: bulk message failed: -22 (6/0)
[  370.160027][   T54] dw2102: i2c transfer failed.
[  370.162474][   T54] dvb-usb: bulk message failed: -22 (6/0)
[  370.164869][   T54] dw2102: i2c transfer failed.
[  370.166953][   T54] dvb-usb: MAC address: 02:02:02:02:02:02
[  370.179182][   T54] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  370.195188][   T54] dvb-usb: bulk message failed: -22 (3/0)
[  370.197684][   T54] dw2102: command 0x0e transfer failed.
[  370.200875][   T54] dvb-usb: bulk message failed: -22 (3/0)
[  370.202826][   T54] dw2102: command 0x0e transfer failed.
[  370.349457][   T62] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  370.356397][   T62] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  370.362338][   T62] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  370.367415][   T62] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  370.371129][   T62] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  370.535486][   T54] dvb-usb: bulk message failed: -22 (3/0)
[  370.540759][   T54] dw2102: command 0x0e transfer failed.
[  370.544304][   T54] dvb-usb: bulk message failed: -22 (3/0)
[  370.548546][   T54] dw2102: command 0x0e transfer failed.
[  370.561243][   T54] dvb-usb: bulk message failed: -22 (1/0)
[  370.567017][   T54] dw2102: command 0x51 transfer failed.
[  370.572806][T11036] dvb-usb: bulk message failed: -22 (22/0)
[  370.575539][T11036] dw2102: i2c transfer failed.
[  370.603775][   T54] DVB: Unable to find symbol ds3000_attach()
[  370.606657][   T54] dvb-usb: no frontend was attached by 'Terratec Cinergy S2 USB HD Rev.3'
[  370.663699][   T54] rc_core: IR keymap rc-su3000 not found
[  370.666597][   T54] Registered IR keymap rc-empty
[  370.678576][   T54] rc rc0: Terratec Cinergy S2 USB HD Rev.3 as /devices/platform/dummy_hcd.1/usb6/6-1/rc/rc0
[  370.690569][   T54] input: Terratec Cinergy S2 USB HD Rev.3 as /devices/platform/dummy_hcd.1/usb6/6-1/rc/rc0/input9
[  370.697825][   T54] dvb-usb: schedule remote query interval to 150 msecs.
[  370.701137][   T54] dw2102: su3000_power_ctrl: 0, initialized 1
[  370.704023][   T54] dvb-usb: Terratec Cinergy S2 USB HD Rev.3 successfully initialized and connected.
[  370.709835][   T54] usb 6-1: USB disconnect, device number 17
[  370.799832][   T87] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  370.859568][   T54] dvb-usb: Terratec Cinergy S2 USB HD Rev.3 successfully deinitialized and disconnected.
[  370.925308][   T87] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  370.975755][T11061] syzkaller0: entered promiscuous mode
[  370.979725][T11061] syzkaller0: entered allmulticast mode
[  370.987190][T11041] lo speed is unknown, defaulting to 1000
[  371.015876][   T87] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  371.111468][   T87] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  371.302226][   T87] bridge_slave_1: left allmulticast mode
[  371.304651][   T87] bridge_slave_1: left promiscuous mode
[  371.308036][   T87] bridge0: port 2(bridge_slave_1) entered disabled state
[  371.313375][   T87] bridge_slave_0: left allmulticast mode
[  371.315161][   T87] bridge_slave_0: left promiscuous mode
[  371.317662][   T87] bridge0: port 1(bridge_slave_0) entered disabled state
[  371.325251][   T87] batman_adv: batadv0: Interface deactivated: gretap1
[  371.488946][   T87] batman_adv: batadv0: Removing interface: gretap1
[  371.599925][T11075] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  371.605434][T11075] x_tables: ip6_tables: socket match: used from hooks FORWARD, but only valid from PREROUTING/INPUT
[  371.772561][   T87] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  371.783425][   T87] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  371.789617][   T87] bond0 (unregistering): (slave macvlan1): Releasing backup interface
[  371.793871][   T87] veth1_vlan: left allmulticast mode
[  371.797809][   T87] bond0 (unregistering): Released all slaves
[  371.881054][T11041] bridge0: port 1(bridge_slave_0) entered blocking state
[  371.883790][T11041] bridge0: port 1(bridge_slave_0) entered disabled state
[  371.886723][T11041] bridge_slave_0: entered allmulticast mode
[  371.889910][T11041] bridge_slave_0: entered promiscuous mode
[  371.894648][T11041] bridge0: port 2(bridge_slave_1) entered blocking state
[  371.897050][T11041] bridge0: port 2(bridge_slave_1) entered disabled state
[  371.899420][T11041] bridge_slave_1: entered allmulticast mode
[  371.902307][T11041] bridge_slave_1: entered promiscuous mode
[  371.918490][T11041] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  371.923449][T11041] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  371.940874][T11041] team0: Port device team_slave_0 added
[  371.944393][T11041] team0: Port device team_slave_1 added
[  371.961687][T11041] batman_adv: batadv0: Adding interface: batadv_slave_0
[  371.964033][T11041] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  371.972574][T11041] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  371.977130][T11041] batman_adv: batadv0: Adding interface: batadv_slave_1
[  371.979529][T11041] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  371.987965][T11041] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  372.020256][T11041] hsr_slave_0: entered promiscuous mode
[  372.033592][T11041] hsr_slave_1: entered promiscuous mode
[  372.036677][T11041] debugfs: 'hsr0' already exists in 'hsr'
[  372.039232][T11041] Cannot create hsr debugfs directory
[  372.534637][T11075] lo speed is unknown, defaulting to 1000
[  372.550690][ T5743] Bluetooth: hci2: command tx timeout
[  372.691173][T11041] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  372.819750][T11041] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  372.831523][T11041] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  373.704519][T11041] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  373.707336][T11041] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  373.713527][T11041] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  373.734389][ T5448] 8021q: adding VLAN 0 to HW filter on device eth3
[  373.757965][T11089] overlayfs: failed to resolve './file2': -2
[  373.764583][T11041] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  373.769174][T11041] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  373.794265][T11091] kvm: pic: non byte read
[  373.799163][T11091] kvm: pic: non byte read
[  373.802797][T11091] kvm: pic: level sensitive irq not supported
[  373.803161][T11091] kvm: pic: non byte read
[  373.811342][T11091] kvm: pic: level sensitive irq not supported
[  373.811776][T11091] kvm: pic: non byte read
[  373.818366][T11091] kvm: pic: level sensitive irq not supported
[  373.818991][T11091] kvm: pic: non byte read
[  373.825975][T11091] kvm: pic: level sensitive irq not supported
[  373.826394][T11091] kvm: pic: non byte read
[  373.836235][T11091] kvm: pic: level sensitive irq not supported
[  373.836486][T11091] kvm: pic: non byte read
[  373.844490][T11091] kvm: pic: level sensitive irq not supported
[  373.844826][T11091] kvm: pic: non byte read
[  373.854827][T11091] kvm: pic: level sensitive irq not supported
[  373.855167][T11091] kvm: pic: non byte read
[  373.865436][T11091] kvm: pic: level sensitive irq not supported
[  373.868823][T11091] kvm: pic: non byte read
[  373.875258][T11091] kvm: pic: level sensitive irq not supported
[  373.879663][T11091] kvm: pic: level sensitive irq not supported
[  373.925759][T11041] 8021q: adding VLAN 0 to HW filter on device bond0
[  373.945331][T11041] 8021q: adding VLAN 0 to HW filter on device team0
[  373.953701][ T1158] bridge0: port 1(bridge_slave_0) entered blocking state
[  373.957122][ T1158] bridge0: port 1(bridge_slave_0) entered forwarding state
[  374.006170][ T1244] bridge0: port 2(bridge_slave_1) entered blocking state
[  374.008977][ T1244] bridge0: port 2(bridge_slave_1) entered forwarding state
[  374.051826][ T5448] 8021q: adding VLAN 0 to HW filter on device eth4
[  374.264672][ T5448] 8021q: adding VLAN 0 to HW filter on device eth5
[  374.335252][   T87] hsr_slave_0: left promiscuous mode
[  374.337590][   T87] hsr_slave_1: left promiscuous mode
[  374.340275][   T87] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  374.342815][   T87] batman_adv: batadv0: Removing interface: batadv_slave_0
[  374.345639][   T87] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  374.348165][   T87] batman_adv: batadv0: Removing interface: batadv_slave_1
[  374.460524][T11134] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[  374.472343][   T87] veth1_macvtap: left promiscuous mode
[  374.475516][   T87] veth0_macvtap: left promiscuous mode
[  374.477851][   T87] veth1_vlan: left promiscuous mode
[  374.480571][   T87] veth0_vlan: left promiscuous mode
[  374.508532][T11135] =======================================================
[  374.508532][T11135] WARNING: The mand mount option has been deprecated and
[  374.508532][T11135]          and is ignored by this kernel. Remove the mand
[  374.508532][T11135]          option from the mount to silence this warning.
[  374.508532][T11135] =======================================================
[  374.521776][T11135] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  374.530331][T11135] CIFS mount error: No usable UNC path provided in device string!
[  374.530331][T11135] 
[  374.536693][T11135] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  374.545971][T11138] netlink: 80 bytes leftover after parsing attributes in process `syz.1.1479'.
[  374.777939][ T5743] Bluetooth: hci2: command tx timeout
[  374.781969][   T87] team0 (unregistering): Port device team_slave_1 removed
[  374.790668][   T87] team0 (unregistering): Port device team_slave_0 removed
[  374.983449][   T13] smc: removing ib device s
z1
[  375.018091][   T13] smbdirect: ib_dev[s
z1] removed
[  375.054109][ T5886] lo speed is unknown, defaulting to 1000
[  375.059151][ T5886] s
z1: Port: 1 Link DOWN
[  375.214169][T11041] 8021q: adding VLAN 0 to HW filter on device batadv0
[  375.685935][T11041] veth0_vlan: entered promiscuous mode
[  375.697212][T11041] veth1_vlan: entered promiscuous mode
[  375.750423][T11041] veth0_macvtap: entered promiscuous mode
[  375.759705][T11041] veth1_macvtap: entered promiscuous mode
[  375.782395][T11041] batman_adv: batadv0: Interface activated: batadv_slave_0
[  375.790489][T11041] batman_adv: batadv0: Interface activated: batadv_slave_1
[  375.804870][  T196] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  375.808204][  T196] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  375.812916][  T196] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  375.817036][  T196] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  375.932068][ T5448] 8021q: adding VLAN 0 to HW filter on device eth2
[  375.980676][  T196] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  375.988023][  T196] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  376.066749][  T196] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  376.066809][  T196] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  376.605444][   T10] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  376.656479][T11176] team0: No ports can be present during mode change
[  376.765385][   T10] usb 9-1: Using ep0 maxpacket: 32
[  376.771843][   T10] usb 9-1: unable to get BOS descriptor or descriptor too short
[  376.788658][   T10] usb 9-1: config 8 has an invalid interface number: 188 but max is 0
[  376.795731][   T10] usb 9-1: config 8 has no interface number 0
[  376.806229][   T10] usb 9-1: config 8 interface 188 has no altsetting 0
[  376.816150][   T10] usb 9-1: string descriptor 0 read error: -22
[  376.820661][   T10] usb 9-1: New USB device found, idVendor=0ccd, idProduct=0102, bcdDevice=89.0e
[  376.826287][   T10] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  376.851123][   T10] dvb-usb: found a 'Terratec Cinergy S2 USB HD Rev.3' in warm state.
[  376.859911][   T10] dw2102: su3000_power_ctrl: 1, initialized 0
[  376.864071][   T10] dvb-usb: bulk message failed: -22 (2/0)
[  376.871554][   T10] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  376.882053][   T10] dvbdev: DVB: registering new adapter (Terratec Cinergy S2 USB HD Rev.3)
[  376.888615][   T10] usb 9-1: media controller created
[  376.891490][   T10] dvb-usb: bulk message failed: -22 (6/0)
[  376.895135][   T10] dw2102: i2c transfer failed.
[  376.897492][   T10] dvb-usb: bulk message failed: -22 (6/0)
[  376.899706][   T10] dw2102: i2c transfer failed.
[  376.901435][   T10] dvb-usb: bulk message failed: -22 (6/0)
[  376.903452][   T10] dw2102: i2c transfer failed.
[  376.905440][   T10] dvb-usb: bulk message failed: -22 (6/0)
[  376.907404][   T10] dw2102: i2c transfer failed.
[  376.909179][   T10] dvb-usb: bulk message failed: -22 (6/0)
[  376.911088][   T10] dw2102: i2c transfer failed.
[  376.912683][   T10] dvb-usb: bulk message failed: -22 (6/0)
[  376.917604][   T10] dw2102: i2c transfer failed.
[  376.919313][   T10] dvb-usb: MAC address: 02:02:02:02:02:02
[  376.927319][   T10] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  376.954221][T11188] i2c i2c-1: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  376.987569][   T87] IPVS: stop unused estimator thread 0...
[  376.989844][ T5743] Bluetooth: hci2: command tx timeout
[  377.034625][   T10] dvb-usb: bulk message failed: -22 (3/0)
[  377.040339][   T10] dw2102: command 0x0e transfer failed.
[  377.045872][   T10] dvb-usb: bulk message failed: -22 (3/0)
[  377.050639][   T10] dw2102: command 0x0e transfer failed.
[  377.385172][   T10] dvb-usb: bulk message failed: -22 (3/0)
[  377.387638][   T10] dw2102: command 0x0e transfer failed.
[  377.390258][   T10] dvb-usb: bulk message failed: -22 (3/0)
[  377.411874][   T10] dw2102: command 0x0e transfer failed.
[  377.418776][   T10] dvb-usb: bulk message failed: -22 (1/0)
[  377.420698][   T10] dw2102: command 0x51 transfer failed.
[  377.438358][T11173] dvb-usb: bulk message failed: -22 (4/0)
[  377.440367][T11173] dw2102: i2c transfer failed.
[  377.454082][   T10] DVB: Unable to find symbol ds3000_attach()
[  377.456300][   T10] dvb-usb: no frontend was attached by 'Terratec Cinergy S2 USB HD Rev.3'
[  377.513471][   T10] rc_core: IR keymap rc-su3000 not found
[  377.515475][   T10] Registered IR keymap rc-empty
[  377.517724][   T10] rc rc0: Terratec Cinergy S2 USB HD Rev.3 as /devices/platform/dummy_hcd.4/usb9/9-1/rc/rc0
[  377.522479][   T10] input: Terratec Cinergy S2 USB HD Rev.3 as /devices/platform/dummy_hcd.4/usb9/9-1/rc/rc0/input10
[  377.527845][   T10] dvb-usb: schedule remote query interval to 150 msecs.
[  377.531487][   T10] dw2102: su3000_power_ctrl: 0, initialized 1
[  377.534121][   T10] dvb-usb: Terratec Cinergy S2 USB HD Rev.3 successfully initialized and connected.
[  377.543562][   T10] usb 9-1: USB disconnect, device number 2
[  377.625931][   T10] dvb-usb: Terratec Cinergy S2 USB HD Rev.3 successfully deinitialized and disconnected.
[  378.001792][T11211] fuse: Unknown parameter 'user_i00000000000000000000'
[  378.366519][T11221] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1495'.
[  379.212561][ T5743] Bluetooth: hci2: command tx timeout
[  381.425836][T11249] cgroup2: Unknown parameter './file0'
[  381.798607][   T24] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  381.819909][ T6624] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[  381.969492][   T24] usb 9-1: Using ep0 maxpacket: 8
[  381.974462][   T24] usb 9-1: config index 0 descriptor too short (expected 301, got 45)
[  381.977764][   T24] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  381.983110][   T24] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  381.986490][   T24] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  381.989838][   T24] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  381.994196][ T6624] usb 8-1: Using ep0 maxpacket: 16
[  381.996701][   T24] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  381.999901][   T24] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  382.003305][ T6624] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  382.008427][ T6624] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  382.016994][ T6624] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  382.026532][ T6624] usb 8-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  382.029514][ T6624] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  382.036389][ T6624] usb 8-1: config 0 descriptor??
[  382.306781][   T24] usb 9-1: usb_control_msg returned -32
[  382.311902][   T24] usbtmc 9-1:16.0: can't read capabilities
[  382.477722][T11260] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1508'.
[  382.557181][T11273] random: crng reseeded on system resumption
[  382.628567][ T5831] usb 9-1: USB disconnect, device number 3
[  382.679921][ T6624] usbhid 8-1:0.0: can't add hid device: -71
[  382.682001][ T6624] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[  382.693079][ T6624] usb 8-1: USB disconnect, device number 13
[  382.796163][T11276] syzkaller0: entered promiscuous mode
[  382.799003][T11276] syzkaller0: entered allmulticast mode
[  382.944950][T11279] picdev_read: 25 callbacks suppressed
[  382.944962][T11279] kvm: pic: non byte read
[  382.948631][T11279] kvm: pic: non byte read
[  382.950391][T11279] kvm: pic: non byte read
[  382.952232][T11279] kvm: pic: non byte read
[  382.954162][T11279] kvm: pic: non byte read
[  382.956158][T11279] kvm: pic: non byte read
[  382.957909][T11279] kvm: pic: non byte read
[  382.959704][T11279] kvm: pic: non byte read
[  382.961635][T11279] kvm: pic: non byte read
[  382.963539][T11279] kvm: pic: non byte read
[  383.084732][T11284] netlink: 212336 bytes leftover after parsing attributes in process `syz.1.1512'.
[  383.132675][T11288] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1514'.
[  383.239910][T11284] xt_nat: multiple ranges no longer supported
[  383.263433][   T40] audit: type=1326 audit(1778048587.076:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11292 comm="syz.3.1516" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93fcc code=0x7ffc0000
[  383.270321][   T40] audit: type=1326 audit(1778048587.076:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11292 comm="syz.3.1516" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93fcc code=0x7ffc0000
[  383.277472][   T40] audit: type=1326 audit(1778048587.076:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11292 comm="syz.3.1516" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f93fcc code=0x7ffc0000
[  383.284629][   T40] audit: type=1326 audit(1778048587.076:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11292 comm="syz.3.1516" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93fcc code=0x7ffc0000
[  383.291635][   T40] audit: type=1326 audit(1778048587.076:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11292 comm="syz.3.1516" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93fcc code=0x7ffc0000
[  383.299028][   T40] audit: type=1326 audit(1778048587.076:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11292 comm="syz.3.1516" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f93fcc code=0x7ffc0000
[  383.306546][   T40] audit: type=1326 audit(1778048587.076:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11292 comm="syz.3.1516" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93fcc code=0x7ffc0000
[  383.314090][   T40] audit: type=1326 audit(1778048587.076:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11292 comm="syz.3.1516" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93fcc code=0x7ffc0000
[  383.321843][   T40] audit: type=1326 audit(1778048587.076:350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11292 comm="syz.3.1516" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f93fcc code=0x7ffc0000
[  383.329116][   T40] audit: type=1326 audit(1778048587.076:351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11292 comm="syz.3.1516" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93fcc code=0x7ffc0000
[  385.734069][T11340] FAULT_INJECTION: forcing a failure.
[  385.734069][T11340] name failslab, interval 1, probability 0, space 0, times 0
[  385.739399][T11340] CPU: 1 UID: 0 PID: 11340 Comm: syz.3.1524 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  385.739417][T11340] Tainted: [L]=SOFTLOCKUP
[  385.739421][T11340] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  385.739427][T11340] Call Trace:
[  385.739449][T11340]  <TASK>
[  385.739454][T11340]  dump_stack_lvl+0x100/0x190
[  385.739479][T11340]  should_fail_ex.cold+0x5/0xa
[  385.739493][T11340]  should_failslab+0xc2/0x120
[  385.739506][T11340]  __kvmalloc_node_noprof+0xfa/0xa00
[  385.739516][T11340]  ? file_tty_write.isra.0+0x64e/0x890
[  385.739572][T11340]  file_tty_write.isra.0+0x64e/0x890
[  385.739587][T11340]  ? security_file_permission+0x76/0x210
[  385.739600][T11340]  ? rw_verify_area+0xce/0x6d0
[  385.739612][T11340]  vfs_write+0x6ac/0x1070
[  385.739624][T11340]  ? __pfx_tty_write+0x10/0x10
[  385.739640][T11340]  ? __pfx_vfs_write+0x10/0x10
[  385.739650][T11340]  ? find_held_lock+0x2b/0x80
[  385.739673][T11340]  ksys_write+0x12a/0x250
[  385.739684][T11340]  ? __pfx_ksys_write+0x10/0x10
[  385.739695][T11340]  ? ksys_write+0x1ac/0x250
[  385.739707][T11340]  ? rcu_is_watching+0x12/0xc0
[  385.739722][T11340]  __do_fast_syscall_32+0xe7/0x950
[  385.739755][T11340]  ? lockdep_hardirqs_on+0x78/0x100
[  385.739769][T11340]  do_fast_syscall_32+0x32/0x70
[  385.739783][T11340]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  385.739797][T11340] RIP: 0023:0xf7f93fcc
[  385.739806][T11340] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  385.739817][T11340] RSP: 002b:00000000f541450c EFLAGS: 00000292 ORIG_RAX: 0000000000000004
[  385.739827][T11340] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 0000000080001040
[  385.739834][T11340] RDX: 0000000000001006 RSI: 0000000000000000 RDI: 0000000000000000
[  385.739840][T11340] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  385.739845][T11340] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  385.739851][T11340] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  385.739864][T11340]  </TASK>
[  385.751445][T11344] fuse: Unknown parameter 'user_id00000000000000000000'
[  388.495594][T11395] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1539'.
[  388.861981][ T5886] usb 8-1: new high-speed USB device number 14 using dummy_hcd
[  389.049095][T11415] FAULT_INJECTION: forcing a failure.
[  389.049095][T11415] name failslab, interval 1, probability 0, space 0, times 0
[  389.053262][T11415] CPU: 3 UID: 0 PID: 11415 Comm: syz.2.1540 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  389.053279][T11415] Tainted: [L]=SOFTLOCKUP
[  389.053283][T11415] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  389.053289][T11415] Call Trace:
[  389.053293][T11415]  <TASK>
[  389.053297][T11415]  dump_stack_lvl+0x100/0x190
[  389.053312][T11415]  should_fail_ex.cold+0x5/0xa
[  389.053326][T11415]  should_failslab+0xc2/0x120
[  389.053338][T11415]  __kvmalloc_node_noprof+0xfa/0xa00
[  389.053350][T11415]  ? page_pool_create_percpu+0x2e0/0xd50
[  389.053369][T11415]  page_pool_create_percpu+0x2e0/0xd50
[  389.053386][T11415]  bpf_test_run_xdp_live+0x192/0x760
[  389.053400][T11415]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  389.053418][T11415]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  389.053442][T11415]  ? _copy_from_user+0x59/0xd0
[  389.053459][T11415]  ? bpf_test_init.isra.0+0x51/0x100
[  389.053472][T11415]  bpf_prog_test_run_xdp+0xd7d/0x1670
[  389.053490][T11415]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  389.053508][T11415]  ? fput+0x79/0x100
[  389.053522][T11415]  ? __bpf_prog_get+0x97/0x2a0
[  389.053535][T11415]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  389.053549][T11415]  __sys_bpf+0x1725/0x4b90
[  389.053561][T11415]  ? __pfx___sys_bpf+0x10/0x10
[  389.053570][T11415]  ? get_pid_task+0x106/0x250
[  389.053586][T11415]  ? proc_fail_nth_write+0x9f/0x220
[  389.053603][T11415]  ? find_held_lock+0x2b/0x80
[  389.053619][T11415]  ? find_held_lock+0x2b/0x80
[  389.053632][T11415]  ? ksys_write+0x190/0x250
[  389.053646][T11415]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  389.053660][T11415]  ? kernel_write+0x623/0x6c0
[  389.053678][T11415]  ? fput+0x79/0x100
[  389.053692][T11415]  ? ksys_write+0x1ac/0x250
[  389.053705][T11415]  __ia32_sys_bpf+0x79/0xf0
[  389.053716][T11415]  ? lockdep_hardirqs_on+0x78/0x100
[  389.053729][T11415]  __do_fast_syscall_32+0xe7/0x950
[  389.053743][T11415]  ? lockdep_hardirqs_on+0x78/0x100
[  389.053757][T11415]  do_fast_syscall_32+0x32/0x70
[  389.053771][T11415]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  389.053785][T11415] RIP: 0023:0xf706efcc
[  389.053793][T11415] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  389.053803][T11415] RSP: 002b:00000000f545d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000165
[  389.053813][T11415] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000240
[  389.053820][T11415] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000
[  389.053826][T11415] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  389.053856][T11415] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  389.053865][T11415] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  389.053879][T11415]  </TASK>
[  389.053883][T11415] page_pool_create_percpu() gave up with errno -12
[  389.132522][ T5886] usb 8-1: Using ep0 maxpacket: 16
[  389.173537][ T5886] usb 8-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  389.177650][ T5886] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  389.182817][ T5886] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 3
[  389.195151][ T5886] usb 8-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  389.203968][ T5886] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  389.208908][ T5886] usb 8-1: Product: syz
[  389.210386][ T5886] usb 8-1: Manufacturer: syz
[  389.216876][ T5886] usb 8-1: SerialNumber: syz
[  389.234844][ T5886] usb 8-1: 0:2 : does not exist
[  389.260141][T11423] FAULT_INJECTION: forcing a failure.
[  389.260141][T11423] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  389.266399][T11423] CPU: 3 UID: 0 PID: 11423 Comm: syz.2.1544 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  389.266416][T11423] Tainted: [L]=SOFTLOCKUP
[  389.266420][T11423] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  389.266427][T11423] Call Trace:
[  389.266431][T11423]  <TASK>
[  389.266435][T11423]  dump_stack_lvl+0x100/0x190
[  389.266451][T11423]  should_fail_ex.cold+0x5/0xa
[  389.266465][T11423]  _copy_to_user+0x32/0xd0
[  389.266483][T11423]  snd_pcm_oss_read2+0x294/0x400
[  389.266501][T11423]  ? __pfx_snd_pcm_oss_read2+0x10/0x10
[  389.266516][T11423]  ? snd_pcm_kernel_ioctl+0x14a/0x2e0
[  389.266527][T11423]  ? snd_pcm_oss_prepare+0x11e/0x240
[  389.266543][T11423]  snd_pcm_oss_read+0x5aa/0x730
[  389.266560][T11423]  ? __pfx_snd_pcm_oss_read+0x10/0x10
[  389.266576][T11423]  vfs_read+0x1e4/0xb30
[  389.266591][T11423]  ? __pfx_vfs_read+0x10/0x10
[  389.266601][T11423]  ? find_held_lock+0x2b/0x80
[  389.266615][T11423]  ? __fget_files+0x215/0x3d0
[  389.266626][T11423]  ? __fget_files+0x215/0x3d0
[  389.266640][T11423]  ? __fget_files+0x21f/0x3d0
[  389.266656][T11423]  ksys_read+0x12a/0x250
[  389.266667][T11423]  ? __pfx_ksys_read+0x10/0x10
[  389.266678][T11423]  ? ksys_write+0x1ac/0x250
[  389.266690][T11423]  ? rcu_is_watching+0x12/0xc0
[  389.266718][T11423]  __do_fast_syscall_32+0xe7/0x950
[  389.266733][T11423]  ? lockdep_hardirqs_on+0x78/0x100
[  389.266747][T11423]  do_fast_syscall_32+0x32/0x70
[  389.266762][T11423]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  389.266776][T11423] RIP: 0023:0xf706efcc
[  389.266784][T11423] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  389.266795][T11423] RSP: 002b:00000000f543c50c EFLAGS: 00000292 ORIG_RAX: 0000000000000003
[  389.266805][T11423] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 00000000800063c0
[  389.266811][T11423] RDX: 0000000000002020 RSI: 0000000000000000 RDI: 0000000000000000
[  389.266817][T11423] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  389.266823][T11423] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  389.266829][T11423] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  389.266842][T11423]  </TASK>
[  389.665348][T11428] comedi comedi3: pcl812: I/O port conflict (0x100,16)
[  389.845089][ T6222] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  390.016059][ T6222] usb 9-1: Using ep0 maxpacket: 32
[  390.021162][ T6222] usb 9-1: config 0 has no interfaces?
[  390.026114][ T6222] usb 9-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  390.030385][ T6222] usb 9-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  390.034096][ T6222] usb 9-1: Product: syz
[  390.035975][ T6222] usb 9-1: Manufacturer: syz
[  390.038191][ T6222] usb 9-1: SerialNumber: syz
[  390.043300][ T6222] usb 9-1: config 0 descriptor??
[  390.300517][ T5743] Bluetooth: hci2: ISO packet for unknown connection handle 0
[  390.311592][ T6222] usb 9-1: USB disconnect, device number 4
[  390.545951][T11453] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1551'.
[  391.670565][ T5822] usb 8-1: USB disconnect, device number 14
[  392.848635][ T1346] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  393.040215][ T1346] usb 7-1: Using ep0 maxpacket: 16
[  393.069110][ T1346] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  393.100119][ T1346] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  393.116042][ T1346] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  393.124349][ T1346] usb 7-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  393.128613][ T1346] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  393.176702][ T1346] usb 7-1: config 0 descriptor??
[  393.647484][   T40] kauditd_printk_skb: 57 callbacks suppressed
[  393.647496][   T40] audit: type=1326 audit(1778048852.787:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11488 comm="syz.1.1563" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6fdefcc code=0x7ffc0000
[  393.649015][T11489] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1563'.
[  393.651437][   T40] audit: type=1326 audit(1778048852.787:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11488 comm="syz.1.1563" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6fdefcc code=0x7ffc0000
[  393.677552][   T40] audit: type=1326 audit(1778048852.787:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11488 comm="syz.1.1563" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf6fdefcc code=0x7ffc0000
[  393.700749][T11484] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1560'.
[  393.745590][   T40] audit: type=1326 audit(1778048852.787:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11488 comm="syz.1.1563" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6fdefcc code=0x7ffc0000
[  393.762996][   T40] audit: type=1326 audit(1778048852.787:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11488 comm="syz.1.1563" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6fdefcc code=0x7ffc0000
[  393.770899][   T40] audit: type=1326 audit(1778048852.787:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11488 comm="syz.1.1563" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf6fdefcc code=0x7ffc0000
[  393.780483][   T40] audit: type=1326 audit(1778048852.815:415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11488 comm="syz.1.1563" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6fdefcc code=0x7ffc0000
[  393.796453][   T40] audit: type=1326 audit(1778048852.815:416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11488 comm="syz.1.1563" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6fdefcc code=0x7ffc0000
[  393.812069][   T40] audit: type=1326 audit(1778048852.815:417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11488 comm="syz.1.1563" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf6fdefcc code=0x7ffc0000
[  393.812113][   T40] audit: type=1326 audit(1778048852.815:418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11488 comm="syz.1.1563" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6fdefcc code=0x7ffc0000
[  393.853939][T11501] random: crng reseeded on system resumption
[  393.946564][ T1346] usbhid 7-1:0.0: can't add hid device: -71
[  393.949457][ T1346] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  393.968422][ T1346] usb 7-1: USB disconnect, device number 11
[  394.109117][ T5886] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  394.281536][ T5886] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  394.288758][ T5886] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  394.301151][ T5886] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  394.306864][ T5886] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  394.317647][ T5886] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  394.323175][ T5886] usb 6-1: config 0 descriptor??
[  394.798902][ T5886] plantronics 0003:047F:FFFF.0004: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  395.946534][T11533] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1571'.
[  396.261870][T11541] fuse: Unknown parameter '0x00000000000000040xffffffffffffffff'
[  396.597989][ T6624] IPVS: starting estimator thread 0...
[  396.642946][ T6222] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  396.705540][T11550] IPVS: using max 48 ests per chain, 115200 per kthread
[  396.833918][ T6222] usb 9-1: Using ep0 maxpacket: 16
[  396.837071][ T6222] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  396.846707][ T6222] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  396.850099][ T6222] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  396.854305][ T6222] usb 9-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  396.860042][ T6222] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  396.866548][ T6222] usb 9-1: config 0 descriptor??
[  397.305385][T11545] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1574'.
[  397.418448][ T1346] usb 6-1: USB disconnect, device number 18
[  397.469193][T11559] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(9)
[  397.470418][T11560] random: crng reseeded on system resumption
[  397.471437][T11559] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  397.473823][T11559] vhci_hcd vhci_hcd.0: Device attached
[  397.554448][ T6222] usbhid 9-1:0.0: can't add hid device: -71
[  397.560932][ T6222] usbhid 9-1:0.0: probe with driver usbhid failed with error -71
[  397.567165][ T6222] usb 9-1: USB disconnect, device number 5
[  397.774145][ T5822] usb 40-1: SetAddress Request (14) to port 0
[  397.776364][ T5822] usb 40-1: new SuperSpeed USB device number 14 using vhci_hcd
[  397.791205][T11561] vhci_hcd: connection closed
[  397.791722][ T9335] vhci_hcd vhci_hcd.1: stop threads
[  397.795962][ T9335] vhci_hcd vhci_hcd.1: release socket
[  397.798548][ T9335] vhci_hcd vhci_hcd.1: disconnect device
[  397.821353][ T5743] Bluetooth: hci0: ACL packet for unknown connection handle 201
[  399.690512][T11600] FAULT_INJECTION: forcing a failure.
[  399.690512][T11600] name failslab, interval 1, probability 0, space 0, times 0
[  399.695967][T11600] CPU: 2 UID: 0 PID: 11600 Comm: syz.4.1588 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  399.695994][T11600] Tainted: [L]=SOFTLOCKUP
[  399.696000][T11600] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  399.696009][T11600] Call Trace:
[  399.696015][T11600]  <TASK>
[  399.696023][T11600]  dump_stack_lvl+0x100/0x190
[  399.696046][T11600]  should_fail_ex.cold+0x5/0xa
[  399.696069][T11600]  ? tomoyo_realpath_from_path+0xb6/0x690
[  399.696089][T11600]  should_failslab+0xc2/0x120
[  399.696109][T11600]  __kmalloc_noprof+0xe0/0x850
[  399.696134][T11600]  ? kfree+0x1dd/0x6c0
[  399.696161][T11600]  tomoyo_realpath_from_path+0xb6/0x690
[  399.696188][T11600]  tomoyo_path_number_perm+0x23c/0x580
[  399.696205][T11600]  ? tomoyo_path_number_perm+0x22e/0x580
[  399.696224][T11600]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  399.696243][T11600]  ? get_pid_task+0x106/0x250
[  399.696289][T11600]  ? find_held_lock+0x2b/0x80
[  399.696310][T11600]  ? __fget_files+0x215/0x3d0
[  399.696328][T11600]  ? hook_file_ioctl_common+0x149/0x410
[  399.696346][T11600]  ? __fget_files+0x215/0x3d0
[  399.696369][T11600]  ? __fget_files+0x21f/0x3d0
[  399.696392][T11600]  security_file_ioctl_compat+0xd3/0x230
[  399.696412][T11600]  __ia32_compat_sys_ioctl+0xc2/0x360
[  399.696432][T11600]  __do_fast_syscall_32+0xe7/0x950
[  399.696455][T11600]  ? lockdep_hardirqs_on+0x78/0x100
[  399.696479][T11600]  do_fast_syscall_32+0x32/0x70
[  399.696502][T11600]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  399.696524][T11600] RIP: 0023:0xf701efcc
[  399.696538][T11600] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  399.696553][T11600] RSP: 002b:00000000f53ec50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  399.696570][T11600] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000005423
[  399.696580][T11600] RDX: 0000000080000300 RSI: 0000000000000000 RDI: 0000000000000000
[  399.696591][T11600] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  399.696599][T11600] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  399.696610][T11600] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  399.696633][T11600]  </TASK>
[  399.696640][T11600] ERROR: Out of memory at tomoyo_realpath_from_path.
[  401.785224][T11631] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1595'.
[  401.788456][T11631] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1595'.
[  401.791625][T11631] netlink: 'syz.1.1595': attribute type 13 has an invalid length.
[  401.973731][ T5886] usb 8-1: new high-speed USB device number 15 using dummy_hcd
[  402.102106][ T6624] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[  402.134025][ T5886] usb 8-1: Using ep0 maxpacket: 16
[  402.138121][ T5886] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  402.141661][ T5886] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  402.272911][ T6624] usb 6-1: Using ep0 maxpacket: 16
[  402.276837][ T6624] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  402.281027][ T6624] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  402.284974][ T6624] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  402.289758][ T6624] usb 6-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  402.293222][ T6624] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  402.297492][ T6624] usb 6-1: config 0 descriptor??
[  402.419979][ T5886] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  402.424533][ T5886] usb 8-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  402.427562][ T5886] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  402.431448][ T5886] usb 8-1: config 0 descriptor??
[  402.639066][ T1431] ieee802154 phy1 wpan1: encryption failed: -22
[  402.719458][T11645] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  402.738422][T11633] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1596'.
[  402.813444][T11633] random: crng reseeded on system resumption
[  402.868338][T11626] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1594'.
[  402.890181][T11652] 9pnet: p9_errstr2errno: server reported unknown error ÿ
[  402.907570][ T6624] usbhid 6-1:0.0: can't add hid device: -71
[  402.909388][ T6624] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  402.917812][ T6624] usb 6-1: USB disconnect, device number 19
[  402.942041][T11655] random: crng reseeded on system resumption
[  402.954017][T11656] comedi comedi3: pcl816: I/O port conflict (0x100,16)
[  403.014321][ T5886] usbhid 8-1:0.0: can't add hid device: -71
[  403.016414][ T5886] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[  403.029136][ T5886] usb 8-1: USB disconnect, device number 15
[  403.149251][ T5822] usb 40-1: device descriptor read/8, error -110
[  403.153813][T11662] Bluetooth: MGMT ver 1.23
[  403.160511][ T5743] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201'
[  403.165564][ T5743] CPU: 2 UID: 0 PID: 5743 Comm: kworker/u33:2 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  403.165593][ T5743] Tainted: [L]=SOFTLOCKUP
[  403.165601][ T5743] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  403.165650][ T5743] Workqueue: hci2 hci_rx_work
[  403.165678][ T5743] Call Trace:
[  403.165686][ T5743]  <TASK>
[  403.165694][ T5743]  dump_stack_lvl+0x100/0x190
[  403.165718][ T5743]  sysfs_warn_dup.cold+0x1c/0x28
[  403.165754][ T5743]  sysfs_create_dir_ns+0x24b/0x2b0
[  403.165776][ T5743]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  403.165795][ T5743]  ? find_held_lock+0x2b/0x80
[  403.165820][ T5743]  ? kobject_add_internal+0x25f/0x930
[  403.165849][ T5743]  ? kobject_add_internal+0x25f/0x930
[  403.165880][ T5743]  ? do_raw_spin_unlock+0x145/0x1e0
[  403.165905][ T5743]  kobject_add_internal+0x2c8/0x930
[  403.165938][ T5743]  kobject_add+0x16a/0x1e0
[  403.165966][ T5743]  ? __pfx_kobject_add+0x10/0x10
[  403.165992][ T5743]  ? class_to_subsys+0x10f/0x150
[  403.166021][ T5743]  ? kobject_put+0xb9/0x640
[  403.166046][ T5743]  ? _raw_spin_unlock+0x28/0x50
[  403.166073][ T5743]  device_add+0x294/0x1950
[  403.166097][ T5743]  ? __pfx_dev_set_name+0x10/0x10
[  403.166124][ T5743]  ? __pfx_device_add+0x10/0x10
[  403.166148][ T5743]  ? mgmt_send_event_skb+0x2fb/0x460
[  403.166178][ T5743]  hci_conn_add_sysfs+0x1a3/0x260
[  403.166205][ T5743]  le_conn_complete_evt+0x11eb/0x1f60
[  403.166236][ T5743]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  403.166266][ T5743]  hci_le_conn_complete_evt+0x23c/0x3a0
[  403.166290][ T5743]  ? skb_pull_data+0x15f/0x1e0
[  403.166318][ T5743]  hci_le_meta_evt+0x34a/0x5f0
[  403.166342][ T5743]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[  403.166369][ T5743]  hci_event_packet+0x51c/0xcd0
[  403.166391][ T5743]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  403.166416][ T5743]  ? __pfx_hci_event_packet+0x10/0x10
[  403.166441][ T5743]  ? kcov_remote_start+0x374/0x660
[  403.166466][ T5743]  ? lockdep_hardirqs_on+0x78/0x100
[  403.166496][ T5743]  hci_rx_work+0x451/0xfc0
[  403.166523][ T5743]  process_one_work+0xa0e/0x1980
[  403.166556][ T5743]  ? __pfx_process_one_work+0x10/0x10
[  403.166584][ T5743]  ? __pfx_hci_rx_work+0x10/0x10
[  403.166608][ T5743]  worker_thread+0x5ef/0xe50
[  403.166638][ T5743]  ? kthread+0x13a/0x450
[  403.166653][ T5743]  ? __pfx_worker_thread+0x10/0x10
[  403.166670][ T5743]  kthread+0x370/0x450
[  403.166686][ T5743]  ? __pfx_kthread+0x10/0x10
[  403.166702][ T5743]  ret_from_fork+0x72b/0xd50
[  403.166724][ T5743]  ? __pfx_ret_from_fork+0x10/0x10
[  403.166752][ T5743]  ? __switch_to+0x800/0x1100
[  403.166778][ T5743]  ? __pfx_kthread+0x10/0x10
[  403.166797][ T5743]  ret_from_fork_asm+0x1a/0x30
[  403.166838][ T5743]  </TASK>
[  403.167541][ T5743] kobject: kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  403.270206][ T5743] Bluetooth: hci2: failed to register connection device
[  403.302484][T11670] capability: warning: `syz.4.1605' uses 32-bit capabilities (legacy support in use)
[  403.582769][ T5822] usb usb40-port1: attempt power cycle
[  403.722193][T11679] bridge0: port 1(dummy0) entered disabled state
[  403.725039][T11679] bridge0: port 2(bridge_slave_1) entered disabled state
[  404.197719][ T5822] usb usb40-port1: unable to enumerate USB device
[  404.399592][   T24] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  404.559931][   T24] usb 7-1: Using ep0 maxpacket: 16
[  404.563776][   T24] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  404.568350][   T24] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  404.572675][   T24] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  404.578387][   T24] usb 7-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  404.582144][   T24] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  404.589738][   T24] usb 7-1: config 0 descriptor??
[  404.933522][   T40] kauditd_printk_skb: 38 callbacks suppressed
[  404.933537][   T40] audit: type=1326 audit(1778048863.352:457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11706 comm="syz.3.1618" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93fcc code=0x7ffc0000
[  404.943302][   T40] audit: type=1326 audit(1778048863.352:458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11706 comm="syz.3.1618" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93fcc code=0x7ffc0000
[  404.952528][   T40] audit: type=1326 audit(1778048863.361:459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11706 comm="syz.3.1618" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f93fcc code=0x7ffc0000
[  404.961780][   T40] audit: type=1326 audit(1778048863.361:460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11706 comm="syz.3.1618" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93fcc code=0x7ffc0000
[  404.970845][   T40] audit: type=1326 audit(1778048863.361:461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11706 comm="syz.3.1618" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f93fcc code=0x7ffc0000
[  404.979983][   T40] audit: type=1326 audit(1778048863.361:462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11706 comm="syz.3.1618" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93fcc code=0x7ffc0000
[  404.988908][   T40] audit: type=1326 audit(1778048863.361:463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11706 comm="syz.3.1618" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f93fcc code=0x7ffc0000
[  404.998098][   T40] audit: type=1326 audit(1778048863.361:464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11706 comm="syz.3.1618" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93fcc code=0x7ffc0000
[  405.015719][   T40] audit: type=1326 audit(1778048863.361:465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11706 comm="syz.3.1618" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f93fcc code=0x7ffc0000
[  405.024818][   T40] audit: type=1326 audit(1778048863.361:466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11706 comm="syz.3.1618" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93fcc code=0x7ffc0000
[  405.035720][T11700] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1615'.
[  405.282095][T11700] random: crng reseeded on system resumption
[  405.410764][   T24] usbhid 7-1:0.0: can't add hid device: -71
[  405.414145][   T24] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  405.442734][   T24] usb 7-1: USB disconnect, device number 12
[  406.008094][T11723] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  406.011631][T11723] syzkaller0: entered promiscuous mode
[  406.016064][T11723] syzkaller0: entered allmulticast mode
[  406.045734][T11723] tipc: Resetting bearer <eth:syzkaller0>
[  406.048661][T11723] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  406.053179][T11723] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  406.068207][T11721] tipc: Resetting bearer <eth:syzkaller0>
[  406.080132][T11721] tipc: Disabling bearer <eth:syzkaller0>
[  408.287221][   T24] usb 8-1: new high-speed USB device number 16 using dummy_hcd
[  408.849350][T11775] FAULT_INJECTION: forcing a failure.
[  408.849350][T11775] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  408.854272][T11775] CPU: 3 UID: 0 PID: 11775 Comm: syz.4.1637 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  408.854298][T11775] Tainted: [L]=SOFTLOCKUP
[  408.854304][T11775] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  408.854314][T11775] Call Trace:
[  408.854321][T11775]  <TASK>
[  408.854327][T11775]  dump_stack_lvl+0x100/0x190
[  408.854351][T11775]  should_fail_ex.cold+0x5/0xa
[  408.854374][T11775]  _copy_from_user+0x2e/0xd0
[  408.854400][T11775]  get_compat_msghdr+0xb3/0x4b0
[  408.854417][T11775]  ? __pfx_get_compat_msghdr+0x10/0x10
[  408.854439][T11775]  ? _kstrtoull+0x13c/0x1f0
[  408.854459][T11775]  ? __pfx__kstrtoull+0x10/0x10
[  408.854482][T11775]  ___sys_sendmsg+0x1b6/0x1e0
[  408.854508][T11775]  ? __pfx____sys_sendmsg+0x10/0x10
[  408.854531][T11775]  ? __lock_acquire+0x4a5/0x2630
[  408.854571][T11775]  __sys_sendmmsg+0x2ff/0x430
[  408.854594][T11775]  ? __pfx___sys_sendmmsg+0x10/0x10
[  408.854622][T11775]  ? __fget_files+0x215/0x3d0
[  408.854649][T11775]  ? fput+0x79/0x100
[  408.854672][T11775]  ? ksys_write+0x1ac/0x250
[  408.854693][T11775]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  408.854713][T11775]  ? lockdep_hardirqs_on+0x78/0x100
[  408.854735][T11775]  __do_fast_syscall_32+0xe7/0x950
[  408.854758][T11775]  ? lockdep_hardirqs_on+0x78/0x100
[  408.854781][T11775]  do_fast_syscall_32+0x32/0x70
[  408.854805][T11775]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  408.854827][T11775] RIP: 0023:0xf701efcc
[  408.854841][T11775] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  408.854857][T11775] RSP: 002b:00000000f540d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000159
[  408.854874][T11775] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000a00
[  408.854885][T11775] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[  408.854895][T11775] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  408.854905][T11775] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  408.854914][T11775] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  408.854937][T11775]  </TASK>
[  408.900847][   T24] usb 8-1: Using ep0 maxpacket: 16
[  408.908711][T11779] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  408.915750][   T24] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  408.915785][   T24] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  408.915804][   T24] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  408.915836][   T24] usb 8-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  408.915855][   T24] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  408.918875][   T24] usb 8-1: config 0 descriptor??
[  408.921459][T11779] block device autoloading is deprecated and will be removed.
[  409.360616][T11757] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1631'.
[  409.440027][T11813] random: crng reseeded on system resumption
[  409.449150][   T24] usbhid 8-1:0.0: can't add hid device: -71
[  409.451500][   T24] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[  409.458068][   T24] usb 8-1: USB disconnect, device number 16
[  410.322717][T11837] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1658'.
[  420.036736][T11869] sctp: Trying to GSO but underlying device doesn't support it.
[  420.375158][ T6222] usb 8-1: new high-speed USB device number 17 using dummy_hcd
[  420.474989][T11886] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1674'.
[  420.535664][ T6222] usb 8-1: Using ep0 maxpacket: 16
[  420.543022][ T6222] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  420.548227][ T6222] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  420.553269][ T6222] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  420.559193][ T6222] usb 8-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  420.563227][ T6222] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  420.581482][ T6222] usb 8-1: config 0 descriptor??
[  421.026416][T11873] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1669'.
[  421.095858][T11895] random: crng reseeded on system resumption
[  421.109607][ T6222] usbhid 8-1:0.0: can't add hid device: -71
[  421.111961][ T6222] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[  421.121820][ T6222] usb 8-1: USB disconnect, device number 17
[  421.334526][T11899] FAULT_INJECTION: forcing a failure.
[  421.334526][T11899] name failslab, interval 1, probability 0, space 0, times 0
[  421.341399][T11899] CPU: 2 UID: 0 PID: 11899 Comm: syz.1.1678 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  421.341426][T11899] Tainted: [L]=SOFTLOCKUP
[  421.341432][T11899] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  421.341441][T11899] Call Trace:
[  421.341472][T11899]  <TASK>
[  421.341479][T11899]  dump_stack_lvl+0x100/0x190
[  421.341515][T11899]  should_fail_ex.cold+0x5/0xa
[  421.341537][T11899]  should_failslab+0xc2/0x120
[  421.341556][T11899]  __kvmalloc_node_noprof+0xfa/0xa00
[  421.341572][T11899]  ? video_usercopy+0x703/0x1490
[  421.341602][T11899]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  421.341628][T11899]  video_usercopy+0x703/0x1490
[  421.341652][T11899]  ? __pfx___video_do_ioctl+0x10/0x10
[  421.341678][T11899]  ? __pfx_video_usercopy+0x10/0x10
[  421.341708][T11899]  ? __fget_files+0x215/0x3d0
[  421.341748][T11899]  ? hook_file_ioctl_common+0x149/0x410
[  421.341777][T11899]  v4l2_ioctl+0x1bd/0x250
[  421.341804][T11899]  v4l2_compat_ioctl32+0x20f/0x2d0
[  421.341824][T11899]  ? __pfx_v4l2_compat_ioctl32+0x10/0x10
[  421.341846][T11899]  __ia32_compat_sys_ioctl+0x2cf/0x360
[  421.341866][T11899]  __do_fast_syscall_32+0xe7/0x950
[  421.341894][T11899]  ? lockdep_hardirqs_on+0x78/0x100
[  421.341917][T11899]  do_fast_syscall_32+0x32/0x70
[  421.341938][T11899]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  421.341960][T11899] RIP: 0023:0xf6fdefcc
[  421.341975][T11899] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  421.341990][T11899] RSP: 002b:00000000f53cd50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  421.342007][T11899] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0185647
[  421.342017][T11899] RDX: 0000000080000080 RSI: 0000000000000000 RDI: 0000000000000000
[  421.342028][T11899] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  421.342037][T11899] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  421.342046][T11899] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  421.342066][T11899]  </TASK>
[  421.450737][T11901] syzkaller0: entered promiscuous mode
[  421.452745][T11901] syzkaller0: entered allmulticast mode
[  421.678183][T11903] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1680'.
[  423.455599][   T40] kauditd_printk_skb: 63 callbacks suppressed
[  423.455668][   T40] audit: type=1326 audit(1778048880.692:530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11928 comm="syz.1.1690" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6fdefcc code=0x7ffc0000
[  423.458415][T11927] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1689'.
[  423.471718][T11927] bridge0: port 1(bridge_slave_0) entered disabled state
[  423.474540][   T40] audit: type=1326 audit(1778048880.692:531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11928 comm="syz.1.1690" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6fdefcc code=0x7ffc0000
[  423.486372][T11927] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1689'.
[  423.495552][   T40] audit: type=1326 audit(1778048880.692:532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11928 comm="syz.1.1690" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf6fdefcc code=0x7ffc0000
[  423.509066][   T40] audit: type=1326 audit(1778048880.702:533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11928 comm="syz.1.1690" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6fdefcc code=0x7ffc0000
[  423.527314][   T40] audit: type=1326 audit(1778048880.702:534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11928 comm="syz.1.1690" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6fdefcc code=0x7ffc0000
[  423.568252][   T40] audit: type=1326 audit(1778048880.702:535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11928 comm="syz.1.1690" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf6fdefcc code=0x7ffc0000
[  423.634407][   T40] audit: type=1326 audit(1778048880.702:536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11928 comm="syz.1.1690" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6fdefcc code=0x7ffc0000
[  423.643626][   T40] audit: type=1326 audit(1778048880.702:537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11928 comm="syz.1.1690" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6fdefcc code=0x7ffc0000
[  423.653858][   T40] audit: type=1326 audit(1778048880.702:538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11928 comm="syz.1.1690" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf6fdefcc code=0x7ffc0000
[  423.662973][   T40] audit: type=1326 audit(1778048880.702:539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11928 comm="syz.1.1690" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6fdefcc code=0x7ffc0000
[  426.509013][ T5743] Bluetooth: hci1: command 0x0c1a tx timeout
[  429.287341][   T40] kauditd_printk_skb: 73 callbacks suppressed
[  429.287359][   T40] audit: type=1326 audit(2000000004.744:613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11937 comm="syz.2.1692" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706efcc code=0x7ffc0000
[  429.299170][   T40] audit: type=1326 audit(2000000004.744:614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11937 comm="syz.2.1692" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706efcc code=0x7ffc0000
[  429.308999][   T40] audit: type=1326 audit(2000000004.941:615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11928 comm="syz.1.1690" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6fdefcc code=0x7ffc0000
[  490.144223][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  536.222675][    C0] ------------[ cut here ]------------
[  536.226282][    C0] 1
[  536.226292][    C0] WARNING: kernel/rcu/tree_stall.h:1049 at rcu_check_gp_start_stall.part.0+0x1c4/0x4b0, CPU#0: syz.3.1694/11946
[  536.232194][    C0] Modules linked in:
[  536.234691][    C0] CPU: 0 UID: 0 PID: 11946 Comm: syz.3.1694 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  536.239293][    C0] Tainted: [L]=SOFTLOCKUP
[  536.241233][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  536.245630][    C0] RIP: 0010:rcu_check_gp_start_stall.part.0+0x1c4/0x4b0
[  536.248671][    C0] Code: 88 61 01 00 00 be 04 00 00 00 48 c7 c7 40 d3 19 9b e8 80 fe 87 00 b8 01 00 00 00 87 05 d5 21 2d 19 85 c0 0f 85 3d 01 00 00 90 <0f> 0b 90 48 c7 c3 c4 fb d7 90 48 81 fd c0 06 7f 8e 74 5a 48 b8 00
[  536.256962][    C0] RSP: 0018:ffffc90000007de8 EFLAGS: 00010046
[  536.259552][    C0] RAX: 0000000000000000 RBX: 0000000000002904 RCX: ffffffff81ecb160
[  536.263018][    C0] RDX: 0000000000000001 RSI: 0000000000000004 RDI: ffffffff9b19d340
[  536.266510][    C0] RBP: ffffffff8e7f06c0 R08: 0000000000000001 R09: fffffbfff3633a68
[  536.269934][    C0] R10: 0000000000000003 R11: 0000000000000000 R12: 1ffffffff1c81e50
[  536.273333][    C0] R13: 0000000000000246 R14: 0000000000000004 R15: 0000000000000000
[  536.276750][    C0] FS:  0000000000000000(0000) GS:ffff88809717d000(0063) knlGS:00000000f5456b40
[  536.280706][    C0] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  536.283633][    C0] CR2: 000000000c35d187 CR3: 0000000078287000 CR4: 0000000000352ef0
[  536.287122][    C0] Call Trace:
[  536.288639][    C0]  <IRQ>
[  536.289944][    C0]  rcu_core+0x2cb/0x10d0
[  536.291845][    C0]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  536.294452][    C0]  ? __pfx_wake_up_bit+0x10/0x10
[  536.296539][    C0]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  536.299113][    C0]  ? __pfx_rcu_core+0x10/0x10
[  536.301216][    C0]  ? trace_tasklet_exit+0x124/0x170
[  536.303514][    C0]  ? tasklet_action_common+0x296/0x3d0
[  536.305981][    C0]  handle_softirqs+0x1ea/0xa00
[  536.308126][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  536.310472][    C0]  ? _raw_spin_unlock+0x28/0x50
[  536.312629][    C0]  ? __hrtimer_rearm_deferred+0x9b/0x740
[  536.315092][    C0]  __irq_exit_rcu+0x162/0x210
[  536.317168][    C0]  irq_exit_rcu+0x9/0x30
[  536.319020][    C0]  sysvec_apic_timer_interrupt+0xa3/0xc0
[  536.321475][    C0]  </IRQ>
[  536.322768][    C0]  <TASK>
[  536.323977][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  536.326532][    C0] RIP: 0010:smp_call_function_many_cond+0x589/0x1700
[  536.329477][    C0] Code: b8 00 00 00 00 00 fc ff df 48 8b 54 24 08 49 89 d5 49 89 d4 49 c1 ed 03 41 83 e4 07 49 01 c5 41 83 c4 03 e8 09 73 0c 00 f3 90 <41> 0f b6 45 00 41 38 c4 7c 08 84 c0 0f 85 63 0f 00 00 8b 45 08 31
[  536.337541][    C0] RSP: 0018:ffffc90003f87b28 EFLAGS: 00000246
[  536.340181][    C0] RAX: 0000000000080000 RBX: 0000000000000001 RCX: ffffc9000d082000
[  536.343091][    C0] RDX: 0000000000080000 RSI: ffffffff81fb74d7 RDI: ffff88802904a500
[  536.346547][    C0] RBP: ffff88802b341080 R08: 0000000000000005 R09: 0000000000000000
[  536.349916][    C0] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000003
[  536.353245][    C0] R13: ffffed1005668211 R14: 0000000000000001 R15: ffff88802b23c700
[  536.356693][    C0]  ? smp_call_function_many_cond+0x587/0x1700
[  536.359372][    C0]  ? smp_call_function_many_cond+0x587/0x1700
[  536.362010][    C0]  ? __pfx_retrigger_next_event+0x10/0x10
[  536.364243][    C0]  ? clock_was_set+0x1c3/0x870
[  536.366247][    C0]  ? __pfx_smp_call_function_many_cond+0x10/0x10
[  536.369020][    C0]  ? find_held_lock+0x2b/0x80
[  536.371103][    C0]  ? mark_held_locks+0x40/0x70
[  536.373179][    C0]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  536.375733][    C0]  clock_was_set+0x62b/0x870
[  536.377772][    C0]  ? __pfx_clock_was_set+0x10/0x10
[  536.379988][    C0]  ? rcu_is_watching+0x12/0xc0
[  536.382084][    C0]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  536.384646][    C0]  do_settimeofday64+0x330/0x4d0
[  536.386830][    C0]  ? __pfx_do_settimeofday64+0x10/0x10
[  536.389257][    C0]  ? security_capable+0x80/0x260
[  536.391450][    C0]  ? asus_raw_event+0xa93/0x1520
[  536.393655][    C0]  ? capable+0xd3/0xf0
[  536.395473][    C0]  do_sys_settimeofday64+0x1dc/0x260
[  536.397814][    C0]  __ia32_sys_clock_settime32+0x1c1/0x2a0
[  536.400304][    C0]  ? __pfx___ia32_sys_clock_settime32+0x10/0x10
[  536.403017][    C0]  ? rcu_is_watching+0x12/0xc0
[  536.405060][    C0]  __do_fast_syscall_32+0xe7/0x950
[  536.407214][    C0]  do_fast_syscall_32+0x32/0x70
[  536.409381][    C0]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  536.412129][    C0] RIP: 0023:0xf7f93fcc
[  536.413932][    C0] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  536.421736][    C0] RSP: 002b:00000000f545650c EFLAGS: 00000292 ORIG_RAX: 0000000000000108
[  536.425237][    C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000080000240
[  536.428523][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  536.431912][    C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  536.435175][    C0] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  536.438487][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  536.441799][    C0]  </TASK>
[  536.443122][    C0] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  536.446239][    C0] CPU: 0 UID: 0 PID: 11946 Comm: syz.3.1694 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  536.450070][    C0] Tainted: [L]=SOFTLOCKUP
[  536.451454][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  536.454772][    C0] Call Trace:
[  536.456221][    C0]  <IRQ>
[  536.457478][    C0]  dump_stack_lvl+0x100/0x190
[  536.459533][    C0]  vpanic+0x552/0x970
[  536.461294][    C0]  ? __pfx_vpanic+0x10/0x10
[  536.463238][    C0]  panic+0xd1/0xe0
[  536.464761][    C0]  ? __pfx_panic+0x10/0x10
[  536.466467][    C0]  ? check_panic_on_warn+0x1f/0x90
[  536.468638][    C0]  check_panic_on_warn.cold+0x19/0x34
[  536.470872][    C0]  ? rcu_check_gp_start_stall.part.0+0x1c4/0x4b0
[  536.473434][    C0]  __warn.cold+0x191/0x328
[  536.475305][    C0]  __report_bug+0x296/0x3d0
[  536.477203][    C0]  ? rcu_check_gp_start_stall.part.0+0x1c4/0x4b0
[  536.479847][    C0]  ? __pfx___report_bug+0x10/0x10
[  536.481959][    C0]  ? mark_held_locks+0x40/0x70
[  536.483676][    C0]  ? kcov_remote_stop+0x268/0x540
[  536.485653][    C0]  ? lockdep_hardirqs_on+0x78/0x100
[  536.487847][    C0]  ? __lock_acquire+0x4a5/0x2630
[  536.489931][    C0]  ? rcu_check_gp_start_stall.part.0+0x1c4/0x4b0
[  536.492541][    C0]  report_bug+0xb2/0x220
[  536.494334][    C0]  ? rcu_check_gp_start_stall.part.0+0x1c4/0x4b0
[  536.496901][    C0]  handle_bug+0x16a/0x2a0
[  536.498659][    C0]  exc_invalid_op+0x17/0x50
[  536.500574][    C0]  asm_exc_invalid_op+0x1a/0x20
[  536.502579][    C0] RIP: 0010:rcu_check_gp_start_stall.part.0+0x1c4/0x4b0
[  536.505211][    C0] Code: 88 61 01 00 00 be 04 00 00 00 48 c7 c7 40 d3 19 9b e8 80 fe 87 00 b8 01 00 00 00 87 05 d5 21 2d 19 85 c0 0f 85 3d 01 00 00 90 <0f> 0b 90 48 c7 c3 c4 fb d7 90 48 81 fd c0 06 7f 8e 74 5a 48 b8 00
[  536.512943][    C0] RSP: 0018:ffffc90000007de8 EFLAGS: 00010046
[  536.515397][    C0] RAX: 0000000000000000 RBX: 0000000000002904 RCX: ffffffff81ecb160
[  536.518625][    C0] RDX: 0000000000000001 RSI: 0000000000000004 RDI: ffffffff9b19d340
[  536.521884][    C0] RBP: ffffffff8e7f06c0 R08: 0000000000000001 R09: fffffbfff3633a68
[  536.525296][    C0] R10: 0000000000000003 R11: 0000000000000000 R12: 1ffffffff1c81e50
[  536.528683][    C0] R13: 0000000000000246 R14: 0000000000000004 R15: 0000000000000000
[  536.532051][    C0]  ? rcu_check_gp_start_stall.part.0+0x1b0/0x4b0
[  536.534790][    C0]  ? rcu_check_gp_start_stall.part.0+0x1b0/0x4b0
[  536.537504][    C0]  rcu_core+0x2cb/0x10d0
[  536.539344][    C0]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  536.541798][    C0]  ? __pfx_wake_up_bit+0x10/0x10
[  536.543931][    C0]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  536.546365][    C0]  ? __pfx_rcu_core+0x10/0x10
[  536.548402][    C0]  ? trace_tasklet_exit+0x124/0x170
[  536.550708][    C0]  ? tasklet_action_common+0x296/0x3d0
[  536.553111][    C0]  handle_softirqs+0x1ea/0xa00
[  536.555121][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  536.557468][    C0]  ? _raw_spin_unlock+0x28/0x50
[  536.559596][    C0]  ? __hrtimer_rearm_deferred+0x9b/0x740
[  536.562009][    C0]  __irq_exit_rcu+0x162/0x210
[  536.564042][    C0]  irq_exit_rcu+0x9/0x30
[  536.565929][    C0]  sysvec_apic_timer_interrupt+0xa3/0xc0
[  536.568411][    C0]  </IRQ>
[  536.569733][    C0]  <TASK>
[  536.570973][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  536.573701][    C0] RIP: 0010:smp_call_function_many_cond+0x589/0x1700
[  536.576610][    C0] Code: b8 00 00 00 00 00 fc ff df 48 8b 54 24 08 49 89 d5 49 89 d4 49 c1 ed 03 41 83 e4 07 49 01 c5 41 83 c4 03 e8 09 73 0c 00 f3 90 <41> 0f b6 45 00 41 38 c4 7c 08 84 c0 0f 85 63 0f 00 00 8b 45 08 31
[  536.584916][    C0] RSP: 0018:ffffc90003f87b28 EFLAGS: 00000246
[  536.587538][    C0] RAX: 0000000000080000 RBX: 0000000000000001 RCX: ffffc9000d082000
[  536.591020][    C0] RDX: 0000000000080000 RSI: ffffffff81fb74d7 RDI: ffff88802904a500
[  536.594458][    C0] RBP: ffff88802b341080 R08: 0000000000000005 R09: 0000000000000000
[  536.597836][    C0] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000003
[  536.601266][    C0] R13: ffffed1005668211 R14: 0000000000000001 R15: ffff88802b23c700
[  536.604641][    C0]  ? smp_call_function_many_cond+0x587/0x1700
[  536.607291][    C0]  ? smp_call_function_many_cond+0x587/0x1700
[  536.609963][    C0]  ? __pfx_retrigger_next_event+0x10/0x10
[  536.612468][    C0]  ? clock_was_set+0x1c3/0x870
[  536.614589][    C0]  ? __pfx_smp_call_function_many_cond+0x10/0x10
[  536.617350][    C0]  ? find_held_lock+0x2b/0x80
[  536.619389][    C0]  ? mark_held_locks+0x40/0x70
[  536.621520][    C0]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  536.623956][    C0]  clock_was_set+0x62b/0x870
[  536.626003][    C0]  ? __pfx_clock_was_set+0x10/0x10
[  536.628274][    C0]  ? rcu_is_watching+0x12/0xc0
[  536.630376][    C0]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  536.632954][    C0]  do_settimeofday64+0x330/0x4d0
[  536.635122][    C0]  ? __pfx_do_settimeofday64+0x10/0x10
[  536.637484][    C0]  ? security_capable+0x80/0x260
[  536.639623][    C0]  ? asus_raw_event+0xa93/0x1520
[  536.641766][    C0]  ? capable+0xd3/0xf0
[  536.643582][    C0]  do_sys_settimeofday64+0x1dc/0x260
[  536.645911][    C0]  __ia32_sys_clock_settime32+0x1c1/0x2a0
[  536.648377][    C0]  ? __pfx___ia32_sys_clock_settime32+0x10/0x10
[  536.650746][    C0]  ? rcu_is_watching+0x12/0xc0
[  536.652305][    C0]  __do_fast_syscall_32+0xe7/0x950
[  536.654379][    C0]  do_fast_syscall_32+0x32/0x70
[  536.656398][    C0]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  536.659067][    C0] RIP: 0023:0xf7f93fcc
[  536.660879][    C0] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  536.668890][    C0] RSP: 002b:00000000f545650c EFLAGS: 00000292 ORIG_RAX: 0000000000000108
[  536.672431][    C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000080000240
[  536.675824][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  536.679107][    C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  536.682484][    C0] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  536.685916][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  536.689248][    C0]  </TASK>
[  537.796141][    C0] Shutting down cpus with NMI
[  537.798979][    C0] Kernel Offset: disabled
[  537.800925][    C0] Rebooting in 86400 seconds..