last executing test programs:

19.349487339s ago: executing program 3 (id=1437):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r1, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3f}}]}, 0x3c}}, 0x4000084)

19.299962326s ago: executing program 3 (id=1438):
r0 = socket$igmp(0x2, 0x3, 0x2)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x3f00)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0x40305828, 0x0)
ioctl$BINDER_GET_NODE_INFO_FOR_REF(r1, 0xc018620c, &(0x7f00000001c0))
r2 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x80000)
syz_emit_ethernet(0x0, 0x0, &(0x7f0000000180)={0x0, 0x3, [0xfa8, 0x65f, 0x5a6, 0x70b]})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2b, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7b, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = socket(0x10, 0x3, 0x0)
write(r7, &(0x7f0000000000)="1c0000001a005f0214f9f407000904001f000000fe00000000000000", 0x1c)
fsopen(&(0x7f00000000c0)='nfs4\x00', 0x0)
r8 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$RTC_UIE_ON(r8, 0x7003)
ioctl$RTC_SET_TIME(r8, 0x4024700a, &(0x7f00000000c0)={0x16, 0x5, 0x14, 0x8, 0x5, 0x800b7, 0x1, 0x40f5, 0x1})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000740)=@newlink={0x44, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x215}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}]}}}, @IFLA_LINK={0x8}]}, 0x44}, 0x1, 0xba01}, 0x0)
openat$fuse(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, 0x0, 0x0)

18.338933246s ago: executing program 3 (id=1444):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x803, 0x0)
socket$packet(0x11, 0x2, 0x300)
socket$vsock_stream(0x28, 0x1, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
socket$inet_dccp(0x2, 0x6, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$packet(0x11, 0x3, 0x300)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
pipe(&(0x7f0000000100)={<r5=>0xffffffffffffffff})
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000040)={'lo\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000005840)=@deltfilter={0x34, 0x2d, 0x1, 0x78bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r8, {0xfff3, 0x3}, {0xffff, 0xffff}, {0x0, 0xb}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x4}}]}, 0x34}}, 0x20044000)
sendmmsg$inet(r5, &(0x7f00000009c0)=[{{&(0x7f0000000040)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f0000000300)=[{&(0x7f00000004c0)="9645a8af8e1b663ee3eb6f08e3e5ed7c2128db91cbbfc5420a91aa05fa13ce90897448960587ad056ee808243508f7cfad72961f917a3acbd2c65fc4a2f72c6a11219e63d33a98ea24613470922c947dab232b9e18f202514fb678227a2fae8b43d982c22e20df657f55acbd7d0b55b282d41620c1e45fee6c2413bf9f46f7c11880b98ae49549cee9220317e2ed4fb2fcdf4338d97a7f112e6a75f2267e9aee5159107ec33f94459a31cacfb39c357da28c71a083736bedc8125c99c0aae9754d8e5ec198485c9d5bc4730f70f470e23570343b403c", 0xd6}, {&(0x7f0000000280)="1c3bc773de5c391832b013738db8f6617f9d4494182c033f421ff158a74080a8904935e363ece10e8a720d015a788eee6e2a52d45c6bb71b76fd67f11a9c599350820739f937a0490cc03ca36d4813", 0x4f}, {&(0x7f00000005c0)="f5e6b1337b1381ca4b5f428e1cda1ac63a2bdad6213672db9196e8aee0125548e2ef046dd752c6b986ef8a1329a0bb7f8e28c91bb84efe95f58c10ad00558d1692982fae8ecccea3635c0e06bbcf0a40028d6d4f4e1031e88e4896538f98877e84bf5ab0f55cb73b529b1f61ea01d66a5ade462bf374977c54c04a6346bae35ad685d4b7bd5400068ffe1821f797ad88eb6398357018bfbee97ba4520588cbd8d8b5370a6dd0dd4cc9b6ad2caf42bff19795633a4da06a17c3ba5290e6bca1c1ab398e81b71f18461f2ef59f125c7544c63001d04ac10c91645ec27738af376f73f7f31e0e33a25686006d15eeae72f630", 0xf1}, {&(0x7f00000003c0)="af90778ec82ddbfae84a5a27abd66c6859684eb2ad98d7ec4e19c2f72ad8fcbb561d152ae3ee269efed6624a9ee32dc82341b035f07e061039b2f2e5d04255db031cfb7547a156c8f71510c3627315453ce02a8f60b55152b791ff9311a667bf37021464a9ea091475a3d72e750b853cfcc1a7517a08", 0x76}, {&(0x7f00000000c0)}, {&(0x7f00000006c0)="217becc5c117fa1b0f8d340a864b3646fc8672c3d7169f359547c29bb2fc3305d505335ffb97d6c235afdd7ea04c436b05f7b84bb7452ee07fcddb93be299b8a771eadf823ee8968305e007c", 0x4c}], 0x6, &(0x7f0000000740)=[@ip_tos_u8={{0xd, 0x0, 0x1, 0x5}}], 0x10}}, {{&(0x7f0000000780)={0x2, 0x4e21, @multicast1}, 0x10, &(0x7f0000000940)=[{&(0x7f00000007c0)="d47cd3112f960a5ec33b3a442644f763667f73d633ad14d7caaf3f4a0cd02f1ee1696c9c9263eece5c", 0x29}, {&(0x7f0000000800)="218267247544ab1fc4b3ce05dbd74a0585219b8a32a6808b1861253b50ce4dcdb7078b4304fffb993c07838b2fa6478f20982e02d00fd6adb4bd374af695ffa7dc45ba2cae0df7791a6267623daf5b479717fc5cabb68e48a06633cefe65ce7183f479c2d9e2d2b8cc60c4eb7825ee8f6a125a4fe1a7726f9c38e863b663747b9eda3b26e8c31887d0800b9aa15daa41cac46fc5a12b12d5ab95c1a5f4c2f04012c59e04b4c22bc93b391f43b6994daa8c45f8", 0xb3}, {&(0x7f00000008c0)="5ce92dbc2816", 0x6}, {&(0x7f0000000900)="46a8204ad2cfa354da2adc034fc0ea7eec3ca0b51bb0d78acdaa38623ba1801ea2ab0819bce091d1d317bf", 0x2b}], 0x4, &(0x7f0000000980)=[@ip_tos_u8={{0xd, 0x0, 0x1, 0x58}}, @ip_retopts={{0x18, 0x0, 0x7, {[@cipso={0x86, 0x9, 0xffffffffffffffff, [{0x6, 0x3, '('}]}]}}}, @ip_pktinfo={{0x18, 0x0, 0x8, {r8, @multicast2, @broadcast}}}], 0x40}}], 0x2, 0x4000)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x403, 0xfffffffc, 0x3f, {0x0, 0x0, 0x0, 0x0, 0x88adfda5}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4803}}}, @IFLA_LINK={0x8, 0x5, r9}, @IFLA_MASTER={0x8, 0xa, r9}]}, 0x44}, 0x1, 0x300000000000000, 0x0, 0x4004}, 0x0)
sendmsg$TIPC_CMD_SET_LINK_WINDOW(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x68, r1, 0x1, 0x70bd25, 0x25dfdbff, {{}, {0x0, 0x4108}, {0x4c, 0x18, {0x401, @media='udp\x00'}}}}, 0x68}, 0x1, 0x0, 0x0, 0x4090}, 0x4040080)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="340000003c000701000000000000fc800c00018008000600ffff00000800028004007280080009000000000000000000", @ANYRES32=r0, @ANYBLOB], 0x34}, 0x1, 0x0, 0x0, 0xc000}, 0x0)

18.20776762s ago: executing program 3 (id=1445):
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
ioctl$sock_inet_SIOCGIFADDR(r0, 0x8915, 0x0)

18.207162634s ago: executing program 3 (id=1446):
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="580000000206010100000000000000000000000005000500020000000900020073797a32000000000c0007800500150009000000050004000000000011000300686173683a6e65742c6e6574000000000500010007"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x0)

18.13975123s ago: executing program 3 (id=1447):
syz_io_uring_setup(0x114, &(0x7f00000003c0)={0x0, 0x20000}, &(0x7f0000000280), &(0x7f0000000300))
ioctl$AUTOFS_IOC_READY(0xffffffffffffffff, 0x9360, 0xff)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
prlimit64(0x0, 0xf, &(0x7f0000000140)={0x8, 0x80}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
r0 = openat$tun(0xffffff9c, &(0x7f0000000040), 0x8001, 0x0)
ioctl$TUNSETPERSIST(r0, 0x400454cb, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x3, 0xffffffffffffffff, 0x0, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f000001fc40)=""/102394, 0xffffffffffffff1d)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
ioctl$FIBMAP(0xffffffffffffffff, 0x1, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioperm(0x7e, 0xb, 0x3)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r4 = open(&(0x7f00000000c0)='./file0\x00', 0x80ff, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r4, &(0x7f000001dc00)={0x2020}, 0x2020)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000f60000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1997e358660e994000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b60000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000056087d7200000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$6lowpan_enable(r4, &(0x7f0000000080)='1', 0x1)
r5 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60)
ioctl$KVM_IRQ_LINE(r5, 0x4008ae61, &(0x7f0000000040)={0x3, 0x4})
r6 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r6, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10)
sendmmsg$inet(r6, &(0x7f0000005240), 0x4000095, 0x0)

5.762456938s ago: executing program 1 (id=1504):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$vsock(0xffffff9c, &(0x7f00000001c0), 0x0, 0x0)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000200)=@req={0x6d5c, 0x0, 0x2, 0x5e}, 0x10)
getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000340)={{{@in=@remote, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0}}, {{@in=@private}, 0x0, @in6}}, &(0x7f0000000440)=0xe4)
quotactl$Q_GETFMT(0xffffffff80000401, &(0x7f0000000300)=@loop={'/dev/loop', 0x0}, r1, &(0x7f0000000480))
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff})
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
socket(0x11, 0x800000003, 0x0)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
madvise(&(0x7f0000a94000/0x1000)=nil, 0x1000, 0x64)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000140)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x8}, {{0x18, 0x1, 0x1, 0x0, r6}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x5, 0x0, 0x7, 0x9, 0x0, 0x2, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9, 0xfe00}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x0, 0x6, 0xa, 0x9, 0xfe04, 0xe1}, {0x7, 0x1, 0xb, 0x7, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {}, {0x18, 0x2, 0x2, 0x0, r3}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
pread64(0xffffffffffffffff, &(0x7f0000000280)=""/70, 0x46, 0xbbf9)
r7 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000100), 0x103902, 0x0)
sendfile(r7, r7, 0x0, 0x7ffff000)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xb, &(0x7f00000000c0)=0x6, 0x4)
write$dsp(0xffffffffffffffff, 0x0, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x18, 0x3c, 0x107, 0x0, 0x0, {0x1, 0x7c}, [@nested={0x4, 0xfc}]}, 0x18}, 0x1, 0x0, 0x0, 0xc000}, 0x0)

5.149348237s ago: executing program 2 (id=1509):
r0 = socket$igmp(0x2, 0x3, 0x2)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x3f00)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0x40305828, 0x0)
ioctl$BINDER_GET_NODE_INFO_FOR_REF(r1, 0xc018620c, &(0x7f00000001c0))
r2 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x80000)
syz_emit_ethernet(0x70, &(0x7f00000003c0)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x22}, @multicast, @void, {@llc={0x4, {@snap={0x154, 0x1, "bdc3", "6046af", 0x88be, "cf5ce973e7c1ff1a136a736f9ed9153c746e0a8eb970f074ad0f541adebb12bf979fa9550d5b6b3824844f3b536bad67f706b18e540d7b480c48551e95188c438e6907ea3c1a89f8afdf7940fd4dec282bd7955d340f95979c"}}}}}, &(0x7f0000000180)={0x0, 0x3, [0xfa8, 0x65f, 0x5a6, 0x70b]})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2b, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7b, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = socket(0x10, 0x3, 0x0)
write(r7, &(0x7f0000000000)="1c0000001a005f0214f9f407000904001f000000fe00000000000000", 0x1c)
r8 = fsopen(&(0x7f00000000c0)='nfs4\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r8, 0x6, 0x0, 0x0, 0x0)
r9 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$RTC_UIE_ON(r9, 0x7003)
ioctl$RTC_SET_TIME(r9, 0x4024700a, &(0x7f00000000c0)={0x16, 0x5, 0x14, 0x8, 0x5, 0x800b7, 0x1, 0x40f5, 0x1})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000740)=@newlink={0x44, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x215}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}]}}}, @IFLA_LINK={0x8}]}, 0x44}, 0x1, 0xba01}, 0x0)
openat$fuse(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, 0x0, 0x0)

4.649219029s ago: executing program 1 (id=1510):
pivot_root(0x0, 0x0)

4.64892983s ago: executing program 1 (id=1511):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x5c, 0x30, 0x1, 0x0, 0x0, {}, [{0x48, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x80010, 0xffffffffffffffff, 0x6a561000)
r1 = syz_open_dev$vim2m(&(0x7f0000000500), 0x6, 0x2)
ioctl$vim2m_VIDIOC_CREATE_BUFS(r1, 0x5460, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$midi(&(0x7f00000001c0), 0xac, 0x0)
r5 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_NODE_ADDR(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x24, r5, 0x201, 0x0, 0x25dfdbfb, {{}, {}, {0x8, 0x11, 0xffffffff}}}, 0x24}}, 0x20000010)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r6, 0x29, 0x2a, &(0x7f0000000140)={0x0, {{0xa, 0x4e20, 0x4e49bf67, @mcast2}}}, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000003a80)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x4e23, @loopback}]}, &(0x7f0000003ac0)=0xc)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x6d, &(0x7f0000000080)={<r7=>0x0}, &(0x7f00000000c0)=0x3930)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f0000000280)={r7, 0x9, 0x6}, &(0x7f0000000300)=0x8)

4.113111383s ago: executing program 2 (id=1513):
r0 = dup(0xffffffffffffffff)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x101042, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
io_uring_register$IORING_REGISTER_FILES_UPDATE2(r0, 0xe, &(0x7f0000000180)={0x1, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)=""/152, 0x98}], &(0x7f0000000080)=[0x4], 0x1}, 0x20)
unlink(&(0x7f0000000040)='.\x00')
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=@gettfilter={0x24, 0x2e, 0xfffffffffffffffd, 0x70bd25, 0x25dfdbff, {0x0, 0x0, 0x0, r3, {0xa, 0x6}, {0x0, 0xfff1}, {0xe, 0x10}}}, 0x24}, 0x1, 0x0, 0x0, 0x94}, 0x4044040)

3.959684509s ago: executing program 2 (id=1514):
r0 = openat$ubi_ctrl(0xffffff9c, &(0x7f0000000040), 0x10800, 0x0)
r1 = openat$cdrom(0xffffff9c, &(0x7f0000000780), 0x0, 0x0)
ioctl$CDROMSTOP(r1, 0x5307)
ioctl$sock_rose_SIOCRSCLRRT(r0, 0x89e4)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000180)={'filter\x00', 0x7, 0x4, 0x390, 0x0, 0xe4, 0x0, 0x2b0, 0x2b0, 0x2b0, 0x4, &(0x7f0000000080), {[{{@uncond, 0xbc, 0xe4}, @unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00', 0x2, {0xfff9, 0x5, 0x1}}}, {{@arp={@local, @initdev={0xac, 0x1e, 0x1, 0x0}, 0xffffff00, 0xff, 0x1, 0x8, {@empty, {[0xff, 0xff, 0xff, 0x0, 0xff, 0xff]}}, {@empty, {[0xff, 0x0, 0xff, 0xff, 0x68ce345ddf01035]}}, 0x8000, 0x9, 0x9d, 0x2, 0xfffa, 0x5, '\x00', 'veth1_to_bridge\x00', {}, {0xff}, 0x0, 0x4}, 0xbc, 0xec}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00', 0x1, {0x3e93, 0x5, 0x3ff, 0x1}}}, {{@uncond, 0xbc, 0xe0}, @unspec=@NFQUEUE1={0x24, 'NFQUEUE\x00', 0x1, {0x2, 0xfff2}}}], {{'\x00', 0xbc, 0xe0}, {0x24}}}}, 0x3dc)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r4)
ptrace$peeksig(0x4209, r4, &(0x7f0000000d00)={0x400000000000000b, 0x1, 0xd}, &(0x7f0000000d40)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}])
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000280), r6)
r8 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r8, 0x29, 0x40, &(0x7f00000005c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x518, 0x0, 0x18c, 0x203, 0x340, 0x19030000, 0x450, 0x2e0, 0x2e0, 0x450, 0x2e0, 0x3, 0x0, {[{{@uncond, 0x300, 0x2f8, 0x340, 0x0, {}, [@common=@unspec=@bpf0={{0x230}, {0x13, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x4}, {}, {}, {0x16}, {}, {}, {}, {}, {0x0, 0xff}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x20}]}}, @common=@hl={{0x24}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz0\x00'}}}, {{@uncond, 0x0, 0xc8, 0x110, 0x0, {}, [@inet=@rpfilter={{0x24}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x574)
sendmsg$IEEE802154_LLSEC_DEL_KEY(r6, &(0x7f0000000640)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000600)={&(0x7f0000000b80)=ANY=[@ANYBLOB="14000000", @ANYRES16=r7, @ANYBLOB="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"], 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x4000010)
sendmsg$IEEE802154_ASSOCIATE_REQ(r6, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="01002dbd70b8fedbdf2501000000054007000800000006000a1502008cb79221e60840590000000000000500110007000000d3ced1e24c218836df19f9a7bfa8031a73144214741457daad34b32f56a400d2bd368534d92b531805a407d5b9eb2a83a6c556d8173ae4d3481cbdd1322cb53b91b595ca3c158f23142adb890770def28226720241e5811dee0b27397623d8ff5437ec42d2aeab2ebabcc8d64183367c132f428998f142157d649598ad25a3fb95cf791b0544d825478f2e3b204f6d7af017969f387fc6c345f702838209009004"], 0x38}, 0x1, 0x0, 0x0, 0x4000000}, 0x6000800)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a34000000090a0104000000000000000007000073797a31000000000900010073797a300000000008000540000000211400007a22b28b19967b878aa31100"/92], 0x5c}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000b40)='./file1\x00', 0x2)

3.63814013s ago: executing program 1 (id=1515):
socket$alg(0x26, 0x5, 0x0)
openat$ubi_ctrl(0xffffff9c, &(0x7f0000000000), 0x40080, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000007c0)=@newtaction={0xcc, 0x30, 0x200, 0x0, 0x0, {}, [{0xb8, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x70, 0x1, 0x0, 0x0, {{0x8}, {0x48, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{}, 0xfffe}}, @TCA_IFE_PARMS={0x1c, 0x1, {{0x7fffffff, 0x1c0, 0xffffffffffffffff, 0x7, 0x8}, 0x1}}, @TCA_IFE_DMAC={0xa}]}, {0x4}, {0xc}, {0xc, 0x8, {0x3, 0x1}}}}]}]}, 0xcc}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
getpeername(r2, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
r6 = openat$vim2m(0xffffff9c, &(0x7f0000000180), 0x2, 0x0)
r7 = open(&(0x7f00009e1000)='./file0\x00', 0x48141, 0x0)
fcntl$setlease(r7, 0x400, 0x0)
fcntl$getflags(r7, 0xb)
preadv(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000480)=""/76, 0x4c}, {&(0x7f0000000300)=""/61, 0x3d}, {&(0x7f0000000400)=""/2, 0x2}, {&(0x7f0000000700)=""/175, 0xaf}], 0x4, 0x45, 0x0)
ioctl$vim2m_VIDIOC_TRY_FMT(r6, 0xc0cc5640, &(0x7f0000000540)={0x1, @sdr={0x36314d4e, 0x7}})
add_key(&(0x7f0000000080)='asymmetric\x00', 0x0, &(0x7f0000000500)="e306644c2f0b801228a9253e", 0xc, 0xfffffffffffffffd)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000440))
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'rose0\x00', 0x112})
openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)

3.038562639s ago: executing program 32 (id=1447):
syz_io_uring_setup(0x114, &(0x7f00000003c0)={0x0, 0x20000}, &(0x7f0000000280), &(0x7f0000000300))
ioctl$AUTOFS_IOC_READY(0xffffffffffffffff, 0x9360, 0xff)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
prlimit64(0x0, 0xf, &(0x7f0000000140)={0x8, 0x80}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
r0 = openat$tun(0xffffff9c, &(0x7f0000000040), 0x8001, 0x0)
ioctl$TUNSETPERSIST(r0, 0x400454cb, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x3, 0xffffffffffffffff, 0x0, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f000001fc40)=""/102394, 0xffffffffffffff1d)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
ioctl$FIBMAP(0xffffffffffffffff, 0x1, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioperm(0x7e, 0xb, 0x3)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r4 = open(&(0x7f00000000c0)='./file0\x00', 0x80ff, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r4, &(0x7f000001dc00)={0x2020}, 0x2020)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000f60000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1997e358660e994000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b60000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000056087d7200000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$6lowpan_enable(r4, &(0x7f0000000080)='1', 0x1)
r5 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60)
ioctl$KVM_IRQ_LINE(r5, 0x4008ae61, &(0x7f0000000040)={0x3, 0x4})
r6 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r6, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10)
sendmmsg$inet(r6, &(0x7f0000005240), 0x4000095, 0x0)

2.919218141s ago: executing program 2 (id=1520):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000040)={0x28, 0x0, 0x2710}, 0x10)
listen(r0, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
getsockopt$IPT_SO_GET_REVISION_MATCH(0xffffffffffffffff, 0x0, 0x42, 0x0, 0x0)
connect$vsock_stream(r1, &(0x7f0000000640)={0x28, 0x0, 0x2710}, 0x10)
socket$can_j1939(0x1d, 0x2, 0x7)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
openat$sndtimer(0xffffff9c, &(0x7f00000000c0), 0x100)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x100000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0)

2.855239665s ago: executing program 0 (id=1521):
openat$cuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
r0 = syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
io_getevents(0x0, 0x5, 0x7, &(0x7f0000000340)=[{}, {}, {}, {}, {}, {}, {}], 0x0)
r1 = syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d00000085"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6(0xa, 0x800000000000002, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, 0x0)
io_uring_setup(0x5491, &(0x7f00000001c0)={0x0, 0x554, 0x40, 0xfffffffc, 0x211})
ioctl$BLKTRACESETUP(r1, 0xc0401273, &(0x7f0000000000)={'\x00', 0x2, 0x6f11, 0xb, 0xfffffffffffffeff, 0x11c3adec})
r3 = syz_io_uring_setup(0x8d2, &(0x7f0000000240)={0x0, 0x0, 0x40, 0x2, 0xfffffffc}, &(0x7f0000000300), 0x0)
io_uring_enter(r3, 0x47ba, 0x3e80, 0x0, 0x0, 0x0)
ioctl$BLKTRACESTART(r1, 0x1276, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r4 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
getdents(r4, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x14, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="00220b000000542895dc3084839e3ce079"], 0x0}, 0x0)
r5 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x34b42)
ioctl$HIDIOCGVERSION(r5, 0x80044801, 0x0)
openat$vsock(0xffffff9c, &(0x7f0000000000), 0x400000, 0x0)

2.583614243s ago: executing program 1 (id=1522):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x458, 0x5011, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x5, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x394}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_connect$hid(0x1, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="1201000200000008711e0e17400001020301090224000101000000000000000203010303092104003901223e0d090581030002ce04ff"], &(0x7f0000000540)={0xa, &(0x7f0000000180)={0xa, 0x6, 0x310, 0x7, 0x5, 0xfa, 0x10, 0x2}, 0x97, &(0x7f00000005c0)=ANY=[@ANYBLOB="050d97000403100b14100403ac3bf2bbbdfb49d57eb8e20cfc3cddeb8bfa32f34929c3a38f08112d44671004de38e19b25819b07d18aa1fc6545e0c0d233c9bacb05e38ee2028c7979853acea79c15f477573e8a9816856fdb12de0e8b674571be031633edfb1eb0c94bb1cfacbbe7556f309bb852ae574c757eb1a4b4e7c417fff3d958905ff1a225efe909bfc447e32e2dc6c2955fc04055990dbeb42e410c1bf58710e61408ad277149fd5c8b5c0a8b6700"/192], 0x6, [{0x2, &(0x7f0000000380)=@string={0x2}}, {0x4, &(0x7f0000000300)=@lang_id={0x4, 0x3, 0x280a}}, {0x4, &(0x7f0000000440)=@lang_id={0x4, 0x3, 0x1409}}, {0x4, &(0x7f0000000480)=@lang_id={0x4, 0x3, 0x41d}}, {0x4, &(0x7f00000004c0)=@lang_id={0x4, 0x3, 0x2809}}, {0x4, &(0x7f0000000500)=@lang_id={0x4, 0x3, 0x458}}]})
syz_usb_control_io$hid(r0, &(0x7f0000000340)={0x24, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="00220508"], 0x0}, 0x0) (async)
syz_usb_control_io$hid(r0, &(0x7f0000000340)={0x24, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="00220508"], 0x0}, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000003f00), 0x1ff, 0xa401)
syz_usb_connect(0x2, 0x34, 0x0, 0x0)
openat$mice(0xffffffffffffff9c, &(0x7f00000000c0), 0x4000)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240)={'#! ', './file0'}, 0xb)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2000006, 0x10012, r2, 0x0) (async)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2000006, 0x10012, r2, 0x0)
close(0xffffffffffffffff) (async)
close(0xffffffffffffffff)
execveat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', &(0x7f0000001440), 0x0, 0x0)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r1, 0x8108551b, &(0x7f0000000000)={0x0, 0x0, "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"}) (async)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r1, 0x8108551b, &(0x7f0000000000)={0x0, 0x0, "ec9fe44d4dbe56a65274d7c727e7e53c1bb714e315eeb406bfdd73835e57efa94b1a0275781c647aa7e3470c6028642b17832b10b386a6f73791011c26a9aa141f406e312295ee620a9a46577b9249b738fe7750bec83bf6ed5b67213fa7d6c0823fd154ed29ed7eff0d26ff199ee1ff379742c3f0b46caa357d70ee438f901d7645c3f87e4b21482b76f2ad8eaac090272081f98fd2e3e5a63e006204df635e731a5bfcf142f4529517454618de595cd179445b4bdbf698b9986356f0ebf7d25a57774ef474f86a3ad24ae9f0bf94b99e6b87de5f79d383d05bb32701daed400785a49788f08caecc9e0c48a3740bbe6e1c1fd400cfdfe756bcb7d08e36655c"})
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_TLS_TX(r3, 0x6, 0x1, &(0x7f00000000c0)=@ccm_128={{0x304}, "0dd36a9fd9d95914", "7e314b1ae16f188480811df0a54dfebc", "6e16d07f", "24e9fc5733e5dae9"}, 0x28)
ioctl$USBDEVFS_FREE_STREAMS(r1, 0x8008551d, &(0x7f00000001c0)=ANY=[@ANYBLOB="9c690001010000000a"]) (async)
ioctl$USBDEVFS_FREE_STREAMS(r1, 0x8008551d, &(0x7f00000001c0)=ANY=[@ANYBLOB="9c690001010000000a"])
ioctl$vim2m_VIDIOC_EXPBUF(0xffffffffffffffff, 0xc0405668, &(0x7f0000000100)={0x2, 0xfffffffb, 0x2, 0x84880, <r4=>0xffffffffffffffff})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x1, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180000ea3000000000000000000000009400010010000000"], &(0x7f00000002c0)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_open_procfs(0x0, &(0x7f00000001c0)='net/ip6_tables_matches\x00') (async)
r5 = syz_open_procfs(0x0, &(0x7f00000001c0)='net/ip6_tables_matches\x00')
read$hiddev(r5, &(0x7f0000000100)=""/100, 0x64)
syz_usb_control_io$hid(r0, 0x0, 0x0)
readv(r4, &(0x7f0000000280)=[{&(0x7f0000000780)=""/215, 0xd7}, {&(0x7f0000000880)=""/120, 0x78}], 0x2)
syz_open_dev$hiddev(&(0x7f0000000140), 0x0, 0x20000) (async)
r6 = syz_open_dev$hiddev(&(0x7f0000000140), 0x0, 0x20000)
bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x8, 0x3, &(0x7f00000014c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x8, 0x3, &(0x7f00000014c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r7 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)={0x14, 0x18, 0xa01, 0x70bd29, 0x0, {0x2}}, 0x14}}, 0x0)
ioctl$HIDIOCGUSAGE(r6, 0xc018480b, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000002880)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000002880)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

2.17897647s ago: executing program 0 (id=1523):
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0xf, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9, 0x11e41e7a, 0x5, 0xfffffffc, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0xffffffffffffff2f, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0x21}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000180)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_open_dev$vbi(&(0x7f0000000040), 0x0, 0x2)
ioctl$VIDIOC_S_CTRL(r3, 0xc008561c, &(0x7f0000000000)={0xf0f027, 0x2})
r4 = syz_io_uring_setup(0xec8, &(0x7f0000000c00)={0x0, 0x0, 0x2}, &(0x7f0000000500), &(0x7f0000000100))
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x3, &(0x7f0000000600)=@framed={{0x18, 0x0, 0x0, 0x0, 0x8003, 0x0, 0x0, 0x0, 0x10}}, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5df6, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r5}, 0x10)
io_uring_register$IORING_REGISTER_IOWQ_AFF(r4, 0x11, &(0x7f0000000380)="c9", 0x1)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={0xffffffffffffffff, 0x26, 0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
r6 = syz_open_procfs(0x0, &(0x7f0000000140)='fdinfo/4\x00')
read$char_usb(r6, &(0x7f0000000000)=""/178, 0xb2)

2.00988938s ago: executing program 2 (id=1524):
socket$inet_sctp(0x2, 0x5, 0x84)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
close(r0)
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0)
mount(0x0, 0x0, &(0x7f0000000440)='cgroup\x00', 0x8014, 0x0)
getuid()
socket$nl_generic(0x10, 0x3, 0x10)
openat(0xffffffffffffff9c, 0x0, 0x42, 0x1ff)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, 0x0, &(0x7f0000048000)=0x2, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r5, &(0x7f00000001c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x14}}, 0x10)
connect$inet(r5, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendfile(r5, r4, 0x0, 0x20000023893)

1.45713577s ago: executing program 4 (id=1517):
ioctl$FIBMAP(0xffffffffffffffff, 0x401070c9, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NBD_CMD_STATUS(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r2, 0x1, 0x70bd25, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x40000)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000100)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000440)={0x0, 0x9}, 0x8)
bind$inet6(r0, &(0x7f00000004c0)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
sendmmsg$inet6(r0, &(0x7f00000009c0)=[{{&(0x7f00000000c0)={0xa, 0x4e23, 0x1, @loopback}, 0x1c, &(0x7f0000000580)=[{&(0x7f0000001680)='\t', 0x1}], 0x1}}, {{&(0x7f0000000000)={0xa, 0x4e20, 0xce1, @empty, 0x3}, 0x1c, 0x0}}], 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x79, &(0x7f0000000000)=ANY=[], 0x8)

1.242501747s ago: executing program 0 (id=1525):
r0 = syz_open_procfs(0x0, &(0x7f00000002c0)='net/ip_tables_targets\x00')
syz_fuse_handle_req(r0, &(0x7f0000006cc0)="e5764a472ca256e4fa5b5c56951c8f08af5d99e71897669c71fa860cf20a75629af1256217099aca1bda14ba0aa9883f48db9ed5a33a3461dbad1b0cb88d915c13c46e3255dbcef87241d6e8bbdc0af465b5e10de7397890f60b7d673da3f4ada9fd0137de4362bb6075b0b60baa3480333acfd9bc4462c5a0ffb0c0db5d5ce6e5417030c6329e4e0668ccd1f4194092e759ed68ff784037033e0506fdcacd90c7f7ab82d418ff94dd32be27529b78f97f5a6e7617bec7306cc9907ced4a784a573da93140b49f73d9ad5d1058eac72ec68148d31397864a0b1050d28785a85a6acc3c646387d2566ff475585803538cb6d0d538505a48750034348a5e59b542c4c447b81e5bb821986f7b7ea2b5d484d0d015c4fe348942338c81fc84e5d3c9176dbfbfaff46d8ffdbe07755c44efdd2b07deae0312853736e0505a57c977334f43d0d7f6330924af8231eaf28da538745381d650ec1c2112eb5559aa618440bb5b32971e86cd5028035ebfe231b056206a13885da986a6ab7eb272f6a9ce00787c55e9d3e89895ccd3c3200b8a6f762c93b92bdea11733c02c07b42570e9eca34963c1e7df374283ab2cb95dfee7b22623cac2e4be2f09a5707b2df557f1e041296a3c830f4b01749e9996afbd9c29db8febca4aa67b541fca5b9a80231ff8f8da50db95870f39c717e14548248af8948ee0c56dd6f85f7d4f1fa3d979029130813ac8ea51d7736434346b387c02fa3b0620d6aa765e58af683dc7cb7e8b4bf4b53ceddc289e3dec9ff8ea5eededf4fbe3e2204b1a3f1f2a70563aa0db8ca938d23aab42570eb97a03e420f14d1e32b2ae3927c4fd58be2154e5bc8b6aca8aafbe9bad78a6d0177c6f42ea763969339d55424b2f84233f4aaf0f51ca58934b4845cc2a91f774a180bf38bc1b7fe917dc1652f924074a7343e7e07bae9de7823b9ac60e06ad9a89749715c3902f644fa284574bfa606f2d4e0113695d51ac90af285aa80647798f7f552786d72ad8251a11022780e5d4eb01255e74f40ca3826b4cbfb2fce8f482bdec9b50b3c1b50751e5424f53d5be1277cd1ddf0f15b452f04011b4de6d6ad5913b76713f527282eb9ff75187b281433df4b121b5b0c75a37e438608a4ae937060d7996b193ad52cc3d8850846273a94e3d718070064757c0374845a81d70ae139fc9af3df467437a0e0a8a058bcc0feeaf8d4379a690e3f7f96757827d1ff02e9dd287715fef9a5bc48399e102e804a4fe6cc7d04a0381a15c15f2409d1421fd52246b95b936be5327f4d03d172faa82d1198f8693b2385aadee482c2e2cfaf674d2d30953d65bd6bc7016fa22cead75c9f0bf24157020aad51c75d1c8b09830adc0f59a0da7ccfac3b0b7518dee240e32c81d30a62b50a170fbd510197ba1bfc4456aff6383d01624779e54131bb5aec4a0c1c09dae5951b5a62a2f8a1742bea3877adef6c8db75ba03f6730d770f460c686cc93032b4ab56db7a61d3b3f6e2d68b60de52daa2e922ae8207069f090261a7fab9d18ba52c1d191dd8949b3ac13082b9a4faffdce6a0fdb61ba07ceefd3242a228408598c4b4d7f5dbddfe3143221ac6bf7ca0cbe917d011cee0d5cf596c649e06fdabe45098b15fc27f3fd5a39ce9cab4bd3efe65837d600c7fbc3e91538dc54722636f918dd236274bd0aaad67f20adda5c565e793d4b24585ec4e4fdb315e3ed3de851a716ae8bcca394b1db7b467f88e490e75ed204cfaf507fb4740fe8b4e2d59f012c7ed42afc62e6ee446efe39c19bd0767f3691fdd5b8dbe89a040f407e7e6be6adc327d4bee9d8f4cc38731f024ec50dea800a18b9eb86643d10ce4cb8a867803d063093eec9df6656d924096a1554dc6ad7d5c5f35bfb51b404b7f6d82d545eea9d5ab6afb885cf59db15bbb6ed8dc8a6f6d6cf296a61308de0f91cf594def1df755db2385760d2973a381f49bc27138bb065ea75d203b25f543d07786d6d7b022785a5bb718dbdcd3021631b34f7722d9e835c235298e12151c59d1fc14fe36adc8257d7d2dd0dd5b02cabaae66dd7d9b18d8c2f45abe593baa6cb06d88bc5e4eeb573064761beb2163a2be2e6d39499d0b4ceaa5cfde49897e84b1fb0fea6a8ae061e90f16054e6cac934584ecac1706972a59de70b140fdd675764f5218b4553c964d095583335b744947de42bd7adaf22ca0199b12593d82ac4661449725fb1ed1693c36e91304c7a7f27357813bb388b5962c11ab282d8ac2e6c1f2f7bdc1838d75dbd67e7961ab4be3f052eb69664829bf85b13621965e72f86ac82992319a9cf70ad965b68f58ed889834c2aa20eec8e89a95bc1a92df6db2264f6ec7133567325b530212b05622225129c0fa5fa47f61fbc01b3d84cdbbe7bc597c953bf6c1c95e70eabe95cfc154d0d8fb9f3364e4c5fa6b2a0220fd2b0b3f472a925491f4b5c0259ee1730169e8503972d42f60b9380533d08750bf69a06913bed2fbfdcdcc2a7b727a33533242effa756ee8ebede0a64da858db32f3b6a9f37d3aea3dbf762a881e183308b41b3cb439ac8908811c3a57a45e65b9b21c25635c2fe4c3aff7da65b9c90ea47a3b906fba85464718c771387e29118f15d54b63694828f6377bc59bf5f1181027dca4c959eb27e060e9039a5f1fb955b332c9aebcc89be493185c15fdf9a9c74f96e5bba7d192d3263aaf701d36c37323780f1037930d2a2cb58591fa29acd2760e0873151c4570959df1106f435d2fc3a4f897186acf0a0f7be957b5b8efdf892abf99e4ec02a8e957707278c9ce279f1aa1c0f6f3f40e876a3b08959ea6a2f1c7ceb17fe599b33851d6fc4b93254379f0bf28e9954c8abc7151e110a38966f11defe13597bb30c003f6b98d88978c242f57ed3022360d686a0e762b035ba6eca21c86701953c2ffb4d0e9e259c29fb922a4f9138898e038e6925543c6c20777e18a5fadfa3a30ad55c6b8ae42489356764a7ada4565a73128dd7686ebd6a5d599c1f87a70e0534f16eb76dbf3c88e87772ebc7eaf27be2d693e86cdbb93029d9174872997bbc884adb46f6f3b7b560eb0da7ce0a2f0643c6271988321fd6a6597cf904beb1bc2c058c631b927b36fb938000031d79fd3e670746f89d0eea812b3f7e3007eb2f9ca952c1f794b1761d8f3f3e92b15869e9ff431d6280821bcaf374e636a16e1bdf721fff722287e135518163c78921b00e593a5d80efce94766cb197f224839ccebb7316c1f9471454eae766c76708e7cfa1f73e178235858e0f507528d63861bd363d639794c0087b12ce94719c5aa4778c0da6eca565b2c880a5b17cd42e852193e1962dd94862ba8e1f44831a8f708fdd8d03933e2967bd54571c0e8c2305288d87586cf621dc95c7e8d3f3264aea0ca799e098f0efb7ca9c42b686907b8a9da68c1e3e53274461ec3f4d1b60e5a6abf5f126d397ee0f6919e20950127ea092bad9af0c295b1133fb1fa39d974e1523d86f3bb23d238db4b5d025aeb59b7ffbce90ad38f4326a2dadc62b4ab9c62451126ab2a19221367f8bdae9abbbee8acd94f644e0cec7b4535bf4885f677400e727db3fa21cffbf5225e8c2c59bd03b09dd6a3141c6c2bacec5e6232e9f2534947d40ee7250e73fa700d475a58781878d46b91ecaa464af77282b5fe4581720e850e6c6cd720eff24e7fdd682cb278e3994ebd2502ef99d41d473244ac1acca4c36a1f2a0667fb784997c229e0ecd9b70bf3925ec1ca6ebaaa2c33a1e21fd099bd964fa1892b08096b7804fd588627ad549a62806352aeb49f4dbd3ff001e8f08f6dbe04aaa73aec27a822a1ccf03f08c08517c1af8111366ddc19fada67ce1c31092421db983a86ad01a974aabac8306929fdcfaeeb60c0527a1a800a1317e569fb6fd88f2245c3334f638b4b6665e7f2c6961b6594792218d3398f3cab22250f4be8e8700a57e1dc044f93701239016638ae6c21d53eb42d235ebe03f891e92111462de50b153e60e34263b09beb1dde74f488333d704bee63f67370de17b86c0541b9f4cb02fa2fc0e61f14273f6a3085068e945634440b65bc55fb48b35d763f27cc21eb37009f37c6548de6e6b75bf5d73ebe77ad4926bf03389a6e69d3d67fd40a821a224fb0b27ec005693aa3fc94cfc9ee8ab2ba3555bf1ec303cda06e2f092dd6be7f36befa648a81d953012fa9d09c9931d3e2cd1bf15449c3f93ce091bf4aa345fde77bde9c01bc0aba57f4a78ff383f96296043a40dcd9585a92aa07338ddeaa6809847ee28388c2bdf24d2ade550b0468648628211a99a5d124460533cf99458b0ac138683bb627b44dd3a93caa7d221d9792d63e2908516577885af4d13e5ab08a12307d4a17bbf84dd32ce5d5700cadf01bc297ed0013e1fd44899e0dab47a468099dfdb231588bf007d1544ea6701037b97746dd975535b1e7e37f285e8f4b56a297921513fef951341a5344384d97245f0269b047e02f2e8c6adcfc4d31721d566e1a5cb1b3e73d3f676c7e50cc1294d265b0c4427878c0b26800a7e9dd7d013912bdecd03be666ee2b540c1d70939c7df13f11a44e7d166c4fd3d60394a91c7a9044d141227b052f73f081141200a713af7f7f218ca478ed4448181e8c02ce0f093899620106af2d0d8896df8c5f075741bdd28571b34d5f0c2f89fc46f0900da9c9ed0bd9ad92aa5ec6e351ab7cf8e6da3242a38543e556f7ca1743b8a9cb983b4be8e4d082cea0862aa3bd9f1a03042db0875d2ea16248430575f8b6cfe03f7f4ee35465fad4c3daa404a22469bd3b422c3a5d537e9a3cf0bac559fd51ed3c090bb7efd0569cea9650a1fd9c4479790055960ea5e81a637a47394f4e8cf708a1651a4b32fd0da280f20f39be7d60804de18a3ac86b54428121614953c74155b885c5eb81e2a846b9f795fd1d218866f668b83484995da516f876f7557133d34345ccf78b06d90b438e924eb0ddcfdb7ec8df40aaf65284037d739b3762b15a926f85e95c2fa10cbd0d36a3d1463723cf28fb9c2fa175de373a5f555ec31d02bccc3fabd973e2f630a8c8bacf29beabfffd13b104158e2469a869294e92f7d682dcef4d5ddd388ce6eb4e10a64eae05d91725413e622dd6d313084d26a89e82e6b1394a1a20ee8c27981079611b56086199e888268a41d9f7a93e4a2e2e2bf6a37ee36112a15143789a38e77794e3c47b3313095448dff6de678ffbae2756a9f74b6d5107f2bb474850b845fc3ea7baa08f652e2d304197418e9d57de2686fd7dff13e3c6b9732597d0c8d15a8b80b99c951c1a2033c98cc6e155244974c420f80b7cb62dd5ce77f95a31c48f79d0353df38dac26ba9243e840dbc4c0ce343df6da7a9228e736baf181ce40adcc34170a56b2fd611de20a0d64f71320d2804ae0bbf937839690a1334358d0e9fb400e41cd718e29f0df31ca07ac5c64eba44ef0d13e362c09440114eabd7c2af6a6a75601fd7bf1d5ca7dd5fe09da13745db73d72792647ee8f3a5f6af295ad2d00df40b936aafd6780fbbcb194576af128ffd24fa5c135b8359f9fdbfbe9c626150528e62169a5f7f8490e90def090422d1f0f6417e38b22e8652181242e15b12b835a7ea89bf2693bfe4cbe486e15dd7e270883e4cb2901f41b3c4531c2c09c62c92ab85d666160f563e05c29c52347c88ac45384ed71bc1d5fdc67def268c2eec5768e1a219f483848be33aa7f508681729b583fc0a9345c1336f8799942214e821f801543fe7c2ab8dc52cb2107ef21ed9ccf4234df0a639b01a2621435a93876b399f07dd0e03ca699aa3aad421ccf84540ec4fc9402fb23bf5c555d3a34c72217d011e92d7e8e477e8786f5dedb503816dbeb5aab92e2888a0ca2da214b972ce0390fa9c7bccdc675bfbf5158ca30bcac7f650f1de05eb0a3846c6480289c28fce600a9d6c3dd9f480904497bbefd98e218347f46de84de345da1843e3f47063635a55645b9f9bb7829cf4ad7b434123593c9c3bce1f662975d37a9896be6dfc1f00b0a566adaecc57b8f5ff1eb9205480d1a6f08b2a46dfe1844a05a060b44bdd85cd93550b3fbc76c628c19bf6ce510e3e021145a8f81997679a6bdf841210101866cf0ebcc9ea2d34f58c0c91ecc813263dbfc72a1c188a42425ad88a8be82b9ea6367a996297c57c7ab89fac931822f501e529e583601ca6ec92613520c78e1baebb72745e4639b21162b6e71bdfd91623ad0633980c94cc733c113f25a8fc9d84c778d9cf0ec8120c2aca29578e8d9709240575e0009cd8fa84c98d9718a1d0d8efffd1229b74fe1d05024778df93b1d2db31ac5f18a06852e402165549ae0942554115b5add3d37b4f89cf78579b05bed44d5f358266abe7c78d79474cb6b3ec62b3ddcb2142bb4a19bb26ab92f66b240c38b0a7ac7c164558606f1bbec6977bf6700fbb3fedc09d4e388251ba8d4bbe7fc1eb5d47dec9a783e4543c664b97fd28a4f59dc3fe2e58e843b1f4aa4e5ccb06ee50608e3d39610f422924884df99c43cf2d5821eb16a476d75126d1107a75b20840873915b492f6e77bf40c09c51ef668ae71669ab49be50a885ed65b7a2641f143a7bdcdd35633779f0913e13d461b6fb1b15d2946ecf22e3008f2ad1fdb856da299e924f96566ce5184812d85641737cfef7aa447bd2c51b1d2e7f4f19a291fb20d1860dac1b0417478e5d0b244aac4262437910fb640a905a7b30853a40b83799e6677f1859ff90c8d7bf885923aa129b6917e5bc1647a99440f3317b5ca68aed8037809034ca38db679f2f108804a02a5383cb0be013849ed4d320e8bd9decdf2f109f6148142b8e5c504e2a01a1f5da2efe4d37712c7257785a2d7d3cb480b2f039768c6ff96a1be03bb0ef231b48d1cc83733387fb8628da569e4ea177e05fd49a6252c54e79bacf456de1dcacd37fd0dff3e763efdb5cd024a0be664af60b818de35206b792c986efec24924fecb2dd4f2b35f62c554572c3a1eed1d358bda4b9f7ba1b57cba1824914346461ed04a5f559fb1f5036179b7862f6a8e0cbb2ffc1190ea1e5172895103a3ad1c9d7e0836da723d88976d54520c045f5aee5c22c904143bd77fcebe94508d1b1cd552786678742c5fb9509b1b0301b997a0812a537a78e08af211b1e5d01c07b59b9b3a5d01850e05941c5d4a2bd5dc3a3c992b45908fa4b0178d838b467463dcff946bc6d48545ae40bb1080cac3c6fd6944d0099bdcab049c0e623e499f4a8799032c61ced17272264234a47edf1b3ae25c2988de8c9b98ded411544ce5eb5a273935eb1a437364d749462a40055ddfa62a8fdbc7a6c26a832a2c189a37348b5a3d24a637371d642d7dc6e6bbc9c937856f496b0e53c2a18bf9eca515d662ac3a9dadb56243e28916938b28af06f54e96a6095003f896a971076d738ca515d32c7e21cab0bd85e496a058d4db29f5ae50353bc61a30a5a517a071358f521fbf0cafb95c1fe1166a1778c15bb43c1288bf7f3bad6feddaeab14de1b8906718f167900bdeab2795323cc4f9a6d77a35176798a3ab27c3355f8a1d023dfc7070906060d0cc4556c04db5bf408beeea7fe7469dfad3c85a153ebade2709066d0e78172fe64e555d41259dd00da545ff59b3367116a46ac22e25ffdcbc3795776f554d978466498c8dd3d2cc115352c8bfca181a2a3fd12ec4b61dcd0e5b1cf02f6d2d490a74bf4ec989800aafcee06df27c968930cc1efe36b415db8171e5bdfb7db49237809e46d38b14199f568a0ffde0b237d753da9e98da14b397d206bcd1c28683a4089e8a37845f4e09a78f6309b533e497000fe128ff013f1f4797245ef4697e1a2e8979937b097eccbb547c7f553ad6eb48c7b1a683243fad52af0a72215909ce913d11e2ee5c2b0567e80ae525bc979c2d7f8535e6b4c615fd5a8486c2856fdf8e2d655bdcbcee6f1e324bcb6eec8329e4e0812e401c6453a118f9f75539cef47357e4a9de9f45e92a1acff4af09418350c735d833374fc5ddb14da4e54e70ce182978d7c2325d16e80d61b19bfe68dd24f5fe3c9561665757c7b6a5bf5e83e10eb516cd05613e4dd92ed3ed88b20d5296415a435597f238e95e2af59b8fb2eaffad91705d065a7ff040f0f8ddd9ee2b061d39dfa25f356dec3c755a1519e812e1974df360136aedd7e7548c87ed166f7baf50e4baae7b5693eeb3ee63f2689ace372d45466cc815cb11605bd453b2d918824c1b2f64e623e291c728a9e2e89c4d9cba3acd26af584c69945908c76259d299d3bb53e5b9ae821cfdde11a3de624cdaf569dc970d9af1174032d707b135e9bed30a638d3e13fe70520ad80e95ef39d5f6fb45b8edb017dd2b82b6c4656c546132df5b1c710e798133b15c4f05202e785c78150820f6ad47f6651c8df21bf5eb6ec851df349b13588e02220cdf25227bc63bf254b1e2364247adec4d5957a958da5577e3884754362d4c04b8985ba7f3827fd135a5978ee8a7ee2c0ca66755c1cbb76039b2821577b05636755e5474929b1db27e7088c0a4fc3f723f4427f4005bf4113d21c5fac806c1b9d0e78b1eba78ea74b55e3a4701d13074ed2324a9cc6dd16b21fe4a0b890cee10669b43775f55c73f38f44cbde28fa7dae1ba3c66ec25845f80be816ef93b66ef9c7b7ae86cc1580aa1ef612de516b302063aee622e03f47b0ba65532156634ac4511efcf53524e13e259f9786aefa745bef9eea6fb8c7a1f7556305f225f4cebb09306a97644112b8611e8e67476596de3db229fa3be432cdb2e1e4131cec8ea8c6d70395b374b85303e52cd6f23ecfea536b405b3aa065856b8530b3049acd7bb31ccbf9e02a8e4cdcca252142adc55563be912edcbc5a7210b7358dc9d9d2c9cdabe80de999de9cd40aa9f87295c549f42734a62df307f18c5d850774aab8df61042dd0add51554f7afaf4deb59f73c7238ddc78fdde7266fe479871f76cc037d822d23b3ccad7b591ee9b0c81eab7fe91a150b13f082674a6d079234ca4c1c2f49bc3b4df95a7ba7e9668c385b344060be72a39518c0685f8834fe1d37aa57a9109258f735a6143217166a2613a985f2e3a721b7e71a30a063c8b4f93898a2e4b478b513649a0cedda2a9f37b58145e0a75907d21a806e524a3f5e45297fd4c46280d951d8ada3a761f359164a5c0abb2573f0c65aac8b3542cc32f6a0bfb9484708a0caeefbf3616d03026c2f0614d17963de26d6db565cc463385d5872b5a865a517f55e0cdd817a8cb4f31aa2b1ea8c099ef96fb6d2e5864031d894b5923c474ff00aec195310b0c1aa82536e8e75dc9aba7605544ed86df31122aca480c22cb715ee8df04180e7d3040501379669f3de4adf2acf49a47b7564b52b85006430633fbcee176970d67857552ced405eae8ac2fa8e0c2d980795e7f854f842b811a919313d63164b04f8521225867d8af3ac59360ee7c5f8d3d0a738071a123a2a599c7e2bdbaa746c42f0af77e7b446ab223a0e585da5f403c9bd55a6af48fc8f2d251d53c49f64652991ca7549e282ab85611898896808fa8249bd600fae28b81ba815a798d12acdc97a2d6bfcae5833b6c0676ce65157675f28f73aeb10443c10c720398e3d75eb2cab9df437af68d25fe0fb282bbebf668da9a082c36889ee22bc13b1c2b9b7125c3270a87f09fe7da289906f7185d84064c5444fce22ab40d57ae504513019fe8e36bfe702083e545b94d1490000f9b5759cded7ca04415200c8e3bdc7a4534d73e8f97a757a2899d69132c3e0a4c7f5deed010e0c4f458c7f379810e304dd47548141ef906a7b96d939f61963d3fbc58b18c9de2903ffb7176025e38941e3e18398c5e387042d4f356d8d009225187cfe77bafb9316fd02e66f3469d4048e5b8f02188ae60f066e32c23ddebb2327996347c974cdf2f215037d96bfacbc7f1f65a95d66e60192d0d9d3902fd73935f281c3b3c50de162d0e9ca250278d32b810797de787fccb79e44e3e1a0a7e188b44971d41cc8fc11e9abb0b9a9cbd220b2c0a4f3fd8d7f8efddfe916bf3df7fc834453d32f61c850061d6d788c63d3f2dc42d0f54afb51c15baef47c36ec8e319daa6ee46b51f2de27817b866a68b78089b5904bf1f2ffffffffffffff4c7dae0db2c17789e07d4b16f054889f6040709c812be047f53cec5fbc71d058772de66f539732abc8c7e75be4bbcec99119007493f6de01f68af52d2dbd594539c44ae4ec34908ef25ba46a02fc90d354a4a83cf2c588c4e1fe41966c0b2443875611cc9f21b08864ffa1f5072720eb756c4ff257e69e6e398b7e84a5904fc69db17879202ceb6c57fe6bd94ca578e3313a9a79538c840af82283a76dd7f53f5c3d8ec17c5be4c36136a53f0c46b14614e71dfe4ba7974ac4494311d4cda2fc7d0402acb637a9a6f491af9068c5c6fe71becfddb9fc07c785da5eddbb3a51043a0ae15aa9ddadd53f35dffed09a2127d3e0c5e1057ccec567791d9ce6e8082f0beb7ae912a4b30804abfa5347be87c6eff4fdb70b3064011950efd0ef30b84ee4b00f9247c2005a2dfa8e1c78ba0006185e2feeaea7f2c77d11c7e85499306ba769e404b6e6f7a7e5b45199817b31423eb439c50d850b22c1b63c4831f8da7ed462b0f8827f44c05df2e24673b360a58477e77b4835fae97e7d6375f0ccb339b4549652f20efeff931d14c0688713e78c81387ca6706258f9589090f2c8a4ef9e2cceb1775673f43f61f68736c966f757e6239ec7eb8ea70140f2c967a5a9f80f88b410f160aa14e083f6ff90f3324c59e4eb043e86117c362469e9c55a4689b137ccb04089e5d1ed875332083c41e8e3b28aad11472190b6dfddc18685e492fcf0a9c1f2ee287f7f1044f0bc98a9ad230978f97710839d1fc3e9f150cb03da9a1f55c608124ed27aa6b4c2c3cb7388432e15b02e55e1fcacee563c11f4f0ed9549fcd95d931243b95b394963da03982228f29a9501d7f1df7e44fec415fa7dc0edc1ec86850feb9f0dcd2d9dba983bbf44ff312462c73afc49519eb7440cd7d26ae73a137ae1c2b166d94730bf964452b4c82a49d110f48a894a427dc2cc4dacd66524b137ff54b49ec2938c829bf8934769c076001b54f280f862935a0cee4d69b3c3bf7773f2a7a235f9f188901f655e7b0bf790cfe49f5f079b90e0bad0fdd25e0c302af3687ba1feb58f3d3e78c34cb11f3dc494ddf4702fc009fd7c9e2671730709f60b83c75c1fea0738cbf87a19eff5698a39ecc8c22218be5f9426b225b52e3020b6782ece5451b716c975996afd0fc20fdad4acd8836ffd14d0ae932589be8ddb2b21328cec26d7321cc4cd5a2a01562b597abdd7f81f326c0a0f849d11053e4909db9cd9d18cbd4bdcea72bda5cc1cea86283c8fdebd5e55087cecced746f424bdf4358b65c958b84a2436025996e105425ed4784e2de1602b3ead37b87f104178f5a9db22ccbdae040b01e69b72aabc59c10af1e7f48b6701705b433fec40bbc07846d4c66b16f300906635e4fbf8ba61f2700b1726c6a4c14573fbb16d1af58f6301b41f7022a4c84651354e057d9383ecc10c32f07d332ddca591fd2900", 0x2000, &(0x7f0000009680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000240)={0x0, 0x0, 0x20}, 0xc)
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000180)="1a", 0x34000, 0x0, &(0x7f0000000480)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000000300)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000003c0)="20094e0b5287122541267dc3d06624b4cedb1e262a2c8fdb98bbfbfad6f7f63dbbb0e8a989714c86ae545557f45a78bbc8ca4c45e9b450df620233b4a4b65dd595a200df15dc275692bb", 0x4a}], 0x1}}, {{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000280)="a6", 0x1}], 0x1}}], 0x2, 0x40000)
r2 = syz_io_uring_setup(0x114, &(0x7f0000000140)={0x0, 0xfec9, 0x10, 0x2}, &(0x7f0000000240)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000100)=@IORING_OP_SENDMSG={0x9, 0x40, 0x0, r5, 0x0, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, &(0x7f00000013c0)=ANY=[], 0x13f0}, 0x0, 0xc04c840})
io_uring_enter(r2, 0xdb4, 0x0, 0x0, 0x0, 0x0)
write$tun(0xffffffffffffffff, &(0x7f0000001980)=ANY=[], 0x3)
shutdown(0xffffffffffffffff, 0x1)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r6 = syz_open_procfs(0x0, &(0x7f0000000280)='ns\x00')
readlinkat(r6, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000002780)=""/4112, 0x1010)
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r7, &(0x7f0000000440)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(blowfish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r7, 0x117, 0x1, &(0x7f0000000580)="2c385aa3", 0x4)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=@newtaction={0x6c, 0x30, 0xffff, 0x0, 0x0, {}, [{0x58, 0x1, [@m_ife={0x54, 0x3ffe, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}, @TCA_IFE_METALST={0xc, 0x6, [@IFE_META_SKBMARK={0x8, 0x1, @val=0x2}]}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x6c}}, 0x0)
r9 = accept4(r7, 0x0, 0x0, 0x0)
sendmmsg$alg(r9, &(0x7f0000005080)=[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc0}], 0x1, 0x0)
r10 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, &(0x7f0000000980)={<r11=>0x0, 0x1000, "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"}, &(0x7f0000000080)=0x1008)
getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r10, 0x84, 0x76, &(0x7f00000000c0)={r11, 0x6}, &(0x7f0000000140)=0x8)
recvmmsg(r9, &(0x7f0000003a40)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000008c0)=""/173, 0xad}], 0x1}}], 0x1, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000007480)={'wlan0\x00'})
syz_genetlink_get_family_id$nl80211(&(0x7f00000075c0), r1)

1.239645097s ago: executing program 4 (id=1526):
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000440)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x4129, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x4, 0x1, 0x0, @void, @value, @void, @value}, 0x50)
r0 = socket$l2tp6(0xa, 0x2, 0x73)
bind$l2tp6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @empty}, 0x20)
syz_emit_ethernet(0x46, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000004c0), 0x4)
fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)

1.12413222s ago: executing program 4 (id=1527):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000b40)=ANY=[@ANYBLOB="140000003800010325bd700035effd9006"], 0x14}}, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000200), r0) (fail_nth: 2)

1.123754807s ago: executing program 0 (id=1528):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x5c, 0x30, 0x1, 0x0, 0x0, {}, [{0x48, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x80010, 0xffffffffffffffff, 0x6a561000)
r1 = syz_open_dev$vim2m(&(0x7f0000000500), 0x6, 0x2)
ioctl$vim2m_VIDIOC_CREATE_BUFS(r1, 0x5460, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$midi(&(0x7f00000001c0), 0xac, 0x0)
r5 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_NODE_ADDR(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x24, r5, 0x201, 0x0, 0x25dfdbfb, {{}, {}, {0x8, 0x11, 0xffffffff}}}, 0x24}}, 0x20000010)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r6, 0x29, 0x2a, &(0x7f0000000140)={0x0, {{0xa, 0x4e20, 0x4e49bf67, @mcast2}}}, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000003a80)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x4e23, @loopback}]}, &(0x7f0000003ac0)=0xc)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x6d, &(0x7f0000000080)={<r7=>0x0}, &(0x7f00000000c0)=0x3930)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f0000000280)={r7, 0x9, 0x6}, &(0x7f0000000300)=0x8)

1.123640527s ago: executing program 4 (id=1529):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="44000000090601020000600000000000000000000900020073797a310000000005000100070000001c00078018000180"], 0x44}, 0x1, 0x0, 0x0, 0x10000047}, 0x4000084)

1.090530503s ago: executing program 2 (id=1530):
socket$packet(0x11, 0xa, 0x300)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(0xffffffffffffffff, 0x80045301, 0x0)
syz_usb_connect(0x5, 0x24, &(0x7f0000002040)=ANY=[@ANYBLOB="12010000fe76181004160780a6af011703010902120001000000000904"], 0x0)
r0 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x503, 0x200)
ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r0, 0x80dc5521, &(0x7f0000000300)=""/161)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000040)={&(0x7f0000000000)=[0x0, 0x0], 0x2, 0x80000, 0x0, <r2=>0xffffffffffffffff})
timerfd_gettime(r2, &(0x7f0000000080))
futex_waitv(&(0x7f0000001080)=[{0x3, &(0x7f0000001040)=0x3, 0x82}], 0x1, 0x0, 0x0, 0x1)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
mkdir(&(0x7f0000000300)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000400), 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="6e725f626c6f626b733d94612c0071c083b0ba4b3c542295e47981ac02ea650c6cd5c10611289ed6db"])
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan1\x00'})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'lo\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x40000, 0x0, {0x0, 0x0, 0x0, r6, {}, {0xffff, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x6, 0x80000009, 0x80, 0x0, 0xffffffff, 0x91b1}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000400}, 0x8000)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r7, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r7, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r7, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r7, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)

1.074961148s ago: executing program 4 (id=1531):
r0 = syz_open_dev$vim2m(&(0x7f0000000240), 0x6, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0x2, 0x1, 0x1})
ioctl$vim2m_VIDIOC_DQBUF(r0, 0xc044560f, &(0x7f0000000380)=@mmap={0x0, 0x1, 0x4, 0x0, 0x0, {0x77359400}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "37bb54f0"}})
ioctl$vim2m_VIDIOC_STREAMOFF(r0, 0x40045612, &(0x7f0000000100)=0x1)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00'})
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
r1 = syz_open_dev$usbfs(&(0x7f0000000080), 0x1ff, 0x402)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="4c0000001000030400"/20, @ANYRES16=r1, @ANYBLOB="00000000000000002c00128009006e64000000001c000280080003008002000008000400000000000800050000000000"], 0x4c}}, 0x0)
r3 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc1}, &(0x7f0000000080)={0x0, "5d9bc136c963254c661fb620148b6f72ca6ae2a44829bfa79ec13499f8ec9077d85d879711d98bb1687ad36dfe5f14a7b0ce15c1e6be0e7ecabfdfde0dfa00b1"}, 0x48, 0xffffffffffffffff)
pipe2$watch_queue(&(0x7f00000002c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x80)
keyctl$KEYCTL_WATCH_KEY(0x20, r3, r4, 0x0)
r5 = dup(r4)
ioctl$KVM_GET_DIRTY_LOG(r4, 0x4010ae42, &(0x7f0000000180)={0x3, 0x0, &(0x7f00004de000/0x3000)=nil})
ioctl$USBDEVFS_CONTROL(r5, 0xc0185500, &(0x7f0000000240)={0x23, 0x3, 0x2, 0x3, 0x0, 0x5, 0x0})
r6 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x4000, 0x0)
preadv2(r6, &(0x7f0000000080)=[{&(0x7f0000001200)=""/4096, 0x1000}], 0x1, 0xfffffffe, 0x0, 0x0)
syz_open_dev$vim2m(&(0x7f0000000240), 0x6, 0x2) (async)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0x2, 0x1, 0x1}) (async)
ioctl$vim2m_VIDIOC_DQBUF(r0, 0xc044560f, &(0x7f0000000380)=@mmap={0x0, 0x1, 0x4, 0x0, 0x0, {0x77359400}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "37bb54f0"}}) (async)
ioctl$vim2m_VIDIOC_STREAMOFF(r0, 0x40045612, &(0x7f0000000100)=0x1) (async)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) (async)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00'}) (async)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) (async)
syz_open_dev$usbfs(&(0x7f0000000080), 0x1ff, 0x402) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="4c0000001000030400"/20, @ANYRES16=r1, @ANYBLOB="00000000000000002c00128009006e64000000001c000280080003008002000008000400000000000800050000000000"], 0x4c}}, 0x0) (async)
add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc1}, &(0x7f0000000080)={0x0, "5d9bc136c963254c661fb620148b6f72ca6ae2a44829bfa79ec13499f8ec9077d85d879711d98bb1687ad36dfe5f14a7b0ce15c1e6be0e7ecabfdfde0dfa00b1"}, 0x48, 0xffffffffffffffff) (async)
pipe2$watch_queue(&(0x7f00000002c0), 0x80) (async)
keyctl$KEYCTL_WATCH_KEY(0x20, r3, r4, 0x0) (async)
dup(r4) (async)
ioctl$KVM_GET_DIRTY_LOG(r4, 0x4010ae42, &(0x7f0000000180)={0x3, 0x0, &(0x7f00004de000/0x3000)=nil}) (async)
ioctl$USBDEVFS_CONTROL(r5, 0xc0185500, &(0x7f0000000240)={0x23, 0x3, 0x2, 0x3, 0x0, 0x5, 0x0}) (async)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x4000, 0x0) (async)
preadv2(r6, &(0x7f0000000080)=[{&(0x7f0000001200)=""/4096, 0x1000}], 0x1, 0xfffffffe, 0x0, 0x0) (async)

969.211279ms ago: executing program 4 (id=1532):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x5c, 0x30, 0x1, 0x0, 0x0, {}, [{0x48, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x80010, 0xffffffffffffffff, 0x6a561000)
r1 = syz_open_dev$vim2m(&(0x7f0000000500), 0x6, 0x2)
ioctl$vim2m_VIDIOC_CREATE_BUFS(r1, 0x5460, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$midi(&(0x7f00000001c0), 0xac, 0x0)
r5 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_NODE_ADDR(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x24, r5, 0x201, 0x0, 0x25dfdbfb, {{}, {}, {0x8, 0x11, 0xffffffff}}}, 0x24}}, 0x20000010)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r6, 0x29, 0x2a, &(0x7f0000000140)={0x0, {{0xa, 0x4e20, 0x4e49bf67, @mcast2}}}, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000003a80)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x4e23, @loopback}]}, &(0x7f0000003ac0)=0xc)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x6d, &(0x7f0000000080)={<r7=>0x0}, &(0x7f00000000c0)=0x3930)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f0000000280)={r7, 0x9, 0x6}, &(0x7f0000000300)=0x8)

198.263225ms ago: executing program 0 (id=1533):
r0 = openat$ptmx(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TIOCNXCL(r0, 0x540d)

198.01852ms ago: executing program 0 (id=1534):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000", @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffff"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_clone3(0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x9, &(0x7f0000000100)=0xf, 0x4)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x73, 0x11, 0x31}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x76}, @exit={0x95, 0x0, 0x1008}], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000180)=@gcm_256={{0x303}, "c4915c7f49541ce8", "9b84f987950ff3df25fa8f46983d34157e047d27ae4a66a6d15608a32cbaa5bc", '\x00', "be0ea450d5a5fd03"}, 0x38)
connect$unix(0xffffffffffffffff, &(0x7f0000000280)=@file={0x0, './file0\x00'}, 0x6e)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r5, &(0x7f0000000040)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}}, 0x8)
recvmmsg(r0, &(0x7f0000007780)=[{{0x0, 0x0, 0x0}, 0xb44}], 0x1, 0x2100, 0x0)

0s ago: executing program 1 (id=1535):
socketpair$unix(0x1, 0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000", @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffff"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_clone3(&(0x7f0000001880)={0x100000200, 0x0, 0x0, 0x0, {0x39}, 0x0, 0x0, 0x0, 0x0}, 0x58)

kernel console output (not intermixed with test programs):

lem_write_user+0x11e/0x2a0
[  203.273104][ T9726]  ctl_elem_write_user+0x11e/0x2a0
[  203.273118][ T9726]  ? __pfx_ctl_elem_write_user+0x10/0x10
[  203.273137][ T9726]  snd_ctl_ioctl_compat+0x1a7/0x9b0
[  203.273152][ T9726]  ? find_held_lock+0x2b/0x80
[  203.273166][ T9726]  ? __pfx_snd_ctl_ioctl_compat+0x10/0x10
[  203.273183][ T9726]  ? __fget_files+0x20e/0x3c0
[  203.273201][ T9726]  ? __pfx_snd_ctl_ioctl_compat+0x10/0x10
[  203.273216][ T9726]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  203.273230][ T9726]  __do_fast_syscall_32+0x73/0x120
[  203.273247][ T9726]  do_fast_syscall_32+0x32/0x80
[  203.273263][ T9726]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  203.273277][ T9726] RIP: 0023:0xf748e579
[  203.273285][ T9726] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  203.273295][ T9726] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  203.273306][ T9726] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c2c45513
[  203.273312][ T9726] RDX: 0000000080002e00 RSI: 0000000000000000 RDI: 0000000000000000
[  203.273318][ T9726] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  203.273324][ T9726] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  203.273330][ T9726] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  203.273342][ T9726]  </TASK>
[  203.628322][ T9737] netlink: 103 bytes leftover after parsing attributes in process `syz.3.1002'.
[  204.695006][ T9754] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1009'.
[  204.772697][ T9758] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR
[  205.025392][   T40] audit: type=1800 audit(1744641148.306:114): pid=9771 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1012" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0
[  205.901620][ T9783] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1018'.
[  206.525973][  T832] net_ratelimit: 8 callbacks suppressed
[  206.525985][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  206.555713][ T6014] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[  206.705742][ T6014] usb 8-1: Using ep0 maxpacket: 8
[  206.709989][ T6014] usb 8-1: config index 0 descriptor too short (expected 301, got 45)
[  206.713116][ T6014] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  206.716514][ T6014] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  206.719392][ T6014] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  206.722212][ T6014] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  206.726260][ T6014] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  206.728879][ T6014] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  206.957982][ T6014] usb 8-1: GET_CAPABILITIES returned 0
[  206.959710][ T6014] usbtmc 8-1:16.0: can't read capabilities
[  207.565819][ T8512] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  207.617497][  T832] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  207.765795][  T832] usb 6-1: Using ep0 maxpacket: 32
[  207.770172][  T832] usb 6-1: config 0 has no interfaces?
[  207.774131][  T832] usb 6-1: New USB device found, idVendor=12d1, idProduct=7ef3, bcdDevice=54.68
[  207.778428][  T832] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  207.780611][  T832] usb 6-1: Product: syz
[  207.781787][  T832] usb 6-1: Manufacturer: syz
[  207.783084][  T832] usb 6-1: SerialNumber: syz
[  207.786026][  T832] usb 6-1: config 0 descriptor??
[  207.882599][ T6014] usb 8-1: USB disconnect, device number 11
[  207.887366][ T9818] usbtmc 8-1:16.0: usb_control_msg returned -71
[  208.023893][ T9812] lo speed is unknown, defaulting to 1000
[  208.183168][ T9827] netlink: 103 bytes leftover after parsing attributes in process `syz.2.1027'.
[  208.606950][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  208.695376][   T29] usb 6-1: USB disconnect, device number 8
[  208.799261][ T9834] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  208.802636][ T9834] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  208.805514][ T9834] netdevsim netdevsim3: Falling back to sysfs fallback for: .
[  208.847892][ T5954] Bluetooth: hci1: unexpected event for opcode 0x1005
[  208.925805][ T5994] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  209.009654][   T58] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  209.647180][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  209.844351][ T9852] kvm: requested 3352 ns i8254 timer period limited to 200000 ns
[  209.867562][ T9852] kvm: requested 838 ns i8254 timer period limited to 200000 ns
[  209.870886][ T9852] kvm: requested 838 ns i8254 timer period limited to 200000 ns
[  209.874108][ T9852] kvm: requested 838 ns i8254 timer period limited to 200000 ns
[  209.877398][ T9852] kvm: requested 838 ns i8254 timer period limited to 200000 ns
[  209.880553][ T9852] kvm: requested 838 ns i8254 timer period limited to 200000 ns
[  209.883648][ T9852] kvm: requested 838 ns i8254 timer period limited to 200000 ns
[  209.886836][ T9852] kvm: requested 838 ns i8254 timer period limited to 200000 ns
[  209.891152][ T9852] kvm: requested 838 ns i8254 timer period limited to 200000 ns
[  209.894287][ T9852] kvm: requested 838 ns i8254 timer period limited to 200000 ns
[  210.238177][ T9869] evm: overlay not supported
[  210.241207][ T9869] FAULT_INJECTION: forcing a failure.
[  210.241207][ T9869] name failslab, interval 1, probability 0, space 0, times 0
[  210.246343][ T9869] CPU: 0 UID: 0 PID: 9869 Comm: syz.2.1038 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) 
[  210.246364][ T9869] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  210.246375][ T9869] Call Trace:
[  210.246390][ T9869]  <TASK>
[  210.246396][ T9869]  dump_stack_lvl+0x16c/0x1f0
[  210.246439][ T9869]  should_fail_ex+0x512/0x640
[  210.246462][ T9869]  ? fs_reclaim_acquire+0xae/0x150
[  210.246485][ T9869]  ? ima_alloc_init_template+0x19d/0x720
[  210.246501][ T9869]  should_failslab+0xc2/0x120
[  210.246517][ T9869]  __kmalloc_noprof+0xd2/0x510
[  210.246546][ T9869]  ima_alloc_init_template+0x19d/0x720
[  210.246564][ T9869]  ? __pfx_d_absolute_path+0x10/0x10
[  210.246580][ T9869]  ? rcu_is_watching+0x12/0xc0
[  210.246603][ T9869]  ima_store_measurement+0x1eb/0x5c0
[  210.246622][ T9869]  ? __pfx_ima_store_measurement+0x10/0x10
[  210.246640][ T9869]  ? vfs_getxattr_alloc+0xec/0x340
[  210.246671][ T9869]  ? __pfx_ima_get_hash_algo+0x10/0x10
[  210.246698][ T9869]  process_measurement+0x1bd6/0x2360
[  210.246732][ T9869]  ? __pfx_process_measurement+0x10/0x10
[  210.246798][ T9869]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  210.246821][ T9869]  ? inode_to_bdi+0x9e/0x160
[  210.246842][ T9869]  ima_file_check+0xc5/0x110
[  210.246863][ T9869]  ? __pfx_ima_file_check+0x10/0x10
[  210.246892][ T9869]  security_file_post_open+0x8e/0x210
[  210.246912][ T9869]  path_openat+0x147d/0x2d40
[  210.246945][ T9869]  ? __pfx_path_openat+0x10/0x10
[  210.246974][ T9869]  do_filp_open+0x20b/0x470
[  210.246997][ T9869]  ? __pfx_do_filp_open+0x10/0x10
[  210.247053][ T9869]  ? _raw_spin_unlock+0x28/0x50
[  210.247074][ T9869]  ? alloc_fd+0x471/0x7d0
[  210.247103][ T9869]  do_sys_openat2+0x11b/0x1d0
[  210.247121][ T9869]  ? __pfx_do_sys_openat2+0x10/0x10
[  210.247140][ T9869]  ? __fget_files+0x20e/0x3c0
[  210.247168][ T9869]  __ia32_compat_sys_open+0x146/0x1e0
[  210.247187][ T9869]  ? __pfx___ia32_compat_sys_open+0x10/0x10
[  210.247210][ T9869]  ? rcu_is_watching+0x12/0xc0
[  210.247229][ T9869]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  210.247257][ T9869]  __do_fast_syscall_32+0x73/0x120
[  210.247282][ T9869]  do_fast_syscall_32+0x32/0x80
[  210.247305][ T9869]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  210.247325][ T9869] RIP: 0023:0xf7f83579
[  210.247339][ T9869] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  210.247354][ T9869] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000005
[  210.247370][ T9869] RAX: ffffffffffffffda RBX: 0000000080000080 RCX: 0000000000141042
[  210.247380][ T9869] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  210.247389][ T9869] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  210.247398][ T9869] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  210.247408][ T9869] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  210.247429][ T9869]  </TASK>
[  210.247673][   T40] audit: type=1804 audit(1744641153.536:115): pid=9869 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.2.1038" name="/newroot/251/bus/bus" dev="overlay" ino=1371 res=0 errno=0
[  210.723104][   T34] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  210.865733][  T832] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  211.045922][  T832] usb 6-1: Using ep0 maxpacket: 32
[  211.057041][  T832] usb 6-1: config 0 has no interfaces?
[  211.060188][  T832] usb 6-1: New USB device found, idVendor=12d1, idProduct=7ef3, bcdDevice=54.68
[  211.063022][  T832] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  211.065408][  T832] usb 6-1: Product: syz
[  211.066845][  T832] usb 6-1: Manufacturer: syz
[  211.068496][  T832] usb 6-1: SerialNumber: syz
[  211.075055][  T832] usb 6-1: config 0 descriptor??
[  211.284378][ T9884] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1043'.
[  211.311112][ T9875] lo speed is unknown, defaulting to 1000
[  211.645059][ T9895] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1045'.
[  211.738682][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  211.996937][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  212.185987][   T24] usb 6-1: USB disconnect, device number 9
[  212.765854][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  212.969263][ T9915] lo speed is unknown, defaulting to 1000
[  213.217717][ T9930] syzkaller1: entered promiscuous mode
[  213.219277][ T9930] syzkaller1: entered allmulticast mode
[  213.223059][ T9915] netlink: 156 bytes leftover after parsing attributes in process `syz.2.1051'.
[  213.252616][ T9935] FAULT_INJECTION: forcing a failure.
[  213.252616][ T9935] name failslab, interval 1, probability 0, space 0, times 0
[  213.258165][ T9935] CPU: 3 UID: 0 PID: 9935 Comm: syz.2.1056 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) 
[  213.258179][ T9935] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  213.258187][ T9935] Call Trace:
[  213.258190][ T9935]  <TASK>
[  213.258194][ T9935]  dump_stack_lvl+0x16c/0x1f0
[  213.258214][ T9935]  should_fail_ex+0x512/0x640
[  213.258226][ T9935]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  213.258245][ T9935]  should_failslab+0xc2/0x120
[  213.258255][ T9935]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  213.258271][ T9935]  ? __alloc_skb+0x2b2/0x380
[  213.258286][ T9935]  __alloc_skb+0x2b2/0x380
[  213.258299][ T9935]  ? __pfx___alloc_skb+0x10/0x10
[  213.258314][ T9935]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  213.258332][ T9935]  netlink_alloc_large_skb+0x69/0x130
[  213.258348][ T9935]  netlink_sendmsg+0x6a1/0xdd0
[  213.258366][ T9935]  ? __pfx_netlink_sendmsg+0x10/0x10
[  213.258383][ T9935]  ? __import_iovec+0x1c8/0x660
[  213.258399][ T9935]  ____sys_sendmsg+0xa95/0xc70
[  213.258410][ T9935]  ? __pfx_____sys_sendmsg+0x10/0x10
[  213.258419][ T9935]  ? get_compat_msghdr+0x11a/0x170
[  213.258439][ T9935]  ___sys_sendmsg+0x134/0x1d0
[  213.258453][ T9935]  ? __pfx____sys_sendmsg+0x10/0x10
[  213.258482][ T9935]  __sys_sendmsg+0x16d/0x220
[  213.258496][ T9935]  ? __pfx___sys_sendmsg+0x10/0x10
[  213.258513][ T9935]  ? rcu_is_watching+0x12/0xc0
[  213.258528][ T9935]  ? rcu_is_watching+0x12/0xc0
[  213.258542][ T9935]  __do_fast_syscall_32+0x73/0x120
[  213.258560][ T9935]  do_fast_syscall_32+0x32/0x80
[  213.258579][ T9935]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  213.258592][ T9935] RIP: 0023:0xf7f83579
[  213.258601][ T9935] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  213.258612][ T9935] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  213.258622][ T9935] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080004bc0
[  213.258629][ T9935] RDX: 0000000000044084 RSI: 0000000000000000 RDI: 0000000000000000
[  213.258635][ T9935] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  213.258640][ T9935] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  213.258646][ T9935] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  213.258658][ T9935]  </TASK>
[  213.346413][ T9937] netlink: 103 bytes leftover after parsing attributes in process `syz.0.1052'.
[  213.524405][ T9945] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  213.528247][ T9945] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  213.530839][ T9945] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  213.540971][ T9945] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  213.543935][ T9945] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  213.564068][ T9945] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  213.574070][ T9945] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  213.595809][ T8512] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[  213.759821][ T8512] usb 7-1: Using ep0 maxpacket: 32
[  213.763635][ T8512] usb 7-1: config 0 has no interfaces?
[  213.768243][ T8512] usb 7-1: New USB device found, idVendor=12d1, idProduct=7ef3, bcdDevice=54.68
[  213.770737][ T8512] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  213.772926][ T8512] usb 7-1: Product: syz
[  213.774082][ T8512] usb 7-1: Manufacturer: syz
[  213.775385][ T8512] usb 7-1: SerialNumber: syz
[  213.779123][ T8512] usb 7-1: config 0 descriptor??
[  214.013083][ T9940] lo speed is unknown, defaulting to 1000
[  214.713567][ T9962] netlink: 103 bytes leftover after parsing attributes in process `syz.0.1060'.
[  214.745690][ T8512] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  214.763011][   T24] usb 7-1: USB disconnect, device number 15
[  214.831133][ T9964] FAULT_INJECTION: forcing a failure.
[  214.831133][ T9964] name failslab, interval 1, probability 0, space 0, times 0
[  214.834651][ T9964] CPU: 3 UID: 0 PID: 9964 Comm: syz.2.1062 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) 
[  214.834665][ T9964] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  214.834672][ T9964] Call Trace:
[  214.834676][ T9964]  <TASK>
[  214.834681][ T9964]  dump_stack_lvl+0x16c/0x1f0
[  214.834700][ T9964]  should_fail_ex+0x512/0x640
[  214.834713][ T9964]  ? fs_reclaim_acquire+0xae/0x150
[  214.834727][ T9964]  ? tomoyo_encode2+0x100/0x3e0
[  214.834742][ T9964]  should_failslab+0xc2/0x120
[  214.834752][ T9964]  __kmalloc_noprof+0xd2/0x510
[  214.834768][ T9964]  ? d_absolute_path+0x136/0x1a0
[  214.834782][ T9964]  tomoyo_encode2+0x100/0x3e0
[  214.834797][ T9964]  tomoyo_encode+0x29/0x50
[  214.834811][ T9964]  tomoyo_realpath_from_path+0x18f/0x6e0
[  214.834829][ T9964]  tomoyo_path_number_perm+0x245/0x580
[  214.834841][ T9964]  ? tomoyo_path_number_perm+0x237/0x580
[  214.834854][ T9964]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  214.834868][ T9964]  ? find_held_lock+0x2b/0x80
[  214.834893][ T9964]  ? find_held_lock+0x2b/0x80
[  214.834905][ T9964]  ? hook_file_ioctl_common+0x145/0x410
[  214.834920][ T9964]  ? __fget_files+0x20e/0x3c0
[  214.834938][ T9964]  security_file_ioctl_compat+0x9b/0x240
[  214.834954][ T9964]  __do_compat_sys_ioctl+0x4e/0x2c0
[  214.834968][ T9964]  __do_fast_syscall_32+0x73/0x120
[  214.834985][ T9964]  do_fast_syscall_32+0x32/0x80
[  214.835001][ T9964]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  214.835015][ T9964] RIP: 0023:0xf7f83579
[  214.835023][ T9964] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  214.835034][ T9964] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  214.835044][ T9964] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000002202
[  214.835050][ T9964] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  214.835056][ T9964] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  214.835062][ T9964] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  214.835068][ T9964] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  214.835080][ T9964]  </TASK>
[  214.835090][ T9964] ERROR: Out of memory at tomoyo_realpath_from_path.
[  214.915774][ T8512] usb 6-1: Using ep0 maxpacket: 8
[  214.918576][ T8512] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  214.920750][ T8512] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  214.923255][ T8512] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  214.926326][ T8512] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  214.929200][ T8512] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  214.932669][ T8512] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  214.935101][ T8512] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  215.147838][ T8512] usb 6-1: GET_CAPABILITIES returned 0
[  215.149510][ T8512] usbtmc 6-1:16.0: can't read capabilities
[  215.514601][ T9960] usbtmc 6-1:16.0: usb_control_msg returned -71
[  215.514940][   T24] usb 6-1: USB disconnect, device number 10
[  215.908439][ T9986] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[  215.910952][ T9986] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  215.913326][ T9986] vhci_hcd vhci_hcd.0: Device attached
[  215.918772][ T9986] vhci_hcd vhci_hcd.0: pdev(2) rhport(1) sockfd(5)
[  215.921359][ T9986] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  215.924298][ T9986] vhci_hcd vhci_hcd.0: Device attached
[  215.928952][ T9986] vhci_hcd vhci_hcd.0: pdev(2) rhport(2) sockfd(7)
[  215.930806][ T9986] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  215.932993][ T9986] vhci_hcd vhci_hcd.0: Device attached
[  215.936562][ T9986] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1070'.
[  215.957228][ T9992] vhci_hcd: connection closed
[  215.958264][ T9990] vhci_hcd: connection closed
[  215.958424][ T9987] vhci_hcd: connection closed
[  215.961114][ T1134] vhci_hcd: stop threads
[  215.965055][ T1134] vhci_hcd: release socket
[  215.967848][ T1134] vhci_hcd: disconnect device
[  215.971313][ T1134] vhci_hcd: stop threads
[  215.973089][ T1134] vhci_hcd: release socket
[  215.974780][ T1134] vhci_hcd: disconnect device
[  215.979587][ T1134] vhci_hcd: stop threads
[  215.980828][ T1134] vhci_hcd: release socket
[  215.982164][ T1134] vhci_hcd: disconnect device
[  216.130476][ T9999] netlink: 103 bytes leftover after parsing attributes in process `syz.3.1069'.
[  216.134177][ T9997] siw: device registration error -23
[  216.156211][   T24] e1000 0000:00:06.0 eth0: Reset adapter
[  216.571973][    T9] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  216.715856][    T9] usb 6-1: Using ep0 maxpacket: 32
[  216.719633][    T9] usb 6-1: config 0 has no interfaces?
[  216.722986][    T9] usb 6-1: New USB device found, idVendor=12d1, idProduct=7ef3, bcdDevice=54.68
[  216.725501][    T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  216.728134][    T9] usb 6-1: Product: syz
[  216.729414][    T9] usb 6-1: Manufacturer: syz
[  216.730708][    T9] usb 6-1: SerialNumber: syz
[  216.733238][    T9] usb 6-1: config 0 descriptor??
[  216.936042][T10027] overlay: ./file0 is not a directory
[  216.956256][T10008] lo speed is unknown, defaulting to 1000
[  217.006064][ T8512] net_ratelimit: 225 callbacks suppressed
[  217.006075][ T8512] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  217.700139][   T24] usb 6-1: USB disconnect, device number 11
[  218.045999][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  218.049507][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  218.052613][ T1134] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  218.058636][   T24] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  218.061890][ T5994] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  218.366625][ T6014] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX
[  218.606696][ T5993] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  219.085997][ T8512] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  220.126316][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  221.085945][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  222.206170][  T832] net_ratelimit: 1 callbacks suppressed
[  222.206188][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  223.245957][ T8512] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  224.125944][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  224.285934][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  224.870233][T10072] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  224.873801][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  225.235713][    T9] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[  225.327533][T10075] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  225.330715][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  225.333124][T10075] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  225.335980][T10075] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  225.338833][T10075] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  225.342764][T10075] batadv_slave_0: entered promiscuous mode
[  225.345248][T10075] batadv_slave_0: left promiscuous mode
[  225.385859][    T9] usb 7-1: Using ep0 maxpacket: 8
[  225.391500][    T9] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  225.395912][    T9] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  225.399702][    T9] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 65312, setting to 1024
[  225.403953][    T9] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  225.407356][    T9] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  225.411223][    T9] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  225.414367][    T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  225.622084][    T9] usb 7-1: GET_CAPABILITIES returned 0
[  225.623892][    T9] usbtmc 7-1:16.0: can't read capabilities
[  225.636223][T10082] veth1_to_bond: entered allmulticast mode
[  226.006637][T10078] veth1_to_bond: left allmulticast mode
[  226.015761][   T24] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[  226.175930][   T24] usb 8-1: Using ep0 maxpacket: 32
[  226.181430][   T24] usb 8-1: config 0 has no interfaces?
[  226.188284][T10095] FAULT_INJECTION: forcing a failure.
[  226.188284][T10095] name failslab, interval 1, probability 0, space 0, times 0
[  226.193102][T10095] CPU: 0 UID: 0 PID: 10095 Comm: syz.0.1088 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) 
[  226.193124][T10095] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  226.193135][T10095] Call Trace:
[  226.193140][T10095]  <TASK>
[  226.193147][T10095]  dump_stack_lvl+0x16c/0x1f0
[  226.193174][T10095]  should_fail_ex+0x512/0x640
[  226.193193][T10095]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  226.193218][T10095]  should_failslab+0xc2/0x120
[  226.193233][T10095]  __kmalloc_cache_noprof+0x6a/0x3e0
[  226.193255][T10095]  ? copy_mount_options+0x55/0x190
[  226.193274][T10095]  ? _copy_from_user+0x59/0xd0
[  226.193295][T10095]  copy_mount_options+0x55/0x190
[  226.193316][T10095]  __ia32_sys_mount+0x1ac/0x310
[  226.193334][T10095]  ? __pfx___ia32_sys_mount+0x10/0x10
[  226.193352][T10095]  ? rcu_is_watching+0x12/0xc0
[  226.193376][T10095]  __do_fast_syscall_32+0x73/0x120
[  226.193409][T10095]  do_fast_syscall_32+0x32/0x80
[  226.193434][T10095]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  226.193454][T10095] RIP: 0023:0xf73de579
[  226.193467][T10095] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  226.193483][T10095] RSP: 002b:00000000f506655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  226.193500][T10095] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000080000380
[  226.193511][T10095] RDX: 0000000080000100 RSI: 0000000000000000 RDI: 0000000080000400
[  226.193521][T10095] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  226.193531][T10095] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  226.193541][T10095] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  226.193564][T10095]  </TASK>
[  226.199493][   T24] usb 8-1: New USB device found, idVendor=12d1, idProduct=7ef3, bcdDevice=54.68
[  226.253842][   T24] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  226.256063][   T24] usb 8-1: Product: syz
[  226.257293][   T24] usb 8-1: Manufacturer: syz
[  226.258764][   T24] usb 8-1: SerialNumber: syz
[  226.262534][   T24] usb 8-1: config 0 descriptor??
[  226.365891][ T8512] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  226.481598][T10089] lo speed is unknown, defaulting to 1000
[  227.165913][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  227.204949][ T8512] usb 8-1: USB disconnect, device number 12
[  227.405916][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  227.445812][    T9] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  227.595717][    T9] usb 5-1: Using ep0 maxpacket: 8
[  227.603720][    T9] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  227.606351][    T9] usb 5-1: config 16 has an invalid descriptor of length 30, skipping remainder of the config
[  227.609234][    T9] usb 5-1: config 16 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  227.612777][    T9] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  227.615273][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  227.621420][    T9] usbtmc 5-1:16.0: bulk endpoints not found
[  227.623163][ T6014] usb 7-1: USB disconnect, device number 16
[  227.961799][T10130] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  227.964178][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  228.206244][   T24] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  228.234310][T10140] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  228.238422][T10140] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  228.446892][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  228.895853][  T832] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[  229.143943][  T832] usb 7-1: Using ep0 maxpacket: 32
[  229.147110][  T832] usb 7-1: config 0 has no interfaces?
[  229.150289][  T832] usb 7-1: New USB device found, idVendor=12d1, idProduct=7ef3, bcdDevice=54.68
[  229.155266][  T832] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  229.157708][  T832] usb 7-1: Product: syz
[  229.158893][  T832] usb 7-1: Manufacturer: syz
[  229.160266][  T832] usb 7-1: SerialNumber: syz
[  229.164288][  T832] usb 7-1: config 0 descriptor??
[  229.256503][T10156] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1103'.
[  229.261913][T10156] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  229.265039][T10156] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  229.268288][T10156] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  229.271312][T10156] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  229.277237][T10156] netdevsim netdevsim1 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  229.280408][T10156] netdevsim netdevsim1 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  229.283434][T10156] netdevsim netdevsim1 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  229.286362][T10156] netdevsim netdevsim1 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  229.391858][T10147] lo speed is unknown, defaulting to 1000
[  229.486516][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  230.135993][   T24] usb 7-1: USB disconnect, device number 17
[  230.245817][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  230.250212][ T6014] usb 5-1: USB disconnect, device number 6
[  230.274089][T10176] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1109'.
[  230.767778][ T8512] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  230.896895][   T40] audit: type=1326 audit(1744641174.186:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10195 comm="syz.0.1114" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73de579 code=0x7ffc0000
[  230.904371][   T40] audit: type=1326 audit(1744641174.186:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10195 comm="syz.0.1114" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73de579 code=0x7ffc0000
[  230.913610][   T40] audit: type=1326 audit(1744641174.186:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10195 comm="syz.0.1114" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf73de579 code=0x7ffc0000
[  230.922115][   T40] audit: type=1326 audit(1744641174.196:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10195 comm="syz.0.1114" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73de579 code=0x7ffc0000
[  230.931878][   T40] audit: type=1326 audit(1744641174.196:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10195 comm="syz.0.1114" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73de579 code=0x7ffc0000
[  230.941394][   T40] audit: type=1326 audit(1744641174.216:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10195 comm="syz.0.1114" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf73de579 code=0x7ffc0000
[  230.950467][   T40] audit: type=1326 audit(1744641174.216:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10195 comm="syz.0.1114" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73de579 code=0x7ffc0000
[  230.959384][   T40] audit: type=1326 audit(1744641174.216:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10195 comm="syz.0.1114" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73de579 code=0x7ffc0000
[  230.971214][   T40] audit: type=1326 audit(1744641174.216:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10195 comm="syz.0.1114" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf73de579 code=0x7ffc0000
[  230.978378][   T40] audit: type=1326 audit(1744641174.216:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10195 comm="syz.0.1114" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73de579 code=0x7ffc0000
[  231.823463][ T8512] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  231.848384][T10209] FAULT_INJECTION: forcing a failure.
[  231.848384][T10209] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  231.852223][T10209] CPU: 3 UID: 0 PID: 10209 Comm: syz.1.1119 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) 
[  231.852237][T10209] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  231.852244][T10209] Call Trace:
[  231.852249][T10209]  <TASK>
[  231.852253][T10209]  dump_stack_lvl+0x16c/0x1f0
[  231.852273][T10209]  should_fail_ex+0x512/0x640
[  231.852288][T10209]  _copy_from_iter+0x2a4/0x15b0
[  231.852305][T10209]  ? __pfx__copy_from_iter+0x10/0x10
[  231.852321][T10209]  ? __pfx___might_resched+0x10/0x10
[  231.852352][T10209]  file_tty_write.constprop.0+0x486/0x9b0
[  231.852374][T10209]  vfs_write+0x5ba/0x1180
[  231.852390][T10209]  ? __pfx_tty_write+0x10/0x10
[  231.852407][T10209]  ? __pfx_vfs_write+0x10/0x10
[  231.852420][T10209]  ? find_held_lock+0x2b/0x80
[  231.852443][T10209]  ksys_write+0x12a/0x240
[  231.852457][T10209]  ? __pfx_ksys_write+0x10/0x10
[  231.852472][T10209]  ? rcu_is_watching+0x12/0xc0
[  231.852488][T10209]  __do_fast_syscall_32+0x73/0x120
[  231.852507][T10209]  do_fast_syscall_32+0x32/0x80
[  231.852528][T10209]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  231.852547][T10209] RIP: 0023:0xf741e579
[  231.852555][T10209] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  231.852566][T10209] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  231.852576][T10209] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080001040
[  231.852583][T10209] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000000
[  231.852589][T10209] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  231.852595][T10209] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  231.852605][T10209] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  231.852617][T10209]  </TASK>
[  231.998676][T10218] FAULT_INJECTION: forcing a failure.
[  231.998676][T10218] name failslab, interval 1, probability 0, space 0, times 0
[  232.002366][T10218] CPU: 3 UID: 0 PID: 10218 Comm: syz.3.1121 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) 
[  232.002381][T10218] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  232.002388][T10218] Call Trace:
[  232.002393][T10218]  <TASK>
[  232.002397][T10218]  dump_stack_lvl+0x16c/0x1f0
[  232.002417][T10218]  should_fail_ex+0x512/0x640
[  232.002429][T10218]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  232.002447][T10218]  should_failslab+0xc2/0x120
[  232.002457][T10218]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  232.002473][T10218]  ? flock_lock_inode+0xbe8/0x1030
[  232.002489][T10218]  flock_lock_inode+0xbe8/0x1030
[  232.002505][T10218]  ? __pfx_flock_lock_inode+0x10/0x10
[  232.002522][T10218]  ? __pfx___might_resched+0x10/0x10
[  232.002545][T10218]  locks_lock_inode_wait+0x1da/0x490
[  232.002563][T10218]  ? __pfx_locks_lock_inode_wait+0x10/0x10
[  232.002592][T10218]  ? apparmor_file_lock+0x273/0x430
[  232.002607][T10218]  __do_sys_flock+0x446/0x520
[  232.002620][T10218]  ? __pfx___do_sys_flock+0x10/0x10
[  232.002643][T10218]  ? __pfx_ksys_write+0x10/0x10
[  232.002657][T10218]  ? rcu_is_watching+0x12/0xc0
[  232.002675][T10218]  do_int80_emulation+0x104/0x200
[  232.002692][T10218]  asm_int80_emulation+0x1a/0x20
[  232.002703][T10218] RIP: 0023:0xf748e579
[  232.002712][T10218] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  232.002723][T10218] RSP: 002b:00000000f50f555c EFLAGS: 00000296 ORIG_RAX: 000000000000008f
[  232.002733][T10218] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000000001
[  232.002739][T10218] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  232.002745][T10218] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  232.002751][T10218] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  232.002757][T10218] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  232.002769][T10218]  </TASK>
[  232.040611][T10220] netlink: 103 bytes leftover after parsing attributes in process `syz.2.1117'.
[  232.066094][T10218] netlink: 6 bytes leftover after parsing attributes in process `syz.3.1121'.
[  232.067352][T10217] siw: device registration error -23
[  232.685685][ T8512] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[  232.837199][ T8512] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  232.841386][ T8512] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  232.844496][ T8512] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  232.848171][ T8512] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  232.851074][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  232.854471][T10229] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  232.860808][ T8512] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  232.863465][T10236] netlink: 103 bytes leftover after parsing attributes in process `syz.0.1123'.
[  232.867604][T10235] siw: device registration error -23
[  233.336034][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  233.481364][T10251] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  233.484118][T10251] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  233.487029][T10251] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  233.491373][T10251] FAULT_INJECTION: forcing a failure.
[  233.491373][T10251] name failslab, interval 1, probability 0, space 0, times 0
[  233.495118][T10251] CPU: 2 UID: 0 PID: 10251 Comm: syz.1.1129 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) 
[  233.495131][T10251] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  233.495138][T10251] Call Trace:
[  233.495143][T10251]  <TASK>
[  233.495147][T10251]  dump_stack_lvl+0x16c/0x1f0
[  233.495167][T10251]  should_fail_ex+0x512/0x640
[  233.495183][T10251]  should_failslab+0xc2/0x120
[  233.495194][T10251]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  233.495211][T10251]  ? skb_clone+0x190/0x3f0
[  233.495227][T10251]  skb_clone+0x190/0x3f0
[  233.495242][T10251]  netlink_deliver_tap+0xabd/0xd30
[  233.495260][T10251]  netlink_unicast+0x6b2/0x7f0
[  233.495278][T10251]  ? __pfx_netlink_unicast+0x10/0x10
[  233.495293][T10251]  ? genl_rcv_msg+0x4bb/0x800
[  233.495307][T10251]  netlink_ack+0x696/0xb80
[  233.495326][T10251]  netlink_rcv_skb+0x347/0x440
[  233.495342][T10251]  ? __pfx_genl_rcv_msg+0x10/0x10
[  233.495353][T10251]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  233.495377][T10251]  ? __pfx_down_read+0x10/0x10
[  233.495388][T10251]  ? netlink_deliver_tap+0x1ae/0xd30
[  233.495405][T10251]  genl_rcv+0x28/0x40
[  233.495421][T10251]  netlink_unicast+0x53a/0x7f0
[  233.495438][T10251]  ? __pfx_netlink_unicast+0x10/0x10
[  233.495458][T10251]  netlink_sendmsg+0x8d1/0xdd0
[  233.495476][T10251]  ? __pfx_netlink_sendmsg+0x10/0x10
[  233.495493][T10251]  ? __import_iovec+0x1c8/0x660
[  233.495509][T10251]  ____sys_sendmsg+0xa95/0xc70
[  233.495521][T10251]  ? __pfx_____sys_sendmsg+0x10/0x10
[  233.495530][T10251]  ? get_compat_msghdr+0x11a/0x170
[  233.495550][T10251]  ___sys_sendmsg+0x134/0x1d0
[  233.495565][T10251]  ? __pfx____sys_sendmsg+0x10/0x10
[  233.495596][T10251]  __sys_sendmsg+0x16d/0x220
[  233.495610][T10251]  ? __pfx___sys_sendmsg+0x10/0x10
[  233.495642][T10251]  ? rcu_is_watching+0x12/0xc0
[  233.495657][T10251]  ? rcu_is_watching+0x12/0xc0
[  233.495672][T10251]  __do_fast_syscall_32+0x73/0x120
[  233.495689][T10251]  do_fast_syscall_32+0x32/0x80
[  233.495705][T10251]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  233.495719][T10251] RIP: 0023:0xf741e579
[  233.495727][T10251] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  233.495737][T10251] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  233.495748][T10251] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000480
[  233.495755][T10251] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  233.495761][T10251] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  233.495766][T10251] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  233.495772][T10251] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  233.495785][T10251]  </TASK>
[  233.571754][T10250] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  233.574252][T10250] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  233.802387][T10256] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1130'.
[  233.885920][ T8512] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  234.487082][T10265] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1131'.
[  234.493260][T10265] netlink: 'syz.0.1131': attribute type 10 has an invalid length.
[  234.925920][ T8512] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  235.500629][ T8512] usb 7-1: USB disconnect, device number 18
[  235.966002][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  236.561173][   T40] kauditd_printk_skb: 16 callbacks suppressed
[  236.561184][   T40] audit: type=1326 audit(1744641179.846:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10293 comm="syz.2.1142" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  236.570716][   T40] audit: type=1326 audit(1744641179.846:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10293 comm="syz.2.1142" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  236.576838][   T40] audit: type=1326 audit(1744641179.846:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10293 comm="syz.2.1142" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  236.583066][   T40] audit: type=1326 audit(1744641179.846:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10293 comm="syz.2.1142" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  236.589816][   T40] audit: type=1326 audit(1744641179.846:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10293 comm="syz.2.1142" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  236.596845][   T40] audit: type=1326 audit(1744641179.846:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10293 comm="syz.2.1142" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  236.604771][   T40] audit: type=1326 audit(1744641179.846:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10293 comm="syz.2.1142" exe="/syz-executor" sig=0 arch=40000003 syscall=245 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  236.613228][   T40] audit: type=1326 audit(1744641179.856:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10293 comm="syz.2.1142" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  236.624042][   T40] audit: type=1326 audit(1744641179.856:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10293 comm="syz.2.1142" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  236.632254][   T40] audit: type=1326 audit(1744641179.856:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10293 comm="syz.2.1142" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  236.746472][T10302] syzkaller1: entered promiscuous mode
[  236.748727][T10302] syzkaller1: entered allmulticast mode
[  238.064730][T10317] syz.0.1149 (10317): drop_caches: 2
[  238.070704][T10317] syz.0.1149 (10317): drop_caches: 2
[  238.131115][  T832] net_ratelimit: 5 callbacks suppressed
[  238.131127][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  238.384955][T10341] netlink: 'syz.2.1156': attribute type 1 has an invalid length.
[  238.387907][T10341] netlink: 'syz.2.1156': attribute type 3 has an invalid length.
[  238.392152][T10341] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1156'.
[  238.395490][T10341] NCSI netlink: No device for ifindex 0
[  239.169587][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  239.405887][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  239.892534][T10363] Cannot find add_set index 0 as target
[  240.206059][ T8512] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  240.597492][T10378] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1169'.
[  240.712232][T10383] openvswitch: netlink: Actions may not be safe on all matching packets
[  240.714582][T10383] FAULT_INJECTION: forcing a failure.
[  240.714582][T10383] name failslab, interval 1, probability 0, space 0, times 0
[  240.718922][T10383] CPU: 2 UID: 0 PID: 10383 Comm: syz.3.1170 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) 
[  240.718936][T10383] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  240.718943][T10383] Call Trace:
[  240.718946][T10383]  <TASK>
[  240.718950][T10383]  dump_stack_lvl+0x16c/0x1f0
[  240.718970][T10383]  should_fail_ex+0x512/0x640
[  240.718985][T10383]  should_failslab+0xc2/0x120
[  240.718996][T10383]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  240.719014][T10383]  ? skb_clone+0x190/0x3f0
[  240.719031][T10383]  skb_clone+0x190/0x3f0
[  240.719045][T10383]  netlink_deliver_tap+0xabd/0xd30
[  240.719063][T10383]  netlink_unicast+0x6b2/0x7f0
[  240.719081][T10383]  ? __pfx_netlink_unicast+0x10/0x10
[  240.719095][T10383]  ? genl_rcv_msg+0x4bb/0x800
[  240.719109][T10383]  netlink_ack+0x696/0xb80
[  240.719128][T10383]  netlink_rcv_skb+0x347/0x440
[  240.719144][T10383]  ? __pfx_genl_rcv_msg+0x10/0x10
[  240.719155][T10383]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  240.719177][T10383]  ? __pfx_down_read+0x10/0x10
[  240.719188][T10383]  ? netlink_deliver_tap+0x1ae/0xd30
[  240.719205][T10383]  genl_rcv+0x28/0x40
[  240.719220][T10383]  netlink_unicast+0x53a/0x7f0
[  240.719237][T10383]  ? __pfx_netlink_unicast+0x10/0x10
[  240.719257][T10383]  netlink_sendmsg+0x8d1/0xdd0
[  240.719274][T10383]  ? __pfx_netlink_sendmsg+0x10/0x10
[  240.719291][T10383]  ? __import_iovec+0x1c8/0x660
[  240.719308][T10383]  ____sys_sendmsg+0xa95/0xc70
[  240.719319][T10383]  ? __pfx_____sys_sendmsg+0x10/0x10
[  240.719328][T10383]  ? get_compat_msghdr+0x11a/0x170
[  240.719348][T10383]  ___sys_sendmsg+0x134/0x1d0
[  240.719363][T10383]  ? __pfx____sys_sendmsg+0x10/0x10
[  240.719393][T10383]  __sys_sendmsg+0x16d/0x220
[  240.719407][T10383]  ? __pfx___sys_sendmsg+0x10/0x10
[  240.719427][T10383]  ? rcu_is_watching+0x12/0xc0
[  240.719443][T10383]  __do_fast_syscall_32+0x73/0x120
[  240.719460][T10383]  do_fast_syscall_32+0x32/0x80
[  240.719476][T10383]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  240.719489][T10383] RIP: 0023:0xf748e579
[  240.719497][T10383] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  240.719508][T10383] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  240.719518][T10383] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000140
[  240.719524][T10383] RDX: 000000000000c080 RSI: 0000000000000000 RDI: 0000000000000000
[  240.719530][T10383] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  240.719536][T10383] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  240.719541][T10383] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  240.719554][T10383]  </TASK>
[  241.016161][ T8512] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  241.166186][ T8512] usb 5-1: too many configurations: 9, using maximum allowed: 8
[  241.169608][ T8512] usb 5-1: config index 0 descriptor too short (expected 65412, got 72)
[  241.172815][ T8512] usb 5-1: config index 1 descriptor too short (expected 65412, got 72)
[  241.176166][ T8512] usb 5-1: config index 2 descriptor too short (expected 65412, got 72)
[  241.179336][ T8512] usb 5-1: config index 3 descriptor too short (expected 65412, got 72)
[  241.182530][ T8512] usb 5-1: config index 4 descriptor too short (expected 65412, got 72)
[  241.185720][ T8512] usb 5-1: config index 5 descriptor too short (expected 65412, got 72)
[  241.188816][ T8512] usb 5-1: config index 6 descriptor too short (expected 65412, got 72)
[  241.192205][ T8512] usb 5-1: config index 7 descriptor too short (expected 65412, got 72)
[  241.197394][ T8512] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  241.199899][ T8512] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  241.202205][ T8512] usb 5-1: Product: syz
[  241.203364][ T8512] usb 5-1: Manufacturer: syz
[  241.204661][ T8512] usb 5-1: SerialNumber: syz
[  241.208890][ T8512] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  241.231711][ T8512] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  241.246190][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  241.442988][    T9] usb 5-1: USB disconnect, device number 7
[  241.463018][T10392] bridge0: Device is already in use.
[  241.726496][T10399] netlink: 'syz.3.1176': attribute type 1 has an invalid length.
[  241.740974][T10399] 8021q: adding VLAN 0 to HW filter on device bond2
[  241.750467][T10399] geneve2: entered promiscuous mode
[  241.751995][T10399] geneve2: entered allmulticast mode
[  241.756136][T10399] bond2: (slave geneve2): making interface the new active one
[  241.759615][T10399] bond2: (slave geneve2): Enslaving as an active interface with an up link
[  241.784086][T10401] tipc: Started in network mode
[  241.786047][T10401] tipc: Node identity ac14140f, cluster identity 4711
[  241.789619][T10401] tipc: New replicast peer: 255.255.255.255
[  241.793210][T10401] tipc: Enabled bearer <udp:syz2>, priority 10
[  242.050477][T10407] ieee802154 phy1 wpan1: encryption failed: -22
[  242.285820][ T1452] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  242.288166][ T8512] ath9k_htc 5-1:1.0: ath9k_htc: Target is unresponsive
[  242.290704][ T8512] ath9k_htc: Failed to initialize the device
[  242.294370][    T9] usb 5-1: ath9k_htc: USB layer deinitialized
[  242.295343][T10413] siw: device registration error -23
[  242.523953][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  242.786348][   T29] tipc: Node number set to 2886997007
[  242.878249][   T40] kauditd_printk_skb: 35 callbacks suppressed
[  242.878262][   T40] audit: type=1326 audit(1744641186.166:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10445 comm="syz.1.1183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  242.885495][   T40] audit: type=1326 audit(1744641186.166:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10445 comm="syz.1.1183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  242.891426][   T40] audit: type=1326 audit(1744641186.166:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10445 comm="syz.1.1183" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf741e579 code=0x7ffc0000
[  242.900542][   T40] audit: type=1326 audit(1744641186.166:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10445 comm="syz.1.1183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  242.908493][   T40] audit: type=1326 audit(1744641186.166:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10445 comm="syz.1.1183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  242.915286][   T40] audit: type=1326 audit(1744641186.166:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10445 comm="syz.1.1183" exe="/syz-executor" sig=0 arch=40000003 syscall=185 compat=1 ip=0xf741e579 code=0x7ffc0000
[  242.923951][   T40] audit: type=1326 audit(1744641186.166:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10445 comm="syz.1.1183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  242.938483][   T40] audit: type=1326 audit(1744641186.166:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10445 comm="syz.1.1183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  242.945599][   T40] audit: type=1326 audit(1744641186.166:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10445 comm="syz.1.1183" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf741e579 code=0x7ffc0000
[  242.953134][   T40] audit: type=1326 audit(1744641186.166:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10445 comm="syz.1.1183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  243.335837][ T8512] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  243.568463][T10478] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1189'.
[  243.631243][T10479] hub 6-0:1.0: USB hub found
[  243.632545][T10479] hub 6-0:1.0: 1 port detected
[  244.026360][T10490] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1191'.
[  244.551367][ T8512] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  244.610244][T10500] /dev/nullb0: Can't open blockdev
[  244.621936][T10500] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1194'.
[  245.077117][T10511] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1197'.
[  245.351216][T10524] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1200'.
[  245.445736][T10528] FAULT_INJECTION: forcing a failure.
[  245.445736][T10528] name failslab, interval 1, probability 0, space 0, times 0
[  245.450386][T10528] CPU: 2 UID: 0 PID: 10528 Comm: syz.2.1202 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) 
[  245.450409][T10528] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  245.450420][T10528] Call Trace:
[  245.450427][T10528]  <TASK>
[  245.450434][T10528]  dump_stack_lvl+0x16c/0x1f0
[  245.450464][T10528]  should_fail_ex+0x512/0x640
[  245.450487][T10528]  should_failslab+0xc2/0x120
[  245.450504][T10528]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  245.450531][T10528]  ? skb_clone+0x190/0x3f0
[  245.450563][T10528]  skb_clone+0x190/0x3f0
[  245.450587][T10528]  netlink_deliver_tap+0xabd/0xd30
[  245.450617][T10528]  netlink_unicast+0x6b2/0x7f0
[  245.450645][T10528]  ? __pfx_netlink_unicast+0x10/0x10
[  245.450668][T10528]  ? genl_rcv_msg+0x4bb/0x800
[  245.450691][T10528]  netlink_ack+0x696/0xb80
[  245.450723][T10528]  netlink_rcv_skb+0x347/0x440
[  245.450748][T10528]  ? __pfx_genl_rcv_msg+0x10/0x10
[  245.450766][T10528]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  245.450803][T10528]  ? __pfx_down_read+0x10/0x10
[  245.450821][T10528]  ? netlink_deliver_tap+0x1ae/0xd30
[  245.450848][T10528]  genl_rcv+0x28/0x40
[  245.450876][T10528]  netlink_unicast+0x53a/0x7f0
[  245.450904][T10528]  ? __pfx_netlink_unicast+0x10/0x10
[  245.450937][T10528]  netlink_sendmsg+0x8d1/0xdd0
[  245.450965][T10528]  ? __pfx_netlink_sendmsg+0x10/0x10
[  245.450992][T10528]  ? __import_iovec+0x1c8/0x660
[  245.451020][T10528]  ____sys_sendmsg+0xa95/0xc70
[  245.451039][T10528]  ? __pfx_____sys_sendmsg+0x10/0x10
[  245.451054][T10528]  ? get_compat_msghdr+0x11a/0x170
[  245.451087][T10528]  ___sys_sendmsg+0x134/0x1d0
[  245.451110][T10528]  ? __pfx____sys_sendmsg+0x10/0x10
[  245.451165][T10528]  __sys_sendmsg+0x16d/0x220
[  245.451187][T10528]  ? __pfx___sys_sendmsg+0x10/0x10
[  245.451217][T10528]  ? rcu_is_watching+0x12/0xc0
[  245.451241][T10528]  ? rcu_is_watching+0x12/0xc0
[  245.451265][T10528]  __do_fast_syscall_32+0x73/0x120
[  245.451291][T10528]  do_fast_syscall_32+0x32/0x80
[  245.451316][T10528]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  245.451337][T10528] RIP: 0023:0xf7f83579
[  245.451351][T10528] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  245.451366][T10528] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  245.451384][T10528] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000480
[  245.451394][T10528] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  245.451404][T10528] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  245.451414][T10528] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  245.451425][T10528] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  245.451449][T10528]  </TASK>
[  245.565906][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  245.568151][ T8512] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  246.618307][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  247.189542][T10562] netlink: 76 bytes leftover after parsing attributes in process `syz.0.1212'.
[  247.248688][T10562] pim6reg1: entered promiscuous mode
[  247.250751][T10562] pim6reg1: entered allmulticast mode
[  247.258842][T10562] Cannot find add_set index 0 as target
[  247.405868][   T24] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  247.655771][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  247.929054][ T1135] Bluetooth: hci4: Frame reassembly failed (-84)
[  248.245701][   T29] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[  248.280691][T10577] netlink: 'syz.0.1216': attribute type 1 has an invalid length.
[  248.283118][T10577] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1216'.
[  248.407389][   T29] usb 8-1: unable to get BOS descriptor or descriptor too short
[  248.410303][   T29] usb 8-1: config 1 interface 0 altsetting 170 bulk endpoint 0x82 has invalid maxpacket 16
[  248.413180][   T29] usb 8-1: config 1 interface 0 has no altsetting 0
[  248.417010][   T29] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  248.419765][   T29] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  248.421855][   T29] usb 8-1: Product: syz
[  248.423051][   T29] usb 8-1: Manufacturer: syz
[  248.424346][   T29] usb 8-1: SerialNumber: syz
[  248.430561][T10574] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  248.606056][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  248.645792][T10586] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1218'.
[  248.685871][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  248.866952][T10592] netlink: 6 bytes leftover after parsing attributes in process `syz.0.1220'.
[  249.094433][   T64] Bluetooth: hci5: Frame reassembly failed (-84)
[  249.101000][   T64] Bluetooth: hci5: Frame reassembly failed (-84)
[  249.165785][   T24] usb 7-1: new low-speed USB device number 19 using dummy_hcd
[  249.339172][   T24] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  249.341985][   T24] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 2
[  249.344440][   T24] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  249.348398][   T24] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  249.351046][   T24] usb 7-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  249.353533][   T24] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  249.360452][   T24] hub 7-1:1.0: bad descriptor, ignoring hub
[  249.362149][   T24] hub 7-1:1.0: probe with driver hub failed with error -5
[  249.364337][   T24] cdc_wdm 7-1:1.0: skipping garbage
[  249.365852][   T24] cdc_wdm 7-1:1.0: skipping garbage
[  249.368946][   T24] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  249.370522][   T24] cdc_wdm 7-1:1.0: Unknown control protocol
[  249.725913][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  249.965790][ T5954] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  249.966095][ T5965] Bluetooth: hci4: command 0x1003 tx timeout
[  249.995706][   T29] cdc_ether 8-1:1.0: probe with driver cdc_ether failed with error -71
[  250.002601][   T29] usb 8-1: USB disconnect, device number 13
[  250.119554][T10597] usb 7-1: reset low-speed USB device number 19 using dummy_hcd
[  250.277507][T10609] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  250.280621][T10609] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  250.283143][T10609] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  250.286297][T10609] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  250.290061][T10609] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  250.292724][T10608] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  250.423233][T10597] cdc_wdm 7-1:1.0: Error submitting int urb - -90
[  250.736393][ T6014] usb 7-1: USB disconnect, device number 19
[  250.775873][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  250.911956][T10625] netlink: 'syz.3.1227': attribute type 10 has an invalid length.
[  250.932276][T10625] veth0_vlan: left promiscuous mode
[  250.938965][T10625] veth0_vlan: entered promiscuous mode
[  250.947798][T10625] team0: Device veth0_vlan failed to register rx_handler
[  251.002500][T10620] netlink: 'syz.3.1227': attribute type 62 has an invalid length.
[  251.165839][ T5954] Bluetooth: hci5: command 0x1003 tx timeout
[  251.166062][ T5955] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  251.211575][T10628] bridge0: port 1(netdevsim0) entered blocking state
[  251.214016][T10628] bridge0: port 1(netdevsim0) entered disabled state
[  251.217425][T10628] netdevsim netdevsim2 netdevsim0: entered allmulticast mode
[  251.221934][T10628] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[  251.229378][T10628] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1231'.
[  251.442491][T10634] vivid-000: disconnect
[  251.938553][  T832] usb 6-1: new low-speed USB device number 12 using dummy_hcd
[  252.087473][  T832] usb 6-1: config 0 has an invalid interface number: 55 but max is 0
[  252.090469][  T832] usb 6-1: config 0 has no interface number 0
[  252.092663][  T832] usb 6-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  252.097002][  T832] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0xE has invalid maxpacket 32, setting to 8
[  252.100882][  T832] usb 6-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  252.104961][  T832] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  252.109061][  T832] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 8
[  252.112954][  T832] usb 6-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  252.117544][  T832] usb 6-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  252.120737][  T832] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  252.125407][  T832] usb 6-1: config 0 descriptor??
[  252.128126][T10639] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  252.130788][T10639] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  252.138072][  T832] ldusb 6-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  252.269477][T10633] vivid-000: reconnect
[  252.341142][T10639] ldusb 6-1:0.55: Write buffer overflow, 1 bytes dropped
[  252.346079][   T40] kauditd_printk_skb: 7 callbacks suppressed
[  252.346088][   T40] audit: type=1326 audit(1744641195.636:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10647 comm="syz.2.1237" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  252.347147][T10639] usb 2-1: USB disconnect, device number 2
[  252.347863][   T40] audit: type=1326 audit(1744641195.636:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10647 comm="syz.2.1237" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  252.349266][   T40] audit: type=1326 audit(1744641195.636:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10647 comm="syz.2.1237" exe="/syz-executor" sig=0 arch=40000003 syscall=354 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  252.372213][   T40] audit: type=1326 audit(1744641195.636:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10647 comm="syz.2.1237" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  252.380902][   T40] audit: type=1326 audit(1744641195.636:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10647 comm="syz.2.1237" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  252.386853][   T40] audit: type=1326 audit(1744641195.656:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10647 comm="syz.2.1237" exe="/syz-executor" sig=0 arch=40000003 syscall=266 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  252.397252][   T40] audit: type=1326 audit(1744641195.656:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10647 comm="syz.2.1237" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  252.403559][   T40] audit: type=1326 audit(1744641195.656:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10647 comm="syz.2.1237" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  252.409888][   T40] audit: type=1326 audit(1744641195.656:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10647 comm="syz.2.1237" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  252.416319][   T40] audit: type=1326 audit(1744641195.656:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10647 comm="syz.2.1237" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  252.516400][   T10] usb 6-1: USB disconnect, device number 12
[  252.525172][   T10] ldusb 6-1:0.55: LD USB Device #0 now disconnected
[  253.797496][T10685] wireguard0: entered promiscuous mode
[  253.799171][T10685] wireguard0: entered allmulticast mode
[  253.820314][T10689] netlink: 'syz.2.1248': attribute type 10 has an invalid length.
[  253.823241][T10689] net_ratelimit: 3 callbacks suppressed
[  253.823251][T10689] openvswitch: netlink: Flow actions attr not present in new flow.
[  254.055894][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  254.206866][T10710] FAULT_INJECTION: forcing a failure.
[  254.206866][T10710] name failslab, interval 1, probability 0, space 0, times 0
[  254.210374][T10710] CPU: 3 UID: 0 PID: 10710 Comm: syz.2.1254 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) 
[  254.210389][T10710] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  254.210396][T10710] Call Trace:
[  254.210400][T10710]  <TASK>
[  254.210404][T10710]  dump_stack_lvl+0x16c/0x1f0
[  254.210423][T10710]  should_fail_ex+0x512/0x640
[  254.210439][T10710]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  254.210457][T10710]  should_failslab+0xc2/0x120
[  254.210467][T10710]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  254.210483][T10710]  ? __d_alloc+0x31/0xaa0
[  254.210495][T10710]  __d_alloc+0x31/0xaa0
[  254.210504][T10710]  ? trace_kmem_cache_alloc+0x28/0xc0
[  254.210516][T10710]  d_alloc_pseudo+0x1c/0xc0
[  254.210529][T10710]  alloc_file_pseudo+0xcf/0x230
[  254.210542][T10710]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  254.210557][T10710]  sock_alloc_file+0x50/0x210
[  254.210573][T10710]  do_accept+0x240/0x530
[  254.210584][T10710]  ? do_raw_spin_lock+0x12c/0x2b0
[  254.210598][T10710]  ? __pfx_do_accept+0x10/0x10
[  254.210616][T10710]  __sys_accept4+0x100/0x1b0
[  254.210628][T10710]  ? __pfx___sys_accept4+0x10/0x10
[  254.210640][T10710]  ? __pfx_ksys_write+0x10/0x10
[  254.210657][T10710]  __ia32_sys_accept4+0x94/0x100
[  254.210668][T10710]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  254.210685][T10710]  __do_fast_syscall_32+0x73/0x120
[  254.210702][T10710]  do_fast_syscall_32+0x32/0x80
[  254.210718][T10710]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  254.210731][T10710] RIP: 0023:0xf7f83579
[  254.210740][T10710] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  254.210750][T10710] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 000000000000016c
[  254.210761][T10710] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[  254.210767][T10710] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  254.210773][T10710] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  254.210779][T10710] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  254.210785][T10710] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  254.210797][T10710]  </TASK>
[  254.425731][   T24] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  254.512289][T10720] bridge0: port 2(veth0_to_bridge) entered blocking state
[  254.514458][T10720] bridge0: port 2(veth0_to_bridge) entered disabled state
[  254.517124][T10720] veth0_to_bridge: entered allmulticast mode
[  254.521860][T10720] veth0_to_bridge: entered promiscuous mode
[  254.707890][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  254.785818][   T24] usb 5-1: Using ep0 maxpacket: 32
[  254.790030][   T24] usb 5-1: config 0 has no interfaces?
[  254.792515][   T24] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  254.796558][   T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  254.804428][   T24] usb 5-1: config 0 descriptor??
[  255.027030][T10708] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1253'.
[  255.060722][ T5993] usb 5-1: USB disconnect, device number 8
[  255.086007][ T8512] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  255.089915][ T1415] ieee802154 phy1 wpan1: encryption failed: -22
[  255.344321][T10747] FAULT_INJECTION: forcing a failure.
[  255.344321][T10747] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  255.353197][T10747] CPU: 3 UID: 0 PID: 10747 Comm: syz.2.1262 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) 
[  255.353213][T10747] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  255.353221][T10747] Call Trace:
[  255.353225][T10747]  <TASK>
[  255.353229][T10747]  dump_stack_lvl+0x16c/0x1f0
[  255.353249][T10747]  should_fail_ex+0x512/0x640
[  255.353263][T10747]  _copy_from_user+0x2e/0xd0
[  255.353278][T10747]  get_compat_msghdr+0xa7/0x170
[  255.353293][T10747]  ? __pfx_get_compat_msghdr+0x10/0x10
[  255.353307][T10747]  ? __lock_acquire+0x5ca/0x1ba0
[  255.353327][T10747]  ___sys_recvmsg+0x191/0x1a0
[  255.353342][T10747]  ? __pfx____sys_recvmsg+0x10/0x10
[  255.353366][T10747]  __sys_recvmsg+0x16a/0x220
[  255.353380][T10747]  ? __pfx___sys_recvmsg+0x10/0x10
[  255.353400][T10747]  ? rcu_is_watching+0x12/0xc0
[  255.353415][T10747]  __do_fast_syscall_32+0x73/0x120
[  255.353432][T10747]  do_fast_syscall_32+0x32/0x80
[  255.353453][T10747]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  255.353466][T10747] RIP: 0023:0xf7f83579
[  255.353475][T10747] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  255.353485][T10747] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000174
[  255.353495][T10747] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800005c0
[  255.353502][T10747] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  255.353507][T10747] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  255.353513][T10747] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  255.353519][T10747] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  255.353531][T10747]  </TASK>
[  256.136076][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  256.184812][T10770] pim6reg: entered allmulticast mode
[  256.188955][T10770] pim6reg: left allmulticast mode
[  256.506334][T10778] workqueue: Failed to create a rescuer kthread for wq "nfc3_nci_rx_wq": -EINTR
[  256.611755][T10793] bridge_slave_0: left allmulticast mode
[  256.616901][T10793] bridge_slave_0: left promiscuous mode
[  256.618758][T10793] bridge0: port 1(bridge_slave_0) entered disabled state
[  256.624618][T10793] bridge_slave_1: left allmulticast mode
[  256.626355][T10793] bridge_slave_1: left promiscuous mode
[  256.628063][T10793] bridge0: port 2(bridge_slave_1) entered disabled state
[  256.647138][T10793] team0: Port device team_slave_0 removed
[  256.653313][T10793] team0: Port device team_slave_1 removed
[  256.655298][T10793] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  256.657799][T10793] batman_adv: batadv0: Removing interface: batadv_slave_0
[  256.660680][T10793] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  256.662845][T10793] batman_adv: batadv0: Removing interface: batadv_slave_1
[  256.668013][T10793] netdevsim netdevsim0 netdevsim0: left allmulticast mode
[  256.670054][T10793] netdevsim netdevsim0 netdevsim0: left promiscuous mode
[  256.672182][T10793] bridge0: port 3(netdevsim0) entered disabled state
[  256.677607][T10793] bond0: (slave batadv1): Releasing active interface
[  256.679602][T10793] batadv1: left promiscuous mode
[  257.008225][ T5993] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  257.725895][ T8512] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  257.728262][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  257.996586][T10821] overlay: Unknown parameter '/'
[  258.562259][   T40] kauditd_printk_skb: 34 callbacks suppressed
[  258.562272][   T40] audit: type=1326 audit(1744641201.846:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10837 comm="syz.1.1289" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf741e579 code=0x0
[  258.765773][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  259.424834][   T29] libceph: connect (1)[c::]:6789 error -101
[  259.510984][T10857] FAULT_INJECTION: forcing a failure.
[  259.510984][T10857] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  259.515351][T10857] CPU: 2 UID: 0 PID: 10857 Comm: syz.2.1293 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) 
[  259.515365][T10857] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  259.515371][T10857] Call Trace:
[  259.515375][T10857]  <TASK>
[  259.515380][T10857]  dump_stack_lvl+0x16c/0x1f0
[  259.515399][T10857]  should_fail_ex+0x512/0x640
[  259.515414][T10857]  _copy_from_user+0x2e/0xd0
[  259.515428][T10857]  get_compat_msghdr+0xa7/0x170
[  259.515447][T10857]  ? __pfx_get_compat_msghdr+0x10/0x10
[  259.515465][T10857]  ___sys_sendmsg+0x1ae/0x1d0
[  259.515481][T10857]  ? __pfx____sys_sendmsg+0x10/0x10
[  259.515510][T10857]  __sys_sendmsg+0x16d/0x220
[  259.515524][T10857]  ? __pfx___sys_sendmsg+0x10/0x10
[  259.515543][T10857]  ? rcu_is_watching+0x12/0xc0
[  259.515558][T10857]  __do_fast_syscall_32+0x73/0x120
[  259.515576][T10857]  do_fast_syscall_32+0x32/0x80
[  259.515592][T10857]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  259.515606][T10857] RIP: 0023:0xf7f83579
[  259.515625][T10857] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  259.515636][T10857] RSP: 002b:00000000f506455c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  259.515646][T10857] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000100
[  259.515652][T10857] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000000
[  259.515658][T10857] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  259.515664][T10857] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  259.515670][T10857] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  259.515682][T10857]  </TASK>
[  259.531227][T10858] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1292'.
[  259.566523][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  259.805945][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  259.827189][ T6014] libceph: connect (1)[c::]:6789 error -101
[  259.828942][ T6014] libceph: mon0 (1)[c::]:6789 connect error
[  260.030183][T10868] netlink: 'syz.3.1296': attribute type 4 has an invalid length.
[  260.083421][T10854] ceph: No mds server is up or the cluster is laggy
[  260.766727][ T1135] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  260.770141][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  260.773414][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  260.796486][T10884] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1300'.
[  260.801568][T10884] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  260.807967][T10884] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  260.811776][T10884] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  260.815421][T10884] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  260.818878][T10884] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  260.822352][T10884] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  261.115694][T10879] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  261.117614][T10879] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  261.138453][T10879] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  261.140218][T10879] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  261.145093][T10879] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  261.148357][T10879] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  261.160268][T10879] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  261.161979][T10879] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  261.171729][T10879] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  261.188846][T10889] ceph: No mds server is up or the cluster is laggy
[  261.605429][T10903] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1306'.
[  261.608157][T10903] FAULT_INJECTION: forcing a failure.
[  261.608157][T10903] name failslab, interval 1, probability 0, space 0, times 0
[  261.611782][T10903] CPU: 2 UID: 0 PID: 10903 Comm: syz.1.1306 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) 
[  261.611802][T10903] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  261.611812][T10903] Call Trace:
[  261.611818][T10903]  <TASK>
[  261.611824][T10903]  dump_stack_lvl+0x16c/0x1f0
[  261.611852][T10903]  should_fail_ex+0x512/0x640
[  261.611870][T10903]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  261.611893][T10903]  should_failslab+0xc2/0x120
[  261.611909][T10903]  __kmalloc_cache_noprof+0x6a/0x3e0
[  261.611931][T10903]  ? alloc_netdev_mqs+0xf3a/0x1570
[  261.611953][T10903]  ? kasan_save_track+0x14/0x30
[  261.611978][T10903]  alloc_netdev_mqs+0xf3a/0x1570
[  261.612004][T10903]  rtnl_create_link+0xce9/0x1200
[  261.612030][T10903]  rtnl_newlink+0xb69/0x2000
[  261.612068][T10903]  ? __pfx_rtnl_newlink+0x10/0x10
[  261.612100][T10903]  ? kfree_skbmem+0x1a4/0x1f0
[  261.612124][T10903]  ? rcu_is_watching+0x12/0xc0
[  261.612145][T10903]  ? trace_cap_capable+0x18d/0x200
[  261.612169][T10903]  ? find_held_lock+0x2b/0x80
[  261.612189][T10903]  ? __pfx_rtnl_newlink+0x10/0x10
[  261.612210][T10903]  ? __pfx_rtnl_newlink+0x10/0x10
[  261.612230][T10903]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  261.612252][T10903]  ? __pfx_rtnl_newlink+0x10/0x10
[  261.612274][T10903]  rtnetlink_rcv_msg+0x95b/0xe90
[  261.612296][T10903]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  261.612335][T10903]  netlink_rcv_skb+0x16a/0x440
[  261.612360][T10903]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  261.612383][T10903]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  261.612421][T10903]  ? netlink_deliver_tap+0x1ae/0xd30
[  261.612447][T10903]  netlink_unicast+0x53a/0x7f0
[  261.612471][T10903]  ? __pfx_netlink_unicast+0x10/0x10
[  261.612504][T10903]  netlink_sendmsg+0x8d1/0xdd0
[  261.612532][T10903]  ? __pfx_netlink_sendmsg+0x10/0x10
[  261.612557][T10903]  ? __import_iovec+0x1c8/0x660
[  261.612585][T10903]  ____sys_sendmsg+0xa95/0xc70
[  261.612604][T10903]  ? __pfx_____sys_sendmsg+0x10/0x10
[  261.612619][T10903]  ? get_compat_msghdr+0x11a/0x170
[  261.612651][T10903]  ___sys_sendmsg+0x134/0x1d0
[  261.612675][T10903]  ? __pfx____sys_sendmsg+0x10/0x10
[  261.612726][T10903]  __sys_sendmsg+0x16d/0x220
[  261.612747][T10903]  ? __pfx___sys_sendmsg+0x10/0x10
[  261.612783][T10903]  ? rcu_is_watching+0x12/0xc0
[  261.612800][T10903]  __do_fast_syscall_32+0x73/0x120
[  261.612819][T10903]  do_fast_syscall_32+0x32/0x80
[  261.612835][T10903]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  261.612848][T10903] RIP: 0023:0xf741e579
[  261.612857][T10903] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  261.612868][T10903] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  261.612878][T10903] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000080
[  261.612885][T10903] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  261.612891][T10903] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  261.612897][T10903] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  261.612903][T10903] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  261.612916][T10903]  </TASK>
[  261.703836][    C2] vkms_vblank_simulate: vblank timer overrun
[  261.730114][T10905] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1307'.
[  262.015847][   T24] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  262.175823][   T24] usb 6-1: Using ep0 maxpacket: 16
[  262.180268][   T24] usb 6-1: config 0 has an invalid interface number: 132 but max is 0
[  262.182584][   T24] usb 6-1: config 0 has no interface number 0
[  262.185981][   T24] usb 6-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice=43.25
[  262.188556][   T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  262.190849][   T24] usb 6-1: Product: syz
[  262.192079][   T24] usb 6-1: Manufacturer: syz
[  262.193426][   T24] usb 6-1: SerialNumber: syz
[  262.196143][   T24] usb 6-1: config 0 descriptor??
[  262.198591][   T24] hub 6-1:0.132: bad descriptor, ignoring hub
[  262.201164][   T24] hub 6-1:0.132: probe with driver hub failed with error -5
[  262.209917][   T24] input: bcm5974 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.132/input/input24
[  262.525730][ T5955] Bluetooth: hci0: command 0x0401 tx timeout
[  263.165762][ T5955] Bluetooth: hci3: command 0x0c1a tx timeout
[  263.166099][ T5954] Bluetooth: hci2: command 0x0c1a tx timeout
[  263.166169][ T5965] Bluetooth: hci1: command 0x0406 tx timeout
[  263.768175][T10921] FAULT_INJECTION: forcing a failure.
[  263.768175][T10921] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  263.771784][T10921] CPU: 0 UID: 0 PID: 10921 Comm: syz.3.1312 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) 
[  263.771798][T10921] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  263.771804][T10921] Call Trace:
[  263.771808][T10921]  <TASK>
[  263.771812][T10921]  dump_stack_lvl+0x16c/0x1f0
[  263.771832][T10921]  should_fail_ex+0x512/0x640
[  263.771848][T10921]  _copy_to_user+0x32/0xd0
[  263.771862][T10921]  simple_read_from_buffer+0xcb/0x170
[  263.771878][T10921]  proc_fail_nth_read+0x197/0x270
[  263.771894][T10921]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  263.771909][T10921]  ? rw_verify_area+0xcf/0x680
[  263.771921][T10921]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  263.771936][T10921]  vfs_read+0x1de/0xc70
[  263.771952][T10921]  ? __pfx___mutex_lock+0x10/0x10
[  263.771969][T10921]  ? __pfx_vfs_read+0x10/0x10
[  263.771986][T10921]  ? __fget_files+0x20e/0x3c0
[  263.772005][T10921]  ksys_read+0x12a/0x240
[  263.772019][T10921]  ? __pfx_ksys_read+0x10/0x10
[  263.772045][T10921]  ? rcu_is_watching+0x12/0xc0
[  263.772061][T10921]  __do_fast_syscall_32+0x73/0x120
[  263.772079][T10921]  do_fast_syscall_32+0x32/0x80
[  263.772095][T10921]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  263.772108][T10921] RIP: 0023:0xf748e579
[  263.772117][T10921] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  263.772127][T10921] RSP: 002b:00000000f5116590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  263.772137][T10921] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5116620
[  263.772143][T10921] RDX: 000000000000000f RSI: 00000000f747dff4 RDI: 0000000000000000
[  263.772149][T10921] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  263.772155][T10921] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  263.772161][T10921] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  263.772173][T10921]  </TASK>
[  264.158656][T10929] xt_CT: You must specify a L4 protocol and not use inversions on it
[  264.605770][ T5954] Bluetooth: hci0: command 0x0401 tx timeout
[  265.005999][ T8512] net_ratelimit: 62 callbacks suppressed
[  265.006012][ T8512] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  265.168434][ T5950] usb 6-1: USB disconnect, device number 13
[  265.245726][ T5954] Bluetooth: hci3: command 0x0c1a tx timeout
[  265.255928][ T5954] Bluetooth: hci2: command 0x0c1a tx timeout
[  265.255965][ T5955] Bluetooth: hci1: command 0x0406 tx timeout
[  265.457503][   T24] usb 6-1: new low-speed USB device number 14 using dummy_hcd
[  265.545795][ T5993] usb 8-1: new full-speed USB device number 14 using dummy_hcd
[  265.607486][   T24] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  265.610361][   T24] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2
[  265.613623][   T24] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  265.617592][   T24] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 12912, setting to 8
[  265.621289][   T24] usb 6-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  265.624851][   T24] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  265.630459][T10952] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  265.635000][   T24] hub 6-1:1.0: bad descriptor, ignoring hub
[  265.637717][   T24] hub 6-1:1.0: probe with driver hub failed with error -5
[  265.640820][   T24] cdc_wdm 6-1:1.0: skipping garbage
[  265.642307][   T24] cdc_wdm 6-1:1.0: skipping garbage
[  265.644442][   T24] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  265.646707][   T24] cdc_wdm 6-1:1.0: Unknown control protocol
[  265.697190][ T5993] usb 8-1: config index 0 descriptor too short (expected 31, got 27)
[  265.699507][ T5993] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  265.703417][ T5993] usb 8-1: config 1 interface 0 has no altsetting 0
[  265.716970][ T5993] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= b.72
[  265.719487][ T5993] usb 8-1: New USB device strings: Mfr=28, Product=37, SerialNumber=3
[  265.721972][ T5993] usb 8-1: Product: syz
[  265.723583][ T5993] usb 8-1: Manufacturer: syz
[  265.725480][ T5993] usb 8-1: SerialNumber: syz
[  265.899450][T10962] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  265.917677][    C2] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  265.919601][    C2] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  265.921898][    C2] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  265.923686][    C2] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  265.925409][    C2] cdc_wdm 6-1:1.0: wdm_int_callback - usb_submit_urb failed with result -1
[  265.950188][T10952] netlink: 'syz.1.1321': attribute type 1 has an invalid length.
[  265.952616][T10952] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1321'.
[  265.961282][T10952] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1321'.
[  265.963786][T10952] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1321'.
[  265.977986][T10952] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  265.980457][T10952] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  266.045969][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  266.085999][ T5993] usb 6-1: USB disconnect, device number 14
[  266.616238][ T1134] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  266.620364][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  266.623312][ T5993] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  266.650410][T10969] xt_HMARK: proto mask must be zero with L3 mode
[  266.846734][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  266.925917][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  267.095851][ T8512] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  267.335732][ T5955] Bluetooth: hci3: command 0x0c1a tx timeout
[  267.966021][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  268.320374][  T832] usb 8-1: USB disconnect, device number 14
[  268.657518][T10989] netlink: 103 bytes leftover after parsing attributes in process `syz.3.1330'.
[  268.673114][T10988] siw: device registration error -23
[  270.216454][  T832] net_ratelimit: 4 callbacks suppressed
[  270.216472][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  270.890337][  T832] hid-generic FFF9:0000:0203.0007: unknown main item tag 0x0
[  270.892527][  T832] hid-generic FFF9:0000:0203.0007: unknown main item tag 0x0
[  270.894614][  T832] hid-generic FFF9:0000:0203.0007: unknown main item tag 0x0
[  270.898523][  T832] hid-generic FFF9:0000:0203.0007: unknown main item tag 0x0
[  270.900978][  T832] hid-generic FFF9:0000:0203.0007: unknown main item tag 0x0
[  270.903806][  T832] hid-generic FFF9:0000:0203.0007: unknown main item tag 0x0
[  271.318478][ T1452] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  271.320855][  T832] hid-generic FFF9:0000:0203.0007: unknown main item tag 0x0
[  271.322897][  T832] hid-generic FFF9:0000:0203.0007: unknown main item tag 0x0
[  271.324946][  T832] hid-generic FFF9:0000:0203.0007: unknown main item tag 0x0
[  271.327090][  T832] hid-generic FFF9:0000:0203.0007: unknown main item tag 0x0
[  271.329136][  T832] hid-generic FFF9:0000:0203.0007: unknown main item tag 0x0
[  271.331172][  T832] hid-generic FFF9:0000:0203.0007: unknown main item tag 0x0
[  271.333221][  T832] hid-generic FFF9:0000:0203.0007: unknown main item tag 0x0
[  271.335250][  T832] hid-generic FFF9:0000:0203.0007: unknown main item tag 0x0
[  271.337393][  T832] hid-generic FFF9:0000:0203.0007: unknown main item tag 0x0
[  271.339440][  T832] hid-generic FFF9:0000:0203.0007: unknown main item tag 0x0
[  271.342329][  T832] hid-generic FFF9:0000:0203.0007: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  272.192650][T11056] netlink: 103 bytes leftover after parsing attributes in process `syz.0.1340'.
[  272.211225][T11038] siw: device registration error -23
[  272.366056][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  272.695801][ T5954] Bluetooth: hci3: command 0x0c1a tx timeout
[  273.065749][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  273.419494][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  273.828892][T11079] netlink: 212424 bytes leftover after parsing attributes in process `syz.2.1354'.
[  273.851787][   T12] tipc: Subscription rejected, illegal request
[  274.314113][T11091] netlink: 103 bytes leftover after parsing attributes in process `syz.0.1356'.
[  274.317920][T11089] siw: device registration error -23
[  274.455839][ T8512] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  275.181811][T11110] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  275.188531][T11110] qnx6: wrong signature (magic) in superblock #1.
[  275.190428][T11110] qnx6: unable to read the first superblock
[  275.198482][T11110] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1364'.
[  275.331820][T11119] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1363'.
[  275.334543][T11119] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1363'.
[  275.485941][ T8512] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  276.125938][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  276.206025][   T24] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  276.525902][ T8512] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  276.545585][T11141] netlink: 103 bytes leftover after parsing attributes in process `syz.3.1369'.
[  276.549589][T11140] siw: device registration error -23
[  277.229164][   T24] usb 8-1: new high-speed USB device number 15 using dummy_hcd
[  277.365795][   T24] usb 8-1: device descriptor read/64, error -71
[  277.565905][ T1452] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  277.605777][   T24] usb 8-1: new high-speed USB device number 16 using dummy_hcd
[  277.725889][ T8512] usb 5-1: new full-speed USB device number 9 using dummy_hcd
[  277.735802][   T24] usb 8-1: device descriptor read/64, error -71
[  277.846022][   T24] usb usb8-port1: attempt power cycle
[  277.892926][ T8512] usb 5-1: config index 0 descriptor too short (expected 31, got 27)
[  277.895454][ T8512] usb 5-1: config 1 interface 0 has no altsetting 0
[  277.899230][ T8512] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= b.72
[  277.901734][ T8512] usb 5-1: New USB device strings: Mfr=28, Product=37, SerialNumber=3
[  277.904235][ T8512] usb 5-1: Product: syz
[  277.906010][ T8512] usb 5-1: Manufacturer: syz
[  277.907352][ T8512] usb 5-1: SerialNumber: syz
[  278.185780][   T24] usb 8-1: new high-speed USB device number 17 using dummy_hcd
[  278.206245][   T24] usb 8-1: device descriptor read/8, error -71
[  278.275809][   T10] usb 6-1: new low-speed USB device number 15 using dummy_hcd
[  278.427698][   T10] usb 6-1: config 0 has an invalid interface number: 55 but max is 0
[  278.430209][   T10] usb 6-1: config 0 has no interface number 0
[  278.432147][   T10] usb 6-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  278.435296][   T10] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0xE has invalid maxpacket 32, setting to 8
[  278.438498][   T10] usb 6-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  278.441998][   T10] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  278.445238][   T10] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 8
[  278.445924][   T24] usb 8-1: new high-speed USB device number 18 using dummy_hcd
[  278.448447][   T10] usb 6-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  278.454734][   T10] usb 6-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  278.457552][   T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  278.461454][   T10] usb 6-1: config 0 descriptor??
[  278.463565][T11159] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22
[  278.465586][T11159] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22
[  278.467879][   T24] usb 8-1: device descriptor read/8, error -71
[  278.471642][   T10] ldusb 6-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  278.520012][ T8512] usblp 5-1:1.0: usblp1: USB Unidirectional printer dev 9 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[  278.578647][   T24] usb usb8-port1: unable to enumerate USB device
[  278.617473][ T8512] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  278.733093][ T8512] usb 6-1: USB disconnect, device number 15
[  278.741648][ T8512] ldusb 6-1:0.55: LD USB Device #0 now disconnected
[  279.165833][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  279.651365][ T8512] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  280.029619][T11181] netlink: 103 bytes leftover after parsing attributes in process `syz.2.1381'.
[  280.033212][T11178] siw: device registration error -23
[  280.505388][    T9] usb 5-1: USB disconnect, device number 9
[  280.512668][    T9] usblp1: removed
[  280.655749][T11191] netlink: 344 bytes leftover after parsing attributes in process `syz.1.1383'.
[  280.663959][T11185] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  280.666330][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  280.686674][ T8512] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  280.917066][T11201] exFAT-fs (nullb0): invalid boot record signature
[  280.919653][T11201] exFAT-fs (nullb0): failed to read boot sector
[  280.922002][T11201] exFAT-fs (nullb0): failed to recognize exfat type
[  281.005788][   T10] usb 7-1: new high-speed USB device number 20 using dummy_hcd
[  281.112884][T11204] IPv6: NLM_F_CREATE should be specified when creating new route
[  281.135708][   T10] usb 7-1: device descriptor read/64, error -71
[  281.375710][   T10] usb 7-1: new high-speed USB device number 21 using dummy_hcd
[  281.510007][   T10] usb 7-1: device descriptor read/64, error -71
[  281.563690][T11211] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1391'.
[  281.607953][T11218] tmpfs: Bad value for 'mpol'
[  281.619055][   T10] usb usb7-port1: attempt power cycle
[  281.725823][ T8512] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  281.966669][   T10] usb 7-1: new high-speed USB device number 22 using dummy_hcd
[  281.987338][   T10] usb 7-1: device descriptor read/8, error -71
[  282.215697][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  282.227175][T11228] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1395'.
[  282.235676][   T10] usb 7-1: new high-speed USB device number 23 using dummy_hcd
[  282.258018][   T10] usb 7-1: device descriptor read/8, error -71
[  282.274198][T11229] netlink: 103 bytes leftover after parsing attributes in process `syz.3.1394'.
[  282.278493][T11226] siw: device registration error -23
[  282.309574][T11231] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1396'.
[  282.365858][   T10] usb usb7-port1: unable to enumerate USB device
[  282.777128][T11242] netlink: 344 bytes leftover after parsing attributes in process `syz.0.1398'.
[  282.977792][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  283.334952][T11248] erofs (device loop3): cannot find valid erofs superblock
[  283.818245][T11267] netlink: 'syz.2.1405': attribute type 10 has an invalid length.
[  283.820278][T11267] openvswitch: netlink: Flow actions attr not present in new flow.
[  283.823937][T11267] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1405'.
[  283.826737][T11267] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1405'.
[  283.864040][T11267] 9pnet_fd: Insufficient options for proto=fd
[  284.045953][ T8512] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  284.821428][T11284] FAULT_INJECTION: forcing a failure.
[  284.821428][T11284] name failslab, interval 1, probability 0, space 0, times 0
[  284.825080][T11284] CPU: 0 UID: 0 PID: 11284 Comm: syz.2.1410 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) 
[  284.825094][T11284] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  284.825110][T11284] Call Trace:
[  284.825123][T11284]  <TASK>
[  284.825129][T11284]  dump_stack_lvl+0x16c/0x1f0
[  284.825153][T11284]  should_fail_ex+0x512/0x640
[  284.825166][T11284]  ? fs_reclaim_acquire+0xae/0x150
[  284.825180][T11284]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  284.825195][T11284]  should_failslab+0xc2/0x120
[  284.825206][T11284]  __kmalloc_noprof+0xd2/0x510
[  284.825225][T11284]  tomoyo_realpath_from_path+0xc2/0x6e0
[  284.825241][T11284]  ? tomoyo_profile+0x47/0x60
[  284.825258][T11284]  tomoyo_path_number_perm+0x245/0x580
[  284.825270][T11284]  ? tomoyo_path_number_perm+0x237/0x580
[  284.825283][T11284]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  284.825296][T11284]  ? preempt_schedule_common+0x44/0xc0
[  284.825324][T11284]  ? find_held_lock+0x2b/0x80
[  284.825338][T11284]  ? hook_file_ioctl_common+0x145/0x410
[  284.825352][T11284]  ? __fget_files+0x20e/0x3c0
[  284.825370][T11284]  security_file_ioctl_compat+0x9b/0x240
[  284.825385][T11284]  __do_compat_sys_ioctl+0x4e/0x2c0
[  284.825399][T11284]  __do_fast_syscall_32+0x73/0x120
[  284.825416][T11284]  do_fast_syscall_32+0x32/0x80
[  284.825432][T11284]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  284.825446][T11284] RIP: 0023:0xf7f83579
[  284.825454][T11284] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  284.825465][T11284] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  284.825475][T11284] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000707
[  284.825481][T11284] RDX: 0000000080001100 RSI: 0000000000000000 RDI: 0000000000000000
[  284.825487][T11284] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  284.825493][T11284] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  284.825499][T11284] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  284.825512][T11284]  </TASK>
[  284.825558][T11284] ERROR: Out of memory at tomoyo_realpath_from_path.
[  285.181280][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  285.186530][T11281] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  285.807220][   T24] net_ratelimit: 2048 callbacks suppressed
[  285.807238][   T24] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  286.206720][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  286.229044][T11298] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  286.232345][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  286.235467][T11298] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  286.238933][ T1135] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  286.242935][T11298] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  286.246095][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  286.250462][T11298] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  286.253414][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  286.747395][  T832] usb 8-1: new high-speed USB device number 19 using dummy_hcd
[  286.947199][  T832] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  286.949962][  T832] usb 8-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  286.952645][  T832] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  286.958143][  T832] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  286.960718][  T832] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  286.962984][  T832] usb 8-1: Product: syz
[  286.964206][  T832] usb 8-1: Manufacturer: syz
[  286.965543][  T832] usb 8-1: SerialNumber: syz
[  287.172818][  T832] usblp 8-1:1.0: usblp0: USB Unidirectional printer dev 19 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  287.375004][ T5950] usb 8-1: USB disconnect, device number 19
[  287.573617][T11311] usblp0: removed
[  287.585820][   T10] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  287.735697][   T10] usb 5-1: Using ep0 maxpacket: 8
[  287.738939][   T10] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  287.742412][   T10] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  287.745868][   T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  287.755323][   T10] usb 5-1: config 0 descriptor??
[  288.106521][   T10] iowarrior 5-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  288.127977][   T10] usb 5-1: USB disconnect, device number 10
[  288.130612][T11338] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1422'.
[  288.133191][T11338] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1422'.
[  288.578774][T11347] netlink: 'syz.3.1427': attribute type 10 has an invalid length.
[  288.581142][T11347] veth0_vlan: left promiscuous mode
[  288.583058][T11347] veth0_vlan: entered promiscuous mode
[  288.585806][T11347] team0: Device veth0_vlan failed to register rx_handler
[  288.901771][T11351] lo speed is unknown, defaulting to 1000
[  289.770343][T11366] random: crng reseeded on system resumption
[  289.926940][T11368] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1434'.
[  289.930311][T11368] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1434'.
[  289.933700][T11368] FAULT_INJECTION: forcing a failure.
[  289.933700][T11368] name failslab, interval 1, probability 0, space 0, times 0
[  289.938296][T11368] CPU: 1 UID: 0 PID: 11368 Comm: syz.0.1434 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) 
[  289.938319][T11368] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  289.938329][T11368] Call Trace:
[  289.938336][T11368]  <TASK>
[  289.938344][T11368]  dump_stack_lvl+0x16c/0x1f0
[  289.938373][T11368]  should_fail_ex+0x512/0x640
[  289.938392][T11368]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  289.938418][T11368]  should_failslab+0xc2/0x120
[  289.938436][T11368]  __kmalloc_cache_noprof+0x6a/0x3e0
[  289.938458][T11368]  ? lockdep_init_map_type+0x5c/0x280
[  289.938474][T11368]  ? register_netdevice+0x4eb/0x2270
[  289.938502][T11368]  register_netdevice+0x4eb/0x2270
[  289.938541][T11368]  ? __pfx_netdev_update_features+0x10/0x10
[  289.938567][T11368]  ? __pfx_register_netdevice+0x10/0x10
[  289.938591][T11368]  ? dev_set_mtu+0x19f/0x260
[  289.938615][T11368]  ? hsr_add_port+0x57e/0x870
[  289.938639][T11368]  hsr_dev_finalize+0x6cb/0xbe0
[  289.938664][T11368]  hsr_newlink+0x46e/0xa00
[  289.938684][T11368]  ? __pfx_hsr_newlink+0x10/0x10
[  289.938704][T11368]  ? rtnl_create_link+0xb2b/0x1200
[  289.938727][T11368]  ? __pfx_hsr_newlink+0x10/0x10
[  289.938748][T11368]  rtnl_newlink+0xc42/0x2000
[  289.938779][T11368]  ? __pfx_rtnl_newlink+0x10/0x10
[  289.938813][T11368]  ? kfree_skbmem+0x1a4/0x1f0
[  289.938844][T11368]  ? rcu_is_watching+0x12/0xc0
[  289.938864][T11368]  ? trace_cap_capable+0x18d/0x200
[  289.938891][T11368]  ? find_held_lock+0x2b/0x80
[  289.938910][T11368]  ? __pfx_rtnl_newlink+0x10/0x10
[  289.938932][T11368]  ? __pfx_rtnl_newlink+0x10/0x10
[  289.938952][T11368]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  289.938976][T11368]  ? __pfx_rtnl_newlink+0x10/0x10
[  289.938998][T11368]  rtnetlink_rcv_msg+0x95b/0xe90
[  289.939023][T11368]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  289.939058][T11368]  netlink_rcv_skb+0x16a/0x440
[  289.939082][T11368]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  289.939106][T11368]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  289.939144][T11368]  ? netlink_deliver_tap+0x1ae/0xd30
[  289.939171][T11368]  netlink_unicast+0x53a/0x7f0
[  289.939198][T11368]  ? __pfx_netlink_unicast+0x10/0x10
[  289.939228][T11368]  netlink_sendmsg+0x8d1/0xdd0
[  289.939256][T11368]  ? __pfx_netlink_sendmsg+0x10/0x10
[  289.939281][T11368]  ? __import_iovec+0x1c8/0x660
[  289.939308][T11368]  ____sys_sendmsg+0xa95/0xc70
[  289.939327][T11368]  ? __pfx_____sys_sendmsg+0x10/0x10
[  289.939341][T11368]  ? get_compat_msghdr+0x11a/0x170
[  289.939373][T11368]  ___sys_sendmsg+0x134/0x1d0
[  289.939398][T11368]  ? __pfx____sys_sendmsg+0x10/0x10
[  289.939452][T11368]  __sys_sendmsg+0x16d/0x220
[  289.939475][T11368]  ? __pfx___sys_sendmsg+0x10/0x10
[  289.939527][T11368]  ? rcu_is_watching+0x12/0xc0
[  289.939551][T11368]  __do_fast_syscall_32+0x73/0x120
[  289.939577][T11368]  do_fast_syscall_32+0x32/0x80
[  289.939601][T11368]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  289.939622][T11368] RIP: 0023:0xf73de579
[  289.939636][T11368] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  289.939653][T11368] RSP: 002b:00000000f506655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  289.939670][T11368] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00000000800000c0
[  289.939682][T11368] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  289.939692][T11368] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  289.939701][T11368] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  289.939711][T11368] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  289.939734][T11368]  </TASK>
[  290.021533][T11370] rdma_rxe: rxe_newlink: failed to add syz_tun
[  290.022685][   T24] usb 7-1: new high-speed USB device number 24 using dummy_hcd
[  290.171211][T11370] bridge0: port 3(netdevsim0) entered disabled state
[  290.173648][T11370] bridge0: port 2(bridge_slave_1) entered disabled state
[  290.175823][T11370] bridge0: port 1(bridge_slave_0) entered disabled state
[  290.180794][T11370] bond0: (slave bridge0): Releasing backup interface
[  290.215796][   T24] usb 7-1: Using ep0 maxpacket: 32
[  290.218454][   T24] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  290.222207][   T24] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  290.225982][   T24] usb 7-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  290.228566][   T24] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  290.233380][   T24] usb 7-1: config 0 descriptor??
[  290.258953][T11370] bridge_slave_0: left allmulticast mode
[  290.261048][T11370] bridge_slave_0: left promiscuous mode
[  290.263206][T11370] bridge0: port 1(bridge_slave_0) entered disabled state
[  290.277352][T11370] bridge_slave_1: left allmulticast mode
[  290.279423][T11370] bridge_slave_1: left promiscuous mode
[  290.281482][T11370] bridge0: port 2(bridge_slave_1) entered disabled state
[  290.301175][T11370] bond0: (slave bond_slave_0): Releasing backup interface
[  290.311066][T11370] bond0: (slave bond_slave_1): Releasing backup interface
[  290.327581][T11370] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  290.333140][T11370] batman_adv: batadv0: Removing interface: batadv_slave_0
[  290.342961][T11370] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  290.352080][T11370] batman_adv: batadv0: Removing interface: batadv_slave_1
[  290.401452][T11370] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  290.403951][T11370] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  290.406663][T11370] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  290.409143][T11370] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  290.418471][T11370] netdevsim netdevsim1 netdevsim0: left allmulticast mode
[  290.420474][T11370] netdevsim netdevsim1 netdevsim0: left promiscuous mode
[  290.422515][T11370] bridge0: port 3(netdevsim0) entered disabled state
[  290.447145][  T832] lo speed is unknown, defaulting to 1000
[  290.448907][  T832] syz0: Port: 1 Link DOWN
[  290.686220][   T24] savu 0003:1E7D:2D5A.0008: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.2-1/input0
[  290.940702][T11388] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  290.944058][T11388] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  290.956661][  T832] usb 7-1: USB disconnect, device number 24
[  291.313373][T11402] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1444'.
[  291.323141][T11402] ipvlan2: entered promiscuous mode
[  291.552730][T11412] fuse: Bad value for 'fd'
[  292.114917][T11420] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1451'.
[  292.124881][T11420] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1451'.
[  292.137915][T11420] bond0: entered promiscuous mode
[  292.142428][T11420] bridge0: entered promiscuous mode
[  292.146371][T11420] debugfs: Directory 'hsr1' with parent 'hsr' already present!
[  292.149203][T11420] Cannot create hsr debugfs directory
[  292.150796][T11420] hsr1: Slave A (bond0) is not up; please bring it up to get a fully working HSR network
[  292.153607][T11420] hsr1: Slave B (bridge0) is not up; please bring it up to get a fully working HSR network
[  293.171029][T11437] netlink: 'syz.2.1455': attribute type 1 has an invalid length.
[  293.182864][T11437] bond2: entered promiscuous mode
[  293.184913][T11437] 8021q: adding VLAN 0 to HW filter on device bond2
[  293.715501][T11463] netlink: 103 bytes leftover after parsing attributes in process `syz.2.1460'.
[  293.719509][T11460] siw: device registration error -23
[  296.313035][T11498] affs: No valid root block on device nbd1
[  296.696179][ T5994] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  296.845974][ T5994] usb 6-1: Using ep0 maxpacket: 16
[  296.851617][ T5994] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  296.855011][ T5994] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  296.857931][ T5994] usb 6-1: New USB device found, idVendor=05ac, idProduct=8241, bcdDevice= 0.00
[  296.860492][ T5994] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  296.865968][ T5994] usb 6-1: config 0 descriptor??
[  297.282384][T11509] overlayfs: failed to create directory ./bus/work (errno: 13); mounting read-only
[  297.286429][T11509] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  297.290729][T11509] overlayfs: failed to get uuid (380/file1, err=-13); falling back to uuid=null.
[  297.297161][ T5994] usbhid 6-1:0.0: can't add hid device: -71
[  297.298902][ T5994] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  297.304048][ T5994] usb 6-1: USB disconnect, device number 16
[  297.780335][T11515] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  299.143033][T11536] 9pnet_fd: Insufficient options for proto=fd
[  299.188524][T11538] net_ratelimit: 5 callbacks suppressed
[  299.188539][T11538] sock: sock_set_timeout: `syz.2.1487' (pid 11538) tries to set negative timeout
[  299.272598][T11534] lo speed is unknown, defaulting to 1000
[  300.114289][T11546] (unnamed net_device) (uninitialized): Unable to set peer notification delay as MII monitoring is disabled
[  302.618538][T11580] netlink: 103 bytes leftover after parsing attributes in process `syz.0.1498'.
[  302.629369][T11579] siw: device registration error -23
[  304.193153][T11603] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1505'.
[  305.788604][T11632] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1512'.
[  306.129789][T11636] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1514'.
[  306.134899][T11636] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1514'.
[  306.839092][ T5954] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  306.846690][ T5954] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  306.849245][ T5954] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  306.853041][ T5954] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  306.857288][ T5954] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  306.880489][T11654] overlayfs: overlapping lowerdir path
[  306.882892][T11652] lo speed is unknown, defaulting to 1000
[  307.032267][T11652] chnl_net:caif_netlink_parms(): no params data found
[  307.145455][T11652] bridge0: port 1(bridge_slave_0) entered blocking state
[  307.147530][T11652] bridge0: port 1(bridge_slave_0) entered disabled state
[  307.149484][T11652] bridge_slave_0: entered allmulticast mode
[  307.151820][T11652] bridge_slave_0: entered promiscuous mode
[  307.154619][T11652] bridge0: port 2(bridge_slave_1) entered blocking state
[  307.157363][T11652] bridge0: port 2(bridge_slave_1) entered disabled state
[  307.159398][T11652] bridge_slave_1: entered allmulticast mode
[  307.161658][T11652] bridge_slave_1: entered promiscuous mode
[  307.198990][T11652] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  307.203241][T11652] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  307.240487][T11652] team0: Port device team_slave_0 added
[  307.244272][T11652] team0: Port device team_slave_1 added
[  307.274450][T11652] batman_adv: batadv0: Adding interface: batadv_slave_0
[  307.276879][T11652] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  307.286488][T11652] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  307.291411][T11652] batman_adv: batadv0: Adding interface: batadv_slave_1
[  307.294037][T11652] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  307.303356][T11652] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  307.325713][  T832] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  307.352874][T11652] hsr_slave_0: entered promiscuous mode
[  307.354827][T11652] hsr_slave_1: entered promiscuous mode
[  307.357321][T11652] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  307.359367][T11652] Cannot create hsr debugfs directory
[  307.472600][T11652] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  307.479375][T11652] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  307.485727][  T832] usb 6-1: Using ep0 maxpacket: 32
[  307.494432][T11652] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  307.498479][  T832] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  307.501350][  T832] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  307.502332][T11652] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  307.503926][  T832] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  307.503953][  T832] usb 6-1: New USB device found, idVendor=0458, idProduct=5011, bcdDevice= 0.00
[  307.511982][  T832] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  307.519275][  T832] usb 6-1: config 0 descriptor??
[  307.526684][T11652] bridge0: port 2(bridge_slave_1) entered blocking state
[  307.528622][T11652] bridge0: port 2(bridge_slave_1) entered forwarding state
[  307.530689][T11652] bridge0: port 1(bridge_slave_0) entered blocking state
[  307.532585][T11652] bridge0: port 1(bridge_slave_0) entered forwarding state
[  307.570752][T11652] 8021q: adding VLAN 0 to HW filter on device bond0
[  307.587425][   T64] bridge0: port 1(bridge_slave_0) entered disabled state
[  307.598149][   T64] bridge0: port 2(bridge_slave_1) entered disabled state
[  307.616269][T11652] 8021q: adding VLAN 0 to HW filter on device team0
[  307.629269][ T1135] bridge0: port 1(bridge_slave_0) entered blocking state
[  307.631182][ T1135] bridge0: port 1(bridge_slave_0) entered forwarding state
[  307.637364][   T64] bridge0: port 2(bridge_slave_1) entered blocking state
[  307.639741][   T64] bridge0: port 2(bridge_slave_1) entered forwarding state
[  307.823463][T11652] 8021q: adding VLAN 0 to HW filter on device batadv0
[  307.930074][T11660] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  307.935052][T11660] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  307.940623][T11652] veth0_vlan: entered promiscuous mode
[  307.953844][T11652] veth1_vlan: entered promiscuous mode
[  307.962185][  T832] input: HID 0458:5011 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/0003:0458:5011.0009/input/input25
[  307.983840][T11652] veth0_macvtap: entered promiscuous mode
[  307.989508][T11652] veth1_macvtap: entered promiscuous mode
[  307.997216][T11652] batman_adv: batadv0: Interface activated: batadv_slave_0
[  308.003599][T11652] batman_adv: batadv0: Interface activated: batadv_slave_1
[  308.008821][T11652] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  308.011289][T11652] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  308.013685][T11652] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  308.017430][T11652] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  308.058016][  T832] input: HID 0458:5011 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/0003:0458:5011.0009/input/input26
[  308.071717][ T1134] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  308.074188][ T1134] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  308.088365][  T832] kye 0003:0458:5011.0009: input,hiddev0,hidraw0: USB HID v0.00 Mouse [HID 0458:5011] on usb-dummy_hcd.1-1/input0
[  308.119793][   T64] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  308.121957][   T64] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  308.483526][T11697] FAULT_INJECTION: forcing a failure.
[  308.483526][T11697] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  308.488092][T11697] CPU: 3 UID: 0 PID: 11697 Comm: syz.4.1527 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) 
[  308.488107][T11697] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  308.488114][T11697] Call Trace:
[  308.488117][T11697]  <TASK>
[  308.488121][T11697]  dump_stack_lvl+0x16c/0x1f0
[  308.488141][T11697]  should_fail_ex+0x512/0x640
[  308.488155][T11697]  _copy_from_user+0x2e/0xd0
[  308.488169][T11697]  move_addr_to_kernel+0x65/0x170
[  308.488181][T11697]  __sys_sendto+0x1be/0x510
[  308.488194][T11697]  ? __pfx___sys_sendto+0x10/0x10
[  308.488205][T11697]  ? __lock_acquire+0xaa4/0x1ba0
[  308.488236][T11697]  __do_compat_sys_socketcall+0x60a/0x720
[  308.488251][T11697]  ? __fget_files+0x20e/0x3c0
[  308.488267][T11697]  ? __pfx___do_compat_sys_socketcall+0x10/0x10
[  308.488282][T11697]  ? fput+0x70/0xf0
[  308.488295][T11697]  ? rcu_is_watching+0x12/0xc0
[  308.488311][T11697]  __do_fast_syscall_32+0x73/0x120
[  308.488328][T11697]  do_fast_syscall_32+0x32/0x80
[  308.488344][T11697]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  308.488357][T11697] RIP: 0023:0xf7fb1579
[  308.488366][T11697] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  308.488377][T11697] RSP: 002b:00000000f50d5430 EFLAGS: 00000293 ORIG_RAX: 0000000000000066
[  308.488387][T11697] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00000000f50d5444
[  308.488393][T11697] RDX: 0000000000000000 RSI: 00000000f50d5560 RDI: 00000000f743dff4
[  308.488399][T11697] RBP: 00000000f50d5560 R08: 0000000000000000 R09: 0000000000000000
[  308.488405][T11697] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  308.488411][T11697] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  308.488423][T11697]  </TASK>
[  308.547096][    C3] vkms_vblank_simulate: vblank timer overrun
[  308.622014][T11705] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  308.629084][T11705] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1531'.
[  308.885857][   T24] usb 7-1: new high-speed USB device number 25 using dummy_hcd
[  308.936078][ T5954] Bluetooth: hci4: command tx timeout
[  309.035716][   T24] usb 7-1: Using ep0 maxpacket: 16
[  309.040046][   T24] usb 7-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6
[  309.042487][   T24] usb 7-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[  309.044726][   T24] usb 7-1: Product: syz
[  309.046255][   T24] usb 7-1: Manufacturer: syz
[  309.047550][   T24] usb 7-1: SerialNumber: syz
[  309.050674][   T24] usb 7-1: config 0 descriptor??
[  309.078812][    C0] kye 0003:0458:5011.0009: usb_submit_urb(ctrl) failed: -1
[  309.313211][T11715] tmpfs: Unknown parameter 'nr_blobks'
[  309.713005][ T5955]  non-paged memory
[  309.714258][ T5955] list_del corruption, ffff888025fa5180->next is LIST_POISON1 (dead000000000100)
[  309.717573][ T5955] ------------[ cut here ]------------
[  309.719170][ T5955] kernel BUG at lib/list_debug.c:56!
[  309.721849][ T5955] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI
[  309.724113][ T5955] CPU: 2 UID: 0 PID: 5955 Comm: kworker/u33:3 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) 
[  309.727745][ T5955] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  309.730737][ T5955] Workqueue: hci4 hci_conn_timeout
[  309.732151][ T5955] RIP: 0010:__list_del_entry_valid_or_report+0x121/0x200
[  309.734040][ T5955] Code: 48 c7 c7 40 52 f4 8b e8 8d d5 c7 fc 90 0f 0b 4c 89 e7 e8 f2 9e 2a fd 4c 89 e2 48 89 de 48 c7 c7 a0 52 f4 8b e8 70 d5 c7 fc 90 <0f> 0b 48 89 ef e8 d5 9e 2a fd 48 89 ea 48 89 de 48 c7 c7 00 53 f4
[  309.739220][ T5955] RSP: 0018:ffffc9000316fb80 EFLAGS: 00010286
[  309.740870][ T5955] RAX: 000000000000004e RBX: ffff888025fa5180 RCX: ffffffff819a9d19
[  309.743013][ T5955] RDX: 0000000000000000 RSI: ffffffff819b1ba6 RDI: 0000000000000005
[  309.745177][ T5955] RBP: dead000000000122 R08: 0000000000000005 R09: 0000000000000000
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  309.747159][ T5955] R10: 0000000080000000 R11: 0000000000000000 R12: dead000000000100
[  309.749564][ T5955] R13: dffffc0000000000 R14: ffff88806b628618 R15: ffff888025fa5180
[  309.752257][ T5955] FS:  0000000000000000(0000) GS:ffff8880979b9000(0000) knlGS:0000000000000000
[  309.754667][ T5955] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  309.756505][ T5955] CR2: 000000000c3ae329 CR3: 0000000065676000 CR4: 0000000000352ef0
[  309.759096][ T5955] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  309.762094][ T5955] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  309.765064][ T5955] Call Trace:
[  309.766358][ T5955]  <TASK>
[  309.767509][ T5955]  _hci_cmd_sync_cancel_entry.constprop.0+0x80/0x1d0
[  309.770026][ T5955]  hci_cancel_connect_sync+0xfa/0x2b0
[  309.772090][ T5955]  hci_abort_conn+0x15a/0x340
[  309.774059][ T5955]  hci_conn_timeout+0x1a2/0x210
[  309.775938][ T5955]  process_one_work+0x9cc/0x1b70
[  309.777819][ T5955]  ? __pfx_process_one_work+0x10/0x10
[  309.779866][ T5955]  ? assign_work+0x1a0/0x250
[  309.781636][ T5955]  worker_thread+0x6c8/0xf10
[  309.783380][ T5955]  ? __pfx_worker_thread+0x10/0x10
[  309.785328][ T5955]  kthread+0x3c2/0x780
[  309.786903][ T5955]  ? __pfx_kthread+0x10/0x10
[  309.788694][ T5955]  ? __pfx_kthread+0x10/0x10
[  309.790461][ T5955]  ? __pfx_kthread+0x10/0x10
[  309.792331][ T5955]  ? __pfx_kthread+0x10/0x10
[  309.794122][ T5955]  ? rcu_is_watching+0x12/0xc0
[  309.795955][ T5955]  ? __pfx_kthread+0x10/0x10
[  309.797808][ T5955]  ret_from_fork+0x45/0x80
[  309.799487][ T5955]  ? __pfx_kthread+0x10/0x10
[  309.801030][ T5955]  ret_from_fork_asm+0x1a/0x30
[  309.802764][ T5955]  </TASK>
[  309.803959][ T5955] Modules linked in:
[  309.806094][    C2] hpet: Lost 4 RTC interrupts
[  309.808634][ T5955] ---[ end trace 0000000000000000 ]---
[  309.815710][ T5955] RIP: 0010:__list_del_entry_valid_or_report+0x121/0x200
[  309.818425][ T5955] Code: 48 c7 c7 40 52 f4 8b e8 8d d5 c7 fc 90 0f 0b 4c 89 e7 e8 f2 9e 2a fd 4c 89 e2 48 89 de 48 c7 c7 a0 52 f4 8b e8 70 d5 c7 fc 90 <0f> 0b 48 89 ef e8 d5 9e 2a fd 48 89 ea 48 89 de 48 c7 c7 00 53 f4
[  309.825546][ T5955] RSP: 0018:ffffc9000316fb80 EFLAGS: 00010286
[  309.828011][ T5955] RAX: 000000000000004e RBX: ffff888025fa5180 RCX: ffffffff819a9d19
[  309.831436][ T5955] RDX: 0000000000000000 RSI: ffffffff819b1ba6 RDI: 0000000000000005
[  309.834427][ T5955] RBP: dead000000000122 R08: 0000000000000005 R09: 0000000000000000
[  309.837493][ T5955] R10: 0000000080000000 R11: 0000000000000000 R12: dead000000000100
[  309.840474][ T5955] R13: dffffc0000000000 R14: ffff88806b628618 R15: ffff888025fa5180
[  309.843438][ T5955] FS:  0000000000000000(0000) GS:ffff8880979b9000(0000) knlGS:0000000000000000
[  309.847131][ T5955] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  309.848963][ T5955] CR2: 0000562f2824b000 CR3: 000000004d4c8000 CR4: 0000000000352ef0
[  309.851810][ T5955] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  309.853972][ T5955] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  309.856430][ T5955] Kernel panic - not syncing: Fatal exception
[  309.859249][ T5955] Kernel Offset: disabled
[  309.860895][ T5955] Rebooting in 86400 seconds..

VM DIAGNOSIS:
14:34:13  Registers:
info registers vcpu 0

CPU#0
RAX=dffffc0000000000 RBX=ffff88802b2281a0 RCX=ffffffff81acb3e2 RDX=1ffff11005645034
RSI=ffffffff81acb408 RDI=0000000000000005 RBP=0000000000000031 RSP=ffffffff8e007e00
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=0000000000000030 R13=ffffffff8e097740 R14=ffffffff90867f10 R15=0000000000000000
RIP=ffffffff81acb42a RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880977b9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=00000000224fe000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000001 RBX=ffff88802b239f00 RCX=0000000000000100 RDX=0000000000000001
RSI=0000000000000002 RDI=ffff88802b239f02 RBP=dffffc0000000000 RSP=ffffc9000046f918
R8 =0000000000000001 R9 =ffff88802b33ae54 R10=ffff88802b239f03 R11=0000000000000002
R12=0000000000007e85 R13=0000000000000000 R14=ffff88802b33ae40 R15=ffffed10056473e0
RIP=ffffffff8b72e388 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880978b9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000801df000 CR3=00000000233e6000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000039 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff854bd665 RDI=ffffffff9ae12b40 RBP=ffffffff9ae12b00 RSP=ffffc9000316f4a8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=552032203a555043
R12=0000000000000000 R13=0000000000000039 R14=ffffffff9ae12b00 R15=ffffffff854bd600
RIP=ffffffff854bd68f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880979b9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c3ae329 CR3=0000000065676000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000001 RBX=0000000000000001 RCX=ffffc90026c38000 RDX=ffffc90026c37501
RSI=ffffc90026c37508 RDI=ffffc90026c36d40 RBP=ffffc90026c37508 RSP=ffffc90026c36ca0
R8 =ffffffff91264b70 R9 =0000000000000000 R10=ffffc90026c36d40 R11=000000000000fbd8
R12=0000000000000008 R13=ffffc90026c36d50 R14=ffffc90026c36d48 R15=ffffc90026c30000
RIP=ffffffff8169d876 RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097ab9000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=000000004fe94000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=000000000000000e 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000008 Opmask01=0000000000000002 Opmask02=0000000000000100 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffcc28553f0 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6565656565656565 6565656565656565
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffff0000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f6e3a6d5e007325 2e73250064252e73 2500656c6f736e6f 632f7665642f000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f4b1f485e005600 0b56000041000b56 000040494a564b4a 460a5340410a000a
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 29202c31202c3030 3030303030336130 28202031344f3034 363a5f54533a000a
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000