last executing test programs:

14.917674859s ago: executing program 1 (id=1959):
memfd_create(&(0x7f0000000140)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\xea7\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf8\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xcd\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00', 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002740)={0x11, 0x3, &(0x7f00000002c0)=ANY=[@ANYRES64], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = socket$kcm(0xa, 0x1, 0x106)
r2 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$SG_GET_REQUEST_TABLE(r3, 0x1274, 0x0)
r4 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000200)=ANY=[@ANYBLOB="12010100000000105801000100000000000109022400010000002009040000010300000009210000000122dc01090589"], 0x0)
r5 = eventfd2(0x0, 0x0)
write$eventfd(r5, 0x0, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000000400)={0x2020}, 0x2020)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000000)={0xa, 0x0, @multicast2}, 0x10, &(0x7f0000001080)=[{&(0x7f0000002440)="a72d11a15c048c0a7d2eaebc5cea1f81510ff6091475aeec600831aa9d3944e60bc2ad06a619c560aa0118b28f68f1eb14549d633b4b23f179fb680716faa43414787559be90843c35ab30acad8a6740140e00721abc2eb362f7bde53b3c992d3e28ccc20ec84fdc569947047f6c09a647ee8c0a747b951e66c068ccf1af93ee9e6f9528ff79e2f989383b05a690a6bec4634b867c9446c1c644b3010e8a3514c6328323b4bbdd602b8f0dace6aea70902c4ddd2a2f2810f1348b0d0df3c1e6a5938fcfdc87e7580c6be0c6a06eca62d6f787dd16add086a21391c4c707d8b61929d1252681b84c245e0efafe2e6e73ad86a3cf59235ab0eacbb414af92ec3cdac420a064a98e8cc18bdf63f8997f96436e0fe6f06fdbf47fff353b01a861babd4a38d126bfe3e29049e6cc883e6efae6e70ef9ed124b1b09887a58c991e223b6420dca5ae238027e91b175c56e58432f54f3f9a56739ebf653ccc7aafd526116dc87289688a", 0x166}], 0x1}, 0x0)
syz_usb_control_io$hid(r4, 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000480)={'wlan0\x00', <r7=>0x0})
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="010000000000000000003700000008000300", @ANYRES32=r7, @ANYBLOB="08002600901500000800570080"], 0x2c}}, 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x15, 0x29, &(0x7f00000025c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x7b6, 0x0, 0x0, 0x0, 0x100}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [@map_fd={0x18, 0x5, 0x1, 0x0, r3}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x101}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, 0x1}}, @printk={@ld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x2}}, @initr0={0x18, 0x0, 0x0, 0x0, 0x7}, @alu={0x0, 0x1, 0xc, 0x4, 0x5, 0xfffffffffffffffc, 0xffffffffffffffff}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
bind$vsock_stream(r11, &(0x7f0000000000)={0x10}, 0x10)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'bridge0\x00'})
ioctl$sock_SIOCGIFINDEX_80211(r9, 0x8933, &(0x7f0000000080)={'wlan0\x00'})
unshare(0x20040600)
bpf$LINK_DETACH(0x22, &(0x7f0000000040), 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_FRAME(r9, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000000c0)={0x20, r10, 0x1, 0x2000000, 0x0, {{0x8}, {@void, @val={0xc, 0x99, {0x8, 0x61}}}}}, 0x20}}, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
syz_usb_connect$printer(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="12011003000012002505a8a4f0"], 0x0)

13.513724967s ago: executing program 4 (id=1960):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000020c0)=@delchain={0x504, 0x65, 0x0, 0x80000000, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff2}}, [@filter_kind_options=@f_route={{0xa}, {0x4c4, 0x2, [@TCA_ROUTE4_CLASSID={0x8, 0x1, {0xa}}, @TCA_ROUTE4_ACT={0x4b8, 0x6, [@m_simple={0x188, 0x1f, 0x0, 0x0, {{0xb}, {0xa4, 0x2, 0x0, 0x1, [@TCA_DEF_PARMS={0x18, 0x2, {0x401, 0x2, 0x1, 0x2, 0x8}}, @TCA_DEF_DATA={0xd, 0x3, '@-^[\xa5&,.\x00'}, @TCA_DEF_PARMS={0x18, 0x2, {0x7, 0x4, 0x2, 0x2, 0x2}}, @TCA_DEF_PARMS={0x18, 0x2, {0x0, 0x80000000, 0xfffffffffffffffe, 0x6, 0x2}}, @TCA_DEF_PARMS={0x18, 0x2, {0x401, 0x497, 0x6, 0xc6, 0x62c}}, @TCA_DEF_PARMS={0x18, 0x2, {0x6, 0x1, 0x10000000, 0x4, 0x8}}, @TCA_DEF_PARMS={0x18, 0x2, {0xfffffffc, 0x3ff, 0x20000000, 0xfff, 0x4}}]}, {0xb9, 0x6, "bb56072c27c5e2984fb9b39740c7dea2e6372a168bf1fdb8ecb6019c9f5db834fcaca18620641b7aab2922f69d2f9b062f5ec4be8a5a603fe7236ffd67f60e9e007b34e0f9cb58fc8855dae5289e4e856559f64bc5a1c5683263937fdd088e5f34874e0d2d2273a7a09810d9042b32fb69223c74e88c41fda5268c22a3107d32ee49d3a99665178abfde24d27a872b23ece9d09c9560070a6e3cca383ccb4d1a6d7c302ab3ee820e67d26e78f72566a2f9765698d7"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x2}}}}, @m_vlan={0x134, 0x3, 0x0, 0x0, {{0x9}, {0x14, 0x2, 0x0, 0x1, [@TCA_VLAN_PUSH_VLAN_PROTOCOL={0x6, 0x4, 0x88a8}, @TCA_VLAN_PUSH_VLAN_PROTOCOL={0x6, 0x4, 0x88a8}]}, {0xf5, 0x6, "b4f5f8a000aed611d1e3ee1aaa84601c97299db7511af811242f5e599e70462ff947d7fce8171ca76d6272e5926e4bcc41c5f2a45eda585981ca0de6f00b6a83a630a32eb3d933702dde61376ab26952f74f090fb6858f97715363bfca363004ef43db3a48e84090d7517b700dc6a2a2f94e7329147f25670ca37779fb3bb34630b673bfa93845abd7c41a11e2c7d51cd033af07fdedab1b0a4fd3289168734a438364c97d0791494427d5c5c48b1f99b2933a263cfb4ca5c4ae41bb0d4ad806597b90b1569a91f0af9997eb0a37a98b616eeb9b0e0d88e3faa90e480ed36ed0731503f2a4bda6e9158fad7756a073b2ce"}, {0xc}, {0xc, 0x8, {0x3}}}}, @m_ife={0x84, 0x7, 0x0, 0x0, {{0x8}, {0x38, 0x2, 0x0, 0x1, [@TCA_IFE_SMAC={0xa, 0x4, @broadcast}, @TCA_IFE_SMAC={0xa, 0x4, @multicast}, @TCA_IFE_PARMS={0x1c, 0x1, {{0x5, 0x1, 0xffffffffffffffff, 0x5, 0xfffffff2}}}]}, {0x25, 0x6, "3c4d628f307b84d62ea02c2a83d6801f55d9f79db5283d58343d431b68a6d23b01"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x5}}}}, @m_nat={0x174, 0xc, 0x0, 0x0, {{0x8}, {0x7c, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0x6, 0xff, 0x1, 0x8, 0x4}, @broadcast, @rand_addr=0x64010100, 0x0, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x2, 0x1, 0x20000000, 0x1ff, 0x800}, @broadcast, @multicast1, 0x0, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x0, 0x8, 0x8, 0x7ff, 0x5}, @private=0xa010100, @multicast1, 0xff000000, 0x1}}]}, {0xd1, 0x6, "256c3eb62a3c42cccec027988ad7149d48e69552fccd245cb90ebe3ebe6f36a14b83b65bb651bed880b4bf769cb0b5b18dabcc7d7a108e10124a104ef74333b28537655fecc96352477fe91863d2bd9822da8b57752f8d22cb68e4c4a79e0bba55acd2df7f410043b083dc74a0d99332f2ace4931a9efd89f8b8628f63b4791715c76fbcd195be1b8852f5b1f1e7b1296b3dd78041c0da1131303d605504dce4f02686d6875be1f7027e6e45a30376aff6097249b0111683261e334758927ff3e22f0a847fd35c396b7a43571a"}, {0xc}, {0xc, 0x8, {0x1, 0x3}}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x9d}}, @TCA_RATE={0x6, 0x5, {0x5, 0x9}}]}, 0x504}}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001fc0)=ANY=[@ANYBLOB="2c00000027eb4426cde9dee863063a85e830ff0125f2a22f9dd5cda8dfcc9f923b522322a62b7c74b042ce4833e1a99ebfa830c1e730ba558bad06e7cda8d17587cb34d32ff6c8af18eb04c3f90a148842f9afb86ca2a96587d25598295dec8d33a70dc24712a0940b7f094e79de1c436f6982f74ff3567ae656390bd29acfb94c4cca8bea54cbd82ae47e79fde69b35d9ab043ca8a64112aa2bb31faf1e", @ANYRES16=r1, @ANYBLOB="010000000000000000006600000008000300", @ANYRES32=r3, @ANYBLOB="080026006c0900000800b70000ff0000"], 0x2c}, 0x1, 0x0, 0x0, 0x8805}, 0x0)
sendmsg$NL80211_CMD_NOTIFY_RADAR(r0, &(0x7f0000000300)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x50, r1, 0x400, 0x70bd29, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x8b1d, 0x3f}}}}, [@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x6}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x6}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xfffffff7}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x131}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x7}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000000}, 0x40800)
ioctl$BTRFS_IOC_RM_DEV(r0, 0x5000940b, &(0x7f0000003800)={{r0}, "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"})
r4 = socket(0x10, 0x803, 0x0)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-camellia-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r6 = accept4(r5, 0x0, 0x0, 0x0)
sendmsg$alg(r6, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0)
recvmsg$can_j1939(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000300)=""/196, 0xc4}], 0x1}, 0x40002065)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="cdaa00004f919a5d00000000711015000000000095000000"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
socket$pppoe(0x18, 0x1, 0x0)
sendto(r4, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f0000000080)=0x7)
ioctl$TCSETA(r7, 0x8926, 0xffffffffffffffff)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r10, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r11=>0x0})
sendmsg$NL80211_CMD_START_P2P_DEVICE(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r9, @ANYBLOB="01002dbd8d00fcdbd0005900000008000300", @ANYRES32=r11, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x40090}, 0x24040001)
r12 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/power/resume_offset', 0x102, 0x0)
sendfile(r12, r12, 0x0, 0x4)
recvmmsg(r4, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000280)=""/85, 0x55}, {&(0x7f0000000fc0)=""/4096, 0x1000}, {&(0x7f0000000400)=""/106, 0x6a}, {&(0x7f0000000980)=""/73, 0x49}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x9a}, {&(0x7f00000001c0)=""/13, 0xd}], 0x8, &(0x7f0000000600)=""/191, 0xbf, 0xb00}}], 0x1, 0x0, &(0x7f0000003700))
sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r5, &(0x7f0000000880)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x28000000}, 0xc, &(0x7f0000000780)={&(0x7f00000006c0)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fcdbdf2507000000050035000400000008003b00ff03000008000300", @ANYRES32=0x0, @ANYBLOB="0500380000000000050004000000000000003a00000000008660378e", @ANYRES32=0x0, @ANYBLOB="080039000700000008003a0001000000"], 0x64}, 0x1, 0x0, 0x0, 0x1}, 0x101)

12.390402839s ago: executing program 4 (id=1965):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
r2 = epoll_create(0x3)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000280))
r3 = socket$inet(0x2b, 0x801, 0x0)
connect$inet(r3, &(0x7f0000000080)={0x2, 0x0, @dev}, 0x10)
ioctl$sock_inet_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000100))
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r4, &(0x7f0000001cc0)={0x30000014})
rt_sigprocmask(0x0, &(0x7f000078b000)={[0xfffffffffffffffd]}, 0x0, 0x8)
r5 = gettid()
r6 = syz_usb_connect(0x0, 0x24, &(0x7f0000000980)={{0x12, 0x1, 0x0, 0x1d, 0x12, 0x26, 0x10, 0x18d1, 0x1eaf, 0x779, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xe1, 0x15, 0x3d}}]}}]}}, 0x0)
syz_usb_control_io$cdc_ecm(r6, 0x0, &(0x7f0000000800)={0x1c, &(0x7f00000005c0)=ANY=[@ANYBLOB="c160ab843295f2c29d09b878daa032f18bf22bed0e99ce47e96d9d7f2d00fa481d2672509eaf13f3d74c86eb19bc03a6fd20d71733436c6daa954d1d2f68856b9b7dd97d76e4ff2beb15ab60c76f4338cf09f02e07"], 0x0, 0x0})
r7 = getpid()
rt_tgsigqueueinfo(r7, r5, 0x20, &(0x7f00000003c0)={0xffffffff})
epoll_pwait2(r2, &(0x7f0000006000)=[{}], 0x1, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r8 = getpid()
sched_setscheduler(r8, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
connect$unix(r9, &(0x7f0000000340)=@file={0x0, './file0\x00'}, 0x19)
sendmmsg$unix(r10, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r9, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
fadvise64(r11, 0x3, 0x0, 0x3)
r12 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r12, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000001c0)={0x5c, 0x3, 0x1, 0x101, 0x0, 0x0, {}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0x4, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @private2}}}]}, @CTA_FILTER={0xc, 0x19, 0x0, 0x1, [@CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x10a}]}]}, 0x5c}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r11}, 0x10)

12.351390722s ago: executing program 0 (id=1966):
r0 = open(&(0x7f0000000600)='./file0\x00', 0x8060, 0x0)
mount$bpf(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0), 0x88, &(0x7f00000002c0)=ANY=[@ANYBLOB='mode=00000000000000000 '])
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='bbr\x00', 0x62)
ioctl$EVIOCGABS0(r0, 0x80184540, &(0x7f0000000300)=""/191)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r2, 0x89f0, &(0x7f0000000240)={'gre0\x00', &(0x7f0000000180)={'ip_vti0\x00', 0x0, 0x0, 0x7f01, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @local, @multicast2}}}})
prlimit64(0x0, 0xe, &(0x7f0000000240)={0xc, 0xfffffffffffff800}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
creat(&(0x7f0000000440)='./file0\x00', 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000040)={0x8})
link(&(0x7f0000000200)='./file0\x00', &(0x7f0000000280)='./file1\x00')
r3 = socket$inet6(0xa, 0x3, 0x6)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x20, &(0x7f0000000100)={@dev={0xfe, 0x80, '\x00', 0x23}, 0x800, 0x0, 0x2, 0x1, 0x0, 0x7}, 0x20)
syz_emit_ethernet(0x46, &(0x7f00000003c0)={@local, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x10, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x200}}}}}}, 0x0)
syz_usb_connect(0x0, 0x3b, &(0x7f0000000080)=ANY=[@ANYBLOB="120100001b3ebd40d80483009c830102030109022900010000000009042900000202010003"], 0x0)

12.116703948s ago: executing program 1 (id=1967):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
open$dir(&(0x7f00000000c0)='./file0/file0\x00', 0x4040, 0x55)
r0 = openat$null(0xffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = open_tree(r0, &(0x7f0000000040)='./file0\x00', 0x8900)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x12, 0x0, 0x0)
r2 = fcntl$getown(r1, 0x9)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x0, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x4000000000000, 0x40, &(0x7f0000000580)=@raw={'raw\x00', 0x4008, 0x3, 0x240, 0xd8, 0x500b, 0x148, 0xd8, 0x148, 0x1a8, 0x240, 0x240, 0x1a8, 0x240, 0x7fffffe, 0x0, {[{{@ip={@local, @local, 0x0, 0x0, 'ip6gretap0\x00', 'team_slave_0\x00', {}, {}, 0x2f}, 0x0, 0x70, 0xd8}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@CLUSTERIP={0x60}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2a0)
syz_usb_connect(0x0, 0x3f, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
r4 = syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2)
ioctl$VIDIOC_S_HW_FREQ_SEEK(r4, 0x40305652, &(0x7f0000000040)={0x0, 0x1, 0xe1, 0x0, 0x0, 0xfa000, 0x1a5e00})
sched_setaffinity(0x0, 0x8, &(0x7f0000000100)=0x60e)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0xc, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
read$msr(r5, &(0x7f0000032680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
timerfd_create(0x9, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r6 = getpid()
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r8, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r9 = syz_open_dev$vim2m(&(0x7f0000000080), 0x1000, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r9, 0xc0145608, &(0x7f0000000040)={0x8, 0x1, 0x1})

10.706823545s ago: executing program 0 (id=1970):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x2, 0x4, 0x1, 0xbf22, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = socket(0x40000000015, 0x5, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
ioctl$sock_inet_SIOCGIFPFLAGS(r5, 0x8935, 0x0)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x15, 0x3, &(0x7f0000000300)=ANY=[@ANYRES64=r2], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x9, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x0, 0x0, &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
capset(0x0, &(0x7f0000000040))
ioctl$KDSETMODE(0xffffffffffffffff, 0x4b63, 0x4)
sendmmsg$inet(r2, &(0x7f00000028c0)=[{{&(0x7f0000000080)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, &(0x7f0000002840)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @empty, @loopback}}}], 0x20}}], 0x1, 0x0)
bind$inet6(r1, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f00000001c0)={0x0, 0x0, 0x5}, 0x20)
sendto$inet6(r1, &(0x7f0000847fff)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580), 0x70}}, 0x0)
socket$alg(0x26, 0x5, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0xd, 0x24, 0x4, 0x1, 0x0, r0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000180)={r8, &(0x7f0000000300), 0x0}, 0x20)

9.805704563s ago: executing program 2 (id=1971):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$TUNSETOFFLOAD(r0, 0x400454c9, 0xba98575a95aeb70d)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
write$cgroup_devices(r1, &(0x7f0000000440)=ANY=[], 0xffdd)

9.614606s ago: executing program 0 (id=1972):
r0 = socket(0x40000000015, 0x5, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000001fc0)=@delchain={0x2a0, 0x65, 0x0, 0x0, 0x0, {}, [@TCA_CHAIN={0x8}, @filter_kind_options=@f_cgroup={{0xb}, {0x260, 0x2, [@TCA_CGROUP_EMATCHES={0x25c, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x19c, 0x2, 0x0, 0x1, [@TCF_EM_U32={0x1c, 0x2, 0x0, 0x0, {{0x9, 0x3, 0x5}, {0x1ff, 0x81, 0x1ff, 0x5}}}, @TCF_EM_META={0x74, 0x3, 0x0, 0x0, {{0x0, 0x4, 0x3}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x0, 0x69, 0x1}, {0x9, 0x9}}}, @TCA_EM_META_LVALUE={0xd, 0x2, [@TCF_META_TYPE_VAR="166dd093aa", @TCF_META_TYPE_VAR="8da2b1ea"]}, @TCA_EM_META_RVALUE={0x1d, 0x3, [@TCF_META_TYPE_INT=0x6, @TCF_META_TYPE_VAR="03fec46370fa", @TCF_META_TYPE_VAR="bd2b85", @TCF_META_TYPE_VAR='O', @TCF_META_TYPE_INT=0x3, @TCF_META_TYPE_VAR="f3ba6f", @TCF_META_TYPE_INT=0x7]}, @TCA_EM_META_LVALUE={0x1d, 0x2, [@TCF_META_TYPE_VAR="2210c2244f264701", @TCF_META_TYPE_INT, @TCF_META_TYPE_VAR="43fefa1ddadc69f433", @TCF_META_TYPE_INT=0x2]}, @TCA_EM_META_HDR={0xc, 0x1, {{0x9, 0xc, 0x1}, {0x3, 0x1, 0x1}}}]}}, @TCF_EM_IPT={0x58, 0x2, 0x0, 0x0, {{0xfc01, 0x9, 0x6}, [@TCA_EM_IPT_MATCH_NAME={0xb}, @TCA_EM_IPT_MATCH_REVISION={0x5, 0x3, 0x2}, @TCA_EM_IPT_NFPROTO={0x5, 0x4, 0x5}, @TCA_EM_IPT_HOOK={0x8}, @TCA_EM_IPT_MATCH_REVISION={0x5, 0x3, 0x8}, @TCA_EM_IPT_MATCH_REVISION={0x5}, @TCA_EM_IPT_NFPROTO={0x5, 0x4, 0x5}, @TCA_EM_IPT_HOOK={0x8, 0x1, 0x2}, @TCA_EM_IPT_NFPROTO={0x5, 0x4, 0xa}]}}, @TCF_EM_META={0xb0, 0x2, 0x0, 0x0, {{0x2, 0x4, 0x5}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x0, 0x10}, {0x85, 0x7, 0x1}}}, @TCA_EM_META_HDR={0xc, 0x1, {{0x5, 0x1}, {0xe597, 0x6, 0x1}}}, @TCA_EM_META_LVALUE={0x2d, 0x2, [@TCF_META_TYPE_VAR="4d81eae8e9", @TCF_META_TYPE_VAR="902307e190de436032ef", @TCF_META_TYPE_VAR="a433a0dbfb6b8ad56e", @TCF_META_TYPE_VAR="7f83b4e05907d673ac", @TCF_META_TYPE_INT=0x5, @TCF_META_TYPE_INT=0x7]}, @TCA_EM_META_HDR={0xc, 0x1, {{0x7, 0x4}, {0x7, 0x81}}}, @TCA_EM_META_LVALUE={0x11, 0x2, [@TCF_META_TYPE_VAR="54936f18d4", @TCF_META_TYPE_VAR="91b3f4151dded3d2"]}, @TCA_EM_META_LVALUE={0xc, 0x2, [@TCF_META_TYPE_INT=0x6, @TCF_META_TYPE_INT=0x1]}, @TCA_EM_META_RVALUE={0x15, 0x3, [@TCF_META_TYPE_VAR="15", @TCF_META_TYPE_VAR="8e90fa0429b3", @TCF_META_TYPE_INT, @TCF_META_TYPE_VAR="9df72972fcb5"]}, @TCA_EM_META_HDR={0xc, 0x1, {{0x8, 0x7, 0x1}, {0xc, 0xa3, 0x1}}}, @TCA_EM_META_RVALUE={0xc, 0x3, [@TCF_META_TYPE_INT=0x6, @TCF_META_TYPE_INT=0x1]}]}}]}, @TCA_EMATCH_TREE_LIST={0x5c, 0x2, 0x0, 0x1, [@TCF_EM_U32={0x1c, 0x2, 0x0, 0x0, {{0x22, 0x3, 0x1}, {0x0, 0x8, 0x9, 0x1000}}}, @TCF_EM_CANID={0x14, 0x1, 0x0, 0x0, {{0x9, 0x7, 0x3}, {{0x2, 0x1, 0x0, 0x1}, {0x4}}}}, @TCF_EM_CMP={0x18, 0x2, 0x0, 0x0, {{0x4, 0x1, 0x401}, {0x4, 0x581, 0xa, 0x1, 0x5, 0x0, 0x2}}}, @TCF_EM_IPSET={0x10, 0x2, 0x0, 0x0, {{0x101, 0x8, 0x9}, {0x4, 0x3, 0x1}}}]}, @TCA_EMATCH_TREE_LIST={0x1c, 0x2, 0x0, 0x1, [@TCF_EM_CMP={0x18, 0x3, 0x0, 0x0, {{0x1, 0x1, 0x393}, {0xf5f, 0xc, 0xdfbf, 0x7, 0x7, 0x0, 0x1}}}]}, @TCA_EMATCH_TREE_LIST={0x3c, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1, 0x0, 0x0, {{0x5, 0x2, 0x9}, {0x2, 0x0, 0x2}}}, @TCF_EM_IPSET={0x10, 0x1, 0x0, 0x0, {{0x5}, {0x3, 0x2, 0x2}}}, @TCF_EM_CMP={0x18, 0x1, 0x0, 0x0, {{0xffff, 0x1, 0xb1b9}, {0x0, 0x3, 0xf, 0x6, 0x1, 0x2}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x44}}]}]}}, @TCA_RATE={0x6}]}, 0x2a0}}, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000800)=@in6={0xa, 0x0, 0x0, @mcast2, 0x1a}, 0x80, 0x0, 0x0, 0x0, 0x0, 0x900}, 0x0)
sendto(r1, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x334}, {&(0x7f00000007c0)=""/154, 0x2c}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})
getsockopt(r0, 0x200000000114, 0x2714, 0x0, &(0x7f0000000040))
semget$private(0x0, 0x3, 0x864ee8df52df9e4)
semctl$SETALL(0x0, 0x0, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_emit_ethernet(0x3b6, &(0x7f0000000680)={@local, @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '!\x00', 0x380, 0x3a, 0xff, @dev, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [{0x3, 0xa, "a78ce5400659808000000000004023493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af1802"}, {0x0, 0x1, "000000000000001991319c00"}, {0x18, 0x18, "fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829af02d7f44d92324a7051e460a13ddde25a5b85b9d930914625d8a049b4cf0d129806a610ad8477a6b2600000000000055a6653d0363a979acf93f88eea07d68423e90280409de1657275f716a2bf2915d1783e8eb477b0d1170f0ecbdef4c23e1b76e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177704c5fd4698c934de4731f3f61effc978"}, {0x0, 0x1d, "06aa85616177c61bc943afcb84619755403946b0730a18d5c38cf7dcad830f2dc8674b87ba8b58f81ece27975cc39e595e9af90b4fe92a38d25551c2d9ebfc5dfc5a2a501b7e483de3f808895c5f4a1a2367bc591dd8b094822ff0822a18989f7c5eba31fb68b2d734a6671e27182aee4df24a4a5c6186c0d3baa75af390dab23b500b0c0272479611e4f7f4299ec4d926d443367b105185e6ecd9602ba95392343e9bbd047ef6bc1ba42399907ccd0a562db212baa39eb8164e240069f656d3a05fecf894222a141123f5acaa556b9f30dcab2b90aa235a670670ffc5dc49dfb58d89310000000000"}, {0x3, 0xb, "d47ae6e8805d4809c20547406b18901b0aeff04c0300f3c75dc2d227a83b89483b1084743475671545e65eb2e9ac946a3f0e2bc4619f91394c02bcfbbb7d71138537d68e2d2c6393a9f3becd1a9f51a948b5b303f4f003"}, {0x21, 0x7, "fcf98a102ec1876d4e6fa3b20519bbaa8a029cee00b8d3485e3b63ed09bdb581c9fe68a356f542b01b9387f85932e740e077e1d16212fb"}, {0x0, 0x14, "5e14f0e74d2d42cfb3f27fafb60845f90b6dfc87c6905bbc94d33e1ea71a28105f543e868a8a53b360a9d33e2b1e26eb7a8b065daa76ffff9ef083611ceda17b7c503f95b6ae9e9fd25ada6dd69f6ae2e1eb3d8bf9c6ab2642c4828288e62afbf03269f1f98aea6a58cf45d7c5fdaabc2c676d8800871a6aa54155dea2d995cb22c9924e0ad38c6967052cc7786d779b8353aac33a57d79b05613a12328f61129017fb"}, {0x0, 0x5, "d5170000dce9674a36da018dff16e70b8b14c4b7a94fe18e88605aa6be1a02c226a6bce65f81ed"}]}}}}}}, 0x0)
syz_open_dev$tty20(0xc, 0x4, 0x1)
eventfd2(0x100, 0x801)
syz_io_uring_setup(0x231, &(0x7f0000000080)={0x0, 0x0, 0x10100}, 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
r5 = dup(r4)
ioctl$KVM_SET_MSRS(r5, 0x4008ae89, &(0x7f00000000c0)=ANY=[@ANYBLOB="8200000000000000b4000040"])
sched_setaffinity(0xffffffffffffffff, 0x8, &(0x7f0000000140)=0x15d9b138)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040))
syz_io_uring_setup(0x6908, &(0x7f0000000340)={0x0, 0x400, 0x10100}, 0x0, 0x0)
syz_io_uring_setup(0x45b, &(0x7f00000003c0), 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@func_proto={0x0, 0x0, 0x0, 0x9, 0x3}, @func_proto, @const={0x0, 0x0, 0x0, 0xa, 0x2}]}}, 0x0, 0x3e, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="18020000000000000000000000005000850000001900009471335ee184c77b61f0263d009506c80000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_LOOKUP_ELEM(0x5, &(0x7f00000000c0)={r6, &(0x7f0000000000), &(0x7f0000000040)=""/73}, 0x70)
r7 = socket$netlink(0x10, 0x3, 0x14)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_VID_CMD(r7, 0x8983, &(0x7f0000000240))

9.408954732s ago: executing program 4 (id=1973):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
r1 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet_sctp(r1, &(0x7f0000000480)=[{&(0x7f0000000000)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}], 0x1, 0x0)
r2 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r3=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000500)={r3}, 0xc)
r4 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000300)={'bond0\x00', <r5=>0x0})
bind$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, r5, 0x1, 0x80, 0x6, @link_local}, 0x14)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket(0x1, 0x803, 0x0)
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/17, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001400)=@newlink={0x4c, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MODE={0x8, 0x1, 0x8}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8, 0xa, r8}]}, 0x4c}}, 0x0)

9.173309113s ago: executing program 1 (id=1974):
r0 = open(0x0, 0x14927e, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000f4)
r1 = open(0x0, 0x200400, 0xb1)
r2 = socket(0x15, 0x5, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x90e976db910956fe, 0x4002011, r1, 0x0)
mount(0x0, 0x0, 0x0, 0x1000, 0x0)
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000009080)=[{0x0, 0x0, 0x0}], 0x1, 0x0)
syz_kvm_setup_cpu$x86(r1, r0, &(0x7f0000408000/0x18000)=nil, &(0x7f0000000340)=[@text64={0x40, &(0x7f0000000240)="66b833000f00d8f0460fb0af00000000f341d3b268000000b9c10200000f320f01b6aa6d9b31440f013ab9800000c00f3235008000000f30c74424005e000000c744240200080000c7442406000000000f011c2466baf80cb82c712b8aef66bafc0c66b8c60d66efc461916d7d00", 0x6e}], 0x1, 0x22, &(0x7f0000000380)=[@flags={0x3, 0x10}], 0x1)
r3 = socket$key(0xf, 0x3, 0x2)
recvmmsg(r3, &(0x7f0000000440), 0x6f5, 0x2, &(0x7f0000000480)={0x77359400})
setsockopt$sock_int(r3, 0x1, 0x4b, &(0x7f0000000040)=0xfd87, 0x4)
sendmsg$key(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="0216000002"], 0x10}}, 0x0)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
sendto$inet(r4, 0x0, 0x0, 0x24040001, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x7)
iopl(0x3)
landlock_create_ruleset(&(0x7f0000000000)={0x12201}, 0x10, 0x0)
socket(0x10, 0x803, 0x0)
getsockname$packet(r2, &(0x7f0000000540)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x11)
ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f0000000700)={0x0, @bt={0xbd, 0x6, 0x0, 0x0, 0x1dee8822, 0x5, 0x101, 0x0, 0x6, 0x7fffffff, 0x4, 0xffffffff, 0x9, 0x1, 0xc, 0x21, {0xaea3, 0x1}, 0x7, 0xfd}})
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000005c0)=ANY=[@ANYBLOB="5c0000001000030426bd70000000000000000300", @ANYRES32=r5, @ANYBLOB="0100000000000000340012800b00010067656e65766500002400028005000d0000000000060005000005000008000100"], 0x5c}, 0x1, 0x0, 0x0, 0x4000000}, 0x10)
syz_emit_ethernet(0x0, 0x0, 0x0)
socket(0x10, 0x2, 0x0)
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000007c0)=ANY=[@ANYBLOB="b80000001900674c2cbd700000000000ff020000000000000000000000000001fc00000000000000000000000000000100000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000ae0000000000000000000000000000000000000000000000766450f4c31598d90000000000000000000047298da4797d05000000000000000000000000000000000000000000000001000000001838aff2254326db63a1e6e0464e4bbfb1587f140a80ac91a17012d5f824b8df28aa88b133719de6edf9a2138d25c1a6131d6d944f43de1c3e4147"], 0xb8}}, 0x0)
syz_emit_ethernet(0x46, &(0x7f0000000080)=ANY=[@ANYBLOB="0180c200000000000000000086dd6016b51100101100fe8000000000000000000000000000aafe80000000000000000000040000000000c00aae5463dcb7c56159000000001090c50200000000000000"], 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f00000004c0))

6.110838913s ago: executing program 3 (id=1979):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f0000000600)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r1, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r2=>0x0], 0x1})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000005980)=[{{&(0x7f00000002c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f00000000c0)=[{&(0x7f0000000340)="791da842337eafa2f02ed495369be1a75cecf7d891b87cc5cd5cb9a1dd9fbdbf42e32b2abb8c7a2f574c2966224581ea7880936a371dce962563c54db2bafcdf7a3e7f394f406eacce75284dcd61f127e1516f1b9a0b9f345a4159932dca87d0d178", 0x62}, {&(0x7f00000004c0)="351987b3b8d4b43db29deee9af31d721760c1568b76bee101f38dc6beaec7131aa3849b9bca09c3938ec91216085fb6352c9f1a219c20f97aa6f65fb89051093654c3b02cb6b553da24b54b4033ca88485f519922e4cab5096a0c90e2b08b3817b1f073d248136a19574f38703d3156626ae679a764def0e4822574399f36d222e1c11284e4744a7b46ce3a31729049ad0494e24913d2f2ae7796acc47a34ad561d3eb298ba4be4b85e92ad56b099e5f761968b4508d136612dfc5f79fc37a67c74ef825a5fe8bef183621f2d007d29c8ed39f441e5841504e06ac412e62f7cad3098b022d7793797d7bec2c79acef93fd", 0xf1}], 0x2, &(0x7f0000000b00), 0x0, 0x4000000}}, {{&(0x7f0000000c00)=@file={0x1, './file0/file0\x00'}, 0x6e, &(0x7f0000000fc0)=[{&(0x7f00000040c0)="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", 0x1000}, {&(0x7f0000000c80)="bfdf11177c57f4b34839e6f54c756f435568ccb30d1cc0003be39f1954d1e80f030618a32ea4645b0d835aae545920bfdeae88e3f4b29d07038790e9b3cd65849b6c9a7312e79b1876ec17e393099535ec7bb4570de15a3921c842f9b3085b98272471b913fee6d5334c4a67381e51048334eaae776222cb55b355f6d448512b983200344300a1a833810ce2dea50dc4d7909ef30b680a3a4adb3c58efd0ed1b7ab23f7dfb95b7aaaaa8038bb01bad6fceec6d0fe858cc7d4b568a457db56b0af9c0b1ba7903d3e6dc5ad32be3a6ba6cb35ec408b22bd34b", 0xd8}, {&(0x7f0000000a00)="5b3b2ebb56d76596deac6f47eb369ca33efe1bc76292e35a", 0x18}, {&(0x7f0000000d80)="c6ffed529cc1216d03799e8ffc6c5c6bae5020fc54d789c7fe111810198b14c8d268ab8a469776d89af4bb5e3fa02406fd84f7491b40d1859f9fe685ac88c4e07fa61782eaab6ffbf18ba9190afa16ab8808d44ee601bb31c0412c9d19d3b6b3c3a0a0007c3ef20b277fa3354f218dfe31d9357e0fecb1ae8d30f8d78b5351565de10e07", 0x84}, {0x0}, {&(0x7f0000000f00)="ed2ddd8974d4d699573d243eda8879bcba3728e1158283359ebd155db2c549d2f5da5a1448fa834a998703bd8c6a6767cb3390b67b39be453a42187aba1e1a4cdc9921a50598de696546f583d85f8d9f78085a0980213eb4952bab660bd986f5c8b4614e7de76fe85d3d4dff6dbcd59763be99bd9136117ab9f8b6b16b6468b5855aab339c1e9a8cd0895bf4695840d271a23523b7278a25656d", 0x9a}], 0x6, &(0x7f00000003c0)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r4]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff}}}, @rights={{0x24, 0x1, 0x1, [r4, r0, r4, r1, r1]}}, @cred={{0x1c}}], 0xc0, 0x20004800}}, {{0x0, 0x0, &(0x7f00000003c0), 0x0, 0x0, 0x0, 0x2000c491}}, {{&(0x7f0000005740)=@abs={0x1, 0x0, 0x4e21}, 0x6e, &(0x7f0000005940)=[{&(0x7f00000057c0)="199db4e59116b0ea1d50fbabc4831dce4627432f04e5a5117ae14c202fd21385000b09871ac8a2b556df53af13d4ae6404147b19b1d5335687100bf4ee67363c64d833ef391a1fa3", 0x48}, {&(0x7f0000005840)="292236db2fd33a598edb060260217a64622dfdfb089cccb57c508f240eff56b346fda827a7230203b6d245a189adcf0485dd37a0ec8aa7754c9a0d5197403ca3820d2280f70c0080917e866965960e2de4cf8a881903d0743a5b5eb6f9599b07fbc1833eb1481cd0f14b94ad60fbeeb4eb8f26b1207a52b7951a6d87e2d5476d5b103cb4bd69ccbf0630e065706d6f7a9b51045515ced8fc6a829396a4773f421914224bc35047e2aeb3d0e1b75d2c803deecab60382c08ed20d61ef262fcec8cb77a3a49a8cc9d33654b860ed88efdc468c24c0115c", 0xd6}], 0x2, 0x0, 0x0, 0x440c4}}], 0x4, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x0, 0x10202, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r6 = dup(r5)
write$UHID_INPUT(r6, &(0x7f0000001040)={0xc, {"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", 0x6e}}, 0x9b)
ioctl$DRM_IOCTL_MODE_SETPLANE(r1, 0xc03064b7, &(0x7f0000000480)={r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8})
ioctl$DRM_IOCTL_MODE_ATOMIC(r1, 0xc03864bc, &(0x7f0000000840)={0x200, 0x0, 0x0, 0x0, &(0x7f0000000340), &(0x7f0000000380)})
prlimit64(0x0, 0xe, 0x0, 0x0)
r7 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r7)
ptrace$poke(0x1, r7, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r8 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
syz_usb_connect$uac1(0x4, 0x81, &(0x7f0000000a40)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x6f, 0x3, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{}, [@selector_unit={0xb, 0x24, 0x5, 0x0, 0x0, "b3bf35ce07de"}, @mixer_unit={0x5}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x1, 0x9, 0x0, 0x0, 0x0, 0x0, {0x7}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x82, 0x9, 0x0, 0x0, 0x0, 0x0, {0x7}}}}}}}]}}, 0x0)
r9 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x141, 0x0)
write$binfmt_elf64(r9, &(0x7f0000000880)=ANY=[], 0x61c)
close_range(r8, 0xffffffffffffffff, 0x0)

5.293383675s ago: executing program 0 (id=1980):
r0 = open(&(0x7f0000000600)='./file0\x00', 0x8060, 0x0)
mount$bpf(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0), 0x88, &(0x7f00000002c0)=ANY=[@ANYBLOB='mode=00000000000000000 '])
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='bbr\x00', 0x62)
ioctl$EVIOCGABS0(r0, 0x80184540, &(0x7f0000000300)=""/191)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r2, 0x89f0, &(0x7f0000000240)={'gre0\x00', &(0x7f0000000180)={'ip_vti0\x00', 0x0, 0x0, 0x7f01, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @local, @multicast2}}}})
prlimit64(0x0, 0xe, &(0x7f0000000240)={0xc, 0xfffffffffffff800}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
creat(&(0x7f0000000440)='./file0\x00', 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000040)={0x8})
link(&(0x7f0000000200)='./file0\x00', &(0x7f0000000280)='./file1\x00')
r3 = socket$inet6(0xa, 0x3, 0x6)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x20, &(0x7f0000000100)={@dev={0xfe, 0x80, '\x00', 0x23}, 0x800, 0x0, 0x2, 0x1, 0x0, 0x7}, 0x20)
syz_emit_ethernet(0x46, &(0x7f00000003c0)={@local, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x10, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x200}}}}}}, 0x0)
syz_usb_connect(0x0, 0x3b, &(0x7f0000000080)=ANY=[@ANYBLOB="120100001b3ebd40d80483009c830102030109022900010000000009042900000202010003"], 0x0)

5.250496068s ago: executing program 3 (id=1981):
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="280000000203010400000000ffffffff000000000800010001"], 0x28}}, 0x0)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x2, 0x3, 0x201, 0x0, 0x0, {0x0, 0x0, 0x10}, [@NFQA_CFG_CMD={0x8, 0x1, {0x1}}]}, 0x1c}}, 0x0)
sendmsg$NFQNL_MSG_VERDICT_BATCH(r0, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, 0x0)
syz_init_net_socket$llc(0x1a, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, 0x0, 0x0, 0x2, 0x0)
r4 = socket(0x840000000002, 0x3, 0xff)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x0, 0x40, &(0x7f00000018c0)=@mangle={'mangle\x00', 0x44, 0x6, 0x478, 0x178, 0x0, 0x240, 0x178, 0x318, 0x3e0, 0x3e0, 0x3e0, 0x3e0, 0x3e0, 0x6, 0x0, {[{{@uncond, 0x5e02, 0xb0, 0xd8, 0x0, {0xa803, 0xd003000000000000}, [@common=@unspec=@connlimit={{0x40}}]}, @common=@unspec=@CONNSECMARK={0x28, 'CONNSECMARK\x00', 0x0, {0x2}}}, {{@ip={@dev, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 'vlan1\x00', 'wg1\x00'}, 0x0, 0x70, 0xa0, 0x0, {0x0, 0x6000}}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @private}}}, {{@uncond, 0x0, 0x98, 0xc8, 0x0, {}, [@common=@ttl={{0x28}}]}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @dev}}}, {{@ip={@rand_addr, @multicast2, 0x0, 0x0, 'veth0_macvtap\x00', 'bond0\x00'}, 0x0, 0xb0, 0xd8, 0x0, {}, [@common=@set={{0x40}}]}, @ECN={0x28}}, {{@ip={@broadcast, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 'lo\x00', 'batadv_slave_1\x00'}, 0x0, 0xa0, 0xc8, 0x0, {}, [@common=@ah={{0x30}}]}, @common=@unspec=@CLASSIFY={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x4d8)

5.195493326s ago: executing program 2 (id=1982):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x2, 0x4, 0x1, 0xbf22, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = socket(0x40000000015, 0x5, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
ioctl$sock_inet_SIOCGIFPFLAGS(r5, 0x8935, 0x0)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x15, 0x3, &(0x7f0000000300)=ANY=[@ANYRES64=r2], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x9, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x0, 0x0, &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
capset(0x0, &(0x7f0000000040))
ioctl$KDSETMODE(0xffffffffffffffff, 0x4b63, 0x4)
sendmmsg$inet(r2, &(0x7f00000028c0)=[{{&(0x7f0000000080)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, &(0x7f0000002840)=[@ip_tos_int={{0x14}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @empty, @loopback}}}], 0x38}}], 0x1, 0x0)
bind$inet6(r1, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f00000001c0)={0x0, 0x0, 0x5}, 0x20)
sendto$inet6(r1, &(0x7f0000847fff)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580), 0x70}}, 0x0)
socket$alg(0x26, 0x5, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0xd, 0x24, 0x4, 0x1, 0x0, r0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000180)={r8, &(0x7f0000000300), 0x0}, 0x20)

5.165638172s ago: executing program 1 (id=1983):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000940), r1)
sendmsg$IEEE802154_LLSEC_SETPARAMS(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000020000000ed250000fb04002a00020000000a0001007770616e3000000005002b000000000006000600004b99f7db0000000000000043b710b305cb55784e0b92480149602b80feb95367adf64f5df568a3ffc7bccc8d7d7225a7637ad4be93fc9f012de0453adcd8c77814665cf3819d82c423201b4705f477412e91b05180ad6e7c7d0c1769f31378e4a83269fa931a0a05ea630d5fa33d363a69697c9a45ccea3a0512550d4cb7968ab8b7084c3951034c4144d29e6e54c6866ad567f8"], 0x40}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
sendmsg$IEEE802154_LLSEC_SETPARAMS(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000040)={0x1c, r2, 0x800, 0x0, 0x1, {}, [@IEEE802154_ATTR_PAN_ID={0x6}]}, 0x1c}}, 0x0)
openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x0, 0x10100, 0x0)
open(0x0, 0x580200, 0x40)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000004000000000000000000850000002300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000380)='sched_switch\x00', r6}, 0x10)
semget$private(0x0, 0x2, 0x0)
r7 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, 0x0, 0xfffffe0b)
setsockopt$SO_ATTACH_FILTER(r7, 0x1, 0x1a, &(0x7f0000000280)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x2}]}, 0x10)
syz_emit_vhci(0x0, 0x22)
syz_emit_vhci(&(0x7f00000003c0)=ANY=[@ANYBLOB="043209aaaaaaaaaa11400000c3d27b56602f8608f3758f0f1d8ac8415e4027b07af94f498fab650e2f038aab3a3751d9344847000000000000000000"], 0xc)
ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, &(0x7f0000000040)={'virt_wifi0\x00', 0x4})
socket$isdn_base(0x22, 0x3, 0x0)
mkdir(&(0x7f00000001c0)='./file1\x00', 0x10a)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mount$overlay(0x20000000, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000000)={[{@workdir={'workdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir, 0x5c}], [], 0x2e})
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DEL(r8, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000480)=ANY=[@ANYBLOB="c00000000a06010200000000000003000002380008800c00078005000300030000000c000780080009c9de1e863e484740000000051c0007801800018014000240fc010000000000000000000000000001060000000000000034001b40000000000000000c100007800c001b400000000000000a860c00078006001a007b000000080009400000000705000100070000000800092410bcd083d653f1ca3cea400000000905000100070000000900020073797a3200000002080009400000005e0800094000000020087e476c89000008"], 0xc0}, 0x1, 0x0, 0x0, 0x800}, 0x40000)

5.023357064s ago: executing program 4 (id=1984):
r0 = ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x4)
ioctl$VT_ACTIVATE(r0, 0x5606, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) (async)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r1, 0x107, 0xa, 0x0, 0x0) (async)
r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x163902, 0x0)
write$sequencer(r2, &(0x7f0000000180)=ANY=[@ANYRES64, @ANYRESHEX=0x0, @ANYRESDEC], 0x10)
r3 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000340)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f000905", @ANYRES64], 0x0) (async)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0)
preadv(r4, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0) (async)
r5 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000bbdffc)) (async, rerun: 32)
pipe(&(0x7f0000000340)={0xffffffffffffffff, <r6=>0xffffffffffffffff}) (rerun: 32)
vmsplice(r6, &(0x7f0000000300)=[{0x0}, {&(0x7f0000000080)="a1", 0x20000081}], 0x2, 0x0) (async)
vmsplice(r6, &(0x7f0000000040)=[{&(0x7f00000000c0)='c', 0x1}], 0x1, 0x0) (async)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 32)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) (async, rerun: 32)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r7 = syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f00000005c0)=ANY=[@ANYBLOB="12010000020000082505a1a440000102030109025c0002010000000904000001020d0007052406000105240000003872a60d240f0100000000000000000006241a0000010273e10905810300000000070904010000020d00000904010102020d0000090582020000000000090503"], 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000000}, 0x8000) (async)
bind$rds(r6, &(0x7f0000000200)={0x2, 0x4e23, @multicast1}, 0x10) (async)
syz_usb_ep_write(r7, 0xf9, 0x0, 0x0) (async)
ioctl$SNDCTL_DSP_SETFRAGMENT(r4, 0xc004500a, &(0x7f0000000000)=0x9) (async)
syz_usb_control_io(r3, &(0x7f0000000780)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="00000f00000009003d140f3c369197d09647190890"], 0x0, 0x0, 0x0, 0x0}, 0x0) (async)
r8 = syz_open_dev$hiddev(&(0x7f0000000100), 0x0, 0x800)
ioctl$HIDIOCSREPORT(r8, 0x400c4808, &(0x7f0000000440)={0x1}) (async)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140)) (async)
mq_open(&(0x7f0000000180)=']\x00', 0x80, 0x10, &(0x7f00000001c0)={0x7, 0x8, 0x6, 0x3})

4.819230503s ago: executing program 4 (id=1985):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x46d, 0xc626, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x1000, 0x0, 0x1, {0x22, 0x7}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0xd}}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000380)={0x24, 0x0, 0x0, &(0x7f0000000300)={0x0, 0x22, 0x7, {[@local=@item_4={0x3, 0x2, 0xa, "4378c6db"}, @global=@item_012={0x1, 0x1, 0x8, "0f"}]}}, 0x0}, 0x0)
socket$inet6(0xa, 0x2, 0x0)
ioctl$VIDIOC_S_HW_FREQ_SEEK(0xffffffffffffffff, 0x40305652, &(0x7f0000000540)={0x402, 0x1, 0x7fffffff, 0x0, 0x0, 0x80, 0x6ae0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f0000000000), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
getpid()
r2 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_SUBMITURB(r2, 0x802c550a, &(0x7f0000000280)=@urb_type_interrupt={0x1, {0x1, 0x1}, 0x0, 0x0, &(0x7f00000000c0), 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffa, 0x0})
r3 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r3, 0x40045532, &(0x7f0000000100))

4.191788952s ago: executing program 1 (id=1986):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0x0, 0x0)
openat$ipvs(0xffffff9c, 0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x0, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x9, 0x5, 0x8, 0x40, 0x42, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000580), 0x1000, r1}, 0x38)

3.984715381s ago: executing program 2 (id=1987):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = getpid()
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_opts(r1, 0x6, 0x0, 0xffffffffffffffff, 0x0)
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000280), 0x121000, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000fbe000)={0x0, 0x0}, 0x10)
ioctl$PTP_EXTTS_REQUEST(r3, 0x40103d02, &(0x7f0000000300)={0x80000001, 0x1})

3.473169304s ago: executing program 3 (id=1988):
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x149)
socket$inet6_udplite(0xa, 0x2, 0x88)
setxattr$trusted_overlay_origin(0x0, &(0x7f0000000200), &(0x7f0000000280), 0x2, 0x2)
mkdir(0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount$overlay(0x0, 0x0, &(0x7f0000000080), 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000240)='devtmpfs\x00', 0x0, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x8000000004)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000240)={0x0, <r6=>0x0}, &(0x7f0000000280)=0x5)
setuid(r6)
writev(r5, &(0x7f0000000280)=[{&(0x7f0000000040)="580000001400192340834b80040d8c560a067fbc45ff810540010000000058000b480400945f64009400050038925a01000000000000008004000000ffe809000000fff5dd0000000800030006010000418e01400004fcff", 0x58}], 0x1)
ioctl$sock_netrom_SIOCDELRT(r0, 0x890c, &(0x7f0000000540)={0x0, @default, @bpq0, 0x8, 'syz0\x00', @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, 0x3, 0x2, [@bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @default, @default, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]})
r7 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r7, &(0x7f0000000040)={0x2a, 0xffffffffffffffff, 0x4000}, 0xc)

1.977562894s ago: executing program 2 (id=1989):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f00000000c0)=[{0x20, 0x0, 0x4, 0xfffff00c}, {0x20, 0x1, 0x0, 0xf7c}, {0x6, 0x0, 0x1}]}, 0x10)
sendmmsg(r0, &(0x7f0000000180), 0x4000190, 0x0)

1.811748863s ago: executing program 3 (id=1990):
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x58}}, 0x0)
r0 = syz_io_uring_setup(0x241d, &(0x7f0000000380)={0x0, 0x0, 0x13090}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x30}]}, 0x10)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001640)=[{0x0}, {0x0}], 0x2, 0x0, 0x0, 0xffffffc3}, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r0, 0x1, 0x0, 0x0, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a34000000080a01080000000000000000020000000900020073797a32000000000900010073797a30"], 0x5c}}, 0x0)

1.750491023s ago: executing program 0 (id=1991):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f0000000600)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r1, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r2=>0x0], 0x1})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000005980)=[{{&(0x7f00000002c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f00000000c0)=[{&(0x7f0000000340)="791da842337eafa2f02ed495369be1a75cecf7d891b87cc5cd5cb9a1dd9fbdbf42e32b2abb8c7a2f574c2966224581ea7880936a371dce962563c54db2bafcdf7a3e7f394f406eacce75284dcd61f127e1516f1b9a0b9f345a4159932dca87d0d178", 0x62}, {&(0x7f00000004c0)="351987b3b8d4b43db29deee9af31d721760c1568b76bee101f38dc6beaec7131aa3849b9bca09c3938ec91216085fb6352c9f1a219c20f97aa6f65fb89051093654c3b02cb6b553da24b54b4033ca88485f519922e4cab5096a0c90e2b08b3817b1f073d248136a19574f38703d3156626ae679a764def0e4822574399f36d222e1c11284e4744a7b46ce3a31729049ad0494e24913d2f2ae7796acc47a34ad561d3eb298ba4be4b85e92ad56b099e5f761968b4508d136612dfc5f79fc37a67c74ef825a5fe8bef183621f2d007d29c8ed39f441e5841504e06ac412e62f7cad3098b022d7793797d7bec2c79acef93fd", 0xf1}], 0x2, &(0x7f0000000b00), 0x0, 0x4000000}}, {{&(0x7f0000000c00)=@file={0x1, './file0/file0\x00'}, 0x6e, &(0x7f0000000fc0)=[{&(0x7f00000040c0)="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", 0x1000}, {&(0x7f0000000c80)="bfdf11177c57f4b34839e6f54c756f435568ccb30d1cc0003be39f1954d1e80f030618a32ea4645b0d835aae545920bfdeae88e3f4b29d07038790e9b3cd65849b6c9a7312e79b1876ec17e393099535ec7bb4570de15a3921c842f9b3085b98272471b913fee6d5334c4a67381e51048334eaae776222cb55b355f6d448512b983200344300a1a833810ce2dea50dc4d7909ef30b680a3a4adb3c58efd0ed1b7ab23f7dfb95b7aaaaa8038bb01bad6fceec6d0fe858cc7d4b568a457db56b0af9c0b1ba7903d3e6dc5ad32be3a6ba6cb35ec408b22bd34b", 0xd8}, {&(0x7f0000000a00)="5b3b2ebb56d76596deac6f47eb369ca33efe1bc76292e35a", 0x18}, {&(0x7f0000000d80)="c6ffed529cc1216d03799e8ffc6c5c6bae5020fc54d789c7fe111810198b14c8d268ab8a469776d89af4bb5e3fa02406fd84f7491b40d1859f9fe685ac88c4e07fa61782eaab6ffbf18ba9190afa16ab8808d44ee601bb31c0412c9d19d3b6b3c3a0a0007c3ef20b277fa3354f218dfe31d9357e0fecb1ae8d30f8d78b5351565de10e07", 0x84}, {0x0}, {&(0x7f0000000f00)="ed2ddd8974d4d699573d243eda8879bcba3728e1158283359ebd155db2c549d2f5da5a1448fa834a998703bd8c6a6767cb3390b67b39be453a42187aba1e1a4cdc9921a50598de696546f583d85f8d9f78085a0980213eb4952bab660bd986f5c8b4614e7de76fe85d3d4dff6dbcd59763be99bd9136117ab9f8b6b16b6468b5855aab339c1e9a8cd0895bf4695840d271a23523b7278a25656d", 0x9a}], 0x6, &(0x7f00000003c0)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r4]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff}}}, @rights={{0x24, 0x1, 0x1, [r4, r0, r4, r1, r1]}}, @cred={{0x1c}}], 0xc0, 0x20004800}}, {{0x0, 0x0, &(0x7f00000003c0), 0x0, 0x0, 0x0, 0x2000c491}}, {{&(0x7f0000005740)=@abs={0x1, 0x0, 0x4e21}, 0x6e, &(0x7f0000005940)=[{&(0x7f00000057c0)="199db4e59116b0ea1d50fbabc4831dce4627432f04e5a5117ae14c202fd21385000b09871ac8a2b556df53af13d4ae6404147b19b1d5335687100bf4ee67363c64d833ef391a1fa3", 0x48}, {&(0x7f0000005840)="292236db2fd33a598edb060260217a64622dfdfb089cccb57c508f240eff56b346fda827a7230203b6d245a189adcf0485dd37a0ec8aa7754c9a0d5197403ca3820d2280f70c0080917e866965960e2de4cf8a881903d0743a5b5eb6f9599b07fbc1833eb1481cd0f14b94ad60fbeeb4eb8f26b1207a52b7951a6d87e2d5476d5b103cb4bd69ccbf0630e065706d6f7a9b51045515ced8fc6a829396a4773f421914224bc35047e2aeb3d0e1b75d2c803deecab60382c08ed20d61ef262fcec8cb77a3a49a8cc9d33654b860ed88efdc468c24c0115c", 0xd6}], 0x2, 0x0, 0x0, 0x440c4}}], 0x4, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x0, 0x10202, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r6 = dup(r5)
write$UHID_INPUT(r6, &(0x7f0000001040)={0xc, {"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", 0x6e}}, 0x9b)
ioctl$DRM_IOCTL_MODE_SETPLANE(r1, 0xc03064b7, &(0x7f0000000480)={r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8})
ioctl$DRM_IOCTL_MODE_ATOMIC(r1, 0xc03864bc, &(0x7f0000000840)={0x200, 0x0, 0x0, 0x0, &(0x7f0000000340), &(0x7f0000000380)})
prlimit64(0x0, 0xe, 0x0, 0x0)
r7 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r7)
ptrace$poke(0x1, r7, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r8 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
syz_usb_connect$uac1(0x4, 0x81, &(0x7f0000000a40)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x6f, 0x3, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{}, [@selector_unit={0xb, 0x24, 0x5, 0x0, 0x0, "b3bf35ce07de"}, @mixer_unit={0x5}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x1, 0x9, 0x0, 0x0, 0x0, 0x0, {0x7}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x82, 0x9, 0x0, 0x0, 0x0, 0x0, {0x7}}}}}}}]}}, 0x0)
r9 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x141, 0x0)
write$binfmt_elf64(r9, &(0x7f0000000880)=ANY=[], 0x61c)
close_range(r8, 0xffffffffffffffff, 0x0)

1.750046896s ago: executing program 1 (id=1992):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$TUNSETOFFLOAD(r0, 0x400454c9, 0xba98575a95aeb70d)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
write$cgroup_devices(r1, &(0x7f0000000440)=ANY=[@ANYBLOB], 0xffdd)

1.707271036s ago: executing program 3 (id=1993):
r0 = open(0x0, 0x14927e, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000f4)
r1 = open(0x0, 0x200400, 0xb1)
r2 = socket(0x15, 0x5, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x90e976db910956fe, 0x4002011, r1, 0x0)
mount(0x0, 0x0, 0x0, 0x1000, 0x0)
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000009080)=[{0x0, 0x0, 0x0}], 0x1, 0x0)
syz_kvm_setup_cpu$x86(r1, r0, &(0x7f0000408000/0x18000)=nil, &(0x7f0000000340)=[@text64={0x40, &(0x7f0000000240)="66b833000f00d8f0460fb0af00000000f341d3b268000000b9c10200000f320f01b6aa6d9b31440f013ab9800000c00f3235008000000f30c74424005e000000c744240200080000c7442406000000000f011c2466baf80cb82c712b8aef66bafc0c66b8c60d66efc461916d7d00", 0x6e}], 0x1, 0x22, &(0x7f0000000380)=[@flags={0x3, 0x10}], 0x1)
r3 = socket$key(0xf, 0x3, 0x2)
recvmmsg(r3, &(0x7f0000000440), 0x6f5, 0x2, &(0x7f0000000480)={0x77359400})
setsockopt$sock_int(r3, 0x1, 0x4b, &(0x7f0000000040)=0xfd87, 0x4)
sendmsg$key(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="0216000002"], 0x10}}, 0x0)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
sendto$inet(r4, 0x0, 0x0, 0x24040001, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x7)
iopl(0x3)
landlock_create_ruleset(&(0x7f0000000000)={0x12201}, 0x10, 0x0)
socket(0x10, 0x803, 0x0)
getsockname$packet(r2, &(0x7f0000000540)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x11)
ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f0000000700)={0x0, @bt={0xbd, 0x6, 0x0, 0x0, 0x1dee8822, 0x5, 0x101, 0x0, 0x6, 0x7fffffff, 0x4, 0xffffffff, 0x9, 0x1, 0xc, 0x21, {0xaea3, 0x1}, 0x7, 0xfd}})
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000005c0)=ANY=[@ANYBLOB="5c0000001000030426bd70000000000000000300", @ANYRES32=r5, @ANYBLOB="0100000000000000340012800b00010067656e65766500002400028005000d0000000000060005000005000008000100"], 0x5c}, 0x1, 0x0, 0x0, 0x4000000}, 0x10)
syz_emit_ethernet(0x0, 0x0, 0x0)
socket(0x10, 0x2, 0x0)
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000007c0)=ANY=[@ANYBLOB="b80000001900674c2cbd700000000000ff020000000000000000000000000001fc00000000000000000000000000000100000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000ae0000000000000000000000000000000000000000000000766450f4c31598d90000000000000000000047298da4797d05000000000000000000000000000000000000000000000001000000001838aff2254326db63a1e6e0464e4bbfb1587f140a80ac91a17012d5f824b8df28aa88b133719de6edf9a2138d25c1a6131d6d944f43de1c3e4147"], 0xb8}}, 0x0)
syz_emit_ethernet(0x46, &(0x7f0000000080)=ANY=[@ANYBLOB="0180c200000000000000000086dd6016b51100101100fe8000000000000000000000000000aafe80000000000000000000040000000000c00aae5463dcb7c56159000000001090c50200000000000000"], 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f00000004c0))

1.629556283s ago: executing program 2 (id=1994):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x6)
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_test', 0x141a82, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000001304000000002e"], 0x0, 0x37, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
sendfile(r4, r4, &(0x7f0000000000)=0x1, 0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r7, 0x1, 0x2c, &(0x7f0000000280)=0x40009, 0x4)
write(0xffffffffffffffff, &(0x7f0000000080)="01", 0x1)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
eventfd(0x0)

219.303088ms ago: executing program 0 (id=1995):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
getegid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(r3, 0x4008af00, 0x0)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x40000000000011a, 0x44000)
recvmmsg(r1, &(0x7f0000005140)=[{{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000240)=""/167, 0xa7}, {&(0x7f0000000000)=""/111, 0x6f}, {&(0x7f0000000300)=""/166, 0xa6}, {&(0x7f00000000c0)=""/52, 0x34}, {&(0x7f00000003c0)=""/125, 0x7d}], 0x5, &(0x7f00000004c0)=""/44, 0x2c}, 0x4}, {{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000500)=""/91, 0x5b}, {&(0x7f0000000640)=""/198, 0xc6}, {&(0x7f0000000580)=""/58, 0x3a}], 0x3}, 0x24}, {{0x0, 0x0, &(0x7f0000000a40)=[{&(0x7f0000000740)=""/95, 0x5f}, {&(0x7f00000007c0)=""/40, 0x28}, {&(0x7f0000000800)=""/215, 0xd7}, {&(0x7f0000000900)=""/95, 0x5f}, {&(0x7f0000000980)=""/184, 0xb8}], 0x5, &(0x7f0000000ac0)=""/176, 0xb0}, 0xfffffffb}, {{&(0x7f0000000b80)=@tipc=@name, 0x80, &(0x7f0000001c00)=[{&(0x7f0000000c00)=""/4096, 0x1000}], 0x1, &(0x7f0000001c40)=""/96, 0x60}, 0xe}, {{&(0x7f0000001cc0)=@ax25={{0x3, @rose}, [@default, @remote, @rose, @default, @null, @remote, @remote, @null]}, 0x80, &(0x7f0000001e80)=[{&(0x7f0000001d40)=""/205, 0xcd}, {&(0x7f0000001e40)=""/25, 0x19}], 0x2, &(0x7f0000001ec0)=""/79, 0x4f}, 0x9}, {{0x0, 0x0, &(0x7f00000040c0)=[{&(0x7f0000001f40)=""/4096, 0x1000}, {&(0x7f0000002f40)=""/4096, 0x1000}, {&(0x7f0000003f40)=""/22, 0x16}, {&(0x7f0000003f80)=""/237, 0xed}, {&(0x7f0000004080)=""/42, 0x2a}], 0x5, &(0x7f0000004140)=""/4096, 0x1000}, 0x6}], 0x6, 0x2, 0x0)
r4 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
bind$x25(r4, &(0x7f0000000600)={0x9, @remote={'\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc', 0x1, 0x10}}, 0x12)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@local, 0x0, 0x2, 0x0, 0x0, 0x9, 0x200}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[], 0x38}, 0x1, 0x300}, 0x0)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
ioctl$FS_IOC_GETFSLABEL(r5, 0x400452c8, &(0x7f0000000100))

115.453617ms ago: executing program 4 (id=1996):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0xfffff000)
syz_emit_vhci(&(0x7f0000000880)=ANY=[@ANYBLOB="040900000000000000001b73d3f13beeaefe48f8040095402f915170770dc8526bbf87534c2dd1e3e4e7872729e09033"], 0xd)
syz_emit_vhci(0x0, 0x5c)
write$tcp_mem(0xffffffffffffffff, &(0x7f0000000240)={0x100000000000000, 0x2c, 0x0, 0x2c, 0x0, 0x2c}, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000380)=ANY=[@ANYBLOB="040241500004000c00fbdb231061542dbd7fc598ebdb08bf60368ea3d7cfc7844afa880773c690363c94e08cca979afe68b1f9bb3bce4ab5181dc2df0fd57da370b98d9e845f3a0b2835fb82d9f7beb4433cbb27d31b65ea2b5fce6361"], 0xa)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
io_setup(0x0, 0x0)
io_pgetevents(0x0, 0x5, 0x0, 0x0, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000001afc180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='new default user:syz 000040'], 0x2a, 0xfffffffffffffffc)
r4 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
add_key$user(&(0x7f0000000040), &(0x7f0000000000), &(0x7f00000002c0)='s', 0x1, 0xfffffffffffffffe)
keyctl$read(0xb, r4, &(0x7f0000000240)=""/112, 0x349b7f55)

863.347µs ago: executing program 2 (id=1997):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ioctl$VIDIOC_S_HW_FREQ_SEEK(0xffffffffffffffff, 0x40305652, &(0x7f0000000540)={0x402, 0x1, 0x7fffffff, 0x0, 0x0, 0x80, 0x6ae0})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = getpid()
r2 = syz_pidfd_open(r1, 0x0)
r3 = syz_open_dev$usbfs(0x0, 0x76, 0x101301)
ioctl$USBDEVFS_SUBMITURB(r3, 0x802c550a, &(0x7f0000000280)=@urb_type_interrupt={0x1, {0x1, 0x1}, 0x0, 0x0, &(0x7f00000000c0), 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffa, 0x0})
r4 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r4, 0x40045532, &(0x7f0000000100))
r5 = openat$audio(0xffffffffffffff9c, 0x0, 0x5a9001, 0x0)
ioctl$SNDCTL_DSP_GETODELAY(r5, 0x80045017, 0x0)
r6 = syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x0, 0xa2c65)
ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r6, 0xc0884113, &(0x7f0000000240)={0x1, 0x0, 0x0, 0x80000002, 0x0, 0x100000000, 0x0, 0x2, 0x5b7, 0x0, 0xfffffff7, 0x2})
ioctl$EXT4_IOC_MIGRATE(r2, 0xff07)
openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0) (fail_nth: 2)

0s ago: executing program 3 (id=1998):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f00000003c0)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
bpf$PROG_LOAD(0x5, 0x0, 0x54)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000003000/0x1000)=nil, 0x1000, 0x0)
r5 = socket$inet6(0xa, 0x2, 0x3a)
bind$inet6(r5, &(0x7f0000000000)={0xa, 0x4e21, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x3}, 0x1c) (fail_nth: 2)

kernel console output (not intermixed with test programs):

x10
[  900.651279][T12579]  ? __pfx_rng_recvmsg+0x10/0x10
[  900.656213][T12579]  sock_recvmsg+0x22f/0x280
[  900.660717][T12579]  ____sys_recvmsg+0x1c6/0x480
[  900.665482][T12579]  ? __pfx_____sys_recvmsg+0x10/0x10
[  900.670772][T12579]  __sys_recvmsg+0x2e6/0x3d0
[  900.675359][T12579]  ? __pfx___sys_recvmsg+0x10/0x10
[  900.680464][T12579]  ? __mutex_unlock_slowpath+0x21d/0x750
[  900.686118][T12579]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  900.692441][T12579]  ? do_syscall_64+0x100/0x230
[  900.697201][T12579]  ? do_syscall_64+0xb6/0x230
[  900.701875][T12579]  do_syscall_64+0xf3/0x230
[  900.706384][T12579]  ? clear_bhb_loop+0x35/0x90
[  900.711053][T12579]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  900.716947][T12579] RIP: 0033:0x7fe3e697dff9
[  900.721361][T12579] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  900.740970][T12579] RSP: 002b:00007fe3e76df038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  900.749385][T12579] RAX: ffffffffffffffda RBX: 00007fe3e6b35f80 RCX: 00007fe3e697dff9
[  900.757352][T12579] RDX: 0000000000000003 RSI: 000000002000a8c0 RDI: 0000000000000004
[  900.765314][T12579] RBP: 00007fe3e76df090 R08: 0000000000000000 R09: 0000000000000000
[  900.773281][T12579] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  900.781244][T12579] R13: 0000000000000000 R14: 00007fe3e6b35f80 R15: 00007fff2656a9f8
[  900.789219][T12579]  </TASK>
[  901.567375][T12593] FAULT_INJECTION: forcing a failure.
[  901.567375][T12593] name failslab, interval 1, probability 0, space 0, times 0
[  901.581204][T12595] FAULT_INJECTION: forcing a failure.
[  901.581204][T12595] name failslab, interval 1, probability 0, space 0, times 0
[  901.607533][T12593] CPU: 0 UID: 0 PID: 12593 Comm: syz.2.1625 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  901.618330][T12593] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  901.628377][T12593] Call Trace:
[  901.631647][T12593]  <TASK>
[  901.634570][T12593]  dump_stack_lvl+0x241/0x360
[  901.639274][T12593]  ? __pfx_dump_stack_lvl+0x10/0x10
[  901.644464][T12593]  ? __pfx__printk+0x10/0x10
[  901.649052][T12593]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[  901.655028][T12593]  ? __pfx___might_resched+0x10/0x10
[  901.660320][T12593]  should_fail_ex+0x3b0/0x4e0
[  901.664996][T12593]  should_failslab+0xac/0x100
[  901.669663][T12593]  ? __alloc_skb+0x1c3/0x440
[  901.674248][T12593]  kmem_cache_alloc_node_noprof+0x71/0x320
[  901.680051][T12593]  __alloc_skb+0x1c3/0x440
[  901.684460][T12593]  ? __pfx___alloc_skb+0x10/0x10
[  901.689390][T12593]  ? netlink_autobind+0xd6/0x2f0
[  901.694321][T12593]  ? netlink_autobind+0x2b0/0x2f0
[  901.699339][T12593]  netlink_sendmsg+0x638/0xcb0
[  901.704111][T12593]  ? __pfx_netlink_sendmsg+0x10/0x10
[  901.709399][T12593]  ? __pfx_netlink_sendmsg+0x10/0x10
[  901.714677][T12593]  __sock_sendmsg+0x221/0x270
[  901.719350][T12593]  ____sys_sendmsg+0x52a/0x7e0
[  901.724113][T12593]  ? __pfx_____sys_sendmsg+0x10/0x10
[  901.729398][T12593]  __sys_sendmsg+0x292/0x380
[  901.733980][T12593]  ? __pfx___sys_sendmsg+0x10/0x10
[  901.739090][T12593]  ? __pfx_vfs_write+0x10/0x10
[  901.743863][T12593]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  901.750187][T12593]  ? do_syscall_64+0x100/0x230
[  901.754943][T12593]  ? do_syscall_64+0xb6/0x230
[  901.759610][T12593]  do_syscall_64+0xf3/0x230
[  901.764113][T12593]  ? clear_bhb_loop+0x35/0x90
[  901.768782][T12593]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  901.774674][T12593] RIP: 0033:0x7f3bf297dff9
[  901.779083][T12593] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  901.798684][T12593] RSP: 002b:00007f3bf36d3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  901.807092][T12593] RAX: ffffffffffffffda RBX: 00007f3bf2b35f80 RCX: 00007f3bf297dff9
[  901.815057][T12593] RDX: 0000000000004004 RSI: 0000000020000340 RDI: 0000000000000003
[  901.823018][T12593] RBP: 00007f3bf36d3090 R08: 0000000000000000 R09: 0000000000000000
[  901.830979][T12593] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  901.838943][T12593] R13: 0000000000000000 R14: 00007f3bf2b35f80 R15: 00007ffd2ea3f088
[  901.846920][T12593]  </TASK>
[  901.850041][    C0] vkms_vblank_simulate: vblank timer overrun
[  901.864170][T12595] CPU: 0 UID: 0 PID: 12595 Comm: syz.4.1626 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  901.874968][T12595] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  901.885009][T12595] Call Trace:
[  901.888273][T12595]  <TASK>
[  901.891201][T12595]  dump_stack_lvl+0x241/0x360
[  901.895883][T12595]  ? __pfx_dump_stack_lvl+0x10/0x10
[  901.901086][T12595]  ? __pfx__printk+0x10/0x10
[  901.905681][T12595]  ? fs_reclaim_acquire+0x93/0x140
[  901.910778][T12595]  ? __pfx___might_resched+0x10/0x10
[  901.916083][T12595]  should_fail_ex+0x3b0/0x4e0
[  901.920766][T12595]  ? tomoyo_encode+0x26f/0x540
[  901.925515][T12595]  should_failslab+0xac/0x100
[  901.930194][T12595]  ? tomoyo_encode+0x26f/0x540
[  901.934973][T12595]  __kmalloc_noprof+0xd8/0x400
[  901.939729][T12595]  tomoyo_encode+0x26f/0x540
[  901.944322][T12595]  tomoyo_realpath_from_path+0x59e/0x5e0
[  901.949965][T12595]  tomoyo_path_number_perm+0x23a/0x880
[  901.955430][T12595]  ? tomoyo_path_number_perm+0x208/0x880
[  901.961057][T12595]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  901.967047][T12595]  ? __fget_files+0x29/0x470
[  901.971629][T12595]  ? __fget_files+0x3f3/0x470
[  901.976296][T12595]  security_file_ioctl+0xc6/0x2a0
[  901.981306][T12595]  __se_sys_ioctl+0x47/0x170
[  901.985881][T12595]  do_syscall_64+0xf3/0x230
[  901.990367][T12595]  ? clear_bhb_loop+0x35/0x90
[  901.995045][T12595]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  902.000948][T12595] RIP: 0033:0x7fe3e697dff9
[  902.005363][T12595] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  902.024968][T12595] RSP: 002b:00007fe3e76df038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  902.033373][T12595] RAX: ffffffffffffffda RBX: 00007fe3e6b35f80 RCX: 00007fe3e697dff9
[  902.041334][T12595] RDX: 00000000200002c0 RSI: 00000000c0405602 RDI: 0000000000000003
[  902.049297][T12595] RBP: 00007fe3e76df090 R08: 0000000000000000 R09: 0000000000000000
[  902.057260][T12595] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  902.065306][T12595] R13: 0000000000000000 R14: 00007fe3e6b35f80 R15: 00007fff2656a9f8
[  902.073290][T12595]  </TASK>
[  902.076384][    C0] vkms_vblank_simulate: vblank timer overrun
[  902.118291][ T1268] ieee802154 phy1 wpan1: encryption failed: -22
[  902.189441][T12595] ERROR: Out of memory at tomoyo_realpath_from_path.
[  903.321994][T12609] openvswitch: netlink: Message has 245 unknown bytes.
[  903.328953][T12609] openvswitch: netlink: Actions may not be safe on all matching packets
[  904.325696][T12610] bpf: Bad value for 'mode'
[  904.999491][ T5294] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  905.139219][T12627] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1635'.
[  911.951987][T12683] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1649'.
[  913.022514][T12688] FAULT_INJECTION: forcing a failure.
[  913.022514][T12688] name failslab, interval 1, probability 0, space 0, times 0
[  913.142821][T12688] CPU: 0 UID: 0 PID: 12688 Comm: syz.2.1652 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  913.153642][T12688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  913.163715][T12688] Call Trace:
[  913.167001][T12688]  <TASK>
[  913.169934][T12688]  dump_stack_lvl+0x241/0x360
[  913.174606][T12688]  ? __pfx_dump_stack_lvl+0x10/0x10
[  913.179789][T12688]  ? __pfx__printk+0x10/0x10
[  913.184366][T12688]  ? kmem_cache_alloc_noprof+0x44/0x2a0
[  913.189911][T12688]  ? __pfx___might_resched+0x10/0x10
[  913.195225][T12688]  should_fail_ex+0x3b0/0x4e0
[  913.199924][T12688]  ? io_submit_one+0x154/0x18a0
[  913.204776][T12688]  should_failslab+0xac/0x100
[  913.209450][T12688]  ? io_submit_one+0x154/0x18a0
[  913.214307][T12688]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  913.219685][T12688]  io_submit_one+0x154/0x18a0
[  913.224373][T12688]  ? __pfx_io_submit_one+0x10/0x10
[  913.229479][T12688]  ? __might_fault+0xaa/0x120
[  913.234157][T12688]  ? __pfx_lock_release+0x10/0x10
[  913.239184][T12688]  ? lookup_ioctx+0x94/0x6a0
[  913.243771][T12688]  ? __might_fault+0xaa/0x120
[  913.248458][T12688]  ? __might_fault+0xc6/0x120
[  913.253161][T12688]  __se_sys_io_submit+0x179/0x2f0
[  913.258186][T12688]  ? __pfx___se_sys_io_submit+0x10/0x10
[  913.263728][T12688]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  913.269711][T12688]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  913.276040][T12688]  ? do_syscall_64+0x100/0x230
[  913.280802][T12688]  ? do_syscall_64+0xb6/0x230
[  913.285475][T12688]  do_syscall_64+0xf3/0x230
[  913.289977][T12688]  ? clear_bhb_loop+0x35/0x90
[  913.294649][T12688]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  913.300541][T12688] RIP: 0033:0x7f3bf297dff9
[  913.304954][T12688] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  913.324561][T12688] RSP: 002b:00007f3bf36d3038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1
[  913.332971][T12688] RAX: ffffffffffffffda RBX: 00007f3bf2b35f80 RCX: 00007f3bf297dff9
[  913.340934][T12688] RDX: 00000000200005c0 RSI: 0000000000000002 RDI: 00007f3bf36b2000
[  913.348898][T12688] RBP: 00007f3bf36d3090 R08: 0000000000000000 R09: 0000000000000000
[  913.356861][T12688] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  913.364821][T12688] R13: 0000000000000000 R14: 00007f3bf2b35f80 R15: 00007ffd2ea3f088
[  913.372795][T12688]  </TASK>
[  913.375902][    C0] vkms_vblank_simulate: vblank timer overrun
[  914.078511][T12694] syz_tun: entered promiscuous mode
[  914.139680][T12694] batadv_slave_0: entered promiscuous mode
[  914.156171][T12694] hsr1: entered allmulticast mode
[  914.161455][T12694] syz_tun: entered allmulticast mode
[  914.171577][T12694] batadv_slave_0: entered allmulticast mode
[  914.251421][T12700] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1648'.
[  914.398230][T12699] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1656'.
[  914.449911][T12699] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1656'.
[  914.591078][T12699] netdevsim netdevsim2 netdevsim0: set [1, 1] type 2 family 0 port 5 - 0
[  914.626435][T12699] netdevsim netdevsim2 netdevsim1: set [1, 1] type 2 family 0 port 5 - 0
[  914.641633][T12699] netdevsim netdevsim2 netdevsim2: set [1, 1] type 2 family 0 port 5 - 0
[  914.651599][T12699] netdevsim netdevsim2 netdevsim3: set [1, 1] type 2 family 0 port 5 - 0
[  916.631803][ T9869] usb 5-1: [UEAGLE-ATM] firmware is not available
[  916.906283][T12730] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1663'.
[  918.422616][T12745] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1664'.
[  919.183879][T12743] FAULT_INJECTION: forcing a failure.
[  919.183879][T12743] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  919.947050][T12743] CPU: 1 UID: 0 PID: 12743 Comm: syz.1.1667 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  919.957873][T12743] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  919.967940][T12743] Call Trace:
[  919.971241][T12743]  <TASK>
[  919.974192][T12743]  dump_stack_lvl+0x241/0x360
[  919.978890][T12743]  ? __pfx_dump_stack_lvl+0x10/0x10
[  919.984102][T12743]  ? __pfx__printk+0x10/0x10
[  919.988722][T12743]  ? snprintf+0xda/0x120
[  919.992997][T12743]  should_fail_ex+0x3b0/0x4e0
[  919.997695][T12743]  _copy_to_user+0x2f/0xb0
[  920.002135][T12743]  simple_read_from_buffer+0xca/0x150
[  920.007548][T12743]  proc_fail_nth_read+0x1e9/0x250
[  920.012626][T12743]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  920.018202][T12743]  ? rw_verify_area+0x55e/0x6f0
[  920.023072][T12743]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  920.028633][T12743]  vfs_read+0x201/0xbc0
[  920.032804][T12743]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  920.038744][T12743]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  920.044676][T12743]  ? __pfx_vfs_read+0x10/0x10
[  920.049379][T12743]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  920.055299][T12743]  ? do_sock_setsockopt+0x3e2/0x720
[  920.060522][T12743]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  920.066086][T12743]  ? fdget_pos+0x265/0x320
[  920.070525][T12743]  ksys_read+0x183/0x2b0
[  920.074786][T12743]  ? __pfx_ksys_read+0x10/0x10
[  920.079564][T12743]  ? do_syscall_64+0x100/0x230
[  920.084343][T12743]  ? do_syscall_64+0xb6/0x230
[  920.089039][T12743]  do_syscall_64+0xf3/0x230
[  920.094173][T12743]  ? clear_bhb_loop+0x35/0x90
[  920.098870][T12743]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  920.104783][T12743] RIP: 0033:0x7f4c5ed7ca3c
[  920.109216][T12743] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  920.128844][T12743] RSP: 002b:00007f4c5fab9030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  920.137285][T12743] RAX: ffffffffffffffda RBX: 00007f4c5ef35f80 RCX: 00007f4c5ed7ca3c
[  920.145278][T12743] RDX: 000000000000000f RSI: 00007f4c5fab90a0 RDI: 0000000000000004
[  920.153271][T12743] RBP: 00007f4c5fab9090 R08: 0000000000000000 R09: 0000000000000000
[  920.161257][T12743] R10: 0000000020000980 R11: 0000000000000246 R12: 0000000000000001
[  920.169242][T12743] R13: 0000000000000000 R14: 00007f4c5ef35f80 R15: 00007ffc64bf19a8
[  920.177238][T12743]  </TASK>
[  920.213616][T12749] loop7: detected capacity change from 0 to 16384
[  921.119223][ T9846] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  921.132687][ T9846] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  921.150486][ T9846] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  921.165544][ T9846] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  921.187915][ T9846] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  921.199553][ T9846] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  922.520678][ T9846] Bluetooth: hci1: unexpected event 0x09 length: 10 > 3
[  922.530495][ T9846] Bluetooth: hci1: Malformed Event: 0x02
[  922.898272][T12793] trusted_key: encrypted_key: key user:syz not found
[  923.829522][T12763] chnl_net:caif_netlink_parms(): no params data found
[  923.945293][ T9846] Bluetooth: hci4: command tx timeout
[  925.098843][T12763] bridge0: port 1(bridge_slave_0) entered blocking state
[  925.136923][T12763] bridge0: port 1(bridge_slave_0) entered disabled state
[  925.151397][T12763] bridge_slave_0: entered allmulticast mode
[  925.162945][T12763] bridge_slave_0: entered promiscuous mode
[  926.003393][ T5217] Bluetooth: hci4: command tx timeout
[  926.031366][T12763] bridge0: port 2(bridge_slave_1) entered blocking state
[  926.038531][T12763] bridge0: port 2(bridge_slave_1) entered disabled state
[  926.045901][T12763] bridge_slave_1: entered allmulticast mode
[  926.053060][T12763] bridge_slave_1: entered promiscuous mode
[  926.417551][ T9869] usb 1-1: new high-speed USB device number 32 using dummy_hcd
[  926.468122][T12763] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  926.575306][T12763] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  926.894399][T12763] team0: Port device team_slave_0 added
[  926.910601][ T9869] usb 1-1: Using ep0 maxpacket: 16
[  926.967187][ T9869] usb 1-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0
[  926.987543][T12763] team0: Port device team_slave_1 added
[  927.010133][ T9869] usb 1-1: config 0 interface 0 altsetting 1 endpoint 0x89 has an invalid bInterval 0, changing to 7
[  927.031422][ T9869] usb 1-1: config 0 interface 0 altsetting 1 endpoint 0x89 has invalid wMaxPacketSize 0
[  927.041385][ T9869] usb 1-1: config 0 interface 0 has no altsetting 0
[  927.124010][ T9869] usb 1-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb
[  927.133235][ T9869] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  927.143864][ T9869] usb 1-1: Product: syz
[  927.148158][ T9869] usb 1-1: Manufacturer: syz
[  927.152771][ T9869] usb 1-1: SerialNumber: syz
[  927.184340][ T9869] usb 1-1: config 0 descriptor??
[  927.272328][T12763] batman_adv: batadv0: Adding interface: batadv_slave_0
[  927.288734][T12763] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  927.321248][T12763] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  927.334062][T12830] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1686'.
[  927.343810][T12832] FAULT_INJECTION: forcing a failure.
[  927.343810][T12832] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  927.383511][T12832] CPU: 1 UID: 0 PID: 12832 Comm: syz.2.1687 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  927.394314][T12832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  927.404363][T12832] Call Trace:
[  927.407626][T12832]  <TASK>
[  927.410539][T12832]  dump_stack_lvl+0x241/0x360
[  927.415211][T12832]  ? __pfx_dump_stack_lvl+0x10/0x10
[  927.420421][T12832]  ? __pfx__printk+0x10/0x10
[  927.425021][T12832]  ? snprintf+0xda/0x120
[  927.429282][T12832]  should_fail_ex+0x3b0/0x4e0
[  927.434402][T12832]  _copy_to_user+0x2f/0xb0
[  927.438836][T12832]  simple_read_from_buffer+0xca/0x150
[  927.444220][T12832]  proc_fail_nth_read+0x1e9/0x250
[  927.449264][T12832]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  927.454908][T12832]  ? rw_verify_area+0x55e/0x6f0
[  927.459748][T12832]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  927.465296][T12832]  vfs_read+0x201/0xbc0
[  927.469442][T12832]  ? __pfx_lock_release+0x10/0x10
[  927.474478][T12832]  ? __pfx_vfs_read+0x10/0x10
[  927.479188][T12832]  ? __fget_files+0x3f3/0x470
[  927.483896][T12832]  ? fdget_pos+0x24e/0x320
[  927.488321][T12832]  ksys_read+0x183/0x2b0
[  927.492576][T12832]  ? __pfx_ksys_read+0x10/0x10
[  927.497336][T12832]  ? do_syscall_64+0x100/0x230
[  927.502091][T12832]  ? do_syscall_64+0xb6/0x230
[  927.506791][T12832]  do_syscall_64+0xf3/0x230
[  927.511300][T12832]  ? clear_bhb_loop+0x35/0x90
[  927.515982][T12832]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  927.521919][T12832] RIP: 0033:0x7f3bf297ca3c
[  927.526381][T12832] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  927.546013][T12832] RSP: 002b:00007f3bf36d3030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  927.554450][T12832] RAX: ffffffffffffffda RBX: 00007f3bf2b35f80 RCX: 00007f3bf297ca3c
[  927.562424][T12832] RDX: 000000000000000f RSI: 00007f3bf36d30a0 RDI: 000000000000000a
[  927.570410][T12832] RBP: 00007f3bf36d3090 R08: 0000000000000000 R09: 0000000000000014
[  927.578385][T12832] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  927.586454][T12832] R13: 0000000000000000 R14: 00007f3bf2b35f80 R15: 00007ffd2ea3f088
[  927.594445][T12832]  </TASK>
[  927.670285][  T732] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  927.703634][  T732] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 5 - 0
[  927.739174][ T9869] input: syz syz as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input31
[  927.761588][ T4658] synaptics_usb 1-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  927.778524][ T4658] synaptics_usb 1-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  927.810252][T12763] batman_adv: batadv0: Adding interface: batadv_slave_1
[  927.827703][T12763] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  927.864008][ T4658] synaptics_usb 1-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  927.890648][T12763] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  927.908780][ T4658] synaptics_usb 1-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  928.107401][ T5217] Bluetooth: hci4: command 0x040f tx timeout
[  928.965855][  T732] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  929.013138][  T732] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 5 - 0
[  929.662662][  T732] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  929.673095][  T732] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 5 - 0
[  930.031983][ T9846] Bluetooth: hci4: command 0x040f tx timeout
[  930.545032][T11189] usb 1-1: USB disconnect, device number 32
[  930.578057][T12763] hsr_slave_0: entered promiscuous mode
[  930.586495][T12763] hsr_slave_1: entered promiscuous mode
[  930.620489][T12763] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  930.635256][T12862] FAULT_INJECTION: forcing a failure.
[  930.635256][T12862] name failslab, interval 1, probability 0, space 0, times 0
[  930.656803][T12763] Cannot create hsr debugfs directory
[  930.681231][T12862] CPU: 1 UID: 0 PID: 12862 Comm: syz.2.1694 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  930.692029][T12862] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  930.702092][T12862] Call Trace:
[  930.705386][T12862]  <TASK>
[  930.708334][T12862]  dump_stack_lvl+0x241/0x360
[  930.713022][T12862]  ? __pfx_dump_stack_lvl+0x10/0x10
[  930.718224][T12862]  ? __pfx__printk+0x10/0x10
[  930.722828][T12862]  ? kmem_cache_alloc_lru_noprof+0x49/0x2b0
[  930.728721][T12862]  ? __pfx___might_resched+0x10/0x10
[  930.734017][T12862]  ? d_alloc_parallel+0x14a8/0x1600
[  930.739219][T12862]  should_fail_ex+0x3b0/0x4e0
[  930.743917][T12862]  ? proc_alloc_inode+0x2a/0xc0
[  930.748774][T12862]  should_failslab+0xac/0x100
[  930.753468][T12862]  ? proc_alloc_inode+0x2a/0xc0
[  930.758324][T12862]  kmem_cache_alloc_lru_noprof+0x71/0x2b0
[  930.764047][T12862]  proc_alloc_inode+0x2a/0xc0
[  930.768728][T12862]  ? __pfx_proc_alloc_inode+0x10/0x10
[  930.774100][T12862]  new_inode+0x6e/0x310
[  930.778263][T12862]  proc_sys_make_inode+0x4e/0x510
[  930.783294][T12862]  ? d_set_d_op+0x288/0x3b0
[  930.787796][T12862]  proc_sys_fill_cache+0x3ef/0x550
[  930.792912][T12862]  ? __pfx_proc_sys_fill_cache+0x10/0x10
[  930.798548][T12862]  ? _raw_spin_unlock+0x28/0x50
[  930.803395][T12862]  ? sysctl_follow_link+0x3d8/0x450
[  930.808596][T12862]  proc_sys_link_fill_cache+0x1ce/0x360
[  930.814144][T12862]  ? __pfx_proc_sys_link_fill_cache+0x10/0x10
[  930.820210][T12862]  ? do_raw_spin_unlock+0x13c/0x8b0
[  930.825410][T12862]  proc_sys_readdir+0x64f/0x8f0
[  930.830267][T12862]  iterate_dir+0x571/0x800
[  930.834682][T12862]  __se_sys_getdents64+0x1d3/0x4a0
[  930.839794][T12862]  ? __pfx___se_sys_getdents64+0x10/0x10
[  930.845420][T12862]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  930.851401][T12862]  ? __pfx_filldir64+0x10/0x10
[  930.856166][T12862]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  930.862492][T12862]  ? do_syscall_64+0x100/0x230
[  930.867255][T12862]  ? do_syscall_64+0xb6/0x230
[  930.871933][T12862]  do_syscall_64+0xf3/0x230
[  930.876432][T12862]  ? clear_bhb_loop+0x35/0x90
[  930.881105][T12862]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  930.886995][T12862] RIP: 0033:0x7f3bf297dff9
[  930.891403][T12862] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  930.911006][T12862] RSP: 002b:00007f3bf36d3038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  930.919427][T12862] RAX: ffffffffffffffda RBX: 00007f3bf2b35f80 RCX: 00007f3bf297dff9
[  930.927393][T12862] RDX: 0000000000001000 RSI: 0000000020000f80 RDI: 0000000000000004
[  930.935355][T12862] RBP: 00007f3bf36d3090 R08: 0000000000000000 R09: 0000000000000000
[  930.943319][T12862] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  930.951282][T12862] R13: 0000000000000000 R14: 00007f3bf2b35f80 R15: 00007ffd2ea3f088
[  930.959260][T12862]  </TASK>
[  931.488493][  T732] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  931.565403][  T732] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 5 - 0
[  932.024299][ T9846] Bluetooth: hci4: command 0x040f tx timeout
[  932.449291][T12879] bridge_slave_1: left allmulticast mode
[  932.463514][T12879] bridge_slave_1: left promiscuous mode
[  932.469404][T12879] bridge0: port 2(bridge_slave_1) entered disabled state
[  932.532324][T12881] FAULT_INJECTION: forcing a failure.
[  932.532324][T12881] name failslab, interval 1, probability 0, space 0, times 0
[  932.545320][T12881] CPU: 1 UID: 0 PID: 12881 Comm: syz.1.1700 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  932.556111][T12881] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  932.566178][T12881] Call Trace:
[  932.569450][T12881]  <TASK>
[  932.572375][T12881]  dump_stack_lvl+0x241/0x360
[  932.577052][T12881]  ? __pfx_dump_stack_lvl+0x10/0x10
[  932.582252][T12881]  ? __pfx__printk+0x10/0x10
[  932.586842][T12881]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[  932.592814][T12881]  ? __pfx___might_resched+0x10/0x10
[  932.598125][T12881]  should_fail_ex+0x3b0/0x4e0
[  932.602802][T12881]  should_failslab+0xac/0x100
[  932.607470][T12881]  ? __alloc_skb+0x1c3/0x440
[  932.612057][T12881]  kmem_cache_alloc_node_noprof+0x71/0x320
[  932.617860][T12881]  __alloc_skb+0x1c3/0x440
[  932.622279][T12881]  ? __pfx___alloc_skb+0x10/0x10
[  932.627227][T12881]  ? netlink_autobind+0xd6/0x2f0
[  932.632249][T12881]  ? netlink_autobind+0x2b0/0x2f0
[  932.637272][T12881]  netlink_sendmsg+0x638/0xcb0
[  932.642038][T12881]  ? __pfx_netlink_sendmsg+0x10/0x10
[  932.647323][T12881]  ? __pfx_netlink_sendmsg+0x10/0x10
[  932.652598][T12881]  __sock_sendmsg+0x221/0x270
[  932.657274][T12881]  ____sys_sendmsg+0x52a/0x7e0
[  932.662037][T12881]  ? __pfx_____sys_sendmsg+0x10/0x10
[  932.667326][T12881]  __sys_sendmsg+0x292/0x380
[  932.671912][T12881]  ? __pfx___sys_sendmsg+0x10/0x10
[  932.677023][T12881]  ? __pfx_vfs_write+0x10/0x10
[  932.681801][T12881]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  932.688125][T12881]  ? do_syscall_64+0x100/0x230
[  932.692887][T12881]  ? do_syscall_64+0xb6/0x230
[  932.697557][T12881]  do_syscall_64+0xf3/0x230
[  932.702053][T12881]  ? clear_bhb_loop+0x35/0x90
[  932.706725][T12881]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  932.712613][T12881] RIP: 0033:0x7f4c5ed7dff9
[  932.717028][T12881] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  932.736636][T12881] RSP: 002b:00007f4c5fab9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  932.745057][T12881] RAX: ffffffffffffffda RBX: 00007f4c5ef35f80 RCX: 00007f4c5ed7dff9
[  932.753023][T12881] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000003
[  932.760985][T12881] RBP: 00007f4c5fab9090 R08: 0000000000000000 R09: 0000000000000000
[  932.768947][T12881] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  932.776910][T12881] R13: 0000000000000000 R14: 00007f4c5ef35f80 R15: 00007ffc64bf19a8
[  932.784886][T12881]  </TASK>
[  932.882516][  T732] bridge_slave_1: left allmulticast mode
[  933.031157][  T732] bridge_slave_1: left promiscuous mode
[  933.037778][  T732] bridge0: port 2(bridge_slave_1) entered disabled state
[  933.056097][  T732] bridge_slave_0: left allmulticast mode
[  933.130108][T12888] netlink: 209844 bytes leftover after parsing attributes in process `syz.0.1701'.
[  933.245120][  T732] bridge_slave_0: left promiscuous mode
[  933.254718][  T732] bridge0: port 1(bridge_slave_0) entered disabled state
[  933.422908][T11189] usb 1-1: new high-speed USB device number 33 using dummy_hcd
[  933.575679][T11189] usb 1-1: device descriptor read/64, error -71
[  933.984192][ T9846] Bluetooth: hci2: unexpected event 0x09 length: 10 > 3
[  933.986239][ T9846] Bluetooth: hci2: Malformed Event: 0x02
[  933.994414][T11189] usb 1-1: new high-speed USB device number 34 using dummy_hcd
[  935.545873][T11189] usb 1-1: device descriptor read/64, error -71
[  935.660017][T11189] usb usb1-port1: attempt power cycle
[  935.702555][T12909] FAULT_INJECTION: forcing a failure.
[  935.702555][T12909] name failslab, interval 1, probability 0, space 0, times 0
[  935.715641][T12909] CPU: 0 UID: 0 PID: 12909 Comm: syz.2.1707 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  935.726441][T12909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  935.736511][T12909] Call Trace:
[  935.739784][T12909]  <TASK>
[  935.742710][T12909]  dump_stack_lvl+0x241/0x360
[  935.747390][T12909]  ? __pfx_dump_stack_lvl+0x10/0x10
[  935.752596][T12909]  should_fail_ex+0x3b0/0x4e0
[  935.757271][T12909]  ? tomoyo_encode+0x26f/0x540
[  935.762027][T12909]  should_failslab+0xac/0x100
[  935.766712][T12909]  ? tomoyo_encode+0x26f/0x540
[  935.771496][T12909]  __kmalloc_noprof+0xd8/0x400
[  935.776262][T12909]  tomoyo_encode+0x26f/0x540
[  935.780852][T12909]  tomoyo_realpath_from_path+0x59e/0x5e0
[  935.786489][T12909]  tomoyo_path_number_perm+0x23a/0x880
[  935.791945][T12909]  ? tomoyo_path_number_perm+0x208/0x880
[  935.797569][T12909]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  935.803567][T12909]  ? __fget_files+0x29/0x470
[  935.808156][T12909]  ? __fget_files+0x3f3/0x470
[  935.812838][T12909]  security_file_ioctl+0xc6/0x2a0
[  935.817861][T12909]  __se_sys_ioctl+0x47/0x170
[  935.822449][T12909]  do_syscall_64+0xf3/0x230
[  935.826945][T12909]  ? clear_bhb_loop+0x35/0x90
[  935.831613][T12909]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  935.837501][T12909] RIP: 0033:0x7f3bf297dff9
[  935.841911][T12909] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  935.861521][T12909] RSP: 002b:00007f3bf36d3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  935.869943][T12909] RAX: ffffffffffffffda RBX: 00007f3bf2b35f80 RCX: 00007f3bf297dff9
[  935.877996][T12909] RDX: 0000000020000c40 RSI: 0000000080404518 RDI: 0000000000000003
[  935.886048][T12909] RBP: 00007f3bf36d3090 R08: 0000000000000000 R09: 0000000000000000
[  935.894021][T12909] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  935.901985][T12909] R13: 0000000000000000 R14: 00007f3bf2b35f80 R15: 00007ffd2ea3f088
[  935.909964][T12909]  </TASK>
[  935.913061][    C0] vkms_vblank_simulate: vblank timer overrun
[  935.920392][T12909] ERROR: Out of memory at tomoyo_realpath_from_path.
[  935.975702][ T5267] usb 2-1: new high-speed USB device number 27 using dummy_hcd
[  936.122595][ T5267] usb 2-1: config 0 has no interfaces?
[  936.135093][ T5267] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  936.162983][ T5267] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  936.175815][T11189] usb 1-1: new high-speed USB device number 35 using dummy_hcd
[  936.201742][ T5267] usb 2-1: config 0 descriptor??
[  936.309548][  T732] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  936.409055][  T732] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  936.535257][  T732] bond0 (unregistering): Released all slaves
[  936.742873][T11189] usb 1-1: device descriptor read/8, error -71
[  936.831117][T12900] netlink: 'syz.3.1704': attribute type 10 has an invalid length.
[  936.849252][T12900] 8021q: adding VLAN 0 to HW filter on device batadv0
[  936.889137][T12900] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  936.916928][T12903] bond0: entered promiscuous mode
[  936.922365][T12903] bond_slave_0: entered promiscuous mode
[  936.928346][T12903] bond_slave_1: entered promiscuous mode
[  936.934200][T12903] batadv0: entered promiscuous mode
[  936.959509][T12921] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1709'.
[  937.088859][T12921] bridge0: port 1(bridge_slave_0) entered disabled state
[  937.252927][T12921] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  937.276357][T12921] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  937.505161][T12921] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  937.515407][T12921] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  937.525354][T12921] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  937.534629][T12921] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  937.980878][T12921] netdevsim netdevsim0 netdevsim0: unset [1, 1] type 2 family 0 port 5 - 0
[  937.989858][T12921] netdevsim netdevsim0 netdevsim1: unset [1, 1] type 2 family 0 port 5 - 0
[  937.998932][T12921] netdevsim netdevsim0 netdevsim2: unset [1, 1] type 2 family 0 port 5 - 0
[  938.007794][T12921] netdevsim netdevsim0 netdevsim3: unset [1, 1] type 2 family 0 port 5 - 0
[  938.035475][T11189] usb 2-1: USB disconnect, device number 27
[  938.280310][  T732] hsr_slave_0: left promiscuous mode
[  938.432336][  T732] hsr_slave_1: left promiscuous mode
[  938.456724][  T732] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  938.472739][  T732] batman_adv: batadv0: Removing interface: batadv_slave_0
[  938.498564][  T732] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  938.515781][  T732] batman_adv: batadv0: Removing interface: batadv_slave_1
[  938.537101][T12940] netlink: 209844 bytes leftover after parsing attributes in process `syz.3.1715'.
[  938.560544][  T732] veth1_macvtap: left promiscuous mode
[  938.590259][  T732] veth0_macvtap: left promiscuous mode
[  938.614382][  T732] veth1_vlan: left promiscuous mode
[  938.636920][  T732] veth0_vlan: left promiscuous mode
[  938.871367][ T1848] usb 4-1: new high-speed USB device number 32 using dummy_hcd
[  939.095970][T12947] usb usb8: usbfs: process 12947 (syz.1.1716) did not claim interface 0 before use
[  940.434042][ T1848] usb 4-1: device descriptor read/64, error -71
[  940.691017][ T1848] usb 4-1: new high-speed USB device number 33 using dummy_hcd
[  943.029475][  T732] team0 (unregistering): Port device team_slave_1 removed
[  943.097707][  T732] team0 (unregistering): Port device team_slave_0 removed
[  943.955216][T12763] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  944.003189][T12763] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  944.094808][T12763] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  944.106504][T12763] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  944.297857][T12965] openvswitch: netlink: Message has 245 unknown bytes.
[  944.305063][T12965] openvswitch: netlink: Actions may not be safe on all matching packets
[  944.852434][T12763] 8021q: adding VLAN 0 to HW filter on device bond0
[  945.504650][T12763] 8021q: adding VLAN 0 to HW filter on device team0
[  945.592659][T12975] FAULT_INJECTION: forcing a failure.
[  945.592659][T12975] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  945.651050][ T6453] bridge0: port 1(bridge_slave_0) entered blocking state
[  945.658285][ T6453] bridge0: port 1(bridge_slave_0) entered forwarding state
[  945.691946][T12975] CPU: 0 UID: 0 PID: 12975 Comm: syz.3.1723 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  945.702740][T12975] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  945.712781][T12975] Call Trace:
[  945.716043][T12975]  <TASK>
[  945.718964][T12975]  dump_stack_lvl+0x241/0x360
[  945.723629][T12975]  ? __pfx_dump_stack_lvl+0x10/0x10
[  945.728810][T12975]  ? __pfx__printk+0x10/0x10
[  945.733402][T12975]  ? __pfx_lock_release+0x10/0x10
[  945.738431][T12975]  ? rcu_is_watching+0x15/0xb0
[  945.743197][T12975]  should_fail_ex+0x3b0/0x4e0
[  945.747890][T12975]  _copy_from_iter+0x1ed/0x1d60
[  945.752749][T12975]  ? alloc_pages_mpol_noprof+0x417/0x680
[  945.758387][T12975]  ? __pfx__copy_from_iter+0x10/0x10
[  945.763671][T12975]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  945.769655][T12975]  ? alloc_pages_noprof+0xef/0x170
[  945.774759][T12975]  ? page_copy_sane+0x46/0x260
[  945.779520][T12975]  copy_page_from_iter+0x7a/0x100
[  945.784543][T12975]  tun_get_user+0x2046/0x47e0
[  945.789220][T12975]  ? tun_get_user+0x871/0x47e0
[  945.793990][T12975]  ? __lock_acquire+0x1384/0x2050
[  945.799023][T12975]  ? __pfx_tun_get_user+0x10/0x10
[  945.804053][T12975]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  945.809509][T12975]  ? tun_get+0x1e/0x2f0
[  945.813657][T12975]  ? __pfx_lock_release+0x10/0x10
[  945.818686][T12975]  ? tun_get+0x1e/0x2f0
[  945.822835][T12975]  ? tun_get+0x27d/0x2f0
[  945.827075][T12975]  tun_chr_write_iter+0x10d/0x1f0
[  945.832095][T12975]  vfs_write+0xa6d/0xc90
[  945.836338][T12975]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  945.841877][T12975]  ? __pfx_vfs_write+0x10/0x10
[  945.846643][T12975]  ? fdget_pos+0x19a/0x320
[  945.851063][T12975]  ksys_write+0x183/0x2b0
[  945.855391][T12975]  ? __pfx_ksys_write+0x10/0x10
[  945.860237][T12975]  ? do_syscall_64+0x100/0x230
[  945.864994][T12975]  ? do_syscall_64+0xb6/0x230
[  945.869663][T12975]  do_syscall_64+0xf3/0x230
[  945.874155][T12975]  ? clear_bhb_loop+0x35/0x90
[  945.878825][T12975]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  945.884721][T12975] RIP: 0033:0x7f01fdb7cadf
[  945.889141][T12975] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48
[  945.908747][T12975] RSP: 002b:00007f01fe943000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  945.917164][T12975] RAX: ffffffffffffffda RBX: 00007f01fdd35f80 RCX: 00007f01fdb7cadf
[  945.925130][T12975] RDX: 000000000000004a RSI: 0000000020000b40 RDI: 00000000000000c8
[  945.933093][T12975] RBP: 00007f01fe943090 R08: 0000000000000000 R09: 0000000000000000
[  945.941063][T12975] R10: 000000000000004a R11: 0000000000000293 R12: 0000000000000001
[  945.949024][T12975] R13: 0000000000000000 R14: 00007f01fdd35f80 R15: 00007ffdc02bf748
[  945.957053][T12975]  </TASK>
[  945.960226][    C0] vkms_vblank_simulate: vblank timer overrun
[  945.961779][ T6453] bridge0: port 2(bridge_slave_1) entered blocking state
[  945.973346][ T6453] bridge0: port 2(bridge_slave_1) entered forwarding state
[  946.025113][T12977] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1724'.
[  946.279243][T12977] bridge0: port 2(bridge_slave_1) entered disabled state
[  946.288004][T12977] bridge0: port 1(bridge_slave_0) entered disabled state
[  946.485970][T12977] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  946.509443][T12977] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  946.710921][T12977] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  946.732091][T12977] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  946.744681][T12977] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  946.754762][T12977] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  946.769624][T12977] geneve2: left allmulticast mode
[  946.791448][T12977] netdevsim netdevsim2 netdevsim0: unset [1, 1] type 2 family 0 port 5 - 0
[  946.806083][T12977] netdevsim netdevsim2 netdevsim1: unset [1, 1] type 2 family 0 port 5 - 0
[  946.816775][T12977] netdevsim netdevsim2 netdevsim2: unset [1, 1] type 2 family 0 port 5 - 0
[  946.826647][T12977] netdevsim netdevsim2 netdevsim3: unset [1, 1] type 2 family 0 port 5 - 0
[  946.924040][T12763] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  946.955248][T12763] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  948.672135][T12763] 8021q: adding VLAN 0 to HW filter on device batadv0
[  948.692887][T13014] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1734'.
[  948.705685][T13014] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[  948.784770][T13018] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1734'.
[  948.806752][T12420] usb 2-1: new high-speed USB device number 28 using dummy_hcd
[  948.959854][T12420] usb 2-1: Using ep0 maxpacket: 32
[  948.967007][T12420] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x5 has an invalid bInterval 0, changing to 7
[  948.980733][T12420] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  949.005952][T12420] usb 2-1: New USB device found, idVendor=06cd, idProduct=0112, bcdDevice=d2.a2
[  949.016197][T12420] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  949.024222][T12420] usb 2-1: Product: syz
[  949.047639][T12420] usb 2-1: Manufacturer: syz
[  949.052457][T12420] usb 2-1: SerialNumber: syz
[  949.072984][T12420] usb 2-1: config 0 descriptor??
[  949.094028][T12420] keyspan 2-1:0.0: Keyspan 1 port adapter converter detected
[  949.103171][T12420] keyspan 2-1:0.0: found no endpoint descriptor for endpoint 87
[  949.112694][T12763] veth0_vlan: entered promiscuous mode
[  949.127497][T12763] veth1_vlan: entered promiscuous mode
[  949.133408][T12420] keyspan 2-1:0.0: found no endpoint descriptor for endpoint 7
[  949.151178][T12420] keyspan 2-1:0.0: found no endpoint descriptor for endpoint 81
[  949.167728][T12420] keyspan 2-1:0.0: found no endpoint descriptor for endpoint 1
[  949.177699][T12763] veth0_macvtap: entered promiscuous mode
[  949.186050][T12420] keyspan 2-1:0.0: found no endpoint descriptor for endpoint 2
[  949.201737][T12763] veth1_macvtap: entered promiscuous mode
[  949.208411][T12420] keyspan 2-1:0.0: found no endpoint descriptor for endpoint 85
[  949.226967][T12420] usb 2-1: Keyspan 1 port adapter converter now attached to ttyUSB0
[  949.238257][T12763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  949.253616][T12763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  949.265253][T12763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  949.275758][T12763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  949.285724][T12763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  949.296244][T12763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  949.308219][T12763] batman_adv: batadv0: Interface activated: batadv_slave_0
[  949.358553][T12763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  949.512863][T12763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  949.568810][T12763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  949.645738][T12763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  949.762503][T12763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  949.851365][T12763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  949.898865][T12763] batman_adv: batadv0: Interface activated: batadv_slave_1
[  949.929533][ T9846] Bluetooth: hci6: unexpected event 0x09 length: 10 > 3
[  949.932353][ T9846] Bluetooth: hci6: Malformed Event: 0x02
[  949.968266][T12763] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  949.977096][T12763] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  949.986236][T12763] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  949.995275][T12763] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  950.041948][T12420] usb 2-1: USB disconnect, device number 28
[  950.053718][T12420] keyspan_1 ttyUSB0: Keyspan 1 port adapter converter now disconnected from ttyUSB0
[  950.063736][T12420] keyspan 2-1:0.0: device disconnected
[  950.281844][ T5388] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  950.281871][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  950.297915][ T5388] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  950.345643][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  950.356424][T13038] trusted_key: encrypted_key: insufficient parameters specified
[  951.290208][T13055] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1742'.
[  951.314883][T13056] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1740'.
[  951.362659][T13056] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1740'.
[  951.411782][T13056] netdevsim netdevsim3 netdevsim0: set [1, 1] type 2 family 0 port 5 - 0
[  951.432416][T13056] netdevsim netdevsim3 netdevsim1: set [1, 1] type 2 family 0 port 5 - 0
[  951.461367][T13056] netdevsim netdevsim3 netdevsim2: set [1, 1] type 2 family 0 port 5 - 0
[  951.497888][T13056] netdevsim netdevsim3 netdevsim3: set [1, 1] type 2 family 0 port 5 - 0
[  951.559021][T13065] overlayfs: overlapping lowerdir path
[  951.680595][T13063] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1743'.
[  951.854954][T13063] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1743'.
[  952.423951][T13077] trusted_key: encrypted_key: insufficient parameters specified
[  953.421339][T13100] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1754'.
[  953.548085][T13109] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1755'.
[  953.569011][T13109] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1755'.
[  953.599267][T13113] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1757'.
[  953.603248][T13110] random: crng reseeded on system resumption
[  953.645543][T13113] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1757'.
[  957.437170][T13150] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1768'.
[  957.467077][T13153] FAULT_INJECTION: forcing a failure.
[  957.467077][T13153] name failslab, interval 1, probability 0, space 0, times 0
[  957.495693][T13153] CPU: 1 UID: 0 PID: 13153 Comm: syz.4.1769 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  957.506507][T13153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  957.516584][T13153] Call Trace:
[  957.519883][T13153]  <TASK>
[  957.522832][T13153]  dump_stack_lvl+0x241/0x360
[  957.527531][T13153]  ? __pfx_dump_stack_lvl+0x10/0x10
[  957.532742][T13153]  ? __pfx__printk+0x10/0x10
[  957.537349][T13153]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[  957.543348][T13153]  ? __pfx___might_resched+0x10/0x10
[  957.548662][T13153]  should_fail_ex+0x3b0/0x4e0
[  957.553366][T13153]  should_failslab+0xac/0x100
[  957.558062][T13153]  ? __alloc_skb+0x1c3/0x440
[  957.562673][T13153]  kmem_cache_alloc_node_noprof+0x71/0x320
[  957.568496][T13153]  ? validate_chain+0x11e/0x5920
[  957.573455][T13153]  __alloc_skb+0x1c3/0x440
[  957.577891][T13153]  ? __pfx___alloc_skb+0x10/0x10
[  957.582854][T13153]  ? __pfx_validate_chain+0x10/0x10
[  957.588073][T13153]  alloc_skb_with_frags+0xc3/0x820
[  957.593222][T13153]  sock_alloc_send_pskb+0x91a/0xa60
[  957.598463][T13153]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  957.604211][T13153]  ? do_raw_spin_unlock+0x13c/0x8b0
[  957.609443][T13153]  unix_dgram_sendmsg+0x6d3/0x1f80
[  957.614580][T13153]  ? __pfx_smack_socket_sendmsg+0x10/0x10
[  957.620323][T13153]  ? tomoyo_socket_sendmsg_permission+0x288/0x420
[  957.626767][T13153]  ? __pfx_unix_dgram_sendmsg+0x10/0x10
[  957.632356][T13153]  ? __pfx_unix_dgram_sendmsg+0x10/0x10
[  957.637921][T13153]  __sock_sendmsg+0x221/0x270
[  957.642621][T13153]  ____sys_sendmsg+0x52a/0x7e0
[  957.647412][T13153]  ? __pfx_____sys_sendmsg+0x10/0x10
[  957.652736][T13153]  __sys_sendmsg+0x292/0x380
[  957.657347][T13153]  ? __pfx___sys_sendmsg+0x10/0x10
[  957.662486][T13153]  ? __pfx_vfs_write+0x10/0x10
[  957.667305][T13153]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  957.673668][T13153]  ? do_syscall_64+0x100/0x230
[  957.678460][T13153]  ? do_syscall_64+0xb6/0x230
[  957.683163][T13153]  do_syscall_64+0xf3/0x230
[  957.687685][T13153]  ? clear_bhb_loop+0x35/0x90
[  957.692385][T13153]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  957.698305][T13153] RIP: 0033:0x7f593917dff9
[  957.702738][T13153] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  957.722370][T13153] RSP: 002b:00007f5939e9e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  957.730814][T13153] RAX: ffffffffffffffda RBX: 00007f5939335f80 RCX: 00007f593917dff9
[  957.738818][T13153] RDX: 0000000000000000 RSI: 0000000020000900 RDI: 0000000000000004
[  957.746811][T13153] RBP: 00007f5939e9e090 R08: 0000000000000000 R09: 0000000000000000
[  957.754787][T13153] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  957.762782][T13153] R13: 0000000000000000 R14: 00007f5939335f80 R15: 00007ffc753e3b08
[  957.770781][T13153]  </TASK>
[  957.876586][T13163] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1771'.
[  958.883410][T13178] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1777'.
[  959.012658][T13189] random: crng reseeded on system resumption
[  959.053171][T13191] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1781'.
[  959.774419][T13198] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  960.568471][ T1268] ieee802154 phy1 wpan1: encryption failed: -22
[  961.797492][T13214] FAULT_INJECTION: forcing a failure.
[  961.797492][T13214] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  961.819065][T13214] CPU: 0 UID: 0 PID: 13214 Comm: syz.4.1786 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  961.829868][T13214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  961.839932][T13214] Call Trace:
[  961.843216][T13214]  <TASK>
[  961.846152][T13214]  dump_stack_lvl+0x241/0x360
[  961.850844][T13214]  ? __pfx_dump_stack_lvl+0x10/0x10
[  961.856051][T13214]  ? __pfx__printk+0x10/0x10
[  961.860658][T13214]  ? __pfx_lock_release+0x10/0x10
[  961.865705][T13214]  should_fail_ex+0x3b0/0x4e0
[  961.870452][T13214]  _copy_from_user+0x2f/0xe0
[  961.875073][T13214]  copy_msghdr_from_user+0xae/0x680
[  961.880302][T13214]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  961.886325][T13214]  __sys_sendmmsg+0x36d/0x730
[  961.891029][T13214]  ? __pfx___sys_sendmmsg+0x10/0x10
[  961.896253][T13214]  ? __pfx_lock_release+0x10/0x10
[  961.901297][T13214]  ? kstrtouint_from_user+0x128/0x190
[  961.906704][T13214]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  961.912607][T13214]  ? ksys_write+0x229/0x2b0
[  961.917110][T13214]  ? __pfx_lock_release+0x10/0x10
[  961.922147][T13214]  ? vfs_write+0x7bf/0xc90
[  961.926561][T13214]  ? kmem_cache_free+0x1a2/0x420
[  961.931493][T13214]  ? __mutex_unlock_slowpath+0x21d/0x750
[  961.937119][T13214]  ? __fget_files+0x3f3/0x470
[  961.941793][T13214]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  961.947766][T13214]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  961.954084][T13214]  ? do_syscall_64+0x100/0x230
[  961.958833][T13214]  __x64_sys_sendmmsg+0xa0/0xb0
[  961.963686][T13214]  do_syscall_64+0xf3/0x230
[  961.968188][T13214]  ? clear_bhb_loop+0x35/0x90
[  961.972858][T13214]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  961.978747][T13214] RIP: 0033:0x7f593917dff9
[  961.983157][T13214] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  962.002754][T13214] RSP: 002b:00007f5939e9e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  962.011161][T13214] RAX: ffffffffffffffda RBX: 00007f5939335f80 RCX: 00007f593917dff9
[  962.019131][T13214] RDX: 0000000000000001 RSI: 0000000020007180 RDI: 0000000000000004
[  962.027089][T13214] RBP: 00007f5939e9e090 R08: 0000000000000000 R09: 0000000000000000
[  962.035049][T13214] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  962.043011][T13214] R13: 0000000000000000 R14: 00007f5939335f80 R15: 00007ffc753e3b08
[  962.050986][T13214]  </TASK>
[  962.054166][    C0] vkms_vblank_simulate: vblank timer overrun
[  962.476068][T12420] usb 5-1: new high-speed USB device number 29 using dummy_hcd
[  962.724063][T13234] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1796'.
[  962.745434][T12420] usb 5-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  962.766993][T12420] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  962.790236][T12420] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  962.799493][T12420] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  962.842789][T12420] usb 5-1: config 0 descriptor??
[  962.874571][T12420] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[  964.583133][T13254] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  964.600462][T13254] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  965.942759][T13266] FAULT_INJECTION: forcing a failure.
[  965.942759][T13266] name failslab, interval 1, probability 0, space 0, times 0
[  966.000987][T13266] CPU: 0 UID: 0 PID: 13266 Comm: syz.1.1802 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  966.011820][T13266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  966.021889][T13266] Call Trace:
[  966.025176][T13266]  <TASK>
[  966.028116][T13266]  dump_stack_lvl+0x241/0x360
[  966.032811][T13266]  ? __pfx_dump_stack_lvl+0x10/0x10
[  966.038022][T13266]  ? __pfx__printk+0x10/0x10
[  966.042633][T13266]  ? fs_reclaim_acquire+0x93/0x140
[  966.047758][T13266]  ? __pfx___might_resched+0x10/0x10
[  966.053059][T13266]  ? dynamic_dname+0x141/0x1b0
[  966.057837][T13266]  should_fail_ex+0x3b0/0x4e0
[  966.062553][T13266]  ? tomoyo_encode+0x26f/0x540
[  966.067350][T13266]  should_failslab+0xac/0x100
[  966.072053][T13266]  ? tomoyo_encode+0x26f/0x540
[  966.076839][T13266]  __kmalloc_noprof+0xd8/0x400
[  966.081629][T13266]  tomoyo_encode+0x26f/0x540
[  966.086242][T13266]  ? __pfx_sockfs_dname+0x10/0x10
[  966.091289][T13266]  tomoyo_realpath_from_path+0x59e/0x5e0
[  966.096958][T13266]  tomoyo_path_number_perm+0x23a/0x880
[  966.102463][T13266]  ? tomoyo_path_number_perm+0x208/0x880
[  966.108120][T13266]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  966.114165][T13266]  ? __fget_files+0x29/0x470
[  966.118791][T13266]  ? __fget_files+0x3f3/0x470
[  966.123505][T13266]  security_file_ioctl+0xc6/0x2a0
[  966.128558][T13266]  __se_sys_ioctl+0x47/0x170
[  966.133172][T13266]  do_syscall_64+0xf3/0x230
[  966.137692][T13266]  ? clear_bhb_loop+0x35/0x90
[  966.142382][T13266]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  966.148310][T13266] RIP: 0033:0x7f4c5ed7dff9
[  966.152748][T13266] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  966.164305][ T1848] usb 5-1: USB disconnect, device number 29
[  966.172444][T13266] RSP: 002b:00007f4c5fab9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  966.172474][T13266] RAX: ffffffffffffffda RBX: 00007f4c5ef35f80 RCX: 00007f4c5ed7dff9
[  966.172490][T13266] RDX: 0000000020000100 RSI: 00000000400452c8 RDI: 0000000000000004
[  966.172501][T13266] RBP: 00007f4c5fab9090 R08: 0000000000000000 R09: 0000000000000000
[  966.172513][T13266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  966.172524][T13266] R13: 0000000000000000 R14: 00007f4c5ef35f80 R15: 00007ffc64bf19a8
[  966.172552][T13266]  </TASK>
[  966.172677][    C0] vkms_vblank_simulate: vblank timer overrun
[  966.235906][    C0] vkms_vblank_simulate: vblank timer overrun
[  966.315417][T13266] ERROR: Out of memory at tomoyo_realpath_from_path.
[  968.901231][ T1848] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[  969.912765][ T1848] usb 5-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  969.928434][ T1848] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  970.143944][ T1848] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  970.153365][ T1848] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  970.170554][ T1848] usb 5-1: config 0 descriptor??
[  970.182476][ T1848] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[  970.204684][T13319] loop2: detected capacity change from 0 to 7
[  970.214971][T13319] Dev loop2: unable to read RDB block 7
[  970.221810][T13319]  loop2: unable to read partition table
[  970.227695][T13319] loop2: partition table beyond EOD, truncated
[  970.234296][T13319] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  970.576874][ T1848] usb 4-1: new high-speed USB device number 34 using dummy_hcd
[  971.405183][T13335] FAULT_INJECTION: forcing a failure.
[  971.405183][T13335] name failslab, interval 1, probability 0, space 0, times 0
[  971.611374][T13335] CPU: 0 UID: 0 PID: 13335 Comm: syz.2.1824 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  971.622195][T13335] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  971.632261][T13335] Call Trace:
[  971.635546][T13335]  <TASK>
[  971.638483][T13335]  dump_stack_lvl+0x241/0x360
[  971.643194][T13335]  ? __pfx_dump_stack_lvl+0x10/0x10
[  971.648407][T13335]  ? __pfx__printk+0x10/0x10
[  971.653017][T13335]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[  971.659012][T13335]  ? __pfx___might_resched+0x10/0x10
[  971.664323][T13335]  should_fail_ex+0x3b0/0x4e0
[  971.669022][T13335]  should_failslab+0xac/0x100
[  971.673708][T13335]  ? __alloc_skb+0x1c3/0x440
[  971.678308][T13335]  kmem_cache_alloc_node_noprof+0x71/0x320
[  971.684125][T13335]  ? validate_chain+0x11e/0x5920
[  971.689079][T13335]  __alloc_skb+0x1c3/0x440
[  971.693515][T13335]  ? __pfx___alloc_skb+0x10/0x10
[  971.698466][T13335]  ? __pfx_validate_chain+0x10/0x10
[  971.703684][T13335]  alloc_skb_with_frags+0xc3/0x820
[  971.708822][T13335]  sock_alloc_send_pskb+0x91a/0xa60
[  971.714050][T13335]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  971.719788][T13335]  ? do_raw_spin_unlock+0x13c/0x8b0
[  971.725009][T13335]  unix_dgram_sendmsg+0x6d3/0x1f80
[  971.730143][T13335]  ? __pfx_smack_socket_sendmsg+0x10/0x10
[  971.735886][T13335]  ? tomoyo_socket_sendmsg_permission+0x288/0x420
[  971.742335][T13335]  ? __pfx_unix_dgram_sendmsg+0x10/0x10
[  971.747901][T13335]  ? __pfx_lock_release+0x10/0x10
[  971.752953][T13335]  ? unix_seqpacket_sendmsg+0x110/0x1e0
[  971.758526][T13335]  ? __pfx_unix_seqpacket_sendmsg+0x10/0x10
[  971.764426][T13335]  __sock_sendmsg+0x221/0x270
[  971.769122][T13335]  ____sys_sendmsg+0x52a/0x7e0
[  971.773910][T13335]  ? __pfx_____sys_sendmsg+0x10/0x10
[  971.779221][T13335]  __sys_sendmsg+0x292/0x380
[  971.783825][T13335]  ? __pfx___sys_sendmsg+0x10/0x10
[  971.788956][T13335]  ? __pfx_vfs_write+0x10/0x10
[  971.793757][T13335]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  971.800104][T13335]  ? do_syscall_64+0x100/0x230
[  971.804883][T13335]  ? do_syscall_64+0xb6/0x230
[  971.809570][T13335]  do_syscall_64+0xf3/0x230
[  971.814084][T13335]  ? clear_bhb_loop+0x35/0x90
[  971.818771][T13335]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  971.824680][T13335] RIP: 0033:0x7f3bf297dff9
[  971.829104][T13335] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  971.848729][T13335] RSP: 002b:00007f3bf36d3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  971.857165][T13335] RAX: ffffffffffffffda RBX: 00007f3bf2b35f80 RCX: 00007f3bf297dff9
[  971.865149][T13335] RDX: 000000000004c000 RSI: 00000000200002c0 RDI: 0000000000000005
[  971.873131][T13335] RBP: 00007f3bf36d3090 R08: 0000000000000000 R09: 0000000000000000
[  971.881111][T13335] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  971.889093][T13335] R13: 0000000000000000 R14: 00007f3bf2b35f80 R15: 00007ffd2ea3f088
[  971.897095][T13335]  </TASK>
[  971.900201][    C0] vkms_vblank_simulate: vblank timer overrun
[  972.211480][ T1848] usb 4-1: Using ep0 maxpacket: 16
[  972.220643][ T1848] usb 4-1: unable to get BOS descriptor or descriptor too short
[  972.231861][ T1848] usb 4-1: config 7 has an invalid interface number: 142 but max is 0
[  972.243402][ T1848] usb 4-1: config 7 has no interface number 0
[  972.258385][ T1848] usb 4-1: config 7 interface 142 has no altsetting 0
[  972.273100][ T1848] usb 4-1: New USB device found, idVendor=0499, idProduct=2e03, bcdDevice=b6.b4
[  972.326725][ T1848] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  972.351078][ T1848] usb 4-1: Product: syz
[  972.359729][ T1848] usb 4-1: Manufacturer: syz
[  972.373977][ T1848] usb 4-1: SerialNumber: syz
[  972.659825][   T51] usb 2-1: new high-speed USB device number 29 using dummy_hcd
[  972.847870][T12420] usb 5-1: USB disconnect, device number 30
[  972.916537][   T51] usb 2-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  972.931735][   T51] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  973.113597][ T1848] usb 4-1: USB disconnect, device number 34
[  973.128055][   T51] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  973.156631][   T51] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  973.294737][   T51] usb 2-1: config 0 descriptor??
[  973.304253][   T51] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  974.277434][T13361] FAULT_INJECTION: forcing a failure.
[  974.277434][T13361] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  974.290750][T13361] CPU: 1 UID: 0 PID: 13361 Comm: syz.3.1832 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  974.301586][T13361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  974.311643][T13361] Call Trace:
[  974.314927][T13361]  <TASK>
[  974.317854][T13361]  dump_stack_lvl+0x241/0x360
[  974.322530][T13361]  ? __pfx_dump_stack_lvl+0x10/0x10
[  974.327719][T13361]  ? __pfx__printk+0x10/0x10
[  974.332306][T13361]  ? __pfx_lock_release+0x10/0x10
[  974.337323][T13361]  ? __lock_acquire+0x1384/0x2050
[  974.342339][T13361]  should_fail_ex+0x3b0/0x4e0
[  974.347010][T13361]  _copy_from_user+0x2f/0xe0
[  974.351588][T13361]  kstrtouint_from_user+0xc6/0x190
[  974.356685][T13361]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  974.362490][T13361]  ? __pfx_lock_acquire+0x10/0x10
[  974.367508][T13361]  proc_fail_nth_write+0xaa/0x2d0
[  974.372525][T13361]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  974.378497][T13361]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  974.384485][T13361]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  974.390103][T13361]  vfs_write+0x29c/0xc90
[  974.394438][T13361]  ? __pfx_vfs_write+0x10/0x10
[  974.399211][T13361]  ? __fget_files+0x3f3/0x470
[  974.403888][T13361]  ? fdget_pos+0x24e/0x320
[  974.408304][T13361]  ksys_write+0x183/0x2b0
[  974.412629][T13361]  ? __pfx_ksys_write+0x10/0x10
[  974.417468][T13361]  ? do_syscall_64+0x100/0x230
[  974.422220][T13361]  ? do_syscall_64+0xb6/0x230
[  974.426882][T13361]  do_syscall_64+0xf3/0x230
[  974.431371][T13361]  ? clear_bhb_loop+0x35/0x90
[  974.436034][T13361]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  974.441923][T13361] RIP: 0033:0x7f01fdb7cadf
[  974.446325][T13361] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48
[  974.465917][T13361] RSP: 002b:00007f01fe922030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  974.474321][T13361] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f01fdb7cadf
[  974.482281][T13361] RDX: 0000000000000001 RSI: 00007f01fe9220a0 RDI: 0000000000000003
[  974.490238][T13361] RBP: 00007f01fe922090 R08: 0000000000000000 R09: 0000000000000000
[  974.498195][T13361] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  974.506163][T13361] R13: 0000000000000001 R14: 00007f01fdd36058 R15: 00007ffdc02bf748
[  974.514138][T13361]  </TASK>
[  976.107061][ T5217] Bluetooth: hci4: unexpected event for opcode 0x0000
[  976.291331][T13378] openvswitch: netlink: Message has 245 unknown bytes.
[  976.298471][T13378] openvswitch: netlink: Actions may not be safe on all matching packets
[  977.080392][ T1848] usb 2-1: USB disconnect, device number 29
[  978.006381][ T5217] Bluetooth: hci0: command 0x0406 tx timeout
[  978.624298][ T9846] Bluetooth: hci2: unexpected event 0x09 length: 10 > 3
[  978.624374][ T9846] Bluetooth: hci2: Malformed Event: 0x02
[  978.764581][T12420] usb 4-1: new high-speed USB device number 35 using dummy_hcd
[  978.764806][ T5262] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[  978.927125][T12420] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xD has invalid wMaxPacketSize 0
[  979.126102][T12420] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0xD has invalid maxpacket 0
[  979.212929][T12420] usb 4-1: New USB device found, idVendor=a9c7, idProduct=8501, bcdDevice=16.64
[  979.263109][T12420] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  979.298519][T12420] usb 4-1: Product: syz
[  979.418932][ T5262] usb 3-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  979.425222][T12420] usb 4-1: Manufacturer: syz
[  979.439700][ T5262] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  979.447601][T12420] usb 4-1: SerialNumber: syz
[  979.453213][ T5262] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  979.466043][T12420] usb 4-1: config 0 descriptor??
[  979.466712][ T5262] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  979.494830][ T5262] usb 3-1: config 0 descriptor??
[  979.512475][T12420] usb 4-1: Found UVC 0.00 device syz (a9c7:8501)
[  979.519297][ T5262] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
[  979.527252][T12420] usb 4-1: No valid video chain found.
[  979.715926][T13385] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  979.728298][T13417] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1845'.
[  979.748802][T13385] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  979.774693][    T8] usb 4-1: USB disconnect, device number 35
[  979.972649][ T9846] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  979.981471][ T9846] Bluetooth: hci4: Injecting HCI hardware error event
[  979.990868][ T9846] Bluetooth: hci4: hardware error 0x00
[  980.983314][T13430] x_tables: unsorted underflow at hook 1
[  981.961492][ T9846] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  982.082194][ T5262] usb 3-1: USB disconnect, device number 19
[  982.259021][T13438] FAULT_INJECTION: forcing a failure.
[  982.259021][T13438] name failslab, interval 1, probability 0, space 0, times 0
[  982.278946][T13438] CPU: 1 UID: 0 PID: 13438 Comm: syz.0.1852 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  982.289778][T13438] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  982.299857][T13438] Call Trace:
[  982.303147][T13438]  <TASK>
[  982.306085][T13438]  dump_stack_lvl+0x241/0x360
[  982.310813][T13438]  ? __pfx_dump_stack_lvl+0x10/0x10
[  982.316030][T13438]  ? __pfx__printk+0x10/0x10
[  982.320645][T13438]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[  982.326656][T13438]  ? __pfx___might_resched+0x10/0x10
[  982.331970][T13438]  should_fail_ex+0x3b0/0x4e0
[  982.336668][T13438]  should_failslab+0xac/0x100
[  982.341358][T13438]  ? __alloc_skb+0x1c3/0x440
[  982.345958][T13438]  kmem_cache_alloc_node_noprof+0x71/0x320
[  982.351783][T13438]  __alloc_skb+0x1c3/0x440
[  982.356222][T13438]  ? __pfx___alloc_skb+0x10/0x10
[  982.361171][T13438]  ? netlink_autobind+0xd6/0x2f0
[  982.366120][T13438]  ? netlink_autobind+0x2b0/0x2f0
[  982.371163][T13438]  netlink_sendmsg+0x638/0xcb0
[  982.375957][T13438]  ? __pfx_netlink_sendmsg+0x10/0x10
[  982.381277][T13438]  ? __pfx_netlink_sendmsg+0x10/0x10
[  982.386573][T13438]  __sock_sendmsg+0x221/0x270
[  982.391270][T13438]  ____sys_sendmsg+0x52a/0x7e0
[  982.396062][T13438]  ? __pfx_____sys_sendmsg+0x10/0x10
[  982.401381][T13438]  __sys_sendmsg+0x292/0x380
[  982.406020][T13438]  ? __pfx___sys_sendmsg+0x10/0x10
[  982.411154][T13438]  ? __pfx_vfs_write+0x10/0x10
[  982.415956][T13438]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  982.422303][T13438]  ? do_syscall_64+0x100/0x230
[  982.427087][T13438]  ? do_syscall_64+0xb6/0x230
[  982.431775][T13438]  do_syscall_64+0xf3/0x230
[  982.436290][T13438]  ? clear_bhb_loop+0x35/0x90
[  982.440980][T13438]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  982.446888][T13438] RIP: 0033:0x7f4f5537dff9
[  982.451312][T13438] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  982.470934][T13438] RSP: 002b:00007f4f561df038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  982.479376][T13438] RAX: ffffffffffffffda RBX: 00007f4f55535f80 RCX: 00007f4f5537dff9
[  982.487538][T13438] RDX: 0000000000000000 RSI: 0000000020001200 RDI: 0000000000000003
[  982.495529][T13438] RBP: 00007f4f561df090 R08: 0000000000000000 R09: 0000000000000000
[  982.503512][T13438] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  982.511497][T13438] R13: 0000000000000000 R14: 00007f4f55535f80 R15: 00007ffe1eeed528
[  982.519524][T13438]  </TASK>
[  982.936649][ T9846] Bluetooth: hci2: command 0x0406 tx timeout
[  983.791621][T13457] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1857'.
[  984.366363][T13462] xt_TPROXY: Can be used only with -p tcp or -p udp
[  984.543860][T13466] netlink: 'syz.2.1860': attribute type 29 has an invalid length.
[  985.471747][T13473] netlink: 'syz.2.1860': attribute type 29 has an invalid length.
[  986.834315][ T5262] usb 3-1: new full-speed USB device number 20 using dummy_hcd
[  987.283208][ T1848] usb 2-1: new high-speed USB device number 30 using dummy_hcd
[  987.614450][ T5262] usb 3-1: unable to get BOS descriptor or descriptor too short
[  987.625436][ T1848] usb 2-1: Using ep0 maxpacket: 8
[  987.765869][ T5262] usb 3-1: unable to read config index 0 descriptor/start: -71
[  987.784322][ T5262] usb 3-1: can't read configurations, error -71
[  987.862076][ T1848] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  987.873260][ T1848] usb 2-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  987.882407][ T1848] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  987.901295][ T1848] usb 2-1: config 0 descriptor??
[  988.077632][T13505] FAULT_INJECTION: forcing a failure.
[  988.077632][T13505] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  988.095366][T13505] CPU: 0 UID: 0 PID: 13505 Comm: syz.2.1870 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  988.106167][T13505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  988.116240][T13505] Call Trace:
[  988.119537][T13505]  <TASK>
[  988.122491][T13505]  dump_stack_lvl+0x241/0x360
[  988.127197][T13505]  ? __pfx_dump_stack_lvl+0x10/0x10
[  988.132425][T13505]  ? __pfx__printk+0x10/0x10
[  988.137045][T13505]  ? __pfx_lock_release+0x10/0x10
[  988.142103][T13505]  should_fail_ex+0x3b0/0x4e0
[  988.146816][T13505]  strncpy_from_user+0x36/0x250
[  988.151707][T13505]  bpf_raw_tp_link_attach+0x21d/0x6e0
[  988.157110][T13505]  ? __pfx_bpf_raw_tp_link_attach+0x10/0x10
[  988.163054][T13505]  ? fput+0x1a8/0x230
[  988.167064][T13505]  bpf_raw_tracepoint_open+0x177/0x1f0
[  988.172552][T13505]  __sys_bpf+0x3c0/0x810
[  988.176822][T13505]  ? __pfx___sys_bpf+0x10/0x10
[  988.181617][T13505]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  988.187613][T13505]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  988.193967][T13505]  ? do_syscall_64+0x100/0x230
[  988.198755][T13505]  __x64_sys_bpf+0x7c/0x90
[  988.203195][T13505]  do_syscall_64+0xf3/0x230
[  988.207709][T13505]  ? clear_bhb_loop+0x35/0x90
[  988.212382][T13505]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  988.218289][T13505] RIP: 0033:0x7f3bf297dff9
[  988.222708][T13505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  988.242332][T13505] RSP: 002b:00007f3bf36d3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  988.250772][T13505] RAX: ffffffffffffffda RBX: 00007f3bf2b35f80 RCX: 00007f3bf297dff9
[  988.258770][T13505] RDX: 0000000000000010 RSI: 0000000020000040 RDI: 0000000000000011
[  988.266763][T13505] RBP: 00007f3bf36d3090 R08: 0000000000000000 R09: 0000000000000000
[  988.274924][T13505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  988.282920][T13505] R13: 0000000000000000 R14: 00007f3bf2b35f80 R15: 00007ffd2ea3f088
[  988.290946][T13505]  </TASK>
[  988.294091][    C0] vkms_vblank_simulate: vblank timer overrun
[  988.310318][ T1848] iowarrior 2-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  988.512167][T13483] netlink: 332 bytes leftover after parsing attributes in process `syz.1.1864'.
[  988.521984][T13483] netlink: 'syz.1.1864': attribute type 9 has an invalid length.
[  988.529950][T13483] netlink: 108 bytes leftover after parsing attributes in process `syz.1.1864'.
[  988.539156][T13483] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1864'.
[  988.622101][T13520] FAULT_INJECTION: forcing a failure.
[  988.622101][T13520] name failslab, interval 1, probability 0, space 0, times 0
[  988.634906][T13520] CPU: 0 UID: 0 PID: 13520 Comm: syz.2.1874 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  988.645682][T13520] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  988.655751][T13520] Call Trace:
[  988.659037][T13520]  <TASK>
[  988.661976][T13520]  dump_stack_lvl+0x241/0x360
[  988.666666][T13520]  ? __pfx_dump_stack_lvl+0x10/0x10
[  988.671872][T13520]  ? __pfx__printk+0x10/0x10
[  988.676481][T13520]  ? fs_reclaim_acquire+0x93/0x140
[  988.681604][T13520]  ? __pfx___might_resched+0x10/0x10
[  988.686908][T13520]  should_fail_ex+0x3b0/0x4e0
[  988.691608][T13520]  ? tomoyo_encode+0x26f/0x540
[  988.696389][T13520]  should_failslab+0xac/0x100
[  988.701077][T13520]  ? tomoyo_encode+0x26f/0x540
[  988.705855][T13520]  __kmalloc_noprof+0xd8/0x400
[  988.710640][T13520]  tomoyo_encode+0x26f/0x540
[  988.715255][T13520]  tomoyo_realpath_from_path+0x59e/0x5e0
[  988.720915][T13520]  tomoyo_path_number_perm+0x23a/0x880
[  988.726388][T13520]  ? tomoyo_path_number_perm+0x208/0x880
[  988.732033][T13520]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  988.738062][T13520]  ? __fget_files+0x29/0x470
[  988.742675][T13520]  ? __fget_files+0x3f3/0x470
[  988.747378][T13520]  security_file_ioctl+0xc6/0x2a0
[  988.752416][T13520]  __se_sys_ioctl+0x47/0x170
[  988.757020][T13520]  do_syscall_64+0xf3/0x230
[  988.761534][T13520]  ? clear_bhb_loop+0x35/0x90
[  988.766222][T13520]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  988.772127][T13520] RIP: 0033:0x7f3bf297dff9
[  988.776551][T13520] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  988.796171][T13520] RSP: 002b:00007f3bf3691038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  988.804600][T13520] RAX: ffffffffffffffda RBX: 00007f3bf2b36130 RCX: 00007f3bf297dff9
[  988.812586][T13520] RDX: 0000000000000000 RSI: 0000000000005412 RDI: 0000000000000005
[  988.820567][T13520] RBP: 00007f3bf3691090 R08: 0000000000000000 R09: 0000000000000000
[  988.828547][T13520] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  988.836529][T13520] R13: 0000000000000000 R14: 00007f3bf2b36130 R15: 00007ffd2ea3f088
[  988.844535][T13520]  </TASK>
[  988.847649][    C0] vkms_vblank_simulate: vblank timer overrun
[  988.854280][T13520] ERROR: Out of memory at tomoyo_realpath_from_path.
[  989.019195][ T1848] usb 1-1: new high-speed USB device number 37 using dummy_hcd
[  989.148009][ T5294] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  989.176153][ T1848] usb 1-1: Using ep0 maxpacket: 32
[  989.183142][ T1848] usb 1-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  989.221762][ T1848] usb 1-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  989.247545][ T1848] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  989.262746][ T1848] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  989.272413][ T1848] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  989.280690][ T1848] usb 1-1: Product: syz
[  989.285853][ T1848] usb 1-1: Manufacturer: syz
[  989.419258][ T1848] usb 1-1: SerialNumber: syz
[  989.435144][ T5294] usb 5-1: Using ep0 maxpacket: 16
[  989.459611][ T5262] usb 2-1: USB disconnect, device number 30
[  990.125957][ T5262] iowarrior 2-1:0.0: I/O-Warror #0 now disconnected
[  990.281073][ T5217] Bluetooth: hci6: ACL packet for unknown connection handle 200
[  990.385233][T12420] libceph: connect (1)[c::]:6789 error -101
[  990.391516][T12420] libceph: mon0 (1)[c::]:6789 connect error
[  990.392034][ T5217] block nbd3: Receive control failed (result -32)
[  990.408407][ T5217] block nbd3: Receive control failed (result -32)
[  990.453643][T13524] block nbd3: shutting down sockets
[  990.674142][   T51] libceph: connect (1)[c::]:6789 error -101
[  990.687482][   T51] libceph: mon0 (1)[c::]:6789 connect error
[  991.107665][ T5294] usb 5-1: unable to get BOS descriptor or descriptor too short
[  991.129045][ T5294] usb 5-1: unable to read config index 0 descriptor/start: -71
[  991.129866][T13532] ceph: No mds server is up or the cluster is laggy
[  991.136837][ T5294] usb 5-1: can't read configurations, error -71
[  991.263721][   T51] libceph: connect (1)[c::]:6789 error -101
[  991.269938][   T51] libceph: mon0 (1)[c::]:6789 connect error
[  991.368244][ T1848] usb 1-1: 0:2 : does not exist
[  991.418600][T13540] FAULT_INJECTION: forcing a failure.
[  991.418600][T13540] name failslab, interval 1, probability 0, space 0, times 0
[  991.421523][ T1848] usb 1-1: USB disconnect, device number 37
[  991.433864][T13541] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1880'.
[  991.462644][T13540] CPU: 0 UID: 0 PID: 13540 Comm: syz.1.1881 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  991.467074][T13543] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1882'.
[  991.473473][T13540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  991.473493][T13540] Call Trace:
[  991.473501][T13540]  <TASK>
[  991.473511][T13540]  dump_stack_lvl+0x241/0x360
[  991.473539][T13540]  ? __pfx_dump_stack_lvl+0x10/0x10
[  991.508621][T13540]  ? __pfx__printk+0x10/0x10
[  991.513250][T13540]  ? fs_reclaim_acquire+0x93/0x140
[  991.518386][T13540]  ? __pfx___might_resched+0x10/0x10
[  991.523703][T13540]  should_fail_ex+0x3b0/0x4e0
[  991.528408][T13540]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  991.534150][T13540]  should_failslab+0xac/0x100
[  991.538846][T13540]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  991.544593][T13540]  __kmalloc_noprof+0xd8/0x400
[  991.549383][T13540]  tomoyo_realpath_from_path+0xcf/0x5e0
[  991.554965][T13540]  tomoyo_path_number_perm+0x23a/0x880
[  991.560446][T13540]  ? rcu_read_lock_any_held+0xb7/0x160
[  991.565935][T13540]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  991.571851][T13540]  ? tomoyo_path_number_perm+0x208/0x880
[  991.577510][T13540]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  991.582446][T13541] xt_TPROXY: Can be used only with -p tcp or -p udp
[  991.583590][T13540]  ? sb_end_write+0xe9/0x1c0
[  991.594768][T13540]  ? vfs_write+0x7bf/0xc90
[  991.599243][T13540]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  991.605252][T13540]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  991.611612][T13540]  security_file_ioctl+0xc6/0x2a0
[  991.616662][T13540]  __se_sys_ioctl+0x47/0x170
[  991.621289][T13540]  do_syscall_64+0xf3/0x230
[  991.625816][T13540]  ? clear_bhb_loop+0x35/0x90
[  991.630516][T13540]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  991.636445][T13540] RIP: 0033:0x7f4c5ed7dff9
[  991.640878][T13540] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  991.660507][T13540] RSP: 002b:00007f4c5fab9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  991.668958][T13540] RAX: ffffffffffffffda RBX: 00007f4c5ef35f80 RCX: 00007f4c5ed7dff9
[  991.676955][T13540] RDX: 0000000000000000 RSI: 00000000c0105500 RDI: 0000000000000003
[  991.684953][T13540] RBP: 00007f4c5fab9090 R08: 0000000000000000 R09: 0000000000000000
[  991.692944][T13540] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  991.700938][T13540] R13: 0000000000000000 R14: 00007f4c5ef35f80 R15: 00007ffc64bf19a8
[  991.708950][T13540]  </TASK>
[  991.712167][    C0] vkms_vblank_simulate: vblank timer overrun
[  991.722039][T13540] ERROR: Out of memory at tomoyo_realpath_from_path.
[  992.319621][ T5216] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[  992.485163][ T5216] usb 3-1: Using ep0 maxpacket: 8
[  992.617320][ T5216] usb 3-1: New USB device found, idVendor=0421, idProduct=0335, bcdDevice=5f.0e
[  992.639946][ T5216] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  992.666967][ T5216] usb 3-1: config 0 descriptor??
[  992.681091][ T5216] usb 3-1: bad CDC descriptors
[  992.691668][T13563] FAULT_INJECTION: forcing a failure.
[  992.691668][T13563] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  992.737134][T13563] CPU: 0 UID: 0 PID: 13563 Comm: syz.0.1889 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  992.747940][T13563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  992.757977][T13563] Call Trace:
[  992.761246][T13563]  <TASK>
[  992.764160][T13563]  dump_stack_lvl+0x241/0x360
[  992.768826][T13563]  ? __pfx_dump_stack_lvl+0x10/0x10
[  992.774004][T13563]  ? __pfx__printk+0x10/0x10
[  992.778591][T13563]  ? snprintf+0xda/0x120
[  992.782840][T13563]  should_fail_ex+0x3b0/0x4e0
[  992.787520][T13563]  _copy_to_user+0x2f/0xb0
[  992.791947][T13563]  simple_read_from_buffer+0xca/0x150
[  992.797323][T13563]  proc_fail_nth_read+0x1e9/0x250
[  992.802345][T13563]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  992.807886][T13563]  ? rw_verify_area+0x55e/0x6f0
[  992.812747][T13563]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  992.818287][T13563]  vfs_read+0x201/0xbc0
[  992.822432][T13563]  ? __pfx_lock_release+0x10/0x10
[  992.827456][T13563]  ? __pfx_vfs_read+0x10/0x10
[  992.832127][T13563]  ? __fget_files+0x3f3/0x470
[  992.836801][T13563]  ? fdget_pos+0x24e/0x320
[  992.841203][T13563]  ksys_read+0x183/0x2b0
[  992.845433][T13563]  ? __pfx_ksys_read+0x10/0x10
[  992.850191][T13563]  ? do_syscall_64+0x100/0x230
[  992.854937][T13563]  ? do_syscall_64+0xb6/0x230
[  992.859684][T13563]  do_syscall_64+0xf3/0x230
[  992.864169][T13563]  ? clear_bhb_loop+0x35/0x90
[  992.868832][T13563]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  992.874734][T13563] RIP: 0033:0x7f4f5537ca3c
[  992.879153][T13563] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  992.898747][T13563] RSP: 002b:00007f4f561be030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  992.907149][T13563] RAX: ffffffffffffffda RBX: 00007f4f55536058 RCX: 00007f4f5537ca3c
[  992.915107][T13563] RDX: 000000000000000f RSI: 00007f4f561be0a0 RDI: 0000000000000006
[  992.923067][T13563] RBP: 00007f4f561be090 R08: 0000000000000000 R09: 0000000000000000
[  992.931546][T13563] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  992.939509][T13563] R13: 0000000000000001 R14: 00007f4f55536058 R15: 00007ffe1eeed528
[  992.947651][T13563]  </TASK>
[  992.950725][    C0] vkms_vblank_simulate: vblank timer overrun
[  993.298357][T13569] netlink: 209844 bytes leftover after parsing attributes in process `syz.4.1890'.
[  993.553774][T13568] syzkaller0: entered promiscuous mode
[  993.572283][T13568] syzkaller0: entered allmulticast mode
[  993.584431][ T5388] syzkaller0: tun_net_xmit 48
[  993.691573][    T8] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[  993.953029][    T8] usb 5-1: device descriptor read/64, error -71
[  994.036845][T13574] openvswitch: netlink: Message has 245 unknown bytes.
[  994.109183][T13574] openvswitch: netlink: Actions may not be safe on all matching packets
[  994.243812][    T8] usb 5-1: new high-speed USB device number 34 using dummy_hcd
[  994.443964][    T8] usb 5-1: device descriptor read/64, error -71
[  994.622264][    T8] usb usb5-port1: attempt power cycle
[  994.694996][ T5262] usb 3-1: USB disconnect, device number 22
[  995.720938][    T8] usb 5-1: new high-speed USB device number 35 using dummy_hcd
[  995.749761][    T8] usb 5-1: device descriptor read/8, error -71
[  996.040723][T13588] FAULT_INJECTION: forcing a failure.
[  996.040723][T13588] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  996.056271][T13588] CPU: 0 UID: 0 PID: 13588 Comm: syz.3.1895 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  996.067082][T13588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  996.077166][T13588] Call Trace:
[  996.080435][T13588]  <TASK>
[  996.083380][T13588]  dump_stack_lvl+0x241/0x360
[  996.088054][T13588]  ? __pfx_dump_stack_lvl+0x10/0x10
[  996.093252][T13588]  ? __pfx__printk+0x10/0x10
[  996.097853][T13588]  ? __pfx_lock_release+0x10/0x10
[  996.102880][T13588]  should_fail_ex+0x3b0/0x4e0
[  996.107561][T13588]  _copy_from_user+0x2f/0xe0
[  996.112152][T13588]  copy_msghdr_from_user+0xae/0x680
[  996.117348][T13588]  ? __lock_acquire+0x1384/0x2050
[  996.122379][T13588]  ? timespec64_add_safe+0x1be/0x220
[  996.127662][T13588]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  996.133476][T13588]  do_recvmmsg+0x3f9/0xad0
[  996.137885][T13588]  ? mark_lock+0x9a/0x360
[  996.142207][T13588]  ? __lock_acquire+0x1384/0x2050
[  996.147237][T13588]  ? __pfx_do_recvmmsg+0x10/0x10
[  996.152186][T13588]  ? __pfx___might_resched+0x10/0x10
[  996.157466][T13588]  ? __might_fault+0xaa/0x120
[  996.162146][T13588]  ? __pfx_lock_release+0x10/0x10
[  996.167172][T13588]  ? vfs_write+0x7bf/0xc90
[  996.171582][T13588]  ? kmem_cache_free+0x1a2/0x420
[  996.176520][T13588]  ? get_timespec64+0x19c/0x280
[  996.181380][T13588]  __x64_sys_recvmmsg+0x1b8/0x250
[  996.186490][T13588]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  996.192050][T13588]  ? do_syscall_64+0x100/0x230
[  996.196826][T13588]  ? do_syscall_64+0xb6/0x230
[  996.201520][T13588]  do_syscall_64+0xf3/0x230
[  996.206027][T13588]  ? clear_bhb_loop+0x35/0x90
[  996.210706][T13588]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  996.216609][T13588] RIP: 0033:0x7f01fdb7dff9
[  996.221021][T13588] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  996.240624][T13588] RSP: 002b:00007f01fe922038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  996.249041][T13588] RAX: ffffffffffffffda RBX: 00007f01fdd36058 RCX: 00007f01fdb7dff9
[  996.257004][T13588] RDX: 04000000000003b4 RSI: 00000000200037c0 RDI: 0000000000000003
[  996.264966][T13588] RBP: 00007f01fe922090 R08: 0000000020003700 R09: 0000000000000000
[  996.272931][T13588] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  996.280892][T13588] R13: 0000000000000000 R14: 00007f01fdd36058 R15: 00007ffdc02bf748
[  996.288867][T13588]  </TASK>
[  996.291930][    C0] vkms_vblank_simulate: vblank timer overrun
[  998.107433][T13582] netlink: 'syz.1.1894': attribute type 10 has an invalid length.
[  998.134949][T13582] 8021q: adding VLAN 0 to HW filter on device batadv0
[  998.173101][T13582] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  998.219770][T13583] bond0: entered promiscuous mode
[  998.257152][T13583] bond_slave_0: entered promiscuous mode
[  998.262930][T13583] bond_slave_1: entered promiscuous mode
[  998.317694][T13583] batadv0: entered promiscuous mode
[  998.418848][T13599] netlink: 'syz.4.1899': attribute type 10 has an invalid length.
[  998.652345][T13599] 8021q: adding VLAN 0 to HW filter on device batadv0
[  998.692541][T13611] FAULT_INJECTION: forcing a failure.
[  998.692541][T13611] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  998.726904][T13599] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  998.766390][T13611] CPU: 1 UID: 0 PID: 13611 Comm: syz.3.1903 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  998.777236][T13611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  998.787325][T13611] Call Trace:
[  998.790622][T13611]  <TASK>
[  998.793568][T13611]  dump_stack_lvl+0x241/0x360
[  998.798273][T13611]  ? __pfx_dump_stack_lvl+0x10/0x10
[  998.803494][T13611]  ? __pfx__printk+0x10/0x10
[  998.808139][T13611]  should_fail_ex+0x3b0/0x4e0
[  998.812851][T13611]  _copy_from_user+0x2f/0xe0
[  998.817471][T13611]  move_addr_to_kernel+0x82/0x150
[  998.822524][T13611]  copy_msghdr_from_user+0x43e/0x680
[  998.827844][T13611]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  998.833667][T13611]  __sys_sendmmsg+0x36d/0x730
[  998.838346][T13611]  ? __pfx___sys_sendmmsg+0x10/0x10
[  998.843546][T13611]  ? __pfx_lock_release+0x10/0x10
[  998.848571][T13611]  ? kstrtouint_from_user+0x128/0x190
[  998.853956][T13611]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  998.859852][T13611]  ? ksys_write+0x229/0x2b0
[  998.864354][T13611]  ? __pfx_lock_release+0x10/0x10
[  998.869380][T13611]  ? vfs_write+0x7bf/0xc90
[  998.873789][T13611]  ? kmem_cache_free+0x1a2/0x420
[  998.878740][T13611]  ? __mutex_unlock_slowpath+0x21d/0x750
[  998.884375][T13611]  ? __fget_files+0x3f3/0x470
[  998.889056][T13611]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  998.895036][T13611]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  998.901359][T13611]  ? do_syscall_64+0x100/0x230
[  998.906118][T13611]  __x64_sys_sendmmsg+0xa0/0xb0
[  998.910966][T13611]  do_syscall_64+0xf3/0x230
[  998.915463][T13611]  ? clear_bhb_loop+0x35/0x90
[  998.920133][T13611]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  998.926027][T13611] RIP: 0033:0x7f01fdb7dff9
[  998.930439][T13611] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  998.950040][T13611] RSP: 002b:00007f01fe943038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  998.958542][T13611] RAX: ffffffffffffffda RBX: 00007f01fdd35f80 RCX: 00007f01fdb7dff9
[  998.966512][T13611] RDX: 0000000000006c00 RSI: 0000000020007e40 RDI: 0000000000000003
[  998.974565][T13611] RBP: 00007f01fe943090 R08: 0000000000000000 R09: 0000000000000000
[  998.982528][T13611] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  998.990490][T13611] R13: 0000000000000000 R14: 00007f01fdd35f80 R15: 00007ffdc02bf748
[  998.998468][T13611]  </TASK>
[  999.007832][T13600] bond0: entered promiscuous mode
[  999.153851][T13600] bond_slave_0: entered promiscuous mode
[  999.251342][T13600] bond_slave_1: entered promiscuous mode
[  999.304729][T13600] batadv0: entered promiscuous mode
[  999.810986][T13626] netlink: 209844 bytes leftover after parsing attributes in process `syz.0.1906'.
[ 1000.292675][ T9846] Bluetooth: hci6: command 0x0406 tx timeout
[ 1000.349941][ T5267] usb 1-1: new high-speed USB device number 38 using dummy_hcd
[ 1000.535081][T13631] bpf: Bad value for 'mode'
[ 1001.073201][ T5267] usb 1-1: device descriptor read/64, error -71
[ 1001.113515][T13635] syzkaller0: entered promiscuous mode
[ 1001.120441][T13635] syzkaller0: entered allmulticast mode
[ 1001.132953][  T732] syzkaller0: tun_net_xmit 48
[ 1001.238480][    T8] usb 4-1: new high-speed USB device number 36 using dummy_hcd
[ 1001.361672][T13647] FAULT_INJECTION: forcing a failure.
[ 1001.361672][T13647] name failslab, interval 1, probability 0, space 0, times 0
[ 1001.380749][T13647] CPU: 0 UID: 0 PID: 13647 Comm: syz.1.1913 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[ 1001.391557][T13647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1001.401637][T13647] Call Trace:
[ 1001.404935][T13647]  <TASK>
[ 1001.407879][T13647]  dump_stack_lvl+0x241/0x360
[ 1001.412579][T13647]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1001.417793][T13647]  ? __pfx__printk+0x10/0x10
[ 1001.422432][T13647]  ? __kmalloc_cache_noprof+0x44/0x2c0
[ 1001.427915][T13647]  ? __pfx___might_resched+0x10/0x10
[ 1001.433210][T13647]  should_fail_ex+0x3b0/0x4e0
[ 1001.437897][T13647]  should_failslab+0xac/0x100
[ 1001.442566][T13647]  ? sctp_association_new+0x8a/0x2400
[ 1001.447933][T13647]  __kmalloc_cache_noprof+0x6c/0x2c0
[ 1001.453213][T13647]  sctp_association_new+0x8a/0x2400
[ 1001.458409][T13647]  ? sctp_has_association+0x1d4/0x1f0
[ 1001.463771][T13647]  ? sctp_has_association+0x2f/0x1f0
[ 1001.469050][T13647]  ? __ipv6_addr_type+0x23c/0x2f0
[ 1001.474078][T13647]  sctp_connect_new_asoc+0x2d8/0x6c0
[ 1001.479372][T13647]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[ 1001.485172][T13647]  ? sctp_sendmsg+0xbb9/0x3520
[ 1001.489944][T13647]  ? sctp_endpoint_lookup_assoc+0x7c/0x250
[ 1001.495749][T13647]  ? sctp_endpoint_lookup_assoc+0x217/0x250
[ 1001.501642][T13647]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[ 1001.507186][T13647]  sctp_sendmsg+0x219a/0x3520
[ 1001.511874][T13647]  ? __pfx_sctp_sendmsg+0x10/0x10
[ 1001.516895][T13647]  ? __pfx_tomoyo_socket_sendmsg_permission+0x10/0x10
[ 1001.523664][T13647]  ? inet_sendmsg+0x330/0x390
[ 1001.528342][T13647]  __sock_sendmsg+0x1a6/0x270
[ 1001.533025][T13647]  __sys_sendto+0x39b/0x4f0
[ 1001.537958][T13647]  ? __pfx___sys_sendto+0x10/0x10
[ 1001.542970][T13647]  ? __mutex_unlock_slowpath+0x21d/0x750
[ 1001.548618][T13647]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1001.554599][T13647]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1001.560933][T13647]  __x64_sys_sendto+0xde/0x100
[ 1001.565690][T13647]  do_syscall_64+0xf3/0x230
[ 1001.570187][T13647]  ? clear_bhb_loop+0x35/0x90
[ 1001.574856][T13647]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1001.580749][T13647] RIP: 0033:0x7f4c5ed7dff9
[ 1001.585157][T13647] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1001.604758][T13647] RSP: 002b:00007f4c5fa98038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[ 1001.613167][T13647] RAX: ffffffffffffffda RBX: 00007f4c5ef36058 RCX: 00007f4c5ed7dff9
[ 1001.621135][T13647] RDX: 0000000000034000 RSI: 0000000020847fff RDI: 0000000000000004
[ 1001.629099][T13647] RBP: 00007f4c5fa98090 R08: 000000002005ffe4 R09: 000000000000001c
[ 1001.637061][T13647] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1001.645024][T13647] R13: 0000000000000000 R14: 00007f4c5ef36058 R15: 00007ffc64bf19a8
[ 1001.652998][T13647]  </TASK>
[ 1001.656090][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1001.671620][ T5267] usb 1-1: new high-speed USB device number 39 using dummy_hcd
[ 1001.692372][    T8] usb 4-1: config 0 has an invalid interface number: 41 but max is 0
[ 1001.702450][    T8] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1001.719478][    T8] usb 4-1: config 0 has no interface number 0
[ 1001.737718][    T8] usb 4-1: New USB device found, idVendor=04d8, idProduct=0083, bcdDevice=83.9c
[ 1001.747877][    T8] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1001.763167][    T8] usb 4-1: Product: syz
[ 1001.767365][    T8] usb 4-1: Manufacturer: syz
[ 1001.777932][    T8] usb 4-1: SerialNumber: syz
[ 1001.794516][    T8] usb 4-1: config 0 descriptor??
[ 1001.807311][ T5267] usb 1-1: device descriptor read/64, error -71
[ 1001.824483][    T8] ims_pcu 4-1:0.41: Missing CDC union descriptor
[ 1001.871478][    T8] ims_pcu 4-1:0.41: probe with driver ims_pcu failed with error -22
[ 1001.912612][ T5267] usb usb1-port1: attempt power cycle
[ 1002.730254][ T1848] usb 4-1: USB disconnect, device number 36
[ 1003.027129][ T5267] usb 1-1: new high-speed USB device number 40 using dummy_hcd
[ 1003.387516][ T5267] usb 1-1: device not accepting address 40, error -71
[ 1004.486550][T13673] FAULT_INJECTION: forcing a failure.
[ 1004.486550][T13673] name failslab, interval 1, probability 0, space 0, times 0
[ 1004.499416][T13673] CPU: 1 UID: 0 PID: 13673 Comm: syz.3.1918 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[ 1004.510430][T13673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1004.520515][T13673] Call Trace:
[ 1004.523818][T13673]  <TASK>
[ 1004.526766][T13673]  dump_stack_lvl+0x241/0x360
[ 1004.531465][T13673]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1004.536677][T13673]  ? __pfx__printk+0x10/0x10
[ 1004.541295][T13673]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[ 1004.547299][T13673]  ? __pfx___might_resched+0x10/0x10
[ 1004.552606][T13673]  should_fail_ex+0x3b0/0x4e0
[ 1004.557308][T13673]  should_failslab+0xac/0x100
[ 1004.561995][T13673]  ? __alloc_skb+0x1c3/0x440
[ 1004.566593][T13673]  kmem_cache_alloc_node_noprof+0x71/0x320
[ 1004.572414][T13673]  __alloc_skb+0x1c3/0x440
[ 1004.576839][T13673]  ? lockdep_hardirqs_on+0x99/0x150
[ 1004.582058][T13673]  ? __pfx___alloc_skb+0x10/0x10
[ 1004.587017][T13673]  netlink_sendmsg+0x638/0xcb0
[ 1004.591808][T13673]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1004.597123][T13673]  ? tomoyo_socket_sendmsg_permission+0x12e/0x420
[ 1004.603564][T13673]  ? __sock_sendmsg+0x54/0x270
[ 1004.608359][T13673]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1004.613657][T13673]  __sock_sendmsg+0x221/0x270
[ 1004.618354][T13673]  ____sys_sendmsg+0x52a/0x7e0
[ 1004.623150][T13673]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1004.628476][T13673]  __sys_sendmsg+0x292/0x380
[ 1004.633100][T13673]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1004.638228][T13673]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1004.644261][T13673]  ? irqentry_exit+0x63/0x90
[ 1004.648884][T13673]  ? __x64_sys_sendmsg+0x4f/0x90
[ 1004.653842][T13673]  do_syscall_64+0xf3/0x230
[ 1004.658361][T13673]  ? clear_bhb_loop+0x35/0x90
[ 1004.663055][T13673]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1004.668967][T13673] RIP: 0033:0x7f01fdb7dff9
[ 1004.673394][T13673] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1004.693011][T13673] RSP: 002b:00007f01fe901038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1004.701440][T13673] RAX: ffffffffffffffda RBX: 00007f01fdd36130 RCX: 00007f01fdb7dff9
[ 1004.709436][T13673] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000004
[ 1004.717426][T13673] RBP: 00007f01fe901090 R08: 0000000000000000 R09: 0000000000000000
[ 1004.725408][T13673] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1004.733406][T13673] R13: 0000000000000000 R14: 00007f01fdd36130 R15: 00007ffdc02bf748
[ 1004.741404][T13673]  </TASK>
[ 1006.762118][T13655] netlink: 'syz.4.1914': attribute type 4 has an invalid length.
[ 1006.868376][T13666] netlink: 'syz.1.1917': attribute type 10 has an invalid length.
[ 1008.897414][T13702] FAULT_INJECTION: forcing a failure.
[ 1008.897414][T13702] name failslab, interval 1, probability 0, space 0, times 0
[ 1008.910514][T13702] CPU: 0 UID: 0 PID: 13702 Comm: syz.4.1926 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[ 1008.921278][T13702] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1008.931328][T13702] Call Trace:
[ 1008.934596][T13702]  <TASK>
[ 1008.937532][T13702]  dump_stack_lvl+0x241/0x360
[ 1008.942201][T13702]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1008.947385][T13702]  ? __pfx__printk+0x10/0x10
[ 1008.951972][T13702]  ? fs_reclaim_acquire+0x93/0x140
[ 1008.957083][T13702]  ? __pfx___might_resched+0x10/0x10
[ 1008.962414][T13702]  should_fail_ex+0x3b0/0x4e0
[ 1008.967089][T13702]  ? tomoyo_encode+0x26f/0x540
[ 1008.971849][T13702]  should_failslab+0xac/0x100
[ 1008.976519][T13702]  ? tomoyo_encode+0x26f/0x540
[ 1008.981282][T13702]  __kmalloc_noprof+0xd8/0x400
[ 1008.986075][T13702]  tomoyo_encode+0x26f/0x540
[ 1008.990677][T13702]  tomoyo_realpath_from_path+0x59e/0x5e0
[ 1008.996315][T13702]  tomoyo_path_number_perm+0x23a/0x880
[ 1009.001775][T13702]  ? tomoyo_path_number_perm+0x208/0x880
[ 1009.007402][T13702]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1009.013430][T13702]  ? __fget_files+0x29/0x470
[ 1009.018024][T13702]  ? __fget_files+0x3f3/0x470
[ 1009.022710][T13702]  security_file_ioctl+0xc6/0x2a0
[ 1009.027732][T13702]  __se_sys_ioctl+0x47/0x170
[ 1009.032315][T13702]  do_syscall_64+0xf3/0x230
[ 1009.036809][T13702]  ? clear_bhb_loop+0x35/0x90
[ 1009.041495][T13702]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1009.047386][T13702] RIP: 0033:0x7f593917dff9
[ 1009.051791][T13702] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1009.071495][T13702] RSP: 002b:00007f5939e9e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1009.080002][T13702] RAX: ffffffffffffffda RBX: 00007f5939335f80 RCX: 00007f593917dff9
[ 1009.087969][T13702] RDX: 0000000020000000 RSI: 0000000000002275 RDI: 0000000000000003
[ 1009.095931][T13702] RBP: 00007f5939e9e090 R08: 0000000000000000 R09: 0000000000000000
[ 1009.103893][T13702] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1009.111857][T13702] R13: 0000000000000000 R14: 00007f5939335f80 R15: 00007ffc753e3b08
[ 1009.119840][T13702]  </TASK>
[ 1009.122897][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1009.129536][T13702] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1009.251147][T13710] bpf: Bad value for 'mode'
[ 1009.516073][T13715] netlink: 209844 bytes leftover after parsing attributes in process `syz.2.1927'.
[ 1009.553548][T13716] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1929'.
[ 1009.563886][T13716] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1929'.
[ 1009.578831][T13716] netdevsim netdevsim1 netdevsim0: set [1, 1] type 2 family 0 port 5 - 0
[ 1009.587962][T13716] netdevsim netdevsim1 netdevsim1: set [1, 1] type 2 family 0 port 5 - 0
[ 1009.596540][T13716] netdevsim netdevsim1 netdevsim2: set [1, 1] type 2 family 0 port 5 - 0
[ 1009.607288][T13716] netdevsim netdevsim1 netdevsim3: set [1, 1] type 2 family 0 port 5 - 0
[ 1009.734784][ T5262] usb 5-1: new high-speed USB device number 37 using dummy_hcd
[ 1009.754928][T13720] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1930'.
[ 1009.766574][T13720] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1930'.
[ 1009.780279][ T5267] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[ 1009.826018][T13724] syzkaller0: entered promiscuous mode
[ 1009.833832][T13724] syzkaller0: entered allmulticast mode
[ 1009.855186][ T6452] syzkaller0: tun_net_xmit 48
[ 1009.915195][ T5267] usb 3-1: device descriptor read/64, error -71
[ 1009.945357][ T5262] usb 5-1: config 0 has an invalid interface number: 41 but max is 0
[ 1010.010419][ T5262] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1010.064780][ T5262] usb 5-1: config 0 has no interface number 0
[ 1010.092093][ T5262] usb 5-1: New USB device found, idVendor=04d8, idProduct=0083, bcdDevice=83.9c
[ 1010.122313][ T5262] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1010.190887][ T5267] usb 3-1: new high-speed USB device number 24 using dummy_hcd
[ 1010.203379][ T5262] usb 5-1: Product: syz
[ 1010.241422][ T5262] usb 5-1: Manufacturer: syz
[ 1010.294573][ T5262] usb 5-1: SerialNumber: syz
[ 1010.330448][ T5262] usb 5-1: config 0 descriptor??
[ 1010.356212][ T5267] usb 3-1: device descriptor read/64, error -71
[ 1010.488683][ T5262] ims_pcu 5-1:0.41: Missing CDC union descriptor
[ 1010.497159][ T5262] ims_pcu 5-1:0.41: probe with driver ims_pcu failed with error -22
[ 1010.671098][ T5267] usb usb3-port1: attempt power cycle
[ 1010.990422][ T1848] usb 5-1: USB disconnect, device number 37
[ 1011.614961][ T5267] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[ 1011.665238][ T5267] usb 3-1: device descriptor read/8, error -71
[ 1011.914087][ T5267] usb 3-1: new high-speed USB device number 26 using dummy_hcd
[ 1012.919463][ T5267] usb 3-1: device descriptor read/8, error -71
[ 1013.316934][ T5267] usb usb3-port1: unable to enumerate USB device
[ 1015.580062][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1015.598414][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1015.608075][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1015.639888][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1015.647555][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1015.655779][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1015.671119][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1015.682267][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1015.724282][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1015.752286][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1015.780780][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1015.802793][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1015.819888][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1015.828380][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1015.886549][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1015.904284][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1015.941073][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1015.967018][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1015.976022][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1015.989563][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1015.998706][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.012245][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.028868][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.036902][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.051096][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.065651][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.073386][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.088767][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.115060][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.133428][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.153635][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.161086][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.181565][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.189006][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.210072][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.229531][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.236975][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.258042][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.277015][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.286549][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.293979][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.318350][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.336087][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.352677][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.368208][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.384186][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.400960][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.418579][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.429130][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.449411][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.467447][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.474887][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.495676][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.505238][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.513271][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.534801][ T5216] hid-generic 0001:0000:0000.0007: unknown main item tag 0x0
[ 1016.572425][ T5216] hid-generic 0001:0000:0000.0007: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1018.857346][T13779] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1018.909489][T13760] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1941'.
[ 1018.945313][T13764] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1940'.
[ 1018.992120][T13764] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1940'.
[ 1019.017872][T13764] netdevsim netdevsim4 netdevsim0: set [1, 1] type 2 family 0 port 5 - 0
[ 1019.035698][T13764] netdevsim netdevsim4 netdevsim1: set [1, 1] type 2 family 0 port 5 - 0
[ 1019.051698][ T1268] ieee802154 phy1 wpan1: encryption failed: -22
[ 1019.077550][T13764] netdevsim netdevsim4 netdevsim2: set [1, 1] type 2 family 0 port 5 - 0
[ 1019.099958][T13785] bpf: Bad value for 'mode'
[ 1019.111278][T13764] netdevsim netdevsim4 netdevsim3: set [1, 1] type 2 family 0 port 5 - 0
[ 1020.420675][T13791] netlink: 209844 bytes leftover after parsing attributes in process `syz.1.1948'.
[ 1020.868236][ T1848] usb 2-1: new high-speed USB device number 31 using dummy_hcd
[ 1020.896587][    T8] usb 1-1: new high-speed USB device number 42 using dummy_hcd
[ 1021.001243][ T1848] usb 2-1: device descriptor read/64, error -71
[ 1021.061165][    T8] usb 1-1: config 0 has an invalid interface number: 41 but max is 0
[ 1021.080474][    T8] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1021.090932][    T8] usb 1-1: config 0 has no interface number 0
[ 1021.101316][    T8] usb 1-1: New USB device found, idVendor=04d8, idProduct=0083, bcdDevice=83.9c
[ 1021.110642][    T8] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1021.118931][    T8] usb 1-1: Product: syz
[ 1021.123241][    T8] usb 1-1: Manufacturer: syz
[ 1021.130929][    T8] usb 1-1: SerialNumber: syz
[ 1021.138608][    T8] usb 1-1: config 0 descriptor??
[ 1021.156828][    T8] ims_pcu 1-1:0.41: Missing CDC union descriptor
[ 1021.169304][    T8] ims_pcu 1-1:0.41: probe with driver ims_pcu failed with error -22
[ 1021.375648][ T1848] usb 2-1: new high-speed USB device number 32 using dummy_hcd
[ 1021.387218][ T5216] usb 1-1: USB disconnect, device number 42
[ 1021.550616][ T1848] usb 2-1: device descriptor read/64, error -71
[ 1021.697602][ T1848] usb usb2-port1: attempt power cycle
[ 1022.102499][ T1848] usb 2-1: new high-speed USB device number 33 using dummy_hcd
[ 1022.189015][ T1848] usb 2-1: device descriptor read/8, error -71
[ 1022.302986][T13815] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1955'.
[ 1022.335300][    T8] usb 5-1: new high-speed USB device number 38 using dummy_hcd
[ 1022.391296][T13817] syzkaller0: entered promiscuous mode
[ 1022.404418][T13817] syzkaller0: entered allmulticast mode
[ 1022.415932][  T732] syzkaller0: tun_net_xmit 48
[ 1022.439897][ T1848] usb 2-1: new high-speed USB device number 34 using dummy_hcd
[ 1022.469186][ T1848] usb 2-1: device descriptor read/8, error -71
[ 1022.501416][ T9846] Bluetooth: hci6: unexpected event for opcode 0x0403
[ 1022.521193][    T8] usb 5-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[ 1022.543874][    T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1022.555172][    T8] usb 5-1: config 0 descriptor??
[ 1022.578687][ T1848] usb usb2-port1: unable to enumerate USB device
[ 1023.565011][ T1848] usb 2-1: new high-speed USB device number 35 using dummy_hcd
[ 1023.723832][ T1848] usb 2-1: Using ep0 maxpacket: 16
[ 1023.757079][ T1848] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[ 1023.768622][ T1848] usb 2-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[ 1023.777792][ T1848] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1023.787574][ T1848] usb 2-1: config 0 descriptor??
[ 1023.961796][    T8] pegasus 5-1:0.0: probe with driver pegasus failed with error -71
[ 1023.982452][    T8] usb 5-1: USB disconnect, device number 38
[ 1024.315719][T13834] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1024.342789][T13834] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1025.154159][T13825] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1957'.
[ 1025.163282][T13825] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1957'.
[ 1025.202725][T13836] sp0: Synchronizing with TNC
[ 1025.369877][T13850] FAULT_INJECTION: forcing a failure.
[ 1025.369877][T13850] name failslab, interval 1, probability 0, space 0, times 0
[ 1025.392375][T13850] CPU: 1 UID: 0 PID: 13850 Comm: syz.0.1964 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[ 1025.403197][T13850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1025.413277][T13850] Call Trace:
[ 1025.416578][T13850]  <TASK>
[ 1025.419520][T13850]  dump_stack_lvl+0x241/0x360
[ 1025.424221][T13850]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1025.429432][T13850]  ? __pfx__printk+0x10/0x10
[ 1025.434048][T13850]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[ 1025.440041][T13850]  ? __pfx___might_resched+0x10/0x10
[ 1025.445346][T13850]  should_fail_ex+0x3b0/0x4e0
[ 1025.450044][T13850]  should_failslab+0xac/0x100
[ 1025.454734][T13850]  ? __alloc_skb+0x1c3/0x440
[ 1025.459333][T13850]  kmem_cache_alloc_node_noprof+0x71/0x320
[ 1025.465162][T13850]  __alloc_skb+0x1c3/0x440
[ 1025.469604][T13850]  ? __pfx___alloc_skb+0x10/0x10
[ 1025.474565][T13850]  ? smack_socket_getpeersec_dgram+0x1d0/0x410
[ 1025.480737][T13850]  netlink_sendmsg+0x638/0xcb0
[ 1025.485500][T13850]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1025.490808][T13850]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1025.496114][T13850]  __sock_sendmsg+0x221/0x270
[ 1025.500817][T13850]  ____sys_sendmsg+0x52a/0x7e0
[ 1025.505605][T13850]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1025.510923][T13850]  __sys_sendmsg+0x292/0x380
[ 1025.515537][T13850]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1025.520693][T13850]  ? __pfx_vfs_write+0x10/0x10
[ 1025.525511][T13850]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1025.531877][T13850]  ? do_syscall_64+0x100/0x230
[ 1025.536666][T13850]  ? do_syscall_64+0xb6/0x230
[ 1025.541366][T13850]  do_syscall_64+0xf3/0x230
[ 1025.545895][T13850]  ? clear_bhb_loop+0x35/0x90
[ 1025.550583][T13850]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1025.556493][T13850] RIP: 0033:0x7f4f5537dff9
[ 1025.560897][T13850] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1025.580930][T13850] RSP: 002b:00007f4f561df038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1025.589356][T13850] RAX: ffffffffffffffda RBX: 00007f4f55535f80 RCX: 00007f4f5537dff9
[ 1025.597336][T13850] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000003
[ 1025.605316][T13850] RBP: 00007f4f561df090 R08: 0000000000000000 R09: 0000000000000000
[ 1025.613301][T13850] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1025.621349][T13850] R13: 0000000000000000 R14: 00007f4f55535f80 R15: 00007ffe1eeed528
[ 1025.629322][T13850]  </TASK>
[ 1025.704783][T13859] bpf: Bad value for 'mode'
[ 1025.830923][T11189] usb 5-1: new high-speed USB device number 39 using dummy_hcd
[ 1025.871529][ T5216] usb 3-1: new high-speed USB device number 27 using dummy_hcd
[ 1025.881399][ T1848] usbhid 2-1:0.0: can't add hid device: -71
[ 1025.888108][ T1848] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[ 1025.899507][ T1848] usb 2-1: USB disconnect, device number 35
[ 1025.929100][T13862] No such timeout policy "syz0"
[ 1025.976279][T11189] usb 5-1: Using ep0 maxpacket: 16
[ 1025.986900][T11189] usb 5-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice= 7.79
[ 1025.997184][T11189] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1026.007066][T11189] usb 5-1: Product: syz
[ 1026.011292][T11189] usb 5-1: Manufacturer: syz
[ 1026.016001][T11189] usb 5-1: SerialNumber: syz
[ 1026.022499][T11189] usb 5-1: config 0 descriptor??
[ 1026.050524][ T5216] usb 3-1: Using ep0 maxpacket: 32
[ 1026.057081][ T5216] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1026.070342][ T5216] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1026.080819][ T5216] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[ 1026.093770][ T5216] usb 3-1: New USB device found, idVendor=0458, idProduct=5011, bcdDevice= 0.00
[ 1026.102962][ T5216] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1026.113690][ T5216] usb 3-1: config 0 descriptor??
[ 1026.135784][ T5294] usb 1-1: new high-speed USB device number 43 using dummy_hcd
[ 1026.254376][T11189] usb 5-1: Cannot retrieve CPort count: 0
[ 1026.260355][T11189] usb 5-1: Cannot retrieve CPort count: -5
[ 1026.266588][T11189] es2_ap_driver 5-1:0.0: probe with driver es2_ap_driver failed with error -5
[ 1026.289072][T13865] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1968'.
[ 1026.301766][ T5294] usb 1-1: config 0 has an invalid interface number: 41 but max is 0
[ 1026.310126][ T5294] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1026.329669][ T5294] usb 1-1: config 0 has no interface number 0
[ 1026.339085][ T5294] usb 1-1: New USB device found, idVendor=04d8, idProduct=0083, bcdDevice=83.9c
[ 1026.348495][ T5294] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1026.356715][ T5294] usb 1-1: Product: syz
[ 1026.361953][ T5294] usb 1-1: Manufacturer: syz
[ 1026.366666][ T5294] usb 1-1: SerialNumber: syz
[ 1026.383903][T13868] Cannot find map_set index 0 as target
[ 1026.524216][ T5294] usb 1-1: config 0 descriptor??
[ 1026.531739][ T5294] ims_pcu 1-1:0.41: Missing CDC union descriptor
[ 1026.538265][ T5294] ims_pcu 1-1:0.41: probe with driver ims_pcu failed with error -22
[ 1026.573831][T13869] netlink: 209844 bytes leftover after parsing attributes in process `syz.3.1969'.
[ 1026.724853][T11189] usb 1-1: USB disconnect, device number 43
[ 1026.841296][ T5294] usb 4-1: new high-speed USB device number 37 using dummy_hcd
[ 1026.983332][ T5294] usb 4-1: device descriptor read/64, error -71
[ 1027.240566][ T5294] usb 4-1: new high-speed USB device number 38 using dummy_hcd
[ 1027.537895][ T5294] usb 4-1: device descriptor read/64, error -71
[ 1027.684018][ T5294] usb usb4-port1: attempt power cycle
[ 1028.123350][ T5294] usb 4-1: new high-speed USB device number 39 using dummy_hcd
[ 1028.196840][ T5216] usbhid 3-1:0.0: can't add hid device: -71
[ 1028.205095][ T5216] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[ 1028.229322][ T5216] usb 3-1: USB disconnect, device number 27
[ 1028.247578][ T5294] usb 4-1: device descriptor read/8, error -71
[ 1028.353620][T13876] syzkaller0: entered promiscuous mode
[ 1028.367959][T13876] syzkaller0: entered allmulticast mode
[ 1028.376904][   T11] syzkaller0: tun_net_xmit 48
[ 1028.442935][   T51] usb 5-1: USB disconnect, device number 39
[ 1028.517194][ T5294] usb 4-1: new high-speed USB device number 40 using dummy_hcd
[ 1028.546314][ T5294] usb 4-1: device descriptor read/8, error -71
[ 1028.657777][ T5294] usb usb4-port1: unable to enumerate USB device
[ 1029.637430][T13890] FAULT_INJECTION: forcing a failure.
[ 1029.637430][T13890] name failslab, interval 1, probability 0, space 0, times 0
[ 1029.650198][T13890] CPU: 0 UID: 0 PID: 13890 Comm: syz.3.1975 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[ 1029.660984][T13890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1029.671047][T13890] Call Trace:
[ 1029.674335][T13890]  <TASK>
[ 1029.677275][T13890]  dump_stack_lvl+0x241/0x360
[ 1029.681969][T13890]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1029.687179][T13890]  ? __pfx__printk+0x10/0x10
[ 1029.691785][T13890]  ? __kmalloc_cache_noprof+0x44/0x2c0
[ 1029.697253][T13890]  ? __pfx___might_resched+0x10/0x10
[ 1029.702557][T13890]  should_fail_ex+0x3b0/0x4e0
[ 1029.707255][T13890]  should_failslab+0xac/0x100
[ 1029.711937][T13890]  ? alloc_pipe_info+0xeb/0x4d0
[ 1029.716802][T13890]  __kmalloc_cache_noprof+0x6c/0x2c0
[ 1029.722100][T13890]  alloc_pipe_info+0xeb/0x4d0
[ 1029.726799][T13890]  splice_direct_to_actor+0xa9e/0xc80
[ 1029.732200][T13890]  ? __pfx_direct_splice_actor+0x10/0x10
[ 1029.737843][T13890]  ? __pfx_splice_direct_to_actor+0x10/0x10
[ 1029.743745][T13890]  ? __fget_files+0x29/0x470
[ 1029.748347][T13890]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1029.754429][T13890]  ? __pfx_lock_release+0x10/0x10
[ 1029.759474][T13890]  do_splice_direct+0x289/0x3e0
[ 1029.764348][T13890]  ? __pfx_do_splice_direct+0x10/0x10
[ 1029.769736][T13890]  ? __pfx_direct_file_splice_eof+0x10/0x10
[ 1029.775658][T13890]  ? rw_verify_area+0x1c3/0x6f0
[ 1029.780526][T13890]  do_sendfile+0x561/0xe10
[ 1029.784952][T13890]  ? __might_fault+0xaa/0x120
[ 1029.789646][T13890]  ? __pfx_do_sendfile+0x10/0x10
[ 1029.794596][T13890]  ? __might_fault+0xc6/0x120
[ 1029.799288][T13890]  __se_sys_sendfile64+0x100/0x1e0
[ 1029.804426][T13890]  ? __pfx___se_sys_sendfile64+0x10/0x10
[ 1029.810074][T13890]  ? do_syscall_64+0x100/0x230
[ 1029.814853][T13890]  ? do_syscall_64+0xb6/0x230
[ 1029.819541][T13890]  do_syscall_64+0xf3/0x230
[ 1029.824063][T13890]  ? clear_bhb_loop+0x35/0x90
[ 1029.828746][T13890]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1029.834653][T13890] RIP: 0033:0x7f01fdb7dff9
[ 1029.839079][T13890] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1029.858694][T13890] RSP: 002b:00007f01fe901038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 1029.867124][T13890] RAX: ffffffffffffffda RBX: 00007f01fdd36130 RCX: 00007f01fdb7dff9
[ 1029.875632][T13890] RDX: 0000000020002080 RSI: 0000000000000007 RDI: 0000000000000008
[ 1029.883620][T13890] RBP: 00007f01fe901090 R08: 0000000000000000 R09: 0000000000000000
[ 1029.891600][T13890] R10: 000000000000023b R11: 0000000000000246 R12: 0000000000000001
[ 1029.899593][T13890] R13: 0000000000000000 R14: 00007f01fdd36130 R15: 00007ffdc02bf748
[ 1029.907586][T13890]  </TASK>
[ 1029.910653][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1031.891582][T13899] xt_l2tp: wrong L2TP version: 0
[ 1032.674882][T13883] 8021q: adding VLAN 0 to HW filter on device macvlan2
[ 1032.713651][T13906] bpf: Bad value for 'mode'
[ 1032.722590][T13886] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1974'.
[ 1032.756961][T13886] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1974'.
[ 1032.913542][T13910] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1981'.
[ 1032.946746][T13911] netlink: 'syz.1.1983': attribute type 42 has an invalid length.
[ 1033.076785][T13917] netlink: 172 bytes leftover after parsing attributes in process `syz.1.1983'.
[ 1033.098838][ T5262] usb 1-1: new high-speed USB device number 44 using dummy_hcd
[ 1034.043575][ T5262] usb 1-1: config 0 has an invalid interface number: 41 but max is 0
[ 1034.057658][ T5262] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1034.077312][T13910] xt_TPROXY: Can be used only with -p tcp or -p udp
[ 1034.095649][ T5262] usb 1-1: config 0 has no interface number 0
[ 1034.438330][T11189] usb 5-1: new high-speed USB device number 40 using dummy_hcd
[ 1034.788401][ T5262] usb 1-1: New USB device found, idVendor=04d8, idProduct=0083, bcdDevice=83.9c
[ 1034.797716][ T5262] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1034.836796][ T5262] usb 1-1: Product: syz
[ 1034.846283][ T5262] usb 1-1: Manufacturer: syz
[ 1034.856287][ T5262] usb 1-1: SerialNumber: syz
[ 1034.871333][ T5262] usb 1-1: config 0 descriptor??
[ 1034.895040][ T5262] ims_pcu 1-1:0.41: Missing CDC union descriptor
[ 1034.902020][ T5262] ims_pcu 1-1:0.41: probe with driver ims_pcu failed with error -22
[ 1034.920921][T11189] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1034.938435][T11189] usb 5-1: New USB device found, idVendor=046d, idProduct=c626, bcdDevice= 0.00
[ 1034.955553][T11189] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1034.984286][T11189] usb 5-1: config 0 descriptor??
[ 1036.247136][T11189] logitech 0003:046D:C626.0008: unbalanced delimiter at end of report description
[ 1036.268131][ T5294] usb 1-1: USB disconnect, device number 44
[ 1036.319686][T11189] logitech 0003:046D:C626.0008: parse failed
[ 1036.333603][T11189] logitech 0003:046D:C626.0008: probe with driver logitech failed with error -22
[ 1036.439754][T13943] syzkaller0: entered promiscuous mode
[ 1036.633977][T13943] syzkaller0: entered allmulticast mode
[ 1036.645204][T13952] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1993'.
[ 1036.668280][T13952] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1993'.
[ 1036.690784][  T732] syzkaller0: tun_net_xmit 48
[ 1037.839019][ T5267] usb 5-1: USB disconnect, device number 40
[ 1038.677354][T13959] 
[ 1038.679715][T13959] ======================================================
[ 1038.686727][T13959] WARNING: possible circular locking dependency detected
[ 1038.693748][T13959] 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0 Not tainted
[ 1038.700849][T13959] ------------------------------------------------------
[ 1038.707861][T13959] syz.0.1995/13959 is trying to acquire lock:
[ 1038.713920][T13959] ffffffff8fe4d548 (rfcomm_mutex){+.+.}-{3:3}, at: rfcomm_dlc_exists+0xa6/0x380
[ 1038.722958][T13959] 
[ 1038.722958][T13959] but task is already holding lock:
[ 1038.730308][T13959] ffffffff8fe510a8 (rfcomm_ioctl_mutex){+.+.}-{3:3}, at: rfcomm_dev_ioctl+0x237/0x2220
[ 1038.739967][T13959] 
[ 1038.739967][T13959] which lock already depends on the new lock.
[ 1038.739967][T13959] 
[ 1038.750355][T13959] 
[ 1038.750355][T13959] the existing dependency chain (in reverse order) is:
[ 1038.759357][T13959] 
[ 1038.759357][T13959] -> #3 (rfcomm_ioctl_mutex){+.+.}-{3:3}:
[ 1038.767267][T13959]        lock_acquire+0x1ed/0x550
[ 1038.772289][T13959]        __mutex_lock+0x136/0xd70
[ 1038.777306][T13959]        rfcomm_dev_ioctl+0x237/0x2220
[ 1038.782755][T13959]        rfcomm_sock_ioctl+0x86/0xd0
[ 1038.788027][T13959]        sock_do_ioctl+0x158/0x460
[ 1038.793129][T13959]        sock_ioctl+0x626/0x8e0
[ 1038.797970][T13959]        __se_sys_ioctl+0xf9/0x170
[ 1038.803157][T13959]        do_syscall_64+0xf3/0x230
[ 1038.808258][T13959]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1038.814671][T13959] 
[ 1038.814671][T13959] -> #2 (sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM){+.+.}-{0:0}:
[ 1038.824048][T13959]        lock_acquire+0x1ed/0x550
[ 1038.829072][T13959]        lock_sock_nested+0x48/0x100
[ 1038.834347][T13959]        rfcomm_sk_state_change+0x5b/0x310
[ 1038.840142][T13959]        __rfcomm_dlc_close+0x26f/0x6a0
[ 1038.845673][T13959]        rfcomm_dlc_close+0xf1/0x190
[ 1038.850944][T13959]        __rfcomm_sock_close+0x121/0x250
[ 1038.856565][T13959]        rfcomm_sock_shutdown+0xb8/0x240
[ 1038.862188][T13959]        __se_sys_shutdown+0x144/0x1b0
[ 1038.867639][T13959]        do_syscall_64+0xf3/0x230
[ 1038.872646][T13959]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1038.879058][T13959] 
[ 1038.879058][T13959] -> #1 (&d->lock){+.+.}-{3:3}:
[ 1038.886086][T13959]        lock_acquire+0x1ed/0x550
[ 1038.891102][T13959]        __mutex_lock+0x136/0xd70
[ 1038.896109][T13959]        __rfcomm_dlc_close+0x226/0x6a0
[ 1038.901639][T13959]        rfcomm_dlc_close+0xf1/0x190
[ 1038.906913][T13959]        __rfcomm_sock_close+0x121/0x250
[ 1038.912538][T13959]        rfcomm_sock_shutdown+0xb8/0x240
[ 1038.918157][T13959]        __se_sys_shutdown+0x144/0x1b0
[ 1038.923610][T13959]        do_syscall_64+0xf3/0x230
[ 1038.928616][T13959]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1038.935213][T13959] 
[ 1038.935213][T13959] -> #0 (rfcomm_mutex){+.+.}-{3:3}:
[ 1038.942699][T13959]        validate_chain+0x18ef/0x5920
[ 1038.948079][T13959]        __lock_acquire+0x1384/0x2050
[ 1038.953454][T13959]        lock_acquire+0x1ed/0x550
[ 1038.958484][T13959]        __mutex_lock+0x136/0xd70
[ 1038.963500][T13959]        rfcomm_dlc_exists+0xa6/0x380
[ 1038.968864][T13959]        rfcomm_dev_ioctl+0xb53/0x2220
[ 1038.974318][T13959]        rfcomm_sock_ioctl+0x86/0xd0
[ 1038.979599][T13959]        sock_do_ioctl+0x158/0x460
[ 1038.984701][T13959]        sock_ioctl+0x626/0x8e0
[ 1038.989542][T13959]        __se_sys_ioctl+0xf9/0x170
[ 1038.994641][T13959]        do_syscall_64+0xf3/0x230
[ 1038.999651][T13959]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1039.006062][T13959] 
[ 1039.006062][T13959] other info that might help us debug this:
[ 1039.006062][T13959] 
[ 1039.016278][T13959] Chain exists of:
[ 1039.016278][T13959]   rfcomm_mutex --> sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM --> rfcomm_ioctl_mutex
[ 1039.016278][T13959] 
[ 1039.031041][T13959]  Possible unsafe locking scenario:
[ 1039.031041][T13959] 
[ 1039.038647][T13959]        CPU0                    CPU1
[ 1039.044005][T13959]        ----                    ----
[ 1039.049359][T13959]   lock(rfcomm_ioctl_mutex);
[ 1039.054029][T13959]                                lock(sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM);
[ 1039.062692][T13959]                                lock(rfcomm_ioctl_mutex);
[ 1039.069878][T13959]   lock(rfcomm_mutex);
[ 1039.074034][T13959] 
[ 1039.074034][T13959]  *** DEADLOCK ***
[ 1039.074034][T13959] 
[ 1039.082159][T13959] 2 locks held by syz.0.1995/13959:
[ 1039.087335][T13959]  #0: ffff8880283ce258 (sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM){+.+.}-{0:0}, at: rfcomm_sock_ioctl+0x78/0xd0
[ 1039.098728][T13959]  #1: ffffffff8fe510a8 (rfcomm_ioctl_mutex){+.+.}-{3:3}, at: rfcomm_dev_ioctl+0x237/0x2220
[ 1039.108894][T13959] 
[ 1039.108894][T13959] stack backtrace:
[ 1039.114768][T13959] CPU: 0 UID: 0 PID: 13959 Comm: syz.0.1995 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[ 1039.125510][T13959] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1039.135566][T13959] Call Trace:
[ 1039.138841][T13959]  <TASK>
[ 1039.141762][T13959]  dump_stack_lvl+0x241/0x360
[ 1039.146431][T13959]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1039.151624][T13959]  ? __pfx__printk+0x10/0x10
[ 1039.156218][T13959]  print_circular_bug+0x13a/0x1b0
[ 1039.161237][T13959]  check_noncircular+0x36a/0x4a0
[ 1039.166168][T13959]  ? is_bpf_text_address+0x26/0x2a0
[ 1039.171367][T13959]  ? __pfx_check_noncircular+0x10/0x10
[ 1039.176817][T13959]  ? lockdep_lock+0x123/0x2b0
[ 1039.181486][T13959]  ? __pfx_validate_chain+0x10/0x10
[ 1039.186673][T13959]  ? 0xffffffffa0000948
[ 1039.190901][T13959]  ? is_bpf_text_address+0x285/0x2a0
[ 1039.196183][T13959]  validate_chain+0x18ef/0x5920
[ 1039.201025][T13959]  ? kernel_text_address+0xa7/0xe0
[ 1039.206127][T13959]  ? validate_chain+0x11e/0x5920
[ 1039.211061][T13959]  ? __pfx_validate_chain+0x10/0x10
[ 1039.216248][T13959]  ? __lock_acquire+0x1384/0x2050
[ 1039.221267][T13959]  ? validate_chain+0x11e/0x5920
[ 1039.226196][T13959]  ? __pfx_validate_chain+0x10/0x10
[ 1039.231386][T13959]  ? mark_lock+0x9a/0x360
[ 1039.235714][T13959]  ? mark_lock+0x9a/0x360
[ 1039.240034][T13959]  ? __pfx_validate_chain+0x10/0x10
[ 1039.245221][T13959]  __lock_acquire+0x1384/0x2050
[ 1039.250102][T13959]  lock_acquire+0x1ed/0x550
[ 1039.254598][T13959]  ? rfcomm_dlc_exists+0xa6/0x380
[ 1039.259612][T13959]  ? __pfx_lock_acquire+0x10/0x10
[ 1039.264630][T13959]  ? __pfx___might_resched+0x10/0x10
[ 1039.269946][T13959]  ? __lock_acquire+0x1384/0x2050
[ 1039.274967][T13959]  __mutex_lock+0x136/0xd70
[ 1039.279461][T13959]  ? rfcomm_dlc_exists+0xa6/0x380
[ 1039.284475][T13959]  ? rfcomm_dlc_exists+0xa6/0x380
[ 1039.289486][T13959]  ? __pfx___mutex_lock+0x10/0x10
[ 1039.294498][T13959]  ? __pfx___might_resched+0x10/0x10
[ 1039.299773][T13959]  ? __might_fault+0xaa/0x120
[ 1039.304442][T13959]  rfcomm_dlc_exists+0xa6/0x380
[ 1039.309284][T13959]  ? cap_capable+0x1b4/0x250
[ 1039.313863][T13959]  ? __pfx_rfcomm_dlc_exists+0x10/0x10
[ 1039.319312][T13959]  ? bpf_lsm_capable+0x9/0x10
[ 1039.323980][T13959]  rfcomm_dev_ioctl+0xb53/0x2220
[ 1039.328910][T13959]  ? __pfx_rfcomm_dev_ioctl+0x10/0x10
[ 1039.334280][T13959]  ? __local_bh_enable_ip+0x168/0x200
[ 1039.339649][T13959]  ? lockdep_hardirqs_on+0x99/0x150
[ 1039.344842][T13959]  ? __local_bh_enable_ip+0x168/0x200
[ 1039.350206][T13959]  ? __pfx___local_bh_enable_ip+0x10/0x10
[ 1039.355916][T13959]  ? do_raw_spin_unlock+0x13c/0x8b0
[ 1039.361110][T13959]  rfcomm_sock_ioctl+0x86/0xd0
[ 1039.365866][T13959]  sock_do_ioctl+0x158/0x460
[ 1039.370451][T13959]  ? __pfx_smack_log+0x10/0x10
[ 1039.375211][T13959]  ? __pfx_sock_do_ioctl+0x10/0x10
[ 1039.380314][T13959]  ? smk_tskacc+0x300/0x370
[ 1039.384810][T13959]  ? smack_file_ioctl+0x29e/0x3a0
[ 1039.389825][T13959]  sock_ioctl+0x626/0x8e0
[ 1039.394145][T13959]  ? __pfx_sock_ioctl+0x10/0x10
[ 1039.398990][T13959]  ? __fget_files+0x3f3/0x470
[ 1039.403662][T13959]  ? __pfx_sock_ioctl+0x10/0x10
[ 1039.408502][T13959]  __se_sys_ioctl+0xf9/0x170
[ 1039.413082][T13959]  do_syscall_64+0xf3/0x230
[ 1039.417572][T13959]  ? clear_bhb_loop+0x35/0x90
[ 1039.422233][T13959]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1039.428116][T13959] RIP: 0033:0x7f4f5537dff9
[ 1039.432518][T13959] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1039.452118][T13959] RSP: 002b:00007f4f561df038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1039.460525][T13959] RAX: ffffffffffffffda RBX: 00007f4f55535f80 RCX: 00007f4f5537dff9
[ 1039.468483][T13959] RDX: 0000000020000100 RSI: 00000000400452c8 RDI: 0000000000000008
[ 1039.476440][T13959] RBP: 00007f4f553f0296 R08: 0000000000000000 R09: 0000000000000000
[ 1039.484398][T13959] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1039.492360][T13959] R13: 0000000000000000 R14: 00007f4f55535f80 R15: 00007ffe1eeed528
[ 1039.500334][T13959]  </TASK>
[ 1039.503456][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1039.855502][T13967] FAULT_INJECTION: forcing a failure.
[ 1039.855502][T13967] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1039.869251][T13967] CPU: 0 UID: 0 PID: 13967 Comm: syz.2.1997 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[ 1039.880071][T13967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1039.890205][T13967] Call Trace:
[ 1039.893484][T13967]  <TASK>
[ 1039.896403][T13967]  dump_stack_lvl+0x241/0x360
[ 1039.901159][T13967]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1039.906345][T13967]  ? __pfx__printk+0x10/0x10
[ 1039.910940][T13967]  should_fail_ex+0x3b0/0x4e0
[ 1039.915604][T13967]  strncpy_from_user+0x36/0x250
[ 1039.920447][T13967]  getname_flags+0xf1/0x540
[ 1039.924939][T13967]  do_sys_openat2+0xd2/0x1d0
[ 1039.929514][T13967]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1039.934698][T13967]  ? preempt_schedule_irq+0x144/0x1c0
[ 1039.940065][T13967]  __x64_sys_openat+0x247/0x2a0
[ 1039.944905][T13967]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1039.950258][T13967]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1039.956569][T13967]  ? rcu_is_watching+0x15/0xb0
[ 1039.961314][T13967]  do_syscall_64+0xf3/0x230
[ 1039.965799][T13967]  ? clear_bhb_loop+0x35/0x90
[ 1039.970459][T13967]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1039.976339][T13967] RIP: 0033:0x7f3bf297dff9
[ 1039.980745][T13967] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1040.000333][T13967] RSP: 002b:00007f3bf36b2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1040.008734][T13967] RAX: ffffffffffffffda RBX: 00007f3bf2b36058 RCX: 00007f3bf297dff9
[ 1040.016720][T13967] RDX: 0040000000040201 RSI: 0000000020000140 RDI: ffffffffffffff9c
[ 1040.024693][T13967] RBP: 00007f3bf36b2090 R08: 0000000000000000 R09: 0000000000000000
[ 1040.032647][T13967] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1040.040601][T13967] R13: 0000000000000000 R14: 00007f3bf2b36058 R15: 00007ffd2ea3f088
[ 1040.048560][T13967]  </TASK>
[ 1040.051651][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1040.262218][T13969] FAULT_INJECTION: forcing a failure.
[ 1040.262218][T13969] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1040.275372][T13969] CPU: 0 UID: 0 PID: 13969 Comm: syz.3.1998 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[ 1040.286150][T13969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1040.296216][T13969] Call Trace:
[ 1040.299499][T13969]  <TASK>
[ 1040.302433][T13969]  dump_stack_lvl+0x241/0x360
[ 1040.307121][T13969]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1040.312511][T13969]  ? __pfx__printk+0x10/0x10
[ 1040.317119][T13969]  ? snprintf+0xda/0x120
[ 1040.321371][T13969]  should_fail_ex+0x3b0/0x4e0
[ 1040.326064][T13969]  _copy_to_user+0x2f/0xb0
[ 1040.330490][T13969]  simple_read_from_buffer+0xca/0x150
[ 1040.335876][T13969]  proc_fail_nth_read+0x1e9/0x250
[ 1040.340914][T13969]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1040.346466][T13969]  ? bpf_lsm_file_permission+0x9/0x10
[ 1040.351854][T13969]  ? security_file_permission+0x74/0x280
[ 1040.357499][T13969]  ? rw_verify_area+0x55e/0x6f0
[ 1040.362356][T13969]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1040.367908][T13969]  vfs_read+0x201/0xbc0
[ 1040.372072][T13969]  ? __pfx_lock_release+0x10/0x10
[ 1040.377117][T13969]  ? __pfx_vfs_read+0x10/0x10
[ 1040.381817][T13969]  ? __fget_files+0x3f3/0x470
[ 1040.386523][T13969]  ? fdget_pos+0x24e/0x320
[ 1040.390964][T13969]  ksys_read+0x183/0x2b0
[ 1040.395225][T13969]  ? __pfx_ksys_read+0x10/0x10
[ 1040.400000][T13969]  ? rcu_is_watching+0x15/0xb0
[ 1040.404772][T13969]  ? rcu_is_watching+0x15/0xb0
[ 1040.409547][T13969]  do_syscall_64+0xf3/0x230
[ 1040.414045][T13969]  ? clear_bhb_loop+0x35/0x90
[ 1040.418714][T13969]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1040.424601][T13969] RIP: 0033:0x7f01fdb7ca3c
[ 1040.429006][T13969] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[ 1040.448603][T13969] RSP: 002b:00007f01fe901030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1040.457007][T13969] RAX: ffffffffffffffda RBX: 00007f01fdd36130 RCX: 00007f01fdb7ca3c
[ 1040.464964][T13969] RDX: 000000000000000f RSI: 00007f01fe9010a0 RDI: 000000000000000a
[ 1040.472928][T13969] RBP: 00007f01fe901090 R08: 0000000000000000 R09: 0000000000000000
[ 1040.480885][T13969] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1040.488844][T13969] R13: 0000000000000000 R14: 00007f01fdd36130 R15: 00007ffdc02bf748
[ 1040.496811][T13969]  </TASK>
[ 1040.499884][    C0] vkms_vblank_simulate: vblank timer overrun