last executing test programs:

15m49.004499312s ago: executing program 0 (id=761):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=@newsa={0x14c, 0x10, 0x713, 0x0, 0x0, {{@in6=@local, @in=@local}, {@in6=@remote, 0x0, 0x33}, @in=@local, {0x0, 0x6}, {}, {0x4}, 0x0, 0x0, 0x2, 0x4}, [@algo_auth_trunc={0x5c, 0x14, {{'cmac(aes)\x00'}, 0x80, 0x0, "3509fe8fd57fd44aa5074c50bc700e53"}}]}, 0x14c}}, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f00000001c0)={'xfrm0\x00', &(0x7f0000000180)=@ethtool_wolinfo={0x5, 0x0, 0x0, "0bbc84a2a4a0"}})
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x25, &(0x7f00000000c0)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0x52}, &(0x7f00000001c0)=0x9c)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r3, 0x400448ca, 0x0)
bind$bt_hci(r3, &(0x7f0000000040)={0x1f, 0x0, 0x1}, 0x6)
r4 = syz_open_dev$video(&(0x7f0000000000), 0x485, 0x40000)
ioctl$VIDIOC_S_SELECTION(r4, 0xc040565f, &(0x7f00000000c0)={0x9, 0x0, 0x4, {0x18, 0x20ab, 0x6, 0x8}})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1400000010001e0000000000000000000000000a40000000060a010400000000000000000206000000000000000001800b00010064796e7365740000180002000900010073797a30000000000800044000000000140000001100010000000000000000040000000a"], 0x68}}, 0x0)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB='D\x00\x00', @ANYRES16=r5], 0x44}}, 0x0)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x3)
ioctl$FS_IOC_GETFSLABEL(r6, 0x400452c8, &(0x7f0000000100))
socket(0x28, 0x3, 0xdaef)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x3, 0x2, &(0x7f0000000100)=@raw=[@ldst={0x1, 0x0, 0x4, 0x0, 0x1, 0x82}, @jmp={0x5, 0x0, 0x9}], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r7 = socket$netlink(0x10, 0x3, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x281c2, 0x44)
fcntl$setlease(r8, 0x400, 0x1)
creat(&(0x7f0000000200)='./file1\x00', 0x4)
r9 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/locks\x00', 0x0, 0x0)
pread64(r9, &(0x7f0000001440)=""/126, 0x7e, 0x0)
close_range(r7, 0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000a00), 0xffffffffffffffff)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r10, 0x8933, &(0x7f0000000040)={'wlan0\x00'})

15m48.306519787s ago: executing program 0 (id=763):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000000e00)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000180)="ae1d4b178f10911a2dab191193b809cf9294262aa07902937575ee00b79dde347c0e6b2970ac6c8aa4d76a09fbd96643ee0877b3d0badfdcef5d45ff3c02cbf632464c24039086f74548ccae132a1bafbfef8cc1860c4aad820da4977e44f7b489cfccac766c51391bfcdb9f5510c7770582516cb7d41772001624e5905bba54f08547a4485b5a2a98b5f5c690d0a825161e3d7e4b39365b43b2701c68b167bbdce33c013a9b89c9a7b823ec5ecd432f12dc063ddaa7431a3385e29d0c7ac17389308b450e1d06ab9388183e9828783f6a23183986257098262af4ba197ca5e4499ec85fd8c1f1", 0xe7}, {&(0x7f00000002c0)="7f2f58967d9a6924bf6fed7467470b436ce6b9060056d5096e3c4efeec82e9e3e6446a274bca12243a4965600d3e1843baccebbad5e427aeaff4e1431a4569bfdc0a70ca0e", 0x45}, {&(0x7f0000000340)="853fb58bbfe8dd0cc89d43d5d23b1300ed7e35f003657088996f21190dcb6b3f58c4056eeda3ad7e97ab52e04a101c55ad140ed006cb1a657170168fef29b9d66a7d877d1c71536b486b0ef40e14b84a970df872b1bee0e7", 0x58}, {&(0x7f00000003c0)="e9623a2564f0dca65929e3dcaf93431db8a9e128b420d32a401394714e0352e456d446ac080b638c9d63fa92e935cebeb2273e06064c044da5b383b4a6222d0d6afb6612404566faeee57d678a63a91eea4242f87342c64a95ebfdc6ad6b0a72feab53b2d53d805f90cc578b2bafbdcfd62f2ef4861b76e32272e8c799fdffd209b1c8fc26d842bd31482458ef705a7ff7f14faa90a193977eb376443d524cbb7ec9c6b73d441c57d69e2389a1fed974289ad4ce97d971edd3d7d678ee9de3caeeefe4cfcb09bc11ca162e06e98a2ce596070d83081e8d4014d917145aeb224f2a4a530cf5bbf1021647b99cd5", 0xed}, {&(0x7f00000004c0)="73d4ee65bba261afcec94075e4f13fb157c1bc27e26547cde7ff7244ed31797dfb8df9b8695ca5667526d5594901cd5e1a944936387c97d9ac91804b46657552fa7bbad707c25f5412e40742ee435f6774a8edced6ae721b6ce231cfeedd7d", 0x5f}, {&(0x7f0000000100)="cfc4a70042dd", 0x6}, {&(0x7f0000000640)="853ef8e048602d96b1098f1b1265a8315b5158ee6dc61dfe5be1063bac6eec0a9525fcfe6be179cbbd8c5cf9a7fc1ae037fba1f6fb5a060fd0ec2dfc4edf69fdc23a30e510d2fba92bd55ed7f4f893103b27", 0x52}], 0x7}}, {{0x0, 0x0, &(0x7f0000000c80)=[{&(0x7f00000007c0)="9b76f00d7896f57313214b00958aef52901a18ff216310ac27dfc6ab72d9613160c3fe223de4ef6e9dcd5966d72ac2fc4a746fc1e58398e50f7b08bba2b56220a751e01156a10aa2d92861404dfce53be69bfbf0faf3f853d5564407f0eff9eac60e1876ff775bdd17d67ca7b0826783e51e632396fa918cfe55adfeb1c5de1f5db782645a54057c205ce92ac4452f95ea214c24046862a0c7d172664efe5359850941e99a984a02579e6e76ed6a2d2d3e14457ef8fd37a65bd54fa0af9a14822a0b17ef", 0xc4}], 0x1}}], 0x2, 0x10)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)

15m47.499626102s ago: executing program 0 (id=764):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
rt_sigprocmask(0x2, 0x0, &(0x7f00000002c0), 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb01001800000000000000180000001800060002000000000000000000000000000400"/50], 0x0, 0x32, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
ioctl$SIOCX25CALLACCPTAPPRV(0xffffffffffffffff, 0x89e8)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040)={<r2=>0xffffffffffffffff}, 0x111}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r1, &(0x7f0000000180)={0x3, 0x40, 0xfa02, {{0x6000000, 0x0, 0xffffffff, @private1={0xfc, 0x1, '\x00', 0x1}, 0x1}, {0xa, 0x4e20, 0x4, @mcast2={0xff, 0x5}, 0x3ff}, r2}}, 0x48)
close_range(r0, 0xffffffffffffffff, 0x0)

15m47.2300748s ago: executing program 0 (id=766):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000008085000000040000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
r1 = getpid()
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/43, 0x7ffff000}, {&(0x7f0000000480)=""/165, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x2aa, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x18)
mlockall(0x5)

15m46.323271277s ago: executing program 0 (id=771):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000100)={&(0x7f0000000000), &(0x7f0000000080)=""/99, 0x63})
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000280)=0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000940)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
bind$unix(r1, &(0x7f0000000200)=@file={0x1, './file0\x00'}, 0x6e)
r2 = gettid()
timer_create(0x0, &(0x7f0000000440)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000500)={<r3=>0xffffffffffffffff})
recvmsg(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000480)=""/74, 0x49}], 0x13}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)

15m45.138877051s ago: executing program 0 (id=778):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_emit_ethernet(0x13e, &(0x7f0000000280)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "0fe104", 0x108, 0x3a, 0xff, @local, @mcast2, {[], @ndisc_ns={0x87, 0x0, 0x0, @empty, [{0x0, 0x0, 'Qh'}, {0x1, 0x1e, "ea4e6a72fc2f5819784ecd538da928b9e9abcf4395fe30e7f86dac2ba8192c3402e60a74816a132560c6e4c10363567b4863fde63662c1eedb5cc880d38c8c661abc8abf92b3ca0b579eea6c755e6d2205541de5d09a8a3edc808b0477640527e0d323dfbe953499214772b38673839b6b4a55c86e650cce76e2b80f21662febf910c6569bfc03c373573364caa85e92bc641ca12d1effaa2595bb2fc29194012185e21c0a1909a26cca2f040e6457dd6b32caf789777df60b43df629581e40b01f4f660fc2fb452ded0e152db74df94388c89347873dc00826c21f793d7b7ecac509117d0e501222895bb1ea483"}]}}}}}}, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$FUSE_NOTIFY_STORE(r1, &(0x7f0000000040)=ANY=[@ANYBLOB='\t'], 0x28)
mount$binderfs(0x0, &(0x7f0000001240)='./binderfs\x00', &(0x7f0000001280), 0x4001, &(0x7f00000012c0)=ANY=[@ANYBLOB="6d61783830303030303030303030303030023030303030303030332c7365636c6162656c1b"])
r2 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$FUSE_NOTIFY_INVAL_ENTRY(r2, &(0x7f0000000140)={0x2a, 0x7, 0x0, {0x0, 0x9, 0x0, '/dev/sg#\x00'}}, 0x2a)
close(r1)
execve(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r3 = dup(r0)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r5, 0x7a7, &(0x7f00000000c0)=0xa0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r5, 0x7a0, &(0x7f0000000040)={@host})
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$IOCTL_VMCI_DATAGRAM_SEND(r5, 0x7ab, &(0x7f0000000000)={&(0x7f00000001c0)={{@host, 0xf1}, {@any, 0x2}, 0x10fe8, "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"}, 0x418, 0x6})
read$alg(r4, &(0x7f0000000240)=""/4096, 0xfffffdef)
pread64(0xffffffffffffffff, &(0x7f000001a240)=""/102400, 0x19000, 0x100008)
socketpair(0x1a, 0x2, 0x80, &(0x7f0000000100))
mmap(&(0x7f00006f9000/0x4000)=nil, 0x4000, 0x1000007, 0x8010, r4, 0x58eb2000)

15m28.27519411s ago: executing program 32 (id=778):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_emit_ethernet(0x13e, &(0x7f0000000280)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "0fe104", 0x108, 0x3a, 0xff, @local, @mcast2, {[], @ndisc_ns={0x87, 0x0, 0x0, @empty, [{0x0, 0x0, 'Qh'}, {0x1, 0x1e, "ea4e6a72fc2f5819784ecd538da928b9e9abcf4395fe30e7f86dac2ba8192c3402e60a74816a132560c6e4c10363567b4863fde63662c1eedb5cc880d38c8c661abc8abf92b3ca0b579eea6c755e6d2205541de5d09a8a3edc808b0477640527e0d323dfbe953499214772b38673839b6b4a55c86e650cce76e2b80f21662febf910c6569bfc03c373573364caa85e92bc641ca12d1effaa2595bb2fc29194012185e21c0a1909a26cca2f040e6457dd6b32caf789777df60b43df629581e40b01f4f660fc2fb452ded0e152db74df94388c89347873dc00826c21f793d7b7ecac509117d0e501222895bb1ea483"}]}}}}}}, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$FUSE_NOTIFY_STORE(r1, &(0x7f0000000040)=ANY=[@ANYBLOB='\t'], 0x28)
mount$binderfs(0x0, &(0x7f0000001240)='./binderfs\x00', &(0x7f0000001280), 0x4001, &(0x7f00000012c0)=ANY=[@ANYBLOB="6d61783830303030303030303030303030023030303030303030332c7365636c6162656c1b"])
r2 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$FUSE_NOTIFY_INVAL_ENTRY(r2, &(0x7f0000000140)={0x2a, 0x7, 0x0, {0x0, 0x9, 0x0, '/dev/sg#\x00'}}, 0x2a)
close(r1)
execve(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r3 = dup(r0)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r5, 0x7a7, &(0x7f00000000c0)=0xa0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r5, 0x7a0, &(0x7f0000000040)={@host})
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$IOCTL_VMCI_DATAGRAM_SEND(r5, 0x7ab, &(0x7f0000000000)={&(0x7f00000001c0)={{@host, 0xf1}, {@any, 0x2}, 0x10fe8, "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"}, 0x418, 0x6})
read$alg(r4, &(0x7f0000000240)=""/4096, 0xfffffdef)
pread64(0xffffffffffffffff, &(0x7f000001a240)=""/102400, 0x19000, 0x100008)
socketpair(0x1a, 0x2, 0x80, &(0x7f0000000100))
mmap(&(0x7f00006f9000/0x4000)=nil, 0x4000, 0x1000007, 0x8010, r4, 0x58eb2000)

6m16.510114125s ago: executing program 3 (id=2480):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
getsockopt$rose(r0, 0x104, 0x5, 0x0, &(0x7f0000000540))
ioctl$FS_IOC_ENABLE_VERITY(0xffffffffffffffff, 0x40806685, 0x0)
r1 = openat$tun(0xffffffffffffff9c, 0x0, 0xd45da298eeb58485, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, 0x0)
syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x0, 0xffffffff, 0xffdffffe}, &(0x7f0000000000), &(0x7f0000000280))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
sysinfo(0x0)

6m15.745494959s ago: executing program 3 (id=2487):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x8, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="bf00000000000000dd0a0000faffffff73"], 0x0, 0x5, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x19, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000140), 0xc00, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
ioctl$vim2m_VIDIOC_STREAMOFF(r3, 0x40045612, &(0x7f0000000240)=0x3)
ioctl$KVM_NMI(r4, 0xae9a)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000180)="66b83b010f00d866260f302e66f4b8010000000f01c166baf80cb851f0a187ef66bafc0cec66f30f09c4e139dcdf0f0665673ef4b9df0200000f32", 0x3b}], 0x1, 0x11, &(0x7f0000000200)=[@dstype0={0x6, 0x1}], 0x1)
r5 = dup(r2)
ioctl$KVM_SET_MSRS(r5, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000000080000d004"])

6m15.530811521s ago: executing program 3 (id=2491):
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/oss_mixer\x00', 0x2002, 0x0)
write$proc_mixer(r5, &(0x7f0000000180)=ANY=[@ANYBLOB], 0xb8)
ioctl$TCFLSH(0xffffffffffffffff, 0x400455c8, 0x5)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x101002)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r6 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100, 0x0, 0x0, 0x0, r1}, 0x0, &(0x7f00000001c0)=<r7=>0x0)
syz_io_uring_submit(0x0, r7, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r6, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r8 = socket$kcm(0x2, 0x5, 0x84)
sendmsg$inet(r8, &(0x7f00000002c0)={&(0x7f00000000c0)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000100)=[{&(0x7f0000000500)="12", 0x1}], 0x1}, 0x0)
recvmsg$kcm(r8, &(0x7f0000000ac0)={0x0, 0x0, 0x0}, 0x40000002)

6m13.950080944s ago: executing program 3 (id=2493):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x18)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='environ\x00')
preadv(r4, &(0x7f0000001400)=[{&(0x7f0000000040)=""/113, 0x200000b1}], 0x1, 0xc002a0, 0x0)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r5, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x1, 0x20}, 0xc)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f0000000000)={0x0, @in6={{0xa, 0x0, 0x0, @local}}, 0x0, 0x800, 0x0, 0x0, 0x17, 0x0, 0x8}, 0x9c)
getsockopt$IP_SET_OP_GET_FNAME(r5, 0x1, 0x53, &(0x7f00000000c0)={0x8, 0x7, 0x0, 'syz2\x00'}, &(0x7f0000000100)=0x2c)
sendmsg$NFC_CMD_DEV_UP(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x2c, 0x0, 0x1, 0x70bd25, 0x25dfdbfd, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_DEVICE_INDEX={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x1}, 0x4040002)
r6 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$inet6_udp_int(r6, 0x11, 0x67, &(0x7f0000000180)=0x7f, 0x4)
connect$inet6(r6, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c)
connect$inet6(r6, &(0x7f0000000080)={0xa, 0x4e25, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}, 0x1c)
r7 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r7, 0x107, 0xf, &(0x7f0000000180)=0x7ff, 0x4)
setsockopt$packet_rx_ring(r7, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x9, 0x0, 0xffffffff}, 0x1c)
sendmmsg$inet6(r6, &(0x7f0000001080)=[{{0x0, 0x0, &(0x7f00000002c0)=[{0x0}], 0x1}}], 0x1, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x9, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x2, 0x1, 0x48}]}, &(0x7f0000000600)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)

6m12.799885385s ago: executing program 3 (id=2495):
mkdir(&(0x7f00000003c0)='./file1\x00', 0x16)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdir(&(0x7f0000000440)='./file0\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, 0x0, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1607010, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x87}, './file0\x00'})

6m12.150430116s ago: executing program 3 (id=2499):
mkdir(&(0x7f00000003c0)='./file1\x00', 0x16)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdir(&(0x7f0000000440)='./file0\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, 0x0, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1607010, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x87}, './file0\x00'}) (fail_nth: 2)

5m55.189645886s ago: executing program 33 (id=2499):
mkdir(&(0x7f00000003c0)='./file1\x00', 0x16)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdir(&(0x7f0000000440)='./file0\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, 0x0, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1607010, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x87}, './file0\x00'}) (fail_nth: 2)

2m13.574361677s ago: executing program 1 (id=3213):
chdir(0x0)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
openat$yama_ptrace_scope(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
fchdir(r0)
fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x5)
sched_setaffinity(0x0, 0x0, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000200), 0x100040000, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
r3 = syz_open_dev$usbfs(&(0x7f0000000100), 0x206, 0x301)
ioctl$USBDEVFS_ALLOW_SUSPEND(r3, 0x5522)
getsockopt$IP_VS_SO_GET_DAEMON(r2, 0x0, 0x487, &(0x7f0000000040), &(0x7f00000000c0)=0x30)

2m13.43160047s ago: executing program 1 (id=3216):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000640), &(0x7f0000000800)=0x4)
r1 = socket$inet(0xa, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f00000000c0)=@filter={'filter\x00', 0xe, 0x4, 0x260, 0xffffffff, 0x130, 0x130, 0x0, 0xffffffff, 0xffffffff, 0x130, 0x1c8, 0x208, 0xffffffff, 0x4, 0x0, {[{{@ip={@rand_addr, @private, 0x0, 0x0, 'pimreg\x00', 'veth1_to_bond\x00'}, 0x0, 0x70, 0x98}, @REJECT={0x28}}, {{@ip={@empty, @rand_addr, 0x0, 0x0, 'veth1_to_bridge\x00', 'pim6reg1\x00'}, 0x0, 0x70, 0x98}, @REJECT={0x28}}, {{@uncond, 0x0, 0x70, 0x98}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xffffffffffffffff}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2c0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f00000004c0)='fsi_slave_init\x00'}, 0x77)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
accept4$inet6(r0, 0x0, 0x0, 0x80000)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000040)=ANY=[@ANYRES64=r2], &(0x7f0000000200)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x1ffffc, 0x0, 0x0, 0x0, 0x3})
mknod$loop(&(0x7f0000000240)='./file0\x00', 0x4, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r5, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r5, 0x0)
preadv(r5, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600a847500140600fe8000000000000000000000000000bb", @ANYRES32=0x41424344], 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000327000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326600080079000f300f0f1c9a65660ff3b20618baa000ec66b9670200000f320f285473f6132e660f3880833fc80f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x4f}], 0x1, 0x0, 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000180)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$sock_inet_SIOCSIFBRDADDR(r0, 0x891a, &(0x7f0000000180)={'sit0\x00', {0x2, 0x4e21, @rand_addr=0x64010101}})

2m12.346208904s ago: executing program 1 (id=3217):
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x40000000000008b}, 0x0) (async, rerun: 32)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async, rerun: 32)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = socket(0x2, 0x2, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r0, &(0x7f0000000340), &(0x7f0000000040)=@udp=r1}, 0x20) (async)
close_range(r1, 0xffffffffffffffff, 0x0) (async, rerun: 64)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async, rerun: 64)
socketpair$nbd(0x1, 0x1, 0x0, 0x0) (async)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3) (async, rerun: 32)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) (rerun: 32)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) (async)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) (async)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
connect$inet(r3, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
mprotect(&(0x7f0000ffc000/0x4000)=nil, 0x4004, 0x5) (async)
mkdir(&(0x7f0000000500)='./file0\x00', 0x0) (async, rerun: 32)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff) (rerun: 32)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = openat$cgroup_procs(r4, &(0x7f0000000480)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r5, &(0x7f00000000c0), 0x12)

2m11.957075408s ago: executing program 1 (id=3218):
r0 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000000)=0x655e, 0x4)
r1 = dup2(r0, r0)
setsockopt$inet6_int(r1, 0x29, 0x4a, &(0x7f0000000580)=0x7ff, 0x4)
write$tun(r1, &(0x7f0000000340)=ANY=[@ANYRESOCT=r1, @ANYRES32], 0x46)
recvmmsg(r1, &(0x7f00000049c0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x10}}], 0x1, 0x2000, 0x0)
r2 = syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0)
ioctl$VIDIOC_S_FMT(r2, 0xc0d05605, &(0x7f0000000380)={0x1, @pix_mp={0x3, 0x0, 0x48524742, 0x7, 0x0, [{}, {0x0, 0x2}, {0x0, 0x400000}, {}, {}, {}, {0x0, 0xc5}, {0x1000000, 0xfffffffe}], 0x0, 0x0, 0x7, 0x1}})
modify_ldt$write(0x1, &(0x7f0000000040)={0x403, 0x20000000}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r3 = openat$cuse(0xffffffffffffff9c, &(0x7f0000001f80), 0x2, 0x0)
write$FUSE_NOTIFY_INVAL_ENTRY(r3, &(0x7f0000001fc0)={0x42, 0x3, 0x0, {0x0, 0x21, 0x0, '/proc/sys/net/ipv4/vs/secure_tcp\x00'}}, 0x42)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r4 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r4, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x80000, 0x0)
move_mount(r4, &(0x7f00000000c0)='./file0\x00', r4, &(0x7f00000001c0)='./file0\x00', 0x100)
socket$vsock_stream(0x28, 0x1, 0x0)
mount$nfs(0x0, &(0x7f0000000640)='.\x00', &(0x7f0000000680), 0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB='acl'])
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x4000, 0xf)
syz_clone(0x20001000, 0x0, 0x0, 0x0, 0x0, 0x0)

2m11.05611848s ago: executing program 1 (id=3221):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x3}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x48, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x20, 0x4, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0xc}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xbc}}, 0x0)
sendmmsg$sock(r0, &(0x7f00000006c0)=[{{&(0x7f0000000100)=@rxrpc=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x4e22, @multicast1}}, 0x80, &(0x7f0000000500)=[{&(0x7f0000000080)="4ccbe6a2", 0x4}, {&(0x7f0000000180)="d4f259ff7e7c7488bb903ff3ce47f34e7b845b86d7dbb8eeab939d6bb280ac33f5de70a463129f3996032dd7bde3ec39a8be9ac86b80f4213f069fed78f8dc124b12dfe8d882ac2aad5efccfc30fa24e6c65d3c1177aa875827665525e9711c38b642e8b60581a4a727fca6fa960fa096bcde8c8344d7f2e3460e82957d8056f227b3068e97aed5cb962e9384cc7aa0c529b394c859fb794d9f6637052118968f2d2dc9df836c5fd8785", 0xaa}, {&(0x7f0000000240)="ab4ce4b335d755503ee9d59ef88d006e97aa60b3a98a28539a26295189de8a80dff840769ca39d48fd4f61d5f6bf26cdbe758dc8df030d5864bdc950f4730c39ea188bd8ae90bbfe75c258498e16fa7ce9a638e5879575b319c32fd73610d9adb3c47463955abbdeb4363ab63eac073d15bc59c9c15de73ebc8a0a469e7678bf5614e8d79f5fd261ee829444a3f3c8993cb01c60fe8fdae28f371fc23daa91279036", 0xa2}, {&(0x7f0000000300)="cdaba584dc7429731c08a680fdcba31e422839bf857520aaf013b3f18033b6124e7fdab7f9743ea7104bf48c5bef3ab12ab13f5b2d8e874d2891303217f3a17c44", 0x41}, {&(0x7f0000000380)="ee11401908", 0x5}, {&(0x7f00000003c0)="de244530f948f6033e47c3cddd11f40e8f3462a381c4605290fa620749739c888892b22a4a7ecdf2f98d08b1880f828891a09bce27e2ccea735d3c9a88849c50c6b24a9a3372ffe72dad7b11b8e7a32cc7856cb2d8a0b1bbc0636aeb0053d034300465fffa84bc3e30170299e767340a52ce8f0101550a6a276810fe351f68fe765c2178ea507a9e441eed9aaab858012a", 0x91}, {&(0x7f0000000480)="3e895bb9e7304708fa12c9222e8bd1d353c9b6cf13c86118fcb45704abe6a62b5d79cb53843c6b8d234c60293a0b3cfe414c281a0d97056867eb5099cf784fffa51a03f1ae3109bd15a3945f25751126b7b29279f18f776b7ecd2fe1c504add4799632337c6c94263aa0890d45630680651d1899", 0x74}], 0x7, &(0x7f0000000580)=[@timestamping={{0x14, 0x1, 0x25, 0xfffffff7}}, @mark={{0x14, 0x1, 0x24, 0x1}}, @mark={{0x14, 0x1, 0x24, 0x6}}, @timestamping={{0x14, 0x1, 0x25, 0xdd}}], 0x60}}], 0x1, 0x801)
sendmsg$IPSET_CMD_SWAP(r0, &(0x7f00000007c0)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000780)={&(0x7f0000000740)={0x30, 0x6, 0x6, 0x205, 0x0, 0x0, {0xa, 0x0, 0x1}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME2={0x9, 0x3, 'syz2\x00'}]}, 0x30}, 0x1, 0x0, 0x0, 0x44801}, 0x20000000)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x40000, 0x0)

2m9.790042148s ago: executing program 1 (id=3227):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/reserved_size', 0x42, 0x0)
io_setup(0x20, &(0x7f0000001140)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f00000001c0)=[&(0x7f0000002040)={0xf, 0x400000000000, 0x0, 0x1, 0x0, r0, &(0x7f0000000080)='\r', 0x7}])
r2 = syz_io_uring_setup(0x237, &(0x7f0000000480)={0x0, 0x8100, 0x0, 0x0, 0x2cf}, &(0x7f0000000040)=<r3=>0x0, &(0x7f0000000600)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
r5 = socket$inet_smc(0x2b, 0x1, 0x0)
r6 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$KVM_CAP_VM_TYPES(r6, 0x4068aea3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r7 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r7, &(0x7f0000019680)=""/102392, 0x18ff8)
r8 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000640)=@raw={'raw\x00', 0x4001, 0x3, 0x2b8, 0x0, 0x37f, 0x148, 0x0, 0x148, 0x220, 0x240, 0x240, 0x220, 0x240, 0x7fffffe, 0x0, {[{{@ip={@rand_addr=0x64010101, @rand_addr=0x64010101, 0x0, 0x0, 'ip6gretap0\x00', 'veth1_to_batadv\x00', {}, {}, 0x6}, 0x0, 0xe8, 0x150, 0x0, {}, [@common=@inet=@ecn={{0x28}, {0x10}}, @common=@inet=@multiport={{0x50}, {0x40, 0x0, [0x0, 0x0, 0x0, 0xfffe, 0x0, 0x0, 0x4e23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4e21]}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x14, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @local, 0x3, 0x0, [0x6, 0x25, 0xd, 0x13, 0x39, 0x3f, 0x38, 0x8, 0x3b, 0x5, 0x15, 0x8, 0x4, 0x20, 0x13, 0x3], 0x1, 0x8, 0x1}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x318)
shutdown(r8, 0x0)
r9 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r9, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
bind$inet6(r9, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r9, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
socket$netlink(0x10, 0x3, 0x4)
syz_usb_ep_read(0xffffffffffffffff, 0x4, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r8, 0x84, 0x10, 0x0, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f0000000100)=@l2tp={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x1b}, 0x3}, 0x0, 0x0, 0x1})
io_uring_enter(r2, 0x47bb, 0x49e0, 0x0, 0x0, 0x0)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r10=>0xffffffffffffffff}, 0x0)
ioctl$TCSETSF(r10, 0x5404, &(0x7f0000000000)={0xf, 0x1, 0x7, 0xffff, 0xb, "c451022be22d0d5602a29fe3b8bfe540fac226"})

2m9.678847117s ago: executing program 34 (id=3227):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/reserved_size', 0x42, 0x0)
io_setup(0x20, &(0x7f0000001140)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f00000001c0)=[&(0x7f0000002040)={0xf, 0x400000000000, 0x0, 0x1, 0x0, r0, &(0x7f0000000080)='\r', 0x7}])
r2 = syz_io_uring_setup(0x237, &(0x7f0000000480)={0x0, 0x8100, 0x0, 0x0, 0x2cf}, &(0x7f0000000040)=<r3=>0x0, &(0x7f0000000600)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
r5 = socket$inet_smc(0x2b, 0x1, 0x0)
r6 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$KVM_CAP_VM_TYPES(r6, 0x4068aea3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r7 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r7, &(0x7f0000019680)=""/102392, 0x18ff8)
r8 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000640)=@raw={'raw\x00', 0x4001, 0x3, 0x2b8, 0x0, 0x37f, 0x148, 0x0, 0x148, 0x220, 0x240, 0x240, 0x220, 0x240, 0x7fffffe, 0x0, {[{{@ip={@rand_addr=0x64010101, @rand_addr=0x64010101, 0x0, 0x0, 'ip6gretap0\x00', 'veth1_to_batadv\x00', {}, {}, 0x6}, 0x0, 0xe8, 0x150, 0x0, {}, [@common=@inet=@ecn={{0x28}, {0x10}}, @common=@inet=@multiport={{0x50}, {0x40, 0x0, [0x0, 0x0, 0x0, 0xfffe, 0x0, 0x0, 0x4e23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4e21]}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x14, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @local, 0x3, 0x0, [0x6, 0x25, 0xd, 0x13, 0x39, 0x3f, 0x38, 0x8, 0x3b, 0x5, 0x15, 0x8, 0x4, 0x20, 0x13, 0x3], 0x1, 0x8, 0x1}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x318)
shutdown(r8, 0x0)
r9 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r9, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
bind$inet6(r9, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r9, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
socket$netlink(0x10, 0x3, 0x4)
syz_usb_ep_read(0xffffffffffffffff, 0x4, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r8, 0x84, 0x10, 0x0, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f0000000100)=@l2tp={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x1b}, 0x3}, 0x0, 0x0, 0x1})
io_uring_enter(r2, 0x47bb, 0x49e0, 0x0, 0x0, 0x0)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r10=>0xffffffffffffffff}, 0x0)
ioctl$TCSETSF(r10, 0x5404, &(0x7f0000000000)={0xf, 0x1, 0x7, 0xffff, 0xb, "c451022be22d0d5602a29fe3b8bfe540fac226"})

4.22233821s ago: executing program 2 (id=3690):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000002540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000040)={<r1=>0xffffffffffffffff}, 0x106, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r0, &(0x7f0000000280)={0x15, 0x110, 0xfa00, {r1, 0x0, 0x0, 0x30, 0x0, @in={0x1b, 0xfffc, @local}, @ib={0x1b, 0x0, 0x0, {}, 0x800, 0x0, 0x5}}}, 0x118)
write$RDMA_USER_CM_CMD_DISCONNECT(r0, &(0x7f00000003c0)={0xa, 0x4, 0xfa00, {r1}}, 0xc)

4.183622719s ago: executing program 2 (id=3691):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r0 = gettid()
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
read(r1, &(0x7f0000000200)=""/209, 0xd1)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f0000000080)={0x2b9, @time})
tkill(r0, 0x7)
ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r1, 0x80045301, 0x0)

4.002794728s ago: executing program 2 (id=3692):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_pressure(r0, &(0x7f0000000040)='io.pressure\x00', 0x2, 0x0)
write$cgroup_pressure(r1, &(0x7f0000000340)={'some', 0x20, 0x7, 0x20, 0xffffa}, 0x2f)
r2 = openat$cgroup_pressure(r0, &(0x7f00000000c0)='io.pressure\x00', 0x2, 0x0)
ppoll(&(0x7f0000000180)=[{r1}], 0x1, 0x0, 0x0, 0x0)
write$cgroup_pressure(r2, &(0x7f0000000340)={'some', 0x20, 0x7, 0x20, 0xffffa}, 0x2f)
close(r1)
close(r2)

3.861874384s ago: executing program 2 (id=3693):
syz_init_net_socket$ax25(0x3, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60005f, 0x19)
ioctl$SIOCAX25DELUID(0xffffffffffffffff, 0x891c, 0x0)

3.592998357s ago: executing program 6 (id=3696):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = getpid()
setreuid(0xee00, 0x0)
r2 = syz_pidfd_open(r1, 0x0)
setns(r2, 0x24020000)
syz_clone3(&(0x7f00000008c0)={0x14840000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0x0], 0x1}, 0x58)

3.372848051s ago: executing program 6 (id=3698):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x11, 0x4, 0x4, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000100)={r0, 0x0, 0x0}, 0x1c)

3.293320157s ago: executing program 6 (id=3699):
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="9f01000083667d1040206402d14e0102030109021b000100000000090400000190f19c000905f3ed"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, &(0x7f00000005c0)={0x24, &(0x7f0000000280)={0x40, 0xb, 0x2, "21d8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

2.357864909s ago: executing program 5 (id=3707):
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="02c920590c19"], 0x15)

2.357542763s ago: executing program 2 (id=3709):
msgsnd(0x0, &(0x7f0000003540)=ANY=[], 0xe8, 0x800)

2.357383776s ago: executing program 4 (id=3710):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=@base={0x16, 0x0, 0x8400, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_DELETE_ELEM(0x15, &(0x7f0000000400)={r0, 0x0, 0x20000000}, 0x20)

2.260731202s ago: executing program 5 (id=3711):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040))
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
add_key$fscrypt_v1(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000080)={[{0x5}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000000000000}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}]})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x2004cb], 0x0, 0x202})
ioctl$KVM_SET_PIT2(r1, 0x4070aea0, &(0x7f0000000240)={[{0x0, 0x8000, 0xe0, 0x0, 0x0, 0x4, 0x8, 0x1, 0x0, 0x2, 0x40, 0x0, 0x400001}, {0x0, 0x0, 0xff, 0xfe, 0x0, 0x0, 0x81, 0x0, 0x0, 0x2, 0x0, 0x4}, {0x7, 0x0, 0x0, 0x11, 0x5, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe0ec}]})

2.259677834s ago: executing program 2 (id=3712):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000001040)={{0x12, 0x1, 0x0, 0x40, 0x15, 0x42, 0x20, 0x5a9, 0x1550, 0xe4bb, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x8e, 0xc4, 0x6f}}]}}]}}, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)

2.243017541s ago: executing program 4 (id=3713):
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000180)={'batadv_slave_1\x00', <r1=>0x0})
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000040)={r1, 0x1, 0x6, @local}, 0x10)
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000000)={r1, 0x1, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, 0x10)
setsockopt$packet_add_memb(r0, 0x107, 0x2, &(0x7f00000005c0)={0x0, 0x1, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xd}}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
socketpair(0x38, 0x2, 0x401, &(0x7f00000001c0)={<r2=>0xffffffffffffffff})
ioctl$sock_bt_bnep_BNEPGETCONNINFO(r2, 0x800442d3, &(0x7f0000000200)={0xfffffffb, 0xfff9, 0x7, @random="ed8b974cf5d1", 'wg1\x00'})
socket$inet_icmp_raw(0x2, 0x3, 0x1)
socket$nl_audit(0x10, 0x3, 0x9)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000480), 0x0, 0x0)
r4 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, 0x0)
close(r4)
ioctl$TUNSETNOCSUM(r3, 0x400454ca, 0x20000000)
close(0x3)

2.070510238s ago: executing program 4 (id=3715):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCSARP(r0, 0x8955, &(0x7f0000000a80)={{0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, {0x306, @multicast}, 0x1c, {0x2, 0x4e21, @multicast2}, 'veth0\x00'})
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/arp\x00')
preadv(r1, &(0x7f0000000c00)=[{&(0x7f0000000500)=""/234, 0xea}, {0x0}, {0x0}, {0x0}, {0x0}], 0x5, 0xffff, 0x5dd073cf)

1.988954576s ago: executing program 4 (id=3718):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x80000, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000800), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0, 0x0, <r2=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f000000a400)="4e5350994ebf71ce3049a58c5d050078bf16b0757a4c27b455e2a547739587dd3380b5df8f40a0696c5bd6cdb672cffe4d870c5c90ca92095b9ebf3e92fe31d8cd74275d857d34a74f7eecc7fac15e2f148d4e9d47bb45b858bbf078999970d180f28d7b2cefd92635d45a563d9229c9fd770efdc0848e52fa5efd9a7e5c94a1ba94b4b7c7507f8b0819bb20910f9f50a83a010abbe126dd9f6a7b84eab6b0d5ce78d2ade77a5f7e4e997df1d03ffab4b4c945d803e4457909013127a98769c938c237f37263bc509a42bc56ff2dbf80e847e2c407009eef94f18e1e59069d62298fdbadae007ffbdf403c5049a4530ac0abecceb5608da02754c9a575af52c0b7e41226e2d642a814861c4310c935bcbae413516dde2132652b39c7aa0218a6ce65dabb4494965209ce879ba7e7e59039db5c1d36d6a7f86d72dd59954fd6f46124a2506b245a0db11aa89d2feb312a6596ea2fecaa7b6021f37a255f628da7ff6b6c36b514d3b6be34e505f9dac6acfb888198004699fb350ac93431533554658c4957df36703591438d6488bc03dd8290a75ebb367a481a50e79a46b04d005649cabd79e5c6326c066bc2b6fc5febb87ef66d832ef31a16c2a450a0b990fb549a5d810c928d1a81fa1dc795db2607ac7d46cb5716b68acdeb00987e429fe6a394632c83b43336e7b51d9cfdb50e83d8c6ba1784d9f74c16b476e048e65e7ac0af683b347d7377ac1795422e00e5bd8da9b313af83abb3348861116de7a99959169b7dff9f7d9b7a6d107f2e76670a6214a419bf8298f80eb570fa29264ba57a383c5ec5836ce33104ecaf1aec76e311280a1d2c8bd7abff3a5a242e6a637f7db63038ef5d78aca9c680d72b60da4dbeb0e1e683ddc82898647c589a81b8f92db06711d8a0af05560cd77fa7005283db71e8da21713fccd450822062b994d152aaed2cdcf0dec9c60617e15ba4df628da4e71279bf9d1eee5c7f055c27cddfdd45f9225d5d5529ef7119e2e3c9838e7362971e069be487797e949b24297de19c61340d1cd7a2bfa3880b91a71e934720a59e1e0ea992d2a1633a0852ad8addfcab73a291e35745e694a6471f429b124305886c1f79f67c78de3f3ec998c91e7fc59d26766cd446f6f0de603f2c6892e13cdaa37d9e8e118d098b6986ccd991993ec152193e7d77394b05b99e7d310c506707f1be52249438fba9615f6dad2ec7244fedf36e34ec311b7d6bee64271d6491079e161190ded7e28e2ada4307a9b2986c267b1a30d2f720ff23408011f1d589ce9ee77f981c7833656ccf7df5b3a87ec253ff7c7ef1e67ceeb10c93e3fa683cdadad65850ffbc402b7744e94cdecef9db9d264c755c53d36278df23d4c9685fdefa69f7588a33b8a64b35191ee81abcb9765577d175cb06e31c582807ff7243bfef44961fbc0f8a235242f51ee991ea621803d4dcfed90d26f004b299425bf219f6d185fe6e088ae44601b03defada18794feac93787696a5d419f09f769bc590f43d2df6a131f6895da2de120c2644685e57b1d476c6aba5881e954fb2575356452b118b942cb02b4ea0fcf8f1bbb9a23b6e32c9d0accd3dd861452a3ad77b38fe709e216974932deb5397fd8033ff0e073d93ac0b4be762bca0424d69bd57b22ba914133f87671a29498b268c2911e793215463ca2164e38059456107dcb29beedfd6277e2b41a11d1c6f1361b19875c9384f04f9c53c1856d71f360a8fafe05f7aef750ec0cf2bfcfa971c017ad071b69a18fdaf970b384d4c889cfa5a0397dbe89543a5c64e2645d6edf959aa60709ce0225fe6c3266c7ef62157ac8e78fddcd8a1f2ca5b58128218d19276885515775326aeeee0226cc810843eb05144bf8e2fe3340cf60b32cafd96d23cd7d0d3adcbdfec9a2a3d88307c362633b1c5637608ea8476d900b3f836a9734b5ecaf5e82983577128d3f74b903b0e3bf64326c1b564ae42aeeb0c07702b63a9ff74a2af6b45e5185a53f36c17bc29dfbc0ea28ca5cca43a15d751e9887ad3e6a87faacb6a278c4c8a8d21b9a77b9776f33102a6e645e99cc5cbc543ed0674282c2b9f8e5d14c2599aa9ac8f81438c77f2b9368bdac82edcdc5366f39adec9e9a3fbd55b79abc16d2ebff26b7d0c88f18b486e5836333575e3fc7808cb423b44781c57965767862922b4ff32d9bae76296843a46f430211c27ef9db168430026a5691623284dfd459dbdd1f1a6ec9bfad666507e6eacb1e2a7866da2e12e6d596d0bbb150500590013d9288af20596447f97bf1744eb9cfb244d8fca269b1fb71e14de664be4e95d83fff1b8abcfebcf3e78c1c66d28f260fb0c19f9fbcd2abbdd7dd7246e49dc25d954bf25f810a2ff6f9069dfdc62e7170fe3b0964b2ac95024256dfa3e7a426be5bb5f707fd82c2b3afec5d5dcf5bbb8fcb6dbc1b59f6c5330966c70d8b016956903a4278817414ba3652a102d7e7e37ecc79400267fc3bf7601c0731f87d479c33f100735e748874155267f708cea49d549e93cf7a398b20373dc90ad9afd56d9c77cd24e2c4a18f7130b366c7fe5b26bc4d11ca1ed1b98fa0b4d7396f82ae6593f4575d19f4d8fd586c991129e5cbe15c8bacc89c3ee15ca471dea966b5c48ede0d3ba2a7e28c75c04e6a4aa49a61f4e391ffe78eb5e40a5ef349f3aa4d15f2291cc86ec7e47ae301bf0b6083dae44b695820a893d46732553ef15ed1c16d28268d52a7e3a7e7c009d0c0708a356d3310c1ebcbcca4d7acf433e34bfc9fc115498142dcc725e7a16879c75e4c2f01c6c98b39619f3248bf530e6ee593467e38cf4026cfdc4db6296565722d587f3c580750b1453ecc141c0461495551297d88ae034acbd4f5e80ce198e6640c4c1e9501529988109cef006eb2090a6fcd974d7f60290b78f1a8ce3051ac2d69636c3219f0a6ad8c254764396a1684b2fd9805b1853525f2e640e513197283cc4d4073ac033e0539a88f08aabe1423cd40b8a7e073437d812b57a5d39a0531dcbe13f4466e89efc66c2a1e4b39a3e0b3073c9d44e6cf9b85f4df5c4e03628d05bc0f94ec04234c9eca4ed17463f190406834b02888728f625371cda75d15ec19efebd59f00ab659eb94eb88bcb2110862a369ad599610c1530fcc118f5b82205bc5215fe3623ac8ec297d8ff4eee75ace20731c5d505e6605c26203b7f754164c9463f0a6eefe3a2880b8e06e7bc66bb2adcc1a3f9b0325f5ec31d12a25f1f73c2aa6bb3a7680d786a082a63b13cce1822fa6a4b085a871ae3409eecbc1fd8661b5d52bb2b8b72f23e24a225075f272ed2ba0c6c5c693811a0ef8db6da7cfe7c966c647f0187ad223eedb1012a5b7af103e98464ac768c79b21ca45b12a52cf261de0d367442cda71c4b8ee39c94ded1b22ba06c13836cb467ebab4efea07bdf1e3de8da56a0ee6d4f848011253cc21fa421a39943513d3167b7a73e0d752b861c49814bc5410ebe53a0264f76068c91ee6ec9e2daa343482b2f0f06e605c5aaf81f2a3cd570efc2094b4bc452f9526f1bbe7b22b694fb8109a5a987fabf6250912d6099e67da9cac79e8b6f2cce4702d1f17cbc5d06c38b8a48155ec758369c185ded839fb58cd736fbb74105fe5baf44e7e3ed06843f23601b60a43b1f88fd29e9b3f58479f9b95392a39d5ba1a31ee4441ca2d1fb57c0a8678a07a724b7a65b2ab16d1da197f435bce3ef003fce27fa2f0a67c9dd6c930a4bcf59e79e57b70fa8eae6fe34972958c28b56642d14ea89bf4d7d6f7fcbcf4fda8bd08fc9fe424de4359112b11f81fbdc1505658363697713ff6e1f8ca3c4be34a79993a9091f6017cda6c7489ae5c07062555231427c3eb42a049f42d22a060983b044a7d34ab5d2b5386cca79af72396a48aad6b8dcd7855410fc6106e4a165994f26efff1e7ea0aa8f560333b5dfdb2a0d899b0fda955155f90c75effd3c9535d88508e836feb7807d57b2a57cca42d3d08fe7de60d2a33376f49bdacdd3f814bd0927f417f15ad62a10b302f1cb390aaf82b0bc6af46bbf990b6ada45ef83ce13029d167c65134e7b82b59ddfdc367e61c40defd2732ccebb1d4000f6c742df964e1fb390c255d2b1dfc745c6ab34af8096b5b67aa179e3f341854f7a69f7bf47664c832037ec7a78f8e27209e3f20f833fb6e8c0fc4a40920a5ad2b0618982ff72540009d5db82f0f5bcaed2a27f35d1e50eaa0cf8e48c7a2d43c25d0264db750a7f33b44a4bfaae576cf9ee7594ed204513899566564ed8bbc97ed18b1d8868f926a5c70ac06fbac1eade46792186be7bf8ffa3301239edd093449b7d77192782b5111c14169d2b4a1b3443ad62e4abdf11aac6a5b89a5b20ab0ad0abd949b9d64582c67ffce018e7e46de4091fcc77a65b971fc67c8d9cbf0c341ca764b1056ee5014d9865059616a525a1d46ae2fad159afe86dd1df9b8246411827e19535ca0aa9f83050b06e70aa2737f27e93d584a9cef878a642e9361efaa5d20bd8da901fa2e064656f686d3b3ea31d1d850ae9196b7764548f5c6450a32a717e09b6b7e75d43fbbda76e43a24f186d5578933f408bfa28e0435cde525fb91e71d92d704cc5a9b5e3db7aaec46d2b1f8dcb3f921f69bd7397c96a1e132c39c8f1656cea4365c779abf76199cb5b6aada022edec5c901cdafa2e7f3765af9c8b20cb1a6785085fcb0dc901367b89051bdfdc6b68c5215fd04e2b3c7e1c454a4d21132953b25c50995af0f7159a5a8d0a1621f4808f126a5bd40ddc79fed90f49925ee367a57a05c070fbe39fe2c213e7c1724a907ecfa69efe6e021c06a262471a4377f3c9809e9fee4f375e27c31b6afbb2151da86b7cab63c7b4fa4b77fb30172b9d0d78b1c0535ec0639c4910b5eeecbb5b8b5c8aa74c140e7ad347812e36db3097a7ff85c09ab2c0020202307f50efefcdb497b9c060ca68c4be54a9165b4cebc6b2e2e14e5ffb9213142418faedcdf26fd326b7672399e71cfffe3ed712ced5317c254f9199ee10c24c802d102bd8749513d3145201ca4e01bc7c8bbcf430afa541ec5665f86dfb143be648521bb0f2b029018201444787f644f8c88b79e754e6ea9c797babdaec72a9680abadf3a41684cdd57c2b6e833acc0846be5aa927f1b1b36562d2acb9ecfb758455230d050daec6748ba280a5edc86d48e3f8af0f8f4ffb18ae3cd3c19a82d504a4fd52bb62289ae8026572a497fe268f87ef4b4b5886aa07eeb698b7cbf99683f710afc9ed1f8a488883ce0eb8f7fd055b82a9fe21a409caa231c41ba151008e9658919c611e157d7f3926a5e4248532a6860e615b9c86e9fea212128d96ed58c9b84ef22706071eb69f492e4d8321ed9faf6c6a8928f86172bdc930244583ea15be497d9ce4ae79cb3e6293a8512ffaa9e8e358f3c7c7117001fb92891a40b84f9126cc3def5cde67f463bbac9668b9f56c3e4ee72fceebb47e52fc226bab213d8193516e7064459fd1365350a95c5a1c3ac44a73bbba2a4c17ebe49dd781bff1995cd706b77bb533117594ad63566f4c0730beab85ff4c713b7f10b95480fe99a0f676c51ca11116b21e87887b462aa9770e85509e4e60f198148115f0a3ce6028516a946178d1acacf7767f6be7277891369eff67762aa58f928d48b7231e44d899cea8289003349117a53d61bc27b207fdc91c9db61e677d1e1a1bc6a1b6e8564130b335233db4b5de8d62324e6d0ccb2b08c2ff922324eb8c506711142d4b8d7a21223ef0a3d534fdb0de58be95cd827152f71bdd0a82766b62b4c87536f0b7e7df343c4263187da887de6e65d11d0360e2376c1d71c367ae85edeed8f767d24c644b1a9b455ded1dc3cc224f99936a6ee66931c45e5e3db2427719ab2d5cd9c20d9bb0ec004b69bccb00649f3d8e34a3572c257de114b9f027d76bc7db9007175cc03b9e2061b6b3fe7409e009b5371544e56fe438cbd361e5b11efbf2d79d1c250a1e73ca8c601c4f4d1e3761290950421c48c7daa45965e472f5ef3c4b8597444dc5dc01cd25358055b5000617f3e7291da3413e3f0853b1271366612405c35ff1b785b984d921b518425628a533a29ab65d3c11f44c6daa86f8b6457ebb9419274c481aa6f3fa4547641670aff58b9cc62c0993d49a509f02dee755ee5f1fd2710c995c43a91c4f873afa1bbdff19427cba2641052a8f361ecbc72e8a6cf587e83f8bd3110c95fb080edc77a6d43cd58c447b0e02261e4109500c6458dce70acb17aa8f9dc1d15b94a61354164031b5d563c25d0246fc45e6401cefceb501e1468903e5d677759dbe3f24bd48ce55ff8b8f26529fb3b2d669202a1e8a498984b449b4830a0126b18f0e78182c9ce78fe0c448c0e27845b926cfde28fa85e156fa98fefaeb19ed1247c9643b447b4342c94c114d3c4c35eed4d5b49aa70e6aad45bfb557f15e8fdb2d6e3d10d8338a13fe3f187751985b37a5bb10b750f79e36fc2e2ee9bdecc3ed156e202ed7b45a94809d77edaa398042fc6a825a4848c334c557303d24eb3f8e01be06995ceb283c70272b00da61c3381628f0e372fe2fcc779ff7daf7e4b7f2686c39d3fab674b8867b62b0bf9d5cfd0c1d3b270521f55f147de75142ffd7fc9ac7e5dae7ca2fdf26a9222d060823852409dd040cfd1f66f218c6dbdaaacddab34b123af22f97384d64fac64d84fd638c96378c8f9532a11927d48440bc777ff8b8b9be88f930f3b579a713c0bc449dca3a3bd5f2efa98240ccc594299e44451dc60c6c5c9edd0d7b777912b3dc40c57e0ea5f4425cd7047e686c7304f04ba9f7b5de6ad2bd524f1d29f8802a524441fa286015adf4589431710aa4d76de8a956dc1d39c0a13abb7fc309d24222d036e204ab6bb46ef8a7595d9e4512e0b9d5f8fd719a4e3072e1d806967045789c67a1681f2a9f1f4b19f4f5e1afdafc17db7a6d5196161499e62ab4b0ec27648f3eeb1fb2b78f8ecf9b05cf9509a3b9e2a361238deb1c91bdbc8b1d11bbeb939fd9da811cd439069da0ecc00665d72357aac01f259a0325409b201859cc0569e0eba67a7a9ca7e8b78078d9370bd3e37f0571680ede60cb6bbfe69435d6ab5efd80cf051d119a7004fc0b600844d49218d844de8f521524a47ee50229c7da25e42a8639b5db225e7f23967f5d4f8a297aff04a3cbedc2985b6393a5ba0b26b6c7b4ca22d369b35b410799d1ad02825104d34f73408db1948438597931ed1c1c260e78340517bfa2f734537dbdf5ec303518ff4640efe7f7b1c2f46babdb9247ce8eabad9718a8b9ddb7a18d5e87ced554c9d6de78f85d293349590c6c32483534bc968b24a28eb54b9515589d6dd8eb51a5ad0b4d896ce92250397cbc404323fcdf0ee47ed634e0c58213bc5b35a72b21a098e11b79c061430dc817c1e0c79a5b6ed3b002979933f1b83a17f250b1bd5c4958df4d75531ca03efbda89f6a92fe08c23ad9014ff562a7f3dcde578d6825b9847b5df04dbca4f2aa52d8e0f4cf8183ce121e39b50358a9796acde0372a8ff97769874a80ab997cd889145aad4888c06963c2f5b82f53a748a6729fbc79d35c06d84e05c62e44ff78040e56ebfc6efcf0d8b49337d5a17c4041f0d5a8b616244d585a162b69db073accd9071d12df5b326a43b834bbffc2f2a60deafcbddf1c6438a1769d6fb09fbe1990e89da12164ef237f326edb5be64bb64b143a030de8a99b3c5e543c871cb581e2be090a92134aa587701f864907cadd7c1ce20fcf8f5dc7f7ecd06a6c19d89a92ca0ad4393c208b80bba990c7a3702a9c79bddde75d5db244719ac32191b6ceb041ab541fb47680a97dc0422b8a50d91e32cb08cd341b0b099aca5bd12b69d4f89d10b755b351a6489180b786a3bebac926532a4a2d85b07bce6c090d1aaaff079e36d5394a612f1351b90c13a0fa6bf9d188d548dfe6fa51a9026edb52009c03ed45ac51d05c58a957bcc67e05a588985ba00d79f33ae9cdd5f5721d9fdc72ee6e880708be87e8a60c3c035c146f2091d1b9a4c2cfa56f292fe1ba62290d4e56c05669291bbe917f3cac51802a2cc8e9c90dadfe666c233c5a5bb71ee17deec51ce60c73f57bf9ecb84873afcc44815131810c6c1217bea485ef9aa2785e859b25315ef8aa3a274982786e45d622ae831fb76010d69a181b069e4cc55d4436edb10d1119b0c6000c6d5cff7c72f740a59dc0507e7a952b69403c62673f122c9d1264fac6ce2262e86cd8d6a402672f88530fc2d16f31736dd497a4e853253ac8d5aff8d1376895e9f5519b2490cc2a2412ba0c99cec855f668837310035e92fb646486de1b0acffb91ae7516df3eeef381456b55e65baa58e71461c928687e699d2b21814805591382e95e1b970aaa53259917f070281f2336b7d570249d838b3f1a32753c336864e15f4561badf8fee034a29c52ff3fca7456ae140f83e3b2fd5b57c9aef3f20c664200d235f236ec47dd2fc20b14dc6000812237aea992d987e5460679e8c5b76d931ef6d951e6c7087e3106b6ce2db9de6f228fdf3ffc38710c0e8d5000a195a79d1fa2301038f5b27c40b09c34c025e5099d40c2204ea0eae985263c9101cab88d6857a320c9e497f22348a24861a5fb8d734e08cad09f9933748ff01eab22f17756f58688dc1b486a397563ee9ad0784b8833cdb5f7c6bcf76d9c1105f71c3c6aabefd70dc6cd5c66d31caf916145ac5ed7fa070b4277c0448ab1eb78c943be9aeab0587d321a4bcb7754f070881178f8be668b686124899fac252519f4b60ec42db766a908755040463125c26850177402a977246d36d23afac0a11889d54640bd8f6f670d686cfd33f6fc5d90cf6cbd63d9d0fd201dd4c74dbbab899f3c23c0b7e37ea0b2aff421327200d0da58b5893a4186ae3652cc6e11c2c2a0e52184a3872532acce98c94cebf4f31333663a620f0dba0ffd89c3124380075bd28caa6d449a050b3661b8fbaf4747b77c4928b1378fdc8c7a7b38ade1aeec44bdfacc8271d0b132b2029b0f3582f9919f5c8cd543abc9caf6b82b197cd482c3ef61a64743506342bf50a3c1ff544563bb8b2002911ee1fad698f4ac133ffed5bfe81239c918207a03c7a8bd71a0a502aea78d38e970e3ab2abf754b598acb79cf276792aa08724d0ba24f2a694912ab795b3f45f52dec50d9bfbc99ae27e1d2c2216afec6709d6513a64b29ef58255bbe18478c5d4f15f74ea63a1e15487752eec8fd019f1d4a7aa25277664754bd2d7cd3a7a018b92c56d965a1974885363757286da9e055ef7fac17876f0a64c1026a597733b897a9155ecbf420159ae8e5209aa83a3544fff1fb4566f2d54f95e3bbd30dcca5f24397e4bd47ff01292f0d6fe9dd47a810e0c25382fa69b4987d1afd9b69ef125110ad6b240eaa9c85829a2646f9ab7874bc02bfa8346cc9190943e9d46b44880670b1e2aa3a29e83be5472d7418885a353faade6e8b18f4b588607bbb758588d1e2f11a9dfa1c4d61be50249f1ee32e6ff8c0c7722aaec1bc79654a4772efc578bd6a14c79abcc77a4e09c8b6c6ea35cd3ab31e35268fb55db843176f8042f8ce7be0ddd4ead6dbdad0ef9e7cb2323db5cc48119a72b27306b8ff6366c0bc682a85ab9e2cf2238b6d6eb2e38a97d5577e6334cb2aa6e7c86e489e876f9d7053577a5cb57f52812fab7c4bd7b19a34c228ffb67dcac9281612f778b58c580c140542200fd00cb3ad81d93420df93c5af2493f646d8de797102fa0a65247317882fbf171520f00b2c7638623b823ff11444fdde453570f99f9099b60061a908b83383ba8b82bb78edd074dccf9342afdf8d11a6129ba6ea7030f3629056264f1736c2b926171b6dc7e1fa455a473de656390495f3b6ad2f9f46f35eacb075628ff739ef78f28ba683448068c7f18fb63f28ba7dbbb78999100dde0a94e8b8570817c7114c13e139ceb333782b29a84a5b19497fa785915c7680dd7f972cb59ba22161f60886e5cb3c3e808726cbf96bc4da78914eee565c6d9d18e70d22cf8c0244cf3cf488c3550eaa400bc0f26d64e0f1bc8d0301a841d954073a641f3ef883d81f4d5db8e9df708e64e640b38df7295f7fe573863653086bae5507c880ab7fdb7a6c5ce77027ffa7395233d3ce536d77ae6c2e9c8ffb6fee78a3bcb3b5f888bd595caa3a5586948776b950a89cde4db8247ffff27491c882b430afdd60e7a22324f6635a9aa7139f3e624c6d9ece60f7f8153b2080cf0544fbf8e1c436503766e670b902604ab521e11aa5a65cedd64cfaf898ac5f55c08c87693c323517bcb0d99c28f5e072d4f6540c7ead70138d47c1a67fd72bd6ef5613af33a0af311c3d0a631ca2a2dfbe35d1021eb610e40b9be128683235a788b5a4cacf99babee382458d59e8aa1dd7bba7e09dd30c055a3df8ed721a1778b2c6ed587a403566325cd19962edd7831caa44a6b716517bad502130e7cf6a5ce5288dc84c0170f622ae0b1e1166a9c2c0771d91df9f9dd82ae210469602ce38964746c1c1d04321aae7d464eb801dbea7ec39505457e778208774d72673626c998b002c46a9b4b1e390d9344f0ca62212a1b6d41043a2100b35196bce42d40caa0ea9a486bf8526fd1f0f0d362c2cac463ea7377a20b54b9435442ca529fc00da4fd7e27c4eaf14215a06857b54254c26346956fd7fe215a5ce57ec38cedf50a3c759e563a4fd87494f00e7bd9b44f3b7e99c6ef67187056a21d2fe1ac9d24125b1947eb293189fdc448b591af4d9b8eb091d6bbb5e50fae79d000044e282bb2ab6c63cc9562b151c214e45015354e62be63e1881238b907f7bdb791ff44a4e03fa29dbd26db2f49d0f4729b7cd9ba69a65b0b493466d35d09b3f590c67c31660d95e2ab4af2c9f1df91f04ce5a57dde2d75206b42e3423126774d76593c2f713ae279d7092506b513fd5d18f0f52d3fafd7141dfd4a0de1063754dba865faf8dc0f6be9d90ef21ec86a275533f6ad4b4e360dc775413f29eab8b3daac6279b9abfe163ea2f183e09ed91ef67fbb090875109288a182cfdcc46d90678efe5edceda6518335e678438cac4bb47d376f3f0e12aa55301735d7f42653c073d6a4a37b2e17d332dc1be6b50918c007b14886307cc39250e81efecd63d24067a49994572725a9df1760caac13a28f5255556b27ec245e93969b85cdec7cd1c2d2a433d3f9572b93054a7ce8adff81bc1d30884d5fc4791e251bd907e37af5bec74235c3e2f804e4e0450b715289942b7859ad207bafcfec1b586dc15e7911fe6d20aa3d02fcd47e9956780e300d7c53c17dfa15754deb4c20efebc7270bda0fa6b37fc88c6be4250cac38c1b8186b364482026ab52d65d3a691903fccc39772277011bfaa421adba76bed9731077bec885ce88d40f36bbd2a839c67dc4b862c968491b877d4fd13fc90f8da57a29121e12f78e85af765cd66e72ba513593fe1cdf20019985b065d828707d8e509c6834eab188deea5c9ee97955f4b07d37b6fc7beed73be94887d423a349f35bb8782bc670ceaec870d97f061bda02ae73f6d575f81e0b6326eae6c1b3085cc584686120e12dd9ad8ce44036bec8a189f9", 0x2000, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)={0x90, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000004300)={0x50, 0x0, r1, {0x7, 0x26}}, 0x50)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
creat(&(0x7f0000000180)='./file0/file0\x00', 0x0)
syz_fuse_handle_req(r0, &(0x7f0000008400)="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", 0x2000, &(0x7f0000000ec0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000e00)={0xa0, 0x0, 0x851, {{0xffffffffffffffff, 0x0, 0x0, 0x0, 0xf, 0x0, {0xfffffffffffffffd, 0x5, 0x0, 0x2, 0x4, 0x0, 0x0, 0x4, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x2, 0xfffffff4}}, {0x0, 0x6a9f0190c8d7f4e7}}}, 0x0, 0x0})
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)

1.620823012s ago: executing program 7 (id=3722):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000480)={0x1b, 0x0, 0x0, 0x40eb, 0x0, r2, 0x8, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x5, 0x4, 0x0, @void, @value, @void, @value}, 0x50)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
stat(&(0x7f0000000040)='./file0\x00', 0x0)

1.523051281s ago: executing program 7 (id=3723):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = dup(r0)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="640000000206030000000000fffff0000000000016000300686173683a6e65742c706f72742c6e6574000000050004000000000005000500020000000900020073797a320000000005000100070000001400078008001340000000000800124009"], 0x64}}, 0x0)
io_uring_enter(0xffffffffffffffff, 0xdb4, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001800)={0x0}, 0x18)
r2 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = inotify_init1(0x0)
dup3(r3, r2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0)

1.458835622s ago: executing program 5 (id=3724):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0xe}, 0x18)
sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000200)={0xa, 0x4e22, 0x0, @loopback}, 0x1c)
poll(&(0x7f0000000000)=[{r0, 0x4002}], 0x1, 0xef)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="020d00051400000000000000000000000800120000000200c06b6e000000000006000000000000000000000000000000e00000020000000000000000000000000000000000000000000000000000000105000500008000000a0000000000000000000000000000000000000000000001000300000000000005000600ff4700000a"], 0xa0}}, 0x0)
close(r0)
syz_clone(0x4010e000, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x180)
dup(r2)

1.420692382s ago: executing program 7 (id=3725):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000062fc67919edb07be6148"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

1.331012299s ago: executing program 7 (id=3726):
r0 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r0, 0x402, 0x8000003d)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
close_range(r0, 0xffffffffffffffff, 0x0)

1.274613119s ago: executing program 7 (id=3727):
r0 = landlock_create_ruleset(&(0x7f00000002c0)={0x3f2e}, 0x8, 0x0)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r0, 0x1, 0x0, 0x0)

1.213547005s ago: executing program 7 (id=3728):
prctl$PR_MCE_KILL_GET(0x22)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={0x4000000, {}, {0x2, 0x0, @dev}, {0x2, 0x0, @empty}, 0x2a0})
ioctl$sock_inet_SIOCDELRT(r0, 0x890c, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x20040000)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="120100007516b7108c0d0e008f8e0018030109021b0001000000000904080001030000000905", @ANYBLOB="8fcf"], 0x0)
syz_usb_control_io(r2, 0x0, 0x0)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KIOCSOUND(r3, 0x4b2f, 0x1000000000011)
r4 = socket$netlink(0x10, 0x3, 0x8000000004)
ioctl$sock_SIOCETHTOOL(r4, 0x8946, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

1.002984531s ago: executing program 4 (id=3729):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r0, 0x9)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
sendto$inet(r1, &(0x7f0000000040)="a6", 0xffffff4c, 0x0, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r2, 0x0, 0x0)

990.04238ms ago: executing program 5 (id=3730):
syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000680)=[{{&(0x7f0000000040)={0x2, 0x4e21, @multicast1}, 0x10, 0x0}}], 0x1, 0x4008804)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="040e0c000310"], 0xf)

935.934379ms ago: executing program 6 (id=3731):
syz_emit_ethernet(0x86, &(0x7f0000000200)={@local, @empty, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x78, 0x1400, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0xfffc, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x19, 0xc2, 0x0, 0x0, 0x200, {[@mptcp=@remove_addr={0x1e, 0x3b, 0x5, 0x0, "8b44bb4aa92fea812d3ca8a969d3b8f01c65fb64d1bf8e96e32b0865209493266756c7566348158df96d534afc1a6a248c303a440e8d5427"}, @mptcp=@mp_fclose={0x1e, 0xc, 0xbb, 0x0, 0x1}, @sack_perm={0x4, 0x2}, @mss={0x2, 0x4, 0x5}]}}}}}}}, 0x0)

843.06394ms ago: executing program 5 (id=3732):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r1=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GET_LEASE(r0, 0xc01064c8, &(0x7f00000001c0)={0x42, 0x0, &(0x7f0000000180)})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r0, 0xc02064b9, &(0x7f0000000dc0)={&(0x7f0000000240)=[<r2=>0x0], &(0x7f0000000200), 0x1, r1})
ioctl$DRM_IOCTL_MODE_ATOMIC(r0, 0xc03864bc, &(0x7f0000000840)={0x0, 0x1, &(0x7f00000000c0)=[r1], &(0x7f0000000180), &(0x7f0000000280)=[r2], 0x0})

817.176719ms ago: executing program 6 (id=3733):
ioctl$I2C_SMBUS(0xffffffffffffffff, 0x720, &(0x7f00000000c0)={0x1, 0x0, 0x6, &(0x7f0000000080)={0xc, "df1e970974a75196eeb58543bd9d2ba55aeacc9859bdc9f2472342370527626623"}})
openat$vsock(0xffffff9c, &(0x7f00000001c0), 0x546042, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x104}}, 0x0)
syz_open_dev$usbfs(&(0x7f0000000100), 0x75, 0x1a1281)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x2004c8, 0x8000000, 0x0, 0x0, 0xfffffffffffffffe, 0xfff], 0x0, 0x50184})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

723.331362ms ago: executing program 5 (id=3734):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x200000fd, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000120000000000000000000000850000006d000000180100002020642579cb3bf381ec6dde052c16a839cc1d8300000000002020207b1af8ff000000ff47b46b8a626a8e2d000000000000000000b7030000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000280)='contention_end\x00', r0}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
rt_sigaction(0x64b, 0x0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0x200002)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
mount_setattr(0xffffffffffffffff, 0x0, 0x100, &(0x7f0000000300)={0x5, 0x82, 0xc0000}, 0x46)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000100))
r3 = syz_open_pts(r2, 0x26c02)
r4 = dup3(r3, r2, 0x0)
read$FUSE(r4, 0x0, 0x0)
socket(0x10, 0x80002, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2041, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f00000000c0)=0x11)
ioctl$TCFLSH(r5, 0x400455c8, 0x4)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r6, 0x8905, &(0x7f0000000900)={'wlan1\x00', @random='\x00\x00\x00 \x00'})
syz_usb_connect(0x1, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000fdc06340f314fa3190500c74934bbc0040000109021b0001000000000904000001a7a02f000905", @ANYRES16], 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x0, 0x0)
fsetxattr$system_posix_acl(r7, &(0x7f0000000000)='system.posix_acl_access\x00', &(0x7f00000001c0)=ANY=[@ANYBLOB="020000000100010000000c0000020006", @ANYRES32=0x0], 0x2c, 0x0)
syz_usb_connect(0x5, 0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="12011000be3c3108dd1700558ce1010203010902340001000000000904"], 0x0)

618.140779ms ago: executing program 6 (id=3735):
r0 = bpf$OBJ_GET_PROG(0x7, &(0x7f00000001c0)=@o_path={&(0x7f0000000080)='./file0\x00', 0x0, 0x4000}, 0x18)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x200000fd, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000120000000000000000000000850000006d000000180100002020642579cb3bf381ec6dde052c16a839cc1d8300000000002020207b1af8ff000000ff47b46b8a626a8e2d000000000000000000b7030000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000280)='contention_end\x00', r1}, 0x10)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
rt_sigaction(0x64b, 0x0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0x200002)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
mount_setattr(0xffffffffffffffff, 0x0, 0x100, &(0x7f0000000300)={0x5, 0x82, 0xc0000}, 0x46)
socket$inet_udplite(0x2, 0x2, 0x88)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0)
ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000100))
r4 = syz_open_pts(r3, 0x26c02)
r5 = dup3(r4, r3, 0x0)
read$FUSE(r5, 0x0, 0x0)
socket(0x10, 0x80002, 0x0)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2041, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000000c0)=0x11)
ioctl$TCFLSH(r6, 0x400455c8, 0x4)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r7, 0x8905, &(0x7f0000000900)={'wlan1\x00', @random='\x00\x00\x00 \x00'})
syz_usb_connect(0x1, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000fdc06340f314fa3190500c74934bbc0040000109021b0001000000000904000001a7a02f000905", @ANYRES16], 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x0, 0x0)
syz_usb_connect(0x5, 0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="12011000be3c3108dd1700558ce1010203010902340001000000000904"], 0x0)

0s ago: executing program 4 (id=3736):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
getsockopt$rose(0xffffffffffffffff, 0x104, 0x5, 0x0, &(0x7f0000000540))
ioctl$FS_IOC_ENABLE_VERITY(0xffffffffffffffff, 0x40806685, 0x0)
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0xd45da298eeb58485, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, 0x0)
r1 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x0, 0xffffffff, 0xffdffffe}, &(0x7f0000000000)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
sysinfo(0x0)
accept4$unix(0xffffffffffffffff, &(0x7f0000000300), &(0x7f0000000040)=0x6e, 0x80800)
r5 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
pselect6(0x40, &(0x7f0000000200)={0x9, 0x93, 0x5, 0x0, 0x6200000000000000, 0x4, 0x8, 0x7fff}, 0x0, 0x0, 0x0, 0x0)
ioctl$VIDIOC_S_CTRL(r5, 0xc008561c, &(0x7f0000000080)={0xf0f041})
r6 = syz_open_dev$vcsn(&(0x7f0000000400), 0x9, 0xc03)
ioctl$PPPIOCNEWUNIT(r6, 0xc004743e, &(0x7f0000000440)=0x4)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r1, 0x47f6, 0x0, 0x0, 0x0, 0x0)
epoll_pwait(0xffffffffffffffff, &(0x7f0000000000)=[{}, {}, {}, {}, {}], 0x5, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f00000000c0)={'syztnl2\x00', &(0x7f0000000200)={'syztnl2\x00', 0x0, 0x1, 0x1, 0x3, 0xeb66, {{0x15, 0x4, 0x0, 0x16, 0x54, 0x65, 0x0, 0x4, 0x29, 0x0, @broadcast, @initdev={0xac, 0x1e, 0x1, 0x0}, {[@ssrr={0x89, 0x3, 0x1e}, @rr={0x7, 0x1f, 0x9c, [@multicast1, @private=0xa010100, @broadcast, @loopback, @dev={0xac, 0x14, 0x14, 0xd}, @initdev={0xac, 0x1e, 0x0, 0x0}, @initdev={0xac, 0x1e, 0x1, 0x0}]}, @ra={0x94, 0x4}, @rr={0x7, 0x7, 0x5a, [@rand_addr=0x64010100]}, @end, @lsrr={0x83, 0x3, 0x24}, @generic={0x7, 0xf, "df32a6c3053b643913769558c6"}]}}}}})

kernel console output (not intermixed with test programs):

nded to keep mac addresses unique to avoid problems!
[ 1114.204913][T19241] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1114.215378][T19241] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1114.225279][T19241] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1114.235770][T19241] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1114.246011][T19241] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1114.257343][T19241] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1114.267785][T19241] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1114.278463][T19241] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1114.288499][T19241] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1114.299128][T19241] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1114.310016][T19241] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1114.319308][T19241] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1114.329840][T19241] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1114.339771][T19241] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1114.350390][T19241] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1114.361179][T19241] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1114.372433][T19241] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1114.382405][T19241] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1114.392871][T19241] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1114.402742][T19241] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1114.413224][T19241] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1114.423115][T19241] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1114.433966][T19241] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1114.446692][T19241] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1114.457209][T19241] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1114.467654][T19241] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1114.478787][T19241] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1114.488679][T19241] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1114.499143][T19241] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1114.509880][T19241] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1114.532337][T19241] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1114.541541][T19241] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1114.550568][T19241] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1114.559600][T19241] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1114.659025][ T6125] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1114.708630][ T6125] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1114.874694][ T8219] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1114.896286][ T8219] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1115.266394][   T29] audit: type=1326 audit(1734826943.927:2385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19353 comm="syz.7.3228" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f8b26b85d29 code=0x0
[ 1115.722240][T19359] FAULT_INJECTION: forcing a failure.
[ 1115.722240][T19359] name failslab, interval 1, probability 0, space 0, times 0
[ 1115.744924][T19362] netlink: 'syz.2.3256': attribute type 5 has an invalid length.
[ 1115.760322][T19359] CPU: 1 UID: 0 PID: 19359 Comm: syz.6.3257 Not tainted 6.13.0-rc3-syzkaller-00258-ge84a3bf7f4aa #0
[ 1115.771093][T19359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1115.781128][T19359] Call Trace:
[ 1115.784386][T19359]  <TASK>
[ 1115.787309][T19359]  dump_stack_lvl+0x16c/0x1f0
[ 1115.791970][T19359]  should_fail_ex+0x497/0x5b0
[ 1115.796627][T19359]  ? fs_reclaim_acquire+0xae/0x150
[ 1115.801728][T19359]  should_failslab+0xc2/0x120
[ 1115.806390][T19359]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[ 1115.812183][T19359]  ? __alloc_skb+0x2b1/0x380
[ 1115.816770][T19359]  __alloc_skb+0x2b1/0x380
[ 1115.821177][T19359]  ? __pfx___alloc_skb+0x10/0x10
[ 1115.826120][T19359]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[ 1115.832110][T19359]  netlink_alloc_large_skb+0x69/0x130
[ 1115.837473][T19359]  netlink_sendmsg+0x689/0xd70
[ 1115.842228][T19359]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1115.847524][T19359]  ____sys_sendmsg+0xaaf/0xc90
[ 1115.852299][T19359]  ? copy_msghdr_from_user+0x10b/0x160
[ 1115.857759][T19359]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1115.863059][T19359]  ___sys_sendmsg+0x135/0x1e0
[ 1115.867734][T19359]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1115.872928][T19359]  ? __pfx_lock_release+0x10/0x10
[ 1115.877940][T19359]  ? trace_lock_acquire+0x14e/0x1f0
[ 1115.883138][T19359]  ? __fget_files+0x206/0x3a0
[ 1115.887809][T19359]  __sys_sendmsg+0x16e/0x220
[ 1115.892396][T19359]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1115.897520][T19359]  do_syscall_64+0xcd/0x250
[ 1115.902019][T19359]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1115.907918][T19359] RIP: 0033:0x7f58ea185d29
[ 1115.912323][T19359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1115.931921][T19359] RSP: 002b:00007f58eb057038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1115.940322][T19359] RAX: ffffffffffffffda RBX: 00007f58ea375fa0 RCX: 00007f58ea185d29
[ 1115.948280][T19359] RDX: 0000000000000000 RSI: 0000000020000340 RDI: 0000000000000004
[ 1115.956248][T19359] RBP: 00007f58eb057090 R08: 0000000000000000 R09: 0000000000000000
[ 1115.964209][T19359] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1115.972175][T19359] R13: 0000000000000000 R14: 00007f58ea375fa0 R15: 00007ffe9be58148
[ 1115.980143][T19359]  </TASK>
[ 1116.113634][   T29] audit: type=1804 audit(1734826944.703:2386): pid=19368 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.5.3259" name="/newroot/478/bus/bus" dev="overlay" ino=2648 res=1 errno=0
[ 1116.374374][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[ 1116.380790][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[ 1116.424634][T19374] trusted_key: encrypted_key: keylen parameter is missing
[ 1116.780194][   T29] audit: type=1400 audit(1734826945.311:2387): avc:  denied  { getopt } for  pid=19379 comm="syz.6.3263" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[ 1117.688863][   T29] audit: type=1400 audit(1734826945.563:2388): avc:  denied  { read } for  pid=19379 comm="syz.6.3263" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[ 1118.540948][T17853] Bluetooth: hci1: command 0x0406 tx timeout
[ 1118.813318][T19394] loop8: detected capacity change from 0 to 7
[ 1118.819821][T19394] Dev loop8: unable to read RDB block 7
[ 1118.825430][T19394]  loop8: AHDI p1 p3 p4
[ 1118.829573][T19394] loop8: partition table partially beyond EOD, truncated
[ 1118.836744][T19394] loop8: p1 start 975770946 is beyond EOD, truncated
[ 1118.843702][T19394] loop8: p3 start 6514546 is beyond EOD, truncated
[ 1119.437713][T19406] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3270'.
[ 1119.565289][   T29] audit: type=1326 audit(1734826947.939:2389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19409 comm="syz.2.3272" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa179585d29 code=0x0
[ 1119.602039][T19397] overlayfs: metacopy with no lower data found - abort lookup (/bus)
[ 1120.916374][T19421] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3275'.
[ 1121.136185][T19428] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1121.262029][T19428] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1121.530099][ T5863] usb 5-1: new high-speed USB device number 61 using dummy_hcd
[ 1121.531038][   T29] audit: type=1400 audit(1734826949.782:2390): avc:  denied  { connect } for  pid=19426 comm="syz.5.3278" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[ 1122.512758][T19446] FAULT_INJECTION: forcing a failure.
[ 1122.512758][T19446] name failslab, interval 1, probability 0, space 0, times 0
[ 1122.557698][T19446] CPU: 0 UID: 0 PID: 19446 Comm: syz.5.3280 Not tainted 6.13.0-rc3-syzkaller-00258-ge84a3bf7f4aa #0
[ 1122.568499][T19446] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1122.578558][T19446] Call Trace:
[ 1122.581837][T19446]  <TASK>
[ 1122.584775][T19446]  dump_stack_lvl+0x16c/0x1f0
[ 1122.589493][T19446]  should_fail_ex+0x497/0x5b0
[ 1122.594181][T19446]  ? fs_reclaim_acquire+0xae/0x150
[ 1122.599305][T19446]  should_failslab+0xc2/0x120
[ 1122.603996][T19446]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[ 1122.609808][T19446]  ? __alloc_skb+0x2b1/0x380
[ 1122.614411][T19446]  __alloc_skb+0x2b1/0x380
[ 1122.618837][T19446]  ? __pfx___alloc_skb+0x10/0x10
[ 1122.623787][T19446]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[ 1122.629784][T19446]  netlink_alloc_large_skb+0x69/0x130
[ 1122.635165][T19446]  netlink_sendmsg+0x689/0xd70
[ 1122.639940][T19446]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1122.645245][T19446]  ____sys_sendmsg+0xaaf/0xc90
[ 1122.650013][T19446]  ? copy_msghdr_from_user+0x10b/0x160
[ 1122.655471][T19446]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1122.660778][T19446]  ___sys_sendmsg+0x135/0x1e0
[ 1122.665456][T19446]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1122.670665][T19446]  ? __pfx_lock_release+0x10/0x10
[ 1122.675694][T19446]  ? trace_lock_acquire+0x14e/0x1f0
[ 1122.680914][T19446]  ? __fget_files+0x206/0x3a0
[ 1122.685601][T19446]  __sys_sendmsg+0x16e/0x220
[ 1122.690195][T19446]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1122.695322][T19446]  do_syscall_64+0xcd/0x250
[ 1122.699838][T19446]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1122.705738][T19446] RIP: 0033:0x7f4535985d29
[ 1122.710160][T19446] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1122.729777][T19446] RSP: 002b:00007f453685e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1122.738194][T19446] RAX: ffffffffffffffda RBX: 00007f4535b75fa0 RCX: 00007f4535985d29
[ 1122.746169][T19446] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003
[ 1122.754142][T19446] RBP: 00007f453685e090 R08: 0000000000000000 R09: 0000000000000000
[ 1122.762118][T19446] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1122.770121][T19446] R13: 0000000000000000 R14: 00007f4535b75fa0 R15: 00007ffedf3a2028
[ 1122.778108][T19446]  </TASK>
[ 1122.832245][T19448] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3281'.
[ 1122.933075][T19451] Cannot find del_set index 1 as target
[ 1122.985292][   T29] audit: type=1400 audit(1734826951.129:2391): avc:  denied  { set_context_mgr } for  pid=19450 comm="syz.5.3282" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[ 1123.017654][   T29] audit: type=1400 audit(1734826951.129:2392): avc:  denied  { map } for  pid=19450 comm="syz.5.3282" path="/dev/binderfs/binder0" dev="binder" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[ 1123.137304][T19454] syz.5.3282 (19454): drop_caches: 2
[ 1123.183029][   T29] audit: type=1400 audit(1734826951.129:2393): avc:  denied  { call } for  pid=19450 comm="syz.5.3282" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[ 1123.584623][   T29] audit: type=1326 audit(1734826951.672:2394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19467 comm="syz.7.3287" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f8b26b85d29 code=0x0
[ 1125.349666][T19486] netlink: 'syz.6.3289': attribute type 2 has an invalid length.
[ 1126.348301][   T29] audit: type=1400 audit(1734826954.225:2395): avc:  denied  { bind } for  pid=19490 comm="syz.6.3294" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[ 1126.410596][   T29] audit: type=1400 audit(1734826954.253:2396): avc:  denied  { read } for  pid=19493 comm="syz.2.3295" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[ 1126.453701][   T29] audit: type=1400 audit(1734826954.253:2397): avc:  denied  { setopt } for  pid=19493 comm="syz.2.3295" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[ 1126.484613][   T29] audit: type=1400 audit(1734826954.263:2398): avc:  denied  { ioctl } for  pid=19493 comm="syz.2.3295" path="mnt:[4026532942]" dev="nsfs" ino=4026532942 ioctlcmd=0x940b scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[ 1126.970109][   T29] audit: type=1400 audit(1734826954.412:2399): avc:  denied  { setattr } for  pid=19483 comm="syz.7.3293" path="/dev/bus/usb/008/001" dev="devtmpfs" ino=747 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[ 1127.000121][T18442] usb 5-1: new high-speed USB device number 62 using dummy_hcd
[ 1127.172854][T18442] usb 5-1: config 0 interface 0 altsetting 8 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1127.196520][T18442] usb 5-1: config 0 interface 0 has no altsetting 0
[ 1127.203165][T18442] usb 5-1: New USB device found, idVendor=046a, idProduct=0027, bcdDevice= 0.00
[ 1127.246285][T18442] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1127.346815][T18442] usb 5-1: config 0 descriptor??
[ 1127.452297][T19503] Invalid ELF header magic: != ELF
[ 1127.459784][   T29] audit: type=1804 audit(1734826955.320:2400): pid=19503 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.6.3296" name="/newroot/146/bus/bus" dev="overlay" ino=808 res=1 errno=0
[ 1127.863122][T18442] cherry 0003:046A:0027.0026: unknown main item tag 0x0
[ 1127.891061][T18442] cherry 0003:046A:0027.0026: unknown main item tag 0x0
[ 1127.898113][    T8] IPVS: starting estimator thread 0...
[ 1128.012780][T19509] IPVS: using max 28 ests per chain, 67200 per kthread
[ 1128.094402][T18442] cherry 0003:046A:0027.0026: hidraw0: USB HID v0.00 Device [HID 046a:0027] on usb-dummy_hcd.4-1/input0
[ 1128.151503][   T29] audit: type=1400 audit(1734826955.974:2401): avc:  denied  { read } for  pid=19476 comm="syz.4.3290" name="ppp" dev="devtmpfs" ino=709 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[ 1128.174265][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1128.197241][    T8] usb 5-1: USB disconnect, device number 62
[ 1129.088434][   T29] audit: type=1400 audit(1734826956.854:2402): avc:  denied  { ioctl } for  pid=19518 comm="syz.5.3301" path="socket:[61590]" dev="sockfs" ino=61590 ioctlcmd=0x89ed scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[ 1129.878574][T19530] MTD: Attempt to mount non-MTD device "/dev/nullb0"
[ 1129.890711][T19530] VFS: Can't find a romfs filesystem on dev nullb0.
[ 1129.890711][T19530] 
[ 1130.332461][T19528] 9pnet: Could not find request transport: fd0x0000000000000006
[ 1130.517946][   T46] usb 6-1: new high-speed USB device number 53 using dummy_hcd
[ 1131.479744][   T46] usb 6-1: Using ep0 maxpacket: 8
[ 1131.500992][T19539] program syz.7.3304 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1131.566129][   T46] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[ 1131.574399][   T46] usb 6-1: config 0 has no interface number 0
[ 1131.580840][   T46] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1131.594263][   T46] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[ 1131.603406][   T46] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1131.732749][   T46] usb 6-1: config 0 descriptor??
[ 1131.792954][   T46] iowarrior 6-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[ 1132.086066][    T8] usb 6-1: USB disconnect, device number 53
[ 1132.441106][T19553] tmpfs: Bad value for 'usrquota_block_hardlimit'
[ 1132.792074][T19558] netlink: 24 bytes leftover after parsing attributes in process `syz.6.3308'.
[ 1133.123379][   T29] audit: type=1400 audit(1734826960.614:2403): avc:  denied  { open } for  pid=19561 comm="syz.4.3311" path="/dev/ptyqc" dev="devtmpfs" ino=131 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1
[ 1133.199886][T19566] loop8: detected capacity change from 0 to 7
[ 1133.211237][T19566] Dev loop8: unable to read RDB block 7
[ 1133.216840][T19566]  loop8: AHDI p1 p3 p4
[ 1133.220979][T19566] loop8: partition table partially beyond EOD, truncated
[ 1133.228121][T19566] loop8: p1 start 975770946 is beyond EOD, truncated
[ 1133.234822][T19566] loop8: p3 start 6514546 is beyond EOD, truncated
[ 1133.291433][   T29] audit: type=1400 audit(1734826960.623:2404): avc:  denied  { ioctl } for  pid=19561 comm="syz.4.3311" path="/dev/ptyqc" dev="devtmpfs" ino=131 ioctlcmd=0x5431 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1
[ 1133.586595][   T29] audit: type=1326 audit(1734826960.623:2405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19569 comm="syz.7.3313" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f8b26b85d29 code=0x0
[ 1134.024051][    T9] usb 6-1: new high-speed USB device number 54 using dummy_hcd
[ 1135.211074][T19494] syz.2.3295 (19494): drop_caches: 1
[ 1135.696825][   T29] audit: type=1400 audit(1734826963.037:2406): avc:  denied  { setopt } for  pid=19597 comm="syz.2.3319" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 1135.737948][T19601] FAULT_INJECTION: forcing a failure.
[ 1135.737948][T19601] name failslab, interval 1, probability 0, space 0, times 0
[ 1135.742649][   T29] audit: type=1400 audit(1734826963.065:2407): avc:  denied  { write } for  pid=19597 comm="syz.2.3319" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 1135.750680][T19601] CPU: 0 UID: 0 PID: 19601 Comm: syz.4.3322 Not tainted 6.13.0-rc3-syzkaller-00258-ge84a3bf7f4aa #0
[ 1135.750703][T19601] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1135.790840][T19601] Call Trace:
[ 1135.790849][T19601]  <TASK>
[ 1135.790856][T19601]  dump_stack_lvl+0x16c/0x1f0
[ 1135.790880][T19601]  should_fail_ex+0x497/0x5b0
[ 1135.790905][T19601]  ? fs_reclaim_acquire+0xae/0x150
[ 1135.790929][T19601]  should_failslab+0xc2/0x120
[ 1135.790947][T19601]  __kmalloc_noprof+0xcb/0x510
[ 1135.790968][T19601]  copy_splice_read+0x1a8/0xb90
[ 1135.790990][T19601]  ? look_up_lock_class+0x6b/0x150
[ 1135.791010][T19601]  ? __pfx_copy_splice_read+0x10/0x10
[ 1135.791033][T19601]  ? __pfx_register_lock_class+0x10/0x10
[ 1135.791057][T19601]  ? __pfx_copy_splice_read+0x10/0x10
[ 1135.791077][T19601]  do_splice_read+0x282/0x370
[ 1135.791099][T19601]  splice_direct_to_actor+0x2a4/0xa40
[ 1135.791122][T19601]  ? __pfx_direct_splice_actor+0x10/0x10
[ 1135.791146][T19601]  ? __pfx_splice_direct_to_actor+0x10/0x10
[ 1135.791169][T19601]  ? __pfx___might_resched+0x10/0x10
[ 1135.791190][T19601]  do_splice_direct+0x178/0x250
[ 1135.791211][T19601]  ? __pfx_do_splice_direct+0x10/0x10
[ 1135.791232][T19601]  ? __pfx_direct_file_splice_eof+0x10/0x10
[ 1135.791254][T19601]  ? bpf_lsm_file_permission+0x9/0x10
[ 1135.791273][T19601]  ? security_file_permission+0x71/0x210
[ 1135.791295][T19601]  do_sendfile+0xaed/0xe30
[ 1135.791312][T19601]  ? __pfx_do_sendfile+0x10/0x10
[ 1135.791333][T19601]  ? __fget_files+0x206/0x3a0
[ 1135.791353][T19601]  __x64_sys_sendfile64+0x1da/0x220
[ 1135.791369][T19601]  ? ksys_write+0x1ba/0x250
[ 1135.791383][T19601]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[ 1135.791405][T19601]  do_syscall_64+0xcd/0x250
[ 1135.791425][T19601]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1135.791444][T19601] RIP: 0033:0x7fc7f7585d29
[ 1135.791456][T19601] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1135.791470][T19601] RSP: 002b:00007fc7f8364038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 1135.791485][T19601] RAX: ffffffffffffffda RBX: 00007fc7f7775fa0 RCX: 00007fc7f7585d29
[ 1135.791496][T19601] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 1135.791505][T19601] RBP: 00007fc7f8364090 R08: 0000000000000000 R09: 0000000000000000
[ 1135.791514][T19601] R10: 0000020000023896 R11: 0000000000000246 R12: 0000000000000001
[ 1135.791524][T19601] R13: 0000000000000000 R14: 00007fc7f7775fa0 R15: 00007ffedea08a78
[ 1135.791542][T19601]  </TASK>
[ 1136.000000][T19608] program syz.2.3323 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1136.194907][    T8] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[ 1136.386729][   T29] audit: type=1400 audit(1734826963.673:2408): avc:  denied  { write } for  pid=19606 comm="syz.5.3324" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[ 1136.413568][    T8] usb 8-1: config 0 interface 0 altsetting 8 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1136.413602][    T8] usb 8-1: config 0 interface 0 has no altsetting 0
[ 1136.413631][    T8] usb 8-1: New USB device found, idVendor=046a, idProduct=0027, bcdDevice= 0.00
[ 1136.413654][    T8] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1136.415251][    T8] usb 8-1: config 0 descriptor??
[ 1136.539273][T19613] FAULT_INJECTION: forcing a failure.
[ 1136.539273][T19613] name failslab, interval 1, probability 0, space 0, times 0
[ 1136.539301][T19613] CPU: 0 UID: 0 PID: 19613 Comm: syz.2.3326 Not tainted 6.13.0-rc3-syzkaller-00258-ge84a3bf7f4aa #0
[ 1136.539321][T19613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1136.539331][T19613] Call Trace:
[ 1136.539338][T19613]  <TASK>
[ 1136.539346][T19613]  dump_stack_lvl+0x16c/0x1f0
[ 1136.539376][T19613]  should_fail_ex+0x497/0x5b0
[ 1136.539400][T19613]  ? fs_reclaim_acquire+0xae/0x150
[ 1136.539428][T19613]  should_failslab+0xc2/0x120
[ 1136.539449][T19613]  __kmalloc_cache_node_noprof+0x6e/0x420
[ 1136.539472][T19613]  ? __get_vm_area_node+0x101/0x2f0
[ 1136.539495][T19613]  __get_vm_area_node+0x101/0x2f0
[ 1136.539513][T19613]  ? stack_trace_save+0x95/0xd0
[ 1136.539542][T19613]  __vmalloc_node_range_noprof+0x26a/0x1530
[ 1136.539564][T19613]  ? bpf_prog_alloc_no_stats+0x54/0x620
[ 1136.539589][T19613]  ? kasan_save_stack+0x33/0x60
[ 1136.539609][T19613]  ? __kasan_kmalloc+0xaa/0xb0
[ 1136.539628][T19613]  ? do_syscall_64+0xcd/0x250
[ 1136.539649][T19613]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1136.539675][T19613]  ? bpf_prog_alloc_no_stats+0x54/0x620
[ 1136.539702][T19613]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1136.539730][T19613]  ? bpf_prog_alloc_no_stats+0x54/0x620
[ 1136.539753][T19613]  __vmalloc_noprof+0x6d/0x90
[ 1136.539773][T19613]  ? bpf_prog_alloc_no_stats+0x54/0x620
[ 1136.539794][T19613]  bpf_prog_alloc_no_stats+0x54/0x620
[ 1136.539819][T19613]  bpf_prog_alloc+0x3b/0x230
[ 1136.539842][T19613]  bpf_prog_create_from_user+0xb4/0x2d0
[ 1136.539869][T19613]  ? __pfx_seccomp_check_filter+0x10/0x10
[ 1136.539903][T19613]  do_seccomp+0x7b6/0x2640
[ 1136.539919][T19613]  ? __fget_files+0x206/0x3a0
[ 1136.539939][T19613]  ? __pfx_do_seccomp+0x10/0x10
[ 1136.539963][T19613]  ? fput+0x67/0x440
[ 1136.539983][T19613]  ? ksys_write+0x1ba/0x250
[ 1136.540000][T19613]  ? __pfx_ksys_write+0x10/0x10
[ 1136.540024][T19613]  do_syscall_64+0xcd/0x250
[ 1136.540047][T19613]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1136.540068][T19613] RIP: 0033:0x7fa179585d29
[ 1136.540083][T19613] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1136.540099][T19613] RSP: 002b:00007fa17a2ec038 EFLAGS: 00000246 ORIG_RAX: 000000000000013d
[ 1136.540117][T19613] RAX: ffffffffffffffda RBX: 00007fa179775fa0 RCX: 00007fa179585d29
[ 1136.540129][T19613] RDX: 0000000020000040 RSI: 000000000000000a RDI: 0000000000000001
[ 1136.540141][T19613] RBP: 00007fa17a2ec090 R08: 0000000000000000 R09: 0000000000000000
[ 1136.540152][T19613] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1136.540162][T19613] R13: 0000000000000000 R14: 00007fa179775fa0 R15: 00007ffc8ed7df68
[ 1136.540184][T19613]  </TASK>
[ 1136.540213][T19613] syz.2.3326: vmalloc error: size 4096, vm_struct allocation failed, mode:0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null),cpuset=syz2,mems_allowed=0-1
[ 1136.540287][T19613] CPU: 0 UID: 0 PID: 19613 Comm: syz.2.3326 Not tainted 6.13.0-rc3-syzkaller-00258-ge84a3bf7f4aa #0
[ 1136.540309][T19613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1136.540320][T19613] Call Trace:
[ 1136.540326][T19613]  <TASK>
[ 1136.540338][T19613]  dump_stack_lvl+0x16c/0x1f0
[ 1136.540362][T19613]  warn_alloc+0x24d/0x3a0
[ 1136.540387][T19613]  ? __pfx_warn_alloc+0x10/0x10
[ 1136.540406][T19613]  ? rcu_is_watching+0x12/0xc0
[ 1136.540432][T19613]  ? __kmalloc_cache_node_noprof+0x2ad/0x420
[ 1136.540457][T19613]  ? __kasan_kmalloc+0x8a/0xb0
[ 1136.540478][T19613]  ? __get_vm_area_node+0x1dc/0x2f0
[ 1136.540502][T19613]  __vmalloc_node_range_noprof+0xd27/0x1530
[ 1136.540525][T19613]  ? kasan_save_stack+0x33/0x60
[ 1136.540545][T19613]  ? __kasan_kmalloc+0xaa/0xb0
[ 1136.540563][T19613]  ? do_syscall_64+0xcd/0x250
[ 1136.540585][T19613]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1136.540610][T19613]  ? bpf_prog_alloc_no_stats+0x54/0x620
[ 1136.540636][T19613]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1136.540663][T19613]  ? bpf_prog_alloc_no_stats+0x54/0x620
[ 1136.540682][T19613]  __vmalloc_noprof+0x6d/0x90
[ 1136.540699][T19613]  ? bpf_prog_alloc_no_stats+0x54/0x620
[ 1136.540720][T19613]  bpf_prog_alloc_no_stats+0x54/0x620
[ 1136.540742][T19613]  bpf_prog_alloc+0x3b/0x230
[ 1136.540763][T19613]  bpf_prog_create_from_user+0xb4/0x2d0
[ 1136.540790][T19613]  ? __pfx_seccomp_check_filter+0x10/0x10
[ 1136.540819][T19613]  do_seccomp+0x7b6/0x2640
[ 1136.540836][T19613]  ? __fget_files+0x206/0x3a0
[ 1136.540857][T19613]  ? __pfx_do_seccomp+0x10/0x10
[ 1136.540884][T19613]  ? fput+0x67/0x440
[ 1136.540912][T19613]  ? ksys_write+0x1ba/0x250
[ 1136.540930][T19613]  ? __pfx_ksys_write+0x10/0x10
[ 1136.540955][T19613]  do_syscall_64+0xcd/0x250
[ 1136.540979][T19613]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1136.541002][T19613] RIP: 0033:0x7fa179585d29
[ 1136.541016][T19613] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1136.541031][T19613] RSP: 002b:00007fa17a2ec038 EFLAGS: 00000246 ORIG_RAX: 000000000000013d
[ 1136.541048][T19613] RAX: ffffffffffffffda RBX: 00007fa179775fa0 RCX: 00007fa179585d29
[ 1136.541060][T19613] RDX: 0000000020000040 RSI: 000000000000000a RDI: 0000000000000001
[ 1136.541072][T19613] RBP: 00007fa17a2ec090 R08: 0000000000000000 R09: 0000000000000000
[ 1136.541082][T19613] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1136.541094][T19613] R13: 0000000000000000 R14: 00007fa179775fa0 R15: 00007ffc8ed7df68
[ 1136.541115][T19613]  </TASK>
[ 1136.541143][T19613] Mem-Info:
[ 1136.541151][T19613] active_anon:5188 inactive_anon:0 isolated_anon:0
[ 1136.541151][T19613]  active_file:5065 inactive_file:3680 isolated_file:0
[ 1136.541151][T19613]  unevictable:768 dirty:345 writeback:0
[ 1136.541151][T19613]  slab_reclaimable:7805 slab_unreclaimable:119862
[ 1136.541151][T19613]  mapped:31736 shmem:1412 pagetables:842
[ 1136.541151][T19613]  sec_pagetables:0 bounce:0
[ 1136.541151][T19613]  kernel_misc_reclaimable:0
[ 1136.541151][T19613]  free:1347150 free_pcp:506 free_cma:0
[ 1136.541192][T19613] Node 0 active_anon:20752kB inactive_anon:0kB active_file:20260kB inactive_file:14712kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:126944kB dirty:1376kB writeback:0kB shmem:4112kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12368kB pagetables:3368kB sec_pagetables:0kB all_unreclaimable? no
[ 1136.541235][T19613] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:8kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[ 1136.541296][T19613] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1136.541343][T19613] lowmem_reserve[]: 0 2459 2459 0 0
[ 1136.541378][T19613] Node 0 DMA32 free:1463488kB boost:0kB min:34152kB low:42688kB high:51224kB reserved_highatomic:0KB active_anon:20740kB inactive_anon:0kB active_file:20260kB inactive_file:14632kB unevictable:1536kB writepending:1376kB present:3129332kB managed:2547148kB mlocked:0kB bounce:0kB free_pcp:2024kB local_pcp:876kB free_cma:0kB
[ 1136.541446][T19613] lowmem_reserve[]: 0 0 0 0 0
[ 1136.541481][T19613] Node 0 Normal free:12kB boost:0kB min:0kB low:0kB high:0kB reserved_highatomic:0KB active_anon:12kB inactive_anon:0kB active_file:0kB inactive_file:80kB unevictable:0kB writepending:0kB present:1048580kB managed:108kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1136.541527][T19613] lowmem_reserve[]: 0 0 0 0 0
[ 1136.541561][T19613] Node 1 Normal free:3909740kB boost:0kB min:55748kB low:69684kB high:83620kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:8kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1136.541632][T19613] lowmem_reserve[]: 0 0 0 0 0
[ 1136.541665][T19613] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1136.541804][T19613] Node 0 DMA32: 1558*4kB (UME) 1647*8kB (UME) 1343*16kB (UME) 974*32kB (UME) 642*64kB (UME) 389*128kB (UME) 122*256kB (UME) 49*512kB (UME) 31*1024kB (UME) 18*2048kB (UME) 287*4096kB (UM) = 1463424kB
[ 1136.541990][T19613] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 1136.542106][T19613] Node 1 Normal: 211*4kB (UME) 54*8kB (UME) 41*16kB (UME) 199*32kB (UME) 98*64kB (UME) 27*128kB (UME) 14*256kB (UME) 8*512kB (UM) 3*1024kB (UME) 3*2048kB (UE) 946*4096kB (M) = 3909740kB
[ 1136.542288][T19613] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1136.542325][T19613] Node 0 hugepages_total=4 hugepages_free=0 hugepages_surp=2 hugepages_size=2048kB
[ 1136.542341][T19613] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1136.542356][T19613] Node 1 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1136.542371][T19613] 10157 total pagecache pages
[ 1136.542378][T19613] 0 pages in swap cache
[ 1136.542385][T19613] Free swap  = 124360kB
[ 1136.542392][T19613] Total swap = 124996kB
[ 1136.542400][T19613] 2097051 pages RAM
[ 1136.542407][T19613] 0 pages HighMem/MovableOnly
[ 1136.542414][T19613] 428606 pages reserved
[ 1136.542421][T19613] 0 pages cma reserved
[ 1136.853222][T19625] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3328'.
[ 1136.853256][T19625] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3328'.
[ 1136.855984][    T8] cherry 0003:046A:0027.0027: unknown main item tag 0x0
[ 1136.856011][    T8] cherry 0003:046A:0027.0027: unknown main item tag 0x0
[ 1136.857537][    T8] cherry 0003:046A:0027.0027: hidraw0: USB HID v0.00 Device [HID 046a:0027] on usb-dummy_hcd.7-1/input0
[ 1138.430641][T19641] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3333'.
[ 1138.579505][   T29] audit: type=1400 audit(1734826965.731:2409): avc:  denied  { connect } for  pid=19640 comm="syz.2.3333" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[ 1138.614290][   T29] audit: type=1400 audit(1734826965.759:2410): avc:  denied  { setopt } for  pid=19640 comm="syz.2.3333" laddr=172.20.20.170 lport=1 faddr=172.20.20.170 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[ 1138.644717][   T29] audit: type=1400 audit(1734826965.796:2411): avc:  denied  { write } for  pid=19640 comm="syz.2.3333" path="socket:[61936]" dev="sockfs" ino=61936 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[ 1138.674597][T19643] input: syz0 as /devices/virtual/input/input53
[ 1139.054356][T19648] program syz.5.3334 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1139.172269][T19599] tty tty1: ldisc open failed (-12), clearing slot 0
[ 1139.188569][T19594] ptm ptm0: ldisc open failed (-12), clearing slot 0
[ 1139.265785][    T8] usb 8-1: USB disconnect, device number 2
[ 1139.744681][T19657] new mount options do not match the existing superblock, will be ignored
[ 1141.031394][   T29] audit: type=1326 audit(1734826968.022:2412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19662 comm="syz.4.3338" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc7f7585d29 code=0x0
[ 1141.481644][T19666] veth0_to_team: entered promiscuous mode
[ 1141.487499][T19666] veth0_to_team: entered allmulticast mode
[ 1143.617686][    T8] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[ 1143.758611][T19688] netlink: 'syz.4.3345': attribute type 1 has an invalid length.
[ 1143.817850][    T8] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[ 1143.835104][    T8] usb 8-1: config 0 has no interface number 0
[ 1143.878101][    T8] usb 8-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e
[ 1143.898122][    T8] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1144.054603][    T8] usb 8-1: config 0 descriptor??
[ 1144.298115][    T8] usb 8-1: selecting invalid altsetting 1
[ 1144.304591][    T8] dvb_ttusb_budget: ttusb_init_controller: error
[ 1144.312152][    T8] dvbdev: DVB: registering new adapter (Technotrend/Hauppauge Nova-USB)
[ 1144.383875][    T8] DVB: Unable to find symbol cx22700_attach()
[ 1144.398681][T19703] netlink: 'syz.6.3349': attribute type 11 has an invalid length.
[ 1144.415546][    T8] DVB: Unable to find symbol tda10046_attach()
[ 1144.425278][    T8] dvb_ttusb_budget: no frontend driver found for device [0b48:1005]
[ 1144.613546][T19704] program syz.2.3348 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1144.829552][   T29] audit: type=1400 audit(1734826971.577:2413): avc:  denied  { mounton } for  pid=19686 comm="syz.7.3344" path="/proc/60/task" dev="proc" ino=61154 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[ 1144.967465][ T5863] usb 5-1: new high-speed USB device number 63 using dummy_hcd
[ 1144.993262][T16953] usb 8-1: USB disconnect, device number 3
[ 1145.014892][   T29] audit: type=1400 audit(1734826971.577:2414): avc:  denied  { bind } for  pid=19686 comm="syz.7.3344" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[ 1145.749603][ T5863] usb 5-1: config 0 interface 0 altsetting 8 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1145.763544][ T5863] usb 5-1: config 0 interface 0 has no altsetting 0
[ 1145.770382][ T5863] usb 5-1: New USB device found, idVendor=046a, idProduct=0027, bcdDevice= 0.00
[ 1145.780210][ T5863] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1145.795789][ T5863] usb 5-1: config 0 descriptor??
[ 1146.104496][T16775] usb 3-1: new high-speed USB device number 63 using dummy_hcd
[ 1146.268885][T16775] usb 3-1: Using ep0 maxpacket: 32
[ 1146.278389][T16775] usb 3-1: config 1 interface 0 altsetting 128 endpoint 0x1 has invalid maxpacket 53245, setting to 1024
[ 1146.290964][T16775] usb 3-1: config 1 interface 0 altsetting 128 bulk endpoint 0x1 has invalid maxpacket 1024
[ 1146.361344][ T5863] cherry 0003:046A:0027.0028: unknown main item tag 0x0
[ 1146.368646][ T5863] cherry 0003:046A:0027.0028: unknown main item tag 0x0
[ 1146.381670][T16775] usb 3-1: config 1 interface 0 altsetting 128 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[ 1146.410606][ T5863] cherry 0003:046A:0027.0028: hidraw0: USB HID v0.00 Device [HID 046a:0027] on usb-dummy_hcd.4-1/input0
[ 1146.482600][T19620] syz.5.3327 (19620) used greatest stack depth: 20832 bytes left
[ 1146.485260][T16775] usb 3-1: config 1 interface 0 has no altsetting 0
[ 1146.517835][T16775] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[ 1146.528636][T16775] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1146.536941][T16775] usb 3-1: Product: ᐁ
[ 1146.542579][T16775] usb 3-1: Manufacturer: 轩䨤ኞ趭䦦᧠姜趑䩮Ȧ챻翹爮▖龜賬㎂뎭㩳猭粸쪘᪗ꝺ賰銞閃힮㘘᝔ꀸ䦝뿊쥇䥚䯁䖎ၼ⯄Ⱞ퇆ਞꬠ晳⪐㤋拾䉳࠲ⱸ娷⃆ᇰቻ鎕侨⧃ᨭ꼮ⵁ塲緃懨ಓ쭃욄懑楡뒃轆碑牯ꗼॹ㘶쉼
[ 1146.596555][ T5863] usb 5-1: USB disconnect, device number 63
[ 1146.624831][T16775] usb 3-1: SerialNumber: syz
[ 1146.640167][T19719] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1146.652382][T19719] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1146.730116][T19724] loop8: detected capacity change from 0 to 7
[ 1146.747760][T19724] Dev loop8: unable to read RDB block 7
[ 1146.753320][T19724]  loop8: AHDI p1 p3 p4
[ 1146.769678][T19724] loop8: partition table partially beyond EOD, truncated
[ 1146.798211][T19724] loop8: p1 start 975770946 is beyond EOD, truncated
[ 1146.808987][T19724] loop8: p3 start 6514546 is beyond EOD, truncated
[ 1146.884712][T19719] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1795 sclass=netlink_route_socket pid=19719 comm=syz.2.3354
[ 1146.900002][   T29] audit: type=1400 audit(1734826973.513:2415): avc:  denied  { setopt } for  pid=19725 comm="syz.7.3356" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[ 1146.956657][T16775] usblp 3-1:1.0: usblp0: USB Unidirectional printer dev 63 if 0 alt 128 proto 1 vid 0x0525 pid 0xA4A8
[ 1147.000798][   T29] audit: type=1400 audit(1734826973.597:2416): avc:  denied  { validate_trans } for  pid=19725 comm="syz.7.3356" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[ 1147.035511][T16775] usb 3-1: USB disconnect, device number 63
[ 1147.043399][T16775] usblp0: removed
[ 1147.507565][T19732] vivid-007: disconnect
[ 1147.593683][T19738] overlayfs: metacopy with no lower data found - abort lookup (/bus)
[ 1147.661428][   T29] audit: type=1326 audit(1734826974.224:2417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19740 comm="syz.6.3359" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f58ea185d29 code=0x0
[ 1147.663651][T19731] vivid-007: reconnect
[ 1147.709612][   T29] audit: type=1400 audit(1734826974.271:2418): avc:  denied  { ioctl } for  pid=19744 comm="syz.4.3362" path="socket:[62161]" dev="sockfs" ino=62161 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[ 1147.735592][T19726] block nbd7: shutting down sockets
[ 1148.757702][   T29] audit: type=1400 audit(1734826975.253:2419): avc:  denied  { ioctl } for  pid=19752 comm="syz.4.3364" path="socket:[62188]" dev="sockfs" ino=62188 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[ 1148.836722][   T29] audit: type=1400 audit(1734826975.281:2420): avc:  denied  { bind } for  pid=19752 comm="syz.4.3364" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[ 1148.873474][   T29] audit: type=1400 audit(1734826975.281:2421): avc:  denied  { name_bind } for  pid=19752 comm="syz.4.3364" src=512 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=icmp_socket permissive=1
[ 1148.895535][   T29] audit: type=1400 audit(1734826975.281:2422): avc:  denied  { node_bind } for  pid=19752 comm="syz.4.3364" src=512 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=icmp_socket permissive=1
[ 1149.274582][T19766] new mount options do not match the existing superblock, will be ignored
[ 1149.370728][T19771] program syz.4.3369 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1149.884381][ T5863] usb 7-1: new high-speed USB device number 31 using dummy_hcd
[ 1150.033324][T19780] netlink: 'syz.4.3372': attribute type 1 has an invalid length.
[ 1150.622729][T19781] program syz.2.3370 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1150.790638][ T5863] usb 7-1: config 0 interface 0 altsetting 8 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1150.843727][ T5863] usb 7-1: config 0 interface 0 has no altsetting 0
[ 1150.885014][ T5863] usb 7-1: New USB device found, idVendor=046a, idProduct=0027, bcdDevice= 0.00
[ 1150.896302][ T5863] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1150.931631][ T5863] usb 7-1: config 0 descriptor??
[ 1150.941216][T19786] vivid-007: disconnect
[ 1151.271520][T19784] vivid-007: reconnect
[ 1151.643836][ T5863] cherry 0003:046A:0027.0029: unknown main item tag 0x0
[ 1151.650822][ T5863] cherry 0003:046A:0027.0029: unknown main item tag 0x0
[ 1151.672129][ T5863] cherry 0003:046A:0027.0029: hidraw0: USB HID v0.00 Device [HID 046a:0027] on usb-dummy_hcd.6-1/input0
[ 1151.848841][T16775] usb 6-1: new high-speed USB device number 55 using dummy_hcd
[ 1151.871276][ T5863] usb 7-1: USB disconnect, device number 31
[ 1152.049199][T16775] usb 6-1: Using ep0 maxpacket: 32
[ 1152.096506][T16775] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 32
[ 1152.502499][T19813] program syz.4.3382 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1152.719944][T16775] usb 6-1: New USB device found, idVendor=0499, idProduct=1010, bcdDevice= 5.f5
[ 1152.732615][T16775] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1152.743272][T16775] usb 6-1: Product: syz
[ 1152.869375][T16775] usb 6-1: Manufacturer: syz
[ 1152.897337][T16775] usb 6-1: SerialNumber: syz
[ 1152.912975][T16775] usb 6-1: config 0 descriptor??
[ 1152.972434][T19793] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[ 1152.993873][T16775] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[ 1153.264912][T19821] netlink: 'syz.4.3384': attribute type 1 has an invalid length.
[ 1153.954545][T19822] netlink: 'syz.5.3377': attribute type 1 has an invalid length.
[ 1154.261113][T19826] vivid-007: disconnect
[ 1154.555453][T19824] vivid-007: reconnect
[ 1154.753566][ T5863] usb 6-1: USB disconnect, device number 55
[ 1154.834139][T19840] FAULT_INJECTION: forcing a failure.
[ 1154.834139][T19840] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1154.914602][T19840] CPU: 0 UID: 0 PID: 19840 Comm: syz.4.3389 Not tainted 6.13.0-rc3-syzkaller-00258-ge84a3bf7f4aa #0
[ 1154.925402][T19840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1154.935466][T19840] Call Trace:
[ 1154.938746][T19840]  <TASK>
[ 1154.941677][T19840]  dump_stack_lvl+0x16c/0x1f0
[ 1154.946367][T19840]  should_fail_ex+0x497/0x5b0
[ 1154.951056][T19840]  _copy_from_user+0x2e/0xd0
[ 1154.955643][T19840]  iommufd_fops_ioctl+0x302/0x4f0
[ 1154.960659][T19840]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[ 1154.966193][T19840]  ? __pfx_lock_release+0x10/0x10
[ 1154.971212][T19840]  ? selinux_file_ioctl+0x180/0x270
[ 1154.976401][T19840]  ? selinux_file_ioctl+0xb4/0x270
[ 1154.981507][T19840]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[ 1154.987041][T19840]  __x64_sys_ioctl+0x190/0x200
[ 1154.991797][T19840]  do_syscall_64+0xcd/0x250
[ 1154.996290][T19840]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1155.002181][T19840] RIP: 0033:0x7fc7f7585d29
[ 1155.006580][T19840] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1155.026173][T19840] RSP: 002b:00007fc7f8364038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1155.034569][T19840] RAX: ffffffffffffffda RBX: 00007fc7f7775fa0 RCX: 00007fc7f7585d29
[ 1155.042523][T19840] RDX: 00000000200001c0 RSI: 0000000000003b84 RDI: 0000000000000003
[ 1155.050478][T19840] RBP: 00007fc7f8364090 R08: 0000000000000000 R09: 0000000000000000
[ 1155.058436][T19840] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1155.066391][T19840] R13: 0000000000000000 R14: 00007fc7f7775fa0 R15: 00007ffedea08a78
[ 1155.074357][T19840]  </TASK>
[ 1156.572139][   T29] audit: type=1400 audit(1734826982.521:2423): avc:  denied  { setopt } for  pid=19858 comm="syz.5.3392" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[ 1157.042014][   T29] audit: type=1326 audit(1734826982.961:2424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19873 comm="syz.4.3394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7f7585d29 code=0x7ffc0000
[ 1157.094486][   T29] audit: type=1326 audit(1734826982.961:2425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19873 comm="syz.4.3394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7f7585d29 code=0x7ffc0000
[ 1157.146661][   T29] audit: type=1326 audit(1734826982.989:2426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19873 comm="syz.4.3394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=47 compat=0 ip=0x7fc7f7585d29 code=0x7ffc0000
[ 1157.180855][   T29] audit: type=1326 audit(1734826982.989:2427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19873 comm="syz.4.3394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7f7585d29 code=0x7ffc0000
[ 1157.237109][   T29] audit: type=1326 audit(1734826982.989:2428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19873 comm="syz.4.3394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7f7585d29 code=0x7ffc0000
[ 1157.289443][   T29] audit: type=1326 audit(1734826982.989:2429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19873 comm="syz.4.3394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fc7f7585d29 code=0x7ffc0000
[ 1157.314134][   T29] audit: type=1326 audit(1734826982.989:2430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19873 comm="syz.4.3394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7f7585d29 code=0x7ffc0000
[ 1157.346215][   T29] audit: type=1326 audit(1734826982.989:2431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19873 comm="syz.4.3394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7f7585d29 code=0x7ffc0000
[ 1157.370656][   T29] audit: type=1326 audit(1734826982.989:2432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19873 comm="syz.4.3394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7fc7f7585d29 code=0x7ffc0000
[ 1157.395791][ T5863] usb 3-1: new high-speed USB device number 64 using dummy_hcd
[ 1157.412295][T19881] infiniband syz2: set active
[ 1157.417302][T19881] infiniband syz2: added team_slave_1
[ 1157.434679][T19882] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(3)
[ 1157.441216][T19882] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[ 1157.459134][T19881] RDS/IB: syz2: added
[ 1157.463736][T19881] smc: adding ib device syz2 with port count 1
[ 1157.470092][T19881] smc:    ib device syz2 port 1 has pnetid 
[ 1157.553088][T19882] vhci_hcd vhci_hcd.0: Device attached
[ 1157.581876][ T5863] usb 3-1: config 0 interface 0 altsetting 8 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1157.612670][ T5863] usb 3-1: config 0 interface 0 has no altsetting 0
[ 1157.634772][ T5863] usb 3-1: New USB device found, idVendor=046a, idProduct=0027, bcdDevice= 0.00
[ 1157.669644][ T5863] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1157.707419][ T5863] usb 3-1: config 0 descriptor??
[ 1157.746635][T16775] vhci_hcd: vhci_device speed not set
[ 1157.810837][T16775] usb 45-1: new full-speed USB device number 2 using vhci_hcd
[ 1158.308177][ T5863] cherry 0003:046A:0027.002A: unknown main item tag 0x0
[ 1158.324510][ T5863] cherry 0003:046A:0027.002A: unknown main item tag 0x0
[ 1158.332901][ T5863] cherry 0003:046A:0027.002A: hidraw0: USB HID v0.00 Device [HID 046a:0027] on usb-dummy_hcd.2-1/input0
[ 1158.939888][T18442] usb 7-1: new low-speed USB device number 32 using dummy_hcd
[ 1158.981921][   T25] usb 3-1: USB disconnect, device number 64
[ 1159.298016][T18442] usb 7-1: config 0 has no interfaces?
[ 1159.303549][T18442] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[ 1159.328764][T18442] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1159.342693][T18442] usb 7-1: config 0 descriptor??
[ 1160.274081][T19882] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1160.319601][T19885] vhci_hcd: cannot find a urb of seqnum 0 max seqnum 1
[ 1160.485670][ T6443] vhci_hcd: stop threads
[ 1160.510954][T19882] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1160.541888][ T6443] vhci_hcd: release socket
[ 1160.623223][ T6443] vhci_hcd: disconnect device
[ 1160.694327][ T5863] usb 7-1: USB disconnect, device number 32
[ 1162.894881][T19940] program syz.2.3411 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1163.284311][T16775] vhci_hcd: vhci_device speed not set
[ 1163.738058][T19959] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2064 sclass=netlink_route_socket pid=19959 comm=syz.5.3414
[ 1164.624589][T19965] program syz.2.3415 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1165.240731][T16775] usb 7-1: new high-speed USB device number 33 using dummy_hcd
[ 1165.249892][   T29] kauditd_printk_skb: 96 callbacks suppressed
[ 1165.249907][   T29] audit: type=1804 audit(1734826990.668:2529): pid=19973 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.2.3418" name="/newroot/62/bus/bus" dev="overlay" ino=372 res=1 errno=0
[ 1165.288880][T19973] Invalid ELF header magic: != ELF
[ 1165.379768][T16775] usb 7-1: device descriptor read/64, error -71
[ 1165.560074][   T29] audit: type=1400 audit(1734826990.958:2530): avc:  denied  { ioctl } for  pid=19974 comm="syz.2.3419" path="socket:[63676]" dev="sockfs" ino=63676 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[ 1165.650420][T16775] usb 7-1: new high-speed USB device number 34 using dummy_hcd
[ 1168.106971][T19999] program syz.2.3423 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1168.323455][T19993] can0: slcan on ptm1.
[ 1169.484868][ T5863] usb 8-1: new low-speed USB device number 4 using dummy_hcd
[ 1169.773458][ T5863] usb 8-1: Invalid ep0 maxpacket: 64
[ 1169.901937][T20014] netlink: 'syz.6.3428': attribute type 1 has an invalid length.
[ 1170.404203][ T5863] usb 8-1: new low-speed USB device number 5 using dummy_hcd
[ 1170.575323][T20000] can0 (unregistered): slcan off ptm1.
[ 1170.700077][   T29] audit: type=1400 audit(1734826995.776:2531): avc:  denied  { listen } for  pid=20020 comm="syz.7.3431" lport=53790 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[ 1170.757140][   T29] audit: type=1400 audit(1734826995.776:2532): avc:  denied  { accept } for  pid=20020 comm="syz.7.3431" lport=53790 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[ 1170.819618][   T29] audit: type=1400 audit(1734826995.776:2533): avc:  denied  { setopt } for  pid=20020 comm="syz.7.3431" lport=53790 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[ 1170.983287][   T29] audit: type=1400 audit(1734826995.776:2534): avc:  denied  { getopt } for  pid=20020 comm="syz.7.3431" lport=53790 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[ 1171.812473][T20040] netlink: 'syz.4.3433': attribute type 1 has an invalid length.
[ 1173.001822][T20057] tmpfs: Bad value for 'mpol'
[ 1174.203396][T20061] can0: slcan on ptm2.
[ 1174.332299][T20070] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(12)
[ 1174.338933][T20070] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[ 1174.382241][T20070] vhci_hcd vhci_hcd.0: Device attached
[ 1174.476800][T20071] vhci_hcd: connection closed
[ 1174.478354][    T8] usb 3-1: new low-speed USB device number 65 using dummy_hcd
[ 1174.478947][ T6443] vhci_hcd: stop threads
[ 1174.509612][ T6443] vhci_hcd: release socket
[ 1174.520158][ T6443] vhci_hcd: disconnect device
[ 1174.649246][ T5895] vhci_hcd: vhci_device speed not set
[ 1174.787506][T20080] netlink: 'syz.6.3441': attribute type 1 has an invalid length.
[ 1175.257737][    T8] usb 3-1: Invalid ep0 maxpacket: 64
[ 1175.726444][T20086] new mount options do not match the existing superblock, will be ignored
[ 1176.361066][    T8] usb 3-1: new low-speed USB device number 66 using dummy_hcd
[ 1176.604766][    T8] usb 3-1: Invalid ep0 maxpacket: 64
[ 1176.610435][    T8] usb usb3-port1: attempt power cycle
[ 1176.989707][    T8] usb 3-1: new low-speed USB device number 67 using dummy_hcd
[ 1177.128726][    T8] usb 3-1: Invalid ep0 maxpacket: 64
[ 1177.158205][T20101] vivid-007: disconnect
[ 1177.194574][T20100] vivid-007: reconnect
[ 1177.263018][   T29] audit: type=1400 audit(1734827001.912:2535): avc:  denied  { setopt } for  pid=20107 comm="syz.7.3452" lport=20001 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[ 1177.283623][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1177.304248][T20060] can0 (unregistered): slcan off ptm2.
[ 1177.916147][T20120] program syz.4.3454 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1178.484761][T20131] FAULT_INJECTION: forcing a failure.
[ 1178.484761][T20131] name failslab, interval 1, probability 0, space 0, times 0
[ 1178.492174][T20130] new mount options do not match the existing superblock, will be ignored
[ 1178.583123][T20131] CPU: 0 UID: 0 PID: 20131 Comm: syz.4.3456 Not tainted 6.13.0-rc3-syzkaller-00258-ge84a3bf7f4aa #0
[ 1178.593924][T20131] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1178.603987][T20131] Call Trace:
[ 1178.607267][T20131]  <TASK>
[ 1178.610199][T20131]  dump_stack_lvl+0x16c/0x1f0
[ 1178.614893][T20131]  should_fail_ex+0x497/0x5b0
[ 1178.619590][T20131]  ? fs_reclaim_acquire+0xae/0x150
[ 1178.624718][T20131]  should_failslab+0xc2/0x120
[ 1178.629403][T20131]  kmem_cache_alloc_noprof+0x6e/0x3d0
[ 1178.634784][T20131]  ? __pmd_alloc+0xc3/0x860
[ 1178.639297][T20131]  __pmd_alloc+0xc3/0x860
[ 1178.643635][T20131]  __handle_mm_fault+0x94a/0x2a40
[ 1178.648676][T20131]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1178.654160][T20131]  ? find_vma+0xc0/0x140
[ 1178.658405][T20131]  ? __pfx_find_vma+0x10/0x10
[ 1178.663091][T20131]  handle_mm_fault+0x3fa/0xaa0
[ 1178.667873][T20131]  do_user_addr_fault+0x7a3/0x13f0
[ 1178.673257][T20131]  exc_page_fault+0x5c/0xc0
[ 1178.677770][T20131]  asm_exc_page_fault+0x26/0x30
[ 1178.682629][T20131] RIP: 0010:rep_movs_alternative+0x30/0x70
[ 1178.688441][T20131] Code: f9 40 73 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08
[ 1178.708054][T20131] RSP: 0018:ffffc9000ddcfda0 EFLAGS: 00050202
[ 1178.714133][T20131] RAX: 0000000000000001 RBX: 0000000020000000 RCX: 000000000000001e
[ 1178.722110][T20131] RDX: fffff52001bb9fc7 RSI: 0000000020000000 RDI: ffffc9000ddcfe18
[ 1178.730088][T20131] RBP: 000000000000001e R08: 0000000000000001 R09: fffff52001bb9fc6
[ 1178.738068][T20131] R10: ffffc9000ddcfe35 R11: 0000000000000000 R12: 0000000000000000
[ 1178.746041][T20131] R13: ffffc9000ddcfe18 R14: 000000000000001e R15: 0000000000000000
[ 1178.754029][T20131]  _copy_from_user+0x9a/0xd0
[ 1178.758639][T20131]  move_addr_to_kernel+0x68/0x160
[ 1178.763683][T20131]  __sys_connect+0xb0/0x170
[ 1178.768201][T20131]  ? __pfx___sys_connect+0x10/0x10
[ 1178.773334][T20131]  ? __pfx_ksys_write+0x10/0x10
[ 1178.778193][T20131]  __x64_sys_connect+0x72/0xb0
[ 1178.782968][T20131]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1178.788175][T20131]  do_syscall_64+0xcd/0x250
[ 1178.792692][T20131]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1178.798597][T20131] RIP: 0033:0x7fc7f7585d29
[ 1178.803014][T20131] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1178.822625][T20131] RSP: 002b:00007fc7f8364038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[ 1178.831048][T20131] RAX: ffffffffffffffda RBX: 00007fc7f7775fa0 RCX: 00007fc7f7585d29
[ 1178.839033][T20131] RDX: 000000000000001e RSI: 0000000020000000 RDI: 0000000000000003
[ 1178.847011][T20131] RBP: 00007fc7f8364090 R08: 0000000000000000 R09: 0000000000000000
[ 1178.854989][T20131] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1178.862962][T20131] R13: 0000000000000000 R14: 00007fc7f7775fa0 R15: 00007ffedea08a78
[ 1178.870950][T20131]  </TASK>
[ 1178.886423][    T8] usb 6-1: new high-speed USB device number 56 using dummy_hcd
[ 1179.118925][   T29] audit: type=1326 audit(1734827003.642:2536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20138 comm="syz.4.3460" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fc7f7585d29 code=0x0
[ 1179.245467][    T8] usb 6-1: Using ep0 maxpacket: 32
[ 1179.635799][   T29] audit: type=1326 audit(1734827004.129:2537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20147 comm="syz.6.3461" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f58ea185d29 code=0x0
[ 1179.863519][    T8] usb 6-1: unable to get BOS descriptor or descriptor too short
[ 1180.102007][    T8] usb 6-1: unable to read config index 0 descriptor/start: -71
[ 1180.109839][    T8] usb 6-1: can't read configurations, error -71
[ 1180.227551][   T29] audit: type=1400 audit(1734827004.681:2538): avc:  denied  { read } for  pid=20152 comm="syz.5.3463" name="mice" dev="devtmpfs" ino=916 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[ 1180.251760][   T29] audit: type=1400 audit(1734827004.709:2539): avc:  denied  { open } for  pid=20152 comm="syz.5.3463" path="/dev/input/mice" dev="devtmpfs" ino=916 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[ 1180.560287][   T29] audit: type=1800 audit(1734827004.980:2540): pid=20166 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.7.3469" name="bus" dev="overlay" ino=250 res=0 errno=0
[ 1180.582009][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1180.617510][   T29] audit: type=1400 audit(1734827005.046:2541): avc:  denied  { setopt } for  pid=20169 comm="syz.6.3470" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[ 1180.642863][T20170] netlink: 'syz.6.3470': attribute type 10 has an invalid length.
[ 1180.721394][T20170] netlink: 55 bytes leftover after parsing attributes in process `syz.6.3470'.
[ 1180.746716][   T29] audit: type=1400 audit(1734827005.074:2542): avc:  denied  { bind } for  pid=20169 comm="syz.6.3470" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[ 1180.819619][   T29] audit: type=1326 audit(1734827005.242:2543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20181 comm="syz.7.3473" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f8b26b85d29 code=0x0
[ 1182.008216][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[ 1182.014889][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[ 1182.139309][T20214] new mount options do not match the existing superblock, will be ignored
[ 1183.379463][T20228] netlink: 'syz.7.3478': attribute type 1 has an invalid length.
[ 1183.508305][T20232] team0 (unregistering): Port device team_slave_0 removed
[ 1183.530304][T20232] infiniband syz2: set down
[ 1183.562728][T20232] team0 (unregistering): Port device team_slave_1 removed
[ 1183.582709][T20232] team0 (unregistering): Port device netdevsim0 removed
[ 1183.628886][ T5894] usb 3-1: new high-speed USB device number 69 using dummy_hcd
[ 1183.784544][T20234] tipc: Started in network mode
[ 1183.808259][T20234] tipc: Node identity 4, cluster identity 4711
[ 1183.836357][T20234] tipc: Node number set to 4
[ 1183.853473][ T5894] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1183.893201][ T5894] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1183.975984][ T5894] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2db4, bcdDevice= 0.00
[ 1183.996494][ T5894] usb 3-1: New USB device strings: Mfr=0, Product=9, SerialNumber=0
[ 1184.016778][ T5894] usb 3-1: Product: syz
[ 1184.074385][ T5894] usb 3-1: config 0 descriptor??
[ 1184.204598][T20248] FAULT_INJECTION: forcing a failure.
[ 1184.204598][T20248] name failslab, interval 1, probability 0, space 0, times 0
[ 1184.236415][T20248] CPU: 1 UID: 0 PID: 20248 Comm: syz.6.3490 Not tainted 6.13.0-rc3-syzkaller-00258-ge84a3bf7f4aa #0
[ 1184.247219][T20248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1184.257309][T20248] Call Trace:
[ 1184.260595][T20248]  <TASK>
[ 1184.263533][T20248]  dump_stack_lvl+0x16c/0x1f0
[ 1184.268231][T20248]  should_fail_ex+0x497/0x5b0
[ 1184.272919][T20248]  ? fs_reclaim_acquire+0xae/0x150
[ 1184.278056][T20248]  should_failslab+0xc2/0x120
[ 1184.282748][T20248]  kmem_cache_alloc_noprof+0x6e/0x3d0
[ 1184.288130][T20248]  ? hlock_class+0x4e/0x130
[ 1184.292651][T20248]  ? __lock_acquire+0xcc5/0x3c40
[ 1184.297595][T20248]  ? ptlock_alloc+0x1f/0x70
[ 1184.302107][T20248]  ptlock_alloc+0x1f/0x70
[ 1184.306449][T20248]  pte_alloc_one+0x74/0x390
[ 1184.310966][T20248]  do_pte_missing+0x1ae7/0x3e00
[ 1184.315841][T20248]  __handle_mm_fault+0x103c/0x2a40
[ 1184.320981][T20248]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1184.326448][T20248]  ? __pfx_lock_acquire.part.0+0x10/0x10
[ 1184.332107][T20248]  ? find_vma+0xc0/0x140
[ 1184.336361][T20248]  ? __pfx_find_vma+0x10/0x10
[ 1184.341077][T20248]  handle_mm_fault+0x3fa/0xaa0
[ 1184.345856][T20248]  do_user_addr_fault+0x7a3/0x13f0
[ 1184.350991][T20248]  exc_page_fault+0x5c/0xc0
[ 1184.355506][T20248]  asm_exc_page_fault+0x26/0x30
[ 1184.360374][T20248] RIP: 0010:rep_movs_alternative+0x13/0x70
[ 1184.366187][T20248] Code: cc cc cc 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 83 f9 40 73 40 83 f9 08 73 21 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f
[ 1184.385804][T20248] RSP: 0018:ffffc9001026fb80 EFLAGS: 00050202
[ 1184.391880][T20248] RAX: 0000000000000001 RBX: 0000000020000040 RCX: 0000000000000004
[ 1184.399856][T20248] RDX: fffff5200204df82 RSI: 0000000020000040 RDI: ffffc9001026fc10
[ 1184.407831][T20248] RBP: 0000000000000004 R08: 0000000000000001 R09: fffff5200204df82
[ 1184.415810][T20248] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000
[ 1184.423788][T20248] R13: ffffc9001026fc10 R14: 1ffff9200204df7c R15: 0000000000000000
[ 1184.431776][T20248]  _copy_from_user+0x9a/0xd0
[ 1184.436387][T20248]  do_tcp_setsockopt+0x6a8/0x2660
[ 1184.441426][T20248]  ? __pfx_do_tcp_setsockopt+0x10/0x10
[ 1184.446894][T20248]  ? sock_has_perm+0x25a/0x2f0
[ 1184.451664][T20248]  ? selinux_netlbl_socket_setsockopt+0x184/0x470
[ 1184.458087][T20248]  ? __pfx_selinux_netlbl_socket_setsockopt+0x10/0x10
[ 1184.464868][T20248]  tcp_setsockopt+0xe2/0x100
[ 1184.469464][T20248]  ? __pfx_sock_common_setsockopt+0x10/0x10
[ 1184.475365][T20248]  do_sock_setsockopt+0x222/0x480
[ 1184.480397][T20248]  ? __pfx_do_sock_setsockopt+0x10/0x10
[ 1184.485954][T20248]  ? lock_acquire+0x2f/0xb0
[ 1184.490480][T20248]  __sys_setsockopt+0x1a0/0x230
[ 1184.495348][T20248]  __x64_sys_setsockopt+0xbd/0x160
[ 1184.500472][T20248]  ? do_syscall_64+0x91/0x250
[ 1184.505258][T20248]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1184.510462][T20248]  do_syscall_64+0xcd/0x250
[ 1184.514980][T20248]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1184.520883][T20248] RIP: 0033:0x7f58ea185d29
[ 1184.525307][T20248] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1184.544928][T20248] RSP: 002b:00007f58eb057038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1184.553336][T20248] RAX: ffffffffffffffda RBX: 00007f58ea375fa0 RCX: 00007f58ea185d29
[ 1184.561294][T20248] RDX: 0000000000000013 RSI: 0000000000000006 RDI: 0000000000000004
[ 1184.569249][T20248] RBP: 00007f58eb057090 R08: 0000000000000004 R09: 0000000000000000
[ 1184.577206][T20248] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000001
[ 1184.585172][T20248] R13: 0000000000000000 R14: 00007f58ea375fa0 R15: 00007ffe9be58148
[ 1184.593151][T20248]  </TASK>
[ 1184.753292][ T5894] konepure 0003:1E7D:2DB4.002B: unknown main item tag 0x4
[ 1184.768962][ T5894] konepure 0003:1E7D:2DB4.002B: item fetching failed at offset 9/11
[ 1184.788308][ T5894] konepure 0003:1E7D:2DB4.002B: parse failed
[ 1184.811113][ T5894] konepure 0003:1E7D:2DB4.002B: probe with driver konepure failed with error -22
[ 1184.905181][   T29] audit: type=1400 audit(1734827009.058:2544): avc:  denied  { bind } for  pid=20239 comm="syz.4.3487" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 1184.997537][   T29] audit: type=1400 audit(1734827009.058:2545): avc:  denied  { setopt } for  pid=20239 comm="syz.4.3487" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 1185.221357][ T5894] usb 7-1: new high-speed USB device number 35 using dummy_hcd
[ 1185.385734][ T5894] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1185.399147][ T5894] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1186.074088][ T5894] usb 7-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00
[ 1186.083200][ T5894] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1186.164244][ T5894] usb 7-1: config 0 descriptor??
[ 1186.614195][ T5894] hid-steam 0003:28DE:1142.002C: unknown main item tag 0x2
[ 1186.621456][ T5894] hid-steam 0003:28DE:1142.002C: item fetching failed at offset 1/5
[ 1186.631846][T20275] loop8: detected capacity change from 0 to 7
[ 1186.642079][T20275] Dev loop8: unable to read RDB block 7
[ 1186.647857][T20275]  loop8: AHDI p1 p3 p4
[ 1186.652008][T20275] loop8: partition table partially beyond EOD, truncated
[ 1186.659131][T20275] loop8: p1 start 975770946 is beyond EOD, truncated
[ 1186.665811][T20275] loop8: p3 start 6514546 is beyond EOD, truncated
[ 1186.678565][ T5894] hid-steam 0003:28DE:1142.002C: steam_probe:parse of hid interface failed
[ 1186.687871][ T5894] hid-steam 0003:28DE:1142.002C: probe with driver hid-steam failed with error -22
[ 1186.762071][   T25] usb 3-1: USB disconnect, device number 69
[ 1186.894875][T20260] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1186.913777][T20260] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1187.263319][ T5894] usb 5-1: new full-speed USB device number 64 using dummy_hcd
[ 1187.359734][    T8] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[ 1187.441068][ T5894] usb 5-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.43
[ 1187.552838][    T8] usb 8-1: Using ep0 maxpacket: 32
[ 1187.561560][T20294] program syz.5.3502 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1187.571018][ T5894] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1187.683518][    T8] usb 8-1: config 0 has an invalid interface number: 184 but max is 0
[ 1187.722028][ T5894] usb 5-1: config 0 descriptor??
[ 1187.734604][    T8] usb 8-1: config 0 has no interface number 0
[ 1187.742357][    T8] usb 8-1: config 0 interface 184 has no altsetting 0
[ 1187.781074][ T5894] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state.
[ 1187.782437][ T5863] usb 7-1: USB disconnect, device number 35
[ 1187.842309][    T8] usb 8-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[ 1187.880511][    T8] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1187.901622][    T8] usb 8-1: Product: syz
[ 1187.909529][    T8] usb 8-1: Manufacturer: syz
[ 1187.914159][    T8] usb 8-1: SerialNumber: syz
[ 1187.930207][    T8] usb 8-1: config 0 descriptor??
[ 1187.937623][    T8] smsc75xx v1.0.0
[ 1187.971486][ T5894] gp8psk: usb in 128 operation failed.
[ 1187.984663][T20296] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3503'.
[ 1189.121047][    T8] smsc75xx 8-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[ 1189.132522][    T8] smsc75xx 8-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71
[ 1189.142713][    T8] smsc75xx 8-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_bind
[ 1189.153165][    T8] smsc75xx 8-1:0.184: probe with driver smsc75xx failed with error -71
[ 1189.194960][    T8] usb 8-1: USB disconnect, device number 6
[ 1189.233747][   T29] audit: type=1400 audit(1734827013.109:2546): avc:  denied  { setopt } for  pid=20312 comm="syz.6.3507" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[ 1189.303027][T20318] FAULT_INJECTION: forcing a failure.
[ 1189.303027][T20318] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1189.317809][T20318] CPU: 0 UID: 0 PID: 20318 Comm: syz.2.3509 Not tainted 6.13.0-rc3-syzkaller-00258-ge84a3bf7f4aa #0
[ 1189.328600][T20318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1189.338671][T20318] Call Trace:
[ 1189.341954][T20318]  <TASK>
[ 1189.344891][T20318]  dump_stack_lvl+0x16c/0x1f0
[ 1189.349588][T20318]  should_fail_ex+0x497/0x5b0
[ 1189.354288][T20318]  _copy_to_user+0x32/0xd0
[ 1189.358719][T20318]  simple_read_from_buffer+0xd0/0x160
[ 1189.364106][T20318]  proc_fail_nth_read+0x198/0x270
[ 1189.369156][T20318]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1189.374722][T20318]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1189.380283][T20318]  vfs_read+0x1df/0xbe0
[ 1189.384444][T20318]  ? __fget_files+0x1fc/0x3a0
[ 1189.389130][T20318]  ? __pfx___mutex_lock+0x10/0x10
[ 1189.394175][T20318]  ? __pfx_vfs_read+0x10/0x10
[ 1189.398859][T20318]  ? __fget_files+0x206/0x3a0
[ 1189.403531][T20318]  ksys_read+0x12b/0x250
[ 1189.407759][T20318]  ? __pfx_ksys_read+0x10/0x10
[ 1189.412530][T20318]  do_syscall_64+0xcd/0x250
[ 1189.417023][T20318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1189.422904][T20318] RIP: 0033:0x7fa17958473c
[ 1189.427305][T20318] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1189.446898][T20318] RSP: 002b:00007fa17a2ec030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1189.455297][T20318] RAX: ffffffffffffffda RBX: 00007fa179775fa0 RCX: 00007fa17958473c
[ 1189.463253][T20318] RDX: 000000000000000f RSI: 00007fa17a2ec0a0 RDI: 0000000000000004
[ 1189.471209][T20318] RBP: 00007fa17a2ec090 R08: 0000000000000000 R09: 0000000000000000
[ 1189.479168][T20318] R10: 0000000020000140 R11: 0000000000000246 R12: 0000000000000001
[ 1189.487126][T20318] R13: 0000000000000000 R14: 00007fa179775fa0 R15: 00007ffc8ed7df68
[ 1189.495093][T20318]  </TASK>
[ 1190.303198][T20340] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3514'.
[ 1190.401719][T20340] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3514'.
[ 1190.441263][ T5894] gp8psk: usb in 146 operation failed.
[ 1190.446768][ T5894] gp8psk: failed to get FW version
[ 1190.452222][ T5894] gp8psk: usb in 149 operation failed.
[ 1190.457690][ T5894] gp8psk: failed to get FPGA version
[ 1190.514026][ T5894] gp8psk: usb in 138 operation failed.
[ 1190.538237][ T5894] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[ 1190.655036][ T5894] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19)
[ 1190.687940][ T5894] usb 5-1: USB disconnect, device number 64
[ 1190.700560][T20347] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3515'.
[ 1190.962247][   T29] audit: type=1400 audit(1734827014.727:2547): avc:  denied  { relabelfrom } for  pid=20352 comm="syz.5.3520" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[ 1191.009601][   T25] usb 3-1: new high-speed USB device number 70 using dummy_hcd
[ 1191.024108][   T29] audit: type=1400 audit(1734827014.727:2548): avc:  denied  { relabelto } for  pid=20352 comm="syz.5.3520" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[ 1191.712475][   T25] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1191.723625][   T25] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1191.734057][   T25] usb 3-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[ 1191.754251][   T25] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1191.794610][T20365] block device autoloading is deprecated and will be removed.
[ 1191.861278][   T25] usb 3-1: config 0 descriptor??
[ 1192.122965][T20372] kvm: user requested TSC rate below hardware speed
[ 1192.174627][T20372] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[ 1192.224094][ T5863] usb 7-1: new high-speed USB device number 36 using dummy_hcd
[ 1192.244080][T20372] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1192.392653][   T25] hid-thrustmaster 0003:044F:B65D.002D: unknown main item tag 0x0
[ 1192.440044][   T25] hid-thrustmaster 0003:044F:B65D.002D: hidraw0: USB HID v0.00 Device [HID 044f:b65d] on usb-dummy_hcd.2-1/input0
[ 1192.453253][   T25] hid-thrustmaster 0003:044F:B65D.002D: Wrong number of endpoints?
[ 1192.601682][ T5863] usb 7-1: Using ep0 maxpacket: 8
[ 1192.613826][T20343] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=2687774503 (86008784096 ns) > initial count (67893909056 ns). Using initial count to start timer.
[ 1192.656205][T20343] openvswitch: netlink: VXLAN extension message has 4 unknown bytes.
[ 1192.674740][    C1] hid-thrustmaster 0003:044F:B65D.002D: URB to get model id failed with error -71
[ 1192.701773][ T5863] usb 7-1: config 1 has 0 interfaces, different from the descriptor's value: 1
[ 1192.767475][ T5894] usb 3-1: USB disconnect, device number 70
[ 1192.788507][ T5863] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1192.802265][ T5863] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1192.816207][ T5863] usb 7-1: Product: syz
[ 1192.820381][ T5863] usb 7-1: Manufacturer: syz
[ 1192.825611][ T5863] usb 7-1: SerialNumber: syz
[ 1193.266450][   T29] audit: type=1400 audit(1734827016.850:2549): avc:  denied  { getopt } for  pid=20369 comm="syz.6.3524" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[ 1193.385378][T20389] netlink: 28 bytes leftover after parsing attributes in process `syz.7.3530'.
[ 1193.492725][   T29] audit: type=1326 audit(1734827017.094:2550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20390 comm="syz.7.3531" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8b26b85d29 code=0x0
[ 1193.742937][T20397] FAULT_INJECTION: forcing a failure.
[ 1193.742937][T20397] name failslab, interval 1, probability 0, space 0, times 0
[ 1193.769340][T20397] CPU: 0 UID: 0 PID: 20397 Comm: syz.2.3533 Not tainted 6.13.0-rc3-syzkaller-00258-ge84a3bf7f4aa #0
[ 1193.780112][T20397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1193.790143][T20397] Call Trace:
[ 1193.793400][T20397]  <TASK>
[ 1193.796317][T20397]  dump_stack_lvl+0x16c/0x1f0
[ 1193.800979][T20397]  should_fail_ex+0x497/0x5b0
[ 1193.805654][T20397]  ? fs_reclaim_acquire+0xae/0x150
[ 1193.810784][T20397]  should_failslab+0xc2/0x120
[ 1193.815476][T20397]  kmem_cache_alloc_noprof+0x6e/0x3d0
[ 1193.820868][T20397]  ? alloc_empty_file+0x73/0x1e0
[ 1193.820900][T20397]  alloc_empty_file+0x73/0x1e0
[ 1193.820925][T20397]  path_openat+0xe1/0x2d60
[ 1193.820944][T20397]  ? hlock_class+0x4e/0x130
[ 1193.820970][T20397]  ? __lock_acquire+0x15a9/0x3c40
[ 1193.821001][T20397]  ? __pfx_path_openat+0x10/0x10
[ 1193.821021][T20397]  ? __pfx___lock_acquire+0x10/0x10
[ 1193.821040][T20397]  ? lock_acquire.part.0+0x11b/0x380
[ 1193.821059][T20397]  ? find_held_lock+0x2d/0x110
[ 1193.821087][T20397]  do_filp_open+0x20c/0x470
[ 1193.821109][T20397]  ? __pfx_do_filp_open+0x10/0x10
[ 1193.821127][T20397]  ? find_held_lock+0x2d/0x110
[ 1193.821171][T20397]  ? alloc_fd+0x41f/0x760
[ 1193.821200][T20397]  do_sys_openat2+0x17a/0x1e0
[ 1193.821225][T20397]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1193.821253][T20397]  ? __fget_files+0x206/0x3a0
[ 1193.821277][T20397]  __x64_sys_openat+0x175/0x210
[ 1193.821309][T20397]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1193.821333][T20397]  ? ksys_write+0x1ba/0x250
[ 1193.821362][T20397]  do_syscall_64+0xcd/0x250
[ 1193.821390][T20397]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1193.821416][T20397] RIP: 0033:0x7fa179584690
[ 1193.821432][T20397] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[ 1193.821451][T20397] RSP: 002b:00007fa17a2ebf10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 1193.821471][T20397] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fa179584690
[ 1193.821484][T20397] RDX: 0000000000000002 RSI: 00007fa17a2ebfa0 RDI: 00000000ffffff9c
[ 1193.821497][T20397] RBP: 00007fa17a2ebfa0 R08: 0000000000000000 R09: 0000000000000000
[ 1193.821509][T20397] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[ 1193.821521][T20397] R13: 0000000000000000 R14: 00007fa179775fa0 R15: 00007ffc8ed7df68
[ 1193.821544][T20397]  </TASK>
[ 1194.105413][T20399] new mount options do not match the existing superblock, will be ignored
[ 1194.446973][ T5863] usb 7-1: USB disconnect, device number 36
[ 1194.921843][T20398] ptm ptm0: ldisc open failed (-12), clearing slot 0
[ 1194.971204][ T5894] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[ 1195.213976][   T29] audit: type=1400 audit(1734827018.356:2551): avc:  denied  { bind } for  pid=20407 comm="syz.2.3537" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 1195.243247][T17853] Bluetooth: hci2: command 0x0406 tx timeout
[ 1195.253792][   T29] audit: type=1400 audit(1734827018.431:2552): avc:  denied  { read } for  pid=20407 comm="syz.2.3537" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[ 1195.273638][   T29] audit: type=1400 audit(1734827018.646:2553): avc:  denied  { write } for  pid=20407 comm="syz.2.3537" name="mice" dev="devtmpfs" ino=916 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[ 1195.314811][ T5894] usb 8-1: Using ep0 maxpacket: 16
[ 1195.687092][ T5894] usb 8-1: config 0 interface 0 altsetting 5 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1195.758600][ T5894] usb 8-1: config 0 interface 0 altsetting 5 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1195.768495][ T5894] usb 8-1: config 0 interface 0 altsetting 5 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[ 1195.781344][ T5894] usb 8-1: config 0 interface 0 has no altsetting 0
[ 1195.787996][ T5894] usb 8-1: New USB device found, idVendor=0458, idProduct=5010, bcdDevice= 0.00
[ 1195.888549][ T5894] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1195.951162][ T5894] usb 8-1: config 0 descriptor??
[ 1196.051847][T20421] bridge1: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[ 1196.061778][T20421] bridge1: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[ 1196.738641][ T5894] input: HID 0458:5010 as /devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.0/0003:0458:5010.002E/input/input55
[ 1196.933886][ T5894] kye 0003:0458:5010.002E: input,hiddev0,hidraw0: USB HID v2.00 Device [HID 0458:5010] on usb-dummy_hcd.7-1/input0
[ 1197.323010][ T5894] usb 8-1: USB disconnect, device number 7
[ 1197.426044][T20436] netlink: 'syz.2.3544': attribute type 1 has an invalid length.
[ 1198.906895][T20455] program syz.7.3545 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1199.011965][T20452] FAULT_INJECTION: forcing a failure.
[ 1199.011965][T20452] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1199.025110][   T29] audit: type=1400 audit(1734827022.257:2554): avc:  denied  { connect } for  pid=20451 comm="syz.2.3550" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[ 1199.048735][T20452] CPU: 0 UID: 0 PID: 20452 Comm: syz.2.3550 Not tainted 6.13.0-rc3-syzkaller-00258-ge84a3bf7f4aa #0
[ 1199.059512][T20452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1199.069577][T20452] Call Trace:
[ 1199.072855][T20452]  <TASK>
[ 1199.075788][T20452]  dump_stack_lvl+0x16c/0x1f0
[ 1199.080478][T20452]  should_fail_ex+0x497/0x5b0
[ 1199.085167][T20452]  _copy_from_iter+0x2a1/0x1560
[ 1199.090028][T20452]  ? avc_has_perm_noaudit+0x143/0x3a0
[ 1199.095418][T20452]  ? __pfx__copy_from_iter+0x10/0x10
[ 1199.100713][T20452]  ? avc_has_perm+0x11b/0x1c0
[ 1199.105403][T20452]  ? __pfx_avc_has_perm+0x10/0x10
[ 1199.110448][T20452]  bcm_sendmsg+0x18d/0x43f0
[ 1199.114965][T20452]  ? sock_has_perm+0x25a/0x2f0
[ 1199.119737][T20452]  ? __pfx_sock_has_perm+0x10/0x10
[ 1199.124858][T20452]  ? __pfx_bcm_sendmsg+0x10/0x10
[ 1199.129799][T20452]  ? import_ubuf+0x1b6/0x220
[ 1199.134415][T20452]  ____sys_sendmsg+0xaaf/0xc90
[ 1199.139187][T20452]  ? copy_msghdr_from_user+0x10b/0x160
[ 1199.144649][T20452]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1199.149956][T20452]  ___sys_sendmsg+0x135/0x1e0
[ 1199.154637][T20452]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1199.159847][T20452]  ? __pfx_lock_release+0x10/0x10
[ 1199.164875][T20452]  ? trace_lock_acquire+0x14e/0x1f0
[ 1199.170097][T20452]  ? __fget_files+0x206/0x3a0
[ 1199.174783][T20452]  __sys_sendmsg+0x16e/0x220
[ 1199.179381][T20452]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1199.184516][T20452]  do_syscall_64+0xcd/0x250
[ 1199.189056][T20452]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1199.194949][T20452] RIP: 0033:0x7fa179585d29
[ 1199.199351][T20452] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1199.218940][T20452] RSP: 002b:00007fa17a2ec038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1199.227332][T20452] RAX: ffffffffffffffda RBX: 00007fa179775fa0 RCX: 00007fa179585d29
[ 1199.235281][T20452] RDX: 0000000000000000 RSI: 0000000020000500 RDI: 0000000000000003
[ 1199.243250][T20452] RBP: 00007fa17a2ec090 R08: 0000000000000000 R09: 0000000000000000
[ 1199.251199][T20452] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1199.259147][T20452] R13: 0000000000000000 R14: 00007fa179775fa0 R15: 00007ffc8ed7df68
[ 1199.267103][T20452]  </TASK>
[ 1199.413654][T20457] netlink: 'syz.4.3549': attribute type 1 has an invalid length.
[ 1199.422481][T20457] netlink: 224 bytes leftover after parsing attributes in process `syz.4.3549'.
[ 1199.471678][T20457] netlink: 'syz.4.3549': attribute type 1 has an invalid length.
[ 1200.399124][T20460] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3552'.
[ 1200.411767][T20454] program syz.6.3551 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1200.694914][T20469] IPVS: set_ctl: invalid protocol: 11612 172.20.20.187:21
[ 1200.846533][T20474] overlay: Unknown parameter 'reiser\s\'
[ 1200.898196][   T29] audit: type=1400 audit(1734827024.025:2555): avc:  denied  { setopt } for  pid=20473 comm="syz.4.3557" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[ 1200.904817][T20474] IPVS: set_ctl: invalid protocol: 60 224.0.0.2:20003
[ 1200.945386][T20476] FAULT_INJECTION: forcing a failure.
[ 1200.945386][T20476] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1200.959396][T20476] CPU: 0 UID: 0 PID: 20476 Comm: syz.6.3556 Not tainted 6.13.0-rc3-syzkaller-00258-ge84a3bf7f4aa #0
[ 1200.970146][T20476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1200.980192][T20476] Call Trace:
[ 1200.983456][T20476]  <TASK>
[ 1200.986373][T20476]  dump_stack_lvl+0x16c/0x1f0
[ 1200.991030][T20476]  should_fail_ex+0x497/0x5b0
[ 1200.995686][T20476]  _copy_from_user+0x2e/0xd0
[ 1201.000255][T20476]  userfaultfd_ioctl+0x2302/0x3830
[ 1201.005359][T20476]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[ 1201.010795][T20476]  ? ioctl_has_perm.constprop.0.isra.0+0x2ea/0x460
[ 1201.017276][T20476]  ? ioctl_has_perm.constprop.0.isra.0+0x2f3/0x460
[ 1201.023759][T20476]  ? __pfx_lock_release+0x10/0x10
[ 1201.028763][T20476]  ? selinux_file_ioctl+0x180/0x270
[ 1201.033936][T20476]  ? selinux_file_ioctl+0xb4/0x270
[ 1201.039021][T20476]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[ 1201.044459][T20476]  ? __x64_sys_ioctl+0x190/0x200
[ 1201.049385][T20476]  __x64_sys_ioctl+0x190/0x200
[ 1201.054143][T20476]  do_syscall_64+0xcd/0x250
[ 1201.058640][T20476]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1201.064530][T20476] RIP: 0033:0x7f58ea185d29
[ 1201.068932][T20476] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1201.088526][T20476] RSP: 002b:00007f58eb057038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1201.096927][T20476] RAX: ffffffffffffffda RBX: 00007f58ea375fa0 RCX: 00007f58ea185d29
[ 1201.104897][T20476] RDX: 0000000020000380 RSI: 00000000c020aa08 RDI: 0000000000000003
[ 1201.112867][T20476] RBP: 00007f58eb057090 R08: 0000000000000000 R09: 0000000000000000
[ 1201.120836][T20476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1201.128801][T20476] R13: 0000000000000000 R14: 00007f58ea375fa0 R15: 00007ffe9be58148
[ 1201.136782][T20476]  </TASK>
[ 1201.332798][   T29] audit: type=1400 audit(1734827024.408:2556): avc:  denied  { append } for  pid=20478 comm="syz.7.3558" name="dlm-control" dev="devtmpfs" ino=94 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 1202.243010][T20488] new mount options do not match the existing superblock, will be ignored
[ 1204.080426][   T29] audit: type=1400 audit(1734827026.981:2557): avc:  denied  { create } for  pid=20500 comm="syz.7.3563" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[ 1204.270603][T20509] new mount options do not match the existing superblock, will be ignored
[ 1204.636381][T20501] can: request_module (can-proto-3) failed.
[ 1204.764289][T20506] x_tables: duplicate underflow at hook 1
[ 1205.357305][T20513] program syz.4.3567 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1205.499488][T20525] sctp: [Deprecated]: syz.7.3569 (pid 20525) Use of int in maxseg socket option.
[ 1205.499488][T20525] Use struct sctp_assoc_value instead
[ 1205.847776][   T29] audit: type=1400 audit(1734827028.646:2558): avc:  denied  { ioctl } for  pid=20528 comm="syz.6.3571" path="/dev/fuse" dev="devtmpfs" ino=99 ioctlcmd=0xe500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[ 1205.935686][T20531] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=4032167445 (16128669780 ns) > initial count (15901924948 ns). Using initial count to start timer.
[ 1206.210821][T20537] netlink: 'syz.7.3573': attribute type 1 has an invalid length.
[ 1206.891562][T20545] netlink: 36 bytes leftover after parsing attributes in process `syz.6.3575'.
[ 1207.117840][   T25] usb 6-1: new high-speed USB device number 58 using dummy_hcd
[ 1207.367688][   T29] audit: type=1326 audit(1734827030.077:2559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20547 comm="syz.7.3576" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8b26b85d29 code=0x0
[ 1207.479477][   T25] usb 6-1: Using ep0 maxpacket: 32
[ 1207.489116][   T25] usb 6-1: config 1 interface 0 has no altsetting 0
[ 1207.516808][   T25] usb 6-1: New USB device found, idVendor=0b05, idProduct=183d, bcdDevice= 0.40
[ 1207.611013][   T25] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1207.883281][   T25] usb 6-1: Product: ⮞튓ቺЍ耿ᕭ뽧೛絆䖧韗젬ȁ쯴녫ꑈ䁭ᩀ⑆睱돨描璚⥼鞓⣉쾞䷩蟐ઌ衣앪䙮㲚뮳짛럍Ꞹ쀜鐰涙彡컂櫵ह쏮ꜥ奔溿⾴밾蠼썖霗˕艶
[ 1208.322440][T20562] Debayer A: =================  START STATUS  =================
[ 1208.330145][T20562] Debayer A: Debayer Mean Window Size: 3
[ 1208.336391][T20562] Debayer A: ==================  END STATUS  ==================
[ 1208.346066][   T25] usb 6-1: Manufacturer: ⦍煪沅菐흂耭ڙ⪽ᄭ೿솀쳅檣陡핡䴘ꪄ䇷瀇틏ؚ௑榒➷邚뗵朑锨ቭ揇틦ぼ䑍콟ꓢꋓൾ云鿉퉳돫䐏ꭜຕ뉼帔啣䮕尓珦虛䫇后ǝ칎诮湓ꩉ䖍泂阓鷊窒퀛懐⣋쪃께㸷頂潇ԙ胭绞勬⾻膔삫䠹
[ 1208.373556][   T25] usb 6-1: SerialNumber: 䃏ޭ␳훝礒䗴磝蹡魻唂蟫튷쌌ꌯ钔䧠⭲꿪杽뿍㾓
[ 1208.449318][T20563] xt_nat: multiple ranges no longer supported
[ 1208.863654][   T25] usb 6-1: can't set config #1, error -71
[ 1208.871001][   T25] usb 6-1: USB disconnect, device number 58
[ 1208.881670][ T5863] IPVS: starting estimator thread 0...
[ 1208.890442][T16953] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[ 1209.030849][   T29] audit: type=1400 audit(1734827031.630:2560): avc:  denied  { name_bind } for  pid=20566 comm="syz.5.3580" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1
[ 1209.054071][T20568] IPVS: using max 28 ests per chain, 67200 per kthread
[ 1209.136441][ T5863] usb 5-1: new high-speed USB device number 65 using dummy_hcd
[ 1209.179163][T16953] usb 8-1: Using ep0 maxpacket: 16
[ 1209.185674][T16953] usb 8-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 8
[ 1209.196316][T16953] usb 8-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[ 1209.213005][T16953] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1209.222388][T16953] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 1209.230385][T16953] usb 8-1: SerialNumber: syz
[ 1209.266155][T20556] raw-gadget.1 gadget.7: fail, usb_ep_enable returned -22
[ 1209.275998][    T9] usb 3-1: new high-speed USB device number 71 using dummy_hcd
[ 1209.296666][ T5863] usb 5-1: Using ep0 maxpacket: 16
[ 1209.322361][ T5863] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1209.343236][ T5863] usb 5-1: New USB device found, idVendor=045e, idProduct=0284, bcdDevice= 1.00
[ 1209.373663][ T5863] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1209.419687][ T5863] usb 5-1: config 0 descriptor??
[ 1209.427458][    T9] usb 3-1: device descriptor read/64, error -71
[ 1209.446563][ T5863] xbox_remote_probe: Unexpected endpoint_in
[ 1209.509452][T20577] bridge0: entered promiscuous mode
[ 1209.517391][ T5863] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[ 1209.531917][T20577] bridge0: entered allmulticast mode
[ 1209.539294][T20556] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1209.564217][T20556] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1209.693250][    T9] usb 3-1: new high-speed USB device number 72 using dummy_hcd
[ 1209.842070][ T5894] usb 7-1: new high-speed USB device number 37 using dummy_hcd
[ 1209.849731][    T9] usb 3-1: device descriptor read/64, error -71
[ 1209.970413][    T9] usb usb3-port1: attempt power cycle
[ 1210.057964][ T5894] usb 7-1: config 0 interface 0 altsetting 253 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1210.078576][T20580] input: syz0 as /devices/virtual/input/input56
[ 1210.087872][ T5894] usb 7-1: config 0 interface 0 altsetting 253 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1210.105747][ T5894] usb 7-1: config 0 interface 0 has no altsetting 0
[ 1210.118311][ T5894] usb 7-1: New USB device found, idVendor=04b4, idProduct=bca1, bcdDevice= 0.00
[ 1210.137170][ T5894] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1210.157826][ T5894] usb 7-1: config 0 descriptor??
[ 1210.344317][    T9] usb 3-1: new high-speed USB device number 73 using dummy_hcd
[ 1210.388193][    T9] usb 3-1: device descriptor read/8, error -71
[ 1210.542874][T20584] netlink: 'syz.5.3583': attribute type 1 has an invalid length.
[ 1210.550755][T20584] netlink: 224 bytes leftover after parsing attributes in process `syz.5.3583'.
[ 1210.732362][ T5894] cypress 0003:04B4:BCA1.002F: unknown main item tag 0x0
[ 1210.748530][ T5894] cypress 0003:04B4:BCA1.002F: item fetching failed at offset 2/3
[ 1210.795802][ T5894] cypress 0003:04B4:BCA1.002F: parse failed
[ 1210.808670][ T5894] cypress 0003:04B4:BCA1.002F: probe with driver cypress failed with error -22
[ 1211.301334][ T5894] usb 7-1: USB disconnect, device number 37
[ 1211.311187][T16953] cdc_ether 8-1:1.0: probe with driver cdc_ether failed with error -71
[ 1211.319615][T18442] usb 5-1: USB disconnect, device number 65
[ 1211.333774][T16953] usb 8-1: USB disconnect, device number 8
[ 1211.370824][    T9] usb 3-1: new high-speed USB device number 74 using dummy_hcd
[ 1211.401566][    T9] usb 3-1: device descriptor read/8, error -71
[ 1211.532779][ T5818] Bluetooth: hci3: unexpected event 0x06 length: 4 > 3
[ 1211.533221][    T9] usb usb3-port1: unable to enumerate USB device
[ 1211.711550][T20598] netlink: 'syz.5.3586': attribute type 1 has an invalid length.
[ 1212.208553][T20603] binder: 20602:20603 ioctl c0306201 0 returned -14
[ 1212.979757][T20599] loop8: detected capacity change from 0 to 7
[ 1213.011105][T20599] Dev loop8: unable to read RDB block 7
[ 1213.016931][T20599]  loop8: AHDI p1 p3 p4
[ 1213.021216][T20599] loop8: partition table partially beyond EOD, truncated
[ 1213.031138][T20599] loop8: p1 start 975770946 is beyond EOD, truncated
[ 1213.038078][T20599] loop8: p3 start 6514546 is beyond EOD, truncated
[ 1213.284593][T20611] FAULT_INJECTION: forcing a failure.
[ 1213.284593][T20611] name failslab, interval 1, probability 0, space 0, times 0
[ 1213.297604][T20611] CPU: 1 UID: 0 PID: 20611 Comm: syz.5.3592 Not tainted 6.13.0-rc3-syzkaller-00258-ge84a3bf7f4aa #0
[ 1213.308354][T20611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1213.318392][T20611] Call Trace:
[ 1213.321656][T20611]  <TASK>
[ 1213.324572][T20611]  dump_stack_lvl+0x16c/0x1f0
[ 1213.329242][T20611]  should_fail_ex+0x497/0x5b0
[ 1213.333909][T20611]  ? rcu_is_watching+0x12/0xc0
[ 1213.338663][T20611]  should_failslab+0xc2/0x120
[ 1213.343329][T20611]  kmem_cache_alloc_noprof+0x6e/0x3d0
[ 1213.348689][T20611]  ? lock_acquire+0x2f/0xb0
[ 1213.353178][T20611]  ? __inet_hash_connect+0x69f/0x1900
[ 1213.358535][T20611]  ? __inet_hash_connect+0x918/0x1900
[ 1213.363898][T20611]  __inet_hash_connect+0x918/0x1900
[ 1213.369088][T20611]  ? __pfx___inet6_check_established+0x10/0x10
[ 1213.375258][T20611]  ? __pfx___inet_hash_connect+0x10/0x10
[ 1213.380893][T20611]  ? sk_setup_caps+0x19c/0x900
[ 1213.385649][T20611]  ? sk_setup_caps+0x321/0x900
[ 1213.390404][T20611]  tcp_v6_connect+0x12d0/0x20e0
[ 1213.395239][T20611]  ? stack_trace_save+0x95/0xd0
[ 1213.400085][T20611]  ? __pfx_tcp_v6_connect+0x10/0x10
[ 1213.405268][T20611]  ? kasan_save_stack+0x33/0x60
[ 1213.410103][T20611]  ? tcp_sendmsg_fastopen+0x23a/0x700
[ 1213.415465][T20611]  ? tcp_sendmsg_locked+0x2037/0x3770
[ 1213.420827][T20611]  ? tcp_sendmsg+0x2e/0x50
[ 1213.425238][T20611]  ? inet6_sendmsg+0xb9/0x140
[ 1213.429897][T20611]  ? __sys_sendto+0x374/0x4f0
[ 1213.434562][T20611]  ? __x64_sys_sendto+0xe0/0x1c0
[ 1213.439504][T20611]  ? __inet_stream_connect+0x3c7/0x1020
[ 1213.445039][T20611]  __inet_stream_connect+0x3c7/0x1020
[ 1213.450406][T20611]  ? __pfx___inet_stream_connect+0x10/0x10
[ 1213.456210][T20611]  tcp_sendmsg_fastopen+0x3d7/0x700
[ 1213.461403][T20611]  tcp_sendmsg_locked+0x2037/0x3770
[ 1213.466593][T20611]  ? hlock_class+0x4e/0x130
[ 1213.471084][T20611]  ? mark_lock+0xb5/0xc60
[ 1213.475396][T20611]  ? __pfx___lock_acquire+0x10/0x10
[ 1213.480580][T20611]  ? __pfx___schedule+0x10/0x10
[ 1213.485415][T20611]  ? __pfx_mark_lock+0x10/0x10
[ 1213.490163][T20611]  ? lock_acquire.part.0+0x11b/0x380
[ 1213.495435][T20611]  ? __pfx_tcp_sendmsg_locked+0x10/0x10
[ 1213.500972][T20611]  ? tcp_sendmsg+0x20/0x50
[ 1213.505383][T20611]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1213.510743][T20611]  ? mark_held_locks+0x9f/0xe0
[ 1213.515492][T20611]  ? __local_bh_enable_ip+0xa4/0x120
[ 1213.520772][T20611]  tcp_sendmsg+0x2e/0x50
[ 1213.525003][T20611]  ? __pfx_tcp_sendmsg+0x10/0x10
[ 1213.529931][T20611]  inet6_sendmsg+0xb9/0x140
[ 1213.534419][T20611]  __sys_sendto+0x374/0x4f0
[ 1213.538915][T20611]  ? __pfx___sys_sendto+0x10/0x10
[ 1213.543951][T20611]  ? ksys_write+0x1ba/0x250
[ 1213.548438][T20611]  ? __pfx_ksys_write+0x10/0x10
[ 1213.553275][T20611]  __x64_sys_sendto+0xe0/0x1c0
[ 1213.558027][T20611]  ? do_syscall_64+0x91/0x250
[ 1213.562693][T20611]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1213.567882][T20611]  do_syscall_64+0xcd/0x250
[ 1213.572375][T20611]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1213.578256][T20611] RIP: 0033:0x7f4535985d29
[ 1213.582658][T20611] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1213.602248][T20611] RSP: 002b:00007f453683d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[ 1213.610643][T20611] RAX: ffffffffffffffda RBX: 00007f4535b76080 RCX: 00007f4535985d29
[ 1213.618598][T20611] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[ 1213.626554][T20611] RBP: 00007f453683d090 R08: 0000000020000140 R09: 000000000000001c
[ 1213.634506][T20611] R10: fffffeffffff7ffe R11: 0000000000000246 R12: 0000000000000001
[ 1213.642463][T20611] R13: 0000000000000000 R14: 00007f4535b76080 R15: 00007ffedf3a2028
[ 1213.650429][T20611]  </TASK>
[ 1214.174525][T20614] can0: slcan on ptm1.
[ 1214.178710][T20617] macsec0: entered promiscuous mode
[ 1214.186624][T20617] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3591'.
[ 1214.218511][T20617] veth1_macvtap: left promiscuous mode
[ 1214.379559][T20617] macsec0 (unregistering): left promiscuous mode
[ 1214.386212][T20624] program syz.5.3594 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1214.481922][  T933] usb 5-1: new low-speed USB device number 66 using dummy_hcd
[ 1214.652868][  T933] usb 5-1: Invalid ep0 maxpacket: 64
[ 1214.791731][  T933] usb 5-1: new low-speed USB device number 67 using dummy_hcd
[ 1214.816628][T20627] input: syz1 as /devices/virtual/input/input57
[ 1214.995118][  T933] usb 5-1: Invalid ep0 maxpacket: 64
[ 1215.059915][  T933] usb usb5-port1: attempt power cycle
[ 1215.115011][T20631] FAULT_INJECTION: forcing a failure.
[ 1215.115011][T20631] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1215.246184][   T29] audit: type=1400 audit(1734827037.438:2561): avc:  denied  { unmount } for  pid=19241 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[ 1215.246320][T20631] CPU: 0 UID: 0 PID: 20631 Comm: syz.2.3598 Not tainted 6.13.0-rc3-syzkaller-00258-ge84a3bf7f4aa #0
[ 1215.276803][T20631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1215.286865][T20631] Call Trace:
[ 1215.290151][T20631]  <TASK>
[ 1215.293094][T20631]  dump_stack_lvl+0x16c/0x1f0
[ 1215.297788][T20631]  should_fail_ex+0x497/0x5b0
[ 1215.301450][   T29] audit: type=1400 audit(1734827037.495:2562): avc:  denied  { append } for  pid=20636 comm="syz.5.3601" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[ 1215.302466][T20631]  _copy_from_user+0x2e/0xd0
[ 1215.329854][T20631]  do_pagemap_scan+0xc4/0xcd0
[ 1215.334543][T20631]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 1215.339566][T20631]  ? __pfx_do_pagemap_scan+0x10/0x10
[ 1215.344845][T20631]  ? ioctl_has_perm.constprop.0.isra.0+0x2ea/0x460
[ 1215.351338][T20631]  ? ioctl_has_perm.constprop.0.isra.0+0x2f3/0x460
[ 1215.357830][T20631]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 1215.364679][T20631]  ? selinux_file_ioctl+0x180/0x270
[ 1215.369867][T20631]  ? selinux_file_ioctl+0xb4/0x270
[ 1215.374968][T20631]  do_pagemap_cmd+0x58/0x80
[ 1215.379459][T20631]  ? __pfx_do_pagemap_cmd+0x10/0x10
[ 1215.384656][T20631]  __x64_sys_ioctl+0x190/0x200
[ 1215.389497][T20631]  do_syscall_64+0xcd/0x250
[ 1215.393996][T20631]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1215.399879][T20631] RIP: 0033:0x7fa179585d29
[ 1215.404281][T20631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1215.423874][T20631] RSP: 002b:00007fa17a2ec038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1215.432269][T20631] RAX: ffffffffffffffda RBX: 00007fa179775fa0 RCX: 00007fa179585d29
[ 1215.440224][T20631] RDX: 0000000020000200 RSI: 00000000c0606610 RDI: 0000000000000003
[ 1215.448181][T20631] RBP: 00007fa17a2ec090 R08: 0000000000000000 R09: 0000000000000000
[ 1215.456135][T20631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1215.464090][T20631] R13: 0000000000000000 R14: 00007fa179775fa0 R15: 00007ffc8ed7df68
[ 1215.472054][T20631]  </TASK>
[ 1215.541939][T20639] netlink: 'syz.6.3597': attribute type 1 has an invalid length.
[ 1215.549715][T20639] netlink: 224 bytes leftover after parsing attributes in process `syz.6.3597'.
[ 1215.917256][T20637] FAULT_INJECTION: forcing a failure.
[ 1215.917256][T20637] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1215.932513][T20637] CPU: 1 UID: 0 PID: 20637 Comm: syz.5.3601 Not tainted 6.13.0-rc3-syzkaller-00258-ge84a3bf7f4aa #0
[ 1215.943284][T20637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1215.953340][T20637] Call Trace:
[ 1215.956619][T20637]  <TASK>
[ 1215.959547][T20637]  dump_stack_lvl+0x16c/0x1f0
[ 1215.964240][T20637]  should_fail_ex+0x497/0x5b0
[ 1215.968941][T20637]  _copy_from_user+0x2e/0xd0
[ 1215.973544][T20637]  kvm_vm_ioctl+0x173b/0x3df0
[ 1215.978229][T20637]  ? security_file_ioctl+0x9b/0x240
[ 1215.983428][T20637]  ? do_syscall_64+0xcd/0x250
[ 1215.988085][T20637]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1215.994146][T20637]  ? hlock_class+0x4e/0x130
[ 1215.998652][T20637]  ? mark_lock+0xb5/0xc60
[ 1216.002957][T20637]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[ 1216.007961][T20637]  ? __pfx_mark_lock+0x10/0x10
[ 1216.012705][T20637]  ? find_held_lock+0x2d/0x110
[ 1216.017464][T20637]  ? tomoyo_path_number_perm+0x298/0x590
[ 1216.023072][T20637]  ? __pfx_lock_release+0x10/0x10
[ 1216.028072][T20637]  ? tomoyo_path_number_perm+0x46d/0x590
[ 1216.033692][T20637]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1216.039578][T20637]  ? do_vfs_ioctl+0x513/0x1990
[ 1216.044357][T20637]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 1216.049390][T20637]  ? ioctl_has_perm.constprop.0.isra.0+0x2f3/0x460
[ 1216.055885][T20637]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 1216.062724][T20637]  ? __pfx_lock_release+0x10/0x10
[ 1216.067740][T20637]  ? selinux_file_ioctl+0x180/0x270
[ 1216.072925][T20637]  ? selinux_file_ioctl+0xb4/0x270
[ 1216.078024][T20637]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[ 1216.083036][T20637]  __x64_sys_ioctl+0x190/0x200
[ 1216.087793][T20637]  do_syscall_64+0xcd/0x250
[ 1216.092291][T20637]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1216.098175][T20637] RIP: 0033:0x7f4535985d29
[ 1216.102575][T20637] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1216.122176][T20637] RSP: 002b:00007f453685e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1216.130580][T20637] RAX: ffffffffffffffda RBX: 00007f4535b75fa0 RCX: 00007f4535985d29
[ 1216.138549][T20637] RDX: 0000000020000080 RSI: 000000004040ae79 RDI: 0000000000000004
[ 1216.146518][T20637] RBP: 00007f453685e090 R08: 0000000000000000 R09: 0000000000000000
[ 1216.154483][T20637] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1216.162449][T20637] R13: 0000000000000000 R14: 00007f4535b75fa0 R15: 00007ffedf3a2028
[ 1216.170429][T20637]  </TASK>
[ 1216.247578][  T933] usb 5-1: new low-speed USB device number 68 using dummy_hcd
[ 1216.305065][  T933] usb 5-1: Invalid ep0 maxpacket: 64
[ 1216.374458][ T5818] Bluetooth: hci5: command 0x0406 tx timeout
[ 1216.386302][T16775] Bluetooth: hci5: Opcode 0x0c1a failed: -110
[ 1216.392814][T16775] Bluetooth: hci5: Error when powering off device on rfkill (-110)
[ 1216.511069][T20647] netlink: 'syz.2.3602': attribute type 1 has an invalid length.
[ 1216.576377][T20651] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3605'.
[ 1216.609113][  T933] usb 5-1: new low-speed USB device number 69 using dummy_hcd
[ 1216.632652][  T933] usb 5-1: Invalid ep0 maxpacket: 64
[ 1216.639647][  T933] usb usb5-port1: unable to enumerate USB device
[ 1216.997643][T20656] loop8: detected capacity change from 0 to 7
[ 1217.036939][T20656] Dev loop8: unable to read RDB block 7
[ 1217.042731][T20656]  loop8: AHDI p1 p3 p4
[ 1217.046868][T20656] loop8: partition table partially beyond EOD, truncated
[ 1217.054083][T20656] loop8: p1 start 975770946 is beyond EOD, truncated
[ 1217.061110][T20656] loop8: p3 start 6514546 is beyond EOD, truncated
[ 1217.176702][T20615] can0 (unregistered): slcan off ptm1.
[ 1217.222689][   T29] audit: type=1400 audit(1734827039.291:2563): avc:  denied  { setcurrent } for  pid=20659 comm="syz.7.3609" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 1217.252918][   T29] audit: type=1401 audit(1734827039.319:2564): op=security_bounded_transition seresult=denied oldcontext=root:sysadm_r:sysadm_t newcontext=system_u:object_r:hugetlbfs_t
[ 1217.362298][T20669] FAULT_INJECTION: forcing a failure.
[ 1217.362298][T20669] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1217.382918][T20669] CPU: 0 UID: 0 PID: 20669 Comm: syz.4.3612 Not tainted 6.13.0-rc3-syzkaller-00258-ge84a3bf7f4aa #0
[ 1217.393702][T20669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1217.403764][T20669] Call Trace:
[ 1217.407048][T20669]  <TASK>
[ 1217.409985][T20669]  dump_stack_lvl+0x16c/0x1f0
[ 1217.414677][T20669]  should_fail_ex+0x497/0x5b0
[ 1217.419375][T20669]  _copy_to_user+0x32/0xd0
[ 1217.423797][T20669]  simple_read_from_buffer+0xd0/0x160
[ 1217.429183][T20669]  proc_fail_nth_read+0x198/0x270
[ 1217.434216][T20669]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1217.439775][T20669]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1217.445328][T20669]  vfs_read+0x1df/0xbe0
[ 1217.449489][T20669]  ? __fget_files+0x1fc/0x3a0
[ 1217.454173][T20669]  ? __pfx___mutex_lock+0x10/0x10
[ 1217.458626][   T29] audit: type=1400 audit(1734827039.422:2565): avc:  denied  { ioctl } for  pid=20668 comm="syz.4.3612" path="/dev/vhost-net" dev="devtmpfs" ino=1274 ioctlcmd=0xaf00 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[ 1217.459192][T20669]  ? __pfx_vfs_read+0x10/0x10
[ 1217.489274][T20669]  ? __fget_files+0x206/0x3a0
[ 1217.493933][T20669]  ksys_read+0x12b/0x250
[ 1217.498155][T20669]  ? __pfx_ksys_read+0x10/0x10
[ 1217.502906][T20669]  do_syscall_64+0xcd/0x250
[ 1217.507391][T20669]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1217.513262][T20669] RIP: 0033:0x7fc7f758473c
[ 1217.517660][T20669] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1217.537244][T20669] RSP: 002b:00007fc7f8364030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1217.545629][T20669] RAX: ffffffffffffffda RBX: 00007fc7f7775fa0 RCX: 00007fc7f758473c
[ 1217.553575][T20669] RDX: 000000000000000f RSI: 00007fc7f83640a0 RDI: 0000000000000004
[ 1217.561519][T20669] RBP: 00007fc7f8364090 R08: 0000000000000000 R09: 0000000000000000
[ 1217.569463][T20669] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1217.577407][T20669] R13: 0000000000000000 R14: 00007fc7f7775fa0 R15: 00007ffedea08a78
[ 1217.585370][T20669]  </TASK>
[ 1218.855974][T16775] Bluetooth: hci1: Opcode 0x0c1a failed: -110
[ 1218.976572][ T5818] Bluetooth: hci1: command 0x0406 tx timeout
[ 1219.062390][T16775] Bluetooth: hci1: Error when powering off device on rfkill (-110)
[ 1219.321075][T20693] input: syz0 as /devices/virtual/input/input58
[ 1219.581148][  T933] usb 7-1: new high-speed USB device number 38 using dummy_hcd
[ 1219.828415][  T933] usb 7-1: Using ep0 maxpacket: 16
[ 1219.847723][  T933] usb 7-1: config 0 has an invalid interface number: 8 but max is 0
[ 1219.860327][T20700] can0: slcan on ptm1.
[ 1219.899211][  T933] usb 7-1: config 0 has no interface number 0
[ 1219.914736][  T933] usb 7-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 208, changing to 11
[ 1219.951857][  T933] usb 7-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid maxpacket 25296, setting to 1024
[ 1219.997176][  T933] usb 7-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[ 1220.030403][  T933] usb 7-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[ 1220.053403][  T933] usb 7-1: Product: syz
[ 1220.070846][  T933] usb 7-1: SerialNumber: syz
[ 1220.109245][  T933] usb 7-1: config 0 descriptor??
[ 1220.126048][  T933] cm109 7-1:0.8: invalid payload size 1024, expected 4
[ 1220.140543][  T933] input: CM109 USB driver as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.8/input/input59
[ 1220.233145][T16319] usb 3-1: new low-speed USB device number 75 using dummy_hcd
[ 1220.363196][    C1] cm109 7-1:0.8: cm109_urb_ctl_callback: urb status -71
[ 1220.374114][    C1] cm109 7-1:0.8: cm109_urb_ctl_callback: urb status -71
[ 1220.381168][   T25] usb 7-1: USB disconnect, device number 38
[ 1220.387191][    C1] cm109 7-1:0.8: cm109_urb_ctl_callback: urb status -71
[ 1220.387215][    C1] cm109 7-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[ 1220.415147][T16319] usb 3-1: Invalid ep0 maxpacket: 64
[ 1220.420939][   T25] cm109 7-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[ 1220.564574][T16319] usb 3-1: new low-speed USB device number 76 using dummy_hcd
[ 1220.746400][T16319] usb 3-1: Invalid ep0 maxpacket: 64
[ 1220.888544][T16319] usb usb3-port1: attempt power cycle
[ 1221.022032][T20711] netlink: 'syz.7.3623': attribute type 1 has an invalid length.
[ 1221.505616][ T5818] Bluetooth: hci2: command 0x0406 tx timeout
[ 1221.512612][T16775] Bluetooth: hci2: Opcode 0x0c1a failed: -110
[ 1221.519333][T16775] Bluetooth: hci2: Error when powering off device on rfkill (-110)
[ 1221.757998][T16319] usb 3-1: new low-speed USB device number 77 using dummy_hcd
[ 1221.913574][T16319] usb 3-1: Invalid ep0 maxpacket: 64
[ 1221.955494][T20713] program syz.6.3624 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1222.072251][T16319] usb 3-1: new low-speed USB device number 78 using dummy_hcd
[ 1222.144532][T20722] loop8: detected capacity change from 0 to 7
[ 1222.153751][T20722] Dev loop8: unable to read RDB block 7
[ 1222.159404][T20722]  loop8: AHDI p1 p3 p4
[ 1222.163576][T20722] loop8: partition table partially beyond EOD, truncated
[ 1222.170725][T20722] loop8: p1 start 975770946 is beyond EOD, truncated
[ 1222.177386][T20722] loop8: p3 start 6514546 is beyond EOD, truncated
[ 1222.242782][T16319] usb 3-1: Invalid ep0 maxpacket: 64
[ 1222.283568][T16319] usb usb3-port1: unable to enumerate USB device
[ 1222.542435][T20701] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[ 1222.682069][T20702] can0 (unregistered): slcan off ptm1.
[ 1222.720220][T20701] usb 8-1: config 0 interface 0 altsetting 8 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1222.745756][   T29] audit: type=1326 audit(1734827044.435:2566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20736 comm="syz.5.3631" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4535985d29 code=0x0
[ 1222.768603][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1222.785023][T20701] usb 8-1: config 0 interface 0 has no altsetting 0
[ 1222.795201][T20701] usb 8-1: New USB device found, idVendor=046a, idProduct=0027, bcdDevice= 0.00
[ 1222.980674][T20701] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1223.510982][   T29] audit: type=1400 audit(1734827044.735:2567): avc:  denied  { execute_no_trans } for  pid=20738 comm="syz.2.3632" path=2F6D656D66643A202864656C6574656429 dev="tmpfs" ino=1778 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[ 1223.585759][T20701] usb 8-1: config 0 descriptor??
[ 1223.794780][T20750] vivid-007: disconnect
[ 1223.983340][T20742] vivid-007: reconnect
[ 1224.128195][T20701] cherry 0003:046A:0027.0030: unknown main item tag 0x0
[ 1224.146024][T20701] cherry 0003:046A:0027.0030: unknown main item tag 0x0
[ 1224.156613][ T5818] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1224.162719][T16775] Bluetooth: hci3: Opcode 0x0c1a failed: -110
[ 1224.193919][T20701] cherry 0003:046A:0027.0030: hidraw0: USB HID v0.00 Device [HID 046a:0027] on usb-dummy_hcd.7-1/input0
[ 1224.205373][T16775] Bluetooth: hci3: Error when powering off device on rfkill (-110)
[ 1224.242782][   T29] audit: type=1400 audit(1734827045.866:2568): avc:  denied  { getopt } for  pid=20763 comm="syz.6.3642" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[ 1224.399564][T20766] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[ 1224.472820][    T9] usb 8-1: USB disconnect, device number 9
[ 1224.663474][T20701] usb 5-1: new high-speed USB device number 70 using dummy_hcd
[ 1224.798476][ T5863] usb 3-1: new high-speed USB device number 79 using dummy_hcd
[ 1224.832140][T20701] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 168, changing to 11
[ 1224.844409][T20701] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 8
[ 1224.854629][T20701] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 5734, setting to 1024
[ 1224.865658][T20701] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 1024
[ 1224.877363][T20701] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1224.886760][T20701] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1224.894920][T20701] usb 5-1: Product: syz
[ 1224.899077][T20701] usb 5-1: Manufacturer: syz
[ 1224.903678][T20701] usb 5-1: SerialNumber: syz
[ 1224.973162][ T5863] usb 3-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1224.981831][ T5863] usb 3-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[ 1224.992236][ T5863] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1225.001290][ T5863] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[ 1225.012847][ T5863] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[ 1225.032823][ T5863] usb 3-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1225.043100][ T5863] usb 3-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1225.051786][ T5863] usb 3-1: Product: syz
[ 1225.056693][ T5863] usb 3-1: Manufacturer: syz
[ 1225.066497][ T5863] cdc_wdm 3-1:1.0: skipping garbage
[ 1225.071824][ T5863] cdc_wdm 3-1:1.0: skipping garbage
[ 1225.081741][ T5863] cdc_wdm 3-1:1.0: cdc-wdm0: USB WDM device
[ 1225.086770][    T9] usb 6-1: new high-speed USB device number 59 using dummy_hcd
[ 1225.088113][ T5863] cdc_wdm 3-1:1.0: Unknown control protocol
[ 1225.179646][T20701] cdc_ncm 5-1:1.0: bind() failure
[ 1225.186288][T20701] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found
[ 1225.193060][T20701] cdc_ncm 5-1:1.1: bind() failure
[ 1225.212103][T20701] usb 5-1: USB disconnect, device number 70
[ 1225.258590][    T9] usb 6-1: Using ep0 maxpacket: 16
[ 1225.272004][    T9] usb 6-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[ 1225.286906][    T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1225.295231][    T9] usb 6-1: Product: syz
[ 1225.309909][    T9] usb 6-1: Manufacturer: syz
[ 1225.320078][   T29] audit: type=1400 audit(1734827046.867:2569): avc:  denied  { bind } for  pid=20793 comm="syz.7.3656" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[ 1225.320641][    T9] usb 6-1: SerialNumber: syz
[ 1225.375225][    T9] r8152-cfgselector 6-1: Unknown version 0x0000
[ 1225.381506][    T9] r8152-cfgselector 6-1: config 0 descriptor??
[ 1225.665387][    C1] wdm_int_callback: 130 callbacks suppressed
[ 1225.665402][    C1] cdc_wdm 3-1:1.0: nonzero urb status received: -71
[ 1225.677943][    C1] wdm_int_callback: 130 callbacks suppressed
[ 1225.677961][    C1] cdc_wdm 3-1:1.0: wdm_int_callback - 0 bytes
[ 1225.690470][    C1] cdc_wdm 3-1:1.0: nonzero urb status received: -71
[ 1225.697068][    C1] cdc_wdm 3-1:1.0: wdm_int_callback - 0 bytes
[ 1225.703507][    C1] cdc_wdm 3-1:1.0: nonzero urb status received: -71
[ 1225.710091][    C1] cdc_wdm 3-1:1.0: wdm_int_callback - 0 bytes
[ 1225.716396][    C1] cdc_wdm 3-1:1.0: nonzero urb status received: -71
[ 1225.722989][    C1] cdc_wdm 3-1:1.0: wdm_int_callback - 0 bytes
[ 1225.729307][    C1] cdc_wdm 3-1:1.0: nonzero urb status received: -71
[ 1225.735911][    C1] cdc_wdm 3-1:1.0: wdm_int_callback - 0 bytes
[ 1225.742420][    C1] cdc_wdm 3-1:1.0: nonzero urb status received: -71
[ 1225.749019][    C1] cdc_wdm 3-1:1.0: wdm_int_callback - 0 bytes
[ 1225.755408][    C1] cdc_wdm 3-1:1.0: nonzero urb status received: -71
[ 1225.762005][    C1] cdc_wdm 3-1:1.0: wdm_int_callback - 0 bytes
[ 1225.768255][    C1] cdc_wdm 3-1:1.0: nonzero urb status received: -71
[ 1225.774858][    C1] cdc_wdm 3-1:1.0: wdm_int_callback - 0 bytes
[ 1225.781085][    C1] cdc_wdm 3-1:1.0: nonzero urb status received: -71
[ 1225.787674][    C1] cdc_wdm 3-1:1.0: wdm_int_callback - 0 bytes
[ 1225.794766][    C1] cdc_wdm 3-1:1.0: nonzero urb status received: -71
[ 1225.801359][    C1] cdc_wdm 3-1:1.0: wdm_int_callback - 0 bytes
[ 1225.839108][ T5863] usb 3-1: USB disconnect, device number 79
[ 1225.845051][    C1] cdc_wdm 3-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[ 1225.866341][T16953] r8152-cfgselector 6-1: USB disconnect, device number 59
[ 1225.921323][T20814] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3665'.
[ 1226.347081][   T29] audit: type=1400 audit(1734827047.821:2570): avc:  denied  { write } for  pid=20832 comm="syz.7.3674" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[ 1226.366831][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1226.821870][T20852] netlink: 'syz.5.3682': attribute type 10 has an invalid length.
[ 1226.840620][T20852] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1226.873839][T20852] batadv0: entered allmulticast mode
[ 1226.882982][   T29] audit: type=1400 audit(1734827048.317:2571): avc:  denied  { connect } for  pid=20853 comm="syz.4.3684" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[ 1226.902867][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1227.278210][T20701] usb 5-1: new high-speed USB device number 71 using dummy_hcd
[ 1227.449453][T20701] usb 5-1: Using ep0 maxpacket: 8
[ 1227.462821][T20701] usb 5-1: New USB device found, idVendor=0ccd, idProduct=0099, bcdDevice=95.0d
[ 1227.473561][T20701] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1227.489760][T20701] usb 5-1: Product: syz
[ 1227.494351][T20701] usb 5-1: Manufacturer: syz
[ 1227.499075][T20701] usb 5-1: SerialNumber: syz
[ 1227.509478][T20701] usb 5-1: config 0 descriptor??
[ 1227.752949][T20701] usb 5-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[ 1227.768988][T20701] dvb_usb_af9015 5-1:0.0: probe with driver dvb_usb_af9015 failed with error -22
[ 1227.772646][   T29] audit: type=1400 audit(1734827049.150:2572): avc:  denied  { create } for  pid=20886 comm="syz.6.3696" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1
[ 1227.791558][T20701] usb 5-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[ 1227.825090][T20701] dvb_usb_af9035 5-1:0.0: probe with driver dvb_usb_af9035 failed with error -22
[ 1227.841728][   T29] audit: type=1400 audit(1734827049.225:2573): avc:  denied  { sys_admin } for  pid=20886 comm="syz.6.3696" capability=21  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1
[ 1227.863158][T20701] usb 5-1: USB disconnect, device number 71
[ 1228.189389][T20902] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 1228.196682][T20902] IPv6: NLM_F_CREATE should be set when creating new route
[ 1228.203936][T20902] IPv6: NLM_F_CREATE should be set when creating new route
[ 1228.285639][T16775] usb 7-1: new high-speed USB device number 39 using dummy_hcd
[ 1228.464971][T16775] usb 7-1: Using ep0 maxpacket: 16
[ 1228.511436][T20911] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=20911 comm=syz.5.3705
[ 1228.531380][T16775] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[ 1228.544648][   T29] audit: type=1400 audit(1734827049.870:2574): avc:  denied  { ioctl } for  pid=20909 comm="syz.5.3705" path="/dev/rtc0" dev="devtmpfs" ino=921 ioctlcmd=0x7005 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[ 1228.585957][T16775] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 1228.594777][T20908] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[ 1228.658393][T16775] usb 7-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[ 1228.714463][T16775] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1228.763741][T16775] usb 7-1: Product: syz
[ 1228.800343][T16775] usb 7-1: Manufacturer: syz
[ 1228.833539][T16775] usb 7-1: SerialNumber: syz
[ 1228.897018][T16775] usb 7-1: config 0 descriptor??
[ 1228.914252][T16775] em28xx 7-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[ 1228.923478][T16775] em28xx 7-1:0.0: Audio interface 0 found (Vendor Class)
[ 1229.148276][T20927] batadv_slave_1: entered promiscuous mode
[ 1229.167614][T20927] batadv_slave_1: left promiscuous mode
[ 1229.332283][T20701] usb 3-1: new high-speed USB device number 80 using dummy_hcd
[ 1229.502445][T20701] usb 3-1: Using ep0 maxpacket: 32
[ 1229.525663][T20701] usb 3-1: New USB device found, idVendor=05a9, idProduct=1550, bcdDevice=e4.bb
[ 1229.535268][T20701] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1229.543461][T20701] usb 3-1: Product: syz
[ 1229.548051][T20701] usb 3-1: Manufacturer: syz
[ 1229.552660][T20701] usb 3-1: SerialNumber: syz
[ 1229.560584][T20701] usb 3-1: config 0 descriptor??
[ 1229.566026][T16775] em28xx 7-1:0.0: chip ID is em2750
[ 1229.574037][T20701] gspca_main: ov534_9-2.14.0 probing 05a9:1550
[ 1229.722634][   T29] audit: type=1400 audit(1734827050.983:2575): avc:  denied  { unmount } for  pid=19241 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[ 1229.780458][T16775] em28xx 7-1:0.0: Config register raw data: 0xfffffffb
[ 1229.791416][T16775] em28xx 7-1:0.0: AC97 chip type couldn't be determined
[ 1229.798446][T16775] em28xx 7-1:0.0: No AC97 audio processor
[ 1229.829993][T16775] usb 7-1: USB disconnect, device number 39
[ 1229.837015][T16775] em28xx 7-1:0.0: Disconnecting em28xx
[ 1229.861343][T16775] em28xx 7-1:0.0: Freeing device
[ 1230.357918][T16953] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[ 1230.538841][T16953] usb 8-1: Using ep0 maxpacket: 16
[ 1230.554384][T16953] usb 8-1: config 0 has an invalid interface number: 8 but max is 0
[ 1230.566862][T16953] usb 8-1: config 0 has no interface number 0
[ 1230.599077][T16953] usb 8-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[ 1230.620643][T16953] usb 8-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[ 1230.637250][T16953] usb 8-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[ 1230.645418][T16953] usb 8-1: Product: syz
[ 1230.660594][T16953] usb 8-1: SerialNumber: syz
[ 1230.677468][T16953] usb 8-1: config 0 descriptor??
[ 1230.696333][T16953] cm109 8-1:0.8: invalid payload size 2, expected 4
[ 1230.708495][T16953] input: CM109 USB driver as /devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.8/input/input60
[ 1230.938886][T20982] can0: slcan on ptm0.
[ 1231.242045][T20701] gspca_ov534_9: reg_r err -71
[ 1231.363244][    C0] cm109 8-1:0.8: cm109_urb_irq_callback: urb status -71
[ 1231.370229][    C0] ------------[ cut here ]------------
[ 1231.376159][    C0] URB ffff88814bec6d00 submitted while active
[ 1231.382825][    C0] WARNING: CPU: 0 PID: 20962 at drivers/usb/core/urb.c:379 usb_submit_urb+0x14da/0x1730
[ 1231.392586][    C0] Modules linked in:
[ 1231.396493][    C0] CPU: 0 UID: 0 PID: 20962 Comm: syz.7.3728 Not tainted 6.13.0-rc3-syzkaller-00258-ge84a3bf7f4aa #0
[ 1231.407268][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1231.410964][T20986] can1: slcan on ptm2.
[ 1231.417316][    C0] RIP: 0010:usb_submit_urb+0x14da/0x1730
[ 1231.417354][    C0] Code: fd eb cb bb fe ff ff ff e9 c1 f3 ff ff e8 3e f2 ae fa c6 05 57 c5 5c 09 01 90 48 c7 c7 a0 1d 2e 8c 48 89 de e8 b7 2b 6f fa 90 <0f> 0b 90 90 e9 b6 fe ff ff bb f8 ff ff ff e9 91 f3 ff ff 48 89 ef
[ 1231.417375][    C0] RSP: 0018:ffffc90000007a88 EFLAGS: 00010086
[ 1231.417395][    C0] RAX: 0000000000000000 RBX: ffff88814bec6d00 RCX: ffffc900021c1000
[ 1231.417410][    C0] RDX: 0000000000040000 RSI: ffffffff815a5086 RDI: 0000000000000001
[ 1231.417424][    C0] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
[ 1231.417435][    C0] R10: 0000000000000000 R11: 0000000000043500 R12: 0000000000000087
[ 1231.417449][    C0] R13: ffff88802279b858 R14: 000000000000000f R15: 0000000000000000
[ 1231.417464][    C0] FS:  0000555584dc4500(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[ 1231.417487][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1231.507952][    C0] CR2: 0000000000000000 CR3: 0000000069ece000 CR4: 00000000003526f0
[ 1231.515921][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1231.523879][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1231.531834][    C0] Call Trace:
[ 1231.535097][    C0]  <IRQ>
[ 1231.537931][    C0]  ? __warn+0xea/0x3c0
[ 1231.541995][    C0]  ? usb_submit_urb+0x14da/0x1730
[ 1231.547013][    C0]  ? report_bug+0x3c0/0x580
[ 1231.551512][    C0]  ? handle_bug+0x54/0xa0
[ 1231.555835][    C0]  ? exc_invalid_op+0x17/0x50
[ 1231.560504][    C0]  ? asm_exc_invalid_op+0x1a/0x20
[ 1231.565524][    C0]  ? __warn_printk+0x1a6/0x350
[ 1231.570284][    C0]  ? usb_submit_urb+0x14da/0x1730
[ 1231.575302][    C0]  ? usb_submit_urb+0x14d9/0x1730
[ 1231.580321][    C0]  ? lock_acquire+0x2f/0xb0
[ 1231.584815][    C0]  ? cm109_urb_irq_callback+0xed/0xb60
[ 1231.590273][    C0]  cm109_urb_irq_callback+0x2e7/0xb60
[ 1231.595642][    C0]  __usb_hcd_giveback_urb+0x389/0x6e0
[ 1231.601009][    C0]  usb_hcd_giveback_urb+0x396/0x450
[ 1231.606197][    C0]  dummy_timer+0x17f7/0x3960
[ 1231.610784][    C0]  ? mark_lock+0xb5/0xc60
[ 1231.615100][    C0]  ? __pfx_lock_release+0x10/0x10
[ 1231.620116][    C0]  ? lock_acquire+0x2f/0xb0
[ 1231.624609][    C0]  ? debug_object_deactivate+0x13b/0x370
[ 1231.630234][    C0]  ? find_held_lock+0x2d/0x110
[ 1231.634997][    C0]  ? __hrtimer_run_queues+0x53d/0xae0
[ 1231.640365][    C0]  ? __pfx_lock_release+0x10/0x10
[ 1231.645378][    C0]  ? __pfx_dummy_timer+0x10/0x10
[ 1231.650305][    C0]  ? mark_held_locks+0x9f/0xe0
[ 1231.655057][    C0]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1231.660855][    C0]  ? __pfx_dummy_timer+0x10/0x10
[ 1231.665782][    C0]  __hrtimer_run_queues+0x20a/0xae0
[ 1231.670983][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[ 1231.676694][    C0]  ? read_tsc+0x9/0x20
[ 1231.680763][    C0]  hrtimer_run_softirq+0x17d/0x350
[ 1231.685870][    C0]  handle_softirqs+0x213/0x8f0
[ 1231.690629][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[ 1231.695908][    C0]  __irq_exit_rcu+0x109/0x170
[ 1231.700575][    C0]  irq_exit_rcu+0x9/0x30
[ 1231.704810][    C0]  sysvec_call_function_single+0xa4/0xc0
[ 1231.710431][    C0]  </IRQ>
[ 1231.713348][    C0]  <TASK>
[ 1231.716268][    C0]  asm_sysvec_call_function_single+0x1a/0x20
[ 1231.722242][    C0] RIP: 0010:_raw_spin_unlock_irqrestore+0x31/0x80
[ 1231.728647][    C0] Code: f5 53 48 8b 74 24 10 48 89 fb 48 83 c7 18 e8 46 82 4a f6 48 89 df e8 8e 01 4b f6 f7 c5 00 02 00 00 75 23 9c 58 f6 c4 02 75 37 <bf> 01 00 00 00 e8 85 e6 3b f6 65 8b 05 a6 a2 d7 74 85 c0 74 16 5b
[ 1231.748244][    C0] RSP: 0018:ffffc9000589fb30 EFLAGS: 00000246
[ 1231.754300][    C0] RAX: 0000000000000002 RBX: ffffffff8f4d2b60 RCX: 1ffffffff2dd8f82
[ 1231.762258][    C0] RDX: 0000000000000000 RSI: ffffffff8b6cd860 RDI: ffffffff8bd1eb60
[ 1231.770217][    C0] RBP: 0000000000000293 R08: 0000000000000001 R09: fffffbfff2dca3bd
[ 1231.778187][    C0] R10: ffffffff96e51def R11: 0000000000000007 R12: 1ffff92000b13f6e
[ 1231.786144][    C0] R13: ffff888029f0523c R14: ffff88802988c100 R15: ffff88802988c118
[ 1231.794115][    C0]  usb_hcd_poll_rh_status+0x572/0x7f0
[ 1231.799479][    C0]  ? __pfx_usb_hcd_poll_rh_status+0x10/0x10
[ 1231.805367][    C0]  dummy_pullup+0x212/0x270
[ 1231.809860][    C0]  ? __pfx_dummy_pullup+0x10/0x10
[ 1231.814881][    C0]  usb_gadget_disconnect_locked+0x13f/0x4f0
[ 1231.820769][    C0]  gadget_unbind_driver+0xd7/0x4e0
[ 1231.825872][    C0]  ? kernfs_remove_by_name_ns+0xe8/0x130
[ 1231.831494][    C0]  ? __pfx_gadget_unbind_driver+0x10/0x10
[ 1231.837204][    C0]  device_remove+0xc8/0x170
[ 1231.841697][    C0]  device_release_driver_internal+0x44a/0x610
[ 1231.847760][    C0]  driver_detach+0xd8/0x1b0
[ 1231.852253][    C0]  ? __pfx_raw_release+0x10/0x10
[ 1231.857184][    C0]  bus_remove_driver+0x13b/0x2c0
[ 1231.862112][    C0]  driver_unregister+0x76/0xb0
[ 1231.866869][    C0]  usb_gadget_unregister_driver+0x49/0x70
[ 1231.872577][    C0]  raw_release+0x1ae/0x2b0
[ 1231.876988][    C0]  __fput+0x3f8/0xb60
[ 1231.880968][    C0]  task_work_run+0x14e/0x250
[ 1231.885571][    C0]  ? __pfx_task_work_run+0x10/0x10
[ 1231.890685][    C0]  ? __pfx___do_sys_close_range+0x10/0x10
[ 1231.896406][    C0]  syscall_exit_to_user_mode+0x27b/0x2a0
[ 1231.902049][    C0]  do_syscall_64+0xda/0x250
[ 1231.906552][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1231.912442][    C0] RIP: 0033:0x7f8b26b85d29
[ 1231.916846][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1231.936447][    C0] RSP: 002b:00007ffcbfd76ad8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 1231.944855][    C0] RAX: 0000000000000000 RBX: 000000000011b52e RCX: 00007f8b26b85d29
[ 1231.952815][    C0] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[ 1231.960775][    C0] RBP: 00007f8b26d77ba0 R08: 0000000000000001 R09: 00007ffcbfd76dcf
[ 1231.968738][    C0] R10: 00007f8b26a00000 R11: 0000000000000246 R12: 000000000011b9f7
[ 1231.976697][    C0] R13: 00007f8b26d75fa0 R14: 0000000000000032 R15: ffffffffffffffff
[ 1231.984672][    C0]  </TASK>
[ 1231.987684][    C0] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1231.994952][    C0] CPU: 0 UID: 0 PID: 20962 Comm: syz.7.3728 Not tainted 6.13.0-rc3-syzkaller-00258-ge84a3bf7f4aa #0
[ 1232.005694][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1232.015732][    C0] Call Trace:
[ 1232.018996][    C0]  <IRQ>
[ 1232.021831][    C0]  dump_stack_lvl+0x3d/0x1f0
[ 1232.026420][    C0]  panic+0x71d/0x800
[ 1232.030311][    C0]  ? __pfx_panic+0x10/0x10
[ 1232.034722][    C0]  ? show_trace_log_lvl+0x29d/0x3d0
[ 1232.039917][    C0]  ? usb_submit_urb+0x14da/0x1730
[ 1232.044936][    C0]  check_panic_on_warn+0xab/0xb0
[ 1232.049860][    C0]  __warn+0xf6/0x3c0
[ 1232.053738][    C0]  ? usb_submit_urb+0x14da/0x1730
[ 1232.058754][    C0]  report_bug+0x3c0/0x580
[ 1232.063074][    C0]  handle_bug+0x54/0xa0
[ 1232.067222][    C0]  exc_invalid_op+0x17/0x50
[ 1232.071877][    C0]  asm_exc_invalid_op+0x1a/0x20
[ 1232.076751][    C0] RIP: 0010:usb_submit_urb+0x14da/0x1730
[ 1232.082389][    C0] Code: fd eb cb bb fe ff ff ff e9 c1 f3 ff ff e8 3e f2 ae fa c6 05 57 c5 5c 09 01 90 48 c7 c7 a0 1d 2e 8c 48 89 de e8 b7 2b 6f fa 90 <0f> 0b 90 90 e9 b6 fe ff ff bb f8 ff ff ff e9 91 f3 ff ff 48 89 ef
[ 1232.101993][    C0] RSP: 0018:ffffc90000007a88 EFLAGS: 00010086
[ 1232.108051][    C0] RAX: 0000000000000000 RBX: ffff88814bec6d00 RCX: ffffc900021c1000
[ 1232.116012][    C0] RDX: 0000000000040000 RSI: ffffffff815a5086 RDI: 0000000000000001
[ 1232.123983][    C0] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
[ 1232.131943][    C0] R10: 0000000000000000 R11: 0000000000043500 R12: 0000000000000087
[ 1232.139923][    C0] R13: ffff88802279b858 R14: 000000000000000f R15: 0000000000000000
[ 1232.147893][    C0]  ? __warn_printk+0x1a6/0x350
[ 1232.152667][    C0]  ? usb_submit_urb+0x14d9/0x1730
[ 1232.157686][    C0]  ? lock_acquire+0x2f/0xb0
[ 1232.162176][    C0]  ? cm109_urb_irq_callback+0xed/0xb60
[ 1232.167635][    C0]  cm109_urb_irq_callback+0x2e7/0xb60
[ 1232.173008][    C0]  __usb_hcd_giveback_urb+0x389/0x6e0
[ 1232.178375][    C0]  usb_hcd_giveback_urb+0x396/0x450
[ 1232.183569][    C0]  dummy_timer+0x17f7/0x3960
[ 1232.188156][    C0]  ? mark_lock+0xb5/0xc60
[ 1232.192475][    C0]  ? __pfx_lock_release+0x10/0x10
[ 1232.197492][    C0]  ? lock_acquire+0x2f/0xb0
[ 1232.201984][    C0]  ? debug_object_deactivate+0x13b/0x370
[ 1232.207607][    C0]  ? find_held_lock+0x2d/0x110
[ 1232.212369][    C0]  ? __hrtimer_run_queues+0x53d/0xae0
[ 1232.217738][    C0]  ? __pfx_lock_release+0x10/0x10
[ 1232.222756][    C0]  ? __pfx_dummy_timer+0x10/0x10
[ 1232.227682][    C0]  ? mark_held_locks+0x9f/0xe0
[ 1232.232433][    C0]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1232.238232][    C0]  ? __pfx_dummy_timer+0x10/0x10
[ 1232.243159][    C0]  __hrtimer_run_queues+0x20a/0xae0
[ 1232.248355][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[ 1232.254066][    C0]  ? read_tsc+0x9/0x20
[ 1232.258133][    C0]  hrtimer_run_softirq+0x17d/0x350
[ 1232.263239][    C0]  handle_softirqs+0x213/0x8f0
[ 1232.268015][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[ 1232.273305][    C0]  __irq_exit_rcu+0x109/0x170
[ 1232.277974][    C0]  irq_exit_rcu+0x9/0x30
[ 1232.282213][    C0]  sysvec_call_function_single+0xa4/0xc0
[ 1232.287850][    C0]  </IRQ>
[ 1232.290769][    C0]  <TASK>
[ 1232.293688][    C0]  asm_sysvec_call_function_single+0x1a/0x20
[ 1232.299666][    C0] RIP: 0010:_raw_spin_unlock_irqrestore+0x31/0x80
[ 1232.306075][    C0] Code: f5 53 48 8b 74 24 10 48 89 fb 48 83 c7 18 e8 46 82 4a f6 48 89 df e8 8e 01 4b f6 f7 c5 00 02 00 00 75 23 9c 58 f6 c4 02 75 37 <bf> 01 00 00 00 e8 85 e6 3b f6 65 8b 05 a6 a2 d7 74 85 c0 74 16 5b
[ 1232.325685][    C0] RSP: 0018:ffffc9000589fb30 EFLAGS: 00000246
[ 1232.331744][    C0] RAX: 0000000000000002 RBX: ffffffff8f4d2b60 RCX: 1ffffffff2dd8f82
[ 1232.339700][    C0] RDX: 0000000000000000 RSI: ffffffff8b6cd860 RDI: ffffffff8bd1eb60
[ 1232.347673][    C0] RBP: 0000000000000293 R08: 0000000000000001 R09: fffffbfff2dca3bd
[ 1232.355634][    C0] R10: ffffffff96e51def R11: 0000000000000007 R12: 1ffff92000b13f6e
[ 1232.363602][    C0] R13: ffff888029f0523c R14: ffff88802988c100 R15: ffff88802988c118
[ 1232.371575][    C0]  usb_hcd_poll_rh_status+0x572/0x7f0
[ 1232.376946][    C0]  ? __pfx_usb_hcd_poll_rh_status+0x10/0x10
[ 1232.382835][    C0]  dummy_pullup+0x212/0x270
[ 1232.387329][    C0]  ? __pfx_dummy_pullup+0x10/0x10
[ 1232.392342][    C0]  usb_gadget_disconnect_locked+0x13f/0x4f0
[ 1232.398229][    C0]  gadget_unbind_driver+0xd7/0x4e0
[ 1232.403346][    C0]  ? kernfs_remove_by_name_ns+0xe8/0x130
[ 1232.408968][    C0]  ? __pfx_gadget_unbind_driver+0x10/0x10
[ 1232.414680][    C0]  device_remove+0xc8/0x170
[ 1232.419174][    C0]  device_release_driver_internal+0x44a/0x610
[ 1232.425234][    C0]  driver_detach+0xd8/0x1b0
[ 1232.429730][    C0]  ? __pfx_raw_release+0x10/0x10
[ 1232.434661][    C0]  bus_remove_driver+0x13b/0x2c0
[ 1232.439587][    C0]  driver_unregister+0x76/0xb0
[ 1232.444341][    C0]  usb_gadget_unregister_driver+0x49/0x70
[ 1232.450051][    C0]  raw_release+0x1ae/0x2b0
[ 1232.454458][    C0]  __fput+0x3f8/0xb60
[ 1232.458436][    C0]  task_work_run+0x14e/0x250
[ 1232.463014][    C0]  ? __pfx_task_work_run+0x10/0x10
[ 1232.468114][    C0]  ? __pfx___do_sys_close_range+0x10/0x10
[ 1232.473826][    C0]  syscall_exit_to_user_mode+0x27b/0x2a0
[ 1232.479451][    C0]  do_syscall_64+0xda/0x250
[ 1232.483946][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1232.489834][    C0] RIP: 0033:0x7f8b26b85d29
[ 1232.494234][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1232.513829][    C0] RSP: 002b:00007ffcbfd76ad8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 1232.522231][    C0] RAX: 0000000000000000 RBX: 000000000011b52e RCX: 00007f8b26b85d29
[ 1232.530186][    C0] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[ 1232.538148][    C0] RBP: 00007f8b26d77ba0 R08: 0000000000000001 R09: 00007ffcbfd76dcf
[ 1232.546116][    C0] R10: 00007f8b26a00000 R11: 0000000000000246 R12: 000000000011b9f7
[ 1232.554071][    C0] R13: 00007f8b26d75fa0 R14: 0000000000000032 R15: ffffffffffffffff
[ 1232.562039][    C0]  </TASK>
[ 1232.565236][    C0] Kernel Offset: disabled
[ 1232.569626][    C0] Rebooting in 86400 seconds..