last executing test programs: 6.557823488s ago: executing program 0 (id=3808): r0 = socket$inet(0x2, 0x3, 0x4) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x11, 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) io_uring_enter(0xffffffffffffffff, 0x894, 0x3a7b, 0x0, 0x0, 0x0) syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x802) connect$inet6(r1, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x2c}, 0xd}, 0x1c) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) mmap(&(0x7f0000004000/0x4000)=nil, 0x4000, 0x0, 0x2172, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000001000/0x4000)=nil, 0x4000) futex(0x0, 0x8d, 0xfffffffd, 0x0, 0x0, 0x0) mount(0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)='usrquota') mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1, 0x103) mount(&(0x7f0000000300), &(0x7f00000001c0)='./file0\x00', &(0x7f0000000080)='ubifs\x00', 0x0, 0x0) write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, 0x0, 0x0) r3 = syz_kvm_add_vcpu$x86(0x0, &(0x7f00000000c0)={0x0, &(0x7f0000000400)=[@code={0xa, 0x82, {"c7442400c590ea20c744240200000000c7442406000000000f0114240f005e81c401e973ddc9c4a282f5944e4b0e0000c4a19963c148b800000000008000000f23d80f21f835800000a00f23f866b8eb000f00d066b8d8000f00d80f01c3c74424004f000000c7442402cbdd0000ff2c24"}}, @cpuid={0x14, 0x18}, @cpuid={0x14, 0x18, {0x7f, 0x7}}, @cpuid={0x14, 0x18, {0x10, 0xfffff54c}}, @wrmsr={0x1e, 0x20, {0x9cf, 0x9}}, @uexit={0x0, 0x18, 0x3}, @wr_crn={0x46, 0x20, {0x0, 0x9}}, @cpuid={0x14, 0x18, {0x20000000, 0x392d0000}}, @wrmsr={0x1e, 0x20, {0x825, 0xa4b7}}, @wr_crn={0x46, 0x20, {0x4, 0xfff}}, @wr_crn={0x46, 0x20, {0x2, 0x7fff}}, @rdmsr={0x32, 0x18, {0x20}}, @wrmsr={0x1e, 0x20, {0x8e1, 0x3}}, @wrmsr={0x1e, 0x20, {0x175, 0x8}}, @rdmsr={0x32, 0x18, {0x9ee}}, @rdmsr={0x32, 0x18, {0x8b9}}, @wrmsr={0x1e, 0x20, {0x0, 0x9231}}, @cpuid={0x14, 0x18, {0xd36}}, @cpuid={0x14, 0x18, {0x4}}, @rdmsr={0x32, 0x18}, @rdmsr={0x32, 0x18, {0x84e}}, @wr_crn={0x46, 0x20, {0x4, 0x8}}, @uexit={0x0, 0x18, 0x6}], 0x2da}) ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000000700)={"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"}) mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2) write$binfmt_script(r1, &(0x7f0000000200), 0xfffffd9d) r4 = openat$sw_sync_info(0xffffffffffffff9c, 0x0, 0x40000, 0x0) close(r4) r5 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r5, 0xc04064a0, 0x0) setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5) 6.43759463s ago: executing program 4 (id=3813): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_DEL_KEY(r0, &(0x7f0000000200)={0x0, 0x34, &(0x7f0000000080)={&(0x7f0000000000)={0x34, r1, 0x1, 0x3, 0x0, {{0xa}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_KEY={0x18, 0x50, 0x0, 0x1, [@NL80211_KEY_DEFAULT={0x4}, @NL80211_KEY_DEFAULT_TYPES={0x8, 0x8, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}]}, @NL80211_KEY_IDX={0x5}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x48881}, 0x40) 4.975263141s ago: executing program 4 (id=3815): socket$inet6_sctp(0xa, 0x5, 0x84) (async) r0 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r0, 0x0) pipe(&(0x7f0000000280)) (async) pipe(&(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) (async) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002040), 0x2, 0x0) mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x0, &(0x7f0000002100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) (async) mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x0, &(0x7f0000002100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) syz_fuse_handle_req(r3, &(0x7f00000021c0)="000000000000000000000000000000000000000000000000000000d455b4da00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000bd1d8811cd8a942e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400", 0x2000, &(0x7f00000041c0)={&(0x7f00000001c0)={0x50, 0x0, 0x0, {0x7, 0x29, 0x7, 0x2110029, 0x100, 0x0, 0x1, 0x55, 0x0, 0x0, 0x80, 0x4020}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) (async) syz_fuse_handle_req(r3, &(0x7f00000021c0)="000000000000000000000000000000000000000000000000000000d455b4da00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000bd1d8811cd8a942e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400", 0x2000, &(0x7f00000041c0)={&(0x7f00000001c0)={0x50, 0x0, 0x0, {0x7, 0x29, 0x7, 0x2110029, 0x100, 0x0, 0x1, 0x55, 0x0, 0x0, 0x80, 0x4020}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) utime(&(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x73, 0x7fffffffffffffff}) r4 = socket$netlink(0x10, 0x3, 0x4) sendmsg$nl_generic(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f000000d379)={&(0x7f0000000200)=ANY=[@ANYBLOB="1800000014000100a9c20000000000001e"], 0x18}}, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) semtimedop(0x0, &(0x7f0000000040)=[{0x0, 0x1}], 0x1, 0x0) io_setup(0x3ff, &(0x7f0000000500)=0x0) io_submit(r5, 0xf000, &(0x7f0000000300)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x5, 0x0, r1, 0x0}, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, r2, &(0x7f00000001c0)='m', 0xfffffdfc}]) setsockopt$inet_sctp_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000000040)={0xf, 0x7f, 0x0, 0x1, 0x6, 0xef, 0x4, 0x4, 0x0, 0x81, 0x6, 0x5, 0x4, 0xe7}, 0xe) (async) setsockopt$inet_sctp_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000000040)={0xf, 0x7f, 0x0, 0x1, 0x6, 0xef, 0x4, 0x4, 0x0, 0x81, 0x6, 0x5, 0x4, 0xe7}, 0xe) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x2c, &(0x7f0000000100)=[@in={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}, @in6={0xa, 0x4e24, 0x0, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010100}}]}, &(0x7f0000000180)=0x10) mount$bind(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f00000003c0), 0x1082c08, 0x0) bpf$BPF_PROG_DETACH(0x9, &(0x7f00000000c0)={@cgroup, 0xffffffffffffffff, 0x24, 0x0, 0x0, @void, @value=0x0}, 0x20) setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f00000000c0)=@sack_info={r6, 0x0, 0xa}, 0xc) (async) setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f00000000c0)=@sack_info={r6, 0x0, 0xa}, 0xc) ioctl$KVM_GET_TSC_KHZ_vm(r1, 0xaea3) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000007c0)={0xffffffffffffffff, 0xe0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000440)=[0x0], 0x0, 0xe8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1d, 0x8, 0x0, 0x0}}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x3, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000100)=ANY=[@ANYBLOB="180300000000000000000000040000008510000006000000180000000000000000000000000000006500000000000000180000000000000000000000000000009500000000000000c4030000000000449f00000000000000"], &(0x7f0000000000)='GPL\x00'}, 0x94) 4.580302256s ago: executing program 2 (id=3818): add_key$fscrypt_provisioning(&(0x7f0000000000), 0x0, &(0x7f0000000a40)=ANY=[], 0x18, 0xffffffffffffffff) r0 = request_key(&(0x7f0000000480)='asymmetric\x00', &(0x7f00000004c0)={'syz', 0x0}, &(0x7f0000000500)='abcdefghijklmnop', 0x0) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDGKBMETA(r1, 0x4bfa, 0x0) r2 = socket$packet(0x11, 0xa, 0x300) r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0) mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000080)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0x4000}}) read$FUSE(r3, &(0x7f00000077c0)={0x2020, 0x0, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r3, &(0x7f00000004c0)={0x50, 0x0, r4, {0x7, 0x1f, 0x0, 0x2002004}}, 0x50) syz_fuse_handle_req(r3, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000090c400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000542d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ea8286a2fba523440000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000633956a1000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007d6ab715107fa1820000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f6ffffffffffffff0000000000000e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f4000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000286071480000000000b13bc1e6d970884f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f3ffffffffffffff00", 0x2000, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_fuse_handle_req(r3, &(0x7f0000002140)="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", 0x2000, &(0x7f0000000940)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000a40)={0xb0, 0x0, 0x0, [{{0x5, 0x0, 0x2, 0x0, 0x0, 0x4, {0x0, 0x0, 0x6, 0x0, 0x0, 0x4, 0x4, 0x0, 0x20, 0xa000, 0x0, r5, 0x0, 0x0, 0x4}}, {0x0, 0xfffffffffffffffe, 0x4, 0x0, '..^\''}}]}, 0x0, 0x0, 0x0}) keyctl$get_persistent(0x16, r5, r0) keyctl$reject(0x13, r0, 0x6, 0x2, r0) getpeername$packet(r2, 0x0, 0x0) r6 = request_key(&(0x7f0000001d40)='asymmetric\x00', &(0x7f0000000080)={'syz', 0x0}, 0x0, 0xfffffffffffffffe) r7 = add_key$user(&(0x7f0000000040), &(0x7f00000000c0)={'syz', 0x2}, &(0x7f0000000100)="1572f84f5f3bc8af6d5708386609e928e5212e0f0f56bba19b6040e4966675e27d0e84d9511dd308b7d63ae2f881512030aad40c6dd8a51159e8cf926c74cfb0d98dcf08eddc8e9ec36d5cc623ab8ab0a40d24e012f8559c0769e58943fcb80aae256f300f8b962ab2d38b11abbd8d884e72d2d3d1aa54ea129f8e8c7f8a8c86f4b36caa493348989ee77d1085d4c873bf6028bccf968e26bb71532dc0576909837cf3aa086819296883c31bb995d672aa281ee94d65947bf715ec8e6b9fc183c06306022316830dc9d6c129ff8225895f788fc3222653", 0xd7, r6) r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r8, &(0x7f0000000200), 0x806000) ioctl$FS_IOC_RESVSP(r8, 0x40305829, 0x0) timer_create(0x0, &(0x7f00000002c0)={0x0, 0x27, 0x0, @thr={&(0x7f0000000240)="402646dd0895066db85b03235d5c900ace0b8b0fe515006258d52ef500999f91387b3c02c43875041f5c389d612d", &(0x7f0000000280)="da4f38cd33c4d11171c92141a925e82de70948228a8e793765f5afa384a89fd8f187053c61a8f6432fe74fd4292c835829db6fee6d6500"}}, &(0x7f0000000300)) keyctl$KEYCTL_WATCH_KEY(0x20, r7, r8, 0x7c) 4.523451751s ago: executing program 2 (id=3820): mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x3000, 0x3, &(0x7f0000ffc000/0x3000)=nil) r0 = socket$netlink(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000006040), r1) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000006080)={'wlan1\x00'}) sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000006180)={0x0, 0x0, &(0x7f0000006140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="0800001d4bb3eee57e9a86365b6de6c274a5f8fbf9f406c8e616ca43ca39dbdd95fc9dd25ed4786992e9638627", @ANYRES16=r2, @ANYBLOB="110026bd7000fddbdf2507000000080001005d0000000c00990001000000fcffffff08000500010000001400040070696d72656700"/62], 0x44}, 0x1, 0x0, 0x0, 0x4040}, 0x20004014) r3 = syz_open_dev$usbfs(&(0x7f0000000180), 0x205, 0x2581) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$USBDEVFS_SUBMITURB(r4, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x80, 0xf, 0x0, 0x0, 0x7995}, 0x10007, 0x0, 0x0, 0x48000000, 0x0, 0x40000000, 0x0}) r5 = socket$inet_smc(0x2b, 0x1, 0x0) ioprio_set$pid(0x1, 0x0, 0x0) r6 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_int(r6, 0x29, 0x4e, &(0x7f0000000000)=0x1, 0x4) bind$inet6(r6, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback={0x0, 0xa8aaaafffeaaaa1e}, 0x8000}, 0x1c) pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x60680, 0x0) sendfile(r7, r8, 0x0, 0x110003) setsockopt$inet_tcp_TCP_CONGESTION(r5, 0x6, 0xd, &(0x7f0000002680)='bbr\x00', 0x4) r9 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb01001800000000000000240000002400000002000000000000000000000903000000000000000000000d008d0f61"], &(0x7f0000000100)=""/223, 0x3e, 0xdf, 0x1}, 0x28) bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x0, 0x1c, &(0x7f0000000340)=ANY=[@ANYBLOB="05000000000000009500000000000000b7080000000000007b8af8", @ANYRES32, @ANYBLOB="0000000000002000b70500f7ffffff0085000000a5000000b7080000000000007b8af8ff00000000b7080000050000007b8af0ff00000000bfa100000000000007010000f8"], 0x0, 0x1, 0x93, &(0x7f0000000480)=""/147, 0x41000, 0x0, '\x00', 0x0, @fallback=0x32, r9, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x4, 0x0, &(0x7f0000000980)=[{0x40001, 0x1, 0x2000007}, {0x5, 0x0, 0xf, 0xa}, {0x5, 0x2, 0xe, 0x9}, {0x0, 0x3, 0x0, 0x7}], 0x10, 0x7}, 0x94) r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0100000005000000090000008b00000044"], 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0xffffffffffffffff, 0x0, &(0x7f00000000c0), &(0x7f0000000240), 0x800, r10}, 0x38) bpf$MAP_LOOKUP_BATCH(0x19, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000680), &(0x7f0000000540), 0x6c, r10}, 0x38) getsockopt$inet_tcp_buf(r5, 0x6, 0x1a, 0x0, &(0x7f00000000c0)) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1000009, 0x16831, 0xffffffffffffffff, 0x0) ioctl$USBDEVFS_REAPURBNDELAY(r3, 0x4004550c, 0x0) 4.364745683s ago: executing program 0 (id=3821): request_key(0x0, &(0x7f00000004c0)={'syz', 0x0}, &(0x7f0000000500)='abcdefghijklmnop', 0x0) 4.253518999s ago: executing program 0 (id=3822): r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x1, 0x2) r1 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) pwritev2(r1, 0x0, 0x0, 0x7, 0x7, 0x12) ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0x2, 0x1, 0x1}) ioctl$vim2m_VIDIOC_STREAMOFF(r0, 0x40045612, &(0x7f0000000000)=0x1) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = openat$iommufd(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$IOMMU_IOAS_ALLOC(r3, 0x3b81, &(0x7f0000000400)={0xc, 0x0, 0x0}) ioctl$IOMMU_IOAS_MAP$PAGES(r3, 0x3b85, &(0x7f0000000000)={0x28, 0x3, r4, 0x0, &(0x7f0000fb3000/0xf000)=nil, 0xf000}) ioctl$IOMMU_IOAS_COPY(r3, 0x3b83, &(0x7f00000002c0)={0x28, 0x1, r4, r4, 0xa92, 0x910a0000, 0x2}) ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r3, 0x3ba0, &(0x7f0000000240)={0x48, 0x5, r4, 0x0, 0xffffffffffffffff, 0x1}) syz_emit_ethernet(0x36, &(0x7f00000001c0)=ANY=[], 0x0) r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_TRAP_GET(r2, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000080)={&(0x7f0000000500)={0x1e0, r5, 0x0, 0x70bd25, 0x25dfdbfb, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}}, {@pci={{0x8}, {0x11}}, {0x1c}}, {@pci={{0x8}, {0x11}}, {0x1c}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}}, {@pci={{0x8}, {0x11}}, {0x1c}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}}, {@pci={{0x8}, {0x11}}, {0x1c}}, {@pci={{0x8}, {0x11}}, {0x1c}}]}, 0x1e0}, 0x1, 0x0, 0x0, 0x4004054}, 0x4000001) r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f0000000100)={0xfffffffd, 0x5, 0x0, 'queue0\x00', 0x5}) sendmsg$ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000740)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="470d000000000000000000000000080002"], 0x1c}}, 0x0) r7 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$netlink(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000740)=ANY=[@ANYBLOB="14020000140001002dbd7000000000000a"], 0x214}], 0x1}, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r6, 0x404c534a, &(0x7f0000000380)) r8 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x82) r9 = add_key$keyring(&(0x7f0000000700), &(0x7f0000000780)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff) request_key(&(0x7f0000000300)='cifs.idmap\x00', &(0x7f0000000440)={'syz', 0x3}, &(0x7f0000000480)=':[%.\x00', r9) writev(r8, &(0x7f00000004c0)=[{&(0x7f0000000140)="20eba9fdb4cbab48929e1af151000000000000000000000000000100", 0x1c}], 0x1) 4.148464668s ago: executing program 0 (id=3823): syz_usb_connect$uac1(0x0, 0xb1, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000000000106b1d010140010102030109029f0003010000000904000000010100000a24010000000201020d24060000030800000031ce21c798329740594c137d0000000c24020201010608000010000c24020000000300000000000924060006010000000924030000000005000924060500", @ANYBLOB="a1"], 0x0) syz_usb_connect$cdc_ncm(0x0, 0x71, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5f, 0x2, 0x1, 0xfe, 0x100, 0x3, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x8, 0x24, 0x6, 0x0, 0x1, "e804b9"}, {0x5, 0x24, 0x0, 0x9}, {0xd, 0x24, 0xf, 0x1, 0x101, 0x7, 0x6, 0xff}, {0x6, 0x24, 0x1a, 0x2, 0x235f40dc0fcd3591}}, {{0x9, 0x5, 0x81, 0x3, 0x3ff, 0x1, 0x3, 0x4}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x8, 0x81, 0x10, 0x81}}, {{0x9, 0x5, 0x3, 0x2, 0x200, 0x80, 0x9, 0xf4}}}}}}}]}}, &(0x7f0000000280)={0xa, &(0x7f0000000100)={0xa, 0x6, 0x250, 0x8, 0x7, 0xc7, 0x8, 0x1}, 0x10, &(0x7f0000000140)={0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0x8, 0x11, 0x3, 0x6, 0xff, 0x7}]}, 0x4, [{0x4, &(0x7f0000000180)=@lang_id={0x4, 0x3, 0x180a}}, {0x6, &(0x7f00000001c0)=@string={0x6, 0x3, "d2311d44"}}, {0x4, &(0x7f0000000200)=@lang_id={0x4, 0x3, 0x3401}}, {0x5, &(0x7f0000000240)=@string={0x5, 0x3, "94b0d1"}}]}) 2.638973696s ago: executing program 3 (id=3832): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$FIGETBSZ(r0, 0x2, &(0x7f0000001300)) (fail_nth: 5) 2.613021936s ago: executing program 1 (id=3833): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r1, 0x0, 0x0, 0x4000) 2.549509968s ago: executing program 3 (id=3834): r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000000f478ef8ed"]) bind$vsock_stream(0xffffffffffffffff, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, 0x2}, 0x94) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) bpf$PROG_LOAD(0x5, 0x0, 0x0) (async) bpf$PROG_LOAD(0x5, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000940)) (async) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000940)={0xffffffffffffffff, 0xffffffffffffffff}) writev(r4, &(0x7f0000000400)=[{&(0x7f0000000100)="92", 0x1}], 0x1) (async) writev(r4, &(0x7f0000000400)=[{&(0x7f0000000100)="92", 0x1}], 0x1) pipe(&(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r6, 0x0, r8, 0x0, 0xf3a, 0x0) splice(r3, 0x0, r8, 0x0, 0x80, 0x4) (async) splice(r3, 0x0, r8, 0x0, 0x80, 0x4) read(r3, &(0x7f0000000240)=""/233, 0xe9) (async) read(r3, &(0x7f0000000240)=""/233, 0xe9) sendto$rxrpc(r7, 0x0, 0x0, 0x94, 0x0, 0x0) write(r5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000000)='inet_sock_set_state\x00', r2, 0x0, 0x3}, 0x18) socket$inet_mptcp(0x2, 0x1, 0x106) (async) r9 = socket$inet_mptcp(0x2, 0x1, 0x106) sendmmsg(r9, &(0x7f00000007c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2c000011) r10 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) sendmsg$IPSET_CMD_FLUSH(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, 0x4, 0x6, 0x101, 0x0, 0x0, {0x5, 0x0, 0x2}}, 0x14}, 0x1, 0x0, 0x0, 0x2000001}, 0x4000081) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x20000810) ioctl$KVM_SET_REGS(r10, 0x4090ae82, &(0x7f00000001c0)={[0x205, 0x6, 0x4, 0x0, 0x10003, 0x41, 0x400200cc0, 0x100ffd, 0x4, 0x0, 0x3, 0x3, 0x4, 0x2, 0x6a, 0x5], 0xeeee8000, 0x2011c0}) (async) ioctl$KVM_SET_REGS(r10, 0x4090ae82, &(0x7f00000001c0)={[0x205, 0x6, 0x4, 0x0, 0x10003, 0x41, 0x400200cc0, 0x100ffd, 0x4, 0x0, 0x3, 0x3, 0x4, 0x2, 0x6a, 0x5], 0xeeee8000, 0x2011c0}) ioctl$KVM_RUN(r10, 0xae80, 0x0) (async) ioctl$KVM_RUN(r10, 0xae80, 0x0) ioctl$KVM_RUN(r10, 0xae80, 0x0) (async) ioctl$KVM_RUN(r10, 0xae80, 0x0) r11 = syz_init_net_socket$ax25(0x3, 0x3, 0xcc) setsockopt$ax25_int(r11, 0x101, 0x9, &(0x7f0000000240)=0x9, 0x4) syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_user\x00', 0x275a, 0x0) sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[], 0x28}, 0x1, 0x0, 0x0, 0x200000c1}, 0x0) 2.421056555s ago: executing program 3 (id=3835): r0 = socket$isdn_base(0x22, 0x3, 0x0) accept4(r0, 0x0, 0x0, 0x0) r1 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f0000000000)=0x0) ioctl$LOOP_CONFIGURE(0xffffffffffffffff, 0x4c0a, &(0x7f0000000080)={0xffffffffffffffff, 0x0, {0x0, 0x0, 0x0, 0x7, 0x4000000000000ffd, 0x0, 0x0, 0x1e, 0xc, "faf98317e5a1149989fc8dbe43ea6acc96e3a2503dc3bd3fe37d58128bbad0099cebdc25f5ab60c9e6d680f985881a7beda9d69098c8b534464c516bdd8a0f35", "32d8cc26f7061a74df2cfc06c89f3d9e234b30c50997d3bef409ff2176ff7bfe55cd4a5d83cd4a524bd3ffe70c7f3f800b2f7b6aa54cc50a1fcaed1e831fa79a", "67523760fd40f78d2cfc03d81a8ca55ba139c01802c4dae4162e43ac61b7ad33", [0x2, 0x9]}}) ptrace$setregset(0x4205, 0x0, 0x6, &(0x7f0000000100)={&(0x7f0000000000)="277100597b18ed15fe2470b860d962a5e851a991a548a9514f11e43ccc00f55a60ca4d96e5800c089fc4b687632902778b9ce860abf19bb1fb7caf1317d0b870e708d3c164d97e9ee5c83c70a8f856c2c7a7a477691e325aad522b9e0f2e74b5ce2c588c9738dbb363d0f3094a6b2853e2f6cdbfe65d96c6affcab1e46667c85eab212eb79348b1a17cf27f21e887bd2a8155c7a5ff6821e47e76641b3c4d35a6cfc05f1f8700252164cb848b5c5145630f2da56cee2", 0xb6}) r4 = socket$igmp6(0xa, 0x3, 0x2) setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @mcast2, [], [], 'wg1\x00', 'gre0\x00', {}, {}, 0x0, 0x0, 0x0, 0x50}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488) connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @multicast2}, 0x106}, 0x1c) r5 = socket$inet6(0xa, 0x3, 0x8000000003c) connect$inet6(r5, &(0x7f00000001c0)={0xa, 0x4e21, 0x0, @loopback}, 0x1c) sendmsg(r5, &(0x7f00000000c0)={0x0, 0x953a, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0xfff2}], 0x1, 0x0, 0x0, 0x2c}, 0x44004) bind$nfc_llcp(r1, &(0x7f0000001040)={0x27, r3, 0xffffffffffffffff, 0x5, 0x0, 0x0, "d92984bd1ca44c226af5160e961711a077609475b78411e88509de050000000000f2170e65e3f50327e422000000000000000000000200000000001900", 0x3c}, 0x60) chmod(&(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x40) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x880, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r8, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2004c8]}) ioctl$KVM_RUN(r8, 0xae80, 0x0) ioctl$KVM_RUN(r8, 0xae80, 0x0) ioctl$KVM_RUN(r8, 0x8090ae81, 0x0) close(r1) madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x66) prctl$PR_SET_IO_FLUSHER(0x43, 0x1) prctl$PR_SET_IO_FLUSHER(0x43, 0x0) close_range(r1, 0xffffffffffffffff, 0x2) r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r9}, 0x10) 2.386751349s ago: executing program 0 (id=3836): mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f0000000000)='./bus\x00', &(0x7f00000020c0), 0x0, &(0x7f0000002100)) 2.19735551s ago: executing program 0 (id=3837): syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x3, 0x3, 0x6c}, @l2cap_cid_signaling={{0x68}, [@l2cap_move_chan_req={{0xe, 0x3, 0x3}, {0x5}}, @l2cap_create_chan_req={{0xc, 0x6e, 0x5}, {0x2408, 0x0, 0x8}}, @l2cap_disconn_req={{0x6, 0xf8, 0x4}, {0x10, 0x3ff}}, @l2cap_move_chan_cfm_rsp={{0x11, 0x10, 0x2}, {0x9}}, @l2cap_disconn_req={{0x6, 0x7, 0x4}, {0x5, 0x1}}, @l2cap_conf_req={{0x4, 0x2, 0x3e}, {0x3, 0x7, [@l2cap_conf_ews={0x7, 0x2, 0x5}, @l2cap_conf_efs={0x6, 0x10, {0x3, 0x2, 0x1, 0x2, 0xd125, 0xf}}, @l2cap_conf_ews={0x7, 0x2, 0x4}, @l2cap_conf_rfc={0x4, 0x9, {0x4, 0x1, 0x3, 0x0, 0xe, 0x3}}, @l2cap_conf_mtu={0x1, 0x2, 0x9}, @l2cap_conf_rfc={0x4, 0x9, {0x1, 0xcc, 0x80, 0x3, 0x7, 0x6}}, @l2cap_conf_fcs={0x5, 0x1, 0x1}, @l2cap_conf_fcs={0x5, 0x1}]}}]}}, 0x71) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x56}, "b15c323cfedfa6b210a9f55bf6288281c37e91df913550f1307eab8cafbd4a2f5e8e6e062d1e184ccd75259112ab2c4ff0b0df6d0ef0cb210ec64da9cb2aae5fff298196fad430dc68f59e220090c17d9bc59eba6ca5"}, 0x5a) syz_emit_vhci(&(0x7f0000000140)=@HCI_SCODATA_PKT={0x3, {0xc9, 0xee}, "4992c1c06012496c222776643523cae5e4f8301b7d0447a624b0e79fd1c654f0c7dbc886ef8895d9a4136545b243939db8ab934c0180c65a3f835c3254b01c739dac7b834b638174de1c258afc25064d6166ed4db3ff27c35d827bb21223610f75820d1547eec490e40332333ca431f4cfaf4f6defc18b1d3ac05bc5978e7fa4dcb5e00259257e1031675b0a327e96aa6bce6f1a56ee8122b0b3b54914daa91b8ffa7f9ffcf4245bf07604e621b7ce34389eef3b2fcc890f4e0aebfbdff168b21ed7e6a80aebc2c4270c5cef62f3463b075f0d0598b8879d8ff42951acc02c81044be317d5b9d76e931b10a20e30"}, 0xf2) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000001540)={&(0x7f0000000240), 0xc, &(0x7f0000001500)={0x0}, 0x1, 0x0, 0x0, 0x800}, 0x800) syz_emit_vhci(&(0x7f00000016c0)=@HCI_EVENT_PKT={0x4, @hci_ev_sync_conn_complete={{0x2c, 0x11}, {0x5, 0xc8, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x2, 0x2b, 0xff, 0x480, 0x3, 0x4}}}, 0x14) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x8, 0x20000000000000, &(0x7f0000001700)=0x1) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000001740), 0x5a5200, 0x0) ioctl$SNDCTL_DSP_SUBDIVIDE(r1, 0xc0045009, &(0x7f0000001780)=0x1a400000) r2 = socket$rxrpc(0x21, 0x2, 0x2) bind$rxrpc(r2, &(0x7f00000017c0)=@in6={0x21, 0x2, 0x2, 0x1c, {0xa, 0x4e22, 0x6, @private0={0xfc, 0x0, '\x00', 0x1}, 0x800}}, 0x24) r3 = socket$pppoe(0x18, 0x1, 0x0) fcntl$setflags(r3, 0x2, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000001840)={0xffffffffffffffff}, 0x4) bpf$PROG_BIND_MAP(0x23, 0x0, 0x0) syz_emit_vhci(0x0, 0x0) socket$pppoe(0x18, 0x1, 0x0) ioctl$TIOCSPTLCK(0xffffffffffffffff, 0x40045431, &(0x7f0000001900)=0x1) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x1c6, 0x101, &(0x7f0000001940)=0x1) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x6, 0xc7, &(0x7f0000001980)) getsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x39, &(0x7f00000019c0)=""/163, &(0x7f0000001a80)=0xa3) mount$overlay(0x0, &(0x7f0000001ac0)='./file0\x00', &(0x7f0000001b00), 0x1060400, &(0x7f0000001b40)={[{@verity_on}, {@workdir={'workdir', 0x3d, './file0'}}, {@verity_require}, {@redirect_dir_off}], [{@func={'func', 0x3d, 'PATH_CHECK'}}]}) r4 = creat(&(0x7f0000001bc0)='./file0\x00', 0xa1) getdents64(r4, &(0x7f0000001c00)=""/170, 0xaa) openat$kvm(0xffffffffffffff9c, &(0x7f0000001d40), 0x220400, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0xffffffff, 0xc000000000, &(0x7f0000001d80)) 2.19137006s ago: executing program 1 (id=3838): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000080)=@framed, 0x0}, 0x94) r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0) writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)}, {&(0x7f0000000100)="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", 0xff}], 0x2) 2.190819261s ago: executing program 3 (id=3839): r0 = syz_open_dev$sg(&(0x7f00000003c0), 0x6, 0x50004) sendmsg$inet(0xffffffffffffffff, 0x0, 0xc810) openat$sequencer(0xffffffffffffff9c, 0x0, 0x80200, 0x0) socket$inet_mptcp(0x2, 0x1, 0x106) syz_genetlink_get_family_id$smc(0x0, 0xffffffffffffffff) sendmsg$SMC_PNETID_ADD(0xffffffffffffffff, 0x0, 0x800) syz_open_dev$sndmidi(0x0, 0x61f, 0x600000) sendmsg$SMC_PNETID_FLUSH(0xffffffffffffffff, 0x0, 0x4044080) syz_usb_connect(0x0, 0x3d, &(0x7f0000000640)=ANY=[@ANYBLOB="12010000ad6c86202f070022bf3f0102030109022b0001000000000904000002b4afd7000905000000000075000705e3977782e609050b0200"], 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001380)=@newtaction={0x98, 0x30, 0x871a15abc695fb3d, 0x0, 0x25dfdbfe, {}, [{0x84, 0x1, [@m_tunnel_key={0x80, 0x1, 0x0, 0x0, {{0xf}, {0x50, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{}, 0x1}}, @TCA_TUNNEL_KEY_ENC_IPV6_SRC={0x14, 0x5, @empty}, @TCA_TUNNEL_KEY_ENC_IPV6_DST={0x14, 0x6, @empty}, @TCA_TUNNEL_KEY_ENC_KEY_ID={0x8, 0x7, 0x6}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x98}}, 0x0) ioctl$SG_IO(r0, 0x2285, 0x0) writev(r0, &(0x7f0000000000)=[{&(0x7f0000000340)="aefdda9d240300005a90f57f07703aeff0f64ebbee07962c22772e11b44e65d76641cb010052f436dd2a", 0x2a}, {&(0x7f0000000780)="aa1d484e243103000000f7c08bfcd111fbdf23ea32db0e8f21d5bc27bd8063067a0689fff2a41cfbf0e9d85e447511703d", 0x31}], 0x2) 2.162849327s ago: executing program 1 (id=3840): mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x20, &(0x7f00000000c0)='./bus\x00', &(0x7f00000020c0), 0x0, &(0x7f0000002100)) 2.101338999s ago: executing program 1 (id=3841): mkdir(&(0x7f00000003c0)='./file0\x00', 0x21) r0 = open_tree(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x801) ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000300)={0x41, 0x2, 0x1, "444900d730faa901000000000000000000f789981008d7b15b5700e46b8be100", 0x50424752}) setsockopt$inet_udp_int(r0, 0x11, 0xa, &(0x7f0000000180)=0x6, 0x4) openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000280), 0x22802, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0xb, &(0x7f0000000000)=0x2, 0x4) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) fallocate(0xffffffffffffffff, 0x700100, 0x0, 0x1000f4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$IPT_SO_SET_REPLACE(r4, 0x0, 0x40, &(0x7f0000001640)=@mangle={'mangle\x00', 0x44, 0x6, 0x510, 0x3a8, 0x210, 0x210, 0x0, 0x138, 0x478, 0x478, 0x478, 0x478, 0x478, 0x6, 0x0, {[{{@ip={@broadcast, @multicast1=0xe0007600, 0x0, 0x0, 'geneve1\x00', 'ip6gre0\x00'}, 0x0, 0x70, 0x98}, @inet=@DSCP={0x28}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @local, 0x0, 0x0, 'batadv_slave_1\x00', 'veth1_virt_wifi\x00', {}, {}, 0x11}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @local}}}, {{@ip={@broadcast, @multicast2, 0x0, 0x0, 'vlan1\x00', 'nr0\x00'}, 0x0, 0xb0, 0xd8, 0x0, {}, [@common=@unspec=@connlimit={{0x40}}]}, @unspec=@CHECKSUM={0x28}}, {{@ip={@loopback, @empty, 0x0, 0x0, 'syzkaller0\x00', 'veth1_to_team\x00'}, 0x0, 0x70, 0x198}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x0, 'system_u:object_r:dbusd_etc_t:s0\x00'}}}, {{@ip={@broadcast, @multicast2, 0x0, 0x0, 'lo\x00', 'batadv_slave_1\x00'}, 0x0, 0xa0, 0xd0, 0x0, {}, [@common=@unspec=@mac={{0x30}, {@multicast}}]}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @loopback}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x570) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000700)=@newtaction={0x104, 0x1c, 0x1, 0x0, 0x0, {0x0, 0x0, 0x1300}, [{0xf0, 0x1, [@m_ife={0xc0, 0xa, 0x0, 0x0, {{0x8}, {0x58, 0x2, 0x0, 0x1, [@TCA_IFE_METALST={0x14, 0x6, [@IFE_META_SKBMARK={0x8, 0x1, @val=0x73}, @IFE_META_SKBMARK={0x8, 0x1, @val=0x7fffffff}]}, @TCA_IFE_SMAC={0xa}, @TCA_IFE_SMAC={0xa, 0x4, @local}, @TCA_IFE_TYPE={0x6, 0x5, 0x13}, @TCA_IFE_SMAC={0xa, 0x4, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x29}}, @TCA_IFE_TYPE={0x6, 0x5, 0x2}, @TCA_IFE_DMAC={0xa, 0x3, @multicast}]}, {0x44, 0x6, "9f9b1752caf80e2cd1f279d478f2ffcee19004f8c41f0a45808e4ed94a084e2c0a9ec7d71351233511b623dc4fe8eb9cc5b9a2940bc86412dbd530dc161fe28a"}, {0xc}, {0xc, 0x8, {0x2, 0x4}}}}, @m_ife={0x2c, 0xe, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}]}]}, 0x104}, 0x1, 0x0, 0x0, 0x4}, 0x0) syz_io_uring_setup(0x239, &(0x7f0000000300)={0x0, 0x175d, 0x10100, 0x5, 0x262}, &(0x7f0000000000), &(0x7f0000000100)) r5 = syz_open_dev$tty1(0xc, 0x4, 0x1) r6 = dup(r5) ioctl$TCSETSF(r6, 0x5404, &(0x7f0000000040)={0x1856, 0x0, 0x0, 0xfffffff9, 0x8, "0e80706e6c06a79874342a0e0d13343972d01f"}) write$UHID_INPUT(r6, &(0x7f0000001040)={0xd, {"a2e3ad21ed6b0af99cfbf4c007f70eb4d04fe7ff7fc6e5539b0872fc8b546a1b4d09940f08900c878f0e1ac6e7049b4cb4956c409b3c2a0867f3988f7ef319520100ffe8d178708c523c921b1b0f5a0a169b50d336cd3b78130daa61d8f809ea882f5802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f309f4cff7738596ecae8707ce065cd5b91cd0ae193973735b36d5b1b63e91c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecd03aded6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca5b6bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27afc953854a642c57519544ae15a7e454dea05918b4124351601611c8f11baa500a3621c56cea8d20ff911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a60560a22f1fca567e65d5e880572286522449df466c632b3570243f989cce3803f465e41e610c20d80421d653a5120000008213b704c7fb082ff27590678ef9f190bae979babc7041d860420c5664ba7921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202fd28f28381aab144a5d429a04a689b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2f05dd3318271a1f5f8528f227e79c1388dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eefc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44060bebc2420aed92fa9b6578b4779415d97b9a6d6d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a7288afe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f48fe4eae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf02b98a269b891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efedfd71af9444e197f47e866101496f42355bc7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615f7084a607a7eceb6243378e0610060f02cca4051c2f001edb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c4e15a7b6eb65ca8104e1b4da1fbb77ab2fc043aead87c32ab875ee7c2e7b7019c902cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad948741b2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd73643de50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c1023bf70cc77737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73c497579773767075428067e7f16f4dde374f8211fef42cb468e623daf60b3569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40426db6fe29068c0ca3d3414442e863a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae44369ddb4581c55925d0f6f1ba471eba281f259152f85a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e05130935e00785ec27e923911fab964c271556527697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9ddbfb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e7027132f2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afae5336651b1b9bd522d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee29165895ac4b008e595f437491d87abed02cefcd9db53d94d02dae17b118e5d6787463181f4b87c10772d2b13f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76d57227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f84fad6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b3110b932a4d02da711b757fe43c06d21e35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc238a081ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7348663a52190202c7af288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4908b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cb0b3e35cb80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c60edddab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec014508e5247d33ae6c962d35603ff8454c16f8342856935125102bb784ed714887071f3d998efdd9923c954ab6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee658e4cb5e930ed624806c43a006dc9336d07c2b8081c128ad2706f48261f7897084c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da3932ba5c04c24a560ad80a3ce654578376e599aff3565b1d531f30912b99e6619ebe93cc0b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e6491953264d2700c838fa2c7b34252600c9654e502dcea39cb6bc3eb69992e234b4ca7db2f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c7e36bb2fc4c40e9cf96f06817fb903729a7db6ff957697c9ede7885d94ff1aa70826ad01a9b03c37b0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f9000", 0x1010}}, 0x1b7) read$FUSE(r6, &(0x7f00000040c0)={0x2020}, 0x2020) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$nl80211(0x0, r7) sendmsg$NL80211_CMD_REQ_SET_REG(r7, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000540)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="01002cbd7000fbdbdf251b00000008009a00020000000400cc00"], 0x20}, 0x1, 0x0, 0x0, 0x4040080}, 0x20000090) 1.056890364s ago: executing program 2 (id=3842): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000001240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="54000000020601080a0000000000000000000000100003006269746d61703a706f72740005000400000000000900020073797a30000000000500050005000000058e93a25467cfc8fc93000100060000000c0007800600044000000000"], 0x54}}, 0x0) 1.036445858s ago: executing program 3 (id=3843): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f00000000c0), 0x50000, 0x0) r2 = syz_io_uring_setup(0x1656, &(0x7f0000000100)={0x0, 0xd3ce, 0x2000, 0x1, 0x0, 0x0, r1}, &(0x7f0000000180)=0x0, &(0x7f00000001c0)=0x0) r5 = syz_init_net_socket$ax25(0x3, 0x2, 0xc4) ioctl$SIOCAX25CTLCON(r5, 0x89e8, &(0x7f0000001d00)={@default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @bcast, 0x5, 0x2000000000000005, 0x2, [@bcast, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @default, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}]}) syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3}) io_uring_enter(r2, 0x2def, 0x4000, 0x0, 0x0, 0x0) r6 = socket(0x11, 0x80a, 0x1) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000300)={'veth1_to_bridge\x00'}) setsockopt$RDS_RECVERR(r6, 0x114, 0x5, &(0x7f0000000080), 0x4) sendto$inet6(r0, &(0x7f0000000180)="1a", 0x34000, 0x0, &(0x7f0000000480)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) 1.025489429s ago: executing program 4 (id=3844): sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000050000000000000000000024000a20000000000a1f000000000000000000010000000900010073797a300000000058000000030a0104000000000000000001000000090003803d2175fbe782c2002c00048008000240172af2e40800014000000003080002401c791e7108000240423930ce08000140000000030900010073797a300000000088000000060a010400000000000000000100000008000b400000000014000480100001800b0001006e756d67656e00000900010073797a30000000004c0004804800018008000100666962003c000280080003400000000c"], 0x122}}, 0x0) r0 = openat$cuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x57eb}, 0x94) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94) write$FUSE_NOTIFY_INVAL_ENTRY(r0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="42000000030000000000000000000000000000000000000021"], 0x42) socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet_mptcp(0x2, 0x1, 0x106) getsockopt$kcm_KCM_RECV_DISABLE(r1, 0x6, 0x1a, 0x0, 0x20000000) setsockopt$inet_tcp_int(r1, 0x6, 0x5, &(0x7f00000000c0)=0x3ff, 0x4) r2 = socket$igmp(0x2, 0x3, 0x2) getsockopt$inet_mtu(r2, 0x0, 0xa, &(0x7f0000000080), &(0x7f00000000c0)=0x1) (fail_nth: 4) bpf$MAP_CREATE(0x0, 0x0, 0x0) syz_emit_ethernet(0x46, &(0x7f0000000000)={@broadcast, @empty, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x10, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x1, 0x0, 0x2, 0xfffffffe}}}}}}, 0x0) ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000300)={0xdf, 0x0, 0x100000}) syz_kvm_setup_syzos_vm$x86(0xffffffffffffffff, &(0x7f0000bff000/0x400000)=nil) syz_emit_ethernet(0x5e, &(0x7f0000002e40)={@local, @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "7428dd", 0x28, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_na={0x89, 0x0, 0x0, 0x0, '\x00', @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [{0x0, 0x2, "122b472e41e24b11f34b608816e5"}]}}}}}}, 0x0) pipe2$watch_queue(&(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) mprotect(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0) ioctl$IOC_WATCH_QUEUE_SET_FILTER(r3, 0x5761, &(0x7f0000000f40)={0x5, 0x0, [{0x8000, 0x7, 0xfffff714, [0x9, 0x9, 0x1af, 0xb9a2, 0x1, 0x10, 0x8, 0x2]}, {0xfffff78a, 0x6, 0x9, [0x9f7, 0x3, 0x1, 0x0, 0x4, 0xf, 0x8, 0x200]}, {0x1ff, 0x9, 0x1ff, [0x94f, 0x1, 0x73e5d9cb, 0x9, 0x0, 0x9, 0xfffffff7, 0x400]}, {0x5, 0x7fffffff, 0xf, [0xbf, 0x100, 0x0, 0x10000, 0x8001, 0xca, 0x100, 0xf08b9bb]}, {0x2e, 0x3, 0x8, [0x8, 0x6, 0xb1, 0x7, 0x7, 0x0, 0x100, 0x4]}]}) 974.80092ms ago: executing program 1 (id=3845): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) preadv2(0xffffffffffffffff, 0x0, 0x0, 0x8, 0x0, 0x31) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000007d000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x2}, 0x94) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7) openat$sequencer(0xffffffffffffff9c, &(0x7f00000001c0), 0x80280, 0x0) r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r1, &(0x7f0000000840)=[{0x0}, {0x0}], 0x2) syz_io_uring_setup(0x1382, 0x0, &(0x7f0000000340)=0x0, &(0x7f0000000180)) r3 = socket$kcm(0x21, 0x2, 0x2) sendmsg$kcm(r3, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="1800000000000000100100000a0000002900"], 0x18}, 0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, 0x0, 0x0, 0x4) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r4 = syz_open_dev$usbfs(&(0x7f0000000180), 0x205, 0x2581) r5 = fcntl$dupfd(r4, 0x0, r4) ioctl$USBDEVFS_SUBMITURB(r5, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x80, 0x0, 0x0, 0x0, 0x7995}, 0xfff7, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0}) ioctl$FS_IOC_GETFSLABEL(r4, 0x81009431, &(0x7f00000003c0)) ioctl$USBDEVFS_REAPURBNDELAY(r5, 0x4004550d, 0x0) 836.254155ms ago: executing program 1 (id=3846): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='xprtrdma_inline_thresh\x00', r0, 0x0, 0x3}, 0x18) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f00000001c0)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128\x00'}, 0x58) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d05c164a534308", 0x10) r3 = accept4(r2, 0x0, 0x0, 0x0) recvmmsg(r3, &(0x7f0000000d00)=[{{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000340)=""/149, 0x95}], 0x1}, 0x3}], 0x1, 0x10000, 0x0) r4 = socket(0x400000000010, 0x3, 0x0) r5 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x3}}}]}, 0x38}}, 0x0) sendmsg$nl_route_sched(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000e40)=@newtfilter={0x84, 0x2c, 0xd27, 0x70bd2d, 0x25dfdc00, {0x0, 0x0, 0x0, r6, {0x0, 0x3}, {}, {0xfff3, 0xffe0}}, [@filter_kind_options=@f_matchall={{0xd}, {0x50, 0x2, [@TCA_MATCHALL_ACT={0x4c, 0x2, [@m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0xd, 0xd0ea, 0x20000001, 0x3, 0x4}, 0x1}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x3, 0x3}}}}]}]}}]}, 0x84}, 0x1, 0x0, 0x0, 0x50}, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000580)={{0x1, 0xffffffffffffffff}, &(0x7f0000000500), &(0x7f0000000540)=r0}, 0x20) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000640)={{0x1, 0xffffffffffffffff}, &(0x7f00000005c0), &(0x7f0000000600)='%-010d \x00'}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x1d, 0x10, &(0x7f0000000400)=@raw=[@jmp={0x5, 0x1, 0x6, 0x5, 0x3, 0xfffffffffffffff8}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x365}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, 0x1}}, @map_idx_val={0x18, 0x4, 0x6, 0x0, 0xe, 0x0, 0x0, 0x0, 0x8000}], &(0x7f00000000c0)='GPL\x00', 0x9, 0x0, 0x0, 0x40f00, 0x2c, '\x00', r6, @lsm, 0xffffffffffffffff, 0x8, &(0x7f0000000480)={0x8, 0x3}, 0x8, 0x10, &(0x7f00000004c0)={0x5, 0x8, 0x4, 0x80000000}, 0x10, 0xffffffffffffffff, 0xffffffffffffffff, 0x9, &(0x7f0000000680)=[r7, r8, r3, 0x1, 0x1], &(0x7f00000006c0)=[{0x1, 0x2, 0x4, 0xa}, {0x3, 0x3, 0xd, 0x3}, {0x3, 0x2, 0xf, 0x9}, {0x2, 0x5, 0x1, 0x2}, {0x2, 0x1, 0xb, 0x7}, {0x4, 0x2, 0xf}, {0x4, 0x5, 0x2, 0x5}, {0x4, 0x2, 0x3, 0x2}, {0x4, 0x2, 0x1, 0x18}], 0x10, 0x3}, 0x94) ioctl$int_in(r3, 0x5452, &(0x7f00000013c0)=0xc7f) r9 = epoll_create1(0x80000) epoll_ctl$EPOLL_CTL_ADD(r9, 0x1, r3, &(0x7f0000000040)={0xc000200a}) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)={0x14, 0x0, 0x29, 0x70bd27, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x4040810) sendmmsg$unix(r1, 0x0, 0x0, 0x0) 785.470667ms ago: executing program 3 (id=3847): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) (async) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) (async) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) (async) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) (async) syz_genetlink_get_family_id$ethtool(&(0x7f0000000d00), 0xffffffffffffffff) (async) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_FEATURES_SET(r4, 0x0, 0x2404c004) sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000000480)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000440)={0x0}, 0x1, 0x0, 0x0, 0x40000}, 0x4) (async) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00'}, 0x10) (async) r5 = fsopen(&(0x7f0000000040)='afs\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r5, 0x1, &(0x7f0000000300)='source', &(0x7f00000000c0)='%/,:', 0x0) (async) mknod(&(0x7f0000000080)='./bus\x00', 0x1000, 0x0) (async) r6 = open(&(0x7f0000000000)='./bus\x00', 0x60102, 0xc) ioctl$SNDCTL_SEQ_RESET(r6, 0x5100) fcntl$setstatus(r6, 0x4, 0x6800) (async) read$FUSE(r6, &(0x7f0000000300)={0x2020}, 0x2020) (async) bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x1, 0xe, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x29}, 0x48) 491.590137ms ago: executing program 2 (id=3848): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mount$overlay(0x20, &(0x7f00000000c0)='./bus\x00', &(0x7f00000020c0), 0x0, &(0x7f0000002100)={[{@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) 453.342131ms ago: executing program 4 (id=3849): sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000050000000000000000000024000a20000000000a1f000000000000000000010000000900010073797a300000000058000000030a0104000000000000000001000000090003803d2175fbe782c2002c00048008000240172af2e40800014000000003080002401c791e7108000240423930ce08000140000000030900010073797a300000000088000000060a010400000000000000000100000008000b400000000014000480100001800b0001006e756d67656e00000900010073797a30000000004c0004804800018008000100666962003c000280080003400000000c"], 0x122}}, 0x4000880) r0 = openat$cuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x57eb}, 0x94) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94) write$FUSE_NOTIFY_INVAL_ENTRY(r0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="42000000030000000000000000000000000000000000000021"], 0x42) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$inet_mptcp(0x2, 0x1, 0x106) getsockopt$kcm_KCM_RECV_DISABLE(r2, 0x6, 0x1a, 0x0, 0x20000000) setsockopt$inet_tcp_int(r2, 0x6, 0x5, &(0x7f00000000c0)=0x3ff, 0x4) r3 = socket$igmp(0x2, 0x3, 0x2) getsockopt$inet_mtu(r3, 0x0, 0xa, &(0x7f0000000080), &(0x7f00000000c0)=0x1) bpf$MAP_CREATE(0x0, 0x0, 0x0) syz_emit_ethernet(0x46, &(0x7f0000000000)={@broadcast, @empty, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x10, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x1, 0x0, 0x2, 0xfffffffe}}}}}}, 0x0) ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000300)={0xdf, 0x0, 0x100000}) syz_kvm_setup_syzos_vm$x86(0xffffffffffffffff, &(0x7f0000bff000/0x400000)=nil) syz_emit_ethernet(0x5e, &(0x7f0000002e40)={@local, @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "7428dd", 0x28, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_na={0x89, 0x0, 0x0, 0x0, '\x00', @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [{0x0, 0x2, "122b472e41e24b11f34b608816e5"}]}}}}}}, 0x0) getsockopt$IP_VS_SO_GET_DESTS(r1, 0x0, 0x484, &(0x7f0000000380)=""/45, &(0x7f00000003c0)=0x2d) pipe2$watch_queue(&(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) mprotect(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0) ioctl$IOC_WATCH_QUEUE_SET_FILTER(r4, 0x5761, &(0x7f0000000f40)={0x5, 0x0, [{0x8000, 0x7, 0xfffff714, [0x9, 0x9, 0x1af, 0xb9a2, 0x1, 0x10, 0x8, 0x2]}, {0xfffff78a, 0x6, 0x9, [0x9f7, 0x3, 0x1, 0x0, 0x4, 0xf, 0x8, 0x200]}, {0x1ff, 0x9, 0x1ff, [0x94f, 0x1, 0x73e5d9cb, 0x9, 0x0, 0x9, 0xfffffff7, 0x400]}, {0x5, 0x7fffffff, 0xf, [0xbf, 0x100, 0x0, 0x10000, 0x8001, 0xca, 0x100, 0xf08b9bb]}, {0x2e, 0x3, 0x8, [0x8, 0x6, 0xb1, 0x7, 0x7, 0x0, 0x100, 0x4]}]}) 261.761376ms ago: executing program 2 (id=3850): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000080)=@framed, 0x0}, 0x94) r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0) writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)}, {&(0x7f0000000100)="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", 0xff}], 0x2) 261.208018ms ago: executing program 4 (id=3851): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x5d9400, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x64841, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000000600)) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000880)=ANY=[]) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) capset(&(0x7f0000000100)={0x20071026}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x81, 0xfffffffb}) r5 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000003480)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0) read$FUSE(r5, &(0x7f00000034c0)={0x2020}, 0xfffffffffffffe4a) ioctl$VIDIOC_SUBDEV_S_CROP(r5, 0xc038563c, &(0x7f00000000c0)={0x0, 0x0, {0x1ee, 0x1, 0x9, 0x7}}) r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL802154_CMD_GET_SEC_LEVEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000180)=ANY=[@ANYBLOB="3c2acade", @ANYRES16=r6, @ANYBLOB="000427bd3000fedbdf251f0000000c00060001000000010000000c00060001000000010000000c00060000000000000000000c0006000300000003000000"], 0x44}, 0x1, 0x0, 0x0, 0x8800}, 0x4000000) syz_genetlink_get_family_id$nfc(&(0x7f0000000340), 0xffffffffffffffff) r7 = syz_open_dev$tty1(0xc, 0x4, 0x1) r8 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)=ANY=[@ANYBLOB="50000000100001040100000000000000000000eba830d7762d9f00", @ANYRES32=0x0, @ANYBLOB="08000000008000001c0012800b00010967656e65766500000c00028005000a00000000001400350067656e65766531000000000000000000"], 0x50}, 0x1, 0x0, 0x0, 0x24000004}, 0x4048040) ioctl$KDSETMODE(r7, 0x4b45, 0x1) syz_open_dev$vbi(0x0, 0x1, 0x2) write$binfmt_script(0xffffffffffffffff, 0x0, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000240)="c4c149fa030f00da36f30faeefb948060000b899000000ba000000000f309a000000804a000fc7af000000000f01c30fc7595866ba6100ecc4e3694a6add9c"}], 0x1, 0x10, 0x0, 0xfffffffffffffdc7) r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x44103, 0x0) ioctl$TUNSETIFF(r9, 0x400454ca, &(0x7f0000000200)={'macvlan1\x00', 0x100}) ioctl$TUNSETLINK(r9, 0x400454cd, 0x308) ioctl$KVM_RUN(r5, 0xae80, 0x0) r10 = socket$netlink(0x10, 0x3, 0x0) getsockopt$sock_cred(r10, 0x1, 0x11, &(0x7f00000001c0), &(0x7f0000000080)=0xc) sendmsg$netlink(r10, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000000800)=ANY=[@ANYBLOB="2c00000010000000400008000100a0e2e2a55689018351e89ccc1aac2c5427fbaf3151a3f1cac4bce057fbcc249beddfd06508a7ed8272480d7213c84875619073e9cbcf28adb442b65eb3a17e", @ANYBLOB="1a73379ca84f498423bc70b2e3aa4f9450879dc59aede5f6d5a23306b553722e54b3eefc8eef4e936698a41aad89ea71bcc42079120d6dad9eca0b3a8a3a229194a5b236c1674c4b5842e78c10", @ANYBLOB="0b000280976b6408686030000500bf0813000000"], 0x2c}], 0x1, 0x0, 0x0, 0x20000000}, 0xcc000) 87.542083ms ago: executing program 2 (id=3852): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000480), r0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = socket(0x2b, 0x80801, 0x1) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NBD_CMD_CONNECT(r4, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000000100)={0x30, r5, 0x1, 0xffffffff, 0x25dfdbfc, {}, [@NBD_ATTR_SOCKETS={0x10, 0x7, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, {0x8, 0x1, r3}}]}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x7fff}]}, 0x30}}, 0x20000000) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff}) r8 = socket(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000240)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000580)=@newqdisc={0x1c4, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r9, {}, {0xf, 0xffe0}}, [@TCA_STAB={0x1a0, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x9, 0x5, 0x800, 0xffffffff, 0x0, 0x1, 0x5, 0x9}}, {0x16, 0x2, [0x778, 0xd1, 0x5, 0x2, 0x5, 0x9, 0x7, 0xcb, 0x0]}}, {{0x1c, 0x1, {0x40, 0x1f, 0x7, 0xbd, 0x0, 0x51, 0x6, 0x4}}, {0xc, 0x2, [0x1000, 0x4, 0x4, 0x4]}}, {{0x1c, 0x1, {0x2, 0xff, 0x804, 0x0, 0x1, 0x8, 0x5, 0xa}}, {0x18, 0x2, [0xc7, 0x4, 0x4, 0x4, 0x3ff, 0x6, 0x3, 0x6, 0x2, 0x9]}}, {{0x1c, 0x1, {0x8, 0x1, 0x0, 0x7, 0x1, 0xfff, 0x8, 0x4}}, {0xc, 0x2, [0xffff, 0x239, 0x6, 0x9]}}, {{0x1c, 0x1, {0x2, 0x4, 0x1, 0xfffffffa, 0x0, 0x6, 0x81, 0x5}}, {0xe, 0x2, [0x8e3, 0x5, 0x0, 0x2, 0x1]}}, {{0x1c, 0x1, {0xb1, 0x8, 0x1, 0x5, 0x0, 0x5, 0x8, 0xa}}, {0x18, 0x2, [0x2, 0x6, 0x7, 0xde, 0x7ff, 0x3, 0x0, 0x1, 0xf0ee, 0xfff3]}}, {{0x1c, 0x1, {0x1, 0x3, 0x6, 0x4, 0x1, 0x4, 0x3, 0x1}}, {0x6, 0x2, [0x2]}}, {{0x1c, 0x1, {0x9, 0xa, 0x8, 0x8888, 0x2, 0x4e2, 0x2, 0xa}}, {0x18, 0x2, [0x6, 0x2, 0x9, 0x10, 0x7, 0x1, 0x7, 0x101, 0x7ff, 0x691]}}, {{0x1c, 0x1, {0x41, 0x1, 0xfffc, 0x2, 0x1, 0x9, 0x20000000, 0x5}}, {0xe, 0x2, [0x57, 0x7, 0x9, 0x3, 0x8]}}]}]}, 0x1c4}}, 0x0) r10 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x4) r11 = dup(r10) ioctl$SIOCSIFHWADDR(r11, 0x400442c9, &(0x7f0000000080)={'macsec0\x00', @dev}) ioctl$IOMMU_VFIO_IOAS$GET(0xffffffffffffffff, 0x3b88, &(0x7f0000000280)={0xc, 0x0}) ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_REPLACE(r11, 0x3ba0, &(0x7f00000002c0)={0x48, 0xa, 0x0, 0x0, r12}) sendmsg$NBD_CMD_CONNECT(r2, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x58, r5, 0x1, 0x70bd2d, 0x25dfdbfb, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_SOCKETS={0x28, 0x7, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, {0x8, 0x1, r6}}, {0xc, 0x1, 0x0, 0x1, {0x8, 0x1, r7}}, {0xc, 0x1, 0x0, 0x1, {0x8, 0x1, r8}}]}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x102}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}]}, 0x58}, 0x1, 0x0, 0x0, 0x40}, 0x801) syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000000), r2) sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)={0x34, r1, 0x207, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_MLSLVLLST={0x4}, @NLBL_CIPSOV4_A_TAGLST={0xc, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x1}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x1}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x200040c0}, 0x880) 0s ago: executing program 4 (id=3853): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_usb_connect$cdc_ecm(0x1, 0x56, &(0x7f0000000080)=ANY=[@ANYBLOB="12010102020000082505a1a4400001020301090244000101812002090400c303020600030524ab"], &(0x7f0000000400)={0x0, 0x0, 0x5, 0x0, 0x1, [{0x0, 0x0}]}) syz_usb_connect$hid(0x5, 0x36, 0x0, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) r2 = bpf$MAP_CREATE(0x0, 0x0, 0x48) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x20000023896) ioctl$BTRFS_IOC_SET_FEATURES(r2, 0x40309439, &(0x7f00000000c0)={0x2}) close(r1) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000dfff75390000000000000000850000007d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='io_uring_register\x00', r3}, 0x10) r4 = io_uring_setup(0x6b67, &(0x7f0000000000)={0x0, 0x2003, 0x40, 0xfffffffe, 0x276}) io_uring_register$IORING_REGISTER_RESTRICTIONS(r4, 0xb, &(0x7f0000001340), 0x0) r5 = syz_open_procfs(0x0, &(0x7f0000000380)='clear_refs\x00') writev(r5, &(0x7f0000000100)=[{&(0x7f0000000000)='4', 0x1}], 0x1) kernel console output (not intermixed with test programs): T30] audit: type=1326 audit(1755576230.324:453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14408 comm="syz.3.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1117.441079][ T30] audit: type=1326 audit(1755576230.324:454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14408 comm="syz.3.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1117.634281][ T30] audit: type=1326 audit(1755576230.324:455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14408 comm="syz.3.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1118.052657][T14420] nfs4: Unknown parameter '@' [ 1118.403073][ T30] audit: type=1326 audit(1755576230.324:456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14408 comm="syz.3.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1118.426403][ T30] audit: type=1326 audit(1755576230.324:457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14408 comm="syz.3.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1118.451331][ T30] audit: type=1326 audit(1755576230.324:458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14408 comm="syz.3.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1118.814363][ T30] audit: type=1326 audit(1755576230.324:459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14408 comm="syz.3.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1118.892714][ T30] audit: type=1326 audit(1755576230.324:460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14408 comm="syz.3.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=224 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1118.924763][ T30] audit: type=1326 audit(1755576230.324:461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14408 comm="syz.3.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1120.171837][T14450] overlayfs: failed to clone lowerpath [ 1121.526471][T14459] Device name cannot be null; rc = [-22] [ 1124.011642][T14472] nfs4: Unknown parameter 'tc' [ 1127.814082][ T30] kauditd_printk_skb: 12 callbacks suppressed [ 1127.814102][ T30] audit: type=1326 audit(1755576241.404:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14488 comm="syz.4.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b1298ebe9 code=0x7ffc0000 [ 1128.325055][ T30] audit: type=1326 audit(1755576241.404:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14488 comm="syz.4.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b1298ebe9 code=0x7ffc0000 [ 1128.444076][ T30] audit: type=1326 audit(1755576241.414:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14488 comm="syz.4.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1b1298ebe9 code=0x7ffc0000 [ 1128.493743][ T30] audit: type=1326 audit(1755576241.414:477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14488 comm="syz.4.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b1298ebe9 code=0x7ffc0000 [ 1128.558116][ T30] audit: type=1326 audit(1755576241.414:478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14488 comm="syz.4.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b1298ebe9 code=0x7ffc0000 [ 1128.636530][ T30] audit: type=1326 audit(1755576241.414:479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14488 comm="syz.4.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f1b1298ebe9 code=0x7ffc0000 [ 1128.667388][ T30] audit: type=1326 audit(1755576241.414:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14488 comm="syz.4.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b1298ebe9 code=0x7ffc0000 [ 1128.767496][ T30] audit: type=1326 audit(1755576241.414:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14488 comm="syz.4.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b1298ebe9 code=0x7ffc0000 [ 1129.150518][ T30] audit: type=1326 audit(1755576241.424:482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14488 comm="syz.4.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f1b1298ebe9 code=0x7ffc0000 [ 1129.175685][ T30] audit: type=1326 audit(1755576241.424:483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14488 comm="syz.4.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b1298ebe9 code=0x7ffc0000 [ 1129.266282][T14514] Device name cannot be null; rc = [-22] [ 1133.176860][T14556] Device name cannot be null; rc = [-22] [ 1136.949641][T14589] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2256'. [ 1138.743541][ T30] kauditd_printk_skb: 4 callbacks suppressed [ 1138.743560][ T30] audit: type=1326 audit(1755576252.584:488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14592 comm="syz.2.2259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f155a98ebe9 code=0x7ffc0000 [ 1138.928277][ T30] audit: type=1326 audit(1755576252.584:489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14592 comm="syz.2.2259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f155a98ebe9 code=0x7ffc0000 [ 1139.714103][ T30] audit: type=1326 audit(1755576252.664:490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14592 comm="syz.2.2259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f155a98ebe9 code=0x7ffc0000 [ 1139.736404][ T30] audit: type=1326 audit(1755576252.664:491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14592 comm="syz.2.2259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f155a98ebe9 code=0x7ffc0000 [ 1139.770674][ T30] audit: type=1326 audit(1755576252.664:492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14592 comm="syz.2.2259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f155a98ebe9 code=0x7ffc0000 [ 1139.811629][ T30] audit: type=1326 audit(1755576252.674:493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14592 comm="syz.2.2259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f155a98ebe9 code=0x7ffc0000 [ 1140.424490][ T30] audit: type=1326 audit(1755576252.674:494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14592 comm="syz.2.2259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f155a98ebe9 code=0x7ffc0000 [ 1140.532015][ T30] audit: type=1326 audit(1755576252.684:495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14592 comm="syz.2.2259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f155a98ebe9 code=0x7ffc0000 [ 1140.891945][ T30] audit: type=1326 audit(1755576252.704:496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14592 comm="syz.2.2259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f155a98ebe9 code=0x7ffc0000 [ 1140.995336][ T30] audit: type=1326 audit(1755576252.714:497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14592 comm="syz.2.2259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f155a98ebe9 code=0x7ffc0000 [ 1143.045156][T14649] overlayfs: overlapping lowerdir path [ 1149.133380][T14707] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2291'. [ 1154.098303][T14758] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2305'. [ 1157.013826][T14787] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2313'. [ 1157.055533][T14785] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2314'. [ 1159.491328][T14804] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2318'. [ 1167.825429][ T30] kauditd_printk_skb: 1 callbacks suppressed [ 1167.825447][ T30] audit: type=1326 audit(1755576280.674:499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14880 comm="syz.1.2338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4fe78ebe9 code=0x7ffc0000 [ 1168.508266][ T30] audit: type=1326 audit(1755576280.674:500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14880 comm="syz.1.2338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4fe78ebe9 code=0x7ffc0000 [ 1168.533981][ T30] audit: type=1326 audit(1755576280.674:501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14880 comm="syz.1.2338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff4fe78ebe9 code=0x7ffc0000 [ 1168.646595][ T30] audit: type=1326 audit(1755576280.674:502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14880 comm="syz.1.2338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4fe78ebe9 code=0x7ffc0000 [ 1169.714262][ T30] audit: type=1326 audit(1755576280.674:503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14880 comm="syz.1.2338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4fe78ebe9 code=0x7ffc0000 [ 1169.737944][ T30] audit: type=1326 audit(1755576280.674:504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14880 comm="syz.1.2338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7ff4fe78ebe9 code=0x7ffc0000 [ 1169.760714][ T30] audit: type=1326 audit(1755576280.674:505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14880 comm="syz.1.2338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4fe78ebe9 code=0x7ffc0000 [ 1169.854512][ T30] audit: type=1326 audit(1755576280.684:506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14880 comm="syz.1.2338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4fe78ebe9 code=0x7ffc0000 [ 1170.109601][ T30] audit: type=1326 audit(1755576280.684:507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14880 comm="syz.1.2338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7ff4fe78ebe9 code=0x7ffc0000 [ 1170.135845][ T30] audit: type=1326 audit(1755576280.684:508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14880 comm="syz.1.2338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4fe78ebe9 code=0x7ffc0000 [ 1170.817718][T14897] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2341'. [ 1173.444164][ T30] kauditd_printk_skb: 4 callbacks suppressed [ 1173.444216][ T30] audit: type=1326 audit(1755576287.254:513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14920 comm="syz.2.2348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f155a98ebe9 code=0x7ffc0000 [ 1175.175631][ T30] audit: type=1326 audit(1755576287.254:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14920 comm="syz.2.2348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f155a98ebe9 code=0x7ffc0000 [ 1175.198044][ T30] audit: type=1326 audit(1755576287.254:515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14920 comm="syz.2.2348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f155a98ebe9 code=0x7ffc0000 [ 1175.224632][ T30] audit: type=1326 audit(1755576287.254:516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14920 comm="syz.2.2348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f155a98ebe9 code=0x7ffc0000 [ 1175.248163][ T30] audit: type=1326 audit(1755576287.254:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14920 comm="syz.2.2348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f155a98ebe9 code=0x7ffc0000 [ 1175.271163][ T30] audit: type=1326 audit(1755576287.254:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14920 comm="syz.2.2348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f155a98ebe9 code=0x7ffc0000 [ 1175.294613][ T30] audit: type=1326 audit(1755576287.254:519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14920 comm="syz.2.2348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f155a98ebe9 code=0x7ffc0000 [ 1175.317860][ T30] audit: type=1326 audit(1755576287.254:520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14920 comm="syz.2.2348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f155a98ebe9 code=0x7ffc0000 [ 1175.914084][ T30] audit: type=1326 audit(1755576287.254:521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14920 comm="syz.2.2348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=224 compat=0 ip=0x7f155a98ebe9 code=0x7ffc0000 [ 1175.938722][ T30] audit: type=1326 audit(1755576287.254:522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14920 comm="syz.2.2348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f155a98ebe9 code=0x7ffc0000 [ 1177.233581][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 1177.245606][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 1191.523618][T15062] overlayfs: failed to clone upperpath [ 1194.017874][T15072] overlayfs: failed to clone upperpath [ 1196.219307][T15105] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2393'. [ 1197.345000][T15113] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2396'. [ 1200.355085][T15145] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2404'. [ 1201.344524][T15151] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2406'. [ 1201.768148][T15154] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2407'. [ 1202.170246][T15160] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2408'. [ 1202.638203][T15162] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2409'. [ 1203.563007][T15171] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2412'. [ 1204.395022][T15181] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2413'. [ 1204.879712][T15177] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2414'. [ 1205.059790][T15175] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2415'. [ 1205.244256][ T30] kauditd_printk_skb: 1 callbacks suppressed [ 1205.244298][ T30] audit: type=1326 audit(1755576319.024:524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15186 comm="syz.3.2417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1205.654123][ T30] audit: type=1326 audit(1755576319.024:525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15186 comm="syz.3.2417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1205.677682][ T30] audit: type=1326 audit(1755576319.024:526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15186 comm="syz.3.2417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1205.755374][ T30] audit: type=1326 audit(1755576319.024:527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15186 comm="syz.3.2417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1206.114838][ T30] audit: type=1326 audit(1755576319.024:528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15186 comm="syz.3.2417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1206.216100][T15195] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2418'. [ 1206.404434][ T30] audit: type=1326 audit(1755576319.024:529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15186 comm="syz.3.2417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1206.406794][T15202] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2422'. [ 1206.854713][T15204] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2420'. [ 1207.376293][ T30] audit: type=1326 audit(1755576319.024:530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15186 comm="syz.3.2417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1208.511423][ T30] audit: type=1326 audit(1755576319.024:531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15186 comm="syz.3.2417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1208.538290][ T30] audit: type=1326 audit(1755576319.024:532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15186 comm="syz.3.2417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1208.614506][ T30] audit: type=1326 audit(1755576319.024:533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15186 comm="syz.3.2417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1208.828543][T15218] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2424'. [ 1209.261034][T15221] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2425'. [ 1210.271761][T15233] overlayfs: failed to clone upperpath [ 1212.483666][ T30] kauditd_printk_skb: 4 callbacks suppressed [ 1212.483681][ T30] audit: type=1326 audit(1755576325.774:538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15245 comm="syz.3.2430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1212.791999][ T30] audit: type=1326 audit(1755576325.774:539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15245 comm="syz.3.2430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1212.854668][T15253] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2431'. [ 1213.020559][ T30] audit: type=1326 audit(1755576325.774:540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15245 comm="syz.3.2430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1213.139741][ T30] audit: type=1326 audit(1755576325.774:541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15245 comm="syz.3.2430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1213.276844][ T30] audit: type=1326 audit(1755576325.774:542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15245 comm="syz.3.2430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1213.305477][ T30] audit: type=1326 audit(1755576325.784:543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15245 comm="syz.3.2430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1213.355735][ T30] audit: type=1326 audit(1755576325.784:544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15245 comm="syz.3.2430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1213.480201][T15259] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2434'. [ 1213.804598][ T30] audit: type=1326 audit(1755576325.784:545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15245 comm="syz.3.2430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1213.833800][T15256] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2433'. [ 1213.867078][ T30] audit: type=1326 audit(1755576325.784:546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15245 comm="syz.3.2430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1213.919292][ T30] audit: type=1326 audit(1755576325.784:547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15245 comm="syz.3.2430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1214.134725][T15265] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2435'. [ 1214.947327][T15278] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2437'. [ 1216.659928][T15281] overlayfs: failed to clone upperpath [ 1217.477267][T15291] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2441'. [ 1217.695312][T15294] overlayfs: failed to clone upperpath [ 1218.285066][T15299] overlayfs: failed to clone upperpath [ 1218.423051][ T30] kauditd_printk_skb: 4 callbacks suppressed [ 1218.423068][ T30] audit: type=1326 audit(1755576332.274:552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15298 comm="syz.1.2444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4fe78ebe9 code=0x7ffc0000 [ 1218.513558][ T30] audit: type=1326 audit(1755576332.274:553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15298 comm="syz.1.2444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4fe78ebe9 code=0x7ffc0000 [ 1218.535986][ T30] audit: type=1326 audit(1755576332.274:554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15298 comm="syz.1.2444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff4fe78ebe9 code=0x7ffc0000 [ 1218.557665][ T30] audit: type=1326 audit(1755576332.274:555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15298 comm="syz.1.2444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4fe78ebe9 code=0x7ffc0000 [ 1218.579781][ T30] audit: type=1326 audit(1755576332.274:556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15298 comm="syz.1.2444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4fe78ebe9 code=0x7ffc0000 [ 1218.601548][ T30] audit: type=1326 audit(1755576332.274:557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15298 comm="syz.1.2444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7ff4fe78ebe9 code=0x7ffc0000 [ 1218.648536][ T30] audit: type=1326 audit(1755576332.274:558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15298 comm="syz.1.2444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4fe78ebe9 code=0x7ffc0000 [ 1218.854807][T15307] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2447'. [ 1219.097445][ T30] audit: type=1326 audit(1755576332.274:559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15298 comm="syz.1.2444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4fe78ebe9 code=0x7ffc0000 [ 1219.535875][ T30] audit: type=1326 audit(1755576332.274:560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15298 comm="syz.1.2444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7ff4fe78ebe9 code=0x7ffc0000 [ 1219.677767][ T30] audit: type=1326 audit(1755576332.274:561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15298 comm="syz.1.2444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4fe78ebe9 code=0x7ffc0000 [ 1220.090505][T15317] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2449'. [ 1221.004777][T15324] overlayfs: failed to clone upperpath [ 1221.303045][T15329] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2452'. [ 1221.714517][T15333] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2453'. [ 1222.002476][T15335] overlayfs: failed to clone upperpath [ 1222.215908][T15339] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2454'. [ 1222.519900][T15342] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2456'. [ 1223.173236][T15351] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2459'. [ 1223.598172][T15348] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2458'. [ 1223.685002][T15356] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2461'. [ 1223.701042][T15358] overlayfs: failed to clone upperpath [ 1223.903101][T15363] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2463'. [ 1224.259017][T15362] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2462'. [ 1224.366536][T15366] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2464'. [ 1224.809350][T15369] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2465'. [ 1226.276737][T15377] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2467'. [ 1227.636477][T15390] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2470'. [ 1228.725459][T15397] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2473'. [ 1228.928409][T15401] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2475'. [ 1229.471494][T15409] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2476'. [ 1229.695711][T15410] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2477'. [ 1230.027430][T15414] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2479'. [ 1230.672131][T15421] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2480'. [ 1231.786972][T15430] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2484'. [ 1233.855911][T15450] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2491'. [ 1234.921812][T15460] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2492'. [ 1234.937287][T15462] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2489'. [ 1235.998231][T15471] overlayfs: failed to clone upperpath [ 1237.375948][T15485] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2498'. [ 1237.760029][T15480] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2497'. [ 1237.878437][T15488] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2499'. [ 1238.669586][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 1238.679346][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 1238.786935][T15499] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2503'. [ 1241.582044][T15519] overlayfs: failed to resolve './file1': -2 [ 1241.676119][T15521] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2508'. [ 1241.880583][T15524] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2509'. [ 1242.299346][T15529] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2511'. [ 1245.015597][T15555] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2515'. [ 1247.002334][T15574] Device name cannot be null; rc = [-22] [ 1247.071025][T15575] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2521'. [ 1247.882038][T15585] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2523'. [ 1248.691735][T15587] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2524'. [ 1248.883395][T15600] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2527'. [ 1250.482853][T15606] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2529'. [ 1251.026341][T15610] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2531'. [ 1251.979390][T15623] Device name cannot be null; rc = [-22] [ 1253.316572][T15625] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2536'. [ 1253.666637][T15632] overlayfs: failed to resolve './file1': -2 [ 1254.584123][T15645] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2542'. [ 1255.057646][T15651] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2540'. [ 1256.007281][T15661] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2544'. [ 1256.635246][T15667] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2547'. [ 1259.168047][T15686] overlayfs: failed to resolve './file0': -2 [ 1259.411286][T15690] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2553'. [ 1261.167473][T15696] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2555'. [ 1262.735514][T15709] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2557'. [ 1263.448111][T15711] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2558'. [ 1266.354636][T15742] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2567'. [ 1266.726969][T15748] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2568'. [ 1266.989367][T15751] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2569'. [ 1269.320642][T15768] overlayfs: failed to resolve './file0': -2 [ 1269.554272][T15772] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2573'. [ 1270.146546][T15776] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2576'. [ 1270.538431][T15778] overlayfs: failed to clone upperpath [ 1273.115515][T15796] overlayfs: failed to resolve './file0': -2 [ 1274.197270][T15804] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2583'. [ 1275.030160][T15815] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2588'. [ 1275.326818][T15818] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2589'. [ 1275.888934][T15824] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2591'. [ 1276.075339][T15828] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2592'. [ 1276.432355][T15829] overlayfs: failed to clone upperpath [ 1277.822982][T15836] overlayfs: failed to clone upperpath [ 1278.484246][T15851] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2598'. [ 1280.287637][T15871] overlayfs: failed to clone upperpath [ 1283.075815][T15898] Device name cannot be null; rc = [-22] [ 1283.992719][T15909] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2615'. [ 1286.319925][T15924] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2619'. [ 1287.441137][T15932] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2620'. [ 1288.897492][T15938] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2622'. [ 1289.165246][T15951] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2626'. [ 1290.830332][T15967] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2631'. [ 1291.191543][T15973] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2632'. [ 1292.457187][T15985] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2635'. [ 1293.783377][T16000] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2639'. [ 1294.029852][T15995] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2642'. [ 1294.482018][T16008] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2643'. [ 1294.690725][T16009] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2644'. [ 1295.854524][ T30] kauditd_printk_skb: 4 callbacks suppressed [ 1295.854577][ T30] audit: type=1326 audit(1755576409.104:566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16012 comm="syz.3.2645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1296.037104][T16022] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2647'. [ 1296.350397][ T30] audit: type=1326 audit(1755576409.104:567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16012 comm="syz.3.2645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1296.398184][ T30] audit: type=1326 audit(1755576409.104:568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16012 comm="syz.3.2645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1296.424132][ T30] audit: type=1326 audit(1755576409.104:569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16012 comm="syz.3.2645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1296.446800][ T30] audit: type=1326 audit(1755576409.104:570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16012 comm="syz.3.2645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1296.494043][ T30] audit: type=1326 audit(1755576409.104:571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16012 comm="syz.3.2645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1296.602189][ T30] audit: type=1326 audit(1755576409.104:572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16012 comm="syz.3.2645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1296.641679][ T30] audit: type=1326 audit(1755576409.104:573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16012 comm="syz.3.2645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1296.733718][ T30] audit: type=1326 audit(1755576409.104:574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16012 comm="syz.3.2645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1296.904342][T16030] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2649'. [ 1297.197595][ T30] audit: type=1326 audit(1755576409.114:575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16012 comm="syz.3.2645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1297.695145][T16035] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2652'. [ 1298.702436][T16045] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2655'. [ 1300.108428][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 1300.115603][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 1300.273463][T16073] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2663'. [ 1300.935015][T16077] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2664'. [ 1301.120710][T16081] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2666'. [ 1301.509505][T16084] overlayfs: failed to clone upperpath [ 1302.582364][T16097] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2669'. [ 1303.271994][ T30] kauditd_printk_skb: 18 callbacks suppressed [ 1303.272011][ T30] audit: type=1326 audit(1755576417.124:594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16101 comm="syz.2.2672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f155a98ebe9 code=0x7ffc0000 [ 1303.438192][ T30] audit: type=1326 audit(1755576417.124:595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16101 comm="syz.2.2672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f155a98ebe9 code=0x7ffc0000 [ 1303.889351][ T30] audit: type=1326 audit(1755576417.124:596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16101 comm="syz.2.2672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f155a98ebe9 code=0x7ffc0000 [ 1303.975558][ T30] audit: type=1326 audit(1755576417.124:597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16101 comm="syz.2.2672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f155a98ebe9 code=0x7ffc0000 [ 1303.998515][ T30] audit: type=1326 audit(1755576417.124:598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16101 comm="syz.2.2672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f155a98ebe9 code=0x7ffc0000 [ 1304.243363][ T30] audit: type=1326 audit(1755576417.154:599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16101 comm="syz.2.2672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f155a98ebe9 code=0x7ffc0000 [ 1304.284181][ T30] audit: type=1326 audit(1755576417.154:600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16101 comm="syz.2.2672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f155a98ebe9 code=0x7ffc0000 [ 1304.309241][ T30] audit: type=1326 audit(1755576417.154:601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16101 comm="syz.2.2672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f155a98ebe9 code=0x7ffc0000 [ 1304.349169][ T30] audit: type=1326 audit(1755576417.154:602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16101 comm="syz.2.2672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f155a98ebe9 code=0x7ffc0000 [ 1304.375766][ T30] audit: type=1326 audit(1755576417.154:603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16101 comm="syz.2.2672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f155a98ebe9 code=0x7ffc0000 [ 1305.140152][T16121] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2677'. [ 1305.703779][T16127] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2680'. [ 1305.904115][T16134] overlayfs: failed to clone upperpath [ 1311.714637][T16187] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2696'. [ 1312.116812][T16193] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2698'. [ 1312.374627][T16196] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2697'. [ 1314.793989][T16221] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2705'. [ 1318.062576][T16254] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2715'. [ 1319.362679][T16266] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2717'. [ 1321.088884][T16283] overlayfs: failed to clone upperpath [ 1321.823171][T16287] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2722'. [ 1324.052146][T16309] overlayfs: failed to clone upperpath [ 1324.067616][T16299] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2724'. [ 1325.557891][T16325] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2732'. [ 1325.572425][T16328] overlayfs: failed to clone upperpath [ 1325.838197][T16332] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2734'. [ 1326.596935][T16336] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2736'. [ 1328.595057][T16356] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2741'. [ 1328.759798][T16358] overlayfs: overlapping lowerdir path [ 1329.209919][T16359] overlayfs: failed to clone upperpath [ 1329.458166][T16364] overlayfs: failed to clone upperpath [ 1330.740910][T16377] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2747'. [ 1332.705856][T16402] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2754'. [ 1332.732057][T16404] overlayfs: failed to clone upperpath [ 1332.955603][T16407] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2756'. [ 1333.355426][T16413] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2758'. [ 1333.530025][T16417] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2759'. [ 1334.106249][T16422] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2761'. [ 1334.486153][T16428] overlayfs: failed to clone lowerpath [ 1337.163880][T16440] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2766'. [ 1337.389404][T16446] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2767'. [ 1337.440300][T16447] overlayfs: failed to clone upperpath [ 1337.894120][T16450] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2770'. [ 1338.459722][T16455] overlayfs: failed to clone upperpath [ 1338.838379][T16462] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2774'. [ 1338.937959][T16466] overlayfs: failed to clone lowerpath [ 1341.412231][T16481] overlayfs: failed to resolve './file0': -2 [ 1342.064470][T16480] overlayfs: failed to resolve './file0': -2 [ 1342.660777][T16492] Device name cannot be null; rc = [-22] [ 1343.431306][T16486] overlayfs: failed to resolve './file1': -2 [ 1345.407416][T16512] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2787'. [ 1345.766545][T16518] overlayfs: failed to resolve './file0': -2 [ 1345.841480][T16524] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2789'. [ 1346.094642][T16528] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2791'. [ 1346.530419][T16532] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2792'. [ 1346.786264][T16536] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2794'. [ 1347.139579][T16543] overlayfs: missing 'lowerdir' [ 1347.295236][T16539] Device name cannot be null; rc = [-22] [ 1348.557458][T16554] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2798'. [ 1348.678288][T16559] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2799'. [ 1349.022557][T16567] overlayfs: overlapping lowerdir path [ 1349.281122][T16569] overlayfs: failed to clone lowerpath [ 1351.774717][T16584] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2805'. [ 1352.521665][T16590] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2807'. [ 1352.663349][T16594] Device name cannot be null; rc = [-22] [ 1352.798843][T16597] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2810'. [ 1353.252175][T16601] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2811'. [ 1354.376576][T16607] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2813'. [ 1356.191860][T16629] overlayfs: missing 'lowerdir' [ 1356.668869][T16631] overlayfs: failed to clone lowerpath [ 1357.871647][T16639] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2821'. [ 1358.012695][T16640] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2822'. [ 1358.607581][T16648] overlayfs: missing 'lowerdir' [ 1358.788192][T16651] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2823'. [ 1359.085614][T16655] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2825'. [ 1359.352853][T16658] overlayfs: failed to clone upperpath [ 1359.554836][T16662] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2827'. [ 1359.924554][T16664] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2829'. [ 1360.055730][T16666] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2830'. [ 1361.394530][T16681] overlayfs: overlapping lowerdir path [ 1361.549817][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 1361.864672][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 1361.962570][T16684] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2834'. [ 1362.608808][T16688] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2835'. [ 1363.276319][T16696] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2838'. [ 1363.365507][T16698] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2839'. [ 1363.481262][T16701] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2841'. [ 1364.039478][T16707] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2842'. [ 1364.438315][T16702] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2840'. [ 1364.727755][T16717] overlayfs: missing 'lowerdir' [ 1366.693347][T16730] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2850'. [ 1367.165801][T16725] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2847'. [ 1367.243071][T16734] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2851'. [ 1367.376033][T16736] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2852'. [ 1367.586398][T16742] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2854'. [ 1368.441488][T16751] __nla_validate_parse: 1 callbacks suppressed [ 1368.441519][T16751] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2856'. [ 1369.745504][T16757] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2858'. [ 1370.904224][T16762] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2859'. [ 1371.159125][T16768] overlayfs: failed to clone upperpath [ 1371.206408][T16769] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2863'. [ 1373.084199][T16771] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2862'. [ 1373.118821][T16784] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2866'. [ 1374.331556][T16797] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2868'. [ 1374.721737][T16802] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2873'. [ 1375.052267][T16803] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2870'. [ 1375.494847][T16810] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2871'. [ 1376.310986][T16809] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2872'. [ 1376.488493][T16813] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 1376.497357][T16813] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1376.512457][T16819] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2877'. [ 1377.652014][T16827] overlayfs: failed to clone upperpath [ 1378.290234][T16837] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2880'. [ 1380.219121][T16846] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2883'. [ 1380.383234][T16848] overlayfs: failed to resolve './file1': -2 [ 1381.163660][T16858] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2886'. [ 1381.570703][T16862] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2887'. [ 1381.889224][T16863] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2888'. [ 1382.194836][ T30] kauditd_printk_skb: 4 callbacks suppressed [ 1382.194850][ T30] audit: type=1326 audit(1755576495.884:608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16864 comm="syz.0.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ac7f8ebe9 code=0x7ffc0000 [ 1382.229426][ T30] audit: type=1326 audit(1755576495.884:609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16864 comm="syz.0.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ac7f8ebe9 code=0x7ffc0000 [ 1382.259427][ T30] audit: type=1326 audit(1755576495.884:610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16864 comm="syz.0.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7ac7f8ebe9 code=0x7ffc0000 [ 1382.344819][ T30] audit: type=1326 audit(1755576495.884:611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16864 comm="syz.0.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ac7f8ebe9 code=0x7ffc0000 [ 1382.348179][T16869] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2889'. [ 1382.391061][ T30] audit: type=1326 audit(1755576495.884:612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16864 comm="syz.0.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ac7f8ebe9 code=0x7ffc0000 [ 1382.458134][ T30] audit: type=1326 audit(1755576495.884:613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16864 comm="syz.0.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f7ac7f8ebe9 code=0x7ffc0000 [ 1382.491077][ T30] audit: type=1326 audit(1755576495.884:614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16864 comm="syz.0.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ac7f8ebe9 code=0x7ffc0000 [ 1382.624270][ T30] audit: type=1326 audit(1755576495.884:615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16864 comm="syz.0.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ac7f8ebe9 code=0x7ffc0000 [ 1382.648715][T16872] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2892'. [ 1383.506089][ T30] audit: type=1326 audit(1755576495.884:616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16864 comm="syz.0.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f7ac7f8ebe9 code=0x7ffc0000 [ 1383.677933][T16879] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2893'. [ 1383.827958][ T30] audit: type=1326 audit(1755576495.884:617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16864 comm="syz.0.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ac7f8ebe9 code=0x7ffc0000 [ 1384.447647][T16886] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2895'. [ 1384.637181][T16891] Device name cannot be null; rc = [-22] [ 1385.939695][T16890] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2897'. [ 1386.091811][T16895] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2898'. [ 1386.979120][T16904] overlayfs: missing 'workdir' [ 1387.305466][T16901] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2899'. [ 1387.496257][T16907] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2903'. [ 1387.869369][T16912] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2904'. [ 1389.044587][T16915] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2905'. [ 1389.965732][T16926] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2906'. [ 1390.278176][T16934] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2909'. [ 1390.964810][T16943] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2911'. [ 1391.066400][T16941] overlayfs: missing 'lowerdir' [ 1392.294254][T16959] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2915'. [ 1392.347510][T16962] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2916'. [ 1392.714248][T16968] Device name cannot be null; rc = [-22] [ 1394.928413][T16985] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2922'. [ 1395.791365][T16995] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2925'. [ 1396.164735][T16999] overlayfs: missing 'lowerdir' [ 1397.475520][T17012] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2929'. [ 1397.697095][T17013] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2930'. [ 1398.684450][T17024] overlayfs: missing 'lowerdir' [ 1399.258882][T17036] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2936'. [ 1399.440874][T17037] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2935'. [ 1400.528707][ T30] kauditd_printk_skb: 4 callbacks suppressed [ 1400.528719][ T30] audit: type=1326 audit(1755576514.384:622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17041 comm="syz.3.2938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1400.600437][ T30] audit: type=1326 audit(1755576514.384:623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17041 comm="syz.3.2938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1400.806364][ T30] audit: type=1326 audit(1755576514.384:624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17041 comm="syz.3.2938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1400.910018][ T30] audit: type=1326 audit(1755576514.384:625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17041 comm="syz.3.2938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1400.942244][ T30] audit: type=1326 audit(1755576514.384:626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17041 comm="syz.3.2938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1401.106881][ T30] audit: type=1326 audit(1755576514.384:627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17041 comm="syz.3.2938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1401.141413][ T30] audit: type=1326 audit(1755576514.384:628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17041 comm="syz.3.2938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1401.165277][ T30] audit: type=1326 audit(1755576514.384:629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17041 comm="syz.3.2938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=224 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1401.397539][ T30] audit: type=1326 audit(1755576514.384:630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17041 comm="syz.3.2938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1401.710133][ T30] audit: type=1326 audit(1755576514.384:631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17041 comm="syz.3.2938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1403.355845][T17073] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2943'. [ 1405.897879][ T30] audit: type=1326 audit(1755576519.134:632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17087 comm="syz.2.2948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f155a98ebe9 code=0x7ffc0000 [ 1406.062160][T17085] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2946'. [ 1406.142688][ T30] audit: type=1326 audit(1755576519.134:633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17087 comm="syz.2.2948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f155a98ebe9 code=0x7ffc0000 [ 1406.790436][T17102] overlayfs: missing 'lowerdir' [ 1406.894444][T17098] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2950'. [ 1407.093996][T17107] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2951'. [ 1407.539590][T17111] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2952'. [ 1408.203499][T17114] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2954'. [ 1408.310106][T17118] overlayfs: failed to clone upperpath [ 1408.951836][T17128] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2956'. [ 1409.275444][T17127] Device name cannot be null; rc = [-22] [ 1412.404425][T17157] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2962'. [ 1412.444605][T17150] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2963'. [ 1412.793992][T17164] overlayfs: missing 'lowerdir' [ 1413.150962][T17146] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2961'. [ 1413.417706][T17171] overlayfs: failed to clone lowerpath [ 1413.544645][T17174] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2970'. [ 1414.540859][T17181] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2971'. [ 1415.164057][T17190] Device name cannot be null; rc = [-22] [ 1417.148263][T17199] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2974'. [ 1418.350220][T17213] overlayfs: missing 'lowerdir' [ 1422.353618][T17237] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2983'. [ 1422.993876][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 1423.000459][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 1423.310665][T17245] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2985'. [ 1423.699105][T17254] Device name cannot be null; rc = [-22] [ 1424.854925][T17264] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2991'. [ 1427.788643][T17287] tty tty2: ldisc open failed (-12), clearing slot 1 [ 1427.874828][ T30] audit: type=1326 audit(1755576541.644:634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17267 comm="syz.4.2993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b1298ebe9 code=0x7ffc0000 [ 1427.874887][ T30] audit: type=1326 audit(1755576541.644:635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17267 comm="syz.4.2993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1b1298ebe9 code=0x7ffc0000 [ 1427.874931][ T30] audit: type=1326 audit(1755576541.644:636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17267 comm="syz.4.2993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b1298ebe9 code=0x7ffc0000 [ 1427.874976][ T30] audit: type=1326 audit(1755576541.644:637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17267 comm="syz.4.2993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f1b1298ebe9 code=0x7ffc0000 [ 1427.875018][ T30] audit: type=1326 audit(1755576541.644:638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17267 comm="syz.4.2993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b1298ebe9 code=0x7ffc0000 [ 1427.875062][ T30] audit: type=1326 audit(1755576541.644:639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17267 comm="syz.4.2993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f1b1298ebe9 code=0x7ffc0000 [ 1427.875104][ T30] audit: type=1326 audit(1755576541.644:640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17267 comm="syz.4.2993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b1298ebe9 code=0x7ffc0000 [ 1427.875153][ T30] audit: type=1326 audit(1755576541.644:641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17267 comm="syz.4.2993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=224 compat=0 ip=0x7f1b1298ebe9 code=0x7ffc0000 [ 1427.875195][ T30] audit: type=1326 audit(1755576541.644:642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17267 comm="syz.4.2993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b1298ebe9 code=0x7ffc0000 [ 1427.875237][ T30] audit: type=1326 audit(1755576541.644:643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17267 comm="syz.4.2993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b1298ebe9 code=0x7ffc0000 [ 1428.747694][T17290] overlayfs: failed to clone lowerpath [ 1429.784642][T17306] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3001'. [ 1431.178997][T17318] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3005'. [ 1431.469010][T17312] Device name cannot be null; rc = [-22] [ 1436.039033][T17357] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3011'. [ 1436.190771][T17360] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3014'. [ 1436.275614][T17362] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3015'. [ 1439.460337][ T30] audit: type=1326 audit(1755576553.284:644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17369 comm="syz.1.3017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4fe78ebe9 code=0x7ffc0000 [ 1439.460403][ T30] audit: type=1326 audit(1755576553.294:645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17369 comm="syz.1.3017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff4fe78ebe9 code=0x7ffc0000 [ 1439.460447][ T30] audit: type=1326 audit(1755576553.294:646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17369 comm="syz.1.3017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4fe78ebe9 code=0x7ffc0000 [ 1439.460489][ T30] audit: type=1326 audit(1755576553.294:647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17369 comm="syz.1.3017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4fe78ebe9 code=0x7ffc0000 [ 1439.460533][ T30] audit: type=1326 audit(1755576553.294:648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17369 comm="syz.1.3017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7ff4fe78ebe9 code=0x7ffc0000 [ 1439.460583][ T30] audit: type=1326 audit(1755576553.294:649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17369 comm="syz.1.3017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4fe78ebe9 code=0x7ffc0000 [ 1439.460627][ T30] audit: type=1326 audit(1755576553.294:650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17369 comm="syz.1.3017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4fe78ebe9 code=0x7ffc0000 [ 1439.460669][ T30] audit: type=1326 audit(1755576553.304:651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17369 comm="syz.1.3017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7ff4fe78ebe9 code=0x7ffc0000 [ 1439.460713][ T30] audit: type=1326 audit(1755576553.304:652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17369 comm="syz.1.3017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4fe78ebe9 code=0x7ffc0000 [ 1439.460755][ T30] audit: type=1326 audit(1755576553.304:653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17369 comm="syz.1.3017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=224 compat=0 ip=0x7ff4fe78ebe9 code=0x7ffc0000 [ 1439.774557][T17391] Device name cannot be null; rc = [-22] [ 1440.136079][T17396] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3024'. [ 1444.666608][T17419] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 1447.395616][T17442] overlayfs: failed to clone lowerpath [ 1455.921977][ T30] kauditd_printk_skb: 2 callbacks suppressed [ 1455.922007][ T30] audit: type=1326 audit(1755576569.744:656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17504 comm="syz.4.3049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b1298ebe9 code=0x7ffc0000 [ 1455.922251][ T30] audit: type=1326 audit(1755576569.754:657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17504 comm="syz.4.3049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1b1298ebe9 code=0x7ffc0000 [ 1455.922515][ T30] audit: type=1326 audit(1755576569.754:658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17504 comm="syz.4.3049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b1298ebe9 code=0x7ffc0000 [ 1455.922717][ T30] audit: type=1326 audit(1755576569.754:659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17504 comm="syz.4.3049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f1b1298ebe9 code=0x7ffc0000 [ 1455.931687][ T30] audit: type=1326 audit(1755576569.774:660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17504 comm="syz.4.3049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b1298ebe9 code=0x7ffc0000 [ 1455.931937][ T30] audit: type=1326 audit(1755576569.784:661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17504 comm="syz.4.3049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f1b1298ebe9 code=0x7ffc0000 [ 1455.951225][ T30] audit: type=1326 audit(1755576569.784:662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17504 comm="syz.4.3049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b1298ebe9 code=0x7ffc0000 [ 1455.957540][ T30] audit: type=1326 audit(1755576569.804:663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17504 comm="syz.4.3049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=224 compat=0 ip=0x7f1b1298ebe9 code=0x7ffc0000 [ 1455.982456][ T30] audit: type=1326 audit(1755576569.814:664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17504 comm="syz.4.3049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b1298ebe9 code=0x7ffc0000 [ 1456.003734][ T30] audit: type=1326 audit(1755576569.844:665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17504 comm="syz.4.3049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b1298ebe9 code=0x7ffc0000 [ 1459.049107][T17542] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3057'. [ 1463.504830][T17580] Device name cannot be null; rc = [-22] [ 1470.704099][ T30] audit: type=1326 audit(1755576584.544:666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17628 comm="syz.3.3082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1470.875158][T17646] Device name cannot be null; rc = [-22] [ 1472.064272][ T30] audit: type=1326 audit(1755576584.544:667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17628 comm="syz.3.3082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1472.086105][ T30] audit: type=1326 audit(1755576584.544:668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17628 comm="syz.3.3082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1472.107987][ T30] audit: type=1326 audit(1755576584.544:669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17628 comm="syz.3.3082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1472.129699][ T30] audit: type=1326 audit(1755576584.544:670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17628 comm="syz.3.3082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1472.161222][ T30] audit: type=1326 audit(1755576584.544:671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17628 comm="syz.3.3082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1472.183049][ T30] audit: type=1326 audit(1755576584.544:672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17628 comm="syz.3.3082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1472.584755][ T30] audit: type=1326 audit(1755576584.544:673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17628 comm="syz.3.3082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1472.609129][ T30] audit: type=1326 audit(1755576584.544:674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17628 comm="syz.3.3082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1472.680875][ T30] audit: type=1326 audit(1755576584.544:675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17628 comm="syz.3.3082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96f718ebe9 code=0x7ffc0000 [ 1477.900186][T17697] Device name cannot be null; rc = [-22] [ 1481.220810][T17711] overlayfs: failed to clone lowerpath [ 1482.116534][T17721] overlayfs: failed to clone lowerpath [ 1484.778884][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 1484.807479][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 1492.601798][T17813] netlink: 84 bytes leftover after parsing attributes in process `syz.3.3130'. [ 1497.129111][T17853] overlayfs: missing 'lowerdir' [ 1503.320442][T17911] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 1503.329332][T17911] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1507.895900][T17952] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 1507.904730][T17952] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1508.227064][T17961] Device name cannot be null; rc = [-22] [ 1516.619117][T18018] Device name cannot be null; rc = [-22] [ 1535.237639][T18149] Device name cannot be null; rc = [-22] [ 1536.434838][T18154] Device name cannot be null; rc = [-22] [ 1545.901336][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 1545.931134][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 1547.129230][T18229] Device name cannot be null; rc = [-22] [ 1550.625592][T18260] Device name cannot be null; rc = [-22] [ 1555.666322][T18294] Device name cannot be null; rc = [-22] [ 1582.076989][T18495] overlayfs: failed to clone lowerpath [ 1605.652477][T18708] Device name cannot be null; rc = [-22] [ 1607.307638][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 1607.401799][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 1615.099054][T18769] Device name cannot be null; rc = [-22] [ 1623.436290][T18830] netlink: 84 bytes leftover after parsing attributes in process `syz.0.3388'. [ 1631.122341][T18882] netlink: 84 bytes leftover after parsing attributes in process `syz.3.3401'. [ 1636.170814][T18920] Device name cannot be null; rc = [-22] [ 1639.910036][T18937] overlayfs: failed to clone lowerpath [ 1643.159287][T18974] Device name cannot be null; rc = [-22] [ 1651.337597][T19028] overlayfs: failed to clone lowerpath [ 1652.405224][T19044] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3441'. [ 1665.409944][T19141] Device name cannot be null; rc = [-22] [ 1668.768791][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 1668.778511][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 1669.798962][T19179] Device name cannot be null; rc = [-22] [ 1676.722172][T19234] Device name cannot be null; rc = [-22] [ 1677.325013][T19242] Device name cannot be null; rc = [-22] [ 1682.850388][T19284] Device name cannot be null; rc = [-22] [ 1685.352221][T19294] overlayfs: overlapping lowerdir path [ 1691.156277][T19357] overlayfs: overlapping lowerdir path [ 1694.150810][T19390] overlayfs: failed to clone lowerpath [ 1697.879608][T19416] Device name cannot be null; rc = [-22] [ 1699.868908][T19424] Device name cannot be null; rc = [-22] [ 1700.655612][T19430] Device name cannot be null; rc = [-22] [ 1709.718027][T19479] Device name cannot be null; rc = [-22] [ 1711.232616][T19486] Device name cannot be null; rc = [-22] [ 1714.005795][T19500] overlayfs: failed to clone lowerpath [ 1714.246475][T19509] Device name cannot be null; rc = [-22] [ 1715.649361][T19521] overlayfs: failed to clone lowerpath [ 1716.179718][T19525] Device name cannot be null; rc = [-22] [ 1720.852175][T19546] Device name cannot be null; rc = [-22] [ 1728.674070][T19601] overlayfs: missing 'lowerdir' [ 1730.190602][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 1730.197041][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 1730.943658][T19615] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 1730.952513][T19615] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1735.552649][T19650] overlayfs: failed to clone lowerpath [ 1745.664735][T19727] Device name cannot be null; rc = [-22] [ 1749.070611][T19746] Device name cannot be null; rc = [-22] [ 1750.799301][T19751] overlayfs: overlapping lowerdir path [ 1752.735705][T19776] overlayfs: missing 'lowerdir' [ 1757.488644][ T5842] usb 1-1: new high-speed USB device number 14 using dummy_hcd [ 1757.622814][T19817] Device name cannot be null; rc = [-22] [ 1757.644735][ T5842] usb 1-1: device descriptor read/64, error -71 [ 1758.470742][T10323] usb 5-1: new high-speed USB device number 16 using dummy_hcd [ 1758.518391][T19832] Device name cannot be null; rc = [-22] [ 1758.534230][ T5842] usb 1-1: new high-speed USB device number 15 using dummy_hcd [ 1758.620437][T10323] usb 5-1: device descriptor read/64, error -71 [ 1758.684433][ T5842] usb 1-1: device descriptor read/64, error -71 [ 1758.759845][T19834] IPVS: set_ctl: invalid protocol: 22 172.30.0.3:20000 [ 1758.815794][ T5842] usb usb1-port1: attempt power cycle [ 1758.875540][T10323] usb 5-1: new high-speed USB device number 17 using dummy_hcd [ 1758.901866][T19845] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3669'. [ 1759.014028][T10323] usb 5-1: device descriptor read/64, error -71 [ 1759.124570][T10323] usb usb5-port1: attempt power cycle [ 1759.164064][ T5842] usb 1-1: new high-speed USB device number 16 using dummy_hcd [ 1759.248545][ T5842] usb 1-1: device descriptor read/8, error -71 [ 1759.294108][T19859] FAULT_INJECTION: forcing a failure. [ 1759.294108][T19859] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 1759.307440][T19859] CPU: 0 UID: 0 PID: 19859 Comm: syz.1.3672 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 1759.307465][T19859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1759.307478][T19859] Call Trace: [ 1759.307486][T19859] [ 1759.307494][T19859] dump_stack_lvl+0x189/0x250 [ 1759.307523][T19859] ? __pfx____ratelimit+0x10/0x10 [ 1759.307545][T19859] ? __pfx_dump_stack_lvl+0x10/0x10 [ 1759.307567][T19859] ? __pfx__printk+0x10/0x10 [ 1759.307592][T19859] ? __might_fault+0xb0/0x130 [ 1759.307623][T19859] should_fail_ex+0x414/0x560 [ 1759.307649][T19859] _copy_from_user+0x2d/0xb0 [ 1759.307677][T19859] __sys_bpf+0x1ed/0x860 [ 1759.307707][T19859] ? __pfx___sys_bpf+0x10/0x10 [ 1759.307748][T19859] ? ksys_write+0x22a/0x250 [ 1759.307770][T19859] ? __pfx_ksys_write+0x10/0x10 [ 1759.307786][T19859] ? rcu_is_watching+0x15/0xb0 [ 1759.307816][T19859] __x64_sys_bpf+0x7c/0x90 [ 1759.307842][T19859] do_syscall_64+0xfa/0x3b0 [ 1759.307862][T19859] ? lockdep_hardirqs_on+0x9c/0x150 [ 1759.307882][T19859] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1759.307901][T19859] ? clear_bhb_loop+0x60/0xb0 [ 1759.307925][T19859] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1759.307944][T19859] RIP: 0033:0x7ff4fe78ebe9 [ 1759.307968][T19859] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1759.307987][T19859] RSP: 002b:00007ff4ff601038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 1759.308007][T19859] RAX: ffffffffffffffda RBX: 00007ff4fe9b6180 RCX: 00007ff4fe78ebe9 [ 1759.308022][T19859] RDX: 0000000000000048 RSI: 00002000000054c0 RDI: 0000000000000005 [ 1759.308035][T19859] RBP: 00007ff4ff601090 R08: 0000000000000000 R09: 0000000000000000 [ 1759.308048][T19859] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1759.308059][T19859] R13: 00007ff4fe9b6218 R14: 00007ff4fe9b6180 R15: 00007ffe7a24fa18 [ 1759.308092][T19859] [ 1759.699260][T19868] netlink: 180 bytes leftover after parsing attributes in process `syz.3.3678'. [ 1759.769799][T19872] Device name cannot be null; rc = [-22] [ 1759.796754][T10323] usb 5-1: new high-speed USB device number 18 using dummy_hcd [ 1759.824785][T10323] usb 5-1: device descriptor read/8, error -71 [ 1760.084354][T10323] usb 5-1: new high-speed USB device number 19 using dummy_hcd [ 1760.207754][T19884] FAULT_INJECTION: forcing a failure. [ 1760.207754][T19884] name failslab, interval 1, probability 0, space 0, times 0 [ 1760.220497][T19884] CPU: 0 UID: 0 PID: 19884 Comm: syz.1.3682 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 1760.220522][T19884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1760.220535][T19884] Call Trace: [ 1760.220542][T19884] [ 1760.220550][T19884] dump_stack_lvl+0x189/0x250 [ 1760.220578][T19884] ? __pfx____ratelimit+0x10/0x10 [ 1760.220598][T19884] ? __pfx_dump_stack_lvl+0x10/0x10 [ 1760.220628][T19884] ? __pfx__printk+0x10/0x10 [ 1760.220659][T19884] ? __pfx___might_resched+0x10/0x10 [ 1760.220679][T19884] ? fs_reclaim_acquire+0x7d/0x100 [ 1760.220707][T19884] should_fail_ex+0x414/0x560 [ 1760.220734][T19884] should_failslab+0xa8/0x100 [ 1760.220756][T19884] __kmalloc_noprof+0xcb/0x4f0 [ 1760.220773][T19884] ? kfree+0x4d/0x440 [ 1760.220798][T19884] ? tomoyo_realpath_from_path+0xe3/0x5d0 [ 1760.220829][T19884] tomoyo_realpath_from_path+0xe3/0x5d0 [ 1760.220856][T19884] ? tomoyo_domain+0xda/0x130 [ 1760.220886][T19884] ? tomoyo_path_number_perm+0x1bc/0x5a0 [ 1760.220907][T19884] tomoyo_path_number_perm+0x1e8/0x5a0 [ 1760.220930][T19884] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1760.220948][T19884] ? rcu_is_watching+0x15/0xb0 [ 1760.220969][T19884] ? trace_sched_exit_tp+0x38/0x120 [ 1760.220996][T19884] ? __schedule+0x16c8/0x4c90 [ 1760.221025][T19884] ? __lock_acquire+0xab9/0xd20 [ 1760.221065][T19884] ? __fget_files+0x2a/0x420 [ 1760.221090][T19884] ? __fget_files+0x2a/0x420 [ 1760.221109][T19884] ? __fget_files+0x3a0/0x420 [ 1760.221129][T19884] ? __fget_files+0x2a/0x420 [ 1760.221154][T19884] security_file_ioctl+0xcb/0x2d0 [ 1760.221178][T19884] __se_sys_ioctl+0x47/0x170 [ 1760.221209][T19884] do_syscall_64+0xfa/0x3b0 [ 1760.221232][T19884] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1760.221250][T19884] ? asm_sysvec_reschedule_ipi+0x1a/0x20 [ 1760.221269][T19884] ? clear_bhb_loop+0x60/0xb0 [ 1760.221293][T19884] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1760.221311][T19884] RIP: 0033:0x7ff4fe78ebe9 [ 1760.221328][T19884] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1760.221345][T19884] RSP: 002b:00007ff4ff601038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1760.221365][T19884] RAX: ffffffffffffffda RBX: 00007ff4fe9b6180 RCX: 00007ff4fe78ebe9 [ 1760.221380][T19884] RDX: 0000200000000000 RSI: 00000000c048aec8 RDI: 000000000000000f [ 1760.221393][T19884] RBP: 00007ff4ff601090 R08: 0000000000000000 R09: 0000000000000000 [ 1760.221405][T19884] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1760.221416][T19884] R13: 00007ff4fe9b6218 R14: 00007ff4fe9b6180 R15: 00007ffe7a24fa18 [ 1760.221448][T19884] [ 1760.221500][T19884] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1763.227554][T10323] usb 5-1: device descriptor read/8, error -71 [ 1763.335716][T10323] usb usb5-port1: unable to enumerate USB device [ 1763.654161][ T9] usb 3-1: new full-speed USB device number 18 using dummy_hcd [ 1763.808649][ T9] usb 3-1: New USB device found, idVendor=0483, idProduct=1234, bcdDevice=ff.76 [ 1763.831976][ T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1763.855346][ T9] usb 3-1: Product: syz [ 1763.867658][ T9] usb 3-1: Manufacturer: syz [ 1763.886562][ T9] usb 3-1: SerialNumber: syz [ 1763.913284][ T9] usb 3-1: config 0 descriptor?? [ 1763.932643][T19919] Device name cannot be null; rc = [-22] [ 1763.997999][T19921] FAULT_INJECTION: forcing a failure. [ 1763.997999][T19921] name failslab, interval 1, probability 0, space 0, times 0 [ 1764.011449][T19921] CPU: 1 UID: 0 PID: 19921 Comm: syz.4.3696 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 1764.011475][T19921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1764.011486][T19921] Call Trace: [ 1764.011493][T19921] [ 1764.011501][T19921] dump_stack_lvl+0x189/0x250 [ 1764.011529][T19921] ? __pfx____ratelimit+0x10/0x10 [ 1764.011547][T19921] ? __pfx_dump_stack_lvl+0x10/0x10 [ 1764.011565][T19921] ? __pfx__printk+0x10/0x10 [ 1764.011590][T19921] ? __pfx___might_resched+0x10/0x10 [ 1764.011611][T19921] ? fs_reclaim_acquire+0x7d/0x100 [ 1764.011636][T19921] should_fail_ex+0x414/0x560 [ 1764.011660][T19921] should_failslab+0xa8/0x100 [ 1764.011680][T19921] __kmalloc_noprof+0xcb/0x4f0 [ 1764.011696][T19921] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 1764.011713][T19921] ? sock_kmalloc+0xd6/0x160 [ 1764.011735][T19921] sock_kmalloc+0xd6/0x160 [ 1764.011756][T19921] do_ipv6_setsockopt+0x1ff9/0x2fb0 [ 1764.011909][T19921] ? __pfx_do_ipv6_setsockopt+0x10/0x10 [ 1764.012001][T19921] ? __fget_files+0x2a/0x420 [ 1764.012028][T19921] ipv6_setsockopt+0x59/0x170 [ 1764.012040][T19921] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 1764.012056][T19921] do_sock_setsockopt+0x179/0x1b0 [ 1764.012079][T19921] __x64_sys_setsockopt+0x13f/0x1b0 [ 1764.012125][T19921] do_syscall_64+0xfa/0x3b0 [ 1764.012146][T19921] ? lockdep_hardirqs_on+0x9c/0x150 [ 1764.012168][T19921] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1764.012187][T19921] ? clear_bhb_loop+0x60/0xb0 [ 1764.012200][T19921] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1764.012210][T19921] RIP: 0033:0x7f1b1298ebe9 [ 1764.012225][T19921] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1764.012234][T19921] RSP: 002b:00007f1b138a0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 1764.012252][T19921] RAX: ffffffffffffffda RBX: 00007f1b12bb5fa0 RCX: 00007f1b1298ebe9 [ 1764.012267][T19921] RDX: 0000000000000006 RSI: 0000000000000029 RDI: 0000000000000003 [ 1764.012351][T19921] RBP: 00007f1b138a0090 R08: 0000000000000088 R09: 0000000000000000 [ 1764.012367][T19921] R10: 00002000000007c0 R11: 0000000000000246 R12: 0000000000000001 [ 1764.012374][T19921] R13: 00007f1b12bb6038 R14: 00007f1b12bb5fa0 R15: 00007ffe8905c688 [ 1764.012396][T19921] [ 1764.281146][ T9] usb_8dev 3-1:0.0 can0: sending command message failed [ 1764.303273][ T9] usb_8dev 3-1:0.0 can0: can't get firmware version [ 1764.334573][ T24] usb 2-1: new full-speed USB device number 9 using dummy_hcd [ 1764.397416][T19926] 9pnet_fd: Insufficient options for proto=fd [ 1764.414732][ T9] usb_8dev 3-1:0.0: probe with driver usb_8dev failed with error -22 [ 1764.438910][ T9] usb 3-1: USB disconnect, device number 18 [ 1764.486332][ T24] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1764.496862][ T24] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 1764.506150][ T24] usb 2-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8 [ 1764.516196][ T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1764.570492][ T24] usb 2-1: config 0 descriptor?? [ 1764.581704][ T24] dvb-usb: found a 'Artec T1 USB2.0' in warm state. [ 1764.590998][ T24] dvb-usb: bulk message failed: -22 (3/0) [ 1764.615435][ T24] dvb-usb: will use the device's hardware PID filter (table count: 16). [ 1764.631229][ T24] dvbdev: DVB: registering new adapter (Artec T1 USB2.0) [ 1764.641475][ T24] usb 2-1: media controller created [ 1764.670251][ T24] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 1764.702554][ T24] dvb-usb: bulk message failed: -22 (6/0) [ 1764.711169][ T24] dvb-usb: no frontend was attached by 'Artec T1 USB2.0' [ 1764.721252][ T24] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.1/usb2/2-1/input/input59 [ 1764.774985][ T24] dvb-usb: schedule remote query interval to 150 msecs. [ 1764.794082][ T24] dvb-usb: Artec T1 USB2.0 successfully initialized and connected. [ 1764.963074][ T24] dvb-usb: bulk message failed: -22 (1/0) [ 1765.004090][ T24] dvb-usb: error while querying for an remote control event. [ 1765.033174][ T9] usb 2-1: USB disconnect, device number 9 [ 1765.101496][ T9] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected. [ 1765.121002][T19940] fuse: Bad value for 'user_id' [ 1765.130230][T19940] fuse: Bad value for 'user_id' [ 1765.206293][T19948] FAULT_INJECTION: forcing a failure. [ 1765.206293][T19948] name failslab, interval 1, probability 0, space 0, times 0 [ 1765.209250][T19949] FAULT_INJECTION: forcing a failure. [ 1765.209250][T19949] name failslab, interval 1, probability 0, space 0, times 0 [ 1765.220636][T19948] CPU: 0 UID: 0 PID: 19948 Comm: syz.0.3706 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 1765.220661][T19948] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1765.220673][T19948] Call Trace: [ 1765.220680][T19948] [ 1765.220688][T19948] dump_stack_lvl+0x189/0x250 [ 1765.220716][T19948] ? __pfx____ratelimit+0x10/0x10 [ 1765.220737][T19948] ? __pfx_dump_stack_lvl+0x10/0x10 [ 1765.220757][T19948] ? __pfx__printk+0x10/0x10 [ 1765.220783][T19948] ? __pfx___might_resched+0x10/0x10 [ 1765.220804][T19948] ? fs_reclaim_acquire+0x7d/0x100 [ 1765.220832][T19948] should_fail_ex+0x414/0x560 [ 1765.220857][T19948] should_failslab+0xa8/0x100 [ 1765.220879][T19948] __kmalloc_noprof+0xcb/0x4f0 [ 1765.220896][T19948] ? tomoyo_encode+0x28b/0x550 [ 1765.220924][T19948] tomoyo_encode+0x28b/0x550 [ 1765.220954][T19948] tomoyo_realpath_from_path+0x58d/0x5d0 [ 1765.220980][T19948] ? tomoyo_domain+0xda/0x130 [ 1765.221009][T19948] ? tomoyo_path_number_perm+0x1bc/0x5a0 [ 1765.221029][T19948] tomoyo_path_number_perm+0x1e8/0x5a0 [ 1765.221052][T19948] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1765.221090][T19948] ? __lock_acquire+0xab9/0xd20 [ 1765.221129][T19948] ? __fget_files+0x2a/0x420 [ 1765.221153][T19948] ? __fget_files+0x2a/0x420 [ 1765.221171][T19948] ? __fget_files+0x3a0/0x420 [ 1765.221190][T19948] ? __fget_files+0x2a/0x420 [ 1765.221215][T19948] security_file_ioctl+0xcb/0x2d0 [ 1765.221246][T19948] __se_sys_ioctl+0x47/0x170 [ 1765.221274][T19948] do_syscall_64+0xfa/0x3b0 [ 1765.221295][T19948] ? lockdep_hardirqs_on+0x9c/0x150 [ 1765.221316][T19948] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1765.221335][T19948] ? clear_bhb_loop+0x60/0xb0 [ 1765.221357][T19948] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1765.221375][T19948] RIP: 0033:0x7f7ac7f8ebe9 [ 1765.221392][T19948] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1765.221408][T19948] RSP: 002b:00007f7ac8ebc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1765.221428][T19948] RAX: ffffffffffffffda RBX: 00007f7ac81b5fa0 RCX: 00007f7ac7f8ebe9 [ 1765.221442][T19948] RDX: 0000200000001300 RSI: 0000000000000002 RDI: 0000000000000003 [ 1765.221453][T19948] RBP: 00007f7ac8ebc090 R08: 0000000000000000 R09: 0000000000000000 [ 1765.221465][T19948] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1765.221476][T19948] R13: 00007f7ac81b6038 R14: 00007f7ac81b5fa0 R15: 00007ffc277f48a8 [ 1765.221508][T19948] [ 1765.221528][T19948] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1765.250458][T19949] CPU: 1 UID: 0 PID: 19949 Comm: syz.2.3705 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 1765.250483][T19949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1765.250495][T19949] Call Trace: [ 1765.250503][T19949] [ 1765.250510][T19949] dump_stack_lvl+0x189/0x250 [ 1765.250537][T19949] ? __pfx____ratelimit+0x10/0x10 [ 1765.250558][T19949] ? __pfx_dump_stack_lvl+0x10/0x10 [ 1765.250579][T19949] ? __pfx__printk+0x10/0x10 [ 1765.250606][T19949] ? __pfx___might_resched+0x10/0x10 [ 1765.250626][T19949] ? fs_reclaim_acquire+0x7d/0x100 [ 1765.250653][T19949] should_fail_ex+0x414/0x560 [ 1765.250678][T19949] should_failslab+0xa8/0x100 [ 1765.250701][T19949] __kmalloc_noprof+0xcb/0x4f0 [ 1765.250717][T19949] ? tomoyo_encode+0x28b/0x550 [ 1765.250746][T19949] tomoyo_encode+0x28b/0x550 [ 1765.250776][T19949] tomoyo_realpath_from_path+0x58d/0x5d0 [ 1765.250811][T19949] ? tomoyo_path_number_perm+0x1bc/0x5a0 [ 1765.250831][T19949] tomoyo_path_number_perm+0x1e8/0x5a0 [ 1765.250855][T19949] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1765.250893][T19949] ? __lock_acquire+0xab9/0xd20 [ 1765.250932][T19949] ? __fget_files+0x2a/0x420 [ 1765.250955][T19949] ? __fget_files+0x2a/0x420 [ 1765.250974][T19949] ? __fget_files+0x3a0/0x420 [ 1765.250993][T19949] ? __fget_files+0x2a/0x420 [ 1765.251017][T19949] security_file_ioctl+0xcb/0x2d0 [ 1765.251048][T19949] __se_sys_ioctl+0x47/0x170 [ 1765.251078][T19949] do_syscall_64+0xfa/0x3b0 [ 1765.251097][T19949] ? lockdep_hardirqs_on+0x9c/0x150 [ 1765.251117][T19949] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1765.251135][T19949] ? clear_bhb_loop+0x60/0xb0 [ 1765.251158][T19949] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1765.251176][T19949] RIP: 0033:0x7f155a98ebe9 [ 1765.251193][T19949] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1765.251209][T19949] RSP: 002b:00007f1558bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1765.251229][T19949] RAX: ffffffffffffffda RBX: 00007f155abb5fa0 RCX: 00007f155a98ebe9 [ 1765.251243][T19949] RDX: 0000200000000000 RSI: 00000000c06864b8 RDI: 0000000000000003 [ 1765.251256][T19949] RBP: 00007f1558bf6090 R08: 0000000000000000 R09: 0000000000000000 [ 1765.251268][T19949] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1765.251279][T19949] R13: 00007f155abb6038 R14: 00007f155abb5fa0 R15: 00007ffd293d4918 [ 1765.251310][T19949] [ 1765.251330][T19949] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1765.891849][T19955] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3709'. [ 1765.910840][T19955] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3709'. [ 1765.933974][T19955] netlink: 'syz.0.3709': attribute type 6 has an invalid length. [ 1765.970042][T19956] netlink: 'syz.0.3709': attribute type 11 has an invalid length. [ 1766.038290][T19964] FAULT_INJECTION: forcing a failure. [ 1766.038290][T19964] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1766.076013][T19964] CPU: 0 UID: 0 PID: 19964 Comm: syz.2.3710 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 1766.076041][T19964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1766.076053][T19964] Call Trace: [ 1766.076062][T19964] [ 1766.076070][T19964] dump_stack_lvl+0x189/0x250 [ 1766.076099][T19964] ? __pfx____ratelimit+0x10/0x10 [ 1766.076121][T19964] ? __pfx_dump_stack_lvl+0x10/0x10 [ 1766.076143][T19964] ? __pfx__printk+0x10/0x10 [ 1766.076180][T19964] should_fail_ex+0x414/0x560 [ 1766.076206][T19964] _copy_to_user+0x31/0xb0 [ 1766.076236][T19964] simple_read_from_buffer+0xe1/0x170 [ 1766.076262][T19964] proc_fail_nth_read+0x1df/0x250 [ 1766.076289][T19964] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1766.076316][T19964] ? rw_verify_area+0x258/0x650 [ 1766.076345][T19964] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1766.076370][T19964] vfs_read+0x200/0x980 [ 1766.076409][T19964] ? __pfx___mutex_lock+0x10/0x10 [ 1766.076431][T19964] ? __pfx_vfs_read+0x10/0x10 [ 1766.076462][T19964] ? __fget_files+0x2a/0x420 [ 1766.076489][T19964] ? __fget_files+0x3a0/0x420 [ 1766.076509][T19964] ? __fget_files+0x2a/0x420 [ 1766.076540][T19964] ksys_read+0x145/0x250 [ 1766.076561][T19964] ? __pfx_ksys_read+0x10/0x10 [ 1766.076576][T19964] ? rcu_is_watching+0x15/0xb0 [ 1766.076603][T19964] ? do_syscall_64+0xbe/0x3b0 [ 1766.076629][T19964] do_syscall_64+0xfa/0x3b0 [ 1766.076649][T19964] ? lockdep_hardirqs_on+0x9c/0x150 [ 1766.076669][T19964] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1766.076687][T19964] ? clear_bhb_loop+0x60/0xb0 [ 1766.076712][T19964] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1766.076731][T19964] RIP: 0033:0x7f155a98d5fc [ 1766.076749][T19964] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1766.076766][T19964] RSP: 002b:00007f1558bf6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1766.076787][T19964] RAX: ffffffffffffffda RBX: 00007f155abb5fa0 RCX: 00007f155a98d5fc [ 1766.076801][T19964] RDX: 000000000000000f RSI: 00007f1558bf60a0 RDI: 0000000000000003 [ 1766.076814][T19964] RBP: 00007f1558bf6090 R08: 0000000000000000 R09: 0000000000000000 [ 1766.076826][T19964] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1766.076837][T19964] R13: 00007f155abb6038 R14: 00007f155abb5fa0 R15: 00007ffd293d4918 [ 1766.076870][T19964] [ 1766.305732][ C0] vkms_vblank_simulate: vblank timer overrun [ 1766.866418][ T9] usb 3-1: new high-speed USB device number 19 using dummy_hcd [ 1767.374245][ T9] usb 3-1: Using ep0 maxpacket: 16 [ 1767.386559][ T9] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 78, changing to 10 [ 1768.120307][ T9] usb 3-1: New USB device found, idVendor=5543, idProduct=0781, bcdDevice= 0.00 [ 1768.129832][ T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1768.141568][ T9] usb 3-1: config 0 descriptor?? [ 1768.561394][ T9] uclogic 0003:5543:0781.0007: hidraw0: USB HID v0.04 Device [HID 5543:0781] on usb-dummy_hcd.2-1/input0 [ 1768.594087][ T5842] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 1768.604069][ T24] usb 1-1: new high-speed USB device number 18 using dummy_hcd [ 1768.726082][ T5842] usb 2-1: device descriptor read/64, error -71 [ 1768.754123][ T24] usb 1-1: Using ep0 maxpacket: 16 [ 1768.762141][ T24] usb 1-1: config 0 has an invalid interface number: 64 but max is 0 [ 1768.772476][ T24] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1768.783256][ T24] usb 1-1: config 0 has no interface number 0 [ 1768.789854][ T24] usb 1-1: New USB device found, idVendor=0bd3, idProduct=0555, bcdDevice= 0.5b [ 1768.799285][ T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1768.799309][T19969] netlink: 92 bytes leftover after parsing attributes in process `syz.2.3713'. [ 1768.810736][ T24] usb 1-1: config 0 descriptor?? [ 1768.823202][T19969] netlink: 40 bytes leftover after parsing attributes in process `syz.2.3713'. [ 1768.843142][ T9] usb 3-1: USB disconnect, device number 19 [ 1768.872260][ T24] usb 1-1: Found UVC 0.00 device (0bd3:0555) [ 1768.879662][ T24] usb 1-1: No valid video chain found. [ 1768.964068][ T5842] usb 2-1: new high-speed USB device number 11 using dummy_hcd [ 1769.043272][T19991] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1769.052340][T19991] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1769.124156][ T5842] usb 2-1: device descriptor read/64, error -71 [ 1769.365237][ T5842] usb usb2-port1: attempt power cycle [ 1769.714442][ T5842] usb 2-1: new high-speed USB device number 12 using dummy_hcd [ 1769.745750][ T5842] usb 2-1: device descriptor read/8, error -71 [ 1770.173494][ T5842] usb 2-1: new high-speed USB device number 13 using dummy_hcd [ 1770.342965][T20017] overlayfs: failed to clone upperpath [ 1770.414771][ T5842] usb 2-1: device descriptor read/8, error -71 [ 1770.525815][ T5842] usb usb2-port1: unable to enumerate USB device [ 1772.105756][T20043] FAULT_INJECTION: forcing a failure. [ 1772.105756][T20043] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1772.108014][T20041] fuse: Unknown parameter 'f' [ 1772.139591][T20043] CPU: 0 UID: 0 PID: 20043 Comm: syz.1.3738 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 1772.139621][T20043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1772.139634][T20043] Call Trace: [ 1772.139642][T20043] [ 1772.139651][T20043] dump_stack_lvl+0x189/0x250 [ 1772.139678][T20043] ? __pfx____ratelimit+0x10/0x10 [ 1772.139699][T20043] ? __pfx_dump_stack_lvl+0x10/0x10 [ 1772.139721][T20043] ? __pfx__printk+0x10/0x10 [ 1772.139762][T20043] should_fail_ex+0x414/0x560 [ 1772.139788][T20043] _copy_from_user+0x2d/0xb0 [ 1772.139816][T20043] copy_from_sockptr+0x5e/0xa0 [ 1772.139848][T20043] do_ipv6_setsockopt+0x207c/0x2fb0 [ 1772.139888][T20043] ? __pfx_do_ipv6_setsockopt+0x10/0x10 [ 1772.139970][T20043] ? irqentry_exit+0x74/0x90 [ 1772.139990][T20043] ? lockdep_hardirqs_on+0x9c/0x150 [ 1772.140026][T20043] ipv6_setsockopt+0x59/0x170 [ 1772.140043][T20043] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 1772.140072][T20043] do_sock_setsockopt+0x179/0x1b0 [ 1772.140107][T20043] __x64_sys_setsockopt+0x13f/0x1b0 [ 1772.140148][T20043] do_syscall_64+0xfa/0x3b0 [ 1772.140168][T20043] ? lockdep_hardirqs_on+0x9c/0x150 [ 1772.140188][T20043] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1772.140207][T20043] ? clear_bhb_loop+0x60/0xb0 [ 1772.140231][T20043] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1772.140248][T20043] RIP: 0033:0x7ff4fe78ebe9 [ 1772.140265][T20043] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1772.140281][T20043] RSP: 002b:00007ff4ff643038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 1772.140306][T20043] RAX: ffffffffffffffda RBX: 00007ff4fe9b5fa0 RCX: 00007ff4fe78ebe9 [ 1772.140320][T20043] RDX: 0000000000000006 RSI: 0000000000000029 RDI: 0000000000000003 [ 1772.140331][T20043] RBP: 00007ff4ff643090 R08: 0000000000000088 R09: 0000000000000000 [ 1772.140343][T20043] R10: 00002000000007c0 R11: 0000000000000246 R12: 0000000000000001 [ 1772.140355][T20043] R13: 00007ff4fe9b6038 R14: 00007ff4fe9b5fa0 R15: 00007ffe7a24fa18 [ 1772.140387][T20043] [ 1772.524465][T10167] usb 1-1: USB disconnect, device number 18 [ 1772.600385][T20053] erofs (device nbd0): cannot find valid erofs superblock [ 1772.675061][ T30] kauditd_printk_skb: 4 callbacks suppressed [ 1772.675074][ T30] audit: type=1800 audit(1755576886.524:680): pid=20046 uid=0 auid=4294967295 ses=4294967295 subj=_ op=set_data cause=unavailable-hash-algorithm comm="syz.2.3735" name="/" dev="pipefs" ino=65543 res=0 errno=0 [ 1772.797716][ T24] usb 2-1: new high-speed USB device number 14 using dummy_hcd [ 1773.076620][ T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1773.088147][ T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1773.105171][ T24] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1773.730742][ T24] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1773.739977][ T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1773.754079][ T24] usb 2-1: config 0 descriptor?? [ 1774.183571][ T24] plantronics 0003:047F:FFFF.0008: ignoring exceeding usage max [ 1774.193149][T20072] FAULT_INJECTION: forcing a failure. [ 1774.193149][T20072] name failslab, interval 1, probability 0, space 0, times 0 [ 1774.206025][T20072] CPU: 0 UID: 0 PID: 20072 Comm: syz.4.3743 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 1774.206052][T20072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1774.206064][T20072] Call Trace: [ 1774.206073][T20072] [ 1774.206082][T20072] dump_stack_lvl+0x189/0x250 [ 1774.206109][T20072] ? __pfx____ratelimit+0x10/0x10 [ 1774.206131][T20072] ? __pfx_dump_stack_lvl+0x10/0x10 [ 1774.206153][T20072] ? __pfx__printk+0x10/0x10 [ 1774.206184][T20072] ? __pfx___might_resched+0x10/0x10 [ 1774.206212][T20072] ? fs_reclaim_acquire+0x7d/0x100 [ 1774.206241][T20072] should_fail_ex+0x414/0x560 [ 1774.206268][T20072] should_failslab+0xa8/0x100 [ 1774.206290][T20072] kmem_cache_alloc_noprof+0x73/0x3c0 [ 1774.206309][T20072] ? io_submit_one+0x11f/0x1310 [ 1774.206336][T20072] io_submit_one+0x11f/0x1310 [ 1774.206375][T20072] ? __pfx_io_submit_one+0x10/0x10 [ 1774.206397][T20072] ? __might_fault+0xb0/0x130 [ 1774.206430][T20072] ? __might_fault+0xb0/0x130 [ 1774.206452][T20072] __se_sys_io_submit+0x185/0x2f0 [ 1774.206476][T20072] ? __pfx___se_sys_io_submit+0x10/0x10 [ 1774.206493][T20072] ? ksys_write+0x22a/0x250 [ 1774.206524][T20072] ? do_syscall_64+0xbe/0x3b0 [ 1774.206550][T20072] do_syscall_64+0xfa/0x3b0 [ 1774.206568][T20072] ? lockdep_hardirqs_on+0x9c/0x150 [ 1774.206589][T20072] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1774.206608][T20072] ? clear_bhb_loop+0x60/0xb0 [ 1774.206632][T20072] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1774.206651][T20072] RIP: 0033:0x7f1b1298ebe9 [ 1774.206668][T20072] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1774.206686][T20072] RSP: 002b:00007f1b138a0038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 1774.206706][T20072] RAX: ffffffffffffffda RBX: 00007f1b12bb5fa0 RCX: 00007f1b1298ebe9 [ 1774.206721][T20072] RDX: 0000200000000400 RSI: 0000000000000001 RDI: 00007f1b1387f000 [ 1774.206735][T20072] RBP: 00007f1b138a0090 R08: 0000000000000000 R09: 0000000000000000 [ 1774.206748][T20072] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1774.206760][T20072] R13: 00007f1b12bb6038 R14: 00007f1b12bb5fa0 R15: 00007ffe8905c688 [ 1774.206793][T20072] [ 1774.217979][ T24] plantronics 0003:047F:FFFF.0008: unbalanced collection at end of report description [ 1774.305804][T20075] input: syz1 as /devices/virtual/input/input60 [ 1774.407743][ T24] plantronics 0003:047F:FFFF.0008: parse failed [ 1774.491236][ T24] plantronics 0003:047F:FFFF.0008: probe with driver plantronics failed with error -22 [ 1774.517494][ T24] usb 2-1: USB disconnect, device number 14 [ 1774.629445][T20079] input: syz0 as /devices/virtual/input/input61 [ 1774.681334][T20083] FAULT_INJECTION: forcing a failure. [ 1774.681334][T20083] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1774.696655][T20083] CPU: 1 UID: 0 PID: 20083 Comm: syz.0.3747 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 1774.696681][T20083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1774.696694][T20083] Call Trace: [ 1774.696703][T20083] [ 1774.696711][T20083] dump_stack_lvl+0x189/0x250 [ 1774.696738][T20083] ? __pfx____ratelimit+0x10/0x10 [ 1774.696759][T20083] ? __pfx_dump_stack_lvl+0x10/0x10 [ 1774.696781][T20083] ? __pfx__printk+0x10/0x10 [ 1774.696806][T20083] ? __might_fault+0xb0/0x130 [ 1774.696837][T20083] should_fail_ex+0x414/0x560 [ 1774.696864][T20083] _copy_from_user+0x2d/0xb0 [ 1774.696892][T20083] drm_ioctl+0x58a/0xb10 [ 1774.696912][T20083] ? smk_tskacc+0x2fc/0x370 [ 1774.696940][T20083] ? __pfx_drm_mode_addfb2_ioctl+0x10/0x10 [ 1774.696973][T20083] ? __pfx_drm_ioctl+0x10/0x10 [ 1774.697009][T20083] ? __fget_files+0x2a/0x420 [ 1774.697035][T20083] ? bpf_lsm_file_ioctl+0x9/0x20 [ 1774.697058][T20083] ? __pfx_drm_ioctl+0x10/0x10 [ 1774.697078][T20083] __se_sys_ioctl+0xfc/0x170 [ 1774.697109][T20083] do_syscall_64+0xfa/0x3b0 [ 1774.697130][T20083] ? lockdep_hardirqs_on+0x9c/0x150 [ 1774.697151][T20083] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1774.697170][T20083] ? clear_bhb_loop+0x60/0xb0 [ 1774.697201][T20083] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1774.697220][T20083] RIP: 0033:0x7f7ac7f8ebe9 [ 1774.697237][T20083] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1774.697255][T20083] RSP: 002b:00007f7ac8ebc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1774.697275][T20083] RAX: ffffffffffffffda RBX: 00007f7ac81b5fa0 RCX: 00007f7ac7f8ebe9 [ 1774.697290][T20083] RDX: 0000200000000000 RSI: 00000000c06864b8 RDI: 0000000000000003 [ 1774.697304][T20083] RBP: 00007f7ac8ebc090 R08: 0000000000000000 R09: 0000000000000000 [ 1774.697316][T20083] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1774.697328][T20083] R13: 00007f7ac81b6038 R14: 00007f7ac81b5fa0 R15: 00007ffc277f48a8 [ 1774.697361][T20083] [ 1774.903022][ C1] vkms_vblank_simulate: vblank timer overrun [ 1776.444008][ T977] usb 2-1: new low-speed USB device number 15 using dummy_hcd [ 1777.427991][ T977] usb 2-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 1777.466146][ T977] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1777.494069][ T977] usb 2-1: config 0 descriptor?? [ 1777.573635][T20116] Device name cannot be null; rc = [-22] [ 1777.761765][T20128] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3763'. [ 1778.704287][ T977] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 1778.757768][ T977] asix 2-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffb9 [ 1778.793111][ T977] asix 2-1:0.0: probe with driver asix failed with error -71 [ 1778.831822][T20146] netlink: 44 bytes leftover after parsing attributes in process `syz.3.3767'. [ 1778.923135][ T977] usb 2-1: USB disconnect, device number 15 [ 1781.962398][T20176] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3775'. [ 1782.004299][T20176] netlink: 56 bytes leftover after parsing attributes in process `syz.0.3775'. [ 1782.105443][T20181] Device name cannot be null; rc = [-22] [ 1782.276452][T20183] FAULT_INJECTION: forcing a failure. [ 1782.276452][T20183] name failslab, interval 1, probability 0, space 0, times 0 [ 1782.289796][T20183] CPU: 0 UID: 0 PID: 20183 Comm: syz.2.3772 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 1782.289826][T20183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1782.289839][T20183] Call Trace: [ 1782.289850][T20183] [ 1782.289861][T20183] dump_stack_lvl+0x189/0x250 [ 1782.289893][T20183] ? __pfx____ratelimit+0x10/0x10 [ 1782.289917][T20183] ? __pfx_dump_stack_lvl+0x10/0x10 [ 1782.289964][T20183] ? __pfx__printk+0x10/0x10 [ 1782.289996][T20183] ? __pfx___might_resched+0x10/0x10 [ 1782.290024][T20183] should_fail_ex+0x414/0x560 [ 1782.290051][T20183] should_failslab+0xa8/0x100 [ 1782.290076][T20183] kmem_cache_alloc_noprof+0x73/0x3c0 [ 1782.290096][T20183] ? sk_prot_alloc+0x57/0x220 [ 1782.290161][T20183] sk_prot_alloc+0x57/0x220 [ 1782.290187][T20183] ? sk_alloc+0x24/0x370 [ 1782.290217][T20183] sk_alloc+0x3a/0x370 [ 1782.290250][T20183] unix_create1+0xb0/0x7c0 [ 1782.290287][T20183] unix_create+0x154/0x200 [ 1782.290316][T20183] __sock_create+0x4b0/0x9f0 [ 1782.290353][T20183] __sys_socketpair+0x1c5/0x560 [ 1782.290404][T20183] __x64_sys_socketpair+0x9b/0xb0 [ 1782.290431][T20183] do_syscall_64+0xfa/0x3b0 [ 1782.290453][T20183] ? lockdep_hardirqs_on+0x9c/0x150 [ 1782.290474][T20183] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1782.290494][T20183] ? clear_bhb_loop+0x60/0xb0 [ 1782.290518][T20183] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1782.290542][T20183] RIP: 0033:0x7f155a98ebe9 [ 1782.290561][T20183] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1782.290579][T20183] RSP: 002b:00007f1558bd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035 [ 1782.290601][T20183] RAX: ffffffffffffffda RBX: 00007f155abb6090 RCX: 00007f155a98ebe9 [ 1782.290616][T20183] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000001 [ 1782.290629][T20183] RBP: 00007f1558bd5090 R08: 0000000000000000 R09: 0000000000000000 [ 1782.290641][T20183] R10: 0000200000000200 R11: 0000000000000246 R12: 0000000000000001 [ 1782.290654][T20183] R13: 00007f155abb6128 R14: 00007f155abb6090 R15: 00007ffd293d4918 [ 1782.290688][T20183] [ 1782.503438][ T977] usb 2-1: new high-speed USB device number 16 using dummy_hcd [ 1782.838424][ T977] usb 2-1: unable to get BOS descriptor or descriptor too short [ 1782.895984][ T977] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1782.992448][ T977] usb 2-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 1783.102399][ T977] usb 2-1: config 1 interface 1 has no altsetting 0 [ 1783.221149][ T977] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1783.244002][ T977] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1783.252681][ T977] usb 2-1: Product: syz [ 1783.292788][ T977] usb 2-1: Manufacturer: syz [ 1783.319533][ T977] usb 2-1: SerialNumber: syz [ 1783.617968][ T58] usb 5-1: new high-speed USB device number 20 using dummy_hcd [ 1783.653189][T20178] netlink: 44 bytes leftover after parsing attributes in process `syz.1.3776'. [ 1783.960213][ T58] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1784.019590][ T58] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1784.099582][ T58] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1784.157352][ T977] usb 2-1: 2:1 : invalid UAC_AS_GENERAL desc [ 1784.163602][ T58] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1784.194371][ T58] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1784.232967][ T58] usb 5-1: config 0 descriptor?? [ 1784.242519][ T977] usb 2-1: USB disconnect, device number 16 [ 1784.348877][T20212] FAULT_INJECTION: forcing a failure. [ 1784.348877][T20212] name failslab, interval 1, probability 0, space 0, times 0 [ 1784.368469][T20212] CPU: 0 UID: 0 PID: 20212 Comm: syz.0.3788 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 1784.368497][T20212] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1784.368509][T20212] Call Trace: [ 1784.368518][T20212] [ 1784.368526][T20212] dump_stack_lvl+0x189/0x250 [ 1784.368557][T20212] ? __pfx____ratelimit+0x10/0x10 [ 1784.368580][T20212] ? __pfx_dump_stack_lvl+0x10/0x10 [ 1784.368602][T20212] ? __pfx__printk+0x10/0x10 [ 1784.368632][T20212] ? __pfx___might_resched+0x10/0x10 [ 1784.368647][T20212] ? fs_reclaim_acquire+0x7d/0x100 [ 1784.368663][T20212] should_fail_ex+0x414/0x560 [ 1784.368678][T20212] should_failslab+0xa8/0x100 [ 1784.368694][T20212] __kmalloc_cache_noprof+0x70/0x3d0 [ 1784.368712][T20212] ? __se_sys_mount+0x165/0x410 [ 1784.368731][T20212] ? memdup_user+0x99/0xd0 [ 1784.368761][T20212] __se_sys_mount+0x165/0x410 [ 1784.368789][T20212] ? __pfx___se_sys_mount+0x10/0x10 [ 1784.368801][T20212] ? rcu_is_watching+0x15/0xb0 [ 1784.368816][T20212] ? do_syscall_64+0xbe/0x3b0 [ 1784.368827][T20212] ? __x64_sys_mount+0x20/0xc0 [ 1784.368839][T20212] do_syscall_64+0xfa/0x3b0 [ 1784.368852][T20212] ? lockdep_hardirqs_on+0x9c/0x150 [ 1784.368874][T20212] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1784.368894][T20212] ? clear_bhb_loop+0x60/0xb0 [ 1784.368918][T20212] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1784.368936][T20212] RIP: 0033:0x7f7ac7f8ebe9 [ 1784.368948][T20212] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1784.368957][T20212] RSP: 002b:00007f7ac8ebc038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1784.368969][T20212] RAX: ffffffffffffffda RBX: 00007f7ac81b5fa0 RCX: 00007f7ac7f8ebe9 [ 1784.368983][T20212] RDX: 00002000000020c0 RSI: 00002000000000c0 RDI: 0000000000000000 [ 1784.368990][T20212] RBP: 00007f7ac8ebc090 R08: 0000200000002100 R09: 0000000000000000 [ 1784.368996][T20212] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1784.369007][T20212] R13: 00007f7ac81b6038 R14: 00007f7ac81b5fa0 R15: 00007ffc277f48a8 [ 1784.369038][T20212] [ 1784.799162][ T58] plantronics 0003:047F:FFFF.0009: reserved main item tag 0xd [ 1784.867863][ T58] plantronics 0003:047F:FFFF.0009: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0 [ 1785.076179][T20222] Device name cannot be null; rc = [-22] [ 1786.391815][T20223] Device name cannot be null; rc = [-22] [ 1786.458836][ T9] usb 5-1: USB disconnect, device number 20 [ 1786.734028][ T977] usb 3-1: new high-speed USB device number 20 using dummy_hcd [ 1787.759130][T20233] overlay: ./file1 is not a directory [ 1787.841571][ T977] usb 3-1: config 1 has 2 interfaces, different from the descriptor's value: 3 [ 1787.850760][ T977] usb 3-1: config 1 has no interface number 1 [ 1787.859794][ T977] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1787.869196][ T977] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1787.883031][ T977] usb 3-1: Product: syz [ 1787.894007][ T977] usb 3-1: Manufacturer: syz [ 1787.899079][ T977] usb 3-1: SerialNumber: syz [ 1788.154440][T20241] overlayfs: missing 'workdir' [ 1788.411511][ T977] usb 3-1: 2:1 : invalid UAC_FORMAT_TYPE desc [ 1788.415269][T20243] overlayfs: missing 'workdir' [ 1788.519678][ T977] usb 3-1: USB disconnect, device number 20 [ 1788.601428][T20251] FAULT_INJECTION: forcing a failure. [ 1788.601428][T20251] name failslab, interval 1, probability 0, space 0, times 0 [ 1788.694055][T20253] Device name cannot be null; rc = [-22] [ 1788.708685][T20251] CPU: 1 UID: 0 PID: 20251 Comm: syz.4.3803 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 1788.708713][T20251] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1788.708726][T20251] Call Trace: [ 1788.708734][T20251] [ 1788.708742][T20251] dump_stack_lvl+0x189/0x250 [ 1788.708770][T20251] ? __pfx____ratelimit+0x10/0x10 [ 1788.708791][T20251] ? __pfx_dump_stack_lvl+0x10/0x10 [ 1788.708813][T20251] ? __pfx__printk+0x10/0x10 [ 1788.708843][T20251] ? __pfx___might_resched+0x10/0x10 [ 1788.708863][T20251] ? fs_reclaim_acquire+0x7d/0x100 [ 1788.708891][T20251] should_fail_ex+0x414/0x560 [ 1788.708916][T20251] should_failslab+0xa8/0x100 [ 1788.708939][T20251] kmem_cache_alloc_noprof+0x73/0x3c0 [ 1788.708957][T20251] ? prepare_creds+0x31/0x6c0 [ 1788.708987][T20251] prepare_creds+0x31/0x6c0 [ 1788.709016][T20251] lookup_user_key+0x2dd/0x1090 [ 1788.709050][T20251] ? __pfx_lookup_user_key+0x10/0x10 [ 1788.709077][T20251] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 1788.709110][T20251] ? _copy_from_user+0x94/0xb0 [ 1788.709137][T20251] ? memdup_user+0x99/0xd0 [ 1788.709184][T20251] __se_sys_request_key+0x1c1/0x340 [ 1788.709208][T20251] ? __pfx___se_sys_request_key+0x10/0x10 [ 1788.709238][T20251] ? do_syscall_64+0xbe/0x3b0 [ 1788.709264][T20251] do_syscall_64+0xfa/0x3b0 [ 1788.709283][T20251] ? lockdep_hardirqs_on+0x9c/0x150 [ 1788.709303][T20251] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1788.709322][T20251] ? clear_bhb_loop+0x60/0xb0 [ 1788.709345][T20251] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1788.709364][T20251] RIP: 0033:0x7f1b1298ebe9 [ 1788.709381][T20251] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1788.709398][T20251] RSP: 002b:00007f1b138a0038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f9 [ 1788.709418][T20251] RAX: ffffffffffffffda RBX: 00007f1b12bb5fa0 RCX: 00007f1b1298ebe9 [ 1788.709438][T20251] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000200000001d40 [ 1788.709452][T20251] RBP: 00007f1b138a0090 R08: 0000000000000000 R09: 0000000000000000 [ 1788.709463][T20251] R10: fffffffffffffffe R11: 0000000000000246 R12: 0000000000000001 [ 1788.709476][T20251] R13: 00007f1b12bb6038 R14: 00007f1b12bb5fa0 R15: 00007ffe8905c688 [ 1788.709508][T20251] [ 1790.047120][T20259] Device name cannot be null; rc = [-22] [ 1790.386622][T20277] Invalid source name [ 1790.390808][T20277] UBIFS error (pid: 20277): cannot open "usrquota", error -22 [ 1790.660000][T20278] Device name cannot be null; rc = [-22] [ 1791.640564][T20280] FAULT_INJECTION: forcing a failure. [ 1791.640564][T20280] name failslab, interval 1, probability 0, space 0, times 0 [ 1791.659605][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 1791.666188][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 1791.678335][T20280] CPU: 1 UID: 0 PID: 20280 Comm: syz.1.3814 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 1791.678362][T20280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1791.678375][T20280] Call Trace: [ 1791.678382][T20280] [ 1791.678391][T20280] dump_stack_lvl+0x189/0x250 [ 1791.678419][T20280] ? __pfx____ratelimit+0x10/0x10 [ 1791.678441][T20280] ? __pfx_dump_stack_lvl+0x10/0x10 [ 1791.678461][T20280] ? __pfx__printk+0x10/0x10 [ 1791.678490][T20280] ? __pfx___might_resched+0x10/0x10 [ 1791.678516][T20280] should_fail_ex+0x414/0x560 [ 1791.678540][T20280] should_failslab+0xa8/0x100 [ 1791.678563][T20280] __kmalloc_noprof+0xcb/0x4f0 [ 1791.678581][T20280] ? io_cache_alloc_new+0x40/0x100 [ 1791.678609][T20280] io_cache_alloc_new+0x40/0x100 [ 1791.678634][T20280] io_msg_alloc_async+0x1b2/0x2d0 [ 1791.678662][T20280] io_recvmsg_prep+0x60e/0xdb0 [ 1791.678695][T20280] ? __pfx_io_recvmsg_prep+0x10/0x10 [ 1791.678717][T20280] ? __pfx___io_alloc_req_refill+0x10/0x10 [ 1791.678751][T20280] ? io_task_refs_refill+0xbb/0x180 [ 1791.678781][T20280] io_submit_sqes+0x90c/0x1c50 [ 1791.678844][T20280] __se_sys_io_uring_enter+0x2df/0x2b20 [ 1791.678894][T20280] ? ksys_write+0x1cb/0x250 [ 1791.678915][T20280] ? __pfx___se_sys_io_uring_enter+0x10/0x10 [ 1791.678931][T20280] ? __mutex_unlock_slowpath+0x1cd/0x700 [ 1791.678952][T20280] ? __pfx_vfs_write+0x10/0x10 [ 1791.678971][T20280] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1791.678995][T20280] ? __fget_files+0x3a0/0x420 [ 1791.679022][T20280] ? fput+0xa0/0xd0 [ 1791.679045][T20280] ? ksys_write+0x22a/0x250 [ 1791.679065][T20280] ? __pfx_ksys_write+0x10/0x10 [ 1791.679078][T20280] ? rcu_is_watching+0x15/0xb0 [ 1791.679103][T20280] ? __x64_sys_io_uring_enter+0x21/0xf0 [ 1791.679123][T20280] do_syscall_64+0xfa/0x3b0 [ 1791.679143][T20280] ? lockdep_hardirqs_on+0x9c/0x150 [ 1791.679162][T20280] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1791.679180][T20280] ? clear_bhb_loop+0x60/0xb0 [ 1791.679203][T20280] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1791.679219][T20280] RIP: 0033:0x7ff4fe78ebe9 [ 1791.679235][T20280] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1791.679250][T20280] RSP: 002b:00007ff4ff643038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1791.679270][T20280] RAX: ffffffffffffffda RBX: 00007ff4fe9b5fa0 RCX: 00007ff4fe78ebe9 [ 1791.679284][T20280] RDX: 0000000000000000 RSI: 00000000000008aa RDI: 0000000000000004 [ 1791.679295][T20280] RBP: 00007ff4ff643090 R08: 0000000000000000 R09: 0000000000000000 [ 1791.679305][T20280] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1791.679316][T20280] R13: 00007ff4fe9b6038 R14: 00007ff4fe9b5fa0 R15: 00007ffe7a24fa18 [ 1791.679345][T20280] [ 1792.029109][T20287] Device name cannot be null; rc = [-22] [ 1792.379487][T20302] netlink: 504 bytes leftover after parsing attributes in process `syz.0.3822'. [ 1792.439531][T20292] kvm: kvm [20291]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x4000006e) = 0x2 [ 1792.570262][T20308] dummy0: entered promiscuous mode [ 1792.580970][T20308] dummy0: left promiscuous mode [ 1792.708439][T20310] overlayfs: missing 'workdir' [ 1792.717540][T20310] pvfs2: Unknown parameter 'overlay' [ 1792.730986][T20312] FAULT_INJECTION: forcing a failure. [ 1792.730986][T20312] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1792.747336][ T9] usb 1-1: new high-speed USB device number 19 using dummy_hcd [ 1792.757767][T20312] CPU: 0 UID: 0 PID: 20312 Comm: syz.1.3826 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 1792.757792][T20312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1792.757804][T20312] Call Trace: [ 1792.757811][T20312] [ 1792.757816][T20312] dump_stack_lvl+0x189/0x250 [ 1792.757833][T20312] ? __pfx____ratelimit+0x10/0x10 [ 1792.757844][T20312] ? __pfx_dump_stack_lvl+0x10/0x10 [ 1792.757855][T20312] ? __pfx__printk+0x10/0x10 [ 1792.757869][T20312] ? __might_fault+0xb0/0x130 [ 1792.757885][T20312] should_fail_ex+0x414/0x560 [ 1792.757899][T20312] _copy_from_user+0x2d/0xb0 [ 1792.757915][T20312] __se_sys_mount+0x18a/0x410 [ 1792.757930][T20312] ? __pfx___se_sys_mount+0x10/0x10 [ 1792.757940][T20312] ? rcu_is_watching+0x15/0xb0 [ 1792.757954][T20312] ? do_syscall_64+0xbe/0x3b0 [ 1792.757966][T20312] ? __x64_sys_mount+0x20/0xc0 [ 1792.757978][T20312] do_syscall_64+0xfa/0x3b0 [ 1792.757991][T20312] ? lockdep_hardirqs_on+0x9c/0x150 [ 1792.758001][T20312] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1792.758011][T20312] ? clear_bhb_loop+0x60/0xb0 [ 1792.758024][T20312] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1792.758033][T20312] RIP: 0033:0x7ff4fe78ebe9 [ 1792.758044][T20312] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1792.758052][T20312] RSP: 002b:00007ff4ff643038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1792.758064][T20312] RAX: ffffffffffffffda RBX: 00007ff4fe9b5fa0 RCX: 00007ff4fe78ebe9 [ 1792.758071][T20312] RDX: 00002000000020c0 RSI: 00002000000000c0 RDI: 0000000000000000 [ 1792.758078][T20312] RBP: 00007ff4ff643090 R08: 0000200000002100 R09: 0000000000000000 [ 1792.758085][T20312] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1792.758091][T20312] R13: 00007ff4fe9b6038 R14: 00007ff4fe9b5fa0 R15: 00007ffe7a24fa18 [ 1792.758110][T20312] [ 1792.759582][T20312] overlayfs: missing 'lowerdir' [ 1792.986776][T20314] Device name cannot be null; rc = [-22] [ 1793.028872][T20316] FAULT_INJECTION: forcing a failure. [ 1793.028872][T20316] name failslab, interval 1, probability 0, space 0, times 0 [ 1793.041629][ T9] usb 1-1: Using ep0 maxpacket: 16 [ 1793.047221][T20316] CPU: 1 UID: 0 PID: 20316 Comm: syz.1.3828 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 1793.047244][T20316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1793.047256][T20316] Call Trace: [ 1793.047263][T20316] [ 1793.047272][T20316] dump_stack_lvl+0x189/0x250 [ 1793.047298][T20316] ? __pfx____ratelimit+0x10/0x10 [ 1793.047318][T20316] ? __pfx_dump_stack_lvl+0x10/0x10 [ 1793.047337][T20316] ? __pfx__printk+0x10/0x10 [ 1793.047364][T20316] ? __pfx___might_resched+0x10/0x10 [ 1793.047386][T20316] ? fs_reclaim_acquire+0x7d/0x100 [ 1793.047412][T20316] should_fail_ex+0x414/0x560 [ 1793.047436][T20316] should_failslab+0xa8/0x100 [ 1793.047457][T20316] kmem_cache_alloc_noprof+0x73/0x3c0 [ 1793.047476][T20316] ? security_file_alloc+0x34/0x330 [ 1793.047499][T20316] security_file_alloc+0x34/0x330 [ 1793.047520][T20316] init_file+0x93/0x2f0 [ 1793.047547][T20316] alloc_empty_file+0x6e/0x1d0 [ 1793.047571][T20316] path_openat+0x107/0x3830 [ 1793.047594][T20316] ? arch_stack_walk+0xfc/0x150 [ 1793.047640][T20316] ? __lock_acquire+0xab9/0xd20 [ 1793.047664][T20316] ? kasan_save_track+0x4f/0x80 [ 1793.047689][T20316] ? kasan_save_track+0x3e/0x80 [ 1793.047713][T20316] ? __kasan_slab_alloc+0x6c/0x80 [ 1793.047729][T20316] ? getname_flags+0xb8/0x540 [ 1793.047758][T20316] ? __pfx_path_openat+0x10/0x10 [ 1793.047782][T20316] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1793.047821][T20316] do_filp_open+0x1fa/0x410 [ 1793.047846][T20316] ? __lock_acquire+0xab9/0xd20 [ 1793.047865][T20316] ? __pfx_do_filp_open+0x10/0x10 [ 1793.047913][T20316] ? _raw_spin_unlock+0x28/0x50 [ 1793.047940][T20316] ? alloc_fd+0x64c/0x6c0 [ 1793.047973][T20316] do_sys_openat2+0x121/0x1c0 [ 1793.048001][T20316] ? __pfx_do_sys_openat2+0x10/0x10 [ 1793.048026][T20316] ? ksys_write+0x22a/0x250 [ 1793.048046][T20316] ? __pfx_ksys_write+0x10/0x10 [ 1793.048068][T20316] __x64_sys_openat+0x138/0x170 [ 1793.048098][T20316] do_syscall_64+0xfa/0x3b0 [ 1793.048119][T20316] ? lockdep_hardirqs_on+0x9c/0x150 [ 1793.048138][T20316] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1793.048157][T20316] ? clear_bhb_loop+0x60/0xb0 [ 1793.048180][T20316] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1793.048197][T20316] RIP: 0033:0x7ff4fe78ebe9 [ 1793.048215][T20316] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1793.048232][T20316] RSP: 002b:00007ff4ff643038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1793.048253][T20316] RAX: ffffffffffffffda RBX: 00007ff4fe9b5fa0 RCX: 00007ff4fe78ebe9 [ 1793.048268][T20316] RDX: 0000000000000000 RSI: 0000200000002180 RDI: ffffffffffffff9c [ 1793.048281][T20316] RBP: 00007ff4ff643090 R08: 0000000000000000 R09: 0000000000000000 [ 1793.048292][T20316] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1793.048303][T20316] R13: 00007ff4fe9b6038 R14: 00007ff4fe9b5fa0 R15: 00007ffe7a24fa18 [ 1793.048334][T20316] [ 1793.048749][ T9] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1793.354897][ T9] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1793.368248][ T9] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 1.40 [ 1793.377591][ T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1793.385701][ T9] usb 1-1: Product: syz [ 1793.389882][ T9] usb 1-1: Manufacturer: syz [ 1793.394564][ T9] usb 1-1: SerialNumber: syz [ 1793.640161][T20306] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1793.649994][T20306] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1793.665081][ T9] usb 1-1: 0:2 : does not exist [ 1793.696288][ T9] usb 1-1: USB disconnect, device number 19 [ 1794.291088][T20339] overlayfs: missing 'lowerdir' [ 1794.899324][T20352] xt_SECMARK: unable to map security context 'system_u:object_r:dbusd_etc_t:s0' [ 1795.741895][T20360] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3842'. [ 1795.745856][T20362] FAULT_INJECTION: forcing a failure. [ 1795.745856][T20362] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1795.782425][T20362] CPU: 1 UID: 0 PID: 20362 Comm: syz.4.3844 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 1795.782453][T20362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1795.782465][T20362] Call Trace: [ 1795.782472][T20362] [ 1795.782481][T20362] dump_stack_lvl+0x189/0x250 [ 1795.782508][T20362] ? __pfx____ratelimit+0x10/0x10 [ 1795.782529][T20362] ? __pfx_dump_stack_lvl+0x10/0x10 [ 1795.782551][T20362] ? __pfx__printk+0x10/0x10 [ 1795.782587][T20362] should_fail_ex+0x414/0x560 [ 1795.782611][T20362] _copy_to_user+0x31/0xb0 [ 1795.782639][T20362] copy_to_sockptr+0x5e/0xa0 [ 1795.782664][T20362] do_ip_getsockopt+0x1044/0x1b60 [ 1795.782697][T20362] ? __pfx_do_ip_getsockopt+0x10/0x10 [ 1795.782726][T20362] ? __lock_acquire+0xab9/0xd20 [ 1795.782755][T20362] ? get_pid_task+0x20/0x1f0 [ 1795.782801][T20362] ? __lock_acquire+0xab9/0xd20 [ 1795.782832][T20362] ip_getsockopt+0xbb/0x220 [ 1795.782864][T20362] ? __pfx_ip_getsockopt+0x10/0x10 [ 1795.782892][T20362] ? sock_common_getsockopt+0x2d/0xb0 [ 1795.782914][T20362] ? raw_getsockopt+0xce/0x200 [ 1795.782930][T20362] ? __pfx_sock_common_getsockopt+0x10/0x10 [ 1795.782955][T20362] do_sock_getsockopt+0x36f/0x450 [ 1795.782988][T20362] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 1795.783014][T20362] ? do_syscall_64+0x20/0x3b0 [ 1795.783035][T20362] ? __fget_files+0x3a0/0x420 [ 1795.783054][T20362] ? __fget_files+0x2a/0x420 [ 1795.783083][T20362] __x64_sys_getsockopt+0x1a5/0x250 [ 1795.783110][T20362] ? do_syscall_64+0x20/0x3b0 [ 1795.783132][T20362] ? do_syscall_64+0x20/0x3b0 [ 1795.783157][T20362] do_syscall_64+0xfa/0x3b0 [ 1795.783176][T20362] ? lockdep_hardirqs_on+0x9c/0x150 [ 1795.783196][T20362] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1795.783215][T20362] ? clear_bhb_loop+0x60/0xb0 [ 1795.783238][T20362] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1795.783257][T20362] RIP: 0033:0x7f1b1298ebe9 [ 1795.783275][T20362] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1795.783292][T20362] RSP: 002b:00007f1b138a0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 1795.783313][T20362] RAX: ffffffffffffffda RBX: 00007f1b12bb5fa0 RCX: 00007f1b1298ebe9 [ 1795.783328][T20362] RDX: 000000000000000a RSI: 0000000000000000 RDI: 0000000000000007 [ 1795.783340][T20362] RBP: 00007f1b138a0090 R08: 00002000000000c0 R09: 0000000000000000 [ 1795.783362][T20362] R10: 0000200000000080 R11: 0000000000000246 R12: 0000000000000001 [ 1795.783374][T20362] R13: 00007f1b12bb6038 R14: 00007f1b12bb5fa0 R15: 00007ffe8905c688 [ 1795.783406][T20362] [ 1796.730008][T20382] [ 1796.732428][T20382] ====================================================== [ 1796.739504][T20382] WARNING: possible circular locking dependency detected [ 1796.746535][T20382] 6.16.0-syzkaller #0 Not tainted [ 1796.751542][T20382] ------------------------------------------------------ [ 1796.758559][T20382] syz.2.3852/20382 is trying to acquire lock: [ 1796.764603][T20382] ffff8880253ea188 (&set->update_nr_hwq_lock){++++}-{4:4}, at: blk_mq_update_nr_hw_queues+0x3b/0x14c0 [ 1796.775569][T20382] [ 1796.775569][T20382] but task is already holding lock: [ 1796.782929][T20382] ffff8880253ea230 (&nbd->config_lock){+.+.}-{4:4}, at: nbd_genl_connect+0x93e/0x18f0 [ 1796.792549][T20382] [ 1796.792549][T20382] which lock already depends on the new lock. [ 1796.792549][T20382] [ 1796.802975][T20382] [ 1796.802975][T20382] the existing dependency chain (in reverse order) is: [ 1796.812004][T20382] [ 1796.812004][T20382] -> #2 (&nbd->config_lock){+.+.}-{4:4}: [ 1796.819854][T20382] lock_acquire+0x120/0x360 [ 1796.824988][T20382] __mutex_lock+0x182/0xe80 [ 1796.830025][T20382] refcount_dec_and_mutex_lock+0x30/0xa0 [ 1796.836196][T20382] nbd_config_put+0x2c/0x790 [ 1796.841325][T20382] nbd_release+0xfe/0x140 [ 1796.846177][T20382] bdev_release+0x533/0x650 [ 1796.851288][T20382] blkdev_release+0x15/0x20 [ 1796.856323][T20382] __fput+0x449/0xa70 [ 1796.860821][T20382] fput_close_sync+0x119/0x200 [ 1796.866105][T20382] __x64_sys_close+0x7f/0x110 [ 1796.871304][T20382] do_syscall_64+0xfa/0x3b0 [ 1796.876324][T20382] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1796.882734][T20382] [ 1796.882734][T20382] -> #1 (&disk->open_mutex){+.+.}-{4:4}: [ 1796.890555][T20382] lock_acquire+0x120/0x360 [ 1796.895573][T20382] __mutex_lock+0x182/0xe80 [ 1796.900593][T20382] __del_gendisk+0x129/0x9e0 [ 1796.905700][T20382] del_gendisk+0xe8/0x160 [ 1796.910633][T20382] loop_remove+0x42/0xc0 [ 1796.915417][T20382] loop_control_ioctl+0x4ac/0x5a0 [ 1796.920983][T20382] __se_sys_ioctl+0xfc/0x170 [ 1796.926105][T20382] do_syscall_64+0xfa/0x3b0 [ 1796.931129][T20382] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1796.937538][T20382] [ 1796.937538][T20382] -> #0 (&set->update_nr_hwq_lock){++++}-{4:4}: [ 1796.946143][T20382] validate_chain+0xb9b/0x2140 [ 1796.951424][T20382] __lock_acquire+0xab9/0xd20 [ 1796.956619][T20382] lock_acquire+0x120/0x360 [ 1796.961632][T20382] down_write+0x96/0x1f0 [ 1796.966419][T20382] blk_mq_update_nr_hw_queues+0x3b/0x14c0 [ 1796.972679][T20382] nbd_start_device+0x16c/0xac0 [ 1796.978071][T20382] nbd_genl_connect+0x135b/0x18f0 [ 1796.983630][T20382] genl_family_rcv_msg_doit+0x215/0x300 [ 1796.989711][T20382] genl_rcv_msg+0x60e/0x790 [ 1796.994744][T20382] netlink_rcv_skb+0x205/0x470 [ 1797.000031][T20382] genl_rcv+0x28/0x40 [ 1797.004527][T20382] netlink_unicast+0x75c/0x8e0 [ 1797.009812][T20382] netlink_sendmsg+0x805/0xb30 [ 1797.015131][T20382] __sock_sendmsg+0x21c/0x270 [ 1797.020327][T20382] ____sys_sendmsg+0x505/0x830 [ 1797.025620][T20382] ___sys_sendmsg+0x21f/0x2a0 [ 1797.030821][T20382] __x64_sys_sendmsg+0x19b/0x260 [ 1797.036289][T20382] do_syscall_64+0xfa/0x3b0 [ 1797.041310][T20382] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1797.047719][T20382] [ 1797.047719][T20382] other info that might help us debug this: [ 1797.047719][T20382] [ 1797.057950][T20382] Chain exists of: [ 1797.057950][T20382] &set->update_nr_hwq_lock --> &disk->open_mutex --> &nbd->config_lock [ 1797.057950][T20382] [ 1797.072125][T20382] Possible unsafe locking scenario: [ 1797.072125][T20382] [ 1797.079575][T20382] CPU0 CPU1 [ 1797.084932][T20382] ---- ---- [ 1797.090292][T20382] lock(&nbd->config_lock); [ 1797.094890][T20382] lock(&disk->open_mutex); [ 1797.102017][T20382] lock(&nbd->config_lock); [ 1797.109149][T20382] lock(&set->update_nr_hwq_lock); [ 1797.114403][T20382] [ 1797.114403][T20382] *** DEADLOCK *** [ 1797.114403][T20382] [ 1797.122554][T20382] 3 locks held by syz.2.3852/20382: [ 1797.127745][T20382] #0: ffffffff8f5701f0 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40 [ 1797.135948][T20382] #1: ffffffff8f570008 (genl_mutex){+.+.}-{4:4}, at: genl_rcv_msg+0x10d/0x790 [ 1797.144937][T20382] #2: ffff8880253ea230 (&nbd->config_lock){+.+.}-{4:4}, at: nbd_genl_connect+0x93e/0x18f0 [ 1797.154964][T20382] [ 1797.154964][T20382] stack backtrace: [ 1797.160846][T20382] CPU: 1 UID: 0 PID: 20382 Comm: syz.2.3852 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 1797.160865][T20382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1797.160876][T20382] Call Trace: [ 1797.160883][T20382] [ 1797.160891][T20382] dump_stack_lvl+0x189/0x250 [ 1797.160914][T20382] ? __pfx_dump_stack_lvl+0x10/0x10 [ 1797.160932][T20382] ? __pfx__printk+0x10/0x10 [ 1797.160952][T20382] ? print_lock_name+0xde/0x100 [ 1797.160974][T20382] print_circular_bug+0x2ee/0x310 [ 1797.160995][T20382] check_noncircular+0x134/0x160 [ 1797.161017][T20382] validate_chain+0xb9b/0x2140 [ 1797.161044][T20382] __lock_acquire+0xab9/0xd20 [ 1797.161061][T20382] ? blk_mq_update_nr_hw_queues+0x3b/0x14c0 [ 1797.161083][T20382] lock_acquire+0x120/0x360 [ 1797.161097][T20382] ? blk_mq_update_nr_hw_queues+0x3b/0x14c0 [ 1797.161121][T20382] ? kernfs_add_one+0xf0/0x520 [ 1797.161143][T20382] down_write+0x96/0x1f0 [ 1797.161162][T20382] ? blk_mq_update_nr_hw_queues+0x3b/0x14c0 [ 1797.161183][T20382] ? __pfx_down_write+0x10/0x10 [ 1797.161203][T20382] ? kernfs_add_one+0xf0/0x520 [ 1797.161230][T20382] blk_mq_update_nr_hw_queues+0x3b/0x14c0 [ 1797.161253][T20382] ? sysfs_add_file_mode_ns+0x238/0x300 [ 1797.161269][T20382] ? sysfs_add_file_mode_ns+0x259/0x300 [ 1797.161288][T20382] nbd_start_device+0x16c/0xac0 [ 1797.161310][T20382] ? __nla_parse+0x40/0x60 [ 1797.161329][T20382] ? device_create_file+0xf4/0x1c0 [ 1797.161352][T20382] nbd_genl_connect+0x135b/0x18f0 [ 1797.161375][T20382] ? __pfx_nbd_genl_connect+0x10/0x10 [ 1797.161399][T20382] ? __nla_parse+0x40/0x60 [ 1797.161419][T20382] ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0 [ 1797.161442][T20382] genl_family_rcv_msg_doit+0x215/0x300 [ 1797.161466][T20382] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 1797.161493][T20382] genl_rcv_msg+0x60e/0x790 [ 1797.161512][T20382] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1797.161527][T20382] ? __pfx_nbd_genl_connect+0x10/0x10 [ 1797.161552][T20382] netlink_rcv_skb+0x205/0x470 [ 1797.161574][T20382] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1797.161591][T20382] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1797.161619][T20382] ? down_read+0x1ad/0x2e0 [ 1797.161638][T20382] genl_rcv+0x28/0x40 [ 1797.161652][T20382] netlink_unicast+0x75c/0x8e0 [ 1797.161676][T20382] netlink_sendmsg+0x805/0xb30 [ 1797.161702][T20382] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1797.161728][T20382] ? bpf_lsm_socket_sendmsg+0x9/0x20 [ 1797.161744][T20382] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1797.161766][T20382] __sock_sendmsg+0x21c/0x270 [ 1797.161786][T20382] ____sys_sendmsg+0x505/0x830 [ 1797.161812][T20382] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1797.161840][T20382] ? import_iovec+0x74/0xa0 [ 1797.161864][T20382] ___sys_sendmsg+0x21f/0x2a0 [ 1797.161889][T20382] ? __pfx____sys_sendmsg+0x10/0x10 [ 1797.161927][T20382] ? __fget_files+0x2a/0x420 [ 1797.161945][T20382] ? __fget_files+0x3a0/0x420 [ 1797.161966][T20382] __x64_sys_sendmsg+0x19b/0x260 [ 1797.161991][T20382] ? __pfx___x64_sys_sendmsg+0x10/0x10 [ 1797.162020][T20382] ? rcu_is_watching+0x15/0xb0 [ 1797.162041][T20382] ? do_syscall_64+0xbe/0x3b0 [ 1797.162060][T20382] do_syscall_64+0xfa/0x3b0 [ 1797.162077][T20382] ? lockdep_hardirqs_on+0x9c/0x150 [ 1797.162093][T20382] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1797.162109][T20382] ? clear_bhb_loop+0x60/0xb0 [ 1797.162127][T20382] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1797.162142][T20382] RIP: 0033:0x7f155a98ebe9 [ 1797.162157][T20382] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1797.162173][T20382] RSP: 002b:00007f1558bf6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1797.162189][T20382] RAX: ffffffffffffffda RBX: 00007f155abb5fa0 RCX: 00007f155a98ebe9 [ 1797.162202][T20382] RDX: 0000000020000000 RSI: 0000200000001ac0 RDI: 0000000000000007 [ 1797.162220][T20382] RBP: 00007f155aa11e19 R08: 0000000000000000 R09: 0000000000000000 [ 1797.162230][T20382] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1797.162240][T20382] R13: 00007f155abb6038 R14: 00007f155abb5fa0 R15: 00007ffd293d4918 [ 1797.162259][T20382] [ 1797.595213][ T5859] block nbd0: Receive control failed (result -107) [ 1797.605544][T20382] nbd0: detected capacity change from 0 to 63 [ 1797.844029][ T24] usb 5-1: new low-speed USB device number 21 using dummy_hcd [ 1798.025540][ T24] usb 5-1: unable to get BOS descriptor or descriptor too short [ 1798.034030][ T24] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1798.044380][ T24] usb 5-1: config 1 interface 0 altsetting 195 has 0 endpoint descriptors, different from the interface descriptor's value: 3 [ 1798.057488][ T24] usb 5-1: config 1 interface 0 has no altsetting 0 [ 1798.066462][ T24] usb 5-1: string descriptor 0 read error: -22 [ 1798.072878][ T24] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1798.082105][ T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1798.092341][ T24] usb 5-1: bad CDC descriptors [ 1798.349980][T18237] usb 5-1: USB disconnect, device number 21