last executing test programs:

3m32.364546992s ago: executing program 2 (id=225):
unshare(0x20000400)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r1 = socket(0x2d, 0x2, 0x0)
connect$qrtr(r1, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0/file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r2, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
ioctl$SG_GET_VERSION_NUM(0xffffffffffffffff, 0x2284, 0x0)
bind$inet(r2, &(0x7f0000000340)={0x2, 0x4e23, @loopback}, 0x10)
sendmsg$NL80211_CMD_JOIN_MESH(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[], 0x1a000}}, 0x0)
sendmsg$rds(r2, &(0x7f0000001180)={0x0, 0x0, 0x0}, 0x0)

3m31.955897631s ago: executing program 2 (id=229):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
mount$bpf(0x0, 0x0, 0x0, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800"/15], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001440)={r1, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000840)=ANY=[@ANYBLOB="440000004600070128bd7000", @ANYRES32=r2], 0x44}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r5 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r5, 0x1, 0x0)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
r7 = open(&(0x7f00009e1000)='./file0\x00', 0x8060, 0x0)
fcntl$setlease(r7, 0x400, 0x0)
r8 = open(0x0, 0x0, 0x0)
fcntl$lock(r8, 0x25, &(0x7f00000002c0))
close(0x3)
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r9 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r9, &(0x7f0000000140), 0x0, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x6, @loopback={0xfec0ffffffffffff, 0x1c9ae7fffe9a6f34}}, 0x1c)
shutdown(r9, 0x1)
recvmmsg(r9, &(0x7f0000000840)=[{{0x0, 0x41, 0x0}}], 0x414, 0x406, 0x0)
sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000014c0)=ANY=[@ANYBLOB="50010000", @ANYRES16, @ANYBLOB="010000000000fcdbdf250100000008000100000000000400048008000c8004000b800800020001"], 0x150}}, 0x0)

3m31.574228901s ago: executing program 2 (id=231):
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f00000000c0))
r0 = syz_clone3(&(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_pidfd_open(r0, 0x0)
capset(&(0x7f00000004c0)={0x19980330, r0}, &(0x7f0000000040)={0x0, 0x80000000, 0x0, 0x0, 0xdffffffa, 0x280000})
msgctl$IPC_SET(0x0, 0x1, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
r2 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000000)={0x9000001d})
r3 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$netlink(r3, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="e0000000100009"], 0xe0}], 0x1, 0x0, 0x0, 0x4004800}, 0x0)

3m31.332170707s ago: executing program 2 (id=232):
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x88}}, 0x28014014)
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f0000003b80)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB='\\\x00\x00', @ANYBLOB="010000000000000000001400000018000180140002006e657464657673696d30"], 0x5c}, 0x1, 0x0, 0x0, 0x24004000}, 0x0)
bpf$MAP_DELETE_BATCH(0x1b, &(0x7f0000000240)={&(0x7f0000000180)="484a1e9f0a296a1edda568735b175adba4a3682cabf4e8373bb7e7daf0dce87850ec769df0796230b08ed89fce6abe202dec401a3a8e7b87d7eaa3fda0984550f74589859ef7a5f516a584fa15cfcb2e45c1bb2c33905d9b03fec894fdb285", 0x0, &(0x7f00000003c0), 0x0, 0x1}, 0x38)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000280)={0xa, 0x4e23, 0xfffffbff, @empty, 0xffff8428}, 0x1c, 0x0, 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="180000000000000029000000370000006700000000000000140000000700000000000000340000000200000000000000180000000000000029000000360000005e000000000000041a35fd7974c34c4e5a4d46286329044b92da3d6332dfd86f9e5b82736d2d194f853a0495151b46a8b783ce6fc9d633e5bdde66f0341f"], 0x48}, 0x800)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x0)

3m31.111447296s ago: executing program 2 (id=234):
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x88}}, 0x28014014)
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f0000003b80)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYBLOB="010000000000000000001400000018000180140002006e657464657673696d30"], 0x5c}, 0x1, 0x0, 0x0, 0x24004000}, 0x0)
bpf$MAP_DELETE_BATCH(0x1b, &(0x7f0000000240)={&(0x7f0000000180)="484a1e9f0a296a1edda568735b175adba4a3682cabf4e8373bb7e7daf0dce87850ec769df0796230b08ed89fce6abe202dec401a3a8e7b87d7eaa3fda0984550f74589859ef7a5f516a584fa15cfcb2e45c1bb2c33905d9b03fec894fdb285c03c99a80e1e8f4a0401b76c6328", 0x0, 0x0, 0x0, 0x1}, 0x38)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="180000000000000029000000370000006700000000000000140000000700000000000000340000000200000000000000180000000000000029000000360000005e000000000000041a35fd7974c34c4e5a4d46286329044b92da3d6332dfd86f9e5b82736d2d194f853a0495"], 0x48}, 0x800)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c2", 0x17)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x0)

3m31.00872433s ago: executing program 2 (id=236):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b000000000000", @ANYRES32, @ANYBLOB="00930000000000000000000000d8"], 0x50) (async, rerun: 32)
r2 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000180)={r1, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f00000002c0)='./cgroup/cgroup.procs\x00', &(0x7f0000000300)=[0x0], 0x0, 0x0, 0x1}}, 0x40) (rerun: 32)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000680)={r2, 0x58, &(0x7f0000000600)}, 0x10) (async, rerun: 32)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000007c0)=ANY=[@ANYBLOB="e4a700000206050000000000000000002000ffff14000780080008000000008908000640000001250500010006000000050005000200000005000400000000000900020073797a310000000010000300686173683a69702c6d616300"], 0x5c}}, 0x0) (async, rerun: 32)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0xe)

3m15.702475939s ago: executing program 32 (id=236):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b000000000000", @ANYRES32, @ANYBLOB="00930000000000000000000000d8"], 0x50) (async, rerun: 32)
r2 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000180)={r1, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f00000002c0)='./cgroup/cgroup.procs\x00', &(0x7f0000000300)=[0x0], 0x0, 0x0, 0x1}}, 0x40) (rerun: 32)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000680)={r2, 0x58, &(0x7f0000000600)}, 0x10) (async, rerun: 32)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000007c0)=ANY=[@ANYBLOB="e4a700000206050000000000000000002000ffff14000780080008000000008908000640000001250500010006000000050005000200000005000400000000000900020073797a310000000010000300686173683a69702c6d616300"], 0x5c}}, 0x0) (async, rerun: 32)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0xe)

2m36.910010949s ago: executing program 0 (id=534):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeeb, 0x8031, 0xffffffffffffffff, 0x0)
r0 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
r1 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
write$binfmt_elf32(0xffffffffffffffff, &(0x7f0000002600)=ANY=[@ANYBLOB="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"/759], 0x2f7)
r2 = add_key$keyring(&(0x7f0000000200), &(0x7f0000000140)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r2, &(0x7f0000000240)='asymmetric\x00', &(0x7f0000000180)=@keyring={'key_or_keyring:', r0})
r3 = add_key$user(&(0x7f00000000c0), &(0x7f0000000280)={'syz', 0x0}, &(0x7f00000002c0)="89e310974c493779f228ff739e380b5734661e2632", 0x15, r2)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r1, &(0x7f00000001c0)='asymmetric\x00', &(0x7f0000000400)=@chain={'key_or_keyring:', r3})
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0x0)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps_rollup\x00')
socket$inet6(0xa, 0x0, 0x7f)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
read$FUSE(r4, &(0x7f00000005c0)={0x2020}, 0x2020)

2m34.695780082s ago: executing program 0 (id=554):
r0 = socket$rds(0x15, 0x5, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
listen(0xffffffffffffffff, 0x10040)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000002700)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x2, 0x1c, &(0x7f0000000040)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x700}, {{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3, 0x9, 0x0, 0x1, 0x98}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x3, 0x6, 0xa, 0xa, 0xfff8, 0xf1}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {0x7, 0x0, 0x0, 0x9}, {0x7, 0x0, 0xc}, {0x18, 0x9, 0x2, 0x0, r1}, {}, {0x46, 0x8, 0xfff1, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'ip6tnl0\x00', <r5=>0x0})
sendto$packet(r4, &(0x7f00000002c0)="05031612d3fc140000004788031c09103328", 0xfce0, 0x4, &(0x7f0000000140)={0x11, 0x86dd, r5, 0x1, 0x0, 0x6, @multicast}, 0x14)
sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000340)={0x254, 0x0, 0x400, 0x70bd2b, 0x25dfdbff, {}, [@ETHTOOL_A_STRSET_STRINGSETS={0xfc, 0x2, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}]}, {0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}]}, {0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0xb}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}]}, {0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}]}]}, @ETHTOOL_A_STRSET_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_STRSET_HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}, @ETHTOOL_A_STRSET_STRINGSETS={0xd0, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}]}, {0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x18ccd8c6b5d0294e}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}]}, {0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}]}, {0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}]}]}, @ETHTOOL_A_STRSET_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dvmrp0\x00'}]}, @ETHTOOL_A_STRSET_STRINGSETS={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}]}]}, @ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}]}, 0x254}, 0x1, 0x0, 0x0, 0x40040}, 0x40000)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f00000014c0)=[@rights={{0x10}}, @cred={{0x1c}}, @rights={{0x10}}, @rights={{0x10}}], 0x50}, 0x40000002)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r6 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="030000000400000004000000"], 0x48)
bpf$OBJ_PIN_MAP(0x9, &(0x7f0000000080)=@generic={0x0, r6}, 0x18)
bind$rds(r0, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)

2m33.264007281s ago: executing program 0 (id=560):
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x88}}, 0x28014014)
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f0000003b80)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB='\\\x00', @ANYBLOB="010000000000000000001400000018000180140002006e657464657673696d30"], 0x5c}, 0x1, 0x0, 0x0, 0x24004000}, 0x0)
bpf$MAP_DELETE_BATCH(0x1b, &(0x7f0000000240)={&(0x7f0000000180)="484a1e9f0a296a1edda568735b175adba4a3682cabf4e8373bb7e7daf0dce87850ec769df0796230b08ed89fce6abe202dec401a3a8e7b87d7eaa3fda0984550f74589859ef7a5f516a584fa15cfcb2e45c1bb2c33905d9b03fec894fdb285c03c99a80e1e8f4a0401b76c6328", 0x0, &(0x7f00000003c0), 0x0, 0x1}, 0x38)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000280)={0xa, 0x4e23, 0xfffffbff, @empty, 0xffff8428}, 0x1c, 0x0, 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="180000000000000029000000370000006700000000000000140000000700000000000000340000000200000000000000180000000000000029000000360000005e000000000000041a35fd7974c34c4e5a4d46286329044b92da3d6332dfd86f9e5b82736d2d194f853a0495151b46a8b783ce6fc9d633e5bdde66f0341f"], 0x48}, 0x800)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}], 0x2, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x0)

2m33.038175108s ago: executing program 0 (id=562):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x4, &(0x7f0000000480)={0x5, &(0x7f0000000300)=[{0x7e0a, 0x0, 0x0, 0x6}, {0xe4d0, 0x1, 0x81, 0xfffffff9}, {0x5, 0x2e, 0x83, 0x2}, {0x8, 0xc4, 0x8, 0x7}, {0x5, 0x3, 0x5, 0x8000}]})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$alg(0x26, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$phonet(0x23, 0x2, 0x1)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000010c0)=ANY=[@ANYBLOB="3401000010000100"/20, @ANYRES32=r1, @ANYBLOB="000000000000000014011a80400002803c000180080021000000000008001800000000000800030000000000080009000000000008000c0000000000080012000000000008001f00000000006c00"], 0x134}}, 0x0)
personality(0x8)
r2 = socket$phonet_pipe(0x23, 0x5, 0x2)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x20050800)
syz_usb_connect$cdc_ecm(0x5, 0x5c, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000020000102505a1a440000000010109024a00010100c0030904000003020200000b410600004ed9d401246005240004000d240f01f006aac09d0c000000090581032000037fff09058202000000010009050302"], 0x0)
syz_io_uring_setup(0x6232, &(0x7f0000000400)={0x0, 0x8e82, 0x400, 0x15, 0x2ac}, &(0x7f0000000180)=<r3=>0x0, &(0x7f0000000200))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r4 = socket(0x2, 0x80805, 0x0)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x13, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x23, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
close(0x3)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r7=>0x0})
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001280), r6)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r6, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x34, r8, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_TX_RATES={0x18, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x14, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x1}]}]}]}, 0x34}}, 0x2000c080)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000200)={<r9=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r5, 0x84, 0x7a, &(0x7f0000000340)={r9, @in6={{0xa, 0x3, 0x4, @mcast1}}}, &(0x7f0000000040)=0x84)
sendmmsg$inet_sctp(r4, &(0x7f00000032c0)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="30000000000000008400000001000000000000017c"], 0x30}], 0x1, 0x0)
r10 = dup3(r2, r5, 0x80000)
ioctl$VHOST_GET_FEATURES(r10, 0x8008af00, &(0x7f0000000580))
setsockopt$ARPT_SO_SET_ADD_COUNTERS(r4, 0x0, 0x61, &(0x7f0000000240)={'filter\x00', 0x4}, 0x68)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0xd, &(0x7f0000000000)=@assoc_value, &(0x7f00000000c0)=0xf2cb742528d0a568)

2m30.926278609s ago: executing program 0 (id=578):
mmap(&(0x7f0000ff4000/0xc000)=nil, 0xc000, 0x1000003, 0x20031, 0xffffffffffffffff, 0xffffe000)
prlimit64(0x0, 0xe, &(0x7f0000000600)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = memfd_create(&(0x7f0000000180)='[\vx\'\xa5)\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\x01\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc0\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\t\x00\x00\x00\x10\xc7\x00^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x99\x83\xcd\b\xd1\x02R\xae\x80\xd2}\xf5\xe4\x9f5\x9b7\xaf\xb7o\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd', 0x0)
r3 = socket$nl_sock_diag(0x10, 0x3, 0x4)
r4 = socket$inet_sctp(0x2, 0x5, 0x84)
sendto$inet(r4, &(0x7f00000000c0)="ab", 0xfffd, 0xc1, &(0x7f0000000280)={0x2, 0x4e22, @loopback}, 0x10)
sendmsg$TCPDIAG_GETSOCK(r3, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000080)=ANY=[@ANYBLOB="4c000000140011f225bd7000fddbcf250284", @ANYRES32=r3], 0x4c}}, 0x8000)
openat(0xffffffffffffff9c, 0x0, 0x40042, 0x1)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sysvipc/sem\x00', 0x0, 0x0)
read$FUSE(r5, 0x0, 0x0)
semget$private(0x0, 0x4, 0x4f0)
read$FUSE(r5, &(0x7f0000002800)={0x2020}, 0x2073)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x8c, &(0x7f00000002c0)=ANY=[])
write$binfmt_script(r2, &(0x7f0000000080)={'#! ', './file0', [{0x20, '\t\t'}, {0x20, '\xb4\xd4\t$3\x95\\\x83\xdc\xc9\xae\xacqt\xd3cY\x0eQ\xcd\xc0\x88\x82\x13\x9b\xb3\xa0\xd0\xdc!\x9f0\xf7C\x8c\xb99\x84\x15\x8e\xdbd\x89\xfeE\xd5V1tW\xdd\xf2\xd0\x9d\xb0?\xf5Na\xe7\xecq\x17\xbca\xe5\xab\xf1]\xe3B\xa7\x9f\xf4\x1c\x19F\x88\x0e%\x91%\xe8\xcb]t\xb9d\xcd\x18\xcc\xa4\xbf\xe1\x0e\xb3\x18\x9e\xab\xaf\xcc\xd9\x9f,\xd8\xc5n_O!\x00\v\xd5\x02\xd5\x9f\xdbL\xbd\xe4\xaa(\xbf\xb4\x9eU\x802\xf7K\x06\xd1E\x01\xa73\xadb\xbcuJ\xce\x87Ft2\xcdO\xfc?\xb71E\x85\r\xfb\xb1\xb6TL'}]}, 0xaf)
execveat(r2, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000040)=0x2)
io_setup(0x239f, &(0x7f0000000380)=<r7=>0x0)
io_submit(r7, 0x477f, &(0x7f0000000b40)=[&(0x7f0000000080)={0x200000000000000, 0x0, 0x0, 0x7, 0x8, r6, 0x0}])
ioctl$TIOCVHANGUP(r6, 0x5437, 0x0)
mmap(&(0x7f00009b2000/0x1000)=nil, 0x1000, 0x3000008, 0x10010, r0, 0xa3e9b000)

2m28.514735493s ago: executing program 0 (id=603):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='bic', 0x3)
r1 = syz_usb_connect(0x2, 0x36, &(0x7f0000000900)=ANY=[@ANYBLOB="52010000ead4a320d118af1e6309010203010902240001f60720400904a67602ab52634a0b050b"], 0x0)
syz_usb_control_io$cdc_ecm(r1, &(0x7f0000000f40)={0x14, 0x0, &(0x7f0000000f00)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)
syz_usb_control_io$hid(r1, &(0x7f0000001240)={0x24, 0x0, &(0x7f0000000080)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x457}}, 0x0, 0x0}, 0x0)
syz_usb_control_io$hid(r1, 0x0, &(0x7f0000001880)={0x2c, &(0x7f0000000000)={0x0, 0x13, 0x2, "17c0"}, 0x0, 0x0, 0x0, 0x0})
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1d}}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000008000000000000005000100070000000900020073797a30000000001400078008001240000000000500150004000000050005000000000005000400000000000d000300686173683a6d6163"], 0x5c}}, 0x0)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000740)=ANY=[@ANYBLOB="44000000090605000000000000000000010000050900020073797a30000006000500010007000000080009400000000114000880100007800a001100b4"], 0x44}, 0x1, 0x0, 0x0, 0x8000}, 0x44000)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r3, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000100)='bbr', 0x3)
sendmmsg$inet(r3, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000640)="985e44efeabe001cabcf3d8673c3a254a9a2d3197970cb347b70a243bf77139a94bc3ae91684aaf7b7dff691deb8f8aef2d915fb3a0794a9a9b431a819bca6122c350637808dde804a048fd8696e524b2934126c443ce93d82e931eb9918e6c0827686e59209d2e02c9210fd8048f04ad6c42200fd9232f5aa6a361816bf21afb8473a064f1988536d4b5888807b3aaafaf59f53121782a0a9370dc0feae13c8c2a1dcc8a3122aaa3dcd5b9247a915378e6492e5b94073dcdc87e7c794fb262a7e9ee0b9432f74331c6e9412ac6557c54c6ac72bc24ff70ca2f8", 0xda}], 0x1}}, {{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000040)="bf", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000800)="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", 0x1e5}], 0x1}}], 0x3, 0x2090)
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r3, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0)
setsockopt$MRT_DEL_MFC(r3, 0x0, 0xcd, &(0x7f00000019c0)={@rand_addr=0x64010101, @private=0xa010101, 0x0, "85ea800f102c9c98884196760e4be6d3026ce61e28b312074f80e38235836cdd", 0xf10f, 0x6, 0x9, 0xc70}, 0x3c)
syz_usb_control_io$rtl8150(0xffffffffffffffff, &(0x7f0000000500)={0x14, 0x0, &(0x7f0000000440)={0x0, 0x3, 0xd, @string={0xd, 0x3, "2618a48f3309a22156d59f"}}}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000780), r4)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_FRAME(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000280)=ANY=[@ANYBLOB="88020000", @ANYRES16=r5, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r6, @ANYBLOB="61023300503001000802110000010802110000005050505050506e725c840632aeeaee223136a10531bf"], 0x288}, 0x1, 0x0, 0x0, 0x800}, 0x40000)
sendmsg$IPSET_CMD_DESTROY(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000280)=ANY=[@ANYBLOB="28000000030605000000000000000000000000000500010007"], 0x28}}, 0x20000010)
sendmsg$NFT_BATCH(r2, &(0x7f0000001980)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000001940)={&(0x7f0000001a00)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x2}}, [@NFT_MSG_NEWOBJ={0x20, 0x12, 0xa, 0x204, 0x0, 0x0, {0x1, 0x0, 0x5}, @NFT_OBJECT_CONNLIMIT=@NFTA_OBJ_TABLE={0x9, 0x1, 'syz1\x00'}}, @NFT_MSG_DELSETELEM={0x1274, 0xe, 0xa, 0x401, 0x0, 0x0, {0x0, 0x0, 0x8}, [@NFTA_SET_ELEM_LIST_ELEMENTS={0x37c, 0x3, 0x0, 0x1, [{0x378, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_USERDATA={0x36, 0x6, 0x1, 0x0, "2d3e01777dd0b3b328f3203d7dbcd13ea1c4f45f9e29f966989b8b5d888d425a0f07ea89386d496ed26ffc51e401774e02cd"}, @NFTA_SET_ELEM_KEY={0x1ec, 0x1, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x1c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}, @NFTA_DATA_VERDICT={0x44, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}]}, @NFTA_DATA_VALUE={0x20, 0x1, "04c5d50f1d85e197da154e7714e23fff8a884c4e20424424654ded9e"}, @NFTA_DATA_VALUE={0xa, 0x1, "ff960a3cfcc4"}, @NFTA_DATA_VERDICT={0x1c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}]}, @NFTA_DATA_VALUE={0x82, 0x1, "06b4b84295932b1a778a0ad6dbc65cc1c7b1d102499fb00251fd8fcaf7897441a72e73c91927c6632772eaf4fd191e81a9638f0c2a40cb7701501915b24540cdf11e31ab4873c571c6e737eb915732beb2b818f314520f74944a3e7ae1dfb5d679b7aa63e3638d879cc5c4ba6128e86923c4adea4ae02b936a5848ba810b"}, @NFTA_DATA_VERDICT={0x28, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}]}, @NFTA_DATA_VALUE={0x93, 0x1, "18dbacfb52b305b282c6b4db11f47d1a10219d75e11fac5b80c8881a5d8cc28f0efe1ff3e3c45e78517852be2f38b6a33d535d7a85eb1d4bb33f3810e8f78398beb6c765ebe2ae5ba8674cd80a357209a4e43fc3b8a60d572d74ca8eafb815572bc64ddc3daf0655f1454e6f7f39e5461ecb3bf43919bbf5dc9fb18fbf541982c5c9d14a09e5508e33bcb9c84eb152"}]}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x6eb}, @NFTA_SET_ELEM_EXPRESSIONS={0x44, 0xb, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, @dup_ipv4={{0x8}, @void}}, {0x14, 0x1, 0x0, 0x1, @byteorder={{0xe}, @void}}, {0x20, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x10, 0x2, 0x0, 0x1, [@NFTA_MATCH_NAME={0xb, 0x1, 'length\x00'}]}}}]}, @NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x1fffffffe0000000}, @NFTA_SET_ELEM_EXPR={0x18, 0x7, 0x0, 0x1, @cmp={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CMP_SREG={0x8, 0x1, 0x1, 0x0, 0x8}]}}}, @NFTA_SET_ELEM_KEY={0xcc, 0x1, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x18, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}]}, @NFTA_DATA_VALUE={0xae, 0x1, "b9ad82ce71e05695f535c4b6c6ce65b6a8622ae2d2a32c6b77d4d124b706547497ecc159369aa1863d9bc0cffe8e475f42d57dbd775a69e8ca085cef9e0e827ef856581f46629d7a829682f0f1be61e86a5425a8aa15d2d52cefef07891805c49b5456b64e9a2b5df24b7a56923c0eecf09230c0d23a8b4356b7ba9901a8ad1d61b5fa66140c753d3ce8eea77c8009ef3feeed95f98010405180d749836d5b31eefa3365fed3da31edd0"}]}, @NFTA_SET_ELEM_EXPR={0x10, 0x7, 0x0, 0x1, @meta={{0x9}, @void}}]}]}, @NFTA_SET_ELEM_LIST_ELEMENTS={0xed8, 0x3, 0x0, 0x1, [{0x538, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x765f}, @NFTA_SET_ELEM_USERDATA={0xe1, 0x6, 0x1, 0x0, "1c2db7395f4c603432811b8b7a6bfae57058a66ecb976da91b2499f22a4cdbdaeea22b40c69389e9730df3ee42d793e2fa35967a4c500090636e9323d1467c5b2a36c188a01cfe804f71479f5db102be4192f2b32cc25692dd437b17798ba168dc9b613e9c818e3f562b7eb30692c2d827a8cfbb302fe7cd920c0d1131051b9816a32d055c36cc02b2df037a76c31e8b347f30acb77822e7a5c754a95375a9325e8ad543c3cd15c275c4902de58d3a5726a88f09f6f2aaeaa031b5206cc2cb00ee2498e4503b8086b57bf8e3d22c58b2271e977ff4a2d83325708819c1"}, @NFTA_SET_ELEM_EXPR={0x48, 0x7, 0x0, 0x1, @byteorder={{0xe}, @val={0x34, 0x2, 0x0, 0x1, [@NFTA_BYTEORDER_SIZE={0x8, 0x5, 0x1, 0x0, 0x35}, @NFTA_BYTEORDER_OP={0x8}, @NFTA_BYTEORDER_SREG={0x8, 0x1, 0x1, 0x0, 0xe}, @NFTA_BYTEORDER_SREG={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_BYTEORDER_OP={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_BYTEORDER_SREG={0x8, 0x1, 0x1, 0x0, 0x17}]}}}, @NFTA_SET_ELEM_EXPR={0x44, 0x7, 0x0, 0x1, @meta={{0x9}, @val={0x34, 0x2, 0x0, 0x1, [@NFTA_META_SREG={0x8, 0x3, 0x1, 0x0, 0x8}, @NFTA_META_SREG={0x8, 0x3, 0x1, 0x0, 0xc}, @NFTA_META_SREG={0x8, 0x3, 0x1, 0x0, 0x16}, @NFTA_META_DREG={0x8, 0x1, 0x1, 0x0, 0xe}, @NFTA_META_SREG={0x8, 0x3, 0x1, 0x0, 0x1e}, @NFTA_META_DREG={0x8, 0x1, 0x1, 0x0, 0xc}]}}}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x4}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_USERDATA={0x48, 0x6, 0x1, 0x0, "f49e9c85a995e21a585af706322d774bb990dfa3e5722d0bd8f1bb230531b95b412d5d48664af7ab5402d06f7e765c3db41503890f4bb89c259613c15b5c22b79a0deb5d"}, @NFTA_SET_ELEM_USERDATA={0x5c, 0x6, 0x1, 0x0, "95002c6899870e40b224687b71bb1ad441f9e16f1fd01e8c7c412a88530d87877dbbdef7c0c4dfcf101a6e98742c0134a8a2ca7baf1ac9b01218c7f2804f98d8b40c4add41a54f1e2637aa1ffb718babd308517b780dc746"}, @NFTA_SET_ELEM_KEY={0x2f0, 0x1, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x34, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}]}, @NFTA_DATA_VALUE={0xef, 0x1, "3022d193ebc39d5596fe26f30930f3cfbd779974ff627d4a3f46ad6239569467489305e55bb43b5394b0e9953d12f687c9715d36763068a3ca7995a4aaf797959b0a6e8ad65cfe10a8ef93790dbaa354a200fa9edf6007a7dde95f80c527025cbad7542da0a5f1ece61adbc218a101b287a06aa0a0ae350f4c0face01be062933876aab9135b4a3a0ca8761851a044acc0729a46e1ab0876aab8ffc5ffa96461a54b6a1754794279f86eb8efce496b178f0bddff57eb6a3f6f828a468a829fad7c93611111ea2725cfb8dfc2c62b59bdcd735ce0f39e542791f05db92f54a4fd9528f16b62750b606b5174"}, @NFTA_DATA_VERDICT={0x48, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}]}, @NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}]}, @NFTA_DATA_VALUE={0xdd, 0x1, "c95398eb9b1cb0e45e028a21b1886daa55d4a61c6383ca02e26fc8191abc0fc546fe3dac6338aaf5ff639c946336ba47a7e6758b476a114bfc6f75e72e8e05977695b5c464ce2b5d80207c3e07264943172aa569a3e74d0ddadff2068a5cf9cd7846e599323b56d2fd0701a0f78e48f6ff22febbd0347e20c19e5a606ea164c4fb161e05cbb12aa68dce2919c95c3f90ab31206e83dc8baf084603a1a1c43653a2978ad2b403c00dc8dd9d92e95d35c9dd7a9f77e437ea329bbe5a07c07b7ce3a3d59753a8b6173d8d6ea2b19296977baef4a584087b262f51"}, @NFTA_DATA_VALUE={0x80, 0x1, "792fe42bb06df53abd111618d1191c13c333075fd7ab8634f93fb4294d763b5d3ac4bb694765a2dd989ea578e93ba968f9e6b9664e324e2efa88b8c4a4bcdeb39e3313a051406ee8b63304415b05dd59655b442431b6942c7ab377fc1093c5b40487ee93d7c59dfe789390745b43e3ca592b267f4a0277c4b326f17d"}, @NFTA_DATA_VALUE={0x12, 0x1, "90bf49149b7fe3a9e54d7ddde65b"}]}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x1}]}, {0x7c, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0x78, 0x1, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x14, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}]}, @NFTA_DATA_VALUE={0x3d, 0x1, "c9ba77924edcbade018a633f1fe77ef0bdb5fc0e715f4a0da22355476cce3b77e3749465ac73957964768e9c4cd8e728725c3abef6dc128e87"}, @NFTA_DATA_VERDICT={0x20, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}]}]}, {0x238, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_USERDATA={0x13, 0x6, 0x1, 0x0, "06002a328e67a595afeb46bea5162f"}, @NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x8}, @NFTA_SET_ELEM_KEY_END={0x20, 0xa, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x1c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}]}]}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz2\x00'}, @NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz1\x00'}, @NFTA_SET_ELEM_EXPRESSIONS={0x1bc, 0xb, 0x0, 0x1, [{0x1b8, 0x1, 0x0, 0x1, @dynset={{0xb}, @val={0x1a8, 0x2, 0x0, 0x1, [@NFTA_DYNSET_EXPR={0x10, 0x7, 0x0, 0x1, {{0xb}, @void}}, @NFTA_DYNSET_EXPR={0x1c, 0x7, 0x0, 0x1, {{0xb}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_LOOKUP_FLAGS={0x8}]}}}, @NFTA_DYNSET_SET_ID={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_DYNSET_SREG_KEY={0x8, 0x4, 0x1, 0x0, 0x4}, @NFTA_DYNSET_EXPRESSIONS={0x168, 0xa, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @log={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_LOG_LEVEL={0x8, 0x5, 0x1, 0x0, 0xfffffff7}]}}}, {0x10, 0x1, 0x0, 0x1, @masq={{0x9}, @void}}, {0xc, 0x1, 0x0, 0x1, @osf={{0x8}, @void}}, {0x4c, 0x1, 0x0, 0x1, @last={{0x9}, @val={0x3c, 0x2, 0x0, 0x1, [@NFTA_LAST_SET={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_LAST_SET={0x8, 0x1, 0x1, 0x0, 0xba}, @NFTA_LAST_SET={0x8, 0x1, 0x1, 0x0, 0x80000000}, @NFTA_LAST_SET={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_LAST_SET={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_LAST_SET={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_LAST_SET={0x8, 0x1, 0x1, 0x0, 0x6000}]}}}, {0x10, 0x1, 0x0, 0x1, @objref={{0xb}, @void}}, {0x38, 0x1, 0x0, 0x1, @nat={{0x8}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_NAT_TYPE={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_NAT_FLAGS={0x8, 0x7, 0x1, 0x0, 0x60}, @NFTA_NAT_FLAGS={0x8, 0x7, 0x1, 0x0, 0x10}, @NFTA_NAT_REG_ADDR_MAX={0x8, 0x4, 0x1, 0x0, 0x8}, @NFTA_NAT_TYPE={0x8, 0x1, 0x1, 0x0, 0x1}]}}}, {0xc, 0x1, 0x0, 0x1, @ct={{0x7}, @void}}, {0x90, 0x1, 0x0, 0x1, @target={{0xb}, @val={0x80, 0x2, 0x0, 0x1, [@NFTA_TARGET_INFO={0x25, 0x3, "252b8b3e282d69213967e80ad6c3beabc205e160d72f66abddcd73fdf1257b5c21"}, @NFTA_TARGET_INFO={0x3c, 0x3, "cc391d68bc1afe4c57636175ba40ef90a38b2ebc259b4276705bc708ac5f4d4ff1d141d0cf89f5deba49aba612abcffedb36c7ed29c6dc37"}, @NFTA_TARGET_REV={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_TARGET_REV={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_TARGET_REV={0x8, 0x2, 0x1, 0x0, 0x1}]}}}]}]}}}]}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz2\x00'}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz1\x00'}]}, {0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz2\x00'}]}, {0xec, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_EXPRESSIONS={0x94, 0xb, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @last={{0x9}, @void}}, {0x10, 0x1, 0x0, 0x1, @lookup={{0xb}, @void}}, {0x70, 0x1, 0x0, 0x1, @dynset={{0xb}, @val={0x60, 0x2, 0x0, 0x1, [@NFTA_DYNSET_OP={0x8}, @NFTA_DYNSET_EXPR={0x54, 0x7, 0x0, 0x1, {{0xb}, @val={0x44, 0x2, 0x0, 0x1, [@NFTA_LOOKUP_SREG={0x8, 0x2, 0x1, 0x0, 0x15}, @NFTA_LOOKUP_FLAGS={0x8}, @NFTA_LOOKUP_SREG={0x8, 0x2, 0x1, 0x0, 0x15}, @NFTA_LOOKUP_SREG={0x8, 0x2, 0x1, 0x0, 0x13}, @NFTA_LOOKUP_DREG={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_LOOKUP_SET={0x9, 0x1, 'syz0\x00'}, @NFTA_LOOKUP_SET={0x9, 0x1, 'syz0\x00'}]}}}]}}}]}, @NFTA_SET_ELEM_TIMEOUT={0xc}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x9}, @NFTA_SET_ELEM_EXPR={0x3c, 0x7, 0x0, 0x1, @numgen={{0xb}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_NG_OFFSET={0x8, 0x4, 0x1, 0x0, 0xfffffffa}, @NFTA_NG_DREG={0x8, 0x1, 0x1, 0x0, 0x10}, @NFTA_NG_TYPE={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_NG_OFFSET={0x8, 0x4, 0x1, 0x0, 0x4}, @NFTA_NG_OFFSET={0x8}]}}}]}, {0x3e0, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x7}, @NFTA_SET_ELEM_EXPR={0x24, 0x7, 0x0, 0x1, @payload={{0xc}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_PAYLOAD_LEN={0x8, 0x4, 0x1, 0x0, 0xeb}, @NFTA_PAYLOAD_CSUM_OFFSET={0x8, 0x7, 0x1, 0x0, 0xc}]}}}, @NFTA_SET_ELEM_KEY={0x1b4, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x4f, 0x1, "b813f3885258f57f19442ebc7c487b1f75673579f307864a283cf5b06e8da0882fa6147cffd763fc01d68d6a6387a841e063e24fa9ffb6e67da0801eb9b38a7a421fbfbf64b982208a1bb3"}, @NFTA_DATA_VERDICT={0x3c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}]}, @NFTA_DATA_VALUE={0xb0, 0x1, "d92f1d2e28bf70eca2b32c7c2737d97a8bea2042169fe570fb95eece73678de1f2e077a68a07ba66c31fad84eaa63d0e722df609b8840571581287d7ed4eac8d2fa45800fa23a415fdf0d9cea1feaaa8f13ecefa07d3d49074ebc9fb80c46e59c6d8833806b2b12ede5fb78722fe7d8247a1cd6af12d601377483ac5865fbef01f04538ae7fca63d3a48b67eb60e7d91c18fb5898485f4da6dc55907bac4d70f3f06f63f5c159f4c582e824a"}, @NFTA_DATA_VALUE={0x3d, 0x1, "96faf7f41e93a8c7710bb3b0b9d887880dbd517db4598989949e8d9d5df774d7263f5be3751d7ca1bdbf11b7b35d5dff57176c996a99d06225"}, @NFTA_DATA_VERDICT={0x1c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}]}, @NFTA_DATA_VERDICT={0x18, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8}]}]}, @NFTA_SET_ELEM_KEY={0x1a4, 0x1, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x20, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VERDICT={0x4c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}]}, @NFTA_DATA_VALUE={0x34, 0x1, "24804c64ae4c8f119460a4d3dd4229ce7b1cb9e4dbf51368323e17f15cc8a9b13e966cfc1feccd76822fde356b3dc7f1"}, @NFTA_DATA_VERDICT={0x24, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}]}, @NFTA_DATA_VERDICT={0x10, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}, @NFTA_DATA_VALUE={0xcb, 0x1, "9801db9a52afc6a40d229a40e5df2467cbcd9da9b3f8a20f3a8ce7a4572b47315992e934b911b1074ad7f0ccdf1373b26c078913fb5329c0ff09ee41abccf727f0c214e8a1ba6e834dd38b670f5e6e4a9acacd7d3ccabad40fdb5440a822483281556712a4bfe9dbc3cd1cbb5832155b762f6431ba9b1c54c9e6ddabefd57f85fd22585b7d44c91f4862341e660d7b071fb75107838433b0342fecdd77a3ca6f545a075e1b8a04e9b4bee7241c37912289d05972d41db4087f0a11590b0cb9ef06709af00c9173"}]}, @NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x1}, @NFTA_SET_ELEM_KEY_END={0x48, 0xa, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x44, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}]}]}, {0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz1\x00'}]}, {0x1fc, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_DATA={0x154, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x38, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VALUE={0xe2, 0x1, "d9c6f49e158e5a0af880468970ed70cb521cfb596e774d33ac728ed0a8e46fd9a07391b3e97848ffb9a5c96a4f6ef50a18b7f99cc3aa230b29a9dd76b70be73ca084e0cc73cf21a051eeb8f9d29e0b5b2eaa14ae8b6dc6676976ae4277cd6bb0593061bc77cd9da28cf365087df4806aecbc345901a36c731567d5a300abc2d8d8a0f29f787cd616cd3af002dce7071b10d7faf19af50d300c14eba4b8bf42cd1457909f26527572ed4c04f6f4339f8f1325123c9190f6e85922bea0ddb17c4ccefaf81f9091c88984182fc75bd06be07d7069ca5c06c880d620b2f82910"}, @NFTA_DATA_VALUE={0x32, 0x1, "879f1ef4dcc4850f22a238aaaf3276b0b6e972c3065d332a892789cdb106920d8416a5535ed39693c3f5a75b260a"}]}, @NFTA_SET_ELEM_EXPR={0x50, 0x7, 0x0, 0x1, @log={{0x8}, @val={0x44, 0x2, 0x0, 0x1, [@NFTA_LOG_GROUP={0x6, 0x1, 0x1, 0x0, 0x3}, @NFTA_LOG_FLAGS={0x8, 0x6, 0x1, 0x0, 0xd}, @NFTA_LOG_QTHRESHOLD={0x6}, @NFTA_LOG_FLAGS={0x8, 0x6, 0x1, 0x0, 0x3}, @NFTA_LOG_GROUP={0x6, 0x1, 0x1, 0x0, 0x8}, @NFTA_LOG_LEVEL={0x8, 0x5, 0x1, 0x0, 0x4}, @NFTA_LOG_GROUP={0x6, 0x1, 0x1, 0x0, 0x9}, @NFTA_LOG_SNAPLEN={0x8, 0x3, 0x1, 0x0, 0x2}]}}}, @NFTA_SET_ELEM_DATA={0x54, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x34, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VALUE={0x1a, 0x1, "5f06e6bd3f8137567fc9ee0d00a9ca5bfde4f5d364a0"}]}]}]}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x1c8, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x3}, @NFTA_RULE_EXPRESSIONS={0xa4, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @hash={{0x9}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_HASH_LEN={0x8, 0x3, 0x1, 0x0, 0x62}, @NFTA_HASH_LEN={0x8, 0x3, 0x1, 0x0, 0xa5}, @NFTA_HASH_SREG={0x8, 0x1, 0x1, 0x0, 0xe}, @NFTA_HASH_DREG={0x8, 0x2, 0x1, 0x0, 0x11}]}}}, {0x10, 0x1, 0x0, 0x1, @limit={{0xa}, @void}}, {0x3c, 0x1, 0x0, 0x1, @reject={{0xb}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_REJECT_TYPE={0x8}, @NFTA_REJECT_TYPE={0x8}, @NFTA_REJECT_TYPE={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_REJECT_ICMP_CODE={0x5, 0x2, 0x5}, @NFTA_REJECT_ICMP_CODE={0x5, 0x2, 0x1}]}}}, {0x10, 0x1, 0x0, 0x1, @tunnel={{0xb}, @void}}, {0x10, 0x1, 0x0, 0x1, @limit={{0xa}, @void}}]}, @NFTA_RULE_USERDATA={0xd2, 0x7, 0x1, 0x0, "97ce145099843d5210771ac3ea8414681cc777e94ed2afc14cf65c32e9c2e1ec38107434a292570bc421c22480e8c0d5cdd7b9ebfa4cc6bc75b8c06b862366014d36cf124bcb76644b06ae9aa6e478bbcd4a70c68d1dfabf6a76ee1d3d9236d7d9c9033a15620b27fe3eac472fe3dc0e8b83017e9811fb366820629418916064aee981d3278d837f3e229eb9b3e9e100197be4da6b71bc5b343453887aa4e952586a7b61df82e4e57f5c7ee6bd487e9d8c9d379774d57ac53257f9972d9031599be69e18305ca1b502cab1f523ae"}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x5}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x204, 0x0, 0x0, {0x2}, [@NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x4}, @NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x5}, @NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x4}, @NFTA_RULE_ID={0x8, 0x9, 0x1, 0x0, 0x1}, @NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x1}, @NFTA_RULE_POSITION_ID={0x8}]}, @NFT_MSG_NEWTABLE={0x28, 0x0, 0xa, 0x5, 0x0, 0x0, {0x2, 0x0, 0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}]}, @NFT_MSG_NEWRULE={0x1c, 0x6, 0xa, 0x201, 0x0, 0x0, {0x1, 0x0, 0x5}, [@NFTA_RULE_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x1}]}, @NFT_MSG_NEWRULE={0x144, 0x6, 0xa, 0x801, 0x0, 0x0, {0x1, 0x0, 0x2}, [@NFTA_RULE_COMPAT={0x1c, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x3b}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x8884}]}, @NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x3}, @NFTA_RULE_EXPRESSIONS={0x10c, 0x4, 0x0, 0x1, [{0x38, 0x1, 0x0, 0x1, @dup={{0x8}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_DUP_SREG_DEV={0x8, 0x2, 0x1, 0x0, 0x4}, @NFTA_DUP_SREG_DEV={0x8, 0x2, 0x1, 0x0, 0x5}, @NFTA_DUP_SREG_DEV={0x8, 0x2, 0x1, 0x0, 0x9}, @NFTA_DUP_SREG_DEV={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_DUP_SREG_DEV={0x8, 0x2, 0x1, 0x0, 0x3}]}}}, {0x10, 0x1, 0x0, 0x1, @log={{0x8}, @val={0x4}}}, {0x18, 0x1, 0x0, 0x1, @flow_offload={{0x11}, @void}}, {0x10, 0x1, 0x0, 0x1, @meta={{0x9}, @void}}, {0x18, 0x1, 0x0, 0x1, @nat={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_NAT_REG_ADDR_MIN={0x8, 0x3, 0x1, 0x0, 0xf}]}}}, {0x60, 0x1, 0x0, 0x1, @nat={{0x8}, @val={0x54, 0x2, 0x0, 0x1, [@NFTA_NAT_REG_ADDR_MIN={0x8, 0x3, 0x1, 0x0, 0xa}, @NFTA_NAT_FLAGS={0x8, 0x7, 0x1, 0x0, 0x6}, @NFTA_NAT_FLAGS={0x8, 0x7, 0x1, 0x0, 0x1}, @NFTA_NAT_REG_PROTO_MIN={0x8, 0x5, 0x1, 0x0, 0x11}, @NFTA_NAT_FAMILY={0x8, 0x2, 0x1, 0x0, 0xa}, @NFTA_NAT_REG_PROTO_MAX={0x8, 0x6, 0x1, 0x0, 0x17}, @NFTA_NAT_TYPE={0x8}, @NFTA_NAT_FLAGS={0x8, 0x7, 0x1, 0x0, 0x5}, @NFTA_NAT_REG_ADDR_MAX={0x8, 0x4, 0x1, 0x0, 0x4}, @NFTA_NAT_REG_ADDR_MIN={0x8, 0x3, 0x1, 0x0, 0x4}]}}}, {0x20, 0x1, 0x0, 0x1, @rt={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_RT_KEY={0x8}, @NFTA_RT_DREG={0x8}]}}}]}]}, @NFT_MSG_DELSET={0x1d8, 0xb, 0xa, 0x5, 0x0, 0x0, {0x0, 0x0, 0x4}, [@NFTA_SET_ID={0x8}, @NFTA_SET_EXPR={0x1b4, 0x11, 0x0, 0x1, @range={{0xa}, @val={0x1a4, 0x2, 0x0, 0x1, [@NFTA_RANGE_OP={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_RANGE_SREG={0x8, 0x1, 0x1, 0x0, 0x10}, @NFTA_RANGE_SREG={0x8}, @NFTA_RANGE_OP={0x8}, @NFTA_RANGE_FROM_DATA={0x178, 0x3, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x1c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}]}, @NFTA_DATA_VALUE={0xa5, 0x1, "7df4529bef2fb5d537a7e305c559f65c1fe9411a00718cd0cc6a37bff9830b5543da72a967a9f355e8778bb6d19baad2fa062ec7eeae8093bf5fbb2db80400bf1d1a2829e8df249bf81312392084a6fefdc849903ff2dd900a63fab6f38d5c10e95cab642735f80351cb78a11de49e44edf0bc87e10cc9a6036cba4906edd733f4b3d1841a25fc88069700132433e83b547d69a52b436d4b5758d9fbb3cecc58b7"}, @NFTA_DATA_VALUE={0x9, 0x1, "6211102bad"}, @NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}]}, @NFTA_DATA_VALUE={0x49, 0x1, "452407daec909d2944a6289135392dc6eded64c41fd867c03608b8f64d60edc0ac052279621bfa0dfdd4cefe7109edf8f42e7a7586ff0a302c44bc6b100b3224a4167c583f"}, @NFTA_DATA_VALUE={0x49, 0x1, "634434878a14185a632f8626272dd562b0ef3c7783bdf562599a0494d32d1b8295842d3f43987175d2a7a05d61806f55afb849cff84f23a9691d77ce1041a88cd263f33b81"}]}, @NFTA_RANGE_SREG={0x8, 0x1, 0x1, 0x0, 0x8}]}}}, @NFTA_SET_DATA_LEN={0x8, 0x7, 0x1, 0x0, 0x15}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x2}}}, 0x1838}, 0x1, 0x0, 0x0, 0x44000}, 0xc080)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r7 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x200)
ioctl$BLKTRACESETUP(r7, 0xc0481273, &(0x7f0000000040)={'\x00', 0x5, 0x7, 0x8000, 0xb, 0x0, 0xffffffffffffffff})

2m13.426369294s ago: executing program 33 (id=603):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='bic', 0x3)
r1 = syz_usb_connect(0x2, 0x36, &(0x7f0000000900)=ANY=[@ANYBLOB="52010000ead4a320d118af1e6309010203010902240001f60720400904a67602ab52634a0b050b"], 0x0)
syz_usb_control_io$cdc_ecm(r1, &(0x7f0000000f40)={0x14, 0x0, &(0x7f0000000f00)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)
syz_usb_control_io$hid(r1, &(0x7f0000001240)={0x24, 0x0, &(0x7f0000000080)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x457}}, 0x0, 0x0}, 0x0)
syz_usb_control_io$hid(r1, 0x0, &(0x7f0000001880)={0x2c, &(0x7f0000000000)={0x0, 0x13, 0x2, "17c0"}, 0x0, 0x0, 0x0, 0x0})
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1d}}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000008000000000000005000100070000000900020073797a30000000001400078008001240000000000500150004000000050005000000000005000400000000000d000300686173683a6d6163"], 0x5c}}, 0x0)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000740)=ANY=[@ANYBLOB="44000000090605000000000000000000010000050900020073797a30000006000500010007000000080009400000000114000880100007800a001100b4"], 0x44}, 0x1, 0x0, 0x0, 0x8000}, 0x44000)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r3, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000100)='bbr', 0x3)
sendmmsg$inet(r3, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000640)="985e44efeabe001cabcf3d8673c3a254a9a2d3197970cb347b70a243bf77139a94bc3ae91684aaf7b7dff691deb8f8aef2d915fb3a0794a9a9b431a819bca6122c350637808dde804a048fd8696e524b2934126c443ce93d82e931eb9918e6c0827686e59209d2e02c9210fd8048f04ad6c42200fd9232f5aa6a361816bf21afb8473a064f1988536d4b5888807b3aaafaf59f53121782a0a9370dc0feae13c8c2a1dcc8a3122aaa3dcd5b9247a915378e6492e5b94073dcdc87e7c794fb262a7e9ee0b9432f74331c6e9412ac6557c54c6ac72bc24ff70ca2f8", 0xda}], 0x1}}, {{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000040)="bf", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000800)="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", 0x1e5}], 0x1}}], 0x3, 0x2090)
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r3, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0)
setsockopt$MRT_DEL_MFC(r3, 0x0, 0xcd, &(0x7f00000019c0)={@rand_addr=0x64010101, @private=0xa010101, 0x0, "85ea800f102c9c98884196760e4be6d3026ce61e28b312074f80e38235836cdd", 0xf10f, 0x6, 0x9, 0xc70}, 0x3c)
syz_usb_control_io$rtl8150(0xffffffffffffffff, &(0x7f0000000500)={0x14, 0x0, &(0x7f0000000440)={0x0, 0x3, 0xd, @string={0xd, 0x3, "2618a48f3309a22156d59f"}}}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000780), r4)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_FRAME(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000280)=ANY=[@ANYBLOB="88020000", @ANYRES16=r5, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r6, @ANYBLOB="61023300503001000802110000010802110000005050505050506e725c840632aeeaee223136a10531bf"], 0x288}, 0x1, 0x0, 0x0, 0x800}, 0x40000)
sendmsg$IPSET_CMD_DESTROY(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000280)=ANY=[@ANYBLOB="28000000030605000000000000000000000000000500010007"], 0x28}}, 0x20000010)
sendmsg$NFT_BATCH(r2, &(0x7f0000001980)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000001940)={&(0x7f0000001a00)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x2}}, [@NFT_MSG_NEWOBJ={0x20, 0x12, 0xa, 0x204, 0x0, 0x0, {0x1, 0x0, 0x5}, @NFT_OBJECT_CONNLIMIT=@NFTA_OBJ_TABLE={0x9, 0x1, 'syz1\x00'}}, @NFT_MSG_DELSETELEM={0x1274, 0xe, 0xa, 0x401, 0x0, 0x0, {0x0, 0x0, 0x8}, [@NFTA_SET_ELEM_LIST_ELEMENTS={0x37c, 0x3, 0x0, 0x1, [{0x378, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_USERDATA={0x36, 0x6, 0x1, 0x0, "2d3e01777dd0b3b328f3203d7dbcd13ea1c4f45f9e29f966989b8b5d888d425a0f07ea89386d496ed26ffc51e401774e02cd"}, @NFTA_SET_ELEM_KEY={0x1ec, 0x1, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x1c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}, @NFTA_DATA_VERDICT={0x44, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}]}, @NFTA_DATA_VALUE={0x20, 0x1, "04c5d50f1d85e197da154e7714e23fff8a884c4e20424424654ded9e"}, @NFTA_DATA_VALUE={0xa, 0x1, "ff960a3cfcc4"}, @NFTA_DATA_VERDICT={0x1c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}]}, @NFTA_DATA_VALUE={0x82, 0x1, "06b4b84295932b1a778a0ad6dbc65cc1c7b1d102499fb00251fd8fcaf7897441a72e73c91927c6632772eaf4fd191e81a9638f0c2a40cb7701501915b24540cdf11e31ab4873c571c6e737eb915732beb2b818f314520f74944a3e7ae1dfb5d679b7aa63e3638d879cc5c4ba6128e86923c4adea4ae02b936a5848ba810b"}, @NFTA_DATA_VERDICT={0x28, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}]}, @NFTA_DATA_VALUE={0x93, 0x1, "18dbacfb52b305b282c6b4db11f47d1a10219d75e11fac5b80c8881a5d8cc28f0efe1ff3e3c45e78517852be2f38b6a33d535d7a85eb1d4bb33f3810e8f78398beb6c765ebe2ae5ba8674cd80a357209a4e43fc3b8a60d572d74ca8eafb815572bc64ddc3daf0655f1454e6f7f39e5461ecb3bf43919bbf5dc9fb18fbf541982c5c9d14a09e5508e33bcb9c84eb152"}]}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x6eb}, @NFTA_SET_ELEM_EXPRESSIONS={0x44, 0xb, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, @dup_ipv4={{0x8}, @void}}, {0x14, 0x1, 0x0, 0x1, @byteorder={{0xe}, @void}}, {0x20, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x10, 0x2, 0x0, 0x1, [@NFTA_MATCH_NAME={0xb, 0x1, 'length\x00'}]}}}]}, @NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x1fffffffe0000000}, @NFTA_SET_ELEM_EXPR={0x18, 0x7, 0x0, 0x1, @cmp={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CMP_SREG={0x8, 0x1, 0x1, 0x0, 0x8}]}}}, @NFTA_SET_ELEM_KEY={0xcc, 0x1, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x18, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}]}, @NFTA_DATA_VALUE={0xae, 0x1, "b9ad82ce71e05695f535c4b6c6ce65b6a8622ae2d2a32c6b77d4d124b706547497ecc159369aa1863d9bc0cffe8e475f42d57dbd775a69e8ca085cef9e0e827ef856581f46629d7a829682f0f1be61e86a5425a8aa15d2d52cefef07891805c49b5456b64e9a2b5df24b7a56923c0eecf09230c0d23a8b4356b7ba9901a8ad1d61b5fa66140c753d3ce8eea77c8009ef3feeed95f98010405180d749836d5b31eefa3365fed3da31edd0"}]}, @NFTA_SET_ELEM_EXPR={0x10, 0x7, 0x0, 0x1, @meta={{0x9}, @void}}]}]}, @NFTA_SET_ELEM_LIST_ELEMENTS={0xed8, 0x3, 0x0, 0x1, [{0x538, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x765f}, @NFTA_SET_ELEM_USERDATA={0xe1, 0x6, 0x1, 0x0, "1c2db7395f4c603432811b8b7a6bfae57058a66ecb976da91b2499f22a4cdbdaeea22b40c69389e9730df3ee42d793e2fa35967a4c500090636e9323d1467c5b2a36c188a01cfe804f71479f5db102be4192f2b32cc25692dd437b17798ba168dc9b613e9c818e3f562b7eb30692c2d827a8cfbb302fe7cd920c0d1131051b9816a32d055c36cc02b2df037a76c31e8b347f30acb77822e7a5c754a95375a9325e8ad543c3cd15c275c4902de58d3a5726a88f09f6f2aaeaa031b5206cc2cb00ee2498e4503b8086b57bf8e3d22c58b2271e977ff4a2d83325708819c1"}, @NFTA_SET_ELEM_EXPR={0x48, 0x7, 0x0, 0x1, @byteorder={{0xe}, @val={0x34, 0x2, 0x0, 0x1, [@NFTA_BYTEORDER_SIZE={0x8, 0x5, 0x1, 0x0, 0x35}, @NFTA_BYTEORDER_OP={0x8}, @NFTA_BYTEORDER_SREG={0x8, 0x1, 0x1, 0x0, 0xe}, @NFTA_BYTEORDER_SREG={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_BYTEORDER_OP={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_BYTEORDER_SREG={0x8, 0x1, 0x1, 0x0, 0x17}]}}}, @NFTA_SET_ELEM_EXPR={0x44, 0x7, 0x0, 0x1, @meta={{0x9}, @val={0x34, 0x2, 0x0, 0x1, [@NFTA_META_SREG={0x8, 0x3, 0x1, 0x0, 0x8}, @NFTA_META_SREG={0x8, 0x3, 0x1, 0x0, 0xc}, @NFTA_META_SREG={0x8, 0x3, 0x1, 0x0, 0x16}, @NFTA_META_DREG={0x8, 0x1, 0x1, 0x0, 0xe}, @NFTA_META_SREG={0x8, 0x3, 0x1, 0x0, 0x1e}, @NFTA_META_DREG={0x8, 0x1, 0x1, 0x0, 0xc}]}}}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x4}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_USERDATA={0x48, 0x6, 0x1, 0x0, "f49e9c85a995e21a585af706322d774bb990dfa3e5722d0bd8f1bb230531b95b412d5d48664af7ab5402d06f7e765c3db41503890f4bb89c259613c15b5c22b79a0deb5d"}, @NFTA_SET_ELEM_USERDATA={0x5c, 0x6, 0x1, 0x0, "95002c6899870e40b224687b71bb1ad441f9e16f1fd01e8c7c412a88530d87877dbbdef7c0c4dfcf101a6e98742c0134a8a2ca7baf1ac9b01218c7f2804f98d8b40c4add41a54f1e2637aa1ffb718babd308517b780dc746"}, @NFTA_SET_ELEM_KEY={0x2f0, 0x1, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x34, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}]}, @NFTA_DATA_VALUE={0xef, 0x1, "3022d193ebc39d5596fe26f30930f3cfbd779974ff627d4a3f46ad6239569467489305e55bb43b5394b0e9953d12f687c9715d36763068a3ca7995a4aaf797959b0a6e8ad65cfe10a8ef93790dbaa354a200fa9edf6007a7dde95f80c527025cbad7542da0a5f1ece61adbc218a101b287a06aa0a0ae350f4c0face01be062933876aab9135b4a3a0ca8761851a044acc0729a46e1ab0876aab8ffc5ffa96461a54b6a1754794279f86eb8efce496b178f0bddff57eb6a3f6f828a468a829fad7c93611111ea2725cfb8dfc2c62b59bdcd735ce0f39e542791f05db92f54a4fd9528f16b62750b606b5174"}, @NFTA_DATA_VERDICT={0x48, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}]}, @NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}]}, @NFTA_DATA_VALUE={0xdd, 0x1, "c95398eb9b1cb0e45e028a21b1886daa55d4a61c6383ca02e26fc8191abc0fc546fe3dac6338aaf5ff639c946336ba47a7e6758b476a114bfc6f75e72e8e05977695b5c464ce2b5d80207c3e07264943172aa569a3e74d0ddadff2068a5cf9cd7846e599323b56d2fd0701a0f78e48f6ff22febbd0347e20c19e5a606ea164c4fb161e05cbb12aa68dce2919c95c3f90ab31206e83dc8baf084603a1a1c43653a2978ad2b403c00dc8dd9d92e95d35c9dd7a9f77e437ea329bbe5a07c07b7ce3a3d59753a8b6173d8d6ea2b19296977baef4a584087b262f51"}, @NFTA_DATA_VALUE={0x80, 0x1, "792fe42bb06df53abd111618d1191c13c333075fd7ab8634f93fb4294d763b5d3ac4bb694765a2dd989ea578e93ba968f9e6b9664e324e2efa88b8c4a4bcdeb39e3313a051406ee8b63304415b05dd59655b442431b6942c7ab377fc1093c5b40487ee93d7c59dfe789390745b43e3ca592b267f4a0277c4b326f17d"}, @NFTA_DATA_VALUE={0x12, 0x1, "90bf49149b7fe3a9e54d7ddde65b"}]}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x1}]}, {0x7c, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0x78, 0x1, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x14, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}]}, @NFTA_DATA_VALUE={0x3d, 0x1, "c9ba77924edcbade018a633f1fe77ef0bdb5fc0e715f4a0da22355476cce3b77e3749465ac73957964768e9c4cd8e728725c3abef6dc128e87"}, @NFTA_DATA_VERDICT={0x20, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}]}]}, {0x238, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_USERDATA={0x13, 0x6, 0x1, 0x0, "06002a328e67a595afeb46bea5162f"}, @NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x8}, @NFTA_SET_ELEM_KEY_END={0x20, 0xa, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x1c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}]}]}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz2\x00'}, @NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz1\x00'}, @NFTA_SET_ELEM_EXPRESSIONS={0x1bc, 0xb, 0x0, 0x1, [{0x1b8, 0x1, 0x0, 0x1, @dynset={{0xb}, @val={0x1a8, 0x2, 0x0, 0x1, [@NFTA_DYNSET_EXPR={0x10, 0x7, 0x0, 0x1, {{0xb}, @void}}, @NFTA_DYNSET_EXPR={0x1c, 0x7, 0x0, 0x1, {{0xb}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_LOOKUP_FLAGS={0x8}]}}}, @NFTA_DYNSET_SET_ID={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_DYNSET_SREG_KEY={0x8, 0x4, 0x1, 0x0, 0x4}, @NFTA_DYNSET_EXPRESSIONS={0x168, 0xa, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @log={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_LOG_LEVEL={0x8, 0x5, 0x1, 0x0, 0xfffffff7}]}}}, {0x10, 0x1, 0x0, 0x1, @masq={{0x9}, @void}}, {0xc, 0x1, 0x0, 0x1, @osf={{0x8}, @void}}, {0x4c, 0x1, 0x0, 0x1, @last={{0x9}, @val={0x3c, 0x2, 0x0, 0x1, [@NFTA_LAST_SET={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_LAST_SET={0x8, 0x1, 0x1, 0x0, 0xba}, @NFTA_LAST_SET={0x8, 0x1, 0x1, 0x0, 0x80000000}, @NFTA_LAST_SET={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_LAST_SET={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_LAST_SET={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_LAST_SET={0x8, 0x1, 0x1, 0x0, 0x6000}]}}}, {0x10, 0x1, 0x0, 0x1, @objref={{0xb}, @void}}, {0x38, 0x1, 0x0, 0x1, @nat={{0x8}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_NAT_TYPE={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_NAT_FLAGS={0x8, 0x7, 0x1, 0x0, 0x60}, @NFTA_NAT_FLAGS={0x8, 0x7, 0x1, 0x0, 0x10}, @NFTA_NAT_REG_ADDR_MAX={0x8, 0x4, 0x1, 0x0, 0x8}, @NFTA_NAT_TYPE={0x8, 0x1, 0x1, 0x0, 0x1}]}}}, {0xc, 0x1, 0x0, 0x1, @ct={{0x7}, @void}}, {0x90, 0x1, 0x0, 0x1, @target={{0xb}, @val={0x80, 0x2, 0x0, 0x1, [@NFTA_TARGET_INFO={0x25, 0x3, "252b8b3e282d69213967e80ad6c3beabc205e160d72f66abddcd73fdf1257b5c21"}, @NFTA_TARGET_INFO={0x3c, 0x3, "cc391d68bc1afe4c57636175ba40ef90a38b2ebc259b4276705bc708ac5f4d4ff1d141d0cf89f5deba49aba612abcffedb36c7ed29c6dc37"}, @NFTA_TARGET_REV={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_TARGET_REV={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_TARGET_REV={0x8, 0x2, 0x1, 0x0, 0x1}]}}}]}]}}}]}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz2\x00'}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz1\x00'}]}, {0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz2\x00'}]}, {0xec, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_EXPRESSIONS={0x94, 0xb, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @last={{0x9}, @void}}, {0x10, 0x1, 0x0, 0x1, @lookup={{0xb}, @void}}, {0x70, 0x1, 0x0, 0x1, @dynset={{0xb}, @val={0x60, 0x2, 0x0, 0x1, [@NFTA_DYNSET_OP={0x8}, @NFTA_DYNSET_EXPR={0x54, 0x7, 0x0, 0x1, {{0xb}, @val={0x44, 0x2, 0x0, 0x1, [@NFTA_LOOKUP_SREG={0x8, 0x2, 0x1, 0x0, 0x15}, @NFTA_LOOKUP_FLAGS={0x8}, @NFTA_LOOKUP_SREG={0x8, 0x2, 0x1, 0x0, 0x15}, @NFTA_LOOKUP_SREG={0x8, 0x2, 0x1, 0x0, 0x13}, @NFTA_LOOKUP_DREG={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_LOOKUP_SET={0x9, 0x1, 'syz0\x00'}, @NFTA_LOOKUP_SET={0x9, 0x1, 'syz0\x00'}]}}}]}}}]}, @NFTA_SET_ELEM_TIMEOUT={0xc}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x9}, @NFTA_SET_ELEM_EXPR={0x3c, 0x7, 0x0, 0x1, @numgen={{0xb}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_NG_OFFSET={0x8, 0x4, 0x1, 0x0, 0xfffffffa}, @NFTA_NG_DREG={0x8, 0x1, 0x1, 0x0, 0x10}, @NFTA_NG_TYPE={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_NG_OFFSET={0x8, 0x4, 0x1, 0x0, 0x4}, @NFTA_NG_OFFSET={0x8}]}}}]}, {0x3e0, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x7}, @NFTA_SET_ELEM_EXPR={0x24, 0x7, 0x0, 0x1, @payload={{0xc}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_PAYLOAD_LEN={0x8, 0x4, 0x1, 0x0, 0xeb}, @NFTA_PAYLOAD_CSUM_OFFSET={0x8, 0x7, 0x1, 0x0, 0xc}]}}}, @NFTA_SET_ELEM_KEY={0x1b4, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x4f, 0x1, "b813f3885258f57f19442ebc7c487b1f75673579f307864a283cf5b06e8da0882fa6147cffd763fc01d68d6a6387a841e063e24fa9ffb6e67da0801eb9b38a7a421fbfbf64b982208a1bb3"}, @NFTA_DATA_VERDICT={0x3c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}]}, @NFTA_DATA_VALUE={0xb0, 0x1, "d92f1d2e28bf70eca2b32c7c2737d97a8bea2042169fe570fb95eece73678de1f2e077a68a07ba66c31fad84eaa63d0e722df609b8840571581287d7ed4eac8d2fa45800fa23a415fdf0d9cea1feaaa8f13ecefa07d3d49074ebc9fb80c46e59c6d8833806b2b12ede5fb78722fe7d8247a1cd6af12d601377483ac5865fbef01f04538ae7fca63d3a48b67eb60e7d91c18fb5898485f4da6dc55907bac4d70f3f06f63f5c159f4c582e824a"}, @NFTA_DATA_VALUE={0x3d, 0x1, "96faf7f41e93a8c7710bb3b0b9d887880dbd517db4598989949e8d9d5df774d7263f5be3751d7ca1bdbf11b7b35d5dff57176c996a99d06225"}, @NFTA_DATA_VERDICT={0x1c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}]}, @NFTA_DATA_VERDICT={0x18, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8}]}]}, @NFTA_SET_ELEM_KEY={0x1a4, 0x1, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x20, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VERDICT={0x4c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}]}, @NFTA_DATA_VALUE={0x34, 0x1, "24804c64ae4c8f119460a4d3dd4229ce7b1cb9e4dbf51368323e17f15cc8a9b13e966cfc1feccd76822fde356b3dc7f1"}, @NFTA_DATA_VERDICT={0x24, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}]}, @NFTA_DATA_VERDICT={0x10, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}, @NFTA_DATA_VALUE={0xcb, 0x1, "9801db9a52afc6a40d229a40e5df2467cbcd9da9b3f8a20f3a8ce7a4572b47315992e934b911b1074ad7f0ccdf1373b26c078913fb5329c0ff09ee41abccf727f0c214e8a1ba6e834dd38b670f5e6e4a9acacd7d3ccabad40fdb5440a822483281556712a4bfe9dbc3cd1cbb5832155b762f6431ba9b1c54c9e6ddabefd57f85fd22585b7d44c91f4862341e660d7b071fb75107838433b0342fecdd77a3ca6f545a075e1b8a04e9b4bee7241c37912289d05972d41db4087f0a11590b0cb9ef06709af00c9173"}]}, @NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x1}, @NFTA_SET_ELEM_KEY_END={0x48, 0xa, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x44, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}]}]}, {0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz1\x00'}]}, {0x1fc, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_DATA={0x154, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x38, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VALUE={0xe2, 0x1, "d9c6f49e158e5a0af880468970ed70cb521cfb596e774d33ac728ed0a8e46fd9a07391b3e97848ffb9a5c96a4f6ef50a18b7f99cc3aa230b29a9dd76b70be73ca084e0cc73cf21a051eeb8f9d29e0b5b2eaa14ae8b6dc6676976ae4277cd6bb0593061bc77cd9da28cf365087df4806aecbc345901a36c731567d5a300abc2d8d8a0f29f787cd616cd3af002dce7071b10d7faf19af50d300c14eba4b8bf42cd1457909f26527572ed4c04f6f4339f8f1325123c9190f6e85922bea0ddb17c4ccefaf81f9091c88984182fc75bd06be07d7069ca5c06c880d620b2f82910"}, @NFTA_DATA_VALUE={0x32, 0x1, "879f1ef4dcc4850f22a238aaaf3276b0b6e972c3065d332a892789cdb106920d8416a5535ed39693c3f5a75b260a"}]}, @NFTA_SET_ELEM_EXPR={0x50, 0x7, 0x0, 0x1, @log={{0x8}, @val={0x44, 0x2, 0x0, 0x1, [@NFTA_LOG_GROUP={0x6, 0x1, 0x1, 0x0, 0x3}, @NFTA_LOG_FLAGS={0x8, 0x6, 0x1, 0x0, 0xd}, @NFTA_LOG_QTHRESHOLD={0x6}, @NFTA_LOG_FLAGS={0x8, 0x6, 0x1, 0x0, 0x3}, @NFTA_LOG_GROUP={0x6, 0x1, 0x1, 0x0, 0x8}, @NFTA_LOG_LEVEL={0x8, 0x5, 0x1, 0x0, 0x4}, @NFTA_LOG_GROUP={0x6, 0x1, 0x1, 0x0, 0x9}, @NFTA_LOG_SNAPLEN={0x8, 0x3, 0x1, 0x0, 0x2}]}}}, @NFTA_SET_ELEM_DATA={0x54, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x34, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VALUE={0x1a, 0x1, "5f06e6bd3f8137567fc9ee0d00a9ca5bfde4f5d364a0"}]}]}]}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x1c8, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x3}, @NFTA_RULE_EXPRESSIONS={0xa4, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @hash={{0x9}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_HASH_LEN={0x8, 0x3, 0x1, 0x0, 0x62}, @NFTA_HASH_LEN={0x8, 0x3, 0x1, 0x0, 0xa5}, @NFTA_HASH_SREG={0x8, 0x1, 0x1, 0x0, 0xe}, @NFTA_HASH_DREG={0x8, 0x2, 0x1, 0x0, 0x11}]}}}, {0x10, 0x1, 0x0, 0x1, @limit={{0xa}, @void}}, {0x3c, 0x1, 0x0, 0x1, @reject={{0xb}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_REJECT_TYPE={0x8}, @NFTA_REJECT_TYPE={0x8}, @NFTA_REJECT_TYPE={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_REJECT_ICMP_CODE={0x5, 0x2, 0x5}, @NFTA_REJECT_ICMP_CODE={0x5, 0x2, 0x1}]}}}, {0x10, 0x1, 0x0, 0x1, @tunnel={{0xb}, @void}}, {0x10, 0x1, 0x0, 0x1, @limit={{0xa}, @void}}]}, @NFTA_RULE_USERDATA={0xd2, 0x7, 0x1, 0x0, "97ce145099843d5210771ac3ea8414681cc777e94ed2afc14cf65c32e9c2e1ec38107434a292570bc421c22480e8c0d5cdd7b9ebfa4cc6bc75b8c06b862366014d36cf124bcb76644b06ae9aa6e478bbcd4a70c68d1dfabf6a76ee1d3d9236d7d9c9033a15620b27fe3eac472fe3dc0e8b83017e9811fb366820629418916064aee981d3278d837f3e229eb9b3e9e100197be4da6b71bc5b343453887aa4e952586a7b61df82e4e57f5c7ee6bd487e9d8c9d379774d57ac53257f9972d9031599be69e18305ca1b502cab1f523ae"}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x5}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x204, 0x0, 0x0, {0x2}, [@NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x4}, @NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x5}, @NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x4}, @NFTA_RULE_ID={0x8, 0x9, 0x1, 0x0, 0x1}, @NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x1}, @NFTA_RULE_POSITION_ID={0x8}]}, @NFT_MSG_NEWTABLE={0x28, 0x0, 0xa, 0x5, 0x0, 0x0, {0x2, 0x0, 0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}]}, @NFT_MSG_NEWRULE={0x1c, 0x6, 0xa, 0x201, 0x0, 0x0, {0x1, 0x0, 0x5}, [@NFTA_RULE_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x1}]}, @NFT_MSG_NEWRULE={0x144, 0x6, 0xa, 0x801, 0x0, 0x0, {0x1, 0x0, 0x2}, [@NFTA_RULE_COMPAT={0x1c, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x3b}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x8884}]}, @NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x3}, @NFTA_RULE_EXPRESSIONS={0x10c, 0x4, 0x0, 0x1, [{0x38, 0x1, 0x0, 0x1, @dup={{0x8}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_DUP_SREG_DEV={0x8, 0x2, 0x1, 0x0, 0x4}, @NFTA_DUP_SREG_DEV={0x8, 0x2, 0x1, 0x0, 0x5}, @NFTA_DUP_SREG_DEV={0x8, 0x2, 0x1, 0x0, 0x9}, @NFTA_DUP_SREG_DEV={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_DUP_SREG_DEV={0x8, 0x2, 0x1, 0x0, 0x3}]}}}, {0x10, 0x1, 0x0, 0x1, @log={{0x8}, @val={0x4}}}, {0x18, 0x1, 0x0, 0x1, @flow_offload={{0x11}, @void}}, {0x10, 0x1, 0x0, 0x1, @meta={{0x9}, @void}}, {0x18, 0x1, 0x0, 0x1, @nat={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_NAT_REG_ADDR_MIN={0x8, 0x3, 0x1, 0x0, 0xf}]}}}, {0x60, 0x1, 0x0, 0x1, @nat={{0x8}, @val={0x54, 0x2, 0x0, 0x1, [@NFTA_NAT_REG_ADDR_MIN={0x8, 0x3, 0x1, 0x0, 0xa}, @NFTA_NAT_FLAGS={0x8, 0x7, 0x1, 0x0, 0x6}, @NFTA_NAT_FLAGS={0x8, 0x7, 0x1, 0x0, 0x1}, @NFTA_NAT_REG_PROTO_MIN={0x8, 0x5, 0x1, 0x0, 0x11}, @NFTA_NAT_FAMILY={0x8, 0x2, 0x1, 0x0, 0xa}, @NFTA_NAT_REG_PROTO_MAX={0x8, 0x6, 0x1, 0x0, 0x17}, @NFTA_NAT_TYPE={0x8}, @NFTA_NAT_FLAGS={0x8, 0x7, 0x1, 0x0, 0x5}, @NFTA_NAT_REG_ADDR_MAX={0x8, 0x4, 0x1, 0x0, 0x4}, @NFTA_NAT_REG_ADDR_MIN={0x8, 0x3, 0x1, 0x0, 0x4}]}}}, {0x20, 0x1, 0x0, 0x1, @rt={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_RT_KEY={0x8}, @NFTA_RT_DREG={0x8}]}}}]}]}, @NFT_MSG_DELSET={0x1d8, 0xb, 0xa, 0x5, 0x0, 0x0, {0x0, 0x0, 0x4}, [@NFTA_SET_ID={0x8}, @NFTA_SET_EXPR={0x1b4, 0x11, 0x0, 0x1, @range={{0xa}, @val={0x1a4, 0x2, 0x0, 0x1, [@NFTA_RANGE_OP={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_RANGE_SREG={0x8, 0x1, 0x1, 0x0, 0x10}, @NFTA_RANGE_SREG={0x8}, @NFTA_RANGE_OP={0x8}, @NFTA_RANGE_FROM_DATA={0x178, 0x3, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x1c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}]}, @NFTA_DATA_VALUE={0xa5, 0x1, "7df4529bef2fb5d537a7e305c559f65c1fe9411a00718cd0cc6a37bff9830b5543da72a967a9f355e8778bb6d19baad2fa062ec7eeae8093bf5fbb2db80400bf1d1a2829e8df249bf81312392084a6fefdc849903ff2dd900a63fab6f38d5c10e95cab642735f80351cb78a11de49e44edf0bc87e10cc9a6036cba4906edd733f4b3d1841a25fc88069700132433e83b547d69a52b436d4b5758d9fbb3cecc58b7"}, @NFTA_DATA_VALUE={0x9, 0x1, "6211102bad"}, @NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}]}, @NFTA_DATA_VALUE={0x49, 0x1, "452407daec909d2944a6289135392dc6eded64c41fd867c03608b8f64d60edc0ac052279621bfa0dfdd4cefe7109edf8f42e7a7586ff0a302c44bc6b100b3224a4167c583f"}, @NFTA_DATA_VALUE={0x49, 0x1, "634434878a14185a632f8626272dd562b0ef3c7783bdf562599a0494d32d1b8295842d3f43987175d2a7a05d61806f55afb849cff84f23a9691d77ce1041a88cd263f33b81"}]}, @NFTA_RANGE_SREG={0x8, 0x1, 0x1, 0x0, 0x8}]}}}, @NFTA_SET_DATA_LEN={0x8, 0x7, 0x1, 0x0, 0x15}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x2}}}, 0x1838}, 0x1, 0x0, 0x0, 0x44000}, 0xc080)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r7 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x200)
ioctl$BLKTRACESETUP(r7, 0xc0481273, &(0x7f0000000040)={'\x00', 0x5, 0x7, 0x8000, 0xb, 0x0, 0xffffffffffffffff})

7.067225637s ago: executing program 3 (id=2108):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="400000001435010026bd0c333c84df250a4022fe", @ANYRES32, @ANYBLOB="140006000000000005"], 0x40}, 0x1, 0x0, 0x0, 0x811}, 0x0)
r0 = socket$inet6(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000c80)={'batadv_slave_1\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000d40)={&(0x7f0000000000)=@ipv4_newaddr={0x40, 0x14, 0x509, 0x70bd27, 0x25dfdbfc, {0x2, 0x1f, 0x0, 0xff, r2}, [@IFA_BROADCAST={0x8, 0x4, @rand_addr=0x64010104}, @IFA_FLAGS={0x8, 0x8, 0x100}, @IFA_LOCAL={0x8, 0x2, @local}, @IFA_ADDRESS={0x8, 0x1, @private=0xa010102}, @IFA_RT_PRIORITY={0x8, 0x9, 0x3}]}, 0x40}, 0x1, 0x0, 0x0, 0x4040014}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB="18"], 0x18}}, 0x0)
sendto$inet6(r0, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)

7.003396055s ago: executing program 3 (id=2109):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x8}, 0x50)
r1 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000000)=0xffffffffffffffff, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x4, 0x10, &(0x7f00000009c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b5af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001400000018110000", @ANYRES32=r0, @ANYBLOB="003d0e9c6c8dcb69250200000000df00850000008600000095"], &(0x7f00000016c0)='GPL\x00', 0x0, 0x62, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x8}, 0x50) (async)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000000)=0xffffffffffffffff, 0x4) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x4, 0x10, &(0x7f00000009c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b5af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001400000018110000", @ANYRES32=r0, @ANYBLOB="003d0e9c6c8dcb69250200000000df00850000008600000095"], &(0x7f00000016c0)='GPL\x00', 0x0, 0x62, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)

6.906924242s ago: executing program 3 (id=2112):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a03000000000000000000010000000900010073797a30000000000900020073797a30000000002c0003800800014000000000180003801400020000007468305f746f5f68737200000000080002"], 0xe8}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=@mpls_delroute={0x1c, 0x18, 0x9}, 0x1c}}, 0x0)
ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f0000000280)={'bridge_slave_1\x00', &(0x7f0000000300)=@ethtool_test={0x1a, 0x10, 0x1}})
syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="0380c2000000bbbbbbbbbbbb0800454000300000000000019078ac1e002500000000000000000100007f0000017f0000010000ffffffff000000efffffff"], 0x0)

4.629594975s ago: executing program 5 (id=2146):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000380), 0xffffffffffffffff)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x41, &(0x7f0000000340)=0x63ba, 0x4)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, 0x0}], 0x1, 0x4, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x3, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r0, 0x4008ae93, &(0x7f0000000040)=0x1000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="18020000004000000000000000000000850000001900000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100}, 0x94)
ioctl$KVM_SET_VCPU_EVENTS(r0, 0x4400ae8f, &(0x7f0000000140)=@x86={0x40, 0x21, 0xc, 0x0, 0x75, 0x81, 0x10, 0x0, 0x0, 0x82, 0x9, 0x0, 0x0, 0x0, 0x8, 0x0, 0xe, 0xff, 0x0, '\x00', 0x7})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000540)={{}, &(0x7f00000004c0), &(0x7f0000000500)}, 0x20)
ioctl$KVM_RUN(r0, 0xae80, 0x0)

4.472572651s ago: executing program 5 (id=2149):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeeb, 0x8031, 0xffffffffffffffff, 0x0)
r0 = add_key$keyring(0x0, &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
r1 = add_key$keyring(&(0x7f0000000200), &(0x7f0000000140)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff)
r2 = add_key$user(&(0x7f00000000c0), &(0x7f0000000280)={'syz', 0x0}, &(0x7f00000002c0)="89e310974c493779f228ff739e380b5734661e", 0x13, r1)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f00000001c0)='asymmetric\x00', &(0x7f0000000400)=@chain={'key_or_keyring:', r2})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps_rollup\x00')
socket$inet6(0xa, 0x0, 0x7f)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
read$FUSE(r3, &(0x7f00000005c0)={0x2020}, 0x2020)

4.448669232s ago: executing program 4 (id=2151):
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x28, 0x28, 0x4, [@var={0x2, 0x0, 0x0, 0x11, 0x3, 0xffffffff}, @const={0x0, 0x0, 0x0, 0x2, 0x3}, @func_proto={0x2, 0x0, 0x0, 0x8, 0x2}]}, {0x0, [0x0, 0x5f]}}, 0x0, 0x44}, 0x28)
r0 = syz_open_dev$vbi(&(0x7f0000000100), 0x1, 0x2)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000500)='/proc/consoles\x00', 0x0, 0x0)
r2 = syz_io_uring_setup(0x49d, &(0x7f00000003c0)={0x0, 0x79ac, 0x800, 0x107ffd, 0x32c, 0x0, r1}, &(0x7f0000000800)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4) (async, rerun: 64)
syz_io_uring_submit(r3, r4, &(0x7f0000000080)=@IORING_OP_READ=@pass_buffer={0x16, 0x40, 0x4007, @fd=r1, 0x7, &(0x7f00000000c0)=""/207, 0xcf, 0x10, 0x1}) (async, rerun: 64)
io_uring_enter(r2, 0x1000fd0, 0x4be, 0x28, 0x0, 0x0) (async)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
ioctl$VIDIOC_G_EXT_CTRLS(r0, 0xc0205648, &(0x7f00000000c0)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000080)={0x98f905, 0xffffbfff, '\x00', @string=&(0x7f0000000180)=0xa3}})
setsockopt$WPAN_WANTLQI(0xffffffffffffffff, 0x0, 0x3, &(0x7f0000000000), 0x4) (async, rerun: 32)
syz_usb_connect(0x0, 0x2d, &(0x7f00000003c0)=ANY=[@ANYBLOB="1201000050cb5340450c10108e492940a80909021b00090000000009040002010035040009058dff"], 0x0) (rerun: 32)

2.919316192s ago: executing program 5 (id=2168):
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x88}}, 0x28014014)
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f0000003b80)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB='\\\x00\x00', @ANYBLOB="010000000000000000001400000018000180140002006e657464657673696d"], 0x5c}, 0x1, 0x0, 0x0, 0x24004000}, 0x0)
bpf$MAP_DELETE_BATCH(0x1b, &(0x7f0000000240)={&(0x7f0000000180)="484a1e9f0a296a1edda568735b175adba4a3682cabf4e8373bb7e7daf0dce87850ec769df0796230b08ed89fce6abe202dec401a3a8e7b87d7eaa3fda0984550f74589859ef7a5f516a584fa15cfcb2e45c1bb2c33905d9b03fec894fdb285c03c99a80e1e8f4a0401b76c6328", 0x0, &(0x7f00000003c0), 0x0, 0x1}, 0x38)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)
sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x48}, 0x800)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x0)

2.763139208s ago: executing program 5 (id=2170):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
r1 = userfaultfd(0x1)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000080)={0xaa, 0x79})
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000040)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0, 0xffffffffffffff2c}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
io_uring_setup(0x5053, &(0x7f0000000200)={0x0, 0x326e, 0x80, 0x0, 0x3c6})
r2 = socket(0x2, 0x80805, 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
shutdown(r3, 0x0)
close(0x3)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000200)={<r4=>0x0, 0x68, &(0x7f0000000540)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}, @in={0x2, 0x4e20, @remote}, @in6={0xa, 0x4e21, 0x1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0xff}, @in6={0xa, 0x4e23, 0xffff, @ipv4={'\x00', '\xff\xff', @remote}, 0x5be}, @in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, 0x0)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r3, 0x84, 0x7a, &(0x7f0000000340)={r4, @in6={{0xa, 0x3, 0x4, @private0}}}, 0x0)
sendmmsg$inet_sctp(r0, &(0x7f00000032c0)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=ANY=[], 0x30, 0x50}], 0x1, 0x40)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r2, 0x84, 0x17, &(0x7f0000000000)=ANY=[], 0xffc9)
io_uring_setup(0x631e, 0x0)
syz_usb_connect(0x2, 0x3f, &(0x7f00000001c0)=ANY=[@ANYBLOB="120110012cae9308da040d39dffa0102030109022d0001c94080010904f90403c0da26ff0905f10f", @ANYRES32=r0], 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000000000)=0x6, 0x4)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_buf(r5, 0x29, 0x20, &(0x7f00000005c0)="0bbb268dd6ffa80800000000000000000000210d0000aaa8fa017242ba9380d414000000000000002900000043000000", 0x30)
r6 = fsopen(&(0x7f0000000080)='cifs\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r6, 0x1, &(0x7f0000000200)='source', &(0x7f0000000140)='\\\\\xe9\x838\x9d<\f\x91\a\xd4$\xae\x01\x91&6n \xf2<\xd6\xcf\x15\xd3\xd7\x1d\xa7=\xef\xca\n@\x06\xa3\xfe%\x11\xc9\xc5\xc4\x96\\b\xa0\xbbL}\xcc\'(;\xdcjN\xab\xcf\xa0\x1dN\xbeA\x17\n\f\xcd=\'\x11\x1b\b>Z\x8e\xb1\xc3j$v\xef,\x06/\xea\x00\x00\x00\x00\xc7\x0f\xab\t\x00\x00\x00;\xd5\xcd4g+\xbd\xd1\xe0R\x9d\x18\x19a:\xa2\xdf\xbe\x8b\x89\x81\x00\x00\x00', 0x0)
socket$inet_sctp(0x2, 0x1, 0x84)
symlinkat(&(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xffffffffffffff9c, &(0x7f0000000440)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
mount$overlay(0x0, &(0x7f0000000a00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x8c0040, 0x0)

2.515339616s ago: executing program 1 (id=2173):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = fsopen(&(0x7f00000006c0)='sysfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
fsmount(r1, 0x0, 0x0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000200)='#! ', &(0x7f0000000240)='\'!$[)\x00', 0x0)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x3000008, 0x12, r0, 0x852ac000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x5, 0x5, &(0x7f0000000640)=ANY=[@ANYBLOB="180000004830000000000000fa40000007010000080020007500feff0000820095"], &(0x7f0000000040)='syzkaller\x00', 0x6, 0xfa, &(0x7f0000000f40)=""/250, 0x0, 0xa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xa}, 0x94)

2.16846677s ago: executing program 1 (id=2178):
syz_open_dev$loop(&(0x7f0000000240), 0x6, 0x0)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_freeze_timeout', 0x82802, 0xf)
ioctl$LOOP_CONFIGURE(0xffffffffffffffff, 0x4c0a, &(0x7f0000000280)={r0, 0x0, {0x0, 0x0, 0x0, 0x32, 0x4000000000001001, 0x0, 0x0, 0x1c, 0xd, "faf98317e5a1149989fc8dbe53ea6acc96e3a2503dc3bd3fe37d58128bbad0099cebdc25f5ab60c9e6d680f985881a8a0f3500000000000000000e00", "32d8cc26f7061a74df2cfc06c89f3d9e234b30c50997d3bef409ff2176ff7bfe55cd4a5d83cd4a524bd3ffe70c7f3f800b2f7b6aa54cc50a1fcaed1e831fa79a", "675237601a8ca5b07dcc141802c4dae4162e43ac61b7ad3300", [0x3, 0x6]}})
openat$dsp1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
openat$cgroup_devices(r1, &(0x7f0000000200)='devices.deny\x00', 0x2, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
unshare(0x20400)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f0000000140)=@gcm_128={{0x303}, "87ee8ac6c46dad33", "2607080d7f4fcf00fd4ef2dece6c7c58", '\x00', '#\x00'}, 0x28)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100), 0x90000, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000000), r0)

1.758341305s ago: executing program 1 (id=2180):
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x88}}, 0x28014014)
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f0000003b80)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB='\\\x00\x00', @ANYBLOB="010000000000000000001400000018000180140002006e657464657673696d"], 0x5c}, 0x1, 0x0, 0x0, 0x24004000}, 0x0)
bpf$MAP_DELETE_BATCH(0x1b, &(0x7f0000000240)={&(0x7f0000000180)="484a1e9f0a296a1edda568735b175adba4a3682cabf4e8373bb7e7daf0dce87850ec769df0796230b08ed89fce6abe202dec401a3a8e7b87d7eaa3fda0984550f74589859ef7a5f516a584fa15cfcb2e45c1bb2c33905d9b03fec894fdb285c03c99a80e1e8f4a0401b76c6328", 0x0, &(0x7f00000003c0), 0x0, 0x1}, 0x38)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)
sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x48}, 0x800)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x0)

1.671240792s ago: executing program 1 (id=2182):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000380), 0xffffffffffffffff)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x41, &(0x7f0000000340)=0x63ba, 0x4)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, 0x0}], 0x1, 0x4, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x3, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r1, 0x4008ae93, &(0x7f0000000040)=0x1000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="18020000004000000000000000000000850000001900000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100}, 0x94)
ioctl$KVM_SET_VCPU_EVENTS(r1, 0x4400ae8f, &(0x7f0000000140)=@x86={0x40, 0x21, 0xc, 0x0, 0x75, 0x81, 0x10, 0x0, 0x0, 0x82, 0x9, 0x0, 0x0, 0x0, 0x8, 0x0, 0xe, 0xff, 0x0, '\x00', 0x7})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000540)={{}, &(0x7f00000004c0), &(0x7f0000000500)}, 0x20)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

1.550943904s ago: executing program 1 (id=2184):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
bind$inet(0xffffffffffffffff, &(0x7f0000000380)={0x2, 0x4e20, @private=0xa010102}, 0x10)
sendmsg$NLBL_MGMT_C_REMOVE(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0xa00, &(0x7f0000000580)={&(0x7f0000000040)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16, @ANYBLOB="01002abd7000fcdbdf2502000600050001"], 0x30}, 0x1, 0x0, 0x0, 0x404c001}, 0x10)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0xa, 0x4e22, 0x3, @loopback, 0x9}, 0x1c, 0x0}}], 0x1, 0x60040000)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendto(0xffffffffffffffff, 0x0, 0x0, 0x20000c10, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000040)=0x1000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="18020000004000000000000000000000850000001900000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100}, 0x94)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@x86={0x40, 0x21, 0xc, 0x0, 0x75, 0x81, 0x10, 0x0, 0x0, 0x82, 0x9, 0x0, 0x0, 0x0, 0x8, 0x0, 0xe, 0xff, 0x0, '\x00', 0x7})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1.412892878s ago: executing program 5 (id=2187):
prlimit64(0x0, 0xe, &(0x7f0000000600)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x8c, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)
execveat(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1000)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000040)=0x2)
io_setup(0x239f, &(0x7f0000000380)=<r4=>0x0)
io_submit(r4, 0x477f, &(0x7f0000000b40)=[&(0x7f0000000080)={0x200000000000000, 0x0, 0x0, 0x7, 0x8, r3, 0x0}])
ioctl$TIOCVHANGUP(r3, 0x5437, 0x0)

1.333912803s ago: executing program 3 (id=2189):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-camellia-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be521634", 0xc}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb0958730", 0x4c}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2", 0x88}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
readv(r1, &(0x7f0000001b80)=[{&(0x7f00000002c0)=""/5, 0x5}, {&(0x7f0000001a00)=""/222, 0xde}], 0x2)

1.176819177s ago: executing program 3 (id=2192):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$VHOST_VDPA_SET_CONFIG_CALL(r0, 0x4004af77, &(0x7f0000000080)=0x6)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000001080)={0x200000, 0x200000, 0x0, 0x0, 0x0, 0x4})
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='net/dev_snmp6\x00')
openat(r1, &(0x7f0000000440)='./cgroup\x00', 0x440, 0x80)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={0x14, 0x37, 0x507, 0xfffffff3, 0x25d7dc01, {0x7, 0x7c}}, 0x14}, 0x1, 0x0, 0x0, 0x4048011}, 0x8050)
bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x3, 0x3, &(0x7f00000000c0)=@framed, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={r3, &(0x7f00000000c0), &(0x7f0000000000)=""/10, 0x2}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000200)={r3, &(0x7f0000000080), &(0x7f0000000000)=""/10, 0x2}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000b40)={r3, &(0x7f0000000a80), 0x0}, 0x20)
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="140000001700010324bd77923b96df250100000094d04aa5a4ca5703af40a3256d25323e6c3db6914b15d7804d6c2ba01ead028609dfa2949f062e5ac7c8eb10556cebde58c57e622d398b81b2f68f048201647586469924193543362829e96eaa93d672af08d3835e6e2fdb758036171fa932cc8ac7e48ffba3024606733751015b168f3c5652e54162c898894d3974d2517918f5c7e1bfa36ae46d1d57c26e45b174171bf60d24a291c0d7c3208609d8374f507f58eb231ecf9be4c299a2f0d62f093de27ca79c981c98e2cc6553a258162bf43b6e3256c15db82ed0088fa8f3c48755f37696abb05f36d1f260bdefbc08"], 0x14}}, 0x0)

1.172840795s ago: executing program 4 (id=2193):
setresuid(0xee00, 0x0, 0x0)
ftruncate(0xffffffffffffffff, 0x8008976)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x13, 0xffffffffffffffff, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x0, &(0x7f0000000380)})
ioctl$SNDRV_CTL_IOCTL_ELEM_REPLACE(0xffffffffffffffff, 0xc1105518, &(0x7f0000000140)={{0x2, 0x6, 0x8, 0x4, 'syz0\x00', 0x5}, 0x6, 0x40, 0x8, 0x0, 0x8, 0x7fffffff, 'syz1\x00', &(0x7f0000000040)=['\x00', ')]\x00', ')\x00', '%-]:%\x00', '-$$}):,\x00', '%&+@\x00', '\x00', '\\-\x00'], 0x1d})
ioprio_set$uid(0x3, 0xee00, 0x0)
io_setup(0x4fb, &(0x7f00000009c0))

1.041217275s ago: executing program 6 (id=2194):
r0 = semget$private(0x0, 0x20000000102, 0x140)
syz_open_procfs(0x0, &(0x7f0000000580)='net/protocols\x00')
semctl$GETALL(r0, 0x0, 0xd, 0x0)

971.629716ms ago: executing program 4 (id=2195):
socketpair$unix(0x1, 0x3, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bind$netlink(r0, &(0x7f0000000200)={0x10, 0x0, 0xffffffff, 0x80065c9}, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900038073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x25}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWSET={0x3c, 0x12, 0xa, 0x201, 0x6000000, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0xa}]}], {0x14}}, 0x64}}, 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000040)={@local, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x1, 0x0, @private=0xa010102, @local}, @address_request={0x11, 0x0, 0x0, 0x90b6}}}}}, 0x0)

919.960465ms ago: executing program 6 (id=2196):
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
writev(r1, &(0x7f0000002a80)=[{&(0x7f0000000a00)="1b", 0x1}], 0x1)
splice(r3, 0x0, 0xffffffffffffffff, 0x0, 0xf3a, 0x0)
write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000000), 0xffffff98)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x80, 0xf)
write(r2, 0x0, 0x0)

869.82212ms ago: executing program 1 (id=2197):
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000340)={0x0}, 0x1, 0x0, 0x0, 0x20008400}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20000008, &(0x7f00000001c0)={0xa, 0x4e20, 0x8, @loopback}, 0x1c)
bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x10, 0x17, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000200)=0x474c, 0x4)
bind$inet(r0, &(0x7f0000000240)={0x2, 0x4e20, @local}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x300)
recvmmsg(r0, &(0x7f0000000040), 0x291962b, 0x45833af92e4b39ff, 0x0)

815.247135ms ago: executing program 4 (id=2198):
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000340)={0x0}, 0x1, 0x0, 0x0, 0x20008400}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20000008, &(0x7f00000001c0)={0xa, 0x4e20, 0x8, @loopback}, 0x1c)
bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x10, 0x17, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000200)=0x474c, 0x4)
bind$inet(r0, &(0x7f0000000240)={0x2, 0x4e20, @local}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
setsockopt$inet_int(r0, 0x0, 0xd, &(0x7f0000000040)=0x1f7, 0x4)
recvmmsg(r0, &(0x7f0000000040), 0x291962b, 0x45833af92e4b39ff, 0x0)

739.166503ms ago: executing program 4 (id=2199):
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x88}}, 0x28014014)
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f0000003b80)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB='\\\x00', @ANYBLOB="010000000000000000001400000018000180140002006e657464657673696d30"], 0x5c}, 0x1, 0x0, 0x0, 0x24004000}, 0x0)
bpf$MAP_DELETE_BATCH(0x1b, &(0x7f0000000240)={&(0x7f0000000180)="484a1e9f0a296a1edda568735b175adba4a3682cabf4e8373bb7e7daf0dce87850ec769df0796230", 0x0, &(0x7f00000003c0), 0x0, 0x1}, 0x38)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00'})

679.311595ms ago: executing program 6 (id=2200):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000140)='.\x00', 0x0, 0x0)
fcntl$notify(r0, 0x402, 0x24)
ioctl$BLKDISCARD(r0, 0x1277, &(0x7f00000001c0)=0x850)
r1 = openat(r0, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(r1, 0x402, 0x1b)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x400, 0x9)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000008c0)={'bridge_slave_1\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000080)=@bridge_newneigh={0x1c, 0x1c, 0x1, 0x703dab, 0x25dfdbfb, {0x7, 0x0, 0x0, r3, 0x80, 0xcd, 0xa}}, 0x1c}, 0x1, 0x0, 0x0, 0xd5}, 0x4040000)
fcntl$notify(r1, 0x402, 0x8000000d)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)

539.750702ms ago: executing program 4 (id=2201):
socket$nl_route(0x10, 0x3, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5)
close(0x4)
syz_open_procfs$namespace(0x0, &(0x7f0000000200)='ns/uts\x00')
unshare(0x6a040000)
r0 = socket(0x8, 0x3, 0x3)
socket$pptp(0x18, 0x1, 0x2)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$PPPIOCATTCHAN(0xffffffffffffffff, 0x40047438, 0x0)
getsockname$packet(r0, 0x0, 0x0) (fail_nth: 1)
getuid()
bpf$MAP_CREATE(0x0, 0x0, 0x48)
socket$nl_rdma(0x10, 0x3, 0x14)
ioctl$sock_netrom_SIOCADDRT(r0, 0x6180, 0x0)

539.413636ms ago: executing program 6 (id=2202):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, 0x0) (async)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f00000000c0)={'dt2801\x00', [0x4fa7, 0x102, 0x2, 0x10000421, 0x1ffffff, 0xcc7, 0xfffffffe, 0xa, 0x5, 0x3ff, 0x0, 0x300, 0x1, 0x1, 0x9, 0x0, 0x40400, 0x8, 0x4, 0x1fe, 0x80000089, 0xa, 0x1400000, 0x20001e54, 0xffffeadb, 0x3, 0x3d, 0x8, 0x4, 0x3]}) (async)
openat$audio1(0xffffffffffffff9c, &(0x7f0000000000), 0x549201, 0x0)

537.978758ms ago: executing program 3 (id=2203):
socket$nl_route(0x10, 0x3, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5)
close(0x4)
syz_open_procfs$namespace(0x0, &(0x7f0000000200)='ns/uts\x00')
unshare(0x6a040000)
r0 = socket(0x8, 0x3, 0x3)
socket$pptp(0x18, 0x1, 0x2)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$PPPIOCATTCHAN(0xffffffffffffffff, 0x40047438, 0x0)
getsockname$packet(r0, 0x0, 0x0)
getuid()
bpf$MAP_CREATE(0x0, 0x0, 0x48)
socket$nl_rdma(0x10, 0x3, 0x14)
ioctl$sock_netrom_SIOCADDRT(r0, 0x6180, 0x0)

354.388931ms ago: executing program 6 (id=2204):
r0 = socket(0x5, 0x6, 0x25)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000300)={'ip6tnl0\x00', &(0x7f0000000080)={'syztnl1\x00', 0x0, 0x4, 0xfb, 0x53, 0x3, 0x58, @mcast1, @mcast2={0xff, 0x5}, 0x8, 0x40, 0xe3e1, 0xd01}})
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/power/reserved_size', 0x2, 0x0)
sendfile(r1, r1, 0x0, 0x6)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0, 0x0, r1}, 0x68)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = signalfd(0xffffffffffffffff, &(0x7f00000002c0)={[0x7fffffff]}, 0x8)
read$FUSE(r4, 0x0, 0x0)
kcmp(r3, 0x0, 0x4, r0, r2)

242.426454ms ago: executing program 5 (id=2205):
mmap(&(0x7f0000ff4000/0xc000)=nil, 0xc000, 0x1000003, 0x20031, 0xffffffffffffffff, 0xffffe000)
prlimit64(0x0, 0xe, &(0x7f0000000600)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = memfd_create(&(0x7f0000000180)='[\vx\'\xa5)\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\x01\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc0\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\t\x00\x00\x00\x10\xc7\x00^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x99\x83\xcd\b\xd1\x02R\xae\x80\xd2}\xf5\xe4\x9f5\x9b7\xaf\xb7o\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd', 0x0)
r4 = socket$nl_sock_diag(0x10, 0x3, 0x4)
r5 = socket$inet_sctp(0x2, 0x5, 0x84)
sendto$inet(r5, 0x0, 0x0, 0xc1, &(0x7f0000000280)={0x2, 0x4e22, @loopback}, 0x10)
sendmsg$TCPDIAG_GETSOCK(r4, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000080)=ANY=[@ANYBLOB, @ANYRES32=r4], 0x4c}}, 0x8000)
openat(0xffffffffffffff9c, 0x0, 0x40042, 0x1)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sysvipc/sem\x00', 0x0, 0x0)
read$FUSE(r6, 0x0, 0x0)
semget$private(0x0, 0x4, 0x4f0)
read$FUSE(r6, &(0x7f0000002800)={0x2020}, 0x2073)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x8c, &(0x7f00000002c0)=ANY=[])
write$binfmt_script(r3, &(0x7f0000000080)={'#! ', './file0', [{0x20, '\t\t'}, {0x20, '\xb4\xd4\t$3\x95\\\x83\xdc\xc9\xae\xacqt\xd3cY\x0eQ\xcd\xc0\x88\x82\x13\x9b\xb3\xa0\xd0\xdc!\x9f0\xf7C\x8c\xb99\x84\x15\x8e\xdbd\x89\xfeE\xd5V1tW\xdd\xf2\xd0\x9d\xb0?\xf5Na\xe7\xecq\x17\xbca\xe5\xab\xf1]\xe3B\xa7\x9f\xf4\x1c\x19F\x88\x0e%\x91%\xe8\xcb]t\xb9d\xcd\x18\xcc\xa4\xbf\xe1\x0e\xb3\x18\x9e\xab\xaf\xcc\xd9\x9f,\xd8\xc5n_O!\x00\v\xd5\x02\xd5\x9f\xdbL\xbd\xe4\xaa(\xbf\xb4\x9eU\x802\xf7K\x06\xd1E\x01\xa73\xadb\xbcuJ\xce\x87Ft2\xcdO\xfc?\xb71E\x85\r\xfb\xb1\xb6TL'}]}, 0xaf)
execveat(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f0000000040)=0x2)
io_setup(0x239f, &(0x7f0000000380)=<r8=>0x0)
io_submit(r8, 0x477f, &(0x7f0000000b40)=[&(0x7f0000000080)={0x200000000000000, 0x0, 0x0, 0x7, 0x8, r7, 0x0}])
ioctl$TIOCVHANGUP(r7, 0x5437, 0x0)
mmap(&(0x7f00009b2000/0x1000)=nil, 0x1000, 0x3000008, 0x10010, r1, 0xa3e9b000)

0s ago: executing program 6 (id=2206):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a4c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc080003400000001408000c4000000e45400000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a310000000014000380100000800c00018006000100d103000014000000110001"], 0xb4}, 0x1, 0x0, 0x0, 0x20040055}, 0x40)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSETELEM(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001b00)={0x34, 0xd, 0xa, 0x801, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x8, 0x3, 0x0, 0x1, [{0x4}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000805}, 0x8000)

kernel console output (not intermixed with test programs):

tatus received: -71
[  308.678922][    C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  308.681231][    C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  308.681302][    C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  308.681368][    C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  308.684011][T10192] FAULT_INJECTION: forcing a failure.
[  308.684011][T10192] name failslab, interval 1, probability 0, space 0, times 0
[  308.684039][T10192] CPU: 0 UID: 0 PID: 10192 Comm: syz.4.1632 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  308.684059][T10192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  308.684073][T10192] Call Trace:
[  308.684079][T10192]  <TASK>
[  308.684088][T10192]  dump_stack_lvl+0xe8/0x150
[  308.684117][T10192]  should_fail_ex+0x46b/0x600
[  308.684149][T10192]  should_failslab+0xa8/0x100
[  308.684168][T10192]  __kmalloc_noprof+0xdf/0x7b0
[  308.684191][T10192]  ? kfree+0x4d/0x6c0
[  308.684212][T10192]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  308.684236][T10192]  tomoyo_realpath_from_path+0xe3/0x5d0
[  308.684263][T10192]  ? tomoyo_path_number_perm+0x219/0x630
[  308.684286][T10192]  tomoyo_path_number_perm+0x246/0x630
[  308.684311][T10192]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  308.684336][T10192]  ? __lock_acquire+0x6b5/0x2cf0
[  308.684386][T10192]  ? __fget_files+0x2a/0x420
[  308.684409][T10192]  ? __fget_files+0x2a/0x420
[  308.684427][T10192]  ? __fget_files+0x3a6/0x420
[  308.684447][T10192]  ? __fget_files+0x2a/0x420
[  308.684469][T10192]  security_file_ioctl+0xc3/0x2a0
[  308.684495][T10192]  __se_sys_ioctl+0x47/0x170
[  308.684523][T10192]  do_syscall_64+0x14d/0xf80
[  308.684545][T10192]  ? trace_irq_disable+0x3b/0x150
[  308.684564][T10192]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  308.684581][T10192]  ? clear_bhb_loop+0x40/0x90
[  308.684603][T10192]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  308.684619][T10192] RIP: 0033:0x7ff59082c799
[  308.684637][T10192] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  308.684651][T10192] RSP: 002b:00007ff58ea86028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  308.684670][T10192] RAX: ffffffffffffffda RBX: 00007ff590aa5fa0 RCX: 00007ff59082c799
[  308.684683][T10192] RDX: 0000200000000000 RSI: 00000000c0145b0e RDI: 0000000000000004
[  308.684694][T10192] RBP: 00007ff58ea86090 R08: 0000000000000000 R09: 0000000000000000
[  308.684705][T10192] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  308.684715][T10192] R13: 00007ff590aa6038 R14: 00007ff590aa5fa0 R15: 00007ffe0fbf95d8
[  308.684745][T10192]  </TASK>
[  308.688175][T10192] ERROR: Out of memory at tomoyo_realpath_from_path.
[  308.745734][ T5875] usb 5-1: USB disconnect, device number 30
[  309.003654][ T5851] usb 6-1: USB disconnect, device number 23
[  309.871313][T10247] netlink: 232 bytes leftover after parsing attributes in process `syz.5.1655'.
[  310.114905][T10257] FAULT_INJECTION: forcing a failure.
[  310.114905][T10257] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  310.114933][T10257] CPU: 0 UID: 0 PID: 10257 Comm: syz.5.1661 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  310.114950][T10257] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  310.114960][T10257] Call Trace:
[  310.114967][T10257]  <TASK>
[  310.114975][T10257]  dump_stack_lvl+0xe8/0x150
[  310.115005][T10257]  should_fail_ex+0x46b/0x600
[  310.115031][T10257]  _copy_from_user+0x2d/0xb0
[  310.115053][T10257]  ___sys_sendmsg+0x1c6/0x360
[  310.115084][T10257]  ? __pfx____sys_sendmsg+0x10/0x10
[  310.115141][T10257]  ? __fget_files+0x2a/0x420
[  310.115161][T10257]  ? __fget_files+0x3a6/0x420
[  310.115191][T10257]  __x64_sys_sendmsg+0x1c3/0x2a0
[  310.115217][T10257]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  310.115250][T10257]  ? __pfx_ksys_write+0x10/0x10
[  310.115284][T10257]  do_syscall_64+0x14d/0xf80
[  310.115306][T10257]  ? trace_irq_disable+0x3b/0x150
[  310.115327][T10257]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  310.115344][T10257]  ? clear_bhb_loop+0x40/0x90
[  310.115366][T10257]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  310.115384][T10257] RIP: 0033:0x7f290256c799
[  310.115401][T10257] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  310.115430][T10257] RSP: 002b:00007f29007c6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  310.115449][T10257] RAX: ffffffffffffffda RBX: 00007f29027e5fa0 RCX: 00007f290256c799
[  310.115462][T10257] RDX: 0000000008006000 RSI: 0000200000000a00 RDI: 0000000000000003
[  310.115475][T10257] RBP: 00007f29007c6090 R08: 0000000000000000 R09: 0000000000000000
[  310.115486][T10257] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  310.115497][T10257] R13: 00007f29027e6038 R14: 00007f29027e5fa0 R15: 00007ffcf9484bc8
[  310.115527][T10257]  </TASK>
[  310.445760][T10262] FAULT_INJECTION: forcing a failure.
[  310.445760][T10262] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  310.445793][T10262] CPU: 1 UID: 0 PID: 10262 Comm: syz.6.1665 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  310.445813][T10262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  310.445823][T10262] Call Trace:
[  310.445831][T10262]  <TASK>
[  310.445838][T10262]  dump_stack_lvl+0xe8/0x150
[  310.445868][T10262]  should_fail_ex+0x46b/0x600
[  310.445892][T10262]  _copy_from_user+0x2d/0xb0
[  310.445917][T10262]  ___sys_sendmsg+0x1c6/0x360
[  310.445945][T10262]  ? __pfx____sys_sendmsg+0x10/0x10
[  310.446002][T10262]  ? __fget_files+0x2a/0x420
[  310.446022][T10262]  ? __fget_files+0x3a6/0x420
[  310.446052][T10262]  __x64_sys_sendmsg+0x1c3/0x2a0
[  310.446078][T10262]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  310.446111][T10262]  ? __pfx_ksys_write+0x10/0x10
[  310.446146][T10262]  do_syscall_64+0x14d/0xf80
[  310.446168][T10262]  ? trace_irq_disable+0x3b/0x150
[  310.446187][T10262]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  310.446205][T10262]  ? clear_bhb_loop+0x40/0x90
[  310.446226][T10262]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  310.446244][T10262] RIP: 0033:0x7fcbe51fc799
[  310.446261][T10262] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  310.446276][T10262] RSP: 002b:00007fcbe3456028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  310.446295][T10262] RAX: ffffffffffffffda RBX: 00007fcbe5475fa0 RCX: 00007fcbe51fc799
[  310.446308][T10262] RDX: 00000000000080c0 RSI: 0000200000000000 RDI: 0000000000000003
[  310.446321][T10262] RBP: 00007fcbe3456090 R08: 0000000000000000 R09: 0000000000000000
[  310.446332][T10262] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  310.446343][T10262] R13: 00007fcbe5476038 R14: 00007fcbe5475fa0 R15: 00007ffc53f58e48
[  310.446375][T10262]  </TASK>
[  310.688445][T10276] openvswitch: netlink: Unexpected mask (mask=840, allowed=10048)
[  310.846014][T10281] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1670'.
[  312.082034][T10308] netlink: 232 bytes leftover after parsing attributes in process `syz.5.1678'.
[  312.828640][T10321] FAULT_INJECTION: forcing a failure.
[  312.828640][T10321] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  312.828671][T10321] CPU: 1 UID: 0 PID: 10321 Comm: syz.1.1689 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  312.828691][T10321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  312.828700][T10321] Call Trace:
[  312.828707][T10321]  <TASK>
[  312.828714][T10321]  dump_stack_lvl+0xe8/0x150
[  312.828748][T10321]  should_fail_ex+0x46b/0x600
[  312.828780][T10321]  _copy_to_user+0x31/0xb0
[  312.828805][T10321]  simple_read_from_buffer+0xe1/0x170
[  312.828830][T10321]  proc_fail_nth_read+0x1be/0x230
[  312.828853][T10321]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  312.828876][T10321]  ? rw_verify_area+0x2ac/0x4e0
[  312.828899][T10321]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  312.828920][T10321]  vfs_read+0x212/0xa80
[  312.828951][T10321]  ? __pfx_vfs_read+0x10/0x10
[  312.828976][T10321]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  312.829000][T10321]  ? lockdep_hardirqs_on+0x7a/0x110
[  312.829022][T10321]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  312.829043][T10321]  ? mutex_lock_nested+0x152/0x1d0
[  312.829060][T10321]  ? fdget_pos+0x252/0x320
[  312.829088][T10321]  ksys_read+0x156/0x270
[  312.829112][T10321]  ? __pfx_ksys_read+0x10/0x10
[  312.829146][T10321]  do_syscall_64+0x14d/0xf80
[  312.829168][T10321]  ? trace_irq_disable+0x3b/0x150
[  312.829186][T10321]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  312.829204][T10321]  ? clear_bhb_loop+0x40/0x90
[  312.829225][T10321]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  312.829242][T10321] RIP: 0033:0x7f7d5e09cfce
[  312.829259][T10321] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  312.829274][T10321] RSP: 002b:00007f7d5c335fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  312.829292][T10321] RAX: ffffffffffffffda RBX: 00007f7d5c3366c0 RCX: 00007f7d5e09cfce
[  312.829305][T10321] RDX: 000000000000000f RSI: 00007f7d5c3360a0 RDI: 0000000000000004
[  312.829317][T10321] RBP: 00007f7d5c336090 R08: 0000000000000000 R09: 0000000000000000
[  312.829327][T10321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  312.829338][T10321] R13: 00007f7d5e356038 R14: 00007f7d5e355fa0 R15: 00007fffe456a5d8
[  312.829368][T10321]  </TASK>
[  312.890019][T10325] netlink: 232 bytes leftover after parsing attributes in process `syz.5.1686'.
[  313.498643][T10339] FAULT_INJECTION: forcing a failure.
[  313.498643][T10339] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  313.498697][T10339] CPU: 1 UID: 0 PID: 10339 Comm: syz.5.1692 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  313.498718][T10339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  313.498728][T10339] Call Trace:
[  313.498735][T10339]  <TASK>
[  313.498744][T10339]  dump_stack_lvl+0xe8/0x150
[  313.498773][T10339]  should_fail_ex+0x46b/0x600
[  313.498799][T10339]  _copy_to_user+0x31/0xb0
[  313.498824][T10339]  simple_read_from_buffer+0xe1/0x170
[  313.498850][T10339]  proc_fail_nth_read+0x1be/0x230
[  313.498875][T10339]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  313.498898][T10339]  ? rw_verify_area+0x2ac/0x4e0
[  313.498921][T10339]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  313.498944][T10339]  vfs_read+0x212/0xa80
[  313.498970][T10339]  ? preempt_schedule_thunk+0x16/0x30
[  313.498993][T10339]  ? __pfx_vfs_read+0x10/0x10
[  313.499015][T10339]  ? preempt_schedule_thunk+0x16/0x30
[  313.499041][T10339]  ? _raw_spin_unlock_irqrestore+0x74/0x80
[  313.499065][T10339]  ? mutex_lock_nested+0x152/0x1d0
[  313.499082][T10339]  ? fdget_pos+0x252/0x320
[  313.499111][T10339]  ksys_read+0x156/0x270
[  313.499137][T10339]  ? __pfx_ksys_read+0x10/0x10
[  313.499172][T10339]  do_syscall_64+0x14d/0xf80
[  313.499195][T10339]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  313.499214][T10339]  ? clear_bhb_loop+0x40/0x90
[  313.499235][T10339]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  313.499253][T10339] RIP: 0033:0x7f290252cfce
[  313.499271][T10339] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  313.499286][T10339] RSP: 002b:00007f2900783fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  313.499306][T10339] RAX: ffffffffffffffda RBX: 00007f29007846c0 RCX: 00007f290252cfce
[  313.499319][T10339] RDX: 000000000000000f RSI: 00007f29007840a0 RDI: 0000000000000006
[  313.499330][T10339] RBP: 00007f2900784090 R08: 0000000000000000 R09: 0000000000000000
[  313.499342][T10339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  313.499353][T10339] R13: 00007f29027e6218 R14: 00007f29027e6180 R15: 00007ffcf9484bc8
[  313.499383][T10339]  </TASK>
[  314.269185][T10355] FAULT_INJECTION: forcing a failure.
[  314.269185][T10355] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  314.269216][T10355] CPU: 0 UID: 0 PID: 10355 Comm: syz.6.1699 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  314.269237][T10355] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  314.269248][T10355] Call Trace:
[  314.269256][T10355]  <TASK>
[  314.269263][T10355]  dump_stack_lvl+0xe8/0x150
[  314.269293][T10355]  should_fail_ex+0x46b/0x600
[  314.269318][T10355]  _copy_from_user+0x2d/0xb0
[  314.269341][T10355]  core_sys_select+0x57a/0xc30
[  314.269378][T10355]  ? __pfx_core_sys_select+0x10/0x10
[  314.269420][T10355]  ? __pfx_set_user_sigmask+0x10/0x10
[  314.269443][T10355]  ? kmem_cache_free+0x185/0x6b0
[  314.269466][T10355]  ? do_sys_openat2+0x14c/0x200
[  314.269496][T10355]  __se_sys_pselect6+0x267/0x320
[  314.269521][T10355]  ? __pfx___se_sys_pselect6+0x10/0x10
[  314.269541][T10355]  ? __pfx_ksys_write+0x10/0x10
[  314.269569][T10355]  ? __x64_sys_pselect6+0x21/0xf0
[  314.269591][T10355]  do_syscall_64+0x14d/0xf80
[  314.269612][T10355]  ? trace_irq_disable+0x3b/0x150
[  314.269631][T10355]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  314.269650][T10355]  ? clear_bhb_loop+0x40/0x90
[  314.269671][T10355]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  314.269688][T10355] RIP: 0033:0x7fcbe51fc799
[  314.269705][T10355] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  314.269720][T10355] RSP: 002b:00007fcbe3456028 EFLAGS: 00000246 ORIG_RAX: 000000000000010e
[  314.269738][T10355] RAX: ffffffffffffffda RBX: 00007fcbe5475fa0 RCX: 00007fcbe51fc799
[  314.269751][T10355] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000040
[  314.269763][T10355] RBP: 00007fcbe3456090 R08: 0000000000000000 R09: 0000000000000000
[  314.269773][T10355] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001
[  314.269784][T10355] R13: 00007fcbe5476038 R14: 00007fcbe5475fa0 R15: 00007ffc53f58e48
[  314.269813][T10355]  </TASK>
[  315.125682][T10372] netlink: 'syz.3.1697': attribute type 21 has an invalid length.
[  315.363658][T10386] FAULT_INJECTION: forcing a failure.
[  315.363658][T10386] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  315.363691][T10386] CPU: 0 UID: 0 PID: 10386 Comm: syz.6.1713 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  315.363712][T10386] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  315.363722][T10386] Call Trace:
[  315.363727][T10386]  <TASK>
[  315.363734][T10386]  dump_stack_lvl+0xe8/0x150
[  315.363764][T10386]  should_fail_ex+0x46b/0x600
[  315.363788][T10386]  _copy_from_user+0x2d/0xb0
[  315.363810][T10386]  ___sys_sendmsg+0x1c6/0x360
[  315.363840][T10386]  ? __pfx____sys_sendmsg+0x10/0x10
[  315.363893][T10386]  ? __fget_files+0x2a/0x420
[  315.363913][T10386]  ? __fget_files+0x3a6/0x420
[  315.363942][T10386]  __x64_sys_sendmsg+0x1c3/0x2a0
[  315.363977][T10386]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  315.364008][T10386]  ? __pfx_ksys_write+0x10/0x10
[  315.364043][T10386]  do_syscall_64+0x14d/0xf80
[  315.364065][T10386]  ? trace_irq_disable+0x3b/0x150
[  315.364084][T10386]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.364102][T10386]  ? clear_bhb_loop+0x40/0x90
[  315.364124][T10386]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.364139][T10386] RIP: 0033:0x7fcbe51fc799
[  315.364154][T10386] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  315.364169][T10386] RSP: 002b:00007fcbe3456028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  315.364188][T10386] RAX: ffffffffffffffda RBX: 00007fcbe5475fa0 RCX: 00007fcbe51fc799
[  315.364206][T10386] RDX: 0000000008000000 RSI: 0000200000000080 RDI: 0000000000000003
[  315.364217][T10386] RBP: 00007fcbe3456090 R08: 0000000000000000 R09: 0000000000000000
[  315.364228][T10386] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  315.364238][T10386] R13: 00007fcbe5476038 R14: 00007fcbe5475fa0 R15: 00007ffc53f58e48
[  315.364267][T10386]  </TASK>
[  315.818923][T10397] FAULT_INJECTION: forcing a failure.
[  315.818923][T10397] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  315.818955][T10397] CPU: 1 UID: 0 PID: 10397 Comm: syz.3.1717 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  315.818975][T10397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  315.818985][T10397] Call Trace:
[  315.818993][T10397]  <TASK>
[  315.819000][T10397]  dump_stack_lvl+0xe8/0x150
[  315.819028][T10397]  should_fail_ex+0x46b/0x600
[  315.819052][T10397]  _copy_from_user+0x2d/0xb0
[  315.819076][T10397]  snd_rawmidi_kernel_write1+0x395/0x620
[  315.819114][T10397]  snd_rawmidi_write+0x5d3/0xc10
[  315.819152][T10397]  ? __pfx_snd_rawmidi_write+0x10/0x10
[  315.819174][T10397]  ? __asan_memset+0x22/0x50
[  315.819195][T10397]  ? __import_iovec+0x40e/0x7e0
[  315.819227][T10397]  ? rw_verify_area+0x25b/0x4e0
[  315.819254][T10397]  vfs_writev+0x4c6/0x9a0
[  315.819274][T10397]  ? __pfx_snd_rawmidi_write+0x10/0x10
[  315.819301][T10397]  ? __pfx_vfs_writev+0x10/0x10
[  315.819333][T10397]  ? __fget_files+0x2a/0x420
[  315.819357][T10397]  ? __fget_files+0x3a6/0x420
[  315.819377][T10397]  ? __fget_files+0x2a/0x420
[  315.819445][T10397]  do_writev+0x15a/0x2e0
[  315.819466][T10397]  ? __pfx_do_writev+0x10/0x10
[  315.819495][T10397]  do_syscall_64+0x14d/0xf80
[  315.819517][T10397]  ? trace_irq_disable+0x3b/0x150
[  315.819536][T10397]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.819554][T10397]  ? clear_bhb_loop+0x40/0x90
[  315.819574][T10397]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.819590][T10397] RIP: 0033:0x7f99507ec799
[  315.819605][T10397] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  315.819618][T10397] RSP: 002b:00007f994ea1d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  315.819636][T10397] RAX: ffffffffffffffda RBX: 00007f9950a66090 RCX: 00007f99507ec799
[  315.819648][T10397] RDX: 0000000000000002 RSI: 0000200000000840 RDI: 0000000000000009
[  315.819658][T10397] RBP: 00007f994ea1d090 R08: 0000000000000000 R09: 0000000000000000
[  315.819669][T10397] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  315.819679][T10397] R13: 00007f9950a66128 R14: 00007f9950a66090 R15: 00007ffe16e0bca8
[  315.819709][T10397]  </TASK>
[  317.021304][T10436] FAULT_INJECTION: forcing a failure.
[  317.021304][T10436] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  317.021336][T10436] CPU: 0 UID: 0 PID: 10436 Comm: syz.3.1736 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  317.021356][T10436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  317.021365][T10436] Call Trace:
[  317.021372][T10436]  <TASK>
[  317.021380][T10436]  dump_stack_lvl+0xe8/0x150
[  317.021409][T10436]  should_fail_ex+0x46b/0x600
[  317.021431][T10436]  _copy_from_user+0x2d/0xb0
[  317.021452][T10436]  ___sys_sendmsg+0x1c6/0x360
[  317.021481][T10436]  ? __pfx____sys_sendmsg+0x10/0x10
[  317.021534][T10436]  ? __fget_files+0x2a/0x420
[  317.021554][T10436]  ? __fget_files+0x3a6/0x420
[  317.021584][T10436]  __x64_sys_sendmsg+0x1c3/0x2a0
[  317.021610][T10436]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  317.021642][T10436]  ? __pfx_ksys_write+0x10/0x10
[  317.021677][T10436]  do_syscall_64+0x14d/0xf80
[  317.021698][T10436]  ? trace_irq_disable+0x3b/0x150
[  317.021718][T10436]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  317.021735][T10436]  ? clear_bhb_loop+0x40/0x90
[  317.021754][T10436]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  317.021771][T10436] RIP: 0033:0x7f99507ec799
[  317.021787][T10436] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  317.021802][T10436] RSP: 002b:00007f994ea3e028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  317.021820][T10436] RAX: ffffffffffffffda RBX: 00007f9950a65fa0 RCX: 00007f99507ec799
[  317.021834][T10436] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  317.021844][T10436] RBP: 00007f994ea3e090 R08: 0000000000000000 R09: 0000000000000000
[  317.021853][T10436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  317.021862][T10436] R13: 00007f9950a66038 R14: 00007f9950a65fa0 R15: 00007ffe16e0bca8
[  317.021890][T10436]  </TASK>
[  317.106233][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[  317.400575][T10440] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1740'.
[  317.585589][T10460] FAULT_INJECTION: forcing a failure.
[  317.585589][T10460] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  317.585620][T10460] CPU: 1 UID: 0 PID: 10460 Comm: syz.5.1744 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  317.585641][T10460] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  317.585651][T10460] Call Trace:
[  317.585658][T10460]  <TASK>
[  317.585665][T10460]  dump_stack_lvl+0xe8/0x150
[  317.585694][T10460]  should_fail_ex+0x46b/0x600
[  317.585719][T10460]  _copy_from_user+0x2d/0xb0
[  317.585741][T10460]  ___sys_sendmsg+0x1c6/0x360
[  317.585771][T10460]  ? __pfx____sys_sendmsg+0x10/0x10
[  317.585824][T10460]  ? __fget_files+0x2a/0x420
[  317.585844][T10460]  ? __fget_files+0x3a6/0x420
[  317.585873][T10460]  __x64_sys_sendmsg+0x1c3/0x2a0
[  317.585899][T10460]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  317.585930][T10460]  ? __pfx_ksys_write+0x10/0x10
[  317.585962][T10460]  do_syscall_64+0x14d/0xf80
[  317.585983][T10460]  ? trace_irq_disable+0x3b/0x150
[  317.586002][T10460]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  317.586019][T10460]  ? clear_bhb_loop+0x40/0x90
[  317.586040][T10460]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  317.586056][T10460] RIP: 0033:0x7f290256c799
[  317.586072][T10460] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  317.586087][T10460] RSP: 002b:00007f29007a5028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  317.586106][T10460] RAX: ffffffffffffffda RBX: 00007f29027e6090 RCX: 00007f290256c799
[  317.586118][T10460] RDX: 0000000000000000 RSI: 0000200000000400 RDI: 0000000000000003
[  317.586129][T10460] RBP: 00007f29007a5090 R08: 0000000000000000 R09: 0000000000000000
[  317.586140][T10460] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  317.586150][T10460] R13: 00007f29027e6128 R14: 00007f29027e6090 R15: 00007ffcf9484bc8
[  317.586178][T10460]  </TASK>
[  318.362299][T10484] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1754'.
[  318.363356][T10484] netlink: 36 bytes leftover after parsing attributes in process `syz.6.1754'.
[  319.041855][T10508] FAULT_INJECTION: forcing a failure.
[  319.041855][T10508] name failslab, interval 1, probability 0, space 0, times 0
[  319.041887][T10508] CPU: 0 UID: 0 PID: 10508 Comm: syz.4.1764 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  319.041907][T10508] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  319.041918][T10508] Call Trace:
[  319.041926][T10508]  <TASK>
[  319.041934][T10508]  dump_stack_lvl+0xe8/0x150
[  319.041964][T10508]  should_fail_ex+0x46b/0x600
[  319.041990][T10508]  should_failslab+0xa8/0x100
[  319.042009][T10508]  __kmalloc_noprof+0xdf/0x7b0
[  319.042032][T10508]  ? kfree+0x4d/0x6c0
[  319.042052][T10508]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  319.042073][T10508]  tomoyo_realpath_from_path+0xe3/0x5d0
[  319.042100][T10508]  ? tomoyo_path_number_perm+0x219/0x630
[  319.042122][T10508]  tomoyo_path_number_perm+0x246/0x630
[  319.042145][T10508]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  319.042171][T10508]  ? __lock_acquire+0x6b5/0x2cf0
[  319.042222][T10508]  ? __fget_files+0x2a/0x420
[  319.042246][T10508]  ? __fget_files+0x2a/0x420
[  319.042265][T10508]  ? __fget_files+0x3a6/0x420
[  319.042284][T10508]  ? __fget_files+0x2a/0x420
[  319.042308][T10508]  security_file_ioctl+0xc3/0x2a0
[  319.042335][T10508]  __se_sys_ioctl+0x47/0x170
[  319.042363][T10508]  do_syscall_64+0x14d/0xf80
[  319.042385][T10508]  ? trace_irq_disable+0x3b/0x150
[  319.042405][T10508]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  319.042423][T10508]  ? clear_bhb_loop+0x40/0x90
[  319.042445][T10508]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  319.042462][T10508] RIP: 0033:0x7ff59082c799
[  319.042479][T10508] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  319.042496][T10508] RSP: 002b:00007ff58ea86028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  319.042515][T10508] RAX: ffffffffffffffda RBX: 00007ff590aa5fa0 RCX: 00007ff59082c799
[  319.042529][T10508] RDX: 0000200000000000 RSI: 0000000000008b34 RDI: 0000000000000003
[  319.042540][T10508] RBP: 00007ff58ea86090 R08: 0000000000000000 R09: 0000000000000000
[  319.042549][T10508] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  319.042560][T10508] R13: 00007ff590aa6038 R14: 00007ff590aa5fa0 R15: 00007ffe0fbf95d8
[  319.042589][T10508]  </TASK>
[  319.046309][T10508] ERROR: Out of memory at tomoyo_realpath_from_path.
[  319.297681][   T37] audit: type=1326 audit(1772939933.935:1055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10512 comm="syz.5.1765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f290256c799 code=0x7ffc0000
[  319.298686][   T37] audit: type=1326 audit(1772939933.935:1056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10512 comm="syz.5.1765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f290256c799 code=0x7ffc0000
[  319.308117][   T37] audit: type=1326 audit(1772939933.945:1057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10512 comm="syz.5.1765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f290256c799 code=0x7ffc0000
[  319.317862][   T37] audit: type=1326 audit(1772939933.955:1058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10512 comm="syz.5.1765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f290256c799 code=0x7ffc0000
[  319.317907][   T37] audit: type=1326 audit(1772939933.955:1059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10512 comm="syz.5.1765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f290256c799 code=0x7ffc0000
[  319.317945][   T37] audit: type=1326 audit(1772939933.955:1060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10512 comm="syz.5.1765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f290256c799 code=0x7ffc0000
[  319.317981][   T37] audit: type=1326 audit(1772939933.955:1061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10512 comm="syz.5.1765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f290256c799 code=0x7ffc0000
[  319.318017][   T37] audit: type=1326 audit(1772939933.955:1062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10512 comm="syz.5.1765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f290256c799 code=0x7ffc0000
[  319.331229][   T37] audit: type=1326 audit(1772939933.955:1063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10512 comm="syz.5.1765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f290256c799 code=0x7ffc0000
[  319.331276][   T37] audit: type=1326 audit(1772939933.975:1064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10512 comm="syz.5.1765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f290256c799 code=0x7ffc0000
[  319.338526][T10513] netlink: 84 bytes leftover after parsing attributes in process `syz.5.1765'.
[  319.338552][T10513] netlink: 84 bytes leftover after parsing attributes in process `syz.5.1765'.
[  319.339072][T10513] A link change request failed with some changes committed already. Interface ip_vti0 may have been left with an inconsistent configuration, please check.
[  319.650311][ T5875] usb 6-1: new high-speed USB device number 24 using dummy_hcd
[  319.810409][ T5875] usb 6-1: Using ep0 maxpacket: 16
[  319.815757][ T5875] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  319.815806][ T5875] usb 6-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  319.827377][ T5875] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  319.827404][ T5875] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  319.827422][ T5875] usb 6-1: SerialNumber: syz
[  319.888406][ T5875] cdc_acm 6-1:1.0: skipping garbage
[  320.127984][T10543] FAULT_INJECTION: forcing a failure.
[  320.127984][T10543] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  320.128015][T10543] CPU: 1 UID: 0 PID: 10543 Comm: syz.4.1781 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  320.128043][T10543] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  320.128053][T10543] Call Trace:
[  320.128059][T10543]  <TASK>
[  320.128067][T10543]  dump_stack_lvl+0xe8/0x150
[  320.128096][T10543]  should_fail_ex+0x46b/0x600
[  320.128119][T10543]  _copy_from_user+0x2d/0xb0
[  320.128141][T10543]  ___sys_sendmsg+0x1c6/0x360
[  320.128171][T10543]  ? __pfx____sys_sendmsg+0x10/0x10
[  320.128227][T10543]  ? __fget_files+0x2a/0x420
[  320.128247][T10543]  ? __fget_files+0x3a6/0x420
[  320.128276][T10543]  __x64_sys_sendmsg+0x1c3/0x2a0
[  320.128303][T10543]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  320.128335][T10543]  ? __pfx_ksys_write+0x10/0x10
[  320.128369][T10543]  do_syscall_64+0x14d/0xf80
[  320.128391][T10543]  ? trace_irq_disable+0x3b/0x150
[  320.128409][T10543]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  320.128426][T10543]  ? clear_bhb_loop+0x40/0x90
[  320.128447][T10543]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  320.128465][T10543] RIP: 0033:0x7ff59082c799
[  320.128482][T10543] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  320.128495][T10543] RSP: 002b:00007ff58ea86028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  320.128514][T10543] RAX: ffffffffffffffda RBX: 00007ff590aa5fa0 RCX: 00007ff59082c799
[  320.128526][T10543] RDX: 00000000200048d0 RSI: 0000200000000600 RDI: 0000000000000003
[  320.128537][T10543] RBP: 00007ff58ea86090 R08: 0000000000000000 R09: 0000000000000000
[  320.128548][T10543] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  320.128559][T10543] R13: 00007ff590aa6038 R14: 00007ff590aa5fa0 R15: 00007ffe0fbf95d8
[  320.128588][T10543]  </TASK>
[  320.339640][T10550] FAULT_INJECTION: forcing a failure.
[  320.339640][T10550] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  320.339733][T10550] CPU: 0 UID: 0 PID: 10550 Comm: syz.1.1783 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  320.339754][T10550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  320.339765][T10550] Call Trace:
[  320.339772][T10550]  <TASK>
[  320.339781][T10550]  dump_stack_lvl+0xe8/0x150
[  320.339810][T10550]  should_fail_ex+0x46b/0x600
[  320.339835][T10550]  _copy_from_user+0x2d/0xb0
[  320.339858][T10550]  ___sys_sendmsg+0x1c6/0x360
[  320.339889][T10550]  ? __pfx____sys_sendmsg+0x10/0x10
[  320.339945][T10550]  ? __fget_files+0x2a/0x420
[  320.339966][T10550]  ? __fget_files+0x3a6/0x420
[  320.339995][T10550]  __x64_sys_sendmsg+0x1c3/0x2a0
[  320.340021][T10550]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  320.340053][T10550]  ? __pfx_ksys_write+0x10/0x10
[  320.340086][T10550]  do_syscall_64+0x14d/0xf80
[  320.340107][T10550]  ? trace_irq_disable+0x3b/0x150
[  320.340129][T10550]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  320.340146][T10550]  ? clear_bhb_loop+0x40/0x90
[  320.340165][T10550]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  320.340183][T10550] RIP: 0033:0x7f7d5e0dc799
[  320.340199][T10550] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  320.340213][T10550] RSP: 002b:00007f7d5c336028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  320.340230][T10550] RAX: ffffffffffffffda RBX: 00007f7d5e355fa0 RCX: 00007f7d5e0dc799
[  320.340243][T10550] RDX: 0000000000000000 RSI: 0000200000001280 RDI: 0000000000000003
[  320.340253][T10550] RBP: 00007f7d5c336090 R08: 0000000000000000 R09: 0000000000000000
[  320.340264][T10550] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  320.340274][T10550] R13: 00007f7d5e356038 R14: 00007f7d5e355fa0 R15: 00007fffe456a5d8
[  320.340304][T10550]  </TASK>
[  320.652577][T10556] FAULT_INJECTION: forcing a failure.
[  320.652577][T10556] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  320.652619][T10556] CPU: 1 UID: 0 PID: 10556 Comm: syz.4.1787 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  320.652638][T10556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  320.652649][T10556] Call Trace:
[  320.652656][T10556]  <TASK>
[  320.652664][T10556]  dump_stack_lvl+0xe8/0x150
[  320.652692][T10556]  should_fail_ex+0x46b/0x600
[  320.652714][T10556]  _copy_from_user+0x2d/0xb0
[  320.652736][T10556]  ___sys_sendmsg+0x1c6/0x360
[  320.652765][T10556]  ? __pfx____sys_sendmsg+0x10/0x10
[  320.652793][T10556]  ? kstrtouint+0x6e/0xe0
[  320.652835][T10556]  ? __fget_files+0x2a/0x420
[  320.652854][T10556]  ? __fget_files+0x3a6/0x420
[  320.652882][T10556]  __sys_sendmmsg+0x282/0x4e0
[  320.652910][T10556]  ? __pfx___sys_sendmmsg+0x10/0x10
[  320.652940][T10556]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  320.652991][T10556]  ? ksys_write+0x248/0x270
[  320.653016][T10556]  ? __pfx_ksys_write+0x10/0x10
[  320.653042][T10556]  __x64_sys_sendmmsg+0xa0/0xc0
[  320.653067][T10556]  do_syscall_64+0x14d/0xf80
[  320.653087][T10556]  ? trace_irq_disable+0x3b/0x150
[  320.653105][T10556]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  320.653123][T10556]  ? clear_bhb_loop+0x40/0x90
[  320.653142][T10556]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  320.653159][T10556] RIP: 0033:0x7ff59082c799
[  320.653176][T10556] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  320.653192][T10556] RSP: 002b:00007ff58ea86028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  320.653210][T10556] RAX: ffffffffffffffda RBX: 00007ff590aa5fa0 RCX: 00007ff59082c799
[  320.653221][T10556] RDX: 0400000000000292 RSI: 0000200000002c40 RDI: 0000000000000003
[  320.653232][T10556] RBP: 00007ff58ea86090 R08: 0000000000000000 R09: 0000000000000000
[  320.653243][T10556] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  320.653252][T10556] R13: 00007ff590aa6038 R14: 00007ff590aa5fa0 R15: 00007ffe0fbf95d8
[  320.653278][T10556]  </TASK>
[  320.895313][ T5851] usb 6-1: USB disconnect, device number 24
[  321.514333][T10586] netlink: 232 bytes leftover after parsing attributes in process `syz.5.1795'.
[  322.207205][T10594] FAULT_INJECTION: forcing a failure.
[  322.207205][T10594] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  322.207235][T10594] CPU: 0 UID: 0 PID: 10594 Comm: syz.6.1805 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  322.207255][T10594] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  322.207266][T10594] Call Trace:
[  322.207273][T10594]  <TASK>
[  322.207280][T10594]  dump_stack_lvl+0xe8/0x150
[  322.207310][T10594]  should_fail_ex+0x46b/0x600
[  322.207335][T10594]  _copy_from_user+0x2d/0xb0
[  322.207357][T10594]  ___sys_sendmsg+0x1c6/0x360
[  322.207388][T10594]  ? __pfx____sys_sendmsg+0x10/0x10
[  322.207441][T10594]  ? __fget_files+0x2a/0x420
[  322.207461][T10594]  ? __fget_files+0x3a6/0x420
[  322.207488][T10594]  __x64_sys_sendmsg+0x1c3/0x2a0
[  322.207512][T10594]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  322.207542][T10594]  ? __pfx_ksys_write+0x10/0x10
[  322.207576][T10594]  do_syscall_64+0x14d/0xf80
[  322.207597][T10594]  ? trace_irq_disable+0x3b/0x150
[  322.207617][T10594]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  322.207634][T10594]  ? clear_bhb_loop+0x40/0x90
[  322.207655][T10594]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  322.207672][T10594] RIP: 0033:0x7fcbe51fc799
[  322.207688][T10594] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  322.207703][T10594] RSP: 002b:00007fcbe3456028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  322.207722][T10594] RAX: ffffffffffffffda RBX: 00007fcbe5475fa0 RCX: 00007fcbe51fc799
[  322.207736][T10594] RDX: 0000000000000000 RSI: 00002000000004c0 RDI: 0000000000000003
[  322.207747][T10594] RBP: 00007fcbe3456090 R08: 0000000000000000 R09: 0000000000000000
[  322.207759][T10594] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  322.207769][T10594] R13: 00007fcbe5476038 R14: 00007fcbe5475fa0 R15: 00007ffc53f58e48
[  322.207798][T10594]  </TASK>
[  322.274519][T10596] FAULT_INJECTION: forcing a failure.
[  322.274519][T10596] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  322.274551][T10596] CPU: 0 UID: 0 PID: 10596 Comm: syz.6.1806 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  322.274570][T10596] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  322.274581][T10596] Call Trace:
[  322.274588][T10596]  <TASK>
[  322.274596][T10596]  dump_stack_lvl+0xe8/0x150
[  322.274626][T10596]  should_fail_ex+0x46b/0x600
[  322.274650][T10596]  _copy_from_user+0x2d/0xb0
[  322.274672][T10596]  __sys_connect+0x156/0x450
[  322.274697][T10596]  ? __pfx___sys_connect+0x10/0x10
[  322.274729][T10596]  ? __pfx_ksys_write+0x10/0x10
[  322.274759][T10596]  __x64_sys_connect+0x7a/0x90
[  322.274781][T10596]  do_syscall_64+0x14d/0xf80
[  322.274802][T10596]  ? trace_irq_disable+0x3b/0x150
[  322.274821][T10596]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  322.274838][T10596]  ? clear_bhb_loop+0x40/0x90
[  322.274859][T10596]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  322.274875][T10596] RIP: 0033:0x7fcbe51fc799
[  322.274892][T10596] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  322.274906][T10596] RSP: 002b:00007fcbe3456028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  322.274925][T10596] RAX: ffffffffffffffda RBX: 00007fcbe5475fa0 RCX: 00007fcbe51fc799
[  322.274945][T10596] RDX: 000000000000000e RSI: 0000200000000080 RDI: 0000000000000004
[  322.274956][T10596] RBP: 00007fcbe3456090 R08: 0000000000000000 R09: 0000000000000000
[  322.274967][T10596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  322.274977][T10596] R13: 00007fcbe5476038 R14: 00007fcbe5475fa0 R15: 00007ffc53f58e48
[  322.275006][T10596]  </TASK>
[  322.824384][T10613] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1814'.
[  322.827100][T10613] netlink: 92 bytes leftover after parsing attributes in process `syz.3.1814'.
[  322.827152][T10613] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1814'.
[  322.979922][T10614] FAULT_INJECTION: forcing a failure.
[  322.979922][T10614] name fail_futex, interval 1, probability 0, space 0, times 1
[  322.979956][T10614] CPU: 1 UID: 0 PID: 10614 Comm: syz.4.1810 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  322.979978][T10614] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  322.979989][T10614] Call Trace:
[  322.979996][T10614]  <TASK>
[  322.980004][T10614]  dump_stack_lvl+0xe8/0x150
[  322.980034][T10614]  should_fail_ex+0x46b/0x600
[  322.980060][T10614]  get_futex_key+0x1ac/0x1690
[  322.980092][T10614]  ? perf_lock_task_context+0xf3/0x850
[  322.980116][T10614]  ? __lock_acquire+0x6b5/0x2cf0
[  322.980131][T10614]  ? __pfx_get_futex_key+0x10/0x10
[  322.980154][T10614]  ? __lock_acquire+0x6b5/0x2cf0
[  322.980179][T10614]  futex_wake+0x114/0x580
[  322.980199][T10614]  ? __lock_acquire+0x6b5/0x2cf0
[  322.980219][T10614]  ? __pfx_futex_wake+0x10/0x10
[  322.980240][T10614]  ? do_raw_spin_lock+0x12b/0x2f0
[  322.980274][T10614]  do_futex+0x395/0x420
[  322.980297][T10614]  ? __pfx_do_futex+0x10/0x10
[  322.980318][T10614]  ? __might_fault+0xaf/0x130
[  322.980347][T10614]  mm_release+0x103/0x290
[  322.980371][T10614]  exit_mm+0x51/0x220
[  322.980389][T10614]  ? unwind_deferred_task_exit+0x67/0xa0
[  322.980410][T10614]  do_exit+0x6a2/0x23c0
[  322.980431][T10614]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  322.980459][T10614]  ? __pfx_do_exit+0x10/0x10
[  322.980475][T10614]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  322.980494][T10614]  ? reacquire_held_locks+0x104/0x190
[  322.980513][T10614]  ? rt_spin_lock+0x1e0/0x400
[  322.980542][T10614]  do_group_exit+0x21b/0x2d0
[  322.980561][T10614]  ? rt_spin_unlock+0x160/0x200
[  322.980582][T10614]  get_signal+0x125c/0x1310
[  322.980625][T10614]  arch_do_signal_or_restart+0xbc/0x830
[  322.980650][T10614]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  322.980690][T10614]  exit_to_user_mode_loop+0x86/0x480
[  322.980712][T10614]  ? rcu_is_watching+0x15/0xb0
[  322.980736][T10614]  do_syscall_64+0x32d/0xf80
[  322.980757][T10614]  ? trace_irq_disable+0x3b/0x150
[  322.980776][T10614]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  322.980794][T10614]  ? clear_bhb_loop+0x40/0x90
[  322.980815][T10614]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  322.980833][T10614] RIP: 0033:0x7ff59082c799
[  322.980850][T10614] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  322.980865][T10614] RSP: 002b:00007ff58ea44028 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  322.980891][T10614] RAX: 0000000000000001 RBX: 00007ff590aa6180 RCX: 00007ff59082c799
[  322.980904][T10614] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000000000000003
[  322.980915][T10614] RBP: 00007ff58ea44090 R08: 0000000000000080 R09: 0000000000000008
[  322.980927][T10614] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  322.980938][T10614] R13: 00007ff590aa6218 R14: 00007ff590aa6180 R15: 00007ffe0fbf95d8
[  322.980968][T10614]  </TASK>
[  323.503697][T10638] FAULT_INJECTION: forcing a failure.
[  323.503697][T10638] name failslab, interval 1, probability 0, space 0, times 0
[  323.503736][T10638] CPU: 1 UID: 0 PID: 10638 Comm: syz.6.1825 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  323.503757][T10638] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  323.503768][T10638] Call Trace:
[  323.503775][T10638]  <TASK>
[  323.503783][T10638]  dump_stack_lvl+0xe8/0x150
[  323.503812][T10638]  should_fail_ex+0x46b/0x600
[  323.503837][T10638]  should_failslab+0xa8/0x100
[  323.503857][T10638]  __kmalloc_noprof+0xdf/0x7b0
[  323.503879][T10638]  ? kfree+0x4d/0x6c0
[  323.503899][T10638]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  323.503922][T10638]  tomoyo_realpath_from_path+0xe3/0x5d0
[  323.503949][T10638]  ? tomoyo_path_number_perm+0x219/0x630
[  323.503974][T10638]  tomoyo_path_number_perm+0x246/0x630
[  323.503999][T10638]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  323.504024][T10638]  ? __lock_acquire+0x6b5/0x2cf0
[  323.504072][T10638]  ? __fget_files+0x2a/0x420
[  323.504096][T10638]  ? __fget_files+0x2a/0x420
[  323.504114][T10638]  ? __fget_files+0x3a6/0x420
[  323.504133][T10638]  ? __fget_files+0x2a/0x420
[  323.504156][T10638]  security_file_ioctl+0xc3/0x2a0
[  323.504182][T10638]  __se_sys_ioctl+0x47/0x170
[  323.504209][T10638]  do_syscall_64+0x14d/0xf80
[  323.504232][T10638]  ? trace_irq_disable+0x3b/0x150
[  323.504251][T10638]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  323.504269][T10638]  ? clear_bhb_loop+0x40/0x90
[  323.504291][T10638]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  323.504309][T10638] RIP: 0033:0x7fcbe51fc799
[  323.504325][T10638] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  323.504340][T10638] RSP: 002b:00007fcbe3456028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  323.504360][T10638] RAX: ffffffffffffffda RBX: 00007fcbe5475fa0 RCX: 00007fcbe51fc799
[  323.504373][T10638] RDX: 00002000000000c0 RSI: 000000000000890c RDI: 0000000000000004
[  323.504384][T10638] RBP: 00007fcbe3456090 R08: 0000000000000000 R09: 0000000000000000
[  323.504396][T10638] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  323.504406][T10638] R13: 00007fcbe5476038 R14: 00007fcbe5475fa0 R15: 00007ffc53f58e48
[  323.504436][T10638]  </TASK>
[  323.505687][T10638] ERROR: Out of memory at tomoyo_realpath_from_path.
[  323.879493][T10646] netlink: 232 bytes leftover after parsing attributes in process `syz.3.1828'.
[  323.931822][T10646] Set syz1 is full, maxelem 0 reached
[  325.356911][T10716] netlink: 1688 bytes leftover after parsing attributes in process `syz.5.1861'.
[  325.876487][ T5805] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  325.888472][ T5805] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  325.900308][ T5805] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  325.916894][ T5805] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  325.930620][ T5805] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  326.362622][T10752] FAULT_INJECTION: forcing a failure.
[  326.362622][T10752] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  326.362652][T10752] CPU: 1 UID: 0 PID: 10752 Comm: syz.4.1878 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  326.362674][T10752] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  326.362685][T10752] Call Trace:
[  326.362691][T10752]  <TASK>
[  326.362699][T10752]  dump_stack_lvl+0xe8/0x150
[  326.362727][T10752]  should_fail_ex+0x46b/0x600
[  326.362751][T10752]  _copy_from_user+0x2d/0xb0
[  326.362772][T10752]  ___sys_sendmsg+0x1c6/0x360
[  326.362798][T10752]  ? __pfx____sys_sendmsg+0x10/0x10
[  326.362850][T10752]  ? __fget_files+0x2a/0x420
[  326.362870][T10752]  ? __fget_files+0x3a6/0x420
[  326.362897][T10752]  __x64_sys_sendmsg+0x1c3/0x2a0
[  326.362923][T10752]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  326.362955][T10752]  ? __pfx_ksys_write+0x10/0x10
[  326.362989][T10752]  do_syscall_64+0x14d/0xf80
[  326.363008][T10752]  ? trace_irq_disable+0x3b/0x150
[  326.363028][T10752]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  326.363045][T10752]  ? clear_bhb_loop+0x40/0x90
[  326.363066][T10752]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  326.363083][T10752] RIP: 0033:0x7ff59082c799
[  326.363100][T10752] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  326.363114][T10752] RSP: 002b:00007ff58ea86028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  326.363133][T10752] RAX: ffffffffffffffda RBX: 00007ff590aa5fa0 RCX: 00007ff59082c799
[  326.363146][T10752] RDX: 0000000000000006 RSI: 0000200000000400 RDI: 0000000000000003
[  326.363157][T10752] RBP: 00007ff58ea86090 R08: 0000000000000000 R09: 0000000000000000
[  326.363168][T10752] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  326.363178][T10752] R13: 00007ff590aa6038 R14: 00007ff590aa5fa0 R15: 00007ffe0fbf95d8
[  326.363208][T10752]  </TASK>
[  326.500285][  T807] usb 6-1: new high-speed USB device number 25 using dummy_hcd
[  326.630430][ T5890] usb 4-1: new full-speed USB device number 32 using dummy_hcd
[  326.654178][  T807] usb 6-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice=f6.00
[  326.654205][  T807] usb 6-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  326.654224][  T807] usb 6-1: Product: syz
[  326.654236][  T807] usb 6-1: SerialNumber: syz
[  326.663802][  T807] usb 6-1: config 0 descriptor??
[  326.782590][ T5890] usb 4-1: config index 0 descriptor too short (expected 813, got 45)
[  326.782617][ T5890] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  326.782635][ T5890] usb 4-1: config 0 has no interfaces?
[  326.812763][ T5890] usb 4-1: New USB device found, idVendor=04da, idProduct=390d, bcdDevice=fa.df
[  326.812791][ T5890] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  326.812809][ T5890] usb 4-1: Product: syz
[  326.812868][ T5890] usb 4-1: Manufacturer: syz
[  326.812881][ T5890] usb 4-1: SerialNumber: syz
[  326.884424][T10747] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  326.885208][T10747] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  326.917370][ T5890] usb 4-1: config 0 descriptor??
[  327.088195][  T807] usb 6-1: USB disconnect, device number 25
[  327.134845][ T5890] usb 4-1: USB disconnect, device number 32
[  327.319362][T10730] chnl_net:caif_netlink_parms(): no params data found
[  327.807058][T10730] bridge0: port 1(bridge_slave_0) entered blocking state
[  327.818376][T10730] bridge0: port 1(bridge_slave_0) entered disabled state
[  327.818619][T10730] bridge_slave_0: entered allmulticast mode
[  327.838666][T10730] bridge_slave_0: entered promiscuous mode
[  327.846366][T10730] bridge0: port 2(bridge_slave_1) entered blocking state
[  327.846497][T10730] bridge0: port 2(bridge_slave_1) entered disabled state
[  327.846696][T10730] bridge_slave_1: entered allmulticast mode
[  327.852780][T10730] bridge_slave_1: entered promiscuous mode
[  327.961634][T10730] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  327.967469][T10730] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  327.993194][   T60] Bluetooth: hci6: command tx timeout
[  328.224806][T10730] team0: Port device team_slave_0 added
[  328.228237][T10730] team0: Port device team_slave_1 added
[  328.352880][T10730] batman_adv: batadv0: Adding interface: batadv_slave_0
[  328.352894][T10730] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  328.352918][T10730] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  328.355720][T10730] batman_adv: batadv0: Adding interface: batadv_slave_1
[  328.355733][T10730] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  328.355757][T10730] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  328.380260][ T5890] usb 6-1: new full-speed USB device number 26 using dummy_hcd
[  328.496588][T10730] hsr_slave_0: entered promiscuous mode
[  328.499205][T10730] hsr_slave_1: entered promiscuous mode
[  328.502697][T10730] debugfs: 'hsr0' already exists in 'hsr'
[  328.502721][T10730] Cannot create hsr debugfs directory
[  328.542946][ T5890] usb 6-1: config 246 has an invalid interface number: 166 but max is 0
[  328.542972][ T5890] usb 6-1: config 246 has an invalid descriptor of length 0, skipping remainder of the config
[  328.542990][ T5890] usb 6-1: config 246 has no interface number 0
[  328.543031][ T5890] usb 6-1: config 246 interface 166 altsetting 118 endpoint 0xB has invalid wMaxPacketSize 0
[  328.543052][ T5890] usb 6-1: config 246 interface 166 altsetting 118 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  328.543078][ T5890] usb 6-1: config 246 interface 166 has no altsetting 0
[  328.580664][ T5889] usb 4-1: new full-speed USB device number 33 using dummy_hcd
[  328.582739][ T5890] usb 6-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice= 9.63
[  328.582764][ T5890] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  328.582783][ T5890] usb 6-1: Product: syz
[  328.582795][ T5890] usb 6-1: Manufacturer: syz
[  328.582808][ T5890] usb 6-1: SerialNumber: syz
[  328.733173][ T5889] usb 4-1: config 246 has an invalid interface number: 166 but max is 0
[  328.733199][ T5889] usb 4-1: config 246 has an invalid descriptor of length 0, skipping remainder of the config
[  328.733216][ T5889] usb 4-1: config 246 has no interface number 0
[  328.733313][ T5889] usb 4-1: config 246 interface 166 altsetting 118 endpoint 0xB has invalid wMaxPacketSize 0
[  328.733335][ T5889] usb 4-1: config 246 interface 166 altsetting 118 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  328.733359][ T5889] usb 4-1: config 246 interface 166 has no altsetting 0
[  328.736882][ T5889] usb 4-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice= 9.63
[  328.736908][ T5889] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  328.736976][ T5889] usb 4-1: Product: syz
[  328.736990][ T5889] usb 4-1: Manufacturer: syz
[  328.737002][ T5889] usb 4-1: SerialNumber: syz
[  329.082194][T10834] FAULT_INJECTION: forcing a failure.
[  329.082194][T10834] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  329.082226][T10834] CPU: 0 UID: 0 PID: 10834 Comm: syz.6.1913 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  329.082247][T10834] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  329.082257][T10834] Call Trace:
[  329.082264][T10834]  <TASK>
[  329.082272][T10834]  dump_stack_lvl+0xe8/0x150
[  329.082301][T10834]  should_fail_ex+0x46b/0x600
[  329.082324][T10834]  _copy_from_user+0x2d/0xb0
[  329.082360][T10834]  ___sys_sendmsg+0x1c6/0x360
[  329.082390][T10834]  ? __pfx____sys_sendmsg+0x10/0x10
[  329.082439][T10834]  ? __fget_files+0x2a/0x420
[  329.082457][T10834]  ? __fget_files+0x3a6/0x420
[  329.082485][T10834]  __x64_sys_sendmsg+0x1c3/0x2a0
[  329.082505][T10834]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  329.082528][T10834]  ? __pfx_ksys_write+0x10/0x10
[  329.082554][T10834]  do_syscall_64+0x14d/0xf80
[  329.082570][T10834]  ? trace_irq_disable+0x3b/0x150
[  329.082586][T10834]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  329.082600][T10834]  ? clear_bhb_loop+0x40/0x90
[  329.082615][T10834]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  329.082628][T10834] RIP: 0033:0x7fcbe51fc799
[  329.082643][T10834] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  329.082654][T10834] RSP: 002b:00007fcbe3456028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  329.082679][T10834] RAX: ffffffffffffffda RBX: 00007fcbe5475fa0 RCX: 00007fcbe51fc799
[  329.082689][T10834] RDX: 0000000000008000 RSI: 00002000000006c0 RDI: 0000000000000003
[  329.082697][T10834] RBP: 00007fcbe3456090 R08: 0000000000000000 R09: 0000000000000000
[  329.082706][T10834] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  329.082715][T10834] R13: 00007fcbe5476038 R14: 00007fcbe5475fa0 R15: 00007ffc53f58e48
[  329.082737][T10834]  </TASK>
[  329.212118][ T5890] usb 6-1: Limiting number of CPorts to U8_MAX
[  329.213748][ T5890] usb 6-1: Unknown endpoint type found, address 0x0b
[  329.213768][ T5890] usb 6-1: Not enough endpoints found in device, aborting!
[  329.362510][ T5851] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  329.493992][ T5889] usb 4-1: Limiting number of CPorts to U8_MAX
[  329.495025][ T5889] usb 4-1: Unknown endpoint type found, address 0x0b
[  329.495044][ T5889] usb 4-1: Not enough endpoints found in device, aborting!
[  329.522546][ T5851] usb 5-1: device descriptor read/64, error -71
[  329.528073][T10841] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1899'.
[  329.545465][T10730] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  329.580863][T10844] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1899'.
[  329.770293][ T5851] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  329.793297][T10849] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1904'.
[  329.878282][T10852] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1904'.
[  329.920279][ T5851] usb 5-1: device descriptor read/64, error -71
[  329.954106][T10730] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  330.030593][ T5851] usb usb5-port1: attempt power cycle
[  330.070328][   T60] Bluetooth: hci6: command tx timeout
[  330.188195][T10864] FAULT_INJECTION: forcing a failure.
[  330.188195][T10864] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  330.188223][T10864] CPU: 1 UID: 0 PID: 10864 Comm: syz.6.1925 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  330.188238][T10864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  330.188246][T10864] Call Trace:
[  330.188251][T10864]  <TASK>
[  330.188257][T10864]  dump_stack_lvl+0xe8/0x150
[  330.188281][T10864]  should_fail_ex+0x46b/0x600
[  330.188311][T10864]  _copy_from_user+0x2d/0xb0
[  330.188329][T10864]  ___sys_sendmsg+0x1c6/0x360
[  330.188353][T10864]  ? __pfx____sys_sendmsg+0x10/0x10
[  330.188395][T10864]  ? __fget_files+0x2a/0x420
[  330.188410][T10864]  ? __fget_files+0x3a6/0x420
[  330.188432][T10864]  __x64_sys_sendmsg+0x1c3/0x2a0
[  330.188452][T10864]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  330.188477][T10864]  ? __pfx_ksys_write+0x10/0x10
[  330.188504][T10864]  do_syscall_64+0x14d/0xf80
[  330.188521][T10864]  ? trace_irq_disable+0x3b/0x150
[  330.188535][T10864]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  330.188549][T10864]  ? clear_bhb_loop+0x40/0x90
[  330.188566][T10864]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  330.188579][T10864] RIP: 0033:0x7fcbe51fc799
[  330.188593][T10864] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  330.188604][T10864] RSP: 002b:00007fcbe3456028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  330.188620][T10864] RAX: ffffffffffffffda RBX: 00007fcbe5475fa0 RCX: 00007fcbe51fc799
[  330.188630][T10864] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000004
[  330.188638][T10864] RBP: 00007fcbe3456090 R08: 0000000000000000 R09: 0000000000000000
[  330.188646][T10864] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  330.188654][T10864] R13: 00007fcbe5476038 R14: 00007fcbe5475fa0 R15: 00007ffc53f58e48
[  330.188676][T10864]  </TASK>
[  330.420516][ T5851] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[  330.449432][ T5851] usb 5-1: device descriptor read/8, error -71
[  330.484713][T10730] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  330.580306][   T72] block nbd0: Possible stuck request ffff88802696e000: control (read@0,1024B). Runtime 240 seconds
[  330.580348][   T72] block nbd0: Possible stuck request ffff88802696e1c0: control (read@1024,1024B). Runtime 240 seconds
[  330.580374][   T72] block nbd0: Possible stuck request ffff88802696e380: control (read@2048,1024B). Runtime 240 seconds
[  330.580400][   T72] block nbd0: Possible stuck request ffff88802696e540: control (read@3072,1024B). Runtime 240 seconds
[  330.700408][ T5851] usb 5-1: new high-speed USB device number 34 using dummy_hcd
[  330.720908][ T5851] usb 5-1: device descriptor read/8, error -71
[  330.824429][T10730] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  330.830597][ T5851] usb usb5-port1: unable to enumerate USB device
[  331.151120][ T5889] usb 6-1: USB disconnect, device number 26
[  331.321657][T10896] FAULT_INJECTION: forcing a failure.
[  331.321657][T10896] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  331.321695][T10896] CPU: 1 UID: 0 PID: 10896 Comm: syz.5.1941 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  331.321715][T10896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  331.321725][T10896] Call Trace:
[  331.321731][T10896]  <TASK>
[  331.321739][T10896]  dump_stack_lvl+0xe8/0x150
[  331.321767][T10896]  should_fail_ex+0x46b/0x600
[  331.321793][T10896]  _copy_from_user+0x2d/0xb0
[  331.321814][T10896]  ___sys_sendmsg+0x1c6/0x360
[  331.321844][T10896]  ? __pfx____sys_sendmsg+0x10/0x10
[  331.321901][T10896]  ? __fget_files+0x2a/0x420
[  331.321922][T10896]  ? __fget_files+0x3a6/0x420
[  331.321951][T10896]  __x64_sys_sendmsg+0x1c3/0x2a0
[  331.321978][T10896]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  331.322010][T10896]  ? __pfx_ksys_write+0x10/0x10
[  331.322044][T10896]  do_syscall_64+0x14d/0xf80
[  331.322066][T10896]  ? trace_irq_disable+0x3b/0x150
[  331.322091][T10896]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  331.322110][T10896]  ? clear_bhb_loop+0x40/0x90
[  331.322131][T10896]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  331.322149][T10896] RIP: 0033:0x7f290256c799
[  331.322166][T10896] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  331.322181][T10896] RSP: 002b:00007f29007c6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  331.322201][T10896] RAX: ffffffffffffffda RBX: 00007f29027e5fa0 RCX: 00007f290256c799
[  331.322214][T10896] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000006
[  331.322225][T10896] RBP: 00007f29007c6090 R08: 0000000000000000 R09: 0000000000000000
[  331.322236][T10896] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  331.322247][T10896] R13: 00007f29027e6038 R14: 00007f29027e5fa0 R15: 00007ffcf9484bc8
[  331.322276][T10896]  </TASK>
[  331.421879][ T5889] usb 4-1: USB disconnect, device number 33
[  331.731773][T10908] FAULT_INJECTION: forcing a failure.
[  331.731773][T10908] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  331.731805][T10908] CPU: 0 UID: 0 PID: 10908 Comm: syz.3.1944 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  331.731826][T10908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  331.731836][T10908] Call Trace:
[  331.731850][T10908]  <TASK>
[  331.731859][T10908]  dump_stack_lvl+0xe8/0x150
[  331.731889][T10908]  should_fail_ex+0x46b/0x600
[  331.731914][T10908]  _copy_from_user+0x2d/0xb0
[  331.731933][T10908]  ___sys_sendmsg+0x1c6/0x360
[  331.731961][T10908]  ? __pfx____sys_sendmsg+0x10/0x10
[  331.732036][T10908]  ? __fget_files+0x2a/0x420
[  331.732054][T10908]  ? __fget_files+0x3a6/0x420
[  331.732080][T10908]  __x64_sys_sendmsg+0x1c3/0x2a0
[  331.732104][T10908]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  331.732141][T10908]  ? __pfx_ksys_write+0x10/0x10
[  331.732174][T10908]  do_syscall_64+0x14d/0xf80
[  331.732195][T10908]  ? trace_irq_disable+0x3b/0x150
[  331.732214][T10908]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  331.732232][T10908]  ? clear_bhb_loop+0x40/0x90
[  331.732253][T10908]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  331.732269][T10908] RIP: 0033:0x7f99507ec799
[  331.732286][T10908] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  331.732301][T10908] RSP: 002b:00007f994ea1d028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  331.732320][T10908] RAX: ffffffffffffffda RBX: 00007f9950a66090 RCX: 00007f99507ec799
[  331.732333][T10908] RDX: 0000000020040054 RSI: 0000200000006040 RDI: 0000000000000005
[  331.732345][T10908] RBP: 00007f994ea1d090 R08: 0000000000000000 R09: 0000000000000000
[  331.732356][T10908] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  331.732367][T10908] R13: 00007f9950a66128 R14: 00007f9950a66090 R15: 00007ffe16e0bca8
[  331.732392][T10908]  </TASK>
[  332.101531][T10922] FAULT_INJECTION: forcing a failure.
[  332.101531][T10922] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  332.101553][T10922] CPU: 1 UID: 0 PID: 10922 Comm: syz.5.1950 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  332.101565][T10922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  332.101572][T10922] Call Trace:
[  332.101576][T10922]  <TASK>
[  332.101587][T10922]  dump_stack_lvl+0xe8/0x150
[  332.101607][T10922]  should_fail_ex+0x46b/0x600
[  332.101621][T10922]  _copy_from_user+0x2d/0xb0
[  332.101635][T10922]  rds_setsockopt+0x99f/0xd90
[  332.101651][T10922]  ? __pfx_rds_setsockopt+0x10/0x10
[  332.101674][T10922]  ? __fget_files+0x2a/0x420
[  332.101686][T10922]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[  332.101700][T10922]  ? __pfx_rds_setsockopt+0x10/0x10
[  332.101712][T10922]  do_sock_setsockopt+0x17c/0x1b0
[  332.101728][T10922]  __x64_sys_setsockopt+0x143/0x1b0
[  332.101744][T10922]  do_syscall_64+0x14d/0xf80
[  332.101756][T10922]  ? trace_irq_disable+0x3b/0x150
[  332.101767][T10922]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  332.101777][T10922]  ? clear_bhb_loop+0x40/0x90
[  332.101789][T10922]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  332.101798][T10922] RIP: 0033:0x7f290256c799
[  332.101809][T10922] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  332.101818][T10922] RSP: 002b:00007f29007a5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  332.101828][T10922] RAX: ffffffffffffffda RBX: 00007f29027e6090 RCX: 00007f290256c799
[  332.101835][T10922] RDX: 0000000000000001 RSI: 0000000000000114 RDI: 0000000000000003
[  332.101841][T10922] RBP: 00007f29007a5090 R08: 0000000000000010 R09: 0000000000000000
[  332.101847][T10922] R10: 0000200000000100 R11: 0000000000000246 R12: 0000000000000001
[  332.101853][T10922] R13: 00007f29027e6128 R14: 00007f29027e6090 R15: 00007ffcf9484bc8
[  332.101868][T10922]  </TASK>
[  332.140458][   T60] Bluetooth: hci6: command tx timeout
[  332.343684][T10730] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  332.388953][T10730] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  332.428605][T10730] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  332.486690][T10730] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  332.894622][T10956] FAULT_INJECTION: forcing a failure.
[  332.894622][T10956] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  332.894654][T10956] CPU: 1 UID: 0 PID: 10956 Comm: syz.6.1965 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  332.894674][T10956] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  332.894685][T10956] Call Trace:
[  332.894692][T10956]  <TASK>
[  332.894700][T10956]  dump_stack_lvl+0xe8/0x150
[  332.894730][T10956]  should_fail_ex+0x46b/0x600
[  332.894754][T10956]  _copy_from_user+0x2d/0xb0
[  332.894777][T10956]  ___sys_sendmsg+0x1c6/0x360
[  332.894807][T10956]  ? __pfx____sys_sendmsg+0x10/0x10
[  332.894861][T10956]  ? __fget_files+0x2a/0x420
[  332.894881][T10956]  ? __fget_files+0x3a6/0x420
[  332.894911][T10956]  __x64_sys_sendmsg+0x1c3/0x2a0
[  332.894936][T10956]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  332.894961][T10956]  ? __pfx_ksys_write+0x10/0x10
[  332.894992][T10956]  do_syscall_64+0x14d/0xf80
[  332.895013][T10956]  ? trace_irq_disable+0x3b/0x150
[  332.895032][T10956]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  332.895050][T10956]  ? clear_bhb_loop+0x40/0x90
[  332.895071][T10956]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  332.895087][T10956] RIP: 0033:0x7fcbe51fc799
[  332.895104][T10956] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  332.895119][T10956] RSP: 002b:00007fcbe3456028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  332.895139][T10956] RAX: ffffffffffffffda RBX: 00007fcbe5475fa0 RCX: 00007fcbe51fc799
[  332.895152][T10956] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000004
[  332.895164][T10956] RBP: 00007fcbe3456090 R08: 0000000000000000 R09: 0000000000000000
[  332.895174][T10956] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  332.895184][T10956] R13: 00007fcbe5476038 R14: 00007fcbe5475fa0 R15: 00007ffc53f58e48
[  332.895213][T10956]  </TASK>
[  333.001078][T10954] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1963'.
[  333.133618][T10730] 8021q: adding VLAN 0 to HW filter on device bond0
[  333.216041][T10730] 8021q: adding VLAN 0 to HW filter on device team0
[  333.233898][ T1418] bridge0: port 1(bridge_slave_0) entered blocking state
[  333.234023][ T1418] bridge0: port 1(bridge_slave_0) entered forwarding state
[  333.256615][ T2942] bridge0: port 2(bridge_slave_1) entered blocking state
[  333.268483][ T2942] bridge0: port 2(bridge_slave_1) entered forwarding state
[  334.235898][   T60] Bluetooth: hci6: command tx timeout
[  334.377638][T10978] netlink: 68 bytes leftover after parsing attributes in process `syz.5.1972'.
[  334.519674][T10984] FAULT_INJECTION: forcing a failure.
[  334.519674][T10984] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  334.519706][T10984] CPU: 1 UID: 0 PID: 10984 Comm: syz.4.1974 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  334.519724][T10984] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  334.519734][T10984] Call Trace:
[  334.519741][T10984]  <TASK>
[  334.519748][T10984]  dump_stack_lvl+0xe8/0x150
[  334.519775][T10984]  should_fail_ex+0x46b/0x600
[  334.519797][T10984]  _copy_from_user+0x2d/0xb0
[  334.519819][T10984]  ___sys_sendmsg+0x1c6/0x360
[  334.519847][T10984]  ? __pfx____sys_sendmsg+0x10/0x10
[  334.519898][T10984]  ? __fget_files+0x2a/0x420
[  334.519915][T10984]  ? __fget_files+0x3a6/0x420
[  334.519943][T10984]  __x64_sys_sendmsg+0x1c3/0x2a0
[  334.519967][T10984]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  334.519997][T10984]  ? __pfx_ksys_write+0x10/0x10
[  334.520027][T10984]  do_syscall_64+0x14d/0xf80
[  334.520047][T10984]  ? trace_irq_disable+0x3b/0x150
[  334.520065][T10984]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  334.520081][T10984]  ? clear_bhb_loop+0x40/0x90
[  334.520100][T10984]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  334.520119][T10984] RIP: 0033:0x7ff59082c799
[  334.520134][T10984] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  334.520149][T10984] RSP: 002b:00007ff58ea86028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  334.520166][T10984] RAX: ffffffffffffffda RBX: 00007ff590aa5fa0 RCX: 00007ff59082c799
[  334.520179][T10984] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[  334.520190][T10984] RBP: 00007ff58ea86090 R08: 0000000000000000 R09: 0000000000000000
[  334.520201][T10984] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  334.520211][T10984] R13: 00007ff590aa6038 R14: 00007ff590aa5fa0 R15: 00007ffe0fbf95d8
[  334.520239][T10984]  </TASK>
[  334.893875][T10998] FAULT_INJECTION: forcing a failure.
[  334.893875][T10998] name failslab, interval 1, probability 0, space 0, times 0
[  334.893928][T10998] CPU: 1 UID: 0 PID: 10998 Comm: syz.4.1978 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  334.893949][T10998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  334.893959][T10998] Call Trace:
[  334.893966][T10998]  <TASK>
[  334.893975][T10998]  dump_stack_lvl+0xe8/0x150
[  334.894005][T10998]  should_fail_ex+0x46b/0x600
[  334.894031][T10998]  should_failslab+0xa8/0x100
[  334.894050][T10998]  __kmalloc_noprof+0xdf/0x7b0
[  334.894072][T10998]  ? kfree+0x4d/0x6c0
[  334.894092][T10998]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  334.894110][T10998]  ? rcu_is_watching+0x15/0xb0
[  334.894134][T10998]  tomoyo_realpath_from_path+0xe3/0x5d0
[  334.894163][T10998]  ? tomoyo_path_number_perm+0x219/0x630
[  334.894186][T10998]  tomoyo_path_number_perm+0x246/0x630
[  334.894211][T10998]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  334.894237][T10998]  ? __lock_acquire+0x6b5/0x2cf0
[  334.894255][T10998]  ? __pfx___schedule+0x10/0x10
[  334.894312][T10998]  ? security_file_ioctl+0x246/0x2a0
[  334.894342][T10998]  security_file_ioctl+0xc3/0x2a0
[  334.894368][T10998]  __se_sys_ioctl+0x47/0x170
[  334.894395][T10998]  do_syscall_64+0x14d/0xf80
[  334.894417][T10998]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  334.894435][T10998]  ? clear_bhb_loop+0x40/0x90
[  334.894458][T10998]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  334.894474][T10998] RIP: 0033:0x7ff59082c799
[  334.894492][T10998] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  334.894507][T10998] RSP: 002b:00007ff58ea65028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  334.894526][T10998] RAX: ffffffffffffffda RBX: 00007ff590aa6090 RCX: 00007ff59082c799
[  334.894538][T10998] RDX: 0000200000000080 RSI: 0000000040045612 RDI: 0000000000000005
[  334.894549][T10998] RBP: 00007ff58ea65090 R08: 0000000000000000 R09: 0000000000000000
[  334.894561][T10998] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  334.894572][T10998] R13: 00007ff590aa6128 R14: 00007ff590aa6090 R15: 00007ffe0fbf95d8
[  334.894603][T10998]  </TASK>
[  334.894634][T10998] ERROR: Out of memory at tomoyo_realpath_from_path.
[  336.406988][T10730] 8021q: adding VLAN 0 to HW filter on device batadv0
[  336.583342][T10730] veth0_vlan: entered promiscuous mode
[  336.619887][T10730] veth1_vlan: entered promiscuous mode
[  336.673652][T10730] veth0_macvtap: entered promiscuous mode
[  336.678372][T10730] veth1_macvtap: entered promiscuous mode
[  336.716387][T10730] batman_adv: batadv0: Interface activated: batadv_slave_0
[  336.739308][T10730] batman_adv: batadv0: Interface activated: batadv_slave_1
[  336.755173][  T160] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  336.755424][  T160] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  336.790881][  T160] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  336.792527][  T160] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  337.415896][ T1418] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  337.415917][ T1418] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  337.574709][ T1397] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  337.574731][ T1397] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  337.621539][T11024] FAULT_INJECTION: forcing a failure.
[  337.621539][T11024] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  337.621577][T11024] CPU: 1 UID: 0 PID: 11024 Comm: syz.6.1987 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  337.621600][T11024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  337.621611][T11024] Call Trace:
[  337.621619][T11024]  <TASK>
[  337.621628][T11024]  dump_stack_lvl+0xe8/0x150
[  337.621657][T11024]  should_fail_ex+0x46b/0x600
[  337.621683][T11024]  _copy_from_user+0x2d/0xb0
[  337.621707][T11024]  ax25_setsockopt+0x172/0xc30
[  337.621736][T11024]  ? __pfx_ax25_setsockopt+0x10/0x10
[  337.621759][T11024]  ? __fget_files+0x2a/0x420
[  337.621782][T11024]  ? __fget_files+0x2a/0x420
[  337.621802][T11024]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[  337.621826][T11024]  ? __pfx_ax25_setsockopt+0x10/0x10
[  337.621850][T11024]  do_sock_setsockopt+0x17c/0x1b0
[  337.621878][T11024]  __x64_sys_setsockopt+0x143/0x1b0
[  337.621906][T11024]  do_syscall_64+0x14d/0xf80
[  337.621928][T11024]  ? trace_irq_disable+0x3b/0x150
[  337.621949][T11024]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  337.621967][T11024]  ? clear_bhb_loop+0x40/0x90
[  337.621989][T11024]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  337.622015][T11024] RIP: 0033:0x7fcbe51fc799
[  337.622033][T11024] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  337.622048][T11024] RSP: 002b:00007fcbe3435028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  337.622068][T11024] RAX: ffffffffffffffda RBX: 00007fcbe5476090 RCX: 00007fcbe51fc799
[  337.622081][T11024] RDX: 0000000000000001 RSI: 0000000000000101 RDI: 0000000000000004
[  337.622093][T11024] RBP: 00007fcbe3435090 R08: 0000000000000004 R09: 0000000000000000
[  337.622105][T11024] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[  337.622116][T11024] R13: 00007fcbe5476128 R14: 00007fcbe5476090 R15: 00007ffc53f58e48
[  337.622146][T11024]  </TASK>
[  337.951125][T11028] trusted_key: encrypted_key: insufficient parameters specified
[  339.698253][T11055] FAULT_INJECTION: forcing a failure.
[  339.698253][T11055] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  339.698316][T11055] CPU: 1 UID: 0 PID: 11055 Comm: syz.4.1998 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  339.698338][T11055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  339.698350][T11055] Call Trace:
[  339.698358][T11055]  <TASK>
[  339.698367][T11055]  dump_stack_lvl+0xe8/0x150
[  339.698397][T11055]  should_fail_ex+0x46b/0x600
[  339.698423][T11055]  _copy_from_user+0x2d/0xb0
[  339.698447][T11055]  ___sys_sendmsg+0x1c6/0x360
[  339.698479][T11055]  ? __pfx____sys_sendmsg+0x10/0x10
[  339.698506][T11055]  ? __schedule+0x1569/0x5240
[  339.698556][T11055]  ? __fget_files+0x2a/0x420
[  339.698578][T11055]  ? __fget_files+0x3a6/0x420
[  339.698609][T11055]  __x64_sys_sendmsg+0x1c3/0x2a0
[  339.698637][T11055]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  339.698684][T11055]  do_syscall_64+0x14d/0xf80
[  339.698708][T11055]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  339.698727][T11055]  ? clear_bhb_loop+0x40/0x90
[  339.698749][T11055]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  339.698767][T11055] RIP: 0033:0x7ff59082c799
[  339.698785][T11055] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  339.698801][T11055] RSP: 002b:00007ff58ea44028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  339.698820][T11055] RAX: ffffffffffffffda RBX: 00007ff590aa6180 RCX: 00007ff59082c799
[  339.698835][T11055] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000007
[  339.698847][T11055] RBP: 00007ff58ea44090 R08: 0000000000000000 R09: 0000000000000000
[  339.698859][T11055] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  339.698870][T11055] R13: 00007ff590aa6218 R14: 00007ff590aa6180 R15: 00007ffe0fbf95d8
[  339.698901][T11055]  </TASK>
[  340.747525][T11065] netlink: 7064 bytes leftover after parsing attributes in process `syz.3.2004'.
[  340.747558][T11065] openvswitch: netlink: Missing key (keys=40, expected=80)
[  340.993173][T11074] FAULT_INJECTION: forcing a failure.
[  340.993173][T11074] name failslab, interval 1, probability 0, space 0, times 0
[  340.993205][T11074] CPU: 0 UID: 0 PID: 11074 Comm: syz.4.2008 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  340.993226][T11074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  340.993237][T11074] Call Trace:
[  340.993245][T11074]  <TASK>
[  340.993254][T11074]  dump_stack_lvl+0xe8/0x150
[  340.993284][T11074]  should_fail_ex+0x46b/0x600
[  340.993310][T11074]  should_failslab+0xa8/0x100
[  340.993331][T11074]  __kvmalloc_node_noprof+0x170/0x8e0
[  340.993351][T11074]  ? seq_read_iter+0x203/0xe20
[  340.993367][T11074]  ? mutex_lock_nested+0x152/0x1d0
[  340.993385][T11074]  ? seq_read_iter+0xb8/0xe20
[  340.993406][T11074]  seq_read_iter+0x203/0xe20
[  340.993428][T11074]  ? kstrtoull+0x12f/0x1d0
[  340.993457][T11074]  do_iter_readv_writev+0x62b/0x8d0
[  340.993487][T11074]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  340.993521][T11074]  ? rw_verify_area+0x2ac/0x4e0
[  340.993548][T11074]  vfs_readv+0x292/0x850
[  340.993577][T11074]  ? __pfx_vfs_readv+0x10/0x10
[  340.993611][T11074]  ? __fget_files+0x2a/0x420
[  340.993636][T11074]  ? __fget_files+0x3a6/0x420
[  340.993656][T11074]  ? __fget_files+0x2a/0x420
[  340.993684][T11074]  __x64_sys_preadv+0x1a2/0x2b0
[  340.993711][T11074]  ? __pfx___x64_sys_preadv+0x10/0x10
[  340.993745][T11074]  do_syscall_64+0x14d/0xf80
[  340.993774][T11074]  ? trace_irq_disable+0x3b/0x150
[  340.993794][T11074]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  340.993813][T11074]  ? clear_bhb_loop+0x40/0x90
[  340.993834][T11074]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  340.993852][T11074] RIP: 0033:0x7ff59082c799
[  340.993869][T11074] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  340.993885][T11074] RSP: 002b:00007ff58ea86028 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  340.993904][T11074] RAX: ffffffffffffffda RBX: 00007ff590aa5fa0 RCX: 00007ff59082c799
[  340.993917][T11074] RDX: 0000000000000001 RSI: 00002000000000c0 RDI: 0000000000000004
[  340.993930][T11074] RBP: 00007ff58ea86090 R08: 0000000000000000 R09: 0000000000000000
[  340.993942][T11074] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  340.993953][T11074] R13: 00007ff590aa6038 R14: 00007ff590aa5fa0 R15: 00007ffe0fbf95d8
[  340.993982][T11074]  </TASK>
[  341.026988][ T5875] usb 4-1: new high-speed USB device number 34 using dummy_hcd
[  341.167279][T11081] FAULT_INJECTION: forcing a failure.
[  341.167279][T11081] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  341.167311][T11081] CPU: 0 UID: 0 PID: 11081 Comm: syz.4.2012 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  341.167331][T11081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  341.167343][T11081] Call Trace:
[  341.167350][T11081]  <TASK>
[  341.167360][T11081]  dump_stack_lvl+0xe8/0x150
[  341.167390][T11081]  should_fail_ex+0x46b/0x600
[  341.167415][T11081]  _copy_from_user+0x2d/0xb0
[  341.167438][T11081]  ___sys_sendmsg+0x1c6/0x360
[  341.167468][T11081]  ? __pfx____sys_sendmsg+0x10/0x10
[  341.167523][T11081]  ? __fget_files+0x2a/0x420
[  341.167544][T11081]  ? __fget_files+0x3a6/0x420
[  341.167574][T11081]  __x64_sys_sendmsg+0x1c3/0x2a0
[  341.167600][T11081]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  341.167632][T11081]  ? __pfx_ksys_write+0x10/0x10
[  341.167666][T11081]  do_syscall_64+0x14d/0xf80
[  341.167688][T11081]  ? trace_irq_disable+0x3b/0x150
[  341.167708][T11081]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  341.167725][T11081]  ? clear_bhb_loop+0x40/0x90
[  341.167746][T11081]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  341.167770][T11081] RIP: 0033:0x7ff59082c799
[  341.167788][T11081] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  341.167803][T11081] RSP: 002b:00007ff58ea86028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  341.167822][T11081] RAX: ffffffffffffffda RBX: 00007ff590aa5fa0 RCX: 00007ff59082c799
[  341.167835][T11081] RDX: 0000000000008000 RSI: 00002000000002c0 RDI: 0000000000000004
[  341.167847][T11081] RBP: 00007ff58ea86090 R08: 0000000000000000 R09: 0000000000000000
[  341.167858][T11081] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  341.167869][T11081] R13: 00007ff590aa6038 R14: 00007ff590aa5fa0 R15: 00007ffe0fbf95d8
[  341.167899][T11081]  </TASK>
[  341.180238][ T5875] usb 4-1: Using ep0 maxpacket: 8
[  341.187649][ T5875] usb 4-1: config 235 has an invalid interface number: 170 but max is 1
[  341.187676][ T5875] usb 4-1: config 235 has an invalid interface number: 39 but max is 1
[  341.187694][ T5875] usb 4-1: config 235 has an invalid interface number: 242 but max is 1
[  341.187714][ T5875] usb 4-1: config 235 has 3 interfaces, different from the descriptor's value: 2
[  341.187733][ T5875] usb 4-1: config 235 has no interface number 0
[  341.187755][ T5875] usb 4-1: config 235 has no interface number 1
[  341.187770][ T5875] usb 4-1: config 235 has no interface number 2
[  341.187831][ T5875] usb 4-1: config 235 interface 170 altsetting 3 endpoint 0xE has invalid maxpacket 1040, setting to 64
[  341.187857][ T5875] usb 4-1: config 235 interface 170 altsetting 3 has an invalid descriptor for endpoint zero, skipping
[  341.187876][ T5875] usb 4-1: config 235 interface 170 altsetting 3 endpoint 0xD has invalid maxpacket 512, setting to 64
[  341.187900][ T5875] usb 4-1: config 235 interface 170 altsetting 3 endpoint 0x3 has an invalid bInterval 33, changing to 9
[  341.187924][ T5875] usb 4-1: config 235 interface 170 altsetting 3 endpoint 0x3 has invalid maxpacket 1072, setting to 1024
[  341.187950][ T5875] usb 4-1: config 235 interface 170 altsetting 3 has a duplicate endpoint with address 0xE, skipping
[  341.187970][ T5875] usb 4-1: config 235 interface 170 altsetting 3 has an invalid descriptor for endpoint zero, skipping
[  341.187989][ T5875] usb 4-1: config 235 interface 170 altsetting 3 has an invalid descriptor for endpoint zero, skipping
[  341.188008][ T5875] usb 4-1: config 235 interface 170 altsetting 3 has an invalid descriptor for endpoint zero, skipping
[  341.188040][ T5875] usb 4-1: config 235 interface 39 altsetting 2 endpoint 0xC has invalid maxpacket 1024, setting to 64
[  341.188064][ T5875] usb 4-1: config 235 interface 39 altsetting 2 has a duplicate endpoint with address 0xD, skipping
[  341.188084][ T5875] usb 4-1: config 235 interface 39 altsetting 2 has 2 endpoint descriptors, different from the interface descriptor's value: 13
[  341.188107][ T5875] usb 4-1: too many endpoints for config 235 interface 242 altsetting 83: 114, using maximum allowed: 30
[  341.188141][ T5875] usb 4-1: config 235 interface 242 altsetting 83 has a duplicate endpoint with address 0x9, skipping
[  341.188163][ T5875] usb 4-1: config 235 interface 242 altsetting 83 has a duplicate endpoint with address 0x1, skipping
[  341.188182][ T5875] usb 4-1: config 235 interface 242 altsetting 83 has an invalid descriptor for endpoint zero, skipping
[  341.188202][ T5875] usb 4-1: config 235 interface 242 altsetting 83 has an endpoint descriptor with address 0x1B, changing to 0xB
[  341.188224][ T5875] usb 4-1: config 235 interface 242 altsetting 83 has a duplicate endpoint with address 0xB, skipping
[  341.188245][ T5875] usb 4-1: config 235 interface 242 altsetting 83 has a duplicate endpoint with address 0xC, skipping
[  341.188265][ T5875] usb 4-1: config 235 interface 242 altsetting 83 has a duplicate endpoint with address 0xB, skipping
[  341.188286][ T5875] usb 4-1: config 235 interface 242 altsetting 83 has a duplicate endpoint with address 0xF, skipping
[  341.188306][ T5875] usb 4-1: config 235 interface 242 altsetting 83 endpoint 0x7 has invalid maxpacket 1023, setting to 64
[  341.188329][ T5875] usb 4-1: config 235 interface 242 altsetting 83 has a duplicate endpoint with address 0xE, skipping
[  341.188350][ T5875] usb 4-1: config 235 interface 242 altsetting 83 has 11 endpoint descriptors, different from the interface descriptor's value: 114
[  341.188375][ T5875] usb 4-1: config 235 interface 170 has no altsetting 0
[  341.188390][ T5875] usb 4-1: config 235 interface 39 has no altsetting 0
[  341.188406][ T5875] usb 4-1: config 235 interface 242 has no altsetting 0
[  341.190868][ T5875] usb 4-1: New USB device found, idVendor=10cf, idProduct=8066, bcdDevice=f3.47
[  341.190893][ T5875] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  341.190912][ T5875] usb 4-1: Product: ⠊
[  341.190925][ T5875] usb 4-1: Manufacturer: 铒ᰗ⠴엽ᮉ䫨ń鷸ؙ좠䃘ᡭ졭뾺ꝗ긤⹰해븝㛍暜⢡誹귕챁॔㫄鱛ꆚሾ瞜㊺탩逴隉춁赀헒ᥣ稱꼹◀匊麛鄘
[  341.190945][ T5875] usb 4-1: SerialNumber: 벦ꑪ數핃삫﫲梿ꡁ㓪♿၆อ၅믽㋿ꓡ㩮Ꮆ㑃畕ㄛ쪐琥뉺럂駴槷䉧호륎뀰跑圙⮫썽ꭘ੸臊䯺绯㟡ⓦ賄⾷ڭ퀓然歰琿뷰⡊畮䶄ź齢῿뒤ﶝῑ늅ﭸ厞⤃힘ꓴꂩ⿔嘜驤Ⅵ諚ԁ䶠ビ韲꽖帛⋓嘶徦螱멾肤콟䆹㆞痈뙷ᇆ삐၂㴵쮦鲜谇䎶刢ர౏왉빒謠艹ʐ
[  341.210664][ T5875] usb 4-1: Interface #242 referenced by multiple IADs
[  341.212340][T11065] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  341.497508][T11083] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2004'.
[  341.497540][T11083] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2004'.
[  341.580272][ T5805] Bluetooth: hci3: command 0x1003 tx timeout
[  341.580652][   T60] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  341.633532][T11084] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  341.634303][T11084] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  342.283991][ T5875] vmk80xx 4-1:235.170: driver 'vmk80xx' failed to auto-configure device.
[  342.356862][ T5875] cdc_acm 4-1:235.39: skipping garbage
[  342.356882][ T5875] cdc_acm 4-1:235.39: skipping garbage
[  342.375835][ T5875] vmk80xx 4-1:235.39: driver 'vmk80xx' failed to auto-configure device.
[  342.521007][ T5875] vmk80xx 4-1:235.242: driver 'vmk80xx' failed to auto-configure device.
[  342.580810][ T5875] usb 4-1: USB disconnect, device number 34
[  343.479858][ T4431] Bluetooth: hci3: Frame reassembly failed (-84)
[  343.880245][ T5890] usb 4-1: new full-speed USB device number 35 using dummy_hcd
[  344.033491][ T5890] usb 4-1: config 246 has an invalid interface number: 166 but max is 0
[  344.033518][ T5890] usb 4-1: config 246 has an invalid descriptor of length 0, skipping remainder of the config
[  344.033537][ T5890] usb 4-1: config 246 has no interface number 0
[  344.033579][ T5890] usb 4-1: config 246 interface 166 altsetting 118 endpoint 0xB has invalid wMaxPacketSize 0
[  344.033600][ T5890] usb 4-1: config 246 interface 166 altsetting 118 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  344.033627][ T5890] usb 4-1: config 246 interface 166 has no altsetting 0
[  344.098364][ T5890] usb 4-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice= 9.63
[  344.098396][ T5890] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  344.098417][ T5890] usb 4-1: Product: syz
[  344.098433][ T5890] usb 4-1: Manufacturer: syz
[  344.098447][ T5890] usb 4-1: SerialNumber: syz
[  344.752231][ T5890] usb 4-1: Limiting number of CPorts to U8_MAX
[  344.753267][ T5890] usb 4-1: Unknown endpoint type found, address 0x0b
[  344.753285][ T5890] usb 4-1: Not enough endpoints found in device, aborting!
[  344.841773][T11176] FAULT_INJECTION: forcing a failure.
[  344.841773][T11176] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  344.841803][T11176] CPU: 0 UID: 0 PID: 11176 Comm: syz.1.2050 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  344.841815][T11176] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  344.841822][T11176] Call Trace:
[  344.841827][T11176]  <TASK>
[  344.841832][T11176]  dump_stack_lvl+0xe8/0x150
[  344.841851][T11176]  should_fail_ex+0x46b/0x600
[  344.841866][T11176]  _copy_from_user+0x2d/0xb0
[  344.841880][T11176]  __sys_bpf+0x229/0x950
[  344.841894][T11176]  ? __pfx___sys_bpf+0x10/0x10
[  344.841905][T11176]  ? rt_mutex_slowunlock+0x1cb/0x300
[  344.841930][T11176]  ? ksys_write+0x248/0x270
[  344.841946][T11176]  ? __pfx_ksys_write+0x10/0x10
[  344.841964][T11176]  __x64_sys_bpf+0x7c/0x90
[  344.841976][T11176]  do_syscall_64+0x14d/0xf80
[  344.841989][T11176]  ? trace_irq_disable+0x3b/0x150
[  344.842000][T11176]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  344.842011][T11176]  ? clear_bhb_loop+0x40/0x90
[  344.842023][T11176]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  344.842033][T11176] RIP: 0033:0x7f939323c799
[  344.842044][T11176] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  344.842053][T11176] RSP: 002b:00007f9391496028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  344.842064][T11176] RAX: ffffffffffffffda RBX: 00007f93934b5fa0 RCX: 00007f939323c799
[  344.842072][T11176] RDX: 0000000000000048 RSI: 0000200000000600 RDI: 000000000000000a
[  344.842079][T11176] RBP: 00007f9391496090 R08: 0000000000000000 R09: 0000000000000000
[  344.842085][T11176] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  344.842091][T11176] R13: 00007f93934b6038 R14: 00007f93934b5fa0 R15: 00007ffca6c9d308
[  344.842106][T11176]  </TASK>
[  345.133247][T11185] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2037'.
[  345.373352][T11194] FAULT_INJECTION: forcing a failure.
[  345.373352][T11194] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  345.373385][T11194] CPU: 0 UID: 0 PID: 11194 Comm: syz.6.2057 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  345.373407][T11194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  345.373416][T11194] Call Trace:
[  345.373423][T11194]  <TASK>
[  345.373428][T11194]  dump_stack_lvl+0xe8/0x150
[  345.373449][T11194]  should_fail_ex+0x46b/0x600
[  345.373463][T11194]  _copy_from_user+0x2d/0xb0
[  345.373478][T11194]  ___sys_sendmsg+0x1c6/0x360
[  345.373496][T11194]  ? __pfx____sys_sendmsg+0x10/0x10
[  345.373526][T11194]  ? __fget_files+0x2a/0x420
[  345.373539][T11194]  ? __fget_files+0x3a6/0x420
[  345.373555][T11194]  __x64_sys_sendmsg+0x1c3/0x2a0
[  345.373570][T11194]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  345.373588][T11194]  ? __pfx_ksys_write+0x10/0x10
[  345.373608][T11194]  do_syscall_64+0x14d/0xf80
[  345.373622][T11194]  ? trace_irq_disable+0x3b/0x150
[  345.373634][T11194]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  345.373644][T11194]  ? clear_bhb_loop+0x40/0x90
[  345.373656][T11194]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  345.373666][T11194] RIP: 0033:0x7fcbe51fc799
[  345.373676][T11194] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  345.373685][T11194] RSP: 002b:00007fcbe3456028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  345.373697][T11194] RAX: ffffffffffffffda RBX: 00007fcbe5475fa0 RCX: 00007fcbe51fc799
[  345.373705][T11194] RDX: 0000000000000000 RSI: 0000200000000500 RDI: 0000000000000003
[  345.373711][T11194] RBP: 00007fcbe3456090 R08: 0000000000000000 R09: 0000000000000000
[  345.373718][T11194] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  345.373724][T11194] R13: 00007fcbe5476038 R14: 00007fcbe5475fa0 R15: 00007ffc53f58e48
[  345.373739][T11194]  </TASK>
[  345.500256][ T5805] Bluetooth: hci3: command 0x1003 tx timeout
[  345.501711][   T60] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  345.779017][T11206] hsr0: entered promiscuous mode
[  345.786185][T11206] FAULT_INJECTION: forcing a failure.
[  345.786185][T11206] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  345.786217][T11206] CPU: 1 UID: 0 PID: 11206 Comm: syz.4.2063 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  345.786239][T11206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  345.786251][T11206] Call Trace:
[  345.786259][T11206]  <TASK>
[  345.786271][T11206]  dump_stack_lvl+0xe8/0x150
[  345.786301][T11206]  should_fail_ex+0x46b/0x600
[  345.786327][T11206]  _copy_from_user+0x2d/0xb0
[  345.786350][T11206]  ___sys_sendmsg+0x1c6/0x360
[  345.786382][T11206]  ? __pfx____sys_sendmsg+0x10/0x10
[  345.786440][T11206]  ? __fget_files+0x2a/0x420
[  345.786460][T11206]  ? __fget_files+0x3a6/0x420
[  345.786491][T11206]  __x64_sys_sendmsg+0x1c3/0x2a0
[  345.786518][T11206]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  345.786552][T11206]  ? __pfx_ksys_write+0x10/0x10
[  345.786587][T11206]  do_syscall_64+0x14d/0xf80
[  345.786609][T11206]  ? trace_irq_disable+0x3b/0x150
[  345.786628][T11206]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  345.786647][T11206]  ? clear_bhb_loop+0x40/0x90
[  345.786669][T11206]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  345.786687][T11206] RIP: 0033:0x7ff59082c799
[  345.786705][T11206] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  345.786721][T11206] RSP: 002b:00007ff58ea86028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  345.786740][T11206] RAX: ffffffffffffffda RBX: 00007ff590aa5fa0 RCX: 00007ff59082c799
[  345.786754][T11206] RDX: 0000000020048054 RSI: 0000200000000200 RDI: 0000000000000004
[  345.786766][T11206] RBP: 00007ff58ea86090 R08: 0000000000000000 R09: 0000000000000000
[  345.786784][T11206] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  345.786796][T11206] R13: 00007ff590aa6038 R14: 00007ff590aa5fa0 R15: 00007ffe0fbf95d8
[  345.786826][T11206]  </TASK>
[  346.639856][T11233] FAULT_INJECTION: forcing a failure.
[  346.639856][T11233] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  346.639891][T11233] CPU: 1 UID: 0 PID: 11233 Comm: syz.6.2075 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  346.639912][T11233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  346.639924][T11233] Call Trace:
[  346.639932][T11233]  <TASK>
[  346.639941][T11233]  dump_stack_lvl+0xe8/0x150
[  346.639972][T11233]  should_fail_ex+0x46b/0x600
[  346.639998][T11233]  _copy_from_user+0x2d/0xb0
[  346.640021][T11233]  __sys_bpf+0x229/0x950
[  346.640045][T11233]  ? __pfx___sys_bpf+0x10/0x10
[  346.640063][T11233]  ? rt_mutex_slowunlock+0x1cb/0x300
[  346.640096][T11233]  ? ksys_write+0x248/0x270
[  346.640124][T11233]  ? __pfx_ksys_write+0x10/0x10
[  346.640152][T11233]  __x64_sys_bpf+0x7c/0x90
[  346.640171][T11233]  do_syscall_64+0x14d/0xf80
[  346.640192][T11233]  ? trace_irq_disable+0x3b/0x150
[  346.640212][T11233]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  346.640228][T11233]  ? clear_bhb_loop+0x40/0x90
[  346.640250][T11233]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  346.640266][T11233] RIP: 0033:0x7fcbe51fc799
[  346.640283][T11233] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  346.640297][T11233] RSP: 002b:00007fcbe3456028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  346.640317][T11233] RAX: ffffffffffffffda RBX: 00007fcbe5475fa0 RCX: 00007fcbe51fc799
[  346.640330][T11233] RDX: 000000000000000c RSI: 00002000000003c0 RDI: 000000000000000a
[  346.640341][T11233] RBP: 00007fcbe3456090 R08: 0000000000000000 R09: 0000000000000000
[  346.640353][T11233] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  346.640364][T11233] R13: 00007fcbe5476038 R14: 00007fcbe5475fa0 R15: 00007ffc53f58e48
[  346.640395][T11233]  </TASK>
[  346.711740][ T5875] usb 4-1: USB disconnect, device number 35
[  346.744674][   T10] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  346.904560][   T10] usb 2-1: config 0 has an invalid interface number: 238 but max is 0
[  346.904587][   T10] usb 2-1: config 0 has an invalid descriptor of length 48, skipping remainder of the config
[  346.904605][   T10] usb 2-1: config 0 has no interface number 0
[  346.904643][   T10] usb 2-1: config 0 interface 238 altsetting 2 has 0 endpoint descriptors, different from the interface descriptor's value: 15
[  346.904668][   T10] usb 2-1: config 0 interface 238 has no altsetting 0
[  346.908321][   T10] usb 2-1: New USB device found, idVendor=3923, idProduct=718a, bcdDevice=f6.6a
[  346.908349][   T10] usb 2-1: New USB device strings: Mfr=181, Product=147, SerialNumber=160
[  346.908368][   T10] usb 2-1: Product: syz
[  346.908382][   T10] usb 2-1: Manufacturer: syz
[  346.908395][   T10] usb 2-1: SerialNumber: syz
[  347.010352][   T10] usb 2-1: config 0 descriptor??
[  347.553821][   T10] comedi comedi5: Wrong number of endpoints
[  347.553843][   T10] ni6501 2-1:0.238: driver 'ni6501' failed to auto-configure device.
[  347.610304][   T10] usb 2-1: USB disconnect, device number 17
[  347.835358][   T60] Bluetooth: hci6: Controller not accepting commands anymore: ncmd = 0
[  347.851530][   T60] Bluetooth: hci6: Injecting HCI hardware error event
[  347.854694][ T5810] Bluetooth: hci6: hardware error 0x00
[  348.055541][T11274] FAULT_INJECTION: forcing a failure.
[  348.055541][T11274] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  348.055563][T11274] CPU: 1 UID: 0 PID: 11274 Comm: syz.4.2092 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  348.055575][T11274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  348.055582][T11274] Call Trace:
[  348.055594][T11274]  <TASK>
[  348.055600][T11274]  dump_stack_lvl+0xe8/0x150
[  348.055620][T11274]  should_fail_ex+0x46b/0x600
[  348.055635][T11274]  _copy_from_user+0x2d/0xb0
[  348.055650][T11274]  __sys_bpf+0x229/0x950
[  348.055664][T11274]  ? __pfx___sys_bpf+0x10/0x10
[  348.055675][T11274]  ? rt_mutex_slowunlock+0x1cb/0x300
[  348.055695][T11274]  ? ksys_write+0x248/0x270
[  348.055711][T11274]  ? __pfx_ksys_write+0x10/0x10
[  348.055729][T11274]  __x64_sys_bpf+0x7c/0x90
[  348.055740][T11274]  do_syscall_64+0x14d/0xf80
[  348.055753][T11274]  ? trace_irq_disable+0x3b/0x150
[  348.055765][T11274]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  348.055775][T11274]  ? clear_bhb_loop+0x40/0x90
[  348.055788][T11274]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  348.055798][T11274] RIP: 0033:0x7ff59082c799
[  348.055808][T11274] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  348.055817][T11274] RSP: 002b:00007ff58ea86028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  348.055829][T11274] RAX: ffffffffffffffda RBX: 00007ff590aa5fa0 RCX: 00007ff59082c799
[  348.055837][T11274] RDX: 0000000000000040 RSI: 0000200000000180 RDI: 000000000000001c
[  348.055844][T11274] RBP: 00007ff58ea86090 R08: 0000000000000000 R09: 0000000000000000
[  348.055851][T11274] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  348.055857][T11274] R13: 00007ff590aa6038 R14: 00007ff590aa5fa0 R15: 00007ffe0fbf95d8
[  348.055873][T11274]  </TASK>
[  348.170227][ T5890] usb 6-1: new full-speed USB device number 27 using dummy_hcd
[  348.336913][ T5890] usb 6-1: config 201 has an invalid interface number: 249 but max is 0
[  348.336942][ T5890] usb 6-1: config 201 has an invalid descriptor of length 0, skipping remainder of the config
[  348.336961][ T5890] usb 6-1: config 201 has no interface number 0
[  348.337123][ T5890] usb 6-1: config 201 interface 249 altsetting 4 has an endpoint descriptor with address 0xF1, changing to 0x81
[  348.337149][ T5890] usb 6-1: config 201 interface 249 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  348.337173][ T5890] usb 6-1: config 201 interface 249 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[  348.337194][ T5890] usb 6-1: config 201 interface 249 altsetting 4 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  348.337219][ T5890] usb 6-1: config 201 interface 249 has no altsetting 0
[  348.341281][ T5890] usb 6-1: New USB device found, idVendor=04da, idProduct=390d, bcdDevice=fa.df
[  348.341308][ T5890] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  348.341327][ T5890] usb 6-1: Product: syz
[  348.341342][ T5890] usb 6-1: Manufacturer: syz
[  348.341354][ T5890] usb 6-1: SerialNumber: syz
[  348.582802][T11285] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  348.611635][ T5890] ath6kl: Failed to submit usb control message: -71
[  348.611685][ T5890] ath6kl: unable to send the bmi data to the device: -71
[  348.611699][ T5890] ath6kl: Unable to send get target info: -71
[  348.614848][ T5890] ath6kl: Failed to init ath6kl core: -71
[  348.615371][ T5890] ath6kl_usb 6-1:201.249: probe with driver ath6kl_usb failed with error -71
[  348.691219][ T5890] usb 6-1: USB disconnect, device number 27
[  349.062113][T11302] FAULT_INJECTION: forcing a failure.
[  349.062113][T11302] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  349.062144][T11302] CPU: 0 UID: 0 PID: 11302 Comm: syz.4.2103 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  349.062165][T11302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  349.062176][T11302] Call Trace:
[  349.062183][T11302]  <TASK>
[  349.062191][T11302]  dump_stack_lvl+0xe8/0x150
[  349.062220][T11302]  should_fail_ex+0x46b/0x600
[  349.062242][T11302]  _copy_from_user+0x2d/0xb0
[  349.062267][T11302]  ___sys_sendmsg+0x1c6/0x360
[  349.062297][T11302]  ? __pfx____sys_sendmsg+0x10/0x10
[  349.062325][T11302]  ? kstrtouint+0x6e/0xe0
[  349.062367][T11302]  ? __fget_files+0x2a/0x420
[  349.062387][T11302]  ? __fget_files+0x3a6/0x420
[  349.062418][T11302]  __sys_sendmmsg+0x282/0x4e0
[  349.062447][T11302]  ? __pfx___sys_sendmmsg+0x10/0x10
[  349.062479][T11302]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  349.062519][T11302]  ? ksys_write+0x248/0x270
[  349.062546][T11302]  ? __pfx_ksys_write+0x10/0x10
[  349.062576][T11302]  __x64_sys_sendmmsg+0xa0/0xc0
[  349.062606][T11302]  do_syscall_64+0x14d/0xf80
[  349.062627][T11302]  ? trace_irq_disable+0x3b/0x150
[  349.062646][T11302]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  349.062664][T11302]  ? clear_bhb_loop+0x40/0x90
[  349.062686][T11302]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  349.062702][T11302] RIP: 0033:0x7ff59082c799
[  349.062719][T11302] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  349.062735][T11302] RSP: 002b:00007ff58ea86028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  349.062756][T11302] RAX: ffffffffffffffda RBX: 00007ff590aa5fa0 RCX: 00007ff59082c799
[  349.062770][T11302] RDX: 0000000000000001 RSI: 000020000000fc40 RDI: 0000000000000003
[  349.062782][T11302] RBP: 00007ff58ea86090 R08: 0000000000000000 R09: 0000000000000000
[  349.062794][T11302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  349.062804][T11302] R13: 00007ff590aa6038 R14: 00007ff590aa5fa0 R15: 00007ffe0fbf95d8
[  349.062834][T11302]  </TASK>
[  349.375708][T11310] netlink: 7 bytes leftover after parsing attributes in process `syz.3.2108'.
[  349.900248][   T60] Bluetooth: hci2: command 0x0406 tx timeout
[  350.060282][ T5810] Bluetooth: hci6: Opcode 0x0c03 failed: -110
[  350.149672][T11343] FAULT_INJECTION: forcing a failure.
[  350.149672][T11343] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  350.149705][T11343] CPU: 0 UID: 0 PID: 11343 Comm: syz.6.2119 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  350.149726][T11343] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  350.149737][T11343] Call Trace:
[  350.149746][T11343]  <TASK>
[  350.149755][T11343]  dump_stack_lvl+0xe8/0x150
[  350.149785][T11343]  should_fail_ex+0x46b/0x600
[  350.149811][T11343]  _copy_from_user+0x2d/0xb0
[  350.149835][T11343]  __sys_bpf+0x229/0x950
[  350.149859][T11343]  ? __pfx___sys_bpf+0x10/0x10
[  350.149877][T11343]  ? rt_mutex_slowunlock+0x1cb/0x300
[  350.149911][T11343]  ? ksys_write+0x248/0x270
[  350.149938][T11343]  ? __pfx_ksys_write+0x10/0x10
[  350.149969][T11343]  __x64_sys_bpf+0x7c/0x90
[  350.149990][T11343]  do_syscall_64+0x14d/0xf80
[  350.150015][T11343]  ? trace_irq_disable+0x3b/0x150
[  350.150035][T11343]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  350.150054][T11343]  ? clear_bhb_loop+0x40/0x90
[  350.150076][T11343]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  350.150094][T11343] RIP: 0033:0x7fcbe51fc799
[  350.150112][T11343] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  350.150126][T11343] RSP: 002b:00007fcbe3456028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  350.150143][T11343] RAX: ffffffffffffffda RBX: 00007fcbe5475fa0 RCX: 00007fcbe51fc799
[  350.150156][T11343] RDX: 0000000000000050 RSI: 00002000000003c0 RDI: 000000000000000a
[  350.150167][T11343] RBP: 00007fcbe3456090 R08: 0000000000000000 R09: 0000000000000000
[  350.150177][T11343] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  350.150188][T11343] R13: 00007fcbe5476038 R14: 00007fcbe5475fa0 R15: 00007ffc53f58e48
[  350.150215][T11343]  </TASK>
[  350.583608][T11352] Driver unsupported XDP return value 0 on prog  (id 68) dev N/A, expect packet loss!
[  352.256655][   T37] kauditd_printk_skb: 88 callbacks suppressed
[  352.256674][   T37] audit: type=1326 audit(1772939966.895:1153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11422 comm="syz.1.2155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f939323c799 code=0x7ffc0000
[  352.256718][   T37] audit: type=1326 audit(1772939966.895:1154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11422 comm="syz.1.2155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f939323c799 code=0x7ffc0000
[  352.299696][   T37] audit: type=1326 audit(1772939966.935:1155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11422 comm="syz.1.2155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f939323c799 code=0x7ffc0000
[  352.300930][   T37] audit: type=1326 audit(1772939966.935:1156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11422 comm="syz.1.2155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f939323c799 code=0x7ffc0000
[  352.301835][   T37] audit: type=1326 audit(1772939966.945:1157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11422 comm="syz.1.2155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f939323c799 code=0x7ffc0000
[  352.301876][   T37] audit: type=1326 audit(1772939966.945:1158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11422 comm="syz.1.2155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f939323c799 code=0x7ffc0000
[  352.307054][   T37] audit: type=1326 audit(1772939966.945:1159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11422 comm="syz.1.2155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f939323c799 code=0x7ffc0000
[  352.307099][   T37] audit: type=1326 audit(1772939966.945:1160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11422 comm="syz.1.2155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f939323c799 code=0x7ffc0000
[  352.307137][   T37] audit: type=1326 audit(1772939966.945:1161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11422 comm="syz.1.2155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f939323c799 code=0x7ffc0000
[  352.307172][   T37] audit: type=1326 audit(1772939966.945:1162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11422 comm="syz.1.2155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f939323c799 code=0x7ffc0000
[  352.336807][T11425] netlink: 84 bytes leftover after parsing attributes in process `syz.1.2155'.
[  352.336837][T11425] netlink: 84 bytes leftover after parsing attributes in process `syz.1.2155'.
[  352.337821][T11425] A link change request failed with some changes committed already. Interface ip_vti0 may have been left with an inconsistent configuration, please check.
[  352.550532][   T10] usb 5-1: new high-speed USB device number 35 using dummy_hcd
[  352.632048][ T5906] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  352.680353][   T10] usb 5-1: device descriptor read/64, error -71
[  352.794164][ T5906] usb 2-1: Using ep0 maxpacket: 16
[  352.805946][ T5906] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  352.805974][ T5906] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  352.805996][ T5906] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 256
[  352.808324][ T5906] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  352.808349][ T5906] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  352.808367][ T5906] usb 2-1: SerialNumber: syz
[  352.863836][T11425] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22
[  352.869147][ T5906] cdc_acm 2-1:1.0: skipping garbage
[  352.870066][ T5906] cdc_acm 2-1:1.0: probe with driver cdc_acm failed with error -12
[  352.920321][   T10] usb 5-1: new high-speed USB device number 36 using dummy_hcd
[  352.968833][T11438] FAULT_INJECTION: forcing a failure.
[  352.968833][T11438] name failslab, interval 1, probability 0, space 0, times 0
[  352.968867][T11438] CPU: 1 UID: 0 PID: 11438 Comm: syz.6.2162 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  352.968888][T11438] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  352.968899][T11438] Call Trace:
[  352.968908][T11438]  <TASK>
[  352.968916][T11438]  dump_stack_lvl+0xe8/0x150
[  352.969259][T11438]  should_fail_ex+0x46b/0x600
[  352.969373][T11438]  should_failslab+0xa8/0x100
[  352.969448][T11438]  __kmalloc_cache_noprof+0x84/0x690
[  352.969536][T11438]  ? alloc_pipe_info+0xe8/0x4d0
[  352.969654][T11438]  alloc_pipe_info+0xe8/0x4d0
[  352.969681][T11438]  splice_direct_to_actor+0xa19/0xc80
[  352.969775][T11438]  ? __pfx_direct_splice_actor+0x10/0x10
[  352.969796][T11438]  ? get_pid_task+0x20/0x1f0
[  352.969832][T11438]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  352.969851][T11438]  ? __lock_acquire+0x6b5/0x2cf0
[  352.969879][T11438]  do_splice_direct+0x19b/0x2a0
[  352.969900][T11438]  ? __pfx_do_splice_direct+0x10/0x10
[  352.969915][T11438]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  352.969931][T11438]  ? rw_verify_area+0x25b/0x4e0
[  352.969971][T11438]  do_sendfile+0x547/0x7e0
[  352.969982][T11438]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  352.970079][T11438]  ? __pfx_do_sendfile+0x10/0x10
[  352.970115][T11438]  __se_sys_sendfile64+0x144/0x1a0
[  352.970135][T11438]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  352.970167][T11438]  do_syscall_64+0x14d/0xf80
[  352.970223][T11438]  ? trace_irq_disable+0x3b/0x150
[  352.970254][T11438]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  352.970285][T11438]  ? clear_bhb_loop+0x40/0x90
[  352.970306][T11438]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  352.970324][T11438] RIP: 0033:0x7fcbe51fc799
[  352.970364][T11438] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  352.970374][T11438] RSP: 002b:00007fcbe3456028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  352.970414][T11438] RAX: ffffffffffffffda RBX: 00007fcbe5475fa0 RCX: 00007fcbe51fc799
[  352.970421][T11438] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004
[  352.970428][T11438] RBP: 00007fcbe3456090 R08: 0000000000000000 R09: 0000000000000000
[  352.970434][T11438] R10: 000000000000d029 R11: 0000000000000246 R12: 0000000000000001
[  352.970441][T11438] R13: 00007fcbe5476038 R14: 00007fcbe5475fa0 R15: 00007ffc53f58e48
[  352.970457][T11438]  </TASK>
[  353.190223][   T10] usb 5-1: device descriptor read/64, error -71
[  353.301142][   T10] usb usb5-port1: attempt power cycle
[  353.567372][T11454] FAULT_INJECTION: forcing a failure.
[  353.567372][T11454] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  353.567406][T11454] CPU: 0 UID: 0 PID: 11454 Comm: syz.6.2169 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  353.567427][T11454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  353.567438][T11454] Call Trace:
[  353.567446][T11454]  <TASK>
[  353.567454][T11454]  dump_stack_lvl+0xe8/0x150
[  353.567485][T11454]  should_fail_ex+0x46b/0x600
[  353.567511][T11454]  _copy_from_user+0x2d/0xb0
[  353.567658][T11454]  __sys_bpf+0x229/0x950
[  353.567699][T11454]  ? __pfx___sys_bpf+0x10/0x10
[  353.567717][T11454]  ? rt_mutex_slowunlock+0x1cb/0x300
[  353.567753][T11454]  ? ksys_write+0x248/0x270
[  353.567780][T11454]  ? __pfx_ksys_write+0x10/0x10
[  353.567809][T11454]  __x64_sys_bpf+0x7c/0x90
[  353.567830][T11454]  do_syscall_64+0x14d/0xf80
[  353.567852][T11454]  ? trace_irq_disable+0x3b/0x150
[  353.567872][T11454]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  353.567889][T11454]  ? clear_bhb_loop+0x40/0x90
[  353.567909][T11454]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  353.567925][T11454] RIP: 0033:0x7fcbe51fc799
[  353.567942][T11454] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  353.567959][T11454] RSP: 002b:00007fcbe3456028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  353.567979][T11454] RAX: ffffffffffffffda RBX: 00007fcbe5475fa0 RCX: 00007fcbe51fc799
[  353.567993][T11454] RDX: 0000000000000020 RSI: 0000200000000200 RDI: 0000000000000008
[  353.568004][T11454] RBP: 00007fcbe3456090 R08: 0000000000000000 R09: 0000000000000000
[  353.568015][T11454] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  353.568026][T11454] R13: 00007fcbe5476038 R14: 00007fcbe5475fa0 R15: 00007ffc53f58e48
[  353.568056][T11454]  </TASK>
[  353.670236][   T10] usb 5-1: new high-speed USB device number 37 using dummy_hcd
[  353.716686][   T10] usb 5-1: device descriptor read/8, error -71
[  353.842751][ T5851] usb 2-1: USB disconnect, device number 18
[  353.950264][   T10] usb 5-1: new high-speed USB device number 38 using dummy_hcd
[  353.972938][   T10] usb 5-1: device descriptor read/8, error -71
[  354.030601][ T5906] usb 6-1: new full-speed USB device number 28 using dummy_hcd
[  354.081272][   T10] usb usb5-port1: unable to enumerate USB device
[  354.183128][ T5906] usb 6-1: config 201 has an invalid interface number: 249 but max is 0
[  354.183157][ T5906] usb 6-1: config 201 has an invalid descriptor of length 0, skipping remainder of the config
[  354.183176][ T5906] usb 6-1: config 201 has no interface number 0
[  354.183219][ T5906] usb 6-1: config 201 interface 249 altsetting 4 has an endpoint descriptor with address 0xF1, changing to 0x81
[  354.183251][ T5906] usb 6-1: config 201 interface 249 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  354.183276][ T5906] usb 6-1: config 201 interface 249 altsetting 4 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  354.183301][ T5906] usb 6-1: config 201 interface 249 has no altsetting 0
[  354.188164][ T5906] usb 6-1: New USB device found, idVendor=04da, idProduct=390d, bcdDevice=fa.df
[  354.188193][ T5906] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  354.188212][ T5906] usb 6-1: Product: syz
[  354.188225][ T5906] usb 6-1: Manufacturer: syz
[  354.188246][ T5906] usb 6-1: SerialNumber: syz
[  354.345992][T11472] FAULT_INJECTION: forcing a failure.
[  354.345992][T11472] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  354.346076][T11472] CPU: 1 UID: 0 PID: 11472 Comm: syz.6.2177 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  354.346098][T11472] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  354.346110][T11472] Call Trace:
[  354.346118][T11472]  <TASK>
[  354.346127][T11472]  dump_stack_lvl+0xe8/0x150
[  354.346159][T11472]  should_fail_ex+0x46b/0x600
[  354.346188][T11472]  _copy_from_user+0x2d/0xb0
[  354.346211][T11472]  __sys_bpf+0x229/0x950
[  354.346253][T11472]  ? __pfx___sys_bpf+0x10/0x10
[  354.346272][T11472]  ? rt_mutex_slowunlock+0x1cb/0x300
[  354.346308][T11472]  ? ksys_write+0x248/0x270
[  354.346336][T11472]  ? __pfx_ksys_write+0x10/0x10
[  354.346367][T11472]  __x64_sys_bpf+0x7c/0x90
[  354.346388][T11472]  do_syscall_64+0x14d/0xf80
[  354.346411][T11472]  ? trace_irq_disable+0x3b/0x150
[  354.346431][T11472]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  354.346450][T11472]  ? clear_bhb_loop+0x40/0x90
[  354.346470][T11472]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  354.346488][T11472] RIP: 0033:0x7fcbe51fc799
[  354.346506][T11472] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  354.346522][T11472] RSP: 002b:00007fcbe3456028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  354.346543][T11472] RAX: ffffffffffffffda RBX: 00007fcbe5475fa0 RCX: 00007fcbe51fc799
[  354.346557][T11472] RDX: 0000000000000048 RSI: 0000200000000600 RDI: 000000000000000a
[  354.346569][T11472] RBP: 00007fcbe3456090 R08: 0000000000000000 R09: 0000000000000000
[  354.346581][T11472] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  354.346593][T11472] R13: 00007fcbe5476038 R14: 00007fcbe5475fa0 R15: 00007ffc53f58e48
[  354.346623][T11472]  </TASK>
[  354.521284][ T5906] ath6kl: Failed to submit usb control message: -71
[  354.521332][ T5906] ath6kl: unable to send the bmi data to the device: -71
[  354.521345][ T5906] ath6kl: Unable to send get target info: -71
[  354.522303][ T5906] ath6kl: Failed to init ath6kl core: -71
[  354.523360][ T5906] ath6kl_usb 6-1:201.249: probe with driver ath6kl_usb failed with error -71
[  354.537930][ T5906] usb 6-1: USB disconnect, device number 28
[  355.138802][T11499] serio: Serial port ptm0
[  355.286401][T11505] FAULT_INJECTION: forcing a failure.
[  355.286401][T11505] name failslab, interval 1, probability 0, space 0, times 0
[  355.286434][T11505] CPU: 1 UID: 0 PID: 11505 Comm: syz.6.2191 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  355.286455][T11505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  355.286467][T11505] Call Trace:
[  355.286475][T11505]  <TASK>
[  355.286483][T11505]  dump_stack_lvl+0xe8/0x150
[  355.286523][T11505]  should_fail_ex+0x46b/0x600
[  355.286549][T11505]  should_failslab+0xa8/0x100
[  355.286571][T11505]  __kmalloc_noprof+0xdf/0x7b0
[  355.286596][T11505]  ? sock_kmalloc+0xd6/0x160
[  355.286760][T11505]  ? __local_bh_enable+0x1e1/0x2f0
[  355.286804][T11505]  sock_kmalloc+0xd6/0x160
[  355.286831][T11505]  af_alg_alloc_areq+0x99/0x200
[  355.286926][T11505]  skcipher_recvmsg+0x332/0x1140
[  355.286969][T11505]  ? __pfx_skcipher_recvmsg+0x10/0x10
[  355.286991][T11505]  ? is_bpf_text_address+0x26/0x2b0
[  355.287018][T11505]  ? kernel_text_address+0xa5/0xe0
[  355.287038][T11505]  ? bpf_lsm_socket_recvmsg+0x9/0x20
[  355.287121][T11505]  ? security_socket_recvmsg+0x7e/0x2c0
[  355.287215][T11505]  ? __pfx_skcipher_recvmsg+0x10/0x10
[  355.287240][T11505]  sock_recvmsg+0x172/0x1b0
[  355.287290][T11505]  sock_read_iter+0x25a/0x330
[  355.287313][T11505]  ? __pfx_sock_read_iter+0x10/0x10
[  355.287353][T11505]  do_iter_readv_writev+0x62b/0x8d0
[  355.287383][T11505]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  355.287418][T11505]  ? rw_verify_area+0x2ac/0x4e0
[  355.287446][T11505]  vfs_readv+0x292/0x850
[  355.287474][T11505]  ? __pfx_vfs_readv+0x10/0x10
[  355.287515][T11505]  ? __fget_files+0x2a/0x420
[  355.287646][T11505]  ? __fget_files+0x3a6/0x420
[  355.287666][T11505]  ? __fget_files+0x2a/0x420
[  355.287695][T11505]  do_readv+0x15a/0x2e0
[  355.287718][T11505]  ? __pfx_do_readv+0x10/0x10
[  355.287749][T11505]  do_syscall_64+0x14d/0xf80
[  355.287772][T11505]  ? trace_irq_disable+0x3b/0x150
[  355.287793][T11505]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  355.287812][T11505]  ? clear_bhb_loop+0x40/0x90
[  355.287835][T11505]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  355.287853][T11505] RIP: 0033:0x7fcbe51fc799
[  355.287871][T11505] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  355.287887][T11505] RSP: 002b:00007fcbe3456028 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[  355.287909][T11505] RAX: ffffffffffffffda RBX: 00007fcbe5475fa0 RCX: 00007fcbe51fc799
[  355.287923][T11505] RDX: 0000000000000002 RSI: 0000200000001b80 RDI: 0000000000000004
[  355.287935][T11505] RBP: 00007fcbe3456090 R08: 0000000000000000 R09: 0000000000000000
[  355.287947][T11505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  355.287958][T11505] R13: 00007fcbe5476038 R14: 00007fcbe5475fa0 R15: 00007ffc53f58e48
[  355.287988][T11505]  </TASK>
[  356.079627][T11536] FAULT_INJECTION: forcing a failure.
[  356.079627][T11536] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  356.079658][T11536] CPU: 0 UID: 0 PID: 11536 Comm: syz.4.2201 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  356.079679][T11536] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  356.079690][T11536] Call Trace:
[  356.079699][T11536]  <TASK>
[  356.079708][T11536]  dump_stack_lvl+0xe8/0x150
[  356.079738][T11536]  should_fail_ex+0x46b/0x600
[  356.079764][T11536]  _copy_to_user+0x31/0xb0
[  356.079789][T11536]  simple_read_from_buffer+0xe1/0x170
[  356.079927][T11536]  proc_fail_nth_read+0x1be/0x230
[  356.080011][T11536]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  356.080040][T11536]  ? rw_verify_area+0x2ac/0x4e0
[  356.080062][T11536]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  356.080083][T11536]  vfs_read+0x212/0xa80
[  356.080116][T11536]  ? __pfx_vfs_read+0x10/0x10
[  356.080139][T11536]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  356.080164][T11536]  ? lockdep_hardirqs_on+0x7a/0x110
[  356.080222][T11536]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  356.080243][T11536]  ? mutex_lock_nested+0x152/0x1d0
[  356.080258][T11536]  ? fdget_pos+0x252/0x320
[  356.080285][T11536]  ksys_read+0x156/0x270
[  356.080308][T11536]  ? __pfx_ksys_read+0x10/0x10
[  356.080342][T11536]  do_syscall_64+0x14d/0xf80
[  356.080363][T11536]  ? trace_irq_disable+0x3b/0x150
[  356.080384][T11536]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  356.080401][T11536]  ? clear_bhb_loop+0x40/0x90
[  356.080422][T11536]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  356.080440][T11536] RIP: 0033:0x7ff5907ecfce
[  356.080458][T11536] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  356.080474][T11536] RSP: 002b:00007ff58ea43fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  356.080494][T11536] RAX: ffffffffffffffda RBX: 00007ff58ea446c0 RCX: 00007ff5907ecfce
[  356.080508][T11536] RDX: 000000000000000f RSI: 00007ff58ea440a0 RDI: 0000000000000007
[  356.080519][T11536] RBP: 00007ff58ea44090 R08: 0000000000000000 R09: 0000000000000000
[  356.080538][T11536] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  356.080551][T11536] R13: 00007ff590aa6218 R14: 00007ff590aa6180 R15: 00007ffe0fbf95d8
[  356.080581][T11536]  </TASK>
[  356.567838][T11544] serio: Serial port ptm0
[  357.253932][   T38] INFO: task syz.0.603:7767 blocked for more than 143 seconds.
[  357.253955][   T38]       Not tainted syzkaller #0
[  357.253966][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  357.253975][   T38] task:syz.0.603       state:D stack:22656 pid:7767  tgid:7722  ppid:5798   task_flags:0x400140 flags:0x00080002
[  357.254025][   T38] Call Trace:
[  357.254031][   T38]  <TASK>
[  357.254045][   T38]  __schedule+0x1553/0x5240
[  357.254098][   T38]  ? __pfx___schedule+0x10/0x10
[  357.254135][   T38]  rt_mutex_schedule+0x76/0xf0
[  357.254182][   T38]  rt_mutex_slowlock_block+0x508/0x680
[  357.254216][   T38]  ? rt_mutex_slowlock_block+0x2e9/0x680
[  357.254238][   T38]  rt_mutex_slowlock+0x2dc/0x7b0
[  357.254261][   T38]  ? rt_mutex_slowlock+0x1fd/0x7b0
[  357.254282][   T38]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[  357.254320][   T38]  ? bdev_open+0xe0/0xcc0
[  357.254399][   T38]  ? bdev_open+0xe0/0xcc0
[  357.254415][   T38]  mutex_lock_nested+0x168/0x1d0
[  357.254440][   T38]  bdev_open+0xe0/0xcc0
[  357.254468][   T38]  blkdev_open+0x485/0x620
[  357.254493][   T38]  ? __pfx_blkdev_open+0x10/0x10
[  357.254512][   T38]  do_dentry_open+0x83d/0x13e0
[  357.254545][   T38]  vfs_open+0x3b/0x350
[  357.254562][   T38]  ? path_openat+0x2e2b/0x38a0
[  357.254622][   T38]  path_openat+0x2e43/0x38a0
[  357.254677][   T38]  ? __pfx_path_openat+0x10/0x10
[  357.254702][   T38]  ? __lock_acquire+0x6b5/0x2cf0
[  357.254723][   T38]  ? kmem_cache_alloc_noprof+0x33b/0x680
[  357.254756][   T38]  ? do_raw_spin_lock+0x12b/0x2f0
[  357.254790][   T38]  do_file_open+0x23e/0x4a0
[  357.254812][   T38]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  357.254847][   T38]  ? __pfx_do_file_open+0x10/0x10
[  357.254868][   T38]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  357.254909][   T38]  ? alloc_fd+0x64e/0x6c0
[  357.254941][   T38]  do_sys_openat2+0x113/0x200
[  357.254962][   T38]  ? __se_sys_futex+0x3a8/0x450
[  357.254993][   T38]  ? __pfx_do_sys_openat2+0x10/0x10
[  357.255021][   T38]  ? rcu_is_watching+0x15/0xb0
[  357.255052][   T38]  __x64_sys_openat+0x138/0x170
[  357.255079][   T38]  do_syscall_64+0x14d/0xf80
[  357.255102][   T38]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  357.255122][   T38]  ? clear_bhb_loop+0x40/0x90
[  357.255144][   T38]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  357.255163][   T38] RIP: 0033:0x7f856b68cfce
[  357.255179][   T38] RSP: 002b:00007f85694c0b28 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  357.255196][   T38] RAX: ffffffffffffffda RBX: 00007f85694c16c0 RCX: 00007f856b68cfce
[  357.255210][   T38] RDX: 0000000000000200 RSI: 00007f85694c0c00 RDI: ffffffffffffff9c
[  357.255222][   T38] RBP: 00007f85694c0c00 R08: 0000000000000000 R09: 0000000000000000
[  357.255232][   T38] R10: 0000000000000000 R11: 0000000000000246 R12: cccccccccccccccd
[  357.255243][   T38] R13: 00007f856b946308 R14: 00007f856b946270 R15: 00007ffc262c5998
[  357.255274][   T38]  </TASK>
[  357.255307][   T38] 
[  357.255307][   T38] Showing all locks held in the system:
[  357.255318][   T38] 1 lock held by khungtaskd/38:
[  357.255329][   T38]  #0: ffffffff8ddcd780 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[  357.255411][   T38] 2 locks held by kworker/u8:18/4558:
[  357.255458][   T38]  #0: ffff888019c44138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9ea/0x1830
[  357.255507][   T38]  #1: ffffc900105c7c40 (connector_reaper_work){+.+.}-{0:0}, at: process_scheduled_works+0xa25/0x1830
[  357.255555][   T38] 2 locks held by udevd/5169:
[  357.255567][   T38] 2 locks held by getty/5554:
[  357.255577][   T38]  #0: ffff8880377a70a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  357.255672][   T38]  #1: ffffc90003e832e0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x462/0x13c0
[  357.255752][   T38] 1 lock held by udevd/5929:
[  357.255763][   T38]  #0: ffff8880268c94c8 (&disk->open_mutex){+.+.}-{4:4}, at: bdev_open+0xe0/0xcc0
[  357.255805][   T38] 2 locks held by udevd/5944:
[  357.255818][   T38] 1 lock held by syz.0.603/7767:
[  357.255828][   T38]  #0: ffff8880268c94c8 (&disk->open_mutex){+.+.}-{4:4}, at: bdev_open+0xe0/0xcc0
[  357.255877][   T38] 1 lock held by napi/wg1-0/10939:
[  357.255888][   T38] 4 locks held by syz.1.2197/11516:
[  357.255898][   T38] 2 locks held by syz.4.2201/11534:
[  357.255909][   T38]  #0: ffffffff8f14d780 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x4f7/0x730
[  357.256007][   T38]  #1: ffffffff8f15bf38 (rtnl_mutex){+.+.}-{4:4}, at: ip_tunnel_init_net+0x2d7/0x840
[  357.256097][   T38] 4 locks held by syz.3.2203/11535:
[  357.256107][   T38] 
[  357.256111][   T38] =============================================
[  357.256111][   T38] 
[  357.256124][   T38] NMI backtrace for cpu 1
[  357.256134][   T38] CPU: 1 UID: 0 PID: 38 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  357.256148][   T38] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  357.256156][   T38] Call Trace:
[  357.256162][   T38]  <TASK>
[  357.256167][   T38]  dump_stack_lvl+0xe8/0x150
[  357.256193][   T38]  nmi_cpu_backtrace+0x274/0x2d0
[  357.256244][   T38]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  357.256274][   T38]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[  357.256295][   T38]  sys_info+0x135/0x170
[  357.256343][   T38]  watchdog+0xfd9/0x1030
[  357.256369][   T38]  ? watchdog+0x21a/0x1030
[  357.256396][   T38]  kthread+0x388/0x470
[  357.256415][   T38]  ? __pfx_watchdog+0x10/0x10
[  357.256434][   T38]  ? __pfx_kthread+0x10/0x10
[  357.256453][   T38]  ret_from_fork+0x51e/0xb90
[  357.256486][   T38]  ? __pfx_ret_from_fork+0x10/0x10
[  357.256506][   T38]  ? __switch_to+0xc7d/0x1450
[  357.256541][   T38]  ? __pfx_kthread+0x10/0x10
[  357.256559][   T38]  ret_from_fork_asm+0x1a/0x30
[  357.256589][   T38]  </TASK>
[  357.256596][   T38] Sending NMI from CPU 1 to CPUs 0:
[  357.256625][    C0] NMI backtrace for cpu 0
[  357.256640][    C0] CPU: 0 UID: 0 PID: 11535 Comm: syz.3.2203 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  357.256659][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  357.256669][    C0] RIP: 0010:unwind_next_frame+0xca1/0x23c0
[  357.256688][    C0] Code: 00 00 48 0f bf 02 49 01 c4 48 8d 5e 01 48 8b 44 24 40 0f b6 04 28 84 c0 0f 85 68 11 00 00 49 89 df 49 c1 ef 03 41 0f b6 04 2f <84> c0 0f 85 78 11 00 00 0f b6 76 01 83 e6 07 83 fe 04 0f 84 4e 04
[  357.256702][    C0] RSP: 0000:ffffc9000d9570b8 EFLAGS: 00000a02
[  357.256716][    C0] RAX: 0000000000000000 RBX: ffffffff900433f9 RCX: ffffffff8f89e1c8
[  357.256728][    C0] RDX: ffffffff900433f4 RSI: ffffffff900433f8 RDI: ffffffff8ba64da0
[  357.256740][    C0] RBP: dffffc0000000000 R08: 0000000000000001 R09: ffffffff8ddcd780
[  357.256750][    C0] R10: ffffc9000d9571d8 R11: ffffffff81af6240 R12: ffffc9000d957588
[  357.256762][    C0] R13: ffffc9000d9571d8 R14: ffffc9000d957188 R15: 1ffffffff200867f
[  357.256774][    C0] FS:  00007f994ea1d6c0(0000) GS:ffff88812633d000(0000) knlGS:0000000000000000
[  357.256788][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  357.256799][    C0] CR2: 00007fcbe5477dac CR3: 0000000050dc0000 CR4: 00000000003526f0
[  357.256813][    C0] Call Trace:
[  357.256819][    C0]  <TASK>
[  357.256829][    C0]  ? unwind_next_frame+0xa5/0x23c0
[  357.256845][    C0]  ? kfree+0x1c1/0x6c0
[  357.256863][    C0]  ? kfree+0x1c1/0x6c0
[  357.256881][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  357.256901][    C0]  arch_stack_walk+0x11b/0x150
[  357.256919][    C0]  ? kfree+0x1c1/0x6c0
[  357.256938][    C0]  stack_trace_save+0xa9/0x100
[  357.256956][    C0]  ? __pfx_stack_trace_save+0x10/0x10
[  357.256975][    C0]  ? inet6_fill_ifla6_attrs+0x126b/0x2610
[  357.257056][    C0]  kasan_save_track+0x3e/0x80
[  357.257103][    C0]  ? kasan_save_track+0x3e/0x80
[  357.257120][    C0]  ? kasan_save_free_info+0x46/0x50
[  357.257137][    C0]  ? __kasan_slab_free+0x5c/0x80
[  357.257155][    C0]  ? kfree+0x1c1/0x6c0
[  357.257194][    C0]  kasan_save_free_info+0x46/0x50
[  357.257210][    C0]  __kasan_slab_free+0x5c/0x80
[  357.257230][    C0]  kfree+0x1c1/0x6c0
[  357.257248][    C0]  ? skb_release_data+0x6f0/0x940
[  357.257270][    C0]  skb_release_data+0x6f0/0x940
[  357.257293][    C0]  __kfree_skb+0x5d/0x210
[  357.257312][    C0]  netlink_broadcast_filtered+0xede/0x1010
[  357.257383][    C0]  ? __pfx_netlink_broadcast_filtered+0x10/0x10
[  357.257403][    C0]  nlmsg_notify+0xf0/0x1a0
[  357.257422][    C0]  register_netdevice+0x1969/0x1d10
[  357.257552][    C0]  ? __pfx_register_netdevice+0x10/0x10
[  357.257571][    C0]  ? alloc_netdev_mqs+0xc96/0x11b0
[  357.257588][    C0]  ? alloc_netdev_mqs+0xe37/0x11b0
[  357.257602][    C0]  ? __ip_tunnel_create+0x3bb/0x560
[  357.257623][    C0]  __ip_tunnel_create+0x3e8/0x560
[  357.257642][    C0]  ? __pfx___ip_tunnel_create+0x10/0x10
[  357.257661][    C0]  ? mutex_lock_nested+0x168/0x1d0
[  357.257677][    C0]  ? ip_tunnel_init_net+0x2d7/0x840
[  357.257696][    C0]  ip_tunnel_init_net+0x2e7/0x840
[  357.257717][    C0]  ? __pfx_ip_tunnel_init_net+0x10/0x10
[  357.257738][    C0]  ? __kmalloc_noprof+0x408/0x7b0
[  357.257760][    C0]  ops_init+0x35c/0x5c0
[  357.257782][    C0]  setup_net+0x118/0x340
[  357.257800][    C0]  ? __pfx_setup_net+0x10/0x10
[  357.257816][    C0]  ? mutex_rt_init_lockdep+0x66/0x80
[  357.257835][    C0]  ? preinit_net+0x4a0/0x7a0
[  357.257852][    C0]  copy_net_ns+0x50e/0x730
[  357.257871][    C0]  create_new_namespaces+0x3e7/0x6a0
[  357.257892][    C0]  ? security_capable+0x7e/0x2c0
[  357.257941][    C0]  unshare_nsproxy_namespaces+0x11a/0x160
[  357.257962][    C0]  ksys_unshare+0x51d/0x930
[  357.257981][    C0]  ? __pfx_ksys_unshare+0x10/0x10
[  357.257995][    C0]  ? rcu_is_watching+0x15/0xb0
[  357.258016][    C0]  __x64_sys_unshare+0x38/0x50
[  357.258030][    C0]  do_syscall_64+0x14d/0xf80
[  357.258049][    C0]  ? trace_irq_disable+0x3b/0x150
[  357.258066][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  357.258081][    C0]  ? clear_bhb_loop+0x40/0x90
[  357.258098][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  357.258113][    C0] RIP: 0033:0x7f99507ec799
[  357.258128][    C0] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  357.258141][    C0] RSP: 002b:00007f994ea1d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  357.258157][    C0] RAX: ffffffffffffffda RBX: 00007f9950a66090 RCX: 00007f99507ec799
[  357.258168][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000006a040000
[  357.258178][    C0] RBP: 00007f9950882bd9 R08: 0000000000000000 R09: 0000000000000000
[  357.258188][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  357.258198][    C0] R13: 00007f9950a66128 R14: 00007f9950a66090 R15: 00007ffe16e0bca8
[  357.258217][    C0]  </TASK>
[  357.258630][   T38] Kernel panic - not syncing: hung_task: blocked tasks
[  357.258646][   T38] CPU: 1 UID: 0 PID: 38 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  357.258666][   T38] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  357.258677][   T38] Call Trace:
[  357.258685][   T38]  <TASK>
[  357.258692][   T38]  vpanic+0x56c/0xa60
[  357.258721][   T38]  ? __pfx_vpanic+0x10/0x10
[  357.258752][   T38]  panic+0xc5/0xd0
[  357.258775][   T38]  ? __pfx_panic+0x10/0x10
[  357.258798][   T38]  ? printk_trigger_flush+0x117/0x180
[  357.258822][   T38]  ? lockdep_hardirqs_on+0x7a/0x110
[  357.258859][   T38]  ? nmi_trigger_cpumask_backtrace+0x234/0x300
[  357.258883][   T38]  watchdog+0x1023/0x1030
[  357.258910][   T38]  ? watchdog+0x21a/0x1030
[  357.258938][   T38]  kthread+0x388/0x470
[  357.258957][   T38]  ? __pfx_watchdog+0x10/0x10
[  357.258976][   T38]  ? __pfx_kthread+0x10/0x10
[  357.258996][   T38]  ret_from_fork+0x51e/0xb90
[  357.259023][   T38]  ? __pfx_ret_from_fork+0x10/0x10
[  357.259045][   T38]  ? __switch_to+0xc7d/0x1450
[  357.259070][   T38]  ? __pfx_kthread+0x10/0x10
[  357.259090][   T38]  ret_from_fork_asm+0x1a/0x30
[  357.259123][   T38]  </TASK>
[  357.259412][   T38] Kernel Offset: disabled