last executing test programs:

1m55.478898301s ago: executing program 2 (id=231):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x6a)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x4)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000200)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r1, &(0x7f0000000c40), 0x12)

1m55.400727313s ago: executing program 2 (id=232):
r0 = openat(0xffffffffffffff9c, 0x0, 0x40, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', 0x0, 0x0, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f00000021c0)={0x2020}, 0x2020)
r1 = getpid()
syz_pidfd_open(r1, 0x0)
mq_open(&(0x7f00005a1ffb)='eth0\x00', 0x42, 0x0, 0x0)
syz_open_dev$dri(&(0x7f0000000080), 0x8004, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x20)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x94, 0x30, 0x1, 0x0, 0x25dfdbfb, {}, [{0x80, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x7, 0x2, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x38, 0x1, 0x0, 0x0, {{0x8}, {0x10, 0x2, 0x0, 0x1, [@TCA_IFE_DMAC={0xa, 0x3, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}]}, {0xfffffffffffffebe}, {0xc}, {0xc}}}]}]}, 0x94}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0a00000004000000080000000b00000002000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00'}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
creat(&(0x7f0000000400)='./bus\x00', 0x0)
lsetxattr$security_ima(&(0x7f0000000280)='./bus\x00', &(0x7f0000000180), &(0x7f0000000440)=ANY=[@ANYBLOB], 0x2, 0x1)
mkdirat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040e04f74120"], 0x7)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x2000, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')

1m54.513209183s ago: executing program 2 (id=239):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x6, 0x4, &(0x7f0000000900)=ANY=[@ANYBLOB="18020000000000000000000000000000850000002300000095"], &(0x7f0000000040)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r2=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r1, r2, 0x25, 0x0, @val=@iter={0x0}}, 0x40)
syz_emit_ethernet(0x2e, &(0x7f0000000140)=ANY=[], 0x0)
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
pipe2$9p(&(0x7f0000000140)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000000001c000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
r6 = dup(r4)
connect$unix(r6, &(0x7f0000000400)=@file={0x0, './file0\x00'}, 0x6e)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[{@msize={'msize', 0x3d, 0x1000}}], [], 0x6b}})
ioctl$sock_TIOCINQ(0xffffffffffffffff, 0x541b, 0x0)

1m54.325126304s ago: executing program 2 (id=244):
r0 = socket$netlink(0x10, 0x3, 0x0)
writev(r0, &(0x7f00000003c0)=[{0x0}], 0x1)

1m54.32456921s ago: executing program 2 (id=246):
mount$9p_fd(0x0, 0x0, 0x0, 0x2214000, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno'])
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01080000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000004000)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r1, 0x18000000000002a0, 0xe80, 0x6000, &(0x7f0000000640)="b9ff03076844268cb89e14f088f747e0ffff200000002021000aac141440e0", 0x0, 0x11, 0x60000000, 0xf0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x48)

1m54.240210548s ago: executing program 2 (id=247):
r0 = open(&(0x7f0000000100)='./file0\x00', 0x80ff, 0x36)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdirat(r0, &(0x7f0000000100)='./file1\x00', 0xa0)
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000100)='autofs\x00', 0x0, &(0x7f0000000400))
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0x9362, 0x0)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000240)='mounts\x00')
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
wait4(0x0, &(0x7f0000000140), 0x4, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002240), 0x0, &(0x7f00000021c0)=ANY=[@ANYRES32=r2, @ANYRESHEX=r2, @ANYBLOB='\x00'/17, @ANYRESDEC=0x0, @ANYRESDEC=r3])
read$FUSE(r3, &(0x7f0000004200)={0x2020, 0x0, <r5=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000000040)={0x50, 0x0, r5, {0x7, 0x1f, 0x1, 0x10408, 0x100, 0x0, 0x0, 0x200000}}, 0x50)
r6 = openat$cuse(0xffffffffffffff9c, &(0x7f0000002180), 0x2, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
r7 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r7}, 0x2c, {'wfdno', 0x3d, r7}})
read$FUSE(r6, &(0x7f0000000140)={0x2020, 0x0, <r8=>0x0}, 0x2020)
write$FUSE_DIRENT(r6, &(0x7f0000002580)=ANY=[@ANYBLOB="e0010000", @ANYRES64=r8], 0x1e0)
syz_fuse_handle_req(r1, &(0x7f0000006340)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)={0x20, 0xfffffffffffffffe, 0x0, {0x0, 0x8}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r1, 0x0, 0x0, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x80101, 0x0)
write$tcp_congestion(r9, &(0x7f00000000c0)='lp\x00', 0xfffffdef)
dup2(r9, r1)
add_key(&(0x7f0000000000)='.request_key_auth\x00', 0x0, 0x0, 0x0, 0x0)
openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)

1m41.440110719s ago: executing program 0 (id=318):
r0 = socket(0x2, 0x80805, 0x0)
lsetxattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=ANY=[@ANYBLOB="73697300656d2e215e2a01007d00"], &(0x7f0000000140)='//.&\x00', 0x5, 0x1)
sendmmsg$inet_sctp(r0, &(0x7f0000000dc0)=[{&(0x7f00000001c0)=@in6={0xa, 0x4e22, 0xffff, @mcast2, 0x80}, 0x1c, &(0x7f00000004c0)=[{&(0x7f0000000100)="03", 0x1}], 0x1}, {&(0x7f0000000180)=@in={0x2, 0x4e20, @private=0xa010101}, 0x10, &(0x7f0000000280)=[{&(0x7f0000000240)="a69392f7933b1f737e0311793c4019adc51f8e24f4", 0x15}], 0x1, 0x0, 0x0, 0x44800}, {&(0x7f00000002c0)=@in6={0xa, 0x4e24, 0x8, @empty, 0x6}, 0x1c, &(0x7f0000000800)=[{&(0x7f0000000300)="c3d2b5eded3cb0e1948272af1f07222a5bcd23dc7415c0ed187a4c75879617c3a83953afcbe27c8c86e04bc79770d18cfdf38aa81aeb11bfc0adacfc427485e271228d3551c320290180b5825e2214f245c25b470293713290293a29239431f4c532ee8a0c2be9531d3d390cb5f7e178fe3da9f839dd2d2ecc0e28499ef9ea8f5f7d9fe8cbb093eba2158b7b8e8699097fa85f6cbf4857cb618e7a71efc3c1f9fbce717b71242bdd2855530f989cde5d158a9958fbe7d6e0fa5ab0973a3725a64a4837530acabff82dea59ab4a75d05770b78e07c852075f6a6fafd6e5b4b9", 0xdf}, {&(0x7f0000000400)="0c611e8f5ec20db6ad2757cdbf87707ab8c5175a8faa479b7afcdea0d1eb6237d883b9b3e6b013a7024b72a6b723a8784d5c23ea3d", 0xffffffffffffff12}, {&(0x7f0000000500)="a156d562d037a52bca1e063f2b3e9e71f5cfc33e43603cc46b687a6503096a8f3f77f1e57ca8567c0f81316895cb78c9534d1414ea949805b329eb6bd4e9f848391ed87ccca1087f3fb473dcf15bb0621efb96d76e27e90710875dff83b0d09b36d8a93b5c1eabeb14e4f28464cb764310b3e14e721f77c2be114f9c6ed54a8bf9830d25c3a9e1811cc596608d7dd1f98ed9d55c8b", 0x95}, {&(0x7f0000000440)="40176efb8fd493cd222d821b059a96891de08d8f1580910e6c72d742372d5872861588380e3081fca377c6d11086f16d3b9f23d452", 0x35}, {&(0x7f0000000480)="99405528aefb0b97e66fb5326150efb23e9ac495e56b2e5c755600faea7e61a0f57464", 0x23}, {&(0x7f00000005c0)="5f758092bf26d825e35a98506c2d86d9cc0d4a6203b67d350f0fb514d5d9744974e54478e326ce4f32364dea9ad7dc7caf7644f195ce424a33a77d29921f502f6e066ffebc3fa0ed75d876c2fc55f4ad674ef3a1669b4c686c6bf75926faa7276e2b5bb4ca34ca0ad5fcd7a591ae9b17603cb6dc6ada8b09911b63ce487bc7591235942fcf03442578223f52286731e34204f810d470c56f56ff0e58a62218096b3cc91e5907921ea70b23b16e075050232abf4c43574ead12ccd9d824639404d73f8157bebbbee18fb9580a6cc2d296aaf75a51c61b24b0460c7831fd60da8f", 0xe0}, {&(0x7f00000006c0)="fbe87aa0b33c8b9588041621aaca7d135794e1108aa542c2d636a2f2fbf6c7b4713dd6dbe4d8113730ac890d562897c88b5d7f1e060f3c06e2c63d84f7905b1513b40a15e8a4bee69bc88fa42c7f8146630742e8dc05df5da5b7595e4cf6673c5c4b25798ae6ada45cc9630bb367468929b2a3efb4957823e869b4799c26b4aa168ba31720fe0dc1cdbcf7324c53394962f4f572687bcbcc9be3d50fd8dbcba531416de4f599d09354b4c5231ed622b6c69765cfbceecc70536712fcc9e9f62ee47ca85abeb7901ee6d472c42088aaf13cfb4a634381c506b989", 0xda}, {&(0x7f00000007c0)="5833b11d4bc6071e4949a4831381813ff0ec2473db238634249f6d3959dee249586908aaed34f16e3b40908557c109bb104b17705b76f772adca", 0x3a}], 0x8, 0x0, 0x0, 0x8084}, {&(0x7f0000000840)=@in6={0xa, 0x4e20, 0x1ff, @mcast2, 0xffffffff}, 0x1c, &(0x7f0000000d40)=[{&(0x7f0000000880)="6bb0a002b3b4ccb3d6c37664ccfb38e807b8260b3dff3bc4778ab0c465f0fc966892d88e4479213b9cc58ca86bbd3c5735a3da2adb2208c2d5436b28e7d9494f8ac9d30f2dc99016f08d46a97016adcd09d92630b42297a63040a73198b12c89c245a49fc9b56672bf51be4e20bc3bff83b8179d16fa257404f591244620730537524594648f6da95bc06317dd97947fc911c629afea44e17b9a324be45fbc70c5553940596a986824f38e760e0f1cf7d7d0993aac17edfedadb9475841bf4771f48ff57", 0xc4}, {&(0x7f0000000980)="a08ac2254e507add1bb3a4486d499836a86fcb74f8da6a7078ee949e7ed07cd27135e02a879f56d8d9a1d1c87030a194a7864014c9056a66fdbf33e6264a4ff0d24479615c2200736ce81bf7ac7be4b12d8e65f3c73fc7e3b288baf4b1a0c60352e621552dd7bd84dda6f2381a511ab0c42e98bb535ddcfb1332197cec620cce91d02c6c02f17337c86e90d910150f8fcd9ae71ea2", 0x95}, {&(0x7f0000000a40)="b8e2f17de41650ea264a5dc02878fbb96f729f4b84fc6f6dc0d00c48268b7c0860780d9ec54173c3897fb75cd8ae6fd217f5ece7bdb84df82123f7e617c1f3233896e90fd4eb7ca63b14c8ed6c954654b2e22ed0040df44e6e77fccf5a1b3f518adccd6a69ce01cbb321f9b2b62c4ab25947db36cbc7b759a89c54ab1b7c34f68575715cd88c306da96c90541fea1665bbdb311664858906ae9f70395d39bca29fe1c01a1115b4b41629c53000ee79468a83f358859484a8cfb58ed1cb65cdeea85d5757373d013c73364a", 0xcb}, {&(0x7f0000000b40)="b0235aaafb67bf150aab9359430160c25910a893494a018a950cec01b71ccffc9fdd4d6a9f0cc170727eb14835f41bb04238a2790e938cc4e2c36591104cea9df76bd27009fdbbe3511461b1fa212518749121014a2e8ffd1daa0a865db5b3e4c8d43e0453387ae7493599cdeae044b2f8be5de0c9fb14864863e9af69a1572e6fc02c11bd19c4f68223d77cbbf9861ec2cf17f787cd99ba74670ec0364bef17563fd542f46a8164f375d0a8b31df8d79f50eaab8c6f9b5a3561b468006b89b211b4bf973b9b0bc2d012e9449fdb387fa6872b1015726fce1df22aa22ee6", 0xde}, {&(0x7f0000000c40)="b47a6f7afbc62903b28ff2bd3ab41be2f065d2824bbc772a253391dbdc224543e8a14da5c5a1d073a9ac3eab4350a94f2911ee4879373be77ce17483cba1b79b32b2795bb97aa21f3d922d15812239629d9c8150c657", 0x56}, {&(0x7f0000000cc0)="c32aaa92171b23ae21be70ba0e71760f52ca84d88cb281aaf48d65ba9d81e7a3fa830728f8e29d5238143a657fa9aee2d8a242b11390dfdb0658803f9a86b5db06c539ed", 0x44}], 0x6, &(0x7f0000000d80)=[@prinfo={0x14, 0x84, 0x5, {0x10, 0xd}}], 0x14, 0x40001}], 0x4, 0x4000000)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
shutdown(r1, 0x0)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000100)={0x0, 0x10, &(0x7f0000000300)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000080)=0x10)
socket$nl_route(0x10, 0x3, 0x0)
sendmmsg$inet_sctp(r0, &(0x7f00000032c0)=[{&(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000200)=[{&(0x7f0000000100)='a', 0x1}], 0x1f, &(0x7f0000000000)=ANY=[@ANYBLOB="2c0000008400000001000000000000000c"], 0x2c}], 0x1, 0x0)

1m41.439573229s ago: executing program 0 (id=319):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.swap.events\x00', 0x26e1, 0x0)
openat$binfmt_format(0xffffff9c, &(0x7f0000000040)='/proc/sys/fs/binfmt_misc/syz2\x00', 0x2, 0x0)
syz_open_dev$swradio(&(0x7f0000000080), 0x0, 0x2) (async)
r1 = syz_open_dev$swradio(&(0x7f0000000080), 0x0, 0x2)
ioctl$VIDIOC_S_FMT(r1, 0xc0d05605, &(0x7f0000000200)={0xc, @vbi={0x0, 0x800000, 0xfffffffd, 0x3136564e, [0x0, 0xa803], [0x0, 0x1], 0x1}})
r2 = syz_open_dev$ptys(0xc, 0x3, 0x0)
close(r2) (async)
close(r2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0))
ioctl$SIOCSIFHWADDR(r0, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', @random='\x00\x00#\f!\x00'})

1m41.360442122s ago: executing program 0 (id=320):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000000)={0x8}, 0x9)
write(r0, &(0x7f00000000c0)="240000001e005f0214f6fffffffffff807000000000000a6ff000000080009000d000000", 0x24)

1m41.359746855s ago: executing program 0 (id=321):
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000001c0), 0x100, 0x0)
ioctl$SNDCTL_SEQ_OUTOFBAND(r0, 0x40085112, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r2=>0x0})
getsockopt$IP_SET_OP_GET_FNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x8, 0x7, 0x0, 'syz2\x00'}, &(0x7f0000000240)=0x2c)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001440)={0x1c, r3, 0x1, 0x0, 0x0, {{0x8}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdir(&(0x7f0000000100)='./file1\x00', 0x10b)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f00005f5000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000005c0)=ANY=[@ANYBLOB="020320001300000000000000000000000400030000000000000000000000000000000000000000010000000000000000030006000000000002004e207f00000100000000000000000400040000000000feffffffffffffff0000000000000000000000000000000002000100000000000000000000000000030005000000000002004e21ffffffff000013153d410000010018006a09008f"], 0x98}}, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r5 = open(&(0x7f0000000440)='./file0\x00', 0x84242, 0x1df2a23c5997fa5e)
read$FUSE(r5, 0x0, 0x0)
r6 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x2002)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
modify_ldt$write(0x1, &(0x7f0000000140)={0x7, 0xffffffffffffffff, 0x2000, 0x1, 0x2, 0x0, 0x0, 0x0, 0x1, 0x1}, 0x10)
syz_clone(0x62000000, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$EVIOCGRAB(r6, 0x40044590, &(0x7f0000000080)=0xfffffffb)
ioctl$SNDCTL_MIDI_INFO(r0, 0xc074510c, &(0x7f0000000100)={"60f8cac1aee1b53545a098540fb2c85fd4d3d142d87bf7bdfc2809e002fe", 0x10000, 0xfffffffb, 0x7fbfffff, [0xffffffff, 0x2, 0xa5e0, 0x20b30, 0x3, 0x7, 0xc, 0x7, 0xe4f3, 0xd, 0x8, 0x400, 0x5, 0x200006, 0x100000, 0x200fff, 0x3, 0x57c0]})
ioctl$EVIOCGRAB(r6, 0x40044590, &(0x7f00000000c0)=0x7)

1m41.100514929s ago: executing program 0 (id=323):
r0 = syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0xa382)
sendfile(r0, r0, 0x0, 0x8000)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000001c0)={0x0, {}, 0x0, {}, 0x40000004, 0x0, 0xb, 0x0, "28f5c9ea1f1ae4be4111ab18d2da69bde58cd7af40fd150b70aac11c2e16bd5bba7663c435aff94793ddd7aae07ef33f86bf01933bdb6fd7ecdd91b59ca8d541", "78042a8bde94000000008d030000004f07b84819ffdf4a0400", [0x7fffffff, 0x7]})
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_mtu(r1, 0x29, 0x4e, &(0x7f0000000400)=0x2, 0x4)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}, 0x1c)
ioctl$LOOP_CHANGE_FD(r0, 0x4c06, r0)
r2 = open$dir(&(0x7f0000000000)='./file0\x00', 0x400003, 0x21)
unlinkat(r2, &(0x7f00000000c0)='./file0\x00', 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff})
mount(&(0x7f0000000100)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='qnx4\x00', 0x100040, &(0x7f00000001c0)='wlan1\x00')
r4 = openat2$dir(0xffffff9c, &(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)={0x0, 0x1, 0x54}, 0x18)
r5 = syz_open_dev$video4linux(&(0x7f0000000080), 0x0, 0x0)
r6 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r6, 0x0, 0x482, &(0x7f0000000040)={0x84, @multicast2, 0x4e20, 0x3, 'sh\x00', 0x1, 0x4, 0x6d}, 0x2c)
sendmsg$BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)={0x24, 0x0, 0x1, 0x70bd28, 0x1, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}]}, 0x24}}, 0x80)
read$FUSE(0xffffffffffffffff, &(0x7f0000001840)={0x2020, 0x0, 0x0, <r7=>0x0}, 0x2020)
quotactl_fd$Q_SETINFO(0xffffffffffffffff, 0xffffffff80000600, r7, &(0x7f00000003c0)={0xbfe, 0x4, 0x0, 0x7})
r8 = socket$inet_sctp(0x2, 0x1, 0x84)
r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r9, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r10 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r10, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
write$tun(r9, &(0x7f00000017c0)={@val={0x8, 0x800}, @val={0x7, 0x0, 0x0, 0x0, 0x14}, @ipv4=@udp={{0x6, 0x4, 0x3, 0x1b, 0x8016, 0x66, 0x0, 0x40, 0x11, 0x0, @private=0xa010102, @dev={0xac, 0x14, 0x14, 0x1a}, {[@timestamp={0x44, 0x4, 0x1c, 0x0, 0x6}]}}, {0x4e20, 0x4e22, 0x4e, 0x0, @wg=@data={0x4, 0x2, 0x8, "e8771ac366586e56f446dcd22ec94c672f1cd650516a2fbeddd0cb5cffc4ef63a1c2be9551171e48bb8559ac9077c099289048d76df4"}}}}, 0xfdef)
setsockopt$IP_VS_SO_SET_ADDDEST(r8, 0x0, 0x487, &(0x7f0000000000)={{0x84, @rand_addr=0x64010100, 0x4e20, 0x3, 'lc\x00', 0x8, 0x323b, 0x55}, {@remote, 0x4e23, 0x2000, 0x0, 0x12d5c, 0x12d5c}}, 0x44)
setsockopt$IP_VS_SO_SET_FLUSH(r6, 0x0, 0x485, 0x0, 0x0)
ioctl$VIDIOC_SUBSCRIBE_EVENT(r5, 0x4020565a, &(0x7f00000000c0)={0x3, 0x980900, 0x3})
ioctl$VIDIOC_QUERYMENU(r5, 0xc008561c, &(0x7f0000000000)={0x980900, 0x7, @value=0x2})
name_to_handle_at(r4, &(0x7f0000000300)='./file0\x00', &(0x7f0000000340)=@reiserfs_2={0x8, 0x2, {0x1, 0x6}}, &(0x7f0000000380), 0x1400)
ioctl$sock_inet_SIOCSIFFLAGS(r3, 0x8923, &(0x7f0000000040)={'wlan1\x00', 0x118})

1m41.000356084s ago: executing program 0 (id=324):
r0 = socket$key(0xf, 0x3, 0x2)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, 0x0)
sendmsg$key(r0, &(0x7f0000000440)={0x500, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x18}, 0x19}, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
syz_usb_connect$cdc_ncm(0x3, 0x0, 0x0, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/ip_tables_targets\x00')
preadv(r1, &(0x7f00000003c0)=[{&(0x7f00000002c0)=""/66, 0x42}], 0x1, 0x85, 0xa)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e21, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x3}, @in6={0xa, 0x4e23, 0x23, @mcast1, 0x9}], 0x38)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$bt_BT_RCVMTU(r1, 0x112, 0xd, &(0x7f0000000100)=0x2, 0x2)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000340)=ANY=[@ANYRES16=r1], 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0xc000)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[], 0x78}}, 0x0)
write$bt_hci(r2, &(0x7f0000000680)=ANY=[], 0xe)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r5, 0xc008ae88, &(0x7f0000000080)=ANY=[@ANYBLOB="010000000000000001000040"])
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'xfrm0\x00', <r6=>0x0})
r7 = socket$packet(0x11, 0x3, 0x300)
sendto$packet(r7, &(0x7f00000018c0)="4096def2334cb00e13e727bc80145a0a3f6ce123", 0x14, 0x800, &(0x7f0000000240)={0x3a, 0x0, r6, 0x1, 0x8, 0x6, @local}, 0x14)
sendmsg$nl_crypto(0xffffffffffffffff, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="e00000001500000029bd7000000000006469676573745f6e756c6c2d67656e65726963000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000001100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000002400"/224], 0xe0}}, 0x0)
sendmsg$nl_crypto(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="f0000000120003"], 0xf0}}, 0x0)
ioctl$sock_SIOCBRDELBR(0xffffffffffffffff, 0x89a1, &(0x7f0000000000)='virt_wifi0\x00')
syz_emit_vhci(&(0x7f0000002640)=ANY=[@ANYBLOB="043e1a0d011a0001ffffffffffff7f010a048d450ad1aaaaaaaaaa65e9"], 0x1d)
ioprio_get$uid(0x0, 0x0)

1m40.918434203s ago: executing program 32 (id=324):
r0 = socket$key(0xf, 0x3, 0x2)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, 0x0)
sendmsg$key(r0, &(0x7f0000000440)={0x500, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x18}, 0x19}, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
syz_usb_connect$cdc_ncm(0x3, 0x0, 0x0, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/ip_tables_targets\x00')
preadv(r1, &(0x7f00000003c0)=[{&(0x7f00000002c0)=""/66, 0x42}], 0x1, 0x85, 0xa)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e21, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x3}, @in6={0xa, 0x4e23, 0x23, @mcast1, 0x9}], 0x38)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$bt_BT_RCVMTU(r1, 0x112, 0xd, &(0x7f0000000100)=0x2, 0x2)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000340)=ANY=[@ANYRES16=r1], 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0xc000)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[], 0x78}}, 0x0)
write$bt_hci(r2, &(0x7f0000000680)=ANY=[], 0xe)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r5, 0xc008ae88, &(0x7f0000000080)=ANY=[@ANYBLOB="010000000000000001000040"])
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'xfrm0\x00', <r6=>0x0})
r7 = socket$packet(0x11, 0x3, 0x300)
sendto$packet(r7, &(0x7f00000018c0)="4096def2334cb00e13e727bc80145a0a3f6ce123", 0x14, 0x800, &(0x7f0000000240)={0x3a, 0x0, r6, 0x1, 0x8, 0x6, @local}, 0x14)
sendmsg$nl_crypto(0xffffffffffffffff, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="e00000001500000029bd7000000000006469676573745f6e756c6c2d67656e65726963000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000001100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000002400"/224], 0xe0}}, 0x0)
sendmsg$nl_crypto(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="f0000000120003"], 0xf0}}, 0x0)
ioctl$sock_SIOCBRDELBR(0xffffffffffffffff, 0x89a1, &(0x7f0000000000)='virt_wifi0\x00')
syz_emit_vhci(&(0x7f0000002640)=ANY=[@ANYBLOB="043e1a0d011a0001ffffffffffff7f010a048d450ad1aaaaaaaaaa65e9"], 0x1d)
ioprio_get$uid(0x0, 0x0)

1m39.220316286s ago: executing program 33 (id=247):
r0 = open(&(0x7f0000000100)='./file0\x00', 0x80ff, 0x36)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdirat(r0, &(0x7f0000000100)='./file1\x00', 0xa0)
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000100)='autofs\x00', 0x0, &(0x7f0000000400))
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0x9362, 0x0)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000240)='mounts\x00')
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
wait4(0x0, &(0x7f0000000140), 0x4, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002240), 0x0, &(0x7f00000021c0)=ANY=[@ANYRES32=r2, @ANYRESHEX=r2, @ANYBLOB='\x00'/17, @ANYRESDEC=0x0, @ANYRESDEC=r3])
read$FUSE(r3, &(0x7f0000004200)={0x2020, 0x0, <r5=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000000040)={0x50, 0x0, r5, {0x7, 0x1f, 0x1, 0x10408, 0x100, 0x0, 0x0, 0x200000}}, 0x50)
r6 = openat$cuse(0xffffffffffffff9c, &(0x7f0000002180), 0x2, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
r7 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r7}, 0x2c, {'wfdno', 0x3d, r7}})
read$FUSE(r6, &(0x7f0000000140)={0x2020, 0x0, <r8=>0x0}, 0x2020)
write$FUSE_DIRENT(r6, &(0x7f0000002580)=ANY=[@ANYBLOB="e0010000", @ANYRES64=r8], 0x1e0)
syz_fuse_handle_req(r1, &(0x7f0000006340)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)={0x20, 0xfffffffffffffffe, 0x0, {0x0, 0x8}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r1, 0x0, 0x0, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x80101, 0x0)
write$tcp_congestion(r9, &(0x7f00000000c0)='lp\x00', 0xfffffdef)
dup2(r9, r1)
add_key(&(0x7f0000000000)='.request_key_auth\x00', 0x0, 0x0, 0x0, 0x0)
openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)

5.21975848s ago: executing program 1 (id=974):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000040)={0xa, 0x0, &(0x7f0000000340)={&(0x7f0000000180)={0x2, 0x2, 0x0, 0x2, 0xc, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x4e23, @rand_addr=0x64010101}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0xfb}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x44}}}, @sadb_key={0x1, 0x8}, @sadb_x_nat_t_type={0x1}]}, 0x60}, 0x1, 0x7}, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000001540)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000e12020207b1af8ff00000000bfa1000000"], &(0x7f0000000200)='GPL\x00', 0x1, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x10)
get_thread_area(0x0)

5.11966682s ago: executing program 1 (id=975):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYRESDEC=r0], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0x7, &(0x7f0000000300)=ANY=[@ANYRESOCT=r0, @ANYRES32=r2, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'lo\x00', <r6=>0x0})
r7 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r8, r7, 0x26, 0x0, 0x0, @void, @value}, 0x10)
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000280)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56561, 0x4, 0x0, {0x0, 0x0, 0x0, r6, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xfde3, 0x2, [@TCA_CAKE_BASE_RATE64={0xc, 0x2, 0x9}]}}]}, 0x40}}, 0x4040010)
r9 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r9, &(0x7f0000000340)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r9, 0x8)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000050cb5340450c10108e492940a80909021b00090000000009040002010035040009058dff86"], 0x0)
r10 = syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0xfec9}, &(0x7f0000000240)=<r11=>0x0, &(0x7f0000000280)=<r12=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r11, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r11, r12, &(0x7f00000002c0)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd, 0x6, {0x0, r4}, 0xfffffffe, 0x9, 0x1, {0x0, 0x0, r1}})
io_uring_enter(r10, 0xdb4, 0x0, 0x0, 0x0, 0x0)
r13 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
write$char_usb(r13, &(0x7f0000000080)='3', 0x1)
accept4(r9, 0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r9, 0x8933, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r3}, 0x10)
r14 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x28012, r14, 0x0)
r15 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB="00000000fdbd5602b42d00"/26, @ANYRES32=0x0, @ANYRES32=r14, @ANYBLOB="000000000500"/28], 0x50)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000200)={r15, 0x0, 0x0}, 0x20)
r16 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r16, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[@ANYBLOB="9400000010000104", @ANYRES32=0x0, @ANYBLOB="0000000000000000640012800b00010067656e657665000054000280050004000100000005000900000000000500090000000000050008"], 0x94}}, 0x0)

2.929365271s ago: executing program 3 (id=993):
socket$nl_generic(0x11, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$l2tp6(0xa, 0x2, 0x73)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$igmp(0x2, 0x3, 0x2)
socket$nl_route(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0xb)
pipe(&(0x7f0000000080))
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
socket$pppoe(0x18, 0x1, 0x0)
pipe(&(0x7f0000000040))
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000040)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000001400000008000a00fc00000018000180140002006e657464657673696d300000000000000800050000fcffff08000900fc000000080011000700000015000e00800000000800", @ANYRES32=r0], 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0)

2.719429578s ago: executing program 3 (id=995):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = dup(r2)
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="02000000000000030100000005000000000000000000000000000000760f00000000000000000000000000000000000007"])

2.609984093s ago: executing program 3 (id=999):
syz_usb_connect(0x0, 0x24, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0xf2, 0x30, 0x39, 0x20, 0x2c42, 0x1202, 0x8540, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0xc, 0x2, 0x0, 0xc1, 0x7f, 0xc}}]}}]}}, 0x0)
socket$packet(0x11, 0x3, 0x300)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_io_uring_setup(0x88b, &(0x7f00000002c0)={0x0, 0xaee4, 0x0, 0x3, 0xbfdffffc}, 0x0, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000340), 0x200000, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)}, {&(0x7f0000000100)="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", 0xff}, {&(0x7f0000001480)="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", 0xf01}], 0x3)

2.509570167s ago: executing program 5 (id=1001):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000018c0)={'bridge0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newlink={0x40, 0x10, 0x49920d862a92153b, 0x0, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, 0x41, 0x15001}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @gtp={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GTP_FD0={0x8}]}}}, @IFLA_MASTER={0x8, 0xa, r1}]}, 0x40}, 0x1, 0x10000000}, 0x2400c080)

2.3997103s ago: executing program 5 (id=1002):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
lseek(0xffffffffffffffff, 0xe, 0x1)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x2, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c30000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_emit_ethernet(0x482, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], 0x0)
ioctl$SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045011, 0x0)
openat$rtc(0xffffff9c, 0x0, 0x8103, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x0, @pix_mp={0x80000000, 0x9, 0x31363553, 0x0, 0xa, [{0x2, 0x5}, {0x6, 0x7f36}, {0x200, 0x70}, {0x3, 0xf}, {0xa, 0x100}, {0x6, 0x589}, {0x8, 0x7}, {0x10001, 0x8}], 0x10, 0x8, 0x2, 0x2, 0x3}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = openat$uinput(0xffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_SET_RELBIT(r0, 0x40045566, 0x4)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
openat$nmem0(0xffffff9c, &(0x7f0000000040), 0x101040, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102392, 0x18ff8)
socket$kcm(0x10, 0x2, 0x4)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
r2 = syz_open_dev$I2C(&(0x7f0000003000), 0x0, 0x0)
ioctl$I2C_SMBUS(r2, 0x720, &(0x7f0000003080)={0x1, 0x0, 0x6, &(0x7f0000003040)={0x0, "f4e1a230be8f46463fb1a5f1b44f44eaa65e485b747aa95df8c01eaf07677d18bc"}})
r3 = openat$hpet(0xffffffffffffff9c, 0x0, 0x400, 0x0)
mmap$KVM_VCPU(&(0x7f0000ffb000/0x4000)=nil, 0x930, 0x300000f, 0x12, r3, 0x0)
syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$phonet_pipe(0x23, 0x5, 0x2)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000aaf000/0x3000)=nil, 0x3000, 0x1, 0x0, 0x8001, 0x2)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r4, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000080)=[{&(0x7f0000000180)=""/140, 0x8c}], 0x1, 0x8001, 0x0)

1.749114945s ago: executing program 1 (id=1003):
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
io_uring_setup(0x7d9b, &(0x7f00000003c0)={0x0, 0xeb8d, 0x4, 0x0, 0xfffffffd})
set_mempolicy(0x6, &(0x7f00000003c0)=0x8000000000000001, 0xe0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19)
socket$netlink(0x10, 0x3, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, 0x0)
socket$key(0xf, 0x3, 0x2)
socket$inet6_mptcp(0xa, 0x1, 0x106)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
setsockopt$MRT6_INIT(r0, 0x29, 0xc8, &(0x7f00000000c0), 0x4)
r1 = dup(0xffffffffffffffff)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setresgid(0x0, 0xee00, 0x0)
syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
symlink(&(0x7f0000000880)='.\x00', &(0x7f00000008c0)='./file0\x00')
mount$nfs(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="1cb9632d6e7465d1aa1936"])
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207000902"], 0x10}}, 0x0)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r2, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@dev={0xfe, 0x80, '\x00', 0x4}, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, {}, 0x0, 0x0, 0x1}, {{@in6=@dev, 0x0, 0x33}, 0x0, @in=@private=0xa010100, 0x0, 0x0, 0x0, 0xb7, 0xffffffff}}, 0xe8)
sendmmsg(r2, &(0x7f0000007fc0), 0x800001d, 0x1c)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)

1.57975368s ago: executing program 4 (id=1006):
r0 = socket$inet6(0xa, 0x3, 0xff)
sendmsg$inet6(r0, &(0x7f0000000000)={&(0x7f00000000c0)={0xa, 0x0, 0x0, @dev}, 0x1c, 0x0, 0x0, 0x0, 0x20}, 0xb00)

1.520025481s ago: executing program 4 (id=1007):
sendmsg$NL80211_CMD_DEL_PMKSA(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x400c1)
r0 = socket$l2tp(0x2, 0x2, 0x73)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10)
syz_emit_ethernet(0x74, &(0x7f0000000000)={@link_local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x73, 0x0, @private=0x300, @multicast1}, {0x0, 0x0, 0xfffffe9a, 0x0, @gue={{0x2}}}}}}}, 0x0) (async)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r1)
sendmsg$NLBL_CIPSOV4_C_ADD(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000006040)={0x2c, r2, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_TAGLST={0x4}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0xffffffffffffffff}, @NLBL_CIPSOV4_A_MLSLVLLST={0x4}]}, 0x2c}}, 0x0) (async)
ioctl$sock_SIOCINQ(r0, 0x541b, 0x0)

1.508341635s ago: executing program 5 (id=1008):
openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
chdir(&(0x7f0000000080)='./file0\x00')
r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x8c01, 0x0)
write$snapshot(r0, 0x0, 0x1f)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000040)={0xffffffffffffffff, 0x1}, 0xc)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000200)={'#! ', './file0'}, 0xb)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r3=>0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$inet6_sctp(0xa, 0x5, 0x84)
sendmsg$can_bcm(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)={0x7, 0x412, 0x3528, {}, {0x0, 0xea60}, {0x1, 0x0, 0x1, 0x1}, 0x1, @can={{0x2, 0x0, 0x0, 0x1}, 0x1, 0x1, 0x0, 0x0, "b6298f246a045fca"}}, 0x34}, 0x1, 0x0, 0x0, 0x200048c0}, 0x48054)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
recvmsg(r5, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x20)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r7, &(0x7f0000001800)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYRES64=r3], 0x14}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x1e2)

1.429844106s ago: executing program 4 (id=1009):
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz1\x00', {0x3, 0x2, 0x1, 0xfffa}, 0x3a, [0x8000, 0xc95a, 0xf, 0x8, 0x83, 0x2, 0x3, 0x7f, 0xa9, 0x4d, 0x6, 0x5f, 0x9, 0x15, 0xffff2d37, 0xff7fff01, 0x6, 0x4640, 0x7, 0x5, 0x8006, 0x0, 0x7, 0x3c5b, 0x1, 0x1db, 0x10, 0x5, 0x0, 0xffffffff, 0xe661, 0x4, 0x7, 0x20003, 0x8, 0x4c74, 0x10000, 0x242, 0x3, 0x11, 0x4, 0x80008071, 0x7, 0x17, 0x1, 0x7, 0x5, 0x3e, 0x18e, 0x6, 0x6, 0x454f, 0x6, 0x4, 0x8, 0x3ff, 0x80, 0x0, 0x5, 0x6, 0x8, 0x8000, 0x1, 0x40], [0x10000007, 0x9, 0x8000012f, 0x8001, 0x5, 0xfffffff3, 0x129432f6, 0xc8, 0xf1, 0xe, 0x2bf, 0x6c7, 0x9, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0x66abcbd2, 0xea4, 0x0, 0x4, 0x7, 0x7fff, 0x6, 0x400, 0x401, 0x6, 0x1, 0xff, 0x5, 0xfffff575, 0x5f31, 0xd, 0x4e0, 0x381, 0x8, 0xb, 0x4, 0x9, 0x8, 0x5, 0x6, 0x47, 0x8, 0x1, 0xfe000000, 0x8, 0x2, 0x4, 0x9, 0x3, 0x3, 0x4000009, 0x6, 0x0, 0x3, 0xbc45, 0x48c93690, 0x42, 0x3], [0x4, 0x408, 0x4, 0x5, 0xfffffffd, 0x100, 0x4, 0x9, 0x5, 0x7fff, 0x0, 0x9, 0xb, 0x4, 0x33c9, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x8001, 0x3, 0x303c, 0xfffffffa, 0x8000000b, 0x5, 0x2, 0x2, 0x400003, 0x20000008, 0x4, 0x6d01, 0x6, 0x38, 0x800003, 0x200, 0x80, 0x3, 0x0, 0x2950bfaf, 0x1000, 0xa2, 0x4, 0xa9, 0x5, 0x0, 0xac8, 0xbf, 0x2, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0xa, 0xffffffff, 0x5, 0x1c, 0x120000, 0x807ff, 0x2006, 0x80a2ef, 0x1, 0x25], [0x9, 0xbb33, 0x7, 0x2, 0x5, 0x1938, 0x6, 0x6, 0x4, 0xb9, 0x0, 0x1ff, 0x2, 0x57, 0x5, 0x3, 0x2, 0x10000, 0x4, 0x7fff, 0xffff, 0xa620, 0x1, 0x5, 0x1, 0x2000002, 0x14c, 0x60a7, 0x106, 0x7, 0xffffffff, 0x80000000, 0x0, 0x5, 0xc8, 0x1, 0xfffff000, 0xffff, 0x3, 0x7e, 0x100, 0x9622, 0x107, 0xaf, 0x20000008, 0x5, 0x226, 0x2, 0x5, 0x0, 0x30b1d693, 0xa1f, 0xf40, 0x7, 0x530e, 0x6c1b, 0x0, 0x4, 0x5, 0x803, 0xd7, 0x200, 0xb, 0xfff]}, 0x45c)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r5, 0x4138ae84, &(0x7f0000000240)=@x86={0x7, 0xd, 0x18, 0x0, 0x100, 0xd, 0x8, 0x0, 0x40, 0x3, 0xc, 0xfd, 0x0, 0x3, 0xe, 0xd3, 0x9, 0x11, 0x33, '\x00', 0x3, 0x4})
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@arm64={0x7, 0xf, 0x9, '\x00', 0x9})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1.379834214s ago: executing program 3 (id=1010):
r0 = gettid()
timer_create(0x0, 0x0, &(0x7f0000000200)=<r1=>0x0)
timer_settime(r1, 0x1, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, &(0x7f00000002c0)) (async)
timer_settime(r1, 0x1, &(0x7f0000000080)={{0x77359400}, {0x0, 0x3938700}}, &(0x7f0000000180))
write$cgroup_pid(0xffffffffffffffff, &(0x7f00000000c0)=r0, 0x12) (async)
r2 = socket$nl_route(0x10, 0x3, 0x0) (async)
r3 = socket$netlink(0x10, 0x3, 0x0) (async)
r4 = socket(0x10, 0x2, 0x8)
sendmsg$nl_route_sched(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0, 0x24}}, 0x0) (async)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c0000001000850619fbb7c75150926b00000000", @ANYRES32=r5, @ANYBLOB="fe000000000000001c0012000c000100626f6e64000000000c0002000800010004"], 0x3c}}, 0x0) (async)
r6 = socket$nl_route(0x10, 0x3, 0x0) (async)
r7 = socket(0x1, 0x803, 0x0)
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="540000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002c0012800e0001006970366772657461700000001800028014000700fc00000000000000000000000000000008000a00", @ANYRES32=r8], 0x54}}, 0x0) (async)
r9 = socket(0x1, 0x803, 0x0)
getsockname$packet(r9, &(0x7f0000000100)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000007c0)=@newlink={0x50, 0x10, 0xf11, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x104}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14, 0x1, {{0x0, 0x0, 0x0, 0x0, 0x20, 0x20}}}}}}, @IFLA_MASTER={0x8, 0xa, r10}]}, 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

1.239686304s ago: executing program 3 (id=1011):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x181200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
io_submit(0x0, 0x3, &(0x7f00000003c0)=[0x0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x1}, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0, 0x1}])
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
userfaultfd(0x801)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x18)
socketpair(0x29, 0x2, 0x0, &(0x7f0000000a40))

1.11278511s ago: executing program 4 (id=1012):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
sendmmsg(r2, &(0x7f0000000900)=[{{0x0, 0x0, &(0x7f00000000c0)=[{0x0}], 0x1}}], 0x1, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r3)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000f40), r4)
sendmsg$IEEE802154_ADD_IFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x34, r5, 0x1, 0x7ffffc, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy0\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc}, @IEEE802154_ATTR_DEV_TYPE={0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x2000000}, 0x0)
sendmsg$IEEE802154_LLSEC_ADD_SECLEVEL(r3, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000440)={&(0x7f0000000540)={0x54, r5, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@IEEE802154_ATTR_LLSEC_CMD_FRAME_ID={0x5, 0x34, 0xe}, @IEEE802154_ATTR_LLSEC_SECLEVELS, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xffffffffffffff06, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x54}, 0x1, 0x0, 0x0, 0x20040080}, 0x0)

819.406284ms ago: executing program 1 (id=1013):
r0 = syz_clone(0x81000000, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x35f48f9e250dba0b, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0x2001, 0x0)
clock_adjtime(0x0, &(0x7f0000000000)={0xb, 0x86, 0xfffffffffffffffe, 0x9, 0x7, 0xfffffff8, 0x651, 0xfffffffffffffffc, 0x9657, 0x0, 0x7fffffff, 0x0, 0x4, 0xb, 0x80000000000000, 0xcc0, 0x1, 0x1, 0x94d6, 0x0, 0xfffffffd, 0x8, 0x8, 0x2, 0x3, 0x2000000000000})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[@ANYBLOB="4c000000100a00042200002b519bbb4ba7747a2e86f86b685a2df5c30426", @ANYRES32=0x0, @ANYBLOB="adffa888e1600000240012800b00010067656e6576650000140002800500080000000000060005004e200000"], 0x44}}, 0x2)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r5 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000400)='syz0\x00', 0x200002, 0x0)
r6 = openat$cgroup_ro(r5, &(0x7f0000000440)='freezer.state\x00', 0x275a, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000080050005000200000011000300686173683a69702c706f7274"], 0x4c}}, 0x2)
sendmsg$IPSET_CMD_ADD(r4, &(0x7f00000002c0)={0x0, 0x4001, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="500000000a06010200004e2200000000020000840900020073797a31000000000500010007000000280007800c00018008000140fffffff70500070084000000060004404e22000006000540"], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000580))
setsockopt$inet_sctp_SCTP_PR_SUPPORTED(r6, 0x84, 0x71, &(0x7f0000000600)={0x0, 0x3}, 0x8)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x56, 0x0, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000, 0x0, 0x0, &(0x7f0000000000), &(0x7f0000001c40)="beb61ec2ca90080239f2a54e2368fa761313c3a024a98109ba1e2e7b780d03c54b7a83d56fce397842e724674507d531762055fca371ea775f418df7bee236c9b9968146efb3232ae3413b617445e98bb644a892b9337f1a9135d9f30457a8ffb21aef4a95a155fab70a40b086056b0f63331a66b3457c", 0x2}, 0x2c)
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f00000001c0)='f2fs_lookup_start\x00', r6, 0x0, 0xfffffffffffffffc}, 0x18)
r8 = syz_open_procfs(0x0, &(0x7f0000000040)='maps\x00')
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0xc0686611, &(0x7f0000000180)={0x67, 0x0, 0x3f, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
r9 = syz_pidfd_open(r0, 0x0)
connect$inet(r8, &(0x7f0000000280)={0x2, 0x4e21, @broadcast}, 0x10)
setns(r9, 0x20000)

359.842991ms ago: executing program 5 (id=1014):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'hmac(sha1-avx2)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_NL_MEDIA_SET(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000280)={&(0x7f0000000480)={0x3c, r1, 0x4, 0x70bd27, 0x25dfdbfc, {}, [@TIPC_NLA_NET={0x28, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x7}, @TIPC_NLA_NET_NODEID_W1={0xc}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x401}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x80}, 0x200000c1)

289.62765ms ago: executing program 5 (id=1015):
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) (async, rerun: 64)
r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (rerun: 64)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/user\x00')
fchdir(r0) (async)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
readlink(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)=""/211, 0xd3)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000040)='./file0\x00', &(0x7f00000004c0), 0x80, 0x0) (async)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0) (async)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]}) (async, rerun: 32)
chdir(&(0x7f0000000280)='./file1\x00') (async, rerun: 32)
r1 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_add_memb(r2, 0x107, 0x1, 0x0, 0x0) (async)
syz_emit_ethernet(0x0, 0x0, 0x0) (async)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket$inet6_tcp(0xa, 0x1, 0x0) (async, rerun: 64)
openat$drirender128(0xffffff9c, 0x0, 0x0, 0x0) (rerun: 64)
ioctl$DRM_IOCTL_GEM_OPEN(r1, 0xc0106442, &(0x7f0000000180)) (async, rerun: 32)
bind$inet6(r4, &(0x7f0000000000)={0xa, 0x8000002, 0xfffffffd}, 0x1c) (async, rerun: 32)
sendto$inet6(r4, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback, 0xffffffff}, 0x1c)
sendto$inet6(r4, &(0x7f0000000080)='D', 0x1, 0x4014, 0x0, 0x0) (async)
shutdown(r4, 0x1) (async, rerun: 64)
splice(r4, 0x0, r3, 0x0, 0x400000107ffff000, 0x0) (async, rerun: 64)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, 0x0) (async)
r6 = openat$tun(0xffffffffffffff9c, 0x0, 0x8000, 0x0)
close(r6) (async)
socket$kcm(0x10, 0x2, 0x4)

263.956435ms ago: executing program 4 (id=1016):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xc, 0xf}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8001}, 0x20008850)
sendmsg$nl_route_sched(r1, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)=@newtfilter={0x38, 0x2c, 0xd27, 0x70bd28, 0x4000000, {0x0, 0x0, 0x0, r3, {0xf000, 0xffff}, {}, {0x7}}, [@filter_kind_options=@f_u32={{0x8}, {0xc, 0x2, [@TCA_U32_FLAGS={0x8}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x80}, 0xf000)

202.471881ms ago: executing program 5 (id=1017):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
lseek(0xffffffffffffffff, 0xe, 0x1)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x2, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c30000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_emit_ethernet(0x482, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], 0x0)
ioctl$SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045011, 0x0)
openat$rtc(0xffffff9c, 0x0, 0x8103, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x0, @pix_mp={0x80000000, 0x9, 0x31363553, 0x0, 0xa, [{0x2, 0x5}, {0x6, 0x7f36}, {0x200, 0x70}, {0x3, 0xf}, {0xa, 0x100}, {0x6, 0x589}, {0x8, 0x7}, {0x10001, 0x8}], 0x10, 0x8, 0x2, 0x2, 0x3}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = openat$uinput(0xffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_SET_RELBIT(r0, 0x40045566, 0x4)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
openat$nmem0(0xffffff9c, &(0x7f0000000040), 0x101040, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102392, 0x18ff8)
socket$kcm(0x10, 0x2, 0x4)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
r2 = syz_open_dev$I2C(&(0x7f0000003000), 0x0, 0x0)
ioctl$I2C_SMBUS(r2, 0x720, &(0x7f0000003080)={0x1, 0x0, 0x6, &(0x7f0000003040)={0x0, "f4e1a230be8f46463fb1a5f1b44f44eaa65e485b747aa95df8c01eaf07677d18bc"}})
r3 = openat$hpet(0xffffffffffffff9c, 0x0, 0x400, 0x0)
mmap$KVM_VCPU(&(0x7f0000ffb000/0x4000)=nil, 0x930, 0x300000f, 0x12, r3, 0x0)
syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$phonet_pipe(0x23, 0x5, 0x2)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000aaf000/0x3000)=nil, 0x3000, 0x1, 0x0, 0x8001, 0x2)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r4, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000080)=[{&(0x7f0000000180)=""/140, 0x8c}], 0x1, 0x8001, 0x0)

202.265033ms ago: executing program 4 (id=1018):
syz_usb_connect(0x0, 0x24, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0xf2, 0x30, 0x39, 0x20, 0x2c42, 0x1202, 0x8540, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0xc, 0x2, 0x0, 0xc1, 0x7f, 0xc}}]}}]}}, 0x0)
socket$packet(0x11, 0x3, 0x300)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_io_uring_setup(0x88b, &(0x7f00000002c0)={0x0, 0xaee4, 0x0, 0x3, 0xbfdffffc}, 0x0, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000340), 0x200000, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)}, {&(0x7f0000000100)="16000000246837f73199aee6fdb9291b3091ec1a2d41d227975ad8ec309d59191b00867997f9c0efa9c9092a31cdbb98ea272787afda0af59a320709c3a59ef05c6f40ceafec53f48d6186e7d8409e35306221caf67b370d875eff3191932728e5ab6c9a3acf6ccee3e352c898f5744abaedfb53f92c37acb126bd143f3e9cdfcf25a8d6129fcc3a141c3f5ab6db772f87c787817a9b699dd60732d952716b103bc1e91ac5b1ed92f35389580994bb0df9bce07e7a80921888f984139f488d256a67fec0cbb5c4e93d5c151d97f676ab93b1efbd46f600dc964231e3257bf358448fddf894c0cdfa9115adbe5b19bc912fcbc8aac7719b649b1ff1267491da", 0xff}, {&(0x7f0000001480)="d1ffacd516de50ac9d15bc75316da4defa1e72f65a65cdd26dcc389aacf7856da9aecf3765d4c032e1960faf25bad906b7d3440b6e71a82f1d8f8b8db35b6091f3af94c6b46b9ab10fe3923f268771078d2668be7bd3eb941d4bb5baa8547e36283a065ce5766cbff3a8fc37fc4507643d3786bbf231d3ed88cb8b01eab14e4372cf4f89bd1b853caa5d9f07f523b9dfa8cc09053ff36fde08e96fb6b3acc196b1bd1e2d3a6c65f585df7e2b8b17439a7ab29a7dfe642c2f0ac7a81eca8073b559663f2daf7a0832b2b09557794a21bf114831f8e6db3922d0cd169e5a8b4adc95d7322ee75944de15f57780b88fef7f3d9b256705ccfa2125b43ce8e3aacaead963cdd7f792f14c9b24493f9f830f6de8da93bbd4357095631adec14224dd9bb049e826f3a49624393e6a031103faff0902ba88ae30af4a61caa77ff956214196fcf3c5536d823284306f367afcb46fb43231911cc53091671e7d853ebf015241b18e9fb6ac6d9a7a1b05dfd6d9e56a51567cd8837dd045abf6b85550f0dd8dded43147ab9bfadc18b9984699d5d875cb21a95a7f584d8c466d033df75193f9ae58b85cfacc54f6c6e12a0debe40ee361a839563bc2cb64271672a55370c2b035b482074ce2487ef8a3bc1c68856e6e09539276d961a0c647f1ee3237496fc99623e8fd33faf7797d86a88dcee152d15e10739bcbbd6077b76867e291f350d999024c12faf81f83792f48f7f6dd66aa6854e460ef7f8c755f3a6dd76509ea0d2db39057a5129185b2fb11546cd5d6cc59f640e9028ae6c7075fba5e5b5593d7f79ec387833f465d09bde464112821eaec5e6e8f2aee8d7358f9c14afe2018856f610848706c71cda62493aef2e39efb71b4a8e804847eda66b2b5b1d75b478f19208ee1ac43afb2dbbba5dd0f29f6946022e09fb853cb176ca3474ba2fa67cb245fe85ec61a095d6fd9ac2ac5685920201617342fe56072427b9bd3626a1a371e67041fcda781be0c234d6feb5ad500e8bc7074381fd0d04983a4a6cdb6c8e03d59dc50925e9e4b24e6f8e455f02818959f2927f0a2d9ff62ec3c5c399077048f7d3dad0830b2e6563693f2f9d48eca8c34804a7626282a4a214d13786993c011a88194dbf7b23e25f592e62186c9fb565fac7632de356153c89a6be0b6b26ba48c2427424769fcbd7ee072ed4bd4d0731d06c8537d616b1145a6c70edb13fb4dba3565221b3a2897a23861cd0e8e0060021cdd7de002d5e785e5d6d3d07f4e445ada9c8d9ba8b819d0b5c7b5d15a5192d3a83c125c8e117c823a9e33316b8c9154e7330d3a865048dbd9c14757691bfe56f10423f6ab717bec5eebeac6ba9ad1aeb6cde09d7fda8e475a71ac48d46b8d9a40879c9dec2db5c4799e5fc8e8b3d419031c1033fce88ae2c93d7ca62c9302e6b45ca8dfebe5b92724f035e8e9d7704efb23f445999fe08cfa28404874d8acc8d37870d394d9fcc8dbe763bc85c37f0f3bcc2cbea420cd073db598e7d89c14a31e5bf57cbefa301427c93091505f1f3e5cdf712958b2e8fc56684d3388107c1728f0e5a3be2164246071653e256ed3bf3000c17301da9a5a3d9ca475867c4f311a24e5ae909a62047a9e6bb71cbcb4f159c2ef0f66b4d0f9da51aba99cd9448443dd277362af18d32f111c48a952ef555b2c7c58b997ce61e74cc7551b57eaffe411219baddf490926d8e260dcd87c069e617195c352950f9b51ce88c12c4f7997ba515f77e68d44f831cdf4d7ee8b1b7cedcb4c4fc7e85ba288c8555d49d5b4b9bb70dc4b688bd12e6b38e37150f3ea457a76b23d5abe6551ea598e090aed87822b0954b8db1a7c605c925b7f9240b0e7a020f292a1fd4a37c74139bc6e7ff08373ebfc8feea371ae0b6c61c715f6f1f4b0b994c7e2e129f87db959aae6ff48664d824b29ba9f255890f9c537178db9c5302097891557f8175a46f308b1a2530aa726ea9d4cfce76db50637369724d0c5f51c97edb58ff5eb9b2434b3721b61688ba12471b97c6a65ba085e15406568ac852590701f2ef8451c5cf1191d70f51eaea9ddc4cbdd7428f627db5069111f65062d5cc34581826af3e670613dda99e31c42736aabd87be56e214ed606862a152455f91891b7430bae03284569c234588f495a5ecc4a23fad6ba34e2ee9ebde8c7f5f62c9344659375c2a1fe6fa6e4ef68712223b9471c513bb11429dbb8a45463c8882f462275ee0da567c60c2d8038843e0c20486676e9978f2aec9187820c94a6e7e519d06daf2ab198f5cafcab4d9c90a479800906192d66a3301a34fa6c5a931cea0a479a4d98d86d9de3e061323504b57186dd33df7a16ccb688c0de203666cb0a6b543a9d069dded44a3b432cbb71da921dcab6be1c2d7494d3b07841d9b4f9d659b5d3d3b2ed916f91588d589128e4b2d4448e6aab5a8160eddca0f6e022abb85e251a11cd6bae57a09b2c434ab5bdf6264afb20d5ab022d152e345bd32ba9283aa5b3cd9118bd271a8ac9083c98b8a83064e65428f7ad7b35bf1d60d4e703f22d2d316fc12bd68bcced82cf0962a3d5769c6a3d75d59f7a7b76454661fd3574b8c8e26d20c372407854505ea6c2406fbd8a1ba7bb017c565228aa6d03d18ed309a308ffb1ecec73c246413e7c70f25070eafed9e70d22e9e8b44125c44eceff37e65bf073bc6fad1ea2b72675af4bf70586a8f7e0f35700de94c802522897576ed115fa21b3d23a367844520b33f5b9aedc0245096765f4cb3b2ff4e54f39bd7346c2347875d75a931b17c6c424ddb4767e0e63cc7725a8fc4b1dbe7929b2f909cc5be8b09e63330341e6471dcac0f8b44693d01805a1467b71612260e2a273861b3697440a5f75497796bffcf79d62a4a50a6ed5ef2efe8c83374f2ecd08d8d628aa03b01a11caeb2bdecc0ab2abcecfa15627979d7c3f9dec5389fc6625e957f8075e23e636dd5514596189d568e14d33ae518e6e9978c6a36a74b49fdbd1260095c9abe447e618878039b75e305b1d2c9ddeb9e5cedb11802e0833739d8595d57d749c890c9290cca4aa96e6718747543796a187e54a66c2f71beefddf911a7a74b59c48ba642d5ecd4d415f48dfbde5baac8a4ba063c1b985d9f9f3180e8a1c8b2cf6a25c2ff17688cc858ac8b9c67960f09a1ca5f28f8e877159e00fe7fb10cca73b391508895e7e52c22f9b38d73dabd6ff7c55ebf4e1611daee8d52b4ceee49a6df7daeb81bf9d1c943a74c03d3dda52c5b99f3225c1b87074f5cef6187878bc5b665ec0561adcc9781280dd1c6592555d327afea78b21beeeb66a0af3eab3249245f41cdbca309d3fba5d4b345319dd0a26134c0c896f2c8d32fda28600013f6a4c95b4038faba70d6c480b360c55bdc0595f7ca636e85521ba505d894f9c5f0a90719bc9944f386ad7491422ff12f34a3c048708d51305a8cc5b2a502ac1575a14c75e9fb7219ede2f6d9c1b362230b6189e0d8cd8ccd11fd0325182c6e46c9977bf63aa02f7024aeb4389f989f5733a198b45e4329c4c1a538a009f216ad3ac09cac39547b4fd21a5d7146ea307ad9b9339f39d5161d17b59860a0aed38cd89d1b68c6438346d51a3a283074e34ee01d2eca527b1b3836ccdf7e807007152c79d14324e3d887c9551a9447527db4434810f5b0b73d855f32a0c89aa784e43f4c1657d408dd33f88aeae1e5186bbcc2a348b708e3cec9080e12ee3676beb5ee86a9b5cc4a3496c242b95a248906ed62f984b22373bdfd97515441f34e01006d8d1244aa88403f207cd8820ffe07634fc86d00f871c1e4c9e8fc1a00d295e36d98119599b62379cda10ada85efe7b50c5f38d8d010a2cd53db900939db1ffce14feffb7940d12842f4f2b507e1fa49e526752d1e3d80a0c2a75e870d85f77fd91fc46ac1b1288dd33338cdad154d6b80b5a925431868d62a3fb0036f28fe259a3f555f767526a9ea230c33843efc49ac3182a357845ea122d606ab22c9f937b2b905e02dd1cb07d380e3486be6167f00b6e6d90a3c1d6aee15da439a55542ce177e498998ba8ac69a848e63e4c7564e4dc04aad595fa1ab81275edafa0d352029c304200d2f2c5881cbf5a26b2141bdb117879cc11e7c13bd62f221ae1ac04dca3d8d58a13c130557ecf5f36184c7366d3852d0cbd6ca42f2a971d87c0bb204097af1a3abdab7b95d07fcdbf5f42607695dedcd26e30b8fc5cfd7b333a95f3ee69d5ba7911dadb1394285c437a0f26fc027737ba5ee7d63333f80acb59f1a7faf2ec3031c6533107502bffc92d8726a48ce00cdb5f1258d85ff8eb72bfb162e122022f1f3e8a72b41d2689d5228b1130fbc946384401f3bbe726314bb09d430333ad78de07b3cec5c18a4f4abb69507b6451ca4e610b8fc988c983426e0cc3b9d15393026eb75d3d08634b8a7495cef69aab83d27ea1b5b41f40b996dd10023d81f77d61192930ffc25cae1e149412322fcb0aa47bee3afc44ec3dda96c9294854e2cbaebfea6f9a90f0b3797d5f505824b4de964151569f881f87f9dd9d30a2a2f9ed01059a909cba157902903c77f2f3d056231e7c7483a3f35e04360e084f0d3f94a92c92c77b3f06479fbc417366d7fe87ddfcdfd86274f87a5f817b0f947924cbe2329f16f6b00c8a0ab96164f7b35fed38a388380af05c3600abc37a944c9e75a691728c26896ac3615297766f406aeb0f2fd147d68fad3fb3b032880280ebb4bf89252a36b0d9eb393daae72829b8da870b886676244897d5322b32703fcf138b66eedeb3024666a88fd99d8962f696ab7b34e19ced1bd27488aa2ffe5bfa11f8f9289bd8c052d4e88316cc33b0255ef1bfca4c17067d7f78175c56db481fe8dc6f73b1cbdf9d5823f115c9e03f2dfd07bc1ad88564d48b18cd9a30d83cbd5e6a3eedcb0ee86e5dd47f32820cb74dcf730b2052b31297b529e5e24f042335d13915e4048132fe1a101841e919c7870bb680eddead9a6111394bc12e274fbd88abaf2d254721c42e82abf4d1e319a631794ed6ce319ddd844ac5e9b1fc96dd9aaad42f2e087abe1b85430c4a00631970e3e74a6ed923f49e0df75685e044fae3fcea0af4dbfeebe0a9c2e73e8a89b89603a75f585e3ebba5453ae595da1469ea90ea3c9fb6a22411c56c58dfbf504caa629dbfc73ebbedc91669f2babf8b8215c525edf8feb366f104ffa9eb2bb79232660aece4730ef1ae8585c629ffe1390356a58e900da145b83ad177c7bb2d125e59d7ff4d3a8562efc620b4cf9b33c2305bbf1957e0f8b06f0fbe9c80db73b08fdd0be4a1ea4f91f52af47160040424aed8ac3c10251fb0b5d9be08247edf3dda5d1750d0597d60c8a0d9418a4e0c9325bb90f0886f9e5dda9e88ac1942ec1e53da0cf5ccad66b9cdfc2fdca784dd06a73713ef73785706d024873ddca5ccfcf0b91748a2c1fbd8c241934b5b473007b29d76aec5addf7b945a5f7abd6ddeccc8d0ccb26d69d4793b7224c27ba7bf45aac8a2be56086ab8c65ea69fdd593a01a29e2912378002d824bd98e6ed1c5dd5f33be529e640997f5f1bbde051fb2a669145966db4889bf32aa13777ac6c077c51bb8b2523954cea3adc307cfe53b8cbb00edf0", 0xf81}], 0x3)

197.878834ms ago: executing program 3 (id=1019):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000480)={'wlan0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(&(0x7f0000000040), r0)
syz_usb_connect(0x3, 0x24, &(0x7f0000000880)={{0x12, 0x1, 0x300, 0xe1, 0x5d, 0x84, 0x10, 0x644, 0x800f, 0xd2f, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x81, 0x9, 0x30, 0x0, [{{0x9, 0x4, 0x91, 0xfa, 0x0, 0xc7, 0xc7, 0xcd, 0x2}}]}}]}}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000003700000008000300", @ANYRES32=r1, @ANYBLOB="08002600901500000800570080"], 0x2c}}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=ANY=[], 0x2c}}, 0x2000000)

160.1126ms ago: executing program 1 (id=1020):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000600)=@newtfilter={0x24c, 0x2c, 0xd27, 0x70bd28, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x7}, {}, {0x7, 0xe}}, [@filter_kind_options=@f_basic={{0xa}, {0x21c, 0x2, [@TCA_BASIC_ACT={0x124, 0x3, [@m_police={0xb8, 0xc, 0x0, 0x0, {{0xb}, {0x10, 0x2, 0x0, 0x1, [[], [@TCA_POLICE_RATE64={0xc, 0x8, 0xe89f}]]}, {0x7e, 0x6, "d6d1fc4c553423c26cd4a66b9bf60fbacc9289c78836c2266997924985a3ea8a74dd2aadafd5a275c17be19abdf55d167c0b15a718ac05f9c2b2a6d1be6480ee159c45a31fdde6d79b54315fb342ec4b57308cec6bc6a5d396a3f2507b4e7fa10fc7d9b6735ba69fc4ee7dd9f162bc186d6dca413d114dc4ccc6"}, {0xc, 0x7, {0xd72d03d6105f067a, 0x1}}, {0xc, 0x8, {0x1, 0x2}}}}, @m_bpf={0x68, 0x1a, 0x0, 0x0, {{0x8}, {0x24, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_PARMS={0x18, 0x2, {0x6, 0xf, 0x7, 0x8, 0x80000001}}, @TCA_ACT_BPF_FD={0x8, 0x5, r0}]}, {0x20, 0x6, "ddb29acb14097fe79758c90e8f1a12986bd7ef9a2d7de7f41002b1f8"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}, @TCA_BASIC_EMATCHES={0xf4, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8}, @TCA_EMATCH_TREE_LIST={0x4}, @TCA_EMATCH_TREE_LIST={0x34, 0x2, 0x0, 0x1, [@TCF_EM_IPSET={0x10, 0x1, 0x0, 0x0, {{0xe}, {0xffffffffffffffff, 0x4, 0x5}}}, @TCF_EM_IPT={0x20, 0x2, 0x0, 0x0, {{0xee7}, [@TCA_EM_IPT_MATCH_REVISION={0x5, 0x3, 0x5}, @TCA_EM_IPT_MATCH_NAME={0xb}]}}]}, @TCA_EMATCH_TREE_LIST={0x34, 0x2, 0x0, 0x1, [@TCF_EM_CMP={0x18, 0x1, 0x0, 0x0, {{0x0, 0x1, 0x5}, {0xe, 0x6, 0x2644, 0x4, 0x6, 0x2, 0x1}}}, @TCF_EM_CMP={0x18, 0x3, 0x0, 0x0, {{0xfff, 0x1, 0x3}, {0x8, 0x5, 0x5, 0x4, 0x1, 0x1}}}]}, @TCA_EMATCH_TREE_LIST={0x4}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x7}}, @TCA_EMATCH_TREE_LIST={0x58, 0x2, 0x0, 0x1, [@TCF_EM_U32={0x1c, 0x2, 0x0, 0x0, {{0x7, 0x3, 0xbb3}, {0x2, 0x9, 0x3, 0x2}}}, @TCF_EM_IPT={0x1c, 0x2, 0x0, 0x0, {{0x10, 0x9, 0xaf90}, [@TCA_EM_IPT_MATCH_REVISION={0x5, 0x3, 0x9e}, @TCA_EM_IPT_NFPROTO={0x5, 0x4, 0x6}]}}, @TCF_EM_NBYTE={0x1c, 0x1, 0x0, 0x0, {{0x17, 0x2, 0xff}, {0x6, 0xa, 0x2, "f704000000bf8eb5d0e4"}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x3}}, @TCA_EMATCH_TREE_LIST={0x10, 0x2, 0x0, 0x1, [@TCF_EM_CONTAINER={0xc, 0x1, 0x0, 0x0, {{0x800, 0x0, 0x4}}}]}]}]}}]}, 0x24c}, 0x1, 0x0, 0x0, 0x80}, 0x20000800)

0s ago: executing program 1 (id=1021):
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
openat$kvm(0xffffffffffffff9c, 0x0, 0x531100, 0x0)
munlockall() (fail_nth: 1)

kernel console output (not intermixed with test programs):

(-22)
[  126.645387][ T5951] Bluetooth: Unexpected continuation frame (len 4)
[  126.716899][ T7714] hsr0: entered promiscuous mode
[  126.718888][ T7713] netlink: 4 bytes leftover after parsing attributes in process `syz.1.502'.
[  126.721908][ T7713] hsr_slave_0: left promiscuous mode
[  126.724887][ T7713] hsr_slave_1: left promiscuous mode
[  126.738249][ T7713] hsr0 (unregistering): left promiscuous mode
[  126.944588][ T5661] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  126.953566][ T7727] netlink: 12 bytes leftover after parsing attributes in process `syz.5.508'.
[  127.095036][ T5661] usb 8-1: too many configurations: 13, using maximum allowed: 8
[  127.099922][ T5661] usb 8-1: config 0 has no interfaces?
[  127.103496][ T5661] usb 8-1: config 0 has no interfaces?
[  127.108173][ T5661] usb 8-1: config 0 has no interfaces?
[  127.111733][ T5661] usb 8-1: config 0 has no interfaces?
[  127.115756][ T5661] usb 8-1: config 0 has no interfaces?
[  127.119069][ T5661] usb 8-1: config 0 has no interfaces?
[  127.122113][ T5661] usb 8-1: config 0 has no interfaces?
[  127.125575][ T5661] usb 8-1: config 0 has no interfaces?
[  127.130248][ T5661] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  127.134306][ T5661] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  127.137731][ T5661] usb 8-1: Product: syz
[  127.139461][ T5661] usb 8-1: Manufacturer: syz
[  127.141957][ T5661] usb 8-1: SerialNumber: syz
[  127.147091][ T5661] usb 8-1: config 0 descriptor??
[  127.163882][ T5988] usb 9-1: new high-speed USB device number 11 using dummy_hcd
[  127.313927][ T5988] usb 9-1: Using ep0 maxpacket: 32
[  127.317976][ T5988] usb 9-1: config 0 has an invalid interface number: 12 but max is 0
[  127.321336][ T5988] usb 9-1: config 0 has no interface number 0
[  127.324030][ T5988] usb 9-1: config 0 interface 12 has no altsetting 0
[  127.328707][ T5988] usb 9-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  127.332555][ T5988] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  127.336106][ T5988] usb 9-1: Product: syz
[  127.337843][ T5988] usb 9-1: Manufacturer: syz
[  127.339375][ T5988] usb 9-1: SerialNumber: syz
[  127.344672][ T5988] usb 9-1: config 0 descriptor??
[  127.349397][ T5988] f81534 9-1:0.12: required endpoints missing
[  127.362257][ T5661] usb 8-1: USB disconnect, device number 8
[  129.094019][ T5951] Bluetooth: hci0: command 0x0c1a tx timeout
[  129.094019][ T7729] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  129.987860][ T7729] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  130.000920][ T7729] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  130.006558][ T7729] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  130.008588][ T7729] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  130.011742][ T7729] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  130.017032][ T7729] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  130.018839][ T7729] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  130.022559][ T7729] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  130.025315][ T7729] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  130.027067][ T7729] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  130.029566][ T7729] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  130.032029][ T7729] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  130.034108][ T7729] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  130.036606][ T7729] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  130.059048][   T53] usb 9-1: USB disconnect, device number 11
[  130.978043][ T7766] netlink: 12 bytes leftover after parsing attributes in process `syz.4.522'.
[  131.023847][   T53] usb 10-1: new high-speed USB device number 6 using dummy_hcd
[  131.173887][ T5959] Bluetooth: hci0: command 0x0c1a tx timeout
[  131.194043][   T53] usb 10-1: Using ep0 maxpacket: 32
[  131.201338][   T53] usb 10-1: config 0 has an invalid interface number: 12 but max is 0
[  131.205492][   T53] usb 10-1: config 0 has no interface number 0
[  131.208430][   T53] usb 10-1: config 0 interface 12 has no altsetting 0
[  131.218369][   T53] usb 10-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  131.224704][   T53] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  131.228342][   T53] usb 10-1: Product: syz
[  131.230311][   T53] usb 10-1: Manufacturer: syz
[  131.232512][   T53] usb 10-1: SerialNumber: syz
[  131.239025][   T53] usb 10-1: config 0 descriptor??
[  131.249654][   T53] f81534 10-1:0.12: required endpoints missing
[  131.457435][ T6007] usb 10-1: USB disconnect, device number 6
[  131.515144][ T7773] FAULT_INJECTION: forcing a failure.
[  131.515144][ T7773] name failslab, interval 1, probability 0, space 0, times 0
[  131.520313][ T7773] CPU: 1 UID: 0 PID: 7773 Comm: syz.3.524 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  131.520338][ T7773] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  131.520349][ T7773] Call Trace:
[  131.520358][ T7773]  <TASK>
[  131.520366][ T7773]  dump_stack_lvl+0x16c/0x1f0
[  131.520399][ T7773]  should_fail_ex+0x512/0x640
[  131.520419][ T7773]  ? fs_reclaim_acquire+0xae/0x150
[  131.520441][ T7773]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  131.520458][ T7773]  should_failslab+0xc2/0x120
[  131.520476][ T7773]  __kmalloc_noprof+0xd2/0x510
[  131.520507][ T7773]  tomoyo_realpath_from_path+0xc2/0x6e0
[  131.520532][ T7773]  ? tomoyo_profile+0x47/0x60
[  131.520555][ T7773]  tomoyo_path_number_perm+0x245/0x580
[  131.520579][ T7773]  ? tomoyo_path_number_perm+0x237/0x580
[  131.520605][ T7773]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  131.520657][ T7773]  ? find_held_lock+0x2b/0x80
[  131.520674][ T7773]  ? hook_file_ioctl_common+0x145/0x410
[  131.520704][ T7773]  ? __fget_files+0x20e/0x3c0
[  131.520726][ T7773]  ? __fput_deferred+0x460/0x480
[  131.520749][ T7773]  security_file_ioctl_compat+0x9b/0x240
[  131.520777][ T7773]  __ia32_compat_sys_ioctl+0xc3/0x370
[  131.520802][ T7773]  __do_fast_syscall_32+0x7c/0x3a0
[  131.520822][ T7773]  do_fast_syscall_32+0x32/0x80
[  131.520840][ T7773]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  131.520861][ T7773] RIP: 0023:0xf706e579
[  131.520876][ T7773] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  131.520892][ T7773] RSP: 002b:00000000f505e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  131.520908][ T7773] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000040047457
[  131.520919][ T7773] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  131.520928][ T7773] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  131.520937][ T7773] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  131.520947][ T7773] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  131.520969][ T7773]  </TASK>
[  131.520977][ T7773] ERROR: Out of memory at tomoyo_realpath_from_path.
[  131.643979][ T5998] usb 9-1: new high-speed USB device number 12 using dummy_hcd
[  131.654155][   T53] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  131.799097][ T5998] usb 9-1: Using ep0 maxpacket: 32
[  131.804948][   T53] usb 6-1: too many configurations: 13, using maximum allowed: 8
[  131.809567][   T53] usb 6-1: config 0 has no interfaces?
[  131.812433][ T5998] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  131.813398][   T53] usb 6-1: config 0 has no interfaces?
[  131.820615][   T53] usb 6-1: config 0 has no interfaces?
[  131.821903][ T5998] usb 9-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  131.824701][   T53] usb 6-1: config 0 has no interfaces?
[  131.827370][ T5998] usb 9-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  131.830722][   T53] usb 6-1: config 0 has no interfaces?
[  131.832825][ T5998] usb 9-1: Product: syz
[  131.836965][   T53] usb 6-1: config 0 has no interfaces?
[  131.837333][ T5998] usb 9-1: Manufacturer: syz
[  131.841755][ T5998] usb 9-1: SerialNumber: syz
[  131.842798][   T53] usb 6-1: config 0 has no interfaces?
[  131.847598][ T5998] usb 9-1: config 0 descriptor??
[  131.852123][ T7766] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  131.855877][   T53] usb 6-1: config 0 has no interfaces?
[  131.860721][   T53] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  131.864836][   T53] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  131.868468][   T53] usb 6-1: Product: syz
[  131.870392][   T53] usb 6-1: Manufacturer: syz
[  131.872461][   T53] usb 6-1: SerialNumber: syz
[  131.881803][   T53] usb 6-1: config 0 descriptor??
[  132.057990][ T5959] Bluetooth: hci4: command 0x040f tx timeout
[  132.058043][ T5951] Bluetooth: hci3: command 0x0c1a tx timeout
[  132.060996][ T5959] Bluetooth: hci2: command 0x0401 tx timeout
[  132.063075][ T5954] Bluetooth: hci1: command 0x0c1a tx timeout
[  132.079199][ T7766] tmpfs: Bad value for 'mpol'
[  132.089385][ T5998] usb 6-1: USB disconnect, device number 15
[  132.336392][ T5998] usb 9-1: USB disconnect, device number 12
[  132.534715][ T7795] wg1 speed is unknown, defaulting to 1000
[  132.793957][   T53] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  132.956134][   T53] usb 6-1: Using ep0 maxpacket: 32
[  132.960621][   T53] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  132.967585][   T53] usb 6-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  132.971563][   T53] usb 6-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  132.975636][   T53] usb 6-1: Product: syz
[  132.977548][   T53] usb 6-1: Manufacturer: syz
[  132.980012][   T53] usb 6-1: SerialNumber: syz
[  132.989009][   T53] usb 6-1: config 0 descriptor??
[  132.994668][ T7771] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  133.208479][ T7771] tmpfs: Bad value for 'mpol'
[  133.253851][ T5959] Bluetooth: hci0: command 0x0c1a tx timeout
[  133.443826][ T6007] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  133.449180][ T7825] netlink: 12 bytes leftover after parsing attributes in process `syz.4.543'.
[  133.467922][ T1459] usb 6-1: USB disconnect, device number 16
[  133.683837][ T6007] usb 8-1: Using ep0 maxpacket: 32
[  133.688195][ T6007] usb 8-1: config 0 has an invalid interface number: 12 but max is 0
[  133.691973][ T6007] usb 8-1: config 0 has no interface number 0
[  133.694633][ T6007] usb 8-1: config 0 interface 12 has no altsetting 0
[  133.699451][ T6007] usb 8-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  133.703168][ T6007] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  133.706620][ T6007] usb 8-1: Product: syz
[  133.708322][ T6007] usb 8-1: Manufacturer: syz
[  133.709863][ T6007] usb 8-1: SerialNumber: syz
[  133.712761][ T6007] usb 8-1: config 0 descriptor??
[  133.715722][ T6007] f81534 8-1:0.12: required endpoints missing
[  133.782779][ T7831] ALSA: mixer_oss: invalid index 40000
[  133.932022][   T10] usb 8-1: USB disconnect, device number 9
[  134.103913][ T7111] usb 9-1: new high-speed USB device number 13 using dummy_hcd
[  134.133879][ T5959] Bluetooth: hci3: command 0x0c1a tx timeout
[  134.133962][ T5306] Bluetooth: hci1: command 0x0c1a tx timeout
[  134.134038][ T5954] Bluetooth: hci2: command 0x0401 tx timeout
[  134.134122][ T5951] Bluetooth: hci4: command 0x040f tx timeout
[  134.274088][ T7111] usb 9-1: Using ep0 maxpacket: 32
[  134.283064][ T7111] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  134.296156][ T7111] usb 9-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  134.300228][ T7111] usb 9-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  134.303812][ T7111] usb 9-1: Product: syz
[  134.306025][ T7111] usb 9-1: Manufacturer: syz
[  134.308448][ T7111] usb 9-1: SerialNumber: syz
[  134.314919][ T7111] usb 9-1: config 0 descriptor??
[  134.318608][ T7825] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  134.529920][ T7825] tmpfs: Bad value for 'mpol'
[  134.791086][ T1459] usb 9-1: USB disconnect, device number 13
[  135.209500][ T7846] netlink: 20 bytes leftover after parsing attributes in process `syz.3.549'.
[  135.773964][ T5661] usb 10-1: new high-speed USB device number 7 using dummy_hcd
[  135.794129][ T7111] usb 9-1: new high-speed USB device number 14 using dummy_hcd
[  135.924733][ T5661] usb 10-1: too many configurations: 13, using maximum allowed: 8
[  135.929488][ T5661] usb 10-1: config 0 has no interfaces?
[  135.934148][ T5661] usb 10-1: config 0 has no interfaces?
[  135.937559][ T5661] usb 10-1: config 0 has no interfaces?
[  135.942628][ T5661] usb 10-1: config 0 has no interfaces?
[  135.943889][ T7111] usb 9-1: Using ep0 maxpacket: 32
[  135.952623][ T5661] usb 10-1: config 0 has no interfaces?
[  135.953287][ T7111] usb 9-1: config 0 has an invalid interface number: 12 but max is 0
[  135.957208][ T5661] usb 10-1: config 0 has no interfaces?
[  135.961966][ T5661] usb 10-1: config 0 has no interfaces?
[  135.963810][ T7111] usb 9-1: config 0 has no interface number 0
[  135.966337][ T7111] usb 9-1: config 0 interface 12 has no altsetting 0
[  135.967092][ T5661] usb 10-1: config 0 has no interfaces?
[  135.977089][ T7111] usb 9-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  135.977520][ T5661] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  135.979887][ T7111] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  135.986119][ T5661] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  135.986997][ T7111] usb 9-1: Product: syz
[  135.990540][ T5661] usb 10-1: Product: syz
[  135.990559][ T5661] usb 10-1: Manufacturer: syz
[  135.991970][ T7111] usb 9-1: Manufacturer: syz
[  135.994334][ T5661] usb 10-1: SerialNumber: syz
[  135.995461][ T7111] usb 9-1: SerialNumber: syz
[  135.999708][ T5661] usb 10-1: config 0 descriptor??
[  136.003600][ T7111] usb 9-1: config 0 descriptor??
[  136.010128][ T7111] f81534 9-1:0.12: required endpoints missing
[  136.128369][ T7877] capability: warning: `syz.1.559' uses deprecated v2 capabilities in a way that may be insecure
[  136.212218][   T24] usb 10-1: USB disconnect, device number 7
[  136.215303][ T5306] Bluetooth: hci4: command 0x040f tx timeout
[  136.215352][ T5959] Bluetooth: hci2: command 0x0401 tx timeout
[  136.222679][ T6007] usb 9-1: USB disconnect, device number 14
[  136.224794][ T5959] Bluetooth: hci1: command 0x0c1a tx timeout
[  136.225086][ T5306] Bluetooth: hci3: command 0x0c1a tx timeout
[  136.843791][   T24] usb 10-1: new high-speed USB device number 8 using dummy_hcd
[  136.994033][   T24] usb 10-1: Using ep0 maxpacket: 32
[  137.000114][   T24] usb 10-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  137.007434][   T24] usb 10-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  137.011205][   T24] usb 10-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  137.017316][   T24] usb 10-1: Product: syz
[  137.020458][   T24] usb 10-1: Manufacturer: syz
[  137.022424][   T24] usb 10-1: SerialNumber: syz
[  137.028149][   T24] usb 10-1: config 0 descriptor??
[  137.030880][ T7864] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  137.239926][ T7864] tmpfs: Bad value for 'mpol'
[  137.430892][ T1418] ieee802154 phy0 wpan0: encryption failed: -22
[  137.433913][ T1418] ieee802154 phy1 wpan1: encryption failed: -22
[  138.654932][ T7111] usb 10-1: USB disconnect, device number 8
[  138.848204][ T7952] netlink: 24 bytes leftover after parsing attributes in process `syz.1.576'.
[  139.203391][ T7970] netlink: 4 bytes leftover after parsing attributes in process `syz.3.583'.
[  139.344223][ T7111] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  139.493894][ T7111] usb 6-1: Using ep0 maxpacket: 32
[  139.509540][ T7111] usb 6-1: config 0 has an invalid interface number: 12 but max is 0
[  139.513989][ T7111] usb 6-1: config 0 has no interface number 0
[  139.518392][ T7111] usb 6-1: config 0 interface 12 has no altsetting 0
[  139.530688][ T7111] usb 6-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  139.539108][ T7111] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  139.542931][ T7111] usb 6-1: Product: syz
[  139.545844][ T7111] usb 6-1: Manufacturer: syz
[  139.547921][ T7111] usb 6-1: SerialNumber: syz
[  139.555333][ T7111] usb 6-1: config 0 descriptor??
[  139.568672][ T7111] f81534 6-1:0.12: required endpoints missing
[  139.809907][ T5661] usb 6-1: USB disconnect, device number 17
[  140.462651][ T7999] netlink: 8 bytes leftover after parsing attributes in process `syz.3.593'.
[  140.540679][ T8001] netlink: 28 bytes leftover after parsing attributes in process `syz.1.594'.
[  140.544966][ T8001] netlink: 28 bytes leftover after parsing attributes in process `syz.1.594'.
[  140.547567][   T29] libceph: connect (1)[c::]:6789 error -101
[  140.552486][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  140.830918][   T29] libceph: connect (1)[c::]:6789 error -101
[  140.835942][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  141.124986][ T8002] ceph: No mds server is up or the cluster is laggy
[  141.194584][ T5661] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[  141.363935][ T5661] usb 8-1: Using ep0 maxpacket: 32
[  141.368862][ T5661] usb 8-1: config 0 has an invalid interface number: 12 but max is 0
[  141.374031][ T5661] usb 8-1: config 0 has no interface number 0
[  141.377421][ T5661] usb 8-1: config 0 interface 12 has no altsetting 0
[  141.382806][ T5661] usb 8-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  141.387047][ T5661] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  141.390944][ T8036] team_slave_0: entered promiscuous mode
[  141.393931][ T8036] team_slave_1: entered promiscuous mode
[  141.394606][ T5661] usb 8-1: Product: syz
[  141.400535][ T5661] usb 8-1: Manufacturer: syz
[  141.402496][ T5661] usb 8-1: SerialNumber: syz
[  141.403069][ T8036] macsec1: entered allmulticast mode
[  141.406649][ T5661] usb 8-1: config 0 descriptor??
[  141.410664][ T8036] team0: entered allmulticast mode
[  141.412995][ T8036] team_slave_0: entered allmulticast mode
[  141.417782][ T5661] f81534 8-1:0.12: required endpoints missing
[  141.422725][ T8036] team_slave_1: entered allmulticast mode
[  141.429313][ T8036] team0: Device macsec1 is already an upper device of the team interface
[  141.439522][ T8036] team0: left allmulticast mode
[  141.441177][ T8036] team_slave_0: left allmulticast mode
[  141.442915][ T8036] team_slave_1: left allmulticast mode
[  141.445336][ T8036] team_slave_0: left promiscuous mode
[  141.447829][ T8036] team_slave_1: left promiscuous mode
[  141.621085][ T5661] usb 8-1: USB disconnect, device number 10
[  142.043825][   T29] usb 10-1: new high-speed USB device number 9 using dummy_hcd
[  142.213828][   T29] usb 10-1: Using ep0 maxpacket: 8
[  142.218013][   T29] usb 10-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  142.222813][   T29] usb 10-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  142.227376][   T29] usb 10-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  142.231808][   T29] usb 10-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  142.238071][   T29] usb 10-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  142.241891][   T29] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  142.248829][ T8058] Bluetooth: MGMT ver 1.23
[  142.261584][ T8056] pimreg: entered allmulticast mode
[  143.544077][   T73] Bluetooth: hci5: Frame reassembly failed (-84)
[  143.935497][ T8077] FAULT_INJECTION: forcing a failure.
[  143.935497][ T8077] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  143.941179][ T8077] CPU: 2 UID: 0 PID: 8077 Comm: syz.4.617 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  143.941203][ T8077] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  143.941213][ T8077] Call Trace:
[  143.941219][ T8077]  <TASK>
[  143.941226][ T8077]  dump_stack_lvl+0x16c/0x1f0
[  143.941259][ T8077]  should_fail_ex+0x512/0x640
[  143.941282][ T8077]  should_fail_alloc_page+0xe7/0x130
[  143.941301][ T8077]  prepare_alloc_pages+0x3c2/0x610
[  143.941327][ T8077]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  143.941353][ T8077]  ? __pfx_stack_trace_save+0x10/0x10
[  143.941372][ T8077]  ? stack_depot_save_flags+0x28/0xa40
[  143.941397][ T8077]  ? kasan_save_stack+0x42/0x60
[  143.941419][ T8077]  ? kasan_save_stack+0x33/0x60
[  143.941442][ T8077]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  143.941465][ T8077]  ? alloc_vmap_area+0x645/0x29c0
[  143.941481][ T8077]  ? __vmalloc_node_range_noprof+0x271/0x14b0
[  143.941501][ T8077]  ? copy_process+0x2c70/0x76a0
[  143.941519][ T8077]  ? vhost_task_create+0x1d2/0x2e0
[  143.941547][ T8077]  ? kvm_mmu_post_init_vm+0x1b7/0x370
[  143.941565][ T8077]  ? kvm_arch_vcpu_ioctl_run+0x66/0x18c0
[  143.941582][ T8077]  ? kvm_vcpu_ioctl+0x5eb/0x1690
[  143.941599][ T8077]  ? kvm_vcpu_compat_ioctl+0x20f/0x3d0
[  143.941615][ T8077]  ? __ia32_compat_sys_ioctl+0x242/0x370
[  143.941643][ T8077]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  143.941667][ T8077]  ? policy_nodemask+0xea/0x4e0
[  143.941685][ T8077]  alloc_pages_mpol+0x1fb/0x550
[  143.941701][ T8077]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  143.941723][ T8077]  alloc_pages_noprof+0x131/0x390
[  143.941738][ T8077]  get_free_pages_noprof+0x10/0xb0
[  143.941755][ T8077]  kasan_populate_vmalloc+0x89/0x1f0
[  143.941781][ T8077]  alloc_vmap_area+0x959/0x29c0
[  143.941807][ T8077]  ? __pfx_alloc_vmap_area+0x10/0x10
[  143.941831][ T8077]  __get_vm_area_node+0x1ca/0x330
[  143.941854][ T8077]  __vmalloc_node_range_noprof+0x271/0x14b0
[  143.941874][ T8077]  ? vhost_task_create+0x1d2/0x2e0
[  143.941898][ T8077]  ? local_lock_release+0x99/0x140
[  143.941921][ T8077]  ? vhost_task_create+0x1d2/0x2e0
[  143.941941][ T8077]  ? rcu_read_unlock+0x17/0x60
[  143.941960][ T8077]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  143.941987][ T8077]  ? vhost_task_create+0x1d2/0x2e0
[  143.942006][ T8077]  __vmalloc_node_noprof+0xad/0xf0
[  143.942025][ T8077]  ? vhost_task_create+0x1d2/0x2e0
[  143.942048][ T8077]  copy_process+0x2c70/0x76a0
[  143.942077][ T8077]  ? __pfx_copy_process+0x10/0x10
[  143.942099][ T8077]  ? lockdep_init_map_type+0x5c/0x280
[  143.942121][ T8077]  ? lockdep_init_map_type+0x5c/0x280
[  143.942141][ T8077]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  143.942193][ T8077]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  143.942229][ T8077]  vhost_task_create+0x1d2/0x2e0
[  143.942249][ T8077]  ? __pfx_vhost_task_create+0x10/0x10
[  143.942275][ T8077]  ? kvm_mmu_post_init_vm+0xb4/0x370
[  143.942297][ T8077]  ? __pfx_vhost_task_fn+0x10/0x10
[  143.942328][ T8077]  kvm_mmu_post_init_vm+0x1b7/0x370
[  143.942353][ T8077]  kvm_arch_vcpu_ioctl_run+0x66/0x18c0
[  143.942375][ T8077]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[  143.942403][ T8077]  kvm_vcpu_ioctl+0x5eb/0x1690
[  143.942429][ T8077]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  143.942451][ T8077]  ? tomoyo_path_number_perm+0x18d/0x580
[  143.942481][ T8077]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  143.942503][ T8077]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  143.942527][ T8077]  ? do_vfs_ioctl+0x523/0x1a60
[  143.942555][ T8077]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  143.942592][ T8077]  kvm_vcpu_compat_ioctl+0x20f/0x3d0
[  143.942611][ T8077]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  143.942630][ T8077]  ? __fget_files+0x20e/0x3c0
[  143.942650][ T8077]  ? __fput_deferred+0x460/0x480
[  143.942673][ T8077]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  143.942691][ T8077]  __ia32_compat_sys_ioctl+0x242/0x370
[  143.942714][ T8077]  __do_fast_syscall_32+0x7c/0x3a0
[  143.942734][ T8077]  do_fast_syscall_32+0x32/0x80
[  143.942750][ T8077]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  143.942770][ T8077] RIP: 0023:0xf7f55579
[  143.942784][ T8077] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  143.942798][ T8077] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  143.942815][ T8077] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 000000000000ae80
[  143.942826][ T8077] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  143.942834][ T8077] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  143.942843][ T8077] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  143.942853][ T8077] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  143.942874][ T8077]  </TASK>
[  143.943366][ T8077] syz.4.617: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  144.153367][ T8077] CPU: 3 UID: 0 PID: 8077 Comm: syz.4.617 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  144.153390][ T8077] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  144.153400][ T8077] Call Trace:
[  144.153407][ T8077]  <TASK>
[  144.153413][ T8077]  dump_stack_lvl+0x16c/0x1f0
[  144.153444][ T8077]  warn_alloc+0x248/0x3a0
[  144.153470][ T8077]  ? __pfx_warn_alloc+0x10/0x10
[  144.153496][ T8077]  ? kfree+0x2b4/0x4d0
[  144.153521][ T8077]  ? __get_vm_area_node+0x208/0x330
[  144.153544][ T8077]  __vmalloc_node_range_noprof+0xb2d/0x14b0
[  144.153564][ T8077]  ? local_lock_release+0x99/0x140
[  144.153587][ T8077]  ? vhost_task_create+0x1d2/0x2e0
[  144.153609][ T8077]  ? rcu_read_unlock+0x17/0x60
[  144.153628][ T8077]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  144.153681][ T8077]  ? vhost_task_create+0x1d2/0x2e0
[  144.153702][ T8077]  __vmalloc_node_noprof+0xad/0xf0
[  144.153720][ T8077]  ? vhost_task_create+0x1d2/0x2e0
[  144.153744][ T8077]  copy_process+0x2c70/0x76a0
[  144.153772][ T8077]  ? __pfx_copy_process+0x10/0x10
[  144.153792][ T8077]  ? lockdep_init_map_type+0x5c/0x280
[  144.153814][ T8077]  ? lockdep_init_map_type+0x5c/0x280
[  144.153833][ T8077]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  144.153854][ T8077]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  144.153879][ T8077]  vhost_task_create+0x1d2/0x2e0
[  144.153899][ T8077]  ? __pfx_vhost_task_create+0x10/0x10
[  144.153919][ T8077]  ? kvm_mmu_post_init_vm+0xb4/0x370
[  144.153941][ T8077]  ? __pfx_vhost_task_fn+0x10/0x10
[  144.153972][ T8077]  kvm_mmu_post_init_vm+0x1b7/0x370
[  144.153991][ T8077]  kvm_arch_vcpu_ioctl_run+0x66/0x18c0
[  144.154007][ T8077]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[  144.154028][ T8077]  kvm_vcpu_ioctl+0x5eb/0x1690
[  144.154046][ T8077]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  144.154063][ T8077]  ? tomoyo_path_number_perm+0x18d/0x580
[  144.154087][ T8077]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  144.154108][ T8077]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  144.154131][ T8077]  ? do_vfs_ioctl+0x523/0x1a60
[  144.154149][ T8077]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  144.154183][ T8077]  kvm_vcpu_compat_ioctl+0x20f/0x3d0
[  144.154200][ T8077]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  144.154217][ T8077]  ? __fget_files+0x20e/0x3c0
[  144.154247][ T8077]  ? __fput_deferred+0x460/0x480
[  144.154266][ T8077]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  144.154284][ T8077]  __ia32_compat_sys_ioctl+0x242/0x370
[  144.154305][ T8077]  __do_fast_syscall_32+0x7c/0x3a0
[  144.154322][ T8077]  do_fast_syscall_32+0x32/0x80
[  144.154337][ T8077]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  144.154355][ T8077] RIP: 0023:0xf7f55579
[  144.154367][ T8077] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  144.154381][ T8077] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  144.154399][ T8077] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 000000000000ae80
[  144.154408][ T8077] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  144.154416][ T8077] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  144.154424][ T8077] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  144.154432][ T8077] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  144.154451][ T8077]  </TASK>
[  144.262241][    C3] vkms_vblank_simulate: vblank timer overrun
[  144.269343][ T8077] Mem-Info:
[  144.270492][ T8077] active_anon:15286 inactive_anon:0 isolated_anon:0
[  144.270492][ T8077]  active_file:13014 inactive_file:3738 isolated_file:0
[  144.270492][ T8077]  unevictable:1768 dirty:37 writeback:0
[  144.270492][ T8077]  slab_reclaimable:10556 slab_unreclaimable:59368
[  144.270492][ T8077]  mapped:37203 shmem:10387 pagetables:1370
[  144.270492][ T8077]  sec_pagetables:301 bounce:0
[  144.270492][ T8077]  kernel_misc_reclaimable:0
[  144.270492][ T8077]  free:46286 free_pcp:15289 free_cma:0
[  144.284976][ T8077] Node 0 active_anon:7864kB inactive_anon:0kB active_file:256kB inactive_file:6548kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:6652kB dirty:36kB writeback:0kB shmem:4716kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:7760kB pagetables:1416kB sec_pagetables:1124kB all_unreclaimable? yes Balloon:0kB
[  144.295827][ T8077] Node 1 active_anon:53860kB inactive_anon:0kB active_file:51800kB inactive_file:8404kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:142160kB dirty:112kB writeback:0kB shmem:37388kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:5172kB pagetables:4064kB sec_pagetables:80kB all_unreclaimable? no Balloon:0kB
[  144.319032][ T8077] Node 0 DMA free:2792kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:364kB local_pcp:124kB free_cma:0kB
[  144.332102][ T8077] lowmem_reserve[]: 0 289 289 289 289
[  144.336567][ T8077] Node 0 DMA32 free:17960kB boost:0kB min:13332kB low:16664kB high:19996kB reserved_highatomic:4096KB free_highatomic:1412KB active_anon:9460kB inactive_anon:0kB active_file:256kB inactive_file:6548kB unevictable:3536kB writepending:36kB present:1032196kB managed:296832kB mlocked:0kB bounce:0kB free_pcp:12336kB local_pcp:3836kB free_cma:0kB
[  144.352191][ T8077] lowmem_reserve[]: 0 0 0 0 0
[  144.357312][ T8077] Node 1 DMA32 free:164452kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:54260kB inactive_anon:0kB active_file:51800kB inactive_file:8404kB unevictable:3536kB writepending:112kB present:1048432kB managed:948268kB mlocked:0kB bounce:0kB free_pcp:48516kB local_pcp:10012kB free_cma:0kB
[  144.370988][ T8077] lowmem_reserve[]: 0 0 0 0 0
[  144.373163][ T8077] Node 0 DMA: 56*4kB (U) 13*8kB (U) 6*16kB (UE) 8*32kB (UE) 3*64kB (U) 1*128kB (E) 1*256kB (E) 1*512kB (E) 1*1024kB (E) 0*2048kB 0*4096kB = 2792kB
[  144.381981][ T8077] Node 0 DMA32: 394*4kB (UMEH) 51*8kB (UMEH) 22*16kB (UMEH) 185*32kB (UMEH) 75*64kB (UMEH) 16*128kB (UMH) 3*256kB (UMH) 2*512kB (UE) 1*1024kB (E) 0*2048kB 0*4096kB = 17920kB
[  144.389994][ T8077] Node 1 DMA32: 3*4kB (UM) 3*8kB (UME) 4*16kB (E) 66*32kB (UME) 256*64kB (UME) 47*128kB (UME) 39*256kB (M) 31*512kB (UME) 19*1024kB (UME) 6*2048kB (M) 20*4096kB (UM) = 164132kB
[  144.399234][ T8077] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  144.403014][ T8077] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  144.407647][ T8077] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  144.411667][ T8077] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  144.417977][ T8077] 27804 total pagecache pages
[  144.419571][ T8077] 0 pages in swap cache
[  144.420935][ T8077] Free swap  = 124996kB
[  144.422246][ T8077] Total swap = 124996kB
[  144.423586][ T8077] 524155 pages RAM
[  144.427915][ T8077] 0 pages HighMem/MovableOnly
[  144.429637][ T8077] 209040 pages reserved
[  144.431055][ T8077] 0 pages cma reserved
[  144.741911][   T29] usb 10-1: usb_control_msg returned -71
[  144.746514][   T29] usbtmc 10-1:16.0: can't read capabilities
[  144.753542][   T29] usb 10-1: USB disconnect, device number 9
[  144.823154][ T1459] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[  145.003753][ T1459] usb 8-1: Using ep0 maxpacket: 32
[  145.007841][ T1459] usb 8-1: config 0 has an invalid interface number: 12 but max is 0
[  145.011225][ T1459] usb 8-1: config 0 has no interface number 0
[  145.013993][ T1459] usb 8-1: config 0 interface 12 has no altsetting 0
[  145.019250][ T1459] usb 8-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  145.023028][ T1459] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  145.026623][ T1459] usb 8-1: Product: syz
[  145.028456][ T1459] usb 8-1: Manufacturer: syz
[  145.030428][ T1459] usb 8-1: SerialNumber: syz
[  145.035126][ T1459] usb 8-1: config 0 descriptor??
[  145.039432][ T1459] f81534 8-1:0.12: required endpoints missing
[  145.068170][ T8093] fuse: Bad value for 'fd'
[  145.075323][    T9] Process accounting resumed
[  145.259101][   T29] usb 8-1: USB disconnect, device number 11
[  145.573882][ T5306] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  146.151602][ T8147] netlink: 20 bytes leftover after parsing attributes in process `syz.3.640'.
[  146.154601][ T8147] netlink: 4 bytes leftover after parsing attributes in process `syz.3.640'.
[  149.316273][ T8202] binder: BINDER_SET_CONTEXT_MGR already set
[  149.319326][ T8202] binder: 8199:8202 ioctl 4018620d 800001c0 returned -16
[  149.703781][ T8212] wireguard0: entered promiscuous mode
[  150.633838][ T5661] usb 9-1: new high-speed USB device number 15 using dummy_hcd
[  151.252416][ T8244] netlink: 'syz.3.670': attribute type 10 has an invalid length.
[  151.294393][ T7111] usb 10-1: new high-speed USB device number 10 using dummy_hcd
[  151.343941][ T5661] usb 9-1: Using ep0 maxpacket: 32
[  151.347244][ T5661] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  151.353228][ T5661] usb 9-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  151.356281][ T5661] usb 9-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  151.358891][ T5661] usb 9-1: Product: syz
[  151.360240][ T5661] usb 9-1: Manufacturer: syz
[  151.361806][ T5661] usb 9-1: SerialNumber: syz
[  151.364893][ T5661] usb 9-1: config 0 descriptor??
[  151.367397][ T8217] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  151.576562][ T8217] tmpfs: Bad value for 'mpol'
[  151.831083][ T1459] usb 9-1: USB disconnect, device number 15
[  151.836949][ T7111] usb 10-1: too many configurations: 13, using maximum allowed: 8
[  151.956482][ T7111] usb 10-1: config 0 has no interfaces?
[  151.968019][ T7111] usb 10-1: config 0 has no interfaces?
[  151.974289][ T7111] usb 10-1: config 0 has no interfaces?
[  151.980042][ T7111] usb 10-1: config 0 has no interfaces?
[  151.987853][ T7111] usb 10-1: config 0 has no interfaces?
[  152.008926][ T7111] usb 10-1: config 0 has no interfaces?
[  152.013206][ T7111] usb 10-1: config 0 has no interfaces?
[  152.020544][ T7111] usb 10-1: config 0 has no interfaces?
[  152.051691][ T7111] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  152.054718][ T7111] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  152.057232][ T7111] usb 10-1: Product: syz
[  152.058603][ T7111] usb 10-1: Manufacturer: syz
[  152.060089][ T7111] usb 10-1: SerialNumber: syz
[  152.074615][ T7111] usb 10-1: config 0 descriptor??
[  152.211231][ T8265] binder: BINDER_SET_CONTEXT_MGR already set
[  152.213566][ T8265] binder: 8263:8265 ioctl 4018620d 80000040 returned -16
[  152.243359][ T8269] FAULT_INJECTION: forcing a failure.
[  152.243359][ T8269] name failslab, interval 1, probability 0, space 0, times 0
[  152.247968][ T8269] CPU: 1 UID: 0 PID: 8269 Comm: syz.3.678 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  152.247984][ T8269] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  152.247991][ T8269] Call Trace:
[  152.247994][ T8269]  <TASK>
[  152.247998][ T8269]  dump_stack_lvl+0x16c/0x1f0
[  152.248021][ T8269]  should_fail_ex+0x512/0x640
[  152.248034][ T8269]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  152.248050][ T8269]  should_failslab+0xc2/0x120
[  152.248061][ T8269]  __kmalloc_cache_noprof+0x6a/0x3e0
[  152.248075][ T8269]  ? lockdep_init_map_type+0x5c/0x280
[  152.248091][ T8269]  ? tracefs_init_fs_context+0x43/0x110
[  152.248108][ T8269]  ? __pfx_tracefs_init_fs_context+0x10/0x10
[  152.248123][ T8269]  tracefs_init_fs_context+0x43/0x110
[  152.248137][ T8269]  ? __pfx_tracefs_init_fs_context+0x10/0x10
[  152.248151][ T8269]  alloc_fs_context+0x54a/0x9c0
[  152.248170][ T8269]  path_mount+0xb06/0x1f70
[  152.248188][ T8269]  ? kmem_cache_free+0x2d1/0x4d0
[  152.248204][ T8269]  ? __pfx_path_mount+0x10/0x10
[  152.248221][ T8269]  ? getname_flags.part.0+0x1c5/0x550
[  152.248235][ T8269]  ? putname+0x154/0x1a0
[  152.248247][ T8269]  __ia32_sys_mount+0x28b/0x310
[  152.248258][ T8269]  ? __pfx___ia32_sys_mount+0x10/0x10
[  152.248269][ T8269]  ? rcu_is_watching+0x12/0xc0
[  152.248282][ T8269]  __do_fast_syscall_32+0x7c/0x3a0
[  152.248295][ T8269]  do_fast_syscall_32+0x32/0x80
[  152.248306][ T8269]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  152.248321][ T8269] RIP: 0023:0xf706e579
[  152.248330][ T8269] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  152.248340][ T8269] RSP: 002b:00000000f505e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  152.248351][ T8269] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000080000240
[  152.248358][ T8269] RDX: 0000000080000280 RSI: 0000000000000000 RDI: 0000000000000000
[  152.248364][ T8269] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  152.248375][ T8269] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  152.248381][ T8269] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  152.248393][ T8269]  </TASK>
[  152.298990][ T1459] usb 10-1: USB disconnect, device number 10
[  152.618724][ T8276] ieee802154 phy0 wpan0: encryption failed: -22
[  152.717224][ T5661] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  152.863821][ T5661] usb 6-1: Using ep0 maxpacket: 32
[  152.867923][ T5661] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  152.874914][ T5661] usb 6-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  152.878640][ T5661] usb 6-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  152.881922][ T5661] usb 6-1: Product: syz
[  152.883745][ T5661] usb 6-1: Manufacturer: syz
[  152.885696][ T5661] usb 6-1: SerialNumber: syz
[  152.889902][ T5661] usb 6-1: config 0 descriptor??
[  152.892811][ T8258] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  152.944197][ T7111] usb 10-1: new high-speed USB device number 11 using dummy_hcd
[  153.096793][ T7111] usb 10-1: too many configurations: 13, using maximum allowed: 8
[  153.100975][ T8258] tmpfs: Bad value for 'mpol'
[  153.101977][ T7111] usb 10-1: config 0 has no interfaces?
[  153.107093][ T7111] usb 10-1: config 0 has no interfaces?
[  153.111101][ T7111] usb 10-1: config 0 has no interfaces?
[  153.114592][ T7111] usb 10-1: config 0 has no interfaces?
[  153.118146][ T7111] usb 10-1: config 0 has no interfaces?
[  153.120834][ T7111] usb 10-1: config 0 has no interfaces?
[  153.123504][ T7111] usb 10-1: config 0 has no interfaces?
[  153.126895][ T7111] usb 10-1: config 0 has no interfaces?
[  153.131483][ T7111] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  153.134603][ T7111] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  153.137135][ T7111] usb 10-1: Product: syz
[  153.138618][ T7111] usb 10-1: Manufacturer: syz
[  153.140276][ T7111] usb 10-1: SerialNumber: syz
[  153.144595][ T7111] usb 10-1: config 0 descriptor??
[  153.353787][ T5661] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[  153.360578][ T7111] usb 6-1: USB disconnect, device number 18
[  153.372689][ T8238] tmpfs: Bad value for 'mpol'
[  153.376347][ T5998] usb 10-1: USB disconnect, device number 11
[  153.503917][ T5661] usb 8-1: Using ep0 maxpacket: 32
[  153.508245][ T5661] usb 8-1: config 0 has an invalid interface number: 12 but max is 0
[  153.511554][ T5661] usb 8-1: config 0 has no interface number 0
[  153.514351][ T5661] usb 8-1: config 0 interface 12 has no altsetting 0
[  153.519720][ T5661] usb 8-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  153.523223][ T5661] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  153.526698][ T5661] usb 8-1: Product: syz
[  153.528372][ T5661] usb 8-1: Manufacturer: syz
[  153.530293][ T5661] usb 8-1: SerialNumber: syz
[  153.534392][ T5661] usb 8-1: config 0 descriptor??
[  153.538758][ T5661] f81534 8-1:0.12: required endpoints missing
[  153.747577][ T1459] usb 8-1: USB disconnect, device number 12
[  154.008929][ T8289] bridge_slave_0: left allmulticast mode
[  154.011182][ T8289] bridge_slave_0: left promiscuous mode
[  154.013844][ T8289] bridge0: port 1(bridge_slave_0) entered disabled state
[  154.058265][ T8289] bridge_slave_1: left allmulticast mode
[  154.060057][ T8289] bridge_slave_1: left promiscuous mode
[  154.062309][ T8289] bridge0: port 2(bridge_slave_1) entered disabled state
[  154.067308][ T8289] bond0: (slave bond_slave_0): Releasing backup interface
[  154.071512][ T8289] bond0: (slave bond_slave_1): Releasing backup interface
[  154.088015][ T8289] team0: Port device team_slave_0 removed
[  154.095933][ T8289] team0: Port device team_slave_1 removed
[  154.098369][ T8289] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  154.101112][ T8289] batman_adv: batadv0: Removing interface: batadv_slave_0
[  154.106661][ T8289] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  154.109050][ T8289] batman_adv: batadv0: Removing interface: batadv_slave_1
[  154.350152][ T8305] netlink: 20 bytes leftover after parsing attributes in process `syz.3.691'.
[  154.357845][   T40] audit: type=1326 audit(1749118085.633:666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8304 comm="syz.3.691" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  154.365887][   T40] audit: type=1326 audit(1749118085.633:667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8304 comm="syz.3.691" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  154.374634][   T40] audit: type=1326 audit(1749118085.633:668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8304 comm="syz.3.691" exe="/syz-executor" sig=0 arch=40000003 syscall=340 compat=1 ip=0xf706e579 code=0x7ffc0000
[  154.383017][   T40] audit: type=1326 audit(1749118085.633:669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8304 comm="syz.3.691" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  154.391721][   T40] audit: type=1326 audit(1749118085.633:670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8304 comm="syz.3.691" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  154.395102][ T8305] block nbd3: shutting down sockets
[  154.399558][   T40] audit: type=1326 audit(1749118085.633:671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8304 comm="syz.3.691" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf706e579 code=0x7ffc0000
[  154.409288][   T40] audit: type=1326 audit(1749118085.673:672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8304 comm="syz.3.691" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  154.417435][   T40] audit: type=1326 audit(1749118085.673:673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8304 comm="syz.3.691" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  154.424679][   T40] audit: type=1326 audit(1749118085.673:674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8304 comm="syz.3.691" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf706e579 code=0x7ffc0000
[  154.431470][   T40] audit: type=1326 audit(1749118085.673:675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8304 comm="syz.3.691" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  154.513940][ T1459] usb 10-1: new high-speed USB device number 12 using dummy_hcd
[  154.665721][ T1459] usb 10-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  154.670267][ T1459] usb 10-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  154.674619][ T1459] usb 10-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  154.678467][ T1459] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  154.684849][ T8301] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  154.690970][ T1459] usb 10-1: Quirk or no altset; falling back to MIDI 1.0
[  154.893152][ T1459] usb 10-1: USB disconnect, device number 12
[  155.413927][ T7111] usb 9-1: new high-speed USB device number 16 using dummy_hcd
[  155.473796][ T1459] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[  155.583780][ T7111] usb 9-1: Using ep0 maxpacket: 32
[  155.588199][ T7111] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  155.594714][ T7111] usb 9-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  155.598399][ T7111] usb 9-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  155.601721][ T7111] usb 9-1: Product: syz
[  155.603610][ T7111] usb 9-1: Manufacturer: syz
[  155.605656][ T7111] usb 9-1: SerialNumber: syz
[  155.616204][ T7111] usb 9-1: config 0 descriptor??
[  155.619051][ T8317] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  155.655526][ T1459] usb 8-1: Using ep0 maxpacket: 32
[  155.664727][ T1459] usb 8-1: config 0 has an invalid interface number: 12 but max is 0
[  155.668049][ T1459] usb 8-1: config 0 has no interface number 0
[  155.670512][ T1459] usb 8-1: config 0 interface 12 has no altsetting 0
[  155.678632][ T1459] usb 8-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  155.682547][ T1459] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  155.686944][ T1459] usb 8-1: Product: syz
[  155.688819][ T1459] usb 8-1: Manufacturer: syz
[  155.690821][ T1459] usb 8-1: SerialNumber: syz
[  155.695597][ T1459] usb 8-1: config 0 descriptor??
[  155.700344][ T1459] f81534 8-1:0.12: required endpoints missing
[  155.719038][ T8334] trusted_key: syz.1.701 sent an empty control message without MSG_MORE.
[  155.828723][ T8317] tmpfs: Bad value for 'mpol'
[  155.895273][ T8338] 9pnet_fd: p9_fd_create_unix (8338): address too long: ./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  155.908080][ T5998] usb 8-1: USB disconnect, device number 13
[  156.086842][ T7111] usb 9-1: USB disconnect, device number 16
[  156.767267][ T8362] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  156.771277][ T8362] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  156.775175][ T8362] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  156.778950][ T8362] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  156.782777][ T8362] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  156.786711][ T8362] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  156.790619][ T8362] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  156.794595][ T8362] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  156.798489][ T8362] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  156.802369][ T8362] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  156.893578][ T8367] netlink: 4 bytes leftover after parsing attributes in process `syz.3.711'.
[  157.953976][ T1459] usb 9-1: new high-speed USB device number 17 using dummy_hcd
[  158.103804][ T1459] usb 9-1: Using ep0 maxpacket: 32
[  158.108516][ T1459] usb 9-1: config 0 has an invalid interface number: 12 but max is 0
[  158.111447][ T1459] usb 9-1: config 0 has no interface number 0
[  158.113493][ T1459] usb 9-1: config 0 interface 12 has no altsetting 0
[  158.117703][ T1459] usb 9-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  158.120823][ T1459] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  158.123619][ T1459] usb 9-1: Product: syz
[  158.127634][ T1459] usb 9-1: Manufacturer: syz
[  158.129179][ T1459] usb 9-1: SerialNumber: syz
[  158.132437][ T1459] usb 9-1: config 0 descriptor??
[  158.136590][ T1459] f81534 9-1:0.12: required endpoints missing
[  158.346857][ T1459] usb 9-1: USB disconnect, device number 17
[  158.497001][ T8399] Trying to write to read-only block-device nullb0
[  158.777348][   T24] usb 10-1: new high-speed USB device number 13 using dummy_hcd
[  158.934269][   T24] usb 10-1: Using ep0 maxpacket: 32
[  158.961400][   T24] usb 10-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  158.998151][   T24] usb 10-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  159.007175][   T24] usb 10-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  159.016443][   T24] usb 10-1: Product: syz
[  159.021195][   T24] usb 10-1: Manufacturer: syz
[  159.033124][   T24] usb 10-1: SerialNumber: syz
[  159.106293][   T24] usb 10-1: config 0 descriptor??
[  159.134060][ T8387] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  159.528080][ T8387] tmpfs: Bad value for 'mpol'
[  159.609119][ T8416] netlink: 4 bytes leftover after parsing attributes in process `syz.3.730'.
[  159.670120][ T8422] netlink: 20 bytes leftover after parsing attributes in process `syz.3.731'.
[  159.732104][   T24] usb 10-1: USB disconnect, device number 13
[  160.187606][ T8431] program syz.4.732 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  160.524319][   T24] usb 9-1: new high-speed USB device number 18 using dummy_hcd
[  160.758690][ T8441] netlink: 'syz.1.736': attribute type 1 has an invalid length.
[  160.761171][ T8441] netlink: 224 bytes leftover after parsing attributes in process `syz.1.736'.
[  161.244735][ T8451] FAULT_INJECTION: forcing a failure.
[  161.244735][ T8451] name failslab, interval 1, probability 0, space 0, times 0
[  161.249463][ T8451] CPU: 2 UID: 0 PID: 8451 Comm: syz.1.741 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  161.249479][ T8451] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  161.249486][ T8451] Call Trace:
[  161.249490][ T8451]  <TASK>
[  161.249494][ T8451]  dump_stack_lvl+0x16c/0x1f0
[  161.249517][ T8451]  should_fail_ex+0x512/0x640
[  161.249530][ T8451]  ? fs_reclaim_acquire+0xae/0x150
[  161.249545][ T8451]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  161.249556][ T8451]  should_failslab+0xc2/0x120
[  161.249582][ T8451]  __kmalloc_noprof+0xd2/0x510
[  161.249602][ T8451]  tomoyo_realpath_from_path+0xc2/0x6e0
[  161.249615][ T8451]  ? tomoyo_profile+0x47/0x60
[  161.249629][ T8451]  tomoyo_path_number_perm+0x245/0x580
[  161.249645][ T8451]  ? tomoyo_path_number_perm+0x237/0x580
[  161.249663][ T8451]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  161.249694][ T8451]  ? find_held_lock+0x2b/0x80
[  161.249705][ T8451]  ? hook_file_ioctl_common+0x145/0x410
[  161.249725][ T8451]  ? __fget_files+0x20e/0x3c0
[  161.249739][ T8451]  ? __fput_deferred+0x460/0x480
[  161.249753][ T8451]  security_file_ioctl_compat+0x9b/0x240
[  161.249785][ T8451]  __ia32_compat_sys_ioctl+0xc3/0x370
[  161.249801][ T8451]  __do_fast_syscall_32+0x7c/0x3a0
[  161.249815][ T8451]  do_fast_syscall_32+0x32/0x80
[  161.249826][ T8451]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  161.249840][ T8451] RIP: 0023:0xf7fb2579
[  161.249849][ T8451] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  161.249860][ T8451] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  161.249871][ T8451] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000400c744d
[  161.249877][ T8451] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  161.249884][ T8451] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  161.249890][ T8451] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  161.249896][ T8451] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  161.249909][ T8451]  </TASK>
[  161.250232][ T8451] ERROR: Out of memory at tomoyo_realpath_from_path.
[  161.318456][   T24] usb 9-1: Using ep0 maxpacket: 32
[  161.321320][   T24] usb 9-1: config 0 has an invalid interface number: 12 but max is 0
[  161.323966][   T24] usb 9-1: config 0 has no interface number 0
[  161.325913][   T24] usb 9-1: config 0 interface 12 has no altsetting 0
[  161.329749][   T24] usb 9-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  161.332516][   T24] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  161.335509][   T24] usb 9-1: Product: syz
[  161.336860][   T24] usb 9-1: Manufacturer: syz
[  161.338323][   T24] usb 9-1: SerialNumber: syz
[  161.340954][   T24] usb 9-1: config 0 descriptor??
[  161.344266][   T24] f81534 9-1:0.12: required endpoints missing
[  161.555001][ T1459] usb 9-1: USB disconnect, device number 18
[  162.521758][ T8481] netlink: 147368 bytes leftover after parsing attributes in process `syz.5.751'.
[  162.973864][ T5988] usb 9-1: new high-speed USB device number 19 using dummy_hcd
[  163.129600][ T5988] usb 9-1: Using ep0 maxpacket: 32
[  163.135733][ T5988] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  163.142759][ T5988] usb 9-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  163.143894][   T24] usb 10-1: new high-speed USB device number 14 using dummy_hcd
[  163.149605][ T5988] usb 9-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  163.153332][ T5988] usb 9-1: Product: syz
[  163.155669][ T5988] usb 9-1: Manufacturer: syz
[  163.157630][ T5988] usb 9-1: SerialNumber: syz
[  163.162317][ T5988] usb 9-1: config 0 descriptor??
[  163.165689][ T8473] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  163.306056][   T24] usb 10-1: Using ep0 maxpacket: 32
[  163.310037][   T24] usb 10-1: config 0 has an invalid interface number: 12 but max is 0
[  163.313184][   T24] usb 10-1: config 0 has no interface number 0
[  163.316103][   T24] usb 10-1: config 0 interface 12 has no altsetting 0
[  163.325000][   T24] usb 10-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  163.329975][   T24] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  163.333378][   T24] usb 10-1: Product: syz
[  163.338313][   T24] usb 10-1: Manufacturer: syz
[  163.339877][   T24] usb 10-1: SerialNumber: syz
[  163.343188][   T24] usb 10-1: config 0 descriptor??
[  163.352794][   T24] f81534 10-1:0.12: required endpoints missing
[  163.382260][ T8473] tmpfs: Bad value for 'mpol'
[  163.568367][   T29] usb 10-1: USB disconnect, device number 14
[  163.642111][ T5988] usb 9-1: USB disconnect, device number 19
[  164.324047][ T8523] siw: device registration error -23
[  164.393049][ T8528] netlink: 14 bytes leftover after parsing attributes in process `syz.4.768'.
[  164.531222][ T8528] bond0 (unregistering): Released all slaves
[  165.893927][ T5988] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[  166.043893][ T5988] usb 6-1: Using ep0 maxpacket: 32
[  166.050386][ T5988] usb 6-1: config 0 has an invalid interface number: 12 but max is 0
[  166.054435][ T5988] usb 6-1: config 0 has no interface number 0
[  166.057057][ T5988] usb 6-1: config 0 interface 12 has no altsetting 0
[  166.062322][ T5988] usb 6-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  166.067348][ T5988] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  166.070334][ T5988] usb 6-1: Product: syz
[  166.071738][ T5988] usb 6-1: Manufacturer: syz
[  166.073266][ T5988] usb 6-1: SerialNumber: syz
[  166.073762][ T5998] usb 9-1: new high-speed USB device number 20 using dummy_hcd
[  166.076477][ T5988] usb 6-1: config 0 descriptor??
[  166.081744][ T5988] f81534 6-1:0.12: required endpoints missing
[  166.203824][ T5998] usb 9-1: device descriptor read/64, error -71
[  166.271993][ T8560] loop6: detected capacity change from 0 to 524287999
[  166.300762][    C2] I/O error, dev loop6, sector 0 op 0x1:(WRITE) flags 0xc800 phys_seg 128 prio class 0
[  166.304849][    C2] I/O error, dev loop6, sector 0 op 0x1:(WRITE) flags 0xc800 phys_seg 128 prio class 0
[  166.309895][    C2] I/O error, dev loop6, sector 1018 op 0x1:(WRITE) flags 0x8800 phys_seg 128 prio class 0
[  166.314063][    C2] I/O error, dev loop6, sector 1018 op 0x1:(WRITE) flags 0x8800 phys_seg 128 prio class 0
[  166.323793][    C2] I/O error, dev loop6, sector 2042 op 0x1:(WRITE) flags 0xc800 phys_seg 128 prio class 0
[  166.326095][    C3] I/O error, dev loop6, sector 23578 op 0x1:(WRITE) flags 0x8800 phys_seg 128 prio class 0
[  166.327939][    C2] I/O error, dev loop6, sector 2042 op 0x1:(WRITE) flags 0xc800 phys_seg 128 prio class 0
[  166.328119][    C2] I/O error, dev loop6, sector 3066 op 0x1:(WRITE) flags 0x8800 phys_seg 128 prio class 0
[  166.328143][    C2] I/O error, dev loop6, sector 3066 op 0x1:(WRITE) flags 0x8800 phys_seg 128 prio class 0
[  166.328321][    C2] I/O error, dev loop6, sector 4090 op 0x1:(WRITE) flags 0xc800 phys_seg 128 prio class 0
[  166.360372][ T8564] netlink: 'syz.3.778': attribute type 12 has an invalid length.
[  166.449729][ T5988] usb 6-1: USB disconnect, device number 19
[  166.458019][ T5998] usb 9-1: new high-speed USB device number 21 using dummy_hcd
[  166.595456][ T5998] usb 9-1: device descriptor read/64, error -71
[  166.705790][ T5998] usb usb9-port1: attempt power cycle
[  167.053873][ T5998] usb 9-1: new high-speed USB device number 22 using dummy_hcd
[  167.078987][ T5998] usb 9-1: device descriptor read/8, error -71
[  167.083924][ T8573] netlink: 'syz.3.781': attribute type 10 has an invalid length.
[  167.313867][ T5998] usb 9-1: new high-speed USB device number 23 using dummy_hcd
[  167.336147][ T5998] usb 9-1: device descriptor read/8, error -71
[  167.444856][ T5998] usb usb9-port1: unable to enumerate USB device
[  167.448256][ T8579] FAULT_INJECTION: forcing a failure.
[  167.448256][ T8579] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  167.453563][ T8579] CPU: 3 UID: 0 PID: 8579 Comm: syz.1.785 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  167.453588][ T8579] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  167.453598][ T8579] Call Trace:
[  167.453605][ T8579]  <TASK>
[  167.453611][ T8579]  dump_stack_lvl+0x16c/0x1f0
[  167.453641][ T8579]  should_fail_ex+0x512/0x640
[  167.453678][ T8579]  _copy_to_user+0x32/0xd0
[  167.453717][ T8579]  do_vfs_ioctl+0x115f/0x1a60
[  167.453740][ T8579]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  167.453775][ T8579]  ? find_held_lock+0x2b/0x80
[  167.453792][ T8579]  ? hook_file_ioctl_common+0x145/0x410
[  167.453820][ T8579]  ? __fget_files+0x20e/0x3c0
[  167.453841][ T8579]  ? __fput_deferred+0x460/0x480
[  167.453868][ T8579]  __ia32_compat_sys_ioctl+0x1c0/0x370
[  167.453893][ T8579]  __do_fast_syscall_32+0x7c/0x3a0
[  167.453912][ T8579]  do_fast_syscall_32+0x32/0x80
[  167.453928][ T8579]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  167.453947][ T8579] RIP: 0023:0xf7fb2579
[  167.453959][ T8579] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  167.453975][ T8579] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  167.453992][ T8579] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0189436
[  167.454003][ T8579] RDX: 0000000080000140 RSI: 0000000000000000 RDI: 0000000000000000
[  167.454013][ T8579] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  167.454025][ T8579] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  167.454036][ T8579] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  167.454058][ T8579]  </TASK>
[  167.457827][ T8583] netlink: 4 bytes leftover after parsing attributes in process `syz.5.786'.
[  167.530007][ T8583] team_slave_0: entered promiscuous mode
[  167.532496][ T8583] team_slave_1: entered promiscuous mode
[  167.940532][ T8599] netlink: 'syz.1.791': attribute type 39 has an invalid length.
[  168.043957][ T7111] usb 10-1: new high-speed USB device number 15 using dummy_hcd
[  168.194298][ T7111] usb 10-1: Using ep0 maxpacket: 32
[  168.198395][ T7111] usb 10-1: config 0 has an invalid interface number: 12 but max is 0
[  168.204155][ T7111] usb 10-1: config 0 has no interface number 0
[  168.207045][ T7111] usb 10-1: config 0 interface 12 has no altsetting 0
[  168.212444][ T7111] usb 10-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  168.217375][ T7111] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  168.221266][ T7111] usb 10-1: Product: syz
[  168.223059][ T7111] usb 10-1: Manufacturer: syz
[  168.225728][ T7111] usb 10-1: SerialNumber: syz
[  168.230122][ T7111] usb 10-1: config 0 descriptor??
[  168.238098][ T7111] f81534 10-1:0.12: required endpoints missing
[  168.453856][ T5661] usb 10-1: USB disconnect, device number 15
[  168.558459][ T8607] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  169.423428][ T8632] netlink: 28 bytes leftover after parsing attributes in process `syz.3.800'.
[  169.828787][ T8638] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[  169.831048][ T8638] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  169.837685][ T8638] vhci_hcd vhci_hcd.0: Device attached
[  170.013846][   T55] vhci_hcd: vhci_device speed not set
[  170.084841][   T55] usb 43-1: new full-speed USB device number 2 using vhci_hcd
[  170.101825][ T8645] FAULT_INJECTION: forcing a failure.
[  170.101825][ T8645] name failslab, interval 1, probability 0, space 0, times 0
[  170.107599][ T8645] CPU: 3 UID: 0 PID: 8645 Comm: syz.1.805 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  170.107615][ T8645] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  170.107622][ T8645] Call Trace:
[  170.107626][ T8645]  <TASK>
[  170.107630][ T8645]  dump_stack_lvl+0x16c/0x1f0
[  170.107652][ T8645]  should_fail_ex+0x512/0x640
[  170.107664][ T8645]  ? fs_reclaim_acquire+0xae/0x150
[  170.107679][ T8645]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  170.107692][ T8645]  should_failslab+0xc2/0x120
[  170.107703][ T8645]  __kmalloc_noprof+0xd2/0x510
[  170.107723][ T8645]  tomoyo_realpath_from_path+0xc2/0x6e0
[  170.107761][ T8645]  ? tomoyo_profile+0x47/0x60
[  170.107778][ T8645]  tomoyo_path_number_perm+0x245/0x580
[  170.107796][ T8645]  ? tomoyo_path_number_perm+0x237/0x580
[  170.107814][ T8645]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  170.107845][ T8645]  ? find_held_lock+0x2b/0x80
[  170.107856][ T8645]  ? hook_file_ioctl_common+0x145/0x410
[  170.107875][ T8645]  ? __fget_files+0x20e/0x3c0
[  170.107890][ T8645]  ? __fput_deferred+0x460/0x480
[  170.107905][ T8645]  security_file_ioctl_compat+0x9b/0x240
[  170.107925][ T8645]  __ia32_compat_sys_ioctl+0xc3/0x370
[  170.107941][ T8645]  __do_fast_syscall_32+0x7c/0x3a0
[  170.107953][ T8645]  do_fast_syscall_32+0x32/0x80
[  170.107964][ T8645]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  170.107978][ T8645] RIP: 0023:0xf7fb2579
[  170.107988][ T8645] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  170.107998][ T8645] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  170.108009][ T8645] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000c0189436
[  170.108016][ T8645] RDX: 0000000080000140 RSI: 0000000000000000 RDI: 0000000000000000
[  170.108022][ T8645] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  170.108028][ T8645] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  170.108034][ T8645] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  170.108047][ T8645]  </TASK>
[  170.108052][ T8645] ERROR: Out of memory at tomoyo_realpath_from_path.
[  170.333947][   T10] usb 9-1: new high-speed USB device number 24 using dummy_hcd
[  170.452202][ T8640] vhci_hcd: connection reset by peer
[  170.455047][   T73] vhci_hcd: stop threads
[  170.456898][   T73] vhci_hcd: release socket
[  170.458891][   T73] vhci_hcd: disconnect device
[  170.493900][   T10] usb 9-1: Using ep0 maxpacket: 32
[  170.498420][   T10] usb 9-1: config 0 has an invalid interface number: 12 but max is 0
[  170.502099][   T10] usb 9-1: config 0 has no interface number 0
[  170.505020][   T10] usb 9-1: config 0 interface 12 has no altsetting 0
[  170.510432][   T10] usb 9-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  170.514522][   T10] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  170.517858][   T10] usb 9-1: Product: syz
[  170.519719][   T10] usb 9-1: Manufacturer: syz
[  170.521785][   T10] usb 9-1: SerialNumber: syz
[  170.526451][   T10] usb 9-1: config 0 descriptor??
[  170.530851][   T10] f81534 9-1:0.12: required endpoints missing
[  170.740282][   T10] usb 9-1: USB disconnect, device number 24
[  171.253179][ T8666] batman_adv: batadv0: Adding interface: ip6gretap1
[  171.256252][ T8666] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  171.267167][ T8666] batman_adv: batadv0: Not using interface ip6gretap1 (retrying later): interface not active
[  172.645195][ T5998] usb 8-1: new high-speed USB device number 14 using dummy_hcd
[  172.707692][ T8705] FAULT_INJECTION: forcing a failure.
[  172.707692][ T8705] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  172.711757][ T8705] CPU: 1 UID: 0 PID: 8705 Comm: syz.5.821 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  172.711773][ T8705] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  172.711780][ T8705] Call Trace:
[  172.711784][ T8705]  <TASK>
[  172.711789][ T8705]  dump_stack_lvl+0x16c/0x1f0
[  172.711810][ T8705]  should_fail_ex+0x512/0x640
[  172.711826][ T8705]  _copy_from_user+0x2e/0xd0
[  172.711840][ T8705]  get_compat_msghdr+0xa7/0x170
[  172.711853][ T8705]  ? __pfx_get_compat_msghdr+0x10/0x10
[  172.711865][ T8705]  ? __pfx__kstrtoull+0x10/0x10
[  172.711884][ T8705]  ___sys_sendmsg+0x1ae/0x1d0
[  172.711897][ T8705]  ? __pfx____sys_sendmsg+0x10/0x10
[  172.711906][ T8705]  ? __lock_acquire+0x622/0x1c90
[  172.711938][ T8705]  __sys_sendmmsg+0x2f9/0x420
[  172.711954][ T8705]  ? __pfx___sys_sendmmsg+0x10/0x10
[  172.711971][ T8705]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  172.711989][ T8705]  ? fput+0x70/0xf0
[  172.712000][ T8705]  ? ksys_write+0x1ac/0x250
[  172.712016][ T8705]  ? __pfx_ksys_write+0x10/0x10
[  172.712034][ T8705]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  172.712047][ T8705]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  172.712058][ T8705]  __do_fast_syscall_32+0x7c/0x3a0
[  172.712071][ T8705]  do_fast_syscall_32+0x32/0x80
[  172.712082][ T8705]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  172.712098][ T8705] RIP: 0023:0xf7f18579
[  172.712107][ T8705] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  172.712118][ T8705] RSP: 002b:00000000f4ff455c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  172.712129][ T8705] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080000480
[  172.712135][ T8705] RDX: 00000000000002e9 RSI: 0000000000000000 RDI: 0000000000000000
[  172.712141][ T8705] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  172.712147][ T8705] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  172.712154][ T8705] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  172.712167][ T8705]  </TASK>
[  172.803771][ T5998] usb 8-1: Using ep0 maxpacket: 32
[  173.532345][ T5998] usb 8-1: config 0 has an invalid interface number: 12 but max is 0
[  173.542028][ T5998] usb 8-1: config 0 has no interface number 0
[  173.544086][ T5998] usb 8-1: config 0 interface 12 has no altsetting 0
[  173.547825][ T5998] usb 8-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  173.551412][ T5998] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  173.554353][ T5998] usb 8-1: Product: syz
[  173.556082][ T5998] usb 8-1: Manufacturer: syz
[  173.557651][ T5998] usb 8-1: SerialNumber: syz
[  173.560418][ T5998] usb 8-1: config 0 descriptor??
[  173.563252][ T5998] f81534 8-1:0.12: required endpoints missing
[  173.819515][ T5998] usb 8-1: USB disconnect, device number 14
[  173.994219][ T8728] input: syz0 as /devices/virtual/input/input64
[  174.783964][   T10] usb 10-1: new high-speed USB device number 16 using dummy_hcd
[  174.819843][ T8754] fuse: Bad value for 'fd'
[  175.608219][   T55] vhci_hcd: vhci_device speed not set
[  175.633847][   T10] usb 10-1: device descriptor read/64, error -71
[  175.894304][   T10] usb 10-1: new high-speed USB device number 17 using dummy_hcd
[  176.093826][   T53] usb 9-1: new high-speed USB device number 25 using dummy_hcd
[  176.124126][   T10] usb 10-1: device descriptor read/64, error -71
[  176.243799][   T53] usb 9-1: Using ep0 maxpacket: 32
[  176.246014][   T10] usb usb10-port1: attempt power cycle
[  176.247646][   T53] usb 9-1: config 0 has an invalid interface number: 12 but max is 0
[  176.251196][   T53] usb 9-1: config 0 has no interface number 0
[  176.255195][   T53] usb 9-1: config 0 interface 12 has no altsetting 0
[  176.260349][   T53] usb 9-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  176.264197][   T53] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  176.267512][   T53] usb 9-1: Product: syz
[  176.269263][   T53] usb 9-1: Manufacturer: syz
[  176.271204][   T53] usb 9-1: SerialNumber: syz
[  176.275361][   T53] usb 9-1: config 0 descriptor??
[  176.279931][   T53] f81534 9-1:0.12: required endpoints missing
[  176.353968][ T5988] usb 8-1: new high-speed USB device number 15 using dummy_hcd
[  176.504398][ T6875] usb 9-1: USB disconnect, device number 25
[  176.523886][ T5988] usb 8-1: Using ep0 maxpacket: 32
[  176.528752][ T5988] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  176.537616][ T5988] usb 8-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  176.541226][ T5988] usb 8-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  176.544732][ T5988] usb 8-1: Product: syz
[  176.546386][ T5988] usb 8-1: Manufacturer: syz
[  176.548207][ T5988] usb 8-1: SerialNumber: syz
[  176.552499][ T5988] usb 8-1: config 0 descriptor??
[  176.555446][ T8758] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[  176.614671][   T10] usb 10-1: new high-speed USB device number 18 using dummy_hcd
[  176.635515][   T10] usb 10-1: device descriptor read/8, error -71
[  176.764305][ T8758] tmpfs: Bad value for 'mpol'
[  176.893844][   T10] usb 10-1: new high-speed USB device number 19 using dummy_hcd
[  176.914462][   T10] usb 10-1: device descriptor read/8, error -71
[  177.022945][    T9] usb 8-1: USB disconnect, device number 15
[  177.025526][ T5988] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[  177.029088][   T10] usb usb10-port1: unable to enumerate USB device
[  177.174540][ T5988] usb 6-1: too many configurations: 13, using maximum allowed: 8
[  177.178638][ T5988] usb 6-1: config 0 has no interfaces?
[  177.181311][ T5988] usb 6-1: config 0 has no interfaces?
[  177.184353][ T5988] usb 6-1: config 0 has no interfaces?
[  177.186865][ T5988] usb 6-1: config 0 has no interfaces?
[  177.189460][ T5988] usb 6-1: config 0 has no interfaces?
[  177.191967][ T5988] usb 6-1: config 0 has no interfaces?
[  177.198089][ T5988] usb 6-1: config 0 has no interfaces?
[  177.205060][ T5988] usb 6-1: config 0 has no interfaces?
[  177.219689][ T5988] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  177.222544][ T5988] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  177.229756][ T5988] usb 6-1: Product: syz
[  177.235459][ T5988] usb 6-1: Manufacturer: syz
[  177.237012][ T5988] usb 6-1: SerialNumber: syz
[  177.245386][ T5988] usb 6-1: config 0 descriptor??
[  177.457548][ T5988] usb 6-1: USB disconnect, device number 20
[  177.683893][ T6875] usb 9-1: new high-speed USB device number 26 using dummy_hcd
[  177.880288][ T6875] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  177.884997][ T6875] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  177.889253][ T6875] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  177.892807][ T6875] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  177.914216][ T8776] raw-gadget.2 gadget.4: fail, usb_ep_enable returned -22
[  177.931189][ T6875] usb 9-1: Quirk or no altset; falling back to MIDI 1.0
[  178.093820][ T5988] usb 6-1: new high-speed USB device number 21 using dummy_hcd
[  178.244828][ T5988] usb 6-1: too many configurations: 13, using maximum allowed: 8
[  178.249674][ T5988] usb 6-1: config 0 has no interfaces?
[  178.253080][ T5988] usb 6-1: config 0 has no interfaces?
[  178.256725][ T5988] usb 6-1: config 0 has no interfaces?
[  178.260427][ T5988] usb 6-1: config 0 has no interfaces?
[  178.268053][ T5988] usb 6-1: config 0 has no interfaces?
[  178.271638][ T5988] usb 6-1: config 0 has no interfaces?
[  178.276829][ T5988] usb 6-1: config 0 has no interfaces?
[  178.280400][ T5988] usb 6-1: config 0 has no interfaces?
[  178.285757][ T5988] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  178.290256][ T5988] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  178.296857][ T5988] usb 6-1: Product: syz
[  178.298980][ T5988] usb 6-1: Manufacturer: syz
[  178.301248][ T5988] usb 6-1: SerialNumber: syz
[  178.311940][ T5988] usb 6-1: config 0 descriptor??
[  178.530153][ T8771] tmpfs: Bad value for 'mpol'
[  178.533567][ T5988] usb 6-1: USB disconnect, device number 21
[  179.434221][ T5988] usb 8-1: new high-speed USB device number 16 using dummy_hcd
[  179.583816][ T5988] usb 8-1: Using ep0 maxpacket: 32
[  179.588021][ T5988] usb 8-1: config 0 has an invalid interface number: 12 but max is 0
[  179.591467][ T5988] usb 8-1: config 0 has no interface number 0
[  179.594486][ T5988] usb 8-1: config 0 interface 12 has no altsetting 0
[  179.600686][ T5988] usb 8-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  179.604782][ T5988] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  179.608502][ T5988] usb 8-1: Product: syz
[  179.610381][ T5988] usb 8-1: Manufacturer: syz
[  179.612363][ T5988] usb 8-1: SerialNumber: syz
[  179.616604][ T5988] usb 8-1: config 0 descriptor??
[  179.623835][ T1459] usb 6-1: new high-speed USB device number 22 using dummy_hcd
[  179.629186][ T5988] f81534 8-1:0.12: required endpoints missing
[  179.753863][ T1459] usb 6-1: device descriptor read/64, error -71
[  179.838492][ T5988] usb 8-1: USB disconnect, device number 16
[  179.993946][ T1459] usb 6-1: new high-speed USB device number 23 using dummy_hcd
[  180.104310][ T6008] usb 9-1: USB disconnect, device number 26
[  180.143835][ T1459] usb 6-1: device descriptor read/64, error -71
[  180.254010][ T1459] usb usb6-port1: attempt power cycle
[  180.594102][ T1459] usb 6-1: new high-speed USB device number 24 using dummy_hcd
[  180.614588][ T1459] usb 6-1: device descriptor read/8, error -71
[  180.853788][ T1459] usb 6-1: new high-speed USB device number 25 using dummy_hcd
[  180.876971][ T1459] usb 6-1: device descriptor read/8, error -71
[  180.984192][ T1459] usb usb6-port1: unable to enumerate USB device
[  181.629832][ T8835] netlink: 8 bytes leftover after parsing attributes in process `syz.4.878'.
[  182.093787][ T6875] usb 9-1: new high-speed USB device number 27 using dummy_hcd
[  182.323789][ T6875] usb 9-1: Using ep0 maxpacket: 32
[  182.327480][ T6875] usb 9-1: config 0 has an invalid interface number: 12 but max is 0
[  182.330136][ T6875] usb 9-1: config 0 has no interface number 0
[  182.332220][ T6875] usb 9-1: config 0 interface 12 has no altsetting 0
[  182.337476][ T6875] usb 9-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  182.340320][ T6875] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  182.342829][ T6875] usb 9-1: Product: syz
[  182.344292][ T6875] usb 9-1: Manufacturer: syz
[  182.345784][ T6875] usb 9-1: SerialNumber: syz
[  182.355570][ T6875] usb 9-1: config 0 descriptor??
[  182.362708][ T6875] f81534 9-1:0.12: required endpoints missing
[  182.573881][   T53] usb 9-1: USB disconnect, device number 27
[  182.864472][    T9] usb 8-1: new high-speed USB device number 17 using dummy_hcd
[  183.049510][    T9] usb 8-1: too many configurations: 13, using maximum allowed: 8
[  183.074094][    T9] usb 8-1: config 0 has no interfaces?
[  183.110196][    T9] usb 8-1: config 0 has no interfaces?
[  183.136530][    T9] usb 8-1: config 0 has no interfaces?
[  183.163662][    T9] usb 8-1: config 0 has no interfaces?
[  183.274018][    T9] usb 8-1: config 0 has no interfaces?
[  183.294114][    T9] usb 8-1: config 0 has no interfaces?
[  183.305613][    T9] usb 8-1: config 0 has no interfaces?
[  183.313185][    T9] usb 8-1: config 0 has no interfaces?
[  183.759150][    T9] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  183.762828][    T9] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  183.766422][    T9] usb 8-1: Product: syz
[  183.768461][    T9] usb 8-1: Manufacturer: syz
[  183.770454][    T9] usb 8-1: SerialNumber: syz
[  183.775843][    T9] usb 8-1: config 0 descriptor??
[  184.084093][    T9] usb 8-1: USB disconnect, device number 17
[  184.713502][    T9] usb 8-1: new high-speed USB device number 18 using dummy_hcd
[  184.864280][ T4402] usb 6-1: new high-speed USB device number 26 using dummy_hcd
[  184.929172][    T9] usb 8-1: too many configurations: 13, using maximum allowed: 8
[  184.982175][    T9] usb 8-1: config 0 has no interfaces?
[  185.080501][ T4402] usb 6-1: device descriptor read/64, error -71
[  185.085468][    T9] usb 8-1: config 0 has no interfaces?
[  185.093854][    T9] usb 8-1: config 0 has no interfaces?
[  185.099217][    T9] usb 8-1: config 0 has no interfaces?
[  185.106466][    T9] usb 8-1: config 0 has no interfaces?
[  185.113746][    T9] usb 8-1: config 0 has no interfaces?
[  185.146765][    T9] usb 8-1: config 0 has no interfaces?
[  185.156676][    T9] usb 8-1: config 0 has no interfaces?
[  185.173843][ T1459] usb 10-1: new high-speed USB device number 20 using dummy_hcd
[  185.178856][    T9] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  185.182941][    T9] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  185.186715][    T9] usb 8-1: Product: syz
[  185.189351][    T9] usb 8-1: Manufacturer: syz
[  185.191833][    T9] usb 8-1: SerialNumber: syz
[  185.219055][    T9] usb 8-1: config 0 descriptor??
[  185.324404][ T1459] usb 10-1: too many configurations: 13, using maximum allowed: 8
[  185.327877][ T1459] usb 10-1: config 0 has no interfaces?
[  185.330419][ T1459] usb 10-1: config 0 has no interfaces?
[  185.332907][ T1459] usb 10-1: config 0 has no interfaces?
[  185.335649][ T1459] usb 10-1: config 0 has no interfaces?
[  185.338234][ T1459] usb 10-1: config 0 has no interfaces?
[  185.341346][ T1459] usb 10-1: config 0 has no interfaces?
[  185.344918][ T1459] usb 10-1: config 0 has no interfaces?
[  185.349678][ T1459] usb 10-1: config 0 has no interfaces?
[  185.354836][ T1459] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  185.358815][ T1459] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  185.362279][ T1459] usb 10-1: Product: syz
[  185.364280][ T4402] usb 6-1: new high-speed USB device number 27 using dummy_hcd
[  185.367674][ T1459] usb 10-1: Manufacturer: syz
[  185.369688][ T1459] usb 10-1: SerialNumber: syz
[  185.374205][ T1459] usb 10-1: config 0 descriptor??
[  185.445576][ T8858] tmpfs: Bad value for 'mpol'
[  185.449533][   T24] usb 8-1: USB disconnect, device number 18
[  185.513977][ T4402] usb 6-1: device descriptor read/64, error -71
[  185.605917][ T1459] usb 10-1: USB disconnect, device number 20
[  185.634274][ T4402] usb usb6-port1: attempt power cycle
[  185.883798][    T9] usb 9-1: new high-speed USB device number 28 using dummy_hcd
[  185.983848][ T4402] usb 6-1: new high-speed USB device number 28 using dummy_hcd
[  186.004441][ T4402] usb 6-1: device descriptor read/8, error -71
[  186.033804][    T9] usb 9-1: Using ep0 maxpacket: 32
[  186.037883][    T9] usb 9-1: config 0 has an invalid interface number: 12 but max is 0
[  186.041340][    T9] usb 9-1: config 0 has no interface number 0
[  186.043919][    T9] usb 9-1: config 0 interface 12 has no altsetting 0
[  186.048814][    T9] usb 9-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  186.052642][    T9] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  186.056040][    T9] usb 9-1: Product: syz
[  186.057818][    T9] usb 9-1: Manufacturer: syz
[  186.059810][    T9] usb 9-1: SerialNumber: syz
[  186.063823][    T9] usb 9-1: config 0 descriptor??
[  186.068713][    T9] f81534 9-1:0.12: required endpoints missing
[  186.243860][ T4402] usb 6-1: new high-speed USB device number 29 using dummy_hcd
[  186.254086][ T1459] usb 10-1: new high-speed USB device number 21 using dummy_hcd
[  186.264691][ T4402] usb 6-1: device descriptor read/8, error -71
[  186.277242][   T24] usb 9-1: USB disconnect, device number 28
[  186.374231][ T4402] usb usb6-port1: unable to enumerate USB device
[  186.413804][ T1459] usb 10-1: Using ep0 maxpacket: 32
[  186.417765][ T1459] usb 10-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  186.424383][ T1459] usb 10-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  186.428279][ T1459] usb 10-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  186.433107][ T1459] usb 10-1: Product: syz
[  186.469559][ T1459] usb 10-1: Manufacturer: syz
[  186.471829][ T1459] usb 10-1: SerialNumber: syz
[  186.476206][ T1459] usb 10-1: config 0 descriptor??
[  186.479153][ T8886] raw-gadget.2 gadget.5: fail, usb_ep_enable returned -22
[  186.696597][ T8886] tmpfs: Bad value for 'mpol'
[  186.954666][ T5661] usb 10-1: USB disconnect, device number 21
[  187.529656][ T8909] netlink: 16 bytes leftover after parsing attributes in process `syz.4.895'.
[  187.682001][ T8907] netlink: 216 bytes leftover after parsing attributes in process `syz.3.894'.
[  187.684968][ T8907] netlink: 24 bytes leftover after parsing attributes in process `syz.3.894'.
[  187.687742][ T8907] netlink: 16 bytes leftover after parsing attributes in process `syz.3.894'.
[  187.774712][ T8913] trusted_key: encrypted_key: insufficient parameters specified
[  187.807507][ T8918] FAULT_INJECTION: forcing a failure.
[  187.807507][ T8918] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  187.811449][ T8918] CPU: 3 UID: 0 PID: 8918 Comm: syz.1.898 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  187.811464][ T8918] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  187.811471][ T8918] Call Trace:
[  187.811476][ T8918]  <TASK>
[  187.811480][ T8918]  dump_stack_lvl+0x16c/0x1f0
[  187.811502][ T8918]  should_fail_ex+0x512/0x640
[  187.811517][ T8918]  _copy_to_user+0x32/0xd0
[  187.811532][ T8918]  put_old_timespec32+0xb4/0x120
[  187.811547][ T8918]  ? __pfx_put_old_timespec32+0x10/0x10
[  187.811560][ T8918]  ? ktime_get_real_ts64+0x21a/0x3f0
[  187.811592][ T8918]  __ia32_sys_clock_gettime32+0x1d3/0x270
[  187.811613][ T8918]  ? __pfx___ia32_sys_clock_gettime32+0x10/0x10
[  187.811630][ T8918]  ? rcu_read_unlock_trace_special+0x2aa/0x3f0
[  187.811646][ T8918]  ? rcu_is_watching+0x12/0xc0
[  187.811658][ T8918]  __do_fast_syscall_32+0x7c/0x3a0
[  187.811671][ T8918]  do_fast_syscall_32+0x32/0x80
[  187.811682][ T8918]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  187.811696][ T8918] RIP: 0023:0xf7fb2579
[  187.811705][ T8918] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  187.811715][ T8918] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000109
[  187.811729][ T8918] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000800031c0
[  187.811739][ T8918] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  187.811747][ T8918] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  187.811756][ T8918] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  187.811765][ T8918] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  187.811786][ T8918]  </TASK>
[  188.081416][ T8926] random: crng reseeded on system resumption
[  188.153947][ T4402] usb 6-1: new high-speed USB device number 30 using dummy_hcd
[  188.310734][ T8931] wg1 speed is unknown, defaulting to 1000
[  188.314403][ T4402] usb 6-1: Using ep0 maxpacket: 32
[  188.335942][ T4402] usb 6-1: config 0 has an invalid interface number: 12 but max is 0
[  188.338966][ T4402] usb 6-1: config 0 has no interface number 0
[  188.341552][ T4402] usb 6-1: config 0 interface 12 has no altsetting 0
[  188.346558][ T4402] usb 6-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  188.349681][ T4402] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  188.352832][ T4402] usb 6-1: Product: syz
[  188.354526][ T4402] usb 6-1: Manufacturer: syz
[  188.356433][ T4402] usb 6-1: SerialNumber: syz
[  188.359926][ T4402] usb 6-1: config 0 descriptor??
[  188.374190][ T4402] f81534 6-1:0.12: required endpoints missing
[  188.457647][ T8930] syz.5.904 (8930): drop_caches: 1
[  188.532447][ T8931] block device autoloading is deprecated and will be removed.
[  188.536137][ T8931] syz.5.904: attempt to access beyond end of device
[  188.536137][ T8931] md2: rw=2048, sector=0, nr_sectors = 8 limit=0
[  188.543418][ T8930] syz.5.904 (8930): drop_caches: 1
[  188.594879][ T7111] usb 6-1: USB disconnect, device number 30
[  188.703804][ T6875] usb 8-1: new high-speed USB device number 19 using dummy_hcd
[  188.855604][ T6875] usb 8-1: too many configurations: 13, using maximum allowed: 8
[  188.860084][ T6875] usb 8-1: config 0 has no interfaces?
[  188.863793][ T6875] usb 8-1: config 0 has no interfaces?
[  188.867312][ T6875] usb 8-1: config 0 has no interfaces?
[  188.870406][ T6875] usb 8-1: config 0 has no interfaces?
[  188.873574][ T6875] usb 8-1: config 0 has no interfaces?
[  188.876733][ T6875] usb 8-1: config 0 has no interfaces?
[  188.882342][ T6875] usb 8-1: config 0 has no interfaces?
[  188.885362][ T6875] usb 8-1: config 0 has no interfaces?
[  188.892633][ T6875] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  188.895598][ T6875] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  188.898103][ T6875] usb 8-1: Product: syz
[  188.899467][ T6875] usb 8-1: Manufacturer: syz
[  188.901009][ T6875] usb 8-1: SerialNumber: syz
[  188.907251][ T6875] usb 8-1: config 0 descriptor??
[  189.150068][ T6008] usb 8-1: USB disconnect, device number 19
[  189.350504][ T8955] FAULT_INJECTION: forcing a failure.
[  189.350504][ T8955] name failslab, interval 1, probability 0, space 0, times 0
[  189.355225][ T8955] CPU: 1 UID: 0 PID: 8955 Comm: syz.4.913 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  189.355241][ T8955] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  189.355248][ T8955] Call Trace:
[  189.355252][ T8955]  <TASK>
[  189.355256][ T8955]  dump_stack_lvl+0x16c/0x1f0
[  189.355279][ T8955]  should_fail_ex+0x512/0x640
[  189.355291][ T8955]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  189.355308][ T8955]  should_failslab+0xc2/0x120
[  189.355320][ T8955]  __kmalloc_cache_noprof+0x6a/0x3e0
[  189.355335][ T8955]  ? v9fs_mount+0xa6/0xa30
[  189.355350][ T8955]  v9fs_mount+0xa6/0xa30
[  189.355360][ T8955]  ? rcu_is_watching+0x12/0xc0
[  189.355372][ T8955]  ? __pfx_v9fs_mount+0x10/0x10
[  189.355385][ T8955]  ? apparmor_capable+0x114/0x1d0
[  189.355400][ T8955]  ? __pfx_v9fs_mount+0x10/0x10
[  189.355412][ T8955]  legacy_get_tree+0x10c/0x220
[  189.355429][ T8955]  vfs_get_tree+0x8b/0x340
[  189.355443][ T8955]  path_mount+0x14d4/0x1f70
[  189.355461][ T8955]  ? kmem_cache_free+0x2d1/0x4d0
[  189.355478][ T8955]  ? __pfx_path_mount+0x10/0x10
[  189.355494][ T8955]  ? getname_flags.part.0+0x1c5/0x550
[  189.355509][ T8955]  ? putname+0x154/0x1a0
[  189.355521][ T8955]  __ia32_sys_mount+0x28b/0x310
[  189.355531][ T8955]  ? __pfx___ia32_sys_mount+0x10/0x10
[  189.355543][ T8955]  ? rcu_is_watching+0x12/0xc0
[  189.355555][ T8955]  __do_fast_syscall_32+0x7c/0x3a0
[  189.355595][ T8955]  do_fast_syscall_32+0x32/0x80
[  189.355606][ T8955]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  189.355620][ T8955] RIP: 0023:0xf7f55579
[  189.355629][ T8955] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  189.355640][ T8955] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  189.355651][ T8955] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000080000100
[  189.355658][ T8955] RDX: 0000000080000040 RSI: 0000000000000000 RDI: 0000000080000300
[  189.355664][ T8955] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  189.355671][ T8955] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  189.355677][ T8955] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  189.355690][ T8955]  </TASK>
[  189.723887][ T5661] usb 6-1: new high-speed USB device number 31 using dummy_hcd
[  189.793809][ T5998] usb 8-1: new high-speed USB device number 20 using dummy_hcd
[  189.813819][ T5306] Bluetooth: hci4: command 0x040f tx timeout
[  189.873728][ T5661] usb 6-1: Using ep0 maxpacket: 32
[  189.876815][ T5661] usb 6-1: config 0 has an invalid interface number: 12 but max is 0
[  189.879448][ T5661] usb 6-1: config 0 has no interface number 0
[  189.881392][ T5661] usb 6-1: config 0 interface 12 has no altsetting 0
[  189.885653][ T5661] usb 6-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  189.888535][ T5661] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  189.891090][ T5661] usb 6-1: Product: syz
[  189.892405][ T5661] usb 6-1: Manufacturer: syz
[  189.894215][ T5661] usb 6-1: SerialNumber: syz
[  189.896906][ T5661] usb 6-1: config 0 descriptor??
[  189.902202][ T5661] f81534 6-1:0.12: required endpoints missing
[  189.943795][ T5998] usb 8-1: Using ep0 maxpacket: 32
[  189.954771][ T5998] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  189.959513][ T5998] usb 8-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  189.962427][ T5998] usb 8-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  189.965651][ T5998] usb 8-1: Product: syz
[  189.966981][ T5998] usb 8-1: Manufacturer: syz
[  189.968457][ T5998] usb 8-1: SerialNumber: syz
[  189.971417][ T5998] usb 8-1: config 0 descriptor??
[  189.973510][ T8938] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  190.106346][   T53] usb 6-1: USB disconnect, device number 31
[  190.182456][ T8938] tmpfs: Bad value for 'mpol'
[  190.439800][   T53] usb 8-1: USB disconnect, device number 20
[  190.867099][ T8988] binder: Bad value for 'max'
[  190.869303][ T8988] netlink: 12 bytes leftover after parsing attributes in process `syz.4.925'.
[  190.951395][ T8989] wg1 speed is unknown, defaulting to 1000
[  191.084365][ T8992] netlink: 'syz.5.926': attribute type 18 has an invalid length.
[  191.288032][   T40] kauditd_printk_skb: 11 callbacks suppressed
[  191.288046][   T40] audit: type=1800 audit(1749118575.563:687): pid=8997 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.929" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0
[  191.357522][ T9000] fuse: Unknown parameter '0000000000000000000000000000000000000000'
[  191.676937][ T9008] wg1 speed is unknown, defaulting to 1000
[  191.832839][ T9015] siw: device registration error -23
[  191.904978][ T7111] usb 9-1: new high-speed USB device number 29 using dummy_hcd
[  192.063807][ T7111] usb 9-1: Using ep0 maxpacket: 32
[  192.069595][ T7111] usb 9-1: config 0 has an invalid interface number: 12 but max is 0
[  192.073910][ T7111] usb 9-1: config 0 has no interface number 0
[  192.078694][ T7111] usb 9-1: config 0 interface 12 has no altsetting 0
[  192.090751][ T7111] usb 9-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  192.096052][ T7111] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  192.103899][ T7111] usb 9-1: Product: syz
[  192.107619][ T7111] usb 9-1: Manufacturer: syz
[  192.111868][ T7111] usb 9-1: SerialNumber: syz
[  192.136133][ T7111] usb 9-1: config 0 descriptor??
[  192.145899][ T7111] f81534 9-1:0.12: required endpoints missing
[  192.355818][ T7111] usb 9-1: USB disconnect, device number 29
[  192.401625][ T9019] netlink: 5280 bytes leftover after parsing attributes in process `syz.5.935'.
[  192.426620][ T9015] wg1 speed is unknown, defaulting to 1000
[  192.443621][ T9019] x_tables: ip_tables: ah match: only valid for protocol 51
[  192.626106][ T9028] binder: 9027:9028 ioctl c0306201 80000080 returned -14
[  192.910785][ T9036] capability: warning: `syz.4.941' uses 32-bit capabilities (legacy support in use)
[  192.914028][ T5998] usb 6-1: new high-speed USB device number 32 using dummy_hcd
[  193.065130][ T5998] usb 6-1: no configurations
[  193.066692][ T5998] usb 6-1: can't read configurations, error -22
[  193.193822][ T5998] usb 6-1: new high-speed USB device number 33 using dummy_hcd
[  193.354746][ T5998] usb 6-1: no configurations
[  193.356657][ T5998] usb 6-1: can't read configurations, error -22
[  193.359490][ T5998] usb usb6-port1: attempt power cycle
[  193.478989][ T9045] netlink: 8 bytes leftover after parsing attributes in process `syz.3.944'.
[  193.595171][ T9055] netlink: 24 bytes leftover after parsing attributes in process `syz.5.947'.
[  193.598503][ T9056] netlink: 212376 bytes leftover after parsing attributes in process `syz.3.948'.
[  193.600173][ T9055] 9pnet_fd: Insufficient options for proto=fd
[  193.606571][ T9055] netlink: 12 bytes leftover after parsing attributes in process `syz.5.947'.
[  193.704970][ T5998] usb 6-1: new high-speed USB device number 34 using dummy_hcd
[  193.725031][ T5998] usb 6-1: no configurations
[  193.726594][ T5998] usb 6-1: can't read configurations, error -22
[  193.796837][ T9067] syzkaller1: entered promiscuous mode
[  193.798669][ T9067] syzkaller1: entered allmulticast mode
[  193.801473][ T9067] FAULT_INJECTION: forcing a failure.
[  193.801473][ T9067] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  193.805681][ T9067] CPU: 1 UID: 0 PID: 9067 Comm: syz.4.952 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  193.805696][ T9067] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  193.805703][ T9067] Call Trace:
[  193.805707][ T9067]  <TASK>
[  193.805711][ T9067]  dump_stack_lvl+0x16c/0x1f0
[  193.805734][ T9067]  should_fail_ex+0x512/0x640
[  193.805749][ T9067]  _copy_from_iter+0x29f/0x16f0
[  193.805766][ T9067]  ? __pfx__copy_from_iter+0x10/0x10
[  193.805783][ T9067]  ? find_held_lock+0x2b/0x80
[  193.805797][ T9067]  tun_get_user+0x240/0x3b80
[  193.805817][ T9067]  ? __pfx_tun_get_user+0x10/0x10
[  193.805830][ T9067]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  193.805847][ T9067]  ? find_held_lock+0x2b/0x80
[  193.805858][ T9067]  ? tun_get+0x191/0x370
[  193.805873][ T9067]  tun_chr_write_iter+0xdc/0x210
[  193.805888][ T9067]  vfs_write+0x6c7/0x1150
[  193.805905][ T9067]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  193.805920][ T9067]  ? __pfx_vfs_write+0x10/0x10
[  193.805935][ T9067]  ? find_held_lock+0x2b/0x80
[  193.805953][ T9067]  ksys_write+0x12a/0x250
[  193.805969][ T9067]  ? __pfx_ksys_write+0x10/0x10
[  193.805990][ T9067]  ? rcu_is_watching+0x12/0xc0
[  193.806004][ T9067]  __do_fast_syscall_32+0x7c/0x3a0
[  193.806016][ T9067]  do_fast_syscall_32+0x32/0x80
[  193.806027][ T9067]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  193.806041][ T9067] RIP: 0023:0xf7f55579
[  193.806050][ T9067] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  193.806061][ T9067] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  193.806071][ T9067] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800003c0
[  193.806078][ T9067] RDX: 00000000000000dc RSI: 0000000000000000 RDI: 0000000000000000
[  193.806084][ T9067] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  193.806090][ T9067] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  193.806096][ T9067] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  193.806109][ T9067]  </TASK>
[  193.853731][ T5998] usb 6-1: new high-speed USB device number 35 using dummy_hcd
[  193.883838][ T7111] usb 8-1: new high-speed USB device number 21 using dummy_hcd
[  193.904859][ T5998] usb 6-1: no configurations
[  193.906575][ T5998] usb 6-1: can't read configurations, error -22
[  193.909644][ T5998] usb usb6-port1: unable to enumerate USB device
[  193.978305][ T9069] syzkaller1: entered promiscuous mode
[  193.980138][ T9069] syzkaller1: entered allmulticast mode
[  194.034433][ T7111] usb 8-1: Using ep0 maxpacket: 32
[  194.037314][ T7111] usb 8-1: config 0 has an invalid interface number: 12 but max is 0
[  194.039819][ T7111] usb 8-1: config 0 has no interface number 0
[  194.041711][ T7111] usb 8-1: config 0 interface 12 has no altsetting 0
[  194.045876][ T7111] usb 8-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  194.048667][ T7111] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  194.051072][ T7111] usb 8-1: Product: syz
[  194.052342][ T7111] usb 8-1: Manufacturer: syz
[  194.054149][ T7111] usb 8-1: SerialNumber: syz
[  194.057905][ T7111] usb 8-1: config 0 descriptor??
[  194.061115][ T7111] f81534 8-1:0.12: required endpoints missing
[  194.121175][ T9071] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  194.121175][ T9071]    program syz.4.954 not setting count and/or reply_len properly
[  194.268223][   T55] usb 8-1: USB disconnect, device number 21
[  194.707453][ T9080] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  194.716153][ T9080] kvm: requested 838 ns i8254 timer period limited to 200000 ns
[  194.718866][ T9080] kvm: requested 12571 ns i8254 timer period limited to 200000 ns
[  194.721408][ T9080] kvm: requested 12571 ns i8254 timer period limited to 200000 ns
[  194.725129][ T9080] kvm: requested 85485 ns i8254 timer period limited to 200000 ns
[  194.727666][ T9080] kvm: requested 93028 ns i8254 timer period limited to 200000 ns
[  194.730068][ T9080] kvm: requested 7542 ns i8254 timer period limited to 200000 ns
[  194.732550][ T9080] kvm: requested 10057 ns i8254 timer period limited to 200000 ns
[  194.735437][ T9080] kvm: requested 155047 ns i8254 timer period limited to 200000 ns
[  194.738017][ T9080] kvm: requested 160914 ns i8254 timer period limited to 200000 ns
[  194.942636][ T9087] syz.4.959 (9087): attempted to duplicate a private mapping with mremap.  This is not supported.
[  195.559761][   T40] audit: type=1804 audit(1749118579.833:688): pid=9101 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.961" name="/newroot/133/file0/bus" dev="ramfs" ino=26676 res=1 errno=0
[  195.566722][   T40] audit: type=1804 audit(1749118579.833:689): pid=9101 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.961" name="/newroot/133/file0/bus" dev="ramfs" ino=26676 res=1 errno=0
[  195.729528][ T9103] netlink: 4 bytes leftover after parsing attributes in process `syz.1.962'.
[  195.735866][ T9103] erspan0: entered promiscuous mode
[  195.737622][ T9103] macvtap1: entered promiscuous mode
[  195.739206][ T9103] macvtap1: entered allmulticast mode
[  195.740746][ T9103] erspan0: entered allmulticast mode
[  195.751129][ T9103] netlink: 4 bytes leftover after parsing attributes in process `syz.1.962'.
[  195.756233][ T9103] erspan0: left allmulticast mode
[  195.758008][ T9103] erspan0: left promiscuous mode
[  195.900697][ T9110] wg1 speed is unknown, defaulting to 1000
[  196.013802][   T24] usb 8-1: new high-speed USB device number 22 using dummy_hcd
[  196.166176][   T24] usb 8-1: Using ep0 maxpacket: 16
[  196.169180][   T24] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  196.172733][   T24] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  196.176095][   T24] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  196.180241][   T24] usb 8-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  196.183045][   T24] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  196.186938][   T24] usb 8-1: config 0 descriptor??
[  196.233728][ T7111] usb 9-1: new high-speed USB device number 30 using dummy_hcd
[  196.289479][ T9122] netlink: 'syz.5.970': attribute type 1 has an invalid length.
[  196.383716][ T7111] usb 9-1: Using ep0 maxpacket: 32
[  196.387239][ T7111] usb 9-1: config 0 has an invalid interface number: 12 but max is 0
[  196.389949][ T7111] usb 9-1: config 0 has no interface number 0
[  196.392661][ T7111] usb 9-1: config 0 interface 12 has no altsetting 0
[  196.399475][ T7111] usb 9-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  196.402287][ T7111] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  196.409411][ T7111] usb 9-1: Product: syz
[  196.410735][ T7111] usb 9-1: Manufacturer: syz
[  196.412169][ T7111] usb 9-1: SerialNumber: syz
[  196.416098][ T7111] usb 9-1: config 0 descriptor??
[  196.418908][ T7111] f81534 9-1:0.12: required endpoints missing
[  196.424798][ T9126] netlink: 8 bytes leftover after parsing attributes in process `syz.5.972'.
[  196.427661][ T9126] netlink: 'syz.5.972': attribute type 9 has an invalid length.
[  196.433533][ T9126] mac80211_hwsim hwsim12 wlan0: entered promiscuous mode
[  196.436864][ T9126] macvlan2: entered allmulticast mode
[  196.438554][ T9126] mac80211_hwsim hwsim12 wlan0: entered allmulticast mode
[  196.594813][   T24] shield 0003:0955:7214.0002: unknown main item tag 0x0
[  196.597666][   T24] shield 0003:0955:7214.0002: unknown main item tag 0x0
[  196.599900][   T24] shield 0003:0955:7214.0002: unknown main item tag 0x0
[  196.602094][   T24] shield 0003:0955:7214.0002: unknown main item tag 0x0
[  196.604339][   T24] shield 0003:0955:7214.0002: unknown main item tag 0x0
[  196.609333][   T24] input: HID 0955:7214 Haptics as /devices/virtual/input/input74
[  196.625914][   T24] shield 0003:0955:7214.0002: Registered Thunderstrike controller
[  196.628694][   T24] shield 0003:0955:7214.0002: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.3-1/input0
[  196.654100][ T5987] usb 9-1: USB disconnect, device number 30
[  196.791473][ T9105] random: crng reseeded on system resumption
[  196.824444][ T9139] netlink: 16 bytes leftover after parsing attributes in process `syz.1.975'.
[  197.056374][ T5661] shield 0003:0955:7214.0002: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[  197.056990][   T53] usb 8-1: USB disconnect, device number 22
[  197.062769][ T5661] shield 0003:0955:7214.0002: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  197.068656][ T5661] shield 0003:0955:7214.0002: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  197.072274][ T5661] shield 0003:0955:7214.0002: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  197.113854][ T5987] usb 6-1: new high-speed USB device number 36 using dummy_hcd
[  197.278799][ T5987] usb 6-1: too many configurations: 9, using maximum allowed: 8
[  197.286580][ T5987] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  197.289362][ T5987] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  197.295265][ T5987] usb 6-1: config 0 interface 0 has no altsetting 0
[  197.298149][ T5987] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  197.300938][ T5987] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  197.304600][ T5987] usb 6-1: config 0 interface 0 has no altsetting 0
[  197.320715][ T5987] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  197.323528][ T5987] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  197.327145][ T5987] usb 6-1: config 0 interface 0 has no altsetting 0
[  197.329926][ T5987] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  197.332696][ T5987] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  197.336692][ T5987] usb 6-1: config 0 interface 0 has no altsetting 0
[  197.339558][ T5987] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  197.342304][ T5987] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  197.345824][ T5987] usb 6-1: config 0 interface 0 has no altsetting 0
[  197.348589][ T5987] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  197.351514][ T5987] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  197.355620][ T5987] usb 6-1: config 0 interface 0 has no altsetting 0
[  197.358485][ T5987] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  197.361257][ T5987] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  197.364964][ T5987] usb 6-1: config 0 interface 0 has no altsetting 0
[  197.367834][ T5987] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  197.370570][ T5987] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  197.374119][ T5987] usb 6-1: config 0 interface 0 has no altsetting 0
[  197.379456][ T5987] usb 6-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  197.382287][ T5987] usb 6-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  197.385161][ T5987] usb 6-1: Product: syz
[  197.386601][ T5987] usb 6-1: Manufacturer: syz
[  197.388333][ T5987] usb 6-1: SerialNumber: syz
[  197.391277][ T5987] usb 6-1: config 0 descriptor??
[  197.396842][ T5987] yurex 6-1:0.0: USB YUREX device now attached to Yurex #0
[  197.518951][ T9167] team0: Device gtp0 is up. Set it down before adding it as a team port
[  197.603760][ T7111] usb 10-1: new high-speed USB device number 22 using dummy_hcd
[  197.695689][ T9180] FAULT_INJECTION: forcing a failure.
[  197.695689][ T9180] name failslab, interval 1, probability 0, space 0, times 0
[  197.699574][ T9180] CPU: 0 UID: 0 PID: 9180 Comm: syz.4.983 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  197.699589][ T9180] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  197.699596][ T9180] Call Trace:
[  197.699601][ T9180]  <TASK>
[  197.699605][ T9180]  dump_stack_lvl+0x16c/0x1f0
[  197.699626][ T9180]  should_fail_ex+0x512/0x640
[  197.699639][ T9180]  ? fs_reclaim_acquire+0xae/0x150
[  197.699654][ T9180]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  197.699665][ T9180]  should_failslab+0xc2/0x120
[  197.699676][ T9180]  __kmalloc_noprof+0xd2/0x510
[  197.699696][ T9180]  tomoyo_realpath_from_path+0xc2/0x6e0
[  197.699709][ T9180]  ? tomoyo_profile+0x47/0x60
[  197.699728][ T9180]  tomoyo_path_number_perm+0x245/0x580
[  197.699743][ T9180]  ? tomoyo_path_number_perm+0x237/0x580
[  197.699761][ T9180]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  197.699793][ T9180]  ? find_held_lock+0x2b/0x80
[  197.699804][ T9180]  ? hook_file_ioctl_common+0x145/0x410
[  197.699823][ T9180]  ? __fget_files+0x20e/0x3c0
[  197.699837][ T9180]  ? __fput_deferred+0x460/0x480
[  197.699851][ T9180]  security_file_ioctl_compat+0x9b/0x240
[  197.699870][ T9180]  __ia32_compat_sys_ioctl+0xc3/0x370
[  197.699886][ T9180]  __do_fast_syscall_32+0x7c/0x3a0
[  197.699899][ T9180]  do_fast_syscall_32+0x32/0x80
[  197.699910][ T9180]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  197.699924][ T9180] RIP: 0023:0xf7f55579
[  197.699933][ T9180] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  197.699943][ T9180] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  197.699954][ T9180] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000000089fa
[  197.699961][ T9180] RDX: 0000000080000900 RSI: 0000000000000000 RDI: 0000000000000000
[  197.699967][ T9180] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  197.699973][ T9180] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  197.699979][ T9180] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  197.699993][ T9180]  </TASK>
[  197.699997][ T9180] ERROR: Out of memory at tomoyo_realpath_from_path.
[  197.782301][ T9178] netlink: 4 bytes leftover after parsing attributes in process `syz.3.982'.
[  197.783995][ T7111] usb 10-1: Using ep0 maxpacket: 16
[  197.811950][ T7111] usb 10-1: unable to get BOS descriptor or descriptor too short
[  197.817433][ T7111] usb 10-1: unable to read config index 0 descriptor/start: -71
[  197.820107][ T7111] usb 10-1: can't read configurations, error -71
[  197.838054][ T9189] netlink: 4 bytes leftover after parsing attributes in process `syz.3.982'.
[  198.063865][   T53] usb 9-1: new high-speed USB device number 31 using dummy_hcd
[  198.213798][   T53] usb 9-1: Using ep0 maxpacket: 32
[  198.216759][   T53] usb 9-1: config 0 has an invalid interface number: 12 but max is 0
[  198.219240][   T53] usb 9-1: config 0 has no interface number 0
[  198.221135][   T53] usb 9-1: config 0 interface 12 has no altsetting 0
[  198.224815][   T53] usb 9-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  198.227651][   T53] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  198.230106][   T53] usb 9-1: Product: syz
[  198.231408][   T53] usb 9-1: Manufacturer: syz
[  198.232871][   T53] usb 9-1: SerialNumber: syz
[  198.235693][   T53] usb 9-1: config 0 descriptor??
[  198.239279][   T53] f81534 9-1:0.12: required endpoints missing
[  198.463821][ T5661] usb 9-1: USB disconnect, device number 31
[  198.798870][ T9200] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  198.806938][ T9200] CIFS mount error: No usable UNC path provided in device string!
[  198.806938][ T9200] 
[  198.810157][ T9200] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  198.858446][ T1418] ieee802154 phy0 wpan0: encryption failed: -22
[  198.860615][ T1418] ieee802154 phy1 wpan1: encryption failed: -22
[  199.106944][ T9211] netlink: 16 bytes leftover after parsing attributes in process `syz.3.993'.
[  199.243111][ T9218] netlink: 8 bytes leftover after parsing attributes in process `syz.5.994'.
[  199.565720][    T9] usb 8-1: new high-speed USB device number 23 using dummy_hcd
[  199.654168][    C2] usb 6-1: yurex_control_callback - control failed: -2
[  199.661173][ T5661] usb 6-1: USB disconnect, device number 36
[  199.670759][ T5661] yurex 6-1:0.0: USB YUREX #0 now disconnected
[  199.733922][    T9] usb 8-1: Using ep0 maxpacket: 32
[  199.746275][    T9] usb 8-1: config 0 has an invalid interface number: 12 but max is 0
[  199.749623][    T9] usb 8-1: config 0 has no interface number 0
[  199.751701][    T9] usb 8-1: config 0 interface 12 has no altsetting 0
[  199.761477][    T9] usb 8-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  199.764932][    T9] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  199.767571][    T9] usb 8-1: Product: syz
[  199.769049][    T9] usb 8-1: Manufacturer: syz
[  199.770903][    T9] usb 8-1: SerialNumber: syz
[  199.780196][    T9] usb 8-1: config 0 descriptor??
[  199.807580][    T9] f81534 8-1:0.12: required endpoints missing
[  200.015976][    T9] usb 8-1: USB disconnect, device number 23
[  200.235400][ T9238] nfs: Unknown parameter '¹c-nteѪ6'
[  200.486291][ T9256] random: crng reseeded on system resumption
[  200.541002][ T9260] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=4294967295 (34359738360 ns) > initial count (3800 ns). Using initial count to start timer.
[  200.569822][ T9264] netlink: 'syz.3.1010': attribute type 1 has an invalid length.
[  200.627667][ T9267] veth3: entered promiscuous mode
[  200.632420][ T9267] bond1: (slave veth3): Enslaving as a backup interface with a down link
[  202.009709][ T9309] FAULT_INJECTION: forcing a failure.
[  202.009709][ T9309] name failslab, interval 1, probability 0, space 0, times 0
[  202.014234][ T9309] CPU: 3 UID: 0 PID: 9309 Comm: syz.1.1021 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  202.014250][ T9309] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  202.014257][ T9309] Call Trace:
[  202.014261][ T9309]  <TASK>
[  202.014265][ T9309]  dump_stack_lvl+0x16c/0x1f0
[  202.014288][ T9309]  should_fail_ex+0x512/0x640
[  202.014300][ T9309]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  202.014319][ T9309]  should_failslab+0xc2/0x120
[  202.014331][ T9309]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  202.014348][ T9309]  ? mas_alloc_nodes+0x18b/0x8b0
[  202.014366][ T9309]  mas_alloc_nodes+0x18b/0x8b0
[  202.014385][ T9309]  mas_node_count_gfp+0x105/0x130
[  202.014402][ T9309]  mas_preallocate+0x77b/0xda0
[  202.014417][ T9309]  ? __pfx_mas_preallocate+0x10/0x10
[  202.014434][ T9309]  ? __asan_memset+0x23/0x50
[  202.014453][ T9309]  commit_merge+0x29a/0x1020
[  202.014471][ T9309]  ? __pfx_commit_merge+0x10/0x10
[  202.014488][ T9309]  ? vma_modify+0x136f/0x20a0
[  202.014504][ T9309]  ? dup_anon_vma.constprop.0+0x74/0x320
[  202.014522][ T9309]  vma_modify+0x959/0x20a0
[  202.014542][ T9309]  ? __pfx_vma_modify+0x10/0x10
[  202.014561][ T9309]  vma_modify_flags+0x212/0x2d0
[  202.014578][ T9309]  ? __pfx_vma_modify_flags+0x10/0x10
[  202.014593][ T9309]  ? mtree_range_walk+0x718/0xc00
[  202.014618][ T9309]  mlock_fixup+0x27c/0xe50
[  202.014637][ T9309]  apply_mlockall_flags+0x2d4/0x470
[  202.014654][ T9309]  ? __pfx_apply_mlockall_flags+0x10/0x10
[  202.014671][ T9309]  ? __pfx___might_resched+0x10/0x10
[  202.014689][ T9309]  ? __pfx_down_write_killable+0x10/0x10
[  202.014702][ T9309]  ? __pfx_ksys_write+0x10/0x10
[  202.014721][ T9309]  __do_sys_munlockall+0xc5/0x280
[  202.014740][ T9309]  __do_fast_syscall_32+0x7c/0x3a0
[  202.014752][ T9309]  do_fast_syscall_32+0x32/0x80
[  202.014763][ T9309]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  202.014777][ T9309] RIP: 0023:0xf7fb2579
[  202.014786][ T9309] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  202.014797][ T9309] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000099
[  202.014807][ T9309] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000
[  202.014814][ T9309] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  202.014820][ T9309] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  202.014826][ T9309] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  202.014832][ T9309] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  202.014845][ T9309]  </TASK>
[  202.014854][ T9309] vmg ffffc9000e3e7c68 dumped because: VM_WARN_ON_VMG(prev && start <= prev->vm_start)
[  202.053791][ T5661] usb 8-1: new high-speed USB device number 24 using dummy_hcd
[  202.055145][ T9309] vmg ffffc9000e3e7c68 state: mm ffff88804af835c0 pgoff 80000
[  202.055145][ T9309] vmi ffffc9000e3e7e20 [80000000,80800000)
[  202.055145][ T9309] prev ffff88806ff36dc0 middle ffff88806ff36dc0 next 0000000000000000 target 0000000000000000
[  202.055145][ T9309] start 80000000 end 80800000 flags 8100077
[  202.055145][ T9309] file 0000000000000000 anon_vma ffff888012d49ed0 policy 0000000000000000
[  202.055145][ T9309] uffd_ctx 0000000000000000
[  202.055145][ T9309] anon_name 0000000000000000
[  202.055145][ T9309] state 0
[  202.055145][ T9309] just_expand 0
[  202.055145][ T9309] __adjust_middle_start 0 __adjust_next_start 0
[  202.055145][ T9309] __remove_middle 0 __remove_next 0
[  202.125030][   T53] usb 9-1: new high-speed USB device number 32 using dummy_hcd
[  202.128111][ T9309] vmg ffffc9000e3e7c68 mm:
[  202.129907][ T9309] mm ffff88804af835c0 task_size 4294959104
[  202.129907][ T9309] mmap_base 140019311738880 mmap_legacy_base 47613483429888
[  202.129907][ T9309] pgd ffff88805f2ce000 mm_users 3 mm_count 2 pgtables_bytes 114688 map_count 33
[  202.129907][ T9309] hiwater_rss 14cf hiwater_vm 5f5c total_vm 5f9e locked_vm 800
[  202.129907][ T9309] pinned_vm 0 data_vm 23c5 exec_vm 1ac stack_vm 21
[  202.129907][ T9309] start_code f70f9000 end_code f72a27f8 start_data f7450000 end_data f7450000
[  202.129907][ T9309] start_brk 57cbc000 brk 57cde000 start_stack ffbb3120
[  202.129907][ T9309] arg_start ffbb3f6f arg_end ffbb3f82 env_start ffbb3f82 env_end ffbb3fea
[  202.129907][ T9309] binfmt ffffffff8e613a60 flags 800007fd
[  202.129907][ T9309] ioctx_table 0000000000000000
[  202.129907][ T9309] owner ffff888020dca440 exe_file ffff8880133fe8c0
[  202.129907][ T9309] notifier_subscriptions 0000000000000000
[  202.129907][ T9309] numa_next_scan 4294957464 numa_scan_offset 0 numa_scan_seq 0
[  202.129907][ T9309] tlb_flush_pending 0
[  202.129907][ T9309] def_flags: 0x0()
[  202.160709][ T9309] vmg ffffc9000e3e7c68 prev:
[  202.162193][ T9309] vma ffff88806ff36dc0 start 0000000080000000 end 0000000080800000 mm ffff88804af835c0
[  202.162193][ T9309] prot 25 anon_vma ffff888012d49ed0 vm_ops 0000000000000000
[  202.162193][ T9309] pgoff 80000 file 0000000000000000 private_data 0000000000000000
[  202.162193][ T9309] refcnt 1
[  202.162193][ T9309] flags: 0x8102077(read|write|exec|mayread|maywrite|mayexec|locked|account|softdirty)
[  202.173621][ T9309] vmg ffffc9000e3e7c68 middle:
[  202.175328][ T9309] vma ffff88806ff36dc0 start 0000000080000000 end 0000000080800000 mm ffff88804af835c0
[  202.175328][ T9309] prot 25 anon_vma ffff888012d49ed0 vm_ops 0000000000000000
[  202.175328][ T9309] pgoff 80000 file 0000000000000000 private_data 0000000000000000
[  202.175328][ T9309] refcnt 1
[  202.175328][ T9309] flags: 0x8102077(read|write|exec|mayread|maywrite|mayexec|locked|account|softdirty)
[  202.187291][ T9309] vmg ffffc9000e3e7c68 next: (NULL)
[  202.189385][ T9309] vmg ffffc9000e3e7c68 vmi:
[  202.190810][ T9309] MAS: tree=ffff88804af83600 enode=ffff888012eb6e0c 
[  202.190820][ T9309] (ma_active)
[  202.192838][ T9309] Store Type: 
[  202.194019][ T9309] node_store
[  202.196202][ T9309] [8/15] index=80000000 last=807fffff
[  202.197875][ T9309]      min=0 max=f50d6fff alloc=0000000000000000, depth=0, flags=0
[  202.200640][ T9309] maple_tree(ffff88804af83600) flags 30B, height 2 root ffff888012ebc61e
[  202.203395][ T9309] 0-ffffffffffffffff: node ffff888012ebc600 depth 0 type 3 parent ffff88804af83601 contents: 74094000 0 ffffffff0044c000 0 0 0 0 0 0 0 | 02 02| ffff888012eb6e0c F50D6FFF ffff888012ebd20c F70DFFFF ffff888024ab820c FFFFFFFFFFFFFFFF 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  202.203851][ T5661] usb 8-1: Using ep0 maxpacket: 16
[  202.217951][ T9309]   0-f50d6fff: node ffff888012eb6e00 depth 1 type 1 parent ffff888012ebc606 contents: 0000000000000000 C22FFFF ffff88806f03ba40 E22FFFF 0000000000000000 2F51FFFF ffff88806f03bb80 2F55FFFF 0000000000000000 57CBBFFF ffff88806ff37900 57CDDFFF 0000000000000000 7FFFEFFF ffff88806ff36f00 7FFFFFFF ffff88806ff36dc0 807FFFFF ffff888012c0b040 80FFFFFF ffff88806ff372c0 81000FFF 0000000000000000 F5094FFF ffff88807add0000 F5095FFF ffff888012c91a40 F50B5FFF ffff888012c0b680 F50B6FFF ffff88806ff37680
[  202.235491][ T5661] usb 8-1: unable to get BOS descriptor or descriptor too short
[  202.238642][ T9309]     0-c22ffff: 0000000000000000
[  202.240829][ T9309]     c230000-e22ffff: ffff88806f03ba40
[  202.244264][ T9309]     e230000-2f51ffff: 0000000000000000
[  202.244386][ T5661] usb 8-1: unable to read config index 0 descriptor/start: -71
[  202.246282][ T9309]     2f520000-2f55ffff: 
[  202.248994][ T5661] usb 8-1: can't read configurations, error -71
[  202.249017][ T9309] ffff88806f03bb80
[  202.254194][ T9309]     2f560000-57cbbfff: 0000000000000000
[  202.256005][ T9309]     57cbc000-57cddfff: ffff88806ff37900
[  202.257757][ T9309]     57cde000-7fffefff: 0000000000000000
[  202.259648][ T9309]     7ffff000-7fffffff: ffff88806ff36f00
[  202.261431][ T9309]     80000000-807fffff: ffff88806ff36dc0
[  202.263209][ T9309]     80800000-80ffffff: ffff888012c0b040
[  202.265267][ T9309]     81000000-81000fff: ffff88806ff372c0
[  202.267053][ T9309]     81001000-f5094fff: 0000000000000000
[  202.268812][ T9309]     f5095000-f5095fff: ffff88807add0000
[  202.270636][ T9309]     f5096000-f50b5fff: ffff888012c91a40
[  202.272408][ T9309]     f50b6000-f50b6fff: ffff888012c0b680
[  202.274399][ T9309]     f50b7000-f50d6fff: ffff88806ff37680
[  202.276244][ T9309]   f50d7000-f70dffff: node ffff888012ebd200 depth 1 type 1 parent ffff888012ebc60e contents: ffff88801c3a8500 F50D7FFF ffff88806ff36780 F58D7FFF ffff88806ff36a00 F58D8FFF ffff88806ff377c0 F60D8FFF ffff88806ff37b80 F60DAFFF ffff88806ff37cc0 F64DAFFF ffff88806ff36280 F64DCFFF ffff88806ff36500 F68DCFFF ffff88806ff37a40 F68DEFFF ffff88806ff37e00 F6CDEFFF ffff88806ff363c0 F6CDFFFF ffff88806ff36640 F70DFFFF 0000000000000000 0 0000000000000000 0 0000000000000000 0 000000000000000b
[  202.290410][ T9309]     f50d7000-f50d7fff: ffff88801c3a8500
[  202.292259][ T9309]     f50d8000-f58d7fff: ffff88806ff36780
[  202.296557][ T9309]     f58d8000-f58d8fff: ffff88806ff36a00
[  202.298469][ T9309]     f58d9000-f60d8fff: ffff88806ff377c0
[  202.300287][ T9309]     f60d9000-f60dafff: ffff88806ff37b80
[  202.302113][ T9309]     f60db000-f64dafff: ffff88806ff37cc0
[  202.304625][ T9309]     f64db000-f64dcfff: ffff88806ff36280
[  202.306709][ T9309]     f64dd000-f68dcfff: ffff88806ff36500
[  202.308444][ T9309]     f68dd000-f68defff: ffff88806ff37a40
[  202.310220][ T9309]     f68df000-f6cdefff: ffff88806ff37e00
[  202.312012][ T9309]     f6cdf000-f6cdffff: ffff88806ff363c0
[  202.313872][   T53] usb 9-1: Using ep0 maxpacket: 32
[  202.313978][ T9309]     f6ce0000-f70dffff: ffff88806ff36640
[  202.317149][   T53] usb 9-1: config 0 has an invalid interface number: 12 but max is 0
[  202.317751][ T9309]   f70e0000-ffffffffffffffff: 
[  202.320495][   T53] usb 9-1: config 0 has no interface number 0
[  202.320524][   T53] usb 9-1: config 0 interface 12 has no altsetting 0
[  202.322292][ T9309] node ffff888024ab8200 depth 1 type 1 parent ffff888012ebc616
[  202.327118][   T53] usb 9-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  202.327224][ T9309]  contents: 
[  202.329801][   T53] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  202.332898][ T9309] ffff88806ff368c0 F70F8FFF 
[  202.334481][   T53] usb 9-1: Product: syz
[  202.336811][ T9309] ffff88804a587e00 F72A2FFF ffff88804a586a00 F7379FFF ffff88804a587cc0 F7442FFF ffff88804a586c80 F744AFFF 0000000000000000 F744FFFF ffff88804a586780 F7FAAFFF 0000000000000000 F7FABFFF 
[  202.338412][   T53] usb 9-1: Manufacturer: syz
[  202.339931][ T9309] ffff88804a587b80 F7FAFFFF ffff88804a587400 F7FB1FFF ffff88804a5872c0 F7FB3FFF 0000000000000000 FFB92FFF ffff88804a587180 FFBB3FFF 0000000000000000 FFFFFFFFFFFFFFFF 0000000000000000 0 000000000000000d
[  202.354812][   T53] usb 9-1: SerialNumber: syz
[  202.356697][ T9309]     f70e0000-f70f8fff: ffff88806ff368c0
[  202.356815][   T53] usb 9-1: config 0 descriptor??
[  202.358758][ T9309]     f70f9000-f72a2fff: ffff88804a587e00
[  202.362365][   T53] f81534 9-1:0.12: required endpoints missing
[  202.362736][ T9309]     f72a3000-f7379fff: ffff88804a586a00
[  202.368360][ T9309]     f737a000-f7442fff: ffff88804a587cc0
[  202.370216][ T9309]     f7443000-f744afff: ffff88804a586c80
[  202.372028][ T9309]     f744b000-f744ffff: 0000000000000000
[  202.374096][ T9309]     f7450000-f7faafff: ffff88804a586780
[  202.376313][ T9309]     f7fab000-f7fabfff: 0000000000000000
[  202.378088][ T9309]     f7fac000-f7faffff: ffff88804a587b80
[  202.380123][ T9309]     f7fb0000-f7fb1fff: ffff88804a587400
[  202.382080][ T9309]     f7fb2000-f7fb3fff: ffff88804a5872c0
[  202.383923][ T9309]     f7fb4000-ffb92fff: 0000000000000000
[  202.385641][ T9309]     ffb93000-ffbb3fff: ffff88804a587180
[  202.387380][ T9309]     ffbb4000-ffffffffffffffff: 0000000000000000
[  202.389452][ T9309] ------------[ cut here ]------------
[  202.391076][ T9309] WARNING: CPU: 2 PID: 9309 at mm/vma.c:808 vma_modify+0xa28/0x20a0
[  202.393502][ T9309] Modules linked in:
[  202.395424][ T9309] CPU: 2 UID: 0 PID: 9309 Comm: syz.1.1021 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  202.400688][ T9309] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  202.404848][ T9309] RIP: 0010:vma_modify+0xa28/0x20a0
[  202.406638][ T9309] Code: 12 00 00 4c 8b 63 28 4d 85 e4 0f 85 86 02 00 00 e9 b3 01 00 00 e8 28 f9 a9 ff 48 c7 c6 e0 03 9c 8b 48 89 df e8 f9 22 f2 ff 90 <0f> 0b 90 e9 51 f8 ff ff e8 0b f9 a9 ff 48 8b 54 24 20 48 b8 00 00
[  202.412487][ T9309] RSP: 0018:ffffc9000e3e7b48 EFLAGS: 00010293
[  202.414891][ T9309] RAX: 0000000000000000 RBX: ffffc9000e3e7c68 RCX: ffffffff8b6ff883
[  202.418162][ T9309] RDX: ffff888023014880 RSI: ffffffff821179a7 RDI: 0000000000000006
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  202.421362][ T9309] RBP: ffff88806ff36dc0 R08: 0000000000000006 R09: ffffffffffffffff
[  202.425151][ T9309] R10: ffffffffffffffff R11: 0000000000000001 R12: 0000000080000001
[  202.428425][ T9309] R13: 0000000000000001 R14: 0000000080000000 R15: ffffc9000e3e7c88
[  202.431618][ T9309] FS:  0000000000000000(0000) GS:ffff888097972000(0063) knlGS:00000000f50d6b40
[  202.434366][ T9309] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  202.436345][ T9309] CR2: 000000002fd08ffc CR3: 000000005f2ce000 CR4: 0000000000352ef0
[  202.438743][ T9309] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  202.441407][ T9309] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  202.443887][ T9309] Call Trace:
[  202.445046][ T9309]  <TASK>
[  202.445987][ T9309]  ? __pfx_vma_modify+0x10/0x10
[  202.447534][ T9309]  vma_modify_flags+0x212/0x2d0
[  202.449084][ T9309]  ? __pfx_vma_modify_flags+0x10/0x10
[  202.450770][ T9309]  ? mtree_range_walk+0x718/0xc00
[  202.452370][ T9309]  ? mas_walk+0x6a6/0x910
[  202.453878][ T9309]  mlock_fixup+0x27c/0xe50
[  202.455291][ T9309]  apply_mlockall_flags+0x2d4/0x470
[  202.457104][ T9309]  ? __pfx_apply_mlockall_flags+0x10/0x10
[  202.458991][ T9309]  ? __pfx___might_resched+0x10/0x10
[  202.460624][ T9309]  ? __pfx_down_write_killable+0x10/0x10
[  202.462318][ T9309]  ? __pfx_ksys_write+0x10/0x10
[  202.463911][ T9309]  __do_sys_munlockall+0xc5/0x280
[  202.465484][ T9309]  __do_fast_syscall_32+0x7c/0x3a0
[  202.467068][ T9309]  do_fast_syscall_32+0x32/0x80
[  202.468548][ T9309]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  202.471032][ T9309] RIP: 0023:0xf7fb2579
[  202.472331][ T9309] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  202.478162][ T9309] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000099
[  202.480745][ T9309] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000
[  202.483142][ T9309] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  202.485664][ T9309] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  202.488076][ T9309] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  202.490484][ T9309] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  202.492946][ T9309]  </TASK>
[  202.493982][ T9309] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  202.496202][ T9309] CPU: 2 UID: 0 PID: 9309 Comm: syz.1.1021 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  202.499644][ T9309] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  202.502903][ T9309] Call Trace:
[  202.503941][ T9309]  <TASK>
[  202.504861][ T9309]  dump_stack_lvl+0x3d/0x1f0
[  202.506286][ T9309]  panic+0x71c/0x800
[  202.507489][ T9309]  ? __pfx_panic+0x10/0x10
[  202.508883][ T9309]  ? show_trace_log_lvl+0x29b/0x3e0
[  202.510510][ T9309]  ? check_panic_on_warn+0x1f/0xb0
[  202.512117][ T9309]  ? vma_modify+0xa28/0x20a0
[  202.513585][ T9309]  check_panic_on_warn+0xab/0xb0
[  202.515140][ T9309]  __warn+0xf6/0x3c0
[  202.516384][ T9309]  ? vma_modify+0xa28/0x20a0
[  202.517852][ T9309]  report_bug+0x3c3/0x580
[  202.519205][ T9309]  ? vma_modify+0xa28/0x20a0
[  202.520662][ T9309]  handle_bug+0x184/0x210
[  202.522020][ T9309]  exc_invalid_op+0x17/0x50
[  202.523416][ T9309]  asm_exc_invalid_op+0x1a/0x20
[  202.524902][ T9309] RIP: 0010:vma_modify+0xa28/0x20a0
[  202.526486][ T9309] Code: 12 00 00 4c 8b 63 28 4d 85 e4 0f 85 86 02 00 00 e9 b3 01 00 00 e8 28 f9 a9 ff 48 c7 c6 e0 03 9c 8b 48 89 df e8 f9 22 f2 ff 90 <0f> 0b 90 e9 51 f8 ff ff e8 0b f9 a9 ff 48 8b 54 24 20 48 b8 00 00
[  202.532218][ T9309] RSP: 0018:ffffc9000e3e7b48 EFLAGS: 00010293
[  202.534065][ T9309] RAX: 0000000000000000 RBX: ffffc9000e3e7c68 RCX: ffffffff8b6ff883
[  202.536471][ T9309] RDX: ffff888023014880 RSI: ffffffff821179a7 RDI: 0000000000000006
[  202.538961][ T9309] RBP: ffff88806ff36dc0 R08: 0000000000000006 R09: ffffffffffffffff
[  202.541443][ T9309] R10: ffffffffffffffff R11: 0000000000000001 R12: 0000000080000001
[  202.543818][ T9309] R13: 0000000000000001 R14: 0000000080000000 R15: ffffc9000e3e7c88
[  202.546230][ T9309]  ? mt_dump_node+0xcd3/0x16d0
[  202.547770][ T9309]  ? vma_modify+0xa27/0x20a0
[  202.549227][ T9309]  ? vma_modify+0xa27/0x20a0
[  202.550693][ T9309]  ? __pfx_vma_modify+0x10/0x10
[  202.552236][ T9309]  vma_modify_flags+0x212/0x2d0
[  202.553780][ T9309]  ? __pfx_vma_modify_flags+0x10/0x10
[  202.555496][ T9309]  ? mtree_range_walk+0x718/0xc00
[  202.557333][ T9309]  ? mas_walk+0x6a6/0x910
[  202.558701][ T9309]  mlock_fixup+0x27c/0xe50
[  202.560118][ T9309]  apply_mlockall_flags+0x2d4/0x470
[  202.561731][ T9309]  ? __pfx_apply_mlockall_flags+0x10/0x10
[  202.563484][ T9309]  ? __pfx___might_resched+0x10/0x10
[  202.565122][ T9309]  ? __pfx_down_write_killable+0x10/0x10
[  202.566878][ T9309]  ? __pfx_ksys_write+0x10/0x10
[  202.568395][ T9309]  __do_sys_munlockall+0xc5/0x280
[  202.569974][ T9309]  __do_fast_syscall_32+0x7c/0x3a0
[  202.571590][ T9309]  do_fast_syscall_32+0x32/0x80
[  202.573115][ T9309]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  202.575057][ T9309] RIP: 0023:0xf7fb2579
[  202.576348][ T9309] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  202.582260][ T9309] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000099
[  202.584822][ T9309] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000
[  202.587255][ T9309] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  202.589690][ T9309] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  202.592143][ T9309] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  202.594594][ T9309] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  202.597084][ T9309]  </TASK>
[  202.598724][ T9309] Kernel Offset: disabled
[  202.600093][ T9309] Rebooting in 86400 seconds..

VM DIAGNOSIS:
10:05:04  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=ffffc90007167b60 RCX=0000000000000000 RDX=0000000000000000
RSI=ffffffff8509d884 RDI=ffffc90007167b60 RBP=ffffffff8509d870 RSP=ffffc90000007f68
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=ffffc90000007ff8
R12=0000000000000000 R13=dffffc0000000000 R14=0000000000000000 R15=ffffc90007167b28
RIP=ffffffff8509d8ad RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097772000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f50b5da4 CR3=000000006778c000 CR4=00352ef0
DR0=000000000000000d DR1=00000000000000ff DR2=fffffffffffffff7 DR3=3e00000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000965049 RBX=0000000000000001 RCX=ffffffff8b799c69 RDX=0000000000000000
RSI=ffffffff8dc0a7a0 RDI=ffffffff8bf533a0 RBP=ffffed1003b54488 RSP=ffffc9000046fdf8
R8 =0000000000000001 R9 =ffffed1005666645 R10=ffff88802b33322b R11=0000000000000001
R12=0000000000000001 R13=ffff88801daa2440 R14=ffffffff9087d650 R15=0000000000000000
RIP=ffffffff8b7987cf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097872000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000800345a0 CR3=0000000050254000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8555fc15 RDI=ffffffff9ae5ca00 RBP=ffffffff9ae5c9c0 RSP=ffffc9000e3e74b0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=0000000000000020 R14=ffffffff9ae5c9c0 R15=ffffffff8555fbb0
RIP=ffffffff8555fc3f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097972000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002fd08ffc CR3=000000005f2ce000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=00000000002e9033 RBX=0000000000000003 RCX=ffffffff8b799c69 RDX=0000000000000000
RSI=ffffffff8dc0a7a0 RDI=ffffffff8bf533a0 RBP=ffffed10037e2000 RSP=ffffc9000048fdf8
R8 =0000000000000001 R9 =ffffed10056a6645 R10=ffff88802b53322b R11=0000000000000001
R12=0000000000000003 R13=ffff88801bf10000 R14=ffffffff9087d650 R15=0000000000000000
RIP=ffffffff8b7987cf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097a72000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f50d5fac CR3=000000005b0c4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000