last executing test programs:

1m41.251526507s ago: executing program 2 (id=22):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r0, 0x1000000, 0xc8, 0x0, 0x0)

1m41.251251395s ago: executing program 2 (id=23):
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = dup3(r0, r1, 0x0)
recvmmsg(r2, &(0x7f00000004c0)=[{{0x0, 0x0, 0x0}}], 0xf00, 0x0, 0x0)
sendmsg$nl_route(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[], 0x20}, 0x1, 0xf00}, 0x4000)
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x3}, 0x4)
getsockopt$packet_int(r3, 0x107, 0x15, 0x0, &(0x7f0000000100))
r4 = syz_usb_connect(0x2, 0x3f, &(0x7f00000007c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
r5 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$IP_VS_SO_GET_INFO(r5, 0x0, 0x481, &(0x7f0000005fc0), &(0x7f0000006000)=0xc)
syz_usb_control_io(r4, 0x0, 0x0)
io_setup(0x430, &(0x7f0000000080)=<r6=>0x0)
io_submit(r6, 0x2, &(0x7f0000000240)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x7, r5, &(0x7f0000000300)="88ee15ba506d55724b314bd89fa70a2acf0e0b75ef70b59d66de15ec0f8f90fcb848c59b5ed26860dab6371fccdabc96d9567856f880766ac3fb5309accc77fecc03ac8de03efd0a89b1ae723ece59b50b02d55f9cee8fe2c6069480e2cad276139b48cdeda15fd38de8bd9ffc347756ed74a7a838d09af5dfefd03189b7eca4723c2c97c3b8edde0c9ca90fc89c980b18aaea6970ae60dced040ef9d631845cde294d8cd311050b6c5913c8cdb4a72c7dd2a37817f82bfacc7a2dd3ce33cccd69b2efbccb85", 0xc6, 0x7ff, 0x0, 0x1}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x8, 0xe, r3, &(0x7f0000000140)="32337de6efd9f62ab68d194824525cd9b8d0354fec4bbfc1ec35fa88fb81706d291c7b677f197e4705f140da1f7b2fc307f9e419453fa4c28499056a1a06b0df585eca17a94a7746855fe1b1df595c0413953a701d3c8bbd65ddd5f15324e4391eb88ccd2d894e832d4fe81c7bd8", 0x6e, 0x5}])
syz_usb_control_io$hid(r4, 0x0, 0x0)
r7 = socket$packet(0x11, 0x3, 0x300)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, 0x0)
r8 = fsopen(&(0x7f00000001c0)='devpts\x00', 0x0)
read(r8, 0x0, 0x0)
ioctl$sock_TIOCINQ(r7, 0x541b, &(0x7f0000000040))
r9 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r9, 0x5423, &(0x7f0000000000)=0x15)
r10 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/locks\x00', 0x0, 0x0)
pread64(r10, &(0x7f0000001440)=""/126, 0x7e, 0x41)
ioctl$TCSETS(r9, 0x40384708, &(0x7f0000000080)={0xa, 0x1, 0x8, 0x10000000, 0xa, "3eccd2000500"})
r11 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$FS_IOC_GETVERSION(r11, 0xc0105b08, &(0x7f0000000040))

1m41.191988557s ago: executing program 3 (id=25):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x8, 0x3, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000001200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r0 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000003c0)={r1, r1}, 0x14)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
quotactl$Q_SETINFO(0xffffffff80000600, &(0x7f0000000000)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
unshare(0x40020000)
setsockopt$MRT6_DONE(0xffffffffffffffff, 0x29, 0xc9, 0x12, 0x0)
socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000001580)={'gre0\x00', @link_local})
r5 = socket$netlink(0x10, 0x3, 0x0)
writev(r5, &(0x7f00000003c0)=[{&(0x7f0000000280)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
io_uring_setup(0x7220, &(0x7f0000000080)={0x0, 0x6e3c, 0x1, 0x0, 0x335})
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
ioctl$KVM_CREATE_PIT2(r4, 0x4040ae77, &(0x7f0000000080))
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r4, 0x8048ae66, &(0x7f0000000100)={[{0x5, 0x8000, 0x5, 0x7, 0x1, 0x9, 0x3, 0xbf, 0xb8, 0x3, 0xf, 0x4, 0x6}, {0x804, 0x5, 0x1, 0x5, 0x7, 0x2, 0xff, 0x5, 0x9, 0x4, 0xe, 0x7f, 0x1}, {0x4, 0x6, 0x38, 0x6, 0x84, 0x7, 0x0, 0x53, 0x2, 0x70, 0x3, 0xc, 0x400000000003}], 0xffffffff})
r7 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001600), 0x0, 0x0)
ioctl$TCSETSW2(r7, 0x5425, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$SNDCTL_DSP_SETFMT(0xffffffffffffffff, 0xc0045005, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f00000003c0)={[0x60000000000, 0x1000000000, 0x0, 0x40, 0x2000000, 0x800000, 0x2004cb, 0x0, 0x0, 0x68ff, 0x5, 0x0, 0x3], 0x1, 0x202})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001480)={0x18, 0x1a, &(0x7f0000001640)=ANY=[@ANYBLOB="8510000005000000bc24f8ff04000000182b0000", @ANYRES32, @ANYBLOB="0000000003000000850000002300000018550000080000000000000000000000185800000d0000000000000000000000851000000100000018000000f9ffffff00000000040000006fb5e0ff00000000b7080000000000007b8af8ff00000000b7080000ff0700007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x8, 0x1000, &(0x7f0000000480)=""/4096, 0x41100, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000340)=[0xffffffffffffffff, 0xffffffffffffffff], &(0x7f0000000380)=[{0x2, 0x4, 0x2, 0xc}, {0x4, 0x1, 0xf, 0x6}, {0x20000004, 0x3, 0x3, 0x5}], 0x10, 0xfffffffb, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001540)={&(0x7f0000000040)='afs_io_error\x00', r8, 0x0, 0x7b}, 0x18)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
socket$kcm(0x2, 0xa, 0x2)

1m40.670917842s ago: executing program 3 (id=30):
r0 = fsopen(&(0x7f0000000000)='devtmpfs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x0, 0x1)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeeb, 0x8031, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000000)=0xd, 0x8, 0x0)
r1 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r1, 0xc0405602, &(0x7f0000000140)={0x14, 0x1, 0x0, "1c13ebdaf2f20d55806b26b1d750185fd75a606da058e85b2197edb1439b1cc2"})
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x0)

1m40.522002149s ago: executing program 3 (id=31):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000340)={'wpan0\x00', <r3=>0x0})
sendmsg$IEEE802154_LLSEC_ADD_DEV(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)={0x40, r1, 0x852dd6c070cd7e4d, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8}, @IEEE802154_ATTR_HW_ADDR={0xc}, @IEEE802154_ATTR_LLSEC_DEV_KEY_MODE={0x5}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r3}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}]}, 0x40}, 0x4, 0x700000002000000, 0x0, 0x2000000}, 0x0) (fail_nth: 6)

1m40.521365337s ago: executing program 3 (id=32):
r0 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
io_setup(0x3fe, &(0x7f0000000100)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000000)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000200)=' -', 0x3fffff}]) (fail_nth: 6)

1m40.191251787s ago: executing program 3 (id=33):
sendmsg$L2TP_CMD_SESSION_DELETE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)={0x14, 0x0, 0x1, 0x70bd2c, 0x44, {0x5}}, 0x14}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$afs(0x0, &(0x7f0000002840)='./file0\x00', &(0x7f0000002880), 0x700, &(0x7f00000000c0)={[{@dyn}]})
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x40049366, 0x0)

1m40.190774065s ago: executing program 3 (id=34):
socket(0x1d, 0x6, 0x9)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f00000001c0)={0x0, 0x8}, 0x14)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x6, [@var={0x4, 0x0, 0x0, 0xe, 0x4}, @func_proto={0x0, 0x0, 0x0, 0xd, 0x4}, @ptr={0x0, 0x0, 0x0, 0x4}, @func={0x4, 0x0, 0x0, 0x8, 0x3}]}, {0x0, [0x0, 0x0, 0x0, 0x61]}}, 0x0, 0x52, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0c00000004000000040000000000010000000000", @ANYRES32=r5, @ANYBLOB="0000000000000000008ceb1e2f425e9060cbf7941e5cca08e6c8e789dc3895dcadf212bae5f5300a24724abadb7badc7681545b6264d3e0eb5efb6cc701f", @ANYRES32=0x0, @ANYRES32=r4, @ANYBLOB="000000000300"/28], 0x48)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x0, 0x1)
mount$nfs4(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000440), 0x40000, &(0x7f0000000300)=ANY=[@ANYBLOB="6600000000e3af7445be3cf653e7f8f7b2a7c1e19fd8811f842354da4d3388982268ceb55ca410b7dfec36051d2b282330c0f89c9dd1d4ffb5d069a939a0d148c61047e63e624eea708fe5c8554a9a43d3331afe15b3cfbee8fb6e7f999972890f4bc745513d653cbb986ce37b0d4125c7f4897f435a27e872b196a3458ef608cf7f041971265b3a9215ab3b556d61d74b2c30e98916fc94f8be841979e7069d1997ae35e5c854373d9d26a39c901e45f8953f65514ad65e8d1ba96339d017034fca34eb288e92c58bc78c9c0f72a348d51bf2f37bda82ff453a98ed23b9cf942c187d7ca6c79972c4e4329de2c58a4f649a"])
setsockopt$SO_BINDTODEVICE_wg(r3, 0x1, 0x19, &(0x7f0000000080)='wg1\x00', 0x4)
sendto$inet(r3, &(0x7f0000000040)="e5", 0xffffffe4, 0x0, 0x0, 0x0)
unshare(0x40020000)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x2}}, 0x20)
sendmsg$nl_generic(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000002c00010324bd7002f9dbdf2506"], 0x14}, 0x1, 0x0, 0x0, 0x4004004}, 0x40)

1m39.304883806s ago: executing program 2 (id=40):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, 0x0, 0x0)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000057c0)={0x4c, 0x9, 0x6, 0x201, 0x0, 0x0, {0x7}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x24, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @private1}}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x1b}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20000800}, 0x4000084) (fail_nth: 4)

1m39.26187249s ago: executing program 2 (id=41):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, 0x0, 0x0)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x4c, 0x9, 0x6, 0x201, 0x0, 0x0, {0x7}, [@IPSET_ATTR_ADT={0x0, 0x8, 0x0, 0x1, [{0x0, 0x7, 0x0, 0x1, @IPSET_ATTR_PORT={0x0, 0x4, 0x1, 0x0, 0x4e23}}, {0x0, 0x7, 0x0, 0x1, @IPSET_ATTR_LINENO={0x0, 0x9, 0x1, 0x0, 0x10000}}, {0x0, 0x7, 0x0, 0x1, @IPSET_ATTR_IP2={0x0, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x0, 0x1, 0x1, 0x0, @multicast1}}}, {0x0, 0x7, 0x0, 0x1, @IPSET_ATTR_MARKMASK={0x0, 0xb, 0x1, 0x0, 0x3}}]}, @IPSET_ATTR_PROTOCOL={0xffffff89}, @IPSET_ATTR_DATA={0x24, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @empty}}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x1b}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20000800}, 0x4000084)

1m39.180617578s ago: executing program 2 (id=42):
sendmsg$L2TP_CMD_SESSION_DELETE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)={0x14, 0x0, 0x1, 0x70bd2c, 0x44, {0x5}}, 0x14}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$afs(0x0, &(0x7f0000002840)='./file0\x00', &(0x7f0000002880), 0x700, &(0x7f00000000c0)={[{@dyn}]})
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x40049366, 0x0)

1m38.753387804s ago: executing program 2 (id=44):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0x5e, 0x8, {0x0, 0x1}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$inet6(0xa, 0x800000000000002, 0x0)
sendto$inet6(r2, 0x0, 0x0, 0x400ad80, &(0x7f0000000080)={0xa, 0x4621, 0x0, @local}, 0x1c)
sendmmsg$inet6(r2, &(0x7f0000006780)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="b3ab706204ee39c9dae21a1718ee351ebc92d2f0d482a863ae5c0b4d768ffe745af2c53a083d9b761b", 0xfff7}], 0x1}}], 0x1, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000))
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[])
chdir(&(0x7f0000000100)='./file0\x00')
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
pwritev2(r3, &(0x7f0000000980)=[{0x0}, {&(0x7f0000000500)="be81e1310fb465f31a42f6efa58772d291c57be2782f6ff63ea3517e50771580447f7d195ee15e186027d518b2c77a051895fece1dc014c33d6928ab0376cf4077399b51451472f53be50af6897bc0fa353cad9156d19de3665191fdf17a2f07f4286cea5c10fbb81feb85e406524a47b1978139eaa8daec929e00572df90f9d8a3ce9b03cc2ee0eb9b4875c4e3d02e9570f627ef6771beca770bc6b2a", 0x9d}, {&(0x7f0000001980)="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", 0x60d}, {0x0}], 0x4, 0x5, 0xa, 0x14)
r4 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000080))
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$IPVS_CMD_NEW_DAEMON(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)={0x50, r6, 0x1, 0x4, 0x0, {}, [@IPVS_CMD_ATTR_DAEMON={0x3c, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'vcan0\x00'}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast2}]}]}, 0x50}}, 0x0)

1m25.177363717s ago: executing program 32 (id=34):
socket(0x1d, 0x6, 0x9)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f00000001c0)={0x0, 0x8}, 0x14)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x6, [@var={0x4, 0x0, 0x0, 0xe, 0x4}, @func_proto={0x0, 0x0, 0x0, 0xd, 0x4}, @ptr={0x0, 0x0, 0x0, 0x4}, @func={0x4, 0x0, 0x0, 0x8, 0x3}]}, {0x0, [0x0, 0x0, 0x0, 0x61]}}, 0x0, 0x52, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0c00000004000000040000000000010000000000", @ANYRES32=r5, @ANYBLOB="0000000000000000008ceb1e2f425e9060cbf7941e5cca08e6c8e789dc3895dcadf212bae5f5300a24724abadb7badc7681545b6264d3e0eb5efb6cc701f", @ANYRES32=0x0, @ANYRES32=r4, @ANYBLOB="000000000300"/28], 0x48)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x0, 0x1)
mount$nfs4(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000440), 0x40000, &(0x7f0000000300)=ANY=[@ANYBLOB="6600000000e3af7445be3cf653e7f8f7b2a7c1e19fd8811f842354da4d3388982268ceb55ca410b7dfec36051d2b282330c0f89c9dd1d4ffb5d069a939a0d148c61047e63e624eea708fe5c8554a9a43d3331afe15b3cfbee8fb6e7f999972890f4bc745513d653cbb986ce37b0d4125c7f4897f435a27e872b196a3458ef608cf7f041971265b3a9215ab3b556d61d74b2c30e98916fc94f8be841979e7069d1997ae35e5c854373d9d26a39c901e45f8953f65514ad65e8d1ba96339d017034fca34eb288e92c58bc78c9c0f72a348d51bf2f37bda82ff453a98ed23b9cf942c187d7ca6c79972c4e4329de2c58a4f649a"])
setsockopt$SO_BINDTODEVICE_wg(r3, 0x1, 0x19, &(0x7f0000000080)='wg1\x00', 0x4)
sendto$inet(r3, &(0x7f0000000040)="e5", 0xffffffe4, 0x0, 0x0, 0x0)
unshare(0x40020000)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x2}}, 0x20)
sendmsg$nl_generic(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000002c00010324bd7002f9dbdf2506"], 0x14}, 0x1, 0x0, 0x0, 0x4004004}, 0x40)

1m24.09596899s ago: executing program 33 (id=44):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0x5e, 0x8, {0x0, 0x1}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$inet6(0xa, 0x800000000000002, 0x0)
sendto$inet6(r2, 0x0, 0x0, 0x400ad80, &(0x7f0000000080)={0xa, 0x4621, 0x0, @local}, 0x1c)
sendmmsg$inet6(r2, &(0x7f0000006780)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="b3ab706204ee39c9dae21a1718ee351ebc92d2f0d482a863ae5c0b4d768ffe745af2c53a083d9b761b", 0xfff7}], 0x1}}], 0x1, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000))
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[])
chdir(&(0x7f0000000100)='./file0\x00')
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
pwritev2(r3, &(0x7f0000000980)=[{0x0}, {&(0x7f0000000500)="be81e1310fb465f31a42f6efa58772d291c57be2782f6ff63ea3517e50771580447f7d195ee15e186027d518b2c77a051895fece1dc014c33d6928ab0376cf4077399b51451472f53be50af6897bc0fa353cad9156d19de3665191fdf17a2f07f4286cea5c10fbb81feb85e406524a47b1978139eaa8daec929e00572df90f9d8a3ce9b03cc2ee0eb9b4875c4e3d02e9570f627ef6771beca770bc6b2a", 0x9d}, {&(0x7f0000001980)="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", 0x60d}, {0x0}], 0x4, 0x5, 0xa, 0x14)
r4 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000080))
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$IPVS_CMD_NEW_DAEMON(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)={0x50, r6, 0x1, 0x4, 0x0, {}, [@IPVS_CMD_ATTR_DAEMON={0x3c, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'vcan0\x00'}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast2}]}]}, 0x50}}, 0x0)

6.389823761s ago: executing program 0 (id=497):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0xf, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9, 0x11e41e7a, 0x5, 0xfffffffc, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x40830}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1, 0x0, 0x7}, 0x18)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket$inet6(0xa, 0x5, 0x0)
listen(r4, 0x0)
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$netrom_NETROM_T2(0xffffffffffffffff, 0x103, 0x2, &(0x7f0000000a00)=0xd, 0x4)
setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f0000000540)=@raw={'raw\x00', 0x3c1, 0x3, 0x3b8, 0x1b8, 0xc8, 0x8, 0x0, 0x5803, 0x2f0, 0x2e8, 0x2e8, 0x2f0, 0x2e8, 0x3, 0x0, {[{{@ipv6={@remote, @loopback, [], [], 'netdevsim0\x00', 'geneve1\x00'}, 0x0, 0x188, 0x1b8, 0x0, {0x0, 0x2000000000000}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "cacaf80c672f61cd17ae5119b5135c2aee68d23a465cd431e1ecef50c3234e082555f67222476147864fa03182f5df11d8c348cbd06dc8de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac07a602061c96baebc989f1f35a214e67262c1fe4b124e0f7323a587d2a1fcfe36bbf12eca0a7b66c60c527bac2b5", 0x2, 0x2}}, @common=@inet=@socket1={{0x24}}]}, @common=@unspec=@CONNMARK={0x30}}, {{@ipv6={@private2={0xfc, 0x2, '\x00', 0x1}, @rand_addr=' \x01\x00', [0xff, 0xffffffff], [0xff000000, 0x0, 0xff], 'geneve1\x00', 'veth1\x00', {0xff}, {}, 0x11, 0x3, 0x0, 0x40}, 0x0, 0x118, 0x138, 0x0, {}, [@common=@inet=@multiport={{0x50}, {0x0, 0x0, [0x4e23, 0x4e1d, 0x4e22, 0x4e20, 0x4e22, 0x4e23, 0x4e22, 0x4e21, 0x4e21, 0x4e24, 0x4e22, 0x2, 0x4e20, 0x4e21, 0x4e23], [0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1], 0x1}}, @inet=@rpfilter={{0x24}}]}, @unspec=@NOTRACK={0x20}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x414)
sendto$inet(0xffffffffffffffff, &(0x7f00000012c0), 0x0, 0x11, 0x0, 0x0)
syz_io_uring_setup(0x10d, &(0x7f0000000980)={0x0, 0x5885, 0x80, 0x10000000}, &(0x7f0000000340)=<r6=>0x0, &(0x7f0000000280)=<r7=>0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000003700010324bd7002fcdbdf25100000001fe37c903dbcc600000000000000075754956602a0cb0b86"], 0x14}}, 0x0)
r8 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_SET_EVBIT(r8, 0x40045564, 0x3)
ioctl$UI_SET_ABSBIT(r8, 0x40045567, 0x0)
write$uinput_user_dev(r8, &(0x7f0000000080)={'syz1\x00', {0x3ff, 0x3, 0x4}, 0x4d, [0x10004, 0x6, 0x9, 0x8a4, 0x2, 0x2, 0x7fffffff, 0x80000001, 0x4, 0x1, 0xfd, 0x3c6, 0x7, 0x7, 0xf70, 0x3c00, 0xe7, 0x4007, 0x401, 0xbc5e, 0x4, 0x1, 0x8, 0xffff, 0xe, 0xe, 0x10, 0x20000000, 0x15098855, 0x6, 0x2, 0xfffffffb, 0x10006, 0xc, 0xfffffff7, 0x4, 0xe79, 0x7, 0x1, 0x1, 0x1, 0x0, 0x401, 0x9, 0xbdc7, 0x800000b, 0x1, 0x9, 0x6, 0x1, 0x6, 0x909, 0x5, 0x4d, 0x5, 0x65a, 0x0, 0x1, 0x1000, 0x3, 0x2, 0x6, 0x7ff, 0xb8547353], [0x4, 0xffffffff, 0x4, 0x5, 0x7ffffdff, 0x1, 0x550, 0x6, 0x2, 0xfffffffc, 0x10001, 0xc, 0x36, 0x4, 0x6, 0x1, 0x9, 0x98, 0x8, 0xe56d, 0xa4, 0x9, 0x99d, 0x8, 0x0, 0xd, 0x10001, 0xfffffffe, 0x6e38, 0x8000, 0xa, 0x6, 0x3, 0x0, 0x5, 0x7, 0x4, 0xd, 0x9, 0xfff, 0x4, 0x0, 0x40000040, 0x101, 0x8, 0x5, 0x0, 0x0, 0x34f1, 0x1ff, 0x7, 0x1b2c5a97, 0x0, 0x9, 0x8, 0x0, 0x1, 0x1, 0x6, 0x6, 0xac, 0x2, 0x54, 0xcfb9], [0x5, 0xdb8, 0x9, 0x0, 0x2, 0x200006, 0x5, 0x5, 0x2, 0x80, 0xfffffffd, 0xc8d3, 0x33, 0x9a45, 0x0, 0xee40000, 0x1, 0x1, 0x4, 0x69d, 0x8, 0x10001, 0x0, 0x0, 0x40000008, 0x2, 0x4, 0x800, 0x7, 0x9, 0x10000, 0x0, 0x1, 0xfffffffe, 0x3, 0x0, 0x4, 0x7, 0x9, 0x2, 0x8, 0x7, 0x6, 0x2, 0x81, 0x8, 0x1, 0x55f2, 0xdf46, 0xfffffffd, 0x7f, 0x9, 0x8000, 0x40, 0x3, 0x2, 0x8, 0x6, 0x2, 0xffffff00, 0xda15, 0x82, 0x3, 0x10], [0x0, 0x897, 0x8, 0x246d, 0x6, 0x101, 0x7fffffff, 0xd, 0x1, 0x60a, 0x5, 0x9, 0x80000001, 0x2, 0xb, 0x2, 0x7, 0x1, 0x7, 0x8, 0x7ff, 0x1, 0x0, 0x2, 0x6, 0x20c, 0xfffffffd, 0xa18, 0x61c8, 0x6, 0x7ff, 0x101, 0xff, 0x7, 0x9, 0x5, 0x7, 0x101, 0x9, 0x3000000, 0x20e, 0x4000006, 0x7, 0xfffffffd, 0x9, 0x1, 0x4, 0x100009, 0x100, 0x8, 0x3c, 0x1000, 0x3, 0x3, 0x15, 0x8000, 0x7, 0x3, 0x8, 0x7, 0x8, 0x4, 0x6, 0xeff]}, 0x45c)
ioctl$UI_DEV_CREATE(r8, 0x5501)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x4004, @fd_index=0x3, 0x0, 0x0})

5.221951014s ago: executing program 0 (id=504):
r0 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_TRY_ENCODER_CMD(r0, 0xc028564e, &(0x7f00000000c0))
syz_open_dev$video(&(0x7f0000000180), 0xe49, 0x8040)
syz_emit_ethernet(0x46, &(0x7f0000000300)=ANY=[@ANYBLOB="0180c2000003aaaaaaaaaabb88a810008100000086dd6300000000083aff00000000000000000000000000000000fe8000000000000000000000000000aa8000907807ff000718c572bf3491889c49b093e40b021d240c4711df50e1259e81df8a0710ffac2ac90cd2973aff29138c08b1a9ef119f3cae808450cd85518e24e8bbd8eeb7b7baa773ec736b5e89a6de9ed28063723c12e228f5ab5e12aa1c50d944acf0bf3a66b43e0f97a75c3205a80b263adb5ccda6944d1aa40ec8a451e5679312b06a1608b3c985333f15e51d0375a53505e75081ccd737eb828f2018e5694327b6332bd8a4de849ca299fabac744"], 0x0)
socket$nl_crypto(0x10, 0x3, 0x15)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000540)={0x0, 0x1, 0x0, 0x1000, &(0x7f0000fef000/0x1000)=nil})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x2, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
r4 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r4, 0xc1105517, &(0x7f0000000300)={{0x2, 0x1, 0x0, 0x0, 'syz0\x00', 0xfffffffd}, 0x3, 0x0, 0x3e, 0x0, 0x2, 0x0, 'syz1\x00', &(0x7f0000000040)=['\xbb\x91\xdf\x00\x00\x00\x00\x05\x00\x00\x00\x00\x00\x11\x00\x00\xeez\xbd\x8f;5)\x00\b\x10H\xf0\xf9\x93\xe1\xe8y0-B\xed\xe6&\x95\x8f\n\x1e#\xa7\xd6i\x96\xdd\xaf\xd9\x91\xb5\xfd\n\x1a\xc1\x96\x8ea\rMj\xc2\x02\xceE\xc9\x81x\xd2\xc7\xfbp\x00'/88, '\x00'], 0x59})

4.103962453s ago: executing program 0 (id=509):
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x11, 0x4c}, [@ldst={0x5}], {0x95, 0x0, 0x74}}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x426440, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = dup2(r0, r0)
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r1, 0x800448d2, &(0x7f0000000000)={0x6, &(0x7f0000000300)=[{@fixed}, {@none}, {@fixed}, {@none}, {}, {@none}]})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
pread64(r3, &(0x7f0000001240)=""/102400, 0x200000, 0x200000)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
ptrace$setregs(0x4, r4, 0x1, &(0x7f0000000480)="ec8f81966017b251b3068b2cf4ef59e52edbe6f4aa40d46081840723e7c7e1f872ebb09839245b33c8ab901473daa7b7dbdd194b2daee10a4c4ca68ef8111b4447fbaac7f20f7b46522b6f279b4e535a6546c696d7b8471b5eaee119830eee393fef284356d8ccf63536345b891692dfa7bb69c74f4651d049d1fed2b82a233007b8a3494aefd8a94de8befb9feed7de2d24cf1b14d97260f3798c7d962f12cb92cafb6ae1c3c8d95119cd3dd5eee12c72316a3a68744a89079ffc8f7ef61660b83c0b40f80d609c")
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$vbi(&(0x7f0000000040), 0x2, 0x2)
r7 = syz_usb_connect(0x2, 0x3f, &(0x7f00000007c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
syz_usb_control_io(r7, 0x0, 0x0)
syz_usb_control_io$hid(r7, 0x0, 0x0)

3.740855712s ago: executing program 1 (id=510):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0xf, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9, 0x11e41e7a, 0x5, 0xfffffffc, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x40830}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1, 0x0, 0x7}, 0x18)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket$inet6(0xa, 0x5, 0x0)
listen(r4, 0x0)
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$netrom_NETROM_T2(0xffffffffffffffff, 0x103, 0x2, &(0x7f0000000a00)=0xd, 0x4)
setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f0000000540)=@raw={'raw\x00', 0x3c1, 0x3, 0x3b8, 0x1b8, 0xc8, 0x8, 0x0, 0x5803, 0x2f0, 0x2e8, 0x2e8, 0x2f0, 0x2e8, 0x3, 0x0, {[{{@ipv6={@remote, @loopback, [], [], 'netdevsim0\x00', 'geneve1\x00'}, 0x0, 0x188, 0x1b8, 0x0, {0x0, 0x2000000000000}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "cacaf80c672f61cd17ae5119b5135c2aee68d23a465cd431e1ecef50c3234e082555f67222476147864fa03182f5df11d8c348cbd06dc8de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac07a602061c96baebc989f1f35a214e67262c1fe4b124e0f7323a587d2a1fcfe36bbf12eca0a7b66c60c527bac2b5", 0x2, 0x2}}, @common=@inet=@socket1={{0x24}}]}, @common=@unspec=@CONNMARK={0x30}}, {{@ipv6={@private2={0xfc, 0x2, '\x00', 0x1}, @rand_addr=' \x01\x00', [0xff, 0xffffffff], [0xff000000, 0x0, 0xff], 'geneve1\x00', 'veth1\x00', {0xff}, {}, 0x11, 0x3, 0x0, 0x40}, 0x0, 0x118, 0x138, 0x0, {}, [@common=@inet=@multiport={{0x50}, {0x0, 0x0, [0x4e23, 0x4e1d, 0x4e22, 0x4e20, 0x4e22, 0x4e23, 0x4e22, 0x4e21, 0x4e21, 0x4e24, 0x4e22, 0x2, 0x4e20, 0x4e21, 0x4e23], [0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1], 0x1}}, @inet=@rpfilter={{0x24}}]}, @unspec=@NOTRACK={0x20}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x414)
sendto$inet(0xffffffffffffffff, &(0x7f00000012c0), 0x0, 0x11, 0x0, 0x0)
syz_io_uring_setup(0x10d, &(0x7f0000000980)={0x0, 0x5885, 0x80, 0x10000000}, &(0x7f0000000340)=<r6=>0x0, &(0x7f0000000280)=<r7=>0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000003700010324bd7002fcdbdf25100000001fe37c903dbcc600000000000000075754956602a0cb0b86"], 0x14}}, 0x0)
r8 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_SET_EVBIT(r8, 0x40045564, 0x3)
ioctl$UI_SET_ABSBIT(r8, 0x40045567, 0x0)
write$uinput_user_dev(r8, &(0x7f0000000080)={'syz1\x00', {0x3ff, 0x3, 0x4}, 0x4d, [0x10004, 0x6, 0x9, 0x8a4, 0x2, 0x2, 0x7fffffff, 0x80000001, 0x4, 0x1, 0xfd, 0x3c6, 0x7, 0x7, 0xf70, 0x3c00, 0xe7, 0x4007, 0x401, 0xbc5e, 0x4, 0x1, 0x8, 0xffff, 0xe, 0xe, 0x10, 0x20000000, 0x15098855, 0x6, 0x2, 0xfffffffb, 0x10006, 0xc, 0xfffffff7, 0x4, 0xe79, 0x7, 0x1, 0x1, 0x1, 0x0, 0x401, 0x9, 0xbdc7, 0x800000b, 0x1, 0x9, 0x6, 0x1, 0x6, 0x909, 0x5, 0x4d, 0x5, 0x65a, 0x0, 0x1, 0x1000, 0x3, 0x2, 0x6, 0x7ff, 0xb8547353], [0x4, 0xffffffff, 0x4, 0x5, 0x7ffffdff, 0x1, 0x550, 0x6, 0x2, 0xfffffffc, 0x10001, 0xc, 0x36, 0x4, 0x6, 0x1, 0x9, 0x98, 0x8, 0xe56d, 0xa4, 0x9, 0x99d, 0x8, 0x0, 0xd, 0x10001, 0xfffffffe, 0x6e38, 0x8000, 0xa, 0x6, 0x3, 0x0, 0x5, 0x7, 0x4, 0xd, 0x9, 0xfff, 0x4, 0x0, 0x40000040, 0x101, 0x8, 0x5, 0x0, 0x0, 0x34f1, 0x1ff, 0x7, 0x1b2c5a97, 0x0, 0x9, 0x8, 0x0, 0x1, 0x1, 0x6, 0x6, 0xac, 0x2, 0x54, 0xcfb9], [0x5, 0xdb8, 0x9, 0x0, 0x2, 0x200006, 0x5, 0x5, 0x2, 0x80, 0xfffffffd, 0xc8d3, 0x33, 0x9a45, 0x0, 0xee40000, 0x1, 0x1, 0x4, 0x69d, 0x8, 0x10001, 0x0, 0x0, 0x40000008, 0x2, 0x4, 0x800, 0x7, 0x9, 0x10000, 0x0, 0x1, 0xfffffffe, 0x3, 0x0, 0x4, 0x7, 0x9, 0x2, 0x8, 0x7, 0x6, 0x2, 0x81, 0x8, 0x1, 0x55f2, 0xdf46, 0xfffffffd, 0x7f, 0x9, 0x8000, 0x40, 0x3, 0x2, 0x8, 0x6, 0x2, 0xffffff00, 0xda15, 0x82, 0x3, 0x10], [0x0, 0x897, 0x8, 0x246d, 0x6, 0x101, 0x7fffffff, 0xd, 0x1, 0x60a, 0x5, 0x9, 0x80000001, 0x2, 0xb, 0x2, 0x7, 0x1, 0x7, 0x8, 0x7ff, 0x1, 0x0, 0x2, 0x6, 0x20c, 0xfffffffd, 0xa18, 0x61c8, 0x6, 0x7ff, 0x101, 0xff, 0x7, 0x9, 0x5, 0x7, 0x101, 0x9, 0x3000000, 0x20e, 0x4000006, 0x7, 0xfffffffd, 0x9, 0x1, 0x4, 0x100009, 0x100, 0x8, 0x3c, 0x1000, 0x3, 0x3, 0x15, 0x8000, 0x7, 0x3, 0x8, 0x7, 0x8, 0x4, 0x6, 0xeff]}, 0x45c)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x4004, @fd_index=0x3, 0x0, 0x0})

3.120577877s ago: executing program 5 (id=514):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101142, 0x0)
socket$unix(0x1, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
unshare(0x6a040000)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r3 = syz_io_uring_setup(0x228, &(0x7f0000000380)={0x0, 0x1ffffa, 0x10100, 0x0, 0x0, 0x0, r2}, &(0x7f0000000180)=<r4=>0x0, &(0x7f00000001c0)=<r5=>0x0)
recvfrom$inet(r0, &(0x7f0000000240)=""/65, 0x41, 0x40000000, &(0x7f0000000300)={0x2, 0x4e22, @private=0xa010100}, 0x10)
syz_io_uring_submit(r4, r5, &(0x7f0000000080)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r3, 0x708, 0x41e3, 0x0, 0x0, 0x0)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0xc, 0x0, 0x0)
read(r6, &(0x7f00000000c0)=""/14, 0xe)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
syz_io_uring_setup(0x1458, &(0x7f00000004c0)={0x0, 0x3, 0x10180, 0x2000, 0x3ae}, &(0x7f0000000100), &(0x7f00000002c0))
unshare(0x8010200)
sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB='9'], 0x38}}, 0x4000)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="9ebfc20df22c54ca4a21fc180000001000000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r7}, 0x10)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x80, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r9, 0xc00caee0, &(0x7f0000000100)={0x4})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$SIOCGIFMTU(r0, 0x8921, &(0x7f0000000340)={'pimreg1\x00'})
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r10, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r10, 0x0)

2.760423997s ago: executing program 1 (id=515):
socket(0x10, 0x80002, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x25dfdbff, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0xf0990993fa267092}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(des3_ede)\x00'}, 0x58)
accept4(r1, 0x0, 0x0, 0x80000)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000300)=ANY=[], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000005c0)={r3}, 0x4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x10, &(0x7f0000000100)=ANY=[@ANYBLOB="1802000067f9bfff00000000fdffffffb7080000000000007b8af8ff00000000b7080000000000007b8af0ff08000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70500000800000085000000a50000009500000000000000"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x0, 0xe, 0x0, &(0x7f0000000540)="64b61d9b104c99176403699c7d94", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9}, 0x50)
r5 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r6 = openat$cgroup_freezer_state(r5, &(0x7f0000000140), 0x2, 0x0)
sendfile(r6, r6, 0x0, 0x9)
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r7, &(0x7f0000000280)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(cipher_null)\x00'}, 0x58)
r8 = syz_io_uring_setup(0x1f87, &(0x7f0000000080)={0x0, 0x8444, 0x13580}, &(0x7f0000000100)=<r9=>0x0, &(0x7f0000000140)=<r10=>0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000000)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x20, 0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2001, 0x1, {0x1}})
io_uring_enter(r8, 0xe85, 0x0, 0x0, 0x0, 0x0)

2.635672984s ago: executing program 4 (id=516):
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0x8c2b01)
write$char_usb(r0, 0x0, 0x0)

2.635206432s ago: executing program 4 (id=517):
socket(0x1d, 0x6, 0x9)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f00000001c0)={0x0, 0x8}, 0x14)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0c00000004000000040000000000010000000000", @ANYRES32=r4, @ANYBLOB="0000000000000000008ceb1e2f425e9060cbf7941e5cca08e6c8e789dc3895dcadf212bae5f5300a24724abadb7badc7681545b6264d3e0eb5efb6cc701f", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000300"/28], 0x48)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x0, 0x1)
setsockopt$SO_BINDTODEVICE_wg(r3, 0x1, 0x19, &(0x7f0000000080)='wg1\x00', 0x4)
sendto$inet(r3, &(0x7f0000000040)="e5", 0xffffffe4, 0x0, 0x0, 0x0)
unshare(0x40020000)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x2}}, 0x20)
sendmsg$nl_generic(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000002c00010324bd7002f9dbdf2506"], 0x14}, 0x1, 0x0, 0x0, 0x4004004}, 0x40)

1.898407813s ago: executing program 5 (id=518):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f00000005c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000400)={&(0x7f0000000940)=ANY=[@ANYBLOB="b4010000", @ANYRES16=r1, @ANYBLOB="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"/422], 0x1b4}, 0x1, 0x0, 0x0, 0x20000800}, 0x40)
sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01005c804beab361de3e030000004c0001800d0001007564703a73797a300000000038000400140001"], 0x60}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x4)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x3}}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x6, &(0x7f0000000680)=ANY=[@ANYBLOB="b40600000000000071112400000000008510000002000000850000000700000095000000000000009500000000000000ce8920f29328b7ddd3856df677997bc5cafa405a82061c5386992ff41f5524a21802a859883d24cc98e697e9e2aa06a6ade7a79a62029a98a8e09c7c6edefac53c5f767377cfcd6bb593240100378e"], &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000540)={0xffffffffffffffff, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xdb, 0x0, 0x0, 0x10, &(0x7f0000000380), &(0x7f00000003c0), 0x8, 0x0, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000380)={r4, 0xe8, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)=@newtaction={0x64, 0x30, 0x9e54f29ff072a93b, 0x0, 0x0, {}, [{0x50, 0x1, [@m_csum={0x4c, 0x1, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x7, 0x1, {{0x0, 0xfffffffd, 0x0, 0x0, 0xfffffc00}}}]}, {0x4, 0x6, "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"}, {0xc}, {0xc}}}]}]}, 0x64}}, 0x20000844)
getsockname$packet(r3, &(0x7f0000000480)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="400000001000390400"/20, @ANYRES32=r6, @ANYBLOB="01980000000000002000128008000100677265001400028008000100", @ANYRES32=r6], 0x40}, 0x1, 0x0, 0x0, 0x4014}, 0x0)
bind$rxrpc(r2, &(0x7f0000000140)=@in6={0x21, 0x2, 0x2, 0x1c, {0xa, 0x4e24, 0x8, @empty, 0xff}}, 0x24)
socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r8, &(0x7f0000000240)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
sched_setaffinity(0x0, 0x0, 0x0)
getresuid(&(0x7f0000003600), &(0x7f0000004740), &(0x7f0000004780))
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r9, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a74000000060a0b0400000034caf32826000000000002000000480004802c0001800b000100736f636b657400001c000280080002400000000b080001400000000308000300000000891800018008000100647570000c000280080001400000000c0900010073797a30000000000900020073797a3200000000140000001100010000000000000000"], 0x9c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x44, 0x24, 0x5820a61ca228659, 0x0, 0xfffffffe, {0x0, 0x0, 0x0, r10, {0x0, 0x9}, {0xffff, 0xffff}, {0x0, 0x7}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_USC={0x10, 0x3, {0x6, 0x2}}}}]}, 0x44}}, 0x800)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000001540)=@newtfilter={0x68, 0x28, 0xd27, 0x1004001, 0x25dfdbfd, {0x0, 0x0, 0x0, r10, {0xd, 0x9}, {}, {0x2, 0xb}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x38, 0x2, [@TCA_CGROUP_ACT={0x34, 0x1, [@m_sample={0x30, 0x15, 0x0, 0x0, {{0xb}, {0x4}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}]}]}}]}, 0x68}, 0x1, 0x0, 0x0, 0x810}, 0x404c0c0)
sendmsg$nl_route(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x20088814}, 0x0)

1.840814474s ago: executing program 1 (id=519):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$uinput_user_dev(r0, 0x0, 0x0)
r1 = openat$sysfs(0xffffff9c, &(0x7f0000000300)='/sys/kernel/kexec_loaded', 0x80000, 0x90)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x4)
r2 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x0, 0x2, 0xbfdffffc}, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r5, &(0x7f0000000040)={0x2, 0x4e24, @multicast2}, 0x10)
setsockopt$sock_int(r5, 0x1, 0x12, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
timer_create(0x2, &(0x7f0000000180)={0x0, 0x21}, &(0x7f00000000c0))
r7 = signalfd4(0xffffffffffffffff, &(0x7f00000008c0), 0x8, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r7}, 0x2c, {'wfdno', 0x3d, r7}})
timer_settime(0x0, 0xe54aef35e9c2845d, &(0x7f000006b000)={{}, {0x0, 0x9}}, 0x0)
r8 = dup(r6)
write$6lowpan_enable(r8, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x1ed9, &(0x7f0000000340)={0x0, 0xcb22, 0x20, 0x3, 0x129, 0x0, r1}, &(0x7f00000003c0)=<r9=>0x0, &(0x7f0000000400))
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_submit(r9, r4, &(0x7f0000000580)=@IORING_OP_STATX={0x15, 0x18, 0x0, 0xffffffffffffffff, &(0x7f0000000440), &(0x7f0000000540)='./file0\x00', 0x2, 0x2000, 0x1, {0x0, r10}})
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
socket$nl_crypto(0x10, 0x3, 0x15)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f00000005c0)={'gre0\x00', <r12=>0x0})
bind$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0x0, r12, 0x1, 0x0, 0x6, @remote}, 0x14)
io_uring_enter(r2, 0x75fa, 0xe475, 0x0, 0x0, 0x0)

1.840291206s ago: executing program 5 (id=520):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x239, &(0x7f00000003c0)={0x0, 0x1c2a, 0x10100, 0x3, 0x3df, 0x0, r1}, &(0x7f0000000280)=<r2=>0x0, &(0x7f0000000380)=<r3=>0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=@newqdisc={0x2c, 0x24, 0x200, 0x20000, 0x10000, {0x0, 0x0, 0x0, 0x0, {0xffe0, 0xb}, {0xffff}, {0xfff1, 0xd}}, [@TCA_EGRESS_BLOCK={0x8, 0xe, 0xc}]}, 0x2c}, 0x1, 0x0, 0x0, 0x404c810}, 0x20008040)
socket$inet_udplite(0x2, 0x2, 0x88)
socket(0x10, 0x80002, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, {}, 0x1})
r4 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r4, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x42}}}, 0x10)
r5 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x0, 0x3}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r5, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0xffffffff}, 0x10)
sendmsg$tipc(r5, &(0x7f0000000300)={&(0x7f0000000200)=@name={0x1e, 0x2, 0x2}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4000001}, 0x0)
setsockopt$TIPC_GROUP_LEAVE(r4, 0x10f, 0x88)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7ffc0001}]})

1.671077457s ago: executing program 5 (id=521):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x239, &(0x7f00000003c0)={0x0, 0x1c2a, 0x10100, 0x3, 0x3df, 0x0, r1}, &(0x7f0000000280)=<r2=>0x0, &(0x7f0000000380)=<r3=>0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=@newqdisc={0x2c, 0x24, 0x200, 0x20000, 0x10000, {0x0, 0x0, 0x0, 0x0, {0xffe0, 0xb}, {0xffff}, {0xfff1, 0xd}}, [@TCA_EGRESS_BLOCK={0x8, 0xe, 0xc}]}, 0x2c}, 0x1, 0x0, 0x0, 0x404c810}, 0x20008040)
socket$inet_udplite(0x2, 0x2, 0x88)
socket(0x10, 0x80002, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, {}, 0x1})
r4 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r4, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x42}}}, 0x10)
r5 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x0, 0x3}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r5, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0xffffffff}, 0x10)
sendmsg$tipc(r5, &(0x7f0000000300)={&(0x7f0000000200)=@name={0x1e, 0x2, 0x2}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4000001}, 0x0)
setsockopt$TIPC_GROUP_LEAVE(r4, 0x10f, 0x88)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7ffc0001}]})

1.643275711s ago: executing program 4 (id=522):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
preadv(0xffffffffffffffff, &(0x7f0000000440)=[{&(0x7f0000000380)=""/116, 0x74}], 0x1, 0x0, 0x5f8)
write$cgroup_int(r1, &(0x7f0000000200), 0xf000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r0, 0x0)
kexec_load(0x0, 0x0, 0x0, 0x2a0001)

1.570227688s ago: executing program 4 (id=523):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0xf, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9, 0x11e41e7a, 0x5, 0xfffffffc, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x40830}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1, 0x0, 0x7}, 0x18)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket$inet6(0xa, 0x5, 0x0)
listen(r4, 0x0)
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$netrom_NETROM_T2(0xffffffffffffffff, 0x103, 0x2, &(0x7f0000000a00)=0xd, 0x4)
setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f0000000540)=@raw={'raw\x00', 0x3c1, 0x3, 0x3b8, 0x1b8, 0xc8, 0x8, 0x0, 0x5803, 0x2f0, 0x2e8, 0x2e8, 0x2f0, 0x2e8, 0x3, 0x0, {[{{@ipv6={@remote, @loopback, [], [], 'netdevsim0\x00', 'geneve1\x00'}, 0x0, 0x188, 0x1b8, 0x0, {0x0, 0x2000000000000}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "cacaf80c672f61cd17ae5119b5135c2aee68d23a465cd431e1ecef50c3234e082555f67222476147864fa03182f5df11d8c348cbd06dc8de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac07a602061c96baebc989f1f35a214e67262c1fe4b124e0f7323a587d2a1fcfe36bbf12eca0a7b66c60c527bac2b5", 0x2, 0x2}}, @common=@inet=@socket1={{0x24}}]}, @common=@unspec=@CONNMARK={0x30}}, {{@ipv6={@private2={0xfc, 0x2, '\x00', 0x1}, @rand_addr=' \x01\x00', [0xff, 0xffffffff], [0xff000000, 0x0, 0xff], 'geneve1\x00', 'veth1\x00', {0xff}, {}, 0x11, 0x3, 0x0, 0x40}, 0x0, 0x118, 0x138, 0x0, {}, [@common=@inet=@multiport={{0x50}, {0x0, 0x0, [0x4e23, 0x4e1d, 0x4e22, 0x4e20, 0x4e22, 0x4e23, 0x4e22, 0x4e21, 0x4e21, 0x4e24, 0x4e22, 0x2, 0x4e20, 0x4e21, 0x4e23], [0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1], 0x1}}, @inet=@rpfilter={{0x24}}]}, @unspec=@NOTRACK={0x20}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x414)
sendto$inet(0xffffffffffffffff, &(0x7f00000012c0), 0x0, 0x11, 0x0, 0x0)
syz_io_uring_setup(0x10d, &(0x7f0000000980)={0x0, 0x5885, 0x80, 0x10000000}, &(0x7f0000000340)=<r6=>0x0, &(0x7f0000000280)=<r7=>0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000003700010324bd7002fcdbdf25100000001fe37c903dbcc600000000000000075754956602a0cb0b86"], 0x14}}, 0x0)
r8 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_SET_EVBIT(r8, 0x40045564, 0x3)
ioctl$UI_SET_ABSBIT(r8, 0x40045567, 0x0)
ioctl$UI_DEV_CREATE(r8, 0x5501)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x4004, @fd_index=0x3, 0x0, 0x0})

1.084014085s ago: executing program 0 (id=524):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1f, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
ppoll(&(0x7f00000002c0)=[{r0, 0x4000}], 0x1, &(0x7f0000000080)={0x0, 0x3938700}, 0x0, 0x0)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f0000000000)={@remote, <r1=>0x0}, &(0x7f0000000040)=0x14)
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000140)={@local, 0xa, r1})

1.000690904s ago: executing program 5 (id=525):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x88, 0x30, 0x1, 0x0, 0x0, {}, [{0x74, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x2c, 0x1, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0x88}, 0x1, 0x0, 0x0, 0x800}, 0x40000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x5, &(0x7f00000027c0)=0xcfb)
r0 = getpid()
r1 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x8)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x16, 0x4, &(0x7f0000002800)=ANY=[@ANYBLOB="85000000070000006a0a00ff000000000c00000000000000950000000000000018100000", @ANYBLOB="c25594d1cb615c61264b32f103c5b7a418395b4e8d451bd7a41ae87e89e0bd22ed951d705990eb6a1705417f605352922b8b43a5c89254aef52c87c8ba64cab2add420ed2676fab49f7ce35eb82d5eb60edc20661cd6716d95f843ad5fe2a91ac7e918f5c07e9e754eb23855068734f7979281e4c8524267ddbe9bab23a4e3143e53508cb7915616e8efff9333a7eee022a0a16634097e36da77200bff3b6638fccf2215cdf2ea", @ANYRES64=r0], &(0x7f0000000140)='GPL\x00', 0x2, 0x95, &(0x7f0000000180)=""/149, 0x0, 0x8, '\x00', 0x0, @flow_dissector, r1, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000002c0)=ANY=[@ANYRES32=0x0, @ANYRES32=r2, @ANYBLOB="110000000100000000000000", @ANYRES32=r1, @ANYRES64=0x0], 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000002700)={0x6, 0xe, &(0x7f0000000300)=ANY=[@ANYBLOB="950000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000000000850000000cf3ffffb60000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000050000008500004006000000"], &(0x7f0000000380)='syzkaller\x00', 0x3, 0x44, &(0x7f0000002540)=""/68, 0x40f00, 0x1a, '\x00', 0x0, 0x25, r1, 0x8, &(0x7f00000025c0)={0x5, 0x1}, 0x8, 0x10, &(0x7f0000002600)={0x1, 0x10, 0x7, 0xa0}, 0x10, 0x0, 0x0, 0xa, 0x0, &(0x7f0000002640)=[{0x1, 0x1, 0x10, 0xa}, {0x3, 0x2, 0x8}, {0x0, 0x1, 0x10, 0xb}, {0x3, 0x5, 0x8, 0x6}, {0x5, 0x5, 0x4, 0x8}, {0x1, 0x2, 0xe, 0xc}, {0x5, 0x5, 0x9, 0x1}, {0x4, 0x3, 0x7, 0xa}, {0x2, 0x3, 0x10, 0x4}, {0x1, 0x1, 0x1, 0x11}], 0x10, 0x0, @void, @value}, 0x94)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
listen(0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x0, 0x2000, 0x0)
lseek(0xffffffffffffffff, 0x38, 0x2)
write$6lowpan_enable(0xffffffffffffffff, &(0x7f0000000000)='0', 0x1)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f00000003c0)="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", 0xfffffffffffffd8a, 0x0)
r5 = syz_open_dev$evdev(&(0x7f0000000080), 0x1, 0x0)
ioctl$EVIOCGKEYCODE_V2(r5, 0x40084503, &(0x7f0000001500)=""/4103)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000180)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB])
chdir(0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(r6, 0x0, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x40042)
write$binfmt_aout(r7, 0x0, 0x125)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)

976.511068ms ago: executing program 0 (id=526):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101142, 0x0)
socket$unix(0x1, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
unshare(0x6a040000)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r3 = syz_io_uring_setup(0x228, &(0x7f0000000380)={0x0, 0x1ffffa, 0x10100, 0x0, 0x0, 0x0, r2}, &(0x7f0000000180)=<r4=>0x0, &(0x7f00000001c0)=<r5=>0x0)
recvfrom$inet(r0, &(0x7f0000000240)=""/65, 0x41, 0x40000000, &(0x7f0000000300)={0x2, 0x4e22, @private=0xa010100}, 0x10)
syz_io_uring_submit(r4, r5, &(0x7f0000000080)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r3, 0x708, 0x41e3, 0x0, 0x0, 0x0)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0xc, 0x0, 0x0)
read(r6, &(0x7f00000000c0)=""/14, 0xe)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
syz_io_uring_setup(0x1458, &(0x7f00000004c0)={0x0, 0x3, 0x10180, 0x2000, 0x3ae}, &(0x7f0000000100), &(0x7f00000002c0))
unshare(0x8010200)
sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB='9'], 0x38}}, 0x4000)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="9ebfc20df22c54ca4a21fc180000001000000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r7}, 0x10)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x80, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r9, 0xc00caee0, &(0x7f0000000100)={0x4})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$SIOCGIFMTU(r0, 0x8921, &(0x7f0000000340)={'pimreg1\x00'})
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r10, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r10, 0x0)

911.680335ms ago: executing program 1 (id=527):
socket(0x10, 0x80002, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x25dfdbff, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0xf0990993fa267092}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(des3_ede)\x00'}, 0x58)
accept4(r1, 0x0, 0x0, 0x80000)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000300)=ANY=[], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000005c0)={r3}, 0x4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x10, &(0x7f0000000100)=ANY=[@ANYBLOB="1802000067f9bfff00000000fdffffffb7080000000000007b8af8ff00000000b7080000000000007b8af0ff08000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70500000800000085000000a50000009500000000000000"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x0, 0xe, 0x0, &(0x7f0000000540)="64b61d9b104c99176403699c7d94", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9}, 0x50)
r5 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r6 = openat$cgroup_freezer_state(r5, &(0x7f0000000140), 0x2, 0x0)
sendfile(r6, r6, 0x0, 0x9)
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r7, &(0x7f0000000280)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(cipher_null)\x00'}, 0x58)
r8 = syz_io_uring_setup(0x1f87, &(0x7f0000000080)={0x0, 0x8444, 0x13580}, &(0x7f0000000100)=<r9=>0x0, &(0x7f0000000140)=<r10=>0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000000)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x20, 0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2001, 0x1, {0x1}})
io_uring_enter(r8, 0xe85, 0x0, 0x0, 0x0, 0x0)

476.241916ms ago: executing program 4 (id=528):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x15, 0x10, 0x2, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x2, &(0x7f0000000680)={0x3, 0x3, &(0x7f0000000740)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x1, 0x1000}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@gettfilter={0x24, 0x2e, 0x1, 0x70bd29, 0x25dfdc03, {0x0, 0x0, 0x0, r4, {0x2, 0x4}, {0x0, 0xfff1}, {0x0, 0x7}}}, 0x24}, 0x1, 0x0, 0x0, 0x20000090}, 0x4041080)
r5 = socket$igmp(0x2, 0x3, 0x2)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r6, 0x0, 0x40, &(0x7f00000000c0)=@security={'security\x00', 0xe, 0x4, 0x22c0, 0xffffffff, 0xb8, 0x0, 0x118c, 0xffffffff, 0xffffffff, 0x2250, 0x2250, 0x2250, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x0, 0x70, 0x94}, @common=@inet=@SYNPROXY={0x24, 'SYNPROXY\x00', 0x0, {0xa, 0x57, 0xa}}}, {{@ip={@loopback, @initdev={0xac, 0x1e, 0x0, 0x0}, 0xff, 0xffffff00, 'pim6reg\x00', 'vxcan1\x00', {0xff}, {0xff}, 0x21, 0x1, 0xa}, 0x0, 0x10a0, 0x10d4, 0x0, {}, [@common=@unspec=@cgroup1={{0x1030}, {0x1, 0x1, 0x0, 0x0, './cgroup.cpu/syz0\x00', 0x8000, {0x9}}}]}, @common=@inet=@SET3={0x34, 'SET\x00', 0x3, {{0xffffffffffffffff, 0x4, 0x2}, {0x3, 0x1, 0x6}, {0xffffffffffffffff, 0x4, 0x7}, 0x802a}}}, {{@uncond, 0x0, 0x10a0, 0x10c4, 0x0, {}, [@common=@unspec=@cgroup1={{0x1030}, {0x0, 0x0, 0x0, 0x0, './cgroup.net/syz0\x00', 0x6096, {0x9}}}]}, @common=@unspec=@NFQUEUE0={0x24, 'NFQUEUE\x00', 0x0, {0x80}}}], {{'\x00', 0x0, 0x70, 0x94}, {0x24}}}}, 0x231c)
open(&(0x7f0000000040)='./file0\x00', 0x200000, 0x1)
setsockopt$MRT_INIT(r5, 0x0, 0xc8, &(0x7f0000003d40), 0x4)
setsockopt$MRT_ADD_VIF(r5, 0x0, 0xca, &(0x7f00000000c0)={0x8, 0x0, 0x0, 0x800000, @vifc_lcl_addr=@local, @dev={0xac, 0x14, 0x14, 0x40}}, 0x10)
setsockopt$inet_mreq(r0, 0x0, 0x23, &(0x7f0000000000)={@multicast1=0xe0000300, @local}, 0x8)
syz_emit_ethernet(0x2a, &(0x7f0000000080)={@local, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @multicast1=0xe0000300}, @address_request}}}}, 0x0)
ioperm(0x5, 0x1, 0x1)
ioprio_get$uid(0x2, 0x0)

410.714011ms ago: executing program 5 (id=529):
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000000)={"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"})
syz_usb_connect(0x0, 0x36, &(0x7f0000000200)=ANY=[@ANYBLOB="1201000068e04d206f0e2c586831010203010902240001000000000904000002ff47d000090509e70000800004", @ANYBLOB="b7"], 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r0, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000040)={0x4101}, 0x10)
r1 = socket$inet6(0xa, 0x3, 0x7)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f00000000c0)=r2, 0x4)
bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0)
connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000340)={{{@in6=@dev={0xfe, 0x80, '\x00', 0x1e}, @in6=@loopback, 0x4e24, 0x0, 0x0, 0x0, 0xa, 0x0, 0x20}, {0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x4, 0x2}, {}, 0x0, 0x6e6bb9, 0x1}, {{@in=@broadcast, 0xfffffffc, 0x32}, 0x0, @in=@multicast1, 0x0, 0x0, 0x2, 0x7, 0x200}}, 0xe8)
sendmmsg(r1, &(0x7f0000000480), 0x2e9, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$FS_IOC_ENABLE_VERITY(0xffffffffffffffff, 0x40806685, &(0x7f0000000500)={0x1, 0x1, 0x1000, 0x0, &(0x7f0000000440), 0x0, 0x0, 0x0})
r4 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
listen(r4, 0x7)
sendmsg$nl_xfrm(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000001c0)=ANY=[@ANYBLOB="38010000100033060000000008000080e000000200000000000000000000000000fd00000000000000000a000000a500"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ac1414aa000000000000000000000000000004d232000000ff02000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000050000000000000000000000000000000000000002000000000000000a0004000000000048000200656362286369706865725f6e756c6c2900"/236], 0x138}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
syz_open_dev$evdev(&(0x7f00000000c0), 0x40, 0x0)

396.917931ms ago: executing program 4 (id=530):
openat$snapshot(0xffffffffffffff9c, &(0x7f00000002c0), 0x40040, 0x0) (async)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf) (async)
ioctl$TCFLSH(r0, 0x400455c8, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x3, 0x1, &(0x7f0000000300)=@raw=[@func={0x85, 0x0, 0x1, 0x0, 0x8}], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0xcc03, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, @void, @value}, 0x94)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000140)=0x34) (async)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000040)="651860dc40e8cea50d6f35e874aee482abed9335fa53bd6e28f9af8f9b63e86e334264ddff785c559c3c44c2c450", 0x2e, 0x4044, &(0x7f0000000080)={0xa, 0x4e20, 0x8, @private1, 0x80}, 0x1c)

776.33µs ago: executing program 1 (id=531):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
preadv(0xffffffffffffffff, &(0x7f0000000440)=[{&(0x7f0000000380)=""/116, 0x74}], 0x1, 0x0, 0x5f8)
write$cgroup_int(r1, &(0x7f0000000200), 0xf000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r0, 0x0)
kexec_load(0x0, 0x0, &(0x7f0000000240), 0x2a0001)

338.14µs ago: executing program 1 (id=532):
ioperm(0x284, 0x7f, 0xe3)
syz_open_dev$cec(&(0x7f0000000000), 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000005c0)=ANY=[@ANYBLOB="14000000100001ff00000000000000000000000a2c00000048a6540319e0b58500000000020000000900030073797a32000002000900010073797a300000000014000000020a031747d2140000000000"], 0x68}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[@ANYBLOB="14000000100001000b000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000044000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f28000340000000045c0000000c0a01020000000000000000010000000900020073797a32000000000900010073797a3000000000300003802c00008028000180230001"], 0xe8}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[], 0xe8}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000340)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000280)=0x14)
ioctl$TCSETS(r4, 0xc0384707, &(0x7f0000000040)={0x1, 0x0, 0x0, 0x0, 0x0, "3eccd8f9d20000000000001000000200000500"})
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
close_range(r5, 0xffffffffffffffff, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x8001}, 0x4)
r6 = socket$inet(0x2, 0x2, 0x0)
r7 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r7, &(0x7f0000000180)={0x3, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=ANY=[@ANYBLOB="030200020f0000000000000000000000020001000000000000c85300000000a00800120003000200b56b6e000100000006006c04000000000000000000e02522d60100000000000000000000040000000a01010000000000000000152000000003000500ff0000be1e2796a0e9d600000000000000"], 0x78}, 0x1, 0x7}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r6, 0x8933, &(0x7f00000001c0)={'wg0\x00'})
syz_open_dev$evdev(&(0x7f0000000080), 0x8005, 0x480)

0s ago: executing program 0 (id=533):
socket$nl_netfilter(0x10, 0x3, 0xc)
landlock_create_ruleset(&(0x7f0000000140)={0x4608}, 0x18, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0xf, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9, 0x11e41e7a, 0x5, 0xfffffffc, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0xffffffffffffff2f, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0x21}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1, 0x0, 0x7}, 0x18)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket$inet6(0xa, 0x5, 0x0)
listen(r4, 0x0)
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000500)={0x0, &(0x7f00000001c0)}, 0x8)
sendto$inet(0xffffffffffffffff, &(0x7f00000012c0), 0x0, 0x11, 0x0, 0x0)
syz_io_uring_setup(0x10d, &(0x7f0000000980)={0x0, 0x5885, 0x80, 0x10000000}, &(0x7f0000000340), &(0x7f0000000280))
socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_SET_EVBIT(r5, 0x40045564, 0x3)
ioctl$UI_SET_ABSBIT(r5, 0x40045567, 0x0)
write$uinput_user_dev(r5, &(0x7f0000000080)={'syz1\x00', {0x3ff, 0x3, 0x4}, 0x4d, [0x10004, 0x6, 0x9, 0x8a4, 0x2, 0x2, 0x7fffffff, 0x80000001, 0xc0d, 0x1, 0xfd, 0x3c6, 0x7, 0x7, 0xf70, 0x3c00, 0xe7, 0x4007, 0x401, 0xbc5e, 0x4, 0x1, 0x8, 0xffff, 0xe, 0xe, 0x10, 0x20000000, 0x15098855, 0x6, 0x2, 0xfffffffb, 0x10006, 0xc, 0xfffffff7, 0x4, 0xe77, 0x7, 0xfffffffe, 0x1, 0x1, 0x0, 0x401, 0x9, 0xbdc7, 0x800000b, 0x1, 0x9, 0x6, 0x1, 0x6, 0x909, 0x5, 0x4d, 0x5, 0x65a, 0x0, 0x1, 0x1000, 0x3, 0x2, 0x6, 0x7ff, 0xb8547353], [0x4, 0xffffffff, 0x4, 0x5, 0x7ffffdff, 0x1, 0x550, 0x6, 0x2, 0xfffffffc, 0x10001, 0xc, 0x36, 0x4, 0xe48, 0x1, 0x9, 0x98, 0x8, 0xe56d, 0xa4, 0x9, 0x99d, 0x8, 0x0, 0xd, 0x10001, 0xfffffffe, 0x6e38, 0x8000, 0xa, 0x6, 0x3, 0x0, 0x5, 0x7, 0x4, 0xd, 0x9, 0xfff, 0x4, 0x0, 0x40000040, 0x101, 0x8, 0x5, 0x0, 0x0, 0x34f1, 0x1ff, 0x7, 0x1b2c5a97, 0x0, 0x9, 0x8, 0x2, 0x1, 0x1, 0x6, 0x6, 0xac, 0x2, 0x54, 0xcfb9], [0x5, 0xdb8, 0x9, 0x0, 0x2, 0x200006, 0x5, 0x5, 0x2, 0x80, 0xfffffffd, 0xc8d3, 0x33, 0x9a45, 0x0, 0xee40000, 0x1, 0x1, 0x4, 0x69d, 0x8, 0x10001, 0x0, 0x0, 0x40000008, 0x2, 0x4, 0x800, 0x7, 0x9, 0x10000, 0x0, 0x1, 0xfffffffe, 0x3, 0x0, 0x4, 0x7, 0x9, 0x2, 0x8, 0x7, 0x6, 0x2, 0x81, 0x8, 0x1, 0x55f2, 0xdf46, 0xfffffffd, 0x7f, 0x9, 0xb6, 0x40, 0x3, 0x2, 0x8, 0x6, 0x2, 0xffffff00, 0xda15, 0x82, 0x3, 0x10], [0x0, 0x897, 0x8, 0x246d, 0x6, 0x101, 0x7fffffff, 0xd, 0x1, 0x60a, 0x5, 0x9, 0x80000001, 0x2, 0xb, 0x2, 0x7, 0x1, 0x7, 0x8, 0x7ff, 0x1, 0x0, 0x2, 0x6, 0x20c, 0xfffffffd, 0xa18, 0x61c8, 0x6, 0x7ff, 0x101, 0xff, 0x7, 0x9, 0x5, 0x4, 0x101, 0x9, 0x3000000, 0x20e, 0x4000006, 0x7, 0xfffffffd, 0x9, 0x1, 0x4, 0x100009, 0x100, 0x8, 0x3c, 0x1000, 0x3, 0x3, 0x15, 0x8000, 0x7, 0x3, 0x8, 0x7, 0x8, 0x4, 0x6, 0xeff]}, 0x45c)
ioctl$UI_DEV_CREATE(r5, 0x5501) (fail_nth: 1)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="64000000000101040000000014"], 0x64}}, 0x0)

kernel console output (not intermixed with test programs):

75.620569][ T6505]  should_failslab+0xc2/0x120
[   75.620583][ T6505]  __kmalloc_noprof+0xd2/0x510
[   75.620606][ T6505]  ? kasan_quarantine_put+0x10a/0x240
[   75.620631][ T6505]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[   75.620660][ T6505]  genl_family_rcv_msg_doit+0xbf/0x2f0
[   75.620686][ T6505]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[   75.620709][ T6505]  ? trace_cap_capable+0x18d/0x200
[   75.620731][ T6505]  ? bpf_lsm_capable+0x9/0x10
[   75.620753][ T6505]  ? security_capable+0x7e/0x260
[   75.620769][ T6505]  ? ns_capable+0xd7/0x110
[   75.620792][ T6505]  genl_rcv_msg+0x55c/0x800
[   75.620811][ T6505]  ? __pfx_genl_rcv_msg+0x10/0x10
[   75.620825][ T6505]  ? __pfx___dev_queue_xmit+0x10/0x10
[   75.620841][ T6505]  ? __pfx_nl80211_pre_doit+0x10/0x10
[   75.620861][ T6505]  ? __pfx_nl80211_tx_mgmt+0x10/0x10
[   75.620874][ T6505]  ? __pfx_nl80211_post_doit+0x10/0x10
[   75.620897][ T6505]  ? __lock_acquire+0xaa4/0x1ba0
[   75.620916][ T6505]  netlink_rcv_skb+0x16a/0x440
[   75.620938][ T6505]  ? __pfx_genl_rcv_msg+0x10/0x10
[   75.620964][ T6505]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   75.621000][ T6505]  ? __pfx_down_read+0x10/0x10
[   75.621025][ T6505]  ? netlink_deliver_tap+0x1ae/0xd30
[   75.621051][ T6505]  genl_rcv+0x28/0x40
[   75.621073][ T6505]  netlink_unicast+0x53a/0x7f0
[   75.621100][ T6505]  ? __pfx_netlink_unicast+0x10/0x10
[   75.621126][ T6505]  netlink_sendmsg+0x8d1/0xdd0
[   75.621154][ T6505]  ? __pfx_netlink_sendmsg+0x10/0x10
[   75.621175][ T6505]  ? __import_iovec+0x1c8/0x660
[   75.621201][ T6505]  ____sys_sendmsg+0xa95/0xc70
[   75.621227][ T6505]  ? __pfx_____sys_sendmsg+0x10/0x10
[   75.621250][ T6505]  ? get_compat_msghdr+0x11a/0x170
[   75.621281][ T6505]  ___sys_sendmsg+0x134/0x1d0
[   75.621304][ T6505]  ? __pfx____sys_sendmsg+0x10/0x10
[   75.621356][ T6505]  __sys_sendmsg+0x16d/0x220
[   75.621377][ T6505]  ? __pfx___sys_sendmsg+0x10/0x10
[   75.621409][ T6505]  ? rcu_is_watching+0x12/0xc0
[   75.621430][ T6505]  __do_fast_syscall_32+0x73/0x120
[   75.621456][ T6505]  do_fast_syscall_32+0x32/0x80
[   75.621478][ T6505]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   75.621497][ T6505] RIP: 0023:0xf741e579
[   75.621511][ T6505] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   75.621526][ T6505] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   75.621543][ T6505] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000080
[   75.621553][ T6505] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   75.621562][ T6505] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   75.621571][ T6505] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   75.621580][ T6505] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   75.621602][ T6505]  </TASK>
[   75.669499][ T6507] FAULT_INJECTION: forcing a failure.
[   75.669499][ T6507] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   75.670692][ T1322] ath9k_htc: Failed to initialize the device
[   75.671677][ T6507] CPU: 3 UID: 0 PID: 6507 Comm: syz.4.124 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) 
[   75.671699][ T6507] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.671708][ T6507] Call Trace:
[   75.671714][ T6507]  <TASK>
[   75.671721][ T6507]  dump_stack_lvl+0x16c/0x1f0
[   75.671748][ T6507]  should_fail_ex+0x512/0x640
[   75.671771][ T6507]  strncpy_from_user+0x3b/0x2e0
[   75.671791][ T6507]  getname_flags.part.0+0x8b/0x540
[   75.671812][ T6507]  getname_flags+0x93/0xf0
[   75.671830][ T6507]  do_sys_openat2+0xb8/0x1d0
[   75.671844][ T6507]  ? __pfx_do_sys_openat2+0x10/0x10
[   75.671861][ T6507]  ? __fget_files+0x20e/0x3c0
[   75.671886][ T6507]  __ia32_compat_sys_openat+0x16d/0x210
[   75.671905][ T6507]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[   75.671920][ T6507]  ? ksys_write+0x1b9/0x240
[   75.671957][ T6507]  ? rcu_is_watching+0x12/0xc0
[   75.671980][ T6507]  __do_fast_syscall_32+0x73/0x120
[   75.672004][ T6507]  do_fast_syscall_32+0x32/0x80
[   75.672026][ T6507]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   75.672047][ T6507] RIP: 0023:0xf741e579
[   75.672063][ T6507] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   75.672078][ T6507] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000127
[   75.672092][ T6507] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080000100
[   75.672101][ T6507] RDX: 0000000000103201 RSI: 000000000000010b RDI: 0000000000000000
[   75.672110][ T6507] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   75.672119][ T6507] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   75.672127][ T6507] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   75.672146][ T6507]  </TASK>
[   75.916211][ T6010] usb 9-1: ath9k_htc: USB layer deinitialized
[   75.935773][ T5302] Bluetooth: hci1: command tx timeout
[   75.957935][ T6512] netlink: 'syz.5.126': attribute type 1 has an invalid length.
[   75.972615][ T6515] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   76.055579][ T6522] ip6t_REJECT: ECHOREPLY is not supported
[   76.323989][ T2292] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[   76.506716][ T2292] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[   76.509953][ T2292] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[   76.512455][ T2292] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[   76.517716][ T2292] usb 10-1: New USB device found, idVendor=0a07, idProduct=00d0, bcdDevice=10.13
[   76.520403][ T2292] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   76.522710][ T2292] usb 10-1: Product: syz
[   76.524004][ T2292] usb 10-1: Manufacturer: syz
[   76.525386][ T2292] usb 10-1: SerialNumber: syz
[   76.529081][ T2292] usb 10-1: config 0 descriptor??
[   76.735212][ T6371] usbtmc 6-1:16.0: usbtmc_ioctl_request failed -110
[   76.738234][ T2292] adutux 10-1:0.0: ADU208 4242424 now attached to /dev/usb/adutux2
[   76.889220][ T6009] usb 6-1: USB disconnect, device number 6
[   76.938217][ T6010] usb 10-1: USB disconnect, device number 2
[   76.974136][ T5302] Bluetooth: hci4: command tx timeout
[   77.471299][ T6541] FAULT_INJECTION: forcing a failure.
[   77.471299][ T6541] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   77.475255][ T6541] CPU: 1 UID: 0 PID: 6541 Comm: syz.5.133 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) 
[   77.475270][ T6541] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   77.475276][ T6541] Call Trace:
[   77.475279][ T6541]  <TASK>
[   77.475283][ T6541]  dump_stack_lvl+0x16c/0x1f0
[   77.475300][ T6541]  should_fail_ex+0x512/0x640
[   77.475314][ T6541]  should_fail_alloc_page+0xe7/0x130
[   77.475325][ T6541]  prepare_alloc_pages+0x3c2/0x610
[   77.475337][ T6541]  ? rcu_is_watching+0x12/0xc0
[   77.475351][ T6541]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[   77.475366][ T6541]  ? __lock_acquire+0x5ca/0x1ba0
[   77.475379][ T6541]  ? __lock_acquire+0x5ca/0x1ba0
[   77.475388][ T6541]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[   77.475407][ T6541]  ? __lock_acquire+0x5ca/0x1ba0
[   77.475417][ T6541]  ? __lock_acquire+0x5ca/0x1ba0
[   77.475425][ T6541]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   77.475436][ T6541]  ? policy_nodemask+0xea/0x4e0
[   77.475446][ T6541]  alloc_pages_mpol+0x1fb/0x550
[   77.475456][ T6541]  ? __pfx_alloc_pages_mpol+0x10/0x10
[   77.475465][ T6541]  ? __lock_acquire+0x5ca/0x1ba0
[   77.475475][ T6541]  folio_alloc_mpol_noprof+0x36/0x2f0
[   77.475487][ T6541]  vma_alloc_folio_noprof+0xed/0x1e0
[   77.475498][ T6541]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[   77.475512][ T6541]  do_pte_missing+0x223d/0x3fb0
[   77.475530][ T6541]  __handle_mm_fault+0x103d/0x2a40
[   77.475547][ T6541]  ? __pfx___handle_mm_fault+0x10/0x10
[   77.475560][ T6541]  ? __pte_offset_map_lock+0x155/0x2f0
[   77.475571][ T6541]  ? find_held_lock+0x2b/0x80
[   77.475583][ T6541]  ? find_held_lock+0x2b/0x80
[   77.475602][ T6541]  handle_mm_fault+0x3fe/0xad0
[   77.475618][ T6541]  __get_user_pages+0x771/0x36f0
[   77.475634][ T6541]  ? __pfx___get_user_pages+0x10/0x10
[   77.475646][ T6541]  ? __pfx_down_read_killable+0x10/0x10
[   77.475657][ T6541]  ? __lock_acquire+0x5ca/0x1ba0
[   77.475667][ T6541]  __gup_longterm_locked+0x20d/0x1850
[   77.475682][ T6541]  ? try_get_folio+0x1d2/0x730
[   77.475692][ T6541]  ? __pfx___gup_longterm_locked+0x10/0x10
[   77.475706][ T6541]  ? try_get_folio+0x255/0x730
[   77.475716][ T6541]  ? find_held_lock+0x2b/0x80
[   77.475728][ T6541]  ? sanity_check_pinned_pages+0x3ac/0x11e0
[   77.475742][ T6541]  gup_fast_fallback+0x183d/0x2650
[   77.475762][ T6541]  ? __pfx_gup_fast_fallback+0x10/0x10
[   77.475780][ T6541]  pin_user_pages_fast+0xa7/0xf0
[   77.475792][ T6541]  ? __pfx_pin_user_pages_fast+0x10/0x10
[   77.475804][ T6541]  ? __kmalloc_noprof+0x242/0x510
[   77.475821][ T6541]  rds_info_getsockopt+0x39f/0x4f0
[   77.475838][ T6541]  ? __pfx_rds_info_getsockopt+0x10/0x10
[   77.475853][ T6541]  ? find_held_lock+0x2b/0x80
[   77.475865][ T6541]  ? __might_fault+0x13b/0x190
[   77.475883][ T6541]  rds_getsockopt+0x173/0x2d0
[   77.475893][ T6541]  ? __pfx_rds_getsockopt+0x10/0x10
[   77.475905][ T6541]  do_sock_getsockopt+0x3fc/0x800
[   77.475923][ T6541]  ? __pfx_do_sock_getsockopt+0x10/0x10
[   77.475937][ T6541]  ? __fget_files+0x204/0x3c0
[   77.475961][ T6541]  __sys_getsockopt+0x12f/0x260
[   77.475976][ T6541]  __ia32_sys_getsockopt+0xbc/0x160
[   77.475987][ T6541]  ? lockdep_hardirqs_on+0x7c/0x110
[   77.476000][ T6541]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   77.476014][ T6541]  __do_fast_syscall_32+0x73/0x120
[   77.476030][ T6541]  do_fast_syscall_32+0x32/0x80
[   77.476044][ T6541]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   77.476056][ T6541] RIP: 0023:0xf7f23579
[   77.476064][ T6541] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   77.476073][ T6541] RSP: 002b:00000000f504655c EFLAGS: 00000296 ORIG_RAX: 000000000000016d
[   77.476082][ T6541] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000114
[   77.476088][ T6541] RDX: 000000000000271c RSI: 0000000080000440 RDI: 00000000800000c0
[   77.476093][ T6541] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   77.476098][ T6541] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   77.476104][ T6541] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   77.476121][ T6541]  </TASK>
[   77.610798][ T6542] Zero length message leads to an empty skb
[   77.619116][ T6544] FAULT_INJECTION: forcing a failure.
[   77.619116][ T6544] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   77.624887][ T6544] CPU: 0 UID: 0 PID: 6544 Comm: syz.5.134 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) 
[   77.624908][ T6544] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   77.624918][ T6544] Call Trace:
[   77.624923][ T6544]  <TASK>
[   77.624928][ T6544]  dump_stack_lvl+0x16c/0x1f0
[   77.624955][ T6544]  should_fail_ex+0x512/0x640
[   77.624975][ T6544]  _copy_to_user+0x32/0xd0
[   77.624996][ T6544]  vcs_read+0x789/0xbe0
[   77.625025][ T6544]  ? __pfx_vcs_read+0x10/0x10
[   77.625043][ T6544]  ? bpf_lsm_file_permission+0x9/0x10
[   77.625061][ T6544]  ? security_file_permission+0x71/0x210
[   77.625080][ T6544]  ? iov_iter_advance+0x1e3/0x6c0
[   77.625097][ T6544]  ? rw_verify_area+0xcf/0x680
[   77.625115][ T6544]  ? __pfx_vcs_read+0x10/0x10
[   77.625132][ T6544]  vfs_readv+0x6bc/0x8a0
[   77.625156][ T6544]  ? __pfx_vfs_readv+0x10/0x10
[   77.625189][ T6544]  ? __fget_files+0x20e/0x3c0
[   77.625207][ T6544]  ? __fget_files+0x1e0/0x3c0
[   77.625231][ T6544]  ? do_readv+0x132/0x330
[   77.625246][ T6544]  do_readv+0x132/0x330
[   77.625263][ T6544]  ? __pfx_do_readv+0x10/0x10
[   77.625282][ T6544]  ? rcu_is_watching+0x12/0xc0
[   77.625303][ T6544]  __do_fast_syscall_32+0x73/0x120
[   77.625325][ T6544]  do_fast_syscall_32+0x32/0x80
[   77.625347][ T6544]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   77.625366][ T6544] RIP: 0023:0xf7f23579
[   77.625378][ T6544] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   77.625391][ T6544] RSP: 002b:00000000f504655c EFLAGS: 00000296 ORIG_RAX: 0000000000000091
[   77.625405][ T6544] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000240
[   77.625415][ T6544] RDX: 0000000000000003 RSI: 0000000000000000 RDI: 0000000000000000
[   77.625423][ T6544] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   77.625431][ T6544] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   77.625440][ T6544] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   77.625459][ T6544]  </TASK>
[   77.807935][   T40] audit: type=1326 audit(1744163195.193:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6552 comm="syz.4.138" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[   77.817128][   T40] audit: type=1326 audit(1744163195.193:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6552 comm="syz.4.138" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[   77.836690][   T40] audit: type=1326 audit(1744163195.203:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6552 comm="syz.4.138" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf741e579 code=0x7ffc0000
[   77.845223][   T40] audit: type=1326 audit(1744163195.203:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6552 comm="syz.4.138" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[   77.852916][   T40] audit: type=1326 audit(1744163195.203:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6552 comm="syz.4.138" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf741e579 code=0x7ffc0000
[   77.855950][ T6010] usb 5-1: USB disconnect, device number 7
[   77.860666][ T6555] FAULT_INJECTION: forcing a failure.
[   77.860666][ T6555] name failslab, interval 1, probability 0, space 0, times 0
[   77.861596][   T40] audit: type=1326 audit(1744163195.203:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6552 comm="syz.4.138" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf741e598 code=0x7ffc0000
[   77.861642][   T40] audit: type=1326 audit(1744163195.203:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6552 comm="syz.4.138" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf741e598 code=0x7ffc0000
[   77.861675][   T40] audit: type=1326 audit(1744163195.203:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6552 comm="syz.4.138" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[   77.861705][   T40] audit: type=1326 audit(1744163195.203:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6552 comm="syz.4.138" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf741e598 code=0x7ffc0000
[   77.861735][   T40] audit: type=1326 audit(1744163195.203:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6552 comm="syz.4.138" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[   77.908833][ T6555] CPU: 0 UID: 0 PID: 6555 Comm: syz.5.139 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) 
[   77.908854][ T6555] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   77.908863][ T6555] Call Trace:
[   77.908868][ T6555]  <TASK>
[   77.908873][ T6555]  dump_stack_lvl+0x16c/0x1f0
[   77.908896][ T6555]  should_fail_ex+0x512/0x640
[   77.908912][ T6555]  ? __kmalloc_noprof+0xbf/0x510
[   77.908932][ T6555]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[   77.908955][ T6555]  should_failslab+0xc2/0x120
[   77.908968][ T6555]  __kmalloc_noprof+0xd2/0x510
[   77.908986][ T6555]  ? kasan_quarantine_put+0x10a/0x240
[   77.909008][ T6555]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[   77.909033][ T6555]  genl_family_rcv_msg_doit+0xbf/0x2f0
[   77.909055][ T6555]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[   77.909076][ T6555]  ? trace_cap_capable+0x18d/0x200
[   77.909093][ T6555]  ? bpf_lsm_capable+0x9/0x10
[   77.909111][ T6555]  ? security_capable+0x7e/0x260
[   77.909124][ T6555]  ? ns_capable+0xd7/0x110
[   77.909142][ T6555]  genl_rcv_msg+0x55c/0x800
[   77.909157][ T6555]  ? __pfx_genl_rcv_msg+0x10/0x10
[   77.909169][ T6555]  ? __pfx___dev_queue_xmit+0x10/0x10
[   77.909183][ T6555]  ? __pfx_nl80211_pre_doit+0x10/0x10
[   77.909200][ T6555]  ? __pfx_nl80211_tx_mgmt+0x10/0x10
[   77.909212][ T6555]  ? __pfx_nl80211_post_doit+0x10/0x10
[   77.909231][ T6555]  ? __lock_acquire+0xaa4/0x1ba0
[   77.909247][ T6555]  netlink_rcv_skb+0x16a/0x440
[   77.909265][ T6555]  ? __pfx_genl_rcv_msg+0x10/0x10
[   77.909279][ T6555]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   77.909306][ T6555]  ? __pfx_down_read+0x10/0x10
[   77.909327][ T6555]  ? netlink_deliver_tap+0x1ae/0xd30
[   77.909347][ T6555]  genl_rcv+0x28/0x40
[   77.909365][ T6555]  netlink_unicast+0x53a/0x7f0
[   77.909385][ T6555]  ? __pfx_netlink_unicast+0x10/0x10
[   77.909408][ T6555]  netlink_sendmsg+0x8d1/0xdd0
[   77.909429][ T6555]  ? __pfx_netlink_sendmsg+0x10/0x10
[   77.909449][ T6555]  ? __import_iovec+0x1c8/0x660
[   77.909470][ T6555]  ____sys_sendmsg+0xa95/0xc70
[   77.909492][ T6555]  ? __pfx_____sys_sendmsg+0x10/0x10
[   77.909511][ T6555]  ? get_compat_msghdr+0x11a/0x170
[   77.909536][ T6555]  ___sys_sendmsg+0x134/0x1d0
[   77.909553][ T6555]  ? __pfx____sys_sendmsg+0x10/0x10
[   77.909593][ T6555]  __sys_sendmsg+0x16d/0x220
[   77.909610][ T6555]  ? __pfx___sys_sendmsg+0x10/0x10
[   77.909632][ T6555]  ? rcu_is_watching+0x12/0xc0
[   77.909649][ T6555]  ? rcu_is_watching+0x12/0xc0
[   77.909667][ T6555]  __do_fast_syscall_32+0x73/0x120
[   77.909687][ T6555]  do_fast_syscall_32+0x32/0x80
[   77.909710][ T6555]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   77.909726][ T6555] RIP: 0023:0xf7f23579
[   77.909737][ T6555] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   77.909749][ T6555] RSP: 002b:00000000f504655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   77.909762][ T6555] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000080
[   77.909771][ T6555] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   77.909778][ T6555] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   77.909785][ T6555] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   77.909792][ T6555] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   77.909810][ T6555]  </TASK>
[   78.014152][ T5302] Bluetooth: hci1: command tx timeout
[   78.045650][ T6560] netlink: 'syz.5.141': attribute type 1 has an invalid length.
[   78.047840][ T6560] netlink: 244 bytes leftover after parsing attributes in process `syz.5.141'.
[   78.051848][ T6557] netlink: 4 bytes leftover after parsing attributes in process `syz.0.140'.
[   78.095055][ T6562] raw_sendmsg: syz.0.142 forgot to set AF_INET. Fix it!
[   78.292970][ T6574] netlink: 76 bytes leftover after parsing attributes in process `syz.5.146'.
[   78.304698][   T63] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[   78.427269][ T6576] syz.1.147: attempt to access beyond end of device
[   78.427269][ T6576] nbd1: rw=2048, sector=0, nr_sectors = 8 limit=0
[   78.430820][ T6576] SQUASHFS error: Failed to read block 0x0: -5
[   78.432483][ T6576] unable to read squashfs_super_block
[   78.526758][ T6597] FAULT_INJECTION: forcing a failure.
[   78.526758][ T6597] name failslab, interval 1, probability 0, space 0, times 0
[   78.531515][ T6597] CPU: 2 UID: 0 PID: 6597 Comm: syz.5.149 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) 
[   78.531534][ T6597] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   78.531542][ T6597] Call Trace:
[   78.531547][ T6597]  <TASK>
[   78.531553][ T6597]  dump_stack_lvl+0x16c/0x1f0
[   78.531579][ T6597]  should_fail_ex+0x512/0x640
[   78.531596][ T6597]  ? __kmalloc_noprof+0xbf/0x510
[   78.531619][ T6597]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[   78.531639][ T6597]  should_failslab+0xc2/0x120
[   78.531661][ T6597]  __kmalloc_noprof+0xd2/0x510
[   78.531681][ T6597]  ? kasan_quarantine_put+0x10a/0x240
[   78.531706][ T6597]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[   78.531732][ T6597]  genl_family_rcv_msg_doit+0xbf/0x2f0
[   78.531754][ T6597]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[   78.531776][ T6597]  ? trace_cap_capable+0x18d/0x200
[   78.531796][ T6597]  ? bpf_lsm_capable+0x9/0x10
[   78.531816][ T6597]  ? security_capable+0x7e/0x260
[   78.531831][ T6597]  ? ns_capable+0xd7/0x110
[   78.531847][ T6597]  genl_rcv_msg+0x55c/0x800
[   78.531863][ T6597]  ? __pfx_genl_rcv_msg+0x10/0x10
[   78.531876][ T6597]  ? __pfx___dev_queue_xmit+0x10/0x10
[   78.531892][ T6597]  ? __pfx_nl80211_pre_doit+0x10/0x10
[   78.531911][ T6597]  ? __pfx_nl80211_new_station+0x10/0x10
[   78.531931][ T6597]  ? __pfx_nl80211_post_doit+0x10/0x10
[   78.531950][ T6597]  ? __lock_acquire+0xaa4/0x1ba0
[   78.531967][ T6597]  netlink_rcv_skb+0x16a/0x440
[   78.531988][ T6597]  ? __pfx_genl_rcv_msg+0x10/0x10
[   78.532002][ T6597]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   78.532031][ T6597]  ? __pfx_down_read+0x10/0x10
[   78.532048][ T6597]  ? netlink_deliver_tap+0x1ae/0xd30
[   78.532063][ T6597]  genl_rcv+0x28/0x40
[   78.532077][ T6597]  netlink_unicast+0x53a/0x7f0
[   78.532092][ T6597]  ? __pfx_netlink_unicast+0x10/0x10
[   78.532110][ T6597]  netlink_sendmsg+0x8d1/0xdd0
[   78.532126][ T6597]  ? __pfx_netlink_sendmsg+0x10/0x10
[   78.532141][ T6597]  ? __import_iovec+0x1c8/0x660
[   78.532156][ T6597]  ____sys_sendmsg+0xa95/0xc70
[   78.532173][ T6597]  ? __pfx_____sys_sendmsg+0x10/0x10
[   78.532187][ T6597]  ? get_compat_msghdr+0x11a/0x170
[   78.532205][ T6597]  ___sys_sendmsg+0x134/0x1d0
[   78.532218][ T6597]  ? __pfx____sys_sendmsg+0x10/0x10
[   78.532245][ T6597]  __sys_sendmsg+0x16d/0x220
[   78.532258][ T6597]  ? __pfx___sys_sendmsg+0x10/0x10
[   78.532274][ T6597]  ? rcu_is_watching+0x12/0xc0
[   78.532288][ T6597]  ? rcu_is_watching+0x12/0xc0
[   78.532301][ T6597]  __do_fast_syscall_32+0x73/0x120
[   78.532317][ T6597]  do_fast_syscall_32+0x32/0x80
[   78.532331][ T6597]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   78.532343][ T6597] RIP: 0023:0xf7f23579
[   78.532351][ T6597] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   78.532361][ T6597] RSP: 002b:00000000f504655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   78.532370][ T6597] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080001080
[   78.532376][ T6597] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   78.532382][ T6597] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   78.532387][ T6597] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   78.532393][ T6597] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   78.532405][ T6597]  </TASK>
[   78.539614][ T6598] overlayfs: statfs failed on './file0'
[   78.573456][ T6603] FAULT_INJECTION: forcing a failure.
[   78.573456][ T6603] name failslab, interval 1, probability 0, space 0, times 0
[   78.643998][ T6603] CPU: 0 UID: 0 PID: 6603 Comm: syz.5.151 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) 
[   78.644014][ T6603] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   78.644021][ T6603] Call Trace:
[   78.644025][ T6603]  <TASK>
[   78.644029][ T6603]  dump_stack_lvl+0x16c/0x1f0
[   78.644047][ T6603]  should_fail_ex+0x512/0x640
[   78.644059][ T6603]  ? __kmalloc_noprof+0xbf/0x510
[   78.644075][ T6603]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[   78.644093][ T6603]  should_failslab+0xc2/0x120
[   78.644103][ T6603]  __kmalloc_noprof+0xd2/0x510
[   78.644117][ T6603]  ? kasan_quarantine_put+0x10a/0x240
[   78.644134][ T6603]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[   78.644151][ T6603]  ? kfree_skbmem+0x1a4/0x1f0
[   78.644163][ T6603]  genl_family_rcv_msg_doit+0xbf/0x2f0
[   78.644179][ T6603]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[   78.644195][ T6603]  ? genl_get_cmd+0x194/0x580
[   78.644222][ T6603]  ? __local_bh_enable_ip+0xa4/0x120
[   78.644241][ T6603]  ? __dev_queue_xmit+0x896/0x43e0
[   78.644256][ T6603]  ? __radix_tree_lookup+0x21f/0x2c0
[   78.644280][ T6603]  genl_rcv_msg+0x55c/0x800
[   78.644297][ T6603]  ? __pfx_genl_rcv_msg+0x10/0x10
[   78.644307][ T6603]  ? __pfx___dev_queue_xmit+0x10/0x10
[   78.644317][ T6603]  ? __pfx_ovs_flow_cmd_get+0x10/0x10
[   78.644331][ T6603]  ? __lock_acquire+0xaa4/0x1ba0
[   78.644343][ T6603]  netlink_rcv_skb+0x16a/0x440
[   78.644357][ T6603]  ? __pfx_genl_rcv_msg+0x10/0x10
[   78.644366][ T6603]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   78.644386][ T6603]  ? __pfx_down_read+0x10/0x10
[   78.644402][ T6603]  ? netlink_deliver_tap+0x1ae/0xd30
[   78.644417][ T6603]  genl_rcv+0x28/0x40
[   78.644431][ T6603]  netlink_unicast+0x53a/0x7f0
[   78.644446][ T6603]  ? __pfx_netlink_unicast+0x10/0x10
[   78.644463][ T6603]  netlink_sendmsg+0x8d1/0xdd0
[   78.644479][ T6603]  ? __pfx_netlink_sendmsg+0x10/0x10
[   78.644494][ T6603]  ? __import_iovec+0x1c8/0x660
[   78.644509][ T6603]  ____sys_sendmsg+0xa95/0xc70
[   78.644526][ T6603]  ? __pfx_____sys_sendmsg+0x10/0x10
[   78.644541][ T6603]  ? get_compat_msghdr+0x11a/0x170
[   78.644559][ T6603]  ___sys_sendmsg+0x134/0x1d0
[   78.644572][ T6603]  ? __pfx____sys_sendmsg+0x10/0x10
[   78.644600][ T6603]  __sys_sendmsg+0x16d/0x220
[   78.644612][ T6603]  ? __pfx___sys_sendmsg+0x10/0x10
[   78.644630][ T6603]  ? rcu_is_watching+0x12/0xc0
[   78.644644][ T6603]  __do_fast_syscall_32+0x73/0x120
[   78.644659][ T6603]  do_fast_syscall_32+0x32/0x80
[   78.644673][ T6603]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   78.644686][ T6603] RIP: 0023:0xf7f23579
[   78.644698][ T6603] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   78.644708][ T6603] RSP: 002b:00000000f504655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   78.644717][ T6603] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000
[   78.644723][ T6603] RDX: 0000000000000084 RSI: 0000000000000000 RDI: 0000000000000000
[   78.644729][ T6603] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   78.644734][ T6603] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   78.644740][ T6603] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   78.644751][ T6603]  </TASK>
[   81.056047][   T34] cfg80211: failed to load regulatory.db
[   88.500708][ T6686] FAULT_INJECTION: forcing a failure.
[   88.500708][ T6686] name failslab, interval 1, probability 0, space 0, times 0
[   88.504613][ T6686] CPU: 1 UID: 0 PID: 6686 Comm: syz.5.154 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) 
[   88.504627][ T6686] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   88.504634][ T6686] Call Trace:
[   88.504637][ T6686]  <TASK>
[   88.504642][ T6686]  dump_stack_lvl+0x16c/0x1f0
[   88.504660][ T6686]  should_fail_ex+0x512/0x640
[   88.504672][ T6686]  ? __kmalloc_noprof+0xbf/0x510
[   88.504687][ T6686]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[   88.504705][ T6686]  should_failslab+0xc2/0x120
[   88.504714][ T6686]  __kmalloc_noprof+0xd2/0x510
[   88.504728][ T6686]  ? kasan_quarantine_put+0x10a/0x240
[   88.504745][ T6686]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[   88.504764][ T6686]  genl_family_rcv_msg_doit+0xbf/0x2f0
[   88.504781][ T6686]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[   88.504797][ T6686]  ? trace_cap_capable+0x18d/0x200
[   88.504810][ T6686]  ? bpf_lsm_capable+0x9/0x10
[   88.504824][ T6686]  ? security_capable+0x7e/0x260
[   88.504834][ T6686]  ? ns_capable+0xd7/0x110
[   88.504852][ T6686]  genl_rcv_msg+0x55c/0x800
[   88.504863][ T6686]  ? __pfx_genl_rcv_msg+0x10/0x10
[   88.504871][ T6686]  ? __pfx___dev_queue_xmit+0x10/0x10
[   88.504882][ T6686]  ? __pfx_nl80211_pre_doit+0x10/0x10
[   88.504895][ T6686]  ? __pfx_nl80211_tx_mgmt+0x10/0x10
[   88.504904][ T6686]  ? __pfx_nl80211_post_doit+0x10/0x10
[   88.504919][ T6686]  ? __lock_acquire+0xaa4/0x1ba0
[   88.504931][ T6686]  netlink_rcv_skb+0x16a/0x440
[   88.504945][ T6686]  ? __pfx_genl_rcv_msg+0x10/0x10
[   88.504954][ T6686]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   88.504974][ T6686]  ? __pfx_down_read+0x10/0x10
[   88.504991][ T6686]  ? netlink_deliver_tap+0x1ae/0xd30
[   88.505006][ T6686]  genl_rcv+0x28/0x40
[   88.505019][ T6686]  netlink_unicast+0x53a/0x7f0
[   88.505035][ T6686]  ? __pfx_netlink_unicast+0x10/0x10
[   88.505052][ T6686]  netlink_sendmsg+0x8d1/0xdd0
[   88.505068][ T6686]  ? __pfx_netlink_sendmsg+0x10/0x10
[   88.505083][ T6686]  ? __import_iovec+0x1c8/0x660
[   88.505099][ T6686]  ____sys_sendmsg+0xa95/0xc70
[   88.505116][ T6686]  ? __pfx_____sys_sendmsg+0x10/0x10
[   88.505131][ T6686]  ? get_compat_msghdr+0x11a/0x170
[   88.505149][ T6686]  ___sys_sendmsg+0x134/0x1d0
[   88.505162][ T6686]  ? __pfx____sys_sendmsg+0x10/0x10
[   88.505190][ T6686]  __sys_sendmsg+0x16d/0x220
[   88.505202][ T6686]  ? __pfx___sys_sendmsg+0x10/0x10
[   88.505218][ T6686]  ? rcu_is_watching+0x12/0xc0
[   88.505232][ T6686]  ? rcu_is_watching+0x12/0xc0
[   88.505246][ T6686]  __do_fast_syscall_32+0x73/0x120
[   88.505261][ T6686]  do_fast_syscall_32+0x32/0x80
[   88.505275][ T6686]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   88.505288][ T6686] RIP: 0023:0xf7f23579
[   88.505295][ T6686] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   88.505305][ T6686] RSP: 002b:00000000f504655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   88.505314][ T6686] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000080
[   88.505320][ T6686] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   88.505326][ T6686] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   88.505331][ T6686] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   88.505337][ T6686] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   88.505348][ T6686]  </TASK>
[   88.516923][ T6690] sp0: Synchronizing with TNC
[   88.686354][ T6689] [U] è
[   89.066454][ T6703] lo speed is unknown, defaulting to 1000
[   89.130660][ T6710] futex_wake_op: syz.5.159 tries to shift op by 36; fix this program
[   89.481213][ T6716] netlink: 4 bytes leftover after parsing attributes in process `syz.4.160'.
[   89.784084][ T6731] netlink: 'syz.1.162': attribute type 10 has an invalid length.
[   89.820385][ T6731] bond0: (slave wlan1): Enslaving as an active interface with an up link
[   89.911370][ T6742] Invalid source name
[   89.913199][ T6742] UBIFS error (pid: 6742): cannot open "./file0", error -22
[   90.266386][ T6751] input: syz0 as /devices/virtual/input/input5
[   90.408322][ T6756] mmap: syz.1.165 (6756) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   90.792213][ T6008] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   90.795102][ T6008] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   90.797681][ T6008] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   90.800269][ T6008] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   90.802740][ T6008] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   90.805186][ T6008] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   90.807462][ T6008] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   90.807482][ T6008] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   90.807494][ T6008] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   90.814996][ T6008] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   90.817236][ T6008] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   90.819909][ T6008] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   90.822879][ T6008] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   90.826870][ T6008] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   90.829881][ T6008] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   90.832883][ T6008] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   90.835950][ T6008] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   90.838936][ T6008] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   90.841885][ T6008] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   90.844888][ T6008] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   90.847762][ T6008] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   90.850580][ T6008] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   90.854435][ T6008] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   90.858166][ T6008] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   90.861444][ T6008] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   90.864537][ T6008] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   90.867220][ T6008] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   90.870012][ T6008] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   90.872648][ T6008] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   90.875361][ T6008] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   90.877996][ T6008] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   90.880588][ T6008] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   90.887273][ T6008] hid-generic 0004:FFFFFFFF:0000.0003: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   91.044074][ T6058] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[   91.205486][ T6058] usb 5-1: config 0 has no interfaces?
[   91.207128][ T6058] usb 5-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00
[   91.209882][ T6058] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   91.224912][ T6058] usb 5-1: config 0 descriptor??
[   91.430781][ T5962] usb 5-1: USB disconnect, device number 8
[   91.614090][ T5950] Bluetooth: hci2: command 0x1003 tx timeout
[   91.614101][ T5302] Bluetooth: hci2: Opcode 0x1003 failed: -110
[   91.993184][ T6776] lo speed is unknown, defaulting to 1000
[   92.344700][ T6791] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[   92.964839][ T6809] futex_wake_op: syz.0.178 tries to shift op by 36; fix this program
[   93.308820][ T6813] futex_wake_op: syz.1.179 tries to shift op by 36; fix this program
[   93.464006][ T5948] Bluetooth: hci0: Opcode 0x1407 failed: -110
[   93.464211][ T5302] Bluetooth: hci0: command 0x1407 tx timeout
[   93.498859][ T6816] netlink: 24 bytes leftover after parsing attributes in process `syz.0.180'.
[   93.746743][ T6822] netlink: 'syz.1.182': attribute type 39 has an invalid length.
[   93.750236][ T6822] veth0_macvtap: left promiscuous mode
[   93.874072][ T5962] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[   93.890993][ T6826] futex_wake_op: syz.1.183 tries to shift op by 36; fix this program
[   94.014008][ T5962] usb 5-1: device descriptor read/64, error -71
[   94.157437][ T6829] netlink: 8 bytes leftover after parsing attributes in process `syz.5.184'.
[   94.162676][ T6829] netdevsim netdevsim5 netdevsim0: entered promiscuous mode
[   94.223369][ T6831] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   94.239703][   T40] kauditd_printk_skb: 5309 callbacks suppressed
[   94.239724][   T40] audit: type=1800 audit(1744163211.623:5323): pid=6831 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.185" name="bus" dev="overlay" ino=207 res=0 errno=0
[   94.266566][ T5962] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[   94.404595][ T5962] usb 5-1: device descriptor read/64, error -71
[   94.432383][ T6837] futex_wake_op: syz.1.187 tries to shift op by 36; fix this program
[   94.515549][ T5962] usb usb5-port1: attempt power cycle
[   94.864102][ T5962] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[   95.014967][ T5962] usb 5-1: device descriptor read/8, error -71
[   95.254018][ T5962] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[   95.279196][ T5962] usb 5-1: device descriptor read/8, error -71
[   95.384875][ T5962] usb usb5-port1: unable to enumerate USB device
[   95.440157][ T6854] netlink: 'syz.5.192': attribute type 1 has an invalid length.
[   95.442373][ T6854] netlink: 224 bytes leftover after parsing attributes in process `syz.5.192'.
[   95.744767][ T6058] usb 10-1: new full-speed USB device number 3 using dummy_hcd
[   95.756657][ T6866] 9pnet_fd: Insufficient options for proto=fd
[   95.899218][ T6058] usb 10-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   95.901743][ T6058] usb 10-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   95.905838][ T6058] usb 10-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   95.908311][ T6058] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   96.044073][ T6010] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[   96.164406][ T6058] usb 10-1: usb_control_msg returned -32
[   96.166095][ T6058] usbtmc 10-1:16.0: can't read capabilities
[   96.208342][ T6010] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   96.212017][ T6010] usb 6-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[   96.350995][ T6010] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[   96.354494][ T6010] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[   96.357525][ T6010] usb 6-1: Product: syz
[   96.358933][ T6010] usb 6-1: Manufacturer: syz
[   96.360669][ T6010] usb 6-1: SerialNumber: syz
[   96.365668][ T6010] usb 6-1: config 0 descriptor??
[   96.729261][ T6008] usb 10-1: USB disconnect, device number 3
[   97.163345][ T6885] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   97.169267][ T6885] netlink: 24 bytes leftover after parsing attributes in process `syz.0.202'.
[   97.183808][ T6885] bond1: entered promiscuous mode
[   97.185666][ T6885] 8021q: adding VLAN 0 to HW filter on device bond1
[   97.285325][ T6889] futex_wake_op: syz.0.203 tries to shift op by 36; fix this program
[   97.384020][ T5962] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[   97.516329][ T6892] openvswitch: netlink: Flow key attribute not present in set flow.
[   97.556063][ T5962] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[   97.561955][ T5962] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[   97.568802][ T5962] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[   97.588901][ T5962] usb 9-1: New USB device found, idVendor=0a07, idProduct=00d0, bcdDevice=10.13
[   97.591825][ T5962] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   97.594989][ T5962] usb 9-1: Product: syz
[   97.596403][ T5962] usb 9-1: Manufacturer: syz
[   97.598115][ T5962] usb 9-1: SerialNumber: syz
[   97.602047][ T5962] usb 9-1: config 0 descriptor??
[   97.614107][ T6898] futex_wake_op: syz.5.205 tries to shift op by 36; fix this program
[   98.034197][ T5962] adutux 9-1:0.0: ADU208  now attached to /dev/usb/adutux0
[   98.043685][ T5962] usb 9-1: USB disconnect, device number 3
[   98.632256][ T6914] trusted_key: encrypted_key: insufficient parameters specified
[   98.636981][ T1322] usb 6-1: USB disconnect, device number 7
[   99.019293][ T6913] x_tables: duplicate underflow at hook 3
[   99.021968][ T6923] FAULT_INJECTION: forcing a failure.
[   99.021968][ T6923] name failslab, interval 1, probability 0, space 0, times 0
[   99.027397][ T6923] CPU: 0 UID: 0 PID: 6923 Comm: syz.1.213 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) 
[   99.027429][ T6923] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   99.027439][ T6923] Call Trace:
[   99.027445][ T6923]  <TASK>
[   99.027451][ T6923]  dump_stack_lvl+0x16c/0x1f0
[   99.027480][ T6923]  should_fail_ex+0x512/0x640
[   99.027498][ T6923]  ? __kmalloc_cache_noprof+0x57/0x3e0
[   99.027523][ T6923]  should_failslab+0xc2/0x120
[   99.027538][ T6923]  __kmalloc_cache_noprof+0x6a/0x3e0
[   99.027560][ T6923]  ? kobject_uevent_env+0x265/0x1870
[   99.027580][ T6923]  kobject_uevent_env+0x265/0x1870
[   99.027601][ T6923]  ? kernfs_remove_by_name_ns+0x9f/0x110
[   99.027625][ T6923]  __kobject_del+0x168/0x1f0
[   99.027650][ T6923]  kobject_put+0x327/0x5a0
[   99.027673][ T6923]  netdev_queue_update_kobjects+0x4e5/0x720
[   99.027705][ T6923]  netif_set_real_num_tx_queues+0x170/0x8e0
[   99.027738][ T6923]  __tun_detach+0xb66/0x1540
[   99.027767][ T6923]  __tun_chr_ioctl+0xdea/0x4740
[   99.027794][ T6923]  ? __pfx___tun_chr_ioctl+0x10/0x10
[   99.027819][ T6923]  ? hook_file_ioctl_common+0x145/0x410
[   99.027841][ T6923]  ? __fget_files+0x20e/0x3c0
[   99.027868][ T6923]  ? __pfx_tun_chr_compat_ioctl+0x10/0x10
[   99.027891][ T6923]  __do_compat_sys_ioctl+0x1cb/0x2c0
[   99.027913][ T6923]  __do_fast_syscall_32+0x73/0x120
[   99.027938][ T6923]  do_fast_syscall_32+0x32/0x80
[   99.027961][ T6923]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   99.027981][ T6923] RIP: 0023:0xf742e579
[   99.027995][ T6923] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   99.028010][ T6923] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   99.028026][ T6923] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000400454d9
[   99.028037][ T6923] RDX: 0000000080000100 RSI: 0000000000000000 RDI: 0000000000000000
[   99.028046][ T6923] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   99.028055][ T6923] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   99.028064][ T6923] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   99.028086][ T6923]  </TASK>
[   99.150557][   T40] audit: type=1326 audit(1744163216.533:5324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6924 comm="syz.4.214" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf741e579 code=0x0
[   99.534047][ T1322] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[   99.685432][ T1322] usb 6-1: config 0 has too many interfaces: 131, using maximum allowed: 32
[   99.688133][ T1322] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 131
[   99.691442][ T1322] usb 6-1: config 0 has no interface number 0
[   99.693778][ T1322] usb 6-1: config 0 interface 50 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   99.699780][ T1322] usb 6-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=e6.fc
[   99.703096][ T1322] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   99.705823][ T1322] usb 6-1: Product: syz
[   99.707445][ T1322] usb 6-1: Manufacturer: syz
[   99.709190][ T1322] usb 6-1: SerialNumber: syz
[   99.712918][ T1322] usb 6-1: config 0 descriptor??
[   99.718978][ T1322] yurex 6-1:0.50: USB YUREX device now attached to Yurex #0
[   99.934185][ T3226] usb 6-1: USB disconnect, device number 8
[   99.937889][ T3226] yurex 6-1:0.50: USB YUREX #0 now disconnected
[  100.232203][ T6942] netlink: 244 bytes leftover after parsing attributes in process `syz.5.219'.
[  100.242500][ T6942] input: syz0 as /devices/virtual/input/input7
[  100.620213][ T6951] FAULT_INJECTION: forcing a failure.
[  100.620213][ T6951] name failslab, interval 1, probability 0, space 0, times 0
[  100.625164][ T6951] CPU: 1 UID: 0 PID: 6951 Comm: syz.5.223 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) 
[  100.625188][ T6951] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  100.625198][ T6951] Call Trace:
[  100.625203][ T6951]  <TASK>
[  100.625209][ T6951]  dump_stack_lvl+0x16c/0x1f0
[  100.625235][ T6951]  should_fail_ex+0x512/0x640
[  100.625252][ T6951]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  100.625275][ T6951]  should_failslab+0xc2/0x120
[  100.625289][ T6951]  __kmalloc_cache_noprof+0x6a/0x3e0
[  100.625307][ T6951]  ? drv_sta_state+0x3c2/0x1940
[  100.625324][ T6951]  ? __sta_info_destroy_part2+0x2bd/0x540
[  100.625349][ T6951]  __sta_info_destroy_part2+0x2bd/0x540
[  100.625373][ T6951]  __sta_info_flush+0x521/0x740
[  100.625400][ T6951]  ? __pfx___sta_info_flush+0x10/0x10
[  100.625428][ T6951]  ieee80211_ibss_disconnect+0x165/0x8f0
[  100.625449][ T6951]  ieee80211_ibss_leave+0x4a/0x160
[  100.625465][ T6951]  cfg80211_leave_ibss+0x1ac/0x480
[  100.625493][ T6951]  cfg80211_change_iface+0x419/0xdc0
[  100.625518][ T6951]  nl80211_set_interface+0x911/0xcb0
[  100.625544][ T6951]  ? __pfx_nl80211_set_interface+0x10/0x10
[  100.625572][ T6951]  ? nl80211_pre_doit+0x71e/0xb10
[  100.625591][ T6951]  ? nl80211_pre_doit+0x1b0/0xb10
[  100.625613][ T6951]  genl_family_rcv_msg_doit+0x206/0x2f0
[  100.625639][ T6951]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  100.625678][ T6951]  ? trace_cap_capable+0x18d/0x200
[  100.625699][ T6951]  ? bpf_lsm_capable+0x9/0x10
[  100.625719][ T6951]  ? security_capable+0x7e/0x260
[  100.625735][ T6951]  ? ns_capable+0xd7/0x110
[  100.625755][ T6951]  genl_rcv_msg+0x55c/0x800
[  100.625771][ T6951]  ? __pfx_genl_rcv_msg+0x10/0x10
[  100.625784][ T6951]  ? __pfx___dev_queue_xmit+0x10/0x10
[  100.625800][ T6951]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  100.625818][ T6951]  ? __pfx_nl80211_set_interface+0x10/0x10
[  100.625837][ T6951]  ? __pfx_nl80211_post_doit+0x10/0x10
[  100.625859][ T6951]  ? __lock_acquire+0xaa4/0x1ba0
[  100.625878][ T6951]  netlink_rcv_skb+0x16a/0x440
[  100.625899][ T6951]  ? __pfx_genl_rcv_msg+0x10/0x10
[  100.625914][ T6951]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  100.625945][ T6951]  ? __pfx_down_read+0x10/0x10
[  100.625968][ T6951]  ? netlink_deliver_tap+0x1ae/0xd30
[  100.625991][ T6951]  genl_rcv+0x28/0x40
[  100.626011][ T6951]  netlink_unicast+0x53a/0x7f0
[  100.626034][ T6951]  ? __pfx_netlink_unicast+0x10/0x10
[  100.626061][ T6951]  netlink_sendmsg+0x8d1/0xdd0
[  100.626085][ T6951]  ? __pfx_netlink_sendmsg+0x10/0x10
[  100.626107][ T6951]  ? __import_iovec+0x1c8/0x660
[  100.626131][ T6951]  ____sys_sendmsg+0xa95/0xc70
[  100.626156][ T6951]  ? __pfx_____sys_sendmsg+0x10/0x10
[  100.626189][ T6951]  ? get_compat_msghdr+0x11a/0x170
[  100.626219][ T6951]  ___sys_sendmsg+0x134/0x1d0
[  100.626240][ T6951]  ? __pfx____sys_sendmsg+0x10/0x10
[  100.626291][ T6951]  __sys_sendmsg+0x16d/0x220
[  100.626310][ T6951]  ? __pfx___sys_sendmsg+0x10/0x10
[  100.626340][ T6951]  ? rcu_is_watching+0x12/0xc0
[  100.626363][ T6951]  __do_fast_syscall_32+0x73/0x120
[  100.626386][ T6951]  do_fast_syscall_32+0x32/0x80
[  100.626407][ T6951]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  100.626425][ T6951] RIP: 0023:0xf7f23579
[  100.626437][ T6951] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  100.626454][ T6951] RSP: 002b:00000000f504655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  100.626469][ T6951] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000340
[  100.626483][ T6951] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  100.626491][ T6951] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  100.626499][ T6951] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  100.626507][ T6951] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  100.626526][ T6951]  </TASK>
[  100.773733][ T6951] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  100.785125][ T6951] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  101.008324][ T6966] =======================================================
[  101.008324][ T6966] WARNING: The mand mount option has been deprecated and
[  101.008324][ T6966]          and is ignored by this kernel. Remove the mand
[  101.008324][ T6966]          option from the mount to silence this warning.
[  101.008324][ T6966] =======================================================
[  101.152340][ T6972] FAULT_INJECTION: forcing a failure.
[  101.152340][ T6972] name failslab, interval 1, probability 0, space 0, times 0
[  101.166846][ T6972] CPU: 2 UID: 0 PID: 6972 Comm: syz.0.231 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) 
[  101.166863][ T6972] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  101.166870][ T6972] Call Trace:
[  101.166873][ T6972]  <TASK>
[  101.166877][ T6972]  dump_stack_lvl+0x16c/0x1f0
[  101.166895][ T6972]  should_fail_ex+0x512/0x640
[  101.166907][ T6972]  ? fs_reclaim_acquire+0xae/0x150
[  101.166922][ T6972]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  101.166936][ T6972]  should_failslab+0xc2/0x120
[  101.166945][ T6972]  __kmalloc_noprof+0xd2/0x510
[  101.166963][ T6972]  tomoyo_realpath_from_path+0xc2/0x6e0
[  101.166978][ T6972]  ? tomoyo_profile+0x47/0x60
[  101.166994][ T6972]  tomoyo_path_number_perm+0x245/0x580
[  101.167005][ T6972]  ? tomoyo_path_number_perm+0x237/0x580
[  101.167018][ T6972]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  101.167030][ T6972]  ? find_held_lock+0x2b/0x80
[  101.167054][ T6972]  ? find_held_lock+0x2b/0x80
[  101.167066][ T6972]  ? hook_file_ioctl_common+0x145/0x410
[  101.167079][ T6972]  ? __fget_files+0x20e/0x3c0
[  101.167096][ T6972]  security_file_ioctl_compat+0x9b/0x240
[  101.167109][ T6972]  __do_compat_sys_ioctl+0x4e/0x2c0
[  101.167123][ T6972]  __do_fast_syscall_32+0x73/0x120
[  101.167138][ T6972]  do_fast_syscall_32+0x32/0x80
[  101.167152][ T6972]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  101.167165][ T6972] RIP: 0023:0xf7f08579
[  101.167173][ T6972] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  101.167182][ T6972] RSP: 002b:00000000f502655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  101.167192][ T6972] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000127c
[  101.167198][ T6972] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  101.167203][ T6972] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  101.167209][ T6972] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  101.167214][ T6972] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  101.167226][ T6972]  </TASK>
[  101.167230][ T6972] ERROR: Out of memory at tomoyo_realpath_from_path.
[  101.534319][ T6058] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  101.603875][   T40] audit: type=1326 audit(1744163218.983:5325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6983 comm="syz.5.235" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f23579 code=0x7ffc0000
[  101.612664][   T40] audit: type=1326 audit(1744163218.983:5326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6983 comm="syz.5.235" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f23579 code=0x7ffc0000
[  101.620811][   T40] audit: type=1326 audit(1744163218.993:5327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6983 comm="syz.5.235" exe="/syz-executor" sig=0 arch=40000003 syscall=322 compat=1 ip=0xf7f23579 code=0x7ffc0000
[  101.634100][   T40] audit: type=1326 audit(1744163218.993:5328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6983 comm="syz.5.235" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f23579 code=0x7ffc0000
[  101.644908][   T40] audit: type=1326 audit(1744163218.993:5329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6983 comm="syz.5.235" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f23579 code=0x7ffc0000
[  101.660251][   T40] audit: type=1326 audit(1744163218.993:5330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6983 comm="syz.5.235" exe="/syz-executor" sig=0 arch=40000003 syscall=326 compat=1 ip=0xf7f23579 code=0x7ffc0000
[  101.667669][ T6058] usb 5-1: device descriptor read/64, error -71
[  101.669999][   T40] audit: type=1326 audit(1744163218.993:5331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6983 comm="syz.5.235" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f23579 code=0x7ffc0000
[  101.677209][   T40] audit: type=1326 audit(1744163218.993:5332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6983 comm="syz.5.235" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f23579 code=0x7ffc0000
[  101.684510][   T40] audit: type=1326 audit(1744163218.993:5333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6983 comm="syz.5.235" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f23579 code=0x7ffc0000
[  101.691425][   T40] audit: type=1326 audit(1744163218.993:5334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6983 comm="syz.5.235" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f23579 code=0x7ffc0000
[  101.904011][ T6058] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  102.044181][ T6058] usb 5-1: device descriptor read/64, error -71
[  102.164447][ T6058] usb usb5-port1: attempt power cycle
[  102.514018][ T6058] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  102.547455][ T6058] usb 5-1: device descriptor read/8, error -71
[  102.555816][ T6995] fuse: Bad value for 'fd'
[  102.717411][ T6999] XFS (nullb0): Invalid superblock magic number
[  102.795276][ T6058] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  102.825020][ T6058] usb 5-1: device descriptor read/8, error -71
[  102.944257][ T6058] usb usb5-port1: unable to enumerate USB device
[  103.038245][ T7009] netlink: 'syz.5.240': attribute type 10 has an invalid length.
[  103.041279][ T7009] netlink: 40 bytes leftover after parsing attributes in process `syz.5.240'.
[  103.047990][ T7009] batadv0: entered promiscuous mode
[  103.050006][ T7009] batadv0: entered allmulticast mode
[  103.052592][ T7009] bridge0: port 3(batadv0) entered blocking state
[  103.055994][ T7009] bridge0: port 3(batadv0) entered disabled state
[  103.060613][ T7009] bridge0: port 3(batadv0) entered blocking state
[  103.063179][ T7009] bridge0: port 3(batadv0) entered forwarding state
[  103.071093][ T7009] batman_adv: batadv0: Adding interface: dummy0
[  103.072982][ T7009] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  103.081176][ T7009] batman_adv: batadv0: Interface activated: dummy0
[  103.106625][ T7009] batadv0: mtu less than device minimum
[  103.108762][ T7009] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  103.112123][ T7009] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  103.115465][ T7009] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  103.118678][ T7009] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  103.121775][ T7009] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  103.124993][ T7009] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  103.128251][ T7009] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  103.131496][ T7009] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  103.134729][ T7009] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  103.364132][   T46] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  103.366833][   T46] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  103.481120][ T7028] futex_wake_op: syz.1.247 tries to shift op by 36; fix this program
[  103.490905][ T7028] FAULT_INJECTION: forcing a failure.
[  103.490905][ T7028] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  103.496166][ T7028] CPU: 1 UID: 0 PID: 7028 Comm: syz.1.247 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) 
[  103.496190][ T7028] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  103.496200][ T7028] Call Trace:
[  103.496205][ T7028]  <TASK>
[  103.496212][ T7028]  dump_stack_lvl+0x16c/0x1f0
[  103.496239][ T7028]  should_fail_ex+0x512/0x640
[  103.496261][ T7028]  should_fail_alloc_page+0xe7/0x130
[  103.496280][ T7028]  prepare_alloc_pages+0x3c2/0x610
[  103.496303][ T7028]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  103.496344][ T7028]  ? __page_table_check_zero+0x32d/0x5b0
[  103.496373][ T7028]  ? __pfx___page_table_check_zero+0x10/0x10
[  103.496401][ T7028]  ? get_page_from_freelist+0x1173/0x39b0
[  103.496430][ T7028]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  103.496456][ T7028]  ? post_alloc_hook+0x171/0x1b0
[  103.496488][ T7028]  ? __lock_acquire+0xaa4/0x1ba0
[  103.496504][ T7028]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  103.496525][ T7028]  ? policy_nodemask+0xea/0x4e0
[  103.496542][ T7028]  alloc_pages_mpol+0x1fb/0x550
[  103.496559][ T7028]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  103.496576][ T7028]  ? psi_task_switch+0x201/0x8e0
[  103.496601][ T7028]  ? __pfx_filemap_map_pages+0x10/0x10
[  103.496617][ T7028]  alloc_pages_noprof+0x131/0x390
[  103.496633][ T7028]  pte_alloc_one+0x19/0x380
[  103.496655][ T7028]  __do_fault+0x320/0x490
[  103.496670][ T7028]  ? __pfx_filemap_map_pages+0x10/0x10
[  103.496684][ T7028]  do_pte_missing+0x1a6/0x3fb0
[  103.496709][ T7028]  ? __lock_acquire+0x5ca/0x1ba0
[  103.496727][ T7028]  __handle_mm_fault+0x103d/0x2a40
[  103.496756][ T7028]  ? __pfx___handle_mm_fault+0x10/0x10
[  103.496778][ T7028]  ? mtree_load+0x309/0xa40
[  103.496818][ T7028]  handle_mm_fault+0x3fe/0xad0
[  103.496845][ T7028]  __get_user_pages+0x771/0x36f0
[  103.496871][ T7028]  ? get_pid_task+0x106/0x250
[  103.496889][ T7028]  ? __pfx___get_user_pages+0x10/0x10
[  103.496910][ T7028]  ? __lock_acquire+0xaa4/0x1ba0
[  103.496930][ T7028]  faultin_page_range+0x249/0x980
[  103.496955][ T7028]  madvise_do_behavior+0x233/0x3b0
[  103.496975][ T7028]  ? __pfx_madvise_do_behavior+0x10/0x10
[  103.496997][ T7028]  ? fput+0x70/0xf0
[  103.497015][ T7028]  do_madvise+0x10b/0x170
[  103.497033][ T7028]  __ia32_sys_madvise+0xa7/0x110
[  103.497050][ T7028]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  103.497072][ T7028]  __do_fast_syscall_32+0x73/0x120
[  103.497093][ T7028]  do_fast_syscall_32+0x32/0x80
[  103.497112][ T7028]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  103.497130][ T7028] RIP: 0023:0xf742e579
[  103.497141][ T7028] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  103.497155][ T7028] RSP: 002b:00000000f509555c EFLAGS: 00000296 ORIG_RAX: 00000000000000db
[  103.497169][ T7028] RAX: ffffffffffffffda RBX: 0000000080000000 RCX: 0000000000c00000
[  103.497178][ T7028] RDX: 0000000000000017 RSI: 0000000000000000 RDI: 0000000000000000
[  103.497186][ T7028] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  103.497194][ T7028] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  103.497203][ T7028] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  103.497224][ T7028]  </TASK>
[  103.977980][ T7032] netlink: 16 bytes leftover after parsing attributes in process `syz.4.249'.
[  104.010570][ T7034] FAULT_INJECTION: forcing a failure.
[  104.010570][ T7034] name failslab, interval 1, probability 0, space 0, times 0
[  104.019005][ T7034] CPU: 1 UID: 0 PID: 7034 Comm: syz.4.250 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) 
[  104.019021][ T7034] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  104.019027][ T7034] Call Trace:
[  104.019031][ T7034]  <TASK>
[  104.019035][ T7034]  dump_stack_lvl+0x16c/0x1f0
[  104.019054][ T7034]  should_fail_ex+0x512/0x640
[  104.019066][ T7034]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  104.019084][ T7034]  should_failslab+0xc2/0x120
[  104.019093][ T7034]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  104.019108][ T7034]  ? __alloc_skb+0x2b2/0x380
[  104.019121][ T7034]  ? bpf_lsm_capable+0x9/0x10
[  104.019137][ T7034]  __alloc_skb+0x2b2/0x380
[  104.019148][ T7034]  ? __pfx___alloc_skb+0x10/0x10
[  104.019160][ T7034]  ? genl_rcv_msg+0x490/0x800
[  104.019169][ T7034]  ? genl_rcv_msg+0x4bb/0x800
[  104.019180][ T7034]  netlink_ack+0x15d/0xb80
[  104.019195][ T7034]  ? __lock_acquire+0xaa4/0x1ba0
[  104.019207][ T7034]  netlink_rcv_skb+0x347/0x440
[  104.019221][ T7034]  ? __pfx_genl_rcv_msg+0x10/0x10
[  104.019231][ T7034]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  104.019251][ T7034]  ? __pfx_down_read+0x10/0x10
[  104.019267][ T7034]  ? netlink_deliver_tap+0x1ae/0xd30
[  104.019282][ T7034]  genl_rcv+0x28/0x40
[  104.019296][ T7034]  netlink_unicast+0x53a/0x7f0
[  104.019311][ T7034]  ? __pfx_netlink_unicast+0x10/0x10
[  104.019329][ T7034]  netlink_sendmsg+0x8d1/0xdd0
[  104.019345][ T7034]  ? __pfx_netlink_sendmsg+0x10/0x10
[  104.019360][ T7034]  ? __import_iovec+0x1c8/0x660
[  104.019376][ T7034]  ____sys_sendmsg+0xa95/0xc70
[  104.019393][ T7034]  ? __pfx_____sys_sendmsg+0x10/0x10
[  104.019408][ T7034]  ? get_compat_msghdr+0x11a/0x170
[  104.019426][ T7034]  ___sys_sendmsg+0x134/0x1d0
[  104.019440][ T7034]  ? __pfx____sys_sendmsg+0x10/0x10
[  104.019467][ T7034]  __sys_sendmsg+0x16d/0x220
[  104.019480][ T7034]  ? __pfx___sys_sendmsg+0x10/0x10
[  104.019497][ T7034]  ? rcu_is_watching+0x12/0xc0
[  104.019511][ T7034]  ? rcu_is_watching+0x12/0xc0
[  104.019524][ T7034]  __do_fast_syscall_32+0x73/0x120
[  104.019540][ T7034]  do_fast_syscall_32+0x32/0x80
[  104.019555][ T7034]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  104.019568][ T7034] RIP: 0023:0xf741e579
[  104.019575][ T7034] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  104.019585][ T7034] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  104.019595][ T7034] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000880
[  104.019601][ T7034] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000000
[  104.019607][ T7034] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  104.019612][ T7034] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  104.019617][ T7034] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  104.019629][ T7034]  </TASK>
[  104.170423][ T5962] usb 6-1: new full-speed USB device number 9 using dummy_hcd
[  104.267966][ T7047] bridge0: port 3(netdevsim0) entered blocking state
[  104.270443][ T7047] bridge0: port 3(netdevsim0) entered disabled state
[  104.273817][ T7047] netdevsim netdevsim4 netdevsim0: entered allmulticast mode
[  104.281593][ T7047] netdevsim netdevsim4 netdevsim0: entered promiscuous mode
[  104.290601][ T7047] bridge0: port 3(netdevsim0) entered blocking state
[  104.293210][ T7047] bridge0: port 3(netdevsim0) entered forwarding state
[  104.347143][ T5962] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  104.350003][ T5962] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  104.353742][ T5962] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  104.356551][ T5962] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  104.572445][ T5962] usb 6-1: usb_control_msg returned -32
[  104.574214][ T5962] usbtmc 6-1:16.0: can't read capabilities
[  104.607589][ T7052] netlink: 8 bytes leftover after parsing attributes in process `syz.0.256'.
[  104.659729][ T7052] netlink: 96 bytes leftover after parsing attributes in process `syz.0.256'.
[  105.162702][ T2292] usb 6-1: USB disconnect, device number 9
[  105.482010][ T7082] netlink: 'syz.4.261': attribute type 1 has an invalid length.
[  106.224097][ T2292] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  106.364424][ T2292] usb 5-1: device descriptor read/64, error -71
[  106.614068][ T2292] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  106.744087][ T2292] usb 5-1: device descriptor read/64, error -71
[  106.864111][ T2292] usb usb5-port1: attempt power cycle
[  107.045408][ T3226] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  107.194034][ T3226] usb 6-1: Using ep0 maxpacket: 8
[  107.196718][ T3226] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  107.199022][ T3226] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  107.201714][ T3226] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  107.204586][ T3226] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  107.211506][ T3226] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  107.215167][ T3226] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  107.217552][ T3226] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  107.224156][ T2292] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  107.244652][ T2292] usb 5-1: device descriptor read/8, error -71
[  107.426542][ T3226] usb 6-1: usb_control_msg returned -32
[  107.428405][ T3226] usbtmc 6-1:16.0: can't read capabilities
[  107.494060][ T2292] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  107.522688][ T7107] Cannot find add_set index 0 as target
[  107.526162][ T2292] usb 5-1: device descriptor read/8, error -71
[  107.532666][ T7107] netlink: 8 bytes leftover after parsing attributes in process `syz.4.270'.
[  107.536317][ T7107] netlink: 16 bytes leftover after parsing attributes in process `syz.4.270'.
[  107.634444][ T2292] usb usb5-port1: unable to enumerate USB device
[  108.404787][ T7116] /dev/sr0: Can't open blockdev
[  108.768770][ T7121] kvm: MONITOR instruction emulated as NOP!
[  109.734906][ T7139] sg_write: data in/out 7387356/251 bytes for SCSI command 0x0-- guessing data in;
[  109.734906][ T7139]    program syz.5.279 not setting count and/or reply_len properly
[  109.814203][ T5962] usb 6-1: USB disconnect, device number 10
[  109.862357][ T7140] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  109.928379][ T7130] process 'syz.0.278' launched './file0' with NULL argv: empty string added
[  110.000171][ T7140] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  110.133603][ T7140] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  110.194840][ T7140] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  110.328877][ T7140] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  110.336853][ T7140] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  110.343665][ T7140] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  110.354309][ T7140] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  110.474001][ T7153] gre0: Master is either lo or non-ether device
[  110.486289][ T3226] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  111.248814][ T7166] trusted_key: encrypted_key: insufficient parameters specified
[  111.254498][ T7164] lo speed is unknown, defaulting to 1000
[  111.265202][ T7167] lo speed is unknown, defaulting to 1000
[  111.358568][ T7166] x_tables: duplicate underflow at hook 3
[  111.553630][ T7173] net_ratelimit: 12 callbacks suppressed
[  111.553662][ T7173] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  112.292806][ T7192] input: syz1 as /devices/virtual/input/input9
[  113.426382][ T7213] lo speed is unknown, defaulting to 1000
[  114.230036][ T7235] lo speed is unknown, defaulting to 1000
[  114.664818][ T7238] netlink: 'syz.0.303': attribute type 4 has an invalid length.
[  114.667143][ T7238] netlink: 152 bytes leftover after parsing attributes in process `syz.0.303'.
[  114.695995][ T7238] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  115.096804][   T40] kauditd_printk_skb: 10 callbacks suppressed
[  115.096815][   T40] audit: type=1326 audit(1744163232.483:5345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7254 comm="syz.1.310" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  115.105057][   T40] audit: type=1326 audit(1744163232.483:5346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7254 comm="syz.1.310" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  115.245622][ T7265] fuse: Bad value for 'fd'
[  115.378244][ T7266] netlink: 8 bytes leftover after parsing attributes in process `syz.0.312'.
[  115.495872][ T7261] netlink: 96 bytes leftover after parsing attributes in process `syz.0.312'.
[  115.509715][ T7278] syz_tun: entered allmulticast mode
[  115.518556][ T7277] syz_tun: left allmulticast mode
[  115.886176][   T40] audit: type=1326 audit(1744163233.273:5347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7279 comm="syz.0.316" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f08579 code=0x7ffc0000
[  115.897860][   T40] audit: type=1326 audit(1744163233.273:5348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7279 comm="syz.0.316" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f08579 code=0x7ffc0000
[  116.028818][   T40] audit: type=1326 audit(1744163233.413:5349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7288 comm="syz.5.318" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f23579 code=0x7ffc0000
[  116.035644][   T40] audit: type=1326 audit(1744163233.413:5350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7288 comm="syz.5.318" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f23579 code=0x7ffc0000
[  116.220263][ T7295] FAULT_INJECTION: forcing a failure.
[  116.220263][ T7295] name failslab, interval 1, probability 0, space 0, times 0
[  116.225110][ T7295] CPU: 2 UID: 0 PID: 7295 Comm: syz.0.320 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) 
[  116.225135][ T7295] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  116.225142][ T7295] Call Trace:
[  116.225146][ T7295]  <TASK>
[  116.225150][ T7295]  dump_stack_lvl+0x16c/0x1f0
[  116.225188][ T7295]  should_fail_ex+0x512/0x640
[  116.225205][ T7295]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  116.225220][ T7295]  should_failslab+0xc2/0x120
[  116.225229][ T7295]  __kmalloc_cache_noprof+0x6a/0x3e0
[  116.225242][ T7295]  ? ovl_lookup_single+0x33b/0xfb0
[  116.225256][ T7295]  ? ovl_encode_real_fh+0xca/0x420
[  116.225271][ T7295]  ovl_encode_real_fh+0xca/0x420
[  116.225284][ T7295]  ? __pfx_ovl_encode_real_fh+0x10/0x10
[  116.225301][ T7295]  ovl_lookup_index+0xde/0x810
[  116.225319][ T7295]  ? __pfx_ovl_lookup_index+0x10/0x10
[  116.225338][ T7295]  ovl_lookup+0xa7f/0x2270
[  116.225357][ T7295]  ? __pfx_ovl_lookup+0x10/0x10
[  116.225372][ T7295]  ? d_alloc_parallel+0x6ae/0x12e0
[  116.225388][ T7295]  ? register_lock_class+0x41/0x4c0
[  116.225398][ T7295]  ? __lock_acquire+0xaa4/0x1ba0
[  116.225406][ T7295]  ? __pfx_d_alloc_parallel+0x10/0x10
[  116.225422][ T7295]  ? lockdep_init_map_type+0x5c/0x280
[  116.225433][ T7295]  __lookup_slow+0x24e/0x460
[  116.225445][ T7295]  ? __pfx___lookup_slow+0x10/0x10
[  116.225465][ T7295]  ? lookup_fast+0x156/0x610
[  116.225479][ T7295]  walk_component+0x353/0x5b0
[  116.225492][ T7295]  path_lookupat+0x17e/0x780
[  116.225508][ T7295]  filename_lookup+0x224/0x5f0
[  116.225555][ T7295]  ? __do_fast_syscall_32+0x73/0x120
[  116.225575][ T7295]  ? __pfx_filename_lookup+0x10/0x10
[  116.225604][ T7295]  do_linkat+0x14c/0x5a0
[  116.225614][ T7295]  ? __pfx_do_linkat+0x10/0x10
[  116.225623][ T7295]  ? strncpy_from_user+0x203/0x2e0
[  116.225635][ T7295]  ? getname_flags.part.0+0x1c2/0x540
[  116.225648][ T7295]  __ia32_sys_link+0x7c/0xa0
[  116.225657][ T7295]  __do_fast_syscall_32+0x73/0x120
[  116.225672][ T7295]  do_fast_syscall_32+0x32/0x80
[  116.225687][ T7295]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  116.225699][ T7295] RIP: 0023:0xf7f08579
[  116.225707][ T7295] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  116.225717][ T7295] RSP: 002b:00000000f502655c EFLAGS: 00000296 ORIG_RAX: 0000000000000009
[  116.225726][ T7295] RAX: ffffffffffffffda RBX: 0000000080000200 RCX: 0000000080000300
[  116.225732][ T7295] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  116.225738][ T7295] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  116.225743][ T7295] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  116.225749][ T7295] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  116.225761][ T7295]  </TASK>
[  116.830304][ T7323] FAULT_INJECTION: forcing a failure.
[  116.830304][ T7323] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  116.833019][ T7321] lo speed is unknown, defaulting to 1000
[  116.833865][ T7323] CPU: 2 UID: 0 PID: 7323 Comm: syz.0.330 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) 
[  116.833879][ T7323] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  116.833886][ T7323] Call Trace:
[  116.833890][ T7323]  <TASK>
[  116.833894][ T7323]  dump_stack_lvl+0x16c/0x1f0
[  116.833913][ T7323]  should_fail_ex+0x512/0x640
[  116.833938][ T7323]  _copy_from_user+0x2e/0xd0
[  116.833952][ T7323]  get_compat_msghdr+0xa7/0x170
[  116.833965][ T7323]  ? __pfx_get_compat_msghdr+0x10/0x10
[  116.833982][ T7323]  ___sys_sendmsg+0x1ae/0x1d0
[  116.833996][ T7323]  ? __pfx____sys_sendmsg+0x10/0x10
[  116.834025][ T7323]  __sys_sendmsg+0x16d/0x220
[  116.834037][ T7323]  ? __pfx___sys_sendmsg+0x10/0x10
[  116.834056][ T7323]  ? rcu_is_watching+0x12/0xc0
[  116.834070][ T7323]  __do_fast_syscall_32+0x73/0x120
[  116.834086][ T7323]  do_fast_syscall_32+0x32/0x80
[  116.834101][ T7323]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  116.834113][ T7323] RIP: 0023:0xf7f08579
[  116.834121][ T7323] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  116.834131][ T7323] RSP: 002b:00000000f502655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  116.834140][ T7323] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000180
[  116.834146][ T7323] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  116.834151][ T7323] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  116.834157][ T7323] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  116.834162][ T7323] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  116.834174][ T7323]  </TASK>
[  116.974580][ T7306] netlink: 8 bytes leftover after parsing attributes in process `syz.4.324'.
[  116.997047][ T7331] futex_wake_op: syz.0.332 tries to shift op by 36; fix this program
[  116.997919][ T7306] netlink: 96 bytes leftover after parsing attributes in process `syz.4.324'.
[  117.633147][ T7348] Illegal XDP return value 4294967262 on prog  (id 146) dev N/A, expect packet loss!
[  117.678613][ T7354] futex_wake_op: syz.1.337 tries to shift op by 36; fix this program
[  117.867448][ T6058] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  118.024039][ T6058] usb 5-1: Using ep0 maxpacket: 32
[  118.026833][ T6058] usb 5-1: config 0 has an invalid descriptor of length 183, skipping remainder of the config
[  118.029855][ T6058] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  118.037193][ T6058] usb 5-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68
[  118.040081][ T6058] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  118.042384][ T6058] usb 5-1: Product: syz
[  118.043550][ T6058] usb 5-1: Manufacturer: syz
[  118.044961][ T6058] usb 5-1: SerialNumber: syz
[  118.047851][ T6058] usb 5-1: config 0 descriptor??
[  118.309875][ T7358] netlink: 4 bytes leftover after parsing attributes in process `syz.0.341'.
[  118.459631][   T63] usb 5-1: USB disconnect, device number 21
[  118.576131][   T40] audit: type=1326 audit(1744163235.963:5351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7359 comm="syz.1.342" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  118.586044][   T40] audit: type=1326 audit(1744163235.963:5352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7359 comm="syz.1.342" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  118.766204][ T7370] lo speed is unknown, defaulting to 1000
[  118.864772][ T7373] trusted_key: syz.1.345 sent an empty control message without MSG_MORE.
[  119.023252][   T40] audit: type=1800 audit(1744163236.403:5353): pid=7381 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.346" name="file0" dev="9p" ino=36831284 res=0 errno=0
[  119.132880][ T7387] futex_wake_op: syz.5.347 tries to shift op by 36; fix this program
[  119.502626][ T7397] lo speed is unknown, defaulting to 1000
[  119.587342][   T40] audit: type=1326 audit(1744163236.973:5354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7395 comm="syz.4.351" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  119.811893][ T7405] syzkaller0: create flow: hash 1154623386 index 0
[  120.046012][ T7410] netlink: 4 bytes leftover after parsing attributes in process `syz.0.355'.
[  120.114895][ T3226] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  120.133516][ T7413] netlink: 'syz.1.356': attribute type 28 has an invalid length.
[  120.356202][ T3226] usb 9-1: Using ep0 maxpacket: 32
[  120.362824][ T3226] usb 9-1: config 0 has an invalid descriptor of length 183, skipping remainder of the config
[  120.371526][ T3226] usb 9-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  120.391483][ T3226] usb 9-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68
[  120.397109][ T3226] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  120.399439][ T3226] usb 9-1: Product: syz
[  120.401821][ T3226] usb 9-1: Manufacturer: syz
[  120.403137][ T3226] usb 9-1: SerialNumber: syz
[  120.406394][ T7418] netlink: 36 bytes leftover after parsing attributes in process `syz.1.357'.
[  120.406848][ T3226] usb 9-1: config 0 descriptor??
[  120.409724][ T7418] netlink: 16 bytes leftover after parsing attributes in process `syz.1.357'.
[  120.419199][ T7418] netlink: 36 bytes leftover after parsing attributes in process `syz.1.357'.
[  120.422723][ T7418] netlink: 36 bytes leftover after parsing attributes in process `syz.1.357'.
[  120.683638][ T7421] netlink: 4 bytes leftover after parsing attributes in process `syz.4.354'.
[  120.816419][   T34] usb 9-1: USB disconnect, device number 4
[  120.936124][ T7404] syzkaller0 (unregistered): delete flow: hash 1154623386 index 0
[  121.032950][ T7427] futex_wake_op: syz.5.360 tries to shift op by 36; fix this program
[  121.494012][   T40] kauditd_printk_skb: 1 callbacks suppressed
[  121.494023][   T40] audit: type=1326 audit(1744163238.873:5356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7431 comm="syz.4.361" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  121.503901][   T40] audit: type=1326 audit(1744163238.873:5357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7431 comm="syz.4.361" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  121.664983][ T7438] netlink: 'syz.4.363': attribute type 23 has an invalid length.
[  121.732220][ T3226] hid-generic 0004:FFFFFFFF:0000.0004: unknown main item tag 0x0
[  121.735060][ T3226] hid-generic 0004:FFFFFFFF:0000.0004: unknown main item tag 0x0
[  121.737288][ T3226] hid-generic 0004:FFFFFFFF:0000.0004: unknown main item tag 0x0
[  121.739967][ T3226] hid-generic 0004:FFFFFFFF:0000.0004: unknown main item tag 0x0
[  121.742412][   T65] Bluetooth: hci5: Frame reassembly failed (-84)
[  121.743432][ T3226] hid-generic 0004:FFFFFFFF:0000.0004: unknown main item tag 0x0
[  121.746834][ T3226] hid-generic 0004:FFFFFFFF:0000.0004: unknown main item tag 0x0
[  121.749053][ T3226] hid-generic 0004:FFFFFFFF:0000.0004: unknown main item tag 0x0
[  121.751183][ T3226] hid-generic 0004:FFFFFFFF:0000.0004: unknown main item tag 0x0
[  121.753250][ T3226] hid-generic 0004:FFFFFFFF:0000.0004: unknown main item tag 0x0
[  121.755762][ T3226] hid-generic 0004:FFFFFFFF:0000.0004: unknown main item tag 0x0
[  121.757928][ T3226] hid-generic 0004:FFFFFFFF:0000.0004: unknown main item tag 0x0
[  121.760950][ T3226] hid-generic 0004:FFFFFFFF:0000.0004: unknown main item tag 0x0
[  121.763544][ T3226] hid-generic 0004:FFFFFFFF:0000.0004: unknown main item tag 0x0
[  121.767166][ T3226] hid-generic 0004:FFFFFFFF:0000.0004: unknown main item tag 0x0
[  121.769346][ T3226] hid-generic 0004:FFFFFFFF:0000.0004: unknown main item tag 0x0
[  121.771532][ T3226] hid-generic 0004:FFFFFFFF:0000.0004: unknown main item tag 0x0
[  121.773663][ T3226] hid-generic 0004:FFFFFFFF:0000.0004: unknown main item tag 0x0
[  121.775821][ T3226] hid-generic 0004:FFFFFFFF:0000.0004: unknown main item tag 0x0
[  121.777969][ T3226] hid-generic 0004:FFFFFFFF:0000.0004: unknown main item tag 0x0
[  121.780905][ T3226] hid-generic 0004:FFFFFFFF:0000.0004: unknown main item tag 0x0
[  121.783298][ T3226] hid-generic 0004:FFFFFFFF:0000.0004: unknown main item tag 0x0
[  121.785550][ T3226] hid-generic 0004:FFFFFFFF:0000.0004: unknown main item tag 0x0
[  121.787704][ T3226] hid-generic 0004:FFFFFFFF:0000.0004: unknown main item tag 0x0
[  121.789886][ T3226] hid-generic 0004:FFFFFFFF:0000.0004: unknown main item tag 0x0
[  121.791847][ T3226] hid-generic 0004:FFFFFFFF:0000.0004: unknown main item tag 0x0
[  121.793746][ T3226] hid-generic 0004:FFFFFFFF:0000.0004: unknown main item tag 0x0
[  121.796023][ T3226] hid-generic 0004:FFFFFFFF:0000.0004: unknown main item tag 0x0
[  121.798215][ T3226] hid-generic 0004:FFFFFFFF:0000.0004: unknown main item tag 0x0
[  121.800906][ T3226] hid-generic 0004:FFFFFFFF:0000.0004: unknown main item tag 0x0
[  121.803346][ T3226] hid-generic 0004:FFFFFFFF:0000.0004: unknown main item tag 0x0
[  121.805530][ T3226] hid-generic 0004:FFFFFFFF:0000.0004: unknown main item tag 0x0
[  121.807919][ T3226] hid-generic 0004:FFFFFFFF:0000.0004: unknown main item tag 0x0
[  121.811037][ T3226] hid-generic 0004:FFFFFFFF:0000.0004: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  121.974025][   T24] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  122.135717][   T24] usb 9-1: config 0 has no interfaces?
[  122.137801][   T24] usb 9-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00
[  122.141041][   T24] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  122.145919][   T24] usb 9-1: config 0 descriptor??
[  122.517815][   T24] usb 9-1: USB disconnect, device number 5
[  122.584053][ T5302] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  123.029575][ T6010] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  123.194046][ T6010] usb 6-1: Using ep0 maxpacket: 32
[  123.197392][ T6010] usb 6-1: config 0 has an invalid descriptor of length 183, skipping remainder of the config
[  123.201222][ T6010] usb 6-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  123.210235][ T6010] usb 6-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68
[  123.212875][ T6010] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  123.215420][ T6010] usb 6-1: Product: syz
[  123.216804][ T6010] usb 6-1: Manufacturer: syz
[  123.218277][ T6010] usb 6-1: SerialNumber: syz
[  123.237718][ T6010] usb 6-1: config 0 descriptor??
[  123.496844][ T7468] netlink: 4 bytes leftover after parsing attributes in process `syz.1.369'.
[  123.708531][ T6321] usb 6-1: USB disconnect, device number 11
[  123.774147][ T5948] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  123.774167][ T5945] Bluetooth: hci5: command 0x1003 tx timeout
[  123.955205][ T7477] futex_wake_op: syz.4.373 tries to shift op by 36; fix this program
[  124.414060][ T5948] Bluetooth: hci0: command 0x1407 tx timeout
[  124.414086][ T5950] Bluetooth: hci0: Opcode 0x1407 failed: -110
[  124.441192][ T7488] lo speed is unknown, defaulting to 1000
[  124.550938][ T7491] FAULT_INJECTION: forcing a failure.
[  124.550938][ T7491] name failslab, interval 1, probability 0, space 0, times 0
[  124.554593][ T7491] CPU: 1 UID: 0 PID: 7491 Comm: syz.1.377 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) 
[  124.554616][ T7491] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  124.554623][ T7491] Call Trace:
[  124.554628][ T7491]  <TASK>
[  124.554632][ T7491]  dump_stack_lvl+0x16c/0x1f0
[  124.554650][ T7491]  should_fail_ex+0x512/0x640
[  124.554664][ T7491]  should_failslab+0xc2/0x120
[  124.554675][ T7491]  __kmalloc_cache_noprof+0x6a/0x3e0
[  124.554689][ T7491]  ? vhost_iotlb_add_range_ctx+0xf0/0xa80
[  124.554702][ T7491]  vhost_iotlb_add_range_ctx+0xf0/0xa80
[  124.554716][ T7491]  vhost_iotlb_add_range_ctx+0x846/0xa80
[  124.554725][ T7491]  ? kasan_save_track+0x14/0x30
[  124.554739][ T7491]  ? __kasan_kmalloc+0xaa/0xb0
[  124.554754][ T7491]  vhost_dev_ioctl+0x370/0xdc0
[  124.554770][ T7491]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  124.554782][ T7491]  ? __pfx_vhost_dev_ioctl+0x10/0x10
[  124.554797][ T7491]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  124.554813][ T7491]  vhost_net_ioctl+0x7c3/0x1710
[  124.554830][ T7491]  ? __pfx_vhost_net_ioctl+0x10/0x10
[  124.554845][ T7491]  ? hook_file_ioctl_common+0x145/0x410
[  124.554859][ T7491]  ? __fget_files+0x20e/0x3c0
[  124.554875][ T7491]  ? __pfx_vhost_net_ioctl+0x10/0x10
[  124.554889][ T7491]  compat_ptr_ioctl+0x6b/0xa0
[  124.554899][ T7491]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[  124.554910][ T7491]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  124.554923][ T7491]  __do_fast_syscall_32+0x73/0x120
[  124.554939][ T7491]  do_fast_syscall_32+0x32/0x80
[  124.554953][ T7491]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  124.554966][ T7491] RIP: 0023:0xf742e579
[  124.554974][ T7491] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  124.554983][ T7491] RSP: 002b:00000000f507455c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  124.554993][ T7491] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000004008af03
[  124.554999][ T7491] RDX: 0000000080000400 RSI: 0000000000000000 RDI: 0000000000000000
[  124.555005][ T7491] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  124.555010][ T7491] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  124.555016][ T7491] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  124.555028][ T7491]  </TASK>
[  125.084190][   T29] usb 5-1: new full-speed USB device number 22 using dummy_hcd
[  125.353647][ T7510] input: syz1 as /devices/virtual/input/input11
[  125.363617][   T29] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  125.376845][   T29] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  125.380785][   T29] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  125.383454][   T29] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  125.504644][ T7511] netlink: 'syz.1.384': attribute type 1 has an invalid length.
[  125.508262][ T7511] netlink: 224 bytes leftover after parsing attributes in process `syz.1.384'.
[  125.651377][ T7511] netlink: 24 bytes leftover after parsing attributes in process `syz.1.384'.
[  125.657138][ T7511] netlink: 36 bytes leftover after parsing attributes in process `syz.1.384'.
[  125.659603][ T7511] netlink: 16 bytes leftover after parsing attributes in process `syz.1.384'.
[  125.662039][ T7511] netlink: 36 bytes leftover after parsing attributes in process `syz.1.384'.
[  125.664951][ T7511] netlink: 36 bytes leftover after parsing attributes in process `syz.1.384'.
[  125.705637][   T29] usb 5-1: usb_control_msg returned -32
[  125.707291][   T29] usbtmc 5-1:16.0: can't read capabilities
[  126.015804][   T34] hid-generic 0004:FFFFFFFF:0000.0005: unknown main item tag 0x0
[  126.018138][   T34] hid-generic 0004:FFFFFFFF:0000.0005: unknown main item tag 0x0
[  126.020186][   T34] hid-generic 0004:FFFFFFFF:0000.0005: unknown main item tag 0x0
[  126.022343][   T34] hid-generic 0004:FFFFFFFF:0000.0005: unknown main item tag 0x0
[  126.025083][   T34] hid-generic 0004:FFFFFFFF:0000.0005: unknown main item tag 0x0
[  126.027315][   T34] hid-generic 0004:FFFFFFFF:0000.0005: unknown main item tag 0x0
[  126.029800][   T34] hid-generic 0004:FFFFFFFF:0000.0005: unknown main item tag 0x0
[  126.031935][   T34] hid-generic 0004:FFFFFFFF:0000.0005: unknown main item tag 0x0
[  126.036447][   T34] hid-generic 0004:FFFFFFFF:0000.0005: unknown main item tag 0x0
[  126.039041][   T34] hid-generic 0004:FFFFFFFF:0000.0005: unknown main item tag 0x0
[  126.041282][   T34] hid-generic 0004:FFFFFFFF:0000.0005: unknown main item tag 0x0
[  126.043456][   T34] hid-generic 0004:FFFFFFFF:0000.0005: unknown main item tag 0x0
[  126.045670][   T34] hid-generic 0004:FFFFFFFF:0000.0005: unknown main item tag 0x0
[  126.047805][   T34] hid-generic 0004:FFFFFFFF:0000.0005: unknown main item tag 0x0
[  126.049898][   T34] hid-generic 0004:FFFFFFFF:0000.0005: unknown main item tag 0x0
[  126.052107][   T34] hid-generic 0004:FFFFFFFF:0000.0005: unknown main item tag 0x0
[  126.054707][   T34] hid-generic 0004:FFFFFFFF:0000.0005: unknown main item tag 0x0
[  126.056882][   T34] hid-generic 0004:FFFFFFFF:0000.0005: unknown main item tag 0x0
[  126.059028][   T34] hid-generic 0004:FFFFFFFF:0000.0005: unknown main item tag 0x0
[  126.061762][   T34] hid-generic 0004:FFFFFFFF:0000.0005: unknown main item tag 0x0
[  126.064148][   T34] hid-generic 0004:FFFFFFFF:0000.0005: unknown main item tag 0x0
[  126.066461][   T34] hid-generic 0004:FFFFFFFF:0000.0005: unknown main item tag 0x0
[  126.068650][   T34] hid-generic 0004:FFFFFFFF:0000.0005: unknown main item tag 0x0
[  126.070921][   T34] hid-generic 0004:FFFFFFFF:0000.0005: unknown main item tag 0x0
[  126.073086][   T34] hid-generic 0004:FFFFFFFF:0000.0005: unknown main item tag 0x0
[  126.076377][   T34] hid-generic 0004:FFFFFFFF:0000.0005: unknown main item tag 0x0
[  126.078708][   T34] hid-generic 0004:FFFFFFFF:0000.0005: unknown main item tag 0x0
[  126.080844][   T34] hid-generic 0004:FFFFFFFF:0000.0005: unknown main item tag 0x0
[  126.082992][   T34] hid-generic 0004:FFFFFFFF:0000.0005: unknown main item tag 0x0
[  126.085319][   T34] hid-generic 0004:FFFFFFFF:0000.0005: unknown main item tag 0x0
[  126.087741][   T34] hid-generic 0004:FFFFFFFF:0000.0005: unknown main item tag 0x0
[  126.090005][   T34] hid-generic 0004:FFFFFFFF:0000.0005: unknown main item tag 0x0
[  126.093118][   T34] hid-generic 0004:FFFFFFFF:0000.0005: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  126.264053][ T6321] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  126.425517][ T6321] usb 9-1: config 0 has no interfaces?
[  126.427224][ T6321] usb 9-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00
[  126.429772][ T6321] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  126.433387][ T6321] usb 9-1: config 0 descriptor??
[  126.809367][   T29] usb 9-1: USB disconnect, device number 6
[  127.242119][ T7532] futex_wake_op: syz.4.389 tries to shift op by 36; fix this program
[  127.249929][   T40] audit: type=1326 audit(1744163244.633:5358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7527 comm="syz.1.388" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  127.257742][   T40] audit: type=1326 audit(1744163244.633:5359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7527 comm="syz.1.388" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  127.868260][   T34] usb 5-1: USB disconnect, device number 22
[  128.304275][ T7550] input: syz1 as /devices/virtual/input/input12
[  128.604091][   T34] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[  128.664124][ T5950] Bluetooth: hci0: Opcode 0x1407 failed: -110
[  128.664127][ T5948] Bluetooth: hci0: command 0x1407 tx timeout
[  128.775905][   T34] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  128.778343][   T34] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  128.781210][   T34] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  128.794030][   T34] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  128.797104][   T34] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  128.801524][   T34] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  128.814093][   T34] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  128.816376][   T34] usb 5-1: Product: syz
[  128.817557][   T34] usb 5-1: Manufacturer: syz
[  128.834297][   T34] cdc_wdm 5-1:1.0: skipping garbage
[  128.835782][   T34] cdc_wdm 5-1:1.0: skipping garbage
[  128.838922][   T34] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  128.840589][   T34] cdc_wdm 5-1:1.0: Unknown control protocol
[  129.107682][ T7537] syz.1.390 (7537) used greatest stack depth: 20760 bytes left
[  130.064056][   T40] audit: type=1326 audit(1744163247.443:5360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7563 comm="syz.5.398" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f23579 code=0x7ffc0000
[  130.070547][   T40] audit: type=1326 audit(1744163247.453:5361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7563 comm="syz.5.398" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f23579 code=0x7ffc0000
[  131.354047][   T34] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  131.508152][   T34] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  131.511262][   T34] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  131.514956][   T34] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  131.518668][   T34] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  131.521526][   T34] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  131.525640][   T34] usb 9-1: config 0 descriptor??
[  131.631714][ T7596] lo speed is unknown, defaulting to 1000
[  131.716306][ T6321] usb 5-1: USB disconnect, device number 23
[  131.743582][ T7587] syzkaller1: entered promiscuous mode
[  131.748609][ T7587] syzkaller1: entered allmulticast mode
[  131.963473][   T34] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  131.967227][   T34] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  131.970439][   T34] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  131.973461][   T34] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  131.975722][   T34] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  131.977942][   T34] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  131.980098][   T34] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  131.982261][   T34] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  131.984551][   T34] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  131.987359][   T34] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  131.994025][   T34] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  131.996155][   T34] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  131.998214][   T34] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  132.000253][   T34] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  132.002363][   T34] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  132.005210][   T34] plantronics 0003:047F:FFFF.0006: No inputs registered, leaving
[  132.013244][   T34] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  132.256709][ T1414] ieee802154 phy0 wpan0: encryption failed: -22
[  132.258713][ T1414] ieee802154 phy1 wpan1: encryption failed: -22
[  132.264186][    C2] batman_adv: batadv0: Local translation table size (80) exceeds maximum packet size (-320); Ignoring new local tt entry: aa:aa:aa:aa:aa:0c
[  132.335179][   T40] audit: type=1326 audit(1744163249.723:5362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7608 comm="syz.1.411" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  132.341592][   T40] audit: type=1326 audit(1744163249.723:5363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7608 comm="syz.1.411" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  132.376730][    T9] usb 9-1: USB disconnect, device number 7
[  132.427184][ T7613] netlink: 8 bytes leftover after parsing attributes in process `syz.0.412'.
[  132.446963][ T7613] netlink: 96 bytes leftover after parsing attributes in process `syz.0.412'.
[  132.708016][   T40] audit: type=1800 audit(1744163250.093:5364): pid=7622 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.413" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[  132.739590][ T7621] netlink: 16 bytes leftover after parsing attributes in process `syz.0.414'.
[  133.122539][ T7629] FAULT_INJECTION: forcing a failure.
[  133.122539][ T7629] name failslab, interval 1, probability 0, space 0, times 0
[  133.128051][ T7629] CPU: 0 UID: 0 PID: 7629 Comm: syz.4.416 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) 
[  133.128065][ T7629] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  133.128072][ T7629] Call Trace:
[  133.128075][ T7629]  <TASK>
[  133.128079][ T7629]  dump_stack_lvl+0x16c/0x1f0
[  133.128098][ T7629]  should_fail_ex+0x512/0x640
[  133.128110][ T7629]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  133.128126][ T7629]  should_failslab+0xc2/0x120
[  133.128136][ T7629]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  133.128151][ T7629]  ? proc_alloc_inode+0x25/0x200
[  133.128163][ T7629]  ? __pfx_proc_alloc_inode+0x10/0x10
[  133.128171][ T7629]  proc_alloc_inode+0x25/0x200
[  133.128179][ T7629]  alloc_inode+0x61/0x240
[  133.128191][ T7629]  new_inode+0x22/0x1c0
[  133.128207][ T7629]  proc_pid_make_inode+0x22/0x160
[  133.128223][ T7629]  proc_pid_make_base_inode.constprop.0+0x25/0x180
[  133.128235][ T7629]  proc_pid_instantiate+0x51/0x1e0
[  133.128245][ T7629]  proc_pid_lookup+0x1fc/0x500
[  133.128255][ T7629]  proc_root_lookup+0x23/0x70
[  133.128266][ T7629]  __lookup_slow+0x24e/0x460
[  133.128278][ T7629]  ? __pfx___lookup_slow+0x10/0x10
[  133.128297][ T7629]  ? lookup_fast+0x156/0x610
[  133.128311][ T7629]  walk_component+0x353/0x5b0
[  133.128325][ T7629]  link_path_walk.part.0.constprop.0+0x682/0xd60
[  133.128343][ T7629]  path_openat+0x227/0x2d40
[  133.128356][ T7629]  ? __ia32_compat_sys_openat+0x16d/0x210
[  133.128368][ T7629]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  133.128386][ T7629]  ? __pfx_path_openat+0x10/0x10
[  133.128403][ T7629]  do_filp_open+0x20b/0x470
[  133.128418][ T7629]  ? __pfx_do_filp_open+0x10/0x10
[  133.128436][ T7629]  ? __pfx_kfree_link+0x10/0x10
[  133.128452][ T7629]  ? alloc_fd+0x471/0x7d0
[  133.128470][ T7629]  do_sys_openat2+0x11b/0x1d0
[  133.128480][ T7629]  ? __pfx_do_sys_openat2+0x10/0x10
[  133.128492][ T7629]  ? __fget_files+0x20e/0x3c0
[  133.128508][ T7629]  __ia32_compat_sys_openat+0x16d/0x210
[  133.128519][ T7629]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  133.128530][ T7629]  ? ksys_write+0x1b9/0x240
[  133.128544][ T7629]  ? rcu_is_watching+0x12/0xc0
[  133.128557][ T7629]  ? rcu_is_watching+0x12/0xc0
[  133.128571][ T7629]  __do_fast_syscall_32+0x73/0x120
[  133.128586][ T7629]  do_fast_syscall_32+0x32/0x80
[  133.128612][ T7629]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  133.128624][ T7629] RIP: 0023:0xf741e579
[  133.128632][ T7629] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  133.128642][ T7629] RSP: 002b:00000000f50a6490 EFLAGS: 00000293 ORIG_RAX: 0000000000000127
[  133.128651][ T7629] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 00000000f50a64e0
[  133.128657][ T7629] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 00000000f740cff4
[  133.128663][ T7629] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[  133.128668][ T7629] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  133.128674][ T7629] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  133.128686][ T7629]  </TASK>
[  133.587751][ T7640] sp0: Synchronizing with TNC
[  133.680569][ T7642] lo speed is unknown, defaulting to 1000
[  133.868136][ T7657] random: crng reseeded on system resumption
[  133.908702][   T40] audit: type=1326 audit(1744163251.293:5365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7648 comm="syz.0.421" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f08579 code=0x7ffc0000
[  133.916948][   T40] audit: type=1326 audit(1744163251.293:5366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7648 comm="syz.0.421" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f08579 code=0x7ffc0000
[  134.128918][ T7664] lo speed is unknown, defaulting to 1000
[  135.248364][ T7684] FAULT_INJECTION: forcing a failure.
[  135.248364][ T7684] name failslab, interval 1, probability 0, space 0, times 0
[  135.252983][ T7684] CPU: 3 UID: 0 PID: 7684 Comm: syz.4.428 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) 
[  135.253002][ T7684] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  135.253011][ T7684] Call Trace:
[  135.253016][ T7684]  <TASK>
[  135.253022][ T7684]  dump_stack_lvl+0x16c/0x1f0
[  135.253045][ T7684]  should_fail_ex+0x512/0x640
[  135.253062][ T7684]  ? __kmalloc_noprof+0xbf/0x510
[  135.253084][ T7684]  ? n_hdlc_alloc_buf+0x5b/0xd0
[  135.253105][ T7684]  should_failslab+0xc2/0x120
[  135.253119][ T7684]  __kmalloc_noprof+0xd2/0x510
[  135.253139][ T7684]  ? mark_held_locks+0x49/0x80
[  135.253165][ T7684]  n_hdlc_alloc_buf+0x5b/0xd0
[  135.253188][ T7684]  n_hdlc_tty_open+0x257/0x540
[  135.253209][ T7684]  ? __pfx_n_hdlc_tty_open+0x10/0x10
[  135.253229][ T7684]  tty_ldisc_open+0x9c/0x120
[  135.253251][ T7684]  tty_set_ldisc+0x32b/0x780
[  135.253273][ T7684]  tty_ioctl+0xc42/0x1610
[  135.253298][ T7684]  ? __pfx_tty_ioctl+0x10/0x10
[  135.253330][ T7684]  ? find_held_lock+0x2b/0x80
[  135.253366][ T7684]  ? hook_file_ioctl_common+0x145/0x410
[  135.253387][ T7684]  ? __fget_files+0x20e/0x3c0
[  135.253412][ T7684]  tty_compat_ioctl+0x24a/0x4d0
[  135.253425][ T7684]  ? __pfx_tty_compat_ioctl+0x10/0x10
[  135.253445][ T7684]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  135.253464][ T7684]  __do_fast_syscall_32+0x73/0x120
[  135.253487][ T7684]  do_fast_syscall_32+0x32/0x80
[  135.253508][ T7684]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  135.253525][ T7684] RIP: 0023:0xf741e579
[  135.253538][ T7684] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  135.253552][ T7684] RSP: 002b:00000000f508555c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  135.253565][ T7684] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000000005423
[  135.253575][ T7684] RDX: 0000000080000040 RSI: 0000000000000000 RDI: 0000000000000000
[  135.253584][ T7684] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  135.253592][ T7684] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  135.253600][ T7684] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  135.253620][ T7684]  </TASK>
[  135.331252][    C3] vkms_vblank_simulate: vblank timer overrun
[  135.810025][ T7695] trusted_key: encrypted_key: insufficient parameters specified
[  135.812993][ T7693] trusted_key: encrypted_key: insufficient parameters specified
[  135.818053][ T7695] x_tables: duplicate underflow at hook 3
[  135.818132][ T7693] x_tables: duplicate underflow at hook 3
[  135.822808][ T7693] netlink: 12 bytes leftover after parsing attributes in process `syz.1.430'.
[  136.091789][   T40] audit: type=1326 audit(1744163253.473:5367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7703 comm="syz.5.433" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f23579 code=0x7ffc0000
[  136.097819][   T40] audit: type=1326 audit(1744163253.473:5368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7703 comm="syz.5.433" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f23579 code=0x7ffc0000
[  136.536116][ T7716] lo speed is unknown, defaulting to 1000
[  136.648743][ T7707] input: syz1 as /devices/virtual/input/input15
[  136.734194][    C2] batman_adv: batadv0: Local translation table size (80) exceeds maximum packet size (-320); Ignoring new local tt entry: aa:aa:aa:aa:aa:1b
[  137.306672][ T7720] input: syz1 as /devices/virtual/input/input16
[  137.420811][ T7722] trusted_key: encrypted_key: insufficient parameters specified
[  137.540535][ T7722] x_tables: duplicate underflow at hook 3
[  137.571643][ T7722] netlink: 12 bytes leftover after parsing attributes in process `syz.4.437'.
[  137.692421][ T7735] netlink: 8 bytes leftover after parsing attributes in process `syz.0.439'.
[  137.725836][ T7731] netlink: 96 bytes leftover after parsing attributes in process `syz.0.439'.
[  138.544915][   T40] audit: type=1326 audit(1744163255.933:5369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7751 comm="syz.4.445" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  138.555710][   T40] audit: type=1326 audit(1744163255.933:5370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7751 comm="syz.4.445" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  138.939218][ T7766] netlink: 'syz.4.449': attribute type 1 has an invalid length.
[  138.966247][ T7766] 8021q: adding VLAN 0 to HW filter on device bond1
[  139.024051][ T7766] netlink: 36 bytes leftover after parsing attributes in process `syz.4.449'.
[  139.408651][   T34] hid-generic 0004:FFFFFFFF:0000.0007: unknown main item tag 0x0
[  139.411529][   T34] hid-generic 0004:FFFFFFFF:0000.0007: unknown main item tag 0x0
[  139.414114][   T34] hid-generic 0004:FFFFFFFF:0000.0007: unknown main item tag 0x0
[  139.416259][   T34] hid-generic 0004:FFFFFFFF:0000.0007: unknown main item tag 0x0
[  139.418401][   T34] hid-generic 0004:FFFFFFFF:0000.0007: unknown main item tag 0x0
[  139.420570][   T34] hid-generic 0004:FFFFFFFF:0000.0007: unknown main item tag 0x0
[  139.422725][   T34] hid-generic 0004:FFFFFFFF:0000.0007: unknown main item tag 0x0
[  139.446545][ T7778] lo speed is unknown, defaulting to 1000
[  139.586698][   T34] hid-generic 0004:FFFFFFFF:0000.0007: unknown main item tag 0x0
[  139.589856][   T34] hid-generic 0004:FFFFFFFF:0000.0007: unknown main item tag 0x0
[  139.592631][   T34] hid-generic 0004:FFFFFFFF:0000.0007: unknown main item tag 0x0
[  139.595503][   T34] hid-generic 0004:FFFFFFFF:0000.0007: unknown main item tag 0x0
[  139.597795][   T34] hid-generic 0004:FFFFFFFF:0000.0007: unknown main item tag 0x0
[  139.600368][   T34] hid-generic 0004:FFFFFFFF:0000.0007: unknown main item tag 0x0
[  139.602742][   T34] hid-generic 0004:FFFFFFFF:0000.0007: unknown main item tag 0x0
[  139.606197][   T34] hid-generic 0004:FFFFFFFF:0000.0007: unknown main item tag 0x0
[  139.608700][   T34] hid-generic 0004:FFFFFFFF:0000.0007: unknown main item tag 0x0
[  139.611047][   T34] hid-generic 0004:FFFFFFFF:0000.0007: unknown main item tag 0x0
[  139.613381][   T34] hid-generic 0004:FFFFFFFF:0000.0007: unknown main item tag 0x0
[  139.618354][   T34] hid-generic 0004:FFFFFFFF:0000.0007: unknown main item tag 0x0
[  139.620801][   T34] hid-generic 0004:FFFFFFFF:0000.0007: unknown main item tag 0x0
[  139.623009][   T34] hid-generic 0004:FFFFFFFF:0000.0007: unknown main item tag 0x0
[  139.626282][   T34] hid-generic 0004:FFFFFFFF:0000.0007: unknown main item tag 0x0
[  139.628905][   T34] hid-generic 0004:FFFFFFFF:0000.0007: unknown main item tag 0x0
[  139.631087][   T34] hid-generic 0004:FFFFFFFF:0000.0007: unknown main item tag 0x0
[  139.633393][   T34] hid-generic 0004:FFFFFFFF:0000.0007: unknown main item tag 0x0
[  139.636388][   T34] hid-generic 0004:FFFFFFFF:0000.0007: unknown main item tag 0x0
[  139.638886][   T34] hid-generic 0004:FFFFFFFF:0000.0007: unknown main item tag 0x0
[  139.641482][   T34] hid-generic 0004:FFFFFFFF:0000.0007: unknown main item tag 0x0
[  139.645859][   T34] hid-generic 0004:FFFFFFFF:0000.0007: unknown main item tag 0x0
[  139.648716][   T34] hid-generic 0004:FFFFFFFF:0000.0007: unknown main item tag 0x0
[  139.651866][   T34] hid-generic 0004:FFFFFFFF:0000.0007: unknown main item tag 0x0
[  139.654673][   T34] hid-generic 0004:FFFFFFFF:0000.0007: unknown main item tag 0x0
[  139.659481][   T34] hid-generic 0004:FFFFFFFF:0000.0007: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  139.722123][ T7782] FAULT_INJECTION: forcing a failure.
[  139.722123][ T7782] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  139.726541][ T7782] CPU: 3 UID: 0 PID: 7782 Comm: syz.0.453 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) 
[  139.726555][ T7782] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  139.726562][ T7782] Call Trace:
[  139.726566][ T7782]  <TASK>
[  139.726570][ T7782]  dump_stack_lvl+0x16c/0x1f0
[  139.726588][ T7782]  should_fail_ex+0x512/0x640
[  139.726602][ T7782]  _copy_to_user+0x32/0xd0
[  139.726616][ T7782]  simple_read_from_buffer+0xcb/0x170
[  139.726631][ T7782]  proc_fail_nth_read+0x197/0x270
[  139.726645][ T7782]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  139.726659][ T7782]  ? rw_verify_area+0xcf/0x680
[  139.726671][ T7782]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  139.726684][ T7782]  vfs_read+0x1de/0xc70
[  139.726699][ T7782]  ? __pfx___mutex_lock+0x10/0x10
[  139.726714][ T7782]  ? __pfx_vfs_read+0x10/0x10
[  139.726730][ T7782]  ? __fget_files+0x20e/0x3c0
[  139.726748][ T7782]  ksys_read+0x12a/0x240
[  139.726762][ T7782]  ? __pfx_ksys_read+0x10/0x10
[  139.726776][ T7782]  ? rcu_is_watching+0x12/0xc0
[  139.726790][ T7782]  __do_fast_syscall_32+0x73/0x120
[  139.726806][ T7782]  do_fast_syscall_32+0x32/0x80
[  139.726820][ T7782]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  139.726834][ T7782] RIP: 0023:0xf7f08579
[  139.726842][ T7782] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  139.726851][ T7782] RSP: 002b:00000000f5026590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  139.726861][ T7782] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f5026620
[  139.726867][ T7782] RDX: 000000000000000f RSI: 00000000f738cff4 RDI: 0000000000000000
[  139.726872][ T7782] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  139.726878][ T7782] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  139.726883][ T7782] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  139.726895][ T7782]  </TASK>
[  139.790673][    C3] vkms_vblank_simulate: vblank timer overrun
[  139.839368][ T7784] lo speed is unknown, defaulting to 1000
[  139.844086][ T6321] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  139.934443][    C3] batman_adv: batadv0: Local translation table size (80) exceeds maximum packet size (-320); Ignoring new local tt entry: aa:aa:aa:aa:aa:1c
[  139.995622][ T6321] usb 6-1: config 0 has no interfaces?
[  139.997250][ T6321] usb 6-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00
[  140.000168][ T6321] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  140.005324][ T6321] usb 6-1: config 0 descriptor??
[  140.077615][ T7789] lo speed is unknown, defaulting to 1000
[  140.381534][ T5962] usb 6-1: USB disconnect, device number 12
[  140.430753][ T7797] futex_wake_op: syz.5.456 tries to shift op by 36; fix this program
[  140.817969][   T40] audit: type=1326 audit(1744163258.203:5371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7799 comm="syz.0.457" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f08579 code=0x7ffc0000
[  140.862968][   T40] audit: type=1326 audit(1744163258.203:5372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7799 comm="syz.0.457" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f08579 code=0x7ffc0000
[  141.376797][ T7823] lo speed is unknown, defaulting to 1000
[  141.918950][ T5962] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0
[  141.922998][ T5962] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0
[  141.927272][ T5962] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0
[  141.929419][ T5962] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0
[  141.931534][ T5962] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0
[  141.933742][ T5962] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0
[  141.937490][ T5962] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0
[  141.939620][ T5962] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0
[  141.941840][ T5962] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0
[  141.944449][ T5962] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0
[  141.947026][ T5962] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0
[  141.949140][ T5962] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0
[  141.951331][ T5962] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0
[  141.953498][ T5962] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0
[  141.956155][ T5962] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0
[  141.958367][ T5962] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0
[  141.960498][ T5962] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0
[  141.962766][ T5962] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0
[  141.966120][ T5962] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0
[  141.968510][ T5962] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0
[  141.970664][ T5962] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0
[  141.973758][ T5962] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0
[  141.976086][ T5962] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0
[  141.976566][ T7822] input: syz1 as /devices/virtual/input/input17
[  141.978217][ T5962] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0
[  141.982841][ T5962] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0
[  141.985887][ T5962] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0
[  141.990916][ T5962] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0
[  141.996830][ T5962] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0
[  142.004056][ T5962] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0
[  142.014190][ T5962] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0
[  142.016319][ T5962] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0
[  142.018544][ T5962] hid-generic 0004:FFFFFFFF:0000.0008: unknown main item tag 0x0
[  142.024939][ T5962] hid-generic 0004:FFFFFFFF:0000.0008: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  142.096195][ T7833] FAULT_INJECTION: forcing a failure.
[  142.096195][ T7833] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  142.099812][ T7833] CPU: 3 UID: 0 PID: 7833 Comm: syz.5.468 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) 
[  142.099827][ T7833] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  142.099834][ T7833] Call Trace:
[  142.099838][ T7833]  <TASK>
[  142.099842][ T7833]  dump_stack_lvl+0x16c/0x1f0
[  142.099860][ T7833]  should_fail_ex+0x512/0x640
[  142.099875][ T7833]  _copy_to_user+0x32/0xd0
[  142.099889][ T7833]  put_old_timespec32+0x18c/0x1e0
[  142.099904][ T7833]  ? __pfx_put_old_timespec32+0x10/0x10
[  142.099919][ T7833]  ? read_tsc+0x9/0x20
[  142.099934][ T7833]  ? ktime_get_ts64+0x256/0x400
[  142.099950][ T7833]  poll_select_finish+0x5c0/0x6b0
[  142.099965][ T7833]  ? __pfx_poll_select_finish+0x10/0x10
[  142.099978][ T7833]  ? ktime_get_ts64+0x2d2/0x400
[  142.099997][ T7833]  __ia32_compat_sys_ppoll_time32+0x25a/0x2c0
[  142.100014][ T7833]  ? __pfx___ia32_compat_sys_ppoll_time32+0x10/0x10
[  142.100029][ T7833]  ? ksys_write+0x1b9/0x240
[  142.100042][ T7833]  ? __pfx_ksys_write+0x10/0x10
[  142.100057][ T7833]  ? rcu_is_watching+0x12/0xc0
[  142.100071][ T7833]  __do_fast_syscall_32+0x73/0x120
[  142.100087][ T7833]  do_fast_syscall_32+0x32/0x80
[  142.100102][ T7833]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  142.100114][ T7833] RIP: 0023:0xf7f23579
[  142.100122][ T7833] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  142.100131][ T7833] RSP: 002b:00000000f504655c EFLAGS: 00000296 ORIG_RAX: 0000000000000135
[  142.100141][ T7833] RAX: ffffffffffffffda RBX: 00000000800002c0 RCX: 0000000000000001
[  142.100146][ T7833] RDX: 0000000080000080 RSI: 0000000000000000 RDI: 0000000000000000
[  142.100152][ T7833] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  142.100157][ T7833] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  142.100163][ T7833] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  142.100174][ T7833]  </TASK>
[  142.158127][    C3] vkms_vblank_simulate: vblank timer overrun
[  142.224050][ T6321] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  142.321069][ T7847] futex_wake_op: syz.4.471 tries to shift op by 36; fix this program
[  142.395517][ T6321] usb 6-1: config 0 has no interfaces?
[  142.397181][ T6321] usb 6-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00
[  142.399815][ T6321] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  142.422681][ T6321] usb 6-1: config 0 descriptor??
[  142.808208][   T29] usb 6-1: USB disconnect, device number 13
[  143.025851][ T7862] lo speed is unknown, defaulting to 1000
[  143.702962][ T7881] input: syz1 as /devices/virtual/input/input18
[  144.134021][ T6009] usb 5-1: new full-speed USB device number 24 using dummy_hcd
[  144.298963][ T6009] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  144.302862][ T6009] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  144.312994][ T6009] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  144.331923][ T6009] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  144.450497][ T7885] netlink: 96 bytes leftover after parsing attributes in process `syz.4.482'.
[  144.571025][ T7893] futex_wake_op: syz.1.484 tries to shift op by 36; fix this program
[  144.721386][ T6009] usb 5-1: usb_control_msg returned -32
[  144.722951][ T6009] usbtmc 5-1:16.0: can't read capabilities
[  145.113447][ T6010] usb 5-1: USB disconnect, device number 24
[  145.316346][ T7903] syz_tun: entered allmulticast mode
[  145.320373][ T7902] syz_tun: left allmulticast mode
[  145.558132][ T7907] trusted_key: encrypted_key: insufficient parameters specified
[  145.599734][ T7907] x_tables: duplicate underflow at hook 3
[  145.620960][ T7907] netlink: 12 bytes leftover after parsing attributes in process `syz.5.486'.
[  146.597573][ T7925] netlink: 8 bytes leftover after parsing attributes in process `syz.0.494'.
[  146.719674][ T7925] netlink: 96 bytes leftover after parsing attributes in process `syz.0.494'.
[  147.252422][ T7945] lo speed is unknown, defaulting to 1000
[  147.359641][ T7949] netlink: 8 bytes leftover after parsing attributes in process `syz.5.498'.
[  147.772199][ T7950] input: syz1 as /devices/virtual/input/input22
[  148.374180][ T7970] cgroup: Need name or subsystem set
[  148.505840][ T7970] 8021q: adding VLAN 0 to HW filter on device bond0
[  148.516440][ T7970] bond0: (slave rose0): Enslaving as an active interface with an up link
[  150.476097][ T8025] lo speed is unknown, defaulting to 1000
[  150.594118][ T7899] usb 5-1: new full-speed USB device number 25 using dummy_hcd
[  150.789816][ T7899] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  150.793561][ T7899] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  150.878090][ T7899] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  150.880935][ T7899] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  151.114402][ T7899] usb 5-1: usb_control_msg returned -32
[  151.116255][ T7899] usbtmc 5-1:16.0: can't read capabilities
[  151.319463][ T8040] lo speed is unknown, defaulting to 1000
[  151.664567][ T8044] netlink: 16 bytes leftover after parsing attributes in process `syz.5.518'.
[  151.667230][ T8044] tipc: Invalid UDP bearer configuration
[  151.667257][ T8044] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  151.673712][ T8044] netlink: 24 bytes leftover after parsing attributes in process `syz.5.518'.
[  151.676507][ T8044] netlink: 24 bytes leftover after parsing attributes in process `syz.5.518'.
[  151.679835][ T8044] netlink: 8 bytes leftover after parsing attributes in process `syz.5.518'.
[  151.692650][ T8044] netlink: 96 bytes leftover after parsing attributes in process `syz.5.518'.
[  151.843071][   T40] audit: type=1326 audit(1744163269.223:5373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8047 comm="syz.5.520" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f23579 code=0x7ffc0000
[  151.893842][   T40] audit: type=1326 audit(1744163269.223:5374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8047 comm="syz.5.520" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f23579 code=0x7ffc0000
[  152.039896][   T40] audit: type=1326 audit(1744163269.423:5375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8052 comm="syz.5.521" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f23579 code=0x7ffc0000
[  152.049969][   T40] audit: type=1326 audit(1744163269.433:5376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8052 comm="syz.5.521" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f23579 code=0x7ffc0000
[  152.402793][ T7899] usb 5-1: USB disconnect, device number 25
[  152.724418][ T8071] lo speed is unknown, defaulting to 1000
[  153.105313][ T8079] syz_tun: entered allmulticast mode
[  153.109709][ T8078] syz_tun: left allmulticast mode
[  153.335582][ T8081] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  153.337511][ T8081] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  153.344737][ T8081] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  153.349011][ T8081] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  153.351344][ T8081] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  153.356142][ T8081] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  153.360357][ T8081] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  153.362105][ T8081] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  153.367488][ T8081] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  153.371345][ T8081] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  153.373101][ T8081] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  153.376199][ T8081] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  153.383244][ T1176] Bluetooth: hci2: Frame reassembly failed (-84)
[  153.624252][    T9] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[  153.785574][    T9] usb 10-1: Using ep0 maxpacket: 32
[  153.788444][    T9] usb 10-1: config 0 has an invalid descriptor of length 183, skipping remainder of the config
[  153.792164][    T9] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 128, changing to 11
[  153.795396][    T9] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[  153.796983][ T8094] FAULT_INJECTION: forcing a failure.
[  153.796983][ T8094] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  153.797881][ T8094] 
[  153.797888][ T8094] ======================================================
[  153.797891][ T8094] WARNING: possible circular locking dependency detected
[  153.797895][ T8094] 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 Not tainted
[  153.797901][ T8094] ------------------------------------------------------
[  153.797904][ T8094] syz.0.533/8094 is trying to acquire lock:
[  153.797910][ T8094] ffffffff8e2ce9c0 (console_owner){-.-.}-{0:0}, at: vprintk_emit+0x4d4/0x6d0
[  153.797936][ T8094] 
[  153.797936][ T8094] but task is already holding lock:
[  153.797946][ T8094] ffff88802b239f18 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130
[  153.797968][ T8094] 
[  153.797968][ T8094] which lock already depends on the new lock.
[  153.797968][ T8094] 
[  153.797971][ T8094] 
[  153.797971][ T8094] the existing dependency chain (in reverse order) is:
[  153.797974][ T8094] 
[  153.797974][ T8094] -> #4 (&rq->__lock){-.-.}-{2:2}:
[  153.797985][ T8094]        _raw_spin_lock_nested+0x31/0x40
[  153.797996][ T8094]        raw_spin_rq_lock_nested+0x29/0x130
[  153.798007][ T8094]        task_rq_lock+0xcf/0x490
[  153.798019][ T8094]        cgroup_move_task+0x81/0x2a0
[  153.798031][ T8094]        css_set_move_task+0x288/0x5f0
[  153.798045][ T8094]        cgroup_post_fork+0x201/0x9e0
[  153.798055][ T8094]        copy_process+0x5006/0x91a0
[  153.798069][ T8094]        kernel_clone+0xfc/0x960
[  153.798071][    T9] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  153.798081][ T8094]        user_mode_thread+0xc7/0x110
[  153.798093][ T8094]        rest_init+0x23/0x2b0
[  153.798101][ T8094]        start_kernel+0x3e9/0x4d0
[  153.798124][ T8094]        x86_64_start_reservations+0x18/0x30
[  153.798136][ T8094]        x86_64_start_kernel+0xb0/0xc0
[  153.798147][ T8094]        common_startup_64+0x13e/0x148
[  153.798159][ T8094] 
[  153.798159][ T8094] -> #3 (&p->pi_lock){-.-.}-{2:2}:
[  153.798170][ T8094]        _raw_spin_lock_irqsave+0x3a/0x60
[  153.798180][ T8094]        try_to_wake_up+0xb2/0x1680
[  153.798191][ T8094]        __wake_up_common+0x132/0x1f0
[  153.798199][ T8094]        __wake_up+0x31/0x60
[  153.798211][ T8094]        tty_port_default_wakeup+0x2a/0x40
[  153.798220][ T8094]        serial8250_tx_chars+0x68e/0x860
[  153.798229][ T8094]        serial8250_handle_irq+0x761/0xcb0
[  153.798239][ T8094]        serial8250_default_handle_irq+0x9a/0x210
[  153.798249][ T8094]        serial8250_interrupt+0x103/0x210
[  153.798259][ T8094]        __handle_irq_event_percpu+0x229/0x7d0
[  153.798271][ T8094]        handle_irq_event+0xab/0x1e0
[  153.798281][ T8094]        handle_edge_irq+0x263/0xd10
[  153.798291][ T8094]        __common_interrupt+0xdf/0x250
[  153.798299][ T8094]        common_interrupt+0xba/0xe0
[  153.798307][ T8094]        asm_common_interrupt+0x26/0x40
[  153.798316][ T8094]        pv_native_safe_halt+0xf/0x20
[  153.798327][ T8094]        default_idle+0x13/0x20
[  153.798341][ T8094]        default_idle_call+0x6d/0xb0
[  153.798348][ T8094]        do_idle+0x391/0x510
[  153.798358][ T8094]        cpu_startup_entry+0x4f/0x60
[  153.798370][ T8094]        start_secondary+0x21d/0x2b0
[  153.798378][ T8094]        common_startup_64+0x13e/0x148
[  153.798389][ T8094] 
[  153.798389][ T8094] -> #2 (&tty->write_wait){-...}-{3:3}:
[  153.798400][ T8094]        _raw_spin_lock_irqsave+0x3a/0x60
[  153.798410][ T8094]        __wake_up+0x1c/0x60
[  153.798422][ T8094]        tty_port_default_wakeup+0x2a/0x40
[  153.798430][ T8094]        serial8250_tx_chars+0x68e/0x860
[  153.798438][ T8094]        __start_tx+0x3e9/0x4a0
[  153.798447][ T8094]        serial8250_start_tx+0x368/0x530
[  153.798455][ T8094]        __uart_start+0x292/0x4c0
[  153.798466][ T8094]        uart_write+0x218/0xb30
[  153.798473][ T8094]        n_tty_write+0x40f/0x1160
[  153.798483][ T8094]        file_tty_write.constprop.0+0x4ff/0x9b0
[  153.798497][ T8094]        redirected_tty_write+0xd4/0x150
[  153.798511][ T8094]        vfs_write+0x5ba/0x1180
[  153.798523][ T8094]        ksys_write+0x12a/0x240
[  153.798535][ T8094]        do_syscall_64+0xcd/0x260
[  153.798547][ T8094]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.798556][ T8094] 
[  153.798556][ T8094] -> #1 (&port_lock_key){-.-.}-{3:3}:
[  153.798567][ T8094]        _raw_spin_lock_irqsave+0x3a/0x60
[  153.798577][ T8094]        serial8250_console_write+0x181/0x1890
[  153.798587][ T8094]        console_flush_all+0x801/0xc60
[  153.798597][ T8094]        console_unlock+0xd8/0x210
[  153.798607][ T8094]        vprintk_emit+0x418/0x6d0
[  153.798617][ T8094]        _printk+0xc7/0x100
[  153.798626][ T8094]        register_console+0xc2d/0x11b0
[  153.798639][ T8094]        univ8250_console_init+0x5f/0x90
[  153.798654][ T8094]        console_init+0x14f/0x680
[  153.798669][ T8094]        start_kernel+0x29f/0x4d0
[  153.798683][ T8094]        x86_64_start_reservations+0x18/0x30
[  153.798699][ T8094]        x86_64_start_kernel+0xb0/0xc0
[  153.798711][ T8094]        common_startup_64+0x13e/0x148
[  153.798721][ T8094] 
[  153.798721][ T8094] -> #0 (console_owner){-.-.}-{0:0}:
[  153.798733][ T8094]        __lock_acquire+0x1173/0x1ba0
[  153.798740][ T8094]        lock_acquire+0x179/0x350
[  153.798747][ T8094]        vprintk_emit+0x4e5/0x6d0
[  153.798758][ T8094]        _printk+0xc7/0x100
[  153.798764][ T8094]        should_fail_ex+0x4e7/0x640
[  153.798775][ T8094]        strncpy_from_user+0x3b/0x2e0
[  153.798783][ T8094]        strncpy_from_user_nofault+0x7f/0x180
[  153.798793][ T8094]        bpf_probe_read_compat_str+0xf1/0x170
[  153.798807][ T8094]        bpf_prog_c1796171ffc7efef+0x3e/0x40
[  153.798814][ T8094]        bpf_trace_run4+0x249/0x5a0
[  153.798821][ T8094]        __bpf_trace_sched_switch+0x145/0x190
[  153.798833][ T8094]        __traceiter_sched_switch+0x6c/0xc0
[  153.798843][ T8094]        __schedule+0x1bf3/0x5de0
[  153.798853][ T8094]        schedule+0xe7/0x3a0
[  153.798863][ T8094]        syscall_exit_to_user_mode+0xf5/0x2a0
[  153.798875][ T8094]        __do_fast_syscall_32+0x80/0x120
[  153.798888][ T8094]        do_fast_syscall_32+0x32/0x80
[  153.798901][ T8094]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  153.798912][ T8094] 
[  153.798912][ T8094] other info that might help us debug this:
[  153.798912][ T8094] 
[  153.798914][ T8094] Chain exists of:
[  153.798914][ T8094]   console_owner --> &p->pi_lock --> &rq->__lock
[  153.798914][ T8094] 
[  153.798927][ T8094]  Possible unsafe locking scenario:
[  153.798927][ T8094] 
[  153.798930][ T8094]        CPU0                    CPU1
[  153.798932][ T8094]        ----                    ----
[  153.798934][ T8094]   lock(&rq->__lock);
[  153.798944][ T8094]                                lock(&p->pi_lock);
[  153.798950][ T8094]                                lock(&rq->__lock);
[  153.798955][ T8094]   lock(console_owner);
[  153.798961][ T8094] 
[  153.798961][ T8094]  *** DEADLOCK ***
[  153.798961][ T8094] 
[  153.798963][ T8094] 2 locks held by syz.0.533/8094:
[  153.798968][ T8094]  #0: ffff88802b239f18 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130
[  153.798990][ T8094]  #1: ffffffff8e3c1580 (rcu_read_lock){....}-{1:3}, at: bpf_trace_run4+0x1cf/0x5a0
[  153.799009][ T8094] 
[  153.799009][ T8094] stack backtrace:
[  153.799014][ T8094] CPU: 1 UID: 0 PID: 8094 Comm: syz.0.533 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) 
[  153.799026][ T8094] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  153.799032][ T8094] Call Trace:
[  153.799036][ T8094]  <TASK>
[  153.799039][ T8094]  dump_stack_lvl+0x116/0x1f0
[  153.799053][ T8094]  print_circular_bug+0x275/0x350
[  153.799068][ T8094]  check_noncircular+0x14c/0x170
[  153.799084][ T8094]  __lock_acquire+0x1173/0x1ba0
[  153.799094][ T8094]  lock_acquire+0x179/0x350
[  153.799102][ T8094]  ? vprintk_emit+0x4d4/0x6d0
[  153.799113][ T8094]  ? vprintk_emit+0x4c2/0x6d0
[  153.799126][ T8094]  vprintk_emit+0x4e5/0x6d0
[  153.799137][ T8094]  ? vprintk_emit+0x4d4/0x6d0
[  153.799149][ T8094]  ? __pfx_vprintk_emit+0x10/0x10
[  153.799160][ T8094]  ? find_held_lock+0x2b/0x80
[  153.799173][ T8094]  _printk+0xc7/0x100
[  153.799180][ T8094]  ? __pfx__printk+0x10/0x10
[  153.799189][ T8094]  ? ___ratelimit+0x24c/0x570
[  153.799201][ T8094]  ? __pfx____ratelimit+0x10/0x10
[  153.799214][ T8094]  should_fail_ex+0x4e7/0x640
[  153.799225][ T8094]  strncpy_from_user+0x3b/0x2e0
[  153.799235][ T8094]  strncpy_from_user_nofault+0x7f/0x180
[  153.799245][ T8094]  bpf_probe_read_compat_str+0xf1/0x170
[  153.799260][ T8094]  bpf_prog_c1796171ffc7efef+0x3e/0x40
[  153.799267][ T8094]  bpf_trace_run4+0x249/0x5a0
[  153.799276][ T8094]  ? __pfx_bpf_trace_run4+0x10/0x10
[  153.799287][ T8094]  __bpf_trace_sched_switch+0x145/0x190
[  153.799299][ T8094]  ? __pfx___bpf_trace_sched_switch+0x10/0x10
[  153.799312][ T8094]  ? plist_check_prev_next+0x12a/0x1a0
[  153.799323][ T8094]  ? tracing_record_taskinfo_sched_switch+0x54/0x400
[  153.799334][ T8094]  __traceiter_sched_switch+0x6c/0xc0
[  153.799344][ T8094]  ? set_next_task_rt+0x176/0x6a0
[  153.799359][ T8094]  __schedule+0x1bf3/0x5de0
[  153.799370][ T8094]  ? ksys_write+0x190/0x240
[  153.799385][ T8094]  ? __pfx___schedule+0x10/0x10
[  153.799396][ T8094]  ? __fget_files+0x20e/0x3c0
[  153.799410][ T8094]  ? fput+0x70/0xf0
[  153.799419][ T8094]  ? ksys_write+0x1b9/0x240
[  153.799432][ T8094]  schedule+0xe7/0x3a0
[  153.799443][ T8094]  syscall_exit_to_user_mode+0xf5/0x2a0
[  153.799456][ T8094]  __do_fast_syscall_32+0x80/0x120
[  153.799470][ T8094]  do_fast_syscall_32+0x32/0x80
[  153.799484][ T8094]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  153.799495][ T8094] RIP: 0023:0xf7f08579
[  153.799502][ T8094] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  153.799512][ T8094] RSP: 002b:00000000f4fe4590 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  153.799520][ T8094] RAX: 0000000000000001 RBX: 000000000000000d RCX: 00000000f4fe4610
[  153.799526][ T8094] RDX: 0000000000000001 RSI: 00000000f738cff4 RDI: 0000000000000000
[  153.799531][ T8094] RBP: 00000000f73c50a0 R08: 0000000000000000 R09: 0000000000000000
[  153.799536][ T8094] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  153.799542][ T8094] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  153.799550][ T8094]  </TASK>
[  154.095191][ T8094] CPU: 1 UID: 0 PID: 8094 Comm: syz.0.533 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) 
[  154.095205][ T8094] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  154.095212][ T8094] Call Trace:
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  154.095217][ T8094]  <TASK>
[  154.095221][ T8094]  dump_stack_lvl+0x116/0x1f0
[  154.095239][ T8094]  should_fail_ex+0x512/0x640
[  154.095253][ T8094]  strncpy_from_user+0x3b/0x2e0
[  154.095263][ T8094]  strncpy_from_user_nofault+0x7f/0x180
[  154.095276][ T8094]  bpf_probe_read_compat_str+0xf1/0x170
[  154.095292][ T8094]  bpf_prog_c1796171ffc7efef+0x3e/0x40
[  154.095300][ T8094]  bpf_trace_run4+0x249/0x5a0
[  154.095309][ T8094]  ? __pfx_bpf_trace_run4+0x10/0x10
[  154.095320][ T8094]  __bpf_trace_sched_switch+0x145/0x190
[  154.095333][ T8094]  ? __pfx___bpf_trace_sched_switch+0x10/0x10
[  154.095347][ T8094]  ? plist_check_prev_next+0x12a/0x1a0
[  154.095358][ T8094]  ? tracing_record_taskinfo_sched_switch+0x54/0x400
[  154.095369][ T8094]  __traceiter_sched_switch+0x6c/0xc0
[  154.095380][ T8094]  ? set_next_task_rt+0x176/0x6a0
[  154.095395][ T8094]  __schedule+0x1bf3/0x5de0
[  154.095407][ T8094]  ? ksys_write+0x190/0x240
[  154.095424][ T8094]  ? __pfx___schedule+0x10/0x10
[  154.095435][ T8094]  ? __fget_files+0x20e/0x3c0
[  154.095450][ T8094]  ? fput+0x70/0xf0
[  154.095458][ T8094]  ? ksys_write+0x1b9/0x240
[  154.095472][ T8094]  schedule+0xe7/0x3a0
[  154.095483][ T8094]  syscall_exit_to_user_mode+0xf5/0x2a0
[  154.095497][ T8094]  __do_fast_syscall_32+0x80/0x120
[  154.095511][ T8094]  do_fast_syscall_32+0x32/0x80
[  154.095525][ T8094]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  154.095538][ T8094] RIP: 0023:0xf7f08579
[  154.095546][ T8094] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  154.095556][ T8094] RSP: 002b:00000000f4fe4590 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  154.095565][ T8094] RAX: 0000000000000001 RBX: 000000000000000d RCX: 00000000f4fe4610
[  154.095571][ T8094] RDX: 0000000000000001 RSI: 00000000f738cff4 RDI: 0000000000000000
[  154.095576][ T8094] RBP: 00000000f73c50a0 R08: 0000000000000000 R09: 0000000000000000
[  154.095582][ T8094] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  154.095587][ T8094] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  154.095595][ T8094]  </TASK>
[  154.095671][    C3] vkms_vblank_simulate: vblank timer overrun
[  154.102008][ T8094] input: syz1 as /devices/virtual/input/input27
[  154.539496][    T9] usb 10-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68
[  154.542082][    T9] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  154.544386][    T9] usb 10-1: Product: syz
[  154.546218][    T9] usb 10-1: config 0 descriptor??
[  154.547960][    T9] usb 10-1: can't set config #0, error -71
[  154.550066][    T9] usb 10-1: USB disconnect, device number 4
[  155.454084][ T5948] Bluetooth: hci2: command 0x1003 tx timeout
[  155.454132][ T5950] Bluetooth: hci2: Opcode 0x1003 failed: -110

VM DIAGNOSIS:
01:47:51  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=0000000000000003 RCX=ffffffff816934b6 RDX=ffff88801d28c880
RSI=ffffffff8169650c RDI=0000000000000000 RBP=ffff88802b239f00 RSP=ffffc900001b7080
R8 =0000000000000000 R9 =0000000000000003 R10=0000000000000003 R11=ffffffff9ad77b20
R12=0000000000000003 R13=0000000000000003 R14=ffff88802b23ae40 R15=ffffed10056473e0
RIP=ffffffff8169650d RFL=00000093 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880977b9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000023f9e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000001 Opmask01=0000000000080000 Opmask02=0000000000006000 Opmask03=0000000000000000
Opmask04=00000000ffffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffec84744f0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6565656565656565 6565656565656565
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffff0000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 303d646975203539 3237363934393234 3d64697561203a29 363733353a333300
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3037646375203533 3237363334333234 3764637561203023 3637333530333300
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 33312020203e3434 00313030312e3234 3120203a33323000 203850302f203833
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 302b202020202034 0031303031203234 3100003030303000 2032373025203233
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 73787e646f2a2a57 3939323d5e2a5157 380a003a3a3a3a69 6c6c3d723a376f6e
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 39323d5e2a51573e 3b3b3a3a3b24383e 3b2a2a51343e360a 6f32723a253e3272
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000037 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff854bd005 RDI=ffffffff9ae12bc0 RBP=ffffffff9ae12b80 RSP=ffffc90007b5f568
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=2d2d2d2d2d2d2d2d
R12=0000000000000000 R13=0000000000000037 R14=ffffffff9ae12b80 R15=ffffffff854bcfa0
RIP=ffffffff854bd02f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880978b9000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=000000006d1e4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a000000000 0000000300000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=ffffed10084b0f01 RBX=ffffed10084b0f02 RCX=ffffffff8a11da1c RDX=ffffed10084b0f02
RSI=0000000000000008 RDI=ffff888042587808 RBP=ffffed10084b0f01 RSP=ffffc900079ff718
R8 =0000000000000000 R9 =ffffed10084b0f01 R10=ffff88804258780f R11=0000000000000000
R12=ffffc900079ffd60 R13=ffff888042587800 R14=dffffc0000000000 R15=ffff888042587808
RIP=ffffffff821fa5fe RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880979b9000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=000000006d1e4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a000000000 0000000300000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=ffffed10056473e1 RBX=ffffed10056473e1 RCX=ffffffff8b72a156 RDX=ffffed10056473e1
RSI=0000000000000004 RDI=ffff88802b239f00 RBP=ffffed10056473e0 RSP=ffffc90007a27538
R8 =0000000000000000 R9 =ffffed10056473e0 R10=ffff88802b239f03 R11=ffffffff93a80f00
R12=ffffed10056473e0 R13=0000000000000000 R14=ffff88802b53ae40 R15=0000000000000003
RIP=ffffffff821fa63f RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097ab9000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=000000006bf4a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000