last executing test programs:

17.509957624s ago: executing program 2 (id=384):
socket$packet(0x11, 0x3, 0x300)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="000086dd00001200003b0000000060ec97000f982c"], 0xfce)

17.420285265s ago: executing program 2 (id=385):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCGIFADDR(r0, 0x8915, &(0x7f0000000080)={'ip6gre0\x00', {0x2, 0x0, @initdev}})
r1 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r1, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r1, &(0x7f0000000280)={&(0x7f0000000000)={0x2, 0x10, @private=0xa0100fd}, 0x10, 0x0, 0x0, &(0x7f0000000380)=[@cswp={0x58, 0x114, 0x7, {{0xa03a, 0x7}, 0x0, 0x0, 0x1, 0x7, 0x3, 0x9ea6, 0x9, 0x5}}], 0x58}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=@newlink={0x50, 0x10, 0x401, 0x0, 0x3, {0x0, 0x0, 0x0, 0x0, 0x32b, 0x28000}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_PRIMARY_RESELECT={0x5, 0xc, 0x1}]}}}, @IFLA_ALT_IFNAME={0x14, 0x35, 'bond0\x00'}]}, 0x50}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)

17.419682922s ago: executing program 2 (id=386):
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000})
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x40000, 0x0)
ioctl$CDROMVOLCTRL(r0, 0x5392, &(0x7f0000000380)={0x7, 0x4, 0x6, 0x13})
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000c40)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000100)={0xffffffffffffffff, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)=[{}], 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000600)={r1, 0x66, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7000000, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffd48, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=@mpls_delroute={0x30, 0x18, 0x9, 0x0, 0x0, {0x1c, 0x14, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x1}, [@RTA_VIA={0x14, 0x12, {0x11, "b6acd7b8f7f0a0ae8c5d910c3378"}}]}, 0x30}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
mkdir(&(0x7f0000000440)='./file0\x00', 0x10)
r7 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r7}, 0x2c, {'rootmode', 0x3d, 0x4000}})
lsetxattr$system_posix_acl(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000004c0)={{}, {}, [], {0x4, 0x4}, [{}], {0x10, 0x4}, {0x20, 0x5}}, 0x2c, 0x1)
syz_fuse_handle_req(r7, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r6, 0x0)
syz_emit_ethernet(0x4a, 0x0, 0x0)
syz_io_uring_setup(0x381e, &(0x7f0000000140)={0x0, 0x25c5, 0x1, 0x1, 0xa8}, &(0x7f00000001c0)=<r8=>0x0, &(0x7f0000000240))
r9 = syz_io_uring_setup(0x24fa, &(0x7f0000000b80)={0x0, 0x0, 0x10100, 0x0, 0x33a}, &(0x7f0000000100)=<r10=>0x0, &(0x7f0000000140)=<r11=>0x0)
syz_io_uring_submit(r10, r11, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x6, 0x0, @fd=r9, 0x800080, 0x0, 0x8, 0x4, 0x1})
syz_emit_ethernet(0x6a, &(0x7f00000001c0)={@broadcast, @random="6487a2bed3d6", @void, {@ipv4={0x800, @gre={{0x6, 0x4, 0x0, 0x0, 0x5c, 0x300, 0x0, 0x0, 0x6c, 0x0, @private, @rand_addr, {[@ra={0x94, 0x4, 0x1000}]}}}}}}, 0x0)
syz_io_uring_submit(r8, r11, &(0x7f00000002c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x27, 0x2, r6, 0x0, 0x0, 0x0, 0x10121, 0x0, {0x2}})
r12 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r13=>0x0})
ioctl$sock_SIOCGIFVLAN_SET_VLAN_NAME_TYPE_CMD(r6, 0x8982, &(0x7f0000000400)={0x6, 'wg1\x00', {0x9}, 0x100})
sendmsg$NL80211_CMD_SET_BSS(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r12, @ANYBLOB="010029bd7000fedbdf25993d000008000300", @ANYRES32=r13, @ANYBLOB="05001c"], 0x24}, 0x1, 0x0, 0x0, 0x4008041}, 0x4000090)

16.395734558s ago: executing program 2 (id=399):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000140), 0x10)
ioctl$SIOCGSTAMPNS(r1, 0x8907, 0x0)
sendmsg$can_bcm(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="050000000300000000000000", @ANYRES64=0x0, @ANYBLOB="0000000001"], 0x48}}, 0x0)
read(r1, &(0x7f0000001480)=""/4096, 0x38)
ioprio_set$pid(0x2, 0x0, 0x2004)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000040)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x4, 0xf, &(0x7f0000000080)=ANY=[@ANYBLOB="1833000002000000000000000000000085000000d10000005427100000000000182a0000", @ANYRES32, @ANYBLOB="000000000500000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000060000007b8af8ff00010000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082000000"], &(0x7f0000000100)='GPL\x00', 0x1, 0xd7, &(0x7f0000000380)=""/215, 0x41100, 0xcf, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x9, 0x0, &(0x7f0000000280)=[{0x0, 0x3, 0x2, 0xc}, {0x5, 0x3, 0x8, 0x1}, {0x5, 0x2, 0xe, 0x7}, {0x2, 0x2, 0x7f, 0x3}, {0x5, 0x4, 0x8}, {0x5, 0x1, 0xf, 0xc}, {0x1, 0x5, 0xb, 0xfba3bf5587d458c4}, {0x1, 0x4, 0xc}, {0x1, 0x4, 0x5, 0xb}], 0x10, 0x1ff, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000880)={r2, 0x0, 0x24, 0x40, &(0x7f0000000140)="2007b1571cc8bb02549b6d53db0e95788d8a41064f1a107595ca245e03c2e59e145c9812", &(0x7f00000001c0)=""/64, 0x5, 0x0, 0xcd, 0x21, &(0x7f00000006c0)="1d11211c69cd3fc3469fb48eb77552e28029eb1bee007452ba91e170626f931f333d8c2fb3a685d546afc8cd19422e6909c7ed7b3bf4406d2593052cb990e8294abbdad23a8b347367d8fbae34e6a4caea6cef4493312dc405deb655cfd74c87dcbe359e0d0922611b7eab87ec07e3983d419994b2aa20161a6c1245ffd3755ce23fab2b89b0f6b53511b6786b31484aafafded11435ce75fa6243221a20a9437ae0e21ebfe5ff02ecccffbe3d1cdbc22b9801d422aa2159d7a08219e509cfbae2f1e269b05757e612a8540f74", &(0x7f0000000200)="4542e257e2bbd717672ba4ec1f05cf7674771ca89fcf53878d767407fdfd64ed1b", 0x2, 0x0, 0xfffffffd}, 0x50)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f0000000240)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xe}}, 0x10)
sendmmsg$inet(r3, &(0x7f00000024c0)=[{{0x0, 0x0, &(0x7f0000001040), 0x0, &(0x7f00000010c0)=[@ip_ttl={{0x14, 0x0, 0x2, 0x1e}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x9}}, @ip_retopts={{0x14, 0x0, 0x7, {[@noop]}}}], 0x48}}, {{&(0x7f0000000580)={0x2, 0x4e20, @private=0xa010102}, 0x10, &(0x7f0000000680)=[{&(0x7f0000001140)="4025fe112b87baac771e1bb32b7f044438ad3288e67b4b014348ba4993c89ee3308197fa8c2bb5b08b785e9634e9980afaa17365ee21ad5b9c51946e9663828b84e2dc6047c90a0de94e0e1c962fb3385bdeec6d6df7e43599dc2a07af31de93b74a5631346e52592e58e3b4aaaa7be78f60a7faa85b8846ebea3ddd110a0f58451bb17d5f62b49973222474d31d6efa4443ee5c8f6eeb975aefbac442a75193794777fbd85d390e68da6f21abc7c3188e69956a382a3de00c051548ead3aa5963", 0xc1}, {&(0x7f0000000600)}], 0x2, &(0x7f0000000a40)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x6}}], 0x18}}], 0x2, 0x8005)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r4 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
setsockopt$inet_udp_int(r4, 0x11, 0x65, &(0x7f0000000540)=0x401, 0x4)
move_mount(r4, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x891018, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='hugetlbfs\x00', 0x0, 0x0)
mknodat$loop(0xffffffffffffff9c, &(0x7f00000000c0)='./file0/file0\x00', 0xc000, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x80000, 0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000008c0), r5)
recvmmsg(0xffffffffffffffff, &(0x7f0000002000)=[{{0x0, 0x0, &(0x7f0000000f00)=[{&(0x7f0000002480)=""/37, 0x25}, {&(0x7f0000000a80)=""/17, 0x11}, {&(0x7f0000000c40)=""/108, 0x6c}, {&(0x7f0000000e00)=""/255, 0xff}, {&(0x7f0000000b80)=""/56, 0x38}], 0x5}, 0x4}, {{0x0, 0x0, &(0x7f0000001000)=[{&(0x7f0000000f80)=""/87, 0x57}, {&(0x7f0000001240)=""/236, 0xec}, {&(0x7f0000001340)=""/174, 0xae}, {&(0x7f0000001400)=""/183, 0xb7}], 0x4, &(0x7f00000014c0)=""/224, 0xe0}, 0x1}, {{&(0x7f00000015c0)=@phonet, 0x80, &(0x7f0000001780), 0x0, &(0x7f0000002180)=""/233, 0xe9}, 0x8}, {{&(0x7f00000018c0)=@caif=@dbg, 0x80, &(0x7f0000001c40)=[{&(0x7f0000001940)=""/215, 0xd7}, {&(0x7f0000001a40)=""/15, 0xf}, {&(0x7f0000001a80)=""/36, 0x24}, {&(0x7f0000001ac0)=""/189, 0xbd}, {&(0x7f0000001b80)=""/142, 0x8e}], 0x5, &(0x7f0000001cc0)=""/56, 0x38}, 0x7}, {{0x0, 0x0, &(0x7f0000001f40)=[{&(0x7f0000001d00)=""/112, 0x70}, {&(0x7f0000001d80)=""/140, 0x8c}, {&(0x7f0000001e40)=""/10, 0xa}, {&(0x7f0000001e80)=""/165, 0xa5}], 0x4, &(0x7f0000001f80)=""/76, 0x4c}, 0xc4}], 0x5, 0x123, &(0x7f0000002140)={0x77359400})
sendmsg$NLBL_UNLABEL_C_STATICLISTDEF(r5, &(0x7f0000000a00)={0x0, 0x2, &(0x7f00000009c0)={&(0x7f0000000900)={0x14, r6, 0xe2c40cf0776ef37, 0x0, 0x0, {0x5}}, 0x14}}, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)

16.394338488s ago: executing program 2 (id=401):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(&(0x7f0000000100), r0)
sendmsg$BATADV_CMD_GET_VLAN(r0, &(0x7f0000000380)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000280)={0x0, 0x50}, 0x1, 0x0, 0x0, 0x4009044}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r2=>0x0})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000480), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_PORT_GET(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010700000000000000002e"], 0x3c}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010024bd7000fcdbdf252100000008000300", @ANYRES32=r2, @ANYBLOB="14002c80080000"], 0x30}, 0x1, 0x0, 0x0, 0x4014001}, 0x9590f6cc3ea35512)

16.136837406s ago: executing program 2 (id=404):
r0 = syz_open_dev$dri(&(0x7f0000000180), 0x3ffffffffffffffd, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000040), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f00000004c0)={0x0, &(0x7f00000000c0)=[<r2=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r1, 0xc06864a1, &(0x7f00000005c0)={0x0, 0x0, r2, <r3=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r0, 0xc06864ce, &(0x7f0000000440)={r3, 0x0, 0x0, 0x0, 0x0, [<r4=>0x0], [0x7, 0x0, 0x0, 0x7fffffff], [0x0, 0x0, 0x0, 0xfffffffc], [0x6, 0x4, 0x4]})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc00c642d, &(0x7f0000000200)={r4, 0x80000, <r5=>0xffffffffffffffff})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f0000000000)={0x0, 0x0, r5})
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000001500010000000000000000000100000008000100", @ANYRES16=r7], 0x1c}, 0x1, 0x0, 0x0, 0x48001}, 0x0)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000c80)={'lo\x00', <r9=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000001200)={0x0, 0xfe98, &(0x7f0000000000)={&(0x7f00000002c0)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x1c, 0x2, [@TCA_FQ_FLOW_DEFAULT_RATE={0x18, 0x10, 0x3}, @TCA_FQ_FLOW_MAX_RATE={0x2, 0x2, 0x10270000}, @TCA_FQ_FLOW_MAX_RATE={0x1400, 0x7, 0x3}]}}]}, 0x48}}, 0x0)

16.078180996s ago: executing program 32 (id=404):
r0 = syz_open_dev$dri(&(0x7f0000000180), 0x3ffffffffffffffd, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000040), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f00000004c0)={0x0, &(0x7f00000000c0)=[<r2=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r1, 0xc06864a1, &(0x7f00000005c0)={0x0, 0x0, r2, <r3=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r0, 0xc06864ce, &(0x7f0000000440)={r3, 0x0, 0x0, 0x0, 0x0, [<r4=>0x0], [0x7, 0x0, 0x0, 0x7fffffff], [0x0, 0x0, 0x0, 0xfffffffc], [0x6, 0x4, 0x4]})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc00c642d, &(0x7f0000000200)={r4, 0x80000, <r5=>0xffffffffffffffff})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f0000000000)={0x0, 0x0, r5})
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000001500010000000000000000000100000008000100", @ANYRES16=r7], 0x1c}, 0x1, 0x0, 0x0, 0x48001}, 0x0)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000c80)={'lo\x00', <r9=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000001200)={0x0, 0xfe98, &(0x7f0000000000)={&(0x7f00000002c0)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x1c, 0x2, [@TCA_FQ_FLOW_DEFAULT_RATE={0x18, 0x10, 0x3}, @TCA_FQ_FLOW_MAX_RATE={0x2, 0x2, 0x10270000}, @TCA_FQ_FLOW_MAX_RATE={0x1400, 0x7, 0x3}]}}]}, 0x48}}, 0x0)

2.379534462s ago: executing program 0 (id=562):
r0 = syz_open_dev$video4linux(&(0x7f0000000080), 0x0, 0x0)
ioctl$VIDIOC_QUERYMENU(r0, 0xc008561c, &(0x7f0000000000)={0x24c, 0x3, @name="51da06bc7338e17dfebb1580e15b95473b09f0d1fb8aa1e9a86b6b1a959ef9dc"})
sendto(0xffffffffffffffff, &(0x7f0000000540)="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", 0x4d8, 0x0, &(0x7f0000000180)=@caif=@util={0x25, "f88126c34ce2431560496f692f48090e"}, 0x80)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000500)='status\x00')
setgroups(0x400000000000026f, &(0x7f0000000080)=[0x0, 0xee00])
read$FUSE(r1, &(0x7f00000056c0)={0x2020}, 0x2020)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ZERO(r2, 0x0, 0x48f, &(0x7f0000000140)={0x67, @local, 0x4e24, 0x0, 'fo\x00', 0x39, 0x3, 0x7c}, 0x2c)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='hugetlbfs\x00', 0x0, 0x0)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='mounts\x00')
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.events\x00', 0x275a, 0x0)
syncfs(r4)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fsopen(&(0x7f0000000080)='autofs\x00', 0x0)
fsconfig$FSCONFIG_SET_FD(r6, 0x5, &(0x7f00000000c0)='fd', 0x0, r5)
fsconfig$FSCONFIG_SET_FD(r6, 0x5, &(0x7f0000000000)='fd', 0x0, r5)
read$FUSE(r3, &(0x7f0000002140)={0x2020}, 0x2100)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r4)
getpid()
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x1c, 0xc, &(0x7f0000001a40)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='kfree\x00', r7}, 0x10)
r8 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r8, &(0x7f0000000040)={0xa, 0x10010000004e20, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c)
sendmmsg$inet(r8, &(0x7f0000000b00)=[{{&(0x7f0000000100)={0x2, 0x4e20, @local}, 0x10, 0x0}}], 0x1, 0x40000)
recvmsg(r8, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x40010101)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

1.448645721s ago: executing program 0 (id=583):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
signalfd(r0, &(0x7f00000002c0)={[0x8]}, 0x8)
ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0x1b2)
pipe2$watch_queue(&(0x7f0000000280)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x80)
ioctl$IOC_WATCH_QUEUE_SET_FILTER(r2, 0x5761, &(0x7f00000000c0)=ANY=[@ANYBLOB="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"])
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
ioctl$sock_SIOCBRDELBR(r4, 0x89a1, &(0x7f0000000080)='lo\x00')
ioctl$KVM_SET_MEMORY_ATTRIBUTES(r3, 0x4020aed2, &(0x7f0000000000)={0x2, 0x16000})

1.277130987s ago: executing program 0 (id=584):
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_CONTINUE(r0, 0xc020aa07, &(0x7f0000000080)={{&(0x7f0000820000/0x2000)=nil, 0x2000}, 0x1})
r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040), 0x604000, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000140)={0x2710, 0x4, 0xd000, 0x2000, &(0x7f0000821000/0x2000)=nil})
r2 = userfaultfd(0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000002c0)={'veth1_to_batadv\x00', <r5=>0x0})
userfaultfd(0x800)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=@newlink={0x44, 0x10, 0x503, 0x0, 0xffffffff, {0x0, 0x0, 0x0, 0x0, 0x1159b}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macsec={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACSEC_PORT={0x6, 0x2, 0x1, 0x0, 0x4e20}]}}}, @IFLA_LINK={0x8, 0x5, r5}]}, 0x44}}, 0x0)
open(&(0x7f0000000840)='./file0\x00', 0x80c00, 0xe4)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x1})
mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1000004, 0x10, r0, 0xd523b000)
madvise(&(0x7f0000831000/0x2000)=nil, 0x2000, 0x16)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xc, 0x16, &(0x7f0000000200)=ANY=[@ANYBLOB="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"/420], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000005c0)={r1, 0x20, &(0x7f0000000580)={&(0x7f0000000480)=""/234, 0xea, <r6=>0x0, &(0x7f0000001180)=""/4096, 0x1000}}, 0x10)
syz_kvm_setup_cpu$x86(r1, r1, &(0x7f000081f000/0x18000)=nil, &(0x7f00000007c0)=[@text16={0x10, &(0x7f0000000740)="66b99c0a00000f32670f017105262e660f38816957660f38810b66b86d0000000f23d00f21f86635200000080f23f80f23290f20e06635000100000f22e0ba200066b80001c0fe66ef2e660f38825f0064660f73f053", 0x56}], 0x1, 0x2, &(0x7f0000000800)=[@dstype3, @cstype0={0x4, 0xd}], 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x18, 0x3, &(0x7f0000000180)=@raw=[@map_fd={0x18, 0x0, 0x1, 0x0, r1}, @ldst={0x2, 0x0, 0x5, 0xa, 0x5, 0xc, 0xffffffffffffffff}], &(0x7f00000001c0)='GPL\x00', 0x3, 0xba, &(0x7f00000003c0)=""/186, 0x41100, 0x10, '\x00', r5, @fallback=0x27, r1, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r6, r1, 0x5, 0x0, &(0x7f0000000600)=[{0x0, 0x3, 0x8, 0xa}, {0x3, 0x1, 0x1}, {0x3, 0x5, 0x2}, {0x0, 0x1, 0x3, 0x5}, {0x2, 0x1, 0xe, 0xa}], 0x10, 0x6, @void, @value}, 0x94)

1.275138123s ago: executing program 0 (id=586):
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x22280, 0x0)
ioctl$BLKBSZSET(r0, 0x40081271, &(0x7f00000011c0)=0x300)
mkdir(&(0x7f0000000300)='./file0\x00', 0x29)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYRES8=r0, @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f0000006840)={0x2020, 0x0, <r2=>0x0}, 0x2020)
r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000380), 0x101040)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r3, 0x40345410, &(0x7f0000000300)={{0x0, 0x2}})
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000600), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f00000003c0)={0x9c9, 0x0, 0x0, 'queue1\x00', 0x200000})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r4, 0x40605346, &(0x7f0000000480)={0x2, 0x0, {0x1, 0x0, 0x8}, 0x80000001})
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r3, 0x54a2)
ioctl$SNDRV_TIMER_IOCTL_STOP(r3, 0x54a1)
write$FUSE_INIT(r1, &(0x7f0000004200)={0x50, 0xfffffffffffffff5, r2, {0x7, 0x2b, 0x0, 0x0, 0x5, 0xfff, 0x9}}, 0x50)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x0, {0x5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x10b}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write(0xffffffffffffffff, 0x0, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[])
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
r5 = socket$unix(0x1, 0x0, 0x0)
sendto$isdn(r0, &(0x7f0000000000)={0xf, 0x1c51cac6, "f9bf517461600244f23d2c7cc2486a46be371c14948e19062946a226706a905342892a55eb3f6b2cf0c226afe9d028307122b91ca8"}, 0x3d, 0x20008081, &(0x7f0000000340)={0x22, 0x81, 0x0, 0xf, 0xbd}, 0x6)
accept4$unix(r5, &(0x7f0000000280)=@abs, &(0x7f00000001c0)=0x6e, 0x40000)
r6 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$SO_TIMESTAMPING(r6, 0x1, 0x46, &(0x7f0000000080)=0x20b9, 0x4)
chdir(&(0x7f0000000080)='./file1\x00')
pipe(&(0x7f0000000100))

1.199350237s ago: executing program 0 (id=588):
pipe2(&(0x7f0000000340)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0) (async)
r1 = socket(0x10, 0x3, 0x0)
fsopen(&(0x7f0000000300)='iso9660\x00', 0x0) (async)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000001c0)=ANY=[@ANYBLOB="4c010000100013070000000000000000ffffffff0000000000000000000000007f00000100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="e00000010000000000000000000000000000000032000000fe8000000000000000000000000000bb00000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000100000000000000000048000200656362286369706865725f6e756c6c2900000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080016007d0000"], 0x14c}}, 0x0) (async)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
write$UHID_CREATE2(r0, &(0x7f0000000440)={0xb, {'syz1\x00', 'syz0\x00', 'syz0\x00', 0x45, 0x0, 0x7, 0x0, 0x72fd4bc, 0x0, "e437e943d86fd55836873d48be21270c54ca56dadffafaef3c6f2012a166135310c40016231d17c4c6344c0ee5dbd8c300f0e0cc2722b1e65dbf065c6d17597e9b6c4991a4"}}, 0x15d)
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0) (async)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=@newtfilter={0x34, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {0x0, 0x7}, {}, {0xffff}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x80}, 0x4800)
close_range(r0, 0xffffffffffffffff, 0x0)

1.198154752s ago: executing program 1 (id=589):
r0 = syz_open_dev$video4linux(&(0x7f00000000c0), 0xb, 0x2000)
ioctl$VIDIOC_SUBDEV_G_FMT(r0, 0xc0585604, &(0x7f0000000040)={0x0, 0x0, {0x9, 0x4, 0x1012, 0x4, 0x0, 0x0, 0x2, 0x6}}) (async)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$lock(r2, 0x6, &(0x7f0000002000)={0x1}) (async)
fcntl$lock(r2, 0x26, &(0x7f0000000080)) (async)
ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f0000000040)=<r3=>0x0)
fcntl$lock(r2, 0x6, &(0x7f0000000180)={0x0, 0x0, 0x10, 0x9c3, r3}) (async)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) (async)
r6 = accept4$ax25(0xffffffffffffffff, &(0x7f00000000c0)={{0x3, @netrom}, [@null, @remote, @remote, @bcast, @rose, @bcast, @bcast]}, &(0x7f0000000140)=0x48, 0x80000)
accept4$ax25(r6, &(0x7f0000000200)={{0x3, @null}, [@default, @default, @remote, @null, @bcast, @rose, @remote, @default]}, &(0x7f0000000380)=0x48, 0x80800) (async)
r7 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r8, &(0x7f0000000080)={0xa, 0x4e22, 0x100, @ipv4={'\x00', '\xff\xff', @empty}, 0x3}, 0x1c)
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r9, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
sendmsg$netlink(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000005c0)=ANY=[@ANYBLOB="140100002400010026bd7000024e2fde8c0e05a01d0001"], 0x114}], 0x1}, 0x0) (async)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0)
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f0000000180)={0x57, 0x2, 0x2, {0xfffe, 0x1}, {0x51, 0x2}, @period={0x5a, 0x1ff, 0x4, 0xef7d, 0x8, {0x1, 0x43, 0x4}, 0x0, 0x0}})
r10 = syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0x8c2b01)
write$char_usb(r10, &(0x7f0000000040)="e2", 0x12d8) (async)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r7, 0xc018937a, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r11=>r7, {0x3}}, './file0\x00'})
getpeername$packet(r11, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14) (async)
syz_pidfd_open(0x0, 0x0) (async)
select(0x40, &(0x7f0000000300)={0xd, 0x6, 0x1000, 0x7, 0x0, 0x6, 0x8, 0x6}, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CAP_DIRTY_LOG_RING(r5, 0x4068aea3, &(0x7f00000002c0)={0xc0, 0x0, 0x10000}) (async)
ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2)

1.069245173s ago: executing program 0 (id=590):
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = syz_open_dev$vim2m(&(0x7f0000000000), 0x206, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r2, 0xc0405602, &(0x7f0000000640)={0x22, 0x2, 0x2, "b53d70dde5dbbbe40f00f401bbe6c9008000c67f09000000080000000200"})
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = syz_open_dev$radio(&(0x7f0000000000), 0x2, 0x2)
r5 = epoll_create(0x1)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r4, &(0x7f0000000040)={0x80000006})
syz_usb_connect(0x5, 0x6f9, &(0x7f00000006c0)={{0x12, 0x1, 0x200, 0xb1, 0x59, 0xed, 0x20, 0x45e, 0x7c6, 0xdc22, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x6e7, 0x2, 0x4, 0x3, 0x40, 0x8, [{{0x9, 0x4, 0xf6, 0x1, 0xc, 0x21, 0xa9, 0xf2, 0x2, [@uac_as={[@format_type_ii_discrete={0xd, 0x24, 0x2, 0x2, 0x8, 0x9, 0xed, 'B&;!'}]}], [{{0x9, 0x5, 0x1, 0x1, 0x10, 0x80, 0x3, 0x8, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0xf, 0x800}]}}, {{0x9, 0x5, 0xf, 0x0, 0x8, 0x6, 0x9e, 0x0, [@uac_iso={0x7, 0x25, 0x1, 0x83, 0x7, 0x100}]}}, {{0x9, 0x5, 0x3, 0x8, 0x10, 0x9, 0x67, 0x4}}, {{0x9, 0x5, 0xc, 0x10, 0x0, 0x8, 0x0, 0xe5}}, {{0x9, 0x5, 0x3, 0x10, 0x20, 0x7f, 0xf6, 0x1}}, {{0x9, 0x5, 0x3, 0x2, 0x200, 0x1, 0x3, 0x7, [@uac_iso={0x7, 0x25, 0x1, 0x3, 0x4, 0xde00}]}}, {{0x9, 0x5, 0xc, 0x0, 0x200, 0x2, 0x9, 0x8, [@generic={0x51, 0xd, "bda8befd318827c1eae8810de5b149c4b0b0f180c045e4324c9db9786c281266bc0d7be29a10919662229c389eb5e850982a6df8750e42d21b8a650331108faefec385ff4dcd5da87d4fd7ec97782e"}, @generic={0x3e, 0x4, "baaf0708fa82127a9def1f4d74f6812e289b2cb8c8dd040eff796761db3307afd14ff58048b61fc32f071e78ae3081928145880afe0c26557ec1ee30"}]}}, {{0x9, 0x5, 0x6, 0x10, 0x400, 0x3, 0xb6, 0xc, [@generic={0xf6, 0x1d, "63e7f81b933aafb82fabb939c5b4d3d9da312174a763ec8b13831404429785ac5a86781d2f33124f60352b7a78d877cf7de1c327baa9281b40abc68c3f80014558a44e419a877e7b266ad60a2edc0418f7750123628b8ad0dd2b533b0a9976eb1822dcdb906a03d8dc5ea93c78686a57b8f4a6b2ea37ad231c8cda707d2010717f16db50a819371ffc5eb1e36e39a66fa1e6e7f3a8db4321e236e8e46565f4618e44af0c9c21bf6850e2195cf949d00ea71dcbed6d1551659141f041d1f9abaada0bccebd763e69ea35938a663b222050d35b88fbe22ea2c7266a0d2b10127c54717554c935f6c3a7af3e260e64394f7385eb12a"}]}}, {{0x9, 0x5, 0xf, 0x2, 0x10, 0x6, 0x24, 0x8}}, {{0x9, 0x5, 0xd, 0x0, 0x8, 0xd, 0x8, 0x5, [@generic={0x5e, 0x23, "610aefbe302095dadb92b35ee6d5cd228fd1c8dfb46aed47a45c8be0a3e13576a91533271e70f1ed95a6106c236deeb024cec29a1934820bc3f1a09bd3d0df930e92d803448901bea6a593bbcddd357dcbbf6c743ac8804d6298b810"}]}}, {{0x9, 0x5, 0xa, 0x8, 0x10, 0x4, 0x0, 0x2, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0x49, 0x9}]}}, {{0x9, 0x5, 0x9, 0x10, 0x400, 0xd0, 0x4, 0x8, [@uac_iso={0x7, 0x25, 0x1, 0x85, 0x7f, 0xffff}, @uac_iso={0x7, 0x25, 0x1, 0x2, 0x96, 0x2}]}}]}}, {{0x9, 0x4, 0xcc, 0xab, 0xc, 0xe5, 0x2e, 0xfe, 0x1, [], [{{0x9, 0x5, 0x80, 0x3, 0x20, 0x8d, 0xff, 0x54}}, {{0x9, 0x5, 0xa, 0x0, 0x200, 0x5, 0xd5, 0x9, [@generic={0x37, 0x1, "86597ac4a7e3c7dcb0b92e65496abeca07e32ef443be537b1c00d03c8768bb76770651be7686f8b4bac9c6a607e7faaaf4ec2fe58b"}, @generic={0x7f, 0xb, "71af01e0305f07c28f4002c8dcee1ac69ad0bbe2505e2a13fa3379152b716783e635a2c474a2255b49f1f861121e5521dd9805a3186c112c757ee3e4b7ecc4649321ae62c992a6a3f25e8bbd86c00f0f68a62a180903def527b308654fb246193b71534d7f6092c6bb93ff638ae814aab7b616ebf3e05e87d4517a3a0e"}]}}, {{0x9, 0x5, 0x80, 0x10, 0x400, 0x4, 0xfa}}, {{0x9, 0x5, 0x6, 0x4, 0x10, 0x4, 0x7f, 0x3, [@generic={0xdc, 0x3f, "2960d7c8936492b8cd9f454438e301ef7411f6db62efe64f904499952387563b63a1026e2232e78adbdf6a964518b3bd7de372a68ecab252dbf621d3d0a2ca783b459a03f46877c2eaa62edf4dbb53a2b314b9d91fa8e63f44b864016230e8dceddb97549019238ac3d59cbacea5db141dfb374e112e5cd1e9959627ba2e818870baa2179cfcbcf1dcf16d98df05a495a71783ead41ae761cf97e2591b015c89724d9d8f426802ac75905d6fd119b11c35fb16227f0bcab21cbd9a69ecbf13bd475f96a557f51600209499771eaf772a902eaf32472b402efde4"}, @uac_iso={0x7, 0x25, 0x1, 0x3, 0x0, 0x8}]}}, {{0x9, 0x5, 0x3, 0x0, 0x200, 0x7, 0x4, 0x6}}, {{0x9, 0x5, 0x7, 0x0, 0x400, 0xf3, 0xe, 0x81}}, {{0x9, 0x5, 0xb, 0x8, 0x3ff, 0x3, 0xfa, 0x6, [@generic={0x7f, 0x23, "70e67ab36aa729f574004d5e2642c9cdd422230b0ecfbfb3e5f56188645db64a092278e8299c97b7a13d5c7713cd7fb00581456db3cc982ee4f194409c6342989776571a354417b0bd6af38b16838cadad50e83e2fb88fda91981546816b47043aa6cebe26b7d36345ffa260bd248a0e9600873d2bdd91b3dffbda6bd0"}, @generic={0x29, 0x22, "b6b0a6ea542c18042668c6beb180228e6c5244371482fa7159696f38501cdda99c16249e672925"}]}}, {{0x9, 0x5, 0x6, 0x0, 0x20, 0x7, 0x11, 0xc0, [@generic={0x6a, 0xf, "04f8f3cca22922e3965f1207c97e81277db115729f38c14fe2a262332b5c5bf9e554647351d18817c8354a3d31a9134ce271a77812948a754a716ccdbddf3f930801bd0764df16f4e10e120d0525fb82e0b58f47e448d7f5a14fe02da9cf238d3d9926c46f4302ef"}]}}, {{0x9, 0x5, 0x0, 0x0, 0x20, 0x4, 0x3, 0x2, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0x80, 0x3}, @uac_iso={0x7, 0x25, 0x1, 0x2, 0x3, 0x9}]}}, {{0x9, 0x5, 0xd, 0x10, 0x10, 0x10, 0xf1, 0x40}}, {{0x9, 0x5, 0x7, 0xc, 0x400, 0x3, 0x2, 0x3, [@generic={0x57, 0xf, "53f448174c39a5c05c7c53f0938cbb03833d83b4245aa13a2244e5d12904127a06de7313131ae688b32b3bf7e2581fc899fc8f1e9fd911c78150532b7e778eaff54a9f4469cd63528f0f44d467a1856abf70b6b9d6"}, @uac_iso={0x7, 0x25, 0x1, 0x83, 0x9, 0x8}]}}, {{0x9, 0x5, 0xd, 0x8, 0x3ff, 0x46, 0x1, 0xf, [@uac_iso={0x7, 0x25, 0x1, 0x2, 0x0, 0x5}, @generic={0xbc, 0x9, "010ffaae17cefeddaf06190aa096b23e1538a5593b102dce7e84015232cb35a7144d2d936a32ffa80ed1592fea76bdba9630c69a7e515c53bd4061f81f872ebcb113666c968ec52547dce7dc4710166e4551b0d5a3452bf3971378303a8030b355418d515c50b0547c85422acb599f5756bec0c2d2f96f8171021ada0b47257771fdd64f6cd939b85f95a1806c2ac0c8ad35693bc18f01ea186dc73bf03565e97a79f9096d1327f3e5bcb42f13bc2773d81e73ad8a5901b48154"}]}}]}}]}}]}}, &(0x7f0000000f40)={0xa, &(0x7f0000000100)={0xa, 0x6, 0x200, 0x1, 0x40, 0x9, 0xff, 0x5d}, 0x5, &(0x7f0000000140)={0x5, 0xf, 0x5}, 0x9, [{0x4, &(0x7f0000000180)=@lang_id={0x4, 0x3, 0x42a}}, {0x8d, &(0x7f0000000340)=@string={0x8d, 0x3, "2bdb736b7b2b99d758d5548057dc1a9808c55b17d2be240518e126ee9025e00ce3d4029ceb5525f9235d109afb8bf05a774da88f90ccf1f917574f1d40547a4a4207fb8ae0f54a3076ddc33ff5e2bcc46cdfd3d282d23cdf8f1d606796501bbf3182bdcaaa90c4c7af41d776f84f4bc7cb4dae8cc4a43806cd1a2c0f4b831814fadfd78b04955c90818dfb"}}, {0x4, &(0x7f00000001c0)=@lang_id={0x4, 0x3, 0xc1a}}, {0x4, &(0x7f0000000400)=@lang_id={0x4, 0x3, 0x1c01}}, {0x72, &(0x7f0000000440)=@string={0x72, 0x3, "674238d86f834cd7054259ccf71791a92d0e58563c91d4e325a4e945b9a74b3c23c0076f0a31f65af070387b646cab2fb10e968469a5afb3eb7b32067a1cfb3589a0e85ef84218b2c5ab5a55c7935f8ffe5d749c485f4f78d2268edf5f668d5b4b3957c4f3f6156f0aaefbfd47ff9448"}}, {0xbf, &(0x7f00000004c0)=@string={0xbf, 0x3, "01a9c2ff490b8b077f03f616d86e280eebb8923ed5cd01526a0f3de8b21cd8f2c6fc8d13ac9e03046fbe7b5d77ebdc0a36863fe39013123460f7bb7abb4eacaa62a0b57c3e3b8cfa81ea2eedc02da3e0f0aa90397f853def89cb7835952ecac64a8d5d615ccfd900559b1287261dca4ccca0e157f94b4c53faad97424b2b27e5540fc102c24ff2c1482879cbe3021bd60e1e2a797a19b7c02ec69d462c687fb5576094e71cb09e1ea8ec35ef5801ef69b4c20e6355583e8647f8a88dd3"}}, {0x5b, &(0x7f0000000580)=@string={0x5b, 0x3, "c2b390c78f3a252e7d29208f0787847fbafb11f2a304516b680ec25847f39ac285dd8573078b30cf211e00478c090f9a3fae370f0959596ffb6e722c3c81a825292c3222d31cbbad1fa2cddc91b283b302af21f2fe812a8e9d"}}, {0x72, &(0x7f0000000dc0)=@string={0x72, 0x3, "da27afc159a57e09c1a0d3b5f5dcdc4d58d1a1cb9fe0851ad00a02888226782516eea52b9c04ab06f8c15f5b22727a881dcd1ce1161694614f01420a075836693b087d4e5d849d1e15775b9d16a1119fc8e779b38656f23610f0969d77819518f55b31ad49f263a4a317eeebbc956e2e"}}, {0xe2, &(0x7f0000000e40)=@string={0xe2, 0x3, "f2c6d084871d5c88a86efbaae0a0fdb55aa9d421965cee61ec990273210a24abe360e0f51ee5843b20cc3d174187b29b5c2559b357442ba6e80f63ccd95f570f20491d359eb52c88b63c2d9275cb1700bfbafd0b09d3aa479bc8cb4072c8c737526b1e1cdafc2f7756831edef3c0e4977dc9b0a49592bb76e2376e7802169965ad8640c7ea5f2d3852453662379f7de2286d1a7c5f173ee860b6de3f8ced5a1baf6c1268519e302991243c9dd1a3c7597f3feca82c563be0471a6f3b86f95327994bab9a418d866c80e37c31e0cd66eda11d146445181a7830662121cd46521c"}}]})
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000740)=ANY=[@ANYBLOB="500000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000001140012800c0001006d6163766c616e00dbff02800800", @ANYRES32=r6], 0x50}}, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r3, 0x6, 0xe, &(0x7f00000012c0)={@in6={{0xa, 0x0, 0x0, @loopback}}, 0x0, 0x0, 0x34, 0x0, "0c9e089c1b4a04000bde79f04103c458187eb46c2d996aff287154e786455261c425a7519cc275d04e6205abd307a0c4fa3838bf399ad5bd35f21907c7988d1300"}, 0xd8)
r7 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0xf00}, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3800000056000100000000000000000007020000", @ANYRES32, @ANYBLOB="200001"], 0x38}}, 0x0)
r8 = syz_open_dev$vim2m(&(0x7f0000000680), 0x8, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r8, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1})
ioctl$vim2m_VIDIOC_QBUF(r8, 0xc058560f, &(0x7f00000002c0)=@multiplanar_mmap={0x0, 0x2, 0x4, 0x0, 0x0, {}, {0x0, 0xc, 0x0, 0x0, 0x0, 0x0, "fafc00"}, 0x0, 0x1, {0x0}})
setsockopt$inet6_tcp_TCP_MD5SIG(r3, 0x6, 0xe, &(0x7f0000000200)={@in6={{0xa, 0x0, 0x3, @ipv4={'\x00', '\xff\xff', @private=0xa010102}}}, 0x0, 0x0, 0xc, 0x0, "a1c1dd75a6803e10951cd4b347113e55eb289519becf7542da0bc21470e441225642855b5f2f4bb561dc9363aed4a18d67efd5f2fdf98328de9441031348589b763d46d14810acc5f700"}, 0xd8)
close_range(r1, 0xffffffffffffffff, 0x0)
connect$inet(r0, &(0x7f0000772000)={0x2, 0x4e23}, 0x10)
r9 = dup(r0)
shutdown(r9, 0x1)

1.068707158s ago: executing program 4 (id=591):
r0 = syz_init_net_socket$ax25(0x3, 0x2, 0xf0)
ioctl$sock_ax25_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={@default, @default, 0x0, [@default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @null]})
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/notes', 0x335040, 0x0)
ioctl$sock_ax25_SIOCADDRT(r0, 0x890b, &(0x7f0000000200)={@default, @default, 0x2, [@bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}]})
r4 = msgget$private(0x0, 0x80)
msgctl$MSG_INFO(r4, 0xc, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r7, 0xc008ae88, &(0x7f0000000240)=ANY=[@ANYBLOB="05000000000000e620000040"])
msgctl$MSG_STAT(r4, 0xb, &(0x7f0000005740)=""/66)
ioctl$sock_bt_bnep_BNEPCONNADD(r3, 0x400442c8, &(0x7f0000000500)=ANY=[@ANYRES32=r3, @ANYBLOB="0f0000000200a16eb62f480beaf0f751b9b946300500000000000000e996a93a12ba14724dec4a7ded8dea1d25dd89f31b04a135955cf41a11db9e8747957df44c685d9eb3248d163f3c21008a19af41e5e10ccc9fd4e5456d8cb9bd7d9efffbc12822b9684bf579cb391a763f4f9551"])
sendfile(r2, r3, 0x0, 0x7ffff000)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000580)={'batadv0\x00', <r8=>0x0})
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000003c0), 0x40, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x9)
r9 = add_key$keyring(&(0x7f0000000280), &(0x7f00000002c0)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$restrict_keyring(0x1d, r9, &(0x7f0000000340)='blacklist\x00', &(0x7f0000000380)='&\'\x00')
umount2(&(0x7f0000000040)='./file0\x00', 0x1)
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYRESOCT=r2, @ANYRES32=0x0, @ANYBLOB="fffffffed9526cfd8400128009000100766c616e000000007400028006000100000600000c000200367da1650e000000280003800c00010001800000002000000c000100a1000000c84200000c0001000800000008000000340004800c00010006000000ff0300000c00010004000000080000000c00010004000000020000000c000100050000000300000008000500", @ANYRES32=r8, @ANYBLOB='\b\x00\n\x00', @ANYRESOCT], 0xb4}}, 0x0)
add_key$user(&(0x7f0000000400), &(0x7f0000000440)={'syz', 0x2}, &(0x7f00000004c0)="82d9746a", 0x4, r9)

1.068193588s ago: executing program 1 (id=592):
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000})
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x40000, 0x0)
ioctl$CDROMVOLCTRL(r0, 0x5392, &(0x7f0000000380)={0x7, 0x4, 0x6, 0x13})
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000c40)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000100)={0xffffffffffffffff, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)=[{}], 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000600)={r1, 0x66, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7000000, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffd48, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=@mpls_delroute={0x30, 0x18, 0x9, 0x0, 0x0, {0x1c, 0x14, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x1}, [@RTA_VIA={0x14, 0x12, {0x11, "b6acd7b8f7f0a0ae8c5d910c3378"}}]}, 0x30}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
mkdir(&(0x7f0000000440)='./file0\x00', 0x10)
r8 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r8}, 0x2c, {'rootmode', 0x3d, 0x4000}})
lsetxattr$system_posix_acl(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000004c0)={{}, {}, [], {0x4, 0x4}, [{}], {0x10, 0x4}, {0x20, 0x5}}, 0x2c, 0x1)
syz_fuse_handle_req(r8, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r7, 0x0)
syz_emit_ethernet(0x4a, 0x0, 0x0)
syz_io_uring_setup(0x381e, &(0x7f0000000140)={0x0, 0x25c5, 0x1, 0x1, 0xa8}, &(0x7f00000001c0)=<r9=>0x0, &(0x7f0000000240))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x6, 0x0, @fd, 0x800080, 0x0, 0x8, 0x4, 0x1})
syz_emit_ethernet(0x6a, &(0x7f00000001c0)={@broadcast, @random="6487a2bed3d6", @void, {@ipv4={0x800, @gre={{0x6, 0x4, 0x0, 0x0, 0x5c, 0x300, 0x0, 0x0, 0x6c, 0x0, @private, @rand_addr, {[@ra={0x94, 0x4, 0x1000}]}}}}}}, 0x0)
syz_io_uring_submit(r9, 0x0, &(0x7f00000002c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x27, 0x2, r7, 0x0, 0x0, 0x0, 0x10121, 0x0, {0x2}})
ioctl$KVM_XEN_HVM_CONFIG(r5, 0x4038ae7a, 0x0)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r11=>0x0})
ioctl$sock_SIOCGIFVLAN_SET_VLAN_NAME_TYPE_CMD(r7, 0x8982, &(0x7f0000000400)={0x6, 'wg1\x00', {0x9}, 0x100})
sendmsg$NL80211_CMD_SET_BSS(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="010029bd7000fedbdf25993d000008000300", @ANYRES32=r11, @ANYBLOB="05001c"], 0x24}, 0x1, 0x0, 0x0, 0x4008041}, 0x4000090)

787.803237ms ago: executing program 4 (id=593):
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
r3 = socket$xdp(0x2c, 0x3, 0x0)
mmap(&(0x7f0000004000/0x400000)=nil, 0x400000, 0x0, 0x11, r3, 0x0)
r4 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r4, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x211000, 0x1000}, 0x20)
sendmsg$nl_route_sched(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x60, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_codel={{0x6}, {0xffffffffffffff7f, 0x2, [@TCA_FQ_CODEL_CE_THRESHOLD_MASK={0x5, 0xb, 0x1}, @TCA_FQ_CODEL_LIMIT={0x8, 0x2, 0x2}, @TCA_FQ_CODEL_INTERVAL={0x8, 0x3, 0xf384}, @TCA_FQ_CODEL_FLOWS={0x8, 0x5, 0xffffffff}, @TCA_FQ_CODEL_FLOWS={0x8}, @TCA_FQ_CODEL_DROP_BATCH_SIZE={0x8}, @TCA_FQ_CODEL_ECN={0x8}]}}, @TCA_RATE={0x6, 0x5, {0x4}}]}, 0x78}}, 0x0)
syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)

786.406951ms ago: executing program 4 (id=594):
r0 = memfd_create(&(0x7f0000000400)='\xa3\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\xf5 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xacz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8ck\xc6S\xc3g\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\xc9\xff \xd8\x9d\xad\x11\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\xd00\x88y\xebX\x92\xd5\xbb\xa1h7\xf3\xe0\x0f\xbd\x02\xe4%\xf9\xb1\x87\x8aM\xfeG\xb2L\xbd\x92-\xcd\x1f\xf4\xe1,\xb7G|\xec\"\xa2\xab\xf6\x84\xe0\xcf1\x9a', 0x5) (async)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f00000bd000), 0x492492492492846, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000) (async)
ppoll(&(0x7f00000000c0)=[{r2, 0x200}], 0x1, 0x0, 0x0, 0x0) (async)
connect$unix(r1, &(0x7f00000002c0)=@file={0x0, './file0\x00'}, 0x6e) (async)
r3 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/pid\x00')
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f0000000040), 0x4) (async)
ioctl$NS_GET_USERNS(r3, 0xb701, 0x0) (async)
execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

636.814855ms ago: executing program 4 (id=595):
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x148640, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000001100)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000180)="420fc7bc4898580000640f01c50f01c566baf80cb864c95782ef66bafc0cec67670f1b0166b8fb008ec046d9c3c442b90a2c81c442812852fcc744240012000000c74424020b000000ff1c24", 0x4c}], 0x1, 0x0, 0x0, 0x0)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
io_uring_setup(0x5cce, &(0x7f00000000c0)={0x0, 0x45d6})
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000440)={"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"})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

631.900363ms ago: executing program 4 (id=596):
r0 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000140)=0x6, 0x4)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000200), 0x4)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x58, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_MAXELEM={0x8}]}, @IPSET_ATTR_TYPENAME={0x14, 0x3, 'hash:ip,port,ip\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x2}]}, 0x58}, 0x1, 0x0, 0x0, 0x20000880}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="980000000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400ff0100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe8000000000000000000000000000aa14000400fe8800000000000000000000000000010c0002800500010000000000080007", @ANYRES8=r2], 0x98}}, 0x14000000)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000001c0)=ANY=[], 0x98}, 0x1, 0x0, 0x0, 0x20040800}, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000000)=<r4=>0x0)
sendmmsg(r2, &(0x7f0000000a80)=[{{&(0x7f0000000380)=@nfc_llcp={0x27, r4, 0x1, 0x2, 0x5, 0x1, "4bf72e1ae0ec56fcfa9c3e8759416b783b56b76880564d7fa51cfb2cf9b7506c6a9bc5fb473a2275d90af3d21c5b22825fb9dec37d216d8d3f1307588c898a", 0xc}, 0x80, &(0x7f0000000040)=[{&(0x7f0000000400)="7b96383441a3afc0e430d976c7c8a9d8e866a348cb3d22868b12e1490fdd4002541763d1f5085342819e9c6e0c6975c8f8e621d01682d4b7fb36c7b92f454df08aba9dfb2595b6a4630839ea7678847ae255108e68f0870309cf624b10b545a74d4a53daa959853e5e62eb9fb0d893c85cd68abb69271bf450854d44e8b84cf8b1109279025eff2040c8f354d8560f4ec787fe9343a2c50cd2122d3735dc89539a3bd54705acb25a156fa6b38b6bc1c5308aef5d6ff4114d78661ad2a2a72afba7baa89a64f3b253ac095009cf7558d4d44b96dada416e0e0fdab741946b2178312aa336e88a23", 0xe7}, {&(0x7f0000000500)="e2be07a731139278214f2e404da9e2c9d08ded9ed196120fbf8b15a7cd8ccf814b0fc8a670da881154a33a3ec5e07828f483847af332739aa67049cbf92b7d5bd7f6bc971c7e8b376a6851002af295691e728d09ee7e06420b5634f6a302305dd9b264f0d90e117659d1bfdfdaaf2704d593ff", 0x73}, {&(0x7f0000000580)="9738b4427e5b1a7f80f4d4157eacc1cace898343c82d40010546ad299ae3ad7dd9f7064f4122aeefa80a3aff8e0277ee8ece9057aa38497d0363288374b72641dd4f337cfbcd16f4269cb29c3a82becac24be99f8358dfcac76059cd9501e17a603a1d7872f4792ea6f8a68ffbbf940552b4e5985a1512d91040a4b46efadca2ec78d2756704e144", 0x88}, {&(0x7f0000000640)="4b4a5f4b779e40f89eec9968c6a902821fbd043de50d370420156439f65db94b72dd6d28fac75ce8ee55619efca7b06ea20cc243ae61e152bf1b75957c49f97f41032a96ee5f6d51f6ddb467be26c496f96c95a11050a8938cebb0b909b5138b8cffcd1df5d793cc9555e0745592ea90384222d754a54aab9a756fa0bedf017a9c5ca96f59ef3a81807fa1e2a592623de4f2beae16e1315b784b1c6fc2a0a1b5b99210aca564fac81dd116d9a92670c46944dcf201a82ccab6ed61dcad863d4d9ffbf8310897eede9c6d83d020c388e7c351802a0b141625", 0xd8}], 0x4}}, {{&(0x7f0000000740)=@in6={0xa, 0x4e20, 0x9, @remote, 0x8000000}, 0x80, &(0x7f00000001c0)=[{&(0x7f00000007c0)="f6593553a104947c0b7e48a42aeb0b16182c11b45705a90d28d4b2e5b27388fe4a9ef47d3650b60e8a7fc96d6ffd94731427b1b25c778cee1a0769d0b56ff64ce208b54b05f7ba3d17649717f9f8bc2c008983a557003a13ad25a2c81903a33a8000e2a13208839da19da9348871f7c1cd385a9cd286a1782bd1632f04971ee23d236d44d7defa58deb3fd5f65f9ede5d93a5018e7d384ff174fdbe3f495abca4b79cc5f016958fa7c0e3d3a4e4c9aac79760e052cbf1443c3818fb2e86f51fc1375180907ff2228591deb047802fe8a96c71003b15bd04d366c81c8404c305cf787035114989d66", 0xe8}], 0x1, &(0x7f0000000900)=[{0x100, 0x6, 0x1b90, "53a6a335573a38a94f7c92d4eef2cc91bf354714a73cd82040d738b6ca88083331c026f35d6807e42e20375009a1e490e69f75309c120b572969bbdd901d4b106cf929a88d7606688e5658ab020687adaf0dbb859b085161f4e1c68ba9ac2838f4078490cc6d2431e2ce5b172f4b8572f89c400812a18fd3e8c78ca4b42740a2df83b76c8c910d25072eb7561ef97fe653cc2a8bed867443dc1f15f54580071b21615e41b8b9085b6eb6991166158729ad3d3b51468c887fb237f2239763c4901d1e8de2e1d9855d327fc418b74b1310e0766645b404a6dd87caabf49838654b3172914e249c73f93686ef042bf8"}, {0x68, 0x10b, 0x3ff, "7c90251d2a2c2af011a50a2ffcaa3e3a946eab9af90a9dfd740b4e82f8a302985737a884c1de73de5d2939fded5e76046a8301653a5714d1fad58ab54ee4c038ccf364baf2b48b55300b14ee68966edd9bc3"}], 0x168}}], 0x2, 0x4001)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000008c0)={0x14, 0x0, 0x1, 0x101, 0x0, 0x0, {0xa, 0x0, 0x10}}, 0x14}}, 0x0)

546.423526ms ago: executing program 4 (id=597):
futex(&(0x7f000000cffc)=0x4, 0x0, 0x4, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc)=0x4, 0x0, 0x4, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x3, 0x0, &(0x7f0000fd7ff0)={0x77359400}, &(0x7f0000048000), 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f0000000080)={'wlan0\x00', &(0x7f0000000000)=@ethtool_rxfh={0x47, 0xb, 0x2, 0x1, 0x81, '\x00}\\', 0x4}})
setsockopt$inet_group_source_req(r0, 0x0, 0x2e, &(0x7f0000000340)={0x2, {{0x2, 0x0, @multicast1}}, {{0x2, 0x0, @broadcast}}}, 0x108)
setsockopt$inet_group_source_req(r0, 0x0, 0x2e, &(0x7f0000000480)={0x3, {{0x2, 0x0, @multicast1}}, {{0x2, 0x0, @multicast2}}}, 0x108)
getsockopt$inet_buf(r0, 0x0, 0x30, &(0x7f0000000340)=""/225, &(0x7f0000000180)=0xe1)
fstat(r0, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
mount$9p_fd(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000780), 0x2011003, &(0x7f0000000940)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB="0000b108fa01001640f287b2fc7924a416e19a322025e1b8ae1f3bd24fbcd6b0a5f272bb4b9387408b6e9db461be99d62ee0b4ecd0651f2dc644e4469457a2abc8d7dc631fffd20eaca3531697a2737e6224164529b9aeeef6191966d31567", @ANYRESHEX=r0, @ANYBLOB=',directio,noxattr,debug=0x0000000000000004,version=9p2000.L,noxattr,version=9p2000.L,version=9p2000,fowner<', @ANYRESDEC=r2, @ANYBLOB=',context=unconfined_u,\x00'])
r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000840), 0x202000, 0x0)
write$cgroup_pressure(r3, &(0x7f0000000880)={'full', 0x20, 0x5, 0x20, 0x8001}, 0x2f)
writev(r0, &(0x7f0000000700)=[{&(0x7f0000000040)="eb63aafc15c9b3a57ff1d3058cf1527d1a303bc24355afaceec9b50261cd0de69c8c6c7607599bc40be17f2b1ee4d4eef5cb41a4b1a7e2257be80e2c608b86a5092bb51665bc96f7bf1173f3f522b0d4d27a2e207ee5cd7f2acc0acc9b961b8f7447caefab7c5fed26e079b3646980a9e33602c26af552da1e2ef4eef351f1d8d88c73970e3b14238193d328c92428892dbf18f5c782cde297b9f31ca4232a59e460f23899b24afd7da2a325b545b65efc40a66a174a9a7438cde49e0be152ff7bf46f678c2be16116104b7f6394bc7de8c0fd4491209cff92e071428f1b7c", 0xdf}, {&(0x7f0000000200)="a9918e2fbf4131ab4c6b85893bfc30f26c1e39c1ff223e5d489175c983edc793fef11f5520a6a787779da2f78c5de44a28821935588aba9b2125dc5564fb2f7f44286e9634980a77c2cf3c3635", 0x4d}, {&(0x7f0000000280)="8d738de51bf1dff4c37f6cca3dab110c26bef08fb3f5b02379a71980aebb674257898a77c14f261df0b85df7b9a1327199f31b6db0b9a57a16ebf2a2f14cf3117ac09d8ca0c6c804008178d307290e655a60bb2f3952dd91492c134d09d80763085e1ad03858f914447006d197c897ae9a2570ee5df3d86db79a3769379eac8abe5a6e1ecd14c5afed912b", 0x8b}, {&(0x7f00000005c0)="0834e68e28dabfb2e5d0c8b0fc4b90fd46e1abab6bea1ee2ee50d3c3863f93431910338a3dc0766bb7306d53582fe1d8ddf60b382052654527d8291fa88b63131c730fd27eec89dc76e1344492417185", 0x50}, {&(0x7f0000000640)="8118aafadbbab0851031bfcf0bfe3dbc4f7674c884f0cfbe1a99cc7a3a086bebf4e5d4afefe6b4a0587cb1ef4866308215b183b41472ba1dbdbc9da709b6709e44b587392d7532c328a168609a1e113e6c533e1c4041fa237da9b074d3d16e34dd49ca1a9f825a7c77b9ff888dd8608882193950aca7472f1f664cc2fdf54f0a0b079e54b53aebbdaab799f31204bc7a6e1ab0c7f86a6c083a93b7a56943c6cf190a3d6d88c0e23a533153f8ace5777a69d6cd0cf4f43f63", 0xb8}], 0x5)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x14403, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
open$dir(&(0x7f0000000000)='./file0/file0\x00', 0x101800, 0x40)

546.13917ms ago: executing program 3 (id=598):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r2, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4)
bind$inet6(r2, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r2, 0x0)
syz_emit_ethernet(0x4a, &(0x7f00000001c0)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x5, 0x10}}}}}}}, 0x0)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x18, r3, 0x1, 0x70bd28, 0x25dfdbfe, {}, [@MPTCP_PM_ATTR_ADDR={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x880}, 0x4000000)
sendmsg$nl_xfrm(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@updsa={0xf0, 0x1a, 0x1, 0x0, 0x0, {{@in6=@private1, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x32}, {@in6=@dev={0xfe, 0x80, '\x00', 0x37}, 0x0, 0x3c}, @in=@loopback, {}, {}, {}, 0x1, 0x0, 0x2, 0x4, 0x0, 0x60}}, 0xf0}}, 0x0)

432.351514ms ago: executing program 3 (id=599):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
r1 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r1, &(0x7f0000000200)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x38, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
pipe(&(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
vmsplice(r4, &(0x7f00000000c0)=[{&(0x7f0000000180)="77690addcfbe1fbb66ec", 0xff3b}], 0x1, 0x1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
splice(r5, 0x0, r4, 0x0, 0x10000008ebc, 0x0)
splice(r3, 0x0, r6, 0x0, 0x25a5, 0x0)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r7, 0xffffffffffffffff, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=@newtfilter={0x478, 0x2c, 0xd27, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r2, {0xe}, {}, {0x8, 0xffe0}}, [@filter_kind_options=@f_basic={{0xa}, {0x448, 0x2, [@TCA_BASIC_POLICE={0x444, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x8, 0x62, 0x2, 0x0, 0xc, 0x2, 0x7fff, 0x0, 0xffffff70, 0x19, 0xffffffa9, 0x2, 0x7, 0x80000001, 0x7, 0x3, 0x9, 0xc, 0x4, 0x6, 0x5d0bef1f, 0x400, 0x5, 0x837, 0xffffffff, 0x9fec, 0x401, 0x2000068, 0x7, 0xdd64, 0x1, 0x8, 0x8001, 0xfffffffe, 0x2, 0x0, 0x200, 0xfff, 0xfffffff1, 0xffff, 0x4, 0xf, 0x7, 0x7469, 0xb, 0x2, 0x200, 0xff32, 0x6, 0xca, 0x4ec1, 0x1, 0x9, 0x80, 0x0, 0x10000, 0x9, 0xb4, 0x7, 0x6, 0x0, 0x0, 0x8156b2a, 0x2, 0xd5c, 0x4, 0xa0, 0x4, 0x267, 0x1, 0x0, 0x81, 0xff, 0x2, 0xe6b, 0x9, 0xa, 0xc8c, 0x1, 0xd2a, 0x6, 0xf4e, 0x9, 0x3a0, 0x3, 0x8, 0x7ff, 0x44, 0x2, 0x9, 0x800, 0x3, 0x8, 0x0, 0x8e5e00, 0x922e, 0x0, 0x8, 0x2, 0xf, 0x4, 0x2, 0x2c000, 0x80, 0x1, 0x1, 0x2, 0x5, 0x0, 0xb, 0x6, 0x0, 0x3365, 0xa82f, 0x5, 0xffffffff, 0x1000, 0x0, 0x4, 0x0, 0x1, 0xc, 0x81, 0x111, 0x7, 0x5c20, 0x7b, 0x0, 0xe, 0x4, 0x6, 0x391, 0x0, 0x0, 0x3, 0x9, 0xc95d90a, 0xff, 0x2, 0x7, 0xd, 0xc7, 0x0, 0x7, 0x0, 0x9, 0xffffffff, 0x9, 0x1, 0x4, 0xd, 0x4, 0xfffffff9, 0x10, 0x2, 0xfff, 0x2, 0x6, 0xe56d, 0x600000, 0x1, 0x6, 0x0, 0x10000, 0x0, 0x3, 0x9, 0x0, 0x1000, 0x6, 0x9, 0x0, 0x10000, 0x81, 0x2, 0xffff6c4b, 0x1, 0x7, 0x5, 0x7fff, 0x8, 0xffffffff, 0x9, 0x6, 0x0, 0x40, 0x67e1, 0x80000000, 0x3, 0x603c, 0x80000004, 0x4, 0x0, 0xfffffff8, 0x7, 0x3, 0x10, 0x400, 0xfffffe00, 0x4, 0x3, 0x0, 0xffff, 0x4, 0x6, 0x8, 0x0, 0x400, 0x1, 0x8a, 0x10, 0x4, 0x0, 0xfffffffd, 0x3, 0x7, 0x616, 0x2, 0x2, 0xd1, 0x2, 0x0, 0x8, 0xe, 0x800, 0x1, 0x4, 0xd87, 0x80000001, 0x48e0, 0x8, 0x9, 0x40, 0x400, 0x5, 0x2, 0x4e1b, 0x1, 0x1000, 0x8, 0x4, 0x3, 0x0, 0x2, 0x9, 0xa2, 0x3, 0x10001, 0xffff, 0x4d, 0xd, 0x8, 0x2, 0x2, 0x8]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x20002, 0x5, 0x1, 0x2, 0xfff, {0x5, 0x0, 0x9c, 0xf9e, 0xfff, 0x7}, {0xf8, 0x2, 0x0, 0x4, 0x6fb}, 0x6, 0x3}}]}]}}]}, 0x478}}, 0x4000)
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r8, &(0x7f00000002c0), 0x40000000000009f, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000000000)={0x2, 0x24e23, @loopback}, 0x10)

431.81073ms ago: executing program 3 (id=600):
socket$nl_route(0x10, 0x3, 0x0) (async)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000080)='rpc_clnt_new\x00', r2, 0x0, 0xb9b}, 0x18)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002100)='numa_maps\x00')
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
read$FUSE(r3, &(0x7f0000004180)={0x2020}, 0x2020)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000080)='rpc_clnt_new\x00', r5, 0x0, 0xb9b}, 0x18) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000080)='rpc_clnt_new\x00', r5, 0x0, 0xb9b}, 0x18)
sendmsg$netlink(r4, &(0x7f0000000040)={0x0, 0x20, &(0x7f0000002580)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="140000002500010000000000f100000006"], 0x14}], 0x1, 0x0, 0x0, 0x400048c0}, 0x0)
r6 = socket(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000200), r6)
getsockname$packet(r6, &(0x7f00000002c0)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
socket(0x11, 0x800000003, 0x0) (async)
r8 = socket(0x11, 0x800000003, 0x0)
setsockopt$packet_fanout(r8, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x2003}, 0x4)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
r9 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r9, 0xc0285700, &(0x7f0000000480)={0x0, "b500e2279c2996817bb959eb2b238deda525e1dbdeffafbf2500"}) (async)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r9, 0xc0285700, &(0x7f0000000480)={0x0, "b500e2279c2996817bb959eb2b238deda525e1dbdeffafbf2500"})
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r7, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}, 0x1, 0x0, 0x0, 0x40800}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x4000800) (async)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x4000800)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000940)=@delchain={0x2c, 0x64, 0xf31, 0xfffffffb, 0x0, {0x0, 0x0, 0x0, r7, {0x0, 0xfff1}, {0xfff3, 0xffff}, {0xa, 0x1b}}, [@TCA_CHAIN={0x8, 0xb, 0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x10}, 0x4000)

147.819796ms ago: executing program 3 (id=601):
socket$packet(0x11, 0x3, 0x300)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="000086dd0000120000000005000060ec97000f982c"], 0xfce)

147.255675ms ago: executing program 1 (id=602):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x2)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_mtu(r1, 0x0, 0xa, &(0x7f0000000240)=0x3, 0x4)
bind$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
r2 = io_uring_setup(0x766a, &(0x7f0000000880)={0x0, 0xd277, 0x0, 0x0, 0x128})
fcntl$setlease(r2, 0x400, 0x1)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000000c0)={<r3=>0x0, 0xa, 0x10, 0x10, 0x3}, &(0x7f0000000440)=0x18)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000140)={r3, @in6={{0xa, 0x4e21, 0x3, @mcast1, 0x1}}, 0x0, 0x0, 0x3f8, 0x3, 0x32}, 0x9c)
bind$inet6(0xffffffffffffffff, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000600)="5845ecf07d9909a518e2606c2fa6d174cfd38bee5ca6593bd966e763f2dadb3cef1bda7b2eb6a37b421472f2a1f65c", 0x2f, 0x0, &(0x7f00000005c0)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}, 0x80007}, 0x1c)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, &(0x7f0000000200)={<r5=>0x0, @in6={{0xa, 0x4e20, 0x6, @private1={0xfc, 0x1, '\x00', 0x1}, 0x18}}, [0x7fff, 0x0, 0x7, 0x1, 0x1, 0x800, 0x178, 0x800, 0xe101, 0x1, 0x2, 0x9, 0x3, 0xfffffffffffffbff, 0xddd]}, &(0x7f0000000000)=0x100)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000040)={r5, 0xd0, &(0x7f00000006c0)=[@in6={0xa, 0x4e22, 0xfd, @remote, 0x7}, @in6={0xa, 0x4e24, 0x8, @private2={0xfc, 0x2, '\x00', 0x1}, 0x2be4}, @in={0x2, 0x4e23, @loopback}, @in6={0xa, 0x4e20, 0x80000001, @dev={0xfe, 0x80, '\x00', 0x1f}, 0xec}, @in={0x2, 0x4e24, @remote}, @in={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0xf}}, @in={0x2, 0x4e24, @multicast2}, @in6={0xa, 0x4e23, 0xc, @rand_addr=' \x01\x00', 0xf6aa}, @in={0x2, 0x4e20, @empty}, @in={0x2, 0x4e22, @empty}]}, &(0x7f0000000300)=0x10)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r6, 0x6, 0x12, &(0x7f0000000040)=0x3, 0x4)
connect$inet6(r6, &(0x7f0000000080)={0xa, 0x0, 0x44b}, 0x1c)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$inet6_tcp_TCP_ULP(r6, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
r7 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
splice(0xffffffffffffffff, &(0x7f0000000040), 0xffffffffffffffff, 0x0, 0x800000000ff, 0x0)
getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, &(0x7f00000004c0)={r3, @in6={{0xa, 0x4e20, 0x9, @private0={0xfc, 0x0, '\x00', 0x1}, 0x3}}, 0x2, 0x7}, &(0x7f0000000580)=0x90)
keyctl$setperm(0x5, r7, 0x0)
r8 = syz_open_dev$video4linux(&(0x7f0000000080), 0x200000000000, 0x0)
ioctl$VIDIOC_SUBDEV_S_FMT(r8, 0xc0305602, &(0x7f0000000640)={0x1, 0x0, {0x4, 0x3, 0x2017, 0x5, 0x8, 0x8, 0x2}})
setsockopt$inet6_tcp_TLS_TX(r6, 0x11a, 0x2, &(0x7f0000000200)=@gcm_256={{0x303, 0x38}, "c04e652c3556c457", "1356bf4c21778b1fbeb34756b53e7103afcc484c704d9a1a793cb7fe54a3f055", "a70ba0d0", "dda97b9420e6902d"}, 0x28)
close_range(r2, 0xffffffffffffffff, 0x0)
r9 = socket$unix(0x1, 0x5, 0x0)
syz_io_uring_setup(0x64b7, &(0x7f0000002600)={0x0, 0xffffff7c, 0x13580, 0x3, 0x35c}, 0x0, 0x0)
setsockopt$sock_int(r9, 0x1, 0x2e, &(0x7f0000000040)=0x80, 0x4)

69.381664ms ago: executing program 1 (id=603):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=@newqdisc={0x3c, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0x6879ce3c39314ddc}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_SPLIT_GSO={0x8}]}}]}, 0x3c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000940)=@gettfilter={0x34, 0x2e, 0x100, 0x70bd2f, 0x25dfdbfd, {0x0, 0x0, 0x0, r2, {0xffe0, 0x1}, {0xd, 0x2}, {0x8, 0xd}}, [{0x8, 0xb, 0x8}, {0x8, 0xb, 0x235}]}, 0x34}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@newtfilter={0x24, 0x2c, 0xd27, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0}, {}, {0x5, 0x9}}}, 0x24}}, 0x0)
r3 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r3, 0x10e, 0xc, &(0x7f0000000100)={0x80000000, 0x0, 0xfffffffc}, 0x10)
write(r3, &(0x7f0000000000)="240000001a005f0214f9f407000904001f000000fe0000000000000008000f00fd000000", 0x24)
r4 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r4, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_ATOMIC(r4, 0xc03864bc, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f})
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r5, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r5, &(0x7f0000000100)={0xa, 0x0, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r5, 0x6, 0x1f, &(0x7f0000000180), 0x4)
r6 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_G_STD(r6, 0x80085617, 0x0)
setsockopt$inet6_tcp_TLS_TX(r5, 0x11a, 0x1, &(0x7f00000001c0)=@gcm_128={{0x303}, "25389c057cab2ebf", "cc00e507e4f88f4679c0d609e5382163", "9d00", "d83600"}, 0x28)
setsockopt$inet6_tcp_TLS_TX(r5, 0x11a, 0x1, &(0x7f0000000140)=@gcm_256={{0x304}, "90000000ade2c400", "0d35db0d4af1cbcce779bbc24b53fc4988c215118dd14cb837de56339a336a19", 'FY\\;', "3db17d5cf18ef0be"}, 0x38)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newtfilter={0x24, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff3}, {}, {0x1c}}}, 0x24}}, 0x0)
write(0xffffffffffffffff, &(0x7f0000000000)="240000005800410f9c00f4f90085b3a85c91fddf080001000501009f0800028001", 0x21)
r7 = add_key(&(0x7f0000000100)='big_key\x00', &(0x7f0000000140)={'syz', 0x3}, &(0x7f0000000180)="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", 0x5c2, 0xffffffffffffffff)
keyctl$update(0x2, r7, &(0x7f0000000780)="e4c44eacae63d4539cdebea5abf4f948a51a9aac20ffb009f8044dbf46fca0b71cc75170fff566282ce84653409e1d713a717f9e6963e444b716af63fd068c3e3451b12a6165bf640b97ba54f7bcdbcb66fb0eaaa3bf0f055f840561e6a293cc5a1080149e9002f38cbd83807eeb9d3d2610825cfbd830286acfae711d2a7529e9760451bb480acf81bee2a6247ceb30c93715fb92a4e5", 0x97)
r8 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r8, &(0x7f0000000280)='cifs.idmap\x00', &(0x7f0000000240)=@chain={'key_or_keyring:', r8})
r9 = add_key$fscrypt_v1(&(0x7f0000000080), &(0x7f0000000840)={'fscrypt:', @desc2}, &(0x7f0000000880)={0x0, "3aefb323954e876ac23527d8d65c26bfbc8f46f92dc9880b5cfa32225b293fbf1a8280e90bfb4ce2478179cbcd6315ea4e349e6a753f60c0164b66e6b249a5ad", 0x28}, 0x48, r8)
keyctl$read(0xb, r9, &(0x7f0000002940)=""/4108, 0x5df)
socket$netlink(0x10, 0x3, 0x0)

68.672566ms ago: executing program 3 (id=604):
r0 = openat$drirender128(0xffffffffffffff9c, &(0x7f0000000000), 0x80, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(0xffffffffffffffff, 0xc01064c2, &(0x7f0000000040)={<r1=>0x0}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_FD(0xffffffffffffffff, 0xc01064c2, &(0x7f0000000080)={<r2=>0x0})
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(0xffffffffffffffff, 0xc01064c2, &(0x7f00000000c0)={<r3=>0x0}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000000100)={<r4=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_RESET(r0, 0xc01064c4, &(0x7f0000000180)={&(0x7f0000000140)=[r1, r2, r3, r4], 0x4})
r5 = syz_open_dev$vivid(&(0x7f00000001c0), 0x3, 0x2)
ioctl$VIDIOC_S_CROP(r5, 0x4014563c, &(0x7f0000000200)={0x1, {0x48, 0x7, 0x80}}) (async)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f00000006c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000680)={&(0x7f0000000280)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xeda636cd02a8bdfb}}, [@NFT_MSG_NEWTABLE={0xfc, 0x0, 0xa, 0xeee1a44f005f26a1, 0x0, 0x0, {0x7, 0x0, 0xa}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_USERDATA={0x9d, 0x6, "6413f135a9ae0de9759c13927fffb28a487f758e707f497fc238282266f42557cbf9a3a86154037879ce8fe8bf666369a307ff4ed5a009b7c69526bb81fbbb7ead5125c64636d94ea5f7c9561c6f77c12546e21602baa00ffbd33c9f385256c26838064d848e8b4e52df7c1785ae8b0054bdea31543b37a90cf07e42a8a5e68a058871dbbb3911b8c4c1659e11872a668199eeba1a0261c880"}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_DELOBJ={0xf4, 0x14, 0xa, 0x401, 0x0, 0x0, {0x0, 0x0, 0x5}, [@NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x4}, @NFTA_OBJ_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_OBJ_USERDATA={0xba, 0x8, "919e4cd522d1136bfee20023052b39909061949a6afaadf7c5b9fd21d22dd0c3ef84c939303882dcac9b24e92f6fb0f43df84f2985f4f9a5db51ebad8e40d0cf0047a8f40202ba0597eae82d5029e90399cadcaaaadf1e0b16de2102b37dd990e8b8be6f3004373197671474dafb20bfe7b38542a4315f7b6bd14ec40bb1817712b6b162eb3c2dd436818fd4d509622770080d99d34801b98ef0cc9059f710f264061cecd43ea5d73977c55355b05b66d60b6e37e4f2"}]}, @NFT_MSG_DELTABLE={0x3c, 0x2, 0xa, 0x301, 0x0, 0x0, {0x5, 0x0, 0xa}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x3}]}, @NFT_MSG_DELFLOWTABLE={0x154, 0x18, 0xa, 0x5, 0x0, 0x0, {0x7, 0x0, 0x1}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x1c, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 'macsec0\x00'}]}]}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x4}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_FLOWTABLE_HOOK={0xf0, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_DEVS={0x40, 0x3, 0x0, 0x1, [{0x14, 0x1, 'veth0_to_bond\x00'}, {0x14, 0x1, 'veth0_to_bridge\x00'}, {0x14, 0x1, 'team_slave_0\x00'}]}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_DEVS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 'bond0\x00'}]}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_DEVS={0x2c, 0x3, 0x0, 0x1, [{0x14, 0x1, 'syz_tun\x00'}, {0x14, 0x1, 'netpci0\x00'}]}, @NFTA_FLOWTABLE_HOOK_DEVS={0x40, 0x3, 0x0, 0x1, [{0x14, 0x1, 'veth1_macvtap\x00'}, {0x14, 0x1, 'veth1_to_team\x00'}, {0x14, 0x1, 'nr0\x00'}]}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x5}]}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x2}, @NFTA_FLOWTABLE_FLAGS={0x8}]}, @NFT_MSG_DELSET={0x28, 0xb, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x2}, [@NFTA_SET_ID={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0xa}}}, 0x3d0}, 0x1, 0x0, 0x0, 0x4008894}, 0x800) (async)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x440000, 0x0) (async)
ioctl$DRM_IOCTL_GEM_CLOSE(r0, 0x40086409, &(0x7f0000000740))
socket$packet(0x11, 0x3, 0x300)
r7 = openat$drirender128(0xffffffffffffff9c, &(0x7f0000000780), 0x1050c2, 0x0)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000800)={&(0x7f00000007c0)=[<r8=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x7}) (async)
ioctl$DRM_IOCTL_MODE_GETPLANE(0xffffffffffffffff, 0xc02064b6, &(0x7f0000000880)={0x0, <r9=>0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000840)=[0x0]}) (async)
ioctl$DRM_IOCTL_MODE_GET_LEASE(r0, 0xc01064c8, &(0x7f0000000900)={0x5, 0x0, &(0x7f00000008c0)=[<r10=>0x0, <r11=>0x0, <r12=>0x0, <r13=>0x0, <r14=>0x0]})
ioctl$DRM_IOCTL_MODE_SETPLANE(r7, 0xc03064b7, &(0x7f0000000940)={r8, r9, r11, 0xfff, 0x1f, 0x7f26, 0x2, 0x2, 0x6c27a9a1, 0x3, 0x100, 0x3}) (async)
recvmmsg(r6, &(0x7f0000002f40)=[{{&(0x7f0000000980)=@pptp, 0x80, &(0x7f0000000b40)=[{&(0x7f0000000a00)=""/53, 0x35}, {&(0x7f0000000a40)=""/199, 0xc7}], 0x2}}, {{&(0x7f0000000b80)=@xdp, 0x80, &(0x7f0000000d00)=[{&(0x7f0000000c00)=""/245, 0xf5}], 0x1, &(0x7f0000000d40)=""/4096, 0x1000}, 0xe}, {{&(0x7f0000001d40)=@pppol2tpin6={0x18, 0x1, {0x0, <r15=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @private1}}}, 0x80, &(0x7f0000001f00)=[{&(0x7f0000001dc0)=""/230, 0xe6}, {&(0x7f0000001ec0)=""/55, 0x37}], 0x2, &(0x7f0000001f40)=""/4096, 0x1000}, 0x3}], 0x3, 0x40000160, &(0x7f0000003000)={0x0, 0x989680})
fsetxattr$security_ima(r15, &(0x7f0000003040), &(0x7f0000003080)=@v2={0x3, 0x0, 0x14, 0x8}, 0x9, 0x0)
r16 = openat$ppp(0xffffffffffffff9c, &(0x7f00000030c0), 0x101100, 0x0)
ioctl$PPPIOCSACTIVE(r16, 0x40107446, &(0x7f0000003140)={0x6, &(0x7f0000003100)=[{0x8, 0x0, 0xc7, 0x2}, {0x4374, 0x8, 0x3, 0x6b1c}, {0x4, 0x4, 0x10, 0x8}, {0xf0c, 0x3, 0x3, 0x4}, {0x9, 0x3b, 0x0, 0xa6}, {0x40, 0x0, 0x4, 0x9}]}) (async)
r17 = openat$drirender128(0xffffffffffffff9c, &(0x7f0000003180), 0x200000, 0x0)
ioctl$DRM_IOCTL_MODE_GET_LEASE(r0, 0xc01064c8, &(0x7f0000003200)={0x4, 0x0, &(0x7f00000031c0)=[<r18=>0x0, 0x0, 0x0, 0x0]})
ioctl$DRM_IOCTL_MODE_SETCRTC(r17, 0xc06864a2, &(0x7f0000003280)={&(0x7f0000003240)=[r13, r10, r13, r10, r14, r11, r18, r12], 0x8, r12, r14, 0x0, 0x3, 0x7, 0x3, {0x6, 0x8000, 0x7, 0x2, 0x1000, 0xf000, 0x7, 0x6, 0x9625, 0x10, 0x844, 0x3, 0x0, 0x4, "f67d7780e5b5b9fea82e655ba67479402811b6e6992135e943fd1476a5b47819"}}) (async)
close_range(r17, r16, 0x2)
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000003300)) (async)
r19 = bpf$ITER_CREATE(0x21, &(0x7f0000003340), 0x8)
ioctl$DRM_IOCTL_MODE_REVOKE_LEASE(r19, 0xc00464c9, &(0x7f0000003400))

68.415571ms ago: executing program 1 (id=605):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(&(0x7f0000000100), r0)
sendmsg$BATADV_CMD_GET_VLAN(r0, &(0x7f0000000380)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000280)={0x0, 0x50}, 0x1, 0x0, 0x0, 0x4009044}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010024bd7000fcdbdf252100000008000300", @ANYRES32=r2, @ANYBLOB="14002c80080000"], 0x30}, 0x1, 0x0, 0x3000000, 0x4014001}, 0x9590f6cc3ea35512)

360.381µs ago: executing program 3 (id=606):
syz_io_uring_setup(0x19f2, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000140)=<r0=>0x0, &(0x7f0000000100)=<r1=>0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='pids.events\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000000180)=ANY=[@ANYRES64=r2], 0x118)
r4 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x200, 0x0)
close(r4)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x11, r3, 0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x0, 0x0, r3, 0x0})
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_S_INPUT(r7, 0xc0045627, &(0x7f0000000100)=0x3)
ioctl$VIDIOC_SUBDEV_QUERY_DV_TIMINGS(r7, 0x80845663, &(0x7f0000000140)={0x0, @reserved})
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000020303000000000000000000000000100800011001000000"], 0x1c}}, 0x0)
sendmsg$NFQNL_MSG_VERDICT(r8, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000b80)={&(0x7f00000000c0)=ANY=[@ANYBLOB="20000000010301"], 0x20}}, 0x0)
ioctl$VIDIOC_S_AUDOUT(r3, 0x40345632, &(0x7f0000000280)={0x8, "71ced08e70bba0993de9de04c1c20c99156ad59d7e307be3bc659dfdf611231c", 0x5})
r9 = syz_genetlink_get_family_id$nbd(&(0x7f00000007c0), 0xffffffffffffffff)
syz_extract_tcp_res$synack(&(0x7f0000000000)={<r10=>0x41424344}, 0x1, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaaaabbbbbbbbbbbb0800450000280068000000069078ac1414bbffffffff4e204e22", @ANYRES32=0x41424344, @ANYRES32=r10, @ANYBLOB="5cc200069078002b"], 0x0)
syz_extract_tcp_res$synack(&(0x7f0000000000)={<r11=>0x41424344}, 0x1, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)={@local, @multicast, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x68, 0x0, 0x0, 0x6, 0x0, @remote, @broadcast}, {{0x4e20, 0x4e22, 0x41424344, r11, 0x0, 0x6, 0x5, 0xc2, 0x6, 0x0, 0x2}}}}}}, 0x0)
syz_emit_ethernet(0x10de, &(0x7f0000002700)=ANY=[@ANYBLOB="5d6d1d86fb05aaaaaaaaaabb81004c0088470000000000000000000007000000715300004f9810bc00640000b0069078ffffffff00000000830f88ac1414bbac14142fe0000001018655000000010702070ab09fd7ec7715dd000611cfa6fa68e9ea87be4014e4316a931d0705e59bbc010c70b362d11b0e6b41246b0612fcc09556f795236d4f9f2d27db0bb0ab010330010c580e0d88b2c76ee678b00000004e22", @ANYRES32=r10, @ANYRES32=r11, @ANYBLOB="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"], &(0x7f00000002c0)={0x1, 0x2, [0xcf4, 0x55f, 0xf19, 0xdbd]})
sendmsg$NBD_CMD_CONNECT(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000140)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="010000000000ffdbdf25010000000c00040002000000000000000c00060001000000000000000c00020007000000000000000c00080001000000000000001c0007"], 0x60}}, 0x0)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000380)={'nicvf0\x00', &(0x7f0000000300)=@ethtool_gstrings={0x1b, 0x5, 0x74, "55e01b28f6686dee4ec967e206ef548138f2eedce853c1c31d9f433e9c32b56a0e279438ebf38155c413008b6cdd5ca416127c97dd4191b9fc64bdde9a7c1ab55c32e2af51dcb8ff9c313d16ed4f0217fc6c3b59810a6f51637322e61c6d232b8fb81ff9d6713769be984ff2654773fc3f3c085d"}})
read$FUSE(r3, &(0x7f00000006c0)={0x2020}, 0x2020)
r12 = socket$kcm(0x10, 0x2, 0x0)
r13 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_int(r13, 0x0, 0x18, &(0x7f0000000140)=0xffffffff, 0x4)
sendmsg$inet(r12, &(0x7f0000000080)={0x0, 0x8000000, &(0x7f0000000680)=[{&(0x7f0000000000)="5c00000014006b05c84e21000ab16d6e230675f802000000440002005817d30461bc24eeb556a705251e6182149a36c23d3b48dfd8cdbf9367b098fa51f60a64c9f408000000e786a6d0bdd70000b6c0504bb9189d9193e9bd1c1b78", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)

0s ago: executing program 1 (id=607):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c)
syz_emit_ethernet(0xbe, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c20000000800450000b00000000000119078000000000000000000004e20009c907801000000000000007b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af584cbf2649a50f2dbc43efa8698000000051852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424dbcfd56f1373669caaa2f19935e6996c7096ffe4f3a4745a8f762b9649a3bfbc1f39cb307b3472eb9cdb042d2643fcbb2c5a57df67d544af6e8dafe09"], 0x0)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0x1, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1}, 0x50)
recvmmsg(r0, &(0x7f00000057c0)=[{{0x0, 0x0, 0x0}, 0x3}, {{0x0, 0x0, &(0x7f0000002cc0)=[{0x0}, {&(0x7f00000017c0)=""/130, 0x94}], 0x2}, 0xa1}], 0x2, 0x0, 0x0)

0s ago: executing program 3 (id=608):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x222141, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000009000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x74, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=@newlink={0x3c, 0x10, 0x1, 0xfffffffd, 0xfffffffc, {0x0, 0x0, 0x0, 0x0, 0x0, 0x448}, [@IFLA_GROUP={0x8}, @IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x2, 0x0, 0x1, {0xc, 0x1, 0x0, 0x1, [{0x8, 0xf, 0x0, 0x0, 0x6}]}}]}]}, 0x3c}}, 0x0)
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r4, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
setsockopt$sock_linger(r4, 0x1, 0xd, &(0x7f0000000140)={0x6, 0x6d}, 0x8)
r5 = eventfd(0x0)
ioctl$KVM_HYPERV_EVENTFD(r1, 0x4018aebd, &(0x7f00000004c0)={0x3, r5})
close(r1)
r6 = socket$kcm(0x2, 0x3, 0x2)
r7 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000100)="4c000000140097f87059ae08060c040002ff0f0200000000000001870182fa73a69d35a2cca84708f7abca1b4e7d06a6bd7c493872f750375ed08a560400000003c48f93b82a03000000461e", 0x4c}], 0x1}, 0x0)
r8 = syz_open_dev$vim2m(&(0x7f0000000040), 0x8, 0x2)
writev(r8, &(0x7f0000000000)=[{&(0x7f0000000300)="2c76cd", 0xca800}, {0x0}], 0x2)
getsockopt$sock_buf(r4, 0x1, 0x1f, 0x0, &(0x7f00000001c0))
r9 = openat$sndtimer(0xffffffffffffff9c, &(0x7f00000001c0), 0x0)
ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r9, 0xc0505405, &(0x7f0000000000)={{0xffffffffffffffff, 0x0, 0x9}, 0x3})
ioctl$SNDRV_TIMER_IOCTL_SELECT(r9, 0x40345410, &(0x7f0000000040)={{0x0, 0x3, 0x4, 0x0, 0x80000000}})
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x1, 0x2, 0x0, @void, @value}, 0x28)
syz_clone3(&(0x7f0000000440)={0x9202000, &(0x7f0000000240)=<r10=>0xffffffffffffffff, &(0x7f0000000280), &(0x7f00000002c0), {0x17}, &(0x7f0000000300)=""/8, 0x8, &(0x7f0000000340)=""/2, &(0x7f00000003c0)=[0x0, 0xffffffffffffffff, 0x0], 0x3}, 0x58)
pidfd_getfd(r10, r6, 0x0)
ioctl$KVM_SET_MEMORY_ATTRIBUTES(r1, 0x4020aed2, &(0x7f0000000500)={0x2000})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000000)={0x40000000, 0x0, 0x0}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)

kernel console output (not intermixed with test programs):

ctors = 1 limit=0
[   55.350977][ T6343] tipc: Started in network mode
[   55.352665][ T6343] tipc: Node identity , cluster identity 4711
[   55.354361][ T6343] tipc: Failed to set node id, please configure manually
[   55.358507][ T6343] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[   55.360205][ T6345] FAULT_INJECTION: forcing a failure.
[   55.360205][ T6345] name failslab, interval 1, probability 0, space 0, times 0
[   55.363498][ T6343] ptm ptm1: ldisc open failed (-12), clearing slot 1
[   55.365568][ T6345] CPU: 2 UID: 0 PID: 6345 Comm: syz.1.131 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   55.365591][ T6345] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   55.365602][ T6345] Call Trace:
[   55.365608][ T6345]  <TASK>
[   55.365614][ T6345]  dump_stack_lvl+0x16c/0x1f0
[   55.365640][ T6345]  should_fail_ex+0x512/0x640
[   55.365656][ T6345]  ? is_bpf_text_address+0x94/0x1a0
[   55.365678][ T6345]  should_failslab+0xc2/0x120
[   55.365695][ T6345]  kmem_cache_alloc_noprof+0x6d/0x3b0
[   55.365712][ T6345]  ? inet_frag_find+0x57d/0x2020
[   55.365737][ T6345]  inet_frag_find+0x57d/0x2020
[   55.365765][ T6345]  ? __pfx_ip4_obj_cmpfn+0x10/0x10
[   55.365787][ T6345]  ? __pfx_ip4_key_hashfn+0x10/0x10
[   55.365804][ T6345]  ? stack_depot_save_flags+0x28/0xa50
[   55.365825][ T6345]  ? __pfx_inet_frag_find+0x10/0x10
[   55.365849][ T6345]  ? __kasan_slab_alloc+0x89/0x90
[   55.365865][ T6345]  ? kmem_cache_alloc_noprof+0x1cb/0x3b0
[   55.365880][ T6345]  ? skb_clone+0x190/0x3f0
[   55.365898][ T6345]  ? dev_queue_xmit_nit+0x3e7/0xca0
[   55.365923][ T6345]  ip_defrag+0x2e7/0x27c0
[   55.365939][ T6345]  ? ip_send_skb+0x3e8/0x560
[   55.365959][ T6345]  ? udp_send_skb+0x71d/0x15b0
[   55.365977][ T6345]  ? inet_sendmsg+0x105/0x140
[   55.365999][ T6345]  ? sock_write_iter+0x4aa/0x5b0
[   55.366022][ T6345]  ? do_syscall_64+0xcd/0x260
[   55.366042][ T6345]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.366064][ T6345]  ? __pfx_ip_defrag+0x10/0x10
[   55.366082][ T6345]  ? __asan_memcpy+0x3c/0x60
[   55.366116][ T6345]  ip_check_defrag+0x462/0x670
[   55.366136][ T6345]  ? __pfx_ip_check_defrag+0x10/0x10
[   55.366156][ T6345]  ? __asan_memcpy+0x3c/0x60
[   55.366180][ T6345]  ? __asan_memcpy+0x3c/0x60
[   55.366206][ T6345]  packet_rcv_fanout+0x4e3/0x780
[   55.366232][ T6345]  ? __pfx_packet_rcv_fanout+0x10/0x10
[   55.366258][ T6345]  dev_queue_xmit_nit+0x8f1/0xca0
[   55.366285][ T6345]  dev_hard_start_xmit+0x5b6/0x740
[   55.366307][ T6345]  __dev_queue_xmit+0x7eb/0x43e0
[   55.366328][ T6345]  ? arch_stack_walk+0xa6/0x100
[   55.366355][ T6345]  ? __pfx___dev_queue_xmit+0x10/0x10
[   55.366374][ T6345]  ? stack_trace_save+0x8e/0xc0
[   55.366400][ T6345]  ? __lock_acquire+0xaa4/0x1ba0
[   55.366419][ T6345]  ? kasan_save_stack+0x42/0x60
[   55.366443][ T6345]  ? find_held_lock+0x2b/0x80
[   55.366470][ T6345]  neigh_connected_output+0x3da/0x620
[   55.366501][ T6345]  ip_finish_output2+0x7f5/0x21a0
[   55.366524][ T6345]  ? do_csum+0x26f/0x2d0
[   55.366548][ T6345]  ? __pfx_ip_finish_output2+0x10/0x10
[   55.366569][ T6345]  ? ip_fraglist_prepare+0x480/0x640
[   55.366595][ T6345]  ip_do_fragment+0x12cb/0x18b0
[   55.366616][ T6345]  ? __pfx_ip_finish_output2+0x10/0x10
[   55.366647][ T6345]  ? __pfx_ip_do_fragment+0x10/0x10
[   55.366672][ T6345]  ? ip_skb_dst_mtu+0x487/0xe90
[   55.366696][ T6345]  ? ip_skb_dst_mtu+0x496/0xe90
[   55.366718][ T6345]  ip_fragment.constprop.0+0x161/0x230
[   55.366741][ T6345]  __ip_finish_output+0x2fc/0x950
[   55.366781][ T6345]  ip_finish_output+0x35/0x380
[   55.366804][ T6345]  ip_output+0x13b/0x2a0
[   55.366823][ T6345]  ? __pfx_ip_output+0x10/0x10
[   55.366844][ T6345]  ip_send_skb+0x3e8/0x560
[   55.366867][ T6345]  udp_send_skb+0x71d/0x15b0
[   55.366894][ T6345]  udp_sendmsg+0x1329/0x29e0
[   55.366917][ T6345]  ? __pfx_ip_generic_getfrag+0x10/0x10
[   55.366937][ T6345]  ? avc_has_perm_noaudit+0x149/0x3b0
[   55.366956][ T6345]  ? __pfx_udp_sendmsg+0x10/0x10
[   55.366976][ T6345]  ? avc_has_perm+0x11a/0x1c0
[   55.367004][ T6345]  ? sock_has_perm+0x259/0x2f0
[   55.367022][ T6345]  ? __pfx_sock_has_perm+0x10/0x10
[   55.367049][ T6345]  ? inode_has_perm+0x16f/0x1d0
[   55.367068][ T6345]  ? __pfx_udp_sendmsg+0x10/0x10
[   55.367089][ T6345]  inet_sendmsg+0x105/0x140
[   55.367113][ T6345]  sock_write_iter+0x4aa/0x5b0
[   55.367137][ T6345]  ? __pfx_sock_write_iter+0x10/0x10
[   55.367170][ T6345]  ? bpf_lsm_file_permission+0x9/0x10
[   55.367193][ T6345]  ? security_file_permission+0x71/0x210
[   55.367217][ T6345]  ? rw_verify_area+0xcf/0x680
[   55.367242][ T6345]  vfs_write+0x5ba/0x1180
[   55.367257][ T6345]  ? __pfx_sock_write_iter+0x10/0x10
[   55.367284][ T6345]  ? __pfx_vfs_write+0x10/0x10
[   55.367296][ T6345]  ? find_held_lock+0x2b/0x80
[   55.367332][ T6345]  ksys_write+0x205/0x240
[   55.367346][ T6345]  ? __pfx_ksys_write+0x10/0x10
[   55.367358][ T6345]  ? rcu_is_watching+0x12/0xc0
[   55.367385][ T6345]  do_syscall_64+0xcd/0x260
[   55.367408][ T6345]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.367424][ T6345] RIP: 0033:0x7fba8878d169
[   55.367438][ T6345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   55.367453][ T6345] RSP: 002b:00007fba865f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   55.367468][ T6345] RAX: ffffffffffffffda RBX: 00007fba889a5fa0 RCX: 00007fba8878d169
[   55.367478][ T6345] RDX: 00000000000005b0 RSI: 0000200000000300 RDI: 0000000000000004
[   55.367487][ T6345] RBP: 00007fba865f6090 R08: 0000000000000000 R09: 0000000000000000
[   55.367495][ T6345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   55.367504][ T6345] R13: 0000000000000000 R14: 00007fba889a5fa0 R15: 00007ffefd9f54f8
[   55.367526][ T6345]  </TASK>
[   55.468278][   T40] kauditd_printk_skb: 60 callbacks suppressed
[   55.468288][   T40] audit: type=1400 audit(1744252709.716:265): avc:  denied  { remove_name } for  pid=6353 comm="rm" name="resolv.conf.sl0.link" dev="tmpfs" ino=2445 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   55.535669][   T40] audit: type=1400 audit(1744252709.716:266): avc:  denied  { unlink } for  pid=6353 comm="rm" name="resolv.conf.sl0.link" dev="tmpfs" ino=2445 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   55.594919][   T34] usb 8-1: new full-speed USB device number 3 using dummy_hcd
[   55.695542][   T40] audit: type=1400 audit(1744252709.936:267): avc:  denied  { mount } for  pid=6366 comm="syz.1.134" name="/" dev="configfs" ino=3075 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[   55.702371][   T40] audit: type=1400 audit(1744252709.946:268): avc:  denied  { search } for  pid=6366 comm="syz.1.134" name="/" dev="configfs" ino=3075 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[   55.746238][   T34] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   55.749075][   T34] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   55.752484][   T34] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   55.755490][   T34] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   55.963424][   T34] usb 8-1: usb_control_msg returned -32
[   55.965160][   T34] usbtmc 8-1:16.0: can't read capabilities
[   56.081267][   T40] audit: type=1400 audit(1744252710.326:269): avc:  denied  { bind } for  pid=6382 comm="syz.1.141" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[   56.095962][ T6385] FAULT_INJECTION: forcing a failure.
[   56.095962][ T6385] name failslab, interval 1, probability 0, space 0, times 0
[   56.099665][ T6385] CPU: 0 UID: 0 PID: 6385 Comm: syz.2.142 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   56.099678][ T6385] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   56.099684][ T6385] Call Trace:
[   56.099687][ T6385]  <TASK>
[   56.099691][ T6385]  dump_stack_lvl+0x16c/0x1f0
[   56.099721][ T6385]  should_fail_ex+0x512/0x640
[   56.099738][ T6385]  should_failslab+0xc2/0x120
[   56.099749][ T6385]  kmem_cache_alloc_noprof+0x6d/0x3b0
[   56.099760][ T6385]  ? skb_clone+0x190/0x3f0
[   56.099776][ T6385]  skb_clone+0x190/0x3f0
[   56.099789][ T6385]  dev_queue_xmit_nit+0x3e7/0xca0
[   56.099801][ T6385]  ? __pfx_match_fanout_group+0x10/0x10
[   56.099816][ T6385]  dev_hard_start_xmit+0x5b6/0x740
[   56.099830][ T6385]  __dev_queue_xmit+0x7eb/0x43e0
[   56.099841][ T6385]  ? arch_stack_walk+0xa6/0x100
[   56.099857][ T6385]  ? __pfx___dev_queue_xmit+0x10/0x10
[   56.099868][ T6385]  ? stack_trace_save+0x8e/0xc0
[   56.099883][ T6385]  ? __lock_acquire+0xaa4/0x1ba0
[   56.099893][ T6385]  ? kasan_save_stack+0x42/0x60
[   56.099907][ T6385]  ? find_held_lock+0x2b/0x80
[   56.099922][ T6385]  neigh_connected_output+0x3da/0x620
[   56.099939][ T6385]  ip_finish_output2+0x7f5/0x21a0
[   56.099953][ T6385]  ? do_csum+0x26f/0x2d0
[   56.099967][ T6385]  ? __pfx_ip_finish_output2+0x10/0x10
[   56.099979][ T6385]  ? ip_fraglist_prepare+0x480/0x640
[   56.099994][ T6385]  ip_do_fragment+0x12cb/0x18b0
[   56.100007][ T6385]  ? __pfx_ip_finish_output2+0x10/0x10
[   56.100028][ T6385]  ? __pfx_ip_do_fragment+0x10/0x10
[   56.100042][ T6385]  ? ip_skb_dst_mtu+0x487/0xe90
[   56.100056][ T6385]  ? ip_skb_dst_mtu+0x496/0xe90
[   56.100069][ T6385]  ip_fragment.constprop.0+0x161/0x230
[   56.100083][ T6385]  __ip_finish_output+0x2fc/0x950
[   56.100097][ T6385]  ip_finish_output+0x35/0x380
[   56.100111][ T6385]  ip_output+0x13b/0x2a0
[   56.100123][ T6385]  ? __pfx_ip_output+0x10/0x10
[   56.100135][ T6385]  ip_send_skb+0x3e8/0x560
[   56.100149][ T6385]  udp_send_skb+0x71d/0x15b0
[   56.100165][ T6385]  udp_sendmsg+0x1329/0x29e0
[   56.100200][ T6385]  ? __pfx_ip_generic_getfrag+0x10/0x10
[   56.100213][ T6385]  ? avc_has_perm_noaudit+0x149/0x3b0
[   56.100224][ T6385]  ? __pfx_udp_sendmsg+0x10/0x10
[   56.100235][ T6385]  ? avc_has_perm+0x11a/0x1c0
[   56.100251][ T6385]  ? sock_has_perm+0x259/0x2f0
[   56.100261][ T6385]  ? __pfx_sock_has_perm+0x10/0x10
[   56.100277][ T6385]  ? inode_has_perm+0x16f/0x1d0
[   56.100287][ T6385]  ? __pfx_udp_sendmsg+0x10/0x10
[   56.100300][ T6385]  inet_sendmsg+0x105/0x140
[   56.100315][ T6385]  sock_write_iter+0x4aa/0x5b0
[   56.100330][ T6385]  ? __pfx_sock_write_iter+0x10/0x10
[   56.100348][ T6385]  ? bpf_lsm_file_permission+0x9/0x10
[   56.100362][ T6385]  ? security_file_permission+0x71/0x210
[   56.100376][ T6385]  ? rw_verify_area+0xcf/0x680
[   56.100391][ T6385]  vfs_write+0x5ba/0x1180
[   56.100400][ T6385]  ? __pfx_sock_write_iter+0x10/0x10
[   56.100415][ T6385]  ? __pfx_vfs_write+0x10/0x10
[   56.100422][ T6385]  ? find_held_lock+0x2b/0x80
[   56.100442][ T6385]  ksys_write+0x205/0x240
[   56.100450][ T6385]  ? __pfx_ksys_write+0x10/0x10
[   56.100458][ T6385]  ? rcu_is_watching+0x12/0xc0
[   56.100473][ T6385]  do_syscall_64+0xcd/0x260
[   56.100487][ T6385]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.100497][ T6385] RIP: 0033:0x7f4c06b8d169
[   56.100505][ T6385] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.100514][ T6385] RSP: 002b:00007f4c07a8d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   56.100523][ T6385] RAX: ffffffffffffffda RBX: 00007f4c06da5fa0 RCX: 00007f4c06b8d169
[   56.100529][ T6385] RDX: 00000000000005b0 RSI: 0000200000000300 RDI: 0000000000000004
[   56.100534][ T6385] RBP: 00007f4c07a8d090 R08: 0000000000000000 R09: 0000000000000000
[   56.100540][ T6385] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   56.100545][ T6385] R13: 0000000000000000 R14: 00007f4c06da5fa0 R15: 00007ffe877fb098
[   56.100557][ T6385]  </TASK>
[   56.242666][   T40] audit: type=1400 audit(1744252710.486:270): avc:  denied  { create } for  pid=6386 comm="syz.1.143" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   56.250067][   T40] audit: type=1400 audit(1744252710.486:271): avc:  denied  { bind } for  pid=6386 comm="syz.1.143" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   56.257406][   T40] audit: type=1400 audit(1744252710.496:272): avc:  denied  { write } for  pid=6386 comm="syz.1.143" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   56.266769][ T6387] xt_time: invalid argument - start or stop time greater than 23:59:59
[   56.300085][ T6391] No buffer was provided with the request
[   56.416773][   T40] audit: type=1400 audit(1744252710.666:273): avc:  denied  { kexec_image_load } for  pid=6398 comm="syz.2.148" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[   56.527703][ T6403] FAULT_INJECTION: forcing a failure.
[   56.527703][ T6403] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   56.531845][ T6403] CPU: 3 UID: 0 PID: 6403 Comm: syz.2.150 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   56.531869][ T6403] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   56.531879][ T6403] Call Trace:
[   56.531884][ T6403]  <TASK>
[   56.531891][ T6403]  dump_stack_lvl+0x16c/0x1f0
[   56.531930][ T6403]  should_fail_ex+0x512/0x640
[   56.531958][ T6403]  _copy_from_user+0x2e/0xd0
[   56.531979][ T6403]  copy_msghdr_from_user+0x98/0x160
[   56.532000][ T6403]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[   56.532032][ T6403]  ___sys_sendmsg+0xfe/0x1d0
[   56.532052][ T6403]  ? __pfx____sys_sendmsg+0x10/0x10
[   56.532102][ T6403]  __sys_sendmsg+0x16d/0x220
[   56.532122][ T6403]  ? __pfx___sys_sendmsg+0x10/0x10
[   56.532149][ T6403]  ? rcu_is_watching+0x12/0xc0
[   56.532195][ T6403]  do_syscall_64+0xcd/0x260
[   56.532218][ T6403]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.532232][ T6403] RIP: 0033:0x7f4c06b8d169
[   56.532243][ T6403] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.532257][ T6403] RSP: 002b:00007f4c07a8d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   56.532272][ T6403] RAX: ffffffffffffffda RBX: 00007f4c06da5fa0 RCX: 00007f4c06b8d169
[   56.532282][ T6403] RDX: 0000000000004000 RSI: 0000200000000280 RDI: 0000000000000003
[   56.532291][ T6403] RBP: 00007f4c07a8d090 R08: 0000000000000000 R09: 0000000000000000
[   56.532300][ T6403] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   56.532309][ T6403] R13: 0000000000000000 R14: 00007f4c06da5fa0 R15: 00007ffe877fb098
[   56.532332][ T6403]  </TASK>
[   56.586631][    C3] vkms_vblank_simulate: vblank timer overrun
[   56.681225][ T6411] isofs_fill_super: bread failed, dev=sr0, iso_blknum=32, block=32
[   56.699341][   T40] audit: type=1400 audit(1744252710.946:274): avc:  denied  { write } for  pid=6404 comm="syz.1.151" laddr=::1 faddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   56.891150][ T6428] FAULT_INJECTION: forcing a failure.
[   56.891150][ T6428] name failslab, interval 1, probability 0, space 0, times 0
[   56.894694][ T6428] CPU: 1 UID: 0 PID: 6428 Comm: syz.1.160 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   56.894707][ T6428] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   56.894714][ T6428] Call Trace:
[   56.894717][ T6428]  <TASK>
[   56.894721][ T6428]  dump_stack_lvl+0x16c/0x1f0
[   56.894748][ T6428]  should_fail_ex+0x512/0x640
[   56.894775][ T6428]  should_failslab+0xc2/0x120
[   56.894787][ T6428]  kmem_cache_alloc_noprof+0x6d/0x3b0
[   56.894798][ T6428]  ? skb_clone+0x190/0x3f0
[   56.894813][ T6428]  skb_clone+0x190/0x3f0
[   56.894825][ T6428]  dev_queue_xmit_nit+0x3e7/0xca0
[   56.894837][ T6428]  ? __pfx_match_fanout_group+0x10/0x10
[   56.894853][ T6428]  dev_hard_start_xmit+0x5b6/0x740
[   56.894866][ T6428]  __dev_queue_xmit+0x7eb/0x43e0
[   56.894878][ T6428]  ? arch_stack_walk+0xa6/0x100
[   56.894894][ T6428]  ? __pfx___dev_queue_xmit+0x10/0x10
[   56.894904][ T6428]  ? stack_trace_save+0x8e/0xc0
[   56.894923][ T6428]  ? __lock_acquire+0xaa4/0x1ba0
[   56.894934][ T6428]  ? kasan_save_stack+0x42/0x60
[   56.894948][ T6428]  ? find_held_lock+0x2b/0x80
[   56.894964][ T6428]  neigh_connected_output+0x3da/0x620
[   56.894981][ T6428]  ip_finish_output2+0x7f5/0x21a0
[   56.894996][ T6428]  ? do_csum+0x26f/0x2d0
[   56.895009][ T6428]  ? __pfx_ip_finish_output2+0x10/0x10
[   56.895022][ T6428]  ? ip_fraglist_prepare+0x480/0x640
[   56.895040][ T6428]  ip_do_fragment+0x12cb/0x18b0
[   56.895053][ T6428]  ? __pfx_ip_finish_output2+0x10/0x10
[   56.895070][ T6428]  ? __pfx_ip_do_fragment+0x10/0x10
[   56.895084][ T6428]  ? ip_skb_dst_mtu+0x487/0xe90
[   56.895098][ T6428]  ? ip_skb_dst_mtu+0x496/0xe90
[   56.895112][ T6428]  ip_fragment.constprop.0+0x161/0x230
[   56.895125][ T6428]  __ip_finish_output+0x2fc/0x950
[   56.895140][ T6428]  ip_finish_output+0x35/0x380
[   56.895153][ T6428]  ip_output+0x13b/0x2a0
[   56.895164][ T6428]  ? __pfx_ip_output+0x10/0x10
[   56.895177][ T6428]  ip_send_skb+0x3e8/0x560
[   56.895191][ T6428]  udp_send_skb+0x71d/0x15b0
[   56.895207][ T6428]  udp_sendmsg+0x1329/0x29e0
[   56.895221][ T6428]  ? __pfx_ip_generic_getfrag+0x10/0x10
[   56.895233][ T6428]  ? avc_has_perm_noaudit+0x149/0x3b0
[   56.895245][ T6428]  ? __pfx_udp_sendmsg+0x10/0x10
[   56.895257][ T6428]  ? avc_has_perm+0x11a/0x1c0
[   56.895273][ T6428]  ? sock_has_perm+0x259/0x2f0
[   56.895283][ T6428]  ? __pfx_sock_has_perm+0x10/0x10
[   56.895299][ T6428]  ? inode_has_perm+0x16f/0x1d0
[   56.895310][ T6428]  ? __pfx_udp_sendmsg+0x10/0x10
[   56.895322][ T6428]  inet_sendmsg+0x105/0x140
[   56.895338][ T6428]  sock_write_iter+0x4aa/0x5b0
[   56.895353][ T6428]  ? __pfx_sock_write_iter+0x10/0x10
[   56.895372][ T6428]  ? bpf_lsm_file_permission+0x9/0x10
[   56.895385][ T6428]  ? security_file_permission+0x71/0x210
[   56.895400][ T6428]  ? rw_verify_area+0xcf/0x680
[   56.895414][ T6428]  vfs_write+0x5ba/0x1180
[   56.895423][ T6428]  ? __pfx_sock_write_iter+0x10/0x10
[   56.895439][ T6428]  ? __pfx_vfs_write+0x10/0x10
[   56.895446][ T6428]  ? find_held_lock+0x2b/0x80
[   56.895466][ T6428]  ksys_write+0x205/0x240
[   56.895474][ T6428]  ? __pfx_ksys_write+0x10/0x10
[   56.895482][ T6428]  ? rcu_is_watching+0x12/0xc0
[   56.895498][ T6428]  do_syscall_64+0xcd/0x260
[   56.895512][ T6428]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.895521][ T6428] RIP: 0033:0x7fba8878d169
[   56.895530][ T6428] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.895539][ T6428] RSP: 002b:00007fba865f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   56.895548][ T6428] RAX: ffffffffffffffda RBX: 00007fba889a5fa0 RCX: 00007fba8878d169
[   56.895554][ T6428] RDX: 00000000000005b0 RSI: 0000200000000300 RDI: 0000000000000004
[   56.895559][ T6428] RBP: 00007fba865f6090 R08: 0000000000000000 R09: 0000000000000000
[   56.895565][ T6428] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   56.895570][ T6428] R13: 0000000000000000 R14: 00007fba889a5fa0 R15: 00007ffefd9f54f8
[   56.895582][ T6428]  </TASK>
[   56.899854][ T6426] ip6t_srh: unknown srh invflags 7863
[   57.064914][ T6438] FAULT_INJECTION: forcing a failure.
[   57.064914][ T6438] name failslab, interval 1, probability 0, space 0, times 0
[   57.075645][ T6440] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(4)
[   57.076302][ T6438] CPU: 1 UID: 0 PID: 6438 Comm: syz.0.164 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   57.076326][ T6438] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   57.076335][ T6438] Call Trace:
[   57.076341][ T6438]  <TASK>
[   57.076348][ T6438]  dump_stack_lvl+0x16c/0x1f0
[   57.076373][ T6438]  should_fail_ex+0x512/0x640
[   57.076391][ T6438]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[   57.076412][ T6438]  should_failslab+0xc2/0x120
[   57.076430][ T6438]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[   57.076446][ T6438]  ? __alloc_skb+0x2b2/0x380
[   57.076469][ T6438]  __alloc_skb+0x2b2/0x380
[   57.076488][ T6438]  ? __pfx___alloc_skb+0x10/0x10
[   57.076510][ T6438]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[   57.076537][ T6438]  netlink_alloc_large_skb+0x69/0x130
[   57.076561][ T6438]  netlink_sendmsg+0x6a1/0xdd0
[   57.076588][ T6438]  ? __pfx_netlink_sendmsg+0x10/0x10
[   57.076619][ T6438]  ____sys_sendmsg+0xa95/0xc70
[   57.076643][ T6438]  ? copy_msghdr_from_user+0x10a/0x160
[   57.076661][ T6438]  ? __pfx_____sys_sendmsg+0x10/0x10
[   57.076694][ T6438]  ___sys_sendmsg+0x134/0x1d0
[   57.076714][ T6438]  ? __pfx____sys_sendmsg+0x10/0x10
[   57.076776][ T6438]  __sys_sendmsg+0x16d/0x220
[   57.076797][ T6438]  ? __pfx___sys_sendmsg+0x10/0x10
[   57.076825][ T6438]  ? rcu_is_watching+0x12/0xc0
[   57.076853][ T6438]  do_syscall_64+0xcd/0x260
[   57.076878][ T6438]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.076895][ T6438] RIP: 0033:0x7f8da9b8d169
[   57.076908][ T6438] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   57.076924][ T6438] RSP: 002b:00007f8daa937038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   57.076940][ T6438] RAX: ffffffffffffffda RBX: 00007f8da9da5fa0 RCX: 00007f8da9b8d169
[   57.076948][ T6438] RDX: 0000000000004000 RSI: 0000200000000280 RDI: 0000000000000003
[   57.076956][ T6438] RBP: 00007f8daa937090 R08: 0000000000000000 R09: 0000000000000000
[   57.076964][ T6438] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   57.076973][ T6438] R13: 0000000000000000 R14: 00007f8da9da5fa0 R15: 00007fffd23e45b8
[   57.076993][ T6438]  </TASK>
[   57.127884][ T6450] SELinux: security_context_str_to_sid (ramfs) failed with errno=-22
[   57.129347][ T6440] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[   57.148013][    C3] vkms_vblank_simulate: vblank timer overrun
[   57.148115][ T6441] vhci_hcd vhci_hcd.0: pdev(1) rhport(1) sockfd(7)
[   57.151554][ T6441] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[   57.154670][ T6440] vhci_hcd vhci_hcd.0: Device attached
[   57.155697][ T6441] vhci_hcd vhci_hcd.0: Device attached
[   57.168785][ T6444] vhci_hcd: connection closed
[   57.169727][ T6442] vhci_hcd: connection closed
[   57.170628][ T1139] vhci_hcd: stop threads
[   57.174491][ T1139] vhci_hcd: release socket
[   57.176086][ T1139] vhci_hcd: disconnect device
[   57.182914][ T1139] vhci_hcd: stop threads
[   57.184176][ T1139] vhci_hcd: release socket
[   57.185710][ T1139] vhci_hcd: disconnect device
[   57.236872][ T6461] netlink: 'syz.1.171': attribute type 2 has an invalid length.
[   57.239081][ T6461] netlink: 12 bytes leftover after parsing attributes in process `syz.1.171'.
[   57.324946][ T6477] FAULT_INJECTION: forcing a failure.
[   57.324946][ T6477] name failslab, interval 1, probability 0, space 0, times 0
[   57.328536][ T6477] CPU: 3 UID: 0 PID: 6477 Comm: syz.2.175 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   57.328549][ T6477] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   57.328556][ T6477] Call Trace:
[   57.328560][ T6477]  <TASK>
[   57.328564][ T6477]  dump_stack_lvl+0x16c/0x1f0
[   57.328593][ T6477]  should_fail_ex+0x512/0x640
[   57.328611][ T6477]  should_failslab+0xc2/0x120
[   57.328623][ T6477]  kmem_cache_alloc_noprof+0x6d/0x3b0
[   57.328633][ T6477]  ? find_held_lock+0x2b/0x80
[   57.328646][ T6477]  ? skb_clone+0x190/0x3f0
[   57.328660][ T6477]  skb_clone+0x190/0x3f0
[   57.328673][ T6477]  inet_frag_reasm_prepare+0xfb/0xf30
[   57.328691][ T6477]  ip_defrag+0x108a/0x27c0
[   57.328708][ T6477]  ? __pfx_ip_defrag+0x10/0x10
[   57.328718][ T6477]  ? __asan_memcpy+0x3c/0x60
[   57.328738][ T6477]  ip_check_defrag+0x462/0x670
[   57.328750][ T6477]  ? __pfx_ip_check_defrag+0x10/0x10
[   57.328761][ T6477]  ? __asan_memcpy+0x3c/0x60
[   57.328776][ T6477]  ? __asan_memcpy+0x3c/0x60
[   57.328794][ T6477]  packet_rcv_fanout+0x4e3/0x780
[   57.328810][ T6477]  ? __pfx_packet_rcv_fanout+0x10/0x10
[   57.328825][ T6477]  dev_queue_xmit_nit+0x8f1/0xca0
[   57.328841][ T6477]  dev_hard_start_xmit+0x5b6/0x740
[   57.328855][ T6477]  __dev_queue_xmit+0x7eb/0x43e0
[   57.328866][ T6477]  ? arch_stack_walk+0xa6/0x100
[   57.328883][ T6477]  ? __pfx___dev_queue_xmit+0x10/0x10
[   57.328897][ T6477]  ? __lock_acquire+0xaa4/0x1ba0
[   57.328907][ T6477]  ? kasan_save_stack+0x42/0x60
[   57.328921][ T6477]  ? find_held_lock+0x2b/0x80
[   57.328937][ T6477]  neigh_connected_output+0x3da/0x620
[   57.328954][ T6477]  ip_finish_output2+0x7f5/0x21a0
[   57.328967][ T6477]  ? do_csum+0x26f/0x2d0
[   57.328981][ T6477]  ? __pfx_ip_finish_output2+0x10/0x10
[   57.328993][ T6477]  ? ip_fraglist_prepare+0x480/0x640
[   57.329011][ T6477]  ip_do_fragment+0x12cb/0x18b0
[   57.329025][ T6477]  ? __pfx_ip_finish_output2+0x10/0x10
[   57.329043][ T6477]  ? __pfx_ip_do_fragment+0x10/0x10
[   57.329057][ T6477]  ? ip_skb_dst_mtu+0x487/0xe90
[   57.329071][ T6477]  ? ip_skb_dst_mtu+0x496/0xe90
[   57.329085][ T6477]  ip_fragment.constprop.0+0x161/0x230
[   57.329098][ T6477]  __ip_finish_output+0x2fc/0x950
[   57.329112][ T6477]  ip_finish_output+0x35/0x380
[   57.329126][ T6477]  ip_output+0x13b/0x2a0
[   57.329137][ T6477]  ? __pfx_ip_output+0x10/0x10
[   57.329150][ T6477]  ip_send_skb+0x3e8/0x560
[   57.329164][ T6477]  udp_send_skb+0x71d/0x15b0
[   57.329180][ T6477]  udp_sendmsg+0x1329/0x29e0
[   57.329194][ T6477]  ? __pfx_ip_generic_getfrag+0x10/0x10
[   57.329207][ T6477]  ? avc_has_perm_noaudit+0x149/0x3b0
[   57.329219][ T6477]  ? __pfx_udp_sendmsg+0x10/0x10
[   57.329230][ T6477]  ? avc_has_perm+0x11a/0x1c0
[   57.329246][ T6477]  ? sock_has_perm+0x259/0x2f0
[   57.329257][ T6477]  ? __pfx_sock_has_perm+0x10/0x10
[   57.329273][ T6477]  ? inode_has_perm+0x16f/0x1d0
[   57.329284][ T6477]  ? __pfx_udp_sendmsg+0x10/0x10
[   57.329296][ T6477]  inet_sendmsg+0x105/0x140
[   57.329311][ T6477]  sock_write_iter+0x4aa/0x5b0
[   57.329326][ T6477]  ? __pfx_sock_write_iter+0x10/0x10
[   57.329345][ T6477]  ? bpf_lsm_file_permission+0x9/0x10
[   57.329359][ T6477]  ? security_file_permission+0x71/0x210
[   57.329373][ T6477]  ? rw_verify_area+0xcf/0x680
[   57.329388][ T6477]  vfs_write+0x5ba/0x1180
[   57.329397][ T6477]  ? __pfx_sock_write_iter+0x10/0x10
[   57.329412][ T6477]  ? __pfx_vfs_write+0x10/0x10
[   57.329419][ T6477]  ? find_held_lock+0x2b/0x80
[   57.329439][ T6477]  ksys_write+0x205/0x240
[   57.329448][ T6477]  ? __pfx_ksys_write+0x10/0x10
[   57.329455][ T6477]  ? rcu_is_watching+0x12/0xc0
[   57.329471][ T6477]  do_syscall_64+0xcd/0x260
[   57.329486][ T6477]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.329495][ T6477] RIP: 0033:0x7f4c06b8d169
[   57.329505][ T6477] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   57.329514][ T6477] RSP: 002b:00007f4c07a8d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   57.329523][ T6477] RAX: ffffffffffffffda RBX: 00007f4c06da5fa0 RCX: 00007f4c06b8d169
[   57.329529][ T6477] RDX: 00000000000005b0 RSI: 0000200000000300 RDI: 0000000000000004
[   57.329534][ T6477] RBP: 00007f4c07a8d090 R08: 0000000000000000 R09: 0000000000000000
[   57.329540][ T6477] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   57.329545][ T6477] R13: 0000000000000000 R14: 00007f4c06da5fa0 R15: 00007ffe877fb098
[   57.329557][ T6477]  </TASK>
[   57.437760][ T6481] input: syz1 as /devices/virtual/input/input15
[   57.441760][    C3] vkms_vblank_simulate: vblank timer overrun
[   57.626341][ T6494] lo: entered allmulticast mode
[   57.659423][ T6496] misc userio: Invalid payload size
[   57.697892][ T6503] syz.1.186 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   57.703088][ T6503] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[   57.705518][ T6503] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   57.709636][ T6503] vhci_hcd vhci_hcd.0: Device attached
[   57.828680][ T6510] FAULT_INJECTION: forcing a failure.
[   57.828680][ T6510] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   57.832234][ T6510] CPU: 1 UID: 0 PID: 6510 Comm: syz.2.188 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   57.832247][ T6510] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   57.832253][ T6510] Call Trace:
[   57.832263][ T6510]  <TASK>
[   57.832267][ T6510]  dump_stack_lvl+0x16c/0x1f0
[   57.832293][ T6510]  should_fail_ex+0x512/0x640
[   57.832310][ T6510]  _copy_to_user+0x32/0xd0
[   57.832322][ T6510]  simple_read_from_buffer+0xcb/0x170
[   57.832338][ T6510]  proc_fail_nth_read+0x197/0x270
[   57.832354][ T6510]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   57.832370][ T6510]  ? rw_verify_area+0xcf/0x680
[   57.832383][ T6510]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   57.832397][ T6510]  vfs_read+0x1de/0xc70
[   57.832414][ T6510]  ? __pfx___mutex_lock+0x10/0x10
[   57.832427][ T6510]  ? __pfx_vfs_read+0x10/0x10
[   57.832445][ T6510]  ? __fget_files+0x20e/0x3c0
[   57.832459][ T6510]  ksys_read+0x12a/0x240
[   57.832466][ T6510]  ? __pfx_ksys_read+0x10/0x10
[   57.832478][ T6510]  do_syscall_64+0xcd/0x260
[   57.832493][ T6510]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.832503][ T6510] RIP: 0033:0x7f4c06b8bb7c
[   57.832511][ T6510] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   57.832520][ T6510] RSP: 002b:00007f4c07a8d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   57.832529][ T6510] RAX: ffffffffffffffda RBX: 00007f4c06da5fa0 RCX: 00007f4c06b8bb7c
[   57.832535][ T6510] RDX: 000000000000000f RSI: 00007f4c07a8d0a0 RDI: 0000000000000005
[   57.832540][ T6510] RBP: 00007f4c07a8d090 R08: 0000000000000000 R09: 0000000000000000
[   57.832545][ T6510] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   57.832551][ T6510] R13: 0000000000000000 R14: 00007f4c06da5fa0 R15: 00007ffe877fb098
[   57.832563][ T6510]  </TASK>
[   57.955287][   T10] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   57.958414][    T9] usb 39-1: new low-speed USB device number 2 using vhci_hcd
[   57.984092][ T6512] sctp: [Deprecated]: syz.2.189 (pid 6512) Use of int in max_burst socket option.
[   57.984092][ T6512] Use struct sctp_assoc_value instead
[   58.086438][ T6521] FAULT_INJECTION: forcing a failure.
[   58.086438][ T6521] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   58.090510][ T6521] CPU: 1 UID: 0 PID: 6521 Comm: syz.2.193 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   58.090524][ T6521] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   58.090531][ T6521] Call Trace:
[   58.090534][ T6521]  <TASK>
[   58.090539][ T6521]  dump_stack_lvl+0x16c/0x1f0
[   58.090555][ T6521]  should_fail_ex+0x512/0x640
[   58.090569][ T6521]  _copy_from_iter+0x2a4/0x15b0
[   58.090581][ T6521]  ? __alloc_skb+0x200/0x380
[   58.090593][ T6521]  ? __pfx__copy_from_iter+0x10/0x10
[   58.090605][ T6521]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[   58.090622][ T6521]  netlink_sendmsg+0x829/0xdd0
[   58.090637][ T6521]  ? __pfx_netlink_sendmsg+0x10/0x10
[   58.090654][ T6521]  ____sys_sendmsg+0xa95/0xc70
[   58.090669][ T6521]  ? copy_msghdr_from_user+0x10a/0x160
[   58.090680][ T6521]  ? __pfx_____sys_sendmsg+0x10/0x10
[   58.090700][ T6521]  ___sys_sendmsg+0x134/0x1d0
[   58.090712][ T6521]  ? __pfx____sys_sendmsg+0x10/0x10
[   58.090739][ T6521]  __sys_sendmsg+0x16d/0x220
[   58.090750][ T6521]  ? __pfx___sys_sendmsg+0x10/0x10
[   58.090769][ T6521]  do_syscall_64+0xcd/0x260
[   58.090783][ T6521]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.090793][ T6521] RIP: 0033:0x7f4c06b8d169
[   58.090801][ T6521] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.090810][ T6521] RSP: 002b:00007f4c07a8d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   58.090820][ T6521] RAX: ffffffffffffffda RBX: 00007f4c06da5fa0 RCX: 00007f4c06b8d169
[   58.090826][ T6521] RDX: 0000000000004000 RSI: 0000200000000280 RDI: 0000000000000003
[   58.090831][ T6521] RBP: 00007f4c07a8d090 R08: 0000000000000000 R09: 0000000000000000
[   58.090836][ T6521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   58.090842][ T6521] R13: 0000000000000000 R14: 00007f4c06da5fa0 R15: 00007ffe877fb098
[   58.090853][ T6521]  </TASK>
[   58.115321][   T10] usb 6-1: Using ep0 maxpacket: 16
[   58.169947][   T10] usb 6-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[   58.173635][   T10] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   58.177079][   T10] usb 6-1: Product: syz
[   58.178793][   T10] usb 6-1: Manufacturer: syz
[   58.180977][   T10] usb 6-1: SerialNumber: syz
[   58.186297][   T10] usb 6-1: config 0 descriptor??
[   58.191435][   T10] ftdi_sio 6-1:0.0: FTDI USB Serial Device converter detected
[   58.196894][   T10] usb 6-1: Detected FT232H
[   58.304723][   T34] usb 8-1: USB disconnect, device number 3
[   58.390869][ T6543] FAULT_INJECTION: forcing a failure.
[   58.390869][ T6543] name failslab, interval 1, probability 0, space 0, times 0
[   58.394281][ T6543] CPU: 2 UID: 0 PID: 6543 Comm: syz.2.203 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   58.394295][ T6543] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   58.394301][ T6543] Call Trace:
[   58.394305][ T6543]  <TASK>
[   58.394309][ T6543]  dump_stack_lvl+0x16c/0x1f0
[   58.394334][ T6543]  should_fail_ex+0x512/0x640
[   58.394349][ T6543]  should_failslab+0xc2/0x120
[   58.394360][ T6543]  kmem_cache_alloc_noprof+0x6d/0x3b0
[   58.394371][ T6543]  ? skb_clone+0x190/0x3f0
[   58.394385][ T6543]  skb_clone+0x190/0x3f0
[   58.394397][ T6543]  netlink_deliver_tap+0xabd/0xd30
[   58.394413][ T6543]  netlink_unicast+0x5df/0x7f0
[   58.394428][ T6543]  ? __pfx_netlink_unicast+0x10/0x10
[   58.394445][ T6543]  netlink_sendmsg+0x8d1/0xdd0
[   58.394460][ T6543]  ? __pfx_netlink_sendmsg+0x10/0x10
[   58.394477][ T6543]  ____sys_sendmsg+0xa95/0xc70
[   58.394492][ T6543]  ? copy_msghdr_from_user+0x10a/0x160
[   58.394503][ T6543]  ? __pfx_____sys_sendmsg+0x10/0x10
[   58.394524][ T6543]  ___sys_sendmsg+0x134/0x1d0
[   58.394536][ T6543]  ? __pfx____sys_sendmsg+0x10/0x10
[   58.394564][ T6543]  __sys_sendmsg+0x16d/0x220
[   58.394576][ T6543]  ? __pfx___sys_sendmsg+0x10/0x10
[   58.394591][ T6543]  ? rcu_is_watching+0x12/0xc0
[   58.394607][ T6543]  do_syscall_64+0xcd/0x260
[   58.394621][ T6543]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.394631][ T6543] RIP: 0033:0x7f4c06b8d169
[   58.394640][ T6543] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.394649][ T6543] RSP: 002b:00007f4c07a8d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   58.394659][ T6543] RAX: ffffffffffffffda RBX: 00007f4c06da5fa0 RCX: 00007f4c06b8d169
[   58.394664][ T6543] RDX: 0000000000004000 RSI: 0000200000000280 RDI: 0000000000000003
[   58.394670][ T6543] RBP: 00007f4c07a8d090 R08: 0000000000000000 R09: 0000000000000000
[   58.394675][ T6543] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   58.394680][ T6543] R13: 0000000000000000 R14: 00007f4c06da5fa0 R15: 00007ffe877fb098
[   58.394693][ T6543]  </TASK>
[   58.396798][ T6503] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[   58.457514][ T6503] team0: Device ipvlan2 is already an upper device of the team interface
[   58.568993][   T10] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[   58.571869][ T6505] usb 39-1: recv xbuf, 0
[   58.575240][   T10] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[   58.575333][   T12] vhci_hcd: stop threads
[   58.579267][   T12] vhci_hcd: release socket
[   58.579809][   T10] ftdi_sio 6-1:0.0: GPIO initialisation failed: -71
[   58.580909][   T12] vhci_hcd: disconnect device
[   58.586108][   T10] usb 6-1: FTDI USB Serial Device converter now attached to ttyUSB0
[   58.590295][   T10] usb 6-1: USB disconnect, device number 3
[   58.594547][   T10] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[   58.597761][   T10] ftdi_sio 6-1:0.0: device disconnected
[   58.644948][    T9] vhci_hcd: vhci_device speed not set
[   58.784884][   T65] usb 7-1: new full-speed USB device number 6 using dummy_hcd
[   58.820932][ T6572] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[   58.844533][ T6572] netlink: 28 bytes leftover after parsing attributes in process `syz.3.213'.
[   58.871821][ T6574] FAULT_INJECTION: forcing a failure.
[   58.871821][ T6574] name failslab, interval 1, probability 0, space 0, times 0
[   58.875529][ T6574] CPU: 3 UID: 0 PID: 6574 Comm: syz.3.214 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   58.875543][ T6574] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   58.875549][ T6574] Call Trace:
[   58.875552][ T6574]  <TASK>
[   58.875556][ T6574]  dump_stack_lvl+0x16c/0x1f0
[   58.875585][ T6574]  should_fail_ex+0x512/0x640
[   58.875599][ T6574]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[   58.875611][ T6574]  should_failslab+0xc2/0x120
[   58.875623][ T6574]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[   58.875633][ T6574]  ? __alloc_skb+0x2b2/0x380
[   58.875646][ T6574]  __alloc_skb+0x2b2/0x380
[   58.875656][ T6574]  ? __pfx___alloc_skb+0x10/0x10
[   58.875666][ T6574]  ? __pfx_tc_modify_qdisc+0x10/0x10
[   58.875680][ T6574]  netlink_ack+0x15d/0xb80
[   58.875697][ T6574]  netlink_rcv_skb+0x347/0x440
[   58.875709][ T6574]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   58.875722][ T6574]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   58.875742][ T6574]  ? netlink_deliver_tap+0x1ae/0xd30
[   58.875756][ T6574]  netlink_unicast+0x53a/0x7f0
[   58.875775][ T6574]  ? __pfx_netlink_unicast+0x10/0x10
[   58.875791][ T6574]  netlink_sendmsg+0x8d1/0xdd0
[   58.875806][ T6574]  ? __pfx_netlink_sendmsg+0x10/0x10
[   58.875823][ T6574]  ____sys_sendmsg+0xa95/0xc70
[   58.875838][ T6574]  ? copy_msghdr_from_user+0x10a/0x160
[   58.875850][ T6574]  ? __pfx_____sys_sendmsg+0x10/0x10
[   58.875869][ T6574]  ___sys_sendmsg+0x134/0x1d0
[   58.875881][ T6574]  ? __pfx____sys_sendmsg+0x10/0x10
[   58.875908][ T6574]  __sys_sendmsg+0x16d/0x220
[   58.875919][ T6574]  ? __pfx___sys_sendmsg+0x10/0x10
[   58.875939][ T6574]  do_syscall_64+0xcd/0x260
[   58.875952][ T6574]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.875962][ T6574] RIP: 0033:0x7f479c38d169
[   58.875971][ T6574] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.875979][ T6574] RSP: 002b:00007f479a1f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   58.875989][ T6574] RAX: ffffffffffffffda RBX: 00007f479c5a5fa0 RCX: 00007f479c38d169
[   58.875995][ T6574] RDX: 0000000000004000 RSI: 0000200000000280 RDI: 0000000000000003
[   58.876001][ T6574] RBP: 00007f479a1f6090 R08: 0000000000000000 R09: 0000000000000000
[   58.876006][ T6574] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   58.876013][ T6574] R13: 0000000000000000 R14: 00007f479c5a5fa0 R15: 00007ffd6b651d28
[   58.876025][ T6574]  </TASK>
[   58.946884][   T65] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   58.954318][   T65] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   58.957912][   T65] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   58.959192][ T6576] ALSA: seq fatal error: cannot create timer (-22)
[   58.960718][   T65] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   59.167088][   T65] usb 7-1: usb_control_msg returned -32
[   59.169074][   T65] usbtmc 7-1:16.0: can't read capabilities
[   59.370248][ T6602] overlayfs: "xino" feature enabled using 2 upper inode bits.
[   59.376818][ T5299] Bluetooth: hci0: Unknown advertising packet type: 0x7f
[   59.376842][ T5299] Bluetooth: hci0: Malformed LE Event: 0x0d
[   59.703159][ T6633] FAULT_INJECTION: forcing a failure.
[   59.703159][ T6633] name failslab, interval 1, probability 0, space 0, times 0
[   59.707113][ T6633] CPU: 2 UID: 0 PID: 6633 Comm: syz.1.238 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   59.707128][ T6633] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   59.707134][ T6633] Call Trace:
[   59.707137][ T6633]  <TASK>
[   59.707141][ T6633]  dump_stack_lvl+0x16c/0x1f0
[   59.707157][ T6633]  should_fail_ex+0x512/0x640
[   59.707170][ T6633]  should_failslab+0xc2/0x120
[   59.707181][ T6633]  kmem_cache_alloc_noprof+0x6d/0x3b0
[   59.707192][ T6633]  ? skb_clone+0x190/0x3f0
[   59.707206][ T6633]  skb_clone+0x190/0x3f0
[   59.707218][ T6633]  netlink_deliver_tap+0xabd/0xd30
[   59.707234][ T6633]  netlink_unicast+0x6b2/0x7f0
[   59.707248][ T6633]  ? __pfx_netlink_unicast+0x10/0x10
[   59.707264][ T6633]  netlink_ack+0x696/0xb80
[   59.707281][ T6633]  netlink_rcv_skb+0x347/0x440
[   59.707293][ T6633]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   59.707307][ T6633]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   59.707327][ T6633]  ? netlink_deliver_tap+0x1ae/0xd30
[   59.707341][ T6633]  netlink_unicast+0x53a/0x7f0
[   59.707355][ T6633]  ? __pfx_netlink_unicast+0x10/0x10
[   59.707372][ T6633]  netlink_sendmsg+0x8d1/0xdd0
[   59.707387][ T6633]  ? __pfx_netlink_sendmsg+0x10/0x10
[   59.707405][ T6633]  ____sys_sendmsg+0xa95/0xc70
[   59.707420][ T6633]  ? copy_msghdr_from_user+0x10a/0x160
[   59.707431][ T6633]  ? __pfx_____sys_sendmsg+0x10/0x10
[   59.707451][ T6633]  ___sys_sendmsg+0x134/0x1d0
[   59.707463][ T6633]  ? __pfx____sys_sendmsg+0x10/0x10
[   59.707490][ T6633]  __sys_sendmsg+0x16d/0x220
[   59.707502][ T6633]  ? __pfx___sys_sendmsg+0x10/0x10
[   59.707522][ T6633]  do_syscall_64+0xcd/0x260
[   59.707535][ T6633]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.707545][ T6633] RIP: 0033:0x7fba8878d169
[   59.707554][ T6633] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.707563][ T6633] RSP: 002b:00007fba865f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   59.707573][ T6633] RAX: ffffffffffffffda RBX: 00007fba889a5fa0 RCX: 00007fba8878d169
[   59.707578][ T6633] RDX: 0000000000004000 RSI: 0000200000000280 RDI: 0000000000000003
[   59.707584][ T6633] RBP: 00007fba865f6090 R08: 0000000000000000 R09: 0000000000000000
[   59.707589][ T6633] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   59.707594][ T6633] R13: 0000000000000000 R14: 00007fba889a5fa0 R15: 00007ffefd9f54f8
[   59.707607][ T6633]  </TASK>
[   59.802254][ T6640] FAULT_INJECTION: forcing a failure.
[   59.802254][ T6640] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   59.806760][ T6640] CPU: 1 UID: 0 PID: 6640 Comm: syz.1.241 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   59.806781][ T6640] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   59.806790][ T6640] Call Trace:
[   59.806796][ T6640]  <TASK>
[   59.806802][ T6640]  dump_stack_lvl+0x16c/0x1f0
[   59.806826][ T6640]  should_fail_ex+0x512/0x640
[   59.806845][ T6640]  _copy_from_user+0x2e/0xd0
[   59.806857][ T6640]  copy_msghdr_from_user+0x98/0x160
[   59.806871][ T6640]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[   59.806889][ T6640]  ___sys_sendmsg+0xfe/0x1d0
[   59.806901][ T6640]  ? __pfx____sys_sendmsg+0x10/0x10
[   59.806927][ T6640]  __sys_sendmsg+0x16d/0x220
[   59.806939][ T6640]  ? __pfx___sys_sendmsg+0x10/0x10
[   59.806958][ T6640]  do_syscall_64+0xcd/0x260
[   59.806972][ T6640]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.806982][ T6640] RIP: 0033:0x7fba8878d169
[   59.806990][ T6640] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.807003][ T6640] RSP: 002b:00007fba865f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   59.807018][ T6640] RAX: ffffffffffffffda RBX: 00007fba889a5fa0 RCX: 00007fba8878d169
[   59.807027][ T6640] RDX: 9590f6cc3ea35512 RSI: 0000200000000000 RDI: 0000000000000003
[   59.807037][ T6640] RBP: 00007fba865f6090 R08: 0000000000000000 R09: 0000000000000000
[   59.807045][ T6640] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   59.807054][ T6640] R13: 0000000000000000 R14: 00007fba889a5fa0 R15: 00007ffefd9f54f8
[   59.807081][ T6640]  </TASK>
[   59.977119][ T6648] netlink: 'syz.0.244': attribute type 1 has an invalid length.
[   59.989872][ T6648] 8021q: adding VLAN 0 to HW filter on device bond2
[   59.999608][ T6648] bond2: (slave gretap1): making interface the new active one
[   60.003185][ T6648] bond2: (slave gretap1): Enslaving as an active interface with an up link
[   60.016393][ T6651] ata3.00: invalid multi_count 1 ignored
[   60.230398][ T6659] syzkaller1: entered promiscuous mode
[   60.232509][ T6659] syzkaller1: entered allmulticast mode
[   60.284859][   T57] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   60.346435][ T6663] FAULT_INJECTION: forcing a failure.
[   60.346435][ T6663] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   60.351400][ T6663] CPU: 3 UID: 0 PID: 6663 Comm: syz.3.251 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   60.351420][ T6663] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   60.351429][ T6663] Call Trace:
[   60.351435][ T6663]  <TASK>
[   60.351441][ T6663]  dump_stack_lvl+0x16c/0x1f0
[   60.351466][ T6663]  should_fail_ex+0x512/0x640
[   60.351487][ T6663]  _copy_to_user+0x32/0xd0
[   60.351506][ T6663]  simple_read_from_buffer+0xcb/0x170
[   60.351532][ T6663]  proc_fail_nth_read+0x197/0x270
[   60.351558][ T6663]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   60.351584][ T6663]  ? rw_verify_area+0xcf/0x680
[   60.351605][ T6663]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   60.351630][ T6663]  vfs_read+0x1de/0xc70
[   60.351658][ T6663]  ? __pfx___mutex_lock+0x10/0x10
[   60.351680][ T6663]  ? __pfx_vfs_read+0x10/0x10
[   60.351712][ T6663]  ? __fget_files+0x20e/0x3c0
[   60.351736][ T6663]  ksys_read+0x12a/0x240
[   60.351750][ T6663]  ? __pfx_ksys_read+0x10/0x10
[   60.351762][ T6663]  ? rcu_is_watching+0x12/0xc0
[   60.351790][ T6663]  do_syscall_64+0xcd/0x260
[   60.351813][ T6663]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.351828][ T6663] RIP: 0033:0x7f479c38bb7c
[   60.351841][ T6663] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   60.351856][ T6663] RSP: 002b:00007f479a1f6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   60.351872][ T6663] RAX: ffffffffffffffda RBX: 00007f479c5a5fa0 RCX: 00007f479c38bb7c
[   60.351882][ T6663] RDX: 000000000000000f RSI: 00007f479a1f60a0 RDI: 0000000000000006
[   60.351891][ T6663] RBP: 00007f479a1f6090 R08: 0000000000000000 R09: 0000000000000000
[   60.351900][ T6663] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   60.351909][ T6663] R13: 0000000000000000 R14: 00007f479c5a5fa0 R15: 00007ffd6b651d28
[   60.351932][ T6663]  </TASK>
[   60.445425][   T57] usb 5-1: Using ep0 maxpacket: 8
[   60.453329][   T57] usb 5-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[   60.455735][   T57] usb 5-1: config 1 has an invalid descriptor of length 110, skipping remainder of the config
[   60.459263][   T57] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[   60.461713][ T6664] vivid-003: disconnect
[   60.462330][ T6666] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   60.463379][ T6664] vivid-003: reconnect
[   60.463872][   T57] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   60.463886][   T57] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   60.463895][   T57] usb 5-1: Product: syz
[   60.463901][   T57] usb 5-1: Manufacturer: syz
[   60.463908][   T57] usb 5-1: SerialNumber: syz
[   60.581826][   T40] kauditd_printk_skb: 44 callbacks suppressed
[   60.581835][   T40] audit: type=1400 audit(1744252714.826:319): avc:  denied  { bind } for  pid=6669 comm="syz.3.253" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   60.671573][ T6677] FAULT_INJECTION: forcing a failure.
[   60.671573][ T6677] name failslab, interval 1, probability 0, space 0, times 0
[   60.675308][ T6677] CPU: 3 UID: 0 PID: 6677 Comm: syz.3.255 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   60.675322][ T6677] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   60.675329][ T6677] Call Trace:
[   60.675332][ T6677]  <TASK>
[   60.675336][ T6677]  dump_stack_lvl+0x16c/0x1f0
[   60.675363][ T6677]  should_fail_ex+0x512/0x640
[   60.675378][ T6677]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[   60.675391][ T6677]  should_failslab+0xc2/0x120
[   60.675402][ T6677]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[   60.675412][ T6677]  ? __alloc_skb+0x2b2/0x380
[   60.675425][ T6677]  __alloc_skb+0x2b2/0x380
[   60.675436][ T6677]  ? __pfx___alloc_skb+0x10/0x10
[   60.675446][ T6677]  ? selinux_socket_getpeersec_dgram+0x1a4/0x370
[   60.675459][ T6677]  ? __pfx_selinux_socket_getpeersec_dgram+0x10/0x10
[   60.675476][ T6677]  netlink_alloc_large_skb+0x69/0x130
[   60.675490][ T6677]  netlink_sendmsg+0x6a1/0xdd0
[   60.675505][ T6677]  ? __pfx_netlink_sendmsg+0x10/0x10
[   60.675522][ T6677]  ____sys_sendmsg+0xa95/0xc70
[   60.675537][ T6677]  ? copy_msghdr_from_user+0x10a/0x160
[   60.675548][ T6677]  ? __pfx_____sys_sendmsg+0x10/0x10
[   60.675568][ T6677]  ___sys_sendmsg+0x134/0x1d0
[   60.675581][ T6677]  ? __pfx____sys_sendmsg+0x10/0x10
[   60.675607][ T6677]  __sys_sendmsg+0x16d/0x220
[   60.675619][ T6677]  ? __pfx___sys_sendmsg+0x10/0x10
[   60.675634][ T6677]  ? rcu_is_watching+0x12/0xc0
[   60.675650][ T6677]  do_syscall_64+0xcd/0x260
[   60.675664][ T6677]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.675674][ T6677] RIP: 0033:0x7f479c38d169
[   60.675683][ T6677] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   60.675692][ T6677] RSP: 002b:00007f479a1f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   60.675702][ T6677] RAX: ffffffffffffffda RBX: 00007f479c5a5fa0 RCX: 00007f479c38d169
[   60.675708][ T6677] RDX: 9590f6cc3ea35512 RSI: 0000200000000000 RDI: 0000000000000003
[   60.675713][ T6677] RBP: 00007f479a1f6090 R08: 0000000000000000 R09: 0000000000000000
[   60.675719][ T6677] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   60.675724][ T6677] R13: 0000000000000000 R14: 00007f479c5a5fa0 R15: 00007ffd6b651d28
[   60.675736][ T6677]  </TASK>
[   60.677493][   T40] audit: type=1400 audit(1744252714.926:320): avc:  denied  { create } for  pid=6678 comm="syz.1.256" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[   60.728725][ T6682] tmpfs: Bad value for 'mpol'
[   60.732048][   T40] audit: type=1400 audit(1744252714.926:321): avc:  denied  { connect } for  pid=6678 comm="syz.1.256" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[   60.733556][   T57] usb 5-1: 0:2 : does not exist
[   60.734521][   T40] audit: type=1400 audit(1744252714.946:322): avc:  denied  { bind } for  pid=6680 comm="syz.3.257" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   60.745353][   T57] usb 5-1: USB disconnect, device number 2
[   60.746663][   T40] audit: type=1400 audit(1744252714.976:323): avc:  denied  { bind } for  pid=6678 comm="syz.1.256" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[   60.765382][   T40] audit: type=1400 audit(1744252714.976:324): avc:  denied  { listen } for  pid=6678 comm="syz.1.256" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[   60.770431][   T40] audit: type=1400 audit(1744252714.976:325): avc:  denied  { accept } for  pid=6678 comm="syz.1.256" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[   60.949961][ T5959] udevd[5959]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[   60.961264][   T40] audit: type=1400 audit(1744252715.206:326): avc:  denied  { getopt } for  pid=6684 comm="syz.1.258" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   60.968425][   T40] audit: type=1400 audit(1744252715.216:327): avc:  denied  { create } for  pid=6684 comm="syz.1.258" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   60.973637][   T40] audit: type=1400 audit(1744252715.216:328): avc:  denied  { write } for  pid=6684 comm="syz.1.258" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   61.009263][ T6690] netlink: 16 bytes leftover after parsing attributes in process `syz.1.259'.
[   61.015432][ T6691] IPVS: sync thread started: state = BACKUP, mcast_ifn = batadv0, syncid = 0, id = 0
[   61.555946][   T58] usb 7-1: USB disconnect, device number 6
[   61.576660][ T6696] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   62.034917][ T6723] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   62.215432][   T58] usb 6-1: new full-speed USB device number 4 using dummy_hcd
[   62.230175][ T6731] netlink: 'syz.3.275': attribute type 21 has an invalid length.
[   62.232370][ T6731] netlink: 'syz.3.275': attribute type 6 has an invalid length.
[   62.234428][ T6731] netlink: 132 bytes leftover after parsing attributes in process `syz.3.275'.
[   62.378185][   T58] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   62.380671][   T58] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   62.383862][   T58] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   62.386551][   T58] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   62.387013][ T6749] FAULT_INJECTION: forcing a failure.
[   62.387013][ T6749] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   62.393323][ T6749] CPU: 1 UID: 0 PID: 6749 Comm: syz.2.280 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   62.393344][ T6749] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   62.393353][ T6749] Call Trace:
[   62.393358][ T6749]  <TASK>
[   62.393364][ T6749]  dump_stack_lvl+0x16c/0x1f0
[   62.393388][ T6749]  should_fail_ex+0x512/0x640
[   62.393408][ T6749]  _copy_from_iter+0x2a4/0x15b0
[   62.393428][ T6749]  ? __alloc_skb+0x200/0x380
[   62.393446][ T6749]  ? __pfx__copy_from_iter+0x10/0x10
[   62.393461][ T6749]  ? selinux_socket_getpeersec_dgram+0x1a4/0x370
[   62.393481][ T6749]  ? __pfx_selinux_socket_getpeersec_dgram+0x10/0x10
[   62.393509][ T6749]  netlink_sendmsg+0x829/0xdd0
[   62.393533][ T6749]  ? __pfx_netlink_sendmsg+0x10/0x10
[   62.393560][ T6749]  ____sys_sendmsg+0xa95/0xc70
[   62.393583][ T6749]  ? copy_msghdr_from_user+0x10a/0x160
[   62.393600][ T6749]  ? __pfx_____sys_sendmsg+0x10/0x10
[   62.393632][ T6749]  ___sys_sendmsg+0x134/0x1d0
[   62.393650][ T6749]  ? __pfx____sys_sendmsg+0x10/0x10
[   62.393693][ T6749]  __sys_sendmsg+0x16d/0x220
[   62.393712][ T6749]  ? __pfx___sys_sendmsg+0x10/0x10
[   62.393737][ T6749]  ? rcu_is_watching+0x12/0xc0
[   62.393760][ T6749]  do_syscall_64+0xcd/0x260
[   62.393782][ T6749]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.393797][ T6749] RIP: 0033:0x7f4c06b8d169
[   62.393810][ T6749] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   62.393823][ T6749] RSP: 002b:00007f4c07a8d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   62.393838][ T6749] RAX: ffffffffffffffda RBX: 00007f4c06da5fa0 RCX: 00007f4c06b8d169
[   62.393847][ T6749] RDX: 9590f6cc3ea35512 RSI: 0000200000000000 RDI: 0000000000000003
[   62.393856][ T6749] RBP: 00007f4c07a8d090 R08: 0000000000000000 R09: 0000000000000000
[   62.393864][ T6749] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   62.393873][ T6749] R13: 0000000000000000 R14: 00007f4c06da5fa0 R15: 00007ffe877fb098
[   62.393892][ T6749]  </TASK>
[   62.522785][ T6753] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   62.592848][   T58] usb 6-1: usb_control_msg returned -32
[   62.594314][   T58] usbtmc 6-1:16.0: can't read capabilities
[   62.603791][   T58] usb 6-1: USB disconnect, device number 4
[   62.776679][ T6762] loop6: detected capacity change from 0 to 524288000
[   62.782405][ T5299] Bluetooth: Unknown BR/EDR signaling command 0x0f
[   62.784654][ T5299] Bluetooth: Wrong link type (-22)
[   62.835027][ T6762] Invalid logical block size (1373)
[   63.022996][ T6773] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   63.054930][   T29] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   63.128082][ T6778] FAULT_INJECTION: forcing a failure.
[   63.128082][ T6778] name failslab, interval 1, probability 0, space 0, times 0
[   63.131332][ T6778] CPU: 0 UID: 0 PID: 6778 Comm: syz.1.292 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   63.131346][ T6778] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   63.131352][ T6778] Call Trace:
[   63.131356][ T6778]  <TASK>
[   63.131360][ T6778]  dump_stack_lvl+0x16c/0x1f0
[   63.131377][ T6778]  should_fail_ex+0x512/0x640
[   63.131390][ T6778]  should_failslab+0xc2/0x120
[   63.131402][ T6778]  kmem_cache_alloc_noprof+0x6d/0x3b0
[   63.131413][ T6778]  ? skb_clone+0x190/0x3f0
[   63.131427][ T6778]  skb_clone+0x190/0x3f0
[   63.131439][ T6778]  netlink_deliver_tap+0xabd/0xd30
[   63.131455][ T6778]  netlink_unicast+0x5df/0x7f0
[   63.131470][ T6778]  ? __pfx_netlink_unicast+0x10/0x10
[   63.131487][ T6778]  netlink_sendmsg+0x8d1/0xdd0
[   63.131501][ T6778]  ? __pfx_netlink_sendmsg+0x10/0x10
[   63.131520][ T6778]  ____sys_sendmsg+0xa95/0xc70
[   63.131534][ T6778]  ? copy_msghdr_from_user+0x10a/0x160
[   63.131546][ T6778]  ? __pfx_____sys_sendmsg+0x10/0x10
[   63.131566][ T6778]  ___sys_sendmsg+0x134/0x1d0
[   63.131578][ T6778]  ? __pfx____sys_sendmsg+0x10/0x10
[   63.131605][ T6778]  __sys_sendmsg+0x16d/0x220
[   63.131617][ T6778]  ? __pfx___sys_sendmsg+0x10/0x10
[   63.131635][ T6778]  ? rcu_is_watching+0x12/0xc0
[   63.131660][ T6778]  do_syscall_64+0xcd/0x260
[   63.131682][ T6778]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.131697][ T6778] RIP: 0033:0x7fba8878d169
[   63.131712][ T6778] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   63.131722][ T6778] RSP: 002b:00007fba865f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   63.131731][ T6778] RAX: ffffffffffffffda RBX: 00007fba889a5fa0 RCX: 00007fba8878d169
[   63.131737][ T6778] RDX: 9590f6cc3ea35512 RSI: 0000200000000000 RDI: 0000000000000003
[   63.131743][ T6778] RBP: 00007fba865f6090 R08: 0000000000000000 R09: 0000000000000000
[   63.131748][ T6778] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   63.131754][ T6778] R13: 0000000000000000 R14: 00007fba889a5fa0 R15: 00007ffefd9f54f8
[   63.131766][ T6778]  </TASK>
[   63.158362][ T6780] netlink: 'syz.2.293': attribute type 1 has an invalid length.
[   63.223617][ T6780] bond1: (slave ip6gretap1): Enslaving as a backup interface with an up link
[   63.225785][   T29] usb 5-1: Using ep0 maxpacket: 8
[   63.229387][   T78] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond
[   63.229798][   T29] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[   63.229965][ T6780] 8021q: adding VLAN 0 to HW filter on device bond1
[   63.238618][   T29] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   63.241515][   T29] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   63.244490][   T29] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   63.247543][   T29] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   63.251414][   T29] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[   63.253779][   T29] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   63.257902][   T29] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   63.260930][   T29] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   63.264007][   T29] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   63.273971][ T6788] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   63.279988][   T29] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[   63.282031][   T29] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   63.295003][   T29] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   63.300034][   T29] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   63.303345][   T29] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   63.311200][   T29] usb 5-1: string descriptor 0 read error: -22
[   63.313129][   T29] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[   63.315820][   T29] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   63.322551][   T29] adutux 5-1:168.0: ADU100  now attached to /dev/usb/adutux0
[   63.345500][ T1143] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond
[   63.362939][ T6794] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   63.413572][ T6798] xt_CT: You must specify a L4 protocol and not use inversions on it
[   63.670774][ T6810] FAULT_INJECTION: forcing a failure.
[   63.670774][ T6810] name failslab, interval 1, probability 0, space 0, times 0
[   63.676673][ T6810] CPU: 2 UID: 0 PID: 6810 Comm: syz.1.305 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   63.676687][ T6810] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   63.676694][ T6810] Call Trace:
[   63.676698][ T6810]  <TASK>
[   63.676702][ T6810]  dump_stack_lvl+0x16c/0x1f0
[   63.676733][ T6810]  should_fail_ex+0x512/0x640
[   63.676748][ T6810]  ? __kmalloc_noprof+0xbf/0x510
[   63.676759][ T6810]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[   63.676776][ T6810]  should_failslab+0xc2/0x120
[   63.676787][ T6810]  __kmalloc_noprof+0xd2/0x510
[   63.676798][ T6810]  ? avc_has_perm_noaudit+0x149/0x3b0
[   63.676809][ T6810]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[   63.676827][ T6810]  genl_family_rcv_msg_doit+0xbf/0x2f0
[   63.676843][ T6810]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[   63.676862][ T6810]  ? bpf_lsm_capable+0x9/0x10
[   63.676871][ T6810]  ? security_capable+0x7e/0x260
[   63.676883][ T6810]  ? ns_capable+0xd7/0x110
[   63.676896][ T6810]  genl_rcv_msg+0x55c/0x800
[   63.676912][ T6810]  ? __pfx_genl_rcv_msg+0x10/0x10
[   63.676926][ T6810]  ? __pfx___dev_queue_xmit+0x10/0x10
[   63.676936][ T6810]  ? __pfx_nl80211_pre_doit+0x10/0x10
[   63.676948][ T6810]  ? __pfx_nl80211_trigger_scan+0x10/0x10
[   63.676962][ T6810]  ? __pfx_nl80211_post_doit+0x10/0x10
[   63.676975][ T6810]  ? __lock_acquire+0xaa4/0x1ba0
[   63.676987][ T6810]  netlink_rcv_skb+0x16a/0x440
[   63.677000][ T6810]  ? __pfx_genl_rcv_msg+0x10/0x10
[   63.677015][ T6810]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   63.677034][ T6810]  ? __pfx_down_read+0x10/0x10
[   63.677049][ T6810]  ? netlink_deliver_tap+0x1ae/0xd30
[   63.677063][ T6810]  genl_rcv+0x28/0x40
[   63.677076][ T6810]  netlink_unicast+0x53a/0x7f0
[   63.677091][ T6810]  ? __pfx_netlink_unicast+0x10/0x10
[   63.677107][ T6810]  netlink_sendmsg+0x8d1/0xdd0
[   63.677122][ T6810]  ? __pfx_netlink_sendmsg+0x10/0x10
[   63.677140][ T6810]  ____sys_sendmsg+0xa95/0xc70
[   63.677155][ T6810]  ? copy_msghdr_from_user+0x10a/0x160
[   63.677167][ T6810]  ? __pfx_____sys_sendmsg+0x10/0x10
[   63.677187][ T6810]  ___sys_sendmsg+0x134/0x1d0
[   63.677199][ T6810]  ? __pfx____sys_sendmsg+0x10/0x10
[   63.677227][ T6810]  __sys_sendmsg+0x16d/0x220
[   63.677238][ T6810]  ? __pfx___sys_sendmsg+0x10/0x10
[   63.677258][ T6810]  do_syscall_64+0xcd/0x260
[   63.677273][ T6810]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.677283][ T6810] RIP: 0033:0x7fba8878d169
[   63.677291][ T6810] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   63.677301][ T6810] RSP: 002b:00007fba865f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   63.677310][ T6810] RAX: ffffffffffffffda RBX: 00007fba889a5fa0 RCX: 00007fba8878d169
[   63.677316][ T6810] RDX: 9590f6cc3ea35512 RSI: 0000200000000000 RDI: 0000000000000003
[   63.677322][ T6810] RBP: 00007fba865f6090 R08: 0000000000000000 R09: 0000000000000000
[   63.677327][ T6810] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   63.677333][ T6810] R13: 0000000000000000 R14: 00007fba889a5fa0 R15: 00007ffefd9f54f8
[   63.677345][ T6810]  </TASK>
[   63.735341][    T9] usb 8-1: new full-speed USB device number 4 using dummy_hcd
[   63.936167][    T9] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   63.938915][    T9] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   63.942522][    T9] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   63.945404][    T9] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   64.154253][    T9] usb 8-1: usb_control_msg returned -32
[   64.155854][    T9] usbtmc 8-1:16.0: can't read capabilities
[   64.229282][ T6821] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   64.727185][ T6830] netlink: 40 bytes leftover after parsing attributes in process `syz.1.312'.
[   65.062625][ T6842] FAULT_INJECTION: forcing a failure.
[   65.062625][ T6842] name failslab, interval 1, probability 0, space 0, times 0
[   65.066574][ T6842] CPU: 2 UID: 0 PID: 6842 Comm: syz.1.317 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   65.066590][ T6842] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   65.066596][ T6842] Call Trace:
[   65.066600][ T6842]  <TASK>
[   65.066604][ T6842]  dump_stack_lvl+0x16c/0x1f0
[   65.066631][ T6842]  should_fail_ex+0x512/0x640
[   65.066643][ T6842]  ? __kmalloc_noprof+0xbf/0x510
[   65.066665][ T6842]  ? nl80211_trigger_scan+0x4ee/0x2000
[   65.066679][ T6842]  should_failslab+0xc2/0x120
[   65.066690][ T6842]  __kmalloc_noprof+0xd2/0x510
[   65.066700][ T6842]  ? validate_scan_freqs+0x2c5/0x390
[   65.066716][ T6842]  nl80211_trigger_scan+0x4ee/0x2000
[   65.066735][ T6842]  genl_family_rcv_msg_doit+0x206/0x2f0
[   65.066752][ T6842]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[   65.066775][ T6842]  ? bpf_lsm_capable+0x9/0x10
[   65.066785][ T6842]  ? security_capable+0x7e/0x260
[   65.066797][ T6842]  ? ns_capable+0xd7/0x110
[   65.066812][ T6842]  genl_rcv_msg+0x55c/0x800
[   65.066827][ T6842]  ? __pfx_genl_rcv_msg+0x10/0x10
[   65.066841][ T6842]  ? __pfx___dev_queue_xmit+0x10/0x10
[   65.066851][ T6842]  ? __pfx_nl80211_pre_doit+0x10/0x10
[   65.066863][ T6842]  ? __pfx_nl80211_trigger_scan+0x10/0x10
[   65.066876][ T6842]  ? __pfx_nl80211_post_doit+0x10/0x10
[   65.066889][ T6842]  ? __lock_acquire+0xaa4/0x1ba0
[   65.066902][ T6842]  netlink_rcv_skb+0x16a/0x440
[   65.066915][ T6842]  ? __pfx_genl_rcv_msg+0x10/0x10
[   65.066930][ T6842]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   65.066950][ T6842]  ? __pfx_down_read+0x10/0x10
[   65.066964][ T6842]  ? netlink_deliver_tap+0x1ae/0xd30
[   65.066979][ T6842]  genl_rcv+0x28/0x40
[   65.066992][ T6842]  netlink_unicast+0x53a/0x7f0
[   65.067006][ T6842]  ? __pfx_netlink_unicast+0x10/0x10
[   65.067023][ T6842]  netlink_sendmsg+0x8d1/0xdd0
[   65.067038][ T6842]  ? __pfx_netlink_sendmsg+0x10/0x10
[   65.067057][ T6842]  ____sys_sendmsg+0xa95/0xc70
[   65.067072][ T6842]  ? copy_msghdr_from_user+0x10a/0x160
[   65.067084][ T6842]  ? __pfx_____sys_sendmsg+0x10/0x10
[   65.067105][ T6842]  ___sys_sendmsg+0x134/0x1d0
[   65.067117][ T6842]  ? __pfx____sys_sendmsg+0x10/0x10
[   65.067147][ T6842]  __sys_sendmsg+0x16d/0x220
[   65.067158][ T6842]  ? __pfx___sys_sendmsg+0x10/0x10
[   65.067174][ T6842]  ? rcu_is_watching+0x12/0xc0
[   65.067190][ T6842]  do_syscall_64+0xcd/0x260
[   65.067205][ T6842]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.067214][ T6842] RIP: 0033:0x7fba8878d169
[   65.067223][ T6842] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   65.067232][ T6842] RSP: 002b:00007fba865f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   65.067242][ T6842] RAX: ffffffffffffffda RBX: 00007fba889a5fa0 RCX: 00007fba8878d169
[   65.067248][ T6842] RDX: 9590f6cc3ea35512 RSI: 0000200000000000 RDI: 0000000000000003
[   65.067254][ T6842] RBP: 00007fba865f6090 R08: 0000000000000000 R09: 0000000000000000
[   65.067259][ T6842] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   65.067265][ T6842] R13: 0000000000000000 R14: 00007fba889a5fa0 R15: 00007ffefd9f54f8
[   65.067278][ T6842]  </TASK>
[   65.114591][ T6840] overlayfs: missing 'lowerdir'
[   65.148298][ T6845] hugetlbfs: syz.1.318 (6845): Using mlock ulimits for SHM_HUGETLB is obsolete
[   65.237815][ T6849] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   65.568026][   T29] usb 5-1: USB disconnect, device number 3
[   65.587348][    T9] usb 8-1: USB disconnect, device number 4
[   65.687191][ T6872] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   65.839674][ T6875] FAULT_INJECTION: forcing a failure.
[   65.839674][ T6875] name failslab, interval 1, probability 0, space 0, times 0
[   65.844312][ T6875] CPU: 1 UID: 0 PID: 6875 Comm: syz.0.331 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   65.844334][ T6875] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   65.844344][ T6875] Call Trace:
[   65.844350][ T6875]  <TASK>
[   65.844356][ T6875]  dump_stack_lvl+0x16c/0x1f0
[   65.844382][ T6875]  should_fail_ex+0x512/0x640
[   65.844400][ T6875]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[   65.844420][ T6875]  should_failslab+0xc2/0x120
[   65.844438][ T6875]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[   65.844455][ T6875]  ? __alloc_skb+0x2b2/0x380
[   65.844474][ T6875]  ? bpf_lsm_capable+0x9/0x10
[   65.844493][ T6875]  __alloc_skb+0x2b2/0x380
[   65.844511][ T6875]  ? __pfx___alloc_skb+0x10/0x10
[   65.844529][ T6875]  ? genl_rcv_msg+0x510/0x800
[   65.844551][ T6875]  ? genl_rcv_msg+0x4bb/0x800
[   65.844581][ T6875]  netlink_ack+0x15d/0xb80
[   65.844603][ T6875]  ? __lock_acquire+0xaa4/0x1ba0
[   65.844624][ T6875]  netlink_rcv_skb+0x347/0x440
[   65.844645][ T6875]  ? __pfx_genl_rcv_msg+0x10/0x10
[   65.844671][ T6875]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   65.844710][ T6875]  ? __pfx_down_read+0x10/0x10
[   65.844735][ T6875]  ? netlink_deliver_tap+0x1ae/0xd30
[   65.844770][ T6875]  genl_rcv+0x28/0x40
[   65.844796][ T6875]  netlink_unicast+0x53a/0x7f0
[   65.844817][ T6875]  ? __pfx_netlink_unicast+0x10/0x10
[   65.844846][ T6875]  netlink_sendmsg+0x8d1/0xdd0
[   65.844872][ T6875]  ? __pfx_netlink_sendmsg+0x10/0x10
[   65.844903][ T6875]  ____sys_sendmsg+0xa95/0xc70
[   65.844929][ T6875]  ? copy_msghdr_from_user+0x10a/0x160
[   65.844948][ T6875]  ? __pfx_____sys_sendmsg+0x10/0x10
[   65.844985][ T6875]  ___sys_sendmsg+0x134/0x1d0
[   65.845006][ T6875]  ? __pfx____sys_sendmsg+0x10/0x10
[   65.845055][ T6875]  __sys_sendmsg+0x16d/0x220
[   65.845074][ T6875]  ? __pfx___sys_sendmsg+0x10/0x10
[   65.845111][ T6875]  do_syscall_64+0xcd/0x260
[   65.845134][ T6875]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.845150][ T6875] RIP: 0033:0x7f8da9b8d169
[   65.845163][ T6875] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   65.845179][ T6875] RSP: 002b:00007f8daa937038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   65.845194][ T6875] RAX: ffffffffffffffda RBX: 00007f8da9da5fa0 RCX: 00007f8da9b8d169
[   65.845205][ T6875] RDX: 9590f6cc3ea35512 RSI: 0000200000000000 RDI: 0000000000000003
[   65.845215][ T6875] RBP: 00007f8daa937090 R08: 0000000000000000 R09: 0000000000000000
[   65.845224][ T6875] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   65.845233][ T6875] R13: 0000000000000000 R14: 00007f8da9da5fa0 R15: 00007fffd23e45b8
[   65.845256][ T6875]  </TASK>
[   66.007368][ T6883] netlink: 12 bytes leftover after parsing attributes in process `syz.0.333'.
[   66.013634][   T40] kauditd_printk_skb: 33 callbacks suppressed
[   66.013650][   T40] audit: type=1400 audit(1744252720.256:362): avc:  denied  { sqpoll } for  pid=6882 comm="syz.0.333" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[   66.014879][ T6883] netlink: 40 bytes leftover after parsing attributes in process `syz.0.333'.
[   66.024466][ T6885] netlink: 12 bytes leftover after parsing attributes in process `syz.0.333'.
[   66.156491][ T6901] vxcan0: tx drop: invalid da for name 0x0000000000000003
[   66.161225][   T40] audit: type=1400 audit(1744252720.406:363): avc:  denied  { create } for  pid=6897 comm="syz.2.337" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[   66.166907][   T40] audit: type=1400 audit(1744252720.406:364): avc:  denied  { setopt } for  pid=6897 comm="syz.2.337" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[   66.214598][   T40] audit: type=1400 audit(1744252720.456:365): avc:  denied  { write } for  pid=6897 comm="syz.2.337" path="socket:[16434]" dev="sockfs" ino=16434 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[   66.221503][ T6904] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   66.246240][ T6910] FAULT_INJECTION: forcing a failure.
[   66.246240][ T6910] name failslab, interval 1, probability 0, space 0, times 0
[   66.250912][ T6910] CPU: 1 UID: 0 PID: 6910 Comm: syz.2.342 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   66.250934][ T6910] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   66.250943][ T6910] Call Trace:
[   66.250949][ T6910]  <TASK>
[   66.250955][ T6910]  dump_stack_lvl+0x16c/0x1f0
[   66.250996][ T6910]  should_fail_ex+0x512/0x640
[   66.251018][ T6910]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[   66.251039][ T6910]  should_failslab+0xc2/0x120
[   66.251056][ T6910]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[   66.251072][ T6910]  ? __alloc_skb+0x2b2/0x380
[   66.251089][ T6910]  ? bpf_lsm_capable+0x9/0x10
[   66.251107][ T6910]  __alloc_skb+0x2b2/0x380
[   66.251123][ T6910]  ? __pfx___alloc_skb+0x10/0x10
[   66.251139][ T6910]  ? genl_rcv_msg+0x510/0x800
[   66.251158][ T6910]  ? genl_rcv_msg+0x4bb/0x800
[   66.251184][ T6910]  netlink_ack+0x15d/0xb80
[   66.251205][ T6910]  ? __lock_acquire+0xaa4/0x1ba0
[   66.251224][ T6910]  netlink_rcv_skb+0x347/0x440
[   66.251245][ T6910]  ? __pfx_genl_rcv_msg+0x10/0x10
[   66.251276][ T6910]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   66.251309][ T6910]  ? __pfx_down_read+0x10/0x10
[   66.251334][ T6910]  ? netlink_deliver_tap+0x1ae/0xd30
[   66.251357][ T6910]  genl_rcv+0x28/0x40
[   66.251380][ T6910]  netlink_unicast+0x53a/0x7f0
[   66.251406][ T6910]  ? __pfx_netlink_unicast+0x10/0x10
[   66.251437][ T6910]  netlink_sendmsg+0x8d1/0xdd0
[   66.251464][ T6910]  ? __pfx_netlink_sendmsg+0x10/0x10
[   66.251495][ T6910]  ____sys_sendmsg+0xa95/0xc70
[   66.251520][ T6910]  ? copy_msghdr_from_user+0x10a/0x160
[   66.251540][ T6910]  ? __pfx_____sys_sendmsg+0x10/0x10
[   66.251578][ T6910]  ___sys_sendmsg+0x134/0x1d0
[   66.251600][ T6910]  ? __pfx____sys_sendmsg+0x10/0x10
[   66.251648][ T6910]  __sys_sendmsg+0x16d/0x220
[   66.251667][ T6910]  ? __pfx___sys_sendmsg+0x10/0x10
[   66.251692][ T6910]  ? rcu_is_watching+0x12/0xc0
[   66.251719][ T6910]  do_syscall_64+0xcd/0x260
[   66.251742][ T6910]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.251756][ T6910] RIP: 0033:0x7f4c06b8d169
[   66.251770][ T6910] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.251785][ T6910] RSP: 002b:00007f4c07a8d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   66.251800][ T6910] RAX: ffffffffffffffda RBX: 00007f4c06da5fa0 RCX: 00007f4c06b8d169
[   66.251810][ T6910] RDX: 9590f6cc3ea35512 RSI: 0000200000000000 RDI: 0000000000000003
[   66.251819][ T6910] RBP: 00007f4c07a8d090 R08: 0000000000000000 R09: 0000000000000000
[   66.251828][ T6910] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   66.251837][ T6910] R13: 0000000000000000 R14: 00007f4c06da5fa0 R15: 00007ffe877fb098
[   66.251859][ T6910]  </TASK>
[   66.253460][   T40] audit: type=1400 audit(1744252720.496:366): avc:  denied  { ioctl } for  pid=6911 comm="syz.3.343" path="socket:[16455]" dev="sockfs" ino=16455 ioctlcmd=0x89e2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[   66.361710][   T40] audit: type=1400 audit(1744252720.496:367): avc:  denied  { write } for  pid=6911 comm="syz.3.343" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   66.431467][ T6928] input: syz0 as /devices/virtual/input/input25
[   66.534344][ T6933] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[   66.536211][ T6933] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   66.539148][ T6933] vhci_hcd vhci_hcd.0: Device attached
[   66.541984][   T40] audit: type=1400 audit(1744252720.786:368): avc:  denied  { getopt } for  pid=6932 comm="syz.1.349" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   66.543274][ T6934] vhci_hcd: connection closed
[   66.546206][ T6025] usb 8-1: new full-speed USB device number 5 using dummy_hcd
[   66.552468][   T78] vhci_hcd: stop threads
[   66.553721][   T78] vhci_hcd: release socket
[   66.555117][   T78] vhci_hcd: disconnect device
[   66.706667][ T6025] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   66.710187][ T6025] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   66.714701][ T6025] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   66.718384][ T6025] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   66.926961][ T6025] usb 8-1: usb_control_msg returned -32
[   66.929451][ T6025] usbtmc 8-1:16.0: can't read capabilities
[   66.937570][ T6025] usb 8-1: USB disconnect, device number 5
[   67.564842][   T24] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[   67.625651][ T6950] FAULT_INJECTION: forcing a failure.
[   67.625651][ T6950] name failslab, interval 1, probability 0, space 0, times 0
[   67.629473][ T6950] CPU: 0 UID: 0 PID: 6950 Comm: syz.3.355 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   67.629487][ T6950] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   67.629493][ T6950] Call Trace:
[   67.629498][ T6950]  <TASK>
[   67.629502][ T6950]  dump_stack_lvl+0x16c/0x1f0
[   67.629520][ T6950]  should_fail_ex+0x512/0x640
[   67.629533][ T6950]  should_failslab+0xc2/0x120
[   67.629545][ T6950]  kmem_cache_alloc_noprof+0x6d/0x3b0
[   67.629556][ T6950]  ? skb_clone+0x190/0x3f0
[   67.629570][ T6950]  skb_clone+0x190/0x3f0
[   67.629583][ T6950]  netlink_deliver_tap+0xabd/0xd30
[   67.629598][ T6950]  netlink_unicast+0x6b2/0x7f0
[   67.629613][ T6950]  ? __pfx_netlink_unicast+0x10/0x10
[   67.629626][ T6950]  ? genl_rcv_msg+0x4bb/0x800
[   67.629643][ T6950]  netlink_ack+0x696/0xb80
[   67.629659][ T6950]  netlink_rcv_skb+0x347/0x440
[   67.629672][ T6950]  ? __pfx_genl_rcv_msg+0x10/0x10
[   67.629687][ T6950]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   67.629706][ T6950]  ? __pfx_down_read+0x10/0x10
[   67.629722][ T6950]  ? netlink_deliver_tap+0x1ae/0xd30
[   67.629735][ T6950]  genl_rcv+0x28/0x40
[   67.629748][ T6950]  netlink_unicast+0x53a/0x7f0
[   67.629763][ T6950]  ? __pfx_netlink_unicast+0x10/0x10
[   67.629780][ T6950]  netlink_sendmsg+0x8d1/0xdd0
[   67.629795][ T6950]  ? __pfx_netlink_sendmsg+0x10/0x10
[   67.629812][ T6950]  ____sys_sendmsg+0xa95/0xc70
[   67.629827][ T6950]  ? copy_msghdr_from_user+0x10a/0x160
[   67.629839][ T6950]  ? __pfx_____sys_sendmsg+0x10/0x10
[   67.629859][ T6950]  ___sys_sendmsg+0x134/0x1d0
[   67.629871][ T6950]  ? __pfx____sys_sendmsg+0x10/0x10
[   67.629898][ T6950]  __sys_sendmsg+0x16d/0x220
[   67.629910][ T6950]  ? __pfx___sys_sendmsg+0x10/0x10
[   67.629926][ T6950]  ? rcu_is_watching+0x12/0xc0
[   67.629942][ T6950]  do_syscall_64+0xcd/0x260
[   67.629961][ T6950]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.629971][ T6950] RIP: 0033:0x7f479c38d169
[   67.629979][ T6950] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.629988][ T6950] RSP: 002b:00007f479a1f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   67.629998][ T6950] RAX: ffffffffffffffda RBX: 00007f479c5a5fa0 RCX: 00007f479c38d169
[   67.630004][ T6950] RDX: 9590f6cc3ea35512 RSI: 0000200000000000 RDI: 0000000000000003
[   67.630010][ T6950] RBP: 00007f479a1f6090 R08: 0000000000000000 R09: 0000000000000000
[   67.630015][ T6950] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   67.630021][ T6950] R13: 0000000000000000 R14: 00007f479c5a5fa0 R15: 00007ffd6b651d28
[   67.630033][ T6950]  </TASK>
[   67.719301][   T24] usb 7-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[   67.722032][   T24] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   67.724190][   T24] usb 7-1: Product: syz
[   67.725810][   T24] usb 7-1: Manufacturer: syz
[   67.727755][   T24] usb 7-1: SerialNumber: syz
[   67.730319][   T40] audit: type=1400 audit(1744252721.976:369): avc:  denied  { ioctl } for  pid=6951 comm="syz.3.356" path="/dev/sg0" dev="devtmpfs" ino=721 ioctlcmd=0x2285 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   67.742202][   T24] usb 7-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[   67.761924][   T40] audit: type=1400 audit(1744252722.006:370): avc:  denied  { firmware_load } for  pid=5988 comm="kworker/2:3" path="/lib/firmware/ath9k_htc/htc_9271-1.4.0.fw" dev="sda1" ino=287 scontext=system_u:system_r:kernel_t tcontext=system_u:object_r:lib_t tclass=system permissive=1
[   67.768144][ T5988] usb 7-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[   67.775932][   T40] audit: type=1400 audit(1744252722.016:371): avc:  denied  { setopt } for  pid=6953 comm="syz.3.358" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   67.820045][ T6956] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   68.164981][ T6002] usb 6-1: new full-speed USB device number 5 using dummy_hcd
[   68.177696][   T34] usb 7-1: USB disconnect, device number 7
[   68.316700][ T6002] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   68.320555][ T6002] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   68.324626][ T6002] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   68.327148][ T6002] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   68.535549][ T6002] usb 6-1: usb_control_msg returned -32
[   68.537415][ T6002] usbtmc 6-1:16.0: can't read capabilities
[   68.543509][ T6002] usb 6-1: USB disconnect, device number 5
[   68.804925][ T6968] tmpfs: Bad value for 'mpol'
[   68.851593][ T6972] FAULT_INJECTION: forcing a failure.
[   68.851593][ T6972] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   68.856466][ T6972] CPU: 2 UID: 0 PID: 6972 Comm: syz.2.365 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   68.856486][ T6972] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   68.856496][ T6972] Call Trace:
[   68.856501][ T6972]  <TASK>
[   68.856507][ T6972]  dump_stack_lvl+0x16c/0x1f0
[   68.856533][ T6972]  should_fail_ex+0x512/0x640
[   68.856555][ T6972]  _copy_to_user+0x32/0xd0
[   68.856574][ T6972]  simple_read_from_buffer+0xcb/0x170
[   68.856595][ T6972]  proc_fail_nth_read+0x197/0x270
[   68.856616][ T6972]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   68.856640][ T6972]  ? rw_verify_area+0xcf/0x680
[   68.856660][ T6972]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   68.856683][ T6972]  vfs_read+0x1de/0xc70
[   68.856713][ T6972]  ? __pfx___mutex_lock+0x10/0x10
[   68.856732][ T6972]  ? __pfx_vfs_read+0x10/0x10
[   68.856758][ T6972]  ? __fget_files+0x20e/0x3c0
[   68.856780][ T6972]  ksys_read+0x12a/0x240
[   68.856794][ T6972]  ? __pfx_ksys_read+0x10/0x10
[   68.856806][ T6972]  ? rcu_is_watching+0x12/0xc0
[   68.856834][ T6972]  do_syscall_64+0xcd/0x260
[   68.856855][ T6972]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.856870][ T6972] RIP: 0033:0x7f4c06b8bb7c
[   68.856882][ T6972] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   68.856897][ T6972] RSP: 002b:00007f4c07a8d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   68.856911][ T6972] RAX: ffffffffffffffda RBX: 00007f4c06da5fa0 RCX: 00007f4c06b8bb7c
[   68.856921][ T6972] RDX: 000000000000000f RSI: 00007f4c07a8d0a0 RDI: 0000000000000004
[   68.856930][ T6972] RBP: 00007f4c07a8d090 R08: 0000000000000000 R09: 0000000000000000
[   68.856939][ T6972] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   68.856947][ T6972] R13: 0000000000000000 R14: 00007f4c06da5fa0 R15: 00007ffe877fb098
[   68.856968][ T6972]  </TASK>
[   68.994911][ T5988] usb 7-1: Service connection timeout for: 256
[   68.997305][ T5988] ath9k_htc 7-1:1.0: ath9k_htc: Unable to initialize HTC services
[   69.001315][ T5988] ath9k_htc: Failed to initialize the device
[   69.004466][   T34] usb 7-1: ath9k_htc: USB layer deinitialized
[   69.057559][ T6982] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   69.087859][ T6985] ipt_REJECT: TCP_RESET invalid for non-tcp
[   69.325667][ T6991] ieee802154 phy0 wpan0: encryption failed: -22
[   69.382061][ T6993] netlink: 20 bytes leftover after parsing attributes in process `syz.2.372'.
[   69.734420][ T7009] Invalid option length (328) for dns_resolver key
[   69.798894][ T7011] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   69.874877][   T29] usb 6-1: new full-speed USB device number 6 using dummy_hcd
[   69.891369][ T7014] netlink: 4 bytes leftover after parsing attributes in process `syz.3.381'.
[   69.894678][ T7014] netlink: 12 bytes leftover after parsing attributes in process `syz.3.381'.
[   69.934503][ T7019] netlink: 8 bytes leftover after parsing attributes in process `syz.3.382'.
[   69.938426][ T7019] netlink: 12 bytes leftover after parsing attributes in process `syz.3.382'.
[   69.949913][ T7019] netlink: 8 bytes leftover after parsing attributes in process `syz.3.382'.
[   70.026338][   T29] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   70.029179][   T29] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   70.032874][   T29] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   70.035805][   T29] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   70.195453][ T7022] netlink: 8 bytes leftover after parsing attributes in process `syz.2.383'.
[   70.198428][ T7022] netlink: 'syz.2.383': attribute type 19 has an invalid length.
[   70.200718][ T7022] netlink: 12 bytes leftover after parsing attributes in process `syz.2.383'.
[   70.246853][   T29] usb 6-1: usb_control_msg returned -32
[   70.248566][   T29] usbtmc 6-1:16.0: can't read capabilities
[   70.255533][   T29] usb 6-1: USB disconnect, device number 6
[   70.850369][ T7035] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   70.882918][ T7040] mmap: syz.3.391 (7040): VmData 37462016 exceed data ulimit 4. Update limits or use boot option ignore_rlimit_data.
[   70.949498][ T7044] do_dccp_getsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app
[   70.962685][ T7044] SELinux:  Context � is not valid (left unmapped).
[   71.089211][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[   71.091174][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
[   71.257125][ T5988] usb 6-1: new full-speed USB device number 7 using dummy_hcd
[   71.342395][ T7056] netlink: 28 bytes leftover after parsing attributes in process `syz.3.398'.
[   71.354980][   T40] kauditd_printk_skb: 22 callbacks suppressed
[   71.354991][   T40] audit: type=1400 audit(1744252725.596:394): avc:  denied  { read } for  pid=7057 comm="syz.2.399" path="socket:[15098]" dev="sockfs" ino=15098 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   71.371872][   T40] audit: type=1400 audit(1744252725.606:395): avc:  denied  { mount } for  pid=7057 comm="syz.2.399" name="/" dev="hugetlbfs" ino=15099 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[   71.379964][   T40] audit: type=1400 audit(1744252725.606:396): avc:  denied  { mounton } for  pid=7057 comm="syz.2.399" path="/107/file0/file0" dev="hugetlbfs" ino=15100 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=sock_file permissive=1
[   71.387837][   T40] audit: type=1400 audit(1744252725.606:397): avc:  denied  { mounton } for  pid=7057 comm="syz.2.399" path="/107/file0" dev="hugetlbfs" ino=15099 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=dir permissive=1
[   71.397166][   T40] audit: type=1400 audit(1744252725.626:398): avc:  denied  { unmount } for  pid=5953 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[   71.408178][ T5988] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   71.412144][ T5988] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   71.421435][ T5988] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   71.425435][ T5988] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   71.553147][ T7065] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   71.638745][ T1143] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   71.647121][ T5988] usb 6-1: usb_control_msg returned -32
[   71.648719][ T5988] usbtmc 6-1:16.0: can't read capabilities
[   71.657033][ T5988] usb 6-1: USB disconnect, device number 7
[   71.720648][   T40] audit: type=1400 audit(1744252725.966:399): avc:  denied  { execute } for  pid=7067 comm="syz-executor" name="syz-executor" dev="sda1" ino=1924 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   71.729119][   T40] audit: type=1400 audit(1744252725.966:400): avc:  denied  { execute_no_trans } for  pid=7067 comm="syz-executor" path="/syz-executor" dev="sda1" ino=1924 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   71.755630][ T1143] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   71.816338][ T1143] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   71.897333][ T5960] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   71.901576][ T5960] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   71.905244][ T5960] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   71.908568][ T5960] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   71.911121][ T5960] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   71.915562][   T40] audit: type=1400 audit(1744252726.166:401): avc:  denied  { mounton } for  pid=7070 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[   71.934409][ T1143] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   72.042052][ T7070] chnl_net:caif_netlink_parms(): no params data found
[   72.086695][ T1143] bridge_slave_1: left allmulticast mode
[   72.088618][ T1143] bridge_slave_1: left promiscuous mode
[   72.091211][ T1143] bridge0: port 2(bridge_slave_1) entered disabled state
[   72.097376][ T1143] bridge_slave_0: left allmulticast mode
[   72.098952][ T1143] bridge_slave_0: left promiscuous mode
[   72.100574][ T1143] bridge0: port 1(bridge_slave_0) entered disabled state
[   72.195704][ T1143] bond1 (unregistering): (slave ip6gretap1): Removing an active aggregator
[   72.201267][ T1143] bond1 (unregistering): (slave ip6gretap1): Releasing backup interface
[   72.382986][ T1143] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   72.387081][ T1143] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   72.390318][ T1143] bond0 (unregistering): Released all slaves
[   72.444908][   T29] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[   72.449172][ T1143] bond1 (unregistering): Released all slaves
[   72.517090][ T7070] bridge0: port 1(bridge_slave_0) entered blocking state
[   72.519165][ T7070] bridge0: port 1(bridge_slave_0) entered disabled state
[   72.521258][ T7070] bridge_slave_0: entered allmulticast mode
[   72.523618][ T7070] bridge_slave_0: entered promiscuous mode
[   72.527881][ T7070] bridge0: port 2(bridge_slave_1) entered blocking state
[   72.530980][ T7070] bridge0: port 2(bridge_slave_1) entered disabled state
[   72.533045][ T7070] bridge_slave_1: entered allmulticast mode
[   72.535751][ T7070] bridge_slave_1: entered promiscuous mode
[   72.595097][   T29] usb 6-1: device descriptor read/64, error -71
[   72.621854][ T7070] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   72.629816][ T7070] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   72.716288][ T7070] team0: Port device team_slave_0 added
[   72.748284][ T7070] team0: Port device team_slave_1 added
[   72.810519][ T7070] batman_adv: batadv0: Adding interface: batadv_slave_0
[   72.813132][ T7070] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   72.822611][ T7070] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   72.828093][ T7070] batman_adv: batadv0: Adding interface: batadv_slave_1
[   72.830632][ T7070] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   72.840485][ T7070] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   72.844982][   T29] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[   72.898539][ T1143] hsr_slave_0: left promiscuous mode
[   72.903640][ T1143] hsr_slave_1: left promiscuous mode
[   72.912271][ T1143] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   72.915292][ T1143] batman_adv: batadv0: Removing interface: batadv_slave_0
[   72.920095][ T1143] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   72.922195][ T1143] batman_adv: batadv0: Removing interface: batadv_slave_1
[   72.938087][ T1143] veth1_macvtap: left promiscuous mode
[   72.941059][ T1143] veth0_macvtap: left promiscuous mode
[   72.943456][ T1143] veth1_vlan: left promiscuous mode
[   72.946037][ T1143] veth0_vlan: left promiscuous mode
[   72.984947][   T29] usb 6-1: device descriptor read/64, error -71
[   73.105092][   T29] usb usb6-port1: attempt power cycle
[   73.454836][   T29] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[   73.487118][   T29] usb 6-1: device descriptor read/8, error -71
[   73.506150][ T1143] team0 (unregistering): Port device team_slave_1 removed
[   73.553160][ T1143] team0 (unregistering): Port device team_slave_0 removed
[   73.734885][   T29] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[   73.765488][   T29] usb 6-1: device descriptor read/8, error -71
[   73.885141][   T29] usb usb6-port1: unable to enumerate USB device
[   73.949683][ T7070] hsr_slave_0: entered promiscuous mode
[   73.952637][ T7070] hsr_slave_1: entered promiscuous mode
[   73.956787][ T7070] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   73.956957][ T5960] Bluetooth: hci1: command tx timeout
[   73.958970][ T7070] Cannot create hsr debugfs directory
[   74.022400][ T7100] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   74.100251][ T7070] 8021q: adding VLAN 0 to HW filter on device bond0
[   74.116560][ T7070] 8021q: adding VLAN 0 to HW filter on device team0
[   74.121647][   T78] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.123854][   T78] bridge0: port 1(bridge_slave_0) entered forwarding state
[   74.130363][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.132900][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   74.255885][ T7070] 8021q: adding VLAN 0 to HW filter on device batadv0
[   74.402150][ T7070] veth0_vlan: entered promiscuous mode
[   74.409739][ T7070] veth1_vlan: entered promiscuous mode
[   74.425831][ T7070] veth0_macvtap: entered promiscuous mode
[   74.429351][ T7070] veth1_macvtap: entered promiscuous mode
[   74.438889][ T7070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   74.442767][ T7070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.447439][ T7070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   74.450421][ T7070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.453115][ T7070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   74.456213][ T7070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.459759][ T7070] batman_adv: batadv0: Interface activated: batadv_slave_0
[   74.471414][ T7070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   74.474445][ T7070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.479459][ T7070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   74.483452][ T7070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.487696][ T7070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   74.490573][ T7070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.494078][ T7070] batman_adv: batadv0: Interface activated: batadv_slave_1
[   74.531796][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   74.534167][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   74.554554][   T78] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   74.557008][   T78] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   74.568178][   T40] audit: type=1400 audit(1744252728.816:402): avc:  denied  { mounton } for  pid=7070 comm="syz-executor" path="/syzkaller.ZZ6BVw/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   74.576897][   T40] audit: type=1400 audit(1744252728.826:403): avc:  denied  { mount } for  pid=7070 comm="syz-executor" name="/" dev="gadgetfs" ino=8369 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[   74.724534][ T7137] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   74.812333][ T7152] netlink: 'syz.4.417': attribute type 1 has an invalid length.
[   74.815784][ T7152] netlink: 8 bytes leftover after parsing attributes in process `syz.4.417'.
[   75.233046][ T7171] netlink: 'syz.1.419': attribute type 3 has an invalid length.
[   75.236495][ T7171] netlink: 12 bytes leftover after parsing attributes in process `syz.1.419'.
[   75.370739][ T7186] netlink: 8 bytes leftover after parsing attributes in process `syz.1.423'.
[   75.384925][ T7186] loop4: detected capacity change from 0 to 7
[   75.388732][ T7186] Dev loop4: unable to read RDB block 7
[   75.390346][ T7186]  loop4: unable to read partition table
[   75.391968][ T7186] loop4: partition table beyond EOD, truncated
[   75.393710][ T7186] loop_reread_partitions: partition scan of loop4 (3�����) failed (rc=-5)
[   75.398579][ T7186] new mount options do not match the existing superblock, will be ignored
[   75.403805][ T7186] cgroup: option or name mismatch, new: 0x4 "", old: 0x0 ""
[   75.697237][ T7199] netlink: 8 bytes leftover after parsing attributes in process `syz.4.427'.
[   75.784890][ T7205] syz.4.428: attempt to access beyond end of device
[   75.784890][ T7205] nbd4: rw=0, sector=0, nr_sectors = 1 limit=0
[   75.789640][ T7205] (syz.4.428,7205,0):ocfs2_get_sector:1714 ERROR: status = -5
[   75.792132][ T7205] (syz.4.428,7205,0):ocfs2_sb_probe:753 ERROR: status = -5
[   75.794126][ T7205] (syz.4.428,7205,0):ocfs2_fill_super:989 ERROR: superblock probe failed!
[   75.797318][ T7205] (syz.4.428,7205,0):ocfs2_fill_super:1177 ERROR: status = -5
[   75.983644][ T7223] netlink: 24 bytes leftover after parsing attributes in process `syz.0.433'.
[   76.045105][ T5960] Bluetooth: hci1: command tx timeout
[   76.134320][ T7237] netlink: 20 bytes leftover after parsing attributes in process `syz.0.436'.
[   76.324905][ T5988] usb 9-1: new full-speed USB device number 2 using dummy_hcd
[   76.476736][ T5988] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   76.480490][ T5988] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   76.485545][ T5988] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   76.489014][ T5988] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   76.691957][ T7244] netlink: 28 bytes leftover after parsing attributes in process `syz.0.440'.
[   76.699052][ T5988] usb 9-1: usb_control_msg returned -32
[   76.701112][ T5988] usbtmc 9-1:16.0: can't read capabilities
[   76.932200][ T7256] netlink: 16 bytes leftover after parsing attributes in process `syz.3.444'.
[   76.937001][ T7256] netlink: 92 bytes leftover after parsing attributes in process `syz.3.444'.
[   77.143290][ T7272] netlink: 'syz.3.447': attribute type 3 has an invalid length.
[   77.146832][   T40] kauditd_printk_skb: 23 callbacks suppressed
[   77.146845][   T40] audit: type=1400 audit(1744252731.396:427): avc:  denied  { setopt } for  pid=7271 comm="syz.3.447" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   77.225341][   T40] audit: type=1326 audit(1744252731.476:428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7233 comm="syz.4.437" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f708458d169 code=0x0
[   77.308154][ T7274] block nbd1: shutting down sockets
[   77.407335][   T40] audit: type=1400 audit(1744252731.656:429): avc:  denied  { getopt } for  pid=7291 comm="syz.3.450" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   77.423133][   T40] audit: type=1400 audit(1744252731.666:430): avc:  denied  { getopt } for  pid=7291 comm="syz.3.450" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   77.505375][ T7300] 9p: Unknown Cache mode or invalid value readaheav
[   77.638723][ T7307] netlink: 'syz.1.456': attribute type 1 has an invalid length.
[   77.641889][ T7307] netlink: 224 bytes leftover after parsing attributes in process `syz.1.456'.
[   77.646663][ T7307] netlink: 8 bytes leftover after parsing attributes in process `syz.1.456'.
[   78.125375][ T5960] Bluetooth: hci1: command tx timeout
[   78.190895][   T40] audit: type=1400 audit(1744252732.436:431): avc:  denied  { write } for  pid=7320 comm="syz.3.462" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[   78.359480][   T40] audit: type=1400 audit(1744252732.606:432): avc:  denied  { setopt } for  pid=7328 comm="syz.3.466" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   78.416028][   T40] audit: type=1326 audit(1744252732.666:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7332 comm="syz.3.468" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f479c38d169 code=0x7ffc0000
[   78.416913][ T7334] netlink: 'syz.3.468': attribute type 4 has an invalid length.
[   78.423219][   T40] audit: type=1326 audit(1744252732.666:434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7332 comm="syz.3.468" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f479c38d169 code=0x7ffc0000
[   78.438593][   T40] audit: type=1326 audit(1744252732.666:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7332 comm="syz.3.468" exe="/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f479c38d169 code=0x7ffc0000
[   78.445889][   T40] audit: type=1326 audit(1744252732.666:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7332 comm="syz.3.468" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f479c38d169 code=0x7ffc0000
[   79.088655][ T5988] usb 9-1: USB disconnect, device number 2
[   79.778774][ T7419] overlayfs: conflicting options: metacopy=off,verity=require
[   80.005508][ T7442] kvm: requested 3352 ns i8254 timer period limited to 200000 ns
[   80.018276][ T7442] kvm: requested 838 ns i8254 timer period limited to 200000 ns
[   80.022746][ T7442] kvm: requested 838 ns i8254 timer period limited to 200000 ns
[   80.031867][ T7442] kvm: requested 838 ns i8254 timer period limited to 200000 ns
[   80.046367][ T7442] kvm: requested 838 ns i8254 timer period limited to 200000 ns
[   80.051588][ T7442] kvm: requested 838 ns i8254 timer period limited to 200000 ns
[   80.056789][ T7442] kvm: requested 838 ns i8254 timer period limited to 200000 ns
[   80.064605][ T7442] kvm: requested 1676 ns i8254 timer period limited to 200000 ns
[   80.118180][ T7451] ipt_rpfilter: only valid in 'raw' or 'mangle' table, not '
'
[   80.194932][ T5960] Bluetooth: hci1: command tx timeout
[   80.275649][ T7462] __vm_enough_memory: pid: 7462, comm: syz.1.517, bytes: 21199765426176 not enough memory for the allocation
[   80.655313][ T7474] __nla_validate_parse: 1 callbacks suppressed
[   80.655329][ T7474] netlink: 6 bytes leftover after parsing attributes in process `syz.1.520'.
[   80.662244][ T7474] overlay: ./bus is not a directory
[   80.664866][ T7476] overlay: ./bus is not a directory
[   80.694389][ T7475] netlink: 4 bytes leftover after parsing attributes in process `syz.4.521'.
[   80.703338][ T7475] bridge_slave_1: left allmulticast mode
[   80.707099][ T7475] bridge_slave_1: left promiscuous mode
[   80.709630][ T7475] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.714216][ T7475] bridge_slave_0: left allmulticast mode
[   80.716657][ T7475] bridge_slave_0: left promiscuous mode
[   80.718587][ T7475] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.878877][ T7487] netlink: 'syz.3.524': attribute type 28 has an invalid length.
[   80.878895][ T7488] netlink: 'syz.3.524': attribute type 28 has an invalid length.
[   80.881702][ T7487] netlink: 'syz.3.524': attribute type 3 has an invalid length.
[   80.881717][ T7487] netlink: 132 bytes leftover after parsing attributes in process `syz.3.524'.
[   80.890560][ T7488] netlink: 'syz.3.524': attribute type 3 has an invalid length.
[   80.893515][ T7488] netlink: 132 bytes leftover after parsing attributes in process `syz.3.524'.
[   80.963015][ T7503] FAULT_INJECTION: forcing a failure.
[   80.963015][ T7503] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   80.970978][ T7503] CPU: 3 UID: 0 PID: 7503 Comm: syz.4.528 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   80.971003][ T7503] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   80.971013][ T7503] Call Trace:
[   80.971020][ T7503]  <TASK>
[   80.971026][ T7503]  dump_stack_lvl+0x16c/0x1f0
[   80.971068][ T7503]  should_fail_ex+0x512/0x640
[   80.971095][ T7503]  _copy_to_user+0x32/0xd0
[   80.971118][ T7503]  simple_read_from_buffer+0xcb/0x170
[   80.971146][ T7503]  proc_fail_nth_read+0x197/0x270
[   80.971175][ T7503]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   80.971202][ T7503]  ? rw_verify_area+0xcf/0x680
[   80.971226][ T7503]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   80.971252][ T7503]  vfs_read+0x1de/0xc70
[   80.971281][ T7503]  ? __pfx___mutex_lock+0x10/0x10
[   80.971304][ T7503]  ? __pfx_vfs_read+0x10/0x10
[   80.971336][ T7503]  ? __fget_files+0x20e/0x3c0
[   80.971360][ T7503]  ksys_read+0x12a/0x240
[   80.971375][ T7503]  ? __pfx_ksys_read+0x10/0x10
[   80.971398][ T7503]  do_syscall_64+0xcd/0x260
[   80.971423][ T7503]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.971440][ T7503] RIP: 0033:0x7f708458bb7c
[   80.971455][ T7503] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   80.971470][ T7503] RSP: 002b:00007f7085374030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   80.971487][ T7503] RAX: ffffffffffffffda RBX: 00007f70847a5fa0 RCX: 00007f708458bb7c
[   80.971497][ T7503] RDX: 000000000000000f RSI: 00007f70853740a0 RDI: 0000000000000003
[   80.971507][ T7503] RBP: 00007f7085374090 R08: 0000000000000000 R09: 0000000000000000
[   80.971516][ T7503] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   80.971525][ T7503] R13: 0000000000000000 R14: 00007f70847a5fa0 R15: 00007fffb1df7738
[   80.971554][ T7503]  </TASK>
[   81.035199][    C3] vkms_vblank_simulate: vblank timer overrun
[   81.066119][ T7510] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   81.319147][ T1471] cfg80211: failed to load regulatory.db
[   81.504195][ T7520] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   81.865105][ T6002] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[   81.967867][ T7527] netlink: 52 bytes leftover after parsing attributes in process `syz.4.536'.
[   81.968362][ T7529] netlink: 52 bytes leftover after parsing attributes in process `syz.4.536'.
[   81.977001][ T7527] bridge0: the hash_elasticity option has been deprecated and is always 16
[   81.983347][ T7529] bridge1: the hash_elasticity option has been deprecated and is always 16
[   82.024871][ T6002] usb 8-1: Using ep0 maxpacket: 8
[   82.027839][ T6002] usb 8-1: config 0 interface 0 has no altsetting 0
[   82.031205][ T6002] usb 8-1: New USB device found, idVendor=046d, idProduct=08ae, bcdDevice=11.58
[   82.033778][ T6002] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   82.036107][ T6002] usb 8-1: Product: syz
[   82.037393][ T6002] usb 8-1: Manufacturer: syz
[   82.038762][ T6002] usb 8-1: SerialNumber: syz
[   82.041711][ T6002] usb 8-1: config 0 descriptor??
[   82.044239][ T6002] hub 8-1:0.0: bad descriptor, ignoring hub
[   82.046023][ T6002] hub 8-1:0.0: probe with driver hub failed with error -5
[   82.048812][ T6002] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08ae
[   82.075950][ T7534] QAT: Device 7 not found
[   82.079594][ T7536] QAT: Device 7 not found
[   82.152428][ T7543] netlink: 8 bytes leftover after parsing attributes in process `syz.0.541'.
[   82.166742][   T40] kauditd_printk_skb: 50 callbacks suppressed
[   82.166757][   T40] audit: type=1400 audit(1744252736.416:487): avc:  denied  { create } for  pid=7542 comm="syz.0.541" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[   82.245625][ T6002] gspca_zc3xx: reg_w_i err -71
[   82.454883][    T9] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   82.594936][    T9] usb 5-1: device descriptor read/64, error -71
[   82.789103][   T40] audit: type=1400 audit(1744252737.036:488): avc:  denied  { setopt } for  pid=7557 comm="syz.4.547" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[   82.789349][ T7558] netlink: 8 bytes leftover after parsing attributes in process `syz.4.547'.
[   82.835105][ T6002] gspca_zc3xx: Unknown sensor - set to TAS5130C
[   82.837631][ T6002] gspca_zc3xx 8-1:0.0: probe with driver gspca_zc3xx failed with error -71
[   82.844980][    T9] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[   82.869272][   T40] audit: type=1400 audit(1744252737.116:489): avc:  denied  { watch } for  pid=7563 comm="syz.4.549" path="/25/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="tmpfs" ino=165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   82.888116][   T40] audit: type=1400 audit(1744252737.116:490): avc:  denied  { watch_sb watch_reads } for  pid=7563 comm="syz.4.549" path="/25/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="tmpfs" ino=165 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   82.934907][   T34] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[   82.951473][   T40] audit: type=1400 audit(1744252737.196:491): avc:  denied  { watch } for  pid=7563 comm="syz.4.549" path="/25" dev="tmpfs" ino=160 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   82.984954][    T9] usb 5-1: device descriptor read/64, error -71
[   83.030934][ T6002] usb 8-1: USB disconnect, device number 6
[   83.095663][    T9] usb usb5-port1: attempt power cycle
[   83.107743][   T34] usb 6-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[   83.111097][   T34] usb 6-1: config 1 has an invalid descriptor of length 242, skipping remainder of the config
[   83.115120][   T34] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2
[   83.118395][   T34] usb 6-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[   83.126001][   T34] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   83.129359][   T34] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   83.132319][   T34] usb 6-1: Product: 傅禁⹢ϟﴨ知ಙꝔᣣʡ篆巬㨷풮빤蓥촛낼ᢼ᱗뮻䕂Ƒᶶ좏뜲笏ⷝ찪뿥볏벊ᣯ쵫춀縭駫蛌醵탁纘껟ㄱ吕宜媮듺투貽炪錏䇄鈺ꑻ뙄钐뺜倽୧⦙䬉㳂㦍䤦㩵軵ᡔ⋁㓧甴逛镪
[   83.142167][   T34] usb 6-1: Manufacturer: 罜籂쟢쫉ꐕ֎
[   83.144392][   T34] usb 6-1: SerialNumber: ж
[   83.151703][   T34] cdc_ncm 6-1:1.0: skipping garbage
[   83.153643][   T34] cdc_ncm 6-1:1.0: skipping garbage
[   83.157682][   T34] cdc_ncm 6-1:1.0: CDC Union missing and no IAD found
[   83.160102][   T34] cdc_ncm 6-1:1.0: bind() failure
[   83.364896][ T6002] usb 8-1: new full-speed USB device number 7 using dummy_hcd
[   83.435614][    T9] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[   83.455708][    T9] usb 5-1: device descriptor read/8, error -71
[   83.517408][ T6002] usb 8-1: config 0 interface 0 has no altsetting 0
[   83.522101][ T6002] usb 8-1: New USB device found, idVendor=046d, idProduct=08ae, bcdDevice=11.58
[   83.525527][ T6002] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   83.528777][ T6002] usb 8-1: Product: syz
[   83.530458][ T6002] usb 8-1: Manufacturer: syz
[   83.532348][ T6002] usb 8-1: SerialNumber: syz
[   83.536435][ T6002] usb 8-1: config 0 descriptor??
[   83.540308][ T6002] hub 8-1:0.0: bad descriptor, ignoring hub
[   83.542667][ T6002] hub 8-1:0.0: probe with driver hub failed with error -5
[   83.546603][ T6002] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08ae
[   83.705054][    T9] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[   83.727887][    T9] usb 5-1: device descriptor read/8, error -71
[   83.846227][    T9] usb usb5-port1: unable to enumerate USB device
[   84.034593][ T7575] xt_hashlimit: size too large, truncated to 1048576
[   84.065020][ T6002] gspca_zc3xx: reg_w_i err -110
[   84.496356][ T7580] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   84.507803][   T40] audit: type=1400 audit(1744252738.756:492): avc:  denied  { link } for  pid=7518 comm="syz.3.533" name="#26" dev="tmpfs" ino=727 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[   84.519294][   T40] audit: type=1400 audit(1744252738.756:493): avc:  denied  { rename } for  pid=7518 comm="syz.3.533" name="#27" dev="tmpfs" ino=727 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[   84.654855][ T6002] gspca_zc3xx: Unknown sensor - set to TAS5130C
[   84.657198][ T6002] gspca_zc3xx 8-1:0.0: probe with driver gspca_zc3xx failed with error -110
[   84.706629][   T40] audit: type=1400 audit(1744252738.956:494): avc:  denied  { append } for  pid=7581 comm="syz.4.553" name="card2" dev="devtmpfs" ino=639 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[   84.909847][   T40] audit: type=1400 audit(1744252739.156:495): avc:  denied  { shutdown } for  pid=7595 comm="syz.4.557" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   84.921044][   T40] audit: type=1400 audit(1744252739.166:496): avc:  denied  { connect } for  pid=7595 comm="syz.4.557" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   85.431236][ T7618] IPVS: set_ctl: invalid protocol: 103 172.20.20.170:20004
[   85.598172][ T7628] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=54 sclass=netlink_route_socket pid=7628 comm=syz.4.566
[   85.656745][ T5988] usb 8-1: USB disconnect, device number 7
[   85.703600][ T5988] usb 6-1: USB disconnect, device number 12
[   85.724419][ T7639] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci1/hci1:200/input26
[   85.729329][ T7644] netlink: 68 bytes leftover after parsing attributes in process `syz.1.569'.
[   86.116107][ T7674] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=7674 comm=syz.1.577
[   86.127067][ T7674] netlink: 4 bytes leftover after parsing attributes in process `syz.1.577'.
[   86.487601][ T7704] veth1_to_batadv: entered promiscuous mode
[   86.489760][ T7704] macsec1: entered promiscuous mode
[   86.551628][ T7711] fuse: Bad value for 'user_id'
[   86.553580][ T7711] fuse: Bad value for 'user_id'
[   86.558998][ T7711] No control pipe specified
[   86.573626][ T7714] syz_tun: refused to change device tx_queue_len
[   86.605699][ T7717] netlink: 12 bytes leftover after parsing attributes in process `syz.0.588'.
[   86.935166][ T1471] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[   86.969649][ T7744] netlink: 76 bytes leftover after parsing attributes in process `syz.4.593'.
[   87.095180][ T1471] usb 5-1: Using ep0 maxpacket: 32
[   87.100881][ T1471] usb 5-1: config 4 has an invalid interface number: 246 but max is 1
[   87.103911][ T1471] usb 5-1: config 4 has an invalid interface number: 186 but max is 1
[   87.108094][ T1471] usb 5-1: config 4 has an invalid interface number: 204 but max is 1
[   87.111126][ T1471] usb 5-1: config 4 contains an unexpected descriptor of type 0x1, skipping
[   87.114312][ T1471] usb 5-1: config 4 has 3 interfaces, different from the descriptor's value: 2
[   87.118536][ T1471] usb 5-1: config 4 has no interface number 0
[   87.120835][ T1471] usb 5-1: config 4 has no interface number 1
[   87.123078][ T1471] usb 5-1: config 4 has no interface number 2
[   87.125848][ T1471] usb 5-1: config 4 interface 246 altsetting 1 endpoint 0x1 has an invalid bInterval 128, changing to 7
[   87.129920][ T1471] usb 5-1: config 4 interface 246 altsetting 1 endpoint 0xC has invalid wMaxPacketSize 0
[   87.133549][ T1471] usb 5-1: config 4 interface 246 altsetting 1 has a duplicate endpoint with address 0x3, skipping
[   87.139860][ T1471] usb 5-1: config 4 interface 246 altsetting 1 has a duplicate endpoint with address 0x3, skipping
[   87.143754][ T1471] usb 5-1: config 4 interface 246 altsetting 1 has a duplicate endpoint with address 0xC, skipping
[   87.148348][ T1471] usb 5-1: config 4 interface 246 altsetting 1 has 7 endpoint descriptors, different from the interface descriptor's value: 12
[   87.153263][ T1471] usb 5-1: config 4 interface 186 altsetting 175 endpoint 0x6 has invalid maxpacket 1024, setting to 64
[   87.159025][ T1471] usb 5-1: config 4 interface 186 altsetting 175 has a duplicate endpoint with address 0xF, skipping
[   87.163026][ T1471] usb 5-1: config 4 interface 186 altsetting 175 endpoint 0x9 has invalid maxpacket 1024, setting to 64
[   87.167571][ T1471] usb 5-1: config 4 interface 186 altsetting 175 has 5 endpoint descriptors, different from the interface descriptor's value: 7
[   87.172235][ T1471] usb 5-1: config 4 interface 204 altsetting 171 has an invalid descriptor for endpoint zero, skipping
[   87.177214][ T1471] usb 5-1: config 4 interface 204 altsetting 171 has a duplicate endpoint with address 0xA, skipping
[   87.181867][ T7763] netlink: 4 bytes leftover after parsing attributes in process `syz.4.596'.
[   87.181858][ T1471] usb 5-1: config 4 interface 204 altsetting 171 has an invalid descriptor for endpoint zero, skipping
[   87.187545][ T1471] usb 5-1: config 4 interface 204 altsetting 171 has a duplicate endpoint with address 0x6, skipping
[   87.191619][ T1471] usb 5-1: config 4 interface 204 altsetting 171 has a duplicate endpoint with address 0x3, skipping
[   87.196182][ T1471] usb 5-1: config 4 interface 204 altsetting 171 endpoint 0x7 has invalid maxpacket 1024, setting to 64
[   87.199605][ T1471] usb 5-1: config 4 interface 204 altsetting 171 endpoint 0xB has invalid maxpacket 1023, setting to 64
[   87.203804][ T1471] usb 5-1: config 4 interface 204 altsetting 171 has a duplicate endpoint with address 0x6, skipping
[   87.207974][ T1471] usb 5-1: config 4 interface 204 altsetting 171 has an invalid descriptor for endpoint zero, skipping
[   87.211058][ T1471] usb 5-1: config 4 interface 204 altsetting 171 has a duplicate endpoint with address 0xD, skipping
[   87.214172][ T1471] usb 5-1: config 4 interface 204 altsetting 171 has a duplicate endpoint with address 0x7, skipping
[   87.219598][ T1471] usb 5-1: config 4 interface 204 altsetting 171 has a duplicate endpoint with address 0xD, skipping
[   87.224985][ T1471] usb 5-1: config 4 interface 246 has no altsetting 0
[   87.227074][ T1471] usb 5-1: config 4 interface 186 has no altsetting 0
[   87.229062][ T1471] usb 5-1: config 4 interface 204 has no altsetting 0
[   87.235243][ T1471] usb 5-1: New USB device found, idVendor=045e, idProduct=07c6, bcdDevice=dc.22
[   87.238755][ T1471] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   87.241140][ T1471] usb 5-1: Product: చ
[   87.242422][ T1471] usb 5-1: Manufacturer: 歳⭻힙하联頚씈᝛뻒Ԥ▐ೠ퓣鰂嗫拉崣騐读嫰䵷辨첐隣圗ᵏ呀䩺݂諻お㿃쒼틓튂ᶏ杠傖뼛舱쪽邪쟄䆯盗俸읋䷋貮꓄ظᫍ༬荋ᐘ诗锄遜趁
[   87.249161][ T1471] usb 5-1: SerialNumber: ᰁ
[   87.257061][ T1471] r8152-cfgselector 5-1: Unknown version 0x0000
[   87.466638][ T7731] netlink: 20 bytes leftover after parsing attributes in process `syz.0.590'.
[   87.469220][ T7731] netlink: 4 bytes leftover after parsing attributes in process `syz.0.590'.
[   87.500722][ T7778] netlink: 24 bytes leftover after parsing attributes in process `syz.3.600'.
[   87.511244][ T1471] r8152-cfgselector 5-1: USB disconnect, device number 8
[   87.732174][   T40] kauditd_printk_skb: 21 callbacks suppressed
[   87.732189][   T40] audit: type=1400 audit(1744252741.976:518): avc:  denied  { setattr } for  pid=7787 comm="syz.3.604" name="" dev="pipefs" ino=6512 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[   87.832491][ T7799] 
[   87.833220][ T7799] =====================================
[   87.834763][ T7799] WARNING: bad unlock balance detected!
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[   87.836377][ T7799] 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 Not tainted
[   87.842121][ T7799] -------------------------------------
[   87.844445][ T7799] syz.3.608/7799 is trying to release lock (&dev_instance_lock_key) at:
[   87.847044][ T7799] [<ffffffff89513f40>] do_setlink.constprop.0+0x860/0x44f0
[   87.849873][ T7799] but there are no more locks to release!
[   87.851801][ T7799] 
[   87.851801][ T7799] other info that might help us debug this:
[   87.854582][ T7799] 1 lock held by syz.3.608/7799:
[   87.856318][ T7799]  #0: ffffffff9012bda8 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x600/0x2000
[   87.859155][ T7799] 
[   87.859155][ T7799] stack backtrace:
[   87.860847][ T7799] CPU: 3 UID: 0 PID: 7799 Comm: syz.3.608 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   87.860870][ T7799] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   87.860881][ T7799] Call Trace:
[   87.860887][ T7799]  <TASK>
[   87.860894][ T7799]  dump_stack_lvl+0x116/0x1f0
[   87.860918][ T7799]  ? do_setlink.constprop.0+0x860/0x44f0
[   87.860940][ T7799]  print_unlock_imbalance_bug+0x11b/0x130
[   87.860965][ T7799]  ? do_setlink.constprop.0+0x860/0x44f0
[   87.860987][ T7799]  lock_release+0x242/0x2f0
[   87.861004][ T7799]  __mutex_unlock_slowpath+0xa2/0x6a0
[   87.861026][ T7799]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   87.861048][ T7799]  ? __pfx_validate_linkmsg+0x10/0x10
[   87.861067][ T7799]  ? do_setlink.constprop.0+0x2f2f/0x44f0
[   87.861087][ T7799]  do_setlink.constprop.0+0x860/0x44f0
[   87.861110][ T7799]  ? __lock_acquire+0xaa4/0x1ba0
[   87.861123][ T7799]  ? __pfx_do_setlink.constprop.0+0x10/0x10
[   87.861147][ T7799]  ? __mutex_trylock_common+0xe9/0x250
[   87.861162][ T7799]  ? __pfx___mutex_trylock_common+0x10/0x10
[   87.861177][ T7799]  ? __pfx___might_resched+0x10/0x10
[   87.861200][ T7799]  ? rcu_is_watching+0x12/0xc0
[   87.861219][ T7799]  ? trace_contention_end+0xdd/0x130
[   87.861234][ T7799]  ? __mutex_lock+0x1ca/0xb90
[   87.861253][ T7799]  ? rtnl_newlink+0x600/0x2000
[   87.861273][ T7799]  ? __pfx___mutex_lock+0x10/0x10
[   87.861291][ T7799]  ? cap_capable+0xb3/0x250
[   87.861312][ T7799]  ? netlink_ns_capable+0xfa/0x130
[   87.861333][ T7799]  rtnl_newlink+0x18e0/0x2000
[   87.861355][ T7799]  ? __pfx_rtnl_newlink+0x10/0x10
[   87.861372][ T7799]  ? find_held_lock+0x2b/0x80
[   87.861391][ T7799]  ? avc_has_perm_noaudit+0x117/0x3b0
[   87.861409][ T7799]  ? avc_has_perm_noaudit+0x149/0x3b0
[   87.861427][ T7799]  ? __lock_acquire+0x5ca/0x1ba0
[   87.861445][ T7799]  ? find_held_lock+0x2b/0x80
[   87.861465][ T7799]  ? __pfx_rtnl_newlink+0x10/0x10
[   87.861483][ T7799]  ? __pfx_rtnl_newlink+0x10/0x10
[   87.861502][ T7799]  ? rtnetlink_rcv_msg+0x93a/0xe90
[   87.861521][ T7799]  ? __pfx_rtnl_newlink+0x10/0x10
[   87.861550][ T7799]  rtnetlink_rcv_msg+0x95b/0xe90
[   87.861571][ T7799]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   87.861597][ T7799]  netlink_rcv_skb+0x16a/0x440
[   87.861615][ T7799]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   87.861628][ T7799]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   87.861648][ T7799]  ? netlink_deliver_tap+0x1ae/0xd30
[   87.861667][ T7799]  netlink_unicast+0x53a/0x7f0
[   87.861690][ T7799]  ? __pfx_netlink_unicast+0x10/0x10
[   87.861713][ T7799]  netlink_sendmsg+0x8d1/0xdd0
[   87.861736][ T7799]  ? __pfx_netlink_sendmsg+0x10/0x10
[   87.861759][ T7799]  ____sys_sendmsg+0xa95/0xc70
[   87.861783][ T7799]  ? copy_msghdr_from_user+0x10a/0x160
[   87.861801][ T7799]  ? __pfx_____sys_sendmsg+0x10/0x10
[   87.861826][ T7799]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   87.861847][ T7799]  ___sys_sendmsg+0x134/0x1d0
[   87.861867][ T7799]  ? __pfx____sys_sendmsg+0x10/0x10
[   87.861896][ T7799]  __sys_sendmsg+0x16d/0x220
[   87.861914][ T7799]  ? __pfx___sys_sendmsg+0x10/0x10
[   87.861931][ T7799]  ? __x64_sys_futex+0x1e0/0x4c0
[   87.861953][ T7799]  ? rcu_is_watching+0x12/0xc0
[   87.861974][ T7799]  do_syscall_64+0xcd/0x260
[   87.861994][ T7799]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.862009][ T7799] RIP: 0033:0x7f479c38d169
[   87.862022][ T7799] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.862038][ T7799] RSP: 002b:00007f479a1f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   87.862053][ T7799] RAX: ffffffffffffffda RBX: 00007f479c5a5fa0 RCX: 00007f479c38d169
[   87.862064][ T7799] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000000000000004
[   87.862073][ T7799] RBP: 00007f479c40e730 R08: 0000000000000000 R09: 0000000000000000
[   87.862083][ T7799] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   87.862092][ T7799] R13: 0000000000000000 R14: 00007f479c5a5fa0 R15: 00007ffd6b651d28
[   87.862109][ T7799]  </TASK>
[   87.882530][   T40] audit: type=1400 audit(1744252742.126:519): avc:  denied  { setopt } for  pid=7798 comm="syz.3.608" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   87.883118][    C3] vkms_vblank_simulate: vblank timer overrun
[   87.887332][   T40] audit: type=1400 audit(1744252742.136:520): avc:  denied  { getopt } for  pid=7798 comm="syz.3.608" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1

VM DIAGNOSIS:
02:39:02  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000005 RBX=0000000000000001 RCX=ffffffff9129b138 RDX=0000000000000000
RSI=0000000000000000 RDI=0000000000000001 RBP=ffffc90003b5f158 RSP=ffffc90003b5f0a0
R8 =ffffffff9129b13c R9 =0000000000000000 R10=ffffc90003b5f110 R11=0000000000012a61
R12=ffffc90003b5f160 R13=ffffc90003b5f110 R14=ffffc90003b5f350 R15=ffffc90003b5f144
RIP=ffffffff8169e586 RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d69b3000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f8fa9ad7d60 CR3=0000000035416000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=00000000000000d8 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000002020004 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8fa8f7d6a3 00007f8fa8f7d6a3
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff12a80e60 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055555f16b2b3 000055555f16b130
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055555f161470
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055555f16f7b2 000055555f16f140
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000001df8a
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 474553474953006c 616e676973206e77 6f6e6b6e75000a29
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 4745534749530049 444b424c56054b52 4a4b4e4b50000a0c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0800010000040806 06011cfe14800408 8285bba408000100 0002080606011d9e
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0102800402100000 0800060154fc0e08 0002800300100000 0401080006016594
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0008006003001000 5003001000400302 100030030fffffff ffffff0420030008
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0010030880808080 1000000300100005 ba80080001000004 080606011cfe1480
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 04088285bba40800 0100000208060601 1d9e00100014b003 00100014a0030010
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000076b1c RBX=0000000000000001 RCX=ffffffff8b723439 RDX=ffffed100d4a65be
RSI=ffffffff8bf46540 RDI=ffffffff8191a7f1 RBP=ffffed1003a59488 RSP=ffffc90000177df8
R8 =0000000000000000 R9 =ffffed100d4a65bd R10=ffff88806a532deb R11=0000000000000000
R12=0000000000000001 R13=ffff88801d2ca440 R14=ffffffff90865310 R15=0000000000000000
RIP=ffffffff8b721ccf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6ab3000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007ffc8218bec8 CR3=000000004283e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000004090001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffb1df7860 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f708460f712
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f708460f71f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f708460f719
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f708460f72d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f708460f7b3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f708460f891
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 752e303030327039 3d6e6f6973726576 2c65686361637366 3d65686361632c79
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 346ed1d374b0a97d 23fa41401c3e536c 3e111e9a60680004 0008000f0010000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a4ff5fdc24c661f 2f47a7ac50391982 8860d88d88ffb977 7c5a829f1aca49dd
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 633ff4f40ccdd669 7a77e5acf8533153 3ae2c0886d3d0a19 cfc64369a5b7933a
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 086c6af8c7b01a6e 7abc0412f399b7aa bdeb3ab5549e070b 0a4ff5fdc24c661f
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f47a7ac50391982 8860d88d88ffb977 7c5a829f1aca49dd 346ed1d374b0a97d
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 23fa41401c3e536c 3e111e9a6068a128 c332752d3987b544 9e70b609a79dbcbd
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000070254 RBX=0000000000000002 RCX=ffffffff8b723439 RDX=ffffed100d4c65be
RSI=ffffffff8bf46540 RDI=ffffffff8191a7f1 RBP=ffffed1003a59910 RSP=ffffc90000187df8
R8 =0000000000000000 R9 =ffffed100d4c65bd R10=ffff88806a632deb R11=0000000000000000
R12=0000000000000002 R13=ffff88801d2cc880 R14=ffffffff90865310 R15=0000000000000000
RIP=ffffffff8b721ccf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6bb3000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fb8d4aba580 CR3=000000004bf4a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008000100 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffd23e4940 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8da9c0f712
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8da9c0f71f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8da9c0f719
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8da9c0f72d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8da9c0f7b3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8da9c0f891
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff854e0b40 RDI=ffffffff9ae254e0 RBP=ffffffff9ae254a0 RSP=ffffc90003aaeaa0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=000000002d2d2d2d
R12=0000000000000000 R13=0000000000000020 R14=fffffbfff35c4aee R15=dffffc0000000000
RIP=ffffffff854e0b67 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f479a1f66c0 ffffffff 00c00000
GS =0000 ffff8880d6cb3000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f479a1f4568 CR3=000000003638e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000010000 0000000000030000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f479c40f712
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f479c40f71f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f479c40f719
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f479c40f72d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f479c40f7b3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f479c40f891
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f479c57d488 00007f479c57d480 00007f479c57d478 00007f479c57d450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f479d0dd100 00007f479c57d440 00007f479c57d458 00007f479c57d4a0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f479c57d498 00007f479c57d490 00007f479c57d488 00007f479c57d480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000