last executing test programs:

7m23.557840733s ago: executing program 2 (id=6):
setreuid(0x0, 0xee01)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f00000000c0)=ANY=[@ANYRES32=r0, @ANYRES32, @ANYBLOB="020000000000000000400000", @ANYRES32, @ANYBLOB="c19c2b1c34edb3b1c59f045d41bcc6e32685229ec22228465e19eb3503cdae130000000000000000338901605ddcd81ea186a9bb63bc730d6a69b64094dd948e1254c951a1dab80d", @ANYRES64=0x0], 0x10)
lstat(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140), 0x1208001, &(0x7f0000000240)={[{@verity_off}, {@userxattr}, {@uuid_null}, {@metacopy_on}], [{@uid_lt={'uid<', r1}}, {@subj_user={'subj_user', 0x3d, ':{*'}}, {@fscontext={'fscontext', 0x3d, 'root'}}, {@permit_directio}, {@context={'context', 0x3d, 'unconfined_u'}}]})
shmget(0x0, 0x4000, 0x602, &(0x7f0000ff9000/0x4000)=nil)
shmget(0x0, 0x2000, 0x64, &(0x7f0000ffc000/0x2000)=nil)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000800)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c00000006000000000000000000000f0700"], 0x0, 0x2a, 0x0, 0x9, 0x0, 0x0, @void, @value}, 0x28)

7m23.429309826s ago: executing program 2 (id=7):
r0 = socket$pptp(0x18, 0x1, 0x2)
ioctl$PPPIOCGMRU(r0, 0x80047453, &(0x7f0000000040))
socket$inet6(0xa, 0x1, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
unshare(0x8000400)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/power/pm_wakeup_irq', 0x109a02, 0x0)
copy_file_range(r4, 0x0, r4, 0x0, 0x7, 0x700)
r5 = openat$mixer(0xffffffffffffff9c, &(0x7f00000016c0), 0x121040, 0x0)
ioctl$SOUND_MIXER_READ_VOLUME(r5, 0x80044d00, &(0x7f0000000040))
r6 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000000c0)={'macvlan1\x00', <r7=>0x0})
setsockopt$packet_int(r6, 0x107, 0x14, &(0x7f0000000000)=0xf3e, 0x4)
sendto$packet(r6, &(0x7f00000004c0)="27ae7a5c0cbed4eb3bebc9ec4672", 0xe, 0x800, &(0x7f0000000080)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, 0x14)
sendmsg$nl_route(r4, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000000c0)={&(0x7f0000000280)=@dellink={0x4c, 0x11, 0x1, 0x70bd27, 0x25dfdbfd, {0x0, 0x0, 0x0, r7, 0x4, 0x4003}, [@IFLA_GSO_MAX_SIZE={0x8, 0x29, 0x256b3}, @IFLA_ALT_IFNAME={0x14, 0x35, 'vlan0\x00'}, @IFLA_GSO_MAX_SIZE={0x8, 0x29, 0x9}, @IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0x7}]}, 0x4c}, 0x1, 0x0, 0x0, 0xc000}, 0x8001)
symlink(&(0x7f0000000080)='.\x00', &(0x7f0000000240)='./file0\x00')
chmod(&(0x7f0000000180)='./file0\x00', 0x23f)
setuid(0xee01)
removexattr(&(0x7f0000000200)='./file0\x00', &(0x7f00000006c0)=@known='user.syz\x00')

7m22.250759515s ago: executing program 2 (id=10):
r0 = syz_open_dev$video(&(0x7f00000005c0), 0x5, 0x80942)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r4}, 0x10)
fsmount(0xffffffffffffffff, 0x0, 0x80)
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$UFFDIO_COPY(0xffffffffffffffff, 0xc028aa05, 0x0)
timerfd_create(0x9, 0x0)
r5 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$inet(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000240)="5c00000014006b47880000d86e6c1d0002887ea6ea65670000000000000090f9c3dc90f8f41f8ecff32c6e020075e300250045586c8da718ad4b4460bc24eab55600000000000000bf9367b4fa51f60a64c9f4d4938037e786a6d0bd", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r6, 0x800448d4, &(0x7f0000000100)={0x300, 0x1fe, '\x00\x00\b', 0x2, 0xf})
ioctl$VIDIOC_ENUMINPUT(r0, 0xc050561a, &(0x7f0000000000)={0x3, "f9008800290215cbab2f111658df5edc0100000000000000000000000400", 0x1, 0x4, 0x4, 0x8, 0x3a5, 0x2})

7m21.204538505s ago: executing program 2 (id=13):
mkdir(&(0x7f00000001c0)='./file1\x00', 0x40)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000080)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000140)='./file1\x00')
syz_open_procfs$userns(0x0, &(0x7f00000000c0))
getgroups(0x4, &(0x7f00000002c0)=[0x0, 0xffffffffffffffff, <r0=>0x0, 0xffffffffffffffff])
stat(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
r2 = getgid()
r3 = getpid()
shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000480)={{0x1, 0x0, r0, r1, r2, 0x0, 0x6}, 0x7, 0xffffffff, 0x1, 0xbdc7, 0x0, r3})
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f00000006c0))
stat(&(0x7f0000000700)='./file1\x00', &(0x7f0000000780))
mount$fuse(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000500), 0x0, &(0x7f0000000980)=ANY=[])
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='net_prio.prioidx\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r4, 0xffffffff80000800, 0x0, &(0x7f0000000480)={0x0, 0x5b81, 0x1, 0x405, 0x5, 0x9, 0x0, 0x0, 0x3})
r5 = syz_open_procfs(0x0, &(0x7f0000000740)='comm\x00')
write$P9_RSTATu(r5, 0x0, 0x62)
r6 = fsopen(&(0x7f0000000280)='cifs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r6, 0x1, &(0x7f0000000040)='source', &(0x7f0000000f80)='//\xf2b\x06\b\xba\xdfXo\xdc\xea\x95/\x82\x10\x97W\x8f7\x98\x9b/Q9\xf9\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce/\\\xb4\\\xf2_\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x93\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6\xc5n\xeb\xab\xf70\x99\xef\x8b<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcfK\xcc\xeb,\x1a1\xa6\xf3e\xc2F\xc3\x00\xaa\xd5\xfc\x1bR\xa9\x8c\xb4&\x9f\xa2$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc10\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\n\xad\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x92\xdby\xe9\xdc@.\xc1g\xc6\fc\xa26\xd8\xdf\xef\xf7\x9c\x1a\xcc\x8am\x8b7\xcf\xc5\xa6\xf4\f\xabj%Y\xa9\xdd\x0e9e\xb5\xec\x99@\xd2\t\n\xb1o', 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x280800, 0x0)
ioctl$KVM_CHECK_EXTENSION(0xffffffffffffffff, 0xae03, 0x27)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000080)={0x0, r7}, 0x8)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000540)=ANY=[@ANYBLOB="40b2eb799feb010018000000000000003800000038000000080000000000000000000003000000000000000100000d000000000000020002fafdb5b100000e00000000000012feffffff005f5f5f615f610000000000000000000000000000b294fb63624346fca90d210d0d33a52a11fb05003406000000000000000000"], 0x0, 0x58, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
r8 = socket(0x15, 0x5, 0x0)
getsockopt(r8, 0x200000000114, 0x271d, 0x0, &(0x7f0000000040))
capset(0x0, &(0x7f00000000c0)={0x200000, 0x200000})
r9 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r9)
r10 = getpgrp(r9)
ptrace(0x8, r10)
syz_emit_ethernet(0xbe, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"], 0x0)

7m20.830839676s ago: executing program 2 (id=14):
modify_ldt$write(0x1, &(0x7f0000000240)={0x0, 0x0, 0x1000}, 0x10)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000001b80), r0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000380), r0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x0, 0x19, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000c7800000e3ffffff0600005d20110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf09000000000000550901000000000095000000000000008520000003000000c58af4ffffffffff18010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000bf91000000000000b7020000000000008500000084000000b7000000000000009500000000000000"], &(0x7f0000000080)='syzkaller\x00', 0x4, 0x4a, &(0x7f0000000180)=""/74, 0x40f00, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000280)={0x2, 0x4}, 0x8, 0x10, &(0x7f0000000480)={0x1, 0x6, 0x7, 0x6e}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000004c0)=[0x1, 0x1, 0x1, 0x1, 0x1], 0x0, 0x10, 0x1, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x61680, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0))
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_usb_control_io$printer(0xffffffffffffffff, 0x0, &(0x7f0000000500)={0x34, &(0x7f0000000200)=ANY=[@ANYBLOB="3d14c2000000a26bf577b55389fe63e77b3196f901d7a69781a8d996f4fa887086db2d751bd97d64d870bedd8a"], 0x0, 0x0, 0x0, 0x0, 0x0})
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000001c0)=ANY=[@ANYBLOB="38010000100033060000000008000080e0000002040000000000000000000000fe8000000000000d000000000000000000000000000000000a008000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ac1414aa000000000000000000000000000004d232000000ff0200"/37], 0x138}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
r4 = syz_io_uring_setup(0x10d2, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x2, 0x268}, &(0x7f00000002c0)=<r5=>0x0, &(0x7f0000000080)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000240)={0x1, &(0x7f0000000200)=[{0x2f, 0x5, 0x0, 0x4}]}, 0x8)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r5, r6, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x7b, 0x0, 0x0, 0x0, &(0x7f0000011000/0x4000)=nil, 0x4000, 0xc})
io_uring_enter(r4, 0x47bc, 0xf404, 0x0, 0x0, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000400)='kmem_cache_free\x00', r7}, 0x10)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f00000004c0)={'syzkaller0\x00', @link_local})
write$cgroup_subtree(r1, &(0x7f0000000380)=ANY=[], 0xe)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='tlb_flush\x00', 0xffffffffffffffff, 0x0, 0x24000000}, 0x18)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mq_open(&(0x7f0000001140)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\xe0\x9d\x97Te\x81\x98L\xfe\x97+u\xd3^\xb1\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xeb\x84\x99\xc6\x0f\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:\xf0\xf4\x150\x0f\xb4\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v\xe7\xd1\xee\xb3\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5L\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\xdf\x15\f]\x15\xf5#G\xce\xaf\x88U\xfa\x80\xf24\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xe2\x9e\x91%\x94\v\xb9\xdc\xd6\x87\x8f\xcd\xc1\xb05\x81\x81\xf8\xe9X\xe8Kt9@\xf4\xe1\xa6=\xc9\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\xe5\xedo.\xaa\xf2\xb4\xcdn\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\x18/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f:Z\xb8\xee;\xe3;\x8aPV\xce\xee\xf8[\x16\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xce\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10\\\x8c\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\x0f\b^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\xca\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xad3\x91\xa5\xe6!\xcd\xa2\xa4\x14\x12\xf9\xbf\xa8b\xcec:\xd7\'\f\f\x957\xc9}\r\xa6\xaa\x0f\xca\x96\xeb', 0x42, 0x0, 0x0)

7m19.957012086s ago: executing program 2 (id=19):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket(0x40000000015, 0x5, 0x0)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e24, 0xbc, @dev={0xfe, 0x80, '\x00', 0xa}}, 0x1c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', 0xffffffffffffffff, 0x0, 0x7a}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r1 = getpid()
openat$sw_sync(0xffffffffffffff9c, &(0x7f00000000c0), 0x68400, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'lo\x00', <r4=>0x0})
sendto$packet(r2, &(0x7f0000000100)="a99c383d33c9c607b1b9d49688a8834a88a8", 0x12, 0x0, &(0x7f0000000000)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @multicast}, 0x14)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
connect$inet6(r7, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote}, 0x1c)
r8 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r8, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000002c0)="2e00000010008188040f80ec59acbc0413010048100000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x80)
syz_emit_ethernet(0x6e, &(0x7f00000003c0)=ANY=[@ANYRESDEC=r4], 0x0)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0)
r9 = getpid()
sched_setscheduler(r9, 0x2, &(0x7f0000000200)=0x4)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
prlimit64(0x0, 0xe, 0x0, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)

7m17.214822229s ago: executing program 32 (id=19):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket(0x40000000015, 0x5, 0x0)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e24, 0xbc, @dev={0xfe, 0x80, '\x00', 0xa}}, 0x1c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', 0xffffffffffffffff, 0x0, 0x7a}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r1 = getpid()
openat$sw_sync(0xffffffffffffff9c, &(0x7f00000000c0), 0x68400, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'lo\x00', <r4=>0x0})
sendto$packet(r2, &(0x7f0000000100)="a99c383d33c9c607b1b9d49688a8834a88a8", 0x12, 0x0, &(0x7f0000000000)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @multicast}, 0x14)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
connect$inet6(r7, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote}, 0x1c)
r8 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r8, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000002c0)="2e00000010008188040f80ec59acbc0413010048100000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x80)
syz_emit_ethernet(0x6e, &(0x7f00000003c0)=ANY=[@ANYRESDEC=r4], 0x0)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0)
r9 = getpid()
sched_setscheduler(r9, 0x2, &(0x7f0000000200)=0x4)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
prlimit64(0x0, 0xe, 0x0, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)

49.597645527s ago: executing program 3 (id=1224):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000040)={0x8604}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=@mpls_getroute={0x24, 0x1a, 0x9e8a232eead7a86d, 0x0, 0x0, {0x1c, 0x14}, [@RTA_DST={0x8, 0x1, {0x4}}]}, 0x24}}, 0x0)
sendmsg$OSF_MSG_REMOVE(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000400)={&(0x7f0000000680)={0x268, 0x1, 0x5, 0x3, 0x0, 0x0, {0x3}, [{{0x254, 0x1, {{0x1, 0xffffffff}, 0x2, 0xfc, 0x19bd, 0x2, 0xd, 'syz1\x00', "bd3cfd375f3d8a5d88ac7193c6ede68db466448bec9e5b4d8df62b01c6fe5a5b", "e107e6c3a892b955711913ebfda41718892ab5d121fc466703e7180c09fac435", [{0x7ff, 0x1, {0x2, 0x2}}, {0x4, 0x9, {0x1, 0x7}}, {0x3, 0x6, {0x2, 0x7a6ae104}}, {0x2, 0xa, {0x0, 0x4}}, {0x80, 0xfffd, {0x0, 0x4}}, {0x1ff, 0x401, {0x1, 0x6}}, {0xc, 0xfd8b, {0x1}}, {0x400, 0xbb, {0x2, 0x80}}, {0x1ff, 0x9, {0x3}}, {0x6, 0x3e7, {0x3, 0x6}}, {0xff, 0x1000, {0x2, 0xd}}, {0x453, 0x200, {0x0, 0x4}}, {0x0, 0x3, {0x2, 0xc}}, {0xf, 0x6d83, {0x1, 0xfffffff5}}, {0x8, 0x4, {0x0, 0x41e}}, {0xc66d, 0xc32f, {0x2, 0x4}}, {0x4, 0xfd7, {0x0, 0x1}}, {0x3ff, 0xfff, {0x3, 0x7fff}}, {0x9, 0xfffa, {0x0, 0x6}}, {0xfffc, 0x4, {0x0, 0x4}}, {0x9, 0x0, {0x3, 0x9}}, {0x284, 0x6, {0x3, 0xf1}}, {0x7, 0x6f27, {0x1, 0x80000000}}, {0x4, 0xff46, {0x1, 0x401}}, {0x5, 0x4, {0x1, 0xd}}, {0x1000, 0x7a, {0x1, 0x1}}, {0x0, 0x8, {0x0, 0xfffffffe}}, {0x4, 0x7, {0x2, 0x2}}, {0x8000, 0x4, {0x0, 0x1}}, {0x0, 0x9, {0x1, 0xfffffff9}}, {0xec2, 0xc12, {0x0, 0x1000}}, {0x2, 0xb, {0x3, 0x40000000}}, {0x6, 0x40, {0x2, 0x2}}, {0x2, 0x9, {0x2, 0x6c5b}}, {0x4, 0x8952, {0x0, 0x3}}, {0x8ab4, 0x8, {0x2, 0x10}}, {0x6, 0x4, {0x0, 0xf}}, {0xc, 0x3, {0x1, 0x8}}, {0x3, 0xffff, {0x1, 0x81}}, {0x0, 0x3, {0x2}}]}}}]}, 0x268}, 0x1, 0x0, 0x0, 0x811}, 0x800)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10)
bind$tipc(0xffffffffffffffff, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), r4)
sendmsg$TIPC_CMD_GET_NODES(r4, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)={0x1c, r5, 0x1, 0x4, 0x0, {{}, {0x0, 0x6}}}, 0x1c}}, 0x0)
syz_open_dev$I2C(0x0, 0x80, 0x14000)
socket$inet6_mptcp(0xa, 0x1, 0x106)
io_uring_setup(0x10d7, &(0x7f00000000c0)={0x0, 0xbfff, 0x400, 0x2, 0x1d})
r6 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
ioctl$FIONCLEX(0xffffffffffffffff, 0x5450)
connect$netrom(r6, 0x0, 0x0)
r7 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000200)={'ipvlan0\x00'})
sendmsg$DCCPDIAG_GETSOCK(r7, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40851}, 0x40000)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)

48.34770243s ago: executing program 3 (id=1231):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x8, 0x3, &(0x7f0000001300)=ANY=[@ANYBLOB="1800"/13], &(0x7f0000001200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x4)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f0000000540)={0x26, 'hash\x00', 0x0, 0x0, 'poly1305-generic\x00'}, 0x58)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$kcm(0x29, 0x2, 0x0)
r6 = socket$inet_sctp(0x2, 0x5, 0x84)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000200)={'syztnl2\x00', &(0x7f0000000180)={'ip_vti0\x00', <r7=>0x0, 0x0, 0x8, 0x3, 0x605, {{0xc, 0x4, 0x3, 0x2a, 0x30, 0x67, 0x0, 0x4, 0x29, 0x0, @local, @multicast2, {[@timestamp_prespec={0x44, 0x1c, 0xd2, 0x3, 0x5, [{@local, 0x1}, {@private=0xa010101, 0x4a2}, {@multicast1, 0x983e}]}]}}}}})
setsockopt$inet_mreqn(r6, 0x0, 0x20, &(0x7f0000000340)={@rand_addr=0x64010102, @broadcast, r7}, 0xc)

46.332916156s ago: executing program 3 (id=1232):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x802}, 0x10)
r1 = syz_open_dev$ttys(0xc, 0x2, 0x0)
ioctl$TCFLSH(r1, 0x540b, 0x1)
sendmsg$nl_generic(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="180000005a0001"], 0x18}}, 0x0)

45.449935315s ago: executing program 3 (id=1236):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x89}, 0x0)
r0 = syz_open_dev$I2C(&(0x7f0000000d80), 0x0, 0x0)
ioctl$I2C_SMBUS(r0, 0x720, &(0x7f0000000040)={0x1, 0x46, 0x2, &(0x7f0000000000)={0x17, "a1441879465bb4cbbc8bb007841cbc892436bf5a998645263d9283fc04dc1d211e"}})
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
add_key(0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000080), 0x60000, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_GET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r3, 0x325, 0x400, 0x0, {0x8}}, 0x14}}, 0x4800)
sendmsg$L2TP_CMD_SESSION_GET(r1, &(0x7f0000000380)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000100)={&(0x7f0000000300)={0x4c, r3, 0x300, 0x70bd28, 0x25dfdbfc, {}, [@L2TP_ATTR_PEER_COOKIE={0xc, 0x10, 0x7}, @L2TP_ATTR_RECV_SEQ={0x5, 0x12, 0x7}, @L2TP_ATTR_RECV_TIMEOUT={0xc, 0x16, 0x8}, @L2TP_ATTR_DEBUG={0x8, 0x11, 0x1}, @L2TP_ATTR_LNS_MODE={0x5, 0x14, 0x10}, @L2TP_ATTR_MTU={0x6, 0x1c, 0x10}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20004000}, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_open_procfs(0x0, &(0x7f0000000200)='syscall\x00')
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000003c0)=@newlink={0x40, 0x10, 0x421, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x40100}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @gretap={{0xb}, {0x11}}}, @IFLA_ADDRESS={0xa, 0x1, @local}]}, 0x40}}, 0x40000)

44.27545823s ago: executing program 3 (id=1240):
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x1a3089, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
r0 = gettid()
prlimit64(0x0, 0xe, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000240)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = fsopen(&(0x7f0000000100)='mqueue\x00', 0x0)
r3 = fsmount(r2, 0x1, 0x0)
mknodat$loop(r3, &(0x7f0000000040)='./file0\x00', 0x80, 0x1)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6(0xa, 0x3, 0x8000000003c)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
utime(0x0, 0xfffffffffffffffc)
waitid(0x1, r0, 0x0, 0x8, 0x0)
chdir(&(0x7f00000001c0)='./file1\x00')
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
acct(&(0x7f0000000140)='./file0\x00')
symlink(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
setpgid(r6, r6)
setpgid(0x0, r6)
mount(0x0, &(0x7f0000000300)='./file1\x00', &(0x7f0000000080)='tmpfs\x00', 0x800, 0x0)

36.872566552s ago: executing program 3 (id=1259):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000007a40)={0x1658, 0x41, 0x107, 0xfffffffc, 0x25dfdbfd, {0x1, 0x7c}, [@nested={0x4, 0x136}, @nested={0x1640, 0x41, 0x0, 0x1, [@typed={0xc, 0x105, 0x0, 0x0, @u64=0x3}, @nested={0xd1, 0x6c, 0x0, 0x1, [@nested={0xb9, 0x4b, 0x0, 0x1, [@generic="87becf1ff4fa3cf4bf8f1ebe98da98a242c988f7b66575268771fbcfd19c49a4faf54b991ca243bc43b30c6af41b9dfde359ef3c96b96625e38b4caa4602f8741806c22acddde255d5e487577122396cd2c678d05afbcfea9385d501cf86365c6c3a4d8101ac6f6b2d8faa5a3a2e18c1ef02c4b692d4597e1d686543839c71c95b520bbd38125393458e23f541174aa0a93619b44c84ba7418ac3f1cc6", @generic, @nested={0x4, 0xdf}, @typed={0x14, 0xb1, 0x0, 0x0, @ipv6=@private1={0xfc, 0x1, '\x00', 0x1}}, @generic]}]}, @nested={0x4, 0x88}, @nested={0x156b, 0x10a, 0x0, 0x1, [@generic="bc7bbd585fcf25e88074fb54648d0702b97c40ceb8eb0bb4aa0eb26c128de1d6813ffc3578bc6c6d933585fb6c05c37e41c1e49a48ecc4e5e84de5e77555dc6ebbd27e44f1993604c0a29372f69d5c9c7e3c1995c008fcffbff368c585645d00c290b729eeb26351fc0105c1ea40e76da395ed5775", @typed={0xc, 0x4a, 0x0, 0x0, @u64=0x4}, @nested={0x15d, 0x121, 0x0, 0x1, [@generic="c78359f859f56cb8e944e35de4005015cae95f6235850baa1a3c9f3b747b5c06fcfd09ade9b90a9c370b7404e88e6b700ed2a57165ba76c98e5359b183a3232d8593167a5a848c42c131c99f1c639f5dd18b53920b310142d0f1db94cbcf3773dff2f8ded58e6110e2e31c6909cddeda2af81b7dc0fad734e27cba0b6185b932b957fb4c3287315e1390cbec6785ff5763b0103fd7597a4ef5fa233640bab557914c2b9a8d9ef96bad86dff7d1aec6901cab4f10a0844dcc7c7f960a355faf4fd9ab544896574549f896f28efd019042517ef6b6393658be0508de4691a86d928b4d", @generic="9cf4e29ffde62fa5894ae24549c79d8c25ba36ae412c15fcf7c79440aebd2728bc90d822e081d1876c88a0ba524e79c511a3129ddc5f73ec963a164895e5950a35b1894304e6fe209d7f915b471e242ad2e1a589920682eb1dfa4b6ffecefe13a8fbde39e8d6a1b386df5cb4acf97edd64c3a24f4ed967"]}, @nested={0x1bd, 0x83, 0x0, 0x1, [@typed={0x8, 0xb7, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x38}}, @nested={0x4, 0xa5}, @generic="ef8b5708c6126725281aa0800947eca5399364660493d75ae6cf871f17056bbede87d35c6129cca74a878990e8bdfe9cf92476ee96", @typed={0x14, 0x26, 0x0, 0x0, @ipv6=@private1}, @typed={0x4, 0xc2}, @typed={0x14, 0xdb, 0x0, 0x0, @ipv6=@mcast1}, @generic="29fd9861e7627b28f08a2493ce0a2eb0ea710c2f8c8bafe7e87b3cb82d76b37dcabc2f87767e7c000ea10148a8b7510d6c2ed62977fbdc2104a3c028c8abe6e19710f79cc92b718a930df5f459f102368aa35f6443e92a0ac40ad7a2a80a55f6f6a2d13a2a926550866e69a7e00ea452744a1dace733abbe67d05ba386f8b1a92b1eced81307c217d1091e50e94fec2affcf161777b775219e8d46754f9e5b5095d9df762e858ab992ae848d", @typed={0x0, 0x93}, @generic="32c13790e66a6617d1caf008e1ff8aadbe463b5322ab7dd9e99973ccda68a5c60251198fe677471edbd9339f3a6556d73f2572661b4bc65ceef0bf39a2eb00320a9533f93f9b0afa3f3a98656e1d1f1a3be56f337a92494a236946e7c6594dd7b71a403e1d1acf35383e89af2395e54797ca156481be4ad50f05271d690c79019ee352c69f6d8b44c5ecdb3155416eca72364b76e29f5d7e8cf29699"]}, @nested={0x1070, 0x130, 0x0, 0x1, [@typed={0x6a, 0x43, 0x0, 0x0, @binary="327eb3877bf41bab64edbc0e0f23f92f876a64175cba8946a79754a1e6a3396b8ebbdfdca812dcf905e2b5519a7997087416fde1749fa97d3a613f99d8b5741d9c6ef990b8185f05263e3f710b393952a6bee57048329014780b0876cf5b86048c7d8ad6a733"}, @generic="aa8c7a94696ff7b954dce506ea8a7b2e7f4a037ac1da5e06b6050cd529f1aedf0537d98c446567ddf838abdfdc7f64980f280a54256b921a564003244ca4f2779c0f3cdac519d2db0b274483c07dc4c64de53ac6411e74865bbde3a4751cd800a6ea14f7577cdc81b8dc26b61517b7d1e812aff9403377e72f38c210b5c7fca8598543328ec85b16edd9f815d94ba23870be456dd17800687467995658e7a13e44cc8e04e3fc3ae20ef17297ab738ebe56b8da4b3df4983b40d3b56568ac3a14caaf4f1f4d25cbd679713d4e8399efaa46f46a9a3fffb95c46b889d387fe6c173b81c0ca149311cbcbe2aac555acada819ec48dda51b08021d30653bd3e0dc6419565338aeb79c59afbb3b39c409b5c05194db66bf693f0dd0cb945b288818c2a3cfe85ecb57b43d7de48b978ebba0336d5f60bb0cf10c4a1f334937a078b126d09f0f75ba3d3c5d0a5f2102aefa6339b2ef32e7579e026c4ed801ad29878015dfdcccb20e5ffa4eb9faf749fb4c5cfe720c065fbdb46bcc40f27f12b648224c04e1514a043b72b27f95a6df30d002e2188cffd67cd8ebc45cd4a05263b002bd79afdb5f3c06b13ef1238a2f3b9f7f6c53a84e4c4eb90b400a2b5b7f11ad1272101d5748d781ba85167229f7d4321e70604191ee7dcbb2be6d132198669877dfe68414f8289a44936bec2988fa898a0b2f8ce7f248c71a8dbfe68e0fb211bbbccc131bcf48093365bca6770dd32782c20852c2e2f38d94446b8cb4401b795b5039e99d507dbc4ab3ad7a49cebc6821f17818ed85cdc5e86c55dce9b2d6ce2dac6da6b1077af262557cb048c242a8ee818257a49bf24513e490810b59af50fb0dc52d849b574e57574933deec38a4b5005fe3568e8d6c66b054c6d0213baa2c62364c994ac524916305ebd15b911be131740f3576b69755c9f382b9f38423489ff15466c4f04eb4f7eca15860d0277650a3b4761d7eb18c0cfcd5c8ff4b14a0265667a0a5c92b3ac41d31e17097c87efa84bf16977b4e68eabdd983dfbed0db78f5a47320b7d8e19f976628fbe308d0e89d2bf1e5712803b9fa044281709bc7cfd7bd91cbef83aa297e327e398240d01174a75e58c4e1457339720cdfb90d3c4c7257720f08bf640db5a9db38da0a24a144a483dc4f3719906c374dd0cd287f5d7338e20118df90b34f00a23e5f83774698b584572282f47f85e2eb1ba21e0c08d8d58f52528f9ec29fccbacf6365114ca2a1944304965c2722dd8e0774516759cf484122e542a9e394df5d5edcdcdd99c19607a63cd16eb1974e2272d44342b2d18384efb3f3f46028148568eee75cfa8f233cbe62f3bb02d0ed4f81e8503d562c6f66847c78ff4507f41fc34ca81213335dc75d5934f87ab69c4498b9b91482dbd50a1bd2ed01e77f64b9b3b0c1b2f304f47aeff8a39d3e7438b88cace6c64a97798b2eeb2267f5dd85347d21ef071a77250adf84fbc3b554d9b290e794b3e02ecbef36d97f665ce66369e012d77e9d8e0446efdbba7dd220d74141d151ea0a26599cab7794cb857c95c048595733afe95b2b2ac9336c509add1054501a404359b485cd6155e8b026fcefbe4324e1145b9ab783e0e6d30a4f540dd649beb64a3540f111004e4a0aa16bac4b6f9642df71bccd0fe7ceafffc07e92342c09884b40739d81989e27eb61df10651ac2c5c409751e7635c7d785e2346e34b9e9f5222813be930dba4a0435afd987269d519c3a83fef4f0e328530bd7155b6d780a495fcca78d82eb97fd6688f8d5b39aea8991114cc1b228b7f46939583dd7f860a4486bb96b3ead9b89dfcc9988b4223669fe0d9609e0782f63cba5848091c1155e8218cbd30bbebfe1e6364a4a59658e37a045636a85426924356a4227b1ee5073410124fec8bc5a153849d3254aa13a8835183f0ed47a4dc689be1630e320270b6c7a261aae745ceb8319179295202bb4ebb80c4aaea6c9222333dca9cc7f71546ccdaabf4345f389b32a8de7e06d60fbeeb81c41491adfb741ef3c7973eff4b51754bee5ee7781fe0062bdf1b7a3502000c5cac0048c1eacce4cfab38427cb9d9a99c87105d38a77519d04d199ca3698c4bc57c3296ae26de2c4b64ed88df720e47ca5e3379ac6bd336936f1374a12cbdf6672e35ff19c2e4b89facc19f64dbb0d1501ffb4a689e009eea2462533f3f0c8842a1c5ef9af6b772f4d81d9f17962d865921381dfbd3757ea68d128a4d548bb4a7525070339767e2ace04036ee86a0cab6036588629e888ee1ef2e864e25568bcf11da165fbce4df0d57f0b10ebd102c1462b313c6f2a4bbe3c381fea3b9e30765aab167229b1c536a9fe2748015a80daeee6c91402b0858c14ee814a1cff58b3bd857ac0171460f56c5e39cb7886548b6494d5149f5b4c013795d1a79ede10437f88195bc81cdc10b70e0bf8e7a9d586922c16ed3c45a9be0b3ed7663c2637521da957d9ddd9cc5e734d8f4f156bd8b6ce5711747484d88e0f26e51b6c69ddb28b8db1e69a873bc59d62fbbf96533f7de80a8286ddfd0e5cef158fdebb57312c8c36c78b2c6b1477235b301a561b03861837d6a8fee51a51b6731f2b8eb3e6d65983f6aa33c80e6c46d54a32ed341462d7f8109f00a0fe7600829feef7797b596c125e107b9322e02cf5eb49082ac121272fca3deedb9be7798aa24179eadf98ca26a3619f3acfcf3ecdf93549beb6fc4a656ad55310e710800263b580a29fe44574283239371ac7b4c5ddd1be5e017cb18541d4d64f5d331ab6007354ae9e949a390f22da291a63321bb6f8b20b59375e2dfc75464b35f3a34d2f37add262e1d040d2e00f60788567d8bd49baa9f4e11260ee4b6291045a4654bbf04a0424f5f71872f12bb67414088315dad084bd9c977a0433e59ae9f9b655064be096180a3eec96a033ac4a090f743c5a7c55f0f99d920951037e091949bd2666b21ad85b4a41a2b915e0a9d19f8f01164b732f8cba911dbd686732455e7d205cfecc9b864637eaadce4b2af8421978ecaa048f7d5920b9e7f08582c4275128de39d1afeb3e852979a8660ae868537b1ba4524f72ac4c066198f62537a16671ce7d04082c215168a34bd13ab51483704c208d4e001a9efa521bc12638ba9d2abf26271af29953ea3da2244033b226c7ec45566fe5bfcc757f4d26e7569b5106f297e382b3e2749f25270c81def1ca9531922ead51c89a55d59094ec8c74e822da48125cb2678c210660c38670b97f2034769f908889cd2c114c78b8acaad92bb4b8e1c73c24b1d5cd50c1aba107c24deef5b51dab3654d9d3e5dc6a5647e7da7981b4a80ea3f56be72bd0dc7c67d90d3bd28bd0a6b35cb6163dee6fb9f785aa6d7f2925bb196c77b844a32dcfa7593cb6af3d4a8390c8bdc7aadca8190dd1f83443db301cb320ace55305fda520576c7ff93d57c723142e275ec3b7c15c877e0acf8b29a8f5a2f63a2aa7636b0deb995e039267e02531f0684449473b37b37268c59ce6bb1279ae76e53da2532da5e633e9e74942216390d9183d0bbabd556841d625ee390b632d14ba1cf6252395874fb04edfcc194c49f3350e1c02e1558016d33212f2c5f1cc8e0daa5ca05251b9e139498e0d37a860f756bdf7a127baf374e214342ac298f0073a66dbeac761d2debf1118256a20271c1985b44fee36fafbc15897edec0934e9335d61d22e053094227696ba6e9140ce782f2a23d123c9583ff680c8be254de1cdb203773d0d607bf23dc6bd361ea05d532e9de424aea51d4dc84788702769f073f5e6b78d4a2c748934d5ceaebd71b0635c1e466246be1f99d298a209c5ce4408089457515d9eca7dff17e33a135f5ea25cecc1e92e47972b9f19ae170fdfbeb46e428a55b0a01c6d55193fdccb619efb6702caa55684200498d387c84bdc393f2326730e39700d9326979a8612c4c60bdf54978b95640553b97a011d82f095c570c4308651a1a1a322322c91c043e85033e3173e7c10e008543c286122e6031b97f1aac8efa639ca51faf3f637173d2d21bd773bcd5369c141c5fa990a464e289b64a61984678c296ea95f8841dec47d1fead5bb51e079a77f28fd478f98a091fe9fe4a3f1573ff7d07f0a95eb369959855eae5168c1185cb97aea6e0bebf01ffecfa4a6729d9ad36a737edd4afa4eccde4b2d9e68c4ad28314278c31aa49c8040d9851f6f8290aa6a784cfebfdc0c3278c28cdcfccb1ef4a2bb3050b1cba402cf2b941b26e4f7d57623aa76d5d68a9b5c88505c4de5e4f89d71cd5f88b1b4a4f80d222111d57d5d5c5ff69cf6733bfcf6e483fb8c434098bccf8c3d7c4dee6d6f4b628224f46897bb99a0330eeb34de0dacfbe4f8ba673d89dd45a53f362825f28710bd24aff9c851965d8bf1fcfe412651aeff30307d5eb98b0556244cd15a2346e10dc31c04b7a10ddf46e3fd7c5c449d45fc9a9a3bbe3b616f5154d0eb6fdac03c26753219c2368c60a6a887ee5e88a0c79e976539542bfa42a285f37100356f26102346812a74dfe40b95280575d34dbedaa06d5ef26a585f8712332dac2eb07a33cffce724beecb10a04e81cccab64aaa8e9c8c2872b3337714ba0a9be36efff993d77bd5cba60f14ff00f1ed29fb35043c04332bf1dff93d1e0c64a7f8114159a88c16e18ce6c208ad1391511c23f7069df306f4ff6fe68bb6a3a7b44914d35e19a57c140b0a0099f9ddbef4a5a313490cabc2007b169b0af12cda0a2219701ac851527bd57c9b91106de329028bd2c674145b3929bd95ea9682a3c21689a5fe8703ec4a3f55311181bea58b1aebad27672c870bd32a22b613678c3ed207523979e3b3d5df068f22f943c201f52f1feb836553a6dfe5eed828caba2854f3368b645d02f8b4e1ff179bac32092beadabf3648c08c2f06f79ee52e450a0d97a6742422c96cd9ccae0a165d7b14d97036bcb1348a4664cbb3341a3a47a1b6c8f079c0029bf920735c923a8e5fa2e1ce440685b56d477d6a5cefd3ae12e1da24459c2e05a169d339bdcdecc2e9328cbafb37d5f36eaa05b472f3b2f6eb956eb485fe0eb70dbd9c842fc2898766df3061e2a31adb84b64fbe1f0bb6b41debe76ef4c5a75c191962a5bdf86869c69fc2b71f44e91690dc52f242842c2bb822a9e4bde3d3cbfa310f29175541ca4273306ec96ec2cb0d6807282918e650957c7fd113df66bda602b56d2d53a4d6b57d0991c5a1c510678c73b350e3266bd6213a663ae2368301d8c035ce9df7f8bedc9d7fe3299e7c22ee816547615c68c1d44d99fba6e106843aad0d0b55decce40953e1f7701dd7debd22e0b1b357150468c0ed32ae0fd2d0bdaf3ad61dbc8910303bc332d9e01397eeb8d49d84f1619e62f9d43f464afdc804957bab064254056026b601ffa303f4d81f69223ef12fadbc1d945e3827a465aa88c0c5133244c3a65ba96f148a8aef7060d00b448c84134a3e306b868a96a1406c4ec30e1ca89137e71c6320c9ea781ae95be2dbf4cd01beb11410c7c100082dc314faefa7bd8cd456a0eb5be6eab0f9a0e5b4de08f98e8b9813ccd3043edf087217b222e6a5454b2f831a207b38be211950781e808ed0e79689ac9df3178c3d090f5471511984e8bd0d2caef691cc3b8656206520abbad566337e6a2d7ab66243c286d91001e3eccffab162d368126764dfc32ecd6b0bb610b62b6153d1adbdb3a213ab0729170997d0c8c6136389a0a38e130ed876a17533624ea726e31c5cd0b7ec3931236aca4dc483758f0b79f71b8d1a9024876e0307cd3a36127c70ce94b"]}, @nested={0x6c, 0x60, 0x0, 0x1, [@generic="c04df4d89e68a7f4c132f1716840ff3cd6235c2dc26f5187246e13be7ee2ebab92ea6bc2f8a7b6c2cb891367b445b44a729df9eedff9e79ac4bf6bb3faa1dd23608ade69352eb88dc9eea02f4a85d7dd0b83e556fc8befd7ab6e7ae98f51ec6812368d6f", @nested={0x4, 0x89}]}, @nested={0x0, 0xd0, 0x0, 0x1, [@typed={0x0, 0xf2, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x39}}, @nested={0x0, 0x14e, 0x0, 0x1, [@generic="bda63b1198bb46badeeb6fef102a670044354d54c9fb2027ef0ade6d7f44550deaa74284ca0a3e6c65a6e9ef4745af7fdf86720b585e6539bc6076e9c61c9911550c2b016c74cb6a26cb9726380b957c9bc257048f1394a75efc7a3159c4edc9e7aaae6b735b04468cea17810609129ab9eed45c2f177f3749a6cd62d3505b46bfe0318184b322809e2fd749c594ce66f0bd5f4b0ba7387023b7ce55ccd478d58fb0810a4f5e3f868c4a77e5ba43ed805f9e", @nested={0x0, 0xf4}, @typed={0x0, 0x2b, 0x0, 0x0, @pid}]}, @generic="445239efe2d88a70f665aae6182c0f2b03433373039fb4d7e0159e5b79280d7be7601ba05f08831f48d1e518baecd805adc2066e7e12283f821594b58e9bfd21e9c67bc332ff6e6dd57dea756de0357930dd5217b40e84ba4565c2c87f958dbf389045b96efdf17236ca722daeb93c438875c23c3965a5ad84abb1de56bace0adc77770ec74d772a5b21b0ed572193cb8d06cbee93dc29c575ddea220a3b4f6343eceffd7b512a9177aaedff508d52ab4ffc0cdd8db2f7eda6b8dfd2a644498118dc6bd363aacf9010df5121d9011ffb3be3b20a55ccdda0a0eef8ac", @nested={0x0, 0x110, 0x0, 0x1, [@typed={0x0, 0xbc, 0x0, 0x0, @u32=0x7}, @generic="0e710bc3ce9801ac3a572a4e84060960fae22ffffab3935285b4e5a2cbb6db87cd1a7b8d54d16a9690e32c28c130109a16330d6d7deafdfca2214b592972548dcea07cc076d236c2129bca10872ea5f44b3aa2766b1a3015f14c8ff2269767c867f00e1edcc22ebb8c8801fad1e53b7fd357a604c17f839328c77e47f28c0c1de17663ff1128e7d9d22b172d66478ac6bfce4589e0a1c7152f55c86780d3df1cc5e9ba220b5d9b943c10616dc26432d6ae958d11d3a0455432b420cc3aed62f1bea0addbcf57", @nested={0x0, 0xa, 0x0, 0x1, [@typed={0x0, 0xdb, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x3b}}, @typed={0x0, 0x37, 0x0, 0x0, @binary="402abb2f85657e0a18705c8875473d544a3ac34aec6fbbb3715e5b38267bf5d97d92fd05"}, @typed={0x0, 0x147, 0x0, 0x0, @u32=0x2}, @generic="0472f47705d794aba82e8541772375638a70724249ec06ea96b73c0dfadc4dc3fa4c7825ae373fd8f5489e167325babfb871e3dfffac7ffdcaac88f9a7e12b0ff486e61c40495b59d22510bbc1e6d324503f74d79151603680dec42df9840a6aca9f5ed7365c62a371b57681fdf64118a000497256765edd01fc013cf6e8ed4bf40df9796a", @nested={0x0, 0x90}, @generic="c6fe09d70db001f50708d34fdbb496d0950494e972e52865cc438063189444d54475848f2ffaca7783e6f8c0e994d14abb5dd644977cd30f95783a3b50e076d76d09e34b4f2a679147a41c09aaa19953ee738031c5162434370a642bbd3c18b72a8bb25f74205fb2692225a352c571cf2a4a05dc5795bccf8f09798a06703efc0f"]}, @nested={0x0, 0x114, 0x0, 0x1, [@nested={0x0, 0x85}, @generic="8cbb69bd52ab2598efecbda94b9cc3", @generic="ae7de50d3d77ed3ffa8faffdc55f1b4c2c9511b2c03cc1a40e63d6e726f67b5151c9ff4d11708472a7856da3fdc8c1299ca556c3f412b26505fcde64e788ad4310910b28272fef67a2b100536c163151e7357d3e1ba56042d292d8d9b0ea21a921b52c826d67017ddc2fb3b5c3758b9bfb165afb895da1217660d5e4398eb31c538f30c1ab1dcf3c445d7483ab184bfb2816b2fc511e9b799b2d529fdf6d310c774cb14d383b9fdf92e0dd3b3b328cf94ebeca6ed34151653ed173f2f48c5624f81977", @generic="5e77c2fd21bd461831bd7a03458a12fb2687682828d971b2d3b3d9177e59333733010940fd3ad2f7bf0b7152dda624fa3c8e40c0bb9351e3c2fe1ac4f579271a716d7ebbaf338957ed7f5a0cdf4bac25c1e28ff2ed3127518a588db29a83a737429938ba0c056c676e9fc6b45470bf54b97179911c25e00bc39e77609fa33c19c0eaa5ddf22703fefcd2fecf4a7d0c062e9be69f7bacdc66bd137df72a032538e6a99d2b64fdea6bab077d45066cf7"]}]}]}]}]}]}, 0x1658}, 0x1, 0x0, 0x0, 0x488c0}, 0xc804)
r1 = getpgrp(0xffffffffffffffff)
ptrace(0x8, r1)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000003840), 0xffffffffffffffff)
r2 = semget$private(0x0, 0x4, 0x8)
semtimedop(r2, &(0x7f0000000100)=[{0x3, 0x6, 0x800}, {0x0, 0x0, 0x1000}], 0x2, &(0x7f0000000340))
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x8, 0x8b}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=@ipv6_newaddr={0x18, 0x14, 0x1, 0x0, 0x0, {0xa, 0x0, 0xa1}}, 0x18}}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
read$FUSE(r6, &(0x7f0000002b80)={0x2020}, 0x2020)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000000)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x0, 0x0, 0x0, 0x1a}, &(0x7f0000000040)=0x20)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
pipe(0x0)
sendmsg$nl_generic(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000003300010326bd700afcdbc12506"], 0x14}, 0x1, 0x8000000000000, 0x0, 0x10008091}, 0x8014)

20.379875249s ago: executing program 33 (id=1259):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000007a40)={0x1658, 0x41, 0x107, 0xfffffffc, 0x25dfdbfd, {0x1, 0x7c}, [@nested={0x4, 0x136}, @nested={0x1640, 0x41, 0x0, 0x1, [@typed={0xc, 0x105, 0x0, 0x0, @u64=0x3}, @nested={0xd1, 0x6c, 0x0, 0x1, [@nested={0xb9, 0x4b, 0x0, 0x1, [@generic="87becf1ff4fa3cf4bf8f1ebe98da98a242c988f7b66575268771fbcfd19c49a4faf54b991ca243bc43b30c6af41b9dfde359ef3c96b96625e38b4caa4602f8741806c22acddde255d5e487577122396cd2c678d05afbcfea9385d501cf86365c6c3a4d8101ac6f6b2d8faa5a3a2e18c1ef02c4b692d4597e1d686543839c71c95b520bbd38125393458e23f541174aa0a93619b44c84ba7418ac3f1cc6", @generic, @nested={0x4, 0xdf}, @typed={0x14, 0xb1, 0x0, 0x0, @ipv6=@private1={0xfc, 0x1, '\x00', 0x1}}, @generic]}]}, @nested={0x4, 0x88}, @nested={0x156b, 0x10a, 0x0, 0x1, [@generic="bc7bbd585fcf25e88074fb54648d0702b97c40ceb8eb0bb4aa0eb26c128de1d6813ffc3578bc6c6d933585fb6c05c37e41c1e49a48ecc4e5e84de5e77555dc6ebbd27e44f1993604c0a29372f69d5c9c7e3c1995c008fcffbff368c585645d00c290b729eeb26351fc0105c1ea40e76da395ed5775", @typed={0xc, 0x4a, 0x0, 0x0, @u64=0x4}, @nested={0x15d, 0x121, 0x0, 0x1, [@generic="c78359f859f56cb8e944e35de4005015cae95f6235850baa1a3c9f3b747b5c06fcfd09ade9b90a9c370b7404e88e6b700ed2a57165ba76c98e5359b183a3232d8593167a5a848c42c131c99f1c639f5dd18b53920b310142d0f1db94cbcf3773dff2f8ded58e6110e2e31c6909cddeda2af81b7dc0fad734e27cba0b6185b932b957fb4c3287315e1390cbec6785ff5763b0103fd7597a4ef5fa233640bab557914c2b9a8d9ef96bad86dff7d1aec6901cab4f10a0844dcc7c7f960a355faf4fd9ab544896574549f896f28efd019042517ef6b6393658be0508de4691a86d928b4d", @generic="9cf4e29ffde62fa5894ae24549c79d8c25ba36ae412c15fcf7c79440aebd2728bc90d822e081d1876c88a0ba524e79c511a3129ddc5f73ec963a164895e5950a35b1894304e6fe209d7f915b471e242ad2e1a589920682eb1dfa4b6ffecefe13a8fbde39e8d6a1b386df5cb4acf97edd64c3a24f4ed967"]}, @nested={0x1bd, 0x83, 0x0, 0x1, [@typed={0x8, 0xb7, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x38}}, @nested={0x4, 0xa5}, @generic="ef8b5708c6126725281aa0800947eca5399364660493d75ae6cf871f17056bbede87d35c6129cca74a878990e8bdfe9cf92476ee96", @typed={0x14, 0x26, 0x0, 0x0, @ipv6=@private1}, @typed={0x4, 0xc2}, @typed={0x14, 0xdb, 0x0, 0x0, @ipv6=@mcast1}, @generic="29fd9861e7627b28f08a2493ce0a2eb0ea710c2f8c8bafe7e87b3cb82d76b37dcabc2f87767e7c000ea10148a8b7510d6c2ed62977fbdc2104a3c028c8abe6e19710f79cc92b718a930df5f459f102368aa35f6443e92a0ac40ad7a2a80a55f6f6a2d13a2a926550866e69a7e00ea452744a1dace733abbe67d05ba386f8b1a92b1eced81307c217d1091e50e94fec2affcf161777b775219e8d46754f9e5b5095d9df762e858ab992ae848d", @typed={0x0, 0x93}, @generic="32c13790e66a6617d1caf008e1ff8aadbe463b5322ab7dd9e99973ccda68a5c60251198fe677471edbd9339f3a6556d73f2572661b4bc65ceef0bf39a2eb00320a9533f93f9b0afa3f3a98656e1d1f1a3be56f337a92494a236946e7c6594dd7b71a403e1d1acf35383e89af2395e54797ca156481be4ad50f05271d690c79019ee352c69f6d8b44c5ecdb3155416eca72364b76e29f5d7e8cf29699"]}, @nested={0x1070, 0x130, 0x0, 0x1, [@typed={0x6a, 0x43, 0x0, 0x0, @binary="327eb3877bf41bab64edbc0e0f23f92f876a64175cba8946a79754a1e6a3396b8ebbdfdca812dcf905e2b5519a7997087416fde1749fa97d3a613f99d8b5741d9c6ef990b8185f05263e3f710b393952a6bee57048329014780b0876cf5b86048c7d8ad6a733"}, @generic="aa8c7a94696ff7b954dce506ea8a7b2e7f4a037ac1da5e06b6050cd529f1aedf0537d98c446567ddf838abdfdc7f64980f280a54256b921a564003244ca4f2779c0f3cdac519d2db0b274483c07dc4c64de53ac6411e74865bbde3a4751cd800a6ea14f7577cdc81b8dc26b61517b7d1e812aff9403377e72f38c210b5c7fca8598543328ec85b16edd9f815d94ba23870be456dd17800687467995658e7a13e44cc8e04e3fc3ae20ef17297ab738ebe56b8da4b3df4983b40d3b56568ac3a14caaf4f1f4d25cbd679713d4e8399efaa46f46a9a3fffb95c46b889d387fe6c173b81c0ca149311cbcbe2aac555acada819ec48dda51b08021d30653bd3e0dc6419565338aeb79c59afbb3b39c409b5c05194db66bf693f0dd0cb945b288818c2a3cfe85ecb57b43d7de48b978ebba0336d5f60bb0cf10c4a1f334937a078b126d09f0f75ba3d3c5d0a5f2102aefa6339b2ef32e7579e026c4ed801ad29878015dfdcccb20e5ffa4eb9faf749fb4c5cfe720c065fbdb46bcc40f27f12b648224c04e1514a043b72b27f95a6df30d002e2188cffd67cd8ebc45cd4a05263b002bd79afdb5f3c06b13ef1238a2f3b9f7f6c53a84e4c4eb90b400a2b5b7f11ad1272101d5748d781ba85167229f7d4321e70604191ee7dcbb2be6d132198669877dfe68414f8289a44936bec2988fa898a0b2f8ce7f248c71a8dbfe68e0fb211bbbccc131bcf48093365bca6770dd32782c20852c2e2f38d94446b8cb4401b795b5039e99d507dbc4ab3ad7a49cebc6821f17818ed85cdc5e86c55dce9b2d6ce2dac6da6b1077af262557cb048c242a8ee818257a49bf24513e490810b59af50fb0dc52d849b574e57574933deec38a4b5005fe3568e8d6c66b054c6d0213baa2c62364c994ac524916305ebd15b911be131740f3576b69755c9f382b9f38423489ff15466c4f04eb4f7eca15860d0277650a3b4761d7eb18c0cfcd5c8ff4b14a0265667a0a5c92b3ac41d31e17097c87efa84bf16977b4e68eabdd983dfbed0db78f5a47320b7d8e19f976628fbe308d0e89d2bf1e5712803b9fa044281709bc7cfd7bd91cbef83aa297e327e398240d01174a75e58c4e1457339720cdfb90d3c4c7257720f08bf640db5a9db38da0a24a144a483dc4f3719906c374dd0cd287f5d7338e20118df90b34f00a23e5f83774698b584572282f47f85e2eb1ba21e0c08d8d58f52528f9ec29fccbacf6365114ca2a1944304965c2722dd8e0774516759cf484122e542a9e394df5d5edcdcdd99c19607a63cd16eb1974e2272d44342b2d18384efb3f3f46028148568eee75cfa8f233cbe62f3bb02d0ed4f81e8503d562c6f66847c78ff4507f41fc34ca81213335dc75d5934f87ab69c4498b9b91482dbd50a1bd2ed01e77f64b9b3b0c1b2f304f47aeff8a39d3e7438b88cace6c64a97798b2eeb2267f5dd85347d21ef071a77250adf84fbc3b554d9b290e794b3e02ecbef36d97f665ce66369e012d77e9d8e0446efdbba7dd220d74141d151ea0a26599cab7794cb857c95c048595733afe95b2b2ac9336c509add1054501a404359b485cd6155e8b026fcefbe4324e1145b9ab783e0e6d30a4f540dd649beb64a3540f111004e4a0aa16bac4b6f9642df71bccd0fe7ceafffc07e92342c09884b40739d81989e27eb61df10651ac2c5c409751e7635c7d785e2346e34b9e9f5222813be930dba4a0435afd987269d519c3a83fef4f0e328530bd7155b6d780a495fcca78d82eb97fd6688f8d5b39aea8991114cc1b228b7f46939583dd7f860a4486bb96b3ead9b89dfcc9988b4223669fe0d9609e0782f63cba5848091c1155e8218cbd30bbebfe1e6364a4a59658e37a045636a85426924356a4227b1ee5073410124fec8bc5a153849d3254aa13a8835183f0ed47a4dc689be1630e320270b6c7a261aae745ceb8319179295202bb4ebb80c4aaea6c9222333dca9cc7f71546ccdaabf4345f389b32a8de7e06d60fbeeb81c41491adfb741ef3c7973eff4b51754bee5ee7781fe0062bdf1b7a3502000c5cac0048c1eacce4cfab38427cb9d9a99c87105d38a77519d04d199ca3698c4bc57c3296ae26de2c4b64ed88df720e47ca5e3379ac6bd336936f1374a12cbdf6672e35ff19c2e4b89facc19f64dbb0d1501ffb4a689e009eea2462533f3f0c8842a1c5ef9af6b772f4d81d9f17962d865921381dfbd3757ea68d128a4d548bb4a7525070339767e2ace04036ee86a0cab6036588629e888ee1ef2e864e25568bcf11da165fbce4df0d57f0b10ebd102c1462b313c6f2a4bbe3c381fea3b9e30765aab167229b1c536a9fe2748015a80daeee6c91402b0858c14ee814a1cff58b3bd857ac0171460f56c5e39cb7886548b6494d5149f5b4c013795d1a79ede10437f88195bc81cdc10b70e0bf8e7a9d586922c16ed3c45a9be0b3ed7663c2637521da957d9ddd9cc5e734d8f4f156bd8b6ce5711747484d88e0f26e51b6c69ddb28b8db1e69a873bc59d62fbbf96533f7de80a8286ddfd0e5cef158fdebb57312c8c36c78b2c6b1477235b301a561b03861837d6a8fee51a51b6731f2b8eb3e6d65983f6aa33c80e6c46d54a32ed341462d7f8109f00a0fe7600829feef7797b596c125e107b9322e02cf5eb49082ac121272fca3deedb9be7798aa24179eadf98ca26a3619f3acfcf3ecdf93549beb6fc4a656ad55310e710800263b580a29fe44574283239371ac7b4c5ddd1be5e017cb18541d4d64f5d331ab6007354ae9e949a390f22da291a63321bb6f8b20b59375e2dfc75464b35f3a34d2f37add262e1d040d2e00f60788567d8bd49baa9f4e11260ee4b6291045a4654bbf04a0424f5f71872f12bb67414088315dad084bd9c977a0433e59ae9f9b655064be096180a3eec96a033ac4a090f743c5a7c55f0f99d920951037e091949bd2666b21ad85b4a41a2b915e0a9d19f8f01164b732f8cba911dbd686732455e7d205cfecc9b864637eaadce4b2af8421978ecaa048f7d5920b9e7f08582c4275128de39d1afeb3e852979a8660ae868537b1ba4524f72ac4c066198f62537a16671ce7d04082c215168a34bd13ab51483704c208d4e001a9efa521bc12638ba9d2abf26271af29953ea3da2244033b226c7ec45566fe5bfcc757f4d26e7569b5106f297e382b3e2749f25270c81def1ca9531922ead51c89a55d59094ec8c74e822da48125cb2678c210660c38670b97f2034769f908889cd2c114c78b8acaad92bb4b8e1c73c24b1d5cd50c1aba107c24deef5b51dab3654d9d3e5dc6a5647e7da7981b4a80ea3f56be72bd0dc7c67d90d3bd28bd0a6b35cb6163dee6fb9f785aa6d7f2925bb196c77b844a32dcfa7593cb6af3d4a8390c8bdc7aadca8190dd1f83443db301cb320ace55305fda520576c7ff93d57c723142e275ec3b7c15c877e0acf8b29a8f5a2f63a2aa7636b0deb995e039267e02531f0684449473b37b37268c59ce6bb1279ae76e53da2532da5e633e9e74942216390d9183d0bbabd556841d625ee390b632d14ba1cf6252395874fb04edfcc194c49f3350e1c02e1558016d33212f2c5f1cc8e0daa5ca05251b9e139498e0d37a860f756bdf7a127baf374e214342ac298f0073a66dbeac761d2debf1118256a20271c1985b44fee36fafbc15897edec0934e9335d61d22e053094227696ba6e9140ce782f2a23d123c9583ff680c8be254de1cdb203773d0d607bf23dc6bd361ea05d532e9de424aea51d4dc84788702769f073f5e6b78d4a2c748934d5ceaebd71b0635c1e466246be1f99d298a209c5ce4408089457515d9eca7dff17e33a135f5ea25cecc1e92e47972b9f19ae170fdfbeb46e428a55b0a01c6d55193fdccb619efb6702caa55684200498d387c84bdc393f2326730e39700d9326979a8612c4c60bdf54978b95640553b97a011d82f095c570c4308651a1a1a322322c91c043e85033e3173e7c10e008543c286122e6031b97f1aac8efa639ca51faf3f637173d2d21bd773bcd5369c141c5fa990a464e289b64a61984678c296ea95f8841dec47d1fead5bb51e079a77f28fd478f98a091fe9fe4a3f1573ff7d07f0a95eb369959855eae5168c1185cb97aea6e0bebf01ffecfa4a6729d9ad36a737edd4afa4eccde4b2d9e68c4ad28314278c31aa49c8040d9851f6f8290aa6a784cfebfdc0c3278c28cdcfccb1ef4a2bb3050b1cba402cf2b941b26e4f7d57623aa76d5d68a9b5c88505c4de5e4f89d71cd5f88b1b4a4f80d222111d57d5d5c5ff69cf6733bfcf6e483fb8c434098bccf8c3d7c4dee6d6f4b628224f46897bb99a0330eeb34de0dacfbe4f8ba673d89dd45a53f362825f28710bd24aff9c851965d8bf1fcfe412651aeff30307d5eb98b0556244cd15a2346e10dc31c04b7a10ddf46e3fd7c5c449d45fc9a9a3bbe3b616f5154d0eb6fdac03c26753219c2368c60a6a887ee5e88a0c79e976539542bfa42a285f37100356f26102346812a74dfe40b95280575d34dbedaa06d5ef26a585f8712332dac2eb07a33cffce724beecb10a04e81cccab64aaa8e9c8c2872b3337714ba0a9be36efff993d77bd5cba60f14ff00f1ed29fb35043c04332bf1dff93d1e0c64a7f8114159a88c16e18ce6c208ad1391511c23f7069df306f4ff6fe68bb6a3a7b44914d35e19a57c140b0a0099f9ddbef4a5a313490cabc2007b169b0af12cda0a2219701ac851527bd57c9b91106de329028bd2c674145b3929bd95ea9682a3c21689a5fe8703ec4a3f55311181bea58b1aebad27672c870bd32a22b613678c3ed207523979e3b3d5df068f22f943c201f52f1feb836553a6dfe5eed828caba2854f3368b645d02f8b4e1ff179bac32092beadabf3648c08c2f06f79ee52e450a0d97a6742422c96cd9ccae0a165d7b14d97036bcb1348a4664cbb3341a3a47a1b6c8f079c0029bf920735c923a8e5fa2e1ce440685b56d477d6a5cefd3ae12e1da24459c2e05a169d339bdcdecc2e9328cbafb37d5f36eaa05b472f3b2f6eb956eb485fe0eb70dbd9c842fc2898766df3061e2a31adb84b64fbe1f0bb6b41debe76ef4c5a75c191962a5bdf86869c69fc2b71f44e91690dc52f242842c2bb822a9e4bde3d3cbfa310f29175541ca4273306ec96ec2cb0d6807282918e650957c7fd113df66bda602b56d2d53a4d6b57d0991c5a1c510678c73b350e3266bd6213a663ae2368301d8c035ce9df7f8bedc9d7fe3299e7c22ee816547615c68c1d44d99fba6e106843aad0d0b55decce40953e1f7701dd7debd22e0b1b357150468c0ed32ae0fd2d0bdaf3ad61dbc8910303bc332d9e01397eeb8d49d84f1619e62f9d43f464afdc804957bab064254056026b601ffa303f4d81f69223ef12fadbc1d945e3827a465aa88c0c5133244c3a65ba96f148a8aef7060d00b448c84134a3e306b868a96a1406c4ec30e1ca89137e71c6320c9ea781ae95be2dbf4cd01beb11410c7c100082dc314faefa7bd8cd456a0eb5be6eab0f9a0e5b4de08f98e8b9813ccd3043edf087217b222e6a5454b2f831a207b38be211950781e808ed0e79689ac9df3178c3d090f5471511984e8bd0d2caef691cc3b8656206520abbad566337e6a2d7ab66243c286d91001e3eccffab162d368126764dfc32ecd6b0bb610b62b6153d1adbdb3a213ab0729170997d0c8c6136389a0a38e130ed876a17533624ea726e31c5cd0b7ec3931236aca4dc483758f0b79f71b8d1a9024876e0307cd3a36127c70ce94b"]}, @nested={0x6c, 0x60, 0x0, 0x1, [@generic="c04df4d89e68a7f4c132f1716840ff3cd6235c2dc26f5187246e13be7ee2ebab92ea6bc2f8a7b6c2cb891367b445b44a729df9eedff9e79ac4bf6bb3faa1dd23608ade69352eb88dc9eea02f4a85d7dd0b83e556fc8befd7ab6e7ae98f51ec6812368d6f", @nested={0x4, 0x89}]}, @nested={0x0, 0xd0, 0x0, 0x1, [@typed={0x0, 0xf2, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x39}}, @nested={0x0, 0x14e, 0x0, 0x1, [@generic="bda63b1198bb46badeeb6fef102a670044354d54c9fb2027ef0ade6d7f44550deaa74284ca0a3e6c65a6e9ef4745af7fdf86720b585e6539bc6076e9c61c9911550c2b016c74cb6a26cb9726380b957c9bc257048f1394a75efc7a3159c4edc9e7aaae6b735b04468cea17810609129ab9eed45c2f177f3749a6cd62d3505b46bfe0318184b322809e2fd749c594ce66f0bd5f4b0ba7387023b7ce55ccd478d58fb0810a4f5e3f868c4a77e5ba43ed805f9e", @nested={0x0, 0xf4}, @typed={0x0, 0x2b, 0x0, 0x0, @pid}]}, @generic="445239efe2d88a70f665aae6182c0f2b03433373039fb4d7e0159e5b79280d7be7601ba05f08831f48d1e518baecd805adc2066e7e12283f821594b58e9bfd21e9c67bc332ff6e6dd57dea756de0357930dd5217b40e84ba4565c2c87f958dbf389045b96efdf17236ca722daeb93c438875c23c3965a5ad84abb1de56bace0adc77770ec74d772a5b21b0ed572193cb8d06cbee93dc29c575ddea220a3b4f6343eceffd7b512a9177aaedff508d52ab4ffc0cdd8db2f7eda6b8dfd2a644498118dc6bd363aacf9010df5121d9011ffb3be3b20a55ccdda0a0eef8ac", @nested={0x0, 0x110, 0x0, 0x1, [@typed={0x0, 0xbc, 0x0, 0x0, @u32=0x7}, @generic="0e710bc3ce9801ac3a572a4e84060960fae22ffffab3935285b4e5a2cbb6db87cd1a7b8d54d16a9690e32c28c130109a16330d6d7deafdfca2214b592972548dcea07cc076d236c2129bca10872ea5f44b3aa2766b1a3015f14c8ff2269767c867f00e1edcc22ebb8c8801fad1e53b7fd357a604c17f839328c77e47f28c0c1de17663ff1128e7d9d22b172d66478ac6bfce4589e0a1c7152f55c86780d3df1cc5e9ba220b5d9b943c10616dc26432d6ae958d11d3a0455432b420cc3aed62f1bea0addbcf57", @nested={0x0, 0xa, 0x0, 0x1, [@typed={0x0, 0xdb, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x3b}}, @typed={0x0, 0x37, 0x0, 0x0, @binary="402abb2f85657e0a18705c8875473d544a3ac34aec6fbbb3715e5b38267bf5d97d92fd05"}, @typed={0x0, 0x147, 0x0, 0x0, @u32=0x2}, @generic="0472f47705d794aba82e8541772375638a70724249ec06ea96b73c0dfadc4dc3fa4c7825ae373fd8f5489e167325babfb871e3dfffac7ffdcaac88f9a7e12b0ff486e61c40495b59d22510bbc1e6d324503f74d79151603680dec42df9840a6aca9f5ed7365c62a371b57681fdf64118a000497256765edd01fc013cf6e8ed4bf40df9796a", @nested={0x0, 0x90}, @generic="c6fe09d70db001f50708d34fdbb496d0950494e972e52865cc438063189444d54475848f2ffaca7783e6f8c0e994d14abb5dd644977cd30f95783a3b50e076d76d09e34b4f2a679147a41c09aaa19953ee738031c5162434370a642bbd3c18b72a8bb25f74205fb2692225a352c571cf2a4a05dc5795bccf8f09798a06703efc0f"]}, @nested={0x0, 0x114, 0x0, 0x1, [@nested={0x0, 0x85}, @generic="8cbb69bd52ab2598efecbda94b9cc3", @generic="ae7de50d3d77ed3ffa8faffdc55f1b4c2c9511b2c03cc1a40e63d6e726f67b5151c9ff4d11708472a7856da3fdc8c1299ca556c3f412b26505fcde64e788ad4310910b28272fef67a2b100536c163151e7357d3e1ba56042d292d8d9b0ea21a921b52c826d67017ddc2fb3b5c3758b9bfb165afb895da1217660d5e4398eb31c538f30c1ab1dcf3c445d7483ab184bfb2816b2fc511e9b799b2d529fdf6d310c774cb14d383b9fdf92e0dd3b3b328cf94ebeca6ed34151653ed173f2f48c5624f81977", @generic="5e77c2fd21bd461831bd7a03458a12fb2687682828d971b2d3b3d9177e59333733010940fd3ad2f7bf0b7152dda624fa3c8e40c0bb9351e3c2fe1ac4f579271a716d7ebbaf338957ed7f5a0cdf4bac25c1e28ff2ed3127518a588db29a83a737429938ba0c056c676e9fc6b45470bf54b97179911c25e00bc39e77609fa33c19c0eaa5ddf22703fefcd2fecf4a7d0c062e9be69f7bacdc66bd137df72a032538e6a99d2b64fdea6bab077d45066cf7"]}]}]}]}]}]}, 0x1658}, 0x1, 0x0, 0x0, 0x488c0}, 0xc804)
r1 = getpgrp(0xffffffffffffffff)
ptrace(0x8, r1)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000003840), 0xffffffffffffffff)
r2 = semget$private(0x0, 0x4, 0x8)
semtimedop(r2, &(0x7f0000000100)=[{0x3, 0x6, 0x800}, {0x0, 0x0, 0x1000}], 0x2, &(0x7f0000000340))
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x8, 0x8b}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=@ipv6_newaddr={0x18, 0x14, 0x1, 0x0, 0x0, {0xa, 0x0, 0xa1}}, 0x18}}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
read$FUSE(r6, &(0x7f0000002b80)={0x2020}, 0x2020)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000000)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x0, 0x0, 0x0, 0x1a}, &(0x7f0000000040)=0x20)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
pipe(0x0)
sendmsg$nl_generic(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000003300010326bd700afcdbc12506"], 0x14}, 0x1, 0x8000000000000, 0x0, 0x10008091}, 0x8014)

13.970017656s ago: executing program 4 (id=1333):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_mreq(r0, 0x29, 0x12, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0xb, 0x7, 0x81, 0x9, 0x1, 0x1, 0xffffffff, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
socket$netlink(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x4, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000008850000007600000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f00000000c0)={'ip6gre0\x00', &(0x7f0000000280)={'syztnl0\x00', <r1=>0x0, 0x4, 0x3, 0x6, 0xd, 0x12, @mcast2, @remote, 0x38, 0x1, 0x9, 0xffffff5e}})
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0x10, 0x75, 0x2, 0x52, 0x20000, 0xffffffffffffffff, 0x6, '\x00', r1, 0xffffffffffffffff, 0x0, 0x5, 0x5, 0x0, @void, @value, @void, @value}, 0x50)
socket$kcm(0x10, 0x2, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0xa, 0x4, 0x2004, 0x5, 0x2, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
setsockopt$CAIFSO_REQ_PARAM(0xffffffffffffffff, 0x116, 0x80, &(0x7f0000000040)="782c6bbc3fb9ac11950ba22a723d9e1632290d6b5d12916adfa03a114297f68dc70fb32da4904f7004fbdd5167478697d5f087de94a1e29aef", 0x39)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000300)=ANY=[@ANYRES32=r3, @ANYRES32, @ANYRES32=r2], 0x10)

13.325355427s ago: executing program 4 (id=1334):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x1000, 0x2})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
r4 = mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r5}, 0x10)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000240)={0x1c, 0x0, &(0x7f0000000100)=[@decrefs={0x40046307, 0x2}, @increfs={0x40046304, 0x2}, @free_buffer={0x40086303, r4}], 0x0, 0xfcffffff, 0x0})

12.285439407s ago: executing program 4 (id=1337):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000001140)='net\x00')
socket(0x1a, 0x5, 0x81)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
fchdir(r0)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x60b, 0x500a, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x50, 0x0, [{{0x9, 0x4, 0x0, 0x2, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x4f8}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0x4}}}}}]}}]}}, 0x0)
syz_usb_control_io(r1, 0x0, 0x0)
creat(0x0, 0x0)
mknod$loop(0x0, 0x0, 0x1)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
syz_usb_control_io(0xffffffffffffffff, &(0x7f00000001c0)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="000706050000ff030902"], 0x0, 0x0, 0x0, 0x0}, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x6)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000180)='tmpfs\x00', 0x2200890, 0x0)

11.501789281s ago: executing program 5 (id=1341):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x200000, 0x0)
bpf$MAP_CREATE(0x100000000000000, 0x0, 0x0) (async)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x43, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r3, 0x18000000000002a0, 0x0, 0x0, 0x0, 0x0, 0x104, 0x6000000000000000, 0x92, 0x0, &(0x7f0000000400)="9209558f0c5fb25cd57f98113135c3171b8b331fbc04f0e6955a796ff8e3aae3cac46cec3030dfc999058aea01f0e6dcf2f9d480d328655aca003927bd50ed49d4843c8a0a2a4b26ceb747947200bd644c85e7a8a7d7cfce840c02a7d69c9e0bca410f64d43290abbbf3131e1fa8bd8c3e5f19d5a491d3d4c1a0fe47de9eebaf073ac3da6256bdb681d18fbd607c9b0d7104", 0x0}, 0x50) (async)
r4 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r4, 0x8914, &(0x7f00000002c0)={'rose0\x00', 0x1}) (async, rerun: 64)
ioctl$sock_inet_SIOCSIFFLAGS(r4, 0x8914, &(0x7f0000000300)={'rose0\x00', 0x4000}) (rerun: 64)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@x86={0x0, 0x1, 0xfe, 0x0, 0xffffffff, 0x0, 0x7, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x3, 0xff, 0xff})

10.272853625s ago: executing program 1 (id=1342):
ioctl$IOCTL_VMCI_INIT_CONTEXT(0xffffffffffffffff, 0x7a0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x24, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa5, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00', r3, 0x0, 0x48ab1b12}, 0x18)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0xc001)
syz_init_net_socket$rose(0xb, 0x5, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sched_setscheduler(0x0, 0x2, 0x0)
getsockopt(0xffffffffffffffff, 0x200000000114, 0x2716, 0x0, 0x0)
mremap(&(0x7f0000005000/0x4000)=nil, 0x4000, 0x1000, 0x0, &(0x7f0000003000/0x1000)=nil)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000380), 0x4000000044882, 0x0)
io_setup(0x1, &(0x7f00000004c0)=<r4=>0x0)
io_submit(r4, 0x0, &(0x7f00000000c0))

10.156626923s ago: executing program 5 (id=1344):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x1, 0x31, 0xffffffffffffffff, 0x0)
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC(r0, 0x0, 0xcc, &(0x7f0000000400)={@broadcast, @empty, 0x1, "7d1f88f80bbe8d286c57f04c843abbec3737db4a9d77a557438242a50a4dad20", 0xaa4, 0x3, 0x3, 0x1}, 0x3c)
ioctl$SIOCGETSGCNT_IN6(r0, 0x89e1, &(0x7f0000000100)={@dev={0xfe, 0x80, '\x00', 0x22}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}})
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000780), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CAP_HALT_POLL(r3, 0x4068aea3, &(0x7f0000000000)={0xdf, 0x0, 0x10000})
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4010ae42, &(0x7f00000000c0)={0x0, 0x0, 0xeeee7000, 0x1000, &(0x7f0000ffc000/0x1000)=nil})
r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_REJECT(r4, &(0x7f0000000440)={0x9, 0x108, 0xfa00, {0xffffffffffffffff, 0x0, "23ed87", "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"}}, 0x110)
ioperm(0x0, 0x2, 0x7e)
syz_clone3(&(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, {0x28}, 0x0, 0x0, 0x0, &(0x7f0000000240)=[0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], 0x9}, 0x58)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000100)={0x400, 0x300, 0x140, 0x800, 0x3ff, 0x0, 0x0, 0x800001, {0x4, 0x4}, {0xfffffffd}, {0x0, 0x4}, {0x0, 0x4, 0x8}, 0x0, 0x3f0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x3, 0x0, 0x0, 0x6, 0x69, 0x0, 0x100, 0x2, 0xc})

9.912055935s ago: executing program 1 (id=1346):
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000001c0)={0x1fd, 0x1, 0xdddd0000, 0x2000, &(0x7f0000bd3000/0x2000)=nil})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$SNDRV_PCM_IOCTL_REWIND(0xffffffffffffffff, 0x40084146, &(0x7f0000000300)=0x10001)
ioctl$F2FS_IOC_DEFRAGMENT(r1, 0xc010f508, &(0x7f0000000380)={0x46e, 0xffffffffffffffff})
r3 = socket(0x10, 0x3, 0x0)
sendto$inet6(r3, &(0x7f0000000100)="c10e000018001f06b9409b0dffff110d0207be040205060506100a044300040018000000fac8388827a685a168d9a44604094565360c648dcaaf6c26c291214549932fde4a460c89b6ec0cff3959547f509058ba86c902fc3a10004a320c0400160012000a00000000000000000000080756ede4ccbe5880", 0xec1, 0x0, 0x0, 0x9e5e111c47e3504f)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_GET(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYRES16, @ANYRES64, @ANYRES16=r2], 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x800)
syslog(0x4, 0x0, 0x0)
r5 = syz_open_procfs(r0, &(0x7f0000000180)='net/udp6\x00')
pread64(r5, &(0x7f0000001240)=""/102398, 0x18ffe, 0x2000000700)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_CAP_VM_COPY_ENC_CONTEXT_FROM(r5, 0x4068aea3, &(0x7f0000000440)={0xc5, 0x0, r5})
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040))
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
r6 = syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2)
ioctl$VIDIOC_S_EXT_CTRLS(r6, 0xc0205647, &(0x7f0000000100)={0xf000000, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x98f910, 0x7ffe, '\x00', @string=&(0x7f0000000340)=0x5}})

7.648953796s ago: executing program 0 (id=1347):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000007a40)={0x1658, 0x41, 0x107, 0xfffffffc, 0x25dfdbfd, {0x1, 0x7c}, [@nested={0x4, 0x136}, @nested={0x1640, 0x41, 0x0, 0x1, [@typed={0xc, 0x105, 0x0, 0x0, @u64=0x3}, @nested={0xd1, 0x6c, 0x0, 0x1, [@nested={0xb9, 0x4b, 0x0, 0x1, [@generic="87becf1ff4fa3cf4bf8f1ebe98da98a242c988f7b66575268771fbcfd19c49a4faf54b991ca243bc43b30c6af41b9dfde359ef3c96b96625e38b4caa4602f8741806c22acddde255d5e487577122396cd2c678d05afbcfea9385d501cf86365c6c3a4d8101ac6f6b2d8faa5a3a2e18c1ef02c4b692d4597e1d686543839c71c95b520bbd38125393458e23f541174aa0a93619b44c84ba7418ac3f1cc6", @generic, @nested={0x4, 0xdf}, @typed={0x14, 0xb1, 0x0, 0x0, @ipv6=@private1={0xfc, 0x1, '\x00', 0x1}}, @generic]}]}, @nested={0x4, 0x88}, @nested={0x156b, 0x10a, 0x0, 0x1, [@generic="bc7bbd585fcf25e88074fb54648d0702b97c40ceb8eb0bb4aa0eb26c128de1d6813ffc3578bc6c6d933585fb6c05c37e41c1e49a48ecc4e5e84de5e77555dc6ebbd27e44f1993604c0a29372f69d5c9c7e3c1995c008fcffbff368c585645d00c290b729eeb26351fc0105c1ea40e76da395ed5775", @typed={0xc, 0x4a, 0x0, 0x0, @u64=0x4}, @nested={0x15d, 0x121, 0x0, 0x1, [@generic="c78359f859f56cb8e944e35de4005015cae95f6235850baa1a3c9f3b747b5c06fcfd09ade9b90a9c370b7404e88e6b700ed2a57165ba76c98e5359b183a3232d8593167a5a848c42c131c99f1c639f5dd18b53920b310142d0f1db94cbcf3773dff2f8ded58e6110e2e31c6909cddeda2af81b7dc0fad734e27cba0b6185b932b957fb4c3287315e1390cbec6785ff5763b0103fd7597a4ef5fa233640bab557914c2b9a8d9ef96bad86dff7d1aec6901cab4f10a0844dcc7c7f960a355faf4fd9ab544896574549f896f28efd019042517ef6b6393658be0508de4691a86d928b4d", @generic="9cf4e29ffde62fa5894ae24549c79d8c25ba36ae412c15fcf7c79440aebd2728bc90d822e081d1876c88a0ba524e79c511a3129ddc5f73ec963a164895e5950a35b1894304e6fe209d7f915b471e242ad2e1a589920682eb1dfa4b6ffecefe13a8fbde39e8d6a1b386df5cb4acf97edd64c3a24f4ed967"]}, @nested={0x1bd, 0x83, 0x0, 0x1, [@typed={0x8, 0xb7, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x38}}, @nested={0x4, 0xa5}, @generic="ef8b5708c6126725281aa0800947eca5399364660493d75ae6cf871f17056bbede87d35c6129cca74a878990e8bdfe9cf92476ee96", @typed={0x14, 0x26, 0x0, 0x0, @ipv6=@private1}, @typed={0x4, 0xc2}, @typed={0x14, 0xdb, 0x0, 0x0, @ipv6=@mcast1}, @generic="29fd9861e7627b28f08a2493ce0a2eb0ea710c2f8c8bafe7e87b3cb82d76b37dcabc2f87767e7c000ea10148a8b7510d6c2ed62977fbdc2104a3c028c8abe6e19710f79cc92b718a930df5f459f102368aa35f6443e92a0ac40ad7a2a80a55f6f6a2d13a2a926550866e69a7e00ea452744a1dace733abbe67d05ba386f8b1a92b1eced81307c217d1091e50e94fec2affcf161777b775219e8d46754f9e5b5095d9df762e858ab992ae848d", @typed={0x0, 0x93}, @generic="32c13790e66a6617d1caf008e1ff8aadbe463b5322ab7dd9e99973ccda68a5c60251198fe677471edbd9339f3a6556d73f2572661b4bc65ceef0bf39a2eb00320a9533f93f9b0afa3f3a98656e1d1f1a3be56f337a92494a236946e7c6594dd7b71a403e1d1acf35383e89af2395e54797ca156481be4ad50f05271d690c79019ee352c69f6d8b44c5ecdb3155416eca72364b76e29f5d7e8cf29699"]}, @nested={0x1070, 0x130, 0x0, 0x1, [@typed={0x6a, 0x43, 0x0, 0x0, @binary="327eb3877bf41bab64edbc0e0f23f92f876a64175cba8946a79754a1e6a3396b8ebbdfdca812dcf905e2b5519a7997087416fde1749fa97d3a613f99d8b5741d9c6ef990b8185f05263e3f710b393952a6bee57048329014780b0876cf5b86048c7d8ad6a733"}, @generic="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"]}, @nested={0x6c, 0x60, 0x0, 0x1, [@generic="c04df4d89e68a7f4c132f1716840ff3cd6235c2dc26f5187246e13be7ee2ebab92ea6bc2f8a7b6c2cb891367b445b44a729df9eedff9e79ac4bf6bb3faa1dd23608ade69352eb88dc9eea02f4a85d7dd0b83e556fc8befd7ab6e7ae98f51ec6812368d6f", @nested={0x4, 0x89}]}, @nested={0x0, 0xd0, 0x0, 0x1, [@typed={0x0, 0xf2, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x39}}, @nested={0x0, 0x14e, 0x0, 0x1, [@generic="bda63b1198bb46badeeb6fef102a670044354d54c9fb2027ef0ade6d7f44550deaa74284ca0a3e6c65a6e9ef4745af7fdf86720b585e6539bc6076e9c61c9911550c2b016c74cb6a26cb9726380b957c9bc257048f1394a75efc7a3159c4edc9e7aaae6b735b04468cea17810609129ab9eed45c2f177f3749a6cd62d3505b46bfe0318184b322809e2fd749c594ce66f0bd5f4b0ba7387023b7ce55ccd478d58fb0810a4f5e3f868c4a77e5ba43ed805f9e", @nested={0x0, 0xf4}, @typed={0x0, 0x2b, 0x0, 0x0, @pid}]}, @generic="445239efe2d88a70f665aae6182c0f2b03433373039fb4d7e0159e5b79280d7be7601ba05f08831f48d1e518baecd805adc2066e7e12283f821594b58e9bfd21e9c67bc332ff6e6dd57dea756de0357930dd5217b40e84ba4565c2c87f958dbf389045b96efdf17236ca722daeb93c438875c23c3965a5ad84abb1de56bace0adc77770ec74d772a5b21b0ed572193cb8d06cbee93dc29c575ddea220a3b4f6343eceffd7b512a9177aaedff508d52ab4ffc0cdd8db2f7eda6b8dfd2a644498118dc6bd363aacf9010df5121d9011ffb3be3b20a55ccdda0a0eef8ac", @nested={0x0, 0x110, 0x0, 0x1, [@typed={0x0, 0xbc, 0x0, 0x0, @u32=0x7}, @generic="0e710bc3ce9801ac3a572a4e84060960fae22ffffab3935285b4e5a2cbb6db87cd1a7b8d54d16a9690e32c28c130109a16330d6d7deafdfca2214b592972548dcea07cc076d236c2129bca10872ea5f44b3aa2766b1a3015f14c8ff2269767c867f00e1edcc22ebb8c8801fad1e53b7fd357a604c17f839328c77e47f28c0c1de17663ff1128e7d9d22b172d66478ac6bfce4589e0a1c7152f55c86780d3df1cc5e9ba220b5d9b943c10616dc26432d6ae958d11d3a0455432b420cc3aed62f1bea0addbcf57", @nested={0x0, 0xa, 0x0, 0x1, [@typed={0x0, 0xdb, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x3b}}, @typed={0x0, 0x37, 0x0, 0x0, @binary="402abb2f85657e0a18705c8875473d544a3ac34aec6fbbb3715e5b38267bf5d97d92fd05"}, @typed={0x0, 0x147, 0x0, 0x0, @u32=0x2}, @generic="0472f47705d794aba82e8541772375638a70724249ec06ea96b73c0dfadc4dc3fa4c7825ae373fd8f5489e167325babfb871e3dfffac7ffdcaac88f9a7e12b0ff486e61c40495b59d22510bbc1e6d324503f74d79151603680dec42df9840a6aca9f5ed7365c62a371b57681fdf64118a000497256765edd01fc013cf6e8ed4bf40df9796a", @nested={0x0, 0x90}, @generic="c6fe09d70db001f50708d34fdbb496d0950494e972e52865cc438063189444d54475848f2ffaca7783e6f8c0e994d14abb5dd644977cd30f95783a3b50e076d76d09e34b4f2a679147a41c09aaa19953ee738031c5162434370a642bbd3c18b72a8bb25f74205fb2692225a352c571cf2a4a05dc5795bccf8f09798a06703efc0f"]}, @nested={0x0, 0x114, 0x0, 0x1, [@nested={0x0, 0x85}, @generic="8cbb69bd52ab2598efecbda94b9cc3", @generic="ae7de50d3d77ed3ffa8faffdc55f1b4c2c9511b2c03cc1a40e63d6e726f67b5151c9ff4d11708472a7856da3fdc8c1299ca556c3f412b26505fcde64e788ad4310910b28272fef67a2b100536c163151e7357d3e1ba56042d292d8d9b0ea21a921b52c826d67017ddc2fb3b5c3758b9bfb165afb895da1217660d5e4398eb31c538f30c1ab1dcf3c445d7483ab184bfb2816b2fc511e9b799b2d529fdf6d310c774cb14d383b9fdf92e0dd3b3b328cf94ebeca6ed34151653ed173f2f48c5624f81977", @generic="5e77c2fd21bd461831bd7a03458a12fb2687682828d971b2d3b3d9177e59333733010940fd3ad2f7bf0b7152dda624fa3c8e40c0bb9351e3c2fe1ac4f579271a716d7ebbaf338957ed7f5a0cdf4bac25c1e28ff2ed3127518a588db29a83a737429938ba0c056c676e9fc6b45470bf54b97179911c25e00bc39e77609fa33c19c0eaa5ddf22703fefcd2fecf4a7d0c062e9be69f7bacdc66bd137df72a032538e6a99d2b64fdea6bab077d45066cf7"]}]}]}]}]}]}, 0x1658}, 0x1, 0x0, 0x0, 0x488c0}, 0xc804)
r1 = getpgrp(0xffffffffffffffff)
ptrace(0x8, r1)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000003840), 0xffffffffffffffff)
r3 = semget$private(0x0, 0x4, 0x8)
semtimedop(r3, &(0x7f0000000100)=[{0x3, 0x6, 0x800}, {0x0, 0x0, 0x1000}], 0x2, &(0x7f0000000340))
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x8, 0x8b}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=@ipv6_newaddr={0x18, 0x14, 0x1, 0x0, 0x0, {0xa, 0x0, 0xa1}}, 0x18}}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r4 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r7 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
read$FUSE(r7, &(0x7f0000002b80)={0x2020}, 0x2020)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000000)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x0, 0x0, 0x0, 0x1a}, &(0x7f0000000040)=0x20)
socket$nl_generic(0x10, 0x3, 0x10)
pipe(0x0)
write$cgroup_devices(0xffffffffffffffff, 0x0, 0x9)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r9=>0x0})
sendmsg$NL80211_CMD_REGISTER_BEACONS(r8, &(0x7f0000003900)={0x0, 0x0, &(0x7f00000038c0)={&(0x7f0000001500)={0x30, r2, 0x1, 0x70bd07, 0x25dfdbfd, {{}, {@val={0x8, 0x1, 0x64}, @val={0x8, 0x3, r9}, @val={0xc, 0x99, {0xb, 0x43}}}}}, 0x30}, 0x1, 0x0, 0x0, 0x40000a0}, 0x810)

7.62957374s ago: executing program 4 (id=1348):
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$can_bcm(0xffffffffffffffff, 0x0, 0x20000091)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x44, 0x0, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0xa, 0x0, 0x8}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x48}}, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000540)={'erspan0\x00', &(0x7f0000001200)={'erspan0\x00', <r2=>0x0, 0x7800, 0x80, 0x8bf, 0xc, {{0x43, 0x4, 0x3, 0x13, 0x10c, 0x67, 0x0, 0x7, 0x29, 0x0, @broadcast, @dev={0xac, 0x14, 0x14, 0x30}, {[@timestamp_prespec={0x44, 0x3c, 0x5f, 0x3, 0x8, [{@empty, 0x36}, {@loopback, 0x8}, {@empty, 0x9}, {@remote, 0x6a5}, {@local, 0x6}, {@multicast2, 0x43ae}, {@multicast2, 0x8}]}, @timestamp_prespec={0x44, 0x24, 0x17, 0x3, 0x8, [{@empty, 0x1}, {@multicast2, 0x9}, {@remote, 0x6d57}, {@multicast2, 0xf7b}]}, @timestamp_addr={0x44, 0x1c, 0x84, 0x1, 0x4, [{@initdev={0xac, 0x1e, 0x1, 0x0}, 0x9}, {@rand_addr=0x64010101, 0x9}, {@multicast2, 0xc}]}, @timestamp_addr={0x44, 0xc, 0x24, 0x1, 0x7, [{@dev={0xac, 0x14, 0x14, 0x44}, 0x3}]}, @cipso={0x86, 0x5f, 0xffffffffffffffff, [{0x0, 0xa, "66e1cfa22f9280e2"}, {0x5, 0xa, "4ab199c3f2715428"}, {0x0, 0xd, "4a9ac8a10bb0252c7798ea"}, {0x5, 0x3, 'a'}, {0x1, 0x9, "908c666e7cf0ae"}, {0x1, 0x4, "6b0f"}, {0x1, 0xf, "c4327f3abd515d1514a77f74e2"}, {0x7, 0x9, "b9e74f4c4e28ef"}, {0x5, 0x10, "7be4f813c6a7d82167e0443883db"}]}, @generic={0x94, 0x4, "7f45"}, @generic={0x94, 0x5, "f42a46"}, @ra={0x94, 0x4}, @ra={0x94, 0x4, 0x1}]}}}}})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f00000000c0)={'batadv0\x00', <r4=>0x0})
r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), r3)
sendmsg$BATADV_CMD_GET_DAT_CACHE(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, r5, 0x83625fc5352ba305}, 0x14}}, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000340)={'syz_tun\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x2000000, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xe}, {0xfff3}}}, 0x24}, 0x1, 0x0, 0x0, 0x801}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000680)={'erspan0\x00', &(0x7f0000000380)={'syztnl2\x00', <r8=>0x0, 0x8000, 0x20, 0x89d, 0x10000, {{0x36, 0x4, 0x1, 0x5, 0xd8, 0x67, 0x0, 0x4, 0x4, 0x0, @remote, @rand_addr=0x64010102, {[@noop, @noop, @rr={0x7, 0x2b, 0x7e, [@private=0xa010102, @local, @broadcast, @multicast2, @broadcast, @remote, @dev={0xac, 0x14, 0x14, 0x12}, @empty, @remote, @remote]}, @ra={0x94, 0x4, 0x1}, @lsrr={0x83, 0x17, 0x85, [@remote, @loopback, @multicast2, @dev={0xac, 0x14, 0x14, 0x1c}, @multicast1]}, @ssrr={0x89, 0x13, 0xf3, [@rand_addr=0x64010102, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, @remote]}, @timestamp_prespec={0x44, 0x24, 0xb3, 0x3, 0x2, [{@multicast2, 0x8}, {@dev={0xac, 0x14, 0x14, 0x3e}, 0x8}, {@loopback, 0x7ff}, {@dev={0xac, 0x14, 0x14, 0x1a}, 0x7}]}, @timestamp_addr={0x44, 0x14, 0x5c, 0x1, 0x7, [{@local, 0x9}, {@loopback, 0x2}]}, @timestamp={0x44, 0xc, 0xad, 0x0, 0x8, [0x1, 0x5]}, @cipso={0x86, 0x22, 0x2, [{0x6, 0x3, 'r'}, {0x0, 0xb, "72f498c5dd43aff324"}, {0x5, 0xe, "d97de07f82006cc1376c4ef1"}]}]}}}}})
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000980)={0xffffffffffffffff, 0xe0, &(0x7f0000000880)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f00000006c0)=[0x0], ""/16, <r9=>0x0, 0x0, 0x0, 0x0, 0x1, 0x5, &(0x7f0000000700)=[0x0], &(0x7f0000000740)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x28, &(0x7f0000000780)=[{}, {}, {}, {}], 0x20, 0x10, &(0x7f00000007c0), &(0x7f0000000800), 0x8, 0xc2, 0x8, 0x8, &(0x7f0000000840)}}, 0x10)
r10 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r10, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r11=>0x0})
setsockopt$CAN_RAW_LOOPBACK(r10, 0x65, 0x3, &(0x7f0000000180), 0x4)
setsockopt$SO_TIMESTAMPING(r10, 0x1, 0x25, &(0x7f0000000000)=0x2, 0x4)
sendmsg$can_raw(r10, &(0x7f0000000240)={&(0x7f0000000780)={0x1d, r11}, 0x10, &(0x7f0000000480)={&(0x7f0000000140)=@can={{0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, "5b7ba3698f28aaf0"}, 0x10}}, 0x2004c891)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f00000009c0)={'batadv_slave_1\x00', <r12=>0x0})
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000a00)={'team0\x00', <r13=>0x0})
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000a40)=<r14=>0x0, &(0x7f0000000a80)=0x4)
sendmsg$TEAM_CMD_NOOP(0xffffffffffffffff, &(0x7f00000010c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000001080)={&(0x7f0000000ac0)={0x5a0, 0x0, 0x20, 0x70bd2c, 0x25dfdbfc, {}, [{{0x8}, {0x134, 0x2, 0x0, 0x1, [{0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x9b}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x44, 0x1, @name={{0x24}, {0x5}, {0x11, 0x4, 'activebackup\x00'}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x80}}}, {0x40, 0x1, @name={{0x24}, {0x5}, {0x10, 0x4, 'loadbalance\x00'}}}]}}, {{0x8}, {0x1a4, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r2}}}, {0x74, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x44, 0x4, [{0xfff7, 0x5, 0x8}, {0x1, 0xff, 0x2, 0x1}, {0x568, 0x2, 0x4, 0x10}, {0x4, 0x5, 0x40, 0x9}, {0x8, 0x3, 0x5, 0x6}, {0x1, 0xfb, 0xe0, 0x8c3}, {0x81, 0x4, 0x4, 0x8}, {0x3, 0x6, 0x4, 0x6}]}}}, {0x40, 0x1, @name={{0x24}, {0x5}, {0x10, 0x4, 'loadbalance\x00'}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r4}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x3b}}, {0x8, 0x6, r7}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x2}}}]}}, {{0x8, 0x1, r8}, {0x1d8, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x7ff}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x9}}, {0x8, 0x6, r9}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0xffffffff}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r11}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r12}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x80000000}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x401}}}]}}, {{0x8, 0x1, r13}, {0xbc, 0x2, 0x0, 0x1, [{0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x7}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x1}}, {0x8, 0x6, r14}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x7f}}, {0x8}}}]}}]}, 0x5a0}}, 0x40)
syz_usb_connect(0x0, 0x5a, 0x0, 0x0)
close(r1)

5.580564191s ago: executing program 1 (id=1349):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
r1 = dup(r0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000880)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x8003}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0xa4, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x7c, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_EXTHDR_OFFSET={0x8}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x22}, @NFTA_EXTHDR_TYPE={0x5, 0x2, 0x7}]}}}, {0x44, 0x1, 0x0, 0x1, @bitwise={{0xc}, @val={0x34, 0x2, 0x0, 0x1, [@NFTA_BITWISE_LEN={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_BITWISE_SREG={0x8, 0x1, 0x1, 0x0, 0x14}, @NFTA_BITWISE_DREG={0x8, 0x2, 0x1, 0x0, 0x12}, @NFTA_BITWISE_XOR={0xc, 0x5, 0x0, 0x1, [@NFTA_DATA_VALUE={0x7, 0x1, "58035c"}]}, @NFTA_BITWISE_MASK={0xc, 0x4, 0x0, 0x1, [@NFTA_DATA_VALUE={0x6, 0x1, "8a95"}]}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x118}}, 0x0)
bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22, 0x1, @loopback}, 0x1c)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$sock_int(r4, 0x1, 0x22, &(0x7f0000000000)=0x8, 0x4)
listen(r2, 0x8)
close(0x3)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x2, &(0x7f0000000040)=ANY=[@ANYBLOB="911000080000006a0309a0b10e583d75c224af1ad218cc403c701999ed692f"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_NMI(r7, 0xae9a)
ioctl$KVM_SET_REGS(r7, 0x4090ae82, &(0x7f0000000380)={[0x1, 0x100000000, 0x0, 0x0, 0x100000, 0x0, 0x2004c8, 0x1ff, 0x0, 0x0, 0xd, 0x0, 0x2000000000, 0x0, 0x2bd3, 0x100000001], 0x4000, 0x181000})
ioctl$KVM_RUN(r7, 0xae80, 0x0)
memfd_create(&(0x7f0000000080)='\x00', 0x7)
write$6lowpan_enable(r1, 0x0, 0x0)
ioctl$SNDCTL_DSP_SYNC(r1, 0x5001, 0x0)

5.574076342s ago: executing program 0 (id=1350):
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x2, &(0x7f0000000c40)=0x200, 0x4)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x6, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000000c00850000000f00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
keyctl$chown(0x4, 0x0, 0xee00, 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB="280000003c000701fcffffff00000700047c0000140000000000000900000000070000ff64010101"], 0x28}}, 0xc000)

5.43739632s ago: executing program 5 (id=1351):
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000001c0)={0x1fd, 0x1, 0xdddd0000, 0x2000, &(0x7f0000bd3000/0x2000)=nil})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$SNDRV_PCM_IOCTL_REWIND(0xffffffffffffffff, 0x40084146, &(0x7f0000000300)=0x10001)
ioctl$F2FS_IOC_DEFRAGMENT(r1, 0xc010f508, &(0x7f0000000380)={0x46e, 0xffffffffffffffff})
r3 = socket(0x10, 0x3, 0x0)
sendto$inet6(r3, &(0x7f0000000100)="c10e000018001f06b9409b0dffff110d0207be040205060506100a044300040018000000fac8388827a685a168d9a44604094565360c648dcaaf6c26c291214549932fde4a460c89b6ec0cff3959547f509058ba86c902fc3a10004a320c0400160012000a00000000000000000000080756ede4ccbe5880", 0xec1, 0x0, 0x0, 0x9e5e111c47e3504f)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_GET(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYRES16, @ANYRES64, @ANYRES16=r2], 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x800)
syslog(0x4, 0x0, 0x0)
r5 = syz_open_procfs(r0, &(0x7f0000000180)='net/udp6\x00')
pread64(r5, &(0x7f0000001240)=""/102398, 0x18ffe, 0x2000000700)
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x8, r6)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040))
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
r7 = syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2)
ioctl$VIDIOC_S_EXT_CTRLS(r7, 0xc0205647, &(0x7f0000000100)={0xf000000, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x98f910, 0x7ffe, '\x00', @string=&(0x7f0000000340)=0x5}})

5.423719598s ago: executing program 1 (id=1352):
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000001c0)={0x1fd, 0x1, 0xdddd0000, 0x2000, &(0x7f0000bd3000/0x2000)=nil})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$SNDRV_PCM_IOCTL_REWIND(0xffffffffffffffff, 0x40084146, &(0x7f0000000300)=0x10001)
ioctl$F2FS_IOC_DEFRAGMENT(r1, 0xc010f508, &(0x7f0000000380)={0x46e, 0xffffffffffffffff})
r3 = socket(0x10, 0x3, 0x0)
sendto$inet6(r3, &(0x7f0000000100)="c10e000018001f06b9409b0dffff110d0207be040205060506100a044300040018000000fac8388827a685a168d9a44604094565360c648dcaaf6c26c291214549932fde4a460c89b6ec0cff3959547f509058ba86c902fc3a10004a320c0400160012000a00000000000000000000080756ede4ccbe5880", 0xec1, 0x0, 0x0, 0x9e5e111c47e3504f)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_GET(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYRES16, @ANYRES64, @ANYRES16=r2], 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x800)
syslog(0x4, 0x0, 0x0)
r5 = syz_open_procfs(r0, &(0x7f0000000180)='net/udp6\x00')
pread64(r5, &(0x7f0000001240)=""/102398, 0x18ffe, 0x2000000700)
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x8, r6)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040))
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
r7 = syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2)
ioctl$VIDIOC_S_EXT_CTRLS(r7, 0xc0205647, &(0x7f0000000100)={0xf000000, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x98f910, 0x7ffe, '\x00', @string=&(0x7f0000000340)=0x5}})

4.15606394s ago: executing program 0 (id=1353):
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000000)={@local, 0x0, 0x2}, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
unshare(0x6a040000)
r0 = socket$packet(0x11, 0x2, 0x300)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000005"], 0x48)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8fe00000000bfa200000000000007020000f8ffffffb703000008000000b70400008f2000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000400)='io_uring_create\x00', r3}, 0x18)
io_uring_setup(0x1de0, &(0x7f00000000c0)={0x0, 0x45d6, 0x0, 0x0, 0x0, 0x0, r3})
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r1}, &(0x7f0000000340), &(0x7f0000000380)=r4}, 0x20)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r4, 0x18000000000002a0, 0xd50, 0x0, &(0x7f0000000580)="b9ff03076804268c989e14f088a8", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_group_source_req(r5, 0x29, 0x2b, &(0x7f0000000000)={0x3, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x6, @ipv4={'\x00', '\xff\xff', @remote}}}}, 0x108)
r6 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r6, 0x107, 0x12, &(0x7f0000000000), 0x8)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r7 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$IPT_SO_GET_INFO(r7, 0x0, 0x40, &(0x7f0000000240)={'mangle\x00', 0x0, [0x4, 0x6, 0x1, 0x40, 0x7]}, &(0x7f0000000200)=0x54)

3.776204487s ago: executing program 4 (id=1354):
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6(0xa, 0x1, 0x0)
socket$key(0xf, 0x3, 0x2)
keyctl$instantiate_iov(0x14, 0x0, 0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
recvfrom$inet6(0xffffffffffffffff, 0x0, 0x0, 0x200, &(0x7f0000000180)={0xa, 0x4e21, 0x3, @remote, 0x4}, 0x1c)
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
r1 = fspick(0xffffffffffffffff, &(0x7f0000000280)='./bus\x00', 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x20702, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000080)={'pim6reg1\x00', 0xe511})
ioctl$TUNSETQUEUE(r2, 0x400454d9, &(0x7f00000001c0)={'gre0\x00', 0x400})
close(r2)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
syz_open_dev$loop(0x0, 0xe, 0x42000)
r3 = fsmount(r0, 0x0, 0x0)
fchdir(r3)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001000000940000000fad413e850000000700000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
semget$private(0x0, 0x6, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$packet(0x11, 0x3, 0x300)
socket$inet6_udp(0xa, 0x2, 0x0)

3.644935838s ago: executing program 5 (id=1355):
ioctl$IOCTL_VMCI_INIT_CONTEXT(0xffffffffffffffff, 0x7a0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x24, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa5, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00', r3, 0x0, 0x48ab1b12}, 0x18)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0xc001)
syz_init_net_socket$rose(0xb, 0x5, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sched_setscheduler(0x0, 0x2, 0x0)
getsockopt(0xffffffffffffffff, 0x200000000114, 0x2716, 0x0, 0x0)
mremap(&(0x7f0000005000/0x4000)=nil, 0x4000, 0x1000, 0x0, &(0x7f0000003000/0x1000)=nil)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000380), 0x4000000044882, 0x0)
io_setup(0x1, &(0x7f00000004c0)=<r4=>0x0)
io_submit(r4, 0x0, &(0x7f00000000c0))

2.308282178s ago: executing program 5 (id=1356):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
iopl(0x3)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x2, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073"], 0x7c}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4276ef66ba420266b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x43, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000980)=[@textreal={0x8, 0x0}], 0x1, 0x51, 0x0, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@arm64={0x7, 0xf, 0x9, '\x00', 0x9})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00'}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x9, 0x2, 0x56d, 0x3, 0x0, 0xffffffffffffffff, 0x3, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000340), &(0x7f0000000340), 0xfffffffb, r3}, 0x38)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/bus/input/devices\x00', 0x0, 0x0)
read$FUSE(r4, &(0x7f0000000180)={0x2020}, 0x2024)
lseek(r4, 0xfffffffffffffff5, 0x1)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000200), &(0x7f00000004c0), 0x1000, r3}, 0x38)

1.871581016s ago: executing program 4 (id=1357):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000001140)='net\x00')
socket(0x1a, 0x5, 0x81)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
fchdir(r0)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x60b, 0x500a, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x50, 0x0, [{{0x9, 0x4, 0x0, 0x2, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x4f8}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0x4}}}}}]}}]}}, 0x0)
syz_usb_control_io(r1, 0x0, 0x0)
creat(0x0, 0x0)
mknod$loop(0x0, 0x0, 0x1)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
syz_usb_control_io(0xffffffffffffffff, &(0x7f00000001c0)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="000706050000ff030902"], 0x0, 0x0, 0x0, 0x0}, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x6)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000180)='tmpfs\x00', 0x2200890, 0x0)

1.550692805s ago: executing program 1 (id=1358):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0xca00, 0x0)
ioctl$SIOCSIFHWADDR(r0, 0x8924, &(0x7f0000000080)={'ipvlan1\x00', @random="8bc4efca4114"})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000800), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r2, &(0x7f00000021c0)={0x2020, 0x0, 0x0, <r3=>0x0}, 0x2020)
syz_open_procfs$pagemap(0x0, &(0x7f0000000140))
openat$fuse(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0xfd, 0x0, 0x7fffffff}]})
close_range(r5, 0xffffffffffffffff, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
syz_usb_connect$uac1(0x3, 0xdc, &(0x7f00000001c0)=ANY=[@ANYBLOB="12010000000000106b1d01014000010203010902ca0003010070000904000000010100000a24010800000201020d24060000030800000000000000240803960c03112d9cd2ce0c240208000103000000ff000924060506020100000924030003030005490c240206", @ANYRES8=r6, @ANYRES16=r4], 0x0)
syz_fuse_handle_req(r2, &(0x7f0000004380)="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", 0x2000, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)={0x90, 0x0, 0x4000000000000, {0x0, 0x0, 0x20000000, 0x37, 0x6, 0x0, {0x0, 0x100, 0x0, 0xd, 0x0, 0x100, 0x0, 0x2, 0x0, 0x0, 0xfffffffc, r3, 0x0, 0x7}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)={0x14, 0x41, 0xb, 0x70bd27, 0x25dfdbff, {0x10}}, 0x14}, 0x1, 0x0, 0x0, 0x406c080}, 0x400c851)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0x30}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r7, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="5800000002070102000000000000000005000008440007800800014000000c5a080002590000040008000140000000e7070002400000000008000240000004000800024000000005080001400000000408000240ffffffff4628328cdb64a7bb4f8835a4752ae30bbb7afae85712e156fbf37eaf4ac7238005f5f941b2deeba5"], 0x58}, 0x1, 0x0, 0x0, 0x8000}, 0x0)

1.458001056s ago: executing program 5 (id=1359):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a5c000000060a0b04000000000000000002000000300004802c0001800b0001006e756d67656e00001c000280080002400000066c080001400000000308000340000000000900010073797a30000000000900020073797a32"], 0x84}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x87}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000f40)=ANY=[@ANYRES64=r1], 0x60}}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x0, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
openat$smackfs_cipso(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/fs/smackfs/cipso2\x00', 0x2, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
listen(r0, 0x9)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000400), 0x0, 0x0)
mkdir(&(0x7f0000000240)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_on}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
r5 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r5, &(0x7f0000001fc0)=""/184, 0x20002078)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
listen(r0, 0x3)

1.45716722s ago: executing program 0 (id=1360):
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000001c0)={0x1fd, 0x1, 0xdddd0000, 0x2000, &(0x7f0000bd3000/0x2000)=nil})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$SNDRV_PCM_IOCTL_REWIND(0xffffffffffffffff, 0x40084146, &(0x7f0000000300)=0x10001)
ioctl$F2FS_IOC_DEFRAGMENT(r1, 0xc010f508, &(0x7f0000000380)={0x46e, 0xffffffffffffffff})
r3 = socket(0x10, 0x3, 0x0)
sendto$inet6(r3, &(0x7f0000000100)="c10e000018001f06b9409b0dffff110d0207be040205060506100a044300040018000000fac8388827a685a168d9a44604094565360c648dcaaf6c26c291214549932fde4a460c89b6ec0cff3959547f509058ba86c902fc3a10004a320c0400160012000a00000000000000000000080756ede4ccbe5880", 0xec1, 0x0, 0x0, 0x9e5e111c47e3504f)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_GET(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYRES16, @ANYRES64, @ANYRES16=r2], 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x800)
syslog(0x4, 0x0, 0x0)
r5 = syz_open_procfs(r0, &(0x7f0000000180)='net/udp6\x00')
pread64(r5, &(0x7f0000001240)=""/102398, 0x18ffe, 0x2000000700)
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x8, r6)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040))
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
r7 = syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2)
ioctl$VIDIOC_S_EXT_CTRLS(r7, 0xc0205647, &(0x7f0000000100)={0xf000000, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x98f910, 0x7ffe, '\x00', @string=&(0x7f0000000340)=0x5}})

121.816389ms ago: executing program 0 (id=1361):
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00', <r1=>0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000013c0)={0x6, 0x3, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000000000000095000000000000007ae26fa4b41533b304f40a6e8fb3c7d1262baa4b17707e42ad9513965cb5eb356eee14d2e38b2d2df3b8c2"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', r1, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0xc03c0, 0x8)
mknodat$loop(r2, &(0x7f0000000040)='./file0\x00', 0x40, 0x0)

49.339388ms ago: executing program 1 (id=1362):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f00000000c0)={0x3, 0x1000}, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000003180)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x7ff, 0xf84, 0x3}, 0x1c)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r1, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r1, &(0x7f0000007fc0), 0x2d, 0x0)
syz_emit_ethernet(0x2b, &(0x7f00000004c0)=ANY=[@ANYBLOB="ffffff21000001000000000b08004500001d006500000033907800000000ffffffff4e20000000099078cd"], 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001540)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', 0xffffffffffffffff, 0x0, 0x2}, 0x18)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x2b0, 0x0, 0x168, 0x9, 0x0, 0xb, 0x238, 0x250, 0x250, 0x238, 0x250, 0x3, 0x0, {[{{@ipv6={@remote, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', [], [], 'veth0_to_bridge\x00', 'nicvf0\x00'}, 0x6000000, 0xa8, 0xf0, 0x0, {0x0, 0x28e}}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@loopback, 'team0\x00'}}}, {{@uncond, 0x0, 0xa8, 0xf0}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'snmp_trap\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x310)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x64, &(0x7f0000000080)=0x174c, 0x4)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r2, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r2, &(0x7f0000007fc0), 0x800001d, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000340)='net/rfcomm\x00')
setsockopt$inet_int(r2, 0x0, 0x14, &(0x7f0000000040)=0x6ab5, 0x4)
setsockopt$inet_int(r1, 0x0, 0x32, &(0x7f0000000180)=0x4, 0x4)
r3 = getpid()
sched_setscheduler(r3, 0x2, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
prlimit64(r3, 0xe, &(0x7f0000000340)={0x80000001, 0xfffffffffffffffd}, &(0x7f0000000400))
recvmmsg(r2, &(0x7f0000000040), 0x291962b, 0x45833af92e4b39ff, 0x0)
r4 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
close(r4)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f00000018c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000500)=ANY=[@ANYBLOB="240000001e00010000000000fddbdf250a000000158566a82f6e8cee3b174f26994cedc7e1ee46e5d2109cbb492c94b4c734fd3062e88f65ded3d40d7ec1efb80f8f60e2cf2ff1f1bf540063a4e674fa", @ANYRES32=0x0, @ANYBLOB="000008000800040001000000"], 0x24}}, 0x0)
getpid()
execve(&(0x7f0000000000)='./file0\x00', &(0x7f0000019200)={[&(0x7f0000000380)=' T\xfc\x81\x8e\x9f5\x0e \x043[B\xad\x13\x9f\xae\x8f\xbb\x9a\x0f\x9f\x03\xa5\xfc9\xbb\xa4.\xf4\xeb\x03\xf1\xb6\x8c\xc4E\x93\n&k\xec\xc8\xdch\xd6\x1e\xcb\fA\\da/O\xdcn7\x1b@\xbf\xfb\x17J\xaaD\xe4\x01\xbc', &(0x7f0000019180)=' ']}, 0x0)

0s ago: executing program 0 (id=1363):
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$can_bcm(0xffffffffffffffff, 0x0, 0x20000091)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x44, 0x0, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0xa, 0x0, 0x8}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x48}}, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000540)={'erspan0\x00', &(0x7f0000001200)={'erspan0\x00', <r2=>0x0, 0x7800, 0x80, 0x8bf, 0xc, {{0x43, 0x4, 0x3, 0x13, 0x10c, 0x67, 0x0, 0x7, 0x29, 0x0, @broadcast, @dev={0xac, 0x14, 0x14, 0x30}, {[@timestamp_prespec={0x44, 0x3c, 0x5f, 0x3, 0x8, [{@empty, 0x36}, {@loopback, 0x8}, {@empty, 0x9}, {@remote, 0x6a5}, {@local, 0x6}, {@multicast2, 0x43ae}, {@multicast2, 0x8}]}, @timestamp_prespec={0x44, 0x24, 0x17, 0x3, 0x8, [{@empty, 0x1}, {@multicast2, 0x9}, {@remote, 0x6d57}, {@multicast2, 0xf7b}]}, @timestamp_addr={0x44, 0x1c, 0x84, 0x1, 0x4, [{@initdev={0xac, 0x1e, 0x1, 0x0}, 0x9}, {@rand_addr=0x64010101, 0x9}, {@multicast2, 0xc}]}, @timestamp_addr={0x44, 0xc, 0x24, 0x1, 0x7, [{@dev={0xac, 0x14, 0x14, 0x44}, 0x3}]}, @cipso={0x86, 0x5f, 0xffffffffffffffff, [{0x0, 0xa, "66e1cfa22f9280e2"}, {0x5, 0xa, "4ab199c3f2715428"}, {0x0, 0xd, "4a9ac8a10bb0252c7798ea"}, {0x5, 0x3, 'a'}, {0x1, 0x9, "908c666e7cf0ae"}, {0x1, 0x4, "6b0f"}, {0x1, 0xf, "c4327f3abd515d1514a77f74e2"}, {0x7, 0x9, "b9e74f4c4e28ef"}, {0x5, 0x10, "7be4f813c6a7d82167e0443883db"}]}, @generic={0x94, 0x4, "7f45"}, @generic={0x94, 0x5, "f42a46"}, @ra={0x94, 0x4}, @ra={0x94, 0x4, 0x1}]}}}}})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f00000000c0)={'batadv0\x00', <r4=>0x0})
r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), r3)
sendmsg$BATADV_CMD_GET_DAT_CACHE(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, r5, 0x83625fc5352ba305}, 0x14}}, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000340)={'syz_tun\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x2000000, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xe}, {0xfff3}}}, 0x24}, 0x1, 0x0, 0x0, 0x801}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000680)={'erspan0\x00', &(0x7f0000000380)={'syztnl2\x00', <r8=>0x0, 0x8000, 0x20, 0x89d, 0x10000, {{0x36, 0x4, 0x1, 0x5, 0xd8, 0x67, 0x0, 0x4, 0x4, 0x0, @remote, @rand_addr=0x64010102, {[@noop, @noop, @rr={0x7, 0x2b, 0x7e, [@private=0xa010102, @local, @broadcast, @multicast2, @broadcast, @remote, @dev={0xac, 0x14, 0x14, 0x12}, @empty, @remote, @remote]}, @ra={0x94, 0x4, 0x1}, @lsrr={0x83, 0x17, 0x85, [@remote, @loopback, @multicast2, @dev={0xac, 0x14, 0x14, 0x1c}, @multicast1]}, @ssrr={0x89, 0x13, 0xf3, [@rand_addr=0x64010102, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, @remote]}, @timestamp_prespec={0x44, 0x24, 0xb3, 0x3, 0x2, [{@multicast2, 0x8}, {@dev={0xac, 0x14, 0x14, 0x3e}, 0x8}, {@loopback, 0x7ff}, {@dev={0xac, 0x14, 0x14, 0x1a}, 0x7}]}, @timestamp_addr={0x44, 0x14, 0x5c, 0x1, 0x7, [{@local, 0x9}, {@loopback, 0x2}]}, @timestamp={0x44, 0xc, 0xad, 0x0, 0x8, [0x1, 0x5]}, @cipso={0x86, 0x22, 0x2, [{0x6, 0x3, 'r'}, {0x0, 0xb, "72f498c5dd43aff324"}, {0x5, 0xe, "d97de07f82006cc1376c4ef1"}]}]}}}}})
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000980)={0xffffffffffffffff, 0xe0, &(0x7f0000000880)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f00000006c0)=[0x0], ""/16, <r9=>0x0, 0x0, 0x0, 0x0, 0x1, 0x5, &(0x7f0000000700)=[0x0], &(0x7f0000000740)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x28, &(0x7f0000000780)=[{}, {}, {}, {}], 0x20, 0x10, &(0x7f00000007c0), &(0x7f0000000800), 0x8, 0xc2, 0x8, 0x8, &(0x7f0000000840)}}, 0x10)
r10 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r10, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r11=>0x0})
setsockopt$CAN_RAW_LOOPBACK(r10, 0x65, 0x3, &(0x7f0000000180), 0x4)
setsockopt$SO_TIMESTAMPING(r10, 0x1, 0x25, &(0x7f0000000000)=0x2, 0x4)
sendmsg$can_raw(r10, &(0x7f0000000240)={&(0x7f0000000780)={0x1d, r11}, 0x10, &(0x7f0000000480)={&(0x7f0000000140)=@can={{0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, "5b7ba3698f28aaf0"}, 0x10}}, 0x2004c891)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f00000009c0)={'batadv_slave_1\x00', <r12=>0x0})
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000a00)={'team0\x00', <r13=>0x0})
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000a40)=<r14=>0x0, &(0x7f0000000a80)=0x4)
sendmsg$TEAM_CMD_NOOP(0xffffffffffffffff, &(0x7f00000010c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000001080)={&(0x7f0000000ac0)={0x5a0, 0x0, 0x20, 0x70bd2c, 0x25dfdbfc, {}, [{{0x8}, {0x134, 0x2, 0x0, 0x1, [{0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x9b}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x44, 0x1, @name={{0x24}, {0x5}, {0x11, 0x4, 'activebackup\x00'}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x80}}}, {0x40, 0x1, @name={{0x24}, {0x5}, {0x10, 0x4, 'loadbalance\x00'}}}]}}, {{0x8}, {0x1a4, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r2}}}, {0x74, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x44, 0x4, [{0xfff7, 0x5, 0x8}, {0x1, 0xff, 0x2, 0x1}, {0x568, 0x2, 0x4, 0x10}, {0x4, 0x5, 0x40, 0x9}, {0x8, 0x3, 0x5, 0x6}, {0x1, 0xfb, 0xe0, 0x8c3}, {0x81, 0x4, 0x4, 0x8}, {0x3, 0x6, 0x4, 0x6}]}}}, {0x40, 0x1, @name={{0x24}, {0x5}, {0x10, 0x4, 'loadbalance\x00'}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r4}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x3b}}, {0x8, 0x6, r7}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x2}}}]}}, {{0x8, 0x1, r8}, {0x1d8, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x7ff}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x9}}, {0x8, 0x6, r9}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0xffffffff}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r11}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r12}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x80000000}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x401}}}]}}, {{0x8, 0x1, r13}, {0xbc, 0x2, 0x0, 0x1, [{0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x7}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x1}}, {0x8, 0x6, r14}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x7f}}, {0x8}}}]}}]}, 0x5a0}}, 0x40)
syz_usb_connect(0x0, 0x5a, 0x0, 0x0)
close(r1)

kernel console output (not intermixed with test programs):

.714112][ T8146] netlink: 52 bytes leftover after parsing attributes in process `syz.5.570'.
[  272.726054][ T8145] netlink: zone id is out of range
[  272.731319][ T8145] netlink: get zone limit has 8 unknown bytes
[  272.781902][ T8146] netlink: 21 bytes leftover after parsing attributes in process `syz.5.570'.
[  272.831728][ T8146] netlink: 21 bytes leftover after parsing attributes in process `syz.5.570'.
[  273.724221][ T8173] FAULT_INJECTION: forcing a failure.
[  273.724221][ T8173] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  273.737817][ T8173] CPU: 1 UID: 0 PID: 8173 Comm: syz.5.579 Not tainted 6.15.0-rc6-syzkaller-00346-g5723cc3450bc #0 PREEMPT(full) 
[  273.737845][ T8173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  273.737857][ T8173] Call Trace:
[  273.737866][ T8173]  <TASK>
[  273.737875][ T8173]  dump_stack_lvl+0x189/0x250
[  273.737919][ T8173]  ? __pfx_dump_stack_lvl+0x10/0x10
[  273.737947][ T8173]  ? __pfx__printk+0x10/0x10
[  273.737992][ T8173]  should_fail_ex+0x414/0x560
[  273.738019][ T8173]  _copy_to_user+0x31/0xb0
[  273.738051][ T8173]  simple_read_from_buffer+0xe1/0x170
[  273.738086][ T8173]  proc_fail_nth_read+0x1df/0x250
[  273.738111][ T8173]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  273.738136][ T8173]  ? rw_verify_area+0x258/0x650
[  273.738163][ T8173]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  273.738186][ T8173]  vfs_read+0x200/0x980
[  273.738219][ T8173]  ? __pfx___mutex_lock+0x10/0x10
[  273.738247][ T8173]  ? __pfx_vfs_read+0x10/0x10
[  273.738276][ T8173]  ? __fget_files+0x2a/0x420
[  273.738300][ T8173]  ? __fget_files+0x3a0/0x420
[  273.738317][ T8173]  ? __fget_files+0x2a/0x420
[  273.738346][ T8173]  ksys_read+0x145/0x250
[  273.738372][ T8173]  ? rcu_is_watching+0x15/0xb0
[  273.738403][ T8173]  ? __pfx_ksys_read+0x10/0x10
[  273.738435][ T8173]  ? do_syscall_64+0xba/0x210
[  273.738466][ T8173]  do_syscall_64+0xf6/0x210
[  273.738493][ T8173]  ? clear_bhb_loop+0x60/0xb0
[  273.738518][ T8173]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  273.738537][ T8173] RIP: 0033:0x7fb8d278d37c
[  273.738555][ T8173] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  273.738571][ T8173] RSP: 002b:00007fb8d05f6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  273.738592][ T8173] RAX: ffffffffffffffda RBX: 00007fb8d29b5fa0 RCX: 00007fb8d278d37c
[  273.738606][ T8173] RDX: 000000000000000f RSI: 00007fb8d05f60a0 RDI: 0000000000000009
[  273.738619][ T8173] RBP: 00007fb8d05f6090 R08: 0000000000000000 R09: 0000000000000000
[  273.738631][ T8173] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  273.738643][ T8173] R13: 0000000000000000 R14: 00007fb8d29b5fa0 R15: 00007ffe7e429128
[  273.738675][ T8173]  </TASK>
[  274.131710][ T8175] veth1_to_team: entered promiscuous mode
[  274.139624][ T8174] veth1_to_team: left promiscuous mode
[  274.179592][ T8177] netlink: 'syz.4.582': attribute type 9 has an invalid length.
[  275.874243][ T8185] netlink: 132 bytes leftover after parsing attributes in process `syz.5.583'.
[  276.688724][ T8201] netlink: 52 bytes leftover after parsing attributes in process `syz.3.588'.
[  276.803487][ T8202] loop8: detected capacity change from 0 to 7
[  276.850505][ T8202] Dev loop8: unable to read RDB block 7
[  276.869757][ T8202]  loop8: unable to read partition table
[  276.882070][ T8202] loop8: partition table beyond EOD, truncated
[  276.893457][ T8202] loop_reread_partitions: partition scan of loop8 (�被x�^>�� �) failed (rc=-5)
[  277.614995][ T8210] netlink: 1 bytes leftover after parsing attributes in process `syz.1.592'.
[  280.407904][ T8216] veth1_to_team: entered promiscuous mode
[  281.486493][ T8211] veth1_to_team: left promiscuous mode
[  281.831840][ T8225] overlayfs: failed to clone lowerpath
[  282.457058][ T8226] bond_slave_0: entered promiscuous mode
[  282.463275][ T8226] bond_slave_1: entered promiscuous mode
[  282.474308][ T8226] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  282.515533][ T8226] bond_slave_0: left promiscuous mode
[  282.521124][ T8226] bond_slave_1: left promiscuous mode
[  282.692752][ T8233] netlink: 4 bytes leftover after parsing attributes in process `syz.5.598'.
[  284.507164][ T8263] random: crng reseeded on system resumption
[  286.191770][ T8279] overlayfs: failed to clone lowerpath
[  288.627401][ T8296] netlink: 4 bytes leftover after parsing attributes in process `syz.0.612'.
[  289.719159][ T8312] input: syz1 as /devices/virtual/input/input10
[  290.446790][ T8315] netlink: 211456 bytes leftover after parsing attributes in process `syz.3.616'.
[  290.550311][ T8315] netlink: zone id is out of range
[  290.603010][ T8315] netlink: get zone limit has 8 unknown bytes
[  290.679694][ T8319] netlink: 220 bytes leftover after parsing attributes in process `syz.5.618'.
[  290.832737][    T9] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  291.179849][    T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  291.271706][    T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  291.283268][ T8332] veth1_to_team: entered promiscuous mode
[  291.353363][ T8331] veth1_to_team: left promiscuous mode
[  291.379958][    T9] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  291.493327][    T9] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  291.571112][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  291.717712][    T9] usb 1-1: config 0 descriptor??
[  292.323576][    T9] plantronics 0003:047F:FFFF.0006: reserved main item tag 0xd
[  292.603564][   T47] libceph: connect (1)[c::]:6789 error -101
[  292.784615][   T47] libceph: mon0 (1)[c::]:6789 connect error
[  292.979224][    T9] plantronics 0003:047F:FFFF.0006: No inputs registered, leaving
[  293.045834][ T8343] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  293.057040][ T8339] ceph: No mds server is up or the cluster is laggy
[  293.073895][    T9] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  293.132388][ T8343] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  293.249113][   T47] usb 1-1: USB disconnect, device number 9
[  293.456471][ T8348] fido_id[8348]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory
[  293.457022][ T8354] netlink: 'syz.0.627': attribute type 9 has an invalid length.
[  293.565576][ T8361] netlink: 4 bytes leftover after parsing attributes in process `syz.5.628'.
[  295.172986][ T8375] netlink: zone id is out of range
[  295.194749][ T8375] netlink: zone id is out of range
[  295.200271][ T8375] netlink: zone id is out of range
[  295.207681][ T8375] netlink: zone id is out of range
[  295.213062][ T8375] netlink: zone id is out of range
[  295.219781][ T8375] netlink: zone id is out of range
[  295.237073][ T8375] netlink: zone id is out of range
[  295.262701][ T8375] netlink: zone id is out of range
[  295.625614][ T8384] netlink: 256 bytes leftover after parsing attributes in process `syz.4.633'.
[  296.171117][ T8392] netlink: 211456 bytes leftover after parsing attributes in process `syz.4.636'.
[  296.180406][ T8392] net_ratelimit: 6 callbacks suppressed
[  296.180416][ T8392] netlink: zone id is out of range
[  296.191818][ T8392] netlink: get zone limit has 8 unknown bytes
[  296.342757][ T8395] netlink: 'syz.5.637': attribute type 32 has an invalid length.
[  296.369641][ T8395] netlink: 8 bytes leftover after parsing attributes in process `syz.5.637'.
[  296.401864][ T8395] (unnamed net_device) (uninitialized): option coupled_control: invalid value (255)
[  296.462473][ T8398] netlink: 16 bytes leftover after parsing attributes in process `syz.5.637'.
[  298.280965][ T8414] random: crng reseeded on system resumption
[  298.550213][ T8417] veth1_to_team: entered promiscuous mode
[  298.679110][ T8416] veth1_to_team: left promiscuous mode
[  301.196225][ T8435] netlink: 'syz.0.650': attribute type 9 has an invalid length.
[  302.039177][ T8442] netlink: 211456 bytes leftover after parsing attributes in process `syz.3.648'.
[  302.048646][ T8442] netlink: zone id is out of range
[  302.053856][ T8442] netlink: get zone limit has 8 unknown bytes
[  302.489927][ T8448] netlink: 8 bytes leftover after parsing attributes in process `syz.4.656'.
[  303.178613][ T8429] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  305.541327][ T5906] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  305.580117][   T30] kauditd_printk_skb: 20 callbacks suppressed
[  305.580150][   T30] audit: type=1326 audit(2000004121.398:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8470 comm="syz.3.660" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3a9298e969 code=0x0
[  306.121208][ T5906] usb 1-1: Using ep0 maxpacket: 16
[  306.307342][ T5906] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  306.341735][ T5906] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  306.363688][ T5906] usb 1-1: New USB device found, idVendor=1b1c, idProduct=1b02, bcdDevice= 0.00
[  306.385877][ T5906] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  306.401525][ T5906] usb 1-1: config 0 descriptor??
[  306.605635][ T8482] netlink: 211456 bytes leftover after parsing attributes in process `syz.1.664'.
[  306.614961][ T8482] netlink: zone id is out of range
[  306.620311][ T8482] netlink: get zone limit has 8 unknown bytes
[  307.292975][ T5906] corsair 0003:1B1C:1B02.0007: hidraw0: USB HID v0.00 Device [HID 1b1c:1b02] on usb-dummy_hcd.0-1/input0
[  307.692557][   T47] usb 1-1: USB disconnect, device number 10
[  307.957265][ T8501] netlink: 'syz.1.670': attribute type 10 has an invalid length.
[  308.326438][ T8505] FAULT_INJECTION: forcing a failure.
[  308.326438][ T8505] name failslab, interval 1, probability 0, space 0, times 0
[  308.340188][ T8505] CPU: 1 UID: 0 PID: 8505 Comm: syz.4.671 Not tainted 6.15.0-rc6-syzkaller-00346-g5723cc3450bc #0 PREEMPT(full) 
[  308.340217][ T8505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  308.340235][ T8505] Call Trace:
[  308.340245][ T8505]  <TASK>
[  308.340258][ T8505]  dump_stack_lvl+0x189/0x250
[  308.340291][ T8505]  ? irqentry_exit+0x74/0x90
[  308.340320][ T8505]  ? __pfx_dump_stack_lvl+0x10/0x10
[  308.340369][ T8505]  should_fail_ex+0x414/0x560
[  308.340398][ T8505]  should_failslab+0xa8/0x100
[  308.340420][ T8505]  __kmalloc_noprof+0xcb/0x4f0
[  308.340450][ T8505]  ? strlen+0x1f/0x70
[  308.340475][ T8505]  ? tomoyo_supervisor+0xbd5/0x1480
[  308.340510][ T8505]  tomoyo_supervisor+0xbd5/0x1480
[  308.340537][ T8505]  ? rcu_is_watching+0x15/0xb0
[  308.340581][ T8505]  ? __pfx_tomoyo_supervisor+0x10/0x10
[  308.340610][ T8505]  ? irqentry_exit+0x74/0x90
[  308.340638][ T8505]  ? lockdep_hardirqs_on+0x9c/0x150
[  308.340686][ T8505]  ? tomoyo_check_acl+0x386/0x400
[  308.340710][ T8505]  ? __pfx_tomoyo_check_path_acl+0x10/0x10
[  308.340737][ T8505]  tomoyo_path_permission+0x25a/0x380
[  308.340790][ T8505]  tomoyo_path_perm+0x31a/0x4b0
[  308.340815][ T8505]  ? tomoyo_path_perm+0x1e3/0x4b0
[  308.340837][ T8505]  ? __pfx_tomoyo_path_perm+0x10/0x10
[  308.340909][ T8505]  ? __pfx_current_check_access_path+0x10/0x10
[  308.340940][ T8505]  ? lookup_one_qstr_excl_raw+0x126/0x280
[  308.340968][ T8505]  tomoyo_path_symlink+0xa3/0xe0
[  308.340999][ T8505]  ? __pfx_tomoyo_path_symlink+0x10/0x10
[  308.341034][ T8505]  ? __pfx_filename_create+0x10/0x10
[  308.341066][ T8505]  security_path_symlink+0x177/0x380
[  308.341091][ T8505]  do_symlinkat+0x107/0x3f0
[  308.341122][ T8505]  ? __pfx_do_symlinkat+0x10/0x10
[  308.341152][ T8505]  ? getname_flags+0x1e5/0x540
[  308.341177][ T8505]  __x64_sys_symlink+0x7a/0x90
[  308.341207][ T8505]  do_syscall_64+0xf6/0x210
[  308.341233][ T8505]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  308.341252][ T8505]  ? clear_bhb_loop+0x60/0xb0
[  308.341277][ T8505]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  308.341295][ T8505] RIP: 0033:0x7f2a38f8e969
[  308.341314][ T8505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  308.341330][ T8505] RSP: 002b:00007f2a36dd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000058
[  308.341351][ T8505] RAX: ffffffffffffffda RBX: 00007f2a391b6160 RCX: 00007f2a38f8e969
[  308.341365][ T8505] RDX: 0000000000000000 RSI: 00002000000059c0 RDI: 00002000000049c0
[  308.341378][ T8505] RBP: 00007f2a36dd5090 R08: 0000000000000000 R09: 0000000000000000
[  308.341391][ T8505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  308.341402][ T8505] R13: 0000000000000000 R14: 00007f2a391b6160 R15: 00007ffd65a65008
[  308.341435][ T8505]  </TASK>
[  308.612170][    C1] vkms_vblank_simulate: vblank timer overrun
[  308.722403][ T8507] netlink: 68 bytes leftover after parsing attributes in process `syz.1.672'.
[  308.823425][ T8507] netlink: 32 bytes leftover after parsing attributes in process `syz.1.672'.
[  309.381042][ T8518] xt_policy: too many policy elements
[  310.272913][ T8526] random: crng reseeded on system resumption
[  311.482766][ T8541] netlink: 4 bytes leftover after parsing attributes in process `syz.0.681'.
[  312.080502][ T8538] netlink: 'syz.4.682': attribute type 10 has an invalid length.
[  313.765656][ T8559] netlink: 'syz.1.687': attribute type 6 has an invalid length.
[  314.208044][ T8557] netlink: 12 bytes leftover after parsing attributes in process `syz.5.686'.
[  314.220499][ T8557] netlink: 48 bytes leftover after parsing attributes in process `syz.5.686'.
[  314.268519][   T30] audit: type=1326 audit(2000004129.528:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8561 comm="syz.4.688" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2a38f8e969 code=0x0
[  315.272397][ T8580] random: crng reseeded on system resumption
[  315.941777][   T30] audit: type=1326 audit(2000004131.090:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8582 comm="syz.5.693" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb8d278e969 code=0x0
[  316.129496][ T8588] FAULT_INJECTION: forcing a failure.
[  316.129496][ T8588] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  316.219198][ T8588] CPU: 1 UID: 0 PID: 8588 Comm: syz.0.694 Not tainted 6.15.0-rc6-syzkaller-00346-g5723cc3450bc #0 PREEMPT(full) 
[  316.219228][ T8588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  316.219240][ T8588] Call Trace:
[  316.219247][ T8588]  <TASK>
[  316.219256][ T8588]  dump_stack_lvl+0x189/0x250
[  316.219288][ T8588]  ? __lock_acquire+0xaac/0xd20
[  316.219320][ T8588]  ? __pfx_dump_stack_lvl+0x10/0x10
[  316.219346][ T8588]  ? __pfx__printk+0x10/0x10
[  316.219377][ T8588]  ? __might_fault+0xb0/0x130
[  316.219428][ T8588]  should_fail_ex+0x414/0x560
[  316.219455][ T8588]  _copy_from_user+0x2d/0xb0
[  316.219484][ T8588]  ___sys_recvmsg+0x12e/0x510
[  316.219519][ T8588]  ? __pfx____sys_recvmsg+0x10/0x10
[  316.219578][ T8588]  ? __might_fault+0xb0/0x130
[  316.219613][ T8588]  do_recvmmsg+0x307/0x760
[  316.219652][ T8588]  ? __pfx_do_recvmmsg+0x10/0x10
[  316.219692][ T8588]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  316.219734][ T8588]  __x64_sys_recvmmsg+0x190/0x240
[  316.219760][ T8588]  ? rcu_is_watching+0x15/0xb0
[  316.219790][ T8588]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  316.219823][ T8588]  ? do_syscall_64+0xba/0x210
[  316.219855][ T8588]  do_syscall_64+0xf6/0x210
[  316.219882][ T8588]  ? clear_bhb_loop+0x60/0xb0
[  316.219906][ T8588]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  316.219924][ T8588] RIP: 0033:0x7efea978e969
[  316.219942][ T8588] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  316.219958][ T8588] RSP: 002b:00007efeaa5a8038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  316.219979][ T8588] RAX: ffffffffffffffda RBX: 00007efea99b5fa0 RCX: 00007efea978e969
[  316.219992][ T8588] RDX: 0000000000000600 RSI: 0000200000003700 RDI: 0000000000000004
[  316.220005][ T8588] RBP: 00007efeaa5a8090 R08: 0000000000000000 R09: 0000000000000000
[  316.220016][ T8588] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  316.220028][ T8588] R13: 0000000000000000 R14: 00007efea99b5fa0 R15: 00007ffd94327068
[  316.220058][ T8588]  </TASK>
[  316.427275][ T5906] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  316.663537][ T5906] usb 6-1: Using ep0 maxpacket: 16
[  316.709556][ T5906] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  316.749368][ T5906] usb 6-1: config 0 interface 0 has no altsetting 0
[  316.761205][ T5906] usb 6-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[  316.784464][ T5906] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  316.815365][ T5906] usb 6-1: config 0 descriptor??
[  317.956204][ T8598] libceph: resolve '�@��e2��OAq���cz' (ret=-3): failed
[  318.549507][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  318.556003][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  318.881620][ T8604] FAULT_INJECTION: forcing a failure.
[  318.881620][ T8604] name failslab, interval 1, probability 0, space 0, times 0
[  318.908992][ T8604] CPU: 1 UID: 0 PID: 8604 Comm: syz.0.700 Not tainted 6.15.0-rc6-syzkaller-00346-g5723cc3450bc #0 PREEMPT(full) 
[  318.909022][ T8604] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  318.909035][ T8604] Call Trace:
[  318.909044][ T8604]  <TASK>
[  318.909053][ T8604]  dump_stack_lvl+0x189/0x250
[  318.909086][ T8604]  ? xfrm_policy_lookup_bytype+0x123/0x1250
[  318.909115][ T8604]  ? __pfx_dump_stack_lvl+0x10/0x10
[  318.909143][ T8604]  ? __pfx__printk+0x10/0x10
[  318.909170][ T8604]  ? xfrm_policy_lookup_bytype+0x11ef/0x1250
[  318.909211][ T8604]  should_fail_ex+0x414/0x560
[  318.909239][ T8604]  should_failslab+0xa8/0x100
[  318.909261][ T8604]  kmem_cache_alloc_noprof+0x73/0x3c0
[  318.909292][ T8604]  ? dst_alloc+0x105/0x170
[  318.909326][ T8604]  dst_alloc+0x105/0x170
[  318.909359][ T8604]  xfrm_alloc_dst+0x76/0x160
[  318.909386][ T8604]  xfrm_lookup_with_ifid+0x77e/0x1a70
[  318.909421][ T8604]  ? __pfx_xfrm_lookup_with_ifid+0x10/0x10
[  318.909451][ T8604]  ? ip6_dst_lookup_flow+0x9a/0xe0
[  318.909482][ T8604]  xfrm_lookup_route+0x3c/0x1c0
[  318.909503][ T8604]  ? sctp_v6_get_dst+0x57e/0x1bc0
[  318.909535][ T8604]  sctp_v6_get_dst+0x7cc/0x1bc0
[  318.909565][ T8604]  ? crng_make_state+0x13a/0x700
[  318.909593][ T8604]  ? __pfx_crng_make_state+0x10/0x10
[  318.909637][ T8604]  ? __pfx_sctp_v6_get_dst+0x10/0x10
[  318.909665][ T8604]  ? __asan_memset+0x22/0x50
[  318.909718][ T8604]  ? dst_release+0x72/0x1b0
[  318.909750][ T8604]  sctp_transport_route+0x118/0x2f0
[  318.909782][ T8604]  sctp_assoc_add_peer+0x657/0x13b0
[  318.909818][ T8604]  sctp_connect_new_asoc+0x30a/0x690
[  318.909843][ T8604]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  318.909862][ T8604]  ? __local_bh_enable_ip+0x12d/0x1c0
[  318.909909][ T8604]  ? bpf_lsm_sctp_bind_connect+0x9/0x20
[  318.909933][ T8604]  ? security_sctp_bind_connect+0x7e/0x2e0
[  318.909961][ T8604]  sctp_sendmsg+0x155c/0x2810
[  318.909995][ T8604]  ? __pfx_sctp_sendmsg+0x10/0x10
[  318.910037][ T8604]  ? sock_rps_record_flow+0x19/0x400
[  318.910071][ T8604]  ? inet_sendmsg+0x2f4/0x370
[  318.910105][ T8604]  __sock_sendmsg+0x19c/0x270
[  318.910130][ T8604]  ____sys_sendmsg+0x52d/0x830
[  318.910166][ T8604]  ? __pfx_____sys_sendmsg+0x10/0x10
[  318.910204][ T8604]  ? import_iovec+0x74/0xa0
[  318.910237][ T8604]  ___sys_sendmsg+0x21f/0x2a0
[  318.910268][ T8604]  ? __pfx____sys_sendmsg+0x10/0x10
[  318.910338][ T8604]  ? __fget_files+0x2a/0x420
[  318.910357][ T8604]  ? __fget_files+0x3a0/0x420
[  318.910388][ T8604]  __sys_sendmmsg+0x227/0x430
[  318.910423][ T8604]  ? __pfx___sys_sendmmsg+0x10/0x10
[  318.910463][ T8604]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  318.910512][ T8604]  ? ksys_write+0x1f0/0x250
[  318.910539][ T8604]  ? rcu_is_watching+0x15/0xb0
[  318.910581][ T8604]  __x64_sys_sendmmsg+0xa0/0xc0
[  318.910612][ T8604]  do_syscall_64+0xf6/0x210
[  318.910640][ T8604]  ? clear_bhb_loop+0x60/0xb0
[  318.910664][ T8604]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  318.910684][ T8604] RIP: 0033:0x7efea978e969
[  318.910703][ T8604] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  318.910720][ T8604] RSP: 002b:00007efeaa5a8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  318.910742][ T8604] RAX: ffffffffffffffda RBX: 00007efea99b5fa0 RCX: 00007efea978e969
[  318.910757][ T8604] RDX: 0000000000000001 RSI: 0000200000000a80 RDI: 0000000000000004
[  318.910770][ T8604] RBP: 00007efeaa5a8090 R08: 0000000000000000 R09: 0000000000000000
[  318.910782][ T8604] R10: 000000000004c040 R11: 0000000000000246 R12: 0000000000000002
[  318.910795][ T8604] R13: 0000000000000000 R14: 00007efea99b5fa0 R15: 00007ffd94327068
[  318.910827][ T8604]  </TASK>
[  319.874389][ T5906] usbhid 6-1:0.0: can't add hid device: -71
[  320.372867][ T5906] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  320.386101][ T5906] usb 6-1: USB disconnect, device number 7
[  320.648432][ T8621] ntfs3(nullb0): Primary boot signature is not NTFS.
[  320.666240][ T8621] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  321.309923][ T8625] netlink: 'syz.4.706': attribute type 4 has an invalid length.
[  321.610867][   T30] audit: type=1326 audit(2000004136.282:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8628 comm="syz.5.708" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb8d278e969 code=0x0
[  321.745929][ T8632] netlink: 4 bytes leftover after parsing attributes in process `syz.3.709'.
[  321.824999][ T8634] netlink: 12 bytes leftover after parsing attributes in process `syz.3.709'.
[  321.857657][ T8634] netlink: 8 bytes leftover after parsing attributes in process `syz.3.709'.
[  322.929435][ T8640] Sensor B: =================  START STATUS  =================
[  322.937305][ T8640] Sensor B: Test Pattern: 75% Colorbar
[  322.943171][ T8640] Sensor B: Show Information: All
[  322.948419][ T8640] Sensor B: Vertical Flip: false
[  322.953628][ T8640] Sensor B: Horizontal Flip: false
[  322.958989][ T8640] Sensor B: Brightness: 128
[  322.963753][ T8640] Sensor B: Contrast: 128
[  322.968643][ T8640] Sensor B: Hue: 0
[  322.973045][ T8640] Sensor B: Saturation: 128
[  322.978385][ T8640] Sensor B: ==================  END STATUS  ==================
[  324.281986][ T5929] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  324.438830][ T8656] FAULT_INJECTION: forcing a failure.
[  324.438830][ T8656] name failslab, interval 1, probability 0, space 0, times 0
[  324.493015][ T8656] CPU: 0 UID: 0 PID: 8656 Comm: syz.4.717 Not tainted 6.15.0-rc6-syzkaller-00346-g5723cc3450bc #0 PREEMPT(full) 
[  324.493044][ T8656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  324.493057][ T8656] Call Trace:
[  324.493064][ T8656]  <TASK>
[  324.493072][ T8656]  dump_stack_lvl+0x189/0x250
[  324.493107][ T8656]  ? __pfx_dump_stack_lvl+0x10/0x10
[  324.493134][ T8656]  ? __pfx__printk+0x10/0x10
[  324.493172][ T8656]  ? __pfx___might_resched+0x10/0x10
[  324.493201][ T8656]  ? fs_reclaim_acquire+0x7d/0x100
[  324.493228][ T8656]  should_fail_ex+0x414/0x560
[  324.493255][ T8656]  should_failslab+0xa8/0x100
[  324.493277][ T8656]  __kmalloc_noprof+0xcb/0x4f0
[  324.493305][ T8656]  ? kfree+0x4d/0x440
[  324.493330][ T8656]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  324.493362][ T8656]  tomoyo_realpath_from_path+0xe3/0x5d0
[  324.493401][ T8656]  ? tomoyo_domain+0xda/0x130
[  324.493436][ T8656]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  324.493459][ T8656]  tomoyo_path_number_perm+0x1e8/0x5a0
[  324.493485][ T8656]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  324.493526][ T8656]  ? __lock_acquire+0xaac/0xd20
[  324.493574][ T8656]  ? __fget_files+0x2a/0x420
[  324.493598][ T8656]  ? __fget_files+0x3a0/0x420
[  324.493614][ T8656]  ? __fget_files+0x2a/0x420
[  324.493637][ T8656]  security_file_ioctl+0xcb/0x2d0
[  324.493664][ T8656]  __se_sys_ioctl+0x47/0x170
[  324.493693][ T8656]  do_syscall_64+0xf6/0x210
[  324.493721][ T8656]  ? clear_bhb_loop+0x60/0xb0
[  324.493747][ T8656]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  324.493766][ T8656] RIP: 0033:0x7f2a38f8e969
[  324.493788][ T8656] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  324.493806][ T8656] RSP: 002b:00007f2a39d2b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  324.493828][ T8656] RAX: ffffffffffffffda RBX: 00007f2a391b5fa0 RCX: 00007f2a38f8e969
[  324.493844][ T8656] RDX: 0000200000000040 RSI: 0000000040085511 RDI: 0000000000000003
[  324.493858][ T8656] RBP: 00007f2a39d2b090 R08: 0000000000000000 R09: 0000000000000000
[  324.493870][ T8656] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  324.493882][ T8656] R13: 0000000000000000 R14: 00007f2a391b5fa0 R15: 00007ffd65a65008
[  324.493914][ T8656]  </TASK>
[  324.494701][ T8656] ERROR: Out of memory at tomoyo_realpath_from_path.
[  324.500006][ T5929] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  324.874459][ T8661] FAULT_INJECTION: forcing a failure.
[  324.874459][ T8661] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  324.920213][ T8661] CPU: 1 UID: 0 PID: 8661 Comm: syz.4.720 Not tainted 6.15.0-rc6-syzkaller-00346-g5723cc3450bc #0 PREEMPT(full) 
[  324.920244][ T8661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  324.920258][ T8661] Call Trace:
[  324.920266][ T8661]  <TASK>
[  324.920275][ T8661]  dump_stack_lvl+0x189/0x250
[  324.920304][ T8661]  ? __lock_acquire+0xaac/0xd20
[  324.920327][ T8661]  ? __pfx_dump_stack_lvl+0x10/0x10
[  324.920353][ T8661]  ? __pfx__printk+0x10/0x10
[  324.920385][ T8661]  ? __might_fault+0xb0/0x130
[  324.920425][ T8661]  should_fail_ex+0x414/0x560
[  324.920444][ T8661]  _copy_from_user+0x2d/0xb0
[  324.920466][ T8661]  ___sys_sendmsg+0x158/0x2a0
[  324.920488][ T8661]  ? __pfx____sys_sendmsg+0x10/0x10
[  324.920535][ T8661]  ? __fget_files+0x2a/0x420
[  324.920547][ T8661]  ? __fget_files+0x3a0/0x420
[  324.920568][ T8661]  __x64_sys_sendmsg+0x19b/0x260
[  324.920591][ T8661]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  324.920624][ T8661]  ? do_syscall_64+0xba/0x210
[  324.920652][ T8661]  do_syscall_64+0xf6/0x210
[  324.920671][ T8661]  ? clear_bhb_loop+0x60/0xb0
[  324.920689][ T8661]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  324.920702][ T8661] RIP: 0033:0x7f2a38f8e969
[  324.920715][ T8661] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  324.920727][ T8661] RSP: 002b:00007f2a39d2b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  324.920743][ T8661] RAX: ffffffffffffffda RBX: 00007f2a391b5fa0 RCX: 00007f2a38f8e969
[  324.920754][ T8661] RDX: 0000000000008010 RSI: 0000200000000000 RDI: 0000000000000003
[  324.920763][ T8661] RBP: 00007f2a39d2b090 R08: 0000000000000000 R09: 0000000000000000
[  324.920771][ T8661] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  324.920779][ T8661] R13: 0000000000000000 R14: 00007f2a391b5fa0 R15: 00007ffd65a65008
[  324.920801][ T8661]  </TASK>
[  325.315703][ T5929] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  325.332456][ T5929] usb 1-1: Product: syz
[  325.336679][ T5929] usb 1-1: Manufacturer: syz
[  325.352477][ T5929] usb 1-1: SerialNumber: syz
[  325.404093][ T5929] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  325.480896][ T5988] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  325.964283][ T8669] netlink: 24 bytes leftover after parsing attributes in process `syz.1.724'.
[  326.898053][ T5988] usb 1-1: Service connection timeout for: 256
[  326.976838][ T5988] ath9k_htc 1-1:1.0: ath9k_htc: Unable to initialize HTC services
[  327.166645][    T9] usb 1-1: USB disconnect, device number 11
[  327.190062][ T5988] ath9k_htc: Failed to initialize the device
[  327.235615][    T9] usb 1-1: ath9k_htc: USB layer deinitialized
[  328.848582][ T8691] xt_TCPMSS: Only works on TCP SYN packets
[  329.677813][   T30] audit: type=1326 audit(2000004143.954:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8696 comm="syz.3.732" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3a9298e969 code=0x0
[  330.739265][ T8708] Sensor B: =================  START STATUS  =================
[  330.746923][ T8708] Sensor B: Test Pattern: 75% Colorbar
[  330.752438][ T8708] Sensor B: Show Information: All
[  330.757542][ T8708] Sensor B: Vertical Flip: false
[  330.762495][ T8708] Sensor B: Horizontal Flip: false
[  330.767668][ T8708] Sensor B: Brightness: 128
[  330.772182][ T8708] Sensor B: Contrast: 128
[  330.776518][ T8708] Sensor B: Hue: 0
[  330.780957][ T8708] Sensor B: Saturation: 128
[  330.785507][ T8708] Sensor B: ==================  END STATUS  ==================
[  332.052339][ T8718] FAULT_INJECTION: forcing a failure.
[  332.052339][ T8718] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  332.069205][ T8718] CPU: 0 UID: 0 PID: 8718 Comm: syz.5.736 Not tainted 6.15.0-rc6-syzkaller-00346-g5723cc3450bc #0 PREEMPT(full) 
[  332.069237][ T8718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  332.069248][ T8718] Call Trace:
[  332.069260][ T8718]  <TASK>
[  332.069270][ T8718]  dump_stack_lvl+0x189/0x250
[  332.069302][ T8718]  ? __lock_acquire+0xaac/0xd20
[  332.069333][ T8718]  ? __pfx_dump_stack_lvl+0x10/0x10
[  332.069360][ T8718]  ? __pfx__printk+0x10/0x10
[  332.069390][ T8718]  ? __might_fault+0xb0/0x130
[  332.069433][ T8718]  should_fail_ex+0x414/0x560
[  332.069461][ T8718]  _copy_from_user+0x2d/0xb0
[  332.069491][ T8718]  sctp_getsockopt_connectx3+0x148/0x440
[  332.069524][ T8718]  ? __pfx_sctp_getsockopt_connectx3+0x10/0x10
[  332.069554][ T8718]  ? __local_bh_enable_ip+0x12d/0x1c0
[  332.069584][ T8718]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  332.069626][ T8718]  sctp_getsockopt+0x98a/0xb60
[  332.069655][ T8718]  do_sock_getsockopt+0x35d/0x650
[  332.069693][ T8718]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  332.069719][ T8718]  ? do_syscall_64+0x40/0x210
[  332.069744][ T8718]  ? __fget_files+0x2a/0x420
[  332.069762][ T8718]  ? __fget_files+0x3a0/0x420
[  332.069778][ T8718]  ? __fget_files+0x2a/0x420
[  332.069805][ T8718]  __x64_sys_getsockopt+0x1a5/0x250
[  332.069831][ T8718]  ? do_syscall_64+0x40/0x210
[  332.069858][ T8718]  ? do_syscall_64+0x40/0x210
[  332.069888][ T8718]  do_syscall_64+0xf6/0x210
[  332.069914][ T8718]  ? asm_sysvec_call_function_single+0x1a/0x20
[  332.069936][ T8718]  ? clear_bhb_loop+0x60/0xb0
[  332.069960][ T8718]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  332.069979][ T8718] RIP: 0033:0x7fb8d278e969
[  332.069998][ T8718] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  332.070015][ T8718] RSP: 002b:00007fb8d05d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  332.070036][ T8718] RAX: ffffffffffffffda RBX: 00007fb8d29b6080 RCX: 00007fb8d278e969
[  332.070051][ T8718] RDX: 000000000000006f RSI: 0000000000000084 RDI: 0000000000000004
[  332.070063][ T8718] RBP: 00007fb8d05d5090 R08: 0000200000000240 R09: 0000000000000000
[  332.070077][ T8718] R10: 0000200000000200 R11: 0000000000000246 R12: 0000000000000001
[  332.070089][ T8718] R13: 0000000000000000 R14: 00007fb8d29b6080 R15: 00007ffe7e429128
[  332.070122][ T8718]  </TASK>
[  333.044782][   T30] audit: type=1326 audit(2000004147.088:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8723 comm="syz.5.740" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb8d278e969 code=0x0
[  333.224360][ T8731] [U] v�3��f��"S��/��4:�XTz�W�t��lW��=
[  333.236022][ T8731] [U] J"�e:��"


[  333.375717][ T5929] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  333.565803][ T5929] usb 6-1: Using ep0 maxpacket: 16
[  333.603749][ T5929] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  333.631483][ T5929] usb 6-1: config 0 interface 0 has no altsetting 0
[  333.715817][ T5929] usb 6-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[  333.739532][ T5929] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  333.924770][ T5929] usb 6-1: config 0 descriptor??
[  334.110173][ T5906] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  334.305546][ T5906] usb 1-1: Using ep0 maxpacket: 16
[  334.325069][ T5906] usb 1-1: config 0 has an invalid interface number: 217 but max is 0
[  334.347949][ T5906] usb 1-1: config 0 has no interface number 0
[  334.382905][ T5906] usb 1-1: config 0 interface 217 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  334.415654][ T5906] usb 1-1: config 0 interface 217 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  334.475633][ T5906] usb 1-1: New USB device found, idVendor=17e9, idProduct=0d52, bcdDevice=9b.89
[  334.516848][ T5906] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  334.537681][ T5906] usb 1-1: Product: syz
[  334.558585][ T5906] usb 1-1: Manufacturer: syz
[  334.832325][ T5906] usb 1-1: SerialNumber: syz
[  335.482822][ T5906] usb 1-1: config 0 descriptor??
[  335.520522][ T8746] libceph: resolve '�@��e2��OAq���cz' (ret=-3): failed
[  336.419410][ T8734] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  336.428636][ T8734] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  336.576411][ T5906] [drm] vendor descriptor length:b9 data:00 00 00 00 00 00 00 00 00 00 00
[  336.711312][ T5929] usbhid 6-1:0.0: can't add hid device: -71
[  336.717372][ T5929] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  336.769536][ T5906] [drm:udl_init] *ERROR* Unrecognized vendor firmware descriptor
[  336.806028][ T5929] usb 6-1: USB disconnect, device number 8
[  336.859425][ T5906] [drm:udl_init] *ERROR* Selecting channel failed
[  338.313436][ T5906] [drm] Initialized udl 0.0.1 for 1-1:0.217 on minor 2
[  338.344422][ T5906] [drm] Initialized udl on minor 2
[  338.352576][ T8768] veth1_to_team: entered promiscuous mode
[  338.359519][ T5906] udl 1-1:0.217: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  338.409599][ T5906] udl 1-1:0.217: [drm] Cannot find any crtc or sizes
[  338.463509][    T9] udl 1-1:0.217: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  338.480617][ T5906] usb 1-1: USB disconnect, device number 12
[  338.503749][    T9] udl 1-1:0.217: [drm] Cannot find any crtc or sizes
[  338.896697][ T8768] team0: Port device team_slave_1 removed
[  339.225382][ T5906] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  339.514459][ T8790] syz.5.758: attempt to access beyond end of device
[  339.514459][ T8790] nbd5: rw=0, sector=0, nr_sectors = 1 limit=0
[  339.527816][ T8790] hpfs: hpfs_map_sector(): read error
[  340.035171][ T5906] usb 1-1: Using ep0 maxpacket: 8
[  340.051351][ T5906] usb 1-1: config 0 has an invalid interface number: 31 but max is 0
[  340.165658][ T5906] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  340.204744][ T5906] usb 1-1: config 0 has no interface number 0
[  340.221503][ T5906] usb 1-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[  340.231965][ T5906] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  340.247915][ T5906] usb 1-1: Product: syz
[  340.266586][ T8792] Sensor B: =================  START STATUS  =================
[  340.274176][ T8792] Sensor B: Test Pattern: 75% Colorbar
[  340.279668][ T8792] Sensor B: Show Information: All
[  340.284784][ T8792] Sensor B: Vertical Flip: false
[  340.289730][ T8792] Sensor B: Horizontal Flip: false
[  340.294887][ T8792] Sensor B: Brightness: 128
[  340.299397][ T8792] Sensor B: Contrast: 128
[  340.304435][ T8792] Sensor B: Hue: 0
[  340.308183][ T8792] Sensor B: Saturation: 128
[  340.312728][ T8792] Sensor B: ==================  END STATUS  ==================
[  340.331368][ T5906] usb 1-1: Manufacturer: syz
[  340.365875][ T5906] usb 1-1: SerialNumber: syz
[  340.395235][ T5906] usb 1-1: config 0 descriptor??
[  340.645580][ T8782] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[  340.671469][ T5906] usb 1-1: USB disconnect, device number 13
[  340.683225][ T8808] netlink: 44 bytes leftover after parsing attributes in process `syz.1.764'.
[  343.774035][ T8837] Sensor B: =================  START STATUS  =================
[  343.782266][ T8837] Sensor B: Test Pattern: 75% Colorbar
[  343.787875][ T8837] Sensor B: Show Information: All
[  343.792923][ T8837] Sensor B: Vertical Flip: false
[  343.798008][ T8837] Sensor B: Horizontal Flip: false
[  343.803138][ T8837] Sensor B: Brightness: 128
[  343.808222][ T8837] Sensor B: Contrast: 128
[  343.812592][ T8837] Sensor B: Hue: 0
[  343.816349][ T8837] Sensor B: Saturation: 128
[  343.821161][ T8837] Sensor B: ==================  END STATUS  ==================
[  343.952841][ T8834] relay: one or more items not logged [item size (56) > sub-buffer size (10)]
[  343.989959][ T5879] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  344.171808][ T5879] usb 6-1: Using ep0 maxpacket: 32
[  344.180000][ T5879] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[  344.207468][ T5879] usb 6-1: New USB device found, idVendor=3823, idProduct=0001, bcdDevice= 3.eb
[  344.220163][ T5879] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  344.277759][ T5879] usb 6-1: Product: syz
[  344.304091][ T5879] usb 6-1: Manufacturer: syz
[  344.339547][ T5879] usb 6-1: SerialNumber: syz
[  344.388264][ T5879] usb 6-1: config 0 descriptor??
[  344.411089][ T5879] usbtouchscreen 6-1:0.0: probe with driver usbtouchscreen failed with error -12
[  344.421834][ T8852] netlink: 211456 bytes leftover after parsing attributes in process `syz.0.776'.
[  344.432339][ T8852] netlink: zone id is out of range
[  344.437529][ T8852] netlink: get zone limit has 8 unknown bytes
[  344.653955][ T8799] netlink: 12 bytes leftover after parsing attributes in process `syz.5.762'.
[  344.690849][ T5879] usb 6-1: USB disconnect, device number 9
[  346.685618][ T8894] netlink: 'syz.5.787': attribute type 10 has an invalid length.
[  347.396167][ T8899] netlink: 'syz.0.788': attribute type 10 has an invalid length.
[  347.613877][   T30] audit: type=1326 audit(2000000002.506:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8900 comm="syz.1.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9949f8e969 code=0x7ffc0000
[  347.716159][   T30] audit: type=1326 audit(2000000002.506:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8900 comm="syz.1.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9949f8e969 code=0x7ffc0000
[  347.820630][   T30] audit: type=1326 audit(2000000002.506:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8900 comm="syz.1.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f9949f8e969 code=0x7ffc0000
[  347.885802][   T30] audit: type=1326 audit(2000000002.506:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8900 comm="syz.1.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9949f8e969 code=0x7ffc0000
[  347.915985][   T30] audit: type=1326 audit(2000000002.506:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8900 comm="syz.1.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9949f8e969 code=0x7ffc0000
[  347.993045][   T30] audit: type=1326 audit(2000000002.506:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8900 comm="syz.1.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f9949f8e969 code=0x7ffc0000
[  348.061648][   T30] audit: type=1326 audit(2000000002.506:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8900 comm="syz.1.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9949f8e969 code=0x7ffc0000
[  348.098872][ T8907] FAULT_INJECTION: forcing a failure.
[  348.098872][ T8907] name failslab, interval 1, probability 0, space 0, times 0
[  348.137843][   T30] audit: type=1326 audit(2000000002.506:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8900 comm="syz.1.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9949f8e969 code=0x7ffc0000
[  348.140490][ T8907] CPU: 0 UID: 0 PID: 8907 Comm: syz.0.792 Not tainted 6.15.0-rc6-syzkaller-00346-g5723cc3450bc #0 PREEMPT(full) 
[  348.140519][ T8907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  348.140532][ T8907] Call Trace:
[  348.140541][ T8907]  <TASK>
[  348.140551][ T8907]  dump_stack_lvl+0x189/0x250
[  348.140589][ T8907]  ? __pfx_dump_stack_lvl+0x10/0x10
[  348.140620][ T8907]  ? __pfx__printk+0x10/0x10
[  348.140656][ T8907]  ? __pfx___might_resched+0x10/0x10
[  348.140688][ T8907]  ? fs_reclaim_acquire+0x7d/0x100
[  348.140718][ T8907]  should_fail_ex+0x414/0x560
[  348.140748][ T8907]  should_failslab+0xa8/0x100
[  348.140770][ T8907]  kmem_cache_alloc_lru_noprof+0x78/0x3d0
[  348.140804][ T8907]  ? __d_alloc+0x31/0x6f0
[  348.140835][ T8907]  __d_alloc+0x31/0x6f0
[  348.140866][ T8907]  d_make_root+0x4a/0xe0
[  348.140892][ T8907]  simple_fill_super+0x242/0x710
[  348.140921][ T8907]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  348.140960][ T8907]  bpf_fill_super+0xf3/0x860
[  348.140998][ T8907]  ? __init_swait_queue_head+0xa9/0x150
[  348.141024][ T8907]  ? __pfx_bpf_fill_super+0x10/0x10
[  348.141056][ T8907]  ? shrinker_register+0x16b/0x230
[  348.141088][ T8907]  ? sget_fc+0x962/0xa40
[  348.141117][ T8907]  ? __pfx_set_anon_super_fc+0x10/0x10
[  348.141145][ T8907]  ? __pfx_bpf_fill_super+0x10/0x10
[  348.141178][ T8907]  get_tree_nodev+0xbb/0x150
[  348.141218][ T8907]  vfs_get_tree+0x92/0x2b0
[  348.141251][ T8907]  do_new_mount+0x24a/0xa40
[  348.141295][ T8907]  __se_sys_mount+0x317/0x410
[  348.141322][ T8907]  ? __pfx___se_sys_mount+0x10/0x10
[  348.141347][ T8907]  ? do_syscall_64+0xba/0x210
[  348.141373][ T8907]  ? __x64_sys_mount+0x20/0xc0
[  348.141396][ T8907]  do_syscall_64+0xf6/0x210
[  348.141424][ T8907]  ? clear_bhb_loop+0x60/0xb0
[  348.141451][ T8907]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  348.141471][ T8907] RIP: 0033:0x7efea978e969
[  348.141492][ T8907] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  348.141510][ T8907] RSP: 002b:00007efeaa5a8038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  348.141533][ T8907] RAX: ffffffffffffffda RBX: 00007efea99b5fa0 RCX: 00007efea978e969
[  348.141549][ T8907] RDX: 0000200000000540 RSI: 0000200000000500 RDI: 0000000000000000
[  348.141563][ T8907] RBP: 00007efeaa5a8090 R08: 0000200000000040 R09: 0000000000000000
[  348.141578][ T8907] R10: 0000000000000080 R11: 0000000000000246 R12: 0000000000000002
[  348.141590][ T8907] R13: 0000000000000000 R14: 00007efea99b5fa0 R15: 00007ffd94327068
[  348.141625][ T8907]  </TASK>
[  348.240491][ T8909] netlink: 211456 bytes leftover after parsing attributes in process `syz.5.791'.
[  348.244771][ T5988] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[  348.248413][ T8909] netlink: zone id is out of range
[  348.294032][   T30] audit: type=1326 audit(2000000002.506:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8900 comm="syz.1.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=17 compat=0 ip=0x7f9949f8e969 code=0x7ffc0000
[  348.299336][ T8909] netlink: get zone limit has 8 unknown bytes
[  348.308171][   T30] audit: type=1326 audit(2000000002.506:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8900 comm="syz.1.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9949f8e969 code=0x7ffc0000
[  348.499971][ T5988] usb 4-1: Using ep0 maxpacket: 8
[  348.567107][ T8914] netlink: 84 bytes leftover after parsing attributes in process `syz.4.793'.
[  348.578463][ T5988] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  348.595347][ T5988] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  348.661701][ T8911] bridge0: port 2(bridge_slave_1) entered forwarding state
[  348.906741][ T5988] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  348.917520][ T5988] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  348.930708][ T5988] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  348.940297][ T5988] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  349.238081][ T5988] usb 4-1: GET_CAPABILITIES returned 0
[  349.429747][ T5988] usbtmc 4-1:16.0: can't read capabilities
[  349.462762][ T5988] usb 4-1: USB disconnect, device number 19
[  350.236501][ T8936] loop9: detected capacity change from 0 to 1
[  350.320512][ T8936] Dev loop9: unable to read RDB block 1
[  350.346439][ T8936]  loop9: unable to read partition table
[  350.576131][ T8936] loop9: partition table beyond EOD, truncated
[  350.597083][ T8936] loop_reread_partitions: partition scan of loop9 (�被x������ ) failed (rc=-5)
[  351.298501][ T5879] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  352.236166][ T5879] usb 5-1: Using ep0 maxpacket: 32
[  352.248968][ T5879] usb 5-1: New USB device found, idVendor=1557, idProduct=8150, bcdDevice=29.ed
[  352.276719][ T5879] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  352.302915][ T5879] usb 5-1: Product: syz
[  352.474107][ T5879] usb 5-1: Manufacturer: syz
[  352.479648][ T5879] usb 5-1: SerialNumber: syz
[  352.501841][ T5879] usb 5-1: config 0 descriptor??
[  352.521510][ T5879] rtl8150 5-1:0.0: couldn't find required endpoints
[  352.528493][ T5879] rtl8150 5-1:0.0: probe with driver rtl8150 failed with error -5
[  352.606328][ T8960] netlink: 211456 bytes leftover after parsing attributes in process `syz.5.806'.
[  352.616199][ T8960] netlink: zone id is out of range
[  352.621670][ T8960] netlink: get zone limit has 8 unknown bytes
[  353.338924][ T5813] usb 5-1: USB disconnect, device number 12
[  353.586508][ T8969] No memory to map
[  355.462166][ T5879] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[  356.063688][ T8985] netlink: 'syz.1.815': attribute type 10 has an invalid length.
[  356.498802][ T5879] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  356.642310][ T5879] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  356.749766][ T5879] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  356.822251][ T5879] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  356.898230][ T5879] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  357.028893][ T5879] usb 4-1: config 0 descriptor??
[  357.073002][ T5879] usb 4-1: can't set config #0, error -71
[  357.324894][ T5879] usb 4-1: USB disconnect, device number 20
[  357.802792][ T8992] netlink: 'syz.4.817': attribute type 10 has an invalid length.
[  359.349532][ T9024] libceph: resolve '�@��e2��OAq���cz' (ret=-3): failed
[  360.242345][ T9044] tmpfs: Bad value for 'grpquota_inode_hardlimit'
[  362.020602][ T9062] netlink: 80 bytes leftover after parsing attributes in process `syz.1.841'.
[  362.087289][ T9067] netlink: 40 bytes leftover after parsing attributes in process `syz.1.841'.
[  364.944190][ T9088] netlink: 'syz.5.851': attribute type 9 has an invalid length.
[  366.401704][ T9094] netlink: 100 bytes leftover after parsing attributes in process `syz.3.849'.
[  366.970671][ T5879] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  367.156966][ T5879] usb 5-1: Using ep0 maxpacket: 16
[  367.176801][ T5879] usb 5-1: config 0 has an invalid interface number: 49 but max is 0
[  367.196262][ T5879] usb 5-1: config 0 has no interface number 0
[  367.208256][ T9110] team0 (unregistering): Port device team_slave_0 removed
[  367.217858][ T5879] usb 5-1: config 0 interface 49 altsetting 0 bulk endpoint 0x8A has invalid maxpacket 16
[  367.233848][ T5879] usb 5-1: config 0 interface 49 altsetting 0 has an endpoint descriptor with address 0x29, changing to 0x9
[  367.248649][ T5879] usb 5-1: config 0 interface 49 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[  367.268485][ T9110] team0 (unregistering): Port device team_slave_1 removed
[  367.284258][ T5879] usb 5-1: config 0 interface 49 altsetting 0 bulk endpoint 0x9 has invalid maxpacket 0
[  367.298276][ T9110] team0 (unregistering): Port device bond0 removed
[  367.318526][ T5879] usb 5-1: New USB device found, idVendor=03f0, idProduct=581d, bcdDevice=76.b7
[  367.331863][ T5879] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  367.348640][ T5879] usb 5-1: Product: syz
[  367.352913][ T5879] usb 5-1: Manufacturer: syz
[  367.370944][ T5879] usb 5-1: SerialNumber: syz
[  367.406039][ T5879] usb 5-1: config 0 descriptor??
[  367.414338][ T9101] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  367.700865][ T5879] qcserial 5-1:0.49: Qualcomm USB modem converter detected
[  368.144455][ T5879] usb 5-1: USB disconnect, device number 13
[  368.481559][ T5879] qcserial 5-1:0.49: device disconnected
[  368.748561][ T9131] netlink: 256 bytes leftover after parsing attributes in process `syz.0.863'.
[  369.851937][ T9143] FAULT_INJECTION: forcing a failure.
[  369.851937][ T9143] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  369.916004][ T9144] netlink: 'syz.1.867': attribute type 5 has an invalid length.
[  369.953775][ T9143] CPU: 1 UID: 0 PID: 9143 Comm: syz.5.865 Not tainted 6.15.0-rc6-syzkaller-00346-g5723cc3450bc #0 PREEMPT(full) 
[  369.953806][ T9143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  369.953820][ T9143] Call Trace:
[  369.953828][ T9143]  <TASK>
[  369.953837][ T9143]  dump_stack_lvl+0x189/0x250
[  369.953880][ T9143]  ? __lock_acquire+0xaac/0xd20
[  369.953910][ T9143]  ? __pfx_dump_stack_lvl+0x10/0x10
[  369.953936][ T9143]  ? __pfx__printk+0x10/0x10
[  369.953967][ T9143]  ? __might_fault+0xb0/0x130
[  369.954009][ T9143]  should_fail_ex+0x414/0x560
[  369.954036][ T9143]  _copy_from_user+0x2d/0xb0
[  369.954065][ T9143]  video_usercopy+0x354/0x14f0
[  369.954100][ T9143]  ? smk_tskacc+0x2fc/0x370
[  369.954131][ T9143]  ? __pfx___video_do_ioctl+0x10/0x10
[  369.954159][ T9143]  ? __pfx_video_usercopy+0x10/0x10
[  369.954185][ T9143]  ? smack_file_ioctl+0x2a9/0x340
[  369.954221][ T9143]  ? __fget_files+0x3a0/0x420
[  369.954244][ T9143]  v4l2_ioctl+0x18d/0x1e0
[  369.954271][ T9143]  ? __pfx_v4l2_ioctl+0x10/0x10
[  369.954297][ T9143]  __se_sys_ioctl+0xf9/0x170
[  369.954325][ T9143]  do_syscall_64+0xf6/0x210
[  369.954352][ T9143]  ? clear_bhb_loop+0x60/0xb0
[  369.954377][ T9143]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  369.954395][ T9143] RIP: 0033:0x7fb8d278e969
[  369.954413][ T9143] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  369.954430][ T9143] RSP: 002b:00007fb8d05f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  369.954451][ T9143] RAX: ffffffffffffffda RBX: 00007fb8d29b5fa0 RCX: 00007fb8d278e969
[  369.954466][ T9143] RDX: 0000200000000200 RSI: 00000000c0d05605 RDI: 0000000000000003
[  369.954479][ T9143] RBP: 00007fb8d05f6090 R08: 0000000000000000 R09: 0000000000000000
[  369.954491][ T9143] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  369.954503][ T9143] R13: 0000000000000000 R14: 00007fb8d29b5fa0 R15: 00007ffe7e429128
[  369.954539][ T9143]  </TASK>
[  370.705783][ T5879] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  370.908845][ T5879] usb 4-1: Using ep0 maxpacket: 16
[  371.042858][ T5879] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  371.222643][ T9161] vcan0: tx drop: invalid sa for name 0x0000000000000003
[  371.289492][ T5879] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  371.300803][ T5879] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  371.310662][ T5879] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  371.320496][ T5879] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  371.335328][ T5879] usb 4-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  371.981123][ T5879] usb 4-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  371.989810][ T5879] usb 4-1: Manufacturer: syz
[  372.004166][ T5879] usb 4-1: config 0 descriptor??
[  372.373410][ T5879] rc_core: IR keymap rc-hauppauge not found
[  372.380455][ T5879] Registered IR keymap rc-empty
[  372.406247][ T5879] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  372.427731][ T5879] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  372.460770][ T5879] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0
[  372.523161][ T5879] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input14
[  372.817620][ T9151] random: crng reseeded on system resumption
[  372.838869][ T5879] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  372.900779][ T5879] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  373.115873][ T5879] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  373.234684][ T5879] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  373.282217][ T5879] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  373.326147][ T5879] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  373.381970][ T5879] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  373.432002][ T5879] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  373.539547][ T5879] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  373.569443][ T9191] FAULT_INJECTION: forcing a failure.
[  373.569443][ T9191] name failslab, interval 1, probability 0, space 0, times 0
[  373.840437][ T5879] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  373.859936][ T9191] CPU: 1 UID: 0 PID: 9191 Comm: syz.0.882 Not tainted 6.15.0-rc6-syzkaller-00346-g5723cc3450bc #0 PREEMPT(full) 
[  373.859978][ T9191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  373.859990][ T9191] Call Trace:
[  373.859998][ T9191]  <TASK>
[  373.860006][ T9191]  dump_stack_lvl+0x189/0x250
[  373.860042][ T9191]  ? __pfx_dump_stack_lvl+0x10/0x10
[  373.860068][ T9191]  ? __pfx__printk+0x10/0x10
[  373.860104][ T9191]  ? __pfx___might_resched+0x10/0x10
[  373.860132][ T9191]  ? fs_reclaim_acquire+0x7d/0x100
[  373.860159][ T9191]  should_fail_ex+0x414/0x560
[  373.860186][ T9191]  should_failslab+0xa8/0x100
[  373.860206][ T9191]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  373.860237][ T9191]  ? __alloc_skb+0x112/0x2d0
[  373.860266][ T9191]  __alloc_skb+0x112/0x2d0
[  373.860294][ T9191]  netlink_ack+0x146/0xa50
[  373.860317][ T9191]  ? sock_diag_lock_handler+0x19/0x290
[  373.860337][ T9191]  ? sock_diag_lock_handler+0x19/0x290
[  373.860364][ T9191]  ? sock_diag_rcv_msg+0x401/0x610
[  373.860389][ T9191]  netlink_rcv_skb+0x2a0/0x490
[  373.860414][ T9191]  ? __pfx_sock_diag_rcv_msg+0x10/0x10
[  373.860437][ T9191]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  373.860481][ T9191]  ? netlink_deliver_tap+0x2e/0x1b0
[  373.860504][ T9191]  ? netlink_deliver_tap+0x2e/0x1b0
[  373.860533][ T9191]  netlink_unicast+0x758/0x8d0
[  373.860566][ T9191]  netlink_sendmsg+0x805/0xb30
[  373.860600][ T9191]  ? __pfx_netlink_sendmsg+0x10/0x10
[  373.860632][ T9191]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  373.860654][ T9191]  ? __pfx_netlink_sendmsg+0x10/0x10
[  373.860679][ T9191]  __sock_sendmsg+0x219/0x270
[  373.860703][ T9191]  sock_write_iter+0x258/0x330
[  373.860738][ T9191]  ? __pfx_sock_write_iter+0x10/0x10
[  373.860782][ T9191]  ? __lock_acquire+0xaac/0xd20
[  373.860817][ T9191]  do_iter_readv_writev+0x56b/0x7f0
[  373.860851][ T9191]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  373.860887][ T9191]  ? bpf_lsm_file_permission+0x9/0x20
[  373.860911][ T9191]  ? security_file_permission+0x75/0x290
[  373.860936][ T9191]  ? rw_verify_area+0x258/0x650
[  373.860975][ T9191]  vfs_writev+0x306/0x9a0
[  373.860995][ T9191]  ? vfs_write+0x8d8/0xa90
[  373.861030][ T9191]  ? __pfx_vfs_writev+0x10/0x10
[  373.861067][ T9191]  ? __fget_files+0x2a/0x420
[  373.861091][ T9191]  ? __fget_files+0x3a0/0x420
[  373.861108][ T9191]  ? __fget_files+0x2a/0x420
[  373.861136][ T9191]  do_writev+0x14d/0x2d0
[  373.861159][ T9191]  ? __pfx_do_writev+0x10/0x10
[  373.861184][ T9191]  ? do_syscall_64+0xba/0x210
[  373.861215][ T9191]  do_syscall_64+0xf6/0x210
[  373.861242][ T9191]  ? clear_bhb_loop+0x60/0xb0
[  373.861267][ T9191]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  373.861286][ T9191] RIP: 0033:0x7efea978e969
[  373.861304][ T9191] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  373.861322][ T9191] RSP: 002b:00007efeaa5a8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  373.861344][ T9191] RAX: ffffffffffffffda RBX: 00007efea99b5fa0 RCX: 00007efea978e969
[  373.861359][ T9191] RDX: 0000000000000001 RSI: 0000200000000300 RDI: 0000000000000003
[  373.861371][ T9191] RBP: 00007efeaa5a8090 R08: 0000000000000000 R09: 0000000000000000
[  373.861384][ T9191] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  373.861396][ T9191] R13: 0000000000000000 R14: 00007efea99b5fa0 R15: 00007ffd94327068
[  373.861427][ T9191]  </TASK>
[  374.316815][ T5879] mceusb 4-1:0.0: Registered 424242424242 with mce emulator interface version 1
[  374.521713][ T5879] mceusb 4-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  374.768386][ T5879] usb 4-1: USB disconnect, device number 21
[  374.790051][ T9197] netlink: 'syz.0.886': attribute type 1 has an invalid length.
[  375.444322][ T9197] ieee802154 phy0 wpan0: encryption failed: -90
[  375.867298][ T9212] netlink: 'syz.5.888': attribute type 4 has an invalid length.
[  376.243461][ T9219] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  377.163003][ T9233] netlink: 8 bytes leftover after parsing attributes in process `syz.1.893'.
[  377.931167][ T9238] 9p: Unknown access argument : -22
[  378.022063][ T9246] xt_TCPMSS: Only works on TCP SYN packets
[  379.329406][ T9257] netlink: 16 bytes leftover after parsing attributes in process `syz.3.896'.
[  380.287319][ T9259] wireguard0: entered promiscuous mode
[  380.292932][ T9259] wireguard0: entered allmulticast mode
[  380.559746][   T30] kauditd_printk_skb: 26 callbacks suppressed
[  380.559765][   T30] audit: type=1326 audit(2000000033.337:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9260 comm="syz.1.899" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9949f8e969 code=0x0
[  380.774036][ T9269] netlink: 'syz.3.900': attribute type 1 has an invalid length.
[  380.787130][ T9269] netlink: 224 bytes leftover after parsing attributes in process `syz.3.900'.
[  382.650853][ T9294] FAULT_INJECTION: forcing a failure.
[  382.650853][ T9294] name failslab, interval 1, probability 0, space 0, times 0
[  382.663961][ T9294] CPU: 1 UID: 0 PID: 9294 Comm: syz.4.906 Not tainted 6.15.0-rc6-syzkaller-00346-g5723cc3450bc #0 PREEMPT(full) 
[  382.663989][ T9294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  382.664002][ T9294] Call Trace:
[  382.664010][ T9294]  <TASK>
[  382.664020][ T9294]  dump_stack_lvl+0x189/0x250
[  382.664057][ T9294]  ? __pfx_dump_stack_lvl+0x10/0x10
[  382.664096][ T9294]  ? __pfx__printk+0x10/0x10
[  382.664131][ T9294]  ? __pfx___might_resched+0x10/0x10
[  382.664163][ T9294]  ? fs_reclaim_acquire+0x7d/0x100
[  382.664191][ T9294]  should_fail_ex+0x414/0x560
[  382.664218][ T9294]  should_failslab+0xa8/0x100
[  382.664240][ T9294]  __kmalloc_noprof+0xcb/0x4f0
[  382.664270][ T9294]  ? tomoyo_encode+0x28b/0x550
[  382.664303][ T9294]  tomoyo_encode+0x28b/0x550
[  382.664337][ T9294]  tomoyo_realpath_from_path+0x58d/0x5d0
[  382.664381][ T9294]  tomoyo_path2_perm+0x265/0x680
[  382.664405][ T9294]  ? tomoyo_path2_perm+0x235/0x680
[  382.664431][ T9294]  ? __pfx_tomoyo_path2_perm+0x10/0x10
[  382.664498][ T9294]  ? lock_release+0x2b5/0x3e0
[  382.664535][ T9294]  tomoyo_path_rename+0x141/0x190
[  382.664565][ T9294]  ? __d_lookup+0x66/0x780
[  382.664591][ T9294]  ? __pfx_tomoyo_path_rename+0x10/0x10
[  382.664637][ T9294]  security_path_rename+0x250/0x490
[  382.664662][ T9294]  do_renameat2+0x64d/0xc50
[  382.664714][ T9294]  ? __pfx_do_renameat2+0x10/0x10
[  382.664763][ T9294]  ? getname_flags+0x1e5/0x540
[  382.664788][ T9294]  __x64_sys_rename+0x82/0x90
[  382.664820][ T9294]  do_syscall_64+0xf6/0x210
[  382.664847][ T9294]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  382.664867][ T9294]  ? clear_bhb_loop+0x60/0xb0
[  382.664892][ T9294]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  382.664911][ T9294] RIP: 0033:0x7f2a38f8e969
[  382.664930][ T9294] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  382.664948][ T9294] RSP: 002b:00007f2a36dd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[  382.664970][ T9294] RAX: ffffffffffffffda RBX: 00007f2a391b6160 RCX: 00007f2a38f8e969
[  382.664984][ T9294] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000200000000580
[  382.664998][ T9294] RBP: 00007f2a36dd5090 R08: 0000000000000000 R09: 0000000000000000
[  382.665011][ T9294] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  382.665023][ T9294] R13: 0000000000000000 R14: 00007f2a391b6160 R15: 00007ffd65a65008
[  382.665056][ T9294]  </TASK>
[  382.665258][ T9294] ERROR: Out of memory at tomoyo_realpath_from_path.
[  383.777063][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  384.109683][ T9312] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  384.920333][ T9311] netlink: 20 bytes leftover after parsing attributes in process `syz.0.912'.
[  385.009733][ T9308] netlink: 8 bytes leftover after parsing attributes in process `syz.0.912'.
[  385.032504][ T9311] bridge0: port 2(bridge_slave_1) entered disabled state
[  385.040781][ T9311] bridge0: port 1(bridge_slave_0) entered disabled state
[  386.031262][ T9323] binder: 9322:9323 ioctl c0306201 200000000180 returned -22
[  386.041603][ T9321] netlink: 'syz.1.910': attribute type 10 has an invalid length.
[  387.551333][ T9334] sp0: Synchronizing with TNC
[  388.531705][   T30] audit: type=1326 audit(2000000040.802:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9338 comm="syz.4.921" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2a38f8e969 code=0x0
[  389.269631][ T9356] netlink: 32 bytes leftover after parsing attributes in process `syz.0.923'.
[  389.294908][ T9356] sctp: [Deprecated]: syz.0.923 (pid 9356) Use of struct sctp_assoc_value in delayed_ack socket option.
[  389.294908][ T9356] Use struct sctp_sack_info instead
[  393.145665][ T5988] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  393.519638][ T5988] usb 6-1: Using ep0 maxpacket: 8
[  393.535732][ T5988] usb 6-1: New USB device found, idVendor=0ccd, idProduct=10a3, bcdDevice=23.a2
[  393.545203][ T5988] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  393.554634][ T5988] usb 6-1: Product: syz
[  393.601962][ T5988] usb 6-1: Manufacturer: syz
[  393.947186][ T5988] usb 6-1: SerialNumber: syz
[  393.979302][ T5988] usb 6-1: config 0 descriptor??
[  394.216784][ T5988] usb 6-1: dvb_usb_v2: found a 'Terratec H7' in warm state
[  394.437564][ T9387] 9pnet_fd: Insufficient options for proto=fd
[  395.772425][ T5988] usb write operation failed. (-71)
[  395.868188][ T5988] usb 6-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  395.941755][ T5988] dvbdev: DVB: registering new adapter (Terratec H7)
[  395.972607][ T5988] usb 6-1: media controller created
[  396.050924][ T5988] usb read operation failed. (-71)
[  396.334457][ T5988] usb write operation failed. (-71)
[  396.484416][ T5988] dvb_usb_az6007 6-1:0.0: probe with driver dvb_usb_az6007 failed with error -5
[  396.532897][ T5988] usb 6-1: USB disconnect, device number 10
[  397.429159][   T47] usb 1-1: new full-speed USB device number 14 using dummy_hcd
[  398.374380][   T47] usb 1-1: config index 0 descriptor too short (expected 156, got 27)
[  398.382601][   T47] usb 1-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  398.431895][ T9442] fuse: Bad value for 'fd'
[  398.538859][   T30] audit: type=1326 audit(2000000050.146:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9443 comm="syz.1.947" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9949f8e969 code=0x0
[  398.646019][   T47] usb 1-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 10
[  399.185641][  T976] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  399.449100][   T47] usb 1-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid maxpacket 255, setting to 64
[  399.460206][   T47] usb 1-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  399.473587][   T47] usb 1-1: config 0 interface 0 has no altsetting 0
[  399.484127][   T47] usb 1-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  399.496417][   T47] usb 1-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  399.504892][   T47] usb 1-1: Product: syz
[  399.506799][  T976] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  399.509863][   T47] usb 1-1: Manufacturer: syz
[  399.523871][   T47] usb 1-1: SerialNumber: syz
[  399.532611][   T47] usb 1-1: config 0 descriptor??
[  399.543127][ T9429] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  399.566162][   T47] ldusb 1-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  399.643141][   T47] ldusb 1-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  400.145201][  T976] usb 5-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=e6.fc
[  400.154913][  T976] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  400.163838][  T976] usb 5-1: Product: syz
[  400.168197][  T976] usb 5-1: Manufacturer: syz
[  400.176094][  T976] usb 5-1: SerialNumber: syz
[  400.265994][   T47] usb 1-1: USB disconnect, device number 14
[  400.367314][   T47] ldusb 1-1:0.0: LD USB Device #0 now disconnected
[  400.429625][  T976] usb 5-1: config 0 descriptor??
[  400.466255][  T976] yurex 5-1:0.0: Could not find endpoints
[  401.245491][ T9464] netlink: 36 bytes leftover after parsing attributes in process `syz.0.950'.
[  401.289876][ T9464] netlink: 16 bytes leftover after parsing attributes in process `syz.0.950'.
[  401.303378][ T9464] netlink: 36 bytes leftover after parsing attributes in process `syz.0.950'.
[  401.312399][ T9464] netlink: 36 bytes leftover after parsing attributes in process `syz.0.950'.
[  401.819738][    T9] Process accounting resumed
[  402.454564][    T9] usb 5-1: USB disconnect, device number 14
[  402.810449][ T9478] Sensor B: =================  START STATUS  =================
[  402.819584][ T9478] Sensor B: Test Pattern: 75% Colorbar
[  402.826008][ T9478] Sensor B: Show Information: All
[  402.831848][ T9478] Sensor B: Vertical Flip: false
[  402.837643][ T9478] Sensor B: Horizontal Flip: false
[  402.843585][ T9478] Sensor B: Brightness: 128
[  402.848636][ T9478] Sensor B: Contrast: 128
[  402.853832][ T9478] Sensor B: Hue: 0
[  402.868488][ T9478] Sensor B: Saturation: 128
[  402.951186][ T9478] Sensor B: ==================  END STATUS  ==================
[  404.319334][   T30] audit: type=1326 audit(2000000055.422:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9480 comm="syz.4.956" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2a38f8e969 code=0x0
[  405.341116][ T9498] netlink: 'syz.3.959': attribute type 3 has an invalid length.
[  405.350940][ T9498] netlink: 20 bytes leftover after parsing attributes in process `syz.3.959'.
[  405.535839][ T9498] netlink: 'syz.3.959': attribute type 10 has an invalid length.
[  405.596932][ T9498] bond0: (slave netdevsim0): no link monitoring support
[  406.362801][ T9498] bond0: (slave netdevsim0): Enslaving as an active interface with a down link
[  406.669486][  T998] bond0: (slave netdevsim0): link status definitely up
[  406.690437][ T9517] netlink: 'syz.0.963': attribute type 1 has an invalid length.
[  407.077521][ T9517] bond1: entered promiscuous mode
[  407.086349][ T9517] 8021q: adding VLAN 0 to HW filter on device bond1
[  407.571243][   T30] audit: type=1326 audit(2000000058.612:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9525 comm="syz.0.966" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7efea978e969 code=0x0
[  409.163307][ T9541] Invalid logical block size (65533)
[  409.367419][    T9] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  409.843983][    T9] usb 1-1: Using ep0 maxpacket: 16
[  410.000921][    T9] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  410.141469][    T9] usb 1-1: config 0 interface 0 has no altsetting 0
[  410.239256][    T9] usb 1-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[  410.333530][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  410.375413][ T9553] netlink: 12 bytes leftover after parsing attributes in process `syz.1.976'.
[  410.407473][    T9] usb 1-1: config 0 descriptor??
[  410.962464][ T9557] netlink: 24 bytes leftover after parsing attributes in process `syz.4.978'.
[  411.000641][    T9] usbhid 1-1:0.0: can't add hid device: -71
[  411.022002][    T9] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  411.080985][    T9] usb 1-1: USB disconnect, device number 15
[  411.165017][ T9573] netlink: 4 bytes leftover after parsing attributes in process `syz.4.978'.
[  411.505950][ T9582] netlink: 'syz.3.983': attribute type 1 has an invalid length.
[  411.602583][ T9582] bond1: entered promiscuous mode
[  411.608606][ T9582] 8021q: adding VLAN 0 to HW filter on device bond1
[  413.530782][ T9598] netlink: 'syz.3.988': attribute type 10 has an invalid length.
[  413.983761][ T9601] netlink: 4 bytes leftover after parsing attributes in process `syz.4.989'.
[  414.339538][   T30] audit: type=1326 audit(2000000064.935:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9602 comm="syz.0.991" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7efea978e969 code=0x0
[  414.665519][   T47] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  414.686710][    T9] usb 6-1: new full-speed USB device number 11 using dummy_hcd
[  414.945633][   T47] usb 1-1: Using ep0 maxpacket: 16
[  415.040148][ T9621] netlink: 'syz.4.995': attribute type 4 has an invalid length.
[  415.048043][ T9621] netlink: 152 bytes leftover after parsing attributes in process `syz.4.995'.
[  415.132106][ T9621] : renamed from bond0 (while UP)
[  415.552698][    T9] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xDF, changing to 0x8F
[  415.576982][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  415.779158][ T9623] Sensor B: =================  START STATUS  =================
[  415.787032][ T9623] Sensor B: Test Pattern: 75% Colorbar
[  415.794092][ T9623] Sensor B: Show Information: All
[  415.800896][ T9623] Sensor B: Vertical Flip: false
[  415.810865][ T9623] Sensor B: Horizontal Flip: false
[  415.818008][ T9623] Sensor B: Brightness: 128
[  415.823180][ T9623] Sensor B: Contrast: 128
[  415.828228][ T9623] Sensor B: Hue: 0
[  415.834017][   T47] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  415.834110][   T47] usb 1-1: config 0 interface 0 has no altsetting 0
[  415.834318][   T47] usb 1-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[  415.834421][   T47] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  415.883558][ T9623] Sensor B: Saturation: 128
[  415.889351][ T9623] Sensor B: ==================  END STATUS  ==================
[  415.892315][   T47] usb 1-1: config 0 descriptor??
[  415.904914][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  416.048506][    T9] usb 6-1: New USB device found, idVendor=077d, idProduct=0410, bcdDevice=ec.c1
[  416.381362][    T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  416.392486][    T9] usb 6-1: Product: syz
[  416.397079][    T9] usb 6-1: Manufacturer: syz
[  416.411726][    T9] usb 6-1: SerialNumber: syz
[  416.430609][    T9] usb 6-1: config 0 descriptor??
[  416.925222][ T9633] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1001'.
[  417.021748][ T9638] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1000'.
[  417.659144][    T9] powermate: Expected payload of 3--6 bytes, found 0 bytes!
[  417.666814][    T9] powermate 6-1:0.0: probe with driver powermate failed with error -5
[  417.681692][    T9] usb 6-1: USB disconnect, device number 11
[  418.826670][ T9652] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1006'.
[  418.860561][ T9652] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1006'.
[  418.909418][    C1] hrtimer: interrupt took 31296 ns
[  419.066603][   T47] usbhid 1-1:0.0: can't add hid device: -71
[  419.240186][   T47] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  419.535639][   T47] usb 1-1: USB disconnect, device number 16
[  419.602297][ T9656] trusted_key: syz.3.1008 sent an empty control message without MSG_MORE.
[  419.626171][ T9660] tipc: Started in network mode
[  419.644097][ T9660] tipc: Node identity fe800000000000000000000000000013, cluster identity 4711
[  419.665998][ T9660] tipc: Enabled bearer <udp:syz0>, priority 10
[  421.421223][ T9680] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1013'.
[  421.433324][ T5906] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[  421.454435][   T47] tipc: Node number set to 4269801491
[  421.774678][ T5906] usb 4-1: Using ep0 maxpacket: 32
[  421.793639][ T5906] usb 4-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7
[  422.946015][ T5906] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  423.160852][ T5906] usb 4-1: config 0 descriptor??
[  423.286889][ T5906] gspca_main: sunplus-2.14.0 probing 041e:400b
[  423.394830][   T30] audit: type=1326 audit(2000000073.410:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9694 comm="syz.5.1020" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb8d278e969 code=0x0
[  423.744885][    T9] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  424.127143][    T9] usb 6-1: Using ep0 maxpacket: 16
[  424.204539][    T9] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  424.225069][    T9] usb 6-1: config 0 interface 0 has no altsetting 0
[  424.255003][    T9] usb 6-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[  424.277465][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  424.294828][    T9] usb 6-1: config 0 descriptor??
[  424.390012][ T9703] netlink: 'syz.4.1024': attribute type 10 has an invalid length.
[  424.979121][ T5906] gspca_sunplus: reg_w_riv err -71
[  424.984591][ T5906] sunplus 4-1:0.0: probe with driver sunplus failed with error -71
[  425.025630][ T5906] usb 4-1: USB disconnect, device number 22
[  425.116482][ T5813] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  425.843113][ T9721] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1027'.
[  425.866012][ T9721] openvswitch: netlink: nsh attribute has 65532 unknown bytes.
[  425.877938][ T9721] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  426.289125][ T5813] usb 5-1: Using ep0 maxpacket: 8
[  426.355698][ T5813] usb 5-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c
[  426.851863][ T9730] FAULT_INJECTION: forcing a failure.
[  426.851863][ T9730] name failslab, interval 1, probability 0, space 0, times 0
[  426.864661][ T9730] CPU: 1 UID: 0 PID: 9730 Comm: syz.3.1030 Not tainted 6.15.0-rc6-syzkaller-00346-g5723cc3450bc #0 PREEMPT(full) 
[  426.864689][ T9730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  426.864703][ T9730] Call Trace:
[  426.864712][ T9730]  <TASK>
[  426.864721][ T9730]  dump_stack_lvl+0x189/0x250
[  426.864751][ T9730]  ? preempt_schedule_irq+0xb5/0x150
[  426.864779][ T9730]  ? __pfx_dump_stack_lvl+0x10/0x10
[  426.864807][ T9730]  ? __pfx__printk+0x10/0x10
[  426.864846][ T9730]  ? ref_tracker_alloc+0x318/0x460
[  426.864873][ T9730]  should_fail_ex+0x414/0x560
[  426.864900][ T9730]  should_failslab+0xa8/0x100
[  426.864922][ T9730]  kmem_cache_alloc_noprof+0x73/0x3c0
[  426.864953][ T9730]  ? skb_clone+0x212/0x3a0
[  426.864988][ T9730]  skb_clone+0x212/0x3a0
[  426.865021][ T9730]  __netlink_deliver_tap+0x404/0x850
[  426.865060][ T9730]  ? netlink_deliver_tap+0x2e/0x1b0
[  426.865096][ T9730]  netlink_deliver_tap+0x19c/0x1b0
[  426.865129][ T9730]  netlink_unicast+0x72f/0x8d0
[  426.865169][ T9730]  netlink_sendmsg+0x805/0xb30
[  426.865205][ T9730]  ? __pfx_netlink_sendmsg+0x10/0x10
[  426.865238][ T9730]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  426.865261][ T9730]  ? __pfx_netlink_sendmsg+0x10/0x10
[  426.865286][ T9730]  __sock_sendmsg+0x219/0x270
[  426.865311][ T9730]  ____sys_sendmsg+0x505/0x830
[  426.865345][ T9730]  ? __pfx_____sys_sendmsg+0x10/0x10
[  426.865398][ T9730]  ? import_iovec+0x74/0xa0
[  426.865431][ T9730]  ___sys_sendmsg+0x21f/0x2a0
[  426.865462][ T9730]  ? __pfx____sys_sendmsg+0x10/0x10
[  426.865531][ T9730]  ? __fget_files+0x2a/0x420
[  426.865549][ T9730]  ? __fget_files+0x3a0/0x420
[  426.865580][ T9730]  __x64_sys_sendmsg+0x19b/0x260
[  426.865611][ T9730]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  426.865659][ T9730]  ? do_syscall_64+0xba/0x210
[  426.865690][ T9730]  do_syscall_64+0xf6/0x210
[  426.865718][ T9730]  ? clear_bhb_loop+0x60/0xb0
[  426.865743][ T9730]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  426.865763][ T9730] RIP: 0033:0x7f3a9298e969
[  426.865781][ T9730] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  426.865799][ T9730] RSP: 002b:00007f3a93735038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  426.865820][ T9730] RAX: ffffffffffffffda RBX: 00007f3a92bb6160 RCX: 00007f3a9298e969
[  426.865836][ T9730] RDX: 0000000004040800 RSI: 00002000000006c0 RDI: 0000000000000007
[  426.865849][ T9730] RBP: 00007f3a93735090 R08: 0000000000000000 R09: 0000000000000000
[  426.865862][ T9730] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  426.865883][ T9730] R13: 0000000000000000 R14: 00007f3a92bb6160 R15: 00007ffdd8c81e78
[  426.865916][ T9730]  </TASK>
[  427.625045][ T9732] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1029'.
[  427.951934][    T9] usbhid 6-1:0.0: can't add hid device: -71
[  428.016109][ T5813] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  428.034763][ T5813] usb 5-1: Product: syz
[  428.038988][ T5813] usb 5-1: Manufacturer: syz
[  428.039478][    T9] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  428.049913][ T5813] usb 5-1: SerialNumber: syz
[  428.062236][ T5813] usb 5-1: config 0 descriptor??
[  428.114114][    T9] usb 6-1: USB disconnect, device number 12
[  428.147314][ T5813] usb 5-1: can't set config #0, error -71
[  428.787760][ T5813] usb 5-1: USB disconnect, device number 15
[  429.721820][ T9748] syzkaller1: entered promiscuous mode
[  429.727316][ T9748] syzkaller1: entered allmulticast mode
[  431.113445][   T30] audit: type=1326 audit(2000000080.622:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9764 comm="syz.3.1041" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3a9298e969 code=0x0
[  431.428415][ T5813] usb 4-1: new high-speed USB device number 23 using dummy_hcd
[  431.600539][ T5813] usb 4-1: Using ep0 maxpacket: 16
[  431.651447][ T5813] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  431.948779][ T9783] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1043'.
[  432.156584][ T5879] usb 1-1: new full-speed USB device number 17 using dummy_hcd
[  432.467210][ T5879] usb 1-1: config 0 interface 0 altsetting 1 endpoint 0x81 has invalid wMaxPacketSize 0
[  432.510961][ T5813] usb 4-1: config 0 interface 0 has no altsetting 0
[  432.518013][ T5813] usb 4-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[  432.527308][ T5813] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  432.641232][ T5813] usb 4-1: config 0 descriptor??
[  432.719064][ T5879] usb 1-1: config 0 interface 0 has no altsetting 0
[  432.769186][ T5879] usb 1-1: New USB device found, idVendor=056e, idProduct=00fc, bcdDevice= 0.00
[  432.781015][ T5879] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  432.810798][ T5879] usb 1-1: config 0 descriptor??
[  436.322095][ T5813] usbhid 4-1:0.0: can't add hid device: -71
[  436.388716][ T5813] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  436.468249][ T9805] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  436.477837][ T9805] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  436.486738][ T9805] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  436.495637][ T9805] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  436.497114][ T5813] usb 4-1: USB disconnect, device number 23
[  437.197390][ T9816] fuse: Bad value for 'fd'
[  437.619202][ T9817] netlink: 72 bytes leftover after parsing attributes in process `syz.3.1055'.
[  437.693224][ T9816] netlink: 72 bytes leftover after parsing attributes in process `syz.3.1055'.
[  437.771089][ T9816] netlink: 72 bytes leftover after parsing attributes in process `syz.3.1055'.
[  437.886083][ T9820] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  438.424276][ T5879] usbhid 1-1:0.0: can't add hid device: -32
[  438.455930][ T5879] usbhid 1-1:0.0: probe with driver usbhid failed with error -32
[  438.745868][ T9833] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1061'.
[  439.430587][   T30] audit: type=1326 audit(2000000088.254:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9837 comm="syz.3.1063" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3a9298e969 code=0x0
[  439.649307][ T5929] usb 4-1: new high-speed USB device number 24 using dummy_hcd
[  439.716819][ T9841] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1064'.
[  439.766576][ T5813] usb 1-1: USB disconnect, device number 17
[  439.821849][ T5929] usb 4-1: Using ep0 maxpacket: 16
[  439.830500][ T5929] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  439.851940][ T5929] usb 4-1: config 0 interface 0 has no altsetting 0
[  439.871891][ T5929] usb 4-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[  439.892675][ T5929] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  440.279043][ T5929] usb 4-1: config 0 descriptor??
[  440.510652][ T9855] veth1_to_team: entered promiscuous mode
[  440.712073][ T9858] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1066'.
[  440.834658][ T9860] netlink: 'syz.0.1067': attribute type 30 has an invalid length.
[  442.499405][ T9867] netlink: 'syz.5.1068': attribute type 4 has an invalid length.
[  442.507486][ T9867] netlink: 3657 bytes leftover after parsing attributes in process `syz.5.1068'.
[  443.287375][ T5929] usbhid 4-1:0.0: can't add hid device: -71
[  443.294482][ T5929] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  443.332207][ T5929] usb 4-1: USB disconnect, device number 24
[  443.683797][ T9881] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1071'.
[  444.091240][ T9884] Sensor B: =================  START STATUS  =================
[  444.099133][ T9884] Sensor B: Test Pattern: 75% Colorbar
[  444.104964][ T9884] Sensor B: Show Information: All
[  444.110701][ T9884] Sensor B: Vertical Flip: false
[  444.116576][ T9884] Sensor B: Horizontal Flip: false
[  444.122622][ T9884] Sensor B: Brightness: 128
[  444.127490][ T9884] Sensor B: Contrast: 128
[  444.132709][ T9884] Sensor B: Hue: 0
[  444.137507][ T9884] Sensor B: Saturation: 128
[  444.143157][ T9884] Sensor B: ==================  END STATUS  ==================
[  444.949934][ T9889] loop8: detected capacity change from 0 to 7
[  445.978186][ T5906] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  446.369308][ T9908] netlink: 'syz.3.1079': attribute type 4 has an invalid length.
[  446.377204][ T9908] netlink: 3657 bytes leftover after parsing attributes in process `syz.3.1079'.
[  447.015436][ T9906] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1081'.
[  447.325187][ T5906] usb 6-1: Using ep0 maxpacket: 8
[  447.769785][ T5906] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  447.789884][ T5906] usb 6-1: config 0 has no interfaces?
[  447.803640][ T5906] usb 6-1: New USB device found, idVendor=0545, idProduct=800c, bcdDevice= 3.0a
[  447.831833][ T5906] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  447.849341][ T5906] usb 6-1: Product: syz
[  447.858375][ T5906] usb 6-1: Manufacturer: syz
[  447.868600][ T5906] usb 6-1: SerialNumber: syz
[  447.912624][ T5906] usb 6-1: config 0 descriptor??
[  448.133893][   T30] audit: type=1326 audit(2000000096.551:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9917 comm="syz.4.1083" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2a38f8e969 code=0x0
[  448.284648][ T9892] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  448.331898][ T9892] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  448.361234][ T9892] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1076'.
[  448.380435][ T9892] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1076'.
[  448.475174][ T5988] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  448.523160][ T9923] ntfs3(nullb0): Primary boot signature is not NTFS.
[  448.530095][ T9923] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  448.598408][ T5906] usb 6-1: USB disconnect, device number 13
[  448.665347][ T5988] usb 5-1: Using ep0 maxpacket: 16
[  448.686298][ T5988] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  448.711860][ T5988] usb 5-1: config 0 interface 0 has no altsetting 0
[  448.724249][ T5988] usb 5-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[  448.735714][ T5988] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  448.770345][ T5988] usb 5-1: config 0 descriptor??
[  449.012410][ T9930] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1086'.
[  449.458790][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  451.451830][ T5988] usbhid 5-1:0.0: can't add hid device: -71
[  451.479482][ T5988] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  451.559645][ T5988] usb 5-1: USB disconnect, device number 16
[  451.620123][ T9945] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1091'.
[  452.601337][ T9953] FAULT_INJECTION: forcing a failure.
[  452.601337][ T9953] name failslab, interval 1, probability 0, space 0, times 0
[  452.620504][ T9953] CPU: 0 UID: 0 PID: 9953 Comm: syz.0.1092 Not tainted 6.15.0-rc6-syzkaller-00346-g5723cc3450bc #0 PREEMPT(full) 
[  452.620534][ T9953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  452.620547][ T9953] Call Trace:
[  452.620555][ T9953]  <TASK>
[  452.620564][ T9953]  dump_stack_lvl+0x189/0x250
[  452.620600][ T9953]  ? __pfx_dump_stack_lvl+0x10/0x10
[  452.620628][ T9953]  ? __pfx__printk+0x10/0x10
[  452.620661][ T9953]  ? __pfx___might_resched+0x10/0x10
[  452.620691][ T9953]  ? fs_reclaim_acquire+0x7d/0x100
[  452.620718][ T9953]  should_fail_ex+0x414/0x560
[  452.620744][ T9953]  should_failslab+0xa8/0x100
[  452.620765][ T9953]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  452.620803][ T9953]  ? __alloc_skb+0x112/0x2d0
[  452.620832][ T9953]  __alloc_skb+0x112/0x2d0
[  452.620861][ T9953]  alloc_skb_with_frags+0xca/0x890
[  452.620904][ T9953]  sock_alloc_send_pskb+0x857/0x990
[  452.620955][ T9953]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  452.620985][ T9953]  ? __pfx_smack_socket_sendmsg+0x10/0x10
[  452.621019][ T9953]  ? __might_fault+0xb0/0x130
[  452.621053][ T9953]  hci_sock_sendmsg+0x207/0xee0
[  452.621084][ T9953]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  452.621112][ T9953]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  452.621133][ T9953]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  452.621157][ T9953]  __sock_sendmsg+0x219/0x270
[  452.621182][ T9953]  sock_write_iter+0x258/0x330
[  452.621215][ T9953]  ? __pfx_sock_write_iter+0x10/0x10
[  452.621258][ T9953]  ? bpf_lsm_file_permission+0x9/0x20
[  452.621281][ T9953]  ? security_file_permission+0x75/0x290
[  452.621313][ T9953]  vfs_write+0x54b/0xa90
[  452.621348][ T9953]  ? __pfx_sock_write_iter+0x10/0x10
[  452.621378][ T9953]  ? __pfx_vfs_write+0x10/0x10
[  452.621416][ T9953]  ? __fget_files+0x2a/0x420
[  452.621444][ T9953]  ksys_write+0x145/0x250
[  452.621470][ T9953]  ? rcu_is_watching+0x15/0xb0
[  452.621501][ T9953]  ? __pfx_ksys_write+0x10/0x10
[  452.621532][ T9953]  ? do_syscall_64+0xba/0x210
[  452.621563][ T9953]  do_syscall_64+0xf6/0x210
[  452.621589][ T9953]  ? clear_bhb_loop+0x60/0xb0
[  452.621613][ T9953]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  452.621632][ T9953] RIP: 0033:0x7efea978e969
[  452.621651][ T9953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  452.621668][ T9953] RSP: 002b:00007efeaa5a8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  452.621689][ T9953] RAX: ffffffffffffffda RBX: 00007efea99b5fa0 RCX: 00007efea978e969
[  452.621703][ T9953] RDX: 000000000000000d RSI: 0000200000000000 RDI: 0000000000000004
[  452.621716][ T9953] RBP: 00007efeaa5a8090 R08: 0000000000000000 R09: 0000000000000000
[  452.621728][ T9953] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  452.621740][ T9953] R13: 0000000000000000 R14: 00007efea99b5fa0 R15: 00007ffd94327068
[  452.621771][ T9953]  </TASK>
[  452.908695][ T5813] usb 4-1: new low-speed USB device number 25 using dummy_hcd
[  453.190204][ T5813] usb 4-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  453.344039][ T9963] netlink: 'syz.4.1096': attribute type 10 has an invalid length.
[  453.445658][ T5813] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  453.458881][ T5813] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  453.623270][ T5813] usb 4-1: string descriptor 0 read error: -22
[  453.664064][ T5813] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  453.684611][ T5813] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  453.759099][ T5813] usb 4-1: 0:2 : does not exist
[  453.859307][   T30] audit: type=1326 audit(2000000101.883:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9972 comm="syz.1.1100" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9949f8e969 code=0x0
[  454.028478][ T5813] usb 4-1: USB disconnect, device number 25
[  457.407045][T10002] netlink: 'syz.3.1110': attribute type 10 has an invalid length.
[  459.194034][T10042] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1120'.
[  459.207770][T10044] FAULT_INJECTION: forcing a failure.
[  459.207770][T10044] name failslab, interval 1, probability 0, space 0, times 0
[  459.230005][T10044] CPU: 0 UID: 0 PID: 10044 Comm: syz.5.1123 Not tainted 6.15.0-rc6-syzkaller-00346-g5723cc3450bc #0 PREEMPT(full) 
[  459.230033][T10044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  459.230046][T10044] Call Trace:
[  459.230055][T10044]  <TASK>
[  459.230063][T10044]  dump_stack_lvl+0x189/0x250
[  459.230099][T10044]  ? __pfx_dump_stack_lvl+0x10/0x10
[  459.230127][T10044]  ? __pfx__printk+0x10/0x10
[  459.230164][T10044]  ? __pfx___might_resched+0x10/0x10
[  459.230200][T10044]  should_fail_ex+0x414/0x560
[  459.230235][T10044]  should_failslab+0xa8/0x100
[  459.230256][T10044]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  459.230291][T10044]  ? __alloc_skb+0x112/0x2d0
[  459.230321][T10044]  __alloc_skb+0x112/0x2d0
[  459.230350][T10044]  netlink_sendmsg+0x5c6/0xb30
[  459.230373][T10044]  ? is_bpf_text_address+0x26/0x2b0
[  459.230409][T10044]  ? __pfx_netlink_sendmsg+0x10/0x10
[  459.230442][T10044]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  459.230464][T10044]  ? __pfx_netlink_sendmsg+0x10/0x10
[  459.230488][T10044]  __sock_sendmsg+0x219/0x270
[  459.230513][T10044]  ____sys_sendmsg+0x505/0x830
[  459.230546][T10044]  ? __pfx_____sys_sendmsg+0x10/0x10
[  459.230583][T10044]  ? import_iovec+0x74/0xa0
[  459.230616][T10044]  ___sys_sendmsg+0x21f/0x2a0
[  459.230645][T10044]  ? __pfx____sys_sendmsg+0x10/0x10
[  459.230712][T10044]  ? __fget_files+0x2a/0x420
[  459.230729][T10044]  ? __fget_files+0x3a0/0x420
[  459.230759][T10044]  __x64_sys_sendmsg+0x19b/0x260
[  459.230789][T10044]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  459.230835][T10044]  ? do_syscall_64+0xba/0x210
[  459.230866][T10044]  do_syscall_64+0xf6/0x210
[  459.230891][T10044]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  459.230912][T10044]  ? clear_bhb_loop+0x60/0xb0
[  459.230948][T10044]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  459.230967][T10044] RIP: 0033:0x7fb8d278e969
[  459.230984][T10044] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  459.231001][T10044] RSP: 002b:00007fb8d05f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  459.231022][T10044] RAX: ffffffffffffffda RBX: 00007fb8d29b5fa0 RCX: 00007fb8d278e969
[  459.231036][T10044] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  459.231048][T10044] RBP: 00007fb8d05f6090 R08: 0000000000000000 R09: 0000000000000000
[  459.231060][T10044] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  459.231072][T10044] R13: 0000000000000000 R14: 00007fb8d29b5fa0 R15: 00007ffe7e429128
[  459.231103][T10044]  </TASK>
[  459.339572][T10049] netlink: 'syz.4.1124': attribute type 10 has an invalid length.
[  459.342049][    C0] vkms_vblank_simulate: vblank timer overrun
[  459.496970][    C0] vkms_vblank_simulate: vblank timer overrun
[  459.603986][    C0] vkms_vblank_simulate: vblank timer overrun
[  460.100142][T10056] kernel profiling enabled (shift: 17)
[  460.113534][T10056] loop8: detected capacity change from 0 to 7
[  460.148334][T10056] Dev loop8: unable to read RDB block 7
[  460.158104][T10056]  loop8: unable to read partition table
[  460.173725][T10056] loop8: partition table beyond EOD, truncated
[  460.192850][T10056] loop_reread_partitions: partition scan of loop8 (�被x�^>�� �) failed (rc=-5)
[  461.853948][ T5813] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  462.025069][ T5813] usb 6-1: Using ep0 maxpacket: 16
[  462.054034][ T5813] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[  462.621927][ T5813] usb 6-1: config 0 has no interface number 0
[  462.677371][ T5813] usb 6-1: New USB device found, idVendor=1235, idProduct=0010, bcdDevice=29.82
[  462.749204][ T5813] usb 6-1: New USB device strings: Mfr=83, Product=5, SerialNumber=10
[  462.786190][ T5813] usb 6-1: Product: syz
[  462.798080][ T5813] usb 6-1: Manufacturer: syz
[  462.812473][ T5813] usb 6-1: SerialNumber: syz
[  462.843361][ T5813] usb 6-1: config 0 descriptor??
[  462.875341][ T5813] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  462.952996][ T5813] snd-usb-audio 6-1:0.1: probe with driver snd-usb-audio failed with error -2
[  463.086168][ T5813] usb 6-1: USB disconnect, device number 14
[  463.096182][ T8321] udevd[8321]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.1/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  463.627759][T10105] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1138'.
[  464.299936][T10141] netlink: 'syz.5.1143': attribute type 4 has an invalid length.
[  464.307949][T10141] netlink: 3657 bytes leftover after parsing attributes in process `syz.5.1143'.
[  465.606173][   T47] usb 4-1: new full-speed USB device number 26 using dummy_hcd
[  465.620357][T10157] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1148'.
[  466.012601][   T47] usb 4-1: device descriptor read/64, error -71
[  466.600298][   T47] usb 4-1: new full-speed USB device number 27 using dummy_hcd
[  466.935078][   T47] usb 4-1: device descriptor read/64, error -71
[  467.062098][   T47] usb usb4-port1: attempt power cycle
[  467.237677][T10173] netlink: 'syz.1.1153': attribute type 10 has an invalid length.
[  467.477213][   T47] usb 4-1: new full-speed USB device number 28 using dummy_hcd
[  467.511068][T10179] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1154'.
[  467.511592][   T47] usb 4-1: device descriptor read/8, error -71
[  468.642643][   T47] usb 4-1: new full-speed USB device number 29 using dummy_hcd
[  468.839881][   T47] usb 4-1: device descriptor read/8, error -71
[  468.973879][   T47] usb usb4-port1: unable to enumerate USB device
[  469.164364][T10200] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1160'.
[  469.288771][T10204] netlink: 'syz.4.1164': attribute type 21 has an invalid length.
[  469.322381][T10205] netlink: 'syz.4.1164': attribute type 10 has an invalid length.
[  469.344707][T10204] netlink: 128 bytes leftover after parsing attributes in process `syz.4.1164'.
[  469.419210][T10205] team0: Port device geneve1 added
[  469.458692][T10204] netlink: 'syz.4.1164': attribute type 5 has an invalid length.
[  469.472642][T10204] netlink: 'syz.4.1164': attribute type 6 has an invalid length.
[  469.483363][T10204] netlink: 3 bytes leftover after parsing attributes in process `syz.4.1164'.
[  470.680957][T10217] netlink: 'syz.1.1168': attribute type 10 has an invalid length.
[  470.727512][T10214] netlink: 'syz.4.1166': attribute type 10 has an invalid length.
[  470.747688][   T30] audit: type=1326 audit(2000000117.701:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10213 comm="syz.5.1167" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb8d278e969 code=0x0
[  471.148959][T10224] netlink: 'syz.4.1169': attribute type 10 has an invalid length.
[  471.528875][ T5906] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  471.713150][ T5906] usb 6-1: Using ep0 maxpacket: 16
[  471.782035][ T5906] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  471.813810][ T5906] usb 6-1: config 0 interface 0 has no altsetting 0
[  471.830620][ T5906] usb 6-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[  471.854338][ T5906] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  471.918728][ T5906] usb 6-1: config 0 descriptor??
[  472.441705][  T976] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  473.388840][  T976] usb 5-1: Using ep0 maxpacket: 16
[  473.991365][  T976] usb 5-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  474.001510][  T976] usb 5-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  474.012126][  T976] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  474.034394][  T976] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  474.051676][  T976] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  474.081352][  T976] usb 5-1: Product: syz
[  474.103231][  T976] usb 5-1: Manufacturer: syz
[  474.120174][  T976] usb 5-1: SerialNumber: syz
[  474.140406][T10247] netlink: 'syz.1.1179': attribute type 10 has an invalid length.
[  474.504678][ T5906] usbhid 6-1:0.0: can't add hid device: -71
[  474.510871][ T5906] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  475.017670][T10258] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  475.026642][T10258] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  475.290485][ T5906] usb 6-1: USB disconnect, device number 15
[  476.218610][T10275] netlink: 'syz.1.1186': attribute type 4 has an invalid length.
[  476.226619][T10275] netlink: 3657 bytes leftover after parsing attributes in process `syz.1.1186'.
[  477.418221][  T976] usb 5-1: 0:2 : does not exist
[  477.494909][  T976] usb 5-1: USB disconnect, device number 17
[  477.618452][ T8321] udevd[8321]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  477.651731][T10282] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1188'.
[  478.749675][T10297] netlink: 'syz.4.1191': attribute type 9 has an invalid length.
[  479.995707][   T30] audit: type=1326 audit(2000000126.297:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10302 comm="syz.5.1193" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb8d278e969 code=0x0
[  480.872341][    T9] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  481.150315][    T9] usb 6-1: Using ep0 maxpacket: 16
[  481.187502][    T9] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  481.198186][    T9] usb 6-1: config 0 interface 0 has no altsetting 0
[  481.205560][    T9] usb 6-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[  481.205595][T10314] autofs: Unknown parameter '�'
[  481.215430][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  481.321632][T10315] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1195'.
[  481.836922][    T9] usb 6-1: config 0 descriptor??
[  484.471682][T10335] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1201'.
[  484.740138][    T9] usbhid 6-1:0.0: can't add hid device: -71
[  484.747952][    T9] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  484.768047][    T9] usb 6-1: USB disconnect, device number 16
[  485.846079][T10345] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1203'.
[  487.094305][ T5929] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  487.109878][T10362] netdevsim netdevsim5 netdevsim0: entered promiscuous mode
[  487.155938][T10363] autofs: Unknown parameter '�'
[  487.279141][ T5929] usb 1-1: Using ep0 maxpacket: 16
[  487.482981][ T5929] usb 1-1: config 0 has an invalid interface number: 105 but max is 0
[  487.491993][ T5929] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  487.502417][ T5929] usb 1-1: config 0 has no interface number 0
[  487.514128][ T5929] usb 1-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28
[  487.531521][ T5929] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  487.547396][ T5929] usb 1-1: Product: syz
[  487.551660][ T5929] usb 1-1: Manufacturer: syz
[  488.203263][ T5929] usb 1-1: SerialNumber: syz
[  488.222603][ T5929] usb 1-1: config 0 descriptor??
[  488.419493][   T30] audit: type=1326 audit(2000000134.229:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10373 comm="syz.5.1213" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb8d278e969 code=0x0
[  488.456577][ T5929] usb 1-1: Found UVC 0.00 device syz (046d:08d3)
[  488.471391][ T5929] usb 1-1: No valid video chain found.
[  488.656695][T10382] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  488.761300][    T9] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  488.880942][  T976] usb 1-1: USB disconnect, device number 18
[  488.883306][T10382] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  488.911657][ T5906] usb 4-1: new high-speed USB device number 30 using dummy_hcd
[  489.255897][    T9] usb 6-1: Using ep0 maxpacket: 16
[  489.270790][    T9] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  489.306706][    T9] usb 6-1: config 0 interface 0 has no altsetting 0
[  489.361584][ T5906] usb 4-1: Using ep0 maxpacket: 8
[  489.472427][T10387] overlayfs: failed to clone lowerpath
[  489.564777][  T976] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  489.578317][    T9] usb 6-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[  489.607028][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  489.616657][ T5906] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  489.633416][    T9] usb 6-1: config 0 descriptor??
[  489.638918][ T5906] usb 4-1: New USB device found, idVendor=187f, idProduct=0200, bcdDevice=6b.ad
[  489.648182][ T5906] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  489.670126][ T5906] usb 4-1: Product: syz
[  489.675429][ T5906] usb 4-1: Manufacturer: syz
[  489.681574][ T5906] usb 4-1: SerialNumber: syz
[  489.693416][ T5906] usb 4-1: config 0 descriptor??
[  489.712644][ T5906] smsusb:smsusb_probe: board id=2, interface number 0
[  489.731614][ T5906] smsusb:smsusb_probe: Device initialized with return code -19
[  489.756490][  T976] usb 1-1: Using ep0 maxpacket: 32
[  489.773156][  T976] usb 1-1: unable to get BOS descriptor or descriptor too short
[  489.803755][  T976] usb 1-1: config 5 has an invalid interface number: 246 but max is 0
[  489.826697][  T976] usb 1-1: config 5 has an invalid descriptor of length 0, skipping remainder of the config
[  489.853669][  T976] usb 1-1: config 5 has no interface number 0
[  489.859931][  T976] usb 1-1: config 5 interface 246 altsetting 4 endpoint 0x3 has invalid maxpacket 255, setting to 64
[  489.900190][  T976] usb 1-1: config 5 interface 246 altsetting 4 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  489.926004][ T5988] usb 4-1: USB disconnect, device number 30
[  489.937171][  T976] usb 1-1: config 5 interface 246 has no altsetting 0
[  490.080022][  T976] usb 1-1: string descriptor 0 read error: -71
[  490.087929][  T976] usb 1-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=f5.e4
[  490.100043][  T976] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  490.166284][  T976] usb 1-1: can't set config #5, error -71
[  490.203450][  T976] usb 1-1: USB disconnect, device number 19
[  491.670152][    T9] usbhid 6-1:0.0: can't add hid device: -71
[  491.676271][    T9] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  491.771078][T10406] lo: entered allmulticast mode
[  491.782213][T10405] lo: left allmulticast mode
[  491.805041][T10407] autofs: Unknown parameter '�'
[  491.831101][    T9] usb 6-1: USB disconnect, device number 17
[  493.476526][T10432] netlink: 'syz.0.1227': attribute type 4 has an invalid length.
[  493.484438][T10432] netlink: 3657 bytes leftover after parsing attributes in process `syz.0.1227'.
[  495.580989][T10438] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1232'.
[  495.666228][T10428] netlink: 'syz.5.1230': attribute type 10 has an invalid length.
[  495.942210][   T30] audit: type=1326 audit(2000000141.264:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10447 comm="syz.1.1235" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9949f8e969 code=0x0
[  498.880388][T10477] netlink: 'syz.5.1243': attribute type 4 has an invalid length.
[  498.888398][T10477] netlink: 3657 bytes leftover after parsing attributes in process `syz.5.1243'.
[  500.056589][T10474] xt_TPROXY: Can be used only with -p tcp or -p udp
[  500.440156][T10484] ntfs3(nullb0): Primary boot signature is not NTFS.
[  500.468641][T10484] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  504.286795][   T30] audit: type=1326 audit(2000000149.065:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10524 comm="syz.1.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9949f8e969 code=0x7ffc0000
[  504.348890][   T30] audit: type=1326 audit(2000000149.065:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10524 comm="syz.1.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9949f8e969 code=0x7ffc0000
[  504.399285][   T30] audit: type=1326 audit(2000000149.102:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10524 comm="syz.1.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7f9949f8e969 code=0x7ffc0000
[  504.433733][   T30] audit: type=1326 audit(2000000149.102:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10524 comm="syz.1.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9949f8e969 code=0x7ffc0000
[  504.473307][   T30] audit: type=1326 audit(2000000149.102:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10524 comm="syz.1.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9949f8e969 code=0x7ffc0000
[  504.505931][   T30] audit: type=1326 audit(2000000149.102:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10524 comm="syz.1.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=432 compat=0 ip=0x7f9949f8e969 code=0x7ffc0000
[  504.534710][T10534] netlink: 56 bytes leftover after parsing attributes in process `syz.5.1257'.
[  504.545973][   T30] audit: type=1326 audit(2000000149.102:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10524 comm="syz.1.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9949f8e969 code=0x7ffc0000
[  504.578948][   T30] audit: type=1326 audit(2000000149.102:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10524 comm="syz.1.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9949f8e969 code=0x7ffc0000
[  504.601688][   T30] audit: type=1326 audit(2000000149.102:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10524 comm="syz.1.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7f9949f8e969 code=0x7ffc0000
[  504.625487][   T30] audit: type=1326 audit(2000000149.102:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10524 comm="syz.1.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9949f8e969 code=0x7ffc0000
[  504.861535][T10539] IPv6: Can't replace route, no match found
[  506.540559][T10556] veth1_to_team: entered promiscuous mode
[  506.614934][T10558] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1265'.
[  507.121116][T10554] veth1_to_team: left promiscuous mode
[  507.322038][T10560] netlink: 'syz.0.1266': attribute type 10 has an invalid length.
[  507.955551][T10566] netlink: 'syz.5.1268': attribute type 4 has an invalid length.
[  507.963467][T10566] netlink: 3657 bytes leftover after parsing attributes in process `syz.5.1268'.
[  508.994646][T10580] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1273'.
[  509.819430][T10581] bridge0: port 2(bridge_slave_1) entered disabled state
[  509.946100][T10593] ntfs3(nullb0): Primary boot signature is not NTFS.
[  509.953037][T10593] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  510.150819][T10600] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1280'.
[  511.179145][T10610] netlink: 'syz.4.1282': attribute type 10 has an invalid length.
[  511.701231][T10615] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1285'.
[  512.526103][ T2993] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  512.551283][ T2993] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  512.642630][T10629] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1289'.
[  513.136858][   T47] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[  514.152163][   T47] usb 1-1: Using ep0 maxpacket: 32
[  514.165763][   T47] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  514.190906][   T47] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  514.217974][   T47] usb 1-1: New USB device found, idVendor=17ef, idProduct=6062, bcdDevice= 0.00
[  514.227836][   T47] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  514.255642][T10651] netlink: 'syz.1.1296': attribute type 10 has an invalid length.
[  514.270793][   T47] usb 1-1: config 0 descriptor??
[  515.154386][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  515.846663][   T47] lenovo 0003:17EF:6062.0008: unknown main item tag 0x0
[  515.859519][   T47] lenovo 0003:17EF:6062.0008: unknown main item tag 0x0
[  515.868939][   T47] lenovo 0003:17EF:6062.0008: unknown main item tag 0x0
[  515.879364][   T47] lenovo 0003:17EF:6062.0008: unknown main item tag 0x0
[  515.886677][   T47] lenovo 0003:17EF:6062.0008: unknown main item tag 0x0
[  515.910947][   T47] lenovo 0003:17EF:6062.0008: hidraw0: USB HID v0.00 Device [HID 17ef:6062] on usb-dummy_hcd.0-1/input0
[  515.988728][T10666] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1300'.
[  516.059286][T10670] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1299'.
[  516.477817][T10675] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1301'.
[  516.487345][T10675] netlink: 48 bytes leftover after parsing attributes in process `syz.5.1301'.
[  516.507547][T10675] netlink: 48 bytes leftover after parsing attributes in process `syz.5.1301'.
[  517.347287][ T5929] usb 1-1: USB disconnect, device number 20
[  521.928227][   T30] kauditd_printk_skb: 1 callbacks suppressed
[  521.928248][   T30] audit: type=1326 audit(2000000165.556:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10720 comm="syz.4.1316" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2a38f8e969 code=0x0
[  522.285904][ T5906] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  522.321192][ T3526] netdevsim netdevsim3 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  522.348137][ T3526] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  522.448537][ T5906] usb 5-1: Using ep0 maxpacket: 16
[  522.492730][ T5906] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  522.650424][ T5906] usb 5-1: config 0 interface 0 has no altsetting 0
[  522.658164][ T5906] usb 5-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[  522.667796][ T5906] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  522.712767][ T3526] netdevsim netdevsim3 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  522.738164][ T5906] usb 5-1: config 0 descriptor??
[  522.743595][ T3526] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  522.843702][T10735] overlayfs: failed to clone upperpath
[  523.108264][ T5840] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  523.129932][ T5840] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  523.147046][ T5840] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  523.176692][ T5840] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  523.200787][ T5840] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  524.751297][ T3526] netdevsim netdevsim3 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  524.779046][ T3526] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  524.910148][ T3526] bond0: (slave netdevsim0): Releasing backup interface
[  524.932214][ T3526] netdevsim netdevsim3 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  524.953206][ T3526] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  525.401443][ T5840] Bluetooth: hci0: command tx timeout
[  525.944006][ T5906] usbhid 5-1:0.0: can't add hid device: -71
[  525.950727][ T5906] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  525.980513][ T5906] usb 5-1: USB disconnect, device number 18
[  526.047872][T10766] FAULT_INJECTION: forcing a failure.
[  526.047872][T10766] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  526.130817][T10766] CPU: 1 UID: 0 PID: 10766 Comm: syz.0.1327 Not tainted 6.15.0-rc6-syzkaller-00346-g5723cc3450bc #0 PREEMPT(full) 
[  526.130849][T10766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  526.130862][T10766] Call Trace:
[  526.130870][T10766]  <TASK>
[  526.130881][T10766]  dump_stack_lvl+0x189/0x250
[  526.130916][T10766]  ? __lock_acquire+0xaac/0xd20
[  526.130948][T10766]  ? __pfx_dump_stack_lvl+0x10/0x10
[  526.130978][T10766]  ? __pfx__printk+0x10/0x10
[  526.131011][T10766]  ? __might_fault+0xb0/0x130
[  526.131055][T10766]  should_fail_ex+0x414/0x560
[  526.131084][T10766]  _copy_from_user+0x2d/0xb0
[  526.131114][T10766]  ___sys_sendmsg+0x158/0x2a0
[  526.131148][T10766]  ? __pfx____sys_sendmsg+0x10/0x10
[  526.131222][T10766]  ? __fget_files+0x2a/0x420
[  526.131242][T10766]  ? __fget_files+0x3a0/0x420
[  526.131274][T10766]  __x64_sys_sendmsg+0x19b/0x260
[  526.131306][T10766]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  526.131353][T10766]  ? do_syscall_64+0xba/0x210
[  526.131385][T10766]  do_syscall_64+0xf6/0x210
[  526.131412][T10766]  ? clear_bhb_loop+0x60/0xb0
[  526.131438][T10766]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  526.131459][T10766] RIP: 0033:0x7efea978e969
[  526.131478][T10766] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  526.131496][T10766] RSP: 002b:00007efeaa5a8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  526.131518][T10766] RAX: ffffffffffffffda RBX: 00007efea99b5fa0 RCX: 00007efea978e969
[  526.131534][T10766] RDX: 0000000004040000 RSI: 0000200000000a40 RDI: 0000000000000004
[  526.131548][T10766] RBP: 00007efeaa5a8090 R08: 0000000000000000 R09: 0000000000000000
[  526.131561][T10766] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  526.131574][T10766] R13: 0000000000000000 R14: 00007efea99b5fa0 R15: 00007ffd94327068
[  526.131606][T10766]  </TASK>
[  526.507416][T10734] chnl_net:caif_netlink_parms(): no params data found
[  527.000452][ T3526] bridge_slave_1: left allmulticast mode
[  527.006399][ T3526] bridge_slave_1: left promiscuous mode
[  527.012274][ T3526] bridge0: port 2(bridge_slave_1) entered disabled state
[  527.051939][ T3526] bridge_slave_0: left allmulticast mode
[  527.076219][ T3526] bridge_slave_0: left promiscuous mode
[  527.084756][ T3526] bridge0: port 1(bridge_slave_0) entered disabled state
[  527.624395][ T5840] Bluetooth: hci0: command tx timeout
[  527.973774][T10783] binder: 10782:10783 ioctl c0306201 0 returned -14
[  529.023778][T10789] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1336'.
[  529.053389][   T30] audit: type=1326 audit(2000000172.235:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10790 comm="syz.4.1337" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2a38f8e969 code=0x0
[  529.281097][ T3526] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  529.294527][ T3526] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  529.305437][ T3526] bond0 (unregistering): Released all slaves
[  529.368862][  T976] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  529.422616][ T3526] bond1 (unregistering): Released all slaves
[  529.561384][  T976] usb 5-1: Using ep0 maxpacket: 16
[  529.604197][  T976] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  529.615856][  T976] usb 5-1: config 0 interface 0 has no altsetting 0
[  529.624631][  T976] usb 5-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[  529.673544][ T3526] IPVS: stopping master sync thread 6002 ...
[  529.695801][  T976] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  529.733592][  T976] usb 5-1: config 0 descriptor??
[  529.846204][ T5840] Bluetooth: hci0: command tx timeout
[  529.962908][T10734] bridge0: port 1(bridge_slave_0) entered blocking state
[  529.973728][T10734] bridge0: port 1(bridge_slave_0) entered disabled state
[  529.999678][T10734] bridge_slave_0: entered allmulticast mode
[  530.035493][T10734] bridge_slave_0: entered promiscuous mode
[  530.067740][T10734] bridge0: port 2(bridge_slave_1) entered blocking state
[  530.082844][T10734] bridge0: port 2(bridge_slave_1) entered disabled state
[  530.097137][T10734] bridge_slave_1: entered allmulticast mode
[  530.107107][T10734] bridge_slave_1: entered promiscuous mode
[  530.319879][T10734] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  530.406431][T10734] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  531.054711][T10816] input: syz0 as /devices/virtual/input/input16
[  531.088128][ T3526] hsr_slave_0: left promiscuous mode
[  531.108066][ T3526] hsr_slave_1: left promiscuous mode
[  531.132300][ T3526] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  531.179078][ T3526] batman_adv: batadv0: Removing interface: batadv_slave_0
[  531.248563][ T3526] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  531.310759][ T3526] batman_adv: batadv0: Removing interface: batadv_slave_1
[  531.431036][ T3526] veth1_macvtap: left promiscuous mode
[  531.437064][ T3526] veth0_macvtap: left promiscuous mode
[  531.450430][ T3526] veth1_vlan: left promiscuous mode
[  531.457457][ T3526] veth0_vlan: left promiscuous mode
[  532.390554][ T5840] Bluetooth: hci0: command tx timeout
[  532.681688][T10830] netlink: 'syz.1.1346': attribute type 4 has an invalid length.
[  532.689652][T10830] netlink: 3657 bytes leftover after parsing attributes in process `syz.1.1346'.
[  533.538219][  T976] usbhid 5-1:0.0: can't add hid device: -71
[  533.567234][  T976] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  533.613203][  T976] usb 5-1: USB disconnect, device number 19
[  533.754139][T10839] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1348'.
[  535.107834][ T3526] team0 (unregistering): Port device team_slave_0 removed
[  535.493225][T10734] team0: Port device team_slave_0 added
[  535.644778][T10734] team0: Port device team_slave_1 added
[  535.996617][T10734] batman_adv: batadv0: Adding interface: batadv_slave_0
[  536.072347][T10853] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1350'.
[  536.308387][T10734] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  536.680270][T10856] netlink: 'syz.5.1351': attribute type 4 has an invalid length.
[  536.714636][T10856] netlink: 3657 bytes leftover after parsing attributes in process `syz.5.1351'.
[  537.060600][T10734] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  537.436567][T10734] batman_adv: batadv0: Adding interface: batadv_slave_1
[  537.483560][T10734] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  537.553617][T10861] netlink: 'syz.1.1352': attribute type 4 has an invalid length.
[  537.561784][T10861] netlink: 3657 bytes leftover after parsing attributes in process `syz.1.1352'.
[  537.572642][T10734] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  538.924730][T10734] hsr_slave_0: entered promiscuous mode
[  538.931546][T10734] hsr_slave_1: entered promiscuous mode
[  538.985485][T10734] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  539.029416][T10734] Cannot create hsr debugfs directory
[  539.428174][   T30] audit: type=1326 audit(2000000181.944:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10879 comm="syz.4.1357" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2a38f8e969 code=0x0
[  539.696738][T10734] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  539.739780][T10734] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  539.756164][  T976] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  539.787603][T10734] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  539.818113][T10734] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  539.836028][T10884] netlink: 'syz.1.1358': attribute type 2 has an invalid length.
[  539.954384][  T976] usb 5-1: Using ep0 maxpacket: 16
[  539.987063][  T976] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  540.019056][  T976] usb 5-1: config 0 interface 0 has no altsetting 0
[  540.112453][  T976] usb 5-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[  540.123759][T10734] 8021q: adding VLAN 0 to HW filter on device bond0
[  540.137572][  T976] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  540.209596][T10891] netlink: 'syz.0.1360': attribute type 4 has an invalid length.
[  540.217626][T10891] netlink: 3657 bytes leftover after parsing attributes in process `syz.0.1360'.
[  540.898678][T10734] 8021q: adding VLAN 0 to HW filter on device team0
[  540.912267][  T976] usb 5-1: config 0 descriptor??
[  541.035449][ T3507] bridge0: port 1(bridge_slave_0) entered blocking state
[  541.042800][ T3507] bridge0: port 1(bridge_slave_0) entered forwarding state
[  541.126241][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[  541.133418][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[  541.237910][T10734] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  541.248958][T10734] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  541.376126][T10894] overlayfs: missing 'lowerdir'
[  541.454089][T10894] BUG: spinlock bad magic on CPU#0, syz.5.1359/10894
[  541.460830][T10894]  lock: 0xffff8880328ac808, .magic: ffff8880, .owner: <none>/-1, .owner_cpu: -1
[  541.469980][T10894] CPU: 0 UID: 0 PID: 10894 Comm: syz.5.1359 Not tainted 6.15.0-rc6-syzkaller-00346-g5723cc3450bc #0 PREEMPT(full) 
[  541.470010][T10894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  541.470024][T10894] Call Trace:
[  541.470034][T10894]  <TASK>
[  541.470042][T10894]  dump_stack_lvl+0x189/0x250
[  541.470075][T10894]  ? __pfx__printk+0x10/0x10
[  541.470107][T10894]  ? __pfx_dump_stack_lvl+0x10/0x10
[  541.470132][T10894]  ? vfs_get_tree+0x92/0x2b0
[  541.470168][T10894]  ? spin_dump+0x102/0x1a0
[  541.470197][T10894]  do_raw_spin_lock+0x1ca/0x290
[  541.470221][T10894]  ? __percpu_counter_sum+0x2c/0x1e0
[  541.470241][T10894]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  541.470268][T10894]  _raw_spin_lock_irqsave+0xb3/0xf0
[  541.470293][T10894]  ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[  541.470316][T10894]  ? __pfx_smack_sb_statfs+0x10/0x10
[  541.470352][T10894]  __percpu_counter_sum+0x2c/0x1e0
[  541.470374][T10894]  shmem_statfs+0x13d/0x2b0
[  541.470399][T10894]  vfs_statfs+0x147/0x2d0
[  541.470427][T10894]  ovl_fill_super+0x788/0x35d0
[  541.470461][T10894]  ? rcu_is_watching+0x15/0xb0
[  541.470496][T10894]  ? shrinker_register+0x124/0x230
[  541.470527][T10894]  ? __pfx_ovl_fill_super+0x10/0x10
[  541.470555][T10894]  ? __pfx___mutex_lock+0x10/0x10
[  541.470581][T10894]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  541.470613][T10894]  ? __raw_spin_lock_init+0x45/0x100
[  541.470642][T10894]  ? sget_fc+0x962/0xa40
[  541.470668][T10894]  ? __pfx_set_anon_super_fc+0x10/0x10
[  541.470694][T10894]  ? __pfx_ovl_fill_super+0x10/0x10
[  541.470722][T10894]  get_tree_nodev+0xbb/0x150
[  541.470749][T10894]  vfs_get_tree+0x92/0x2b0
[  541.470779][T10894]  do_new_mount+0x24a/0xa40
[  541.470814][T10894]  __se_sys_mount+0x317/0x410
[  541.470842][T10894]  ? __pfx___se_sys_mount+0x10/0x10
[  541.470863][T10894]  ? do_syscall_64+0xba/0x210
[  541.470890][T10894]  ? __x64_sys_mount+0x20/0xc0
[  541.470910][T10894]  do_syscall_64+0xf6/0x210
[  541.470936][T10894]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  541.470956][T10894]  ? clear_bhb_loop+0x60/0xb0
[  541.470979][T10894]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  541.471000][T10894] RIP: 0033:0x7fb8d278e969
[  541.471018][T10894] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  541.471037][T10894] RSP: 002b:00007fb8d05b4038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  541.471059][T10894] RAX: ffffffffffffffda RBX: 00007fb8d29b6160 RCX: 00007fb8d278e969
[  541.471075][T10894] RDX: 0000200000000080 RSI: 00002000000000c0 RDI: 0000000000000000
[  541.471090][T10894] RBP: 00007fb8d2810ab1 R08: 0000200000000340 R09: 0000000000000000
[  541.471104][T10894] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  541.471117][T10894] R13: 0000000000000000 R14: 00007fb8d29b6160 R15: 00007ffe7e429128
[  541.471141][T10894]  </TASK>
[  541.471158][T10894] ------------[ cut here ]------------
[  541.754265][T10894] UBSAN: array-index-out-of-bounds in kernel/locking/qspinlock.h:68:9
[  541.762431][T10894] index 2858 is out of range for type 'unsigned long[8]'
[  541.769457][T10894] CPU: 0 UID: 0 PID: 10894 Comm: syz.5.1359 Not tainted 6.15.0-rc6-syzkaller-00346-g5723cc3450bc #0 PREEMPT(full) 
[  541.769480][T10894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  541.769491][T10894] Call Trace:
[  541.769499][T10894]  <TASK>
[  541.769507][T10894]  dump_stack_lvl+0x189/0x250
[  541.769536][T10894]  ? __pfx_dump_stack_lvl+0x10/0x10
[  541.769558][T10894]  ? __pfx__printk+0x10/0x10
[  541.769585][T10894]  ? show_trace_log_lvl+0x4fb/0x550
[  541.769607][T10894]  ubsan_epilogue+0xa/0x40
[  541.769621][T10894]  __ubsan_handle_out_of_bounds+0xe9/0xf0
[  541.769646][T10894]  __pv_queued_spin_lock_slowpath+0xaaf/0xb60
[  541.769670][T10894]  ? dump_stack_lvl+0x1e0/0x250
[  541.769690][T10894]  ? __pfx__printk+0x10/0x10
[  541.769713][T10894]  ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10
[  541.769737][T10894]  ? vfs_get_tree+0x92/0x2b0
[  541.769772][T10894]  queued_spin_lock_slowpath+0x43/0x50
[  541.769792][T10894]  do_raw_spin_lock+0x21f/0x290
[  541.769810][T10894]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  541.769832][T10894]  _raw_spin_lock_irqsave+0xb3/0xf0
[  541.769850][T10894]  ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[  541.769868][T10894]  ? __pfx_smack_sb_statfs+0x10/0x10
[  541.769895][T10894]  __percpu_counter_sum+0x2c/0x1e0
[  541.769913][T10894]  shmem_statfs+0x13d/0x2b0
[  541.769933][T10894]  vfs_statfs+0x147/0x2d0
[  541.769954][T10894]  ovl_fill_super+0x788/0x35d0
[  541.769980][T10894]  ? rcu_is_watching+0x15/0xb0
[  541.770009][T10894]  ? shrinker_register+0x124/0x230
[  541.770034][T10894]  ? __pfx_ovl_fill_super+0x10/0x10
[  541.770055][T10894]  ? __pfx___mutex_lock+0x10/0x10
[  541.770075][T10894]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  541.770099][T10894]  ? __raw_spin_lock_init+0x45/0x100
[  541.770122][T10894]  ? sget_fc+0x962/0xa40
[  541.770141][T10894]  ? __pfx_set_anon_super_fc+0x10/0x10
[  541.770161][T10894]  ? __pfx_ovl_fill_super+0x10/0x10
[  541.770182][T10894]  get_tree_nodev+0xbb/0x150
[  541.770204][T10894]  vfs_get_tree+0x92/0x2b0
[  541.770227][T10894]  do_new_mount+0x24a/0xa40
[  541.770255][T10894]  __se_sys_mount+0x317/0x410
[  541.770271][T10894]  ? __pfx___se_sys_mount+0x10/0x10
[  541.770288][T10894]  ? do_syscall_64+0xba/0x210
[  541.770308][T10894]  ? __x64_sys_mount+0x20/0xc0
[  541.770323][T10894]  do_syscall_64+0xf6/0x210
[  541.770343][T10894]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  541.770359][T10894]  ? clear_bhb_loop+0x60/0xb0
[  541.770377][T10894]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  541.770392][T10894] RIP: 0033:0x7fb8d278e969
[  541.770407][T10894] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  541.770422][T10894] RSP: 002b:00007fb8d05b4038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  541.770440][T10894] RAX: ffffffffffffffda RBX: 00007fb8d29b6160 RCX: 00007fb8d278e969
[  541.770452][T10894] RDX: 0000200000000080 RSI: 00002000000000c0 RDI: 0000000000000000
[  541.770464][T10894] RBP: 00007fb8d2810ab1 R08: 0000200000000340 R09: 0000000000000000
[  541.770474][T10894] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  541.770484][T10894] R13: 0000000000000000 R14: 00007fb8d29b6160 R15: 00007ffe7e429128
[  541.770503][T10894]  </TASK>
[  541.770508][T10894] ---[ end trace ]---
[  542.084470][T10894] Kernel panic - not syncing: UBSAN: panic_on_warn set ...
[  542.091671][T10894] CPU: 0 UID: 0 PID: 10894 Comm: syz.5.1359 Not tainted 6.15.0-rc6-syzkaller-00346-g5723cc3450bc #0 PREEMPT(full) 
[  542.103742][T10894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  542.113806][T10894] Call Trace:
[  542.117090][T10894]  <TASK>
[  542.120037][T10894]  dump_stack_lvl+0x99/0x250
[  542.124656][T10894]  ? __asan_memcpy+0x40/0x70
[  542.129255][T10894]  ? __pfx_dump_stack_lvl+0x10/0x10
[  542.134465][T10894]  ? __pfx__printk+0x10/0x10
[  542.139074][T10894]  panic+0x2db/0x790
[  542.143001][T10894]  ? __pfx_panic+0x10/0x10
[  542.147422][T10894]  ? _printk+0xcf/0x120
[  542.151593][T10894]  ? __pfx__printk+0x10/0x10
[  542.156211][T10894]  check_panic_on_warn+0x89/0xb0
[  542.161264][T10894]  __ubsan_handle_out_of_bounds+0xe9/0xf0
[  542.167004][T10894]  __pv_queued_spin_lock_slowpath+0xaaf/0xb60
[  542.173092][T10894]  ? dump_stack_lvl+0x1e0/0x250
[  542.177959][T10894]  ? __pfx__printk+0x10/0x10
[  542.182570][T10894]  ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10
[  542.189169][T10894]  ? vfs_get_tree+0x92/0x2b0
[  542.193777][T10894]  queued_spin_lock_slowpath+0x43/0x50
[  542.199254][T10894]  do_raw_spin_lock+0x21f/0x290
[  542.204115][T10894]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  542.209499][T10894]  _raw_spin_lock_irqsave+0xb3/0xf0
[  542.214704][T10894]  ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[  542.220694][T10894]  ? __pfx_smack_sb_statfs+0x10/0x10
[  542.226000][T10894]  __percpu_counter_sum+0x2c/0x1e0
[  542.231118][T10894]  shmem_statfs+0x13d/0x2b0
[  542.235638][T10894]  vfs_statfs+0x147/0x2d0
[  542.239983][T10894]  ovl_fill_super+0x788/0x35d0
[  542.244765][T10894]  ? rcu_is_watching+0x15/0xb0
[  542.249547][T10894]  ? shrinker_register+0x124/0x230
[  542.254670][T10894]  ? __pfx_ovl_fill_super+0x10/0x10
[  542.259881][T10894]  ? __pfx___mutex_lock+0x10/0x10
[  542.264917][T10894]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  542.270915][T10894]  ? __raw_spin_lock_init+0x45/0x100
[  542.276218][T10894]  ? sget_fc+0x962/0xa40
[  542.280476][T10894]  ? __pfx_set_anon_super_fc+0x10/0x10
[  542.286033][T10894]  ? __pfx_ovl_fill_super+0x10/0x10
[  542.291240][T10894]  get_tree_nodev+0xbb/0x150
[  542.295842][T10894]  vfs_get_tree+0x92/0x2b0
[  542.300442][T10894]  do_new_mount+0x24a/0xa40
[  542.304967][T10894]  __se_sys_mount+0x317/0x410
[  542.309651][T10894]  ? __pfx___se_sys_mount+0x10/0x10
[  542.314855][T10894]  ? do_syscall_64+0xba/0x210
[  542.319539][T10894]  ? __x64_sys_mount+0x20/0xc0
[  542.324304][T10894]  do_syscall_64+0xf6/0x210
[  542.328814][T10894]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  542.334461][T10894]  ? clear_bhb_loop+0x60/0xb0
[  542.339143][T10894]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  542.345040][T10894] RIP: 0033:0x7fb8d278e969
[  542.349457][T10894] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  542.369067][T10894] RSP: 002b:00007fb8d05b4038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  542.377488][T10894] RAX: ffffffffffffffda RBX: 00007fb8d29b6160 RCX: 00007fb8d278e969
[  542.385467][T10894] RDX: 0000200000000080 RSI: 00002000000000c0 RDI: 0000000000000000
[  542.393447][T10894] RBP: 00007fb8d2810ab1 R08: 0000200000000340 R09: 0000000000000000
[  542.401597][T10894] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  542.409568][T10894] R13: 0000000000000000 R14: 00007fb8d29b6160 R15: 00007ffe7e429128
[  542.417726][T10894]  </TASK>
[  542.420917][T10894] Kernel Offset: disabled
[  542.425269][T10894] Rebooting in 86400 seconds..