last executing test programs:

11m58.260602612s ago: executing program 1 (id=3913):
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SG_IO(r0, 0x2285, &(0x7f00000005c0)={0x53, 0xfffffffffffffffc, 0xf0, 0x1, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000880)="5ca86304000000f0099af29e96c8d42bf351039697e1d4c1d8edc7399bed9c4584dd57963ddceee7af02f304286e50ffc3e59e635cf000000081f8ac2e86da524ae2ad5deb90ac06b044097359492e6fa240fc9d250c5ff8d080e2659439694cd1ecc032b04249a12c0d69e173f387a090b59226e9804aa251ed0c76014cf17b90f39e40a0389b9fc3644415bb6861be988e7af22fb4d27f3eb4a7c82698fd23a2015f954fb3e9c2b4629ec47b845de19989a6b38b0b6e26c74a680d6f04222f7fd8b490d59e132d5a52c398ff819b237f4a684bd42527f0694996bc7112497cdc9f33fdf2130a7d31f2da822d3ca832", 0x0, 0xfffffff9, 0x0, 0x3, 0x0})
syz_usb_connect(0x0, 0x24, &(0x7f0000000200)=ANY=[@ANYBLOB="120100002ec6601037210100352a010203010902120001000000000904"], 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000002c0), 0x4081, 0x0) (fail_nth: 3)

11m55.946764248s ago: executing program 1 (id=3920):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x4, 0x4, 0x4, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
close(r1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r0}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
openat$tun(0xffffff9c, &(0x7f0000000300), 0x2000, 0x0)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x80383, 0x0)
close_range(r5, 0xffffffffffffffff, 0x0)

11m50.911891639s ago: executing program 1 (id=3928):
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/power/resume', 0x42, 0x0)
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000500)=0xb0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000180)={@local})
ioctl$IOCTL_VMCI_NOTIFY_RESOURCE(r0, 0x7a5, &(0x7f00000000c0)={{@my=0x0}, 0x1})
keyctl$KEYCTL_MOVE(0x1e, 0x0, 0x0, 0x0, 0x0)
io_setup(0x1c, &(0x7f00000007c0)=<r1=>0x0)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141a82, 0x0)
r3 = dup(r2)
r4 = open(&(0x7f0000000100)='./bus\x00', 0x40542, 0x0)
ftruncate(r4, 0xee72)
sendfile(r3, r4, 0x0, 0x8000fffffffe)
connect$pppoe(r3, &(0x7f0000000000)={0x18, 0x0, {0x4, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, 'netpci0\x00'}}, 0x1e)
syz_open_dev$swradio(&(0x7f0000000040), 0x0, 0x2)
io_submit(r1, 0x0, &(0x7f0000000780))

11m49.481083216s ago: executing program 1 (id=3931):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) (async, rerun: 64)
r0 = getpid() (async, rerun: 64)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) (async)
mount$bind(&(0x7f0000000300)='./file0/../file0\x00', &(0x7f0000000640)='./file0/file0\x00', 0x0, 0x89101a, 0x0) (async)
rename(&(0x7f00000003c0)='./file1\x00', &(0x7f0000000480)='./file0\x00') (async)
mount$bind(&(0x7f0000000000)='./file0/file0\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0xa020c2, 0x0) (async)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) (async, rerun: 64)
mmap(&(0x7f00004fc000/0x3000)=nil, 0x3000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) (async, rerun: 64)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x1, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async, rerun: 64)
timerfd_settime(0xffffffffffffffff, 0x3, &(0x7f0000000380)={{0x0, 0x989680}}, 0x0) (async, rerun: 64)
read(0xffffffffffffffff, &(0x7f00000002c0)=""/114, 0x72)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
prlimit64(0x0, 0xe, 0x0, 0x0) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8) (async)
setsockopt$TIPC_MCAST_BROADCAST(0xffffffffffffffff, 0x10f, 0x85) (async)
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xffffffffffffff12) (async, rerun: 32)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) (async, rerun: 32)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0) (async)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0) (async)
utimes(&(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)={{0x0, 0x2710}, {0x77359400}})
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x40002, &(0x7f0000000280)={[{@upperdir={'upperdir', 0x3d, './file0/file0'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) (async, rerun: 64)
creat(&(0x7f0000000440)='./file0/file0\x00', 0x188) (async, rerun: 64)
setxattr$security_evm(&(0x7f0000000240)='./file0/file0\x00', &(0x7f0000000380), &(0x7f0000000180)=ANY=[@ANYBLOB='\x00'], 0x9, 0x0)

11m49.412158183s ago: executing program 1 (id=3933):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYRESDEC=r0], 0x7c}, 0x1, 0x0, 0x0, 0x20040881}, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @sliced={0x5, [0x86, 0x2b, 0xfff7, 0xf, 0x6, 0x6, 0x746, 0x0, 0x4, 0x101, 0x5, 0x8, 0x2, 0x5, 0x1, 0x2, 0x678, 0x1, 0x7, 0x200, 0x4, 0x4, 0x8000, 0x0, 0x1, 0xfffd, 0x4, 0x98, 0xd, 0x40, 0x6, 0x3, 0x6, 0x105, 0x2, 0x8, 0x203, 0x9, 0x5, 0x2, 0x3f8, 0x0, 0x8, 0x8, 0x4, 0x28, 0x0, 0x6], 0x410b}})
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0)
r2 = userfaultfd(0x1)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x404})
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4})
setsockopt$inet6_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x29, 0x2a, &(0x7f0000fca000)={0x0, {{0xa, 0x3, 0x0, @mcast1}}}, 0x88)
sched_setscheduler(0x0, 0x1, 0x0)
ioctl$UFFDIO_COPY(r2, 0xc028aa03, &(0x7f0000000100)={&(0x7f0000800000/0x800000)=nil, &(0x7f0000339000/0x1000)=nil, 0x800000})
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_usb_connect$hid(0x5, 0x36, &(0x7f00000002c0)={{0x12, 0x1, 0x200, 0x0, 0x0, 0x0, 0x20, 0x56a, 0x94, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x20, 0x0, [{{0x9, 0x4, 0x0, 0x80, 0x3, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x5, 0x2, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x200, 0x0, 0x3}}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r5, 0x0, 0x0)
syz_usb_control_io$hid(r5, &(0x7f00000006c0)={0x24, 0x0, 0x0, &(0x7f0000001300)={0x0, 0x22, 0x5, {[@global=@item_012={0x2, 0x1, 0x3, "e857"}, @global=@item_012={0x1, 0x1, 0x4, ','}]}}, 0x0}, 0x0)
dup(0xffffffffffffffff)
sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4080}, 0x4)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, 0x0)
mmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000001, 0x2052, 0xffffffffffffffff, 0x4b000)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
socket$key(0xf, 0x3, 0x2)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$inet_udp(0x2, 0x2, 0x0)

11m48.949234532s ago: executing program 1 (id=3937):
prctl$PR_SET_NO_NEW_PRIVS(0x43, 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x4000040)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r3, &(0x7f0000000000)={0x2, 0x4e21, @empty}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
sendto(r3, &(0x7f00000002c0)='%', 0x300000, 0x0, 0x0, 0x0)
r4 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
r5 = memfd_create(&(0x7f00000005c0)='\xbe\xc2?\xf2Sy\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\xdenJ\xeb\x87\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00B\xf6\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5\x04\x00\x00\x00\x00\x00\x00\x00\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38\x14\xcb\xfa\xb3j\x92\f\xe0\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf0\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xd9\xbd\xd9\xaf\x12\x00\x00\x00\x00\x19\x13\xa3iR7\xd1:\xcc)\xcbc`y\xabT@\xd4\xe1+1yDl\xd2\xa4<c\x1a\x13', 0x2)
ftruncate(r5, 0xffff)
fcntl$addseals(r5, 0x409, 0x7)
geteuid()
r6 = ioctl$UDMABUF_CREATE(r4, 0x40187542, &(0x7f0000000140)={r5, 0x80000, 0x0, 0x4000})
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000700)={'syz0\x00', {0x3, 0x6, 0x1, 0x9}, 0x3c, [0x97, 0x1004, 0x4, 0x2, 0x96, 0x0, 0x3, 0x0, 0xff, 0x4000000, 0x6, 0x4, 0x7, 0x8, 0x1, 0x401, 0x2, 0x0, 0x4, 0x8, 0x7, 0x8, 0xfffffff7, 0x6, 0x9, 0x7, 0xd, 0x6, 0x766de466, 0x3, 0xea9, 0x3, 0x1000, 0x8000, 0x8, 0x4, 0x9, 0xe6, 0xfffffc00, 0x6, 0x4197, 0x2, 0xfffffffa, 0x3, 0xcb5e, 0xa08, 0x9, 0x0, 0xa36f, 0x1000, 0x76a, 0x1, 0x7, 0x9, 0x5, 0xda45, 0x0, 0x258e, 0x4ed, 0x7, 0x4, 0x3ff, 0x5, 0x9], [0xfffffffe, 0xfcb6, 0x2, 0x3, 0x800, 0x2, 0x0, 0x7, 0x80, 0x1, 0x3, 0x5, 0x7, 0xfe, 0xffffff71, 0x8, 0x80000000, 0x9, 0x5, 0x2, 0xfff, 0x5, 0x1, 0x195, 0x7, 0x7582, 0x6, 0xf, 0x5, 0x6, 0x7, 0x0, 0x10001, 0x77, 0x9, 0x80, 0x6, 0x0, 0x6, 0x9, 0x7, 0x8, 0x7ff, 0xfffffffd, 0x1, 0xa4, 0xc, 0x3, 0x1, 0x1, 0x162433ce, 0x2, 0x40, 0x9, 0xffff, 0x6, 0x10001, 0x10000, 0x1, 0x7, 0x1ff, 0xffffffff, 0x3, 0x6], [0xb, 0x4, 0x7fff, 0x11f, 0x5, 0x9, 0x6, 0xee76, 0x4, 0x4, 0x4, 0x9, 0x0, 0x8fbc, 0x4, 0x6, 0xd, 0x2, 0xfffffff7, 0x0, 0x83, 0x1000, 0x2, 0x7, 0xbe, 0x0, 0x8, 0x4, 0xfffffffc, 0x40, 0x0, 0x0, 0x8, 0x2, 0x77246193, 0xa1f, 0x1000, 0xff, 0x9, 0x2, 0x4, 0x9, 0x0, 0xf83, 0xffff7fff, 0x5, 0x7fff, 0x7, 0x0, 0xa28, 0x5, 0x1, 0x7, 0x1, 0x4, 0xfffffff7, 0x1, 0x800, 0x1, 0x1cc, 0x1494, 0x7, 0x8, 0x6], [0x6, 0x9, 0x8, 0x2, 0x4, 0x6, 0x2, 0x7, 0x0, 0x101, 0xa, 0xe, 0xa, 0x80000001, 0x7f, 0x9, 0x0, 0x8, 0xd, 0x7, 0x2, 0x1, 0x0, 0x9, 0x3, 0x3b, 0x1, 0x5, 0x9, 0xfffff7c6, 0x6, 0x6, 0x7ff, 0xa14, 0x2000000c, 0x1, 0xd, 0xfffffffb, 0x7, 0x0, 0xb8, 0x1, 0x5, 0x10, 0x5, 0x8, 0x0, 0x2, 0x9, 0x2, 0x80000001, 0x7, 0x89, 0x5, 0x6, 0x1, 0x4, 0x40, 0x81, 0xad8, 0x7, 0x8001, 0x1, 0x6]}, 0x45c)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x13, r6, 0x0)
r7 = socket$pppl2tp(0x18, 0x1, 0x1)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r8, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_DSTOPTS(r8, 0x29, 0x3b, &(0x7f00000000c0)=ANY=[], 0xb0)
connect$pppl2tp(r7, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r8, 0x9, 0x0, 0x8, 0x0, {0xa, 0x0, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}}}}, 0x32)

11m48.399688726s ago: executing program 32 (id=3937):
prctl$PR_SET_NO_NEW_PRIVS(0x43, 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x4000040)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r3, &(0x7f0000000000)={0x2, 0x4e21, @empty}, 0x10)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
sendto(r3, &(0x7f00000002c0)='%', 0x300000, 0x0, 0x0, 0x0)
r4 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
r5 = memfd_create(&(0x7f00000005c0)='\xbe\xc2?\xf2Sy\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\xdenJ\xeb\x87\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00B\xf6\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5\x04\x00\x00\x00\x00\x00\x00\x00\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38\x14\xcb\xfa\xb3j\x92\f\xe0\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf0\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xd9\xbd\xd9\xaf\x12\x00\x00\x00\x00\x19\x13\xa3iR7\xd1:\xcc)\xcbc`y\xabT@\xd4\xe1+1yDl\xd2\xa4<c\x1a\x13', 0x2)
ftruncate(r5, 0xffff)
fcntl$addseals(r5, 0x409, 0x7)
geteuid()
r6 = ioctl$UDMABUF_CREATE(r4, 0x40187542, &(0x7f0000000140)={r5, 0x80000, 0x0, 0x4000})
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000700)={'syz0\x00', {0x3, 0x6, 0x1, 0x9}, 0x3c, [0x97, 0x1004, 0x4, 0x2, 0x96, 0x0, 0x3, 0x0, 0xff, 0x4000000, 0x6, 0x4, 0x7, 0x8, 0x1, 0x401, 0x2, 0x0, 0x4, 0x8, 0x7, 0x8, 0xfffffff7, 0x6, 0x9, 0x7, 0xd, 0x6, 0x766de466, 0x3, 0xea9, 0x3, 0x1000, 0x8000, 0x8, 0x4, 0x9, 0xe6, 0xfffffc00, 0x6, 0x4197, 0x2, 0xfffffffa, 0x3, 0xcb5e, 0xa08, 0x9, 0x0, 0xa36f, 0x1000, 0x76a, 0x1, 0x7, 0x9, 0x5, 0xda45, 0x0, 0x258e, 0x4ed, 0x7, 0x4, 0x3ff, 0x5, 0x9], [0xfffffffe, 0xfcb6, 0x2, 0x3, 0x800, 0x2, 0x0, 0x7, 0x80, 0x1, 0x3, 0x5, 0x7, 0xfe, 0xffffff71, 0x8, 0x80000000, 0x9, 0x5, 0x2, 0xfff, 0x5, 0x1, 0x195, 0x7, 0x7582, 0x6, 0xf, 0x5, 0x6, 0x7, 0x0, 0x10001, 0x77, 0x9, 0x80, 0x6, 0x0, 0x6, 0x9, 0x7, 0x8, 0x7ff, 0xfffffffd, 0x1, 0xa4, 0xc, 0x3, 0x1, 0x1, 0x162433ce, 0x2, 0x40, 0x9, 0xffff, 0x6, 0x10001, 0x10000, 0x1, 0x7, 0x1ff, 0xffffffff, 0x3, 0x6], [0xb, 0x4, 0x7fff, 0x11f, 0x5, 0x9, 0x6, 0xee76, 0x4, 0x4, 0x4, 0x9, 0x0, 0x8fbc, 0x4, 0x6, 0xd, 0x2, 0xfffffff7, 0x0, 0x83, 0x1000, 0x2, 0x7, 0xbe, 0x0, 0x8, 0x4, 0xfffffffc, 0x40, 0x0, 0x0, 0x8, 0x2, 0x77246193, 0xa1f, 0x1000, 0xff, 0x9, 0x2, 0x4, 0x9, 0x0, 0xf83, 0xffff7fff, 0x5, 0x7fff, 0x7, 0x0, 0xa28, 0x5, 0x1, 0x7, 0x1, 0x4, 0xfffffff7, 0x1, 0x800, 0x1, 0x1cc, 0x1494, 0x7, 0x8, 0x6], [0x6, 0x9, 0x8, 0x2, 0x4, 0x6, 0x2, 0x7, 0x0, 0x101, 0xa, 0xe, 0xa, 0x80000001, 0x7f, 0x9, 0x0, 0x8, 0xd, 0x7, 0x2, 0x1, 0x0, 0x9, 0x3, 0x3b, 0x1, 0x5, 0x9, 0xfffff7c6, 0x6, 0x6, 0x7ff, 0xa14, 0x2000000c, 0x1, 0xd, 0xfffffffb, 0x7, 0x0, 0xb8, 0x1, 0x5, 0x10, 0x5, 0x8, 0x0, 0x2, 0x9, 0x2, 0x80000001, 0x7, 0x89, 0x5, 0x6, 0x1, 0x4, 0x40, 0x81, 0xad8, 0x7, 0x8001, 0x1, 0x6]}, 0x45c)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x13, r6, 0x0)
r7 = socket$pppl2tp(0x18, 0x1, 0x1)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r8, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_DSTOPTS(r8, 0x29, 0x3b, &(0x7f00000000c0)=ANY=[], 0xb0)
connect$pppl2tp(r7, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r8, 0x9, 0x0, 0x8, 0x0, {0xa, 0x0, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}}}}, 0x32)

10.968760851s ago: executing program 3 (id=6397):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'syz_tun\x00', <r1=>0x0})
bind$packet(r0, &(0x7f0000000300)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @remote}, 0x14) (async, rerun: 32)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/ptype\x00') (rerun: 32)
r3 = socket$packet(0x11, 0x3, 0x300)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r2, 0x3ba0, 0x0)
bind$packet(r3, &(0x7f0000000000)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @link_local}, 0x14)
preadv(r0, &(0x7f0000000000)=[{&(0x7f0000001840)=""/198, 0xc6}], 0x1, 0x4c, 0xa5)
socket$inet_tcp(0x2, 0x1, 0x0)
socket(0x10, 0x3, 0x0) (async, rerun: 64)
socket(0x11, 0x2, 0x0) (async, rerun: 64)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async, rerun: 32)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) (async, rerun: 32)
socket$inet6(0xa, 0x1, 0x0) (async, rerun: 64)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (rerun: 64)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) (async)
r6 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000000)={{0x1, 0x1, 0x18, r6, {0x8}}, './file0\x00'}) (async)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0) (async)
fallocate(r5, 0x49, 0x0, 0x7) (async)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8) (async)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58) (async, rerun: 32)
sendmsg$alg(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000001480)='.', 0x1}], 0x1, &(0x7f0000000340)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0) (rerun: 32)
io_setup(0x20000000001005, &(0x7f0000000880)=<r7=>0x0)
io_submit(r7, 0x0, &(0x7f0000000580)) (async, rerun: 32)
r8 = socket$inet_icmp_raw(0x2, 0x3, 0x1) (rerun: 32)
setsockopt$SO_BINDTODEVICE(r8, 0x1, 0x19, &(0x7f0000000040)='veth1_virt_wifi\x00', 0x10) (async, rerun: 32)
dup(r8) (rerun: 32)

10.784320164s ago: executing program 3 (id=6401):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r0, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="020028bd7000ffdbdf250900000008003a00050000000800320006000000050030000100000008000b0004000000052f000200000008003100090000000500350081000000"], 0x4c}, 0x1, 0x0, 0x0, 0x4001}, 0x10)
sendmsg$NL80211_CMD_UPDATE_FT_IES(r0, &(0x7f00000006c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000680)={&(0x7f0000000640)=ANY=[@ANYBLOB="6e5e55ee", @ANYRES16=0x0, @ANYBLOB="010026bd7000ffdbdf256000000008000300", @ANYRES32=0x0, @ANYBLOB="0600b10001010000"], 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x40)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c1200000000002000bfa100400000000007010000f8ffffffb7650000fb59b782b7030000004734ff69050013f6000000181100"/84, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x42, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='kfree\x00', r2}, 0x18)
syz_emit_ethernet(0x66, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffff6487a2bed3d608004500005800000000006c907800000000000000000420880b0000000000000800000086dd080088be00000000100000000100000000000000080022"], 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x2, 0x2, &(0x7f0000000100)=ANY=[@ANYBLOB="891000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
openat$fuse(0xffffffffffffff9c, &(0x7f0000000480), 0x2, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0)
pread64(r4, &(0x7f00000001c0)=""/200, 0xc8, 0x0)
accept4$x25(r4, &(0x7f00000000c0)={0x9, @remote}, &(0x7f0000000100)=0x12, 0x0)
read$FUSE(r4, &(0x7f0000002140)={0x2020, 0x0, <r5=>0x0}, 0x2020)
syz_usb_connect(0x3, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x200, 0x46, 0x15, 0xbd, 0x40, 0x1a0a, 0x102, 0xcde9, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0xcd, 0x0, 0x0, 0x33, 0x11, 0xa0}}]}}]}}, 0x0)
syz_fuse_handle_req(r3, &(0x7f0000004180)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)={0x90, 0x0, 0x8000000000000, {0x6, 0x0, 0x0, 0x0, 0x10000, 0x3, {0x0, 0x0, 0x400000, 0x82, 0x85ad, 0x0, 0x0, 0xfffffffc, 0x0, 0x6000, 0x0, 0x0, 0x0, 0x9d5}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r3, &(0x7f0000000340)={0x50, 0xfffffffffffffff5, r5, {0x7, 0x29, 0x0, 0x100000, 0x0, 0x0, 0x8001}}, 0x50)
syz_clone(0x60000400, 0x0, 0x0, 0x0, 0x0, 0x0)
r6 = getpgid(0x0)
r7 = syz_pidfd_open(r6, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100006e1a8940b810a80c00000002030109021200010000400009041600002e719400"], 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
pidfd_send_signal(r7, 0x21, 0x0, 0x4)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x10)
ioctl$FIBMAP(r8, 0x401070cd, &(0x7f0000000040))
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="030300000000080000000c000000"], 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x20040801)

9.534691757s ago: executing program 5 (id=6406):
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1000001, 0x32, 0xffffffffffffffff, 0x0)
r0 = getpgrp(0xffffffffffffffff)
r1 = syz_pidfd_open(r0, 0x0)
pidfd_send_signal(r1, 0x300, &(0x7f0000000140)={0x0, 0x2, 0xffffffc4}, 0x0)

9.392655366s ago: executing program 5 (id=6408):
r0 = memfd_create(&(0x7f0000000500)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85l\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~7\x16\x02\x00(v\xe6`\"6\xfcgC\xb5\xf0\x13.zj\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{\'\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x82\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F', 0x1)
write$binfmt_script(r0, &(0x7f0000000280)={'#! ', './file0/file0'}, 0x11)
execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x400000000000001, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)={0x54, r3, 0x917, 0x0, 0x0, {}, [@L2TP_ATTR_CONN_ID={0x8}, @L2TP_ATTR_IP6_DADDR={0x14, 0x20, @mcast1={0xff, 0x2}}, @L2TP_ATTR_PEER_CONN_ID={0x8}, @L2TP_ATTR_ENCAP_TYPE={0x6, 0x2, 0x1}, @L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @remote}]}, 0x54}, 0x1, 0x620b}, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
prlimit64(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000180))
mount(&(0x7f0000000140)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000080)='erofs\x00', 0x200000, 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r4, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r4, &(0x7f0000000740)={&(0x7f00000001c0)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@cswp={0x58, 0x114, 0x7, {{0x1}, 0x0, 0x0, 0x6, 0x0, 0xfffffffffffffffc, 0x7fe0000, 0x0, 0x100}}], 0x58, 0x40000}, 0x4000000)
r5 = socket$l2tp(0x2, 0x2, 0x73)
bind$inet(r5, &(0x7f0000000100)={0x2, 0x0, @remote}, 0x10)
connect$inet(r5, &(0x7f0000000200)={0x2, 0x0, @local}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="0c00000004000000040000000900000000000000", @ANYRES32, @ANYBLOB="000000a55b4ec000"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
sendmmsg$inet(r5, &(0x7f0000000900)=[{{0x0, 0x0, 0x0}}], 0x40000cf, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)

8.056647997s ago: executing program 5 (id=6413):
r0 = landlock_create_ruleset(&(0x7f0000000140)={0x0, 0x2}, 0x18, 0x0)
r1 = landlock_create_ruleset(&(0x7f0000000000)={0x10, 0x0, 0x3}, 0x18, 0x0)
landlock_restrict_self(r1, 0x0)
open(&(0x7f0000000280)='.\x00', 0x141080, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x11, 0x4, 0x4, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000300)={r2, &(0x7f0000000100), 0x0}, 0x20)
landlock_restrict_self(r0, 0x0)
r3 = socket(0x1e, 0x5, 0x0)
connect$tipc(r3, &(0x7f0000000040)=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x10)
recvmmsg$unix(r3, &(0x7f0000001d80)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000600)=""/145, 0x91}], 0x1}}], 0x1, 0x10022, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = dup(0xffffffffffffffff)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = dup(0xffffffffffffffff)
timer_create(0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, 0x0)
syz_usb_connect(0x0, 0x24, 0x0, 0x0)
r7 = openat$audio(0xffffffffffffff9c, &(0x7f0000000240), 0x40000000040201, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r5, 0xc004500a, &(0x7f00000000c0)=0x10000009)
ioctl$SNDCTL_DSP_SPEED(r7, 0xc0045002, &(0x7f0000000040)=0xdfe5)
write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f0000000500)={0xa00, 0x18, 0xfa00, {0x0, 0x0}}, 0xfc36)
sendto$inet6(r6, &(0x7f0000000140)="215c12809e9413405da0d230f225d0510cfc8c09ff3bb4599c2c106d5e82849947a449ff9c29a6", 0x27, 0x48090, &(0x7f00000002c0)={0xa, 0x4e20, 0x7, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x1c)
connect$tipc(r5, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r4, 0x0, 0x0)
syz_emit_vhci(0x0, 0xfffffffffffffdf3)

6.870535021s ago: executing program 3 (id=6417):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x181040, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6(0xa, 0x0, 0xffffffff)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
r0 = socket$kcm(0x10, 0x400000002, 0x0)
memfd_secret(0x0)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r1, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000003380))
r2 = eventfd2(0x2, 0x800)
ioctl$VHOST_SET_VRING_ERR(r1, 0x4008af22, &(0x7f00000001c0)={0x0, r2})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000240)={0x0, 0x0, 0x0, &(0x7f0000001d00)=""/176, 0x0})
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000000)={0x0, r2})
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f00000000c0)=0x1)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r1, 0x4008af60, &(0x7f0000000140)={@my=0x1})
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=""/4096})
connect$vsock_stream(r3, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
sendmsg$kcm(r0, &(0x7f0000000280)={&(0x7f0000000000)=@qipcrtr={0x2a, 0x1, 0x8000}, 0x80, &(0x7f0000000200)=[{&(0x7f0000000080)="5f5e4d04a70767f2ca4a71f610ba626b757ee6a1fbbf48046c31faa38f3894317b5b43459e144d5af2586f5115a1f91c8c68f3b0f3ac3b70d7c16e1077b40482c37d19f950fab251d2f886598579d4f1bca0e63b7c5f0aa2d6251cc4f3f732e24e330f9322e4f1ea61a0389b5661834ce89af781205b5c83f26ff947cc86847f510e9805483fadb590ed737c5cd3f75be3143dc4ab40ed6e4baa49542ff916808beb6e04a65afca2d13512e6c8f7ba4daa5108eb6dc26b06ca8ece257fb17895", 0xc0}, {&(0x7f0000000400)="425f889c4686e26143f67112df9d9cb7a7389763979a219f0b72b04211d7811630ef9f3830158bd2b691ca1d85772b8a1eb0f504bd390bfa58f41b77a40fd9ff01116b310ea4210d16b8aa9e9fcf9368f478dc73e71905edec74e42775f249407acb4e200093df7baa1f6a0b95ab988fa44d8a87399c73cd9ade339edd47f40b059353ee046a626c1f1f0b88148c19af3fc0b0d79bef29ca8cdec9ae", 0x9c}], 0xfffffffffffffad}, 0x20004000)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0xfffffdca, &(0x7f0000000200)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)

6.293849435s ago: executing program 2 (id=6423):
r0 = socket$inet6(0xa, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SUBFLOW_CREATE(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000540)=ANY=[@ANYBLOB, @ANYRES16=r2], 0x34}, 0x1, 0x0, 0x0, 0x800}, 0x0)
sched_setaffinity(0x0, 0xffffffffffffff5b, &(0x7f00000002c0)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f0000000000), 0x4)
r4 = socket(0x40000000015, 0x5, 0x0)
sendmsg$NFT_BATCH(r4, 0x0, 0x0)
setsockopt(0xffffffffffffffff, 0x1, 0x10000000000009, &(0x7f0000000180)="00050002", 0x4)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x4, &(0x7f0000000200)=0x417c, 0x4)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
bind$inet6(r5, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r5, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (fail_nth: 4)
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000040)={'ip6tnl0\x00', &(0x7f0000000740)={'syztnl1\x00', 0x0, 0x29, 0xf6, 0x3, 0x0, 0x4c, @local, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8000, 0x20, 0x2, 0x8}})

5.693230159s ago: executing program 2 (id=6425):
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000d0327408ca0768a8d4c4000000010902120001000000000904"], 0x0)
syz_usb_connect$uac1(0x4, 0xaf, &(0x7f0000000040)={{0x12, 0x1, 0x300, 0x0, 0x0, 0x0, 0x40, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x9d, 0x3, 0x1, 0x10, 0x90, 0xe, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x2, 0x4}, [@input_terminal={0xc, 0x24, 0x2, 0x4, 0x100, 0x4, 0xc6, 0x101, 0x0, 0x5}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_i_continuous={0xc, 0x24, 0x2, 0x1, 0x1a, 0x1, 0xe, 0x44, ' ', "8ad157"}, @format_type_i_discrete={0xf, 0x24, 0x2, 0x1, 0x9, 0x1, 0x6, 0x5, "1c1d5db5d657c9"}]}, {{0x9, 0x5, 0x1, 0x9, 0x40, 0x4, 0x2, 0x0, {0x7, 0x25, 0x1, 0x2, 0xf8, 0x7}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_i_continuous={0xc, 0x24, 0x2, 0x1, 0x0, 0x3, 0x81, 0x2, "7c95ee", '2'}, @format_type_i_discrete={0xb, 0x24, 0x2, 0x1, 0x93, 0x2, 0x2, 0x44, "745cd5"}]}, {{0x9, 0x5, 0x82, 0x9, 0x400, 0x7, 0x8, 0x4, {0x7, 0x25, 0x1, 0x1, 0x1, 0x8c}}}}}}}]}}, &(0x7f00000001c0)={0x0, 0xfffffffffffffffe, 0x4e, &(0x7f0000000100)={0x5, 0xf, 0x4e, 0x5, [@ssp_cap={0x24, 0x10, 0xa, 0x2, 0x6, 0x3, 0x0, 0x9, [0xff0000, 0x0, 0xf, 0xffc000, 0x0, 0xff0000]}, @ptm_cap={0x3}, @ptm_cap={0x3}, @wireless={0xb, 0x10, 0x1, 0x4, 0xcf, 0x8, 0x7, 0x1, 0x1}, @ss_container_id={0x14, 0x10, 0x4, 0xdd, "94061a46c2105b366c4e7f419b7fd704"}]}, 0x1, [{0x4, &(0x7f0000000180)=@lang_id={0x4, 0x3, 0x812}}]})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000300)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = socket(0x4dd1cf30e3f58db, 0x80000, 0x2000007)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019bc0)=""/102400, 0x19000)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x2042, 0x0)
ioctl$AUTOFS_IOC_FAIL(r2, 0x4c80, 0x7000000)
syz_usb_connect$hid(0x6, 0x36, &(0x7f0000000200)={{0x12, 0x1, 0x200, 0x0, 0x0, 0x0, 0x10, 0x17ef, 0x60b5, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x8, 0x20, 0xf6, [{{0x9, 0x4, 0x0, 0x2, 0x1, 0x3, 0x1, 0x1, 0x0, {0x9, 0x21, 0x5, 0x2, 0x1, {0x22, 0x531}}, {{{0x9, 0x5, 0x81, 0x3, 0x400, 0xd, 0x8, 0x6f}}}}}]}}]}}, &(0x7f0000000580)={0xa, &(0x7f0000000240)={0xa, 0x6, 0x200, 0x7, 0x0, 0xea, 0x8, 0xc}, 0x21, &(0x7f0000000280)={0x5, 0xf, 0x21, 0x1, [@ssp_cap={0x1c, 0x10, 0xa, 0x79, 0x4, 0x0, 0xf0f, 0x7, [0xc000, 0x1fe00cf, 0xff0000, 0x1fe3f0f]}]}, 0x4, [{0x4, &(0x7f00000002c0)=@lang_id={0x4, 0x3, 0x410}}, {0xeb, &(0x7f0000000340)=@string={0xeb, 0x3, "27977cba9f089c3426edc69c3e5db517fb39dfe2c6e6e460b1268c08032133d7a6846be19bbbb382b1bda2c07013f4e875327c7d6f6d7d31d46abcf61a3726b03943d430e4ced75146f5fa5472cca28485e09dfbba41e972a856a92550f00c5ab4b46079135de9a2badd9cf8224b02dcbe6d27392ddd5ecde58f35f8e543cb6869a857af8476eba8d9f04654c4d09bb4ff6ed1c3eb874c36d37abd546f33701144598efea2572d76f0d2b83407fd9d3d038e175755107bd12f9bee09e00b559178401588a5c8ddd9c6f308402c15b294b8eacc27fc4a4b6384c1e1875d864b77448bf66fcc0d2de2f1"}}, {0xd3, &(0x7f0000000440)=@string={0xd3, 0x3, "6e1d684b25020518f3b345edb8393237a5837de2782adeadd0714c8e38b241065b375801e8c92a3f82ccb7841fc63f961d740b499ea00bdc8bdda38c7f18d57213255fccef320747c59cdf19d2822bf7368b18e9fb97b7dd5798162d77b3c1dc1ccb064c1049c406ac213481641db735a2967a82c7b25934ba88156e07efcd14ab3c5681cc8d1059b5d8aa34493047aab084b58a3071276a8c80ccaeab0ac586eb96c08f5a1660f96131716470d8ab3293cb31cbdb85bc5c8b7690219ebcb92e57c6a6dc2ca68e14267a3eba3bb1e818f2"}}, {0x4, &(0x7f0000000540)=@lang_id={0x4, 0x3, 0x440a}}]})

5.068873791s ago: executing program 4 (id=6426):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
bind$llc(0xffffffffffffffff, &(0x7f0000000000)={0x1a, 0x309, 0xe0, 0x86, 0xf2, 0x3, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2815e47d5f27c968}}, 0xfffffffffffffcf2)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(r0, 0x402c5342, &(0x7f0000000440)={0x3f, 0x1, 'client1\x00', 0x6, "eb2ac02b036f5600", "e750b342350d893920bee6c44ca62a50798a6abc3103b729bd18bed835bb9fe6"})
r1 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$bt_hci(r1, 0x0, 0x1, 0x0, &(0x7f0000000040))
r2 = syz_io_uring_setup(0x1098, &(0x7f0000000080)={0x0, 0xbadd, 0x200, 0x2, 0x139}, &(0x7f0000000100), &(0x7f0000000140))
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000180)=""/85, 0x55}, {&(0x7f0000000200)=""/101, 0x65}, {&(0x7f0000000280)=""/207, 0xcf}, {&(0x7f0000000380)=""/58, 0x3a}, {&(0x7f00000003c0)=""/126, 0x7e}, {&(0x7f0000000500)=""/3, 0x3}, {&(0x7f0000000540)=""/92, 0x5c}], 0x7)

4.96780541s ago: executing program 4 (id=6427):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000012c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEAUTHENTICATE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="c50f00000000000000001100000008000300", @ANYRES32=0x0, @ANYBLOB="08002a008421"], 0x24}}, 0x0)

4.905400277s ago: executing program 5 (id=6428):
r0 = socket(0x23, 0x5, 0x0)
r1 = syz_io_uring_setup(0x16c2, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000240)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0) (async)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000040), &(0x7f0000000100)=0xc)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x3}}) (async)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r4, &(0x7f00000001c0)=ANY=[@ANYBLOB='.'], 0x118) (async)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r4, 0x0) (async)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_MKDIRAT={0x25, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r1, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

4.896105527s ago: executing program 4 (id=6429):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket(0x18, 0x3, 0x0)
sendmmsg$inet6(r1, &(0x7f0000000e40)=[{{0x0, 0x0, &(0x7f0000000cc0), 0x0, &(0x7f0000001080)=ANY=[], 0x118}}], 0x1, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x0)
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, 0x0, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
setsockopt(0xffffffffffffffff, 0x84, 0x81, &(0x7f0000000280)="1a00000002", 0x5)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
r3 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
write$UHID_INPUT(r3, &(0x7f0000001040)={0x200f, {"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", 0x1000}}, 0x1006)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
r5 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'lo\x00', <r7=>0x0})
sendmsg$nl_route(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=@ipv6_newaddr={0x34, 0x14, 0x1, 0x0, 0x0, {0xa, 0x0, 0xa1, 0x0, r7}, [@IFA_ADDRESS={0x14, 0x1, @mcast1={0xff, 0x5}}, @IFA_FLAGS={0x8, 0x8, 0x402}]}, 0x34}}, 0x0)
modify_ldt$write(0x1, &(0x7f00000004c0)={0x7, 0x1000, 0x400, 0x1, 0x2, 0x0, 0x0, 0x0, 0x1, 0x1}, 0x10)
r8 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3400000015"], 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x4000080)

4.814793587s ago: executing program 0 (id=6430):
socket(0x10, 0x3, 0x0)
r0 = socket(0x18, 0x3, 0x0)
connect$pppoe(r0, &(0x7f0000000100)={0x18, 0x0, {0x2, @random="d4ce3000fc45", 'macsec0\x00'}}, 0x1e)
sendmmsg$inet6(r0, &(0x7f0000000e40)=[{{0x0, 0x0, &(0x7f0000000cc0), 0x0, &(0x7f0000001080)=ANY=[], 0x118}}], 0x1, 0x0)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, 0x0, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
setsockopt(0xffffffffffffffff, 0x84, 0x81, &(0x7f0000000280)="1a00000002", 0x5)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
r2 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
write$UHID_INPUT(r2, &(0x7f0000001040)={0x200f, {"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", 0x1000}}, 0x1006)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'lo\x00', <r6=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=@ipv6_newaddr={0x34, 0x14, 0x1, 0x0, 0x0, {0xa, 0x0, 0xa1, 0x0, r6}, [@IFA_ADDRESS={0x14, 0x1, @mcast1={0xff, 0x5}}, @IFA_FLAGS={0x8, 0x8, 0x402}]}, 0x34}}, 0x0)
modify_ldt$write(0x1, &(0x7f00000004c0)={0x7, 0x1000, 0x400, 0x1, 0x2, 0x0, 0x0, 0x0, 0x1, 0x1}, 0x10)
r7 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3400000015"], 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x4000080)

4.345346272s ago: executing program 5 (id=6431):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x800, 0x0, &(0x7f00000000c0))
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x3, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1})
ioctl$vim2m_VIDIOC_QBUF(r0, 0xc058560f, &(0x7f0000000180)=@multiplanar_mmap={0x0, 0x2, 0x4, 0x0, 0x0, {0x77359400}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'y)\x00'}, 0x0, 0x1, {0x0}, 0xea})
ioctl$vim2m_VIDIOC_STREAMOFF(r0, 0x40045612, &(0x7f0000000080)=0x2)
ppoll(&(0x7f0000000200)=[{r0, 0x410a}], 0x1, &(0x7f0000000280)={0x0, 0x3938700}, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000d, 0x4008031, 0xffffffffffffffff, 0x52ad4000)
r1 = accept4(0xffffffffffffffff, &(0x7f0000000100)=@xdp, &(0x7f0000000040)=0x80, 0x0)
bind$inet(r1, &(0x7f0000000240)={0x2, 0x4e24, @multicast2}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x9)
unshare(0x68040200)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r2 = socket(0x27, 0x3, 0x1)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r2, 0x29, 0x41, &(0x7f0000000440)={'mangle\x00', 0x2, [{}, {}]}, 0x48)
bind$alg(0xffffffffffffffff, 0x0, 0x0)

3.815984506s ago: executing program 4 (id=6432):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000d, 0x4008031, 0xffffffffffffffff, 0x52ad4000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x9)
bind$alg(0xffffffffffffffff, 0x0, 0x3f)

3.757998757s ago: executing program 3 (id=6433):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000680), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
r3 = syz_open_dev$sndctrl(0x0, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r3, 0xc1105511, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = socket(0x10, 0x803, 0x0)
r7 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r7)
ptrace$setregs(0x1a, r7, 0x2, &(0x7f0000000000))
ioctl$sock_SIOCETHTOOL(r6, 0x8946, 0x0)
pipe(&(0x7f0000000080)={<r8=>0xffffffffffffffff})
r9 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
ioctl$FS_IOC_FSGETXATTR(r8, 0x801c581f, &(0x7f0000000600)={0xfffffffb, 0x9, 0x0, 0x6, 0x7})
write$sequencer(r9, &(0x7f00000000c0), 0x0)
close(r8)
r10 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)={0x40, r1, 0x4, 0x0, 0x25dfdbfc, {}, [@L2TP_ATTR_PROTO_VERSION={0x5, 0x7, 0x42}, @L2TP_ATTR_UDP_ZERO_CSUM6_RX={0x5}, @L2TP_ATTR_RECV_TIMEOUT={0xc, 0x16, 0x3}, @L2TP_ATTR_FD={0x8, 0x17, @udp6=r10}, @L2TP_ATTR_MRU={0x6, 0x1d, 0x100}]}, 0x40}}, 0x4)

3.733433637s ago: executing program 0 (id=6434):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_REQ_SET_REG(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000740)=ANY=[], 0x10c}, 0x1, 0x0, 0x0, 0x41}, 0x4000001)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000180), 0xfefc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000004, 0x10012, r1, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x89f0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, r1, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002580)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="140000002500010000000000f100000006"], 0x14}], 0x1, 0x0, 0x0, 0x400048c0}, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f00000005c0)={&(0x7f0000007000/0x2000)=nil, &(0x7f0000000000/0xe000)=nil, &(0x7f000000a000/0x2000)=nil, &(0x7f0000008000/0x2000)=nil, &(0x7f0000002000/0x3000)=nil, &(0x7f0000008000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f000000f000/0x3000)=nil, &(0x7f0000000000/0x2000)=nil, &(0x7f0000008000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, 0x0, 0x0, r0}, 0x68)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$igmp6(0xa, 0x3, 0x2)
sendmmsg$inet6(r5, &(0x7f00000066c0)=[{{&(0x7f00000019c0)={0xa, 0x0, 0xffffffff, @mcast1, 0x4}, 0x1c, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYRESHEX=r3], 0x70}}], 0x1, 0x0)
r6 = socket$pptp(0x18, 0x1, 0x2)
getsockopt$sock_cred(r6, 0x1, 0x1c, 0x0, &(0x7f00000000c0))
r7 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_int(r7, 0x6, 0x19, &(0x7f00000001c0)=0x1, 0x4)
bind$inet(r7, &(0x7f0000000200)={0x2, 0x4e24, @multicast2}, 0x10)
sendmmsg$inet(r4, &(0x7f0000004980)=[{{&(0x7f0000000100)={0x2, 0x4e24, @remote}, 0x10, &(0x7f0000000140)=[{&(0x7f0000000700)="3d0eef4eaaff81a634ef", 0xa}], 0x1}}], 0xe, 0x2000c000)
setsockopt$inet_tcp_TLS_TX(r7, 0x6, 0xc, &(0x7f0000000180)=@gcm_128={{0x304}, "b1119702dec0b3fc", "ffe70000de00c8d07868000000000014", "70d2e318", "bcba4b0000940c36"}, 0x28)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={0x1, <r8=>0xffffffffffffffff}, 0x4)
r9 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000003c0)={'ip_vti0\x00', &(0x7f0000000480)={'tunl0\x00', <r10=>0x0, 0x1, 0x80, 0x9, 0x80, {{0x9, 0x4, 0x1, 0x25, 0x24, 0x66, 0x0, 0x2, 0x29, 0x0, @local, @loopback, {[@timestamp={0x44, 0x10, 0xd2, 0x0, 0x9, [0xfffffff9, 0x80, 0x2]}]}}}}})
r11 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000380), 0x4)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000580)={0x7, <r12=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x19, 0x22, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000ffff0000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000b7080000000000007b8af8ff00000000b7080000080000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r8, @ANYBLOB="5c9700002f000000b7000085000000a500000018130020", @ANYRES32=r9, @ANYBLOB="0000000000000000b703000000000000850000000c000000b7000000000000009500000000000000bf91000000000000b7020000010000008500000001000000b7000000000000009500000000000000"], &(0x7f0000000100)='syzkaller\x00', 0x7db8, 0x6c, &(0x7f0000000400)=""/108, 0x40f00, 0x0, '\x00', r10, @fallback=0xd763369469757d59, r11, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000540)={0x5, 0xe, 0x2, 0xa0a5}, 0x10, r12, 0xffffffffffffffff, 0x0, 0x0, &(0x7f00000005c0), 0x10, 0x26, @void, @value}, 0x94)
syz_emit_ethernet(0x8e, &(0x7f0000000800)=ANY=[@ANYBLOB="ffffffffffffbbbbbbbbbbbb88a80c008100490008004500007800000000000190780a010102ac1414aa05009078010000004700000000000000001100000a010101ac1e0001440c0101ac1414bb4e211000443c0001e000000100000000ffffffff00000000ac1414000000000000000000000000060000000000000000ac1e000100000000ac14140000000000"], 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000012c0), 0xffffffffffffffff)
connect$netlink(r4, &(0x7f0000000000), 0xc)

2.830486861s ago: executing program 0 (id=6435):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
close(r0)
r1 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/96, 0x128000, 0x800}, 0x20)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$XDP_UMEM_COMPLETION_RING(r1, 0x11b, 0x6, &(0x7f0000000140)=0x20, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000001c0)={'batadv_slave_1\x00', <r3=>0x0})
setsockopt$XDP_TX_RING(r1, 0x11b, 0x3, &(0x7f00000003c0)=0x40, 0x4)
setsockopt$XDP_UMEM_FILL_RING(r1, 0x11b, 0x5, &(0x7f0000000100)=0x20, 0x4)
bind$xdp(r1, &(0x7f00000002c0)={0x2c, 0x8, r3}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, 0x0, 0x0) (fail_nth: 3)

2.827958748s ago: executing program 3 (id=6436):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000001800010027bd7000fcdbdf251d01020015000100", @ANYRES32, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x64}, 0x1, 0x0, 0x0, 0x88}, 0x80)

2.704422709s ago: executing program 2 (id=6437):
fsopen(&(0x7f0000000000)='gadgetfs\x00', 0x1)
mremap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1000, 0x0, &(0x7f00008b5000/0x1000)=nil)
creat(0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
r0 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$inet_int(r0, 0x0, 0xf, 0x0, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x1}, 0x1c)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @local, 0x1}], 0x1c)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_REM(r0, 0x84, 0x65, &(0x7f0000000180)=[@in6={0xa, 0x0, 0x0, @local}], 0x1c)
clock_gettime(0x6, &(0x7f00000000c0))
writev(0xffffffffffffffff, &(0x7f0000000100)=[{0x0}], 0x1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x31, 0xffffffffffffffff, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94)
r2 = syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x800)
r3 = syz_open_dev$amidi(&(0x7f0000000480), 0x2, 0x0)
r4 = dup(r3)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000140)='.\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}})
read$alg(r2, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000140)='contention_end\x00', r1}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x15)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5004, 0x0, 0x200000005c831, 0xffffffffffffffff, 0x0)
r6 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r6, 0x0, 0x40, &(0x7f0000000580)=@raw={'raw\x00', 0x8, 0x3, 0x4d0, 0x0, 0x25, 0x148, 0x340, 0x60, 0x438, 0x2a8, 0x2a8, 0x438, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'geneve0\x00', {0x44, 0x0, 0x9, 0x0, 0x0, 0xffffffff, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x6, 'syz0\x00'}}}, {{@ip={@broadcast, @multicast1, 0x0, 0x0, 'veth1_to_bond\x00', 'veth0\x00', {0xff}}, 0x0, 0xd0, 0xf8, 0x0, {}, [@common=@unspec=@cgroup0={{0x28}, {0x4}}, @common=@unspec=@statistic={{0x38}}]}, @common=@unspec=@MARK={0x28, 'MARK\x00', 0x2, {0x9, 0x8001}}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x530)

2.703683554s ago: executing program 3 (id=6438):
sendmsg(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0xffffffffffffff18, &(0x7f0000000100)=[{&(0x7f0000000000)="2f0000001c0005c5ffffff000d000000020000000b000000ec0091c913000180f0ffffeb", 0x1dd}], 0x1}, 0x0)
request_key(&(0x7f00000001c0)='user\x00', &(0x7f0000000140)={'syz', 0x2}, &(0x7f0000000380)='\xab\x00\x1a\x9c\x0fv\x99\xd8PYcK\xb7\xe6!t\xa9\xcf\x8d\xbf\x1e\x9ea#\x94\x89\x81L\xd5a\xc1\x96X\\\xac\xfc\xed\x11 \xa9\xf8t\xef\x0eT\x82:6\x16xEw\x85\xbd\r\rt\xc6Jk\x04\xa8f\xde0\xbc\xbe^3\xce\xd1\x7f\xfaH\xdbQ\xea\xbd\xf5D\xf5', 0xfffffffffffffffe)
add_key$user(&(0x7f0000000480), &(0x7f0000000000)={'syz', 0x2}, &(0x7f0000000240)="94", 0x1, 0xfffffffffffffffe)
r0 = socket(0x10, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000140)=[{0x3, 0x0, &(0x7f0000000100), 0x6, &(0x7f0000000100)}], 0x492492492492856, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x84042, 0x0)
r3 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r3, &(0x7f0000000000)={0x18, 0x0, {0x3, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x31}, 'macvlan1\x00'}}, 0x1e)
sendmmsg(r3, &(0x7f0000001340)=[{{0x0, 0x0, 0x0}}], 0x1, 0x24048084)
fcntl$dupfd(r1, 0x406, r2)
syz_io_uring_setup(0xd3, &(0x7f0000000480)={0x0, 0x0, 0x100}, &(0x7f0000000040)=<r4=>0x0, &(0x7f0000000080)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f00000000c0)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f0000000200)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
syz_init_net_socket$ax25(0x3, 0x3, 0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xc, 0x8031, 0xffffffffffffffff, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="4000000010000305000000007effffff00cf0000", @ANYRES32=0x0, @ANYBLOB="03000000000000002000128008000100677265001400028008000600ac14142408000700e000030a"], 0x40}}, 0x0)
acct(0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r7 = getpid()
sched_setscheduler(r7, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x2aa, &(0x7f00000007c0)={@local, @empty, @val={@void, {0x8100, 0x2, 0x1, 0x1}}, {@ipv6={0x86dd, @udp={0x9, 0x6, "ef800d", 0x270, 0x11, 0x1, @dev={0xfe, 0x80, '\x00', 0x2e}, @private2={0xfc, 0x2, '\x00', 0x1}, {[@hopopts, @dstopts={0x3c, 0x1, '\x00', [@jumbo={0xc2, 0x4, 0x3}, @ra={0x5, 0x2, 0xcb71}, @ra={0x5, 0x2, 0x7fff}]}, @dstopts={0x4, 0x28, '\x00', [@ra={0x5, 0x2, 0x3}, @padn={0x1, 0xa, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @jumbo={0xc2, 0x4, 0xd}, @generic={0x8, 0x44, "e7c03599d9a653eee229a2070347adeddaa71c158d75fe5dde722b2432e3f7679a304836c25e1e0a12f55c8241536eb4f8376f665042d1574dc00e537454c331b559879d"}, @ra={0x5, 0x2, 0x6}, @jumbo={0xc2, 0x4, 0x4}, @generic={0x3, 0xba, "af4fed0e8d0d6cb84e2a2e3cd479c711e00dd7d4a8127af59c23912305e980b2157882877ee0bbaa46416c9d2ff79ae251a6feef500b16c00bed8ebf066957520fa92371ecb56a3737b6301a8d8f2616b0c6ffc65de5a8aef6fdad242dcbd57788cc6ad460d8f2a53dec77d84edacdc89c35da33c24504e910a147419bbc15177b35ab76e68cbc76189aa096c0d5a80d09d3811109fe2f30d114e39fdf92f92073f7b5fe596191dce8f20135c6ea7bbfd23db50bbfe0df999d99"}, @enc_lim, @jumbo={0xc2, 0x4, 0x4}, @pad1, @hao={0xc9, 0x10, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @ra={0x5, 0x2, 0x8}]}, @srh={0x0, 0x2, 0x4, 0x1, 0xc, 0x18, 0x6, [@mcast2]}, @srh={0x32, 0x6, 0x4, 0x3, 0x4, 0x20, 0xd1a5, [@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @ipv4={'\x00', '\xff\xff', @broadcast}, @local]}, @srh={0x5e, 0x4, 0x4, 0x2, 0x14, 0x18, 0x5, [@local, @dev={0xfe, 0x80, '\x00', 0x1d}]}, @srh={0x62, 0xc, 0x4, 0x6, 0x3, 0x58, 0x8001, [@private2={0xfc, 0x2, '\x00', 0x1}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private0={0xfc, 0x0, '\x00', 0x1}, @dev={0xfe, 0x80, '\x00', 0x41}]}], {0x4e23, 0x4e23, 0x20, 0x0, @gue={{0x2, 0x0, 0x1, 0xb, 0x100}, "507e63f5c7c7e764db89a93a0796c627"}}}}}}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
connect$unix(r8, &(0x7f000057eff8)=@file={0x0, './file0/file0\x00'}, 0x6e)
sendmmsg$unix(r9, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r8, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f00000003c0)='Z\x92\x93l%\x86\xce6\xdb\f\xcf\x19|\x89O\x7f\xce\x8f\x7f\x1c\xeay\x06\x00\x00\x00\a0\t\x00\x00\x00r\xd7^\xe82\x0f\x1a\xf1\x02\x00\x1e&\xcc|,\xb3=\xa7\x18\x1fma{\xee2\x95I\xca\xbev2y\x8el\x1fS\xd4&Q n)I\xcb\xcd\xb7\xd8\xdf\xe3\x94\xed\xa0,\x8fg\x1a\x11m\xcf\xdcI\xdd\x9d\xae~K\x8d^\x1f\x88p\xbd\xb5\xdc\xbfI\x16\x01\xa3f\x15\xefW\x8b=I\x8a\xd3\xed!\x1e\xd2 \xa7\x9e\'\x91{E|2\xd2?.\xed\xd1*~\xa6\xe1\x88\x03\x1d\xe2\xce@\xbc\xcd\x13X)f\xc7\x116f\x1d\xa3G\xce\x17p\xd7\xd2\xa0\x1a\x0f9N\xc1\xa1\xec\x9b)=\x86\rt\x96\xa6J\xca`%e._\xf3\xe7\x83\xe1\xed\x9d\xd4q\xde\xce\xde\xfa*{\x02\xa8w\xe3\xa5\x81\xda^H_n)\xcc\xb4\xa7\xb5{vH\xc1\xee\xa2/\x98h\xf5|\x89\x8f\x06R\xdc\x05\x9e\xed\xf5\xa0*\xe4J\xefb\x99\xb8Tc\xf1\xc5\xb7P\xc9\xdd\x8dG\xb0\xbf\xd2\x96\xa1\xb2\xd6)D<')

2.578210007s ago: executing program 0 (id=6439):
r0 = userfaultfd(0x801) (async)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0) (async)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0xf0ffffff)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000600)) (async, rerun: 64)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4}) (rerun: 64)
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000000)={&(0x7f0000800000/0x800000)=nil, &(0x7f00002b3000/0x2000)=nil, 0x800000}) (async)
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r1, 0x8008ae9d, &(0x7f0000000000)=""/241) (async, rerun: 32)
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (rerun: 32)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r3=>0x0})
ioctl$IOMMU_IOAS_IOVA_RANGES(r2, 0x3b84, &(0x7f0000000040)={0x20, r3, 0x0, 0x0, &(0x7f0000000140)}) (async)
ioctl$IOMMU_IOAS_MAP(r2, 0x3b85, &(0x7f0000000200)={0x28, 0x7, r3, 0x0, &(0x7f0000000240)='LLLLLLLLLLLLLLLLLLLLLLLLLLLL', 0x1c, 0x1c}) (async, rerun: 64)
ioctl$IOMMU_IOAS_UNMAP$ALL(r2, 0x3b86, &(0x7f0000000280)={0x18, r3}) (async, rerun: 64)
ioctl$IOMMU_IOAS_MAP(r2, 0x3b85, &(0x7f00000002c0)={0x28, 0x7, r3, 0x0, &(0x7f0000000300)='LLLLLLLLLLLLLLLLLLLLLLLLLLL', 0x1b, 0x2}) (async)
ioctl$IOMMU_IOAS_UNMAP(r2, 0x3b86, &(0x7f0000000340)={0x18, r3, 0x2, 0x1c}) (async, rerun: 64)
ioctl$IOMMU_IOAS_MAP$PAGES(r2, 0x3b85, &(0x7f0000000380)={0x28, 0x7, r3, 0x0, &(0x7f0000ffc000/0x1000)=nil, 0x1000}) (async, rerun: 64)
ioctl$IOMMU_IOAS_UNMAP$ALL(r2, 0x3b86, &(0x7f00000003c0)={0x18, r3})
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000400)={0xc, 0x0, <r4=>0x0}) (async)
ioctl$IOMMU_IOAS_MAP(r2, 0x3b85, &(0x7f0000000440)={0x28, 0x7, r3, 0x0, &(0x7f0000000480)='LLLLLLLLLLLLLLLLLLLLL', 0x15, 0x2})
ioctl$IOMMU_IOAS_COPY(r2, 0x3b83, &(0x7f00000004c0)={0x28, 0x7, r4, r3, 0x1c, 0x3, 0x2})
ioctl$IOMMU_DESTROY$ioas(r2, 0x3b80, &(0x7f0000000540)={0x8, r4}) (async)
ioctl$IOMMU_IOAS_UNMAP$ALL(r2, 0x3b86, &(0x7f0000000580)={0x18, r3}) (async)
ioctl$IOMMU_OPTION$IOMMU_OPTION_RLIMIT_MODE(r2, 0x3b87, &(0x7f0000000000)={0x18, 0x0, 0x1})
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(r2, 0x3b87, &(0x7f0000000600)={0x18, 0x1, 0x1, 0x0, r3})
ioctl$IOMMU_IOAS_ALLOW_IOVAS(r2, 0x3b82, &(0x7f0000000640)={0x20, r3, 0x0, 0x0, &(0x7f0000000680)}) (async)
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r2, 0x3ba0, &(0x7f00000006c0)={0x48, 0x1, r3, 0x0, 0x1000, 0x2000}) (async)
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r2, 0x3ba0, &(0x7f0000000740)={0x48, 0x2, r3, 0x0, <r5=>0x0})
ioctl$IOMMU_TEST_OP_MD_CHECK_MAP(r2, 0x3ba0, 0x0)
ioctl$IOMMU_TEST_OP_MD_CHECK_REFS(r2, 0x3ba0, &(0x7f0000000880)={0x48, 0x4, 0x0, 0x0, 0x1000, &(0x7f0000ffc000), 0x1})
syz_usb_connect(0x2, 0x2d, &(0x7f0000000140)=ANY=[@ANYRESDEC=r5, @ANYRESHEX=r0], 0x0)

2.475133124s ago: executing program 2 (id=6440):
ioctl$DRM_IOCTL_SET_VERSION(0xffffffffffffffff, 0xc0106407, &(0x7f00000000c0)={0x1, 0x2, 0x1, 0x8})
socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x2, 0x1c, &(0x7f0000000040)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3, 0x9, 0x0, 0x1, 0x98}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x3, 0x6, 0xa, 0xa, 0xfff8, 0xf1}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {0x7, 0x0, 0x0, 0x9}, {0x7, 0x0, 0xc}, {0x18, 0x9, 0x2, 0x0, r3}, {}, {0x46, 0x8, 0xfff1, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = gettid()
sched_setscheduler(r5, 0x0, &(0x7f0000000000)=0x7)
ioctl$DRM_IOCTL_GET_UNIQUE(0xffffffffffffffff, 0xc0106401, 0x0)
r6 = syz_open_dev$dri(&(0x7f0000000280), 0x1, 0xe02)
ioctl$DRM_IOCTL_MODE_GETPROPBLOB(r6, 0xc01064ac, &(0x7f0000000040)={0x0, 0x0, 0x0})
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x400, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x200)
ioctl$KVM_GET_MSRS(r9, 0xc008ae88, 0x0)

2.393308529s ago: executing program 4 (id=6441):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000400))
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000400)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000280), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_SET(r4, &(0x7f0000000b00)={0x0, 0x0, 0x0}, 0x0)
fadvise64(0xffffffffffffffff, 0x18, 0x8800, 0x4)
r5 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000100)={r5, 0x0, 0x0}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r6 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r6, &(0x7f0000000000)={0x15, 0x110, 0xfa08, {0xffffffffffffffff, 0x0, 0x10, 0x10, 0x0, @in={0x2, 0x0, @empty}, @in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x1c}}}}, 0x118)
socket$kcm(0x29, 0x5, 0x0)
r7 = syz_open_procfs(0x0, &(0x7f0000000180)='net/kcm\x00')
preadv(r7, &(0x7f00000014c0)=[{&(0x7f0000000280)=""/191, 0xbf}], 0x1, 0x182, 0x0)

2.392939333s ago: executing program 0 (id=6442):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket(0x18, 0x3, 0x0)
sendmmsg$inet6(r1, &(0x7f0000000e40)=[{{0x0, 0x0, &(0x7f0000000cc0), 0x0, &(0x7f0000001080)=ANY=[], 0x118}}], 0x1, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x0)
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, 0x0, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
setsockopt(0xffffffffffffffff, 0x84, 0x81, &(0x7f0000000280)="1a00000002", 0x5)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
r3 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
write$UHID_INPUT(r3, &(0x7f0000001040)={0x200f, {"1ae30a30ed0d09f91b5e070987f70e06d038e7ff7fc6e5539b0d3e0e8b089b3f363063030890e0879b0af8c6e70a9b334a959b669a240d0a0af3988f7ef319520100ffe8d178708c526db51b1b5b31070d0773090acd3b78130daa61d8e8040001000000b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae19300305d3f46635eb016d5b18e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f6709000000a141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce7cd9f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a027d5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d4ac01b75d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4350aeae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf050000008000000000f104b96210403b2de9efed496f42355bc7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7af1d0e54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c01008e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2f5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40427db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e1a63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afa2d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02daee67918e5d6787463183b4b87c1050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e09d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7340002000000000000f288a4510de03dab19d26285eda89100000dd385a603336c00000077cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4108b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046ca5b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb784ed7148b6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b8081c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe6531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e6586df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59555e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0d8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c6b00000000000000f96f06817fb903729a7db6ff957697c9ede7885d94ffb0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb601203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f9000", 0x1000}}, 0x1006)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
r5 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'lo\x00', <r7=>0x0})
sendmsg$nl_route(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=@ipv6_newaddr={0x34, 0x14, 0x1, 0x0, 0x0, {0xa, 0x0, 0xa1, 0x0, r7}, [@IFA_ADDRESS={0x14, 0x1, @mcast1={0xff, 0x5}}, @IFA_FLAGS={0x8, 0x8, 0x402}]}, 0x34}}, 0x0)
modify_ldt$write(0x1, &(0x7f00000004c0)={0x7, 0x1000, 0x400, 0x1, 0x2, 0x0, 0x0, 0x0, 0x1, 0x1}, 0x10)
r8 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3400000015"], 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x4000080)

195.807345ms ago: executing program 2 (id=6443):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000040)={0x84, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e23, 0x3, 'dh\x00', 0x1, 0x7, 0x49}, 0x2c)
setsockopt$IP_VS_SO_SET_ADDDEST(r0, 0x0, 0x487, &(0x7f0000000000)={{0x84, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e21, 0x3, 'wrr\x00', 0x4, 0x81, 0x5}, {@rand_addr=0xac1414aa, 0x4e23, 0x3, 0x1cb, 0x12d5c, 0x12d5c}}, 0x44)

157.764629ms ago: executing program 4 (id=6444):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x181040, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6(0xa, 0x0, 0xffffffff)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
r0 = socket$kcm(0x10, 0x400000002, 0x0)
memfd_secret(0x0)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r1, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000003380))
r2 = eventfd2(0x2, 0x800)
ioctl$VHOST_SET_VRING_ERR(r1, 0x4008af22, &(0x7f00000001c0)={0x0, r2})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000240)={0x0, 0x0, 0x0, &(0x7f0000001d00)=""/176, 0x0})
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000000)={0x0, r2})
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f00000000c0)=0x1)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r1, 0x4008af60, &(0x7f0000000140)={@my=0x1})
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=""/4096})
connect$vsock_stream(r3, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
sendmsg$kcm(r0, &(0x7f0000000280)={&(0x7f0000000000)=@qipcrtr={0x2a, 0x1, 0x8000}, 0x80, &(0x7f0000000200)=[{&(0x7f0000000080)="5f5e4d04a70767f2ca4a71f610ba626b757ee6a1fbbf48046c31faa38f3894317b5b43459e144d5af2586f5115a1f91c8c68f3b0f3ac3b70d7c16e1077b40482c37d19f950fab251d2f886598579d4f1bca0e63b7c5f0aa2d6251cc4f3f732e24e330f9322e4f1ea61a0389b5661834ce89af781205b5c83f26ff947cc86847f510e9805483fadb590ed737c5cd3f75be3143dc4ab40ed6e4baa49542ff916808beb6e04a65afca2d13512e6c8f7ba4daa5108eb6dc26b06ca8ece257fb17895", 0xc0}, {&(0x7f0000000400)="425f889c4686e26143f67112df9d9cb7a7389763979a219f0b72b04211d7811630ef9f3830158bd2b691ca1d85772b8a1eb0f504bd390bfa58f41b77a40fd9ff01116b310ea4210d16b8aa9e9fcf9368f478dc73e71905edec74e42775f249407acb4e200093df7baa1f6a0b95ab988fa44d8a87399c73cd9ade339edd47f40b059353ee046a626c1f1f0b88148c19af3fc0b0d79bef29ca8cdec9ae", 0x9c}], 0xfffffffffffffad}, 0x20004000)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0xfffffdca, &(0x7f0000000200)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)

121.411358ms ago: executing program 0 (id=6445):
r0 = syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x54c, 0xba0, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0xb9, 0x1, 0x3, 0x0, 0x1, 0x0, {0x9, 0x21, 0x0, 0x4, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) (async)
syz_usb_connect$printer(0x5, 0x2d, &(0x7f0000000000)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0x20, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x1, 0x3, 0x10, 0x1, [{{0x9, 0x4, 0x0, 0x3, 0x2, 0x7, 0x1, 0x1, 0x1, "", {{{0x9, 0x5, 0x1, 0x2, 0x3ff, 0x0, 0x5, 0x1}}}}}]}}]}}, &(0x7f0000000500)={0xa, &(0x7f0000000080)={0xa, 0x6, 0x300, 0x8, 0x81, 0xe, 0x8, 0x8}, 0x5, &(0x7f0000000100)={0x5, 0xf, 0x5}, 0x8, [{0xb6, &(0x7f0000000140)=@string={0xb6, 0x3, "5c75f7bc20a83258d34e5358fcabff112cdf62c2c38481f4a64c4ce34adbb13a52816d0c3e76c7541fcf6593eddadb21caa86549ffd2136332555ff03b2d8e0c6e68101f1327eedc14cfd0885fe96216b353be740c68523c1da17e67070081010365ceb7568753731b3dea8274f46c53e2e3b668ec026e223dd299b73547318e43bf34f29755cfb417a4d2bce4804662ec259c1830115b2d6ba7bd0058cac80c847a77f7068d8563a470c9320c4fbb36fddc308d"}}, {0x4, &(0x7f0000000240)=@lang_id={0x4, 0x3, 0xc32}}, {0x3c, &(0x7f0000000280)=@string={0x3c, 0x3, "0e0873df05249fdc8d517f5f258aebd1798fd101e9f6aa6dfd571bb7a5fb952e7e8f1d3109943ad10b3e6bd442f28287736e59cacf27d85a1e08"}}, {0x4, &(0x7f00000002c0)=@lang_id={0x4, 0x3, 0x446}}, {0x4, &(0x7f0000000300)=@lang_id={0x4, 0x3, 0x408}}, {0x86, &(0x7f0000000340)=@string={0x86, 0x3, "9a9efeef5ae66ee9c045db776d5657e323681eb154541046c8a17c72235945d9e145309172b9eecb56e66ebc7a424414ee726d8536e7bc98730d54b984a1937ffa086533b8c0ca998f8a0f58c0a686250d2b66e2e67914392c1a4b57323b50cfa9d785a7531b2248759d9d1ca759d5883fcaf1f70e2fb3c18a0f05e9482299fb5dfff307"}}, {0x4, &(0x7f0000000400)=@lang_id={0x4, 0x3, 0x40a}}, {0x97, &(0x7f0000000440)=@string={0x97, 0x3, "1fadfb3b3efb1ad733ce06fd66af3b1c5d13d48a8a164601128cd877411751654e3d3b0ed75398107b4845eda8b29e59f8e9105da5156c14427654c5fa8c02f6027c9b62b646660fb3cbbca9b2e34255c3485f0a3694fb676e220fe05467f4880df498de36621f2661117ed753ac25cdba8e7cfae03aed2b0b298aed30a82c49954ea7e76ee053e403e263f92a960aba7a661fca64"}}]})
r1 = socket$alg(0x26, 0x5, 0x0)
r2 = accept4(r1, 0x0, 0x0, 0x0)
sendmmsg$alg(r2, &(0x7f0000000640)=[{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000400)="b57523cb1a2c90d8acad2e2d98dfc9ea7a5843c3b63b683ced253266175599b77961", 0x22}, {&(0x7f00000001c0)='f', 0x1}], 0x2, 0x0, 0x0, 0x48000}], 0x1, 0x0)
syz_usb_control_io(r0, 0x0, 0x0) (async)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) (async)
syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f00000000c0)={0x0, 0x22, 0x5, {[@main=@item_4={0x3, 0x0, 0xb, "cb8e7e34"}]}}, 0x0}, 0x0)
setsockopt$inet6_IPV6_ADDRFORM(r2, 0x29, 0x1, &(0x7f0000000580), 0x4)

29.038026ms ago: executing program 5 (id=6446):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24, 0x24, 0x1}, 0x24}}, 0x0)
getsockname$packet(r1, &(0x7f0000000200)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
clock_settime(0x0, &(0x7f0000000180)={0x77359400})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000014c0)=@newtfilter={0x3c, 0x2c, 0xd29, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {0xa, 0xfff3}, {}, {0xc}}, [@filter_kind_options=@f_basic={{0xa}, {0xc, 0x2, [@TCA_BASIC_CLASSID={0x8, 0x1, {0x4, 0x1}}]}}]}, 0x3c}}, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0)
bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000740)={r0, 0x0, 0x0}, 0x10)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='net_prio.prioidx\x00', 0x275a, 0x0)
r5 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
dup2(r5, r4)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x200000b, 0x12, r4, 0x0)
r6 = open(&(0x7f00000001c0)='./file0\x00', 0x80, 0x0)
r7 = socket$alg(0x26, 0x5, 0x0)
r8 = dup(r7)
bind$inet(r8, &(0x7f0000000000)={0x2, 0x4e20, @multicast1}, 0x4e)
r9 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000540), 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x1b, &(0x7f0000000840)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xea2}, {{0x18, 0x1, 0x1, 0x0, r8}}, {}, [@printk={@x, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1}}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @cb_func={0x18, 0x5, 0x4, 0x0, 0x1}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x9a, &(0x7f0000000600)=""/154, 0x41000, 0x20, '\x00', 0x0, 0x25, r6, 0x8, &(0x7f00000003c0)={0xa, 0x1}, 0x8, 0x10, &(0x7f00000004c0)={0x4, 0xe, 0x2306, 0x9}, 0x10, 0x0, 0x0, 0x1, &(0x7f0000000580)=[r8, r9], &(0x7f00000006c0)=[{0x1, 0x2, 0x8, 0x3}], 0x10, 0x9, @void, @value}, 0x94)

0s ago: executing program 2 (id=6447):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_linger(r3, 0x1, 0x3c, &(0x7f0000000100)={0x200000000000001}, 0x8)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0xfffd, 0x0, @dev, 0x1}, 0x1c)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$inet6(r3, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000)
setsockopt$inet6_IPV6_RTHDR(r3, 0x29, 0x39, 0x0, 0x0)

kernel console output (not intermixed with test programs):

000003e syscall=231 compat=0 ip=0x7f832338d169 code=0x0
[ 1826.531875][T27401] netlink: 'syz.4.5906': attribute type 1 has an invalid length.
[ 1826.545212][T27401] netlink: 224 bytes leftover after parsing attributes in process `syz.4.5906'.
[ 1826.589606][T27402] 9pnet_fd: Insufficient options for proto=fd
[ 1826.626629][T27404] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5910'.
[ 1826.647782][T27404] netlink: 24 bytes leftover after parsing attributes in process `syz.3.5910'.
[ 1826.685991][T27404] gtp0: entered promiscuous mode
[ 1826.709073][T27404] gtp0: entered allmulticast mode
[ 1826.843650][ T5868] usb 3-1: new high-speed USB device number 42 using dummy_hcd
[ 1827.689693][ T5868] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1827.700082][ T5868] usb 3-1: config 1 interface 0 altsetting 3 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[ 1827.713132][ T5868] usb 3-1: config 1 interface 0 has no altsetting 0
[ 1827.739690][ T5868] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1827.765133][ T5868] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1827.773327][T27420] overlayfs: failed to resolve './file1': -2
[ 1827.791154][ T5868] usb 3-1: Product: syz
[ 1827.795356][ T5868] usb 3-1: Manufacturer: syz
[ 1827.800367][ T5868] usb 3-1: SerialNumber: syz
[ 1827.810641][T27422] xt_hashlimit: size too large, truncated to 1048576
[ 1827.872482][T27429] ALSA: seq fatal error: cannot create timer (-22)
[ 1827.885416][T27429] SELinux: syz.0.5917 (27429) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[ 1829.365154][T27424] ceph: No mds server is up or the cluster is laggy
[ 1829.374276][ T5871] libceph: mon0 (1)[c::]:6789 socket closed (con state V1_BANNER)
[ 1829.382230][T14501] Bluetooth: hci0: command 0x0405 tx timeout
[ 1829.985562][ T5868] usb 3-1: bad CDC descriptors
[ 1830.014984][ T5868] usb 3-1: USB disconnect, device number 42
[ 1830.506745][T27459] netlink: 28 bytes leftover after parsing attributes in process `syz.5.5927'.
[ 1830.835252][   T47] libceph: connect (1)[c::]:6789 error -101
[ 1830.854320][   T47] libceph: mon0 (1)[c::]:6789 connect error
[ 1830.897876][T27467] ceph: No mds server is up or the cluster is laggy
[ 1831.737546][   T30] audit: type=1400 audit(1741549943.587:2035): avc:  denied  { append } for  pid=27477 comm="syz.0.5931" name="fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[ 1831.760981][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1831.837672][   T30] audit: type=1400 audit(1741549943.587:2036): avc:  denied  { map } for  pid=27477 comm="syz.0.5931" path="/dev/fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[ 1831.861243][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1831.878588][   T30] audit: type=1400 audit(1741549943.587:2037): avc:  denied  { execute } for  pid=27477 comm="syz.0.5931" path="/dev/fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[ 1831.944797][   T30] audit: type=1400 audit(1741549943.797:2038): avc:  denied  { read } for  pid=27477 comm="syz.0.5931" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[ 1832.016078][T27478] wlan0 speed is unknown, defaulting to 1000
[ 1832.023115][T27478] »»»»»» speed is unknown, defaulting to 1000
[ 1832.298514][ T5871] usb 1-1: new high-speed USB device number 46 using dummy_hcd
[ 1832.490200][ T5871] usb 1-1: Using ep0 maxpacket: 16
[ 1832.516486][ T5871] usb 1-1: config 0 has an invalid interface number: 41 but max is 0
[ 1832.523890][T27478] »»»»»» speed is unknown, defaulting to 1000
[ 1832.532490][ T5871] usb 1-1: config 0 has no interface number 0
[ 1832.540517][ T5871] usb 1-1: config 0 interface 41 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[ 1832.552659][ T5871] usb 1-1: config 0 interface 41 altsetting 2 endpoint 0x82 has invalid maxpacket 65344, setting to 1024
[ 1832.577809][T10443] IPVS: starting estimator thread 0...
[ 1832.630374][ T5871] usb 1-1: config 0 interface 41 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 1024
[ 1832.663160][ T5871] usb 1-1: config 0 interface 41 has no altsetting 0
[ 1832.693258][ T5871] usb 1-1: New USB device found, idVendor=0fe6, idProduct=9700, bcdDevice=d1.9a
[ 1832.715537][ T5871] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1832.723761][T27498] IPVS: using max 29 ests per chain, 69600 per kthread
[ 1832.752878][ T5871] usb 1-1: Product: syz
[ 1832.762639][ T5871] usb 1-1: Manufacturer: syz
[ 1832.776140][ T5871] usb 1-1: SerialNumber: syz
[ 1832.843123][ T5871] usb 1-1: config 0 descriptor??
[ 1832.855611][T27489] raw-gadget.5 gadget.0: fail, usb_ep_enable returned -22
[ 1832.871731][T27489] raw-gadget.5 gadget.0: fail, usb_ep_enable returned -22
[ 1833.689143][T27508] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1833.708543][T27478] raw-gadget.5 gadget.0: fail, usb_ep_enable returned -22
[ 1833.715786][T27478] raw-gadget.5 gadget.0: fail, usb_ep_enable returned -22
[ 1833.741474][T27508] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1833.797188][T27510] 9pnet_fd: Insufficient options for proto=fd
[ 1834.324248][T27522] FAULT_INJECTION: forcing a failure.
[ 1834.324248][T27522] name failslab, interval 1, probability 0, space 0, times 0
[ 1834.338175][T27522] CPU: 0 UID: 0 PID: 27522 Comm: syz.2.5944 Not tainted 6.14.0-rc5-syzkaller-00268-g1110ce6a1e34 #0
[ 1834.338199][T27522] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1834.338208][T27522] Call Trace:
[ 1834.338214][T27522]  <TASK>
[ 1834.338221][T27522]  dump_stack_lvl+0x16c/0x1f0
[ 1834.338248][T27522]  should_fail_ex+0x50a/0x650
[ 1834.338276][T27522]  ? fs_reclaim_acquire+0xae/0x150
[ 1834.338300][T27522]  should_failslab+0xc2/0x120
[ 1834.338317][T27522]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[ 1834.338334][T27522]  ? __alloc_skb+0x2b1/0x380
[ 1834.338365][T27522]  __alloc_skb+0x2b1/0x380
[ 1834.338386][T27522]  ? __pfx___alloc_skb+0x10/0x10
[ 1834.338407][T27522]  ? selinux_socket_getpeersec_dgram+0x1a5/0x370
[ 1834.338430][T27522]  ? __pfx_selinux_socket_getpeersec_dgram+0x10/0x10
[ 1834.338458][T27522]  netlink_alloc_large_skb+0x69/0x130
[ 1834.338483][T27522]  netlink_sendmsg+0x689/0xd70
[ 1834.338508][T27522]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1834.338539][T27522]  ____sys_sendmsg+0xaaf/0xc90
[ 1834.338558][T27522]  ? copy_msghdr_from_user+0x10b/0x160
[ 1834.338580][T27522]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1834.338609][T27522]  ___sys_sendmsg+0x135/0x1e0
[ 1834.338633][T27522]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1834.338666][T27522]  ? __pfx_lock_release+0x10/0x10
[ 1834.338689][T27522]  ? trace_lock_acquire+0x14e/0x1f0
[ 1834.338714][T27522]  ? __fget_files+0x206/0x3a0
[ 1834.338737][T27522]  __sys_sendmsg+0x16e/0x220
[ 1834.338759][T27522]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1834.338796][T27522]  do_syscall_64+0xcd/0x250
[ 1834.338820][T27522]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1834.338843][T27522] RIP: 0033:0x7f4654d8d169
[ 1834.338857][T27522] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1834.338873][T27522] RSP: 002b:00007f4655b98038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1834.338889][T27522] RAX: ffffffffffffffda RBX: 00007f4654fa5fa0 RCX: 00007f4654d8d169
[ 1834.338900][T27522] RDX: 0000000000000000 RSI: 0000400000000100 RDI: 0000000000000004
[ 1834.338910][T27522] RBP: 00007f4655b98090 R08: 0000000000000000 R09: 0000000000000000
[ 1834.338920][T27522] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1834.338929][T27522] R13: 0000000000000000 R14: 00007f4654fa5fa0 R15: 00007ffebd72c418
[ 1834.338951][T27522]  </TASK>
[ 1834.383841][ T5871] Error reading MAC address
[ 1834.384999][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1834.483707][   T30] audit: type=1400 audit(1741549946.327:2039): avc:  denied  { listen } for  pid=27519 comm="syz.4.5943" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[ 1834.485776][ T5871] sr9700 1-1:0.41: probe with driver sr9700 failed with error -71
[ 1834.538438][T22573] usb 6-1: new high-speed USB device number 46 using dummy_hcd
[ 1834.634860][ T5871] usb 1-1: USB disconnect, device number 46
[ 1835.240678][T22573] usb 6-1: Using ep0 maxpacket: 16
[ 1835.518718][T22573] usb 6-1: New USB device found, idVendor=0471, idProduct=0327, bcdDevice=61.a4
[ 1835.527802][T22573] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1835.538737][T22573] usb 6-1: config 0 descriptor??
[ 1835.547907][T22573] gspca_main: sonixj-2.14.0 probing 0471:0327
[ 1836.829968][T22573] gspca_sonixj: reg_r err -110
[ 1836.835105][T22573] sonixj 6-1:0.0: probe with driver sonixj failed with error -110
[ 1837.380401][T27569] FAULT_INJECTION: forcing a failure.
[ 1837.380401][T27569] name failslab, interval 1, probability 0, space 0, times 0
[ 1837.396411][   T30] audit: type=1400 audit(1741549949.247:2040): avc:  denied  { map } for  pid=27562 comm="syz.4.5956" path="socket:[140654]" dev="sockfs" ino=140654 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[ 1837.419726][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1837.428573][T27569] CPU: 1 UID: 0 PID: 27569 Comm: syz.2.5958 Not tainted 6.14.0-rc5-syzkaller-00268-g1110ce6a1e34 #0
[ 1837.428605][T27569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1837.428615][T27569] Call Trace:
[ 1837.428620][T27569]  <TASK>
[ 1837.428627][T27569]  dump_stack_lvl+0x16c/0x1f0
[ 1837.428654][T27569]  should_fail_ex+0x50a/0x650
[ 1837.428680][T27569]  ? fs_reclaim_acquire+0xae/0x150
[ 1837.428706][T27569]  ? tomoyo_encode2+0x100/0x3e0
[ 1837.428729][T27569]  should_failslab+0xc2/0x120
[ 1837.428749][T27569]  __kmalloc_noprof+0xcb/0x510
[ 1837.428764][T27569]  ? d_absolute_path+0x137/0x1b0
[ 1837.428785][T27569]  ? rcu_is_watching+0x12/0xc0
[ 1837.428806][T27569]  tomoyo_encode2+0x100/0x3e0
[ 1837.428834][T27569]  tomoyo_encode+0x29/0x50
[ 1837.428857][T27569]  tomoyo_realpath_from_path+0x19d/0x720
[ 1837.428889][T27569]  tomoyo_path_number_perm+0x248/0x590
[ 1837.428910][T27569]  ? tomoyo_path_number_perm+0x235/0x590
[ 1837.428934][T27569]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1837.428979][T27569]  ? __pfx_lock_release+0x10/0x10
[ 1837.429002][T27569]  ? trace_lock_acquire+0x14e/0x1f0
[ 1837.429024][T27569]  ? lock_acquire+0x2f/0xb0
[ 1837.429044][T27569]  ? __fget_files+0x40/0x3a0
[ 1837.429065][T27569]  ? __fget_files+0x206/0x3a0
[ 1837.429085][T27569]  security_file_ioctl+0x9b/0x240
[ 1837.429108][T27569]  __x64_sys_ioctl+0xb7/0x200
[ 1837.429133][T27569]  do_syscall_64+0xcd/0x250
[ 1837.429156][T27569]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1837.429177][T27569] RIP: 0033:0x7f4654d8d169
[ 1837.429189][T27569] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1837.429204][T27569] RSP: 002b:00007f4655b98038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1837.429220][T27569] RAX: ffffffffffffffda RBX: 00007f4654fa5fa0 RCX: 00007f4654d8d169
[ 1837.429230][T27569] RDX: 00004000000000c0 RSI: 00000000800c5011 RDI: 0000000000000003
[ 1837.429238][T27569] RBP: 00007f4655b98090 R08: 0000000000000000 R09: 0000000000000000
[ 1837.429248][T27569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1837.429256][T27569] R13: 0000000000000000 R14: 00007f4654fa5fa0 R15: 00007ffebd72c418
[ 1837.429277][T27569]  </TASK>
[ 1837.429288][T27569] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1837.468060][   T30] audit: type=1400 audit(1741549949.247:2041): avc:  denied  { read } for  pid=27562 comm="syz.4.5956" path="socket:[140654]" dev="sockfs" ino=140654 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[ 1837.473065][T27572] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1837.690328][T27572] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1837.980115][ T5869] usb 3-1: new high-speed USB device number 43 using dummy_hcd
[ 1838.013230][ T5868] usb 6-1: USB disconnect, device number 46
[ 1838.168434][ T5869] usb 3-1: Using ep0 maxpacket: 32
[ 1838.186038][ T5869] usb 3-1: config 0 has an invalid interface number: 184 but max is 0
[ 1838.285749][ T5869] usb 3-1: config 0 has no interface number 0
[ 1838.356361][ T5869] usb 3-1: config 0 interface 184 has no altsetting 0
[ 1838.460881][ T5869] usb 3-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[ 1838.523624][   T30] audit: type=1400 audit(1741549950.367:2042): avc:  denied  { accept } for  pid=27586 comm="syz.5.5963" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 1838.557287][ T5869] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1838.582837][ T5869] usb 3-1: Product: syz
[ 1838.591711][ T5820] Bluetooth: hci4: unexpected event for opcode 0x0405
[ 1838.600986][ T5869] usb 3-1: Manufacturer: syz
[ 1838.615446][ T5869] usb 3-1: SerialNumber: syz
[ 1838.631394][ T5869] usb 3-1: config 0 descriptor??
[ 1838.646489][ T5869] smsc75xx v1.0.0
[ 1839.033862][T27601] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1839.045527][T27601] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1839.371712][   T30] audit: type=1326 audit(1741549951.227:2043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27600 comm="syz.4.5968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f832338d169 code=0x7ffc0000
[ 1839.413677][   T30] audit: type=1326 audit(1741549951.247:2044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27600 comm="syz.4.5968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f832338d169 code=0x7ffc0000
[ 1839.437273][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1839.576871][ T5869] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[ 1839.613434][ T5869] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[ 1839.622920][   T30] audit: type=1326 audit(1741549951.267:2045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27600 comm="syz.4.5968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f832338bad0 code=0x7ffc0000
[ 1839.653067][   T30] audit: type=1326 audit(1741549951.267:2046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27600 comm="syz.4.5968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f832338e997 code=0x7ffc0000
[ 1839.724542][   T30] audit: type=1326 audit(1741549951.267:2047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27600 comm="syz.4.5968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f832338d169 code=0x7ffc0000
[ 1839.758568][   T30] audit: type=1326 audit(1741549951.267:2048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27600 comm="syz.4.5968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f832338e997 code=0x7ffc0000
[ 1839.782054][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1840.024039][ T5869] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000010: -61
[ 1840.035123][ T5869] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Failed to read HW_CFG: -61
[ 1840.048420][   T30] audit: type=1326 audit(1741549951.267:2049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27600 comm="syz.4.5968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f832338bdca code=0x7ffc0000
[ 1840.071720][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1840.078160][ T5869] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -61
[ 1840.098158][ T5869] smsc75xx 3-1:0.184: probe with driver smsc75xx failed with error -61
[ 1840.289497][T27613] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5971'.
[ 1841.476864][ T5871] usb 3-1: USB disconnect, device number 43
[ 1841.637722][T27635] netlink: 32 bytes leftover after parsing attributes in process `syz.2.5979'.
[ 1842.540266][T27637] erofs (device nbd5): cannot find valid erofs superblock
[ 1843.059414][T27643] erofs (device nbd4): cannot find valid erofs superblock
[ 1843.166662][T27661] FAULT_INJECTION: forcing a failure.
[ 1843.166662][T27661] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1843.181139][T27661] CPU: 0 UID: 0 PID: 27661 Comm: syz.4.5986 Not tainted 6.14.0-rc5-syzkaller-00268-g1110ce6a1e34 #0
[ 1843.181163][T27661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1843.181173][T27661] Call Trace:
[ 1843.181179][T27661]  <TASK>
[ 1843.181186][T27661]  dump_stack_lvl+0x16c/0x1f0
[ 1843.181213][T27661]  should_fail_ex+0x50a/0x650
[ 1843.181242][T27661]  _copy_from_iter+0x2a1/0x1560
[ 1843.181266][T27661]  ? __pfx__copy_from_iter+0x10/0x10
[ 1843.181288][T27661]  ? iov_iter_advance+0x7d/0x6c0
[ 1843.181304][T27661]  ? __lock_acquire+0xcc5/0x3c40
[ 1843.181330][T27661]  vhost_chr_write_iter+0x1bc/0x1080
[ 1843.181351][T27661]  ? __pfx_vhost_chr_write_iter+0x10/0x10
[ 1843.181368][T27661]  ? selinux_file_permission+0x11f/0x580
[ 1843.181397][T27661]  ? bpf_lsm_file_permission+0x9/0x10
[ 1843.181415][T27661]  ? security_file_permission+0x71/0x210
[ 1843.181442][T27661]  ? rw_verify_area+0xcf/0x680
[ 1843.181468][T27661]  vfs_write+0x5ae/0x1150
[ 1843.181485][T27661]  ? __pfx_vhost_vsock_chr_write_iter+0x10/0x10
[ 1843.181506][T27661]  ? __pfx_vfs_write+0x10/0x10
[ 1843.181522][T27661]  ? __fget_files+0x40/0x3a0
[ 1843.181551][T27661]  ksys_write+0x12b/0x250
[ 1843.181566][T27661]  ? __pfx_ksys_write+0x10/0x10
[ 1843.181594][T27661]  do_syscall_64+0xcd/0x250
[ 1843.181618][T27661]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1843.181642][T27661] RIP: 0033:0x7f832338d169
[ 1843.181655][T27661] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1843.181671][T27661] RSP: 002b:00007f832429c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1843.181687][T27661] RAX: ffffffffffffffda RBX: 00007f83235a5fa0 RCX: 00007f832338d169
[ 1843.181698][T27661] RDX: 0000000000000048 RSI: 0000400000000280 RDI: 0000000000000003
[ 1843.181708][T27661] RBP: 00007f832429c090 R08: 0000000000000000 R09: 0000000000000000
[ 1843.181718][T27661] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1843.181727][T27661] R13: 0000000000000000 R14: 00007f83235a5fa0 R15: 00007ffc1def93a8
[ 1843.181749][T27661]  </TASK>
[ 1843.401972][T27657] FAULT_INJECTION: forcing a failure.
[ 1843.401972][T27657] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1843.415087][T27657] CPU: 0 UID: 0 PID: 27657 Comm: syz.5.5985 Not tainted 6.14.0-rc5-syzkaller-00268-g1110ce6a1e34 #0
[ 1843.415101][T27657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1843.415107][T27657] Call Trace:
[ 1843.415111][T27657]  <TASK>
[ 1843.415115][T27657]  dump_stack_lvl+0x16c/0x1f0
[ 1843.415132][T27657]  should_fail_ex+0x50a/0x650
[ 1843.415151][T27657]  _copy_to_user+0x32/0xd0
[ 1843.415162][T27657]  simple_read_from_buffer+0xd0/0x160
[ 1843.415179][T27657]  proc_fail_nth_read+0x198/0x270
[ 1843.415194][T27657]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1843.415209][T27657]  ? rw_verify_area+0xcf/0x680
[ 1843.415224][T27657]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1843.415238][T27657]  vfs_read+0x1df/0xbf0
[ 1843.415254][T27657]  ? __fget_files+0x1fc/0x3a0
[ 1843.415264][T27657]  ? __pfx___mutex_lock+0x10/0x10
[ 1843.415277][T27657]  ? __pfx_vfs_read+0x10/0x10
[ 1843.415296][T27657]  ? __fget_files+0x206/0x3a0
[ 1843.415309][T27657]  ksys_read+0x12b/0x250
[ 1843.415322][T27657]  ? __pfx_ksys_read+0x10/0x10
[ 1843.415345][T27657]  do_syscall_64+0xcd/0x250
[ 1843.415366][T27657]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1843.415386][T27657] RIP: 0033:0x7f1badb8bb7c
[ 1843.415399][T27657] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1843.415414][T27657] RSP: 002b:00007f1bae998030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1843.415429][T27657] RAX: ffffffffffffffda RBX: 00007f1badda5fa0 RCX: 00007f1badb8bb7c
[ 1843.415439][T27657] RDX: 000000000000000f RSI: 00007f1bae9980a0 RDI: 0000000000000004
[ 1843.415448][T27657] RBP: 00007f1bae998090 R08: 0000000000000000 R09: 0000000000000000
[ 1843.415457][T27657] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1843.415466][T27657] R13: 0000000000000000 R14: 00007f1badda5fa0 R15: 00007fff335bc098
[ 1843.415488][T27657]  </TASK>
[ 1843.960779][   T30] kauditd_printk_skb: 22 callbacks suppressed
[ 1843.960797][   T30] audit: type=1400 audit(1741549955.807:2072): avc:  denied  { connect } for  pid=27665 comm="syz.0.5988" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[ 1844.125460][ T5869] usb 6-1: new high-speed USB device number 47 using dummy_hcd
[ 1844.186874][T27670] vivid-000: disconnect
[ 1844.287470][ T5869] usb 6-1: Using ep0 maxpacket: 32
[ 1844.299743][ T5869] usb 6-1: config 0 has an invalid interface number: 184 but max is 0
[ 1844.308139][ T5869] usb 6-1: config 0 has no interface number 0
[ 1844.316609][ T5869] usb 6-1: config 0 interface 184 has no altsetting 0
[ 1844.331697][ T5869] usb 6-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[ 1844.344091][ T5869] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1844.351445][ T5871] usb 3-1: new high-speed USB device number 44 using dummy_hcd
[ 1844.398145][ T5869] usb 6-1: Product: syz
[ 1844.402500][ T5869] usb 6-1: Manufacturer: syz
[ 1844.407109][ T5869] usb 6-1: SerialNumber: syz
[ 1844.420059][ T5869] usb 6-1: config 0 descriptor??
[ 1844.426633][ T5869] smsc75xx v1.0.0
[ 1845.168729][T27665] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1845.235207][T27665] vivid-000: reconnect
[ 1845.300864][ T5871] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1845.317165][ T5871] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[ 1845.328683][ T5871] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[ 1845.558059][ T5871] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1845.580864][ T5871] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1845.590974][ T5871] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1845.600615][ T5871] usb 3-1: config 0 descriptor??
[ 1845.678249][T27689] erofs (device nbd3): cannot find valid erofs superblock
[ 1845.758907][ T5869] smsc75xx 6-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[ 1846.011367][ T5869] smsc75xx 6-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[ 1846.224600][ T5871] plantronics 0003:047F:FFFF.0033: No inputs registered, leaving
[ 1846.235507][ T5871] plantronics 0003:047F:FFFF.0033: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[ 1846.249548][ T5869] smsc75xx 6-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000010: -61
[ 1846.278416][ T5869] smsc75xx 6-1:0.184 (unnamed net_device) (uninitialized): Failed to read HW_CFG: -61
[ 1846.295942][ T5869] smsc75xx 6-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -61
[ 1846.428222][T27697] sp0: Synchronizing with TNC
[ 1846.528822][T27697] wlan0 speed is unknown, defaulting to 1000
[ 1846.538623][T27697] »»»»»» speed is unknown, defaulting to 1000
[ 1846.855350][T27697] »»»»»» speed is unknown, defaulting to 1000
[ 1846.879916][ T5869] smsc75xx 6-1:0.184: probe with driver smsc75xx failed with error -61
[ 1847.173287][   T30] audit: type=1400 audit(1741549959.017:2073): avc:  denied  { mount } for  pid=27693 comm="syz.3.5998" name="/" dev="rpc_pipefs" ino=140071 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:rpc_pipefs_t tclass=filesystem permissive=1
[ 1847.196601][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1847.467611][   T30] audit: type=1400 audit(1741549959.107:2074): avc:  denied  { ioctl } for  pid=27709 comm="syz.0.6001" path="/dev/sg0" dev="devtmpfs" ino=738 ioctlcmd=0x227f scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[ 1847.508540][T22573] usb 3-1: USB disconnect, device number 44
[ 1848.405415][   T30] audit: type=1400 audit(1741549960.257:2075): avc:  denied  { bind } for  pid=27731 comm="syz.2.6007" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[ 1848.579095][T27738] erofs (device nbd3): cannot find valid erofs superblock
[ 1848.932389][   T30] audit: type=1326 audit(1741549960.517:2076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27734 comm="syz.4.6009" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f832338d169 code=0x0
[ 1848.983712][T10443] usb 6-1: USB disconnect, device number 47
[ 1849.011768][T27744] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1849.139118][T27744] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1849.522066][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[ 1850.328814][T14501] Bluetooth: hci0: command 0x0405 tx timeout
[ 1851.218892][T27774] sp0: Synchronizing with TNC
[ 1851.298572][T10443] usb 3-1: new high-speed USB device number 45 using dummy_hcd
[ 1851.457657][   T30] audit: type=1400 audit(1741549963.307:2077): avc:  denied  { recv } for  pid=27743 comm="syz.4.6010" saddr=10.128.0.169 src=45176 daddr=10.128.1.99 dest=22 netif=eth0 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[ 1851.635564][T10443] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1851.726954][T27785] afs: Bad value for 'source'
[ 1851.734215][T27785] afs: Bad value for 'source'
[ 1852.155653][T10443] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1852.178334][T10443] usb 3-1: Product: syz
[ 1852.182617][T10443] usb 3-1: Manufacturer: syz
[ 1852.187651][T10443] usb 3-1: SerialNumber: syz
[ 1852.224599][T10443] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1852.258021][ T5871] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1852.808520][T10443] usb 1-1: new high-speed USB device number 47 using dummy_hcd
[ 1852.993731][ T5869] usb 3-1: USB disconnect, device number 45
[ 1852.999527][T10443] usb 1-1: config 0 has an invalid interface number: 205 but max is 0
[ 1853.008062][T10443] usb 1-1: config 0 has no interface number 0
[ 1853.015706][T10443] usb 1-1: New USB device found, idVendor=1a0a, idProduct=0102, bcdDevice=cd.e9
[ 1853.018471][ T5868] usb 6-1: new full-speed USB device number 48 using dummy_hcd
[ 1853.024963][T10443] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1853.040506][T10443] usb 1-1: Product: syz
[ 1853.045117][T10443] usb 1-1: Manufacturer: syz
[ 1853.049773][T10443] usb 1-1: SerialNumber: syz
[ 1853.055677][T10443] usb 1-1: config 0 descriptor??
[ 1853.062141][T10443] usb_ehset_test 1-1:0.205: probe with driver usb_ehset_test failed with error -32
[ 1853.187412][ T5868] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1853.215568][ T5868] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1853.226026][ T5868] usb 6-1: New USB device found, idVendor=1e7d, idProduct=319c, bcdDevice= 0.00
[ 1853.237780][ T5868] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1853.248017][ T5868] usb 6-1: config 0 descriptor??
[ 1853.252082][T27797] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1853.278712][T27797] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1853.383625][T27799] FAULT_INJECTION: forcing a failure.
[ 1853.383625][T27799] name failslab, interval 1, probability 0, space 0, times 0
[ 1853.385165][T27787] wlan0 speed is unknown, defaulting to 1000
[ 1853.402838][T27799] CPU: 1 UID: 0 PID: 27799 Comm: syz.3.6024 Not tainted 6.14.0-rc5-syzkaller-00268-g1110ce6a1e34 #0
[ 1853.402860][T27799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1853.402870][T27799] Call Trace:
[ 1853.402875][T27799]  <TASK>
[ 1853.402882][T27799]  dump_stack_lvl+0x16c/0x1f0
[ 1853.402907][T27799]  should_fail_ex+0x50a/0x650
[ 1853.402930][T27799]  ? fs_reclaim_acquire+0xae/0x150
[ 1853.402954][T27799]  ? tomoyo_encode2+0x100/0x3e0
[ 1853.402977][T27799]  should_failslab+0xc2/0x120
[ 1853.402997][T27799]  __kmalloc_noprof+0xcb/0x510
[ 1853.403014][T27799]  ? d_absolute_path+0x137/0x1b0
[ 1853.403035][T27799]  ? rcu_is_watching+0x12/0xc0
[ 1853.403055][T27799]  tomoyo_encode2+0x100/0x3e0
[ 1853.403082][T27799]  tomoyo_encode+0x29/0x50
[ 1853.403105][T27799]  tomoyo_realpath_from_path+0x19d/0x720
[ 1853.403135][T27799]  tomoyo_path_number_perm+0x248/0x590
[ 1853.403156][T27799]  ? tomoyo_path_number_perm+0x235/0x590
[ 1853.403179][T27799]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1853.403224][T27799]  ? __pfx_lock_release+0x10/0x10
[ 1853.403246][T27799]  ? trace_lock_acquire+0x14e/0x1f0
[ 1853.403267][T27799]  ? lock_acquire+0x2f/0xb0
[ 1853.403287][T27799]  ? __fget_files+0x40/0x3a0
[ 1853.403308][T27799]  ? __fget_files+0x206/0x3a0
[ 1853.403326][T27799]  security_file_ioctl+0x9b/0x240
[ 1853.403350][T27799]  __x64_sys_ioctl+0xb7/0x200
[ 1853.403375][T27799]  do_syscall_64+0xcd/0x250
[ 1853.403398][T27799]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1853.403420][T27799] RIP: 0033:0x7fe68db8d169
[ 1853.403433][T27799] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1853.403448][T27799] RSP: 002b:00007fe68e9af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1853.403464][T27799] RAX: ffffffffffffffda RBX: 00007fe68dda5fa0 RCX: 00007fe68db8d169
[ 1853.403475][T27799] RDX: 0000400000000200 RSI: 000000004008af13 RDI: 0000000000000003
[ 1853.403485][T27799] RBP: 00007fe68e9af090 R08: 0000000000000000 R09: 0000000000000000
[ 1853.403495][T27799] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1853.403504][T27799] R13: 0000000000000000 R14: 00007fe68dda5fa0 R15: 00007ffcd0226a98
[ 1853.403531][T27799]  </TASK>
[ 1853.403790][T27799] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1853.425668][T27787] »»»»»» speed is unknown, defaulting to 1000
[ 1853.520363][ T5871] usb 3-1: Service connection timeout for: 256
[ 1853.641039][T27787] »»»»»» speed is unknown, defaulting to 1000
[ 1853.651032][T27788] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1853.671114][T27788] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1854.007897][ T5871] ath9k_htc 3-1:1.0: ath9k_htc: Unable to initialize HTC services
[ 1854.016469][ T5871] ath9k_htc: Failed to initialize the device
[ 1854.018196][ T5868] isku 0003:1E7D:319C.0034: hidraw0: USB HID v0.00 Device [HID 1e7d:319c] on usb-dummy_hcd.5-1/input0
[ 1854.023409][   T30] audit: type=1326 audit(1741549965.867:2078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27808 comm="syz.3.6026" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe68db8d169 code=0x0
[ 1854.069375][T27810] dlm: non-version read from control device 46
[ 1854.105858][ T5869] usb 3-1: ath9k_htc: USB layer deinitialized
[ 1854.128052][T27813] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1854.136827][T27813] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1854.142256][ T5868] usb 1-1: USB disconnect, device number 47
[ 1854.289757][ T5871] usb 6-1: USB disconnect, device number 48
[ 1854.388144][T27818] sp0: Synchronizing with TNC
[ 1854.888419][T27828] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[ 1855.117436][   T30] audit: type=1400 audit(1741549966.967:2079): avc:  denied  { ioctl } for  pid=27819 comm="syz.2.6030" path="/dev/cpu/0/msr" dev="devtmpfs" ino=87 ioctlcmd=0x63a0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[ 1855.282760][   T30] audit: type=1400 audit(1741549967.107:2080): avc:  denied  { setopt } for  pid=27819 comm="syz.2.6030" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[ 1855.655625][T27842] FAULT_INJECTION: forcing a failure.
[ 1855.655625][T27842] name failslab, interval 1, probability 0, space 0, times 0
[ 1855.668353][T27842] CPU: 1 UID: 0 PID: 27842 Comm: syz.5.6036 Not tainted 6.14.0-rc5-syzkaller-00268-g1110ce6a1e34 #0
[ 1855.668375][T27842] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1855.668385][T27842] Call Trace:
[ 1855.668391][T27842]  <TASK>
[ 1855.668398][T27842]  dump_stack_lvl+0x16c/0x1f0
[ 1855.668425][T27842]  should_fail_ex+0x50a/0x650
[ 1855.668451][T27842]  ? fs_reclaim_acquire+0xae/0x150
[ 1855.668478][T27842]  should_failslab+0xc2/0x120
[ 1855.668499][T27842]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[ 1855.668518][T27842]  ? __alloc_skb+0x2b1/0x380
[ 1855.668544][T27842]  __alloc_skb+0x2b1/0x380
[ 1855.668567][T27842]  ? __pfx___alloc_skb+0x10/0x10
[ 1855.668592][T27842]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[ 1855.668620][T27842]  netlink_alloc_large_skb+0x69/0x130
[ 1855.668644][T27842]  netlink_sendmsg+0x689/0xd70
[ 1855.668671][T27842]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1855.668702][T27842]  ____sys_sendmsg+0xaaf/0xc90
[ 1855.668721][T27842]  ? copy_msghdr_from_user+0x10b/0x160
[ 1855.668745][T27842]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1855.668775][T27842]  ___sys_sendmsg+0x135/0x1e0
[ 1855.668801][T27842]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1855.668834][T27842]  ? __pfx_lock_release+0x10/0x10
[ 1855.668857][T27842]  ? trace_lock_acquire+0x14e/0x1f0
[ 1855.668885][T27842]  ? __fget_files+0x206/0x3a0
[ 1855.668909][T27842]  __sys_sendmsg+0x16e/0x220
[ 1855.668933][T27842]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1855.668973][T27842]  do_syscall_64+0xcd/0x250
[ 1855.668997][T27842]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1855.669020][T27842] RIP: 0033:0x7f1badb8d169
[ 1855.669034][T27842] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1855.669050][T27842] RSP: 002b:00007f1bae956038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1855.669067][T27842] RAX: ffffffffffffffda RBX: 00007f1badda6160 RCX: 00007f1badb8d169
[ 1855.669079][T27842] RDX: 0000000000000000 RSI: 0000400000000440 RDI: 0000000000000006
[ 1855.669090][T27842] RBP: 00007f1bae956090 R08: 0000000000000000 R09: 0000000000000000
[ 1855.669100][T27842] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1855.669110][T27842] R13: 0000000000000000 R14: 00007f1badda6160 R15: 00007fff335bc098
[ 1855.669132][T27842]  </TASK>
[ 1857.188432][T14501] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1857.549381][   T30] audit: type=1400 audit(1741549969.397:2081): avc:  denied  { watch } for  pid=27853 comm="syz.0.6041" path="/196/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="tmpfs" ino=1043 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[ 1857.594047][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1857.721416][T27858] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1857.779094][T27858] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1857.915902][   T30] audit: type=1400 audit(1741549969.397:2082): avc:  denied  { watch_sb watch_reads } for  pid=27853 comm="syz.0.6041" path="/196/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="tmpfs" ino=1043 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[ 1857.961447][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1857.990980][T27861] x_tables: duplicate underflow at hook 3
[ 1858.480220][T27858] afs: Unknown parameter 'eyn'
[ 1858.730224][T27868] tipc: Started in network mode
[ 1858.735259][T27868] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[ 1858.742788][T27868] tipc: Enabled bearer <eth:team0>, priority 0
[ 1859.734679][ T5871] tipc: Node number set to 11578026
[ 1861.071234][T27885] xt_connbytes: Forcing CT accounting to be enabled
[ 1861.078531][T27885] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1861.183597][T27888] overlayfs: missing 'lowerdir'
[ 1862.043516][T14501] Bluetooth: hci0: command 0x0405 tx timeout
[ 1862.433454][ T5868] usb 3-1: new high-speed USB device number 46 using dummy_hcd
[ 1862.508979][T27903] netlink: 64 bytes leftover after parsing attributes in process `syz.5.6056'.
[ 1862.520279][T27903] netlink: 64 bytes leftover after parsing attributes in process `syz.5.6056'.
[ 1862.553070][T27908] netlink: 32 bytes leftover after parsing attributes in process `syz.0.6057'.
[ 1862.629185][T27912] FAULT_INJECTION: forcing a failure.
[ 1862.629185][T27912] name failslab, interval 1, probability 0, space 0, times 0
[ 1862.642119][T27912] CPU: 0 UID: 0 PID: 27912 Comm: syz.3.6058 Not tainted 6.14.0-rc5-syzkaller-00268-g1110ce6a1e34 #0
[ 1862.642141][T27912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1862.642151][T27912] Call Trace:
[ 1862.642156][T27912]  <TASK>
[ 1862.642161][T27912]  dump_stack_lvl+0x16c/0x1f0
[ 1862.642179][T27912]  should_fail_ex+0x50a/0x650
[ 1862.642196][T27912]  ? fs_reclaim_acquire+0xae/0x150
[ 1862.642212][T27912]  should_failslab+0xc2/0x120
[ 1862.642225][T27912]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[ 1862.642241][T27912]  ? __alloc_skb+0x2b1/0x380
[ 1862.642257][T27912]  __alloc_skb+0x2b1/0x380
[ 1862.642270][T27912]  ? __pfx___alloc_skb+0x10/0x10
[ 1862.642284][T27912]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[ 1862.642301][T27912]  netlink_alloc_large_skb+0x69/0x130
[ 1862.642315][T27912]  netlink_sendmsg+0x689/0xd70
[ 1862.642331][T27912]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1862.642349][T27912]  ____sys_sendmsg+0xaaf/0xc90
[ 1862.642360][T27912]  ? copy_msghdr_from_user+0x10b/0x160
[ 1862.642374][T27912]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1862.642390][T27912]  ___sys_sendmsg+0x135/0x1e0
[ 1862.642405][T27912]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1862.642433][T27912]  __sys_sendmsg+0x16e/0x220
[ 1862.642448][T27912]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1862.642469][T27912]  do_syscall_64+0xcd/0x250
[ 1862.642484][T27912]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1862.642500][T27912] RIP: 0033:0x7fe68db8d169
[ 1862.642509][T27912] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1862.642519][T27912] RSP: 002b:00007fe68e98e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1862.642529][T27912] RAX: ffffffffffffffda RBX: 00007fe68dda6080 RCX: 00007fe68db8d169
[ 1862.642535][T27912] RDX: 0000000000000000 RSI: 0000400000000300 RDI: 0000000000000006
[ 1862.642541][T27912] RBP: 00007fe68e98e090 R08: 0000000000000000 R09: 0000000000000000
[ 1862.642551][T27912] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1862.642557][T27912] R13: 0000000000000000 R14: 00007fe68dda6080 R15: 00007ffcd0226a98
[ 1862.642569][T27912]  </TASK>
[ 1862.871110][ T5868] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1862.888417][ T5868] usb 3-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1862.898389][ T5868] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1862.907494][ T5868] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1862.940033][T27896] raw-gadget.5 gadget.2: fail, usb_ep_enable returned -22
[ 1862.948717][ T5868] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[ 1863.112196][T27918] erofs (device nbd0): cannot find valid erofs superblock
[ 1863.775342][T22573] usb 3-1: USB disconnect, device number 46
[ 1864.972381][   T30] audit: type=1400 audit(1741549976.978:2083): avc:  denied  { listen } for  pid=27929 comm="syz.0.6064" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 1865.031457][T14501] Bluetooth: hci3: command 0x0406 tx timeout
[ 1866.193368][   T30] audit: type=1400 audit(1741549978.060:2084): avc:  denied  { write } for  pid=27933 comm="syz.0.6065" path="socket:[141551]" dev="sockfs" ino=141551 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[ 1866.275628][T27933] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1866.531070][T27941] FAULT_INJECTION: forcing a failure.
[ 1866.531070][T27941] name failslab, interval 1, probability 0, space 0, times 0
[ 1866.543765][T27941] CPU: 0 UID: 0 PID: 27941 Comm: syz.2.6067 Not tainted 6.14.0-rc5-syzkaller-00268-g1110ce6a1e34 #0
[ 1866.543779][T27941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1866.543786][T27941] Call Trace:
[ 1866.543789][T27941]  <TASK>
[ 1866.543793][T27941]  dump_stack_lvl+0x16c/0x1f0
[ 1866.543811][T27941]  should_fail_ex+0x50a/0x650
[ 1866.543828][T27941]  ? fs_reclaim_acquire+0xae/0x150
[ 1866.543844][T27941]  ? tomoyo_encode2+0x100/0x3e0
[ 1866.543859][T27941]  should_failslab+0xc2/0x120
[ 1866.543871][T27941]  __kmalloc_noprof+0xcb/0x510
[ 1866.543882][T27941]  ? d_absolute_path+0x137/0x1b0
[ 1866.543895][T27941]  ? rcu_is_watching+0x12/0xc0
[ 1866.543907][T27941]  tomoyo_encode2+0x100/0x3e0
[ 1866.543924][T27941]  tomoyo_encode+0x29/0x50
[ 1866.543938][T27941]  tomoyo_realpath_from_path+0x19d/0x720
[ 1866.543957][T27941]  tomoyo_path_number_perm+0x248/0x590
[ 1866.543969][T27941]  ? tomoyo_path_number_perm+0x235/0x590
[ 1866.543983][T27941]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1866.544008][T27941]  ? __pfx_lock_release+0x10/0x10
[ 1866.544022][T27941]  ? trace_lock_acquire+0x14e/0x1f0
[ 1866.544036][T27941]  ? lock_acquire+0x2f/0xb0
[ 1866.544049][T27941]  ? __fget_files+0x40/0x3a0
[ 1866.544061][T27941]  ? __fget_files+0x206/0x3a0
[ 1866.544072][T27941]  security_file_ioctl+0x9b/0x240
[ 1866.544088][T27941]  __x64_sys_ioctl+0xb7/0x200
[ 1866.544104][T27941]  do_syscall_64+0xcd/0x250
[ 1866.544119][T27941]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1866.544134][T27941] RIP: 0033:0x7f4654d8d169
[ 1866.544142][T27941] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1866.544152][T27941] RSP: 002b:00007f4655b77038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1866.544161][T27941] RAX: ffffffffffffffda RBX: 00007f4654fa6080 RCX: 00007f4654d8d169
[ 1866.544167][T27941] RDX: 0000000000000000 RSI: 0000000000004140 RDI: 0000000000000005
[ 1866.544173][T27941] RBP: 00007f4655b77090 R08: 0000000000000000 R09: 0000000000000000
[ 1866.544178][T27941] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1866.544184][T27941] R13: 0000000000000000 R14: 00007f4654fa6080 R15: 00007ffebd72c418
[ 1866.544196][T27941]  </TASK>
[ 1866.544204][T27941] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1867.648404][T27951] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1867.657271][T27951] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1867.802922][   T30] audit: type=1400 audit(1741549979.864:2085): avc:  denied  { accept } for  pid=27954 comm="syz.4.6073" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[ 1867.825612][ T5868] usb 3-1: new high-speed USB device number 47 using dummy_hcd
[ 1867.836374][ T5869] usb 1-1: new high-speed USB device number 48 using dummy_hcd
[ 1867.853513][   T30] audit: type=1400 audit(1741549979.895:2086): avc:  denied  { read } for  pid=27954 comm="syz.4.6073" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[ 1867.858358][T27957] netlink: 32 bytes leftover after parsing attributes in process `syz.5.6074'.
[ 1867.882874][T27951] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1867.892262][T27951] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1868.022105][ T5869] usb 1-1: Using ep0 maxpacket: 8
[ 1868.028632][ T5868] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1868.044411][ T5869] usb 1-1: config 1 interface 0 altsetting 112 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1868.061337][ T5868] usb 3-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1868.080918][ T5869] usb 1-1: config 1 interface 0 altsetting 112 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1868.094483][ T5868] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1868.103663][ T5868] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1868.119572][ T5869] usb 1-1: config 1 interface 0 has no altsetting 0
[ 1868.182122][ T5869] usb 1-1: New USB device found, idVendor=0c70, idProduct=f0bd, bcdDevice= 0.40
[ 1868.248422][ T5869] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1868.257797][ T5869] usb 1-1: Product: syz
[ 1868.261547][T27948] raw-gadget.5 gadget.2: fail, usb_ep_enable returned -22
[ 1868.264520][ T5869] usb 1-1: Manufacturer: syz
[ 1868.507099][ T5868] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[ 1868.514268][ T5869] usb 1-1: SerialNumber: syz
[ 1868.942064][ T5869] usbhid 1-1:1.0: can't add hid device: -71
[ 1868.950200][ T5869] usbhid 1-1:1.0: probe with driver usbhid failed with error -71
[ 1869.007488][ T5869] usb 1-1: USB disconnect, device number 48
[ 1869.190228][T27973] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1869.200357][T27973] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1869.382264][T27976] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1869.558317][T27981] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6082'.
[ 1869.700421][T27986] 9pnet_fd: Insufficient options for proto=fd
[ 1869.755542][ T5820] Bluetooth: hci0: command 0x0405 tx timeout
[ 1869.776390][T27987] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5)
[ 1869.782940][T27987] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[ 1870.097399][T27987] vhci_hcd vhci_hcd.0: Device attached
[ 1870.118432][T27993] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1870.172320][T27993] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1870.221932][T27990] vhci_hcd: cannot find a urb of seqnum 1 max seqnum 0
[ 1870.609968][T22573] usb 42-1: SetAddress Request (2) to port 0
[ 1870.696703][T18770] vhci_hcd: stop threads
[ 1870.701850][T18770] vhci_hcd: release socket
[ 1870.706476][T22573] usb 42-1: new SuperSpeed USB device number 2 using vhci_hcd
[ 1870.714578][T18770] vhci_hcd: disconnect device
[ 1870.783105][T22573] usb 42-1: enqueue for inactive port 0
[ 1871.170507][T26859] usb 3-1: USB disconnect, device number 47
[ 1871.171562][T22573] usb usb42-port1: attempt power cycle
[ 1871.483535][T28019] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6095'.
[ 1871.733744][T22573] usb usb42-port1: unable to enumerate USB device
[ 1872.473025][T28031] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=28031 comm=syz.2.6098
[ 1873.001948][T28044] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1873.064782][T28045] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6101'.
[ 1873.083643][T28044] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1873.106535][T28045] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6101'.
[ 1873.118883][T28043] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6102'.
[ 1873.292298][ T5820] Bluetooth: hci0: command 0x0405 tx timeout
[ 1873.369966][T28054] netlink: 32 bytes leftover after parsing attributes in process `syz.2.6105'.
[ 1874.310421][T28054] netlink: 'syz.2.6105': attribute type 33 has an invalid length.
[ 1874.425025][T28063] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1874.434815][T28063] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1875.349226][T14501] Bluetooth: hci0: command 0x0405 tx timeout
[ 1875.557313][T28070] FAULT_INJECTION: forcing a failure.
[ 1875.557313][T28070] name failslab, interval 1, probability 0, space 0, times 0
[ 1875.585202][T28070] CPU: 0 UID: 0 PID: 28070 Comm: syz.2.6111 Not tainted 6.14.0-rc5-syzkaller-00268-g1110ce6a1e34 #0
[ 1875.585231][T28070] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1875.585242][T28070] Call Trace:
[ 1875.585248][T28070]  <TASK>
[ 1875.585255][T28070]  dump_stack_lvl+0x16c/0x1f0
[ 1875.585284][T28070]  should_fail_ex+0x50a/0x650
[ 1875.585309][T28070]  ? fs_reclaim_acquire+0xae/0x150
[ 1875.585336][T28070]  ? alloc_pipe_info+0x10e/0x590
[ 1875.585355][T28070]  should_failslab+0xc2/0x120
[ 1875.585376][T28070]  __kmalloc_cache_noprof+0x68/0x410
[ 1875.585408][T28070]  alloc_pipe_info+0x10e/0x590
[ 1875.585429][T28070]  splice_direct_to_actor+0x793/0xa40
[ 1875.585455][T28070]  ? __pfx_direct_splice_actor+0x10/0x10
[ 1875.585486][T28070]  ? __pfx_splice_direct_to_actor+0x10/0x10
[ 1875.585514][T28070]  ? __pfx___might_resched+0x10/0x10
[ 1875.585543][T28070]  do_splice_direct+0x178/0x250
[ 1875.585569][T28070]  ? __pfx_do_splice_direct+0x10/0x10
[ 1875.585595][T28070]  ? __pfx_direct_file_splice_eof+0x10/0x10
[ 1875.585624][T28070]  ? rw_verify_area+0xcf/0x680
[ 1875.585651][T28070]  do_sendfile+0xafb/0xe40
[ 1875.585680][T28070]  ? __pfx_do_sendfile+0x10/0x10
[ 1875.585703][T28070]  ? __might_fault+0xe3/0x190
[ 1875.585724][T28070]  ? __might_fault+0xe3/0x190
[ 1875.585750][T28070]  __x64_sys_sendfile64+0x155/0x220
[ 1875.585771][T28070]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[ 1875.585798][T28070]  do_syscall_64+0xcd/0x250
[ 1875.585823][T28070]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1875.585846][T28070] RIP: 0033:0x7f4654d8d169
[ 1875.585860][T28070] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1875.585877][T28070] RSP: 002b:00007f4655b98038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 1875.585894][T28070] RAX: ffffffffffffffda RBX: 00007f4654fa5fa0 RCX: 00007f4654d8d169
[ 1875.585905][T28070] RDX: 0000400000000080 RSI: 0000000000000003 RDI: 0000000000000003
[ 1875.585915][T28070] RBP: 00007f4655b98090 R08: 0000000000000000 R09: 0000000000000000
[ 1875.585924][T28070] R10: 0000000000007f03 R11: 0000000000000246 R12: 0000000000000001
[ 1875.585934][T28070] R13: 0000000000000000 R14: 00007f4654fa5fa0 R15: 00007ffebd72c418
[ 1875.585956][T28070]  </TASK>
[ 1875.813368][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1876.513756][T28102] erofs (device nbd4): cannot find valid erofs superblock
[ 1876.732797][ T5868] usb 3-1: new high-speed USB device number 48 using dummy_hcd
[ 1876.894393][ T5868] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1876.905752][ T5868] usb 3-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1876.925652][ T5868] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1876.947371][ T5868] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1876.968339][T28097] raw-gadget.6 gadget.2: fail, usb_ep_enable returned -22
[ 1876.987821][ T5868] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[ 1877.485405][ T5820] Bluetooth: hci0: command 0x0405 tx timeout
[ 1877.794487][ T5868] usb 1-1: new high-speed USB device number 49 using dummy_hcd
[ 1877.922015][T10443] usb 3-1: USB disconnect, device number 48
[ 1877.967937][T28112] af_packet: tpacket_rcv: packet too big, clamped from 65232 to 3952. macoff=96
[ 1878.023693][ T5868] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1878.041507][ T5868] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1878.097314][ T5868] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1878.132683][ T5868] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1878.145545][T28110] raw-gadget.7 gadget.0: fail, usb_ep_enable returned -22
[ 1878.156740][ T5868] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[ 1879.559523][T14501] Bluetooth: hci0: command 0x0405 tx timeout
[ 1881.222471][T28139] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1881.276766][T28139] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1881.591279][T28144] erofs (device nbd2): cannot find valid erofs superblock
[ 1881.833363][T28147] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1882.162729][T10443] usb 1-1: USB disconnect, device number 49
[ 1882.189298][   T30] audit: type=1400 audit(1741549994.424:2087): avc:  denied  { bind } for  pid=28150 comm="syz.2.6136" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[ 1882.273627][T28149] 9pnet_fd: Insufficient options for proto=fd
[ 1882.280024][   T30] audit: type=1400 audit(1741549994.424:2088): avc:  denied  { accept } for  pid=28150 comm="syz.2.6136" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[ 1883.924503][T10443] usb 1-1: new full-speed USB device number 50 using dummy_hcd
[ 1884.076436][T28183] bond1 (unregistering): Released all slaves
[ 1884.095555][T28186] FAULT_INJECTION: forcing a failure.
[ 1884.095555][T28186] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1884.146287][T28186] CPU: 1 UID: 0 PID: 28186 Comm: syz.3.6144 Not tainted 6.14.0-rc5-syzkaller-00268-g1110ce6a1e34 #0
[ 1884.146314][T28186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1884.146324][T28186] Call Trace:
[ 1884.146330][T28186]  <TASK>
[ 1884.146337][T28186]  dump_stack_lvl+0x16c/0x1f0
[ 1884.146363][T28186]  should_fail_ex+0x50a/0x650
[ 1884.146393][T28186]  _copy_to_user+0x32/0xd0
[ 1884.146413][T28186]  simple_read_from_buffer+0xd0/0x160
[ 1884.146441][T28186]  proc_fail_nth_read+0x198/0x270
[ 1884.146465][T28186]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1884.146491][T28186]  ? rw_verify_area+0xcf/0x680
[ 1884.146515][T28186]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1884.146539][T28186]  vfs_read+0x1df/0xbf0
[ 1884.146564][T28186]  ? __fget_files+0x1fc/0x3a0
[ 1884.146581][T28186]  ? __pfx___mutex_lock+0x10/0x10
[ 1884.146603][T28186]  ? __pfx_vfs_read+0x10/0x10
[ 1884.146635][T28186]  ? __fget_files+0x206/0x3a0
[ 1884.146659][T28186]  ksys_read+0x12b/0x250
[ 1884.146674][T28186]  ? __pfx_ksys_read+0x10/0x10
[ 1884.146696][T28186]  do_syscall_64+0xcd/0x250
[ 1884.146719][T28186]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1884.146742][T28186] RIP: 0033:0x7fe68db8bb7c
[ 1884.146757][T28186] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1884.146774][T28186] RSP: 002b:00007fe68e98e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1884.146790][T28186] RAX: ffffffffffffffda RBX: 00007fe68dda6080 RCX: 00007fe68db8bb7c
[ 1884.146801][T28186] RDX: 000000000000000f RSI: 00007fe68e98e0a0 RDI: 0000000000000007
[ 1884.146811][T28186] RBP: 00007fe68e98e090 R08: 0000000000000000 R09: 0000000000000000
[ 1884.146820][T28186] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1884.146829][T28186] R13: 0000000000000000 R14: 00007fe68dda6080 R15: 00007ffcd0226a98
[ 1884.146852][T28186]  </TASK>
[ 1884.345515][T28187] input: syz1 as /devices/virtual/input/input107
[ 1884.481125][   T30] audit: type=1400 audit(1741549996.709:2089): avc:  denied  { shutdown } for  pid=28182 comm="syz.2.6145" lport=52441 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[ 1884.677897][T10443] usb 1-1: device descriptor read/64, error -71
[ 1884.980793][T28195] erofs (device nbd2): cannot find valid erofs superblock
[ 1885.130853][T10443] usb 1-1: new full-speed USB device number 51 using dummy_hcd
[ 1886.290678][T10443] usb usb1-port1: attempt power cycle
[ 1887.056634][T10443] usb 1-1: new high-speed USB device number 52 using dummy_hcd
[ 1887.083015][T10443] usb 1-1: config 0 interface 0 altsetting 7 endpoint 0xF has invalid maxpacket 63640, setting to 64
[ 1887.095536][T10443] usb 1-1: config 0 interface 0 has no altsetting 0
[ 1887.127116][T10443] usb 1-1: New USB device found, idVendor=056e, idProduct=00e6, bcdDevice= 0.00
[ 1887.277813][T10443] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1887.296442][T10443] usb 1-1: config 0 descriptor??
[ 1887.303059][T10443] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[ 1887.690550][T28206] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1887.761746][T28206] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1887.820561][T26859] usb 1-1: USB disconnect, device number 52
[ 1888.210373][T28220] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1888.265413][T28234] FAULT_INJECTION: forcing a failure.
[ 1888.265413][T28234] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1888.279201][T28234] CPU: 1 UID: 0 PID: 28234 Comm: syz.5.6159 Not tainted 6.14.0-rc5-syzkaller-00268-g1110ce6a1e34 #0
[ 1888.279225][T28234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1888.279235][T28234] Call Trace:
[ 1888.279240][T28234]  <TASK>
[ 1888.279247][T28234]  dump_stack_lvl+0x16c/0x1f0
[ 1888.279274][T28234]  should_fail_ex+0x50a/0x650
[ 1888.279303][T28234]  _copy_from_user+0x2e/0xd0
[ 1888.279321][T28234]  kstrtouint_from_user+0xd7/0x1c0
[ 1888.279343][T28234]  ? __pfx_kstrtouint_from_user+0x10/0x10
[ 1888.279381][T28234]  ? __pfx_lock_acquire.part.0+0x10/0x10
[ 1888.279407][T28234]  proc_fail_nth_write+0x84/0x250
[ 1888.279431][T28234]  ? __pfx_proc_fail_nth_write+0x10/0x10
[ 1888.279453][T28234]  ? ksys_write+0x12b/0x250
[ 1888.279475][T28234]  ? __pfx_proc_fail_nth_write+0x10/0x10
[ 1888.279497][T28234]  vfs_write+0x24c/0x1150
[ 1888.279514][T28234]  ? __fget_files+0x1fc/0x3a0
[ 1888.279531][T28234]  ? __pfx___mutex_lock+0x10/0x10
[ 1888.279553][T28234]  ? __pfx_vfs_write+0x10/0x10
[ 1888.279577][T28234]  ? __fget_files+0x206/0x3a0
[ 1888.279602][T28234]  ksys_write+0x12b/0x250
[ 1888.279617][T28234]  ? __pfx_ksys_write+0x10/0x10
[ 1888.279642][T28234]  do_syscall_64+0xcd/0x250
[ 1888.279666][T28234]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1888.279689][T28234] RIP: 0033:0x7f1badb8bc1f
[ 1888.279704][T28234] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 1888.279721][T28234] RSP: 002b:00007f1bae977030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 1888.279737][T28234] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f1badb8bc1f
[ 1888.279749][T28234] RDX: 0000000000000001 RSI: 00007f1bae9770a0 RDI: 0000000000000006
[ 1888.279762][T28234] RBP: 00007f1bae977090 R08: 0000000000000000 R09: 0000000000000000
[ 1888.279772][T28234] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[ 1888.279782][T28234] R13: 0000000000000000 R14: 00007f1badda6080 R15: 00007fff335bc098
[ 1888.279807][T28234]  </TASK>
[ 1888.576101][   T30] audit: type=1400 audit(1741550000.841:2090): avc:  denied  { bind } for  pid=28237 comm="syz.0.6162" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[ 1888.606285][   T30] audit: type=1400 audit(1741550000.841:2091): avc:  denied  { ioctl } for  pid=28237 comm="syz.0.6162" path="socket:[143057]" dev="sockfs" ino=143057 ioctlcmd=0x8914 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[ 1888.631421][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1889.961535][T28261] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=28261 comm=syz.4.6168
[ 1889.977720][T28261] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6168'.
[ 1890.238856][T28269] deleting an unspecified loop device is not supported.
[ 1890.297966][   T30] audit: type=1400 audit(1741550002.539:2092): avc:  denied  { listen } for  pid=28265 comm="syz.0.6170" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[ 1890.697973][   T30] audit: type=1400 audit(1741550002.971:2093): avc:  denied  { map } for  pid=28267 comm="syz.5.6169" path="socket:[143096]" dev="sockfs" ino=143096 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[ 1890.844639][T28280] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1891.887672][   T30] audit: type=1400 audit(1741550003.945:2094): avc:  denied  { setcurrent } for  pid=28282 comm="syz.2.6173" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 1892.022671][   T30] audit: type=1400 audit(1741550003.945:2095): avc:  denied  { bind } for  pid=28282 comm="syz.2.6173" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 1892.688300][T28297] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1892.932293][ T5820] Bluetooth: hci0: command 0x0405 tx timeout
[ 1892.945736][T28297] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1892.950091][T28302] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1893.064322][T28302] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1893.092975][   T30] audit: type=1400 audit(1741550005.350:2096): avc:  denied  { connect } for  pid=28292 comm="syz.4.6176" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[ 1893.140059][   T30] audit: type=1400 audit(1741550005.360:2097): avc:  denied  { write } for  pid=28292 comm="syz.4.6176" laddr=fe80::4839:67ff:fef6:3649 lport=6 faddr=ff01::1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[ 1893.222649][T28306] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6180'.
[ 1893.293072][   T30] audit: type=1400 audit(1741550005.570:2098): avc:  denied  { setattr } for  pid=28311 comm="syz.0.6181" name="PPTP" dev="sockfs" ino=143207 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[ 1893.380286][T22573] usb 3-1: new high-speed USB device number 49 using dummy_hcd
[ 1893.388401][T28313] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1893.570407][T22573] usb 3-1: Using ep0 maxpacket: 8
[ 1893.587368][T22573] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1893.618802][T22573] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1893.639973][T22573] usb 3-1: New USB device found, idVendor=1038, idProduct=1410, bcdDevice= 0.00
[ 1893.649735][T22573] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1893.704521][T22573] usb 3-1: config 0 descriptor??
[ 1893.912610][T28319] FAULT_INJECTION: forcing a failure.
[ 1893.912610][T28319] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1893.928257][T28319] CPU: 1 UID: 0 PID: 28319 Comm: syz.4.6184 Not tainted 6.14.0-rc5-syzkaller-00268-g1110ce6a1e34 #0
[ 1893.928284][T28319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1893.928294][T28319] Call Trace:
[ 1893.928300][T28319]  <TASK>
[ 1893.928308][T28319]  dump_stack_lvl+0x16c/0x1f0
[ 1893.928332][T28319]  should_fail_ex+0x50a/0x650
[ 1893.928367][T28319]  _copy_to_user+0x32/0xd0
[ 1893.928388][T28319]  simple_read_from_buffer+0xd0/0x160
[ 1893.928414][T28319]  proc_fail_nth_read+0x198/0x270
[ 1893.928438][T28319]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1893.928463][T28319]  ? rw_verify_area+0xcf/0x680
[ 1893.928487][T28319]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1893.928511][T28319]  vfs_read+0x1df/0xbf0
[ 1893.928537][T28319]  ? __fget_files+0x1fc/0x3a0
[ 1893.928554][T28319]  ? __pfx___mutex_lock+0x10/0x10
[ 1893.928576][T28319]  ? __pfx_vfs_read+0x10/0x10
[ 1893.928609][T28319]  ? __fget_files+0x206/0x3a0
[ 1893.928633][T28319]  ksys_read+0x12b/0x250
[ 1893.928648][T28319]  ? __pfx_ksys_read+0x10/0x10
[ 1893.928671][T28319]  do_syscall_64+0xcd/0x250
[ 1893.928694][T28319]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1893.928717][T28319] RIP: 0033:0x7f832338bb7c
[ 1893.928731][T28319] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1893.928747][T28319] RSP: 002b:00007f832429c030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1893.928764][T28319] RAX: ffffffffffffffda RBX: 00007f83235a5fa0 RCX: 00007f832338bb7c
[ 1893.928775][T28319] RDX: 000000000000000f RSI: 00007f832429c0a0 RDI: 0000000000000006
[ 1893.928785][T28319] RBP: 00007f832429c090 R08: 0000000000000000 R09: 0000000000000000
[ 1893.928794][T28319] R10: 000000000000004c R11: 0000000000000246 R12: 0000000000000001
[ 1893.928804][T28319] R13: 0000000000000000 R14: 00007f83235a5fa0 R15: 00007ffc1def93a8
[ 1893.928826][T28319]  </TASK>
[ 1894.150777][T28322] netlink: 40 bytes leftover after parsing attributes in process `syz.3.6185'.
[ 1894.460984][T28329] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6186'.
[ 1894.595376][T28331] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1894.695852][T22573] steelseries 0003:1038:1410.0035: missing HID_OUTPUT_REPORT 0
[ 1894.715365][T28310] netlink: 136 bytes leftover after parsing attributes in process `syz.2.6179'.
[ 1894.728548][T28331] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1894.844480][T28310] A link change request failed with some changes committed already. Interface ip6_vti0 may have been left with an inconsistent configuration, please check.
[ 1894.883399][T26859] usb 3-1: USB disconnect, device number 49
[ 1895.280002][T28339] mkiss: ax0: crc mode is auto.
[ 1895.851362][T28343] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1895.892068][T28343] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1896.269924][T28347] FAULT_INJECTION: forcing a failure.
[ 1896.269924][T28347] name failslab, interval 1, probability 0, space 0, times 0
[ 1896.282842][T28347] CPU: 0 UID: 0 PID: 28347 Comm: syz.2.6192 Not tainted 6.14.0-rc5-syzkaller-00268-g1110ce6a1e34 #0
[ 1896.282864][T28347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1896.282873][T28347] Call Trace:
[ 1896.282877][T28347]  <TASK>
[ 1896.282881][T28347]  dump_stack_lvl+0x16c/0x1f0
[ 1896.282899][T28347]  should_fail_ex+0x50a/0x650
[ 1896.282916][T28347]  ? fs_reclaim_acquire+0xae/0x150
[ 1896.282933][T28347]  ? tomoyo_encode2+0x100/0x3e0
[ 1896.282948][T28347]  should_failslab+0xc2/0x120
[ 1896.282960][T28347]  __kmalloc_noprof+0xcb/0x510
[ 1896.282971][T28347]  ? d_absolute_path+0x137/0x1b0
[ 1896.282984][T28347]  ? rcu_is_watching+0x12/0xc0
[ 1896.282996][T28347]  tomoyo_encode2+0x100/0x3e0
[ 1896.283012][T28347]  tomoyo_encode+0x29/0x50
[ 1896.283027][T28347]  tomoyo_realpath_from_path+0x19d/0x720
[ 1896.283045][T28347]  tomoyo_path_number_perm+0x248/0x590
[ 1896.283058][T28347]  ? tomoyo_path_number_perm+0x235/0x590
[ 1896.283072][T28347]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1896.283095][T28347]  ? __pfx_lock_release+0x10/0x10
[ 1896.283117][T28347]  ? rcu_is_watching+0x12/0xc0
[ 1896.283129][T28347]  ? __rcu_read_unlock+0x2b4/0x580
[ 1896.283144][T28347]  ? __fget_files+0x206/0x3a0
[ 1896.283156][T28347]  security_file_ioctl+0x9b/0x240
[ 1896.283172][T28347]  __x64_sys_ioctl+0xb7/0x200
[ 1896.283187][T28347]  do_syscall_64+0xcd/0x250
[ 1896.283202][T28347]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1896.283217][T28347] RIP: 0033:0x7f4654d8d169
[ 1896.283225][T28347] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1896.283235][T28347] RSP: 002b:00007f4655b77038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1896.283245][T28347] RAX: ffffffffffffffda RBX: 00007f4654fa6080 RCX: 00007f4654d8d169
[ 1896.283251][T28347] RDX: 0000400000000100 RSI: 0000000000003ba0 RDI: 0000000000000004
[ 1896.283257][T28347] RBP: 00007f4655b77090 R08: 0000000000000000 R09: 0000000000000000
[ 1896.283263][T28347] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1896.283268][T28347] R13: 0000000000000000 R14: 00007f4654fa6080 R15: 00007ffebd72c418
[ 1896.283280][T28347]  </TASK>
[ 1896.283305][T28347] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1896.447250][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1897.156932][T28359] netlink: 20 bytes leftover after parsing attributes in process `syz.2.6196'.
[ 1897.204324][T28362] netlink: 40 bytes leftover after parsing attributes in process `syz.3.6198'.
[ 1897.338799][T28369] 9pnet: p9_errstr2errno: server reported unknown error 18446744
[ 1897.430546][   T30] audit: type=1326 audit(1741550009.633:2099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28368 comm="syz.3.6200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe68db8d169 code=0x7ffc0000
[ 1897.544709][T28376] selection: kmalloc() failed
[ 1898.125055][T28356] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1898.138134][   T30] audit: type=1326 audit(1741550009.633:2100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28368 comm="syz.3.6200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe68db8d169 code=0x7ffc0000
[ 1898.162671][   T30] audit: type=1326 audit(1741550009.633:2101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28368 comm="syz.3.6200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=242 compat=0 ip=0x7fe68db8d169 code=0x7ffc0000
[ 1898.162898][T28356] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1898.208110][   T30] audit: type=1326 audit(1741550009.633:2102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28368 comm="syz.3.6200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe68db8d169 code=0x7ffc0000
[ 1898.259593][   T30] audit: type=1326 audit(1741550009.633:2103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28368 comm="syz.3.6200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe68db8d169 code=0x7ffc0000
[ 1898.342107][   T30] audit: type=1326 audit(1741550009.633:2104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28368 comm="syz.3.6200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fe68db8d169 code=0x7ffc0000
[ 1898.447310][   T30] audit: type=1326 audit(1741550009.633:2105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28368 comm="syz.3.6200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe68db8d169 code=0x7ffc0000
[ 1898.636713][T28364] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1898.686357][   T30] audit: type=1326 audit(1741550009.633:2106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28368 comm="syz.3.6200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe68db8d169 code=0x7ffc0000
[ 1898.792908][T28356] wlan0 speed is unknown, defaulting to 1000
[ 1898.805644][T28391] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1898.806187][   T30] audit: type=1326 audit(1741550009.633:2107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28368 comm="syz.3.6200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7fe68db8d169 code=0x7ffc0000
[ 1898.823860][T28364] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1898.839529][T28356] »»»»»» speed is unknown, defaulting to 1000
[ 1898.863764][T28391] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1898.892025][   T30] audit: type=1326 audit(1741550009.633:2108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28368 comm="syz.3.6200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe68db8d169 code=0x7ffc0000
[ 1899.066625][T28356] »»»»»» speed is unknown, defaulting to 1000
[ 1899.138304][ T5820] Bluetooth: hci3: command 0x0406 tx timeout
[ 1899.622006][T28411] netlink: 40 bytes leftover after parsing attributes in process `syz.3.6211'.
[ 1901.506527][T28441] FAULT_INJECTION: forcing a failure.
[ 1901.506527][T28441] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1901.520027][T28441] CPU: 0 UID: 0 PID: 28441 Comm: syz.0.6220 Not tainted 6.14.0-rc5-syzkaller-00268-g1110ce6a1e34 #0
[ 1901.520048][T28441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1901.520055][T28441] Call Trace:
[ 1901.520060][T28441]  <TASK>
[ 1901.520065][T28441]  dump_stack_lvl+0x16c/0x1f0
[ 1901.520087][T28441]  should_fail_ex+0x50a/0x650
[ 1901.520110][T28441]  _copy_from_iter+0x2a1/0x1560
[ 1901.520123][T28441]  ? trace_lock_acquire+0x14e/0x1f0
[ 1901.520140][T28441]  ? __pfx__copy_from_iter+0x10/0x10
[ 1901.520152][T28441]  ? __virt_addr_valid+0x1a4/0x590
[ 1901.520168][T28441]  ? __virt_addr_valid+0x5e/0x590
[ 1901.520180][T28441]  ? __phys_addr_symbol+0x30/0x80
[ 1901.520192][T28441]  ? __check_object_size+0x488/0x710
[ 1901.520210][T28441]  pfkey_sendmsg+0x1e0/0x840
[ 1901.520226][T28441]  ____sys_sendmsg+0xaaf/0xc90
[ 1901.520240][T28441]  ? copy_msghdr_from_user+0x10b/0x160
[ 1901.520258][T28441]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1901.520279][T28441]  ___sys_sendmsg+0x135/0x1e0
[ 1901.520303][T28441]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1901.520328][T28441]  ? __pfx_lock_release+0x10/0x10
[ 1901.520345][T28441]  ? trace_lock_acquire+0x14e/0x1f0
[ 1901.520365][T28441]  ? __fget_files+0x206/0x3a0
[ 1901.520384][T28441]  __sys_sendmsg+0x16e/0x220
[ 1901.520402][T28441]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1901.520431][T28441]  do_syscall_64+0xcd/0x250
[ 1901.520449][T28441]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1901.520467][T28441] RIP: 0033:0x7f2d0f18d169
[ 1901.520478][T28441] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1901.520491][T28441] RSP: 002b:00007f2d0ff9f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1901.520504][T28441] RAX: ffffffffffffffda RBX: 00007f2d0f3a5fa0 RCX: 00007f2d0f18d169
[ 1901.520512][T28441] RDX: 0000000000000000 RSI: 00004000005f5000 RDI: 0000000000000006
[ 1901.520520][T28441] RBP: 00007f2d0ff9f090 R08: 0000000000000000 R09: 0000000000000000
[ 1901.520528][T28441] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1901.520535][T28441] R13: 0000000000000000 R14: 00007f2d0f3a5fa0 R15: 00007fff2433f6f8
[ 1901.520551][T28441]  </TASK>
[ 1901.750859][ T5820] Bluetooth: hci2: command 0x0405 tx timeout
[ 1901.874576][T28446] ip6t_rpfilter: unknown options
[ 1902.348777][T28452] Cannot find del_set index 0 as target
[ 1902.526049][T28459] FAULT_INJECTION: forcing a failure.
[ 1902.526049][T28459] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1902.545545][T28459] CPU: 0 UID: 0 PID: 28459 Comm: syz.5.6228 Not tainted 6.14.0-rc5-syzkaller-00268-g1110ce6a1e34 #0
[ 1902.545561][T28459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1902.545568][T28459] Call Trace:
[ 1902.545571][T28459]  <TASK>
[ 1902.545576][T28459]  dump_stack_lvl+0x16c/0x1f0
[ 1902.545597][T28459]  should_fail_ex+0x50a/0x650
[ 1902.545623][T28459]  copy_fpstate_to_sigframe+0x894/0xb20
[ 1902.545657][T28459]  ? __pfx_copy_fpstate_to_sigframe+0x10/0x10
[ 1902.545675][T28459]  ? posixtimer_deliver_signal+0x1b0/0x650
[ 1902.545701][T28459]  ? posixtimer_deliver_signal+0x1b0/0x650
[ 1902.545716][T28459]  ? find_held_lock+0x2d/0x110
[ 1902.545729][T28459]  get_sigframe+0x4aa/0x9c0
[ 1902.545742][T28459]  ? __pfx_get_sigframe+0x10/0x10
[ 1902.545754][T28459]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1902.545766][T28459]  ? siginfo_layout+0x177/0x290
[ 1902.545783][T28459]  x64_setup_rt_frame+0x129/0xcf0
[ 1902.545797][T28459]  ? __pfx_x64_setup_rt_frame+0x10/0x10
[ 1902.545811][T28459]  arch_do_signal_or_restart+0x5e6/0x7e0
[ 1902.545823][T28459]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 1902.545842][T28459]  syscall_exit_to_user_mode+0x150/0x2a0
[ 1902.545855][T28459]  do_syscall_64+0xda/0x250
[ 1902.545869][T28459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1902.545884][T28459] RIP: 0033:0x7f1badb8d167
[ 1902.545893][T28459] Code: ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 <0f> 05 48 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89
[ 1902.545918][T28459] RSP: 002b:00007f1bae998038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1902.545928][T28459] RAX: 000000000000002e RBX: 00007f1badda5fa0 RCX: 00007f1badb8d169
[ 1902.545935][T28459] RDX: 0000000000000000 RSI: 0000400000000480 RDI: 0000000000000003
[ 1902.545941][T28459] RBP: 00007f1bae998090 R08: 0000000000000000 R09: 0000000000000000
[ 1902.545946][T28459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1902.545952][T28459] R13: 0000000000000000 R14: 00007f1badda5fa0 R15: 00007fff335bc098
[ 1902.545963][T28459]  </TASK>
[ 1903.523940][ T5820] Bluetooth: hci0: command 0x0405 tx timeout
[ 1903.585007][T28484] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1903.617196][T28484] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1903.968145][T28486] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1904.075262][T28486] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1904.845826][   T30] kauditd_printk_skb: 9 callbacks suppressed
[ 1904.845841][   T30] audit: type=1400 audit(1741550017.169:2118): avc:  denied  { cmd } for  pid=28492 comm="syz.4.6240" path="socket:[144115]" dev="sockfs" ino=144115 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[ 1905.034390][T28500] audit: audit_lost=8 audit_rate_limit=0 audit_backlog_limit=64
[ 1905.042650][T28500] audit: out of memory in audit_log_start
[ 1905.071278][ T5868] usb 3-1: new high-speed USB device number 50 using dummy_hcd
[ 1905.221062][ T5868] usb 3-1: Using ep0 maxpacket: 8
[ 1905.230839][ T5868] usb 3-1: New USB device found, idVendor=0c45, idProduct=613e, bcdDevice=c4.6d
[ 1905.253836][ T5868] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1905.262978][ T5868] usb 3-1: Product: syz
[ 1905.267488][ T5868] usb 3-1: Manufacturer: syz
[ 1905.281202][ T5820] Bluetooth: hci2: command 0x0405 tx timeout
[ 1905.283145][ T5868] usb 3-1: SerialNumber: syz
[ 1905.299968][ T5868] usb 3-1: config 0 descriptor??
[ 1905.324968][T28511] netlink: 112 bytes leftover after parsing attributes in process `syz.5.6246'.
[ 1905.337661][ T5868] gspca_main: sonixj-2.14.0 probing 0c45:613e
[ 1905.740445][ T5868] gspca_sonixj: reg_r err -32
[ 1905.745233][ T5868] sonixj 3-1:0.0: probe with driver sonixj failed with error -32
[ 1906.047366][   T30] audit: type=1400 audit(1741550018.361:2119): avc:  denied  { mounton } for  pid=28515 comm="syz.5.6248" path="/385/file0" dev="tmpfs" ino=2052 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=fifo_file permissive=1
[ 1906.132505][T28520] ip6t_rpfilter: unknown options
[ 1906.390440][T28530] FAULT_INJECTION: forcing a failure.
[ 1906.390440][T28530] name failslab, interval 1, probability 0, space 0, times 0
[ 1906.409314][T28530] CPU: 0 UID: 0 PID: 28530 Comm: syz.4.6254 Not tainted 6.14.0-rc5-syzkaller-00268-g1110ce6a1e34 #0
[ 1906.409341][T28530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1906.409352][T28530] Call Trace:
[ 1906.409358][T28530]  <TASK>
[ 1906.409365][T28530]  dump_stack_lvl+0x16c/0x1f0
[ 1906.409394][T28530]  should_fail_ex+0x50a/0x650
[ 1906.409416][T28530]  ? fs_reclaim_acquire+0xae/0x150
[ 1906.409438][T28530]  should_failslab+0xc2/0x120
[ 1906.409455][T28530]  kmem_cache_alloc_lru_noprof+0x73/0x3d0
[ 1906.409472][T28530]  ? __pfx_selinux_socket_create+0x10/0x10
[ 1906.409495][T28530]  ? sock_alloc_inode+0x25/0x1c0
[ 1906.409517][T28530]  ? __pfx_sock_alloc_inode+0x10/0x10
[ 1906.409532][T28530]  sock_alloc_inode+0x25/0x1c0
[ 1906.409548][T28530]  alloc_inode+0x5d/0x230
[ 1906.409568][T28530]  sock_alloc+0x40/0x280
[ 1906.409594][T28530]  __sock_create+0xc1/0x8d0
[ 1906.409618][T28530]  udp_sock_create6+0xc8/0x6a0
[ 1906.409637][T28530]  ? __pfx_lock_release+0x10/0x10
[ 1906.409661][T28530]  ? __pfx_udp_sock_create6+0x10/0x10
[ 1906.409681][T28530]  ? mark_held_locks+0x9f/0xe0
[ 1906.409705][T28530]  ? crng_make_state+0x46e/0x6d0
[ 1906.409729][T28530]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1906.409750][T28530]  ? crng_make_state+0x48e/0x6d0
[ 1906.409775][T28530]  rxrpc_open_socket+0x20c/0x6c0
[ 1906.409796][T28530]  ? __pfx_rxrpc_open_socket+0x10/0x10
[ 1906.409825][T28530]  ? lockdep_init_map_type+0x16d/0x7d0
[ 1906.409851][T28530]  ? rcu_is_watching+0x12/0xc0
[ 1906.409874][T28530]  rxrpc_lookup_local+0xa02/0x1220
[ 1906.409898][T28530]  ? __pfx_rxrpc_lookup_local+0x10/0x10
[ 1906.409919][T28530]  ? __local_bh_enable_ip+0xa4/0x120
[ 1906.409947][T28530]  rxrpc_sendmsg+0x375/0x5f0
[ 1906.409972][T28530]  ____sys_sendmsg+0xaaf/0xc90
[ 1906.409992][T28530]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1906.410023][T28530]  ___sys_sendmsg+0x135/0x1e0
[ 1906.410050][T28530]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1906.410091][T28530]  ? __pfx_lock_release+0x10/0x10
[ 1906.410114][T28530]  ? trace_lock_acquire+0x14e/0x1f0
[ 1906.410142][T28530]  ? __fget_files+0x206/0x3a0
[ 1906.410168][T28530]  __sys_sendmsg+0x16e/0x220
[ 1906.410193][T28530]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1906.410234][T28530]  do_syscall_64+0xcd/0x250
[ 1906.410258][T28530]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1906.410281][T28530] RIP: 0033:0x7f832338d169
[ 1906.410296][T28530] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1906.410311][T28530] RSP: 002b:00007f832429c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1906.410326][T28530] RAX: ffffffffffffffda RBX: 00007f83235a5fa0 RCX: 00007f832338d169
[ 1906.410336][T28530] RDX: 0000000000000000 RSI: 0000400000000180 RDI: 0000000000000003
[ 1906.410345][T28530] RBP: 00007f832429c090 R08: 0000000000000000 R09: 0000000000000000
[ 1906.410354][T28530] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1906.410362][T28530] R13: 0000000000000000 R14: 00007f83235a5fa0 R15: 00007ffc1def93a8
[ 1906.410383][T28530]  </TASK>
[ 1906.706577][T28530] socket: no more sockets
[ 1907.290549][ T5820] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1907.907093][T22573] usb 1-1: new full-speed USB device number 53 using dummy_hcd
[ 1908.051602][T28561] ip6t_rpfilter: unknown options
[ 1908.098497][T22573] usb 1-1: config 0 has an invalid interface number: 113 but max is 0
[ 1908.457998][T22573] usb 1-1: config 0 has no interface number 0
[ 1908.477281][T22573] usb 1-1: config 0 interface 113 altsetting 2 has an endpoint descriptor with address 0x14, changing to 0x4
[ 1908.509740][T22573] usb 1-1: config 0 interface 113 altsetting 2 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1908.532646][T22573] usb 1-1: config 0 interface 113 has no altsetting 0
[ 1908.550980][T22573] usb 1-1: New USB device found, idVendor=054c, idProduct=02e1, bcdDevice=e2.c8
[ 1908.569273][T22573] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1908.588806][T22573] usb 1-1: Product: syz
[ 1908.597552][T22573] usb 1-1: Manufacturer: syz
[ 1908.609539][T22573] usb 1-1: SerialNumber: syz
[ 1908.622822][T22573] usb 1-1: config 0 descriptor??
[ 1908.637680][T22573] pn533_usb 1-1:0.113: NFC: Could not find bulk-in or bulk-out endpoint
[ 1908.841030][T22573] usb 1-1: USB disconnect, device number 53
[ 1909.045650][ T5820] Bluetooth: hci2: command 0x0405 tx timeout
[ 1909.168622][ T5869] usb 3-1: USB disconnect, device number 50
[ 1910.475772][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[ 1910.573859][ T5868] usb 3-1: new high-speed USB device number 51 using dummy_hcd
[ 1910.763232][T28583] syzkaller1: entered promiscuous mode
[ 1910.768993][T28583] syzkaller1: entered allmulticast mode
[ 1910.803521][ T5868] usb 3-1: Using ep0 maxpacket: 8
[ 1910.812611][ T5868] usb 3-1: config 0 has an invalid interface number: 31 but max is 0
[ 1910.821397][ T5868] usb 3-1: config 0 has no interface number 0
[ 1910.984944][ T5868] usb 3-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[ 1911.059626][ T5868] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1911.124426][ T5868] usb 3-1: Product: syz
[ 1911.171323][ T5868] usb 3-1: Manufacturer: syz
[ 1911.199516][ T5868] usb 3-1: SerialNumber: syz
[ 1911.235125][ T5868] usb 3-1: config 0 descriptor??
[ 1911.559465][T28588] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1911.568059][T28588] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1912.332067][ T5871] usb 6-1: new high-speed USB device number 49 using dummy_hcd
[ 1912.539509][T28606] fuse: Bad value for 'fd'
[ 1913.012362][ T5871] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1913.031342][ T5871] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1913.041473][ T5871] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1913.050938][ T5871] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1913.072726][T28604] raw-gadget.7 gadget.5: fail, usb_ep_enable returned -22
[ 1913.082902][ T5871] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[ 1913.985534][ T5868] usb 3-1: Found UVC 0.04 device syz (046d:08c3)
[ 1913.994310][ T5868] usb 3-1: No streaming interface found for terminal 6.
[ 1914.029981][ T5868] usb 3-1: USB disconnect, device number 51
[ 1914.071069][T28619] FAULT_INJECTION: forcing a failure.
[ 1914.071069][T28619] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1914.317933][T28619] CPU: 1 UID: 0 PID: 28619 Comm: syz.0.6278 Not tainted 6.14.0-rc5-syzkaller-00268-g1110ce6a1e34 #0
[ 1914.317961][T28619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1914.317969][T28619] Call Trace:
[ 1914.317974][T28619]  <TASK>
[ 1914.317981][T28619]  dump_stack_lvl+0x16c/0x1f0
[ 1914.318006][T28619]  should_fail_ex+0x50a/0x650
[ 1914.318034][T28619]  _copy_from_iter+0x2a1/0x1560
[ 1914.318052][T28619]  ? find_held_lock+0x2d/0x110
[ 1914.318072][T28619]  ? __pfx__copy_from_iter+0x10/0x10
[ 1914.318086][T28619]  ? raw_sendmsg+0x139c/0x3850
[ 1914.318102][T28619]  ? __pfx_lock_release+0x10/0x10
[ 1914.318123][T28619]  ? trace_lock_acquire+0x14e/0x1f0
[ 1914.318143][T28619]  ? lock_acquire+0x2f/0xb0
[ 1914.318162][T28619]  ? raw_sendmsg+0x12f4/0x3850
[ 1914.318179][T28619]  raw_sendmsg+0x1804/0x3850
[ 1914.318201][T28619]  ? __pfx_raw_sendmsg+0x10/0x10
[ 1914.318212][T28619]  ? avc_has_perm_noaudit+0x143/0x3a0
[ 1914.318227][T28619]  ? __pfx_avc_has_perm+0x10/0x10
[ 1914.318241][T28619]  ? __pfx___lock_acquire+0x10/0x10
[ 1914.318259][T28619]  ? sock_has_perm+0x25a/0x2f0
[ 1914.318282][T28619]  ? __might_fault+0xe3/0x190
[ 1914.318302][T28619]  ? __might_fault+0xe3/0x190
[ 1914.318319][T28619]  ? __pfx_raw_sendmsg+0x10/0x10
[ 1914.318334][T28619]  inet_sendmsg+0x119/0x140
[ 1914.318356][T28619]  ____sys_sendmsg+0x98c/0xc90
[ 1914.318369][T28619]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1914.318385][T28619]  ___sys_sendmsg+0x135/0x1e0
[ 1914.318401][T28619]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1914.318425][T28619]  ? __pfx_lock_release+0x10/0x10
[ 1914.318446][T28619]  ? trace_lock_acquire+0x14e/0x1f0
[ 1914.318470][T28619]  ? __fget_files+0x206/0x3a0
[ 1914.318491][T28619]  __sys_sendmsg+0x16e/0x220
[ 1914.318509][T28619]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1914.318531][T28619]  do_syscall_64+0xcd/0x250
[ 1914.318545][T28619]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1914.318560][T28619] RIP: 0033:0x7f2d0f18d169
[ 1914.318573][T28619] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1914.318588][T28619] RSP: 002b:00007f2d0ff7e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1914.318603][T28619] RAX: ffffffffffffffda RBX: 00007f2d0f3a6080 RCX: 00007f2d0f18d169
[ 1914.318613][T28619] RDX: 0000000000000000 RSI: 0000400000000780 RDI: 0000000000000009
[ 1914.318622][T28619] RBP: 00007f2d0ff7e090 R08: 0000000000000000 R09: 0000000000000000
[ 1914.318631][T28619] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1914.318640][T28619] R13: 0000000000000000 R14: 00007f2d0f3a6080 R15: 00007fff2433f6f8
[ 1914.318654][T28619]  </TASK>
[ 1914.425780][T22573] usb 6-1: USB disconnect, device number 49
[ 1915.207053][T28628] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2831 sclass=netlink_route_socket pid=28628 comm=syz.2.6279
[ 1915.575595][   T30] audit: type=1400 audit(1741550027.901:2120): avc:  denied  { connect } for  pid=28633 comm="syz.2.6282" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[ 1915.795081][T28641] 9pnet_fd: Insufficient options for proto=fd
[ 1916.258452][T22573] usb 3-1: new high-speed USB device number 52 using dummy_hcd
[ 1916.420561][T22573] usb 3-1: config 0 interface 0 altsetting 254 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1916.432941][T22573] usb 3-1: config 0 interface 0 has no altsetting 0
[ 1916.492992][T22573] usb 3-1: New USB device found, idVendor=17ef, idProduct=6062, bcdDevice= 0.00
[ 1916.505024][T28647] ip6t_rpfilter: unknown options
[ 1916.513097][T22573] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1916.550734][T22573] usb 3-1: config 0 descriptor??
[ 1917.290657][T28658] FAULT_INJECTION: forcing a failure.
[ 1917.290657][T28658] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1917.304564][T28658] CPU: 0 UID: 0 PID: 28658 Comm: syz.5.6290 Not tainted 6.14.0-rc5-syzkaller-00268-g1110ce6a1e34 #0
[ 1917.304590][T28658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1917.304599][T28658] Call Trace:
[ 1917.304603][T28658]  <TASK>
[ 1917.304610][T28658]  dump_stack_lvl+0x16c/0x1f0
[ 1917.304634][T28658]  should_fail_ex+0x50a/0x650
[ 1917.304659][T28658]  _copy_from_iter+0x2a1/0x1560
[ 1917.304676][T28658]  ? trace_lock_acquire+0x14e/0x1f0
[ 1917.304695][T28658]  ? __alloc_skb+0x1fe/0x380
[ 1917.304715][T28658]  ? __pfx__copy_from_iter+0x10/0x10
[ 1917.304730][T28658]  ? __virt_addr_valid+0x1a4/0x590
[ 1917.304748][T28658]  ? __virt_addr_valid+0x5e/0x590
[ 1917.304764][T28658]  ? __phys_addr_symbol+0x30/0x80
[ 1917.304778][T28658]  ? __check_object_size+0x488/0x710
[ 1917.304801][T28658]  netlink_sendmsg+0x813/0xd70
[ 1917.304825][T28658]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1917.304853][T28658]  ____sys_sendmsg+0xaaf/0xc90
[ 1917.304871][T28658]  ? copy_msghdr_from_user+0x10b/0x160
[ 1917.304893][T28658]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1917.304919][T28658]  ___sys_sendmsg+0x135/0x1e0
[ 1917.304944][T28658]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1917.304974][T28658]  ? __pfx_lock_release+0x10/0x10
[ 1917.304995][T28658]  ? trace_lock_acquire+0x14e/0x1f0
[ 1917.305019][T28658]  ? __fget_files+0x206/0x3a0
[ 1917.305041][T28658]  __sys_sendmsg+0x16e/0x220
[ 1917.305064][T28658]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1917.305098][T28658]  do_syscall_64+0xcd/0x250
[ 1917.305120][T28658]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1917.305142][T28658] RIP: 0033:0x7f1badb8d169
[ 1917.305155][T28658] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1917.305168][T28658] RSP: 002b:00007f1bae998038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1917.305184][T28658] RAX: ffffffffffffffda RBX: 00007f1badda5fa0 RCX: 00007f1badb8d169
[ 1917.305194][T28658] RDX: 0000000000000000 RSI: 0000400000000040 RDI: 0000000000000003
[ 1917.305204][T28658] RBP: 00007f1bae998090 R08: 0000000000000000 R09: 0000000000000000
[ 1917.305220][T28658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1917.305229][T28658] R13: 0000000000000000 R14: 00007f1badda5fa0 R15: 00007fff335bc098
[ 1917.305251][T28658]  </TASK>
[ 1917.550137][T22573] lenovo 0003:17EF:6062.0036: unknown main item tag 0x1
[ 1917.557194][T22573] lenovo 0003:17EF:6062.0036: unknown main item tag 0x0
[ 1917.564982][T22573] lenovo 0003:17EF:6062.0036: hidraw0: USB HID v1.ff Device [HID 17ef:6062] on usb-dummy_hcd.2-1/input0
[ 1917.771601][ T4990] usb 3-1: USB disconnect, device number 52
[ 1917.781854][T28660] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1917.800311][T28660] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1919.219702][T28685] ip6t_rpfilter: unknown options
[ 1919.585094][T28675] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1920.459816][T28696] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6302'.
[ 1920.495344][ T5820] Bluetooth: hci2: unexpected event for opcode 0x0c05
[ 1921.648402][T28721] ip6t_rpfilter: unknown options
[ 1921.666101][ T5820] Bluetooth: hci3: command 0x0406 tx timeout
[ 1924.108424][T28747] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1925.327105][T28756] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6319'.
[ 1927.358348][T28773] netlink: 40 bytes leftover after parsing attributes in process `syz.4.6324'.
[ 1927.622122][T22573] usb 1-1: new high-speed USB device number 54 using dummy_hcd
[ 1928.158988][T28778] can: request_module (can-proto-0) failed.
[ 1928.303955][T22573] usb 1-1: Using ep0 maxpacket: 8
[ 1928.403518][T28787] erofs (device nbd5): cannot find valid erofs superblock
[ 1928.627119][T22573] usb 1-1: config 64 has an invalid interface number: 143 but max is 0
[ 1928.673207][T22573] usb 1-1: config 64 has no interface number 0
[ 1928.679385][T22573] usb 1-1: New USB device found, idVendor=13d3, idProduct=3327, bcdDevice=5c.31
[ 1928.691769][T22573] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1928.726381][T22573] usb 1-1: ath9k_htc: Device endpoint numbers are not the expected ones
[ 1929.165681][T22573] usb 1-1: USB disconnect, device number 54
[ 1929.779416][T28792] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1930.868987][T28816] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1932.036306][T28832] 9pnet_fd: Insufficient options for proto=fd
[ 1933.251296][   T30] audit: type=1400 audit(1741550045.580:2121): avc:  denied  { watch_mount } for  pid=28843 comm="syz.0.6344" path="/259" dev="tmpfs" ino=1385 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[ 1933.510384][T22573] usb 1-1: new high-speed USB device number 55 using dummy_hcd
[ 1934.379990][T22573] usb 1-1: Using ep0 maxpacket: 32
[ 1934.387199][T22573] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1934.399150][T22573] usb 1-1: New USB device found, idVendor=057e, idProduct=2009, bcdDevice= 0.00
[ 1934.408402][T22573] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1934.418362][T22573] usb 1-1: config 0 descriptor??
[ 1934.560101][T26859] usb 3-1: new high-speed USB device number 53 using dummy_hcd
[ 1934.786992][T26859] usb 3-1: New USB device found, idVendor=15f4, idProduct=0015, bcdDevice=fd.bf
[ 1934.905783][T26859] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1934.982233][T22573] nintendo 0003:057E:2009.0037: item fetching failed at offset 1/3
[ 1934.986095][T26859] usb 3-1: Product: syz
[ 1934.995306][T22573] nintendo 0003:057E:2009.0037: HID parse failed
[ 1935.007013][T26859] usb 3-1: Manufacturer: syz
[ 1935.016771][T26859] usb 3-1: SerialNumber: syz
[ 1935.017411][T22573] nintendo 0003:057E:2009.0037: probe - fail = -22
[ 1935.342595][T22573] nintendo 0003:057E:2009.0037: probe with driver nintendo failed with error -22
[ 1935.354145][T28859] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1935.362668][T28859] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1935.373280][T26859] dvb-usb: found a 'Hanftek UMT-010 DVB-T USB2.0' in warm state.
[ 1935.377108][T22573] usb 1-1: USB disconnect, device number 55
[ 1935.387203][T26859] dvb-usb: bulk message failed: -22 (3/0)
[ 1935.470483][T26859] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[ 1935.543346][T26859] dvbdev: DVB: registering new adapter (Hanftek UMT-010 DVB-T USB2.0)
[ 1935.554772][T26859] usb 3-1: media controller created
[ 1935.768705][T26859] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1935.830363][   T30] audit: type=1400 audit(1741550048.171:2122): avc:  denied  { create } for  pid=28869 comm="syz.3.6350" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[ 1935.846483][T28870] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6350'.
[ 1935.891177][   T30] audit: type=1400 audit(1741550048.171:2123): avc:  denied  { write } for  pid=28869 comm="syz.3.6350" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[ 1935.912448][T26859] DVB: Unable to find symbol mt352_attach()
[ 1935.918349][T26859] dvb-usb: no frontend was attached by 'Hanftek UMT-010 DVB-T USB2.0'
[ 1935.940098][T26859] dvb-usb: bulk message failed: -22 (3/0)
[ 1935.988372][T28873] FAULT_INJECTION: forcing a failure.
[ 1935.988372][T28873] name failslab, interval 1, probability 0, space 0, times 0
[ 1936.014670][T26859] dvb-usb: Hanftek UMT-010 DVB-T USB2.0 successfully initialized and connected.
[ 1936.029633][T28873] CPU: 0 UID: 0 PID: 28873 Comm: syz.5.6351 Not tainted 6.14.0-rc5-syzkaller-00268-g1110ce6a1e34 #0
[ 1936.029659][T28873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1936.029670][T28873] Call Trace:
[ 1936.029676][T28873]  <TASK>
[ 1936.029683][T28873]  dump_stack_lvl+0x16c/0x1f0
[ 1936.029710][T28873]  should_fail_ex+0x50a/0x650
[ 1936.029740][T28873]  should_failslab+0xc2/0x120
[ 1936.029760][T28873]  __kmalloc_node_track_caller_noprof+0xcf/0x510
[ 1936.029782][T28873]  ? sidtab_sid2str_get+0x17a/0x680
[ 1936.029813][T28873]  kmemdup_noprof+0x29/0x60
[ 1936.029838][T28873]  sidtab_sid2str_get+0x17a/0x680
[ 1936.029866][T28873]  sidtab_entry_to_string+0x33/0x110
[ 1936.029893][T28873]  security_sid_to_context_core+0x35c/0x640
[ 1936.029920][T28873]  avc_audit_post_callback+0x10b/0x8c0
[ 1936.029940][T28873]  ? audit_log_format+0xe9/0x130
[ 1936.029962][T28873]  ? __pfx_avc_audit_post_callback+0x10/0x10
[ 1936.029984][T28873]  ? skb_put+0x138/0x1b0
[ 1936.030004][T28873]  ? audit_log_n_string+0x253/0x540
[ 1936.030031][T28873]  ? audit_log_n_untrustedstring+0xf2/0x100
[ 1936.030058][T28873]  ? __pfx_avc_audit_post_callback+0x10/0x10
[ 1936.030074][T28873]  common_lsm_audit+0x33e/0x2290
[ 1936.030099][T28873]  ? __pfx_avc_audit_post_callback+0x10/0x10
[ 1936.030116][T28873]  ? __pfx_common_lsm_audit+0x10/0x10
[ 1936.030140][T28873]  ? find_held_lock+0x2d/0x110
[ 1936.030163][T28873]  ? __pfx_lock_release+0x10/0x10
[ 1936.030185][T28873]  ? __pfx_avc_node_free+0x10/0x10
[ 1936.030210][T28873]  ? rcu_is_watching+0x12/0xc0
[ 1936.030233][T28873]  ? slow_avc_audit+0x17d/0x210
[ 1936.030248][T28873]  slow_avc_audit+0x17d/0x210
[ 1936.030266][T28873]  ? __pfx_slow_avc_audit+0x10/0x10
[ 1936.030292][T28873]  ? avc_has_perm_noaudit+0x2fa/0x3a0
[ 1936.030314][T28873]  avc_has_perm+0x18d/0x1c0
[ 1936.030333][T28873]  ? __pfx_avc_has_perm+0x10/0x10
[ 1936.030355][T28873]  ? hlock_class+0x4e/0x130
[ 1936.030376][T28873]  sock_has_perm+0x253/0x2f0
[ 1936.030396][T28873]  ? __pfx_sock_has_perm+0x10/0x10
[ 1936.030418][T28873]  ? find_held_lock+0x2d/0x110
[ 1936.030448][T28873]  selinux_socket_setsockopt+0x41/0x80
[ 1936.030471][T28873]  security_socket_setsockopt+0x211/0x240
[ 1936.030494][T28873]  do_sock_setsockopt+0xf0/0x480
[ 1936.030511][T28873]  ? __pfx_do_sock_setsockopt+0x10/0x10
[ 1936.030529][T28873]  ? lock_acquire+0x2f/0xb0
[ 1936.030564][T28873]  __sys_setsockopt+0x1a0/0x230
[ 1936.030592][T28873]  __x64_sys_setsockopt+0xbd/0x160
[ 1936.030613][T28873]  ? do_syscall_64+0x91/0x250
[ 1936.030634][T28873]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1936.030655][T28873]  do_syscall_64+0xcd/0x250
[ 1936.030678][T28873]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1936.030702][T28873] RIP: 0033:0x7f1badb8d169
[ 1936.030716][T28873] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1936.030733][T28873] RSP: 002b:00007f1bae998038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1936.030750][T28873] RAX: ffffffffffffffda RBX: 00007f1badda5fa0 RCX: 00007f1badb8d169
[ 1936.030761][T28873] RDX: 0000000000000008 RSI: 0000000000000119 RDI: 0000000000000003
[ 1936.030772][T28873] RBP: 00007f1bae998090 R08: 0000000000000004 R09: 0000000000000000
[ 1936.030782][T28873] R10: 0000400000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1936.030792][T28873] R13: 0000000000000000 R14: 00007f1badda5fa0 R15: 00007fff335bc098
[ 1936.030816][T28873]  </TASK>
[ 1936.031167][   T30] audit: type=1400 audit(1741550048.321:2124): avc:  denied  { setopt } for  pid=28872 comm="syz.5.6351" ssid=146 tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[ 1936.052684][T26859] usb 3-1: USB disconnect, device number 53
[ 1936.344911][T28887] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1936.456402][T28887] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1936.553561][T26859] dvb-usb: Hanftek UMT-010 DVB-T USB2.0 successfully deinitialized and disconnected.
[ 1938.305634][ T5820] Bluetooth: hci0: command 0x0405 tx timeout
[ 1938.809141][   T30] audit: type=1400 audit(1741550051.061:2125): avc:  denied  { map } for  pid=28920 comm="syz.2.6364" path="socket:[146067]" dev="sockfs" ino=146067 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1
[ 1940.132928][T28931] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1940.169187][T28931] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1940.618804][ T5820] Bluetooth: hci0: command 0x0405 tx timeout
[ 1940.824120][T28943] FAULT_INJECTION: forcing a failure.
[ 1940.824120][T28943] name failslab, interval 1, probability 0, space 0, times 0
[ 1940.861695][T28943] CPU: 0 UID: 0 PID: 28943 Comm: syz.4.6373 Not tainted 6.14.0-rc5-syzkaller-00268-g1110ce6a1e34 #0
[ 1940.861722][T28943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1940.861733][T28943] Call Trace:
[ 1940.861738][T28943]  <TASK>
[ 1940.861745][T28943]  dump_stack_lvl+0x16c/0x1f0
[ 1940.861773][T28943]  should_fail_ex+0x50a/0x650
[ 1940.861803][T28943]  should_failslab+0xc2/0x120
[ 1940.861824][T28943]  kmem_cache_alloc_noprof+0x6e/0x3d0
[ 1940.861844][T28943]  ? skb_clone+0x190/0x3f0
[ 1940.861872][T28943]  skb_clone+0x190/0x3f0
[ 1940.861897][T28943]  netlink_deliver_tap+0xabd/0xd30
[ 1940.861925][T28943]  netlink_unicast+0x5e1/0x7f0
[ 1940.861957][T28943]  ? __pfx_netlink_unicast+0x10/0x10
[ 1940.861987][T28943]  netlink_sendmsg+0x8b8/0xd70
[ 1940.862014][T28943]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1940.862047][T28943]  ____sys_sendmsg+0xaaf/0xc90
[ 1940.862066][T28943]  ? copy_msghdr_from_user+0x10b/0x160
[ 1940.862090][T28943]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1940.862121][T28943]  ___sys_sendmsg+0x135/0x1e0
[ 1940.862146][T28943]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1940.862180][T28943]  ? __pfx_lock_release+0x10/0x10
[ 1940.862202][T28943]  ? trace_lock_acquire+0x14e/0x1f0
[ 1940.862231][T28943]  ? __fget_files+0x206/0x3a0
[ 1940.862255][T28943]  __sys_sendmsg+0x16e/0x220
[ 1940.862279][T28943]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1940.862319][T28943]  do_syscall_64+0xcd/0x250
[ 1940.862343][T28943]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1940.862365][T28943] RIP: 0033:0x7f832338d169
[ 1940.862379][T28943] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1940.862395][T28943] RSP: 002b:00007f832429c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1940.862413][T28943] RAX: ffffffffffffffda RBX: 00007f83235a5fa0 RCX: 00007f832338d169
[ 1940.862424][T28943] RDX: 0000000000000000 RSI: 0000400000000640 RDI: 0000000000000003
[ 1940.862434][T28943] RBP: 00007f832429c090 R08: 0000000000000000 R09: 0000000000000000
[ 1940.862444][T28943] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1940.862454][T28943] R13: 0000000000000000 R14: 00007f83235a5fa0 R15: 00007ffc1def93a8
[ 1940.862477][T28943]  </TASK>
[ 1941.661486][T22573] usb 3-1: new high-speed USB device number 54 using dummy_hcd
[ 1941.956149][T22573] usb 3-1: config 0 interface 0 altsetting 254 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1942.067687][T28956] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1942.074912][T28951] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1942.085522][T28951] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1942.094295][T28951] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1942.103155][T28951] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1942.116984][T28947] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1942.126955][T22573] usb 3-1: config 0 interface 0 has no altsetting 0
[ 1942.128582][T28951] vxlan0: entered promiscuous mode
[ 1942.133990][T22573] usb 3-1: New USB device found, idVendor=17ef, idProduct=6062, bcdDevice= 0.00
[ 1942.147888][T22573] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1942.156776][T28956] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1942.165569][T28951] vxlan0: entered allmulticast mode
[ 1942.171728][T22573] usb 3-1: config 0 descriptor??
[ 1942.190291][T28958] FAULT_INJECTION: forcing a failure.
[ 1942.190291][T28958] name failslab, interval 1, probability 0, space 0, times 0
[ 1942.203140][T28958] CPU: 1 UID: 0 PID: 28958 Comm: syz.5.6377 Not tainted 6.14.0-rc5-syzkaller-00268-g1110ce6a1e34 #0
[ 1942.203163][T28958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1942.203174][T28958] Call Trace:
[ 1942.203179][T28958]  <TASK>
[ 1942.203187][T28958]  dump_stack_lvl+0x16c/0x1f0
[ 1942.203213][T28958]  should_fail_ex+0x50a/0x650
[ 1942.203242][T28958]  should_failslab+0xc2/0x120
[ 1942.203262][T28958]  kmem_cache_alloc_noprof+0x6e/0x3d0
[ 1942.203281][T28958]  ? skb_clone+0x190/0x3f0
[ 1942.203309][T28958]  skb_clone+0x190/0x3f0
[ 1942.203334][T28958]  netlink_deliver_tap+0xabd/0xd30
[ 1942.203361][T28958]  netlink_unicast+0x5e1/0x7f0
[ 1942.203386][T28958]  ? __pfx_netlink_unicast+0x10/0x10
[ 1942.203414][T28958]  netlink_sendmsg+0x8b8/0xd70
[ 1942.203440][T28958]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1942.203472][T28958]  ____sys_sendmsg+0xaaf/0xc90
[ 1942.203492][T28958]  ? copy_msghdr_from_user+0x10b/0x160
[ 1942.203515][T28958]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1942.203543][T28958]  ___sys_sendmsg+0x135/0x1e0
[ 1942.203568][T28958]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1942.203602][T28958]  ? __pfx_lock_release+0x10/0x10
[ 1942.203624][T28958]  ? trace_lock_acquire+0x14e/0x1f0
[ 1942.203653][T28958]  ? __fget_files+0x206/0x3a0
[ 1942.203676][T28958]  __sys_sendmsg+0x16e/0x220
[ 1942.203699][T28958]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1942.203738][T28958]  do_syscall_64+0xcd/0x250
[ 1942.203763][T28958]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1942.203785][T28958] RIP: 0033:0x7f1badb8d169
[ 1942.203799][T28958] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1942.203814][T28958] RSP: 002b:00007f1bae998038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1942.203830][T28958] RAX: ffffffffffffffda RBX: 00007f1badda5fa0 RCX: 00007f1badb8d169
[ 1942.203840][T28958] RDX: 0000000000000000 RSI: 00004000000000c0 RDI: 0000000000000003
[ 1942.203850][T28958] RBP: 00007f1bae998090 R08: 0000000000000000 R09: 0000000000000000
[ 1942.203866][T28958] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1942.203875][T28958] R13: 0000000000000000 R14: 00007f1badda5fa0 R15: 00007fff335bc098
[ 1942.203898][T28958]  </TASK>
[ 1942.372283][T28949] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1942.372749][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1942.386336][T28949] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1942.453724][T28951] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1942.463116][T28951] netdevsim netdevsim3 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1942.472362][T28951] netdevsim netdevsim3 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1942.481278][T28951] netdevsim netdevsim3 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1942.548728][T28956] wlan0 speed is unknown, defaulting to 1000
[ 1942.579260][T28956] »»»»»» speed is unknown, defaulting to 1000
[ 1942.670771][T28956] »»»»»» speed is unknown, defaulting to 1000
[ 1942.777389][T22573] usbhid 3-1:0.0: can't add hid device: -71
[ 1942.783469][T22573] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[ 1942.788415][T26859] usb 6-1: new low-speed USB device number 50 using dummy_hcd
[ 1942.793237][T22573] usb 3-1: USB disconnect, device number 54
[ 1943.358384][T22573] usb 1-1: new high-speed USB device number 56 using dummy_hcd
[ 1943.406038][T26859] usb 6-1: device descriptor read/64, error -71
[ 1943.549834][T22573] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1943.561120][T22573] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1943.577911][T22573] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1943.587464][T22573] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1943.597806][T28973] raw-gadget.5 gadget.0: fail, usb_ep_enable returned -22
[ 1943.608622][T22573] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[ 1943.648403][T26859] usb 6-1: new low-speed USB device number 51 using dummy_hcd
[ 1943.678441][T10443] usb 3-1: new high-speed USB device number 55 using dummy_hcd
[ 1943.818489][T26859] usb 6-1: device descriptor read/64, error -71
[ 1943.858523][T10443] usb 3-1: Using ep0 maxpacket: 8
[ 1943.915926][T10443] usb 3-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[ 1943.955764][T10443] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1943.980602][T26859] usb usb6-port1: attempt power cycle
[ 1943.998473][T10443] usb 3-1: Product: syz
[ 1944.017274][T10443] usb 3-1: Manufacturer: syz
[ 1944.038101][T10443] usb 3-1: SerialNumber: syz
[ 1944.059932][T10443] usb 3-1: config 0 descriptor??
[ 1944.307265][T10443] usb 3-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[ 1944.348240][T26859] usb 6-1: new low-speed USB device number 52 using dummy_hcd
[ 1944.381174][T26859] usb 6-1: device descriptor read/8, error -71
[ 1944.648397][T26859] usb 6-1: new low-speed USB device number 53 using dummy_hcd
[ 1945.068635][T26859] usb 6-1: device descriptor read/8, error -71
[ 1945.153270][T28990] FAULT_INJECTION: forcing a failure.
[ 1945.153270][T28990] name failslab, interval 1, probability 0, space 0, times 0
[ 1945.172366][T28990] CPU: 0 UID: 0 PID: 28990 Comm: syz.3.6385 Not tainted 6.14.0-rc5-syzkaller-00268-g1110ce6a1e34 #0
[ 1945.172392][T28990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1945.172403][T28990] Call Trace:
[ 1945.172408][T28990]  <TASK>
[ 1945.172415][T28990]  dump_stack_lvl+0x16c/0x1f0
[ 1945.172446][T28990]  should_fail_ex+0x50a/0x650
[ 1945.172473][T28990]  should_failslab+0xc2/0x120
[ 1945.172494][T28990]  kmem_cache_alloc_noprof+0x6e/0x3d0
[ 1945.172513][T28990]  ? skb_clone+0x190/0x3f0
[ 1945.172543][T28990]  skb_clone+0x190/0x3f0
[ 1945.172568][T28990]  netlink_deliver_tap+0xabd/0xd30
[ 1945.172596][T28990]  netlink_unicast+0x5e1/0x7f0
[ 1945.172620][T28990]  ? __pfx_netlink_unicast+0x10/0x10
[ 1945.172650][T28990]  netlink_sendmsg+0x8b8/0xd70
[ 1945.172677][T28990]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1945.172710][T28990]  ____sys_sendmsg+0xaaf/0xc90
[ 1945.172730][T28990]  ? copy_msghdr_from_user+0x10b/0x160
[ 1945.172752][T28990]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1945.172783][T28990]  ___sys_sendmsg+0x135/0x1e0
[ 1945.172809][T28990]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1945.172844][T28990]  ? __pfx_lock_release+0x10/0x10
[ 1945.172867][T28990]  ? trace_lock_acquire+0x14e/0x1f0
[ 1945.172899][T28990]  ? __fget_files+0x206/0x3a0
[ 1945.172923][T28990]  __sys_sendmsg+0x16e/0x220
[ 1945.172948][T28990]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1945.172990][T28990]  do_syscall_64+0xcd/0x250
[ 1945.173013][T28990]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1945.173036][T28990] RIP: 0033:0x7fe68db8d169
[ 1945.173050][T28990] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1945.173065][T28990] RSP: 002b:00007fe68e9af038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1945.173082][T28990] RAX: ffffffffffffffda RBX: 00007fe68dda5fa0 RCX: 00007fe68db8d169
[ 1945.173093][T28990] RDX: 0000000000000000 RSI: 0000400000000200 RDI: 0000000000000003
[ 1945.173104][T28990] RBP: 00007fe68e9af090 R08: 0000000000000000 R09: 0000000000000000
[ 1945.173113][T28990] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1945.173122][T28990] R13: 0000000000000000 R14: 00007fe68dda5fa0 R15: 00007ffcd0226a98
[ 1945.173144][T28990]  </TASK>
[ 1945.257918][T26859] usb usb6-port1: unable to enumerate USB device
[ 1945.615393][T28994] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1945.682214][T28994] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1946.448058][ T5871] usb 6-1: new high-speed USB device number 54 using dummy_hcd
[ 1946.526110][T10443] dvb_usb_rtl28xxu 3-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[ 1946.537144][T10443] usb 3-1: USB disconnect, device number 55
[ 1946.717660][ T5871] usb 6-1: config 0 has an invalid interface number: 205 but max is 0
[ 1946.934048][ T5871] usb 6-1: config 0 has no interface number 0
[ 1947.049686][ T5871] usb 6-1: New USB device found, idVendor=1a0a, idProduct=0102, bcdDevice=cd.e9
[ 1947.062755][ T5871] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1947.080215][ T5871] usb 6-1: Product: syz
[ 1947.090356][ T5871] usb 6-1: Manufacturer: syz
[ 1947.096818][ T5871] usb 6-1: SerialNumber: syz
[ 1947.130984][T29002] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1947.141488][ T5871] usb 6-1: config 0 descriptor??
[ 1947.176430][ T5871] usb_ehset_test 6-1:0.205: probe with driver usb_ehset_test failed with error -32
[ 1947.482580][T10443] usb 1-1: USB disconnect, device number 56
[ 1947.507139][T28998] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1947.511788][T28997] wlan0 speed is unknown, defaulting to 1000
[ 1947.522605][T28997] »»»»»» speed is unknown, defaulting to 1000
[ 1947.529239][T28998] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1947.578965][T28997] »»»»»» speed is unknown, defaulting to 1000
[ 1947.629649][T26859] usb 6-1: USB disconnect, device number 54
[ 1947.677842][ T5871] usb 3-1: new high-speed USB device number 56 using dummy_hcd
[ 1947.838712][ T5871] usb 3-1: Using ep0 maxpacket: 16
[ 1947.901908][ T5871] usb 3-1: config 0 has no interfaces?
[ 1947.968870][ T5871] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1948.046990][ T5871] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1948.106948][ T5871] usb 3-1: Product: syz
[ 1948.116827][ T5871] usb 3-1: Manufacturer: syz
[ 1948.126234][ T5871] usb 3-1: SerialNumber: syz
[ 1948.160550][ T5871] usb 3-1: config 0 descriptor??
[ 1948.438671][ T5871] usb 3-1: USB disconnect, device number 56
[ 1948.694601][T29044] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1948.745765][T29044] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1949.287245][T29045] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1949.610943][T29045] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1949.820464][   T30] audit: type=1400 audit(1741550062.163:2126): avc:  denied  { listen } for  pid=29051 comm="syz.0.6404" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[ 1950.093523][T29039] wlan0 speed is unknown, defaulting to 1000
[ 1950.101554][T29039] »»»»»» speed is unknown, defaulting to 1000
[ 1950.110747][T29042] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1950.750759][T29042] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1950.754612][T29066] erofs (device nbd5): cannot find valid erofs superblock
[ 1951.295133][T29074] FAULT_INJECTION: forcing a failure.
[ 1951.295133][T29074] name failslab, interval 1, probability 0, space 0, times 0
[ 1951.311145][T29074] CPU: 0 UID: 0 PID: 29074 Comm: syz.4.6411 Not tainted 6.14.0-rc5-syzkaller-00268-g1110ce6a1e34 #0
[ 1951.311172][T29074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1951.311182][T29074] Call Trace:
[ 1951.311188][T29074]  <TASK>
[ 1951.311195][T29074]  dump_stack_lvl+0x16c/0x1f0
[ 1951.311224][T29074]  should_fail_ex+0x50a/0x650
[ 1951.311250][T29074]  ? fs_reclaim_acquire+0xae/0x150
[ 1951.311277][T29074]  should_failslab+0xc2/0x120
[ 1951.311297][T29074]  __kmalloc_node_noprof+0xd1/0x510
[ 1951.311317][T29074]  ? crypto_alloc_tfmmem.isra.0+0x38/0x110
[ 1951.311338][T29074]  ? __pfx_crypto_alg_extsize+0x10/0x10
[ 1951.311361][T29074]  crypto_alloc_tfmmem.isra.0+0x38/0x110
[ 1951.311381][T29074]  crypto_create_tfm_node+0x83/0x320
[ 1951.311402][T29074]  crypto_alloc_tfm_node+0x102/0x260
[ 1951.311423][T29074]  __keyctl_dh_compute+0x2b5/0xf50
[ 1951.311441][T29074]  ? find_held_lock+0x2d/0x110
[ 1951.311460][T29074]  ? __pfx___lock_acquire+0x10/0x10
[ 1951.311483][T29074]  ? __pfx___keyctl_dh_compute+0x10/0x10
[ 1951.311500][T29074]  ? ksys_write+0x12b/0x250
[ 1951.311528][T29074]  ? __pfx_lock_release+0x10/0x10
[ 1951.311551][T29074]  ? trace_lock_acquire+0x14e/0x1f0
[ 1951.311585][T29074]  keyctl_dh_compute+0xd3/0x140
[ 1951.311600][T29074]  ? __pfx_keyctl_dh_compute+0x10/0x10
[ 1951.311621][T29074]  ? ksys_write+0x1ba/0x250
[ 1951.311636][T29074]  ? __pfx_ksys_write+0x10/0x10
[ 1951.311656][T29074]  __do_sys_keyctl+0x4df/0x590
[ 1951.311679][T29074]  do_syscall_64+0xcd/0x250
[ 1951.311703][T29074]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1951.311726][T29074] RIP: 0033:0x7f832338d169
[ 1951.311741][T29074] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1951.311757][T29074] RSP: 002b:00007f832429c038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[ 1951.311774][T29074] RAX: ffffffffffffffda RBX: 00007f83235a5fa0 RCX: 00007f832338d169
[ 1951.311785][T29074] RDX: 0000000000000000 RSI: 0000400000000100 RDI: 0000000000000017
[ 1951.311796][T29074] RBP: 00007f832429c090 R08: 0000400000000180 R09: 0000000000000000
[ 1951.311807][T29074] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1951.311816][T29074] R13: 0000000000000000 R14: 00007f83235a5fa0 R15: 00007ffc1def93a8
[ 1951.311838][T29074]  </TASK>
[ 1951.311867][T29074] could not allocate digest TFM handle sha224-ssse3
[ 1951.604782][T29039] »»»»»» speed is unknown, defaulting to 1000
[ 1952.004348][T14501] Bluetooth: hci3: command 0x0406 tx timeout
[ 1952.502721][T29080] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1953.174871][T29113] FAULT_INJECTION: forcing a failure.
[ 1953.174871][T29113] name failslab, interval 1, probability 0, space 0, times 0
[ 1953.187786][T29113] CPU: 0 UID: 0 PID: 29113 Comm: syz.2.6423 Not tainted 6.14.0-rc5-syzkaller-00268-g1110ce6a1e34 #0
[ 1953.187807][T29113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1953.187814][T29113] Call Trace:
[ 1953.187818][T29113]  <TASK>
[ 1953.187823][T29113]  dump_stack_lvl+0x16c/0x1f0
[ 1953.187841][T29113]  should_fail_ex+0x50a/0x650
[ 1953.187858][T29113]  ? fs_reclaim_acquire+0xae/0x150
[ 1953.187874][T29113]  ? sctp_auth_shkey_create+0x87/0x1f0
[ 1953.187888][T29113]  should_failslab+0xc2/0x120
[ 1953.187900][T29113]  __kmalloc_cache_noprof+0x68/0x410
[ 1953.187916][T29113]  ? __genradix_ptr_alloc+0x32e/0x5d0
[ 1953.187931][T29113]  sctp_auth_shkey_create+0x87/0x1f0
[ 1953.187945][T29113]  sctp_auth_asoc_copy_shkeys+0x1f4/0x360
[ 1953.187961][T29113]  sctp_association_new+0x1976/0x2ab0
[ 1953.187979][T29113]  sctp_connect_new_asoc+0x1b7/0x790
[ 1953.187996][T29113]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[ 1953.188012][T29113]  ? selinux_sctp_bind_connect+0x112/0x2c0
[ 1953.188028][T29113]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[ 1953.188042][T29113]  sctp_sendmsg+0x1610/0x1eb0
[ 1953.188056][T29113]  ? avc_has_perm+0x11b/0x1c0
[ 1953.188075][T29113]  ? __pfx_sctp_sendmsg+0x10/0x10
[ 1953.188093][T29113]  ? __pfx_sock_has_perm+0x10/0x10
[ 1953.188112][T29113]  ? __pfx_sctp_sendmsg+0x10/0x10
[ 1953.188127][T29113]  inet_sendmsg+0x119/0x140
[ 1953.188144][T29113]  __sys_sendto+0x42a/0x4f0
[ 1953.188159][T29113]  ? __pfx___sys_sendto+0x10/0x10
[ 1953.188186][T29113]  __x64_sys_sendto+0xe0/0x1c0
[ 1953.188200][T29113]  ? do_syscall_64+0x9a/0x250
[ 1953.188214][T29113]  do_syscall_64+0xcd/0x250
[ 1953.188228][T29113]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1953.188243][T29113] RIP: 0033:0x7f4654d8d169
[ 1953.188252][T29113] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1953.188262][T29113] RSP: 002b:00007f4655b56038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[ 1953.188272][T29113] RAX: ffffffffffffffda RBX: 00007f4654fa6160 RCX: 00007f4654d8d169
[ 1953.188278][T29113] RDX: 000000000000fee4 RSI: 0000400000847fff RDI: 0000000000000009
[ 1953.188284][T29113] RBP: 00007f4655b56090 R08: 000040000005ffe4 R09: 000000000000001c
[ 1953.188290][T29113] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1953.188295][T29113] R13: 0000000000000000 R14: 00007f4654fa6160 R15: 00007ffebd72c418
[ 1953.188308][T29113]  </TASK>
[ 1954.338315][T10443] usb 3-1: new high-speed USB device number 57 using dummy_hcd
[ 1954.517295][T10443] usb 3-1: Using ep0 maxpacket: 8
[ 1954.528033][T10443] usb 3-1: New USB device found, idVendor=07ca, idProduct=a868, bcdDevice=c4.d4
[ 1954.537493][T10443] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1954.707212][T14501] Bluetooth: hci3: command 0x0406 tx timeout
[ 1954.707844][T10443] usb 3-1: config 0 descriptor??
[ 1954.912071][T10443] dvb-usb: found a 'AVerMedia AVerTVHD Volar (A868R)' in warm state.
[ 1955.060704][   T30] audit: type=1400 audit(1741550067.393:2127): avc:  denied  { write } for  pid=29116 comm="syz.2.6425" name="loop-control" dev="devtmpfs" ino=646 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[ 1955.499621][T10443] cxusb: set interface failed
[ 1955.511049][T10443] dvb-usb: bulk message failed: -22 (1/0)
[ 1955.550734][T10443] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[ 1955.602948][T10443] dvbdev: DVB: registering new adapter (AVerMedia AVerTVHD Volar (A868R))
[ 1955.617499][T10443] usb 3-1: media controller created
[ 1955.634489][T10443] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1955.772582][T29140] wlan0 speed is unknown, defaulting to 1000
[ 1955.779574][T29140] »»»»»» speed is unknown, defaulting to 1000
[ 1955.825376][T10443] DVB: Unable to find symbol lgdt330x_attach()
[ 1955.831986][T10443] dvb-usb: no frontend was attached by 'AVerMedia AVerTVHD Volar (A868R)'
[ 1955.855250][   T30] audit: type=1400 audit(1741550068.193:2128): avc:  denied  { connect } for  pid=29146 comm="syz.0.6434" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 1956.386766][T10443] dvb-usb: bulk message failed: -22 (1/0)
[ 1956.392657][T10443] dvb-usb: AVerMedia AVerTVHD Volar (A868R) successfully initialized and connected.
[ 1956.420983][T10443] usb 3-1: USB disconnect, device number 57
[ 1956.518001][T10443] dvb-usb: AVerMedia AVerTVHD Volar (A868R) successfully deinitialized and disconnected.
[ 1956.552788][T29155] netlink: 56 bytes leftover after parsing attributes in process `syz.3.6436'.
[ 1956.648246][T29157] audit: audit_lost=9 audit_rate_limit=0 audit_backlog_limit=64
[ 1956.655950][T29157] audit: out of memory in audit_log_start
[ 1956.661799][   T30] audit: type=1400 audit(1741550068.993:2129): avc:  denied  { bind } for  pid=29156 comm="syz.0.6435" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[ 1956.717485][T29159] 9pnet_fd: Insufficient options for proto=fd
[ 1956.815446][T29140] »»»»»» speed is unknown, defaulting to 1000
[ 1959.295418][T29187] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1959.305772][T29187] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1959.349148][   T30] audit: type=1400 audit(2000000000.000:2130): avc:  denied  { map } for  pid=29190 comm="syz.5.6446" path="/dev/sg0" dev="devtmpfs" ino=738 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[ 1959.607136][T10443] usb 1-1: new high-speed USB device number 57 using dummy_hcd
[ 2064.356827][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[ 2064.363795][    C1] rcu: 	0-...!: (0 ticks this GP) idle=9444/1/0x4000000000000000 softirq=179981/179981 fqs=5
[ 2064.376149][    C1] rcu: 	(detected by 1, t=10503 jiffies, g=178865, q=181 ncpus=2)
[ 2064.383962][    C1] Sending NMI from CPU 1 to CPUs 0:
[ 2064.383986][    C0] NMI backtrace for cpu 0
[ 2064.383996][    C0] CPU: 0 UID: 0 PID: 18762 Comm: kworker/u8:24 Not tainted 6.14.0-rc5-syzkaller-00268-g1110ce6a1e34 #0
[ 2064.384013][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 2064.384023][    C0] Workqueue: bat_events batadv_nc_worker
[ 2064.384047][    C0] RIP: 0010:hlock_class+0x49/0x130
[ 2064.384063][    C0] Code: 74 08 3c 03 0f 8e da 00 00 00 0f b7 5b 20 66 81 e3 ff 1f 0f b7 db be 08 00 00 00 48 89 d8 48 c1 e8 06 48 8d 3c c5 c0 5c ec 96 <e8> 02 50 87 00 48 0f a3 1d 0a 96 56 15 73 13 48 69 c3 c8 00 00 00
[ 2064.384076][    C0] RSP: 0018:ffffc900000079e0 EFLAGS: 00000006
[ 2064.384087][    C0] RAX: 0000000000000035 RBX: 0000000000000d55 RCX: 0000000000000000
[ 2064.384096][    C0] RDX: 1ffff1100904d5f4 RSI: 0000000000000008 RDI: ffffffff96ec5e68
[ 2064.384105][    C0] RBP: ffffc90000007b28 R08: 0000000000000002 R09: 0000000000000001
[ 2064.384114][    C0] R10: ffffffff96ec5e6f R11: 0000000000000003 R12: ffff88804826a440
[ 2064.384123][    C0] R13: 0000000000000001 R14: 0000000000000000 R15: 1ffff92000000f44
[ 2064.384132][    C0] FS:  0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[ 2064.384146][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2064.384156][    C0] CR2: 0000000000000000 CR3: 000000004ed26000 CR4: 00000000003526f0
[ 2064.384165][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2064.384173][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2064.384181][    C0] Call Trace:
[ 2064.384188][    C0]  <NMI>
[ 2064.384194][    C0]  ? nmi_cpu_backtrace+0x1d8/0x390
[ 2064.384209][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x20
[ 2064.384227][    C0]  ? nmi_handle+0x1ac/0x5d0
[ 2064.384246][    C0]  ? hlock_class+0x49/0x130
[ 2064.384259][    C0]  ? default_do_nmi+0x6a/0x160
[ 2064.384272][    C0]  ? exc_nmi+0x170/0x1e0
[ 2064.384284][    C0]  ? end_repeat_nmi+0xf/0x53
[ 2064.384305][    C0]  ? hlock_class+0x49/0x130
[ 2064.384319][    C0]  ? hlock_class+0x49/0x130
[ 2064.384333][    C0]  ? hlock_class+0x49/0x130
[ 2064.384347][    C0]  </NMI>
[ 2064.384352][    C0]  <IRQ>
[ 2064.384357][    C0]  mark_lock+0xb5/0xc60
[ 2064.384373][    C0]  ? mark_lock+0xb5/0xc60
[ 2064.384389][    C0]  ? hlock_class+0x4e/0x130
[ 2064.384402][    C0]  ? __lock_acquire+0x15a9/0x3c40
[ 2064.384419][    C0]  ? __pfx_mark_lock+0x10/0x10
[ 2064.384435][    C0]  ? __pfx_mark_lock+0x10/0x10
[ 2064.384453][    C0]  ? hlock_class+0x4e/0x130
[ 2064.384468][    C0]  ? hlock_class+0x4e/0x130
[ 2064.384481][    C0]  ? __lock_acquire+0x15a9/0x3c40
[ 2064.384499][    C0]  __lock_acquire+0x1390/0x3c40
[ 2064.384520][    C0]  ? __pfx___lock_acquire+0x10/0x10
[ 2064.384538][    C0]  ? __pfx___lock_acquire+0x10/0x10
[ 2064.384556][    C0]  ? lock_acquire.part.0+0x11b/0x380
[ 2064.384581][    C0]  lock_acquire.part.0+0x11b/0x380
[ 2064.384598][    C0]  ? advance_sched+0xd8/0xc60
[ 2064.384612][    C0]  ? __pfx_lock_acquire.part.0+0x10/0x10
[ 2064.384630][    C0]  ? rcu_is_watching+0x12/0xc0
[ 2064.384645][    C0]  ? trace_lock_acquire+0x14e/0x1f0
[ 2064.384659][    C0]  ? advance_sched+0xd8/0xc60
[ 2064.384672][    C0]  ? lock_acquire+0x2f/0xb0
[ 2064.384688][    C0]  ? advance_sched+0xd8/0xc60
[ 2064.384701][    C0]  ? __pfx_advance_sched+0x10/0x10
[ 2064.384713][    C0]  _raw_spin_lock+0x2e/0x40
[ 2064.384726][    C0]  ? advance_sched+0xd8/0xc60
[ 2064.384738][    C0]  advance_sched+0xd8/0xc60
[ 2064.384752][    C0]  ? timerqueue_del+0x83/0x150
[ 2064.384771][    C0]  ? do_raw_spin_unlock+0x172/0x230
[ 2064.384784][    C0]  ? __pfx_advance_sched+0x10/0x10
[ 2064.384796][    C0]  __hrtimer_run_queues+0x20a/0xae0
[ 2064.384813][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[ 2064.384826][    C0]  ? read_tsc+0x9/0x20
[ 2064.384844][    C0]  hrtimer_interrupt+0x392/0x8e0
[ 2064.384862][    C0]  __sysvec_apic_timer_interrupt+0x10f/0x400
[ 2064.384882][    C0]  sysvec_apic_timer_interrupt+0x9f/0xc0
[ 2064.384898][    C0]  </IRQ>
[ 2064.384903][    C0]  <TASK>
[ 2064.384908][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 2064.384926][    C0] RIP: 0010:__local_bh_enable_ip+0xac/0x120
[ 2064.384947][    C0] Code: 1d 61 ad 87 7e 65 8b 05 5a ad 87 7e a9 00 ff ff 00 74 4d bf 01 00 00 00 e8 41 db 0b 00 e8 cc 7c 45 00 fb 65 8b 05 3c ad 87 7e <85> c0 74 52 5b 5d c3 cc cc cc cc 65 8b 05 6e 5c 86 7e 85 c0 75 9e
[ 2064.384959][    C0] RSP: 0018:ffffc900043c7a98 EFLAGS: 00000206
[ 2064.384970][    C0] RAX: 0000000080000000 RBX: 00000000fffffe00 RCX: 1ffffffff2de464a
[ 2064.384979][    C0] RDX: 0000000000000000 RSI: ffffffff8b6cfb00 RDI: ffffffff8bd368a0
[ 2064.384988][    C0] RBP: ffffffff8b25f566 R08: 0000000000000001 R09: fffffbfff2dd8bb5
[ 2064.384997][    C0] R10: ffffffff96ec5daf R11: 0000000000000002 R12: ffffffff8b25f910
[ 2064.385006][    C0] R13: ffff88805a6ad500 R14: 0000000000000000 R15: ffff888024995780
[ 2064.385016][    C0]  ? __pfx_batadv_nc_to_purge_nc_path_decoding+0x10/0x10
[ 2064.385035][    C0]  ? batadv_nc_purge_paths+0x1c6/0x390
[ 2064.385056][    C0]  ? __local_bh_enable_ip+0xa4/0x120
[ 2064.385075][    C0]  batadv_nc_purge_paths+0x1c6/0x390
[ 2064.385094][    C0]  batadv_nc_worker+0x94a/0x1060
[ 2064.385114][    C0]  ? __pfx_batadv_nc_worker+0x10/0x10
[ 2064.385131][    C0]  ? rcu_is_watching+0x12/0xc0
[ 2064.385144][    C0]  ? trace_lock_acquire+0x14e/0x1f0
[ 2064.385173][    C0]  ? process_one_work+0x921/0x1ba0
[ 2064.385190][    C0]  ? lock_acquire+0x2f/0xb0
[ 2064.385206][    C0]  ? process_one_work+0x921/0x1ba0
[ 2064.385223][    C0]  process_one_work+0x9c5/0x1ba0
[ 2064.385242][    C0]  ? __pfx_nsim_dev_trap_report_work+0x10/0x10
[ 2064.385259][    C0]  ? __pfx_process_one_work+0x10/0x10
[ 2064.385278][    C0]  ? assign_work+0x1a0/0x250
[ 2064.385294][    C0]  worker_thread+0x6c8/0xf00
[ 2064.385315][    C0]  ? __pfx_worker_thread+0x10/0x10
[ 2064.385332][    C0]  kthread+0x3af/0x750
[ 2064.385348][    C0]  ? __pfx_kthread+0x10/0x10
[ 2064.385363][    C0]  ? lock_acquire+0x2f/0xb0
[ 2064.385381][    C0]  ? __pfx_kthread+0x10/0x10
[ 2064.385396][    C0]  ret_from_fork+0x45/0x80
[ 2064.385412][    C0]  ? __pfx_kthread+0x10/0x10
[ 2064.385427][    C0]  ret_from_fork_asm+0x1a/0x30
[ 2064.385445][    C0]  </TASK>
[ 2064.385983][    C1] rcu: rcu_preempt kthread starved for 10475 jiffies! g178865 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
[ 2064.973678][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[ 2064.983639][    C1] rcu: RCU grace-period kthread stack dump:
[ 2064.989515][    C1] task:rcu_preempt     state:R  running task     stack:27552 pid:18    tgid:18    ppid:2      task_flags:0x208040 flags:0x00004000
[ 2065.003003][    C1] Call Trace:
[ 2065.006274][    C1]  <TASK>
[ 2065.009202][    C1]  __schedule+0xf43/0x5890
[ 2065.013620][    C1]  ? __pfx___lock_acquire+0x10/0x10
[ 2065.018830][    C1]  ? __pfx___schedule+0x10/0x10
[ 2065.023675][    C1]  ? schedule+0x298/0x350
[ 2065.028521][    C1]  ? __pfx_lock_release+0x10/0x10
[ 2065.033564][    C1]  ? lock_acquire+0x2f/0xb0
[ 2065.038066][    C1]  ? schedule+0x1fd/0x350
[ 2065.042391][    C1]  schedule+0xe7/0x350
[ 2065.046456][    C1]  schedule_timeout+0x124/0x280
[ 2065.051298][    C1]  ? __pfx_schedule_timeout+0x10/0x10
[ 2065.056663][    C1]  ? __pfx_process_timeout+0x10/0x10
[ 2065.061946][    C1]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 2065.067747][    C1]  ? prepare_to_swait_event+0xf3/0x470
[ 2065.073224][    C1]  rcu_gp_fqs_loop+0x1eb/0xb00
[ 2065.078046][    C1]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[ 2065.083344][    C1]  ? rcu_gp_init+0xc82/0x1630
[ 2065.088023][    C1]  ? _raw_spin_unlock_irq+0x2e/0x50
[ 2065.093228][    C1]  rcu_gp_kthread+0x271/0x380
[ 2065.097912][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 2065.103110][    C1]  ? lockdep_hardirqs_on+0x7c/0x110
[ 2065.108318][    C1]  ? __kthread_parkme+0x148/0x220
[ 2065.113338][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 2065.118537][    C1]  kthread+0x3af/0x750
[ 2065.122607][    C1]  ? __pfx_kthread+0x10/0x10
[ 2065.127218][    C1]  ? __pfx_kthread+0x10/0x10
[ 2065.131819][    C1]  ret_from_fork+0x45/0x80
[ 2065.136253][    C1]  ? __pfx_kthread+0x10/0x10
[ 2065.140861][    C1]  ret_from_fork_asm+0x1a/0x30
[ 2065.145644][    C1]  </TASK>
[ 2065.148655][    C1] rcu: Stack dump where RCU GP kthread last ran:
[ 2065.154971][    C1] CPU: 1 UID: 0 PID: 29161 Comm: syz.3.6438 Not tainted 6.14.0-rc5-syzkaller-00268-g1110ce6a1e34 #0
[ 2065.165720][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 2065.175767][    C1] RIP: 0010:smp_call_function_many_cond+0x4c6/0x12c0
[ 2065.182439][    C1] Code: 0c 00 85 ed 74 4d 48 b8 00 00 00 00 00 fc ff df 4d 89 fc 4c 89 fd 49 c1 ec 03 83 e5 07 49 01 c4 83 c5 03 e8 ac 0e 0c 00 f3 90 <41> 0f b6 04 24 40 38 c5 7c 08 84 c0 0f 85 e8 0b 00 00 8b 43 08 31
[ 2065.202040][    C1] RSP: 0018:ffffc90003b3f5c0 EFLAGS: 00000246
[ 2065.208102][    C1] RAX: 0000000000080000 RBX: ffff8880b8646a00 RCX: ffffc9001785c000
[ 2065.216067][    C1] RDX: 0000000000080000 RSI: ffffffff81ade234 RDI: 0000000000000005
[ 2065.224030][    C1] RBP: 0000000000000003 R08: 0000000000000005 R09: 0000000000000000
[ 2065.232016][    C1] R10: 0000000000000001 R11: 0000000000000001 R12: ffffed10170c8d41
[ 2065.239994][    C1] R13: 0000000000000001 R14: ffff8880b873fe80 R15: ffff8880b8646a08
[ 2065.247982][    C1] FS:  00007fe68e9af6c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[ 2065.256906][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2065.263484][    C1] CR2: 0000000000000000 CR3: 000000004ed26000 CR4: 00000000003526f0
[ 2065.271452][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2065.279414][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2065.287374][    C1] Call Trace:
[ 2065.290645][    C1]  <IRQ>
[ 2065.293483][    C1]  ? rcu_check_gp_kthread_starvation+0x31b/0x450
[ 2065.299808][    C1]  ? do_raw_spin_unlock+0x172/0x230
[ 2065.305000][    C1]  ? rcu_sched_clock_irq+0x247a/0x3310
[ 2065.310462][    C1]  ? timekeeping_advance+0x72e/0xa90
[ 2065.315746][    C1]  ? __pfx_rcu_sched_clock_irq+0x10/0x10
[ 2065.321376][    C1]  ? __asan_memcpy+0x3c/0x60
[ 2065.325968][    C1]  ? cgroup_rstat_updated+0x2a/0xb20
[ 2065.331255][    C1]  ? rcu_is_watching+0x12/0xc0
[ 2065.336019][    C1]  ? update_process_times+0x178/0x2d0
[ 2065.341393][    C1]  ? __pfx_update_process_times+0x10/0x10
[ 2065.347126][    C1]  ? update_wall_time+0x1c/0x40
[ 2065.351974][    C1]  ? tick_nohz_handler+0x376/0x530
[ 2065.357093][    C1]  ? __pfx_tick_nohz_handler+0x10/0x10
[ 2065.362543][    C1]  ? __hrtimer_run_queues+0x5fb/0xae0
[ 2065.367914][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[ 2065.373626][    C1]  ? read_tsc+0x9/0x20
[ 2065.377702][    C1]  ? hrtimer_interrupt+0x392/0x8e0
[ 2065.382819][    C1]  ? __sysvec_apic_timer_interrupt+0x10f/0x400
[ 2065.388976][    C1]  ? sysvec_apic_timer_interrupt+0x9f/0xc0
[ 2065.394777][    C1]  </IRQ>
[ 2065.397699][    C1]  <TASK>
[ 2065.400622][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 2065.406781][    C1]  ? smp_call_function_many_cond+0x4c4/0x12c0
[ 2065.412841][    C1]  ? smp_call_function_many_cond+0x4c6/0x12c0
[ 2065.418919][    C1]  ? __pfx_flush_tlb_func+0x10/0x10
[ 2065.424115][    C1]  on_each_cpu_cond_mask+0x40/0x90
[ 2065.429221][    C1]  flush_tlb_mm_range+0x271/0x4a0
[ 2065.434246][    C1]  ? __pfx_flush_tlb_mm_range+0x10/0x10
[ 2065.439800][    C1]  tlb_finish_mmu+0x3c9/0x7b0
[ 2065.444490][    C1]  vms_clear_ptes+0x560/0x770
[ 2065.449169][    C1]  ? __pfx_vms_clear_ptes+0x10/0x10
[ 2065.454372][    C1]  ? may_expand_vm+0xe8/0x430
[ 2065.459064][    C1]  __mmap_region+0x4de/0x2760
[ 2065.463759][    C1]  ? __pfx___mmap_region+0x10/0x10
[ 2065.468869][    C1]  ? hlock_class+0x4e/0x130
[ 2065.473380][    C1]  ? hlock_class+0x4e/0x130
[ 2065.477877][    C1]  ? mark_lock+0xb5/0xc60
[ 2065.482207][    C1]  ? __pfx_mark_lock+0x10/0x10
[ 2065.486972][    C1]  ? __pfx___schedule+0x10/0x10
[ 2065.491853][    C1]  ? mm_get_unmapped_area+0x95/0xe0
[ 2065.497058][    C1]  mmap_region+0x1ab/0x3f0
[ 2065.501473][    C1]  do_mmap+0xd8d/0x11b0
[ 2065.505633][    C1]  ? __pfx_do_mmap+0x10/0x10
[ 2065.510230][    C1]  ? __pfx_down_write_killable+0x10/0x10
[ 2065.515869][    C1]  vm_mmap_pgoff+0x203/0x3a0
[ 2065.520478][    C1]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 2065.526043][    C1]  ? __x64_sys_futex+0x1e1/0x4c0
[ 2065.530985][    C1]  ? __x64_sys_futex+0x1ea/0x4c0
[ 2065.535922][    C1]  ksys_mmap_pgoff+0x7d/0x5c0
[ 2065.540605][    C1]  ? rcu_is_watching+0x12/0xc0
[ 2065.545369][    C1]  __x64_sys_mmap+0x125/0x190
[ 2065.550065][    C1]  do_syscall_64+0xcd/0x250
[ 2065.554596][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2065.560519][    C1] RIP: 0033:0x7fe68db8d169
[ 2065.564939][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2065.584547][    C1] RSP: 002b:00007fe68e9af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 2065.592965][    C1] RAX: ffffffffffffffda RBX: 00007fe68dda5fa0 RCX: 00007fe68db8d169
[ 2065.600928][    C1] RDX: b635773f06ebbeee RSI: 0000000000b36000 RDI: 0000400000000000
[ 2065.608889][    C1] RBP: 00007fe68dc0e2a0 R08: ffffffffffffffff R09: 0000000000000000
[ 2065.616851][    C1] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000000
[ 2065.624812][    C1] R13: 0000000000000000 R14: 00007fe68dda5fa0 R15: 00007ffcd0226a98
[ 2065.632789][    C1]  </TASK>