last executing test programs:

7m51.494052629s ago: executing program 1 (id=233):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000300))
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000080)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}, 0x8}}, {{0xa, 0x4e20, 0xed6e, @empty, 0x7}}}, 0x108)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000340)={0x0, {{0xa, 0x0, 0x1, @mcast2, 0x1}}, {{0xa, 0x0, 0x6, @private2={0xfc, 0x2, '\x00', 0x1}, 0xfffffffd}}}, 0x108)
r1 = socket$inet(0x2, 0x3, 0x8d)
setsockopt$inet_msfilter(r1, 0x0, 0x8, &(0x7f00000000c0)=ANY=[@ANYRESDEC], 0x1)
getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000200)={<r2=>0x0, @local, @local}, &(0x7f0000000140)=0xc)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f0000000000)={@remote, 0x35, r2})
r4 = socket(0xa, 0x1, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)}, 0x0)
ioctl(r3, 0x8916, &(0x7f0000000000))
ioctl(r4, 0x8936, &(0x7f0000000000))
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r5, 0x8933, &(0x7f0000000200)={'batadv_slave_0\x00'})
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000000000000000000000000001095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r6}, 0x10)
syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2)
socket$nl_route(0x10, 0x3, 0x0)
setsockopt$inet6_udp_encap(0xffffffffffffffff, 0x11, 0x64, 0x0, 0x0)
setsockopt$inet6_udp_encap(0xffffffffffffffff, 0x11, 0x64, 0x0, 0x0)
sendmsg$key(0xffffffffffffffff, 0x0, 0x18)
sched_setscheduler(0x0, 0x2, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r7 = syz_open_dev$usbmon(&(0x7f0000000040), 0x6, 0x0)
preadv(r5, &(0x7f0000000480)=[{&(0x7f00000000c0)=""/148, 0x94}], 0x1, 0x2, 0x702)
ioctl$MON_IOCX_GETX(r7, 0x80089203, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x3, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x16, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

7m51.001448483s ago: executing program 1 (id=235):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x92)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x5}, 0x38)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = syz_open_dev$evdev(&(0x7f0000000080), 0x3, 0x101142)
ioctl$FS_IOC_RESVSP(r0, 0x40044591, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="18bcf8f26f2eba11d869de000000007bd090c5c800"/39], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)=@newlink={0x40, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_MTU={0x8, 0x4, 0x44}, @IFLA_GROUP={0x8}, @IFLA_AF_SPEC={0x10, 0x1a, 0x0, 0x1, [@AF_INET6={0xc, 0xa, 0x0, 0x1, [@IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x3}]}]}]}, 0x40}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, 0x0, 0x0, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffc0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0xc)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000940)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000002a01030000000000000000004000000000000000000000010000000900030073797a3200000000140004800800024000000000080001500000000509000100737900050a01020000000000001000010020000c00024000000000000000010900010073797a310000000004000480140000001100010000000000000000000000008a0000000000"], 0xb8}}, 0x200000d4)
bind$rds(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10)
r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, &(0x7f0000000080)={0x54, 0x0, &(0x7f00000003c0)=[@enter_looper, @register_looper, @release={0x40046306, 0x1}, @reply={0x40406301, {0x0, 0x0, 0x0, 0x0, 0x31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})

7m49.840554185s ago: executing program 1 (id=240):
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a00000005000000020000000700000000000000", @ANYRES32, @ANYBLOB="000000008000"/17, @ANYBLOB], 0x48)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000002100), 0x280449c, &(0x7f0000002140)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r3, &(0x7f00000093c0)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_INIT(r3, &(0x7f0000004200)={0x50, 0x0, r4, {0x7, 0x1f, 0x0, 0x2066012}}, 0x50)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='mounts\x00')
pread64(r5, &(0x7f0000004240)=""/4085, 0xff5, 0xfc)

7m48.519505982s ago: executing program 1 (id=241):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
setsockopt$inet_sctp_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000040)={0x400, 0x3}, 0x8)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000200)={0x0, 0x1}, 0x8)
sendto$inet(r0, &(0x7f0000000100)="ab", 0x1, 0x40048c4, &(0x7f00000000c0)={0x2, 0x4e22, @local}, 0x10)
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdir(&(0x7f0000000200)='./file1\x00', 0x0)
setsockopt$inet_sctp_SCTP_AUTH_CHUNK(r1, 0x84, 0x15, &(0x7f00000000c0)={0x2}, 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1/file4\x00', 0x1c0)
mount$tmpfs(0x0, &(0x7f0000000180)='./file1/file4\x00', &(0x7f00000001c0), 0x0, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r1, 0x40049366, 0x0)

7m47.55426441s ago: executing program 1 (id=244):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000ac0), r0)
sendmsg$IEEE802154_LLSEC_SETPARAMS(r0, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000b40)={0x0, 0x20}}, 0x4000000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = signalfd(0xffffffffffffffff, 0x0, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f0000000180)={0x0, 0x11, 0x4, @tid=r2}, &(0x7f0000000080))
read$FUSE(r1, &(0x7f00000008c0)={0x2020}, 0xfffffef0)
syz_emit_ethernet(0x4e, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaa00860e004dd70800180600fe8000000000000000000000000000bbfe8000000000000000000000000000aa00004001", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="60c200009078000003039600"], 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000300)={{0x0, 0x1}, {0x0, 0xe4c}}, 0x0)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_int(r4, 0x29, 0x10, 0x0, &(0x7f0000000080))
sendmsg$netlink(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)={0x114, 0x2e, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x0, 0x0, 0x0, @u64=0x8}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@loopback={0x100000000000000}}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a487f26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f55ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82fd3f8cd1"]}]}, 0x114}], 0x1}, 0x0)

7m47.260809512s ago: executing program 1 (id=246):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000480)={0x26, 'hash\x00', 0x0, 0x0, 'nhpoly1305-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="8a", 0x440)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000200)={0x0, 0x7bff, &(0x7f0000000180)={&(0x7f0000000140)=@delqdisc={0xfffffffffffffc9b, 0x25, 0x0, 0x8dffffff}, 0x49d32d254ae22f79}}, 0x0)

7m46.837705484s ago: executing program 32 (id=246):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000480)={0x26, 'hash\x00', 0x0, 0x0, 'nhpoly1305-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="8a", 0x440)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000200)={0x0, 0x7bff, &(0x7f0000000180)={&(0x7f0000000140)=@delqdisc={0xfffffffffffffc9b, 0x25, 0x0, 0x8dffffff}, 0x49d32d254ae22f79}}, 0x0)

1m34.619080596s ago: executing program 4 (id=1389):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket$kcm(0x11, 0x200000000000002, 0x300)
setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000040)=r0, 0x4)
socket$kcm(0x10, 0x2, 0x0)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000002000)=""/102400, 0x19000)
shmget(0x1, 0x4000, 0x200, &(0x7f0000ffb000/0x4000)=nil)
listen(r2, 0x5)
socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x801}, 0x40018)
r4 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850", 0x4, 0xfffffffffffffffe)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r5 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r4, r5, r4}, 0x0, 0x0, 0x0) (fail_nth: 2)
add_key$fscrypt_v1(&(0x7f0000000180), &(0x7f00000001c0)={'fscrypt:', @auto=[0x51, 0x39, 0x34, 0x34, 0x2d6c01a8f29871d0, 0x33, 0x30, 0x36, 0x37, 0x36, 0x32, 0x0, 0x37, 0x39, 0x36, 0x64]}, 0x0, 0x0, 0xfffffffffffffffc)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)

1m33.552545876s ago: executing program 4 (id=1392):
r0 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00')
sendmsg$TIPC_CMD_GET_MEDIA_NAMES(0xffffffffffffffff, 0x0, 0x4008000)
write$vga_arbiter(0xffffffffffffffff, &(0x7f0000000000)=@other={'lock', ' ', 'io+mem'}, 0xc)
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x8, 0x8c}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
socketpair(0x25, 0x1, 0x0, 0x0)
r2 = fsopen(&(0x7f0000000040)='afs\x00', 0x0)
read$msr(r1, &(0x7f0000000140)=""/34, 0x22)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(r3, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01000000000000000000010000000500050001000000080004000000000005000600000000000800030001"], 0x34}}, 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000180)='source', &(0x7f00000005c0)='#mS\xb2j\xcb\xa18:.)\xc7\xcb\xc5\xd8\x91\xa1\"\xd5\r\x89M;\x99\xd6\x8e?K\x82\xd5\xd7\xab\x10\xea\x14\n\xea\xe9\xcc\xdc\xf3\xc0\xf8\x89\xd0\x0ep\xb1I\x04T[\r&\xf0z\xde\xc0\xf3\xcd\x9a\xae\xa8*v_(\x94]\xdf\xf1\x95!\xb3+\x1aD\xda\xa1G\x06M\xdaz2\xe9\xe6\xda\x92U\xaaN\xff\xca\xb37-<3\xb28\xb8:UQ\x95|\x00\x00\x0e\xe7{\xd4T\x84\x83\x86\x9d', 0x0)
r5 = openat$binfmt(0xffffffffffffff9c, r0, 0x42, 0x1ff)
close(r5)
execveat$binfmt(0xffffffffffffff9c, r0, 0x0, &(0x7f0000000a80)={[&(0x7f00000004c0)=',\x00']}, 0x0)

1m32.284200169s ago: executing program 4 (id=1395):
r0 = syz_open_dev$vbi(&(0x7f0000000080), 0x3, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={0x0}, 0x18)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1)
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4400ae8f, 0x0)
ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000000300)={0x2, 0x0, @ioapic={0xeeee0000, 0x8, 0xba2, 0x8c5f, 0x0, [{0x46, 0x8, 0x1}, {0x2, 0x29, 0x6, '\x00', 0xf8}, {0x60, 0x3, 0x0, '\x00', 0xbd}, {0x8, 0x4, 0x9, '\x00', 0xd}, {0x5, 0x4, 0x4, '\x00', 0x5}, {0x3, 0x40, 0x71, '\x00', 0x2}, {0x7, 0x7, 0xfd, '\x00', 0xf9}, {0x7, 0xc5, 0x1, '\x00', 0x5}, {0x7, 0xfb, 0x3, '\x00', 0x2}, {0xfe, 0x1, 0x6, '\x00', 0x4}, {0x1, 0x4e, 0x0, '\x00', 0x2}, {0x9, 0x30, 0x5, '\x00', 0x3}, {0xfa, 0x0, 0x8, '\x00', 0x7}, {0x80, 0x2, 0x80, '\x00', 0x4}, {0x1, 0x8, 0x3, '\x00', 0x6}, {0x7, 0xf1, 0x6, '\x00', 0x4}, {0x2, 0x7, 0x8, '\x00', 0x3}, {0x4, 0x6, 0x9, '\x00', 0x48}, {0x90, 0x0, 0x82, '\x00', 0x6}, {0xa, 0xff, 0x5}, {0x0, 0x4, 0x3, '\x00', 0x6a}, {0x7, 0x35, 0x7a, '\x00', 0x7}, {0x4, 0x7, 0x5, '\x00', 0xf}, {0x8, 0x2, 0x62, '\x00', 0x1}]}})
close_range(r1, 0xffffffffffffffff, 0x200000000000000)
ioctl$VIDIOC_S_OUTPUT(r0, 0xc004562f, &(0x7f0000000000)=0x1)
ioctl$VIDIOC_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f0000000380)={0x0, @bt={0x2d0, 0x190, 0x1, 0x0, 0xdd9f83, 0x1, 0x9, 0x1, 0x2, 0xd9, 0x722, 0x13, 0x7, 0x1, 0x21, 0xb763599953cb091d, {0x0, 0x6fd8e84b}, 0x3, 0xed}})

1m31.199681325s ago: executing program 4 (id=1402):
syz_usb_connect$cdc_ecm(0x4, 0x50, &(0x7f0000000080)={{0x12, 0x1, 0x250, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3e, 0x1, 0x1, 0x8, 0x0, 0x80, [{{0x9, 0x4, 0x0, 0x6, 0x3, 0x2, 0x6, 0x0, 0x3, {{0x8, 0x24, 0x6, 0x0, 0x0, "d4bb2c"}, {0x5, 0x24, 0x0, 0x2}, {0xd, 0x24, 0xf, 0x1, 0x0, 0x0, 0x101, 0xff}}, {[], {{0x9, 0x5, 0x82, 0x2, 0x3ff, 0x3, 0x0, 0x6}}, {{0x9, 0x5, 0x3, 0x2, 0x400, 0x7, 0xb, 0xa3}}}}}]}}]}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="6000000010000103ffeb00feffffff00000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000400012800e00010069703665727370616e0000002c000280140005000000000000"], 0x60}}, 0x0)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000004c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010000000000000000004400000008000300", @ANYRES32=r2, @ANYBLOB="08002700851600000a00180000000000000000001c005a8018000180140003"], 0x4c}}, 0x4000804)

1m30.142723918s ago: executing program 4 (id=1404):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r1=>0x0})
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x100000000000000, 0x80, &(0x7f00000001c0)=@broute={'broute\x00', 0x4000, 0x0, 0x90, [], 0x2, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='\x00'/90]}, 0xd2)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$int_in(r2, 0x5421, 0x0)
connect$vsock_stream(r2, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, &(0x7f0000000100)=0x80000)
ioctl$IOCTL_VMCI_DATAGRAM_SEND(0xffffffffffffffff, 0x7ab, &(0x7f0000000000)={&(0x7f00000004c0)={{@hyper, 0x5}, {@host, 0xed82}, 0x430, "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"}, 0x448, 0xb34})
mkdir(0xffffffffffffffff, 0x15)
chdir(&(0x7f0000000300)='./file0\x00')
socket$xdp(0x2c, 0x3, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000005c0)=ANY=[@ANYBLOB="14000000100001ff00000000000000000000000a2c00000048a6540319e0b58500000000020000000900030073797a32000002000900010073797a300000000014000000020a031747d21400000000000000000014000000110001"], 0x68}}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[@ANYBLOB="14000000100001000b000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000044000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f28000340000000045c0000000c0a01020000000000000000010000000900020073797a32000000000900010073797a3000000000300003802c00008028000180230001"], 0xe8}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = add_key$user(&(0x7f00000002c0), &(0x7f0000000180)={'syz', 0x2}, &(0x7f0000000280)="85952b177328da2f8757c9343d6559eb7a8197c0479df99720c9f9d0a8093c94", 0x20, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r5, 0x0, r5}, &(0x7f00000000c0)=""/80, 0x50, 0x0)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_CQM(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000340)={0x2c, r6, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_CQM={0x10, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_THOLD={0x4}, @NL80211_ATTR_CQM_RSSI_HYST={0x8}]}]}, 0x2c}}, 0x0)

1m22.8836291s ago: executing program 4 (id=1429):
mkdir(&(0x7f0000000000)='./file0\x00', 0x22)
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000001600), 0x800, 0x0)
r1 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket(0x8, 0x6, 0x9)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f00000001c0)='maps\x00')
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0xc0686611, &(0x7f0000000180)={0x68, 0x0, 0x17, 0x2000, &(0x7f0000ffd000/0x2000)=nil})
openat$udambuf(0xffffffffffffff9c, &(0x7f0000001640), 0x2)
r5 = fsopen(&(0x7f0000000040)='adfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r5, 0x1, &(0x7f00000000c0)='resize', &(0x7f0000000100)='\x00', 0x0)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x4)
r7 = landlock_create_ruleset(&(0x7f0000001680)={0x1903, 0x2}, 0x18, 0x2)
r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_int(r8, 0x0, 0x2, 0x0)
r9 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000080)={0xffffffffffffffff, 0x0, 0x25, 0x1e, @void}, 0x10)
r10 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x28801, 0x0)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
close(r11)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000001700)={'\x00', 0x3, 0xb, 0x8, 0x0, 0x5fff9a4, <r12=>0xffffffffffffffff})
r13 = getuid()
getegid()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000280)={0x0, <r14=>0x0})
r15 = getegid()
r16 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001800), 0x131000, 0x0)
r17 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r18 = syz_open_dev$tty1(0xc, 0x4, 0x1)
dup(r18)
r19 = accept4$x25(0xffffffffffffffff, &(0x7f0000001840), &(0x7f0000001880)=0x12, 0x800)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000001a00)={&(0x7f0000000100)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000001480)=[{&(0x7f0000000180)="f4c83cc8857daf4714906bb3c7bc652c9bbecd4feb0f98ab59b151e31e4f5167e2b977990a3afe1c22b250529cf4908e707e2d1ee6716ac334cbca2a45eb78f4ba340df7fea92d471c4fb72e324b36925e0f457cfe2fa1e6c5811121e647a4b1a059b6a526ccc1fdae5033c3257783b4860557ae7c39c61ac54360b8baf189e32fc8f92de74efd2bccded0c5c2676231c0835d82f564559dd1dea400fabc469189c196083c57b1441a0dd8682fb62d94548dad01f1351f8542185c12", 0xbc}, {&(0x7f0000000240)="85174f108c7c6697d888e40b1f", 0xd}, {&(0x7f0000000300)="7efef22cf34e39fe5f274bf3c46f480b81992479f28a24559e17cb0a47be8e18607afaf61e884608ce4f14624d56f22b65300b3a80e58b55debefaa134dd8f31113f60011a8664cbe17f22d523fe68ce8babcf9728b48e9f434e7e0f9b685554a2f0cd084930", 0x66}, {&(0x7f0000000380)="098e147f1d3973e063748231afa30f834e3c3fd78a00d2f4061cbbcbb8baa6fdc64b8ce2731d1217e59f0289c327603ffd50bf1124e4b859be24f9fae003858d7cb377", 0x43}, {&(0x7f0000000400)="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", 0x1000}, {&(0x7f0000001400)="932940f8d1c3d9c2c75a50d8c592333fd0e87bba8736159ce6c21861b1ced6f012f9245481671e5aa093a3fd1d07ec041f54abe708fb1ad6b34ba2f1676b3881bcdb187c5d3428b8150ac62fa8dd6754de9f2e2e", 0x54}], 0x6, &(0x7f0000001bc0)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES64=r9, @ANYRES32=0x0, @ANYRES64=r8, @ANYRES8=r0, @ANYRES32=0x0, @ANYRES32=0xee01, @ANYRES32=0xee00, @ANYBLOB='\x00\x00', @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=r0, @ANYBLOB="30000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r2, @ANYRES32=r3, @ANYRES32=r4, @ANYBLOB="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", @ANYRES32=r5, @ANYRES32=r6, @ANYRES32=r7, @ANYBLOB="18000000000000000100000001000000", @ANYRES32=r8, @ANYRES32=r9, @ANYBLOB="18000000000000000100000001000000", @ANYRES32, @ANYRES32=r11, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r12, @ANYRES32=r13, @ANYRES32=r6, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=r14, @ANYRES32=0xee00, @ANYRES32=r15, @ANYBLOB="0000000024000000000000000100000001000000", @ANYRES32=r16, @ANYRES32=r17, @ANYRES32, @ANYRES32=r18, @ANYRES32=r19, @ANYBLOB='\x00\x00\x00\x00'], 0x138, 0x4811}, 0x20008001)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000001a40)=ANY=[@ANYRES32=0x0, @ANYRES32, @ANYBLOB="1100"/12, @ANYRES32, @ANYBLOB="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", @ANYRES64=0x0], 0x20)

1m5.997843932s ago: executing program 33 (id=1429):
mkdir(&(0x7f0000000000)='./file0\x00', 0x22)
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000001600), 0x800, 0x0)
r1 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket(0x8, 0x6, 0x9)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f00000001c0)='maps\x00')
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0xc0686611, &(0x7f0000000180)={0x68, 0x0, 0x17, 0x2000, &(0x7f0000ffd000/0x2000)=nil})
openat$udambuf(0xffffffffffffff9c, &(0x7f0000001640), 0x2)
r5 = fsopen(&(0x7f0000000040)='adfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r5, 0x1, &(0x7f00000000c0)='resize', &(0x7f0000000100)='\x00', 0x0)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x4)
r7 = landlock_create_ruleset(&(0x7f0000001680)={0x1903, 0x2}, 0x18, 0x2)
r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_int(r8, 0x0, 0x2, 0x0)
r9 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000080)={0xffffffffffffffff, 0x0, 0x25, 0x1e, @void}, 0x10)
r10 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x28801, 0x0)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
close(r11)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000001700)={'\x00', 0x3, 0xb, 0x8, 0x0, 0x5fff9a4, <r12=>0xffffffffffffffff})
r13 = getuid()
getegid()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000280)={0x0, <r14=>0x0})
r15 = getegid()
r16 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001800), 0x131000, 0x0)
r17 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r18 = syz_open_dev$tty1(0xc, 0x4, 0x1)
dup(r18)
r19 = accept4$x25(0xffffffffffffffff, &(0x7f0000001840), &(0x7f0000001880)=0x12, 0x800)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000001a00)={&(0x7f0000000100)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000001480)=[{&(0x7f0000000180)="f4c83cc8857daf4714906bb3c7bc652c9bbecd4feb0f98ab59b151e31e4f5167e2b977990a3afe1c22b250529cf4908e707e2d1ee6716ac334cbca2a45eb78f4ba340df7fea92d471c4fb72e324b36925e0f457cfe2fa1e6c5811121e647a4b1a059b6a526ccc1fdae5033c3257783b4860557ae7c39c61ac54360b8baf189e32fc8f92de74efd2bccded0c5c2676231c0835d82f564559dd1dea400fabc469189c196083c57b1441a0dd8682fb62d94548dad01f1351f8542185c12", 0xbc}, {&(0x7f0000000240)="85174f108c7c6697d888e40b1f", 0xd}, {&(0x7f0000000300)="7efef22cf34e39fe5f274bf3c46f480b81992479f28a24559e17cb0a47be8e18607afaf61e884608ce4f14624d56f22b65300b3a80e58b55debefaa134dd8f31113f60011a8664cbe17f22d523fe68ce8babcf9728b48e9f434e7e0f9b685554a2f0cd084930", 0x66}, {&(0x7f0000000380)="098e147f1d3973e063748231afa30f834e3c3fd78a00d2f4061cbbcbb8baa6fdc64b8ce2731d1217e59f0289c327603ffd50bf1124e4b859be24f9fae003858d7cb377", 0x43}, {&(0x7f0000000400)="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", 0x1000}, {&(0x7f0000001400)="932940f8d1c3d9c2c75a50d8c592333fd0e87bba8736159ce6c21861b1ced6f012f9245481671e5aa093a3fd1d07ec041f54abe708fb1ad6b34ba2f1676b3881bcdb187c5d3428b8150ac62fa8dd6754de9f2e2e", 0x54}], 0x6, &(0x7f0000001bc0)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES64=r9, @ANYRES32=0x0, @ANYRES64=r8, @ANYRES8=r0, @ANYRES32=0x0, @ANYRES32=0xee01, @ANYRES32=0xee00, @ANYBLOB='\x00\x00', @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=r0, @ANYBLOB="30000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r2, @ANYRES32=r3, @ANYRES32=r4, @ANYBLOB="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", @ANYRES32=r5, @ANYRES32=r6, @ANYRES32=r7, @ANYBLOB="18000000000000000100000001000000", @ANYRES32=r8, @ANYRES32=r9, @ANYBLOB="18000000000000000100000001000000", @ANYRES32, @ANYRES32=r11, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r12, @ANYRES32=r13, @ANYRES32=r6, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=r14, @ANYRES32=0xee00, @ANYRES32=r15, @ANYBLOB="0000000024000000000000000100000001000000", @ANYRES32=r16, @ANYRES32=r17, @ANYRES32, @ANYRES32=r18, @ANYRES32=r19, @ANYBLOB='\x00\x00\x00\x00'], 0x138, 0x4811}, 0x20008001)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000001a40)=ANY=[@ANYRES32=0x0, @ANYRES32, @ANYBLOB="1100"/12, @ANYRES32, @ANYBLOB="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", @ANYRES64=0x0], 0x20)

12.87869236s ago: executing program 2 (id=1587):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r1=>0x0})
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x100000000000000, 0x80, &(0x7f00000001c0)=@broute={'broute\x00', 0x4000, 0x0, 0x90, [], 0x2, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='\x00'/90]}, 0xd2)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$int_in(r2, 0x5421, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, &(0x7f0000000100)=0x80000)
ioctl$IOCTL_VMCI_DATAGRAM_SEND(0xffffffffffffffff, 0x7ab, &(0x7f0000000000)={&(0x7f00000004c0)={{@hyper, 0x5}, {@host, 0xed82}, 0x430, "3aeb4c7af368cd060b298fa35ce6184e256da9563ddf7fa4aa07dad9cf74c7baaf1133665113785b79f83394195601137878d57a6b696503a5fdefd69062f3883f8fce16189488d4860cb0571a2e36f663c564ff1aca8848ce6d3cb7cccffb19e652c3b3bc8f1312fade63fb02b84a16f31db493103836c538ae9038a9ab04732590056132041bb8f4603ff7b652a878d24621deeb5aeb022e7757cc5c876382175d2c1982cb9d5fcb498b1766011df5ac7b06a7464a3805c1ce3db32678e653ac14fe943992e4cf8d782980303bb22d463adac1b0cadc5c26a40853882392cade04b86230b1173e2810eae1e4dd20e77ca674893be4d2c717be703942faa69d0a149d79e4d8cf083eff8a142dfcec91b2fab18f68b1f7152e26fcc1de9f24b8ab1e60801a1e77be5f8b4f2fc9ab9f9326e14830ce656bb43dcbd7fc1db344ea684fac22f3e6e9b957102bff330bb2149581caa7a141f6478db3503c186431c0dd5e83bf9ce36e46a7bdc5692a93062a2c6fc451e95644b70febb269f541b855f199990eb36da234720640703aeaadf8a649c548442bf044dbdfde9706a03ba9461e049da553302c941a6ca3346c3f2418c530a3d06782629ce99052f14606ffa8021cccd8c21e46e70e5e06f31633545ceb473a102ad778ed31705bd459ff93fb1cdbf7974fa2e7c82f05526901fa42626ad2db444a92e12ec8bf0673adf2e279c6ad52cb55aae63f311db1d8bf89af1096362d4312bb2a58470e470db2ddefdb0c2deed00b56001de31f211403b2eab1ccaa5db1d27b1c1560b73dffee4d10d88910a5c38214398913865a1b864bfc8e3ac5afce7163ad329c60afd6c222ec00e1fbbd106f4801701d57ac2230b2572d87b4c09e1c87184d819794ddf14db53c5fd5156562b1bdb04280cbc0f65430cdc71405771871483262ddd0d32e72ed887560ddddcc0077508c37f9c53d969f6eab1e1f682e9bff99d0d1397230862677db78ec32e37a7c41ffe4920b3b5df91d5c962c050e8757f4784707b1f78a58e4614d7a3e2be3ccd82d2826ae7cd2d2d91cfac7518252d05e1ffb61d9cd84129f8e8455a6e2a95d2bb9df250791a39f5e7f6ef49c045a6cb47ce5442abe1335c40f2a6fbf28e148a381c73f82bfdf2329b6cddeb9ad687da42636a844a6ce90ef692fdb0ec911a42dff419c1a20d6c9b74d134c89954a2cf7f94dc855c12455112bb4a9889e79a1acbcb08eacc254d5e7b271636f078577286cdf354b46e95e758d07cedf16dae7a39db160407d8474968490a37ad016ef89873e9d7e04e1bd807ae908eb61d2c8585e6210dc8542086e521d021fd3138e2aa1c84f5df6fd73fdf16bba03d67443bd5e39fbcc785ab2953b2d6142779b8968f369d9d4c3914e93b66b499aa843fa5d34e882f15ff030a2aaaa92a62f70bfabb6c42fc7ea2519"}, 0x448, 0xb34})
mkdir(0xffffffffffffffff, 0x15)
chdir(&(0x7f0000000300)='./file0\x00')
socket$xdp(0x2c, 0x3, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000005c0)=ANY=[@ANYBLOB="14000000100001ff00000000000000000000000a2c00000048a6540319e0b58500000000020000000900030073797a32000002000900010073797a300000000014000000020a031747d21400000000000000000014000000110001"], 0x68}}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[@ANYBLOB="14000000100001000b000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000044000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f28000340000000045c0000000c0a01020000000000000000010000000900020073797a32000000000900010073797a3000000000300003802c00008028000180230001"], 0xe8}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = add_key$user(&(0x7f00000002c0), &(0x7f0000000180)={'syz', 0x2}, &(0x7f0000000280)="85952b177328da2f8757c9343d6559eb7a8197c0479df99720c9f9d0a8093c94", 0x20, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r5, 0x0, r5}, &(0x7f00000000c0)=""/80, 0x50, 0x0)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_CQM(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000340)={0x2c, r6, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_CQM={0x10, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_THOLD={0x4}, @NL80211_ATTR_CQM_RSSI_HYST={0x8}]}]}, 0x2c}}, 0x0)

12.744791503s ago: executing program 0 (id=1589):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet6_IPV6_RTHDR(r0, 0x29, 0x39, &(0x7f0000000080)=ANY=[@ANYBLOB="00020201"], 0x18) (async)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) (async, rerun: 32)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) (async, rerun: 32)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) (async, rerun: 64)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) (rerun: 64)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) (async, rerun: 32)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6) (rerun: 32)
bind$netlink(r4, &(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8822d55593a2179}, 0xc) (async, rerun: 64)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6) (async, rerun: 64)
r6 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$int_in(r6, 0x5421, &(0x7f0000000080)=0xfffffffffbfffffe)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000006c0)=@bpf_lsm={0xd, 0x5, &(0x7f00000000c0)=@framed={{0x76, 0xa, 0x0, 0x0, 0xfffffffc, 0x61, 0x11, 0x68}, [@initr0]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
connect$vsock_stream(r6, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
shutdown(r6, 0x1) (async)
shutdown(r6, 0x0)
ppoll(&(0x7f0000000280)=[{r6, 0x8088}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 64)
sendmsg$nl_xfrm(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="3c010000190001000000000000000000e0000001000000000000000000000000fe8000000000000000000000000000aa4e220000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000104000000000000feffffffffffffff030000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000008400050020010000000000000000000000000000000000002b00000000000000000000000000000000000000000500000000000002000700000000000000000000000000e00000020000000000000000000000004000000033"], 0x13c}}, 0x20040880) (async, rerun: 64)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000001280)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x8, 0x5ac, 0x24c, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x2, 0x80, 0x1, [{{0x9, 0x4, 0x0, 0x2, 0x1, 0x3, 0x1, 0x2, 0xb, {0x9, 0x21, 0x6, 0x7, 0x1, {0x22, 0x911}}, {{{0x9, 0x5, 0x81, 0x3, 0x3df, 0x4, 0x1, 0x7}}}}}]}}]}}, 0x0)
sendmmsg$inet6(r0, &(0x7f0000000a80)=[{{&(0x7f0000000200)={0xa, 0x4e20, 0x4d7, @private0={0xfc, 0x0, '\x00', 0x1}, 0x3}, 0x1c, &(0x7f0000000900)=[{&(0x7f0000000400)="fc", 0x1}], 0x1}}], 0x1, 0x4c040)

12.111497808s ago: executing program 2 (id=1590):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000000040)) (async)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000000040)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) (async)
bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r2, 0x5)
syz_emit_ethernet(0x4a, &(0x7f0000000080)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000086dd6002000000140600fe8000000000000000000000000000bbfe8000000000000000000000000000aa000017beaaa186546210c886adc8a03d194e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="500200009078fffc"], 0x0)
syz_emit_ethernet(0x56, &(0x7f0000000900)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x25}, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a3ff2", 0x20, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x8, 0x10, 0xfffe, 0x0, 0x0, {[@timestamp={0x8, 0xa}, @fastopen={0x22, 0x2}]}}}}}}}}, 0x0)
syz_init_net_socket$netrom(0x6, 0x5, 0x0) (async)
r3 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
listen(r3, 0x1ad72f7)
accept4$netrom(r3, 0x0, 0x0, 0x0)
syz_usb_connect(0x4, 0x2d, &(0x7f0000000040)=ANY=[@ANYBLOB="120100000cb768405e0483020b990102030109021b00010000000009040000015c29300009050900"], 0x0) (async)
syz_usb_connect(0x4, 0x2d, &(0x7f0000000040)=ANY=[@ANYBLOB="120100000cb768405e0483020b990102030109021b00010000000009040000015c29300009050900"], 0x0)

11.027636218s ago: executing program 0 (id=1592):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0xd, 0x200200090}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000040)=0x7)
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0xb, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4a, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ptype\x00')
socket$packet(0x11, 0x3, 0x300)
preadv(r2, &(0x7f0000000100)=[{&(0x7f00000006c0)=""/184, 0xb8}], 0x1, 0x36, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0xc0a85320, &(0x7f00000003c0)={{0x80}, 'port1\x00', 0xe3, 0x1b1c27, 0x0, 0x1, 0x0, 0x0, 0x5})
openat$sequencer2(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)

10.446137368s ago: executing program 0 (id=1593):
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = open(&(0x7f00000004c0)='./bus\x00', 0x143042, 0x0)
ftruncate(r1, 0x3f)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x12, r1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x2, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f0000000140)=@gcm_128={{0x303}, "87ee8ac6c46dad33", "2607080d7f4fcf00fd4ef2dece6c7c58", '\x00', '#\x00'}, 0x28)
sendmsg$inet(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f0000000240)="6e37cff5b582e082d58cb23de3c19dc4971d9b59ddb52ae25a3ca48e8d5284721b4b722d1fd011fc3144e4ceb18b32b5b819d56f4aa3fe1aaf904aa07b7b748ab54c9b47531624c0ca3cc3e9246587e7cea8af062e15c1c27d8e9d9328114f2bda697decbedc50cc278f543faa13098717d9f379121225b179faeebe79be6a82dea4403a3bc7990b1cfee9e5a1aaf11b32facecc76bc0ad86f4fa184dd6e451992a564475498a4e85e9484c9a357c08060637ee267f307d605e87225cb4175be29", 0xc1}], 0x1}, 0x0)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x2, &(0x7f0000000680)=@gcm_128={{0x303}, "000037d7009400", "c0b6c5b29ca2b838d41ac2fc7ddf972d", "e9be1eae", "bb10000000000001"}, 0x28)
readv(r2, &(0x7f0000000e40)=[{&(0x7f0000000f40)=""/250, 0xfa}], 0x1)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f00000003c0)={'filter\x00', 0x7, 0x4, 0x3f0, 0x1f8, 0x1f8, 0x110, 0x308, 0x308, 0x308, 0x4, 0x0, {[{{@arp={@empty, @private=0xa010100, 0x0, 0xff, 0x2, 0xf, {@mac=@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, {[0xff, 0x0, 0xff, 0x0, 0xff, 0xff]}}, {@empty, {[0xff, 0xff, 0x0, 0xff, 0x0, 0xff]}}, 0xfa9f, 0x8001, 0xa7, 0x5, 0x4, 0x9, 'veth1_vlan\x00', 'batadv0\x00', {0xff}, {}, 0x0, 0x101}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@local, @local, @private=0xa010102, 0x1, 0x1}}}, {{@arp={@multicast1, @multicast1, 0xff000000, 0xffffffff, 0xf, 0xd, {@mac=@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, {[0x0, 0xff, 0xff, 0x0, 0x0, 0xff]}}, {@mac=@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, {[0xff, 0xff, 0x0, 0x0, 0x0, 0xff]}}, 0x4, 0x5, 0x10, 0x7, 0x1, 0x7, 'batadv_slave_0\x00', 'dummy0\x00', {}, {}, 0x0, 0x10}, 0xc0, 0xe8}, @unspec=@AUDIT={0x28, 'AUDIT\x00', 0x0, {0x1}}}, {{@arp={@multicast2, @multicast1, 0xffffff00, 0xffffffff, 0x7, 0xa, {@mac=@multicast, {[0xff, 0xff, 0xff]}}, {@empty, {[0xff, 0x0, 0xff, 0x0, 0x0, 0xff]}}, 0x5, 0x7, 0xbf82, 0x9, 0x1, 0xfffe, 'ip_vti0\x00', 'batadv_slave_1\x00', {0xff}, {}, 0x0, 0x14}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@multicast, @empty, @remote, @private=0xa010101, 0x1}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x440)

10.396609714s ago: executing program 5 (id=1594):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
r2 = ioctl$UDMABUF_CREATE(0xffffffffffffffff, 0x40187542, &(0x7f0000000240)={0xffffffffffffffff, 0x7f, 0x0, 0x10000})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x3832, r2, 0xfffff000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0}, 0x18)
r5 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000280), 0x80c02, 0x0)
ioctl$KDFONTOP_GET(r5, 0x4b72, &(0x7f0000000300)={0x1, 0x1, 0x13, 0x11, 0x1b, &(0x7f00000003c0)})
r6 = socket(0x840000000002, 0x3, 0x100)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x103)
mount$nfs(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f0000000080), 0x60420, &(0x7f0000000300)=ANY=[@ANYBLOB])
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
mount(&(0x7f0000000000)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000380)='./file0\x00', &(0x7f0000000040)='hfs\x00', 0x8, 0x0)
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r7, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'crc32c-generic\x00'}, 0x58)
r8 = accept4(r7, 0x0, 0x0, 0x0)
sendto$inet6(r8, &(0x7f00000002c0)="3bdad2ac06a0f43b1caff0dba03bde", 0x3, 0x40010, 0x0, 0x43)
r9 = syz_genetlink_get_family_id$devlink(&(0x7f00000007c0), r6)
sendmsg$DEVLINK_CMD_PORT_SPLIT(r0, &(0x7f00000008c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000880)={&(0x7f0000000800)={0x70, r9, 0x103, 0x70bd2b, 0x25dfdbfe, {}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}, {0x8, 0x9, 0x4}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8, 0x9, 0x1}}]}, 0x70}, 0x1, 0x0, 0x0, 0x54}, 0x20004804)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="340000002b000b0000000000000000000600000014000300fe8000000000000000000000000000bb0c00018008000000", @ANYRES32=0x0, @ANYBLOB], 0x34}}, 0xc00)

9.468453463s ago: executing program 3 (id=1595):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x18, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x2, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
r1 = syz_open_dev$vivid(0x0, 0x2, 0x2)
ioctl$VIDIOC_G_PRIORITY(r1, 0x80045643, 0x3)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x0, 0x40000)
ioctl$SNDRV_PCM_IOCTL_HW_FREE(r5, 0x4112, 0x0)

8.300402542s ago: executing program 6 (id=1596):
io_setup(0x9, &(0x7f0000000040)=<r0=>0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x10, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x79, 0x10}, [@ldst={0x2, 0x0, 0x3}], {0x95, 0x0, 0x74}}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f0000000400)=""/198, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffff52, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x37)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000d00)=@nat={'nat\x00', 0x19, 0x0, 0x90, [0x200000000c40, 0x0, 0x0, 0x200000000c70, 0x200000000ca0], 0x11, 0x0, &(0x7f0000000c40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000001f00010000000000000000000019feffffff00000000000000000000000000000000000000000000000000000000080000000000000089fa5e6602df53a7feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff00000000"]}, 0x108)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000340)={&(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0], 0x4, 0x80000, 0x0, <r2=>0xffffffffffffffff})
syz_emit_ethernet(0x72, &(0x7f0000000000)={@local, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "e400ff", 0x3c, 0x3a, 0x0, @private2, @mcast2, {[], @param_prob={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, '\x00', 0x0, 0x11, 0x0, @empty, @ipv4={'\x00', '\xff\xff', @multicast1}, [], "17c17f079171000700880000"}}}}}}}, 0x0)
io_cancel(r0, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x3, 0x7, r1, &(0x7f0000000080)="30ab6401c7d45721559f537f0d8cd77d3843ec100125c5202d39f7c338d4221b479696b18fe4c2fcd3c5aa9460135f930e35a175b0e7adcd0ec6f71303d6cee84fa8000e9b3f8384a652eab1bcfafe608756ea5b14ac50c6cd80f410855f725b6e8451c97bc93027bcd5d7870953823bcdf204add62c4d0396a4f27aa7c74de5fea892e593c5d8f9edb00a26ab9df75a4029d37306dfe0f291c5c8324ccc0cbab634", 0xa2, 0x3ff, 0x0, 0x2, r2}, &(0x7f0000000580))
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000a40)=@newtaction={0x2f4, 0x30, 0x300, 0x71bd22, 0x25dfdbff, {}, [{0x4}, {0x2dc, 0x1, [@m_bpf={0x40, 0x6, 0x0, 0x0, {{0x8}, {0x18, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x6}, @TCA_ACT_BPF_NAME={0xc, 0x6, './file0\x00'}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2}}}}, @m_csum={0x140, 0x10, 0x0, 0x0, {{0x9}, {0x3c, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0x9, 0x6, 0x4, 0x6}, 0x32}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x800, 0x2, 0x8, 0xb, 0x7}, 0xe}}]}, {0xd9, 0x6, "51faf7335320ed7b354230acb137694145a70ec11e2f79535356bbabe75c1cf43e9599937f1222c821355d08c9296f647da3cee86f1d1307ada4d0439b9958f20eb60a1d09a36a8e8fe2b40dee67235407cc32d0443c90f719783f20e6af042b71dbe4822e96811047bc3dc33abb68997d8c395fcfde396685e34c9745023c01b8034c2a377139cd8f089779ee6e63205ae08445df2b7bc020bf93d087ce5855407ce1b50c7b8c9863ecdc8c8c115836bfc1cca102463d7fbd85dfbc9582fff4b7a15f5512df23731e9dd64cc418f9d0d8411afd63"}, {0xc}, {0xc, 0x8, {0x3, 0x2}}}}, @m_csum={0x4c, 0x19, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0xe215, 0x7fffffff, 0x5, 0x7, 0xd}, 0x70}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_ct={0x10c, 0x1b, 0x0, 0x0, {{0x7}, {0x30, 0x2, 0x0, 0x1, [@TCA_CT_MARK={0x8, 0x5, 0x7}, @TCA_CT_LABELS_MASK={0x14, 0x8, "a347c6f48aa43e01851034300e41aae2"}, @TCA_CT_MARK_MASK={0x8, 0x6, 0x2b}, @TCA_CT_NAT_PORT_MIN={0x6, 0xd, 0x4e20}]}, {0xb5, 0x6, "77b227832b90d1ff89f7a47093e4fcd6469c1b0a38a78e003c28c0247261b6866b44c2243e65a09e57be964fc0687b627bbda1f8bb6cacd9cf613adc84e00b323e932cbec11bfdac677d727e7547301900bdc7e317fc3b634794c43c0613b919323039d6099d9f9f41e0f9da2176ba0bb6dd198d0c2f84f876aceee9a631a5585232049c053fd7bbe1393ecb0aa735b3b1d360493f2ae18bbe6abade7594754d54413afc4df70a136895bf22a05abef0e8"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x3, 0x2}}}}]}]}, 0x2f4}, 0x1, 0x0, 0x0, 0x4000810}, 0x20040850)
r3 = socket(0x10, 0x803, 0x0)
sendto(r3, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x20008000, 0x0, 0x0)
recvmmsg(r3, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x334}, {&(0x7f00000007c0)=""/154, 0x2c}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})

8.206300148s ago: executing program 2 (id=1597):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x20000000)
ptrace$ARCH_SHSTK_ENABLE(0x1e, r1, 0x0, 0x5001)
socket$kcm(0x10, 0x2, 0x0)
mincore(&(0x7f0000184000/0x2000)=nil, 0x2000, 0x0)
ioctl$TCFLSH(0xffffffffffffffff, 0x400455c8, 0x2)
bind$bt_hci(0xffffffffffffffff, 0x0, 0x0)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='status\x00')
lseek(r4, 0x10000000005, 0x1800000000000000)
wait4(0xffffffffffffffff, 0x0, 0x40000000, 0x0)
syz_usb_connect(0x0, 0x36, &(0x7f0000000240)={{0x12, 0x1, 0x0, 0xb1, 0x4e, 0xb0, 0x8, 0x12d1, 0x6ce6, 0xafa8, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0xd3, 0x0, 0x2, 0xff, 0x1, 0xf, 0x0, [], [{{0x9, 0x5, 0x3, 0x3}}, {{0x9, 0x5, 0x8a, 0x3}}]}}]}}]}}, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, 0x0, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000202300800000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast1=0xe0004001}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x10000047}, 0x0)

8.180864058s ago: executing program 5 (id=1598):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, 0xffffffffffffffff, 0x3a8bc000) (async, rerun: 32)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) (async, rerun: 32)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) (async, rerun: 64)
r1 = fanotify_init(0x202, 0x0) (rerun: 64)
fanotify_mark(r1, 0x1, 0x4800003e, r0, 0x0) (async)
r2 = dup2(r1, r0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x1)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x18) (async)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) (async)
sched_setscheduler(0x0, 0x0, &(0x7f00000000c0)=0x5)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f0000000300)=@abs={0x0, 0x0, 0x4e22}, 0x6e) (async)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0) (async, rerun: 32)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async, rerun: 32)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) (async)
r7 = socket(0x200000000000011, 0x4000000000080002, 0x0) (async)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000000)={'lo\x00', <r9=>0x0})
bind$packet(r7, &(0x7f0000001100)={0x11, 0x3, r9, 0x1, 0x0, 0x6, @multicast}, 0x14) (async)
r10 = dup2(r7, r7)
sendmmsg$unix(r10, &(0x7f0000008380), 0x400000000000174, 0x4008890) (async)
read$FUSE(r2, &(0x7f0000003fc0)={0x2020}, 0x2020)
openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x8200, 0x0)
unshare(0x28000600) (async)
r11 = fsopen(&(0x7f0000000280)='cifs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r11, 0x1, &(0x7f0000000040)='source', &(0x7f0000000f80)='//\xf2b\x06\b\xba\xdfXo\xdc\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b/Q9\xf9\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce/\\\xb4\\\xf2_\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x93\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6\xc5n\xeb\xab\xf70\x99\xef\x8b<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcfK\xcc\xeb,\x1a1\xa6\xf3e\xc2F\xc3\x00\xaa\xd5\xfc\x1bR\xa9\x8c\xb4&\x9f\xa2$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc10\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\n\xad\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x92\xdby\xe9\xdc@.\xc1g\xc6\fc\xa26\xd8\xdf\xef\xf7\x9c\x1a\xcc\x8am\x8b7\xcf\xc5\xa6\xf4\f\xabj%Y\xa9\xdd\x0e9e\xb5\xec\x99@\xd2\t\n\xb1o', 0x0)

7.960449634s ago: executing program 0 (id=1599):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56e41, 0x0, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0x10, 0xfff1}, {0x7, 0xffff}, {0x9, 0xfff1}}}, 0x24}, 0x1, 0x0, 0x0, 0x48801}, 0x0)
socket$kcm(0x2, 0x3, 0x84)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r0, 0x0, 0xfffffffffffffffd}, 0x18)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
close(r0)
recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0xf5ffffff, 0x0, 0x0, 0x0, 0x4000000}, 0xf5ff}], 0xf00, 0x0, 0x0)
shutdown(r1, 0x0)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000f2ffffff0000000000000000850000001700"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r2, 0x0, 0x3c, 0x72, &(0x7f0000000040)="976d9023d56482cd284a63da539706d7009be646625bd75b025352ebe557df463106baeed6c2d75549b140f143fb8bb67bfe5b308b8d05758115c7ad", &(0x7f0000000180)=""/114, 0x0, 0x0, 0xbd, 0x0, &(0x7f0000000400)="cf2240e6919817e49555d221b4e6c6ba11c4d974ddab2318db7b52cee499399a00be4b710e9246d7bca28cc8346eb84414e45f3f4633f4acb77bf8cc38c4c16fe035905db79cdc0be634a915662c4cac58ae94706f86ea320f339c21399b5bb7607044916c63c528ab4149718d6215a9a3749113c268e49b2b9dae91ed804e5ac5d4ec7ac9c5fd67a76f9a2b06f7304f6e81221a751008e786e1edde82cf1ecb76cb4cd71cf781ea3a19b917a1e215b1a6c7ee605b32b91eaae38517fd", &(0x7f0000000280), 0x0, 0x8000}, 0x50)
r3 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_TX_RING(r3, 0x11b, 0x6, &(0x7f0000000000)=0x40000000, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r4, 0x800448d4, &(0x7f0000000400))
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0x0, 0x1}, 0x6)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r5, 0x400448cb, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[@ANYBLOB="600000000206010800000000000000000100000a11000300686173683a69702c6d61726b00000000050001000790116005000500020000000900020073797a300000000005000400000000001400078008000840000000d308000640"], 0x60}, 0x1, 0x0, 0x0, 0x2002c0c4}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f0000000840)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000014}, 0x0)
ioctl$TUNATTACHFILTER(r6, 0x401054d5, &(0x7f00000000c0)={0x0, &(0x7f0000000640)})
r8 = socket(0x1f, 0x2, 0x8)
connect$rose(r8, &(0x7f0000000500)=@short={0xb, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @default, 0x1, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}}, 0x1c)
r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r9, &(0x7f0000000340)={0x1f, 0xffff, 0x3}, 0x6)
socket$inet(0x2, 0x2, 0x0)
write(r9, &(0x7f0000000040)="05000000010000", 0x7)

7.695698523s ago: executing program 3 (id=1600):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r1, 0x0, 0xd}, 0x18)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f00000001c0), 0x80280, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000400)={<r3=>0xffffffffffffffff})
r4 = syz_io_uring_setup(0x117, &(0x7f0000000100)={0x0, 0x0, 0x800, 0x0, 0x3a6}, &(0x7f0000000000)=<r5=>0x0, &(0x7f0000000200)=<r6=>0x0)
r7 = syz_open_procfs(0x0, &(0x7f0000000180)='wchan\x00')
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
pread64(r7, 0x0, 0x0, 0x41e)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x40, 0x0, r3, 0x0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB], 0x18}, 0x0, 0x20040000})
io_uring_enter(r4, 0x47f6, 0x80ffff, 0xeaff, 0x0, 0x0)
ioctl$KDGETLED(r0, 0x4b31, &(0x7f0000000000))
unshare(0x400)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="05000000050000000100000004"], 0x48)
r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
recvmsg(r9, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x40000120)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000700)=ANY=[@ANYBLOB], 0x0, 0x5a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0xe, &(0x7f0000000340)=ANY=[], &(0x7f0000000580)='syzkaller\x00', 0xa, 0x5, &(0x7f0000000140)=""/5, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000180)={0x7, 0x3}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=[r8, r8, r8, r8, r8, r8], 0x0, 0x10, 0xfffffffe, @void, @value}, 0x94)

7.373887517s ago: executing program 6 (id=1601):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={{0x14}, [@NFT_MSG_NEWRULE={0x2c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x54}}, 0x0)
r1 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000a80)=ANY=[@ANYBLOB="b702000003000000bfa30000000000000703000000feffff7a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d640500000000006504040001001f000404000001007d60b7030000000000006a0a00fe00000100850000000d000000b7000000000000009500000000000000c74396c8e3ebbadc20e5a7ef8c9ac1465cbf188ef10871b81ac7553358380b3a1f59916ffc9bf0bdf81524f07fb2819bf5774fedda52e39c90af27db5b56024df96b4673b4e8d5467e114604ea09b290a248a120c9c6cd87cef9000000a39c15a7ef365cc27dfeac7b9b0e9048517354b0ca4f9cf8b59ee6fa003fe1f2c4c15f20a07db4583a462d8be6602186fd68ee14a19ea2eb42122b8635a66ce6b5b92356081bc0f18a0ca83dbc089a9813c1efa26001b3f486ebfaae85c4d0b96778478ae5355e6f923b11056969f486f80a35f7f2339704fa93fa915ab8e1e0d7f31ebd19455e6827cd493907bf9d0000000000000000000000004e1fa60acabcf0553910ca2e5ea499fd5889dde9261f0848a5b8af657bfc96049308e8953431b269053627a1523551c160c813969925a892d266792352ec0204596a37ce8d6d260b32239bddbce2e79f93cb5a0ad897adb53b397d07c50f84b74f2605a565ee149016aa75ea31c0087dcd821b47c8b36efc6da4fb2ea7f1f36c85856b73ac9872babc62149699b6b8c796a79d833eb4b5ca668d430db5653a2b3c5b87e17ca1"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x2ca, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0x2f9, 0xffffca88, &(0x7f0000000040)="b90103600040f000009e0ff008001fffffe1eb024000632f77fb7f0200017f020001be3e7d2a182fff", 0x0, 0x104, 0x6000000000000000, 0x0, 0xfeb9, &(0x7f0000000400)="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"}, 0x28)

6.436826017s ago: executing program 5 (id=1602):
syz_usb_connect(0x2, 0x2ca, &(0x7f0000000000)=ANY=[@ANYBLOB="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", @ANYRESHEX=0x0], 0x0)
syz_usb_connect$uac1(0x6, 0xde, &(0x7f0000000200)={{0x12, 0x1, 0x310, 0x0, 0x0, 0x0, 0x20, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xcc, 0x3, 0x1, 0x2, 0x80, 0x2, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x1, 0x7f}, [@mixer_unit={0xa, 0x24, 0x4, 0x5, 0x1, "034b4e6001"}, @selector_unit={0xb, 0x24, 0x5, 0x3, 0x6, "e76abd1a72b2"}, @feature_unit={0x11, 0x24, 0x6, 0x5, 0x1, 0x5, [0x8, 0x7, 0x6, 0x4, 0x1], 0x17}, @input_terminal={0xc, 0x24, 0x2, 0x4, 0x204, 0x5, 0xd, 0x6, 0x9, 0x1}, @mixer_unit={0x9, 0x24, 0x4, 0x6, 0x1, "ea80e77b"}, @processing_unit={0xb, 0x24, 0x7, 0x1, 0x1, 0x4, "e2737452"}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_i_discrete={0x8, 0x24, 0x2, 0x1, 0x9, 0x1, 0x10, 0xd}, @as_header={0x7, 0x24, 0x1, 0x58, 0x63, 0x1002}, @as_header={0x7, 0x24, 0x1, 0x7, 0xfa, 0x4}, @as_header={0x7, 0x24, 0x1, 0x5, 0x5}, @format_type_i_continuous={0xa, 0x24, 0x2, 0x1, 0xe6, 0x3, 0x62, 0x2, "", '\v\\'}]}, {{0x9, 0x5, 0x1, 0x9, 0x20, 0xf8, 0x0, 0x10, {0x7, 0x25, 0x1, 0x3, 0x0, 0xff80}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x82, 0x9, 0x200, 0x5, 0x10, 0x5, {0x7, 0x25, 0x1, 0x80, 0x7f, 0x2}}}}}}}]}}, &(0x7f0000000440)={0xa, &(0x7f0000000300)={0xa, 0x6, 0x200, 0x6, 0x3, 0x81, 0x8, 0xfb}, 0x29, &(0x7f0000000340)={0x5, 0xf, 0x29, 0x4, [@ss_cap={0xa, 0x10, 0x3, 0x2, 0x6, 0x9, 0x5, 0x3}, @wireless={0xb, 0x10, 0x1, 0xc, 0x6, 0x8, 0x6, 0x7, 0xc}, @ptm_cap={0x3}, @ssp_cap={0xc, 0x10, 0xa, 0xd2, 0x0, 0xe, 0xf0f, 0x7fff}]}, 0x3, [{0x4, &(0x7f0000000380)=@lang_id={0x4, 0x3, 0x2009}}, {0x4, &(0x7f00000003c0)=@lang_id={0x4, 0x3, 0x2801}}, {0x4, &(0x7f0000000400)=@lang_id={0x4, 0x3, 0xc04}}]})

6.169318923s ago: executing program 3 (id=1603):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = syz_io_uring_setup(0x5b1, &(0x7f00000000c0)={0x0, 0x156a, 0x80, 0x8000, 0x123}, &(0x7f0000000140)=<r2=>0x0, &(0x7f0000000040)=<r3=>0x0)
io_uring_setup(0xaab, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
io_uring_enter(r1, 0x29f3, 0xf6e5, 0x48, &(0x7f0000000080)={[0x7f]}, 0x8)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_MSG_RING={0x28, 0x40, 0x0, r1, 0x0, 0x0, 0x0, 0x2})
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
remap_file_pages(&(0x7f000057a000/0x1000)=nil, 0x1000, 0x0, 0x3fe, 0x1c0000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x19)
io_uring_enter(r1, 0x627, 0x4c1, 0x9, 0x0, 0x18)
r4 = dup(r0)
write$UHID_INPUT(r4, &(0x7f0000001040)={0xfc, {"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", 0x1000}}, 0x1006)

6.053971012s ago: executing program 6 (id=1604):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0xd, 0x200200090}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000040)=0x7)
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0xb, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4a, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ptype\x00')
socket$packet(0x11, 0x3, 0x300)
preadv(r2, &(0x7f0000000100)=[{&(0x7f00000006c0)=""/184, 0xb8}], 0x1, 0x36, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0xc0a85320, &(0x7f00000003c0)={{0x80}, 'port1\x00', 0xe3, 0x1b1c27, 0x0, 0x1, 0x0, 0x0, 0x5})
openat$sequencer2(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)

5.897183216s ago: executing program 6 (id=1605):
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x8, 0x4, &(0x7f0000000c00)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb=0x1, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f00000002c0), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000400)=ANY=[@ANYRES32, @ANYRES32=r0, @ANYBLOB="0100000000000000", @ANYRES32=r0, @ANYBLOB, @ANYRES32, @ANYBLOB="396e614552c6f3fcd1763a4adab2f2b907f02349ba824e4e4ccd9a2287e6558b1f9cf07bba1031bc104e9a5e74438f137073f44f76ad4cf368c7482fa5b26db6e3e2d33b4cfa73ec14b0cbd709ae6b694c1c2d81cac569c238584b3ab28ad2a46d187bea417ac8cc2834be9eb013b9acaa561ba0cd90a36e97f42f985faebd613bbcd6e31e8cce67aad8d1bf80c3d1ca16309719768cc6790a373d431957f6422953dda90d58938479fa7e66034f22298a1b922e4aeca972f7a9d17e9c70e93aaf8663d1fa9c76926aaa216d2d2e2bbac075dde12fb0a06117bd000c00f2cfb295f2525dd7d00e42d33b57a3cf9a293df822ae042a2481a410684f1d76bb73bbc5a5", @ANYRES8=r0], 0x14) (async)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) (async)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$vsock_stream(0x28, 0x1, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x2, &(0x7f0000000100)=[{0x6, 0x0, 0x8, 0x8}, {0x1, 0xd0, 0x5, 0x8001}]})
r2 = syz_clone(0x2000000, &(0x7f0000000200)="57d62b01cb75", 0x6, &(0x7f0000000240), &(0x7f0000000280), &(0x7f0000000340)="c66b78b4767208a796d9082b4618b985e48cb0bf746c2cd0cc51c08943f26f6bde3e57739b6a26a6b4a455c84af5e08eedb808be1aaf016c3654980d99d84cbe6d0ea6a3cb")
sched_setscheduler(r2, 0x6, &(0x7f00000003c0)=0xa90b) (async)
r3 = io_uring_setup(0x7d2e, &(0x7f0000002380)={0x0, 0xfffffffd, 0x4000, 0x40003}) (async)
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r4, &(0x7f0000000040)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c) (async)
r5 = syz_open_procfs(0x0, &(0x7f0000000780)='net/tcp6\x00')
preadv(r5, &(0x7f00000000c0)=[{&(0x7f0000001140)=""/4096, 0x1000}], 0x1, 0x300, 0x0)
io_uring_register$IORING_REGISTER_IOWQ_MAX_WORKERS(r3, 0x13, 0x0, 0x2) (async)
close(0xffffffffffffffff) (async)
r6 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r6, &(0x7f0000001080)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
recvmmsg(r6, &(0x7f00000078c0)=[{{0x0, 0x0, 0x0, 0xffffffffffffff3d, &(0x7f0000000540)=""/120, 0x78}, 0x2}, {{0x0, 0x0, 0x0}, 0x5}], 0x2, 0x40002022, 0x0) (async)
setsockopt$inet6_int(r6, 0x29, 0x8, &(0x7f00000001c0)=0x7f, 0x4)
sendto$inet6(r6, 0x0, 0x0, 0x4000, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c) (async)
prlimit64(0x0, 0xe, &(0x7f00000005c0)={0xc, 0x20000088}, 0x0) (async)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
writev(0xffffffffffffffff, 0x0, 0x0) (async)
r7 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r7, &(0x7f0000000600)={0x0, 0xffffff53, &(0x7f0000000340)}, 0x0)

4.972779701s ago: executing program 6 (id=1606):
syz_open_dev$evdev(&(0x7f0000001900), 0x0, 0x0)
r0 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @broadcast}}, 0x80, 0x0}, 0x8c800)
r1 = open$dir(&(0x7f0000000000)='./file0\x00', 0x200000, 0x140)
openat(r1, &(0x7f0000000040)='./file0\x00', 0x503100, 0x185)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x5, 0x5, 0x2, 0x6, 0x0, 0x1, 0xfffffffd, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000640), &(0x7f0000000740), 0x75, r2}, 0x38)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00'}, 0x10)
syz_open_dev$vim2m(&(0x7f0000000000), 0x7f, 0x2)
syz_clone(0x80000080, &(0x7f0000000140)="ac5fb4ba473ae32adf6d64970e8e2a2a81e36fbb284715601f07645c0f903c7363d3c42240597ed263c00fcbeb190ea69030f3a76f601f17ac52d4ee164c898cf7d9322d79bce7fdc1eff107a19ab7e25eea228c5947913a979c07a18a19db722b5991ed5efb3e1990ebe0ace27685515f079b6f47f84cf804f523b8af6a0c2628046817d4ce77ac878a27e9d968c100e332a9201c715713", 0x98, &(0x7f0000000080), &(0x7f0000000200), &(0x7f00000002c0)="70ccb57b488f1f3b6ed53abb1263831651fe9bc9b4e30a9c7ba5d01b8f214b7effd126ae081270daf5a105867e3eb81bc1b8c50c91b8e8fff97d95669231b56f7dd3f218b95ed5d379a8eb106af254741798e5eb5b3146b8b897b7cb15bd2f")

4.891794324s ago: executing program 2 (id=1607):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000040000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
syz_usb_connect$hid(0x4, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x8, 0x3, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000001200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x2000, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x200)
ioctl$KVM_SET_MSRS(r3, 0xc008ae88, &(0x7f0000000240)=ANY=[@ANYBLOB="01000000000000008e"])
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000140)=ANY=[@ANYBLOB="180000400000000000000000000000001801000020786c2500040000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000016b70300000000000085000000ca0000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0xd, 0xfe7, &(0x7f0000001e00)=""/4071, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
fsmount(r4, 0x0, 0x0)
r5 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000480)='mm_page_pcpu_drain\x00', 0xffffffffffffffff, 0x0, 0x3ff}, 0x18)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000140), 0xfffffdef)
bpf$LINK_DETACH(0x22, &(0x7f0000000100), 0x5e)
sendmsg$nl_generic(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x1c, 0x2d, 0x9, 0x70bd27, 0x25dfdbfe, {0x5}, [@typed={0x8, 0xa, 0x0, 0x0, @uid}]}, 0x1c}}, 0x20000086)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r6 = socket$inet6(0xa, 0x3, 0x6)
setsockopt$inet6_buf(r6, 0x29, 0x39, &(0x7f0000000040)="ff02040000b5ffffffffffffffff2e2be82db1af00000000", 0x18)
connect$inet6(r6, &(0x7f0000000080)={0xa, 0x4e20, 0x74df82a6, @private1={0xfc, 0x1, '\x00', 0xa}, 0xae3e}, 0x1c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x1f, 0xb, &(0x7f00000001c0)=@framed={{}, [@printk={@d, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0xb0}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
setsockopt$inet6_IPV6_HOPOPTS(r6, 0x29, 0x36, &(0x7f0000000580)=ANY=[], 0x10)
sendmmsg$inet6(r6, &(0x7f0000002940)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000}}], 0x62, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xad, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r7}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000008c0)=ANY=[@ANYBLOB="d08000001c00000225bd708f89030e2502000000", @ANYRES32=0x0, @ANYBLOB="200088020a000200aaaaaaaaaabb000008000800", @ANYRES32=0x0, @ANYBLOB='\b\x00\b\x00', @ANYRES32=0x0, @ANYBLOB="08000d00ff00000040000e80050001000200000004000200040002000400020005000100020000000400020005000100ff00000005000100670000000400020005000100fa00000014000100000000000000000000000000000000001400030007000000537e00001a0d00000104000028000e80050001000800000005000100810000000400020005000100030000000500010007000000"], 0xd0}}, 0x4000)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r8, 0x0)

4.793592801s ago: executing program 0 (id=1608):
syz_usb_connect(0x0, 0x2d, &(0x7f00000000c0)={{0x12, 0x1, 0x110, 0x68, 0xeb, 0x2b, 0x8, 0x471, 0x322, 0xb155, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x2, 0x1, 0x65, 0x20, 0x2, [{{0x9, 0x4, 0x4, 0x7f, 0x0, 0x57, 0xfb, 0xde, 0x1b}}, {{0x9, 0x4, 0x0, 0xe, 0x0, 0xf4, 0x8a, 0x9, 0x2}}]}}]}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
pipe2$9p(&(0x7f0000001900)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r0, &(0x7f0000000500)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15)
dup(r0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[], &(0x7f0000000540)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='sched_switch\x00', r1, 0x0, 0xfff7fffffffffff5}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000200)="d6b47fce454b60f121e014f73a", 0x2}, 0x38)
r3 = socket$kcm(0x2b, 0x1, 0x0)
sendmsg$kcm(r3, &(0x7f0000001b00)={0x0, 0x0, 0x0}, 0x24000000)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'], 0x48)
ioctl$sock_kcm_SIOCKCMATTACH(r3, 0x890b, &(0x7f0000000100))
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
migrate_pages(0x0, 0x8, &(0x7f0000000100)=0x7cd, &(0x7f0000000180)=0x1)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000400)=ANY=[@ANYBLOB="3801000010000100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000010000000033000000ac1414aa00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200010060000000000000480001006469676573745f6e756c6c00"/239], 0x138}}, 0x0)
r6 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r6, &(0x7f0000000580)=[{{&(0x7f0000000140)={0xa, 0x4e20, 0x9, @dev={0xfe, 0x80, '\x00', 0xe}, 0x5}, 0x1c, &(0x7f0000000b40)=[{&(0x7f0000000340)="f2", 0x1}], 0x1}}], 0x1, 0x0)
sendmsg$IPSET_CMD_SAVE(0xffffffffffffffff, 0x0, 0x4000040)
r7 = syz_open_dev$usbfs(&(0x7f0000000000), 0x9, 0x0)
ioctl$USBDEVFS_REAPURBNDELAY(r7, 0x4008550d, &(0x7f0000000040))

4.144629842s ago: executing program 5 (id=1609):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="180000000200000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
futex(0x0, 0xc, 0x1, 0x0, &(0x7f0000048000)=0x2, 0x0)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000001200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="38000000031401002dbd7000000000000900020073797a30000000000800410073697700140033006c6f00"/55], 0x38}, 0x1, 0x0, 0x0, 0x854}, 0x0)
socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=@newtfilter={0x38, 0x2c, 0xd27, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0x10}, {}, {0x8, 0x9}}, [@filter_kind_options=@f_u32={{0x8}, {0xc, 0x2, [@TCA_U32_DIVISOR={0x8, 0x4, 0x100}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4080}, 0x4000)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r5, &(0x7f00000002c0), 0x40000000000009f, 0x0)
connect$inet(r3, &(0x7f0000001980)={0x2, 0x1, @loopback}, 0x10)
r6 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r6, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB="4400000010001fff000000008000000000000000", @ANYRES32=0x0, @ANYBLOB="00020000203f00001c0012800b00010067726574617000000c00028008000700ffffffff08000a00", @ANYRES32=0x0, @ANYBLOB="254fe00d9789f7b35173727184e9987031d670e7c23c6c42ef90608eb405904d463ef5994f778807bd8fa39b2b326bff445050f0ae3b7c792f9f258bb8221b49576fbdf98ddf5050dbcca5f4cc9fbc11104f6c9c5778a73fb55a92eb441fd1dd430747f3397c"], 0x44}, 0x1, 0x0, 0x0, 0x40488c5}, 0x40000)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='comm\x00')

3.97626205s ago: executing program 3 (id=1610):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
unshare(0x2c040000)
r1 = memfd_create(&(0x7f0000000180)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x1)
r2 = fanotify_init(0x16, 0x0)
r3 = dup(0xffffffffffffffff)
fanotify_mark(r2, 0x1, 0x40000010, r3, 0x0)
writev(r1, &(0x7f0000000140)=[{&(0x7f0000000040)="d9", 0x1}], 0x1)
execveat(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f0000000680)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28408000100001080000000000000000fcffffffbf1f4e49e15f39e891ce020faedc8f", @ANYRES32=0x0, @ANYBLOB="000000009002010008001b0000000000"], 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x4008050)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x420003, 0x0)
r7 = socket(0x10, 0x3, 0x6)
r8 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r7, 0x8933, &(0x7f0000000040))
sendmsg$nl_route_sched(r8, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x20000000)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r6, 0x400455cb, 0x1)

3.806085275s ago: executing program 2 (id=1611):
r0 = socket$xdp(0x2c, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240))
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
openat$uhid(0xffffff9c, &(0x7f00000002c0), 0x802, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001980)={0x11, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x2}, [@map_idx={0x18, 0x1, 0x5, 0x0, 0x1}]}, &(0x7f0000000180)='GPL\x00', 0x2, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000900), 0x0, 0x10, 0x1, @void, @value}, 0x94)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000100)="2c385aa3d4", 0x5)
r3 = accept4(r2, 0x0, 0x0, 0x0)
readv(r3, &(0x7f0000000ac0)=[{&(0x7f00000007c0)=""/58, 0x3a}, {&(0x7f0000000400)=""/175, 0xaf}], 0x2)
sendmsg$alg(r3, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18, 0x40010}, 0x14000012)
sendmsg$nl_route_sched_retired(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000980)=@newqdisc={0x40, 0x24, 0x8, 0x70bd29, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0xfff7, 0x7}, {0xfff1, 0xfff3}, {0x2, 0x3}}, [@q_dsmark={{0xb}, {0x10, 0x2, [@TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x1}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x80)
pselect6(0x40, &(0x7f0000000680)={0x8, 0x7, 0x0, 0xfffffffffffffff9, 0x916, 0xae3, 0x7, 0x8}, 0x0, 0x0, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
syz_open_dev$sndmidi(&(0x7f0000000140), 0x1, 0x101000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_open_dev$evdev(0x0, 0x0, 0x60000)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$OSF_MSG_ADD(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="0815000000051104000000000000000001000005540201"], 0x1508}, 0x1, 0x0, 0x0, 0x24000080}, 0x0)
ioctl$sock_ifreq(r1, 0x8926, &(0x7f00000000c0)={'veth0_to_hsr\x00', @ifru_settings={0x0, 0x0, @raw_hdlc=&(0x7f0000000040)={0x1000, 0x8}}})
r6 = syz_io_uring_setup(0x10d, &(0x7f0000000380)={0x0, 0x5885, 0x100, 0x0, 0xffeffc03}, &(0x7f0000000340)=<r7=>0x0, &(0x7f0000000280))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
io_uring_enter(r6, 0x3516, 0x483, 0x0, 0x0, 0x0)
setsockopt$XDP_TX_RING(r0, 0x11b, 0x6, &(0x7f0000000000)=0x9404, 0x4)

2.778710265s ago: executing program 5 (id=1612):
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000600)=@newqdisc={0x38, 0x24, 0x3fe3aa0262d8c583, 0x70bd2b, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0xf1ff}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0x4}}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x5}]}, 0x38}}, 0x0)

494.613024ms ago: executing program 3 (id=1613):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x20000)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r0, 0x404c534a, &(0x7f0000000380)={0x2})

309.789472ms ago: executing program 6 (id=1614):
r0 = memfd_create(&(0x7f0000000300)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\xafa\xac\x06\x9c&\xf5\xe3j\xfa\tcqM\xb8R\x86\xd9\xd2.\x9f\x12\xed\x10\f\xbd\x1a|\x8a\xbb\xda\xcfY\x98gU@\xf2M\xc0\xb5\xdf\x9a\x8d\xdb,n\xae\x0eT\x80\x8c\xfd\xd7\xb0\x94\x82t\x96\rKx\xc5\x9b\x8c\x87\x96\x8bc\xbc\xee\xcc\x9f\xe3F\x99V4\x8e;M\xa9\x823\xe3\xb3mG\x8f\xdb\xed\x1b\x05\xec\xfc\xd1\xb5\xfd\xec@\xdeU\xdd\xa4\xc1\xe4L)\x8e\xe5\x91\x8e\xd4\x89\xef\x95T\x05G\xac\xb8\xc1: )mh\xc7\xf1?\xbb\x13;\xad\x95\xd70\xb6\x0e\x7f\x84r\x0e\xbf\xc5\xf6\xd4\xdd\t\x14\x18\xf7\xefi\x93\x03\xd2\xf2\bK\"\xd2\xb5\xaa\xb8\xc8\xe0\xac\x99\xe8su\xcd\xc3E\x12\xd7\xdd\x96!\x16Tu\xe3\xf0\x84#R\xd9\xe3~Wj\xb0r\x87\'\xea\a\xcfOeK\x9daW\xf4\x87@\x9c\xf3\xf1K\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x91\xe6\xdb\xc2\xa5h\'\xdfIn\x97\x0263~\xeb\xbe(i\n\xc2k4\x7f\x12\xa9e`SOs\x8c\xb4\xe7FeQ\xc6$\x92j_U\xfa\b\xea\xb0bYkW\xc0\x05\aC{\xcc\x03T\x17\xa5Sk\x87P\xc2\x97D\xb2\xfa\x1b\x9fe\xf4\x10\x1a\xad\x92\xce\x88\x1b\xbc\xe14\x19\xaa\xd3\r\xf4\xa2\xc3\x9e=\xa0 \xe6j\xe5\x85\xf8\x97\x03\x15\xaa\x920\xdcrI\xd8\b\xfb\xc7\xe7xX\x00>d\xbb\xa71\xad\x9a\xfb\xe6\x13\x87\x93\\\xe5W-\xfc\xfd\xb8O\xb9j\xb8\xf2\x9dx\xb2\x86\xad\x92', 0x3)
write$binfmt_elf64(r0, &(0x7f0000000180)=ANY=[], 0x78)
sendfile(0xffffffffffffffff, r0, &(0x7f00000001c0), 0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x44}}, 0x0)
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, &(0x7f0000000100)={0xa10000, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0xa30903, 0x8000, '\x00', @p_u8=&(0x7f0000000200)=0xc}})
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0xc2d41, 0x0)
fcntl$addseals(r0, 0x409, 0x8)
openat$kvm(0xffffffffffffff9c, 0x0, 0xc801, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$UFFDIO_WRITEPROTECT(0xffffffffffffffff, 0xc018aa06, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000100)={'batadv0\x00', <r5=>0x0})
ioctl$RFKILL_IOCTL_NOINPUT(r3, 0x5201)
sendmsg$nl_route(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=@newlink={0x54, 0x10, 0x401, 0x0, 0x1000000, {0x0, 0x0, 0x0, 0x0, 0xf0ff, 0x308}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @ip6gretap={{0xe}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GRE_REMOTE={0x14, 0x7, @local}]}}}, @IFLA_MASTER={0x8, 0xa, r5}]}, 0x54}, 0x1, 0x0, 0x0, 0x20081}, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r6, 0x8933, 0x0)
sendmsg$nl_route(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000500)=ANY=[@ANYBLOB="200020001100dbdf25006200000073e04747ee76c59ccdeb9b7631201c5fb9bb77b780c4a9df44a566520a8e0e15fab4c26b5290cbc8efc916dc030a9fe7339494f88de4738f93ec89da9eea42c733ce766d541d4d23145c05d6f2c485374ff79e33a03482552ae3cab4f656531d0b8d8a", @ANYRES32, @ANYBLOB="8014000004210000"], 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x80)
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000005d00)={0x118, 0x2e, 0x1, 0x0, 0x25dfdbfc, "", [@nested={0x106, 0xf2, 0x0, 0x1, [@typed={0xc, 0x18, 0x0, 0x0, @u64=0xfac08}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x16}}}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a46cf26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f00ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82fd3f", @typed={0x4, 0xe9}]}]}, 0x118}], 0x1, 0x0, 0x0, 0x1}, 0x0)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r1)
close_range(r7, 0xffffffffffffffff, 0x0)

48.582187ms ago: executing program 3 (id=1615):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000000c0))
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)={0x18, 0x52, 0x1, 0x70bd05, 0x25dfdbfb, {0x2}, [@typed={0x4, 0x1}]}, 0x18}}, 0x40804)
getsockopt$inet_tcp_buf(r0, 0x6, 0xe, &(0x7f0000000240)=""/98, &(0x7f0000000340)=0x62)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', <r4=>0x0})
sendmsg$ETHTOOL_MSG_PAUSE_SET(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000100)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000001e0000000c00018008000100", @ANYRES32=r4, @ANYBLOB="050003"], 0x28}}, 0x80)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000001a40)=""/102392, 0x18ff8)
r7 = socket(0x10, 0x2, 0x0)
ioctl$sock_SIOCETHTOOL(r7, 0x89b0, &(0x7f0000000180)={'bond0\x00', &(0x7f0000000040)=@ethtool_pauseparam={0x1}})
syz_open_dev$dri(0x0, 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r8 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r8, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r9=>0x0}, 0x0)
getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r8, 0x84, 0x1f, &(0x7f0000000180)={r9, @in={{0x2, 0x4e20, @empty}}, 0xd9d, 0x1}, &(0x7f0000000040)=0x90)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r5, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r5, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)})
ioctl$DRM_IOCTL_MODE_GETPLANE(r5, 0xc02064b6, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
clock_settime(0x0, &(0x7f0000000240)={0x77359400})

27.167202ms ago: executing program 5 (id=1616):
socket$inet_sctp(0x2, 0x5, 0x84)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000240))
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, &(0x7f0000000440)={0x0, 0xe2, "5c3c16994cc8fed3ac305b8c301c22deccad1ccdbcf93f5bcd494ea0efe49e55105f5e95ec12b14e2a477f91e70d7b0942d5ba47423db27b683385a17d7a146299616a07fdbbfcf356963a72b2359af5e1b50fdc54dc0f53ad331cb5170daaeb484cdb16af0839584173fbf13bc2ed80d2ead189dd4297dfa8ad8bed8c2d4853a50e5eed7f757e3ecc34f87c702b277cb7ddc56416f9a5926bef2da1505d6462f816b5b8e53b4c1ab5514844e1c67291dc748757a8593c8c09c1991c639703c6759c9eba2837b320a9ff8328eea087cd3059011a72ab746723a8d70bc1498aafa14b"}, &(0x7f0000000180)=0xea)
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff})
r1 = openat$sndseq(0xffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r1, 0xc0505350, &(0x7f0000000140)={{0x0, 0x1}, {0xf}})
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000002000)={0x1, 0x0, 0x200, 0x2})
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r2, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x808000, 0x4, 0x20300, 0xfc}, 0x1c)
fcntl$lock(0xffffffffffffffff, 0x26, 0x0)
fcntl$lock(0xffffffffffffffff, 0x26, &(0x7f0000000080))
fcntl$lock(0xffffffffffffffff, 0x7, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x3})
syz_usbip_server_init(0x4)
syz_usbip_server_init(0x4)
r3 = syz_open_dev$vbi(&(0x7f0000000080), 0x3, 0x2)
ioctl$VIDIOC_S_OUTPUT(r3, 0xc004562f, &(0x7f00000000c0)=0x1)
ioctl$VIDIOC_S_DV_TIMINGS(r3, 0xc0845657, &(0x7f0000000380)={0x0, @bt={0xff, 0x6, 0x1, 0x3, 0xfffffffffffffffb, 0x9, 0x3e9, 0x4, 0x45a, 0x7, 0x7, 0x40, 0x7, 0x1, 0x8, 0x22, {0xffff, 0xf}, 0x30, 0xd}})
syz_usbip_server_init(0x2)
syz_usbip_server_init(0x2)
syz_usbip_server_init(0x0)
syz_usbip_server_init(0x0)
syz_io_uring_setup(0x42e6, &(0x7f00000002c0)={0x0, 0x5eda, 0x10100, 0x2, 0x2d5}, &(0x7f0000000040)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.io_merged\x00', 0x275a, 0x0)
syz_io_uring_submit(0x0, r5, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x3, 0x0, @fd=r0, 0x0, 0x0, 0x7, 0x0, 0x1})
syz_open_dev$MSR(&(0x7f0000000200), 0xffffffffffffff01, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0))
write$UHID_CREATE2(r6, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r6, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x3c, 0x0, 0x0, 0x0, 0x12345})

12.33529ms ago: executing program 0 (id=1617):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0xe, 0x4, &(0x7f0000000600)=ANY=[@ANYBLOB="18020000801000000000000004000000850000005600000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

0s ago: executing program 2 (id=1618):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56e41, 0x0, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0x10, 0xfff1}, {0x7, 0xffff}, {0x9, 0xfff1}}}, 0x24}, 0x1, 0x0, 0x0, 0x48801}, 0x0)
socket$kcm(0x2, 0x3, 0x84)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r0, 0x0, 0xfffffffffffffffd}, 0x18)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
close(r0)
recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0xf5ffffff, 0x0, 0x0, 0x0, 0x4000000}, 0xf5ff}], 0xf00, 0x0, 0x0)
shutdown(r1, 0x0)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000f2ffffff0000000000000000850000001700"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r2, 0x0, 0x3c, 0x72, &(0x7f0000000040)="976d9023d56482cd284a63da539706d7009be646625bd75b025352ebe557df463106baeed6c2d75549b140f143fb8bb67bfe5b308b8d05758115c7ad", &(0x7f0000000180)=""/114, 0x0, 0x0, 0xbd, 0x0, &(0x7f0000000400)="cf2240e6919817e49555d221b4e6c6ba11c4d974ddab2318db7b52cee499399a00be4b710e9246d7bca28cc8346eb84414e45f3f4633f4acb77bf8cc38c4c16fe035905db79cdc0be634a915662c4cac58ae94706f86ea320f339c21399b5bb7607044916c63c528ab4149718d6215a9a3749113c268e49b2b9dae91ed804e5ac5d4ec7ac9c5fd67a76f9a2b06f7304f6e81221a751008e786e1edde82cf1ecb76cb4cd71cf781ea3a19b917a1e215b1a6c7ee605b32b91eaae38517fd", &(0x7f0000000280), 0x0, 0x8000}, 0x50)
r3 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_TX_RING(r3, 0x11b, 0x6, &(0x7f0000000000)=0x40000000, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r4, 0x800448d4, &(0x7f0000000400))
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0x0, 0x1}, 0x6)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r5, 0x400448cb, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[@ANYBLOB="600000000206010800000000000000000100000a11000300686173683a69702c6d61726b00000000050001000790116005000500020000000900020073797a300000000005000400000000001400078008000840000000d308000640"], 0x60}, 0x1, 0x0, 0x0, 0x2002c0c4}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f0000000840)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000014}, 0x0)
ioctl$TUNATTACHFILTER(r6, 0x401054d5, &(0x7f00000000c0)={0x0, &(0x7f0000000640)})
r8 = socket(0x1f, 0x2, 0x8)
connect$rose(r8, &(0x7f0000000500)=@short={0xb, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @default, 0x1, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}}, 0x1c)
r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r9, &(0x7f0000000340)={0x1f, 0xffff, 0x3}, 0x6)
socket$inet(0x2, 0x2, 0x0)
write(r9, &(0x7f0000000040)="05000000010000", 0x7)

kernel console output (not intermixed with test programs):

] 0 pages HighMem/MovableOnly
[  558.164977][T11029] 424572 pages reserved
[  558.170497][T11029] 0 pages cma reserved
[  558.504577][T11049] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  559.442871][ T5822] Bluetooth: hci1: command 0x0c1a tx timeout
[  559.736371][T11063] netlink: 'syz.4.1369': attribute type 1 has an invalid length.
[  559.756938][T11063] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1369'.
[  559.772795][ T5822] Bluetooth: hci4: command 0x0c1a tx timeout
[  559.779275][ T5822] Bluetooth: hci3: command 0x0c1a tx timeout
[  559.901903][ T6350] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  559.921904][ T5822] Bluetooth: hci2: command 0x0c1a tx timeout
[  560.042951][ T6350] usb 6-1: device descriptor read/64, error -71
[  560.079764][T11069] netlink: 'syz.4.1372': attribute type 8 has an invalid length.
[  560.300322][ T6350] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  560.492115][ T6350] usb 6-1: device descriptor read/64, error -71
[  560.612188][ T6350] usb usb6-port1: attempt power cycle
[  560.992697][ T6350] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  561.039582][T11086] FAULT_INJECTION: forcing a failure.
[  561.039582][T11086] name failslab, interval 1, probability 0, space 0, times 0
[  561.042313][ T6350] usb 6-1: device descriptor read/8, error -71
[  561.070085][T11086] CPU: 1 UID: 0 PID: 11086 Comm: syz.0.1375 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  561.070114][T11086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  561.070126][T11086] Call Trace:
[  561.070134][T11086]  <TASK>
[  561.070144][T11086]  dump_stack_lvl+0x189/0x250
[  561.070179][T11086]  ? __pfx____ratelimit+0x10/0x10
[  561.070209][T11086]  ? __pfx_dump_stack_lvl+0x10/0x10
[  561.070235][T11086]  ? __pfx__printk+0x10/0x10
[  561.070263][T11086]  ? __pfx___might_resched+0x10/0x10
[  561.070295][T11086]  should_fail_ex+0x414/0x560
[  561.070325][T11086]  should_failslab+0xa8/0x100
[  561.070352][T11086]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  561.070378][T11086]  ? __alloc_skb+0x112/0x2d0
[  561.070404][T11086]  __alloc_skb+0x112/0x2d0
[  561.070431][T11086]  netlink_sendmsg+0x5c6/0xb30
[  561.070466][T11086]  ? __pfx_netlink_sendmsg+0x10/0x10
[  561.070508][T11086]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  561.070532][T11086]  ? __pfx_netlink_sendmsg+0x10/0x10
[  561.070555][T11086]  __sock_sendmsg+0x219/0x270
[  561.070587][T11086]  ____sys_sendmsg+0x52d/0x830
[  561.070618][T11086]  ? __pfx_____sys_sendmsg+0x10/0x10
[  561.070654][T11086]  ? import_iovec+0x74/0xa0
[  561.070678][T11086]  ___sys_sendmsg+0x21f/0x2a0
[  561.070704][T11086]  ? __pfx____sys_sendmsg+0x10/0x10
[  561.070769][T11086]  ? __fget_files+0x2a/0x420
[  561.070794][T11086]  ? __fget_files+0x3a0/0x420
[  561.070831][T11086]  __sys_sendmmsg+0x227/0x430
[  561.070862][T11086]  ? __pfx___sys_sendmmsg+0x10/0x10
[  561.070883][T11086]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  561.070945][T11086]  ? ksys_write+0x22a/0x250
[  561.070969][T11086]  ? __pfx_ksys_write+0x10/0x10
[  561.070989][T11086]  ? rcu_is_watching+0x15/0xb0
[  561.071026][T11086]  __x64_sys_sendmmsg+0xa0/0xc0
[  561.071053][T11086]  do_syscall_64+0xfa/0x3b0
[  561.071070][T11086]  ? lockdep_hardirqs_on+0x9c/0x150
[  561.071098][T11086]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  561.071116][T11086]  ? clear_bhb_loop+0x60/0xb0
[  561.071139][T11086]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  561.071158][T11086] RIP: 0033:0x7f12cbf8e929
[  561.071175][T11086] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  561.071191][T11086] RSP: 002b:00007f12cce77038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  561.071218][T11086] RAX: ffffffffffffffda RBX: 00007f12cc1b5fa0 RCX: 00007f12cbf8e929
[  561.071233][T11086] RDX: 040000000000009f RSI: 00002000000002c0 RDI: 0000000000000004
[  561.071246][T11086] RBP: 00007f12cce77090 R08: 0000000000000000 R09: 0000000000000000
[  561.071258][T11086] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  561.071269][T11086] R13: 0000000000000000 R14: 00007f12cc1b5fa0 R15: 00007ffe1688dba8
[  561.071299][T11086]  </TASK>
[  561.311394][ T6350] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  561.404447][ T6350] usb 6-1: device descriptor read/8, error -71
[  561.933070][ T6350] usb usb6-port1: unable to enumerate USB device
[  562.132307][T11096] FAULT_INJECTION: forcing a failure.
[  562.132307][T11096] name failslab, interval 1, probability 0, space 0, times 0
[  562.192186][T11096] CPU: 0 UID: 0 PID: 11096 Comm: syz.4.1381 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  562.192216][T11096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  562.192228][T11096] Call Trace:
[  562.192237][T11096]  <TASK>
[  562.192247][T11096]  dump_stack_lvl+0x189/0x250
[  562.192281][T11096]  ? __pfx____ratelimit+0x10/0x10
[  562.192310][T11096]  ? __pfx_dump_stack_lvl+0x10/0x10
[  562.192338][T11096]  ? __pfx__printk+0x10/0x10
[  562.192364][T11096]  ? __pfx___might_resched+0x10/0x10
[  562.192397][T11096]  should_fail_ex+0x414/0x560
[  562.192428][T11096]  should_failslab+0xa8/0x100
[  562.192456][T11096]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  562.192480][T11096]  ? __alloc_skb+0x112/0x2d0
[  562.192516][T11096]  __alloc_skb+0x112/0x2d0
[  562.192542][T11096]  netlink_sendmsg+0x5c6/0xb30
[  562.192576][T11096]  ? __pfx_netlink_sendmsg+0x10/0x10
[  562.192609][T11096]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  562.192631][T11096]  ? __pfx_netlink_sendmsg+0x10/0x10
[  562.192656][T11096]  __sock_sendmsg+0x219/0x270
[  562.192689][T11096]  ____sys_sendmsg+0x505/0x830
[  562.192721][T11096]  ? __pfx_____sys_sendmsg+0x10/0x10
[  562.192755][T11096]  ? import_iovec+0x74/0xa0
[  562.192779][T11096]  ___sys_sendmsg+0x21f/0x2a0
[  562.192806][T11096]  ? __pfx____sys_sendmsg+0x10/0x10
[  562.192874][T11096]  ? __fget_files+0x2a/0x420
[  562.192898][T11096]  ? __fget_files+0x3a0/0x420
[  562.192936][T11096]  __x64_sys_sendmsg+0x19b/0x260
[  562.192964][T11096]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  562.193000][T11096]  ? __pfx_ksys_write+0x10/0x10
[  562.193020][T11096]  ? rcu_is_watching+0x15/0xb0
[  562.193054][T11096]  ? do_syscall_64+0xbe/0x3b0
[  562.193076][T11096]  do_syscall_64+0xfa/0x3b0
[  562.193092][T11096]  ? lockdep_hardirqs_on+0x9c/0x150
[  562.193119][T11096]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  562.193138][T11096]  ? clear_bhb_loop+0x60/0xb0
[  562.193168][T11096]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  562.193187][T11096] RIP: 0033:0x7efe45f8e929
[  562.193205][T11096] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  562.193222][T11096] RSP: 002b:00007efe46dcb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  562.193244][T11096] RAX: ffffffffffffffda RBX: 00007efe461b5fa0 RCX: 00007efe45f8e929
[  562.193258][T11096] RDX: 0000000020060000 RSI: 0000200000000640 RDI: 0000000000000004
[  562.193271][T11096] RBP: 00007efe46dcb090 R08: 0000000000000000 R09: 0000000000000000
[  562.193283][T11096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  562.193295][T11096] R13: 0000000000000000 R14: 00007efe461b5fa0 R15: 00007ffe16e86bf8
[  562.193329][T11096]  </TASK>
[  562.457714][    C0] vkms_vblank_simulate: vblank timer overrun
[  563.205908][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  563.602655][   T30] audit: type=1400 audit(1750564271.840:187): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="]-{" requested=w pid=11119 comm="syz.4.1387"
[  563.695287][   T30] audit: type=1400 audit(1750564271.850:188): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="]-{" requested=w pid=11100 comm="syz.0.1382" dest=20004
[  564.028845][T11127] FAULT_INJECTION: forcing a failure.
[  564.028845][T11127] name failslab, interval 1, probability 0, space 0, times 0
[  564.042183][T11127] CPU: 0 UID: 0 PID: 11127 Comm: syz.4.1389 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  564.042211][T11127] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  564.042221][T11127] Call Trace:
[  564.042227][T11127]  <TASK>
[  564.042233][T11127]  dump_stack_lvl+0x189/0x250
[  564.042254][T11127]  ? __pfx____ratelimit+0x10/0x10
[  564.042271][T11127]  ? __pfx_dump_stack_lvl+0x10/0x10
[  564.042288][T11127]  ? __pfx__printk+0x10/0x10
[  564.042304][T11127]  ? __pfx___might_resched+0x10/0x10
[  564.042319][T11127]  ? fs_reclaim_acquire+0x7d/0x100
[  564.042339][T11127]  should_fail_ex+0x414/0x560
[  564.042357][T11127]  should_failslab+0xa8/0x100
[  564.042374][T11127]  __kmalloc_node_track_caller_noprof+0xcc/0x4e0
[  564.042389][T11127]  ? dh_data_from_key+0x15e/0x280
[  564.042405][T11127]  kmemdup_noprof+0x2b/0x70
[  564.042423][T11127]  dh_data_from_key+0x15e/0x280
[  564.042437][T11127]  __keyctl_dh_compute+0x295/0xca0
[  564.042458][T11127]  ? __pfx___keyctl_dh_compute+0x10/0x10
[  564.042471][T11127]  ? kvm_sched_clock_read+0x11/0x20
[  564.042509][T11127]  ? kvm_sched_clock_read+0x11/0x20
[  564.042522][T11127]  ? sched_clock+0x3f/0x60
[  564.042537][T11127]  keyctl_dh_compute+0x109/0x160
[  564.042551][T11127]  ? __pfx_keyctl_dh_compute+0x10/0x10
[  564.042571][T11127]  ? rcu_is_watching+0x15/0xb0
[  564.042590][T11127]  __se_sys_keyctl+0x423/0x910
[  564.042611][T11127]  ? __pfx___se_sys_keyctl+0x10/0x10
[  564.042634][T11127]  ? schedule+0x165/0x360
[  564.042652][T11127]  ? __pfx___schedule+0x10/0x10
[  564.042669][T11127]  ? irqentry_exit+0x74/0x90
[  564.042698][T11127]  ? do_syscall_64+0xbe/0x3b0
[  564.042708][T11127]  ? __x64_sys_keyctl+0x20/0xc0
[  564.042725][T11127]  do_syscall_64+0xfa/0x3b0
[  564.042736][T11127]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  564.042748][T11127]  ? asm_sysvec_call_function_single+0x1a/0x20
[  564.042759][T11127]  ? clear_bhb_loop+0x60/0xb0
[  564.042773][T11127]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  564.042785][T11127] RIP: 0033:0x7efe45f8e929
[  564.042797][T11127] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  564.042807][T11127] RSP: 002b:00007efe46daa038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[  564.042823][T11127] RAX: ffffffffffffffda RBX: 00007efe461b6080 RCX: 00007efe45f8e929
[  564.042831][T11127] RDX: 0000000000000000 RSI: 0000200000000140 RDI: 0000000000000017
[  564.042839][T11127] RBP: 00007efe46daa090 R08: 0000000000000000 R09: 0000000000000000
[  564.042846][T11127] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  564.042853][T11127] R13: 0000000000000000 R14: 00007efe461b6080 R15: 00007ffe16e86bf8
[  564.042872][T11127]  </TASK>
[  565.524021][ T5906] usb 3-1: new high-speed USB device number 32 using dummy_hcd
[  565.712423][ T5906] usb 3-1: device descriptor read/64, error -71
[  565.930234][T11142] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1393'.
[  566.040799][ T5906] usb 3-1: new high-speed USB device number 33 using dummy_hcd
[  566.320584][T11147] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1396'.
[  566.457663][T11153] FAULT_INJECTION: forcing a failure.
[  566.457663][T11153] name failslab, interval 1, probability 0, space 0, times 0
[  566.470815][T11153] CPU: 0 UID: 0 PID: 11153 Comm: syz.5.1397 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  566.470834][T11153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  566.470841][T11153] Call Trace:
[  566.470847][T11153]  <TASK>
[  566.470852][T11153]  dump_stack_lvl+0x189/0x250
[  566.470873][T11153]  ? __pfx____ratelimit+0x10/0x10
[  566.470891][T11153]  ? __pfx_dump_stack_lvl+0x10/0x10
[  566.470907][T11153]  ? __pfx__printk+0x10/0x10
[  566.470923][T11153]  ? __pfx___might_resched+0x10/0x10
[  566.470942][T11153]  should_fail_ex+0x414/0x560
[  566.470960][T11153]  should_failslab+0xa8/0x100
[  566.470976][T11153]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  566.470991][T11153]  ? __alloc_skb+0x112/0x2d0
[  566.471007][T11153]  __alloc_skb+0x112/0x2d0
[  566.471022][T11153]  netlink_sendmsg+0x5c6/0xb30
[  566.471041][T11153]  ? __pfx_netlink_sendmsg+0x10/0x10
[  566.471060][T11153]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  566.471074][T11153]  ? __pfx_netlink_sendmsg+0x10/0x10
[  566.471087][T11153]  __sock_sendmsg+0x219/0x270
[  566.471107][T11153]  ____sys_sendmsg+0x505/0x830
[  566.471124][T11153]  ? __pfx_____sys_sendmsg+0x10/0x10
[  566.471144][T11153]  ? import_iovec+0x74/0xa0
[  566.471158][T11153]  ___sys_sendmsg+0x21f/0x2a0
[  566.471174][T11153]  ? __pfx____sys_sendmsg+0x10/0x10
[  566.471228][T11153]  ? __fget_files+0x2a/0x420
[  566.471253][T11153]  ? __fget_files+0x3a0/0x420
[  566.471289][T11153]  __x64_sys_sendmsg+0x19b/0x260
[  566.471311][T11153]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  566.471331][T11153]  ? __pfx_ksys_write+0x10/0x10
[  566.471348][T11153]  ? do_syscall_64+0xbe/0x3b0
[  566.471361][T11153]  do_syscall_64+0xfa/0x3b0
[  566.471371][T11153]  ? lockdep_hardirqs_on+0x9c/0x150
[  566.471387][T11153]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  566.471399][T11153]  ? clear_bhb_loop+0x60/0xb0
[  566.471414][T11153]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  566.471425][T11153] RIP: 0033:0x7fab81f8e929
[  566.471437][T11153] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  566.471455][T11153] RSP: 002b:00007fab82d40038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  566.471469][T11153] RAX: ffffffffffffffda RBX: 00007fab821b5fa0 RCX: 00007fab81f8e929
[  566.471478][T11153] RDX: 0000000000000000 RSI: 00002000000004c0 RDI: 0000000000000006
[  566.471486][T11153] RBP: 00007fab82d40090 R08: 0000000000000000 R09: 0000000000000000
[  566.471493][T11153] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  566.471500][T11153] R13: 0000000000000000 R14: 00007fab821b5fa0 R15: 00007ffc23a61b78
[  566.471519][T11153]  </TASK>
[  567.190151][T11161] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  567.209971][T11161] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  567.218180][T11161] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  567.235938][T11161] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  569.006180][T11190] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1404'.
[  569.131586][ T5822] Bluetooth: hci1: command 0x0c1a tx timeout
[  569.294394][ T5826] Bluetooth: hci4: command 0x0c1a tx timeout
[  569.294434][ T5835] Bluetooth: hci3: command 0x0c1a tx timeout
[  569.300472][ T5822] Bluetooth: hci2: command 0x0c1a tx timeout
[  569.923664][T11204] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1411'.
[  569.991506][ T1210] usb 1-1: new high-speed USB device number 28 using dummy_hcd
[  570.198985][ T1210] usb 1-1: config 0 has no interfaces?
[  570.218379][ T1210] usb 1-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=e6.fc
[  570.242182][T11210] FAULT_INJECTION: forcing a failure.
[  570.242182][T11210] name failslab, interval 1, probability 0, space 0, times 0
[  570.256734][ T1210] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  570.297661][ T1210] usb 1-1: Product: syz
[  570.315370][T11210] CPU: 0 UID: 0 PID: 11210 Comm: syz.3.1413 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  570.315400][T11210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  570.315412][T11210] Call Trace:
[  570.315421][T11210]  <TASK>
[  570.315430][T11210]  dump_stack_lvl+0x189/0x250
[  570.315463][T11210]  ? __pfx____ratelimit+0x10/0x10
[  570.315491][T11210]  ? __pfx_dump_stack_lvl+0x10/0x10
[  570.315516][T11210]  ? __pfx__printk+0x10/0x10
[  570.315541][T11210]  ? __pfx___might_resched+0x10/0x10
[  570.315574][T11210]  should_fail_ex+0x414/0x560
[  570.315603][T11210]  should_failslab+0xa8/0x100
[  570.315621][T11210]  __kmalloc_noprof+0xcb/0x4f0
[  570.315635][T11210]  ? sock_kmalloc+0xd6/0x160
[  570.315660][T11210]  sock_kmalloc+0xd6/0x160
[  570.315676][T11210]  af_alg_alloc_areq+0x8d/0x260
[  570.315692][T11210]  skcipher_recvmsg+0x356/0x11c0
[  570.315720][T11210]  ? __pfx_skcipher_recvmsg+0x10/0x10
[  570.315733][T11210]  ? __lock_acquire+0xab9/0xd20
[  570.315750][T11210]  ? bpf_lsm_socket_recvmsg+0x9/0x20
[  570.315763][T11210]  ? security_socket_recvmsg+0x7e/0x2e0
[  570.315777][T11210]  ? __pfx_skcipher_recvmsg+0x10/0x10
[  570.315792][T11210]  sock_recvmsg+0x229/0x270
[  570.315812][T11210]  ____sys_recvmsg+0x1c9/0x460
[  570.315833][T11210]  ? __pfx_____sys_recvmsg+0x10/0x10
[  570.315858][T11210]  ? import_iovec+0x74/0xa0
[  570.315872][T11210]  ___sys_recvmsg+0x1b5/0x510
[  570.315891][T11210]  ? __pfx____sys_recvmsg+0x10/0x10
[  570.315921][T11210]  ? __fget_files+0x3a0/0x420
[  570.315948][T11210]  do_recvmmsg+0x307/0x770
[  570.315969][T11210]  ? __pfx_do_recvmmsg+0x10/0x10
[  570.315992][T11210]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  570.316022][T11210]  __x64_sys_recvmmsg+0x190/0x240
[  570.316039][T11210]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  570.316052][T11210]  ? rcu_is_watching+0x15/0xb0
[  570.316072][T11210]  ? do_syscall_64+0xbe/0x3b0
[  570.316085][T11210]  do_syscall_64+0xfa/0x3b0
[  570.316094][T11210]  ? lockdep_hardirqs_on+0x9c/0x150
[  570.316110][T11210]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  570.316126][T11210]  ? clear_bhb_loop+0x60/0xb0
[  570.316141][T11210]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  570.316152][T11210] RIP: 0033:0x7f154e18e929
[  570.316164][T11210] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  570.316174][T11210] RSP: 002b:00007f154ef47038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  570.316188][T11210] RAX: ffffffffffffffda RBX: 00007f154e3b5fa0 RCX: 00007f154e18e929
[  570.316197][T11210] RDX: 0000000000000001 RSI: 0000200000000a00 RDI: 0000000000000004
[  570.316204][T11210] RBP: 00007f154ef47090 R08: 0000000000000000 R09: 0000000000000000
[  570.316212][T11210] R10: 0000000000012040 R11: 0000000000000246 R12: 0000000000000001
[  570.316219][T11210] R13: 0000000000000000 R14: 00007f154e3b5fa0 R15: 00007ffe9345d708
[  570.316238][T11210]  </TASK>
[  570.605270][ T1210] usb 1-1: Manufacturer: syz
[  570.609923][ T1210] usb 1-1: SerialNumber: syz
[  570.740094][ T1210] usb 1-1: config 0 descriptor??
[  570.898644][T11214] FAULT_INJECTION: forcing a failure.
[  570.898644][T11214] name failslab, interval 1, probability 0, space 0, times 0
[  570.914877][T11214] CPU: 0 UID: 0 PID: 11214 Comm: syz.3.1415 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  570.914897][T11214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  570.914905][T11214] Call Trace:
[  570.914911][T11214]  <TASK>
[  570.914917][T11214]  dump_stack_lvl+0x189/0x250
[  570.914938][T11214]  ? __pfx____ratelimit+0x10/0x10
[  570.914956][T11214]  ? __pfx_dump_stack_lvl+0x10/0x10
[  570.914972][T11214]  ? __pfx__printk+0x10/0x10
[  570.914988][T11214]  ? __pfx___might_resched+0x10/0x10
[  570.915003][T11214]  ? fs_reclaim_acquire+0x7d/0x100
[  570.915022][T11214]  should_fail_ex+0x414/0x560
[  570.915040][T11214]  should_failslab+0xa8/0x100
[  570.915055][T11214]  __kmalloc_noprof+0xcb/0x4f0
[  570.915069][T11214]  ? bpf_test_init+0xc2/0x170
[  570.915085][T11214]  bpf_test_init+0xc2/0x170
[  570.915099][T11214]  bpf_prog_test_run_xdp+0x37c/0x1000
[  570.915123][T11214]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  570.915139][T11214]  ? __fget_files+0x2a/0x420
[  570.915157][T11214]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  570.915171][T11214]  bpf_prog_test_run+0x2c4/0x340
[  570.915189][T11214]  __sys_bpf+0x4a4/0x860
[  570.915204][T11214]  ? __pfx___sys_bpf+0x10/0x10
[  570.915227][T11214]  ? ksys_write+0x22a/0x250
[  570.915241][T11214]  ? __pfx_ksys_write+0x10/0x10
[  570.915252][T11214]  ? rcu_is_watching+0x15/0xb0
[  570.915274][T11214]  __x64_sys_bpf+0x7c/0x90
[  570.915287][T11214]  do_syscall_64+0xfa/0x3b0
[  570.915297][T11214]  ? lockdep_hardirqs_on+0x9c/0x150
[  570.915314][T11214]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  570.915325][T11214]  ? clear_bhb_loop+0x60/0xb0
[  570.915340][T11214]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  570.915351][T11214] RIP: 0033:0x7f154e18e929
[  570.915363][T11214] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  570.915373][T11214] RSP: 002b:00007f154ef47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  570.915387][T11214] RAX: ffffffffffffffda RBX: 00007f154e3b5fa0 RCX: 00007f154e18e929
[  570.915396][T11214] RDX: 0000000000000050 RSI: 0000200000000280 RDI: 000000000000000a
[  570.915404][T11214] RBP: 00007f154ef47090 R08: 0000000000000000 R09: 0000000000000000
[  570.915412][T11214] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  570.915419][T11214] R13: 0000000000000000 R14: 00007f154e3b5fa0 R15: 00007ffe9345d708
[  570.915444][T11214]  </TASK>
[  571.159564][ T6350] usb 1-1: USB disconnect, device number 28
[  571.511763][T11220] FAULT_INJECTION: forcing a failure.
[  571.511763][T11220] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  571.634931][T11221] siw: device registration error -23
[  572.463595][T11220] CPU: 1 UID: 0 PID: 11220 Comm: syz.5.1414 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  572.463625][T11220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  572.463634][T11220] Call Trace:
[  572.463639][T11220]  <TASK>
[  572.463645][T11220]  dump_stack_lvl+0x189/0x250
[  572.463668][T11220]  ? __pfx____ratelimit+0x10/0x10
[  572.463686][T11220]  ? __pfx_dump_stack_lvl+0x10/0x10
[  572.463702][T11220]  ? __pfx__printk+0x10/0x10
[  572.463723][T11220]  should_fail_ex+0x414/0x560
[  572.463741][T11220]  _copy_to_user+0x31/0xb0
[  572.463754][T11220]  simple_read_from_buffer+0xe1/0x170
[  572.463772][T11220]  proc_fail_nth_read+0x1df/0x250
[  572.463790][T11220]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  572.463808][T11220]  ? rw_verify_area+0x258/0x650
[  572.463820][T11220]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  572.463836][T11220]  vfs_read+0x200/0x980
[  572.463853][T11220]  ? __pfx___mutex_lock+0x10/0x10
[  572.463871][T11220]  ? __pfx_vfs_read+0x10/0x10
[  572.463885][T11220]  ? __fget_files+0x2a/0x420
[  572.463902][T11220]  ? __fget_files+0x3a0/0x420
[  572.463915][T11220]  ? __fget_files+0x2a/0x420
[  572.463936][T11220]  ksys_read+0x145/0x250
[  572.463950][T11220]  ? __pfx_ksys_read+0x10/0x10
[  572.463971][T11220]  do_syscall_64+0xfa/0x3b0
[  572.463980][T11220]  ? lockdep_hardirqs_on+0x9c/0x150
[  572.463996][T11220]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  572.464007][T11220]  ? clear_bhb_loop+0x60/0xb0
[  572.464021][T11220]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  572.464032][T11220] RIP: 0033:0x7fab81f8d33c
[  572.464044][T11220] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  572.464054][T11220] RSP: 002b:00007fab82d1f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  572.464067][T11220] RAX: ffffffffffffffda RBX: 00007fab821b6080 RCX: 00007fab81f8d33c
[  572.464076][T11220] RDX: 000000000000000f RSI: 00007fab82d1f0a0 RDI: 0000000000000005
[  572.464083][T11220] RBP: 00007fab82d1f090 R08: 0000000000000000 R09: 0000000000000000
[  572.464091][T11220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  572.464098][T11220] R13: 0000000000000001 R14: 00007fab821b6080 R15: 00007ffc23a61b78
[  572.464116][T11220]  </TASK>
[  572.688527][    C1] vkms_vblank_simulate: vblank timer overrun
[  573.863323][   T30] audit: type=1800 audit(1750564282.100:189): pid=11233 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.0.1420" name="SYSV00000000" dev="hugetlbfs" ino=2 res=0 errno=0
[  575.372382][T11259] FAULT_INJECTION: forcing a failure.
[  575.372382][T11259] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  575.420786][T11259] CPU: 1 UID: 0 PID: 11259 Comm: syz.0.1428 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  575.420816][T11259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  575.420829][T11259] Call Trace:
[  575.420839][T11259]  <TASK>
[  575.420849][T11259]  dump_stack_lvl+0x189/0x250
[  575.420885][T11259]  ? __pfx____ratelimit+0x10/0x10
[  575.420915][T11259]  ? __pfx_dump_stack_lvl+0x10/0x10
[  575.420943][T11259]  ? __pfx__printk+0x10/0x10
[  575.420964][T11259]  ? __might_fault+0xb0/0x130
[  575.421002][T11259]  should_fail_ex+0x414/0x560
[  575.421033][T11259]  _copy_from_user+0x2d/0xb0
[  575.421055][T11259]  sctp_getsockopt_encap_port+0xd5/0x5b0
[  575.421088][T11259]  ? __pfx_sctp_getsockopt_encap_port+0x10/0x10
[  575.421131][T11259]  ? __local_bh_enable_ip+0x12d/0x1c0
[  575.421158][T11259]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  575.421203][T11259]  sctp_getsockopt+0xa1b/0xb60
[  575.421230][T11259]  do_sock_getsockopt+0x35d/0x650
[  575.421256][T11259]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  575.421278][T11259]  ? __fget_files+0x3a0/0x420
[  575.421299][T11259]  ? __fget_files+0x2a/0x420
[  575.421331][T11259]  __x64_sys_getsockopt+0x1a5/0x250
[  575.421365][T11259]  do_syscall_64+0xfa/0x3b0
[  575.421381][T11259]  ? lockdep_hardirqs_on+0x9c/0x150
[  575.421407][T11259]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  575.421426][T11259]  ? clear_bhb_loop+0x60/0xb0
[  575.421450][T11259]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  575.421469][T11259] RIP: 0033:0x7f12cbf8e929
[  575.421487][T11259] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  575.421504][T11259] RSP: 002b:00007f12cce77038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  575.421525][T11259] RAX: ffffffffffffffda RBX: 00007f12cc1b5fa0 RCX: 00007f12cbf8e929
[  575.421539][T11259] RDX: 0000000000000084 RSI: 0000000000000084 RDI: 0000000000000004
[  575.421550][T11259] RBP: 00007f12cce77090 R08: 0000200000000500 R09: 0000000000000000
[  575.421563][T11259] R10: 0000200000000440 R11: 0000000000000246 R12: 0000000000000001
[  575.421576][T11259] R13: 0000000000000000 R14: 00007f12cc1b5fa0 R15: 00007ffe1688dba8
[  575.421621][T11259]  </TASK>
[  575.963215][T11266] netlink: 'syz.5.1430': attribute type 12 has an invalid length.
[  575.981340][T11266] netlink: 132 bytes leftover after parsing attributes in process `syz.5.1430'.
[  576.008643][T11276] warn_alloc: 2 callbacks suppressed
[  576.008665][T11276] syz.3.1432: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  576.039186][T11266] 8021q: adding VLAN 0 to HW filter on device bond0
[  576.051974][T11276] ,cpuset=/,mems_allowed=0-1
[  576.052101][T11276] CPU: 0 UID: 0 PID: 11276 Comm: syz.3.1432 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  576.052133][T11276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  576.052146][T11276] Call Trace:
[  576.052156][T11276]  <TASK>
[  576.052166][T11276]  dump_stack_lvl+0x189/0x250
[  576.052206][T11276]  ? __pfx_dump_stack_lvl+0x10/0x10
[  576.052243][T11276]  ? __pfx__printk+0x10/0x10
[  576.052264][T11276]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  576.052296][T11276]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  576.052328][T11276]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[  576.052361][T11276]  warn_alloc+0x214/0x310
[  576.052388][T11276]  ? stack_depot_save_flags+0x40/0x900
[  576.052417][T11276]  ? __pfx_warn_alloc+0x10/0x10
[  576.052448][T11276]  ? kasan_save_track+0x4f/0x80
[  576.052473][T11276]  ? xskq_create+0x56/0x170
[  576.052500][T11276]  ? xsk_init_queue+0xb0/0x110
[  576.052523][T11276]  ? xsk_setsockopt+0x43f/0x710
[  576.052546][T11276]  ? do_sock_setsockopt+0x257/0x3e0
[  576.052577][T11276]  ? __x64_sys_setsockopt+0x18b/0x220
[  576.052597][T11276]  ? do_syscall_64+0xfa/0x3b0
[  576.052616][T11276]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  576.052649][T11276]  __vmalloc_node_range_noprof+0x125/0x12f0
[  576.052710][T11276]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  576.052738][T11276]  ? xskq_create+0x56/0x170
[  576.052767][T11276]  ? __kasan_kmalloc+0x93/0xb0
[  576.052794][T11276]  vmalloc_user_noprof+0xad/0xf0
[  576.052820][T11276]  ? xskq_create+0xbf/0x170
[  576.052848][T11276]  xskq_create+0xbf/0x170
[  576.052878][T11276]  xsk_init_queue+0xb0/0x110
[  576.052908][T11276]  xsk_setsockopt+0x43f/0x710
[  576.052937][T11276]  ? __pfx_xsk_setsockopt+0x10/0x10
[  576.052961][T11276]  ? __lock_acquire+0xab9/0xd20
[  576.052998][T11276]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[  576.053020][T11276]  ? __pfx_xsk_setsockopt+0x10/0x10
[  576.053047][T11276]  do_sock_setsockopt+0x257/0x3e0
[  576.053074][T11276]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  576.053103][T11276]  ? __fget_files+0x2a/0x420
[  576.053138][T11276]  __x64_sys_setsockopt+0x18b/0x220
[  576.053182][T11276]  do_syscall_64+0xfa/0x3b0
[  576.053201][T11276]  ? lockdep_hardirqs_on+0x9c/0x150
[  576.053232][T11276]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  576.053254][T11276]  ? clear_bhb_loop+0x60/0xb0
[  576.053279][T11276]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  576.053298][T11276] RIP: 0033:0x7f154e18e929
[  576.053318][T11276] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  576.053336][T11276] RSP: 002b:00007f154ef47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  576.053359][T11276] RAX: ffffffffffffffda RBX: 00007f154e3b5fa0 RCX: 00007f154e18e929
[  576.053374][T11276] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000003
[  576.053388][T11276] RBP: 00007f154e210b39 R08: 0000000000000004 R09: 0000000000000000
[  576.053400][T11276] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  576.053414][T11276] R13: 0000000000000000 R14: 00007f154e3b5fa0 R15: 00007ffe9345d708
[  576.053447][T11276]  </TASK>
[  576.053456][T11276] Mem-Info:
[  576.112271][T11266] bond0: (slave rose0): Enslaving as an active interface with an up link
[  576.119458][T11276] active_anon:26126 inactive_anon:18211 isolated_anon:0
[  576.119458][T11276]  active_file:17381 inactive_file:40660 isolated_file:0
[  576.119458][T11276]  unevictable:768 dirty:558 writeback:0
[  576.119458][T11276]  slab_reclaimable:10623 slab_unreclaimable:99761
[  576.119458][T11276]  mapped:31543 shmem:39311 pagetables:1662
[  576.119458][T11276]  sec_pagetables:0 bounce:0
[  576.119458][T11276]  kernel_misc_reclaimable:0
[  576.119458][T11276]  free:1271135 free_pcp:16294 free_cma:0
[  576.445828][T11276] Node 0 active_anon:104396kB inactive_anon:73068kB active_file:69328kB inactive_file:162640kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:126392kB dirty:2264kB writeback:0kB shmem:155620kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:13128kB pagetables:6788kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  576.445902][T11276] Node 1 active_anon:0kB inactive_anon:0kB active_file:196kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:140kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  576.445962][T11276] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  576.446029][T11276] lowmem_reserve[]: 0 2501 2503 2503 2503
[  576.446085][T11276] Node 0 DMA32 free:1170668kB boost:0kB min:34264kB low:42828kB high:51392kB reserved_highatomic:0KB free_highatomic:0KB active_anon:104392kB inactive_anon:73028kB active_file:67564kB inactive_file:162572kB unevictable:1536kB writepending:2264kB present:3129332kB managed:2561488kB mlocked:0kB bounce:0kB free_pcp:41708kB local_pcp:20532kB free_cma:0kB
[  576.446153][T11276] lowmem_reserve[]: 0 0 1 1 1
[  576.446205][T11276] Node 0 Normal free:20kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:4kB inactive_anon:40kB active_file:1764kB inactive_file:68kB unevictable:0kB writepending:0kB present:1048580kB managed:1904kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[  576.446269][T11276] lowmem_reserve[]: 0 0 0 0 0
[  576.446319][T11276] Node 1 Normal free:3897708kB boost:0kB min:55612kB low:69512kB high:83412kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:196kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:22768kB local_pcp:11340kB free_cma:0kB
[  576.446385][T11276] lowmem_reserve[]: 0 0 0 0 0
[  576.446436][T11276] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  576.446607][T11276] Node 0 DMA32: 169*4kB (UM) 781*8kB (UME) 466*16kB (UM) 548*32kB (UME) 247*64kB (UME) 89*128kB (UME) 62*256kB (UM) 10*512kB (UME) 3*1024kB (M) 7*2048kB (UM) 262*4096kB (UM) = 1170668kB
[  576.446828][T11276] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[  576.446978][T11276] Node 1 Normal: 209*4kB (UE) 61*8kB (UME) 36*16kB (UME) 78*32kB (UME) 35*64kB (UME) 3*128kB (UME) 4*256kB (UME) 3*512kB (ME) 1*1024kB (M) 2*2048kB (UE) 948*4096kB (M) = 3897708kB
[  576.447200][T11276] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  576.447221][T11276] Node 0 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[  576.447240][T11276] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  576.447260][T11276] Node 1 hugepages_total=1 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  576.447279][T11276] 97327 total pagecache pages
[  576.447290][T11276] 1 pages in swap cache
[  576.447300][T11276] Free swap  = 124992kB
[  576.447311][T11276] Total swap = 124996kB
[  576.447321][T11276] 2097051 pages RAM
[  576.447332][T11276] 0 pages HighMem/MovableOnly
[  576.447342][T11276] 424572 pages reserved
[  576.447352][T11276] 0 pages cma reserved
[  576.471721][T11287] FAULT_INJECTION: forcing a failure.
[  576.471721][T11287] name failslab, interval 1, probability 0, space 0, times 0
[  576.471770][T11287] CPU: 0 UID: 0 PID: 11287 Comm: syz.5.1434 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  576.471795][T11287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  576.471808][T11287] Call Trace:
[  576.471816][T11287]  <TASK>
[  576.471826][T11287]  dump_stack_lvl+0x189/0x250
[  576.471860][T11287]  ? __pfx____ratelimit+0x10/0x10
[  576.471888][T11287]  ? __pfx_dump_stack_lvl+0x10/0x10
[  576.471916][T11287]  ? __pfx__printk+0x10/0x10
[  576.471940][T11287]  ? __pfx___might_resched+0x10/0x10
[  576.471969][T11287]  ? fs_reclaim_acquire+0x7d/0x100
[  576.472003][T11287]  should_fail_ex+0x414/0x560
[  576.472033][T11287]  should_failslab+0xa8/0x100
[  576.472060][T11287]  __kmalloc_noprof+0xcb/0x4f0
[  576.472082][T11287]  ? tomoyo_encode+0x28b/0x550
[  576.472117][T11287]  tomoyo_encode+0x28b/0x550
[  576.472152][T11287]  tomoyo_realpath_from_path+0x58d/0x5d0
[  576.472183][T11287]  ? tomoyo_domain+0xda/0x130
[  576.472218][T11287]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  576.472243][T11287]  tomoyo_path_number_perm+0x1e8/0x5a0
[  576.472272][T11287]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  576.472317][T11287]  ? __lock_acquire+0xab9/0xd20
[  576.472368][T11287]  ? __fget_files+0x2a/0x420
[  576.472407][T11287]  ? __fget_files+0x2a/0x420
[  576.472431][T11287]  ? __fget_files+0x3a0/0x420
[  576.472455][T11287]  ? __fget_files+0x2a/0x420
[  576.472487][T11287]  security_file_ioctl+0xcb/0x2d0
[  576.472516][T11287]  __se_sys_ioctl+0x47/0x170
[  576.472540][T11287]  do_syscall_64+0xfa/0x3b0
[  576.472557][T11287]  ? lockdep_hardirqs_on+0x9c/0x150
[  576.472585][T11287]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  576.472605][T11287]  ? clear_bhb_loop+0x60/0xb0
[  576.472628][T11287]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  576.472647][T11287] RIP: 0033:0x7fab81f8e929
[  576.472666][T11287] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  576.472681][T11287] RSP: 002b:00007fab82d40038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  576.472704][T11287] RAX: ffffffffffffffda RBX: 00007fab821b5fa0 RCX: 00007fab81f8e929
[  576.472719][T11287] RDX: 0000200000000100 RSI: 00000000400452c8 RDI: 0000000000000004
[  576.472731][T11287] RBP: 00007fab82d40090 R08: 0000000000000000 R09: 0000000000000000
[  576.472744][T11287] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  576.472756][T11287] R13: 0000000000000000 R14: 00007fab821b5fa0 R15: 00007ffc23a61b78
[  576.472790][T11287]  </TASK>
[  576.472813][T11287] ERROR: Out of memory at tomoyo_realpath_from_path.
[  576.692860][T11293] netlink: 'syz.0.1435': attribute type 27 has an invalid length.
[  576.909366][T11302] FAULT_INJECTION: forcing a failure.
[  576.909366][T11302] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  576.909446][T11302] CPU: 1 UID: 0 PID: 11302 Comm: syz.3.1438 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  576.909469][T11302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  576.909481][T11302] Call Trace:
[  576.909489][T11302]  <TASK>
[  576.909498][T11302]  dump_stack_lvl+0x189/0x250
[  576.909532][T11302]  ? __pfx____ratelimit+0x10/0x10
[  576.909560][T11302]  ? __pfx_dump_stack_lvl+0x10/0x10
[  576.909596][T11302]  ? __pfx__printk+0x10/0x10
[  576.909618][T11302]  ? __might_fault+0xb0/0x130
[  576.909656][T11302]  should_fail_ex+0x414/0x560
[  576.909688][T11302]  _copy_from_user+0x2d/0xb0
[  576.909709][T11302]  kstrtouint_from_user+0xc4/0x170
[  576.909737][T11302]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  576.909781][T11302]  proc_fail_nth_write+0x88/0x240
[  576.909810][T11302]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  576.909845][T11302]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  576.909873][T11302]  vfs_write+0x27e/0xa90
[  576.909906][T11302]  ? __pfx_vfs_write+0x10/0x10
[  576.909931][T11302]  ? __fget_files+0x2a/0x420
[  576.909960][T11302]  ? __fget_files+0x3a0/0x420
[  576.909984][T11302]  ? __fget_files+0x2a/0x420
[  576.910017][T11302]  ksys_write+0x145/0x250
[  576.910036][T11302]  ? __fget_files+0x2a/0x420
[  576.910060][T11302]  ? __pfx_ksys_write+0x10/0x10
[  576.910089][T11302]  ? do_syscall_64+0xbe/0x3b0
[  576.910112][T11302]  do_syscall_64+0xfa/0x3b0
[  576.910127][T11302]  ? lockdep_hardirqs_on+0x9c/0x150
[  576.910154][T11302]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  576.910173][T11302]  ? clear_bhb_loop+0x60/0xb0
[  576.910199][T11302]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  576.910218][T11302] RIP: 0033:0x7f154e18d3df
[  576.910237][T11302] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  576.910252][T11302] RSP: 002b:00007f154ef26030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  576.910275][T11302] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f154e18d3df
[  576.910290][T11302] RDX: 0000000000000001 RSI: 00007f154ef260a0 RDI: 0000000000000004
[  576.910303][T11302] RBP: 00007f154ef26090 R08: 0000000000000000 R09: 0000000000000000
[  576.910315][T11302] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  576.910326][T11302] R13: 0000000000000001 R14: 00007f154e3b6080 R15: 00007ffe9345d708
[  576.910359][T11302]  </TASK>
[  577.572617][   T30] audit: type=1400 audit(1750564285.370:190): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="]-{" requested=w pid=11306 comm="syz.0.1440" dest=3
[  577.671524][T11312] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1439'.
[  578.507758][   T30] audit: type=1400 audit(1750564286.740:191): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="]-{" requested=w pid=11314 comm="syz.5.1442" dest=3
[  580.273832][T11347] FAULT_INJECTION: forcing a failure.
[  580.273832][T11347] name failslab, interval 1, probability 0, space 0, times 0
[  580.273870][T11347] CPU: 1 UID: 0 PID: 11347 Comm: syz.3.1448 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  580.273893][T11347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  580.273904][T11347] Call Trace:
[  580.273913][T11347]  <TASK>
[  580.273923][T11347]  dump_stack_lvl+0x189/0x250
[  580.273956][T11347]  ? __pfx____ratelimit+0x10/0x10
[  580.273985][T11347]  ? __pfx_dump_stack_lvl+0x10/0x10
[  580.274012][T11347]  ? __pfx__printk+0x10/0x10
[  580.274035][T11347]  ? __pfx___might_resched+0x10/0x10
[  580.274062][T11347]  should_fail_ex+0x414/0x560
[  580.274087][T11347]  should_failslab+0xa8/0x100
[  580.274110][T11347]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  580.274130][T11347]  ? __alloc_skb+0x112/0x2d0
[  580.274153][T11347]  __alloc_skb+0x112/0x2d0
[  580.274175][T11347]  netlink_sendmsg+0x5c6/0xb30
[  580.274203][T11347]  ? __pfx_netlink_sendmsg+0x10/0x10
[  580.274231][T11347]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  580.274250][T11347]  ? __pfx_netlink_sendmsg+0x10/0x10
[  580.274274][T11347]  __sock_sendmsg+0x219/0x270
[  580.274308][T11347]  ____sys_sendmsg+0x505/0x830
[  580.274339][T11347]  ? __pfx_____sys_sendmsg+0x10/0x10
[  580.274373][T11347]  ? import_iovec+0x74/0xa0
[  580.274397][T11347]  ___sys_sendmsg+0x21f/0x2a0
[  580.274423][T11347]  ? __pfx____sys_sendmsg+0x10/0x10
[  580.274484][T11347]  ? __fget_files+0x2a/0x420
[  580.274508][T11347]  ? __fget_files+0x3a0/0x420
[  580.274554][T11347]  __x64_sys_sendmsg+0x19b/0x260
[  580.274581][T11347]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  580.274617][T11347]  ? __pfx_ksys_write+0x10/0x10
[  580.274636][T11347]  ? rcu_is_watching+0x15/0xb0
[  580.274668][T11347]  ? do_syscall_64+0xbe/0x3b0
[  580.274691][T11347]  do_syscall_64+0xfa/0x3b0
[  580.274705][T11347]  ? lockdep_hardirqs_on+0x9c/0x150
[  580.274732][T11347]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  580.274752][T11347]  ? clear_bhb_loop+0x60/0xb0
[  580.274776][T11347]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  580.274795][T11347] RIP: 0033:0x7f154e18e929
[  580.274814][T11347] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  580.274830][T11347] RSP: 002b:00007f154ef47038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  580.274851][T11347] RAX: ffffffffffffffda RBX: 00007f154e3b5fa0 RCX: 00007f154e18e929
[  580.274865][T11347] RDX: 000000000000c0c4 RSI: 0000200000000000 RDI: 0000000000000005
[  580.274879][T11347] RBP: 00007f154ef47090 R08: 0000000000000000 R09: 0000000000000000
[  580.274891][T11347] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  580.274902][T11347] R13: 0000000000000000 R14: 00007f154e3b5fa0 R15: 00007ffe9345d708
[  580.274936][T11347]  </TASK>
[  580.386169][ T5927] usb 1-1: new high-speed USB device number 29 using dummy_hcd
[  580.546442][ T5927] usb 1-1: Using ep0 maxpacket: 8
[  580.548439][ T5927] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  580.548460][ T5927] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  580.548476][ T5927] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  580.548490][ T5927] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  580.548518][ T5927] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  580.548532][ T5927] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  580.669812][   T30] audit: type=1400 audit(1750564288.900:192): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="B" requested=w pid=11356 comm="syz.5.1450" daddr=fe80::aa
[  580.760052][ T5927] usb 1-1: GET_CAPABILITIES returned 0
[  580.760087][ T5927] usbtmc 1-1:16.0: can't read capabilities
[  580.971722][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  580.972763][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  580.972797][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  580.972822][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  580.972846][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  580.973034][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  580.973060][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  580.973084][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  580.973108][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  580.973133][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  580.973158][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  580.973346][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  580.973380][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  580.973405][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  580.973431][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  580.973456][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  580.980567][ T5927] usb 1-1: USB disconnect, device number 29
[  581.446540][   T30] audit: type=1400 audit(1750564289.680:193): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="]-{" requested=w pid=11366 comm="syz.5.1453" dest=2
[  581.758810][T11375] netlink: 72 bytes leftover after parsing attributes in process `syz.3.1454'.
[  582.888938][T11383] random: crng reseeded on system resumption
[  585.427032][   T30] audit: type=1400 audit(1750564293.660:194): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="B" requested=w pid=11408 comm="syz.5.1463" daddr=ff01::1 dest=20000
[  585.870444][   T30] audit: type=1400 audit(1750564294.100:195): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="]-{" requested=w pid=11420 comm="syz.2.1466" dest=2
[  587.573338][T11446] FAULT_INJECTION: forcing a failure.
[  587.573338][T11446] name failslab, interval 1, probability 0, space 0, times 0
[  587.573376][T11446] CPU: 0 UID: 0 PID: 11446 Comm: syz.2.1470 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  587.573401][T11446] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  587.573413][T11446] Call Trace:
[  587.573422][T11446]  <TASK>
[  587.573432][T11446]  dump_stack_lvl+0x189/0x250
[  587.573464][T11446]  ? __pfx____ratelimit+0x10/0x10
[  587.573494][T11446]  ? __pfx_dump_stack_lvl+0x10/0x10
[  587.573523][T11446]  ? __pfx__printk+0x10/0x10
[  587.573551][T11446]  ? __pfx___might_resched+0x10/0x10
[  587.573578][T11446]  ? fs_reclaim_acquire+0x7d/0x100
[  587.573611][T11446]  should_fail_ex+0x414/0x560
[  587.573641][T11446]  should_failslab+0xa8/0x100
[  587.573669][T11446]  __kmalloc_noprof+0xcb/0x4f0
[  587.573693][T11446]  ? bpf_test_init+0xc2/0x170
[  587.573719][T11446]  bpf_test_init+0xc2/0x170
[  587.573745][T11446]  bpf_prog_test_run_flow_dissector+0x1e1/0x5c0
[  587.573785][T11446]  ? __pfx_bpf_prog_test_run_flow_dissector+0x10/0x10
[  587.573814][T11446]  ? __fget_files+0x2a/0x420
[  587.573843][T11446]  ? __fget_files+0x2a/0x420
[  587.573868][T11446]  ? __fget_files+0x3a0/0x420
[  587.573891][T11446]  ? __fget_files+0x2a/0x420
[  587.573923][T11446]  ? __pfx_bpf_prog_test_run_flow_dissector+0x10/0x10
[  587.573949][T11446]  bpf_prog_test_run+0x2c4/0x340
[  587.573980][T11446]  __sys_bpf+0x4a4/0x860
[  587.574008][T11446]  ? __pfx___sys_bpf+0x10/0x10
[  587.574047][T11446]  ? ksys_write+0x22a/0x250
[  587.574074][T11446]  ? __pfx_ksys_write+0x10/0x10
[  587.574093][T11446]  ? rcu_is_watching+0x15/0xb0
[  587.574130][T11446]  __x64_sys_bpf+0x7c/0x90
[  587.574154][T11446]  do_syscall_64+0xfa/0x3b0
[  587.574171][T11446]  ? lockdep_hardirqs_on+0x9c/0x150
[  587.574199][T11446]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  587.574229][T11446]  ? clear_bhb_loop+0x60/0xb0
[  587.574253][T11446]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  587.574272][T11446] RIP: 0033:0x7f2d8478e929
[  587.574291][T11446] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  587.574309][T11446] RSP: 002b:00007f2d856a8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  587.574332][T11446] RAX: ffffffffffffffda RBX: 00007f2d849b5fa0 RCX: 00007f2d8478e929
[  587.574347][T11446] RDX: 000000000000004c RSI: 0000200000000240 RDI: 000000000000000a
[  587.574360][T11446] RBP: 00007f2d856a8090 R08: 0000000000000000 R09: 0000000000000000
[  587.574373][T11446] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  587.574385][T11446] R13: 0000000000000000 R14: 00007f2d849b5fa0 R15: 00007ffdcc4e22d8
[  587.574419][T11446]  </TASK>
[  587.620995][T11412] ieee802154 phy0 wpan0: encryption failed: -22
[  588.509380][T11455] FAULT_INJECTION: forcing a failure.
[  588.509380][T11455] name failslab, interval 1, probability 0, space 0, times 0
[  588.509418][T11455] CPU: 0 UID: 0 PID: 11455 Comm: syz.2.1471 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  588.509451][T11455] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  588.509464][T11455] Call Trace:
[  588.509472][T11455]  <TASK>
[  588.509482][T11455]  dump_stack_lvl+0x189/0x250
[  588.509515][T11455]  ? __pfx____ratelimit+0x10/0x10
[  588.509544][T11455]  ? __pfx_dump_stack_lvl+0x10/0x10
[  588.509571][T11455]  ? __pfx__printk+0x10/0x10
[  588.509598][T11455]  ? __pfx___might_resched+0x10/0x10
[  588.509633][T11455]  should_fail_ex+0x414/0x560
[  588.509664][T11455]  should_failslab+0xa8/0x100
[  588.509692][T11455]  __kmalloc_cache_node_noprof+0x73/0x3d0
[  588.509718][T11455]  ? __get_vm_area_node+0x13f/0x300
[  588.509748][T11455]  __get_vm_area_node+0x13f/0x300
[  588.509778][T11455]  __vmalloc_node_range_noprof+0x301/0x12f0
[  588.509804][T11455]  ? bpf_prog_alloc_no_stats+0x4a/0x4e0
[  588.509832][T11455]  ? is_bpf_text_address+0x26/0x2b0
[  588.509888][T11455]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  588.509912][T11455]  ? __might_fault+0xb0/0x130
[  588.509937][T11455]  ? _parse_integer_limit+0x1ae/0x1f0
[  588.509971][T11455]  ? bpf_prog_alloc_no_stats+0x4a/0x4e0
[  588.509994][T11455]  __vmalloc_noprof+0xb1/0xf0
[  588.510019][T11455]  ? bpf_prog_alloc_no_stats+0x4a/0x4e0
[  588.510049][T11455]  bpf_prog_alloc_no_stats+0x4a/0x4e0
[  588.510081][T11455]  bpf_prog_alloc+0x3c/0x1a0
[  588.510110][T11455]  bpf_prog_load+0x735/0x1930
[  588.510151][T11455]  ? __pfx_bpf_prog_load+0x10/0x10
[  588.510201][T11455]  ? bpf_lsm_bpf+0x9/0x20
[  588.510227][T11455]  ? security_bpf+0x7e/0x300
[  588.510257][T11455]  __sys_bpf+0x5f1/0x860
[  588.510284][T11455]  ? __pfx___sys_bpf+0x10/0x10
[  588.510325][T11455]  ? ksys_write+0x22a/0x250
[  588.510350][T11455]  ? __pfx_ksys_write+0x10/0x10
[  588.510370][T11455]  ? rcu_is_watching+0x15/0xb0
[  588.510406][T11455]  __x64_sys_bpf+0x7c/0x90
[  588.510438][T11455]  do_syscall_64+0xfa/0x3b0
[  588.510456][T11455]  ? lockdep_hardirqs_on+0x9c/0x150
[  588.510484][T11455]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  588.510505][T11455]  ? clear_bhb_loop+0x60/0xb0
[  588.510530][T11455]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  588.510549][T11455] RIP: 0033:0x7f2d8478e929
[  588.510568][T11455] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  588.510587][T11455] RSP: 002b:00007f2d85666038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  588.510610][T11455] RAX: ffffffffffffffda RBX: 00007f2d849b6160 RCX: 00007f2d8478e929
[  588.510625][T11455] RDX: 0000000000000070 RSI: 0000200000000340 RDI: 0000000000000005
[  588.510637][T11455] RBP: 00007f2d85666090 R08: 0000000000000000 R09: 0000000000000000
[  588.510650][T11455] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  588.510661][T11455] R13: 0000000000000000 R14: 00007f2d849b6160 R15: 00007ffdcc4e22d8
[  588.510693][T11455]  </TASK>
[  588.510703][T11455] warn_alloc: 3 callbacks suppressed
[  588.510714][T11455] syz.2.1471: vmalloc error: size 4096, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[  588.510823][T11455] CPU: 0 UID: 0 PID: 11455 Comm: syz.2.1471 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  588.510845][T11455] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  588.510856][T11455] Call Trace:
[  588.510864][T11455]  <TASK>
[  588.510872][T11455]  dump_stack_lvl+0x189/0x250
[  588.510904][T11455]  ? __pfx_dump_stack_lvl+0x10/0x10
[  588.510933][T11455]  ? __pfx__printk+0x10/0x10
[  588.510952][T11455]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  588.510984][T11455]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  588.511018][T11455]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[  588.511052][T11455]  warn_alloc+0x214/0x310
[  588.511086][T11455]  ? __pfx_warn_alloc+0x10/0x10
[  588.511115][T11455]  ? __get_vm_area_node+0x13f/0x300
[  588.511145][T11455]  ? __get_vm_area_node+0x2b5/0x300
[  588.511177][T11455]  __vmalloc_node_range_noprof+0x326/0x12f0
[  588.511208][T11455]  ? is_bpf_text_address+0x26/0x2b0
[  588.511259][T11455]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  588.511283][T11455]  ? __might_fault+0xb0/0x130
[  588.511308][T11455]  ? _parse_integer_limit+0x1ae/0x1f0
[  588.511340][T11455]  ? bpf_prog_alloc_no_stats+0x4a/0x4e0
[  588.511364][T11455]  __vmalloc_noprof+0xb1/0xf0
[  588.511389][T11455]  ? bpf_prog_alloc_no_stats+0x4a/0x4e0
[  588.511419][T11455]  bpf_prog_alloc_no_stats+0x4a/0x4e0
[  588.511460][T11455]  bpf_prog_alloc+0x3c/0x1a0
[  588.511489][T11455]  bpf_prog_load+0x735/0x1930
[  588.511528][T11455]  ? __pfx_bpf_prog_load+0x10/0x10
[  588.511581][T11455]  ? bpf_lsm_bpf+0x9/0x20
[  588.511605][T11455]  ? security_bpf+0x7e/0x300
[  588.511634][T11455]  __sys_bpf+0x5f1/0x860
[  588.511660][T11455]  ? __pfx___sys_bpf+0x10/0x10
[  588.511701][T11455]  ? ksys_write+0x22a/0x250
[  588.511726][T11455]  ? __pfx_ksys_write+0x10/0x10
[  588.511745][T11455]  ? rcu_is_watching+0x15/0xb0
[  588.511781][T11455]  __x64_sys_bpf+0x7c/0x90
[  588.511804][T11455]  do_syscall_64+0xfa/0x3b0
[  588.511820][T11455]  ? lockdep_hardirqs_on+0x9c/0x150
[  588.511847][T11455]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  588.511866][T11455]  ? clear_bhb_loop+0x60/0xb0
[  588.511891][T11455]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  588.511911][T11455] RIP: 0033:0x7f2d8478e929
[  588.511928][T11455] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  588.511944][T11455] RSP: 002b:00007f2d85666038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  588.511964][T11455] RAX: ffffffffffffffda RBX: 00007f2d849b6160 RCX: 00007f2d8478e929
[  588.511977][T11455] RDX: 0000000000000070 RSI: 0000200000000340 RDI: 0000000000000005
[  588.511990][T11455] RBP: 00007f2d85666090 R08: 0000000000000000 R09: 0000000000000000
[  588.512002][T11455] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  588.512014][T11455] R13: 0000000000000000 R14: 00007f2d849b6160 R15: 00007ffdcc4e22d8
[  588.512046][T11455]  </TASK>
[  588.596177][T11455] Mem-Info:
[  588.596198][T11455] active_anon:27848 inactive_anon:18243 isolated_anon:0
[  588.596198][T11455]  active_file:17387 inactive_file:40660 isolated_file:0
[  588.596198][T11455]  unevictable:768 dirty:252 writeback:0
[  588.596198][T11455]  slab_reclaimable:10586 slab_unreclaimable:100011
[  588.596198][T11455]  mapped:33626 shmem:40985 pagetables:1702
[  588.596198][T11455]  sec_pagetables:0 bounce:0
[  588.596198][T11455]  kernel_misc_reclaimable:0
[  588.596198][T11455]  free:1266874 free_pcp:18282 free_cma:0
[  588.596253][T11455] Node 0 active_anon:111392kB inactive_anon:72972kB active_file:69352kB inactive_file:162640kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:134504kB dirty:1008kB writeback:0kB shmem:162404kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:13088kB pagetables:6668kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  588.596306][T11455] Node 1 active_anon:0kB inactive_anon:0kB active_file:196kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:140kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  588.596352][T11455] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  588.596405][T11455] lowmem_reserve[]: 0 2501 2503 2503 2503
[  588.596450][T11455] Node 0 DMA32 free:1154408kB boost:0kB min:34264kB low:42828kB high:51392kB reserved_highatomic:0KB free_highatomic:0KB active_anon:111388kB inactive_anon:72932kB active_file:67588kB inactive_file:162572kB unevictable:1536kB writepending:936kB present:3129332kB managed:2561488kB mlocked:0kB bounce:0kB free_pcp:50352kB local_pcp:29104kB free_cma:0kB
[  588.596515][T11455] lowmem_reserve[]: 0 0 1 1 1
[  588.596556][T11455] Node 0 Normal free:20kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:4kB inactive_anon:40kB active_file:1764kB inactive_file:68kB unevictable:0kB writepending:0kB present:1048580kB managed:1904kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[  588.596607][T11455] lowmem_reserve[]: 0 0 0 0 0
[  588.596649][T11455] Node 1 Normal free:3897708kB boost:0kB min:55612kB low:69512kB high:83412kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:196kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:22768kB local_pcp:11428kB free_cma:0kB
[  588.596702][T11455] lowmem_reserve[]: 0 0 0 0 0
[  588.596743][T11455] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  588.596875][T11455] Node 0 DMA32: 377*4kB (UM) 115*8kB (UME) 144*16kB (UM) 361*32kB (UE) 220*64kB (UME) 94*128kB (UME) 64*256kB (UM) 10*512kB (UME) 3*1024kB (M) 7*2048kB (UM) 262*4096kB (UM) = 1154460kB
[  588.597056][T11455] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[  588.597178][T11455] Node 1 Normal: 209*4kB (UE) 61*8kB (UME) 36*16kB (UME) 78*32kB (UME) 35*64kB (UME) 3*128kB (UME) 4*256kB (UME) 3*512kB (ME) 1*1024kB (M) 2*2048kB (UE) 948*4096kB (M) = 3897708kB
[  588.597359][T11455] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  588.597376][T11455] Node 0 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[  588.597392][T11455] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  588.597408][T11455] Node 1 hugepages_total=1 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  588.597424][T11455] 99029 total pagecache pages
[  588.597433][T11455] 1 pages in swap cache
[  588.597442][T11455] Free swap  = 124992kB
[  588.597451][T11455] Total swap = 124996kB
[  588.597461][T11455] 2097051 pages RAM
[  588.597469][T11455] 0 pages HighMem/MovableOnly
[  588.597478][T11455] 424572 pages reserved
[  588.597487][T11455] 0 pages cma reserved
[  588.621355][   T24] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  588.781534][   T24] usb 6-1: device descriptor read/64, error -71
[  590.258888][   T24] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  590.272177][T11280] tty tty1: ldisc open failed (-12), clearing slot 0
[  592.645603][T11488] FAULT_INJECTION: forcing a failure.
[  592.645603][T11488] name failslab, interval 1, probability 0, space 0, times 0
[  592.884216][T11488] CPU: 1 UID: 0 PID: 11488 Comm: syz.2.1480 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  592.884247][T11488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  592.884259][T11488] Call Trace:
[  592.884268][T11488]  <TASK>
[  592.884277][T11488]  dump_stack_lvl+0x189/0x250
[  592.884311][T11488]  ? __pfx____ratelimit+0x10/0x10
[  592.884340][T11488]  ? __pfx_dump_stack_lvl+0x10/0x10
[  592.884368][T11488]  ? __pfx__printk+0x10/0x10
[  592.884403][T11488]  ? __pfx___might_resched+0x10/0x10
[  592.884439][T11488]  should_fail_ex+0x414/0x560
[  592.884470][T11488]  should_failslab+0xa8/0x100
[  592.884498][T11488]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  592.884524][T11488]  ? __alloc_skb+0x112/0x2d0
[  592.884552][T11488]  __alloc_skb+0x112/0x2d0
[  592.884578][T11488]  netlink_sendmsg+0x5c6/0xb30
[  592.884614][T11488]  ? __pfx_netlink_sendmsg+0x10/0x10
[  592.884648][T11488]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  592.884671][T11488]  ? __pfx_netlink_sendmsg+0x10/0x10
[  592.884696][T11488]  __sock_sendmsg+0x219/0x270
[  592.884729][T11488]  ____sys_sendmsg+0x505/0x830
[  592.884761][T11488]  ? __pfx_____sys_sendmsg+0x10/0x10
[  592.884797][T11488]  ? import_iovec+0x74/0xa0
[  592.884822][T11488]  ___sys_sendmsg+0x21f/0x2a0
[  592.884850][T11488]  ? __pfx____sys_sendmsg+0x10/0x10
[  592.884918][T11488]  ? __fget_files+0x2a/0x420
[  592.884944][T11488]  ? __fget_files+0x3a0/0x420
[  592.884982][T11488]  __x64_sys_sendmsg+0x19b/0x260
[  592.885011][T11488]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  592.885047][T11488]  ? __pfx_ksys_write+0x10/0x10
[  592.885067][T11488]  ? rcu_is_watching+0x15/0xb0
[  592.885102][T11488]  ? do_syscall_64+0xbe/0x3b0
[  592.885125][T11488]  do_syscall_64+0xfa/0x3b0
[  592.885142][T11488]  ? lockdep_hardirqs_on+0x9c/0x150
[  592.885169][T11488]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  592.885189][T11488]  ? clear_bhb_loop+0x60/0xb0
[  592.885214][T11488]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  592.885233][T11488] RIP: 0033:0x7f2d8478e929
[  592.885252][T11488] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  592.885269][T11488] RSP: 002b:00007f2d856a8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  592.885293][T11488] RAX: ffffffffffffffda RBX: 00007f2d849b5fa0 RCX: 00007f2d8478e929
[  592.885308][T11488] RDX: 0000000004000000 RSI: 0000200000000280 RDI: 0000000000000007
[  592.885321][T11488] RBP: 00007f2d856a8090 R08: 0000000000000000 R09: 0000000000000000
[  592.885334][T11488] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  592.885346][T11488] R13: 0000000000000000 R14: 00007f2d849b5fa0 R15: 00007ffdcc4e22d8
[  592.885380][T11488]  </TASK>
[  593.152018][   T30] audit: type=1400 audit(1750564301.120:196): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="]-{" requested=w pid=11485 comm="syz.0.1477" dest=2
[  593.402203][   T30] audit: type=1400 audit(1750564301.390:197): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="B" requested=w pid=5483 comm="dhcpcd" daddr=ff02::2
[  594.036015][T11499] FAULT_INJECTION: forcing a failure.
[  594.036015][T11499] name failslab, interval 1, probability 0, space 0, times 0
[  594.048942][T11499] CPU: 1 UID: 0 PID: 11499 Comm: syz.3.1481 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  594.048968][T11499] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  594.048980][T11499] Call Trace:
[  594.048989][T11499]  <TASK>
[  594.048998][T11499]  dump_stack_lvl+0x189/0x250
[  594.049031][T11499]  ? __pfx____ratelimit+0x10/0x10
[  594.049060][T11499]  ? __pfx_dump_stack_lvl+0x10/0x10
[  594.049088][T11499]  ? __pfx__printk+0x10/0x10
[  594.049112][T11499]  ? __pfx___might_resched+0x10/0x10
[  594.049149][T11499]  ? fs_reclaim_acquire+0x7d/0x100
[  594.049182][T11499]  should_fail_ex+0x414/0x560
[  594.049213][T11499]  should_failslab+0xa8/0x100
[  594.049239][T11499]  __kmalloc_noprof+0xcb/0x4f0
[  594.049261][T11499]  ? tomoyo_encode+0x28b/0x550
[  594.049295][T11499]  tomoyo_encode+0x28b/0x550
[  594.049329][T11499]  tomoyo_realpath_from_path+0x58d/0x5d0
[  594.049370][T11499]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  594.049394][T11499]  tomoyo_path_number_perm+0x1e8/0x5a0
[  594.049421][T11499]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  594.049446][T11499]  ? __pfx___schedule+0x10/0x10
[  594.049470][T11499]  ? trace_sched_exit_tp+0x38/0x120
[  594.049508][T11499]  ? __lock_acquire+0xab9/0xd20
[  594.049558][T11499]  ? __fget_files+0x2a/0x420
[  594.049588][T11499]  ? __fget_files+0x2a/0x420
[  594.049610][T11499]  ? __fget_files+0x3a0/0x420
[  594.049633][T11499]  ? __fget_files+0x2a/0x420
[  594.049663][T11499]  security_file_ioctl+0xcb/0x2d0
[  594.049692][T11499]  __se_sys_ioctl+0x47/0x170
[  594.049717][T11499]  do_syscall_64+0xfa/0x3b0
[  594.049733][T11499]  ? lockdep_hardirqs_on+0x9c/0x150
[  594.049759][T11499]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  594.049779][T11499]  ? clear_bhb_loop+0x60/0xb0
[  594.049804][T11499]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  594.049823][T11499] RIP: 0033:0x7f154e18e929
[  594.049841][T11499] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  594.049857][T11499] RSP: 002b:00007f154bff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  594.049879][T11499] RAX: ffffffffffffffda RBX: 00007f154e3b6160 RCX: 00007f154e18e929
[  594.049894][T11499] RDX: 00002000000003c0 RSI: 0000000000002285 RDI: 0000000000000005
[  594.049906][T11499] RBP: 00007f154bff6090 R08: 0000000000000000 R09: 0000000000000000
[  594.049918][T11499] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  594.049930][T11499] R13: 0000000000000000 R14: 00007f154e3b6160 R15: 00007ffe9345d708
[  594.049963][T11499]  </TASK>
[  594.303513][T11499] ERROR: Out of memory at tomoyo_realpath_from_path.
[  595.062614][T11504] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1483'.
[  595.234995][ T5984] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  595.462675][ T5984] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  595.568853][T11512] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  596.148449][ T5835] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  596.162034][ T5835] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  596.172580][ T5835] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  596.182430][ T5835] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  596.191181][ T5835] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  596.294984][ T5984] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  596.312747][   T24] usb 4-1: new high-speed USB device number 44 using dummy_hcd
[  596.512917][   T24] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  596.518490][T11513] lo speed is unknown, defaulting to 1000
[  596.610854][T11521] netlink: 4768 bytes leftover after parsing attributes in process `syz.0.1486'.
[  597.236565][   T30] audit: type=1400 audit(1750564305.440:198): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="B" requested=w pid=5483 comm="dhcpcd" daddr=ff02::2
[  597.589233][   T24] usb 4-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  597.598671][   T24] usb 4-1: config 1 has no interface number 1
[  597.605693][   T24] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  597.619843][   T24] usb 4-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  597.682784][   T24] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  597.692416][   T24] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  597.701661][   T24] usb 4-1: Product: syz
[  597.706061][   T24] usb 4-1: Manufacturer: syz
[  597.710999][   T24] usb 4-1: SerialNumber: syz
[  597.735132][T11507] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  598.246570][ T5835] Bluetooth: hci1: command tx timeout
[  598.307099][T11507] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1484'.
[  598.321962][T11507] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1484'.
[  598.412392][T11529] netdevsim netdevsim3 netdevsim0: entered allmulticast mode
[  598.466167][ T5984] bridge_slave_1: left allmulticast mode
[  598.483687][ T5984] bridge_slave_1: left promiscuous mode
[  598.530790][ T5984] bridge0: port 2(bridge_slave_1) entered disabled state
[  598.601822][ T5984] bridge_slave_0: left allmulticast mode
[  598.607704][ T5984] bridge_slave_0: left promiscuous mode
[  598.676429][ T5984] bridge0: port 1(bridge_slave_0) entered disabled state
[  598.756844][ T5984] vlan2: left promiscuous mode
[  598.761974][ T5984] veth1: left promiscuous mode
[  598.775650][ T5984] bridge1: port 2(vlan2) entered disabled state
[  598.806630][ T5984] veth3: left allmulticast mode
[  598.816160][ T5984] veth3: left promiscuous mode
[  598.824128][ T5984] bridge1: port 1(veth3) entered disabled state
[  599.006749][ T5984] batman_adv: batadv0: Removing interface: ip6gretap1
[  599.906991][   T24] usb 4-1: 2:1 : no or invalid class specific endpoint descriptor
[  600.184745][T11550] blktrace: Concurrent blktraces are not allowed on sg0
[  600.345996][ T5835] Bluetooth: hci1: command tx timeout
[  600.489639][   T24] usb 4-1: 2:1: invalid format type 0x1001 is detected, processed as PCM
[  600.990190][   T24] usb 4-1: USB disconnect, device number 44
[  601.333818][T10383] udevd[10383]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  601.785844][   T30] audit: type=1400 audit(1750564310.020:199): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="]-{" requested=w pid=11569 comm="syz.5.1495" dest=3
[  601.894228][ T5984] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  601.910452][ T5984] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  601.925373][ T5984] bond0 (unregistering): Released all slaves
[  602.143778][ T5984] bond1 (unregistering): Released all slaves
[  602.411359][ T5835] Bluetooth: hci1: command tx timeout
[  602.424384][   T30] audit: type=1400 audit(1750564310.660:200): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="B" requested=w pid=5483 comm="dhcpcd" daddr=ff02::2
[  602.521946][T11513] chnl_net:caif_netlink_parms(): no params data found
[  602.758248][ T5984] IPVS: stopping master sync thread 7368 ...
[  602.906228][T11590] netlink: 'syz.3.1499': attribute type 1 has an invalid length.
[  602.937750][T11590] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1499'.
[  604.377104][T11513] bridge0: port 1(bridge_slave_0) entered blocking state
[  604.444801][T11513] bridge0: port 1(bridge_slave_0) entered disabled state
[  604.491446][ T5835] Bluetooth: hci1: command tx timeout
[  604.529346][T11513] bridge_slave_0: entered allmulticast mode
[  604.589727][T11513] bridge_slave_0: entered promiscuous mode
[  604.641670][T11605] overlay: Unknown parameter 'obj_type'
[  604.654411][T11513] bridge0: port 2(bridge_slave_1) entered blocking state
[  604.707297][T11513] bridge0: port 2(bridge_slave_1) entered disabled state
[  604.728383][T11513] bridge_slave_1: entered allmulticast mode
[  604.821436][T11513] bridge_slave_1: entered promiscuous mode
[  605.195938][ T5984] hsr_slave_0: left promiscuous mode
[  605.209734][ T5984] hsr_slave_1: left promiscuous mode
[  605.221003][ T5984] batman_adv: batadv0: Removing interface: batadv_slave_0
[  605.230933][ T5984] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  605.245281][ T5984] batman_adv: batadv0: Removing interface: batadv_slave_1
[  605.282680][T11621] overlayfs: failed to resolve './file0': -2
[  605.315448][ T5984] veth1_vlan: left promiscuous mode
[  605.323605][ T5984] veth0_vlan: left promiscuous mode
[  606.104824][ T5984] team0 (unregistering): Port device team_slave_1 removed
[  606.162453][ T5984] team0 (unregistering): Port device team_slave_0 removed
[  607.704914][T11513] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  607.732136][T11619] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  607.745446][T11633] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1505'.
[  607.767423][T11619] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  607.782033][T11619] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  607.805904][T11619] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  607.832673][   T30] audit: type=1400 audit(1750564316.070:201): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="B" requested=w pid=5483 comm="dhcpcd" daddr=ff02::2
[  607.844848][T11619] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  607.853194][T11513] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  607.898612][T11619] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  608.224495][T11513] team0: Port device team_slave_0 added
[  608.248666][T11513] team0: Port device team_slave_1 added
[  608.741827][T11513] batman_adv: batadv0: Adding interface: batadv_slave_0
[  608.781282][T11513] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  608.809712][T11513] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  608.837100][   T30] audit: type=1400 audit(1750564317.070:202): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="]-{" requested=w pid=11640 comm="syz.3.1507" dest=2
[  608.867478][T11513] batman_adv: batadv0: Adding interface: batadv_slave_1
[  608.878742][ T5984] IPVS: stop unused estimator thread 0...
[  608.884935][T11513] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  608.928830][T11513] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  609.283681][   T30] audit: type=1400 audit(1750564317.520:203): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="]-{" requested=w pid=11649 comm="syz.3.1509" dest=18
[  609.378555][   T30] audit: type=1326 audit(1750564317.600:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11649 comm="syz.3.1509" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f154e18e929 code=0x0
[  609.694196][T11659] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1510'.
[  609.761663][ T5835] Bluetooth: hci3: command 0x0c1a tx timeout
[  609.841686][ T5835] Bluetooth: hci1: command 0x0c1a tx timeout
[  609.848212][ T5835] Bluetooth: hci2: command 0x0c1a tx timeout
[  609.861524][ T5822] Bluetooth: hci4: command 0x0c1a tx timeout
[  610.216682][T11513] hsr_slave_0: entered promiscuous mode
[  610.251981][T11513] hsr_slave_1: entered promiscuous mode
[  610.275696][T11513] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  610.316531][T11513] Cannot create hsr debugfs directory
[  610.793965][T11671] syz.5.1513: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  610.871104][T11671] CPU: 1 UID: 0 PID: 11671 Comm: syz.5.1513 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  610.871135][T11671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  610.871148][T11671] Call Trace:
[  610.871157][T11671]  <TASK>
[  610.871166][T11671]  dump_stack_lvl+0x189/0x250
[  610.871210][T11671]  ? __pfx_dump_stack_lvl+0x10/0x10
[  610.871240][T11671]  ? __pfx__printk+0x10/0x10
[  610.871261][T11671]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  610.871291][T11671]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  610.871325][T11671]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[  610.871361][T11671]  warn_alloc+0x214/0x310
[  610.871389][T11671]  ? stack_depot_save_flags+0x40/0x900
[  610.871420][T11671]  ? __pfx_warn_alloc+0x10/0x10
[  610.871450][T11671]  ? kasan_save_track+0x4f/0x80
[  610.871472][T11671]  ? xskq_create+0x56/0x170
[  610.871497][T11671]  ? xsk_init_queue+0xb0/0x110
[  610.871521][T11671]  ? xsk_setsockopt+0x43f/0x710
[  610.871543][T11671]  ? do_sock_setsockopt+0x257/0x3e0
[  610.871565][T11671]  ? __x64_sys_setsockopt+0x18b/0x220
[  610.871585][T11671]  ? do_syscall_64+0xfa/0x3b0
[  610.871601][T11671]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  610.871632][T11671]  __vmalloc_node_range_noprof+0x125/0x12f0
[  610.871695][T11671]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  610.871725][T11671]  ? xskq_create+0x56/0x170
[  610.871754][T11671]  ? __kasan_kmalloc+0x93/0xb0
[  610.871781][T11671]  vmalloc_user_noprof+0xad/0xf0
[  610.871807][T11671]  ? xskq_create+0xbf/0x170
[  610.871835][T11671]  xskq_create+0xbf/0x170
[  610.871865][T11671]  xsk_init_queue+0xb0/0x110
[  610.871896][T11671]  xsk_setsockopt+0x43f/0x710
[  610.871927][T11671]  ? __pfx_xsk_setsockopt+0x10/0x10
[  610.871968][T11671]  ? security_socket_setsockopt+0x263/0x2c0
[  610.871997][T11671]  ? security_socket_setsockopt+0x263/0x2c0
[  610.872021][T11671]  ? __pfx_xsk_setsockopt+0x10/0x10
[  610.872047][T11671]  do_sock_setsockopt+0x257/0x3e0
[  610.872075][T11671]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  610.872107][T11671]  ? __fget_files+0x2a/0x420
[  610.872144][T11671]  __x64_sys_setsockopt+0x18b/0x220
[  610.872175][T11671]  do_syscall_64+0xfa/0x3b0
[  610.872195][T11671]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  610.872212][T11671]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  610.872231][T11671]  ? clear_bhb_loop+0x60/0xb0
[  610.872256][T11671]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  610.872275][T11671] RIP: 0033:0x7fab81f8e929
[  610.872295][T11671] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  610.872312][T11671] RSP: 002b:00007fab82d40038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  610.872335][T11671] RAX: ffffffffffffffda RBX: 00007fab821b5fa0 RCX: 00007fab81f8e929
[  610.872352][T11671] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000004
[  610.872365][T11671] RBP: 00007fab82010b39 R08: 0000000000000004 R09: 0000000000000000
[  610.872377][T11671] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  610.872390][T11671] R13: 0000000000000000 R14: 00007fab821b5fa0 R15: 00007ffc23a61b78
[  610.872425][T11671]  </TASK>
[  611.464570][T11671] Mem-Info:
[  611.467808][T11671] active_anon:20363 inactive_anon:18515 isolated_anon:0
[  611.467808][T11671]  active_file:17396 inactive_file:40660 isolated_file:0
[  611.467808][T11671]  unevictable:768 dirty:64 writeback:0
[  611.467808][T11671]  slab_reclaimable:10569 slab_unreclaimable:97652
[  611.467808][T11671]  mapped:31577 shmem:33557 pagetables:1668
[  611.467808][T11671]  sec_pagetables:0 bounce:0
[  611.467808][T11671]  kernel_misc_reclaimable:0
[  611.467808][T11671]  free:1282173 free_pcp:13096 free_cma:0
[  611.925344][ T5826] Bluetooth: hci1: command 0x0c1a tx timeout
[  611.931971][T11671] Node 0 active_anon:81456kB inactive_anon:73812kB active_file:69388kB inactive_file:162644kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:130504kB dirty:360kB writeback:0kB shmem:132696kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12816kB pagetables:6416kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  612.021468][T11671] Node 1 active_anon:0kB inactive_anon:0kB active_file:196kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:140kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  612.084929][T11671] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  612.721508][T11671] lowmem_reserve[]: 0 2501 2503 2503 2503
[  612.801458][T11671] Node 0 DMA32 free:1215212kB boost:0kB min:34264kB low:42828kB high:51392kB reserved_highatomic:0KB free_highatomic:0KB active_anon:81448kB inactive_anon:73832kB active_file:67624kB inactive_file:162572kB unevictable:1536kB writepending:372kB present:3129332kB managed:2561488kB mlocked:0kB bounce:0kB free_pcp:30192kB local_pcp:12840kB free_cma:0kB
[  612.918068][T11671] lowmem_reserve[]: 0 0 1 1 1
[  612.931677][T11671] Node 0 Normal free:20kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:4kB inactive_anon:40kB active_file:1764kB inactive_file:68kB unevictable:0kB writepending:4kB present:1048580kB managed:1904kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[  612.996922][T11687] FAULT_INJECTION: forcing a failure.
[  612.996922][T11687] name failslab, interval 1, probability 0, space 0, times 0
[  613.040517][T11687] CPU: 0 UID: 0 PID: 11687 Comm: syz.3.1518 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  613.040550][T11687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  613.040563][T11687] Call Trace:
[  613.040571][T11687]  <TASK>
[  613.040580][T11687]  dump_stack_lvl+0x189/0x250
[  613.040614][T11687]  ? __pfx____ratelimit+0x10/0x10
[  613.040643][T11687]  ? __pfx_dump_stack_lvl+0x10/0x10
[  613.040671][T11687]  ? __pfx__printk+0x10/0x10
[  613.040699][T11687]  ? __pfx___might_resched+0x10/0x10
[  613.040733][T11687]  should_fail_ex+0x414/0x560
[  613.040764][T11687]  should_failslab+0xa8/0x100
[  613.040791][T11687]  __kmalloc_cache_node_noprof+0x73/0x3d0
[  613.040817][T11687]  ? __get_vm_area_node+0x13f/0x300
[  613.040847][T11687]  __get_vm_area_node+0x13f/0x300
[  613.040876][T11687]  __vmalloc_node_range_noprof+0x301/0x12f0
[  613.040903][T11687]  ? bpf_prog_alloc_no_stats+0x4a/0x4e0
[  613.040942][T11687]  ? is_bpf_text_address+0x26/0x2b0
[  613.040998][T11687]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  613.041022][T11687]  ? __might_fault+0xb0/0x130
[  613.041047][T11687]  ? _parse_integer_limit+0x1ae/0x1f0
[  613.041080][T11687]  ? bpf_prog_alloc_no_stats+0x4a/0x4e0
[  613.041103][T11687]  __vmalloc_noprof+0xb1/0xf0
[  613.041127][T11687]  ? bpf_prog_alloc_no_stats+0x4a/0x4e0
[  613.041155][T11687]  bpf_prog_alloc_no_stats+0x4a/0x4e0
[  613.041189][T11687]  bpf_prog_alloc+0x3c/0x1a0
[  613.041215][T11687]  bpf_prog_load+0x735/0x1930
[  613.041253][T11687]  ? __pfx_bpf_prog_load+0x10/0x10
[  613.041306][T11687]  ? bpf_lsm_bpf+0x9/0x20
[  613.041331][T11687]  ? security_bpf+0x7e/0x300
[  613.041359][T11687]  __sys_bpf+0x5f1/0x860
[  613.041385][T11687]  ? __pfx___sys_bpf+0x10/0x10
[  613.041422][T11687]  ? ksys_write+0x22a/0x250
[  613.041448][T11687]  ? __pfx_ksys_write+0x10/0x10
[  613.041465][T11687]  ? rcu_is_watching+0x15/0xb0
[  613.041502][T11687]  __x64_sys_bpf+0x7c/0x90
[  613.041524][T11687]  do_syscall_64+0xfa/0x3b0
[  613.041540][T11687]  ? lockdep_hardirqs_on+0x9c/0x150
[  613.041568][T11687]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  613.041588][T11687]  ? clear_bhb_loop+0x60/0xb0
[  613.041612][T11687]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  613.041631][T11687] RIP: 0033:0x7f154e18e929
[  613.041649][T11687] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  613.041667][T11687] RSP: 002b:00007f154ef47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  613.041689][T11687] RAX: ffffffffffffffda RBX: 00007f154e3b5fa0 RCX: 00007f154e18e929
[  613.041704][T11687] RDX: 0000000000000094 RSI: 0000200000000340 RDI: 0000000000000005
[  613.041717][T11687] RBP: 00007f154ef47090 R08: 0000000000000000 R09: 0000000000000000
[  613.041729][T11687] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  613.041741][T11687] R13: 0000000000000000 R14: 00007f154e3b5fa0 R15: 00007ffe9345d708
[  613.041774][T11687]  </TASK>
[  613.430518][T11671] lowmem_reserve[]: 0 0 0 0 0
[  613.435402][T11671] Node 1 Normal free:3897708kB boost:0kB min:55612kB low:69512kB high:83412kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:196kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:22768kB local_pcp:11340kB free_cma:0kB
[  613.473902][T11671] lowmem_reserve[]: 0 0 0 0 0
[  613.491268][T11671] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  613.509243][T11671] Node 0 DMA32: 2046*4kB (UME) 356*8kB (UME) 286*16kB (UME) 448*32kB (UME) 209*64kB (UME) 89*128kB (UME) 101*256kB (UM) 42*512kB (UME) 12*1024kB (UM) 8*2048kB (UM) 265*4096kB (UM) = 1216184kB
[  613.550460][T11671] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[  613.568998][T11671] Node 1 Normal: 209*4kB (UE) 61*8kB (UME) 36*16kB (UME) 78*32kB (UME) 35*64kB (UME) 3*128kB (UME) 4*256kB (UME) 3*512kB (ME) 1*1024kB (M) 2*2048kB (UE) 948*4096kB (M) = 3897708kB
[  613.596933][T11671] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  613.610676][T11671] Node 0 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[  613.621803][T11671] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  613.641688][T11671] Node 1 hugepages_total=1 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  613.992484][T11671] 91612 total pagecache pages
[  613.997247][T11671] 1 pages in swap cache
[  614.001940][   T30] audit: type=1400 audit(1750564321.790:205): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="]-{" requested=w pid=11688 comm="syz.0.1517" dest=2
[  614.018227][T11671] Free swap  = 124992kB
[  614.023478][T11671] Total swap = 124996kB
[  614.028292][T11671] 2097051 pages RAM
[  614.032367][T11671] 0 pages HighMem/MovableOnly
[  614.037472][T11671] 424572 pages reserved
[  614.041820][ T5826] Bluetooth: hci1: command 0x0c1a tx timeout
[  614.047904][T11671] 0 pages cma reserved
[  615.708034][T11708] netlink: 'syz.3.1521': attribute type 1 has an invalid length.
[  615.741278][T11708] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1521'.
[  615.868015][T11513] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  615.975572][T11513] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  616.024492][T11513] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  616.096966][T11513] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  616.183072][   T24] usb 3-1: new full-speed USB device number 34 using dummy_hcd
[  617.424557][   T24] usb 3-1: config 0 has an invalid interface number: 229 but max is 0
[  617.452313][   T24] usb 3-1: config 0 has no interface number 0
[  617.458483][   T24] usb 3-1: config 0 interface 229 altsetting 0 endpoint 0x85 has invalid maxpacket 1023, setting to 64
[  617.525919][   T24] usb 3-1: config 0 interface 229 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  617.588717][   T24] usb 3-1: New USB device found, idVendor=03f0, idProduct=581d, bcdDevice=1f.38
[  617.620855][   T24] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  617.641800][   T30] audit: type=1400 audit(1750564325.880:206): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="B" requested=w pid=11739 comm="syz.3.1527" daddr=fc01::a dest=20000
[  617.666518][   T24] usb 3-1: Product: syz
[  617.670780][   T24] usb 3-1: Manufacturer: syz
[  617.691533][   T24] usb 3-1: SerialNumber: syz
[  617.798155][   T24] usb 3-1: config 0 descriptor??
[  617.812047][T11720] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  618.095980][   T24] usb 3-1: USB disconnect, device number 34
[  618.125570][T10433] udevd[10433]: setting owner of /dev/bus/usb/003/034 to uid=0, gid=0 failed: No such file or directory
[  618.415655][   T30] audit: type=1400 audit(1750564326.650:207): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="]-{" requested=w pid=11745 comm="syz.0.1529" dest=2
[  618.958922][T11513] 8021q: adding VLAN 0 to HW filter on device bond0
[  619.060791][T11513] 8021q: adding VLAN 0 to HW filter on device team0
[  620.052992][ T9684] bridge0: port 1(bridge_slave_0) entered blocking state
[  620.060151][ T9684] bridge0: port 1(bridge_slave_0) entered forwarding state
[  620.109982][ T9684] bridge0: port 2(bridge_slave_1) entered blocking state
[  620.117263][ T9684] bridge0: port 2(bridge_slave_1) entered forwarding state
[  624.645237][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  625.279780][   T30] audit: type=1400 audit(1750564333.500:208): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="B" requested=w pid=11793 comm="syz.3.1541" daddr=fe80::bb dest=20002
[  625.505911][T11797] Bluetooth: MGMT ver 1.23
[  627.237145][T11513] 8021q: adding VLAN 0 to HW filter on device batadv0
[  627.580248][ T6350] usb 4-1: new high-speed USB device number 45 using dummy_hcd
[  627.616058][   T30] audit: type=1400 audit(1750564335.800:209): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="]-{" requested=w pid=11824 comm="syz.2.1549" dest=3
[  628.219357][ T6350] usb 4-1: Using ep0 maxpacket: 16
[  628.288793][ T6350] usb 4-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  628.311421][ T6350] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  628.337568][ T6350] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  628.420283][ T6350] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  628.445300][ T6350] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  628.464191][ T6350] usb 4-1: Product: syz
[  628.478803][ T6350] usb 4-1: Manufacturer: syz
[  628.489179][ T6350] usb 4-1: SerialNumber: syz
[  628.890869][T11845] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1551'.
[  630.434530][T11513] veth0_vlan: entered promiscuous mode
[  630.697888][T11513] veth1_vlan: entered promiscuous mode
[  631.178440][T11513] veth0_macvtap: entered promiscuous mode
[  631.339881][T11513] veth1_macvtap: entered promiscuous mode
[  631.512564][T11513] batman_adv: batadv0: Interface activated: batadv_slave_0
[  631.640501][T11513] batman_adv: batadv0: Interface activated: batadv_slave_1
[  631.860856][T11513] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  631.920389][T11513] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  631.958405][T11513] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  632.007371][T11513] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  632.324232][ T6350] usb 4-1: 0:2 : does not exist
[  632.402244][ T6350] usb 4-1: USB disconnect, device number 45
[  632.602753][T10433] udevd[10433]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  634.245165][T11918] FAULT_INJECTION: forcing a failure.
[  634.245165][T11918] name failslab, interval 1, probability 0, space 0, times 0
[  634.258012][T11918] CPU: 0 UID: 0 PID: 11918 Comm: syz.5.1561 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  634.258031][T11918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  634.258038][T11918] Call Trace:
[  634.258044][T11918]  <TASK>
[  634.258049][T11918]  dump_stack_lvl+0x189/0x250
[  634.258071][T11918]  ? __pfx____ratelimit+0x10/0x10
[  634.258089][T11918]  ? __pfx_dump_stack_lvl+0x10/0x10
[  634.258105][T11918]  ? __pfx__printk+0x10/0x10
[  634.258115][T11918]  ? __mutex_trylock_common+0x153/0x260
[  634.258134][T11918]  ? __pfx___mutex_trylock_common+0x10/0x10
[  634.258157][T11918]  should_fail_ex+0x414/0x560
[  634.258174][T11918]  should_failslab+0xa8/0x100
[  634.258191][T11918]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  634.258205][T11918]  ? __alloc_skb+0x112/0x2d0
[  634.258216][T11918]  ? hci_sock_sendmsg+0x549/0xef0
[  634.258233][T11918]  __alloc_skb+0x112/0x2d0
[  634.258248][T11918]  hci_mgmt_cmd+0x1ca/0xef0
[  634.258262][T11918]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  634.258285][T11918]  hci_sock_sendmsg+0x6ca/0xef0
[  634.258303][T11918]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  634.258321][T11918]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  634.258335][T11918]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  634.258350][T11918]  __sock_sendmsg+0x219/0x270
[  634.258369][T11918]  sock_write_iter+0x258/0x330
[  634.258387][T11918]  ? __pfx_sock_write_iter+0x10/0x10
[  634.258410][T11918]  ? bpf_lsm_file_permission+0x9/0x20
[  634.258423][T11918]  ? security_file_permission+0x75/0x290
[  634.258443][T11918]  vfs_write+0x548/0xa90
[  634.258461][T11918]  ? __pfx_sock_write_iter+0x10/0x10
[  634.258477][T11918]  ? __pfx_vfs_write+0x10/0x10
[  634.258496][T11918]  ? __fget_files+0x2a/0x420
[  634.258518][T11918]  ksys_write+0x145/0x250
[  634.258532][T11918]  ? __pfx_ksys_write+0x10/0x10
[  634.258544][T11918]  ? rcu_is_watching+0x15/0xb0
[  634.258563][T11918]  ? do_syscall_64+0xbe/0x3b0
[  634.258576][T11918]  do_syscall_64+0xfa/0x3b0
[  634.258586][T11918]  ? lockdep_hardirqs_on+0x9c/0x150
[  634.258602][T11918]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  634.258614][T11918]  ? clear_bhb_loop+0x60/0xb0
[  634.258628][T11918]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  634.258639][T11918] RIP: 0033:0x7fab81f8e929
[  634.258651][T11918] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  634.258661][T11918] RSP: 002b:00007fab82d40038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  634.258675][T11918] RAX: ffffffffffffffda RBX: 00007fab821b5fa0 RCX: 00007fab81f8e929
[  634.258684][T11918] RDX: 0000000000000008 RSI: 0000200000000580 RDI: 0000000000000006
[  634.258692][T11918] RBP: 00007fab82d40090 R08: 0000000000000000 R09: 0000000000000000
[  634.258699][T11918] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  634.258706][T11918] R13: 0000000000000000 R14: 00007fab821b5fa0 R15: 00007ffc23a61b78
[  634.258726][T11918]  </TASK>
[  634.551670][ T9690] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  634.560059][ T9690] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  635.279705][   T30] audit: type=1400 audit(1750564343.100:210): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="B" requested=w pid=11915 comm="syz.0.1560" daddr=ff01::1 dest=20004
[  635.333966][T11921] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  635.340186][T11921] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  635.348582][T11921] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  635.354828][T11921] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  635.415383][T11920] lo speed is unknown, defaulting to 1000
[  635.814688][ T9054] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  635.857980][ T9054] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  636.901628][ T5906] usb 4-1: new full-speed USB device number 46 using dummy_hcd
[  637.121537][ T5906] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  637.166134][ T5906] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  637.195042][T11947] FAULT_INJECTION: forcing a failure.
[  637.195042][T11947] name failslab, interval 1, probability 0, space 0, times 0
[  637.233967][ T5906] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  637.252344][T11947] CPU: 1 UID: 0 PID: 11947 Comm: syz.6.1478 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  637.252374][T11947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  637.252387][T11947] Call Trace:
[  637.252395][T11947]  <TASK>
[  637.252405][T11947]  dump_stack_lvl+0x189/0x250
[  637.252438][T11947]  ? __pfx____ratelimit+0x10/0x10
[  637.252465][T11947]  ? __pfx_dump_stack_lvl+0x10/0x10
[  637.252491][T11947]  ? __pfx__printk+0x10/0x10
[  637.252519][T11947]  ? __pfx___might_resched+0x10/0x10
[  637.252553][T11947]  should_fail_ex+0x414/0x560
[  637.252583][T11947]  should_failslab+0xa8/0x100
[  637.252608][T11947]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  637.252633][T11947]  ? __alloc_skb+0x112/0x2d0
[  637.252659][T11947]  __alloc_skb+0x112/0x2d0
[  637.252685][T11947]  netlink_sendmsg+0x5c6/0xb30
[  637.252718][T11947]  ? __pfx_netlink_sendmsg+0x10/0x10
[  637.252747][T11947]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  637.252770][T11947]  ? __pfx_netlink_sendmsg+0x10/0x10
[  637.252792][T11947]  __sock_sendmsg+0x219/0x270
[  637.252821][T11947]  ____sys_sendmsg+0x505/0x830
[  637.252852][T11947]  ? __pfx_____sys_sendmsg+0x10/0x10
[  637.252885][T11947]  ? import_iovec+0x74/0xa0
[  637.252918][T11947]  ___sys_sendmsg+0x21f/0x2a0
[  637.252945][T11947]  ? __pfx____sys_sendmsg+0x10/0x10
[  637.253011][T11947]  ? __fget_files+0x2a/0x420
[  637.253036][T11947]  ? __fget_files+0x3a0/0x420
[  637.253073][T11947]  __x64_sys_sendmsg+0x19b/0x260
[  637.253098][T11947]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  637.253132][T11947]  ? __pfx_ksys_write+0x10/0x10
[  637.253150][T11947]  ? rcu_is_watching+0x15/0xb0
[  637.253182][T11947]  ? do_syscall_64+0xbe/0x3b0
[  637.253204][T11947]  do_syscall_64+0xfa/0x3b0
[  637.253219][T11947]  ? lockdep_hardirqs_on+0x9c/0x150
[  637.253247][T11947]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  637.253266][T11947]  ? clear_bhb_loop+0x60/0xb0
[  637.253290][T11947]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  637.253309][T11947] RIP: 0033:0x7f977ab8e929
[  637.253329][T11947] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  637.253347][T11947] RSP: 002b:00007f977b97d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  637.253369][T11947] RAX: ffffffffffffffda RBX: 00007f977adb5fa0 RCX: 00007f977ab8e929
[  637.253384][T11947] RDX: 0000000000044000 RSI: 0000200000000540 RDI: 0000000000000003
[  637.253396][T11947] RBP: 00007f977b97d090 R08: 0000000000000000 R09: 0000000000000000
[  637.253409][T11947] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  637.253421][T11947] R13: 0000000000000000 R14: 00007f977adb5fa0 R15: 00007ffd0c3376d8
[  637.253453][T11947]  </TASK>
[  637.520853][ T5906] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  637.528988][ T5906] usb 4-1: Product: syz
[  637.533404][ T5906] usb 4-1: Manufacturer: syz
[  637.538048][ T5906] usb 4-1: SerialNumber: syz
[  637.606497][ T5835] Bluetooth: hci1: command 0x0c1a tx timeout
[  637.614022][ T5826] Bluetooth: hci2: command 0x0c1a tx timeout
[  637.614080][ T5826] Bluetooth: hci4: command 0x0c1a tx timeout
[  637.614124][ T5826] Bluetooth: hci3: command 0x0c1a tx timeout
[  637.830966][ T5906] usb 4-1: 0:2 : does not exist
[  637.847986][ T5906] usb 4-1: 5:0: failed to get current value for ch 0 (-22)
[  638.407658][ T5906] usb 4-1: USB disconnect, device number 46
[  639.241466][ T5906] usb 4-1: new high-speed USB device number 47 using dummy_hcd
[  639.411290][ T5906] usb 4-1: Using ep0 maxpacket: 32
[  639.452172][ T5906] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  639.552522][ T5906] usb 4-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  639.620729][T11982] FAULT_INJECTION: forcing a failure.
[  639.620729][T11982] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  639.640111][T11982] CPU: 0 UID: 0 PID: 11982 Comm: syz.0.1576 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  639.640141][T11982] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  639.640152][T11982] Call Trace:
[  639.640161][T11982]  <TASK>
[  639.640170][T11982]  dump_stack_lvl+0x189/0x250
[  639.640204][T11982]  ? __pfx____ratelimit+0x10/0x10
[  639.640233][T11982]  ? __pfx_dump_stack_lvl+0x10/0x10
[  639.640259][T11982]  ? __pfx__printk+0x10/0x10
[  639.640292][T11982]  should_fail_ex+0x414/0x560
[  639.640325][T11982]  _copy_to_user+0x31/0xb0
[  639.640348][T11982]  bpf_prog_test_run_syscall+0x331/0x4b0
[  639.640376][T11982]  ? __pfx_bpf_prog_test_run_syscall+0x10/0x10
[  639.640408][T11982]  ? __pfx_bpf_prog_test_run_syscall+0x10/0x10
[  639.640431][T11982]  bpf_prog_test_run+0x2c4/0x340
[  639.640463][T11982]  __sys_bpf+0x4a4/0x860
[  639.640489][T11982]  ? __pfx___sys_bpf+0x10/0x10
[  639.640528][T11982]  ? ksys_write+0x22a/0x250
[  639.640554][T11982]  ? __pfx_ksys_write+0x10/0x10
[  639.640571][T11982]  ? rcu_is_watching+0x15/0xb0
[  639.640607][T11982]  __x64_sys_bpf+0x7c/0x90
[  639.640630][T11982]  do_syscall_64+0xfa/0x3b0
[  639.640646][T11982]  ? lockdep_hardirqs_on+0x9c/0x150
[  639.640674][T11982]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  639.640691][T11982]  ? clear_bhb_loop+0x60/0xb0
[  639.640713][T11982]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  639.640731][T11982] RIP: 0033:0x7f12cbf8e929
[  639.640749][T11982] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  639.640766][T11982] RSP: 002b:00007f12cce77038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  639.640787][T11982] RAX: ffffffffffffffda RBX: 00007f12cc1b5fa0 RCX: 00007f12cbf8e929
[  639.640800][T11982] RDX: 0000000000000010 RSI: 0000200000000740 RDI: 000000000000000a
[  639.640812][T11982] RBP: 00007f12cce77090 R08: 0000000000000000 R09: 0000000000000000
[  639.640825][T11982] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  639.640835][T11982] R13: 0000000000000000 R14: 00007f12cc1b5fa0 R15: 00007ffe1688dba8
[  639.640865][T11982]  </TASK>
[  639.642455][ T5906] usb 4-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22
[  640.302808][ T5906] usb 4-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131
[  640.393232][ T5906] usb 4-1: Product: syz
[  640.421427][ T5906] usb 4-1: Manufacturer: syz
[  640.426307][ T5906] usb 4-1: SerialNumber: syz
[  640.531506][ T5906] input: appletouch as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/input/input12
[  640.620415][T11993] warn_alloc: 1 callbacks suppressed
[  640.620436][T11993] syz.0.1578: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  640.744484][T11993] CPU: 1 UID: 0 PID: 11993 Comm: syz.0.1578 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  640.744517][T11993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  640.744530][T11993] Call Trace:
[  640.744538][T11993]  <TASK>
[  640.744548][T11993]  dump_stack_lvl+0x189/0x250
[  640.744590][T11993]  ? __pfx_dump_stack_lvl+0x10/0x10
[  640.744629][T11993]  ? __pfx__printk+0x10/0x10
[  640.744651][T11993]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  640.744685][T11993]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  640.744720][T11993]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[  640.744757][T11993]  warn_alloc+0x214/0x310
[  640.744785][T11993]  ? stack_depot_save_flags+0x40/0x900
[  640.744817][T11993]  ? __pfx_warn_alloc+0x10/0x10
[  640.744847][T11993]  ? kasan_save_track+0x4f/0x80
[  640.744869][T11993]  ? xskq_create+0x56/0x170
[  640.744895][T11993]  ? xsk_init_queue+0xb0/0x110
[  640.744919][T11993]  ? xsk_setsockopt+0x43f/0x710
[  640.744942][T11993]  ? do_sock_setsockopt+0x257/0x3e0
[  640.744964][T11993]  ? __x64_sys_setsockopt+0x18b/0x220
[  640.744985][T11993]  ? do_syscall_64+0xfa/0x3b0
[  640.745002][T11993]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  640.745032][T11993]  __vmalloc_node_range_noprof+0x125/0x12f0
[  640.745096][T11993]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  640.745131][T11993]  ? __kasan_kmalloc+0x93/0xb0
[  640.745158][T11993]  vmalloc_user_noprof+0xad/0xf0
[  640.745185][T11993]  ? xskq_create+0xbf/0x170
[  640.745210][T11993]  xskq_create+0xbf/0x170
[  640.745236][T11993]  xsk_init_queue+0xb0/0x110
[  640.745261][T11993]  xsk_setsockopt+0x43f/0x710
[  640.745286][T11993]  ? __pfx_xsk_setsockopt+0x10/0x10
[  640.745306][T11993]  ? __lock_acquire+0xab9/0xd20
[  640.745344][T11993]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[  640.745369][T11993]  ? __pfx_xsk_setsockopt+0x10/0x10
[  640.745398][T11993]  do_sock_setsockopt+0x257/0x3e0
[  640.745426][T11993]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  640.745456][T11993]  ? __fget_files+0x2a/0x420
[  640.745494][T11993]  __x64_sys_setsockopt+0x18b/0x220
[  640.745526][T11993]  do_syscall_64+0xfa/0x3b0
[  640.745543][T11993]  ? lockdep_hardirqs_on+0x9c/0x150
[  640.745572][T11993]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  640.745592][T11993]  ? clear_bhb_loop+0x60/0xb0
[  640.745625][T11993]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  640.745644][T11993] RIP: 0033:0x7f12cbf8e929
[  640.745663][T11993] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  640.745680][T11993] RSP: 002b:00007f12cce77038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  640.745702][T11993] RAX: ffffffffffffffda RBX: 00007f12cc1b5fa0 RCX: 00007f12cbf8e929
[  640.745719][T11993] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000004
[  640.745731][T11993] RBP: 00007f12cc010b39 R08: 0000000000000004 R09: 0000000000000000
[  640.745744][T11993] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  640.745755][T11993] R13: 0000000000000000 R14: 00007f12cc1b5fa0 R15: 00007ffe1688dba8
[  640.745788][T11993]  </TASK>
[  640.745796][T11993] Mem-Info:
[  641.991644][T11993] active_anon:20394 inactive_anon:19318 isolated_anon:0
[  641.991644][T11993]  active_file:17414 inactive_file:40656 isolated_file:0
[  641.991644][T11993]  unevictable:768 dirty:106 writeback:0
[  641.991644][T11993]  slab_reclaimable:10575 slab_unreclaimable:99880
[  641.991644][T11993]  mapped:32782 shmem:33584 pagetables:1707
[  641.991644][T11993]  sec_pagetables:0 bounce:0
[  641.991644][T11993]  kernel_misc_reclaimable:0
[  641.991644][T11993]  free:1274929 free_pcp:17229 free_cma:0
[  642.150450][T11993] Node 0 active_anon:81576kB inactive_anon:77472kB active_file:69460kB inactive_file:162624kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:131228kB dirty:424kB writeback:0kB shmem:132800kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:13248kB pagetables:6688kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  642.191786][T11993] Node 1 active_anon:0kB inactive_anon:0kB active_file:196kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:140kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  642.612828][   T30] audit: type=1400 audit(1750564350.560:211): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="]-{" requested=w pid=12005 comm="syz.2.1580" dest=3
[  643.163922][T11993] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  643.316069][ T5883] usb 4-1: USB disconnect, device number 47
[  643.452676][T11993] lowmem_reserve[]: 0 2501 2503 2503 2503
[  643.458774][T11993] Node 0 DMA32 free:1193848kB boost:0kB min:34264kB low:42828kB high:51392kB reserved_highatomic:0KB free_highatomic:0KB active_anon:81476kB inactive_anon:77876kB active_file:67732kB inactive_file:162520kB unevictable:1536kB writepending:472kB present:3129332kB managed:2561488kB mlocked:0kB bounce:0kB free_pcp:37352kB local_pcp:13864kB free_cma:0kB
[  643.573400][ T5883] appletouch 4-1:1.0: input: appletouch disconnected
[  643.608717][T11993] lowmem_reserve[]: 0 0 1 1 1
[  643.799797][T11993] Node 0 Normal free:20kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:4kB inactive_anon:40kB active_file:1764kB inactive_file:68kB unevictable:0kB writepending:0kB present:1048580kB managed:1904kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[  644.071374][T11993] lowmem_reserve[]: 0 0 0 0 0
[  644.078229][T11993] Node 1 Normal free:3897708kB boost:0kB min:55612kB low:69512kB high:83412kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:196kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:22824kB local_pcp:11452kB free_cma:0kB
[  644.245323][T11993] lowmem_reserve[]: 0 0 0 0 0
[  644.250359][T11993] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  644.263425][T11993] Node 0 DMA32: 918*4kB (UME) 120*8kB (UME) 318*16kB (UME) 127*32kB (UME) 193*64kB (UME) 89*128kB (ME) 98*256kB (UM) 41*512kB (UME) 12*1024kB (UM) 6*2048kB (UM) 265*4096kB (UM) = 1193624kB
[  644.284170][T11993] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[  644.297329][T11993] Node 1 Normal: 209*4kB (UE) 61*8kB (UME) 36*16kB (UME) 78*32kB (UME) 35*64kB (UME) 3*128kB (UME) 4*256kB (UME) 3*512kB (ME) 1*1024kB (M) 2*2048kB (UE) 948*4096kB (M) = 3897708kB
[  644.317330][T11993] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  644.366646][T11993] Node 0 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[  644.390847][T12028] random: crng reseeded on system resumption
[  644.418244][T11993] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  644.602899][T11993] Node 1 hugepages_total=1 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  644.692388][T11993] 91647 total pagecache pages
[  644.724070][T11993] 1 pages in swap cache
[  644.768539][T11993] Free swap  = 124992kB
[  644.818590][T11993] Total swap = 124996kB
[  644.858187][T11993] 2097051 pages RAM
[  644.910573][T11993] 0 pages HighMem/MovableOnly
[  644.946017][T11993] 424572 pages reserved
[  644.978108][T11993] 0 pages cma reserved
[  645.637376][T12038] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1587'.
[  645.678963][   T43] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  646.223892][   T43] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  646.252083][   T43] usb 7-1: New USB device found, idVendor=1e7d, idProduct=2e22, bcdDevice= 0.00
[  646.283012][   T43] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  646.583822][   T43] usb 7-1: config 0 descriptor??
[  647.756183][   T30] audit: type=1400 audit(1750564355.820:212): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject="B" object="_" requested=w pid=12045 comm="syz.2.1590" saddr=fe80::bb daddr=fe80::aa dest=20002 netif=wpan0
[  647.975431][   T43] koneplus 0003:1E7D:2E22.000B: item fetching failed at offset 6/7
[  648.068285][T12031] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  648.070508][   T43] koneplus 0003:1E7D:2E22.000B: parse failed
[  648.101631][T12031] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  648.116751][   T30] audit: type=1400 audit(1750564356.300:213): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="]-{" requested=w pid=12030 comm="syz.6.1585"
[  648.219446][T12031] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  648.248615][   T43] koneplus 0003:1E7D:2E22.000B: probe with driver koneplus failed with error -22
[  648.307915][T12031] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  648.549806][   T43] usb 7-1: USB disconnect, device number 2
[  649.675186][T12074] bio_check_eod: 2 callbacks suppressed
[  649.680869][T12074] syz.5.1594: attempt to access beyond end of device
[  649.680869][T12074] nbd5: rw=0, sector=2, nr_sectors = 1 limit=0
[  649.694843][T12074] hfs: can't find a HFS filesystem on dev nbd5
[  649.864040][T12076] netlink: 'syz.5.1594': attribute type 1 has an invalid length.
[  649.872030][T12076] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1594'.
[  650.703954][T12092] syz.0.1599: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  651.111703][ T1210] usb 3-1: new high-speed USB device number 35 using dummy_hcd
[  651.173750][T12092] CPU: 0 UID: 0 PID: 12092 Comm: syz.0.1599 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  651.173785][T12092] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  651.173798][T12092] Call Trace:
[  651.173808][T12092]  <TASK>
[  651.173818][T12092]  dump_stack_lvl+0x189/0x250
[  651.173858][T12092]  ? __pfx_dump_stack_lvl+0x10/0x10
[  651.173888][T12092]  ? __pfx__printk+0x10/0x10
[  651.173910][T12092]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  651.173944][T12092]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  651.173979][T12092]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[  651.174015][T12092]  warn_alloc+0x214/0x310
[  651.174044][T12092]  ? stack_depot_save_flags+0x40/0x900
[  651.174074][T12092]  ? __pfx_warn_alloc+0x10/0x10
[  651.174104][T12092]  ? kasan_save_track+0x4f/0x80
[  651.174128][T12092]  ? xskq_create+0x56/0x170
[  651.174154][T12092]  ? xsk_init_queue+0xb0/0x110
[  651.174177][T12092]  ? xsk_setsockopt+0x43f/0x710
[  651.174200][T12092]  ? do_sock_setsockopt+0x257/0x3e0
[  651.174222][T12092]  ? __x64_sys_setsockopt+0x18b/0x220
[  651.174243][T12092]  ? do_syscall_64+0xfa/0x3b0
[  651.174259][T12092]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  651.174289][T12092]  __vmalloc_node_range_noprof+0x125/0x12f0
[  651.174351][T12092]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  651.174386][T12092]  ? __kasan_kmalloc+0x93/0xb0
[  651.174414][T12092]  vmalloc_user_noprof+0xad/0xf0
[  651.174441][T12092]  ? xskq_create+0xbf/0x170
[  651.174470][T12092]  xskq_create+0xbf/0x170
[  651.174510][T12092]  xsk_init_queue+0xb0/0x110
[  651.174541][T12092]  xsk_setsockopt+0x43f/0x710
[  651.174571][T12092]  ? __pfx_xsk_setsockopt+0x10/0x10
[  651.174595][T12092]  ? __lock_acquire+0xab9/0xd20
[  651.174634][T12092]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[  651.174658][T12092]  ? __pfx_xsk_setsockopt+0x10/0x10
[  651.174685][T12092]  do_sock_setsockopt+0x257/0x3e0
[  651.174714][T12092]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  651.174744][T12092]  ? __fget_files+0x2a/0x420
[  651.174780][T12092]  __x64_sys_setsockopt+0x18b/0x220
[  651.174812][T12092]  do_syscall_64+0xfa/0x3b0
[  651.174829][T12092]  ? lockdep_hardirqs_on+0x9c/0x150
[  651.174858][T12092]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  651.174878][T12092]  ? clear_bhb_loop+0x60/0xb0
[  651.174903][T12092]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  651.174923][T12092] RIP: 0033:0x7f12cbf8e929
[  651.174943][T12092] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  651.174961][T12092] RSP: 002b:00007f12cce77038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  651.174984][T12092] RAX: ffffffffffffffda RBX: 00007f12cc1b5fa0 RCX: 00007f12cbf8e929
[  651.175000][T12092] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000004
[  651.175012][T12092] RBP: 00007f12cc010b39 R08: 0000000000000004 R09: 0000000000000000
[  651.175025][T12092] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  651.175038][T12092] R13: 0000000000000000 R14: 00007f12cc1b5fa0 R15: 00007ffe1688dba8
[  651.175073][T12092]  </TASK>
[  651.511308][T12092] Mem-Info:
[  651.514513][T12092] active_anon:20375 inactive_anon:21595 isolated_anon:0
[  651.514513][T12092]  active_file:17427 inactive_file:40647 isolated_file:0
[  651.514513][T12092]  unevictable:788 dirty:182 writeback:0
[  651.514513][T12092]  slab_reclaimable:10579 slab_unreclaimable:100104
[  651.514513][T12092]  mapped:34561 shmem:36433 pagetables:1699
[  651.514513][T12092]  sec_pagetables:0 bounce:0
[  651.514513][T12092]  kernel_misc_reclaimable:0
[  651.514513][T12092]  free:1274607 free_pcp:14956 free_cma:0
[  651.661386][ T1210] usb 3-1: Using ep0 maxpacket: 8
[  651.673547][ T1210] usb 3-1: config 0 has an invalid interface number: 211 but max is 0
[  651.682227][ T1210] usb 3-1: config 0 has no interface number 0
[  651.688656][ T1210] usb 3-1: config 0 interface 211 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  651.699795][ T1210] usb 3-1: config 0 interface 211 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  651.710099][ T1210] usb 3-1: config 0 interface 211 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[  651.721318][ T1210] usb 3-1: config 0 interface 211 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[  651.734343][ T1210] usb 3-1: New USB device found, idVendor=12d1, idProduct=6ce6, bcdDevice=af.a8
[  651.743718][ T1210] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  651.752454][ T1210] usb 3-1: Product: syz
[  651.756658][ T1210] usb 3-1: Manufacturer: syz
[  651.761590][ T1210] usb 3-1: SerialNumber: syz
[  651.773193][ T1210] usb 3-1: config 0 descriptor??
[  651.820242][T12092] Node 0 active_anon:81480kB inactive_anon:86212kB active_file:69512kB inactive_file:162588kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:138264kB dirty:664kB writeback:0kB shmem:144184kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:13296kB pagetables:6684kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  651.978623][ T1210] option 3-1:0.211: GSM modem (1-port) converter detected
[  651.982801][T12092] Node 1 active_anon:0kB inactive_anon:0kB active_file:196kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:140kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  652.022034][T12092] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  652.052803][T12092] lowmem_reserve[]: 0 2501 2503 2503 2503
[  652.059944][T12092] Node 0 DMA32 free:1186196kB boost:0kB min:34264kB low:42828kB high:51392kB reserved_highatomic:0KB free_highatomic:0KB active_anon:81476kB inactive_anon:86372kB active_file:67748kB inactive_file:162520kB unevictable:1536kB writepending:664kB present:3129332kB managed:2561488kB mlocked:0kB bounce:0kB free_pcp:36364kB local_pcp:14820kB free_cma:0kB
[  652.216497][T12092] lowmem_reserve[]: 0 0 1 1 1
[  652.227120][T12092] Node 0 Normal free:20kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:4kB inactive_anon:40kB active_file:1764kB inactive_file:68kB unevictable:0kB writepending:0kB present:1048580kB managed:1904kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[  652.359034][T12092] lowmem_reserve[]: 0 0 0 0 0
[  652.387086][T12092] Node 1 Normal free:3897708kB boost:0kB min:55612kB low:69512kB high:83412kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:196kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:22824kB local_pcp:11452kB free_cma:0kB
[  652.486189][   T24] usb 6-1: new full-speed USB device number 19 using dummy_hcd
[  652.504749][T12092] lowmem_reserve[]: 0 0 0 0 0
[  652.509691][T12092] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  652.558070][T12092] Node 0 DMA32: 252*4kB (UE) 125*8kB (UE) 45*16kB (UME) 207*32kB (UME) 200*64kB (ME) 89*128kB (ME) 86*256kB (UM) 41*512kB (UME) 12*1024kB (UM) 6*2048kB (UM) 265*4096kB (UM) = 1186568kB
[  652.558299][T12092] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[  652.558445][T12092] Node 1 Normal: 209*4kB (UE) 61*8kB (UME) 36*16kB (UME) 78*32kB (UME) 35*64kB (UME) 3*128kB (UME) 4*256kB (UME) 3*512kB (ME) 1*1024kB (M) 2*2048kB (UE) 948*4096kB (M) = 3897708kB
[  652.558660][T12092] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  652.558680][T12092] Node 0 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[  652.558698][T12092] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  652.558717][T12092] Node 1 hugepages_total=1 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  652.558735][T12092] 95524 total pagecache pages
[  652.558744][T12092] 1 pages in swap cache
[  652.558754][T12092] Free swap  = 124992kB
[  652.558763][T12092] Total swap = 124996kB
[  652.558774][T12092] 2097051 pages RAM
[  652.558784][T12092] 0 pages HighMem/MovableOnly
[  652.558794][T12092] 424572 pages reserved
[  652.558803][T12092] 0 pages cma reserved
[  653.332963][   T30] audit: type=1400 audit(1750564360.950:214): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="B" requested=w pid=12119 comm="syz.6.1605" daddr=fe80::1b dest=16385
[  653.333022][   T30] audit: type=1400 audit(1750564360.990:215): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="B" requested=w pid=12119 comm="syz.6.1605" daddr=ff01::1 dest=20000
[  653.379281][   T24] usb 6-1: config 0 has an invalid interface number: 206 but max is 1
[  653.379317][   T24] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  653.379339][   T24] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 2
[  653.379361][   T24] usb 6-1: config 0 has no interface number 0
[  653.379411][   T24] usb 6-1: config 0 interface 206 altsetting 2 endpoint 0xB has invalid maxpacket 1024, setting to 64
[  653.379442][   T24] usb 6-1: config 0 interface 206 altsetting 2 endpoint 0xD has invalid maxpacket 1023, setting to 64
[  653.379470][   T24] usb 6-1: config 0 interface 206 altsetting 2 endpoint 0x8C has invalid maxpacket 30768, setting to 64
[  653.379507][   T24] usb 6-1: config 0 interface 206 altsetting 2 has 5 endpoint descriptors, different from the interface descriptor's value: 7
[  653.379535][   T24] usb 6-1: config 0 interface 206 has no altsetting 0
[  653.383606][   T24] usb 6-1: New USB device found, idVendor=0499, idProduct=1007, bcdDevice=df.8f
[  653.383637][   T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  653.383659][   T24] usb 6-1: Product: syz
[  653.383675][   T24] usb 6-1: Manufacturer: syz
[  653.383692][   T24] usb 6-1: SerialNumber: syz
[  653.388468][   T24] usb 6-1: config 0 descriptor??
[  653.390708][T12110] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  653.490551][ T1210] usb 3-1: USB disconnect, device number 35
[  653.502887][ T1210] option 3-1:0.211: device disconnected
[  653.664312][   T24] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  653.721438][   T30] audit: type=1400 audit(1750564361.950:216): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="B" requested=w pid=12126 comm="syz.2.1607" daddr=fc01::a dest=20000
[  653.804050][   T24] usb 6-1: USB disconnect, device number 19
[  653.913062][T10381] udevd[10381]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.206/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  653.991309][ T5927] usb 1-1: new high-speed USB device number 30 using dummy_hcd
[  654.141667][ T5927] usb 1-1: Using ep0 maxpacket: 8
[  654.294837][ T5927] usb 1-1: config 1 has an invalid interface number: 4 but max is 1
[  654.304737][ T5927] usb 1-1: config 1 has no interface number 1
[  654.322375][ T5927] usb 1-1: config 1 interface 4 has no altsetting 0
[  654.337862][ T5927] usb 1-1: config 1 interface 0 has no altsetting 0
[  654.360967][ T5927] usb 1-1: New USB device found, idVendor=0471, idProduct=0322, bcdDevice=b1.55
[  654.373325][ T5927] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  654.382289][ T5927] usb 1-1: Product: syz
[  654.386936][ T5927] usb 1-1: Manufacturer: syz
[  654.394899][ T5927] usb 1-1: SerialNumber: syz
[  655.677668][T12152] netlink: 72 bytes leftover after parsing attributes in process `syz.0.1608'.
[  655.693881][   T30] audit: type=1400 audit(1750564363.930:217): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="B" requested=w pid=12128 comm="syz.0.1608" daddr=fe80::e dest=20000
[  657.350991][T12156] netlink: 4768 bytes leftover after parsing attributes in process `syz.2.1611'.
[  658.340529][ T5927] gspca_main: sunplus-2.14.0 probing 0471:0322
[  658.385944][ T5927] gspca_sunplus: reg_w_riv err -71
[  658.460719][T12172] random: crng reseeded on system resumption
[  658.732248][T12172] batman_adv: batadv0: Adding interface: ip6gretap1
[  658.739160][T12172] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  658.765493][T12172] batman_adv: batadv0: Not using interface ip6gretap1 (retrying later): interface not active
[  659.194747][ T5927] sunplus 1-1:1.0: probe with driver sunplus failed with error -71
[  659.220415][ T5927] usb 1-1: USB disconnect, device number 30
[  764.311151][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  764.318185][    C0] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P12166/1:b..l
[  764.326724][    C0] rcu: 	(detected by 0, t=10502 jiffies, g=49573, q=770 ncpus=2)
[  764.334463][    C0] task:syz.6.1606      state:R  running task     stack:23240 pid:12166 tgid:12166 ppid:11513  task_flags:0x400640 flags:0x00004002
[  764.348780][    C0] Call Trace:
[  764.352248][    C0]  <TASK>
[  764.355232][    C0]  __schedule+0x16a2/0x4cb0
[  764.359896][    C0]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  764.365830][    C0]  ? preempt_schedule_irq+0xb5/0x150
[  764.371240][    C0]  ? __pfx___schedule+0x10/0x10
[  764.376257][    C0]  ? preempt_schedule_irq+0xaa/0x150
[  764.381581][    C0]  preempt_schedule_irq+0xb5/0x150
[  764.386732][    C0]  ? __pfx_preempt_schedule_irq+0x10/0x10
[  764.392766][    C0]  ? __pfx_rcu_preempt_deferred_qs_irqrestore+0x10/0x10
[  764.399764][    C0]  ? rcu_irq_exit_check_preempt+0xdf/0x210
[  764.405624][    C0]  irqentry_exit+0x6f/0x90
[  764.410272][    C0]  asm_sysvec_reschedule_ipi+0x1a/0x20
[  764.415757][    C0] RIP: 0010:lock_acquire+0x175/0x360
[  764.421105][    C0] Code: 00 00 00 00 9c 8f 44 24 30 f7 44 24 30 00 02 00 00 0f 85 cd 00 00 00 f7 44 24 08 00 02 00 00 74 01 fb 65 48 8b 05 2b 9e fb 10 <48> 3b 44 24 58 0f 85 f2 00 00 00 48 83 c4 60 5b 41 5c 41 5d 41 5e
[  764.440920][    C0] RSP: 0018:ffffc9001126e398 EFLAGS: 00000206
[  764.447039][    C0] RAX: 4749064d6183b100 RBX: 0000000000000000 RCX: 4749064d6183b100
[  764.455045][    C0] RDX: 0000000000000000 RSI: ffffffff8db5aaa7 RDI: ffffffff8be1b7c0
[  764.463120][    C0] RBP: ffffffff81729af5 R08: 0000000000000000 R09: ffffffff81729af5
[  764.471120][    C0] R10: ffffc9001126e558 R11: ffffffff81acf5a0 R12: 0000000000000002
[  764.479134][    C0] R13: ffffffff8e13eda0 R14: 0000000000000000 R15: 0000000000000246
[  764.487174][    C0]  ? unwind_next_frame+0xa5/0x2390
[  764.492365][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  764.498558][    C0]  ? unwind_next_frame+0xa5/0x2390
[  764.503722][    C0]  ? unwind_next_frame+0xa5/0x2390
[  764.508858][    C0]  ? elf_core_dump+0x32ed/0x3900
[  764.513823][    C0]  ? unwind_next_frame+0xa5/0x2390
[  764.518967][    C0]  unwind_next_frame+0xc2/0x2390
[  764.524134][    C0]  ? unwind_next_frame+0xa5/0x2390
[  764.529370][    C0]  ? unwind_next_frame+0xa5/0x2390
[  764.534616][    C0]  ? dump_user_range+0x873/0xc70
[  764.539593][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  764.545774][    C0]  arch_stack_walk+0x11c/0x150
[  764.550582][    C0]  ? elf_core_dump+0x32ed/0x3900
[  764.555574][    C0]  stack_trace_save+0x9c/0xe0
[  764.560277][    C0]  ? __pfx_stack_trace_save+0x10/0x10
[  764.565856][    C0]  save_stack+0xf7/0x1f0
[  764.570227][    C0]  ? __pfx_save_stack+0x10/0x10
[  764.575377][    C0]  ? post_alloc_hook+0x240/0x2a0
[  764.580625][    C0]  ? get_page_from_freelist+0x21d5/0x22b0
[  764.586390][    C0]  ? __alloc_frozen_pages_noprof+0x181/0x370
[  764.592576][    C0]  ? alloc_pages_mpol+0x232/0x4a0
[  764.597712][    C0]  ? folio_alloc_mpol_noprof+0x39/0x70
[  764.603212][    C0]  ? shmem_alloc_and_add_folio+0x447/0xf60
[  764.609048][    C0]  ? shmem_get_folio_gfp+0x59d/0x1660
[  764.614436][    C0]  ? shmem_write_begin+0xf7/0x2b0
[  764.619517][    C0]  ? generic_perform_write+0x2c7/0x910
[  764.625086][    C0]  ? shmem_file_write_iter+0xf8/0x120
[  764.630602][    C0]  ? __kernel_write_iter+0x390/0x860
[  764.635937][    C0]  ? dump_user_range+0x873/0xc70
[  764.641174][    C0]  ? elf_core_dump+0x32ed/0x3900
[  764.646174][    C0]  ? seqcount_lockdep_reader_access+0x102/0x180
[  764.652465][    C0]  __set_page_owner+0x8d/0x4a0
[  764.657263][    C0]  ? __pfx___set_page_owner+0x10/0x10
[  764.662677][    C0]  post_alloc_hook+0x240/0x2a0
[  764.667517][    C0]  get_page_from_freelist+0x21d5/0x22b0
[  764.673444][    C0]  ? __pfx_get_page_from_freelist+0x10/0x10
[  764.679471][    C0]  ? prepare_alloc_pages+0x213/0x610
[  764.684908][    C0]  __alloc_frozen_pages_noprof+0x181/0x370
[  764.690777][    C0]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  764.697168][    C0]  ? policy_nodemask+0x27c/0x720
[  764.702232][    C0]  alloc_pages_mpol+0x232/0x4a0
[  764.707136][    C0]  folio_alloc_mpol_noprof+0x39/0x70
[  764.712477][    C0]  shmem_alloc_and_add_folio+0x447/0xf60
[  764.718268][    C0]  ? filemap_get_entry+0xad/0x2f0
[  764.723376][    C0]  ? filemap_get_entry+0xad/0x2f0
[  764.728433][    C0]  ? filemap_get_entry+0xad/0x2f0
[  764.733626][    C0]  ? filemap_get_entry+0x28f/0x2f0
[  764.739191][    C0]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  764.745682][    C0]  ? shmem_allowable_huge_orders+0x1f8/0x420
[  764.752076][    C0]  shmem_get_folio_gfp+0x59d/0x1660
[  764.757550][    C0]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[  764.764196][    C0]  shmem_write_begin+0xf7/0x2b0
[  764.769107][    C0]  generic_perform_write+0x2c7/0x910
[  764.774463][    C0]  ? __pfx_generic_perform_write+0x10/0x10
[  764.780343][    C0]  ? down_write+0x162/0x1f0
[  764.784929][    C0]  ? file_update_time+0x2da/0x490
[  764.790187][    C0]  shmem_file_write_iter+0xf8/0x120
[  764.795416][    C0]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  764.801285][    C0]  __kernel_write_iter+0x390/0x860
[  764.806435][    C0]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  764.812289][    C0]  ? __pfx___kernel_write_iter+0x10/0x10
[  764.817979][    C0]  ? __up_read+0x280/0x680
[  764.822493][    C0]  ? __asan_memset+0x22/0x50
[  764.827197][    C0]  ? iov_iter_bvec+0xb8/0x180
[  764.831937][    C0]  dump_user_range+0x873/0xc70
[  764.836838][    C0]  ? __pfx_dump_user_range+0x10/0x10
[  764.842146][    C0]  ? elf_coredump_extra_notes_write+0x42e/0x4b0
[  764.848426][    C0]  ? __pfx_elf_coredump_extra_notes_write+0x10/0x10
[  764.855046][    C0]  ? __kasan_kmalloc+0x93/0xb0
[  764.859851][    C0]  ? dump_emit+0xa6/0xe0
[  764.864122][    C0]  ? elf_core_dump+0x2c68/0x3900
[  764.869098][    C0]  elf_core_dump+0x32ed/0x3900
[  764.873911][    C0]  ? __pfx_elf_core_dump+0x10/0x10
[  764.879065][    C0]  ? mas_next_slot+0xc27/0xcf0
[  764.884197][    C0]  ? rcu_read_lock_any_held+0xb3/0x120
[  764.889689][    C0]  ? 0xffffffffff600000
[  764.893911][    C0]  do_coredump+0x2809/0x3440
[  764.898551][    C0]  ? __pfx_do_coredump+0x10/0x10
[  764.903517][    C0]  ? arch_stack_walk+0xfc/0x150
[  764.908412][    C0]  ? stack_trace_save+0x9c/0xe0
[  764.913340][    C0]  ? kasan_save_track+0x4f/0x80
[  764.918234][    C0]  ? kasan_save_track+0x3e/0x80
[  764.923214][    C0]  ? kasan_save_free_info+0x46/0x50
[  764.928469][    C0]  ? __kasan_slab_free+0x62/0x70
[  764.933444][    C0]  ? kmem_cache_free+0x18f/0x400
[  764.938408][    C0]  ? get_signal+0xa2b/0x1310
[  764.943027][    C0]  ? arch_do_signal_or_restart+0x9a/0x750
[  764.948767][    C0]  ? irqentry_exit_to_user_mode+0x81/0x120
[  764.954601][    C0]  ? exc_general_protection+0x171/0x200
[  764.960182][    C0]  ? asm_exc_general_protection+0x26/0x30
[  764.965968][    C0]  ? proc_coredump_connector+0x172/0x4b0
[  764.971891][    C0]  ? __pfx_proc_coredump_connector+0x10/0x10
[  764.977998][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  764.983312][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  764.988542][    C0]  get_signal+0x10d9/0x1310
[  764.993226][    C0]  arch_do_signal_or_restart+0x9a/0x750
[  764.998815][    C0]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  765.005093][    C0]  ? local_irq_enable_exit_to_user+0x5/0x10
[  765.011018][    C0]  irqentry_exit_to_user_mode+0x81/0x120
[  765.016690][    C0]  exc_general_protection+0x171/0x200
[  765.022099][    C0]  ? exc_page_fault+0x9f/0xf0
[  765.026892][    C0]  asm_exc_general_protection+0x26/0x30
[  765.032721][    C0] RIP: 0033:0x7f977ab8e931
[  765.037194][    C0] RSP: 002b:00002000000001d0 EFLAGS: 00010217
[  765.043295][    C0] RAX: 0000000000000000 RBX: 00007f977adb5fa0 RCX: 00007f977ab8e929
[  765.051285][    C0] RDX: 0000200000000080 RSI: 00002000000001d0 RDI: 0000000080000080
[  765.059307][    C0] RBP: 00007f977ac10b39 R08: 00002000000002c0 R09: 00002000000002c0
[  765.067303][    C0] R10: 0000200000000200 R11: 0000000000000202 R12: 0000000000000000
[  765.075501][    C0] R13: 0000000000000000 R14: 00007f977adb5fa0 R15: 00007ffd0c3376d8
[  765.083519][    C0]  </TASK>
[  765.086588][    C0] rcu: rcu_preempt kthread timer wakeup didn't happen for 10474 jiffies! g49573 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402
[  765.099065][    C0] rcu: 	Possible timer handling issue on cpu=1 timer-softirq=49285
[  765.107006][    C0] rcu: rcu_preempt kthread starved for 10475 jiffies! g49573 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=1
[  765.118411][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  765.128404][    C0] rcu: RCU grace-period kthread stack dump:
[  765.134304][    C0] task:rcu_preempt     state:I stack:27320 pid:16    tgid:16    ppid:2      task_flags:0x208040 flags:0x00004000
[  765.146262][    C0] Call Trace:
[  765.149558][    C0]  <TASK>
[  765.152631][    C0]  __schedule+0x16a2/0x4cb0
[  765.157289][    C0]  ? schedule+0x165/0x360
[  765.161656][    C0]  ? __pfx___schedule+0x10/0x10
[  765.166557][    C0]  ? schedule+0x91/0x360
[  765.170833][    C0]  ? lock_acquire+0x175/0x360
[  765.175548][    C0]  ? schedule+0x91/0x360
[  765.180008][    C0]  schedule+0x165/0x360
[  765.184245][    C0]  schedule_timeout+0x12b/0x270
[  765.189125][    C0]  ? __pfx_schedule_timeout+0x10/0x10
[  765.194605][    C0]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  765.200559][    C0]  ? __pfx_process_timeout+0x10/0x10
[  765.206071][    C0]  ? prepare_to_swait_event+0x341/0x380
[  765.211651][    C0]  rcu_gp_fqs_loop+0x301/0x1540
[  765.216652][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  765.221886][    C0]  ? __pfx_rcu_watching_snap_recheck+0x10/0x10
[  765.228072][    C0]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[  765.233724][    C0]  ? _raw_spin_unlock_irq+0x2e/0x50
[  765.238952][    C0]  ? finish_swait+0xcd/0x1f0
[  765.243747][    C0]  rcu_gp_kthread+0x99/0x390
[  765.248543][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  765.253880][    C0]  ? __kthread_parkme+0x7b/0x200
[  765.259003][    C0]  ? __kthread_parkme+0x1a1/0x200
[  765.264087][    C0]  kthread+0x70e/0x8a0
[  765.268190][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  765.273414][    C0]  ? __pfx_kthread+0x10/0x10
[  765.278029][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  765.283425][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  765.288651][    C0]  ? __pfx_kthread+0x10/0x10
[  765.293355][    C0]  ret_from_fork+0x3f9/0x770
[  765.298080][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[  765.303242][    C0]  ? __switch_to_asm+0x39/0x70
[  765.308024][    C0]  ? __switch_to_asm+0x33/0x70
[  765.313157][    C0]  ? __pfx_kthread+0x10/0x10
[  765.317782][    C0]  ret_from_fork_asm+0x1a/0x30
[  765.322606][    C0]  </TASK>
[  765.325646][    C0] rcu: Stack dump where RCU GP kthread last ran:
[  765.332007][    C0] Sending NMI from CPU 0 to CPUs 1:
[  765.337257][    C1] NMI backtrace for cpu 1
[  765.337273][    C1] CPU: 1 UID: 0 PID: 12174 Comm: syz.3.1615 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  765.337292][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  765.337302][    C1] RIP: 0010:kasan_check_range+0x1d3/0x2c0
[  765.337325][    C1] Code: 4d 01 f3 49 8d 5c 24 07 4d 85 e4 49 0f 49 dc 48 83 e3 f8 49 29 dc 74 12 41 80 3b 00 0f 85 b8 00 00 00 49 ff c3 49 ff cc 75 ee <5b> 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc 45 84 ff 75 63 41
[  765.337339][    C1] RSP: 0018:ffffc90000a08c98 EFLAGS: 00000056
[  765.337355][    C1] RAX: ffffffff8b5b5701 RBX: 0000000000000000 RCX: ffffffff8b5b57a6
[  765.337366][    C1] RDX: 0000000000000001 RSI: 0000000000000018 RDI: ffff88806d66b340
[  765.337377][    C1] RBP: 0000000000000000 R08: ffff88806d66b357 R09: 1ffff1100dacd66a
[  765.337387][    C1] R10: dffffc0000000000 R11: ffffed100dacd66b R12: 0000000000000003
[  765.337398][    C1] R13: dffffc0000000000 R14: ffffed100dacd66b R15: 1ffff1100dacd668
[  765.337411][    C1] FS:  00007f154ef476c0(0000) GS:ffff888125d83000(0000) knlGS:0000000000000000
[  765.337425][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  765.337436][    C1] CR2: 000020000000f000 CR3: 000000001d2b8000 CR4: 00000000003526f0
[  765.337453][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  765.337462][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  765.337473][    C1] Call Trace:
[  765.337483][    C1]  <IRQ>
[  765.337494][    C1]  __asan_memset+0x22/0x50
[  765.337511][    C1]  timerqueue_add+0x186/0x200
[  765.337532][    C1]  __hrtimer_run_queues+0x656/0xc60
[  765.337562][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  765.337582][    C1]  ? read_tsc+0x9/0x20
[  765.337603][    C1]  hrtimer_interrupt+0x45b/0xaa0
[  765.337636][    C1]  __sysvec_apic_timer_interrupt+0x10b/0x410
[  765.337660][    C1]  sysvec_apic_timer_interrupt+0xa1/0xc0
[  765.337681][    C1]  </IRQ>
[  765.337687][    C1]  <TASK>
[  765.337694][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  765.337711][    C1] RIP: 0010:x2apic_send_IPI+0x73/0xe0
[  765.337727][    C1] Code: 89 f0 48 c1 e8 03 42 0f b6 04 20 84 c0 75 42 41 8b 16 0f ae f0 0f ae e8 83 fb 02 b8 00 04 00 00 0f 45 c3 b9 30 08 00 00 0f 30 <66> 90 5b 41 5c 41 5e 41 5f 5d c3 cc cc cc cc cc 89 fe 89 fd 48 c7
[  765.337740][    C1] RSP: 0018:ffffc9001127f830 EFLAGS: 00000206
[  765.337753][    C1] RAX: 00000000000000fb RBX: 00000000000000fb RCX: 0000000000000830
[  765.337763][    C1] RDX: 0000000000000000 RSI: 00000000000000fb RDI: 0000000000000000
[  765.337773][    C1] RBP: ffffc9001127f910 R08: ffffffff8f9fe2f7 R09: 1ffffffff1f3fc5e
[  765.337784][    C1] R10: dffffc0000000000 R11: ffffffff81703110 R12: dffffc0000000000
[  765.337797][    C1] R13: 0000000000000000 R14: ffff8880b86201b0 R15: ffffffff8db92c60
[  765.337810][    C1]  ? __pfx_native_send_call_func_single_ipi+0x10/0x10
[  765.337834][    C1]  __smp_call_single_queue+0x1cb/0x370
[  765.337856][    C1]  ? __pfx___smp_call_single_queue+0x10/0x10
[  765.337875][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  765.337899][    C1]  generic_exec_single+0x20e/0x500
[  765.337920][    C1]  ? __pfx_generic_exec_single+0x10/0x10
[  765.337943][    C1]  ? __raw_spin_lock_init+0x45/0x100
[  765.337961][    C1]  smp_call_function_single_async+0x79/0x110
[  765.337984][    C1]  rdmsr_safe_on_cpu+0x127/0x230
[  765.338004][    C1]  ? __pfx_rdmsr_safe_on_cpu+0x10/0x10
[  765.338021][    C1]  ? __pfx___rdmsr_safe_on_cpu+0x10/0x10
[  765.338037][    C1]  ? __might_fault+0xb0/0x130
[  765.338066][    C1]  msr_read+0x14d/0x250
[  765.338083][    C1]  ? __pfx_msr_read+0x10/0x10
[  765.338096][    C1]  ? security_file_permission+0x75/0x290
[  765.338116][    C1]  ? rw_verify_area+0x258/0x650
[  765.338132][    C1]  ? __pfx_msr_read+0x10/0x10
[  765.338147][    C1]  vfs_read+0x200/0x980
[  765.338168][    C1]  ? __pfx_vfs_read+0x10/0x10
[  765.338185][    C1]  ? __fget_files+0x2a/0x420
[  765.338205][    C1]  ? __fget_files+0x2a/0x420
[  765.338224][    C1]  ? __fget_files+0x3a0/0x420
[  765.338249][    C1]  ? __fget_files+0x2a/0x420
[  765.338271][    C1]  ksys_read+0x145/0x250
[  765.338288][    C1]  ? __pfx_ksys_read+0x10/0x10
[  765.338303][    C1]  ? rcu_is_watching+0x15/0xb0
[  765.338326][    C1]  ? do_syscall_64+0xbe/0x3b0
[  765.338341][    C1]  do_syscall_64+0xfa/0x3b0
[  765.338353][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  765.338373][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  765.338387][    C1]  ? clear_bhb_loop+0x60/0xb0
[  765.338405][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  765.338419][    C1] RIP: 0033:0x7f154e18e929
[  765.338434][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  765.338446][    C1] RSP: 002b:00007f154ef47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  765.338460][    C1] RAX: ffffffffffffffda RBX: 00007f154e3b5fa0 RCX: 00007f154e18e929
[  765.338471][    C1] RDX: 0000000000018ff8 RSI: 0000200000001a40 RDI: 000000000000000a
[  765.338481][    C1] RBP: 00007f154e210b39 R08: 0000000000000000 R09: 0000000000000000
[  765.338491][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  765.338500][    C1] R13: 0000000000000000 R14: 00007f154e3b5fa0 R15: 00007ffe9345d708
[  765.338519][    C1]  </TASK>