last executing test programs:

2m12.271160586s ago: executing program 2 (id=1257):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000400)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0xa, [@struct={0x8, 0x1, 0x0, 0xf, 0x0, 0x20008, [{0xe, 0x0, 0x3}]}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e]}}, 0x0, 0x3a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000280)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$cgroup_pid(r3, &(0x7f0000000000), 0xfdef)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000740)={'gre0\x00', &(0x7f00000006c0)={'gretap0\x00', <r4=>0x0, 0x700, 0x20, 0x7fff, 0x3, {{0x13, 0x4, 0x2, 0x4, 0x4c, 0x64, 0x0, 0x5, 0x2f, 0x0, @rand_addr=0x64010100, @rand_addr=0x64010101, {[@timestamp={0x44, 0xc, 0x4e, 0x0, 0x5, [0xd4, 0x7]}, @generic={0x89, 0x12, "32e053f0d68c20a458e2a09ad6cb7e5a"}, @timestamp_prespec={0x44, 0xc, 0x4c, 0x3, 0x8, [{@dev={0xac, 0x14, 0x14, 0x35}, 0x94}]}, @ssrr={0x89, 0xb, 0x2, [@private=0xa010100, @empty]}]}}}}})
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000780)=<r5=>0x0, &(0x7f00000007c0)=0x4)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000880)={'ip6_vti0\x00', &(0x7f0000000800)={'syztnl2\x00', <r6=>0x0, 0x29, 0x7f, 0x0, 0x8, 0x0, @empty, @ipv4={'\x00', '\xff\xff', @local}, 0x7, 0x40, 0x401, 0xda}})
sendmsg$inet(r0, &(0x7f0000000980)={&(0x7f00000002c0)={0x2, 0x4e22, @rand_addr=0x64010100}, 0x10, &(0x7f0000000640)=[{&(0x7f0000000300)="ae8975dd9c8f7579885aea7d84581ab2d14adb66b701e55af71abf5a0da34ba080eac02e77", 0x25}, {&(0x7f0000000380)="5db2aa95ce63dc2b00bbffbcbc8c9e8b9d26990d832f2ab05e72a487e90ba710bce11d18fc5d172f240dd186b422725736da", 0x32}, {&(0x7f00000003c0)="0e737adb17ac5a43205cf7fd73ec80e468efbd7f7a48f05f7aaa910d15dbf6b47e85dfe0fc000850786b83f612ec2598050c087f345cf88a39adf2a64471daa47522764e43eee21b920611849d051bf232ec9ed6f23ebd0f8360442ea714bbb0fc3f49878568b7912b069ebffdde93d892d241d95dfc48bd1dfefd8543672c0be6db245f828e13eb975a3bfa0ef1adf38644d33db2e393d139ee1ed1f21f15661b706fb678506e0b8155d2758a45ecb6160b476e8ed2ba542e6bb1e1a35e8bf064706b4744f2bbbd90e5a394bfd96031ff281bdda02d0806baf150939c8a93af17d7da801e67c09f27713d1471930c747938a0", 0xf3}, {&(0x7f00000004c0)="ad1bb15bc04618ace025179be21937799dd82cf1cd5c33b74ec11b82b3b64e338424c18ef1fb5ca6dc0948e8b4a23f0866f2f6c224239fbdb9239c8d06c29cecb3a27d7af6cfe24e1a827e1ebb4f2c6d467852976ad8a2f87db5d4190d6fc432a2c23c5127c56ed1587b2cf5da85", 0x6e}, {&(0x7f0000000540)="1b33b86d9dff5c30546d0aefddcecded5decc467f7b066f05fa239035b84be10edfcc8a916a4136a6e702e58962855c491ab83adca8e89094c7a", 0x3a}, {&(0x7f0000000580)="7c9ab444024de7aa6c9331682df643f7a3e36d89268cb68d6f4b85a264c17fdea5a798b2af1aee7827e4f0b1fb45d6548caf3f704360fad2e55779222b11c0971eecc7aab02307fea026831121aac3ad8424a63dbdd8c33c560f8611619ee62a49970a3d912be41b3195303940ca6c2df59e319ebd87e8e81b8ec5f20cbc039e777daa8f1af4eca3a6f27540e574e96fa1fcc4f290815f4bbdac40e94e4deb796724d5be498e37d7edfb4b779aae42c920b32168eba9ce457846ec", 0xbb}], 0x6, &(0x7f00000008c0)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r4, @rand_addr=0x64010102, @broadcast}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r5, @loopback, @remote}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r6, @broadcast, @rand_addr=0x64010102}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x3ff}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @multicast2, @empty}}}], 0x98}, 0x84)
recvmsg$unix(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000140)=""/79, 0xce80}], 0x300}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x300, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="050000000000000000002c00000008000300", @ANYRES32=r7, @ANYBLOB="7c71c8d3367ec0ec528e947a189f86a667e73ee8d1b13114f98b9aa01153c7dad287ed6b1c1b1a0a61bafac13fb6aeaa74963618c5f85aec82c7c54192260be165e9446a"], 0x1c}}, 0x0)
r8 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r8, &(0x7f0000000040)={0xcd, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB="020300030e000000000700000000000004000900a000f200e1255bb99231c177ba2159d3720df19f7a1dfec30000004600020006000000000002"], 0x70}, 0x1, 0x7}, 0x0)

2m12.006869081s ago: executing program 2 (id=1261):
syz_open_dev$vim2m(0x0, 0x2000000f5, 0x2)
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r0, &(0x7f0000000080)={0x6c, 0x0, 0x3, 0x1}, 0x8)
r1 = userfaultfd(0x801)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f00000006c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r2}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8}]}]}, @NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x30, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_XFRM_DIR={0x5, 0x3, 0x1}, @NFTA_XFRM_KEY={0x8, 0x2, 0x1, 0x0, 0x6}, @NFTA_XFRM_DREG={0x8, 0x1, 0x1, 0x0, 0x11}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xe0}}, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r4, 0x6, 0xd, &(0x7f0000000200)='nv\x00', 0x3)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r7 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000e00)={&(0x7f0000000600)=ANY=[@ANYBLOB="9feb01001800000000000000600000006000000005000000070000000000000e04000000010000000000000000000003000000000400000004000015773bd8a01d165e800000000e050000000100000005000000000000010000000048005202100000000000000b00000000030000000000000700000000005f612e00"], &(0x7f0000000d00)=""/248, 0x7d, 0xf8, 0x0, 0x2, 0x0, @void, @value}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f0000000e40)=@base={0x19, 0x9, 0xffffffff, 0x8, 0x2000, 0xffffffffffffffff, 0x80000000, '\x00', 0x0, r7, 0x2, 0x5, 0x5, 0x0, @void, @value, @void, @value}, 0x48)
sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r5, &(0x7f00000005c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x6c, 0x2, 0x7, 0x3, 0x0, 0x0, {0x3}, [@NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x1}, @NFACCT_FILTER={0x44, 0x7, 0x0, 0x1, [@NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x5}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x1000}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x7}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x4}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x747}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x3ff}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x277f}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0xffffffff}]}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x6}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4004880}, 0x40000)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r8, 0x8946, &(0x7f0000000000)={'netdevsim0\x00', &(0x7f0000000400)=@ethtool_flash={0x33, 0x0, '.\x00'}})
sendmsg$NFT_BATCH(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000700)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a140000001000410000000000000000070000000a21fb289f99a1ef08421a5b19e5f756c859362250170bb2a63f8fcbe8540401006f6924b92cd796093b0cbae2394817be5f7c13d3a1ca46291cede2feae713bb67cf891c746906eef4eb8fd1d3536f631c479165eb0601dacf754df3af46183e58ec854aeb444f5c6ebc9679ab031"], 0x28}}, 0x0)
bind$inet(r4, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_int(r4, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r4, 0x6, 0x14, &(0x7f0000000280)=0x2, 0x4)
connect$inet(r4, 0x0, 0x0)
r9 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
writev(r9, &(0x7f0000000a40)=[{&(0x7f0000002500)='\f', 0x1}, {0x0}], 0x2)
ioctl$FS_IOC_GETFLAGS(r6, 0x80086601, &(0x7f00000002c0))
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x48c})
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})

2m10.044062468s ago: executing program 2 (id=1268):
r0 = epoll_create(0x3ff)
r1 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000180), 0x40000, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000240)={0xa0000000})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000880), 0xffffffffffffffff)
r4 = socket$nl_audit(0x10, 0x3, 0x9)
bind$netlink(r4, &(0x7f0000002f00)={0x10, 0x0, 0x0, 0xf0ffffff}, 0xc)
close_range(r4, 0xffffffffffffffff, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x15)
bind$netlink(r5, &(0x7f00000005c0)={0x10, 0x0, 0x25dfdbfc, 0x1}, 0xc)
sendmmsg(r2, &(0x7f0000003780)=[{{&(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, r2, {0x2, 0x4e20, @rand_addr=0x64010101}, 0x4, 0x2, 0x2, 0x2}}, 0x80, &(0x7f0000000200)=[{&(0x7f0000000080)="bc67dfc0e0bfb6baea522dd18265d5a826114edb4cca9e5aac20ade65c3c2aaf21fb09a5c0c68ac197d9e4ff0205834b2615962f3a9cfbd10f2380330fd4ecb6e90eaca915", 0x45}, {&(0x7f0000000100)="3d2166d06ef40ef3179bd7e986523e78798a92fd9fdc602161d7c8a0b5d6260dadd7b6514cd335678c6f94b659dd406b59953a9b28556126cc3b09586b9c5f21a55972fc88fad275f1f9f445295b52aff3f9c81fc58ccc730157d8cf3656b212b9b344999a2a07095f661e9583c15fc38b86e7f6b996f60346f69a24a460bdfc97cf5573828bd4e5f1c58d5edb332bf7433f50b25c5f805d938e3b2798967cc825c8dc02301501c9edf8502518c9f3a934f6109b4a5ad66eaad568680f65e9cc991633da32335b15c01b03a125d11fd95047c98b8e2e8faef1bbc8497ea67af6ec8316b83f819eae5c000000000000", 0xef}], 0x2, &(0x7f0000000240)=[{0xc8, 0x29, 0xffff1579, "913164a49feb72350aa00f2b53afb1735690816bbd8786a3802dee70ab39c02adac85f8e805039dfd57b4108de0bfb637681b4ac19806f5f487e800fdede889e19f46edfb485d168b33798542b629214ec5f28dc39229d159d56f06570021c0c3e23ae8e10cd428f2e42a96ecf808b10f8f4f1c750574106800aef3406af29cf9edb2028a36622c6a6e8f314dbb1fffdde20b99ba0e2aad21a8ff760b7a10db42247e27d837c33b56b841d4c2f3deea7d39710"}, {0x20, 0x29, 0x4e965fc4, "03299f94ce0d5c82ffe91c8e"}, {0x28, 0x88, 0x5, "2dfae8cf6a485cead4352f607bf25c17f4344ed9"}, {0x90, 0x113, 0xd68, "a7e9aa9629433e0eeae897212c6ffcbda61e011a016bf2141122f9b1e5a7da15cb81cee20d9a04a12713e74165ae97f15c79b80e05e5e1d7c1249cb9307134e87b3b0792a0a3d4487684b93065a784f678b91c0bafedab1f4d0442cb6a6ee0155d4c8f871a9fb47abcce1deb2d3a38ed87dc42a3e87ca79f3b"}, {0x90, 0x10d, 0x7, "94dc2d62c74901c5fcb7e3b19a3664cc747109bf0a39037689ca325dcfdc539074fc575970daa8b36d16d4a3c760b953b26694077d42d484e1e190ff7bf850914d8616bedd294a22de3cf0303df9562c104319aff5cd63ec2b1ab6031618f6ec6385b079b5f19a140455749096b80934cafaadd7296900e4b597b3e64626a7"}, {0xb0, 0x11, 0x0, "7c46bec28fa9b2988f7a6856f7dd92cb183d0a47187c8cabf06ad30179fbef92c819820d4826968efe113c297247ed37882e392520eb28aacace2e5f7e3b1b883c462a746a1ae964937d5ef43b34f3439893cf93274db0ed1f637fdd84f1a32d3e9f798024899f3e398ef644fc288ba471d0bb65dbf7877c6313576ffeca43db2810049499d7d58b9040a4e47bf65b456b172c301b4542abfc"}], 0x2e0}}, {{&(0x7f0000000540)=@pppol2tp={0x18, 0x1, {0x0, r2, {0x2, 0x4e21, @local}, 0x3, 0x3, 0x2, 0x2}}, 0x80, &(0x7f0000000740)=[{&(0x7f0000003880)="9a7a1743703b2d2d5cdb3a13b88b15f606534de05ceb0a2dd19e63838e9a6e8d3af7af278e208e19c0d6d8afcf1e0be68460e84d1e6a6473d7b3e934d4708b549950301f140de54086aeb200866c7f967160d875bf0931340ba20000604f1ae6810dafdc46b75c225cb6074c471115e39f4f6b72f6613e88eaed5cac71c23bf2ef8544cec0d15d14b013a8d18b49ddd3561fb2955076b12867b158117790ff7ea389d519b54501f36badd83d2f1e58e369f05308c217df94068d6145eb18949b83734d5df980d0a16a762e65891a693426c0edf00da4e93750f299a83070b7bae4226a3b4842e1f7b89992bb8b0087b6a2", 0xf1}, {&(0x7f00000006c0)="18f8d7fa6912d277120eeeb7c015813dc88e39a4fbfc3f3b5e59f494ed525dc8dea7a0f9a1cee4f91df28e8b80d185abb0393e9aa1cdf5bcf3694322fb50cc52efefda", 0x43}], 0x2, &(0x7f00000009c0)=[{0x78, 0x0, 0x2, "f1e8c817baf5c05ec9a711febaad29d641615d0e641151cac761f554cf6cc18c16dc8bd7ff1d98915379b552e92febd6814073fec091ed5764df75b111f998370252b81d09b38377ed3527aad2e08c6bcb0291507a10ad3f8d112882276f9e6e5cbddd68f3"}, {0xb8, 0x0, 0x8000, "5727fd6c988269bf1467a265451af21f8d2ee202073fd05b90a46953af23c0ba77d1639ab905fdf38d59c44f5c78bf53bc8435f29a2570551885b4625be823c2e4bc6dcb8036f22889008829125b14dfcca9f4ef5f76cc2529e711d93293e92685d161650f2f8c3ce31fd94f4fd9596a8af9f9ede2a59edf07ad950b4687db046b40186bbd8ca8de39758c2025f8067c3d4da7b404389b9a3d0b58e3d7e3ebd5b02a"}, {0x100, 0x10b, 0x9, "55284019b29d8a3bc0ed8bdd80ec0b4ad6bf0e6d73c79505d1bcfb14e21423df23279afe106101188067c60633fe8197965a818421bd1c90e0666dacc2a5b2fe6c31bd8ae010779001be5f40147ea81899d077e31cc70e9dfee0d4587d7a2dd70cfcc048e80e8320c84f8ab506267d860594866415ee6c6bedf49b7ccc53e05b4235678f7b492f784bccaece7ed63798a57c2b55a433355e5a4c7d81cda8853205e4be3d7729be61372d0e2f58a8586b9202ae1ca1e38889f6ecd81210417bac5ca6e0472006a202cf855df1c6fe880e7610c64a772fe3313dd53e470f786450f069f2174dae210f23571f636a39fd"}], 0x230}}, {{&(0x7f0000000780)=@in={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000c00)="46d353324f74dda78609f8593d84dd8fd185fb727b97cba845b91dad0630a69fb1b8084b5745db73f3ededff3ce3e3a7d2a63345f1115ffb4b694d387812503e2f15bec060602843721ee8ef7488e1cb86c136684e14d925e7546ff3c72c3690344e0dcf645dc3e27d01bbe7ce150d20b3692ab738771e3c97d91c32f71fef64e2d1a47726c1e8ae006a20cbc440268b5abff700fda63714d8e8320d267432b268a995be34744371861664759656e3a1ec2396fa0e9e8685213b4b84e68fc8c64869b67a952bd01c61571984a05b08cd78eb4b8b4ee5", 0xd6}], 0x1, &(0x7f0000000d00)=[{0xe0, 0x11, 0x9, "c4dac039132bd6d3bb7aa1451680a963f2630f9ed715d5f389258318ea3c34f9be252ca28d14eafafea572c106132af32d829e4e37111002f14620297c6ed932917dc21ea6adb0f93518c4bc4f7dea2e946c7d3ee2ef303a94b4401c7f29c8f44bd0fc933bb65219e93408709fb0b588685c24bc722b34756da907ad41b324d3e8925a1c05f998e831a4166231af87845de18e63bdff4f7cd326e767ac4fced1a0c1b89639c2d7865c10a477567593f2a538e17a975cc5fe85cb6e3d9f199676aff8f4b041aa25550600000000"}, {0x1010, 0x10a, 0x8, "955ea66e56f34a148013330de9362ab8efd383644315bd97d6d86037abdda148fceb28b69cf7c18223f361b18c08b7040c7cc9d42ff90052f7dfa4f851a3ff911cb2cf5445d851bc5ef5124cf3b7b97b121b6ff1fc4d76756b82d383d434f09c0175f71ff8d9297c3bf8ae1581893fe62284f568c37e5197e16e2b10befb5f1a443c1cdcb3e8242bd72fb3482c84665e36d2562792ef5cac9bcdb659736e3bf7cd30285fbc883bbf148e5c0e72547ef9f608c447f3a47929d87ecd19a1af0723359f379aeaac62ba768afb784bce8d9fa1e3f74e795a2d58bdafc91d090ff00e4b1316b672cf65d7b69ed665c421d1ee203e90854601d78bb3f2bc5e0367e8776de0b5895518b588205923ef057555f3fda27f5ad781aa828b9f50cae6066921d8de386635e78ce358be8661a2cca965882276827593f7be295a073a9abe15dd783e2e327ec5b734c73b512b0eb51896e80053bc78dcd35f5ae57a33883f3b9f0adbe2b75bb3c70ba03b9f35dbeeb890f80942700a44647761c22f129950376163793221c090432b581b8157e791b6dabc8a529c8517da873b7506c81d1f0e8be14fbd935b8bae82d93e5aca436e6ce16a8e363b89afb5bd5e62c56e1f7446c419208533202535f7ebf7257aca9be51fe8f2efb5851840ce38b56ceba8856342dfbd62395e2be65621b2fa9a199d4aa76064fc4abee36e168c3f0632898093fc2395ab398cf4438bb087db4fb81f6ce1105612599fb8496410a5b7047d683355437976a6423f2dfa515c3f11827c3f2cf95e3b480bac3e02764a63bf431d64052a87a842f1b2321055a009ff2f4a00c003cd453917a2884e75383f0b9a339eaef58f6eaab0c2f053728df2646ab2f72b728e3f25cc184a9de401734b127c36b57c20bfde67cbc7876ac373bb1a505443dd2d4d621ac0e33a0bfc13d2fbe723d38c8cde9875d6d3397d4dc2fa7fd79a21a75140bae0d2011905acc12ffe340b6e5661ad2f15b22cf0b60d7847f75f5b69490f8949b172bd17651708e37529b62a5c04cea39da94418fdebfd986f0fe3991535e4f428bbd78123d70c6e08559517d789c4b8d3faa382a4e94e788707798a05e7dd9ede061d1c0a7da07cfec043a28147f0fd060172c0ef0b1d02d30b07d4383ac8f0006f98eba91a7a4921738b8b3f1014ae177084f5a04caf27e0140b8543bb0dee44c93ee50311fe0c6717c26da1b8569b52cc2ba8a798274480f0269c5074e9462c5a457bf3c357d96ad3d4d00aaaf5750d59fca25c6a621518bbe1bfd8f3a335715f8af0e272fd0e7a302ecd810c5fcb27d2f5ab755c282288137d0cd3df48577448362e1ef8814b39bb76a5fc89089b6ea8dea254a4e19d1db7c5037798d2b77379298db2e52012982ec0bee27b3049daf59e1532e76ff0752b0372b4aea154ba78317f8e03b31bb87e9ac5e8d3c84080d63eb1c07ea24fdc7536ffa60ec54e6888b801e56a576dedcecc93ab8a1bfec413fe09142ff76a18e4e02b9471fd751647d0ab765cf6c688364ee6929a73261ce6c6b99ea3b494e76c1becf03b5bd39186861034a77f39a774102f1beff59ae38854ef6cde60b72cd4f9d2c4b312f6539c313b4e5f9ca5adb3456915c71a2c85595596d832d5da56aaffcd2e46f300224b5b73edbf2aa6327cc00b47803695e8a370e091eb722c587af0319ac746766eaf206ae3b567c25526c1729c4289f81a659ca9bc115cebfd31e6e9343bafd5b4b846c2a3c7eff319546c412437773a833a01945126a13b62ec719eeb2fde4b0abe2faa1246ba6ad799fe90ff9346172b8eb1aecd50fe33f2529f4116298da91381f0435d82aea083e8e38d61533eda0194796e0f5db14fcc483715a234d4cc70822a64211d136d94ce0e3c2f63149a1f5a5fcd9673f566d56bcf631c768f9ce2f468ea91aa11bde97c83f375b4f42ecd34082bf9821f074121fe1617f88ed3a001a45e6c0d5b5f786f767b19b4b118f8c65d20476c626fb0b5887da4deb71a9b1d45feb0527cf64ee1353fdd42f40b70a640fbc09ce70aba3e0204c7556f7b5e268973f28ff8d9441ae891eaf16299439958c8020bf9e8b27bc212e68688b5535fe18f6c13eac7bfd101f19429b1bc2eb15ba22d06dd07affa144435c86ce8990e2be4064e341b6b91baf3ab4afb061dff69a5063a68427e54a6d27047eabb5f61bdcfa74e9b37ee69f89ccb1fc5fc51f12344e73f1fcb5748ec5b25330bb1542b222c542f6f497d8d071991d37eaec20f985d4b900d89989841c2ebd1b7cf1250daedd14a8fade57031b836e5b70f7320a5296933faee32207c29013a035cb68536ed9551ef0dd60db4a9a032f653e69f0ab98e64787344599a0aed172ac760c871d37c3e32eaa6fe9c1a171705d40162d7e4a165e6636269cd257a38168691f7b675a240d68e7ecb6d1df3bcef5303b215f652534725ad3eecac45fde8b53574d5a7279fb0a79cf7e5d8da00b20d0fa8f5bac241ee4072bf9f30378829d3088a24486157ad0f8470065cc56b5d548c09eebcd0787a8d965bc255bbf2c169b63d694d5a6efcbd693fc64214f9400421fb0a79e0043a9969d5522cd87af57ab497b4c70cd7333820c48a11929c6e8fec55bf7352f56ad236ef2cf3496f1e886cf1b9aaa406fbe4229728405531e8e35dc4ffa83ecf7d810084b247e2c48eca91636303ab17d47dd615addd7d3f1404f12ff4454a47a0bc560d2357de75ff67d511032cd6a2d10c425296ca6e01b14922c096074771a408567661b891a6b4e7c8694c698fb323d0e0e65c43da6e66e4bb9a23b0f7c24817b07de1851582909054a8118203aeb3c09524b90660f616e17b93951d13890f615c24748ab7921b4d2b55a7a60d3e383c22a7fe7d732c939a794885e4e54962674d8674cdb135e6bb7b157de04cc852bea87eecad461d8b05030e056c585457af392c52adc89caf9464028b778dcbcbf96b6bc6e6558937232b103ae1cee9dee2333409bfd9ff85079d173ac6c28711d563f0e3d73d44763c88d597c0e50c497939c86a988840ed48441b94a6f6da076ceaf8207d67a7c0e0bcb4a84b42cbe32cc6c371d31188f1682f145c4874ba911e495d27b42b5c23c1766e6e4fbde32b6aa48314819c25d1c49afdae6752d61f8979872e989d48b627076d93b59c89a155f15c105e7dddcb1d69f287b901e7d01e24642782b80cd5772f5e61a0e77b21f719302fa61e8bbe76a9ed67125b4673b55ff83f8ca1bc661daf023a480cf4a29aa5efcd79b689b3259230be2824bbd8e133bba3688aa088ea6e910bd03494ee00fc952a32aa2fd3c17ad8b62c0c09fcf4a61f052cae7aaabf3d59bd4db87b0b3db90b9bfe6e7f5c3fad4f589c397bf863523a90ce2b375411118cd40a3f3c15a73126459ecaffad2c79f123f22ee2cab3b9ff0b7e92c9450e444f9475aa317471413d25f9f85c217578707cb422750403f051d403707f17ddbeef88af3ede8cc80d765070244ae590b32f191356b8c84e02cdc36ab385082f8999a5ec37d0581f0e2bce115c2c13478a6b703ecc7107786b9f3a8d9e92e2bd4d5e37d201a1a4262b48bc05f8b773ab88338b3742b8886449affa9da8cfd4e03640f4ae83004ec92cc1b1d03355a32e87fc6bc9fc2fc583810233a8e81d6d6ec0b6e1b5eb6cd3885e1541b9ea1a30dc9280140f7ee7548324b69c8b28c0104f550ff6c9b61b6a58181ba9bcbecac8d515e400ca8cf1b82de5b8880e2a021ad68733343ee59be346e9c707420412f3d0268f6c21d392fbbd251ed38cbc5505b13b7f5e7b47869104e00badd31b425da911cfc72140762adfdc08247a822f804c85b2524a9d00583738f911ad03f586b5f5f8b64b3650b4f0b9f14d8eb59a866d664beffe1f9f3201176c664caba0ce4d4a1d409cc73f3c43172fa936b81d0dcffc32b6b30ab09dcd3bdc724b168ffb11d2a9a7ac8c92bfed8453fde7621b79ea19f782481b6e232de75e3197c379946fdee4a84785a38ac7505a594f19e97dab9b1ab108529d85b6df9160b086b33ad760476fe29dbb8bf8ed8598f9c6bf91603bf320fb8ba0de6eb3545dba16e636ba3cbc21510f2ad1ca5158a84b7924e777d84f2d0cbe2e8b5d1db3313e98dd28ac07465c59fabd7d17028d2f92e28cfc6161325fa1b5c192f8524f507ebc90177f8af1ac6a85437a3824e6375b4dc6029b02ce1d809c4cb4e4eb780693fadf6e2e9cdd4e8bc69664ab71c9c83ce457069841ca03f5874cf7e516ff90188e63c7005f893d1ee0ea52eb0122ebf815f0af129dde92ebcd3bb07e813c28a192da92854078e6d8290eb38e1f0fe0e3ca2e6dba015b59e58b195bcd64d5c4213147ac2c1a320ad800e3bd25faabc9e41ccba81d0984d1df17dec298f31f6cb67c2d3108160c587e7a5916f056191efe43687188359819708441e2b640a98b90b0396b1a93c62b63b41304271eaef1068aebc76dfa316aa5515ef3fd8b0228dba11c526e744418293c83b10d60505c1a5b054ce862e8fb47c5cd45db2c434719ad13698fe27541de880a45b7afefdb793ecce06c8e80ba6286f09b9354cea2f625159b187f0398a971547a9a9d7387309614b6f661d01c3327a9dc4d72790bcc4fd7272d27aeebd68883091d03ea8c4c6e9314027fbe0584a572ef32f6aef6073b7299c0e265ffd362f81b8d87a5b7abd11227173892c384d98146ec8830bde3d851e362b3b7a690353f0914beb16379bcb7b512770a312a7833e5d59260f77485ea19f23b4920981f5421dac89c5524d489fc2d3accbf632e172752cdc865358e3f7a4332dc44a603442f660a3d90eeac29248511160e47d2d740ec864f45b47f1e5aa652a278f048db254458e55241c51ec7ee88264c6bc7c13a919ec001e2cd96ddad30d2cb990350c53261c53c0dd93f74a4820271cd7f6678f80b0da9f16075861d29b0d1ca8c57baedebfc191c1a0c8d7367ad0f57d8fdb2984dceb21f0ebec1bd3cbe2916f1a4c0dedba10cee594c39895f874fa1971a7c5c6d546848dd85129ef32b288ac720aa14182e0a43cd3d0d9c8e00e59c2017dd06058d38b28a3f40c3f5871d891a3d2cb8b6506ca23bdfe9242db6ad2edc2d2520134ecaf1dc83b7149bb4291115ca1ee6f87d590c6434fdb7d1ce35eed4d0d2a317f13de8ff660f3da621a5e971e2a64662adac2f63fbf97b9f8bc2cfc05e11933bce5fc23658563eb71cef0f2b8ffd3b974f346280283c632a238290ce0b741964c49cce6ef626defbe1a5c7c5deb290abbdbf454a3f1e12454a4250dbe50705dced56ed474459076bae6525e0838e97a7fc1333dd27e3804e93552328805546f014d8bb386d7b01b780d64cdb8a0a13e8a9e80d255ba723a63806efe33680ed2222bbb902c2db1bffa166d7acdcd22c4b48cda714bdf2a11ead8eae7a63b3fee2bb252f5968558d9f27a956f19ab17a7a8dbecec64036a29411bb4533f78b9f32c21dbc7a620c11d2188c35b2e64a290aa09b3885f08537d3a139ce8305fd1595ee84947ffef4e01cd1a297e7ef5d5a48cf9c0efa267e48cf69a67e6ab8cf2e761f918481465eac33451bf80fc973d0459f471c79eb6bcd48e946674210658f9b8fc3b94c9a1b78ad4bbca1e4f0e53cb5bae970576b2461abbb44d3dfec30805910f24d84c58350ef8af046940a4c12436cdc03166bc96b1d7af538fd217014e6ecb1925238cd3522c7849eff4ec4ad2c42569eda005c032804ec9e0e151ba8d3ea8cb6a30208d8f672d20940a969e2b35e3094"}, {0x38, 0x3a, 0x4, "d5de39f5392d1c9bda1b51f0771a0635519ffbfcd73f3ce6dcbd3baf7e8253a432ff492cac"}, {0xe8, 0x1, 0x5, "66403eb07608b3ec6c9921ba24502e43b77d73e878be978e7962fb2b00ee2e1916449f3252d28d9a83e0016dc2aec4f663e78181264e3bea73cfedf3c0bc9770857ee3c2cc636a6a8b63e173f72534ea871f0f91239f3100068271fa5c3261f65e0df59c28ed4a51ec46e2399071b793fd2ef3a2e8d766a9ca8350a4b6b68533932e054055497d4122dbb159b0a5a69e88e0a22e125b6caa81870d8920c8fb5c08631a4f31bb8e9bf858a45852a973672972c810c49500de58e4cdccb17cc1a6c765932fd7f6c1154e2239c2adef48af45d0094b77"}], 0x1210}}, {{&(0x7f0000001f40)=@x25, 0x80, &(0x7f00000031c0), 0x0, &(0x7f0000003240)=ANY=[@ANYBLOB="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"/1320], 0x528}}], 0x4, 0x40880)
preadv(r4, &(0x7f0000000840)=[{&(0x7f0000000600)=""/64, 0x40}, {&(0x7f0000000640)=""/95, 0x5f}, {&(0x7f0000001fc0)=""/103, 0x67}, {&(0x7f0000002040)=""/216, 0xd8}], 0x4, 0x7, 0x7)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r2, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000940)={&(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="c7822dbd7000fcdbdf25050000000800030026"], 0x1c}, 0x1, 0x0, 0x0, 0x24010800}, 0x10)

2m9.475933891s ago: executing program 2 (id=1271):
r0 = add_key(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$invalidate(0x15, r0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
syz_open_dev$I2C(&(0x7f00000000c0), 0x0, 0x0)
fsopen(&(0x7f00000001c0)='udf\x00', 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_open_dev$sndctrl(0x0, 0x1, 0x6c40)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0xfffffffffffffd83, 0xfa00, {0x0, 0x0}}, 0xfdbc)
ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(0xffffffffffffffff, 0xc0884113, 0x0)
ioctl$TIOCSERGETLSR(0xffffffffffffffff, 0x5417, &(0x7f0000000200))
r2 = syz_open_dev$radio(&(0x7f00000003c0), 0x2, 0x2)
read(r2, &(0x7f0000001e80)=""/96, 0x60)
socket$inet6_sctp(0xa, 0x1, 0x84)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x86)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000080)='./file1\x00')
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r3, 0xffffffff80000800, 0x0, &(0x7f00000000c0)={0x3, 0xc, 0xfeff, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xfeff})
syz_clone(0x60000, &(0x7f0000000400)="ffab0edec8fdd30e604325051fa8b560074dfff5c0f952914e1abb082dd9d096b082f599349369ae7a96578385e3773a731353c6c02091bdf19d20574830e83e557733a6ab46b2e5565e2e3e2bc774121efb015ee6fd4c90b25152d43a68f8d16408e7bad9cb547021b61aab8e8c953b82f6bcbafcc08bc69d4bff20e2b3830d416f9ee199fe8433b7226ee49eae525787bb45af995da37bf86c25908b9c5eccac2c778012c0cb51b4dc02b1b2bbc9f90fce1497a03da2acaf99d5bad0717c", 0xbf, &(0x7f0000000280), &(0x7f0000000380), &(0x7f0000000540)="be352f4d727f280b580f720c8354debb3dc8b5e68c9a37dbc1d0e06361fa97b783325f0eb618c098c90f8bc14b4de0b18ad9abb1f49b30dd5425fe49eb900451ee66961dc53bb280b5cb19140ed5ea0d8cf88b7736c42393e4f8b7073d13f78e0fca09ce969152635877fd58993e4bc4e460f51bc36852e0c99d2077c77e039985e727ac3460a6b701fe9758292af63bb5c8b9d31fa4fc0660c6f3fe279d9a0c15f57064e0935345f33077065a2ed3818c12be8815b388c49ce42f64d56e634f0ad7e297e216d2dd750c772a63ef1b73422d5406a1cb0213a8ef4ff98da36013")
mkdir(0x0, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x8)
chdir(&(0x7f0000000140)='./bus\x00')
r4 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
fallocate(r4, 0x0, 0x0, 0x400)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

2m8.706100731s ago: executing program 2 (id=1276):
r0 = socket$igmp(0x2, 0x3, 0x2)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f00000000c0)={'batadv_slave_1\x00'})
socket$inet6_udp(0xa, 0x2, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040))
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000007500)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x48}}], 0x1, 0x68034)
socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x3c, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x10290}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x2, 0x0, 0x1, {0xc, 0x1, 0x0, 0x1, [{0x8, 0x1d, 0x0, 0x0, 0x6}]}}]}, @IFLA_GROUP={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x1}, 0x0)
r7 = socket$qrtr(0x2a, 0x2, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r7, 0x8914, &(0x7f0000000140)={'virt_wifi0\x00', 0x1})
ioctl$SNDRV_TIMER_IOCTL_SELECT(r5, 0x40345410, &(0x7f0000000000)={{0x3}})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001740)={&(0x7f0000001600)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x4, [@struct={0x0, 0x0, 0x0, 0x4, 0x0, 0x43000000}, @union={0x0, 0x1, 0x0, 0x5, 0x0, 0x0, [{0x2, 0x1}]}]}, {0x0, [0x0, 0x2e]}}, 0x0, 0x40, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
ioctl$SNDRV_TIMER_IOCTL_STATUS64(r5, 0x80e85411, &(0x7f00000022c0))
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e00000018000280140003"], 0x50}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r8 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r8, &(0x7f0000019680)=""/102392, 0x18ff8)

2m4.500713186s ago: executing program 2 (id=1285):
r0 = syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00')
writev(r0, &(0x7f0000000100)=[{&(0x7f00000004c0)='4', 0x1}], 0x1)

2m4.268698399s ago: executing program 32 (id=1285):
r0 = syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00')
writev(r0, &(0x7f0000000100)=[{&(0x7f00000004c0)='4', 0x1}], 0x1)

25.402025296s ago: executing program 5 (id=1575):
setreuid(0xee01, 0x0)
prlimit64(0x0, 0xd, &(0x7f0000000100)={0x4000000004003, 0xffffffffffffffff}, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000026c0)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd1200000000000085000000d0000000b70000000000000095000000000000003fba6a7d36d9b18ed812a2e2c49e8020a6f4e0e4a9446ca2b5f1cc1a100a9af698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f010c5077da80fb982c1e9400c603146cea484a415b76966118b64f751a0f241b072e90080008002d75593a280000c93e64c227c95aa0b784625704f07a72c2918451ebdcf4cef7f9606056fe5c34665c0af9360a1f7a5e6b607130c89f18c0c1089d8b85880000c29c48b45ef4adf634be763288d01aa27ae8b09e13e79ab20b0b8ed8fb7a68af2ad0000000000000006f803c6468082089b302d7bff8f06f7f918d65eae391cb41336023cdcedb5e0125ebbccbddcf10cb2364149215108355ee570f8078be5cab389cd65e7133719acd97cfa107d40224edc5465a932b77e74e712a0d42bc6099ad23000000803a90bce6dc3a13871765df961c2ed3b1006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f40cab87b1586602d985430cea0162ab3fcf4591c926abfb076719237c8d0e60b0eea24492a660583eecdbf5bcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9f081d6a08000000ea2b1a52496dfcaf99431412fd13f4cec49669e443dcb924cfe5f3185418d60532be9c4d2ec7c32f2095e63c8cdc28f74d043ef8dba2f23b01a9ae44cf945b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142bdda5e6c5d50b83bae616b5054d1e7c13b1355d6f4a8245eaa4997da9c77af40000000000000005f58351d599e9b61e8caab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a41326eea31ae4e0f75057df3c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57010000009700ce0b4b8bc22941330000000000000000000300000000000000000000000010008bc0d955f2a83366b99711e6e8861c46495ba585a4b2d02edc3e28dd279a896249ed85b9806f0b6c4a000000002b43dcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffff7f00000000df73be83bb7d5ad883ef07000000000000006da21b40216e14ba2d6af8656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff72943327d830689da6b53ffffffff631c7771429d1200000033ed846197fcff5e1c7c3d1d6e3a52872baef9753fffffffffffffe09fec2271fe010cd7bb2366fde4a59429738fcc917a57f94f6c453cea623cc5ee0c2a5ff870ce5dfd3467decb05cfd9fcd41df54cdbd9d10a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce978275d5bc8955778567bc79e13b78249788f11f708008b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe7d7fa29822aea68a660e717a04becff0f719107000000000000002d7e927123d8ecbbc55bf404571be54c72d978cf2804107f0238abccd32368e57040906df0042e19000000000000002c06f815312e086dd022c074eb8a322fb0bf47c0a8d154b405a07feaf3dd95f6ef44cd1fe582786105c7df8be4877084d4173731efe895efc71f665c4d75cf2458e35d2c9062ece84c99e061887a20639b41c8c12ee86c50804042b3eac1f879b136345cf67ca3fb2b5e518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad055e4af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457ac0eaaa99bf0bdc14ae358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df9b3fdf242b985bf16b99c9cc0ad1857036f1a985f369191ae954febb3df464bfe0f773ee9afe72f32a2befb89d3777399f5874c553a2ebe9061fe86e669642e09c0e5a3bb6d163118e4cbe024fd452277c3887d6116c6cc9d8046c216c1f8a9778cb26e22a2a998de5eaeadea10d3cfb41b92ecbb422a40da8daccf080842a486721737390cbf3a74cb2003efb9a101b51ab63e9600040000b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde6e4a4304e50c349f4f9ecee27defd83871c5191e10096e7e60fc3541a2c905a1a95e9571bf38aebd15172f94e3245c582909e2a3bce109b6000000000000000000d6d5210d7560eb92d6a97a27602b81f7636df1535bef1497f90100000000000000abf9010000007740890200d627e87306703be8672dc84eeadba6a41891c170d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e7a45319f18101288a0268893373750d10a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7ef8c08acaf30235b920500d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69b93e9960ff5f74562adae283d9756237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff85000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a31c72ad53bc19faa5401120000793ac48c1b539c75ab40743b00020000a1f68df75cf43f8ecc8d3726602111b40e761fd210a1920382f14d12ca3c3431ee97471c781d0d1280fb00818654a53b6df4b2c97cc1c98d85fda8f80fe908b65550b4412331d73062197655b7f0469250a5989cef0e10773920ed3ccee42d2c3eb80159da5c002511e6eb93842054cfce2ac306cb6e472db3fd67a49b6855a694a8d359add43907003223a47a7fae4f3748d5a432825bc40a03aaef1c8488d86dc211dd2a3ba71e0f45492ef1f8b65ccb3dcd251a61b152d02c29ca0a3328fa7753a5cddea1acaae55ae8263fb284b7a6ab2a8826c1b948207c498cf4824ab1ea3225a53072423b907c6682f8999e0311da5b8378bc841e1787e3a8128dda381a26cb2b365702ff8a27831375b2ddaa2f56e21169f7ca4fd9655ccd4a584acd244e965a0afedaff7c415ff682a4044b3381cc2df28278c9a6824c52048a7cfabda294925cc0956bffa8e950ff5e49f41ae600d830207bf728cd9807933c3c16d80bbea611a18becc2dc38ca0a6f5740f340b76edcd100fcffff007231dcef58c7b88b5aeedaf9626cb51ce1737c10ab37d4f98a934b0f900e0eb639878a1200629f5503cf679154d27681d7a3744cbcd42af59407c9c8e39c5271868917954e604352ba26171d004f1cb2976fab3fa19c7d3ef9678bff79f5155524f061378f94fb453786c3a6f78b10d383b49e31d1568bd43ee34ce6e6be235aa6207285665c2fba773671da41959f51610963b48930658e2d6125a26085001345b0473240b7e5e91811312c43663e76f711c6529ecdec75c7ea1cf0f8f8fff40247d59bbde2ebb8659197e0f37a71be1b12a182ed7de3acba28561a04b807f7a4647e2ea6d8fb92541d07c3d5e4ba077d3cad9f8ba1919592014c00c8eccb2ca5d48ba7b1c3fb185a4bb79700cf51f818b0c701c8de47d12281a67bdaf4b0c50bee9e8f5936250df2e15c1172e7ea6619f7db330700d1e9e42a035e6fd532f61fbfed9c4a7124a1e38eee50a6bbcd1d4e3f68c3f27dd9a70f1a7c6046237ddfb0b26e197322226367d998010458cd4df10af249ce717f6f45e5176e0ddae3054d7289d4e13ab0912703ee39ce264572b89194fdf7acecc35cf8309d4b680a08eed367dad855fce210f1a7c7222dd360eafb4bef7d58bf83362930af6e3f3f851abdc0003bdf9401b533019e90feb069189100007a82df8d9b5f44ebf9355e7b1b01c9470608d4f306d21004730396a4d6c6d46e1ffac97aa93c36123532a36186575266be4981c847160079421d0137801e553069f8d025c40f287378810defc7f2ed4e15f6af17b21153394f8bcfa6a23a77c8d61c9bbc127a57b8d631f36558d9093dee08bc53d97a8003363421738650a22c8fd87b13026799caf58e59951b125e7f161ca34e2c0dd65a23d01a3cb191e743de07247c7f993cf01166fa2ac1ba02f60550e63a7f50422e478c6b5d87f9bd0567a279a9d85a380db25c43bd0529ad783b9d64aaac1b793afb44b7126e17d2b7c0d6be650de7eeef3f3605af344015d03c3e7819145cb9fe1978c98bf9cf10773db59505ae33708c728844c872dfd2cb0b29008000000000000005ca18cb72f0944d0e4fea0a0abd0285bdaf1b000000c089d640c2facb0d1e6243873ac4b1e1068c45c715b68effb7d58d1f9e726dbf6bd910ca4ce0e075658ede42192cf393a50dcc197b03402fed75083628e5dd38213d353b9049e71f037064b05e73ec00c710f1ffc5737d397d555d1cf8859cc030ea8dc3c6a5b3b6fa1c81707479db1833d593a271253aa11efd936b74784f2fc286814848e92d8ee541bc179813297a0a4cc3c8f80c28701185bea091f32475e859479b734727afc110e1abcff460172fd1b42e3c0e2a4bf94a060069000010000087c7572a1e7596f89e5c3d5e70640c90815f77b7b13d0000000085a1e1e84900000000000000000000000000b422fc160a458ee5a91a2471e6e56fdabec6c73ce8983fc68f0b7cdcdde632e6f54a07620e8aa116ce9e84fc3cd5e8288a333dcebb233da9186796995ba69487d8f77d2f8800f02d690fc70a08b231cad1bdcf3740a95d4dd1cfe0f417f275493cf33b19ffff93dfdaf7eb00b8ad87cdf7c21bab5af8e2bac54ee5597e6508c1158124a538c36f9bb11fea7d8b8c7e954b1bc7811654a6636b33f271d0923e9ecd1b724b8feffadfc23c07000000f0785fb722f346d6a5dffe1884d4d0cd8f00000092c85ed44db68ab800001f00000000406e6ed9b219ad07125381087298e75965d1cc5932ddf9e66351b9332a34bee3e3d562c914c629933f0b8724cf680889ade72558d191d9890c69a718f9018586c5131c8dc8e0379bafda1a0fd2997ff115215ce23dca8db7236c1554cdaaadcce2f31834c1bd1908d8e1b361034db56be76acb7654a195bc3e98df3a5dffd5b0783883ef7da3433110e37f7c7cb7f3800de7f99abf910d6949e062747a9c87dcfcc716d6a9c0ec53b9cffe3cfd1df69a76f373d7f997edb9b80bdea1a99c2a6fbb25e035deadaadd7917ebfedd6304a19491769476208684e343f86b4d55a7dbbb07283cb1e35a138d24ebc5b4f8e35a82d3a7f84cb1e02a5a92b53567088be0b1ca023ccd518c0e0715b1c8760801a419ebd2e26440ff7493019bdb655cc88d72d6d7b6bca5a2e19b63ec52fce43d8c53a8031e64026e0d36b6401064c49a729f11ab377f7132c5232bb80195dd5d43d29646a9378eea0761b7ed9d2172e33ed87c7413c843b180cc00000000006bedf2ed716ca43a941119b96d82b26d9061de240d85ec2cfa462bd52104489bb7a7548d7cc53627031e909c69cb824233975a1ea645de63522407c3a240a37e946f30ebf075ea97846a0a8d2286f3f446b1b99ab83a12ddf8a1c06294eadc3eb3e339591afd5c00000000000000000000000000000000000000000000000000579dad8347a3d16976bb7483840b32db0158fb6c809349333325a7866ca5d3133e33ef1a183cefdb65a79fa71800988c8445029e024822dbcfcab49c3a0aec9bd43e6e14078b260700d849a2aa14c9b593f6dcb1de334c065ecfd65031606e55949c185bcda9fde4f9b46a76b8a24bbcd31b22373eb0473248150cd179405ee1af1183b0c0ce3483dc1d9bf732b0751b78fb211d6706b55960c6431afbc02b3c7e08086573939290bb9e590a3875f02a828b07f1dc7df9c8e5da22dfb9dacbf5529e4e994128d835f85465173ea7bbcc519a0c9798ce8b1b07567e3e07169c8c3e4da8bf725c050000000000000000000000000000000000000000004775abdf0c62728eb55a9e2849a1ce05bed60dfe4cc9fa43f9684297c02382c0a35829be7a86305792a9d2e80ca9e8fc50f31f6e0fa810303da03d8b74b42c1ebaf16bb343256405a3a07229a54de09a97b269cd29e8b2f0b0d46c51a6a93eec37f4bc6e29a8e19120ae050ab682662e9b2cc3263a4aba62b63ca9123a53c0f4bf3c4463b8144c89bf058a0af0ae9fc2b7cdfc4817703e267cddc193637d7fd97646090da37093657643daae3840c7f5c10f93524f7ae4791ec6e9d9722e5f670ccb358e051a"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000003880)=ANY=[@ANYBLOB="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"/4545], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000001680)={@cgroup=r1, r0, 0x2f, 0x0, 0x0, @void, @value}, 0x20)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000300)={0x0, <r2=>0x0}, 0x8)
bpf$BPF_PROG_DETACH(0x9, &(0x7f00000001c0)={@cgroup=r0, r1, 0x2f, 0x2020, 0x4, @void, @void, @value=r2}, 0x20)
madvise(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x15)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000040)=ANY=[@ANYRESOCT, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f00000003c0)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r7 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r7, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r8=>0x0})
ioctl$IOMMU_IOAS_IOVA_RANGES(r6, 0x3b84, &(0x7f0000002200)={0x20, r8, 0x0, 0x0, &(0x7f0000000140)})
ioctl$IOMMU_IOAS_ALLOW_IOVAS(r7, 0x3b82, &(0x7f0000000180)={0x18, r8, 0x2, 0x0, &(0x7f00000001c0)=[{0x0, 0x1ffffffffffe}, {0x2, 0x6}]})
ioctl$IOMMU_IOAS_MAP(r7, 0x3b85, &(0x7f0000000200)={0x28, 0x7, r8, 0x0, &(0x7f0000000240)='LLLLLLLLLLLLLLLLLLLLLLLLL', 0x19, 0x1c})
ioctl$IOMMU_IOAS_MAP(r7, 0x3b85, &(0x7f00000002c0)={0x28, 0x7, r8, 0x0, &(0x7f0000000300)='LLLLLLLLLLLLLLLLLLLLL', 0x15, 0x2})
ioctl$IOMMU_IOAS_UNMAP(r7, 0x3b86, 0x0)
ioctl$IOMMU_IOAS_MAP(r7, 0x3b85, &(0x7f0000000440)={0x28, 0x7, r8, 0x0, &(0x7f0000000480), 0x0, 0x2})
ioctl$IOMMU_IOAS_COPY(r7, 0x3b83, &(0x7f00000004c0)={0x28, 0x7, 0x0, r8, 0x1c, 0x3, 0x2})
setpriority(0x0, 0x0, 0xfffffffffffffffb)

24.495468182s ago: executing program 5 (id=1578):
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_ifreq(r1, 0x8936, 0x0)
r2 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x7813, 0x3, 0x0, 0x81, 0x1ff, 0x1, 0x1}, 0x1c)
recvmmsg$unix(r2, &(0x7f0000003100)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000480)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
sendmmsg(r2, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)
socketpair$unix(0x1, 0x27fe560a4489c39e, 0x0, &(0x7f0000000340)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
socketpair$unix(0x1, 0x3, 0x0, 0x0)
sendmmsg$unix(r3, 0x0, 0x0, 0x0)
syz_open_dev$vim2m(0x0, 0x53a0, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000100)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
write$binfmt_misc(0xffffffffffffffff, &(0x7f00000002c0), 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r6 = ioctl$TIOCGPTPEER(r5, 0x5414, 0x20200005)
ioctl$TCGETS2(r6, 0x802c542a, &(0x7f0000000100))
r7 = add_key$user(&(0x7f0000000200), &(0x7f0000000300)={'syz', 0x3}, &(0x7f0000000000)='/', 0x1, 0xfffffffffffffffe)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.swap.current\x00', 0x275a, 0x0)
unshare(0x400)
cachestat(r8, &(0x7f0000000040), 0x0, 0x2000000)
keyctl$dh_compute(0x17, &(0x7f0000000040)={r7}, &(0x7f0000000480)=""/250, 0xfa, &(0x7f00000001c0)={&(0x7f0000000080)={'poly1305-generic\x00'}})
bind$inet6(r0, &(0x7f0000000080)={0xa, 0xe22, 0x0, @remote, 0x1}, 0x1c)

22.973041477s ago: executing program 5 (id=1581):
r0 = syz_open_dev$sndpcmp(&(0x7f0000000340), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_PARAMS(r0, 0xc2604110, &(0x7f0000000600)={0x0, [[0x9, 0x0, 0x0, 0x9], [0x1000], [0x2]], '\x00', [{}, {}, {}, {}, {}, {}, {}, {0x0, 0xfffffffc}], '\x00', 0x0, 0x0, 0x0, 0x2})
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f00000000c0))
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0x3)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGPROP(r3, 0x40047438, &(0x7f0000000180)=""/246)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, 0xffffffffffffffff)
ioctl$PPPIOCSFLAGS1(r3, 0x4004743a, &(0x7f0000000300))
read$FUSE(r1, 0x0, 0x0)
ioctl$F2FS_IOC_START_ATOMIC_WRITE(r2, 0xf501, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$F2FS_IOC_MOVE_RANGE(r4, 0x541b, &(0x7f0000000040)={<r5=>0xffffffffffffffff, 0x2, 0x9, 0x100})
r6 = socket$kcm(0x10, 0x3, 0x10)
ioctl$NS_GET_PARENT(r6, 0xb702, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
lsetxattr$trusted_overlay_opaque(&(0x7f0000000100)='\x00', &(0x7f0000000380), &(0x7f00000003c0), 0x2, 0x2)
mount$tmpfs(0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000640)=ANY=[@ANYBLOB='mpol=bind:0-N:3/7'])
r7 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r7, 0x4601, &(0x7f0000000040)={0x320, 0x258, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, {}, {0x0, 0xff0000}, {0xef}, {0x0, 0x1, 0x401}, 0x2, 0x2, 0x0, 0x4, 0x0, 0xfffffffc, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3})
sendmsg$kcm(r6, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x35}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0)
r8 = open(&(0x7f0000000400)='./file0\x00', 0x0, 0x0)
r9 = openat$cgroup_subtree(r8, &(0x7f00000001c0), 0x2, 0x0)
write$cgroup_subtree(r9, &(0x7f0000000080)={[{0x2b, 'cpuset'}]}, 0x8)
write$cgroup_subtree(r9, &(0x7f00000000c0)={[{0x2d, 'cpuset'}]}, 0x8)
close_range(r5, 0xffffffffffffffff, 0x0)

22.655043994s ago: executing program 5 (id=1582):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r0, 0x25, &(0x7f0000000180)={0x0, 0x0, 0xffffffffffffff7f})
r1 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000008100850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000400)={&(0x7f0000000280)="14467e7ae487b529f4a45b96d8c46a4f90ddd60dd0ce95e71278a8b3387da84295507a84ea1a69cbe6b904118858b2c18fa1bc469787e47aa88745958597b7256d05944e2a40ac39c9d7eecf4e5d83c796", &(0x7f0000000300)=""/213, &(0x7f00000004c0)="07a59166528a090733928e5ac19c8d8755f59f165a58c1623c60c8fcbbea5d13b901c2ca1ac65c7684b3d42576042637bd2ee3e58659b0d560981ee198244ffdbe37493e435802df87c86bc993487a9ede56e39c117078433611581bee2571193087dbf5edcf0fcb74e6ab7b7ee33de043e5b5d299c72f243857ce97193cd2f88787f4c2", &(0x7f0000000580)="d75c87d445b036ece4890975604d8423c706817c59a1005c732daec8b670a10db964f847c53edcc540646d5c288e9ab9485016f7da4e01eafedfc38bbde76cc7fbba47cdc2fc86808d20c28d105dbd1d7177107d3fcf92ba8f1bb0b02ee36d2ee67c4503b699fdfa2cf77835e69a8f65996f580a49cddc2f2cd2f500f80d83ccac33dc8636165d60a5cbd6f12266d9a62a2bba92e5cb236ba329449e41902dfc623805f62837364747804dd8ed05c5192e668ff687fffb31da3303e7129b25b6470e076b49298d8a8b31ec6c1d1c5b", 0x4, r2}, 0x38)
r4 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000b0a67ce86415f8416b9cdc570e0cf55d69b77014636a383c7f84a108fe5472c7b85cb9f4fe51ec42b36413e461ab64eef8cc55a6d6b891a60b96512ec5940978671e24f0d030ac9534c944cc41ec0d8e438ca386432bc9cb08c8f26d2603dd1315aaa5895c5516479ca1d6cacb573f40b4d276a2675b9178d44b3d83cb3d536c5727ce2249239fd33572a65189546846ef4922f716", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000080000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = socket(0x8, 0x4, 0x0)
setsockopt$packet_tx_ring(r5, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
r6 = socket(0x1e, 0x4, 0x0)
r7 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r7, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r6, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r6, &(0x7f0000000d00)=[{{0xfffffffffffffffe, 0x0, &(0x7f0000000e40)=[{&(0x7f0000000400)="d4", 0x1}], 0x1}}], 0x1, 0x0)
r8 = dup3(r7, r6, 0x0)
recvmmsg$unix(r8, &(0x7f0000000300)=[{{0x0, 0x0, &(0x7f0000002940)=[{&(0x7f000000bc00)=""/91, 0x5b}], 0x1}}], 0x1, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r2}, &(0x7f0000000040), &(0x7f0000000180)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
socketpair$tipc(0x2, 0x0, 0x0, &(0x7f0000000000))
r9 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r9, 0x10e, 0x7, &(0x7f0000000040)={0x4, 0x5, 0x5, 0x40}, 0x10)
r10 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r10, 0x89f1, &(0x7f0000000040)={'ip6_vti0\x00', &(0x7f0000000140)={'syztnl1\x00', 0x0, 0x29, 0x7, 0x3, 0x4, 0x19, @loopback, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x700, 0x40, 0x6, 0xc0000000}})
sendmsg$GTP_CMD_GETPDP(r9, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16, @ANYBLOB="000129bd7000fcdbdf250200000008000100", @ANYRES32=0x0, @ANYBLOB="0080ddffab1414aa0c00039583642778c954bcd36639020000000000"], 0x38}}, 0x8000)
sendmsg$GTP_CMD_GETPDP(r3, &(0x7f0000000740)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000780)={&(0x7f00000006c0)={0x2c, 0x0, 0x100, 0x70bd29, 0x25dfdbf9, {}, [@GTPA_VERSION={0x8, 0x2, 0x1}, @GTPA_O_TEI={0x8}, @GTPA_LINK={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40040}, 0x40001)
ioctl$SIOCAX25GETINFOOLD(r1, 0x5411, &(0x7f0000000100))
syz_usb_connect$uac1(0x0, 0xa1, &(0x7f0000001c80)=ANY=[@ANYBLOB="12010000000000086b1d010140000102030109028f0003010000000904000000010100000a24010000090201020924030004030000000904010000010200000904010101010200001024020200000000003a0e6b46ad3bf90724010000030009050109000403000007250100000000090402000001020000090402010101029d9d0724010702000009240201000400016d0905820920000600000725"], 0x0)
r11 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_group_source_req(r11, 0x0, 0x2c, &(0x7f00000004c0)={0xe, {{0x2, 0x4e23, @rand_addr=0x64010100}}, {{0x2, 0x4e21, @rand_addr=0x64010100}}}, 0x108)

19.623107462s ago: executing program 5 (id=1592):
r0 = io_uring_setup(0x51f2, &(0x7f0000000540)={0x0, 0xf4de, 0x800, 0x0, 0x88})
r1 = syz_usb_connect(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x75, 0x1c, 0x1, 0x10, 0xfe6, 0x9800, 0xd19a, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x29, 0x2, 0x2, 0xb4, 0x8c, 0xbb, 0x0, [], [{{0x9, 0x5, 0x4, 0x2, 0x10, 0x0, 0xfa}}, {{0x9, 0x5, 0x82, 0x2, 0x40}}]}}]}}]}}, 0x0)
syz_usb_control_io$printer(r1, 0x0, 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r1, 0x0, &(0x7f00000003c0)={0x1c, &(0x7f00000002c0)={0x0, 0x1, 0x6, "cc17fc47a9ae"}, 0x0, 0x0})
syz_usb_control_io(r1, 0x0, &(0x7f00000007c0)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000680)={0x40, 0x19, 0x2, "5cc3"}, 0x0, 0x0, 0x0, 0x0})
io_uring_register$IORING_REGISTER_BUFFERS2(r0, 0xf, &(0x7f0000000400)={0x2, 0x0, 0x0, &(0x7f0000000380)=[{&(0x7f00000000c0)=""/121, 0x79}, {&(0x7f0000000140)=""/31, 0x1f}], &(0x7f00000005c0)}, 0x20)

15.573573588s ago: executing program 5 (id=1610):
r0 = syz_open_dev$mouse(&(0x7f00000000c0), 0xfffdffffffffffff, 0x14a080)
openat$rtc(0xffffffffffffff9c, 0x0, 0x200000, 0x0)
ioctl$SNDCTL_SEQ_GETOUTCOUNT(0xffffffffffffffff, 0x80045104, &(0x7f0000000040))
ioctl$FIBMAP(r0, 0x1, &(0x7f0000000000)=0x3)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r2 = dup(r1)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000140)='.\x00', &(0x7f0000000080), 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}})

9.724548356s ago: executing program 1 (id=1635):
bpf$PROG_LOAD(0x5, &(0x7f0000001180)={0x6, 0x10, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendmsg$inet(r2, &(0x7f0000000780)={&(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10, &(0x7f00000001c0)=[{&(0x7f0000000140)="be38", 0xffe7}], 0x1, &(0x7f0000000080)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @dev}}}, @ip_retopts={{0x14, 0x0, 0x7, {[@rr={0x7, 0x3, 0x8b}, @noop]}}}], 0x38}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000000)=@mangle={'mangle\x00', 0x64, 0x6, 0x5e0, 0x0, 0xd0, 0x0, 0x3d0, 0x2c8, 0x510, 0x510, 0x510, 0x510, 0x510, 0x6, 0x0, {[{{@ipv6={@mcast1, @private1, [], [], 'veth1\x00', 'veth1_vlan\x00'}, 0x0, 0xa8, 0xd0, 0x0, {0x0, 0x3a010000}}, @HL={0x28}}, {{@ipv6={@mcast2, @loopback, [], [], 'veth1_virt_wifi\x00', 'pimreg\x00'}, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0x2c8}}, {{@uncond, 0x0, 0xd8, 0x100, 0x0, {}, [@common=@frag={{0x30}}]}, @unspec=@CHECKSUM={0x28}}, {{@uncond, 0x0, 0xa8, 0x108}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv4=@remote}}}, {{@ipv6={@loopback, @private2, [], [], 'batadv0\x00', 'veth0_to_batadv\x00'}, 0x0, 0x118, 0x140, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@hbh={{0x48}}]}, @inet=@DSCP={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x640)
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r3 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000001, 0x12, r3, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = creat(&(0x7f00000001c0)='./file0\x00', 0x0)
write$uinput_user_dev(r5, &(0x7f0000000400)={'syz0\x00', {0x7, 0x4, 0x6, 0xfffa}, 0x1d, [0x86, 0xc95a, 0x3, 0x3, 0x80, 0x2, 0x1, 0x7f, 0x5, 0x4d, 0xfffffff2, 0x2, 0xa, 0x3, 0xffff2d37, 0x1dd2, 0x6, 0x7, 0x0, 0x80000001, 0x4, 0x7, 0x3, 0x3c5b, 0x3, 0x24, 0xffffffff, 0x1, 0x1f461e2c, 0x2, 0xe661, 0x4, 0x7, 0x3, 0x7fff, 0x4c74, 0x8f00, 0x642, 0x3, 0xa, 0x0, 0x71, 0x7, 0x7, 0x103, 0x3, 0x5, 0x3c, 0x8f, 0x5, 0x6, 0x3, 0x5, 0x8, 0x3, 0x0, 0x80, 0x0, 0x5, 0xfffffff7, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0xffff, 0x12f, 0x8000, 0x10, 0xfffffff3, 0x129432e6, 0xcb, 0xf6, 0xd, 0x2bf, 0x6c9, 0x9, 0xfffffffc, 0x3, 0x0, 0x7, 0x9, 0x2f, 0xe, 0x101, 0x78, 0xea4, 0xa, 0x4, 0x4, 0x8000, 0x800009, 0x400, 0x1, 0x6, 0xfffffffd, 0xff, 0xffff, 0x9, 0x5f31, 0x0, 0x0, 0x6, 0x2, 0x9, 0x4, 0x9, 0x8, 0x9, 0x6, 0x2, 0x0, 0x1, 0x8000, 0xffff, 0x2, 0x7f, 0x9, 0x5, 0x3, 0x4, 0x1, 0x7, 0x6, 0xb, 0x48c93690, 0x2, 0xff], [0x7, 0x4, 0x0, 0x64e, 0xfffffdfe, 0x7fffffff, 0x8d2, 0x9, 0x6, 0x7fff, 0x0, 0x6, 0xb, 0x4, 0x5, 0x5, 0x0, 0x1f0, 0x5, 0x8, 0x86, 0x8, 0x10000009, 0x3e7, 0x2, 0x2, 0x202, 0x2, 0xf, 0x8, 0x4, 0x6d01, 0x25, 0x3b, 0x3, 0x200, 0x80, 0x3, 0x4, 0x2950bfaf, 0x7, 0xa2, 0x7, 0x53cf697b, 0x5, 0x6, 0x54fe12d2, 0xbf, 0xb, 0x3, 0x400000, 0xfffffff9, 0x1, 0x1, 0x5, 0x1, 0x5, 0x0, 0x120000, 0x3, 0x6, 0x9, 0x4, 0x3], [0x9, 0xbb31, 0x3, 0xb, 0x5, 0x938, 0x6, 0x6, 0x0, 0x5, 0xce7, 0x1ff, 0x6, 0x7, 0x5, 0x2, 0x101, 0x10000, 0x6, 0x7fff, 0xffff, 0xa620, 0x2, 0x5, 0x1, 0x2, 0x7, 0xfff, 0x6, 0x6, 0xffffffff, 0x80000000, 0x805, 0x8, 0xc8, 0xca2, 0x3, 0xffff, 0x3, 0x9, 0x100, 0x9602, 0xa, 0x2, 0x4, 0x6, 0x1, 0x10000, 0x5, 0x8, 0x2b91, 0xa1f, 0x8, 0x80000009, 0x1, 0x6c1b, 0x0, 0x4, 0x8, 0xb1c, 0x1, 0x200, 0xffff3441, 0xfff]}, 0x45c)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r4, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x45c], 0x0, 0x0, 0x1, 0x1}}, 0x3c)
syz_open_procfs(0x0, &(0x7f0000000040)='oom_adj\x00')
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000680))

9.422368325s ago: executing program 4 (id=1637):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x56a, 0x22, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0xb}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000180)={0x24, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="00220b0000002b8c69a2c882"], 0x0}, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, 0x0)
write$tun(r2, 0x0, 0x0)
connect$can_bcm(r1, &(0x7f00000000c0), 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, 0x0}, 0x0)
r3 = socket$nl_rdma(0x10, 0x3, 0x14)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
sendmsg$RDMA_NLDEV_CMD_RES_GET(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001580)=ANY=[@ANYBLOB="1000000009148307"], 0x10}, 0x1, 0xffffff7f00000000, 0x0, 0x20008000}, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000700), r3)
openat$uinput(0xffffffffffffff9c, &(0x7f0000002c40), 0x2, 0x0)

7.766385687s ago: executing program 1 (id=1641):
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="18020000000000000000000000000030850000002c00000095000000000000002b4003fe37a077ae55f52c0d80a2649baca85309be96d5a45bbbdb5ff7ffffffd075b3eee14473f51be98db7efbb059842ba4470e8e04acb807fbbabc68abdcce9f672b6bb61c302dfd5c11071adac29fd64d33a3502fbeb1ed99dd0e792f24c420bfcc2635421d339ad521d6953b1137850d9e9ebf65ee988ea2dbee528678eb47efb7b3f19046c6f1bd1bf56e5853ed96137f95b3a11954ed1c8a8676468cf2405e48723d4b1ff"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x1000, &(0x7f0000001400)=""/4106, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x18)
r0 = socket(0x10, 0x3, 0x0)
sendmmsg$alg(r0, &(0x7f0000000140), 0x4924b68, 0x0)

7.650424093s ago: executing program 1 (id=1642):
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_REVOKE_LEASE(r0, 0xc00464c9, &(0x7f0000000340)) (fail_nth: 4)

6.894469152s ago: executing program 4 (id=1643):
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x13, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f0000000380), 0x0, 0x0)
read$msr(r0, &(0x7f0000032680)=""/102392, 0x18ff8)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{}, 0x0, 0x0}, 0x20)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000400), 0xc)
socket$netlink(0x10, 0x3, 0x0)
openat$sequencer2(0xffffff9c, 0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, 0x0)
r1 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r1, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
r2 = socket$netlink(0x10, 0x3, 0x0)
writev(r2, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff08", 0x2f}], 0x1)
r3 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
write$P9_RSTATu(r3, &(0x7f0000000580)={0x208, 0x2, 0x0, {{0x500, 0xf8, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1b, '\x04nodev{evoo~\x059\xc6\x00\x05\x00\x007\xd9:\x8b\x92\x00\x00\x00', 0x38, 'pJ\x86\xce\xc6\x02\x00}\xfag>\xff\xeb\t\xb55\x1f[\xde\x05@\x00\x00\x00\x00\x18{\x82\x00\xb5\x00\x00+Y_\xcb\x14\x03CT\xb9\xfd\x9e\xf1\x96\xa5\x1c\xd5\x15z\xdc\x81\x03\xb4\x94\xe1', 0x1d, '\xd2\x99\x98\x80\x14\x98l\xe9\x82\xcf\xc2m\xd7\xc5\x00\xf0L\xd8_*p\xf5\xe9\x93\x0e\x97\xa5\x9ad', 0x55, '\xf8\xf6i\xfbqm\xcf1^\xca\xf3\x85@\x9a\xc6[\x94\bg\x8c,;\x9e\x1dR\xc3l\xde{\xa4\xa4\x00\xb4\xb0\xb4\xf1t\xa6f\xa8R\x9aE\x1b4\a\xdb\xda\xb2\x88K\xaf\x05\x00\x00\x00\x00\x00\x00\x00G\xec!\xca\xbf\xf2\x0f\x9c\x1c\xbe6\xf4\xfd\x1aL\xc2\x80\xe8\xe2\x89\xdad\x9a7\x00'}, 0x12c, 'odev/n\xb1{#\x00\xf9\xda\xa5\xee#&n\xcf\x85\xfe\xa6^B\xd9y\xa3\xfd\xe5\xf4u\xda\xf0;\x11r\xd9{\xad\xc7\tZ\xfdv\xfeO\x04A\xf7\xf7t\x1e\xac\x03\x00\x00\xec\xff\x00\x00\xdb\xa0\xc2\xf7\xf0\x9f\xf5<~M\x1a\xd6n-\a\x01\x98\x01\x9f0\x11\x84G\xaa\x9at\xf5\x16\x85\xf5\x06\xae\x89H\x06\x87\x82g\xd5\xa1)\x8dy,J7\xf2\xe1\xcb\xbd$\x82\x92\x9a\r\x89r\xb5\xcfs.\xa5\xb0\xd7#\x85\x9d\xba?\x93\xae\xd3\xb4.\xe7\xca\xc0}\xe0\x9d\x1dh\xa6\x033\xa8\x82F}+1\xaa\xcd\xf9\x18\x85I\xb1\x12]lL\x9b\x18\xc2\xfbV\xc5}}\xc6&\xe49\a\x96\xa1\xebH\'Fi\xab\x13\xf8\xb1\x1d\x14`Y\xf3\x10\xe2cMY?\xece\xd5)\xf3\x82\x06fd\xdf$NL\x90W\np\x04\x9f9\x9f\x06\x1fu\xb7y|\xe1\xfe\x11\xea\x91\x96\t\xd5\x1aA\xdd=\xe3\x04\xbd|~\xd0\xa4V\xf0\xae\x12Qa\x05\xc9\xce\x88}\xf5\xa6\xe0\xb6\xa7}Yl\xf8\x8b\xa6\xe5\xc69|}P!\xd7\x98\x95(\xfd\x179\xe1\xc2\xd8\x7f\xff\x00'/300}}, 0x239)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
readv(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000080)=""/202, 0xca}, {&(0x7f0000000180)=""/182, 0xb6}], 0x2)
msgrcv(0x0, &(0x7f00000000c0), 0xffffffffffffff00, 0x2, 0x1000)
r5 = socket$inet(0x2, 0x4000000000000001, 0x0)
syz_usb_connect(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYRESHEX=r5, @ANYRES16], 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f0000000240)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x28, 0x28, 0x5, [@datasec={0x2, 0x1, 0x0, 0xf, 0x1, [{0x3, 0x101}], 'H'}, @datasec={0x0, 0x0, 0x0, 0xf, 0x3, [], "7472e9"}]}, {0x0, [0x0, 0x2e, 0x5f]}}, &(0x7f00000003c0)=""/4096, 0x45, 0x1000, 0x1, 0x0, 0x0, @void, @value}, 0x28)
socket$inet6(0xa, 0x2, 0x8001)

6.880019542s ago: executing program 1 (id=1644):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket(0xa, 0x3, 0x1)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1700000006000000040000000300000000210000d27b253d9d8b26242765cacc269fcdcb626a2d4346c086aa62fb9f051ceee5c4949dbfa84ec5975294127e88a2459afdc1cb2e3e1548105546b618b5b53d30c42b476de2a0f2d81081e201177390dfd76064dd7eff294dbd7d62d530b2c41a879be513f117", @ANYRES16=r0, @ANYRESHEX=r0, @ANYRES32=r0, @ANYRESHEX=r1], 0x50)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0300000100"/17, @ANYRES32=0x0, @ANYRES32=r1, @ANYBLOB], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6(0xa, 0x2, 0x0)
pipe(&(0x7f0000000080)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0xffffff56, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[], 0x44}, 0x1, 0x0, 0x0, 0xc1}, 0x4c800)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="4800000010001fff752b056800080000faff8141", @ANYRES32=0x0, @ANYBLOB="67a9fde500000000280012800a00010076786c616e"], 0x3}}, 0x0)
r8 = socket$inet_udp(0x2, 0x2, 0x0)
close(r8)
socket$nl_route(0x10, 0x3, 0x0)
write$binfmt_misc(r7, &(0x7f0000000000), 0xfffffecc)
splice(r6, 0x0, r8, 0x0, 0x4ffe6, 0x0)
r9 = add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f0000000080)="010000000037a788a11d180000009282", 0x10, r9)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r10=>0x0})
sendto$packet(r0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x11, 0x0, r10, 0x1, 0x0, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xd}}, 0x14)

6.856381042s ago: executing program 0 (id=1645):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
io_cancel(0x0, 0xfffffffffffffffc, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
r1 = creat(&(0x7f00000002c0)='./file0\x00', 0x0) (async)
r2 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0) (async)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
r4 = creat(&(0x7f00000001c0)='./file0\x00', 0x0)
write(r4, &(0x7f0000000300)='(', 0x1) (async)
write$uinput_user_dev(r4, &(0x7f0000000400)={'syz0\x00', {0x7, 0x4, 0x6, 0xfffa}, 0x1d, [0x6, 0xc95a, 0xfffffff3, 0x9, 0x80, 0x2, 0x1, 0x7f, 0x6, 0x4d, 0xfffffff2, 0x5f, 0xa, 0x4, 0xffff2d37, 0x1dd2, 0x6, 0x7, 0x0, 0x80000001, 0x4, 0x7, 0x3, 0x3c5b, 0x1, 0x24, 0xffffffff, 0x1, 0x1f461e2c, 0x2, 0xe661, 0x4, 0x7, 0x3, 0x7fff, 0x4c74, 0x8f00, 0x200642, 0x3, 0xa, 0x0, 0x71, 0x7, 0x7, 0x103, 0x9, 0x5, 0x3c, 0x8f, 0x6, 0x7, 0x3, 0x5, 0x4, 0x8, 0x0, 0x80, 0x0, 0x7, 0x6, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0xffff, 0x12f, 0x8000, 0x14, 0xfffffff3, 0x129432e6, 0xcb, 0xf9, 0xd, 0x2bf, 0x6c9, 0x9, 0xfffffffc, 0x3, 0x0, 0x7, 0x5, 0x2f, 0xe, 0x312, 0x78, 0xea4, 0xa, 0x4, 0x4, 0x8000, 0x9, 0x400, 0x1, 0x6, 0x1, 0xff, 0x1005, 0x7ff, 0x5f31, 0x4, 0x0, 0x6, 0x2, 0x9, 0x4, 0x9, 0x8, 0x9, 0x6, 0x5, 0x0, 0x1, 0x8000, 0xffff, 0x2, 0x7f, 0x9, 0x5, 0x3, 0x4, 0x1, 0x7, 0x6, 0x9, 0x48c93690, 0x2, 0xff], [0x7, 0x4, 0x0, 0x64e, 0xfffffdfe, 0x7fffffff, 0x8d2, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x5, 0x3, 0x0, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x10000009, 0x3e7, 0x2, 0x5, 0x2, 0x2, 0xf, 0x8, 0x4, 0x6d01, 0x5, 0x3b, 0x3, 0x200, 0x80, 0x3, 0x4, 0x2950bfaf, 0x0, 0xa2, 0x7, 0x53cf697b, 0x5, 0x6, 0x54fe12d2, 0xbf, 0xb, 0x3, 0x400000, 0xfffffff9, 0x0, 0x1, 0x5, 0x0, 0x6, 0x0, 0x120000, 0x8, 0x6, 0x9, 0x4, 0x3], [0x9, 0xbb31, 0x3, 0xb, 0x5, 0x938, 0x6, 0x6, 0x0, 0x5, 0xce7, 0x1ff, 0x6, 0x7, 0x5, 0x3, 0x101, 0x10000, 0x6, 0x7fff, 0xffff, 0xa624, 0x2, 0x5, 0x1, 0x7fffffff, 0x14c, 0x89, 0x6, 0x6, 0xffffffff, 0x80020000, 0x5, 0x8, 0xc8, 0x3, 0x3, 0xffff, 0x3, 0x9, 0x100, 0x9602, 0xa, 0x2, 0x4, 0xffff, 0x1, 0x10000, 0x4, 0x8, 0x2b91, 0xa1f, 0x8, 0x9, 0x1, 0x6c1b, 0x0, 0x4, 0x5, 0xb1c, 0x1, 0x200, 0xffff3441, 0xfff]}, 0x45c)
r5 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_RESET_STATS(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000a40)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r6, @ANYBLOB="01002cbd7000fedbdf250a00000004000480040001800400098004000980"], 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x80) (async)
sendmsg$TIPC_NL_LINK_GET(r1, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000a80)={0x104, r6, 0x10, 0x70bd25, 0x25dfdbfc, {}, [@TIPC_NLA_PUBL={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x6}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x6}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x3}, @TIPC_NLA_PUBL_LOWER={0x8}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x1}]}, @TIPC_NLA_LINK={0x4c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}]}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffff05d}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x40}]}]}, @TIPC_NLA_NET={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xfff}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x3}]}, @TIPC_NLA_SOCK={0x5c, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x2}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6}, @TIPC_NLA_CON_FLAG={0x8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x9}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x31}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x8}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8}]}]}, 0x104}}, 0x60000080) (async)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r3, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x45c], 0x0, 0x0, 0x1, 0x1}}, 0x3c)

5.726241575s ago: executing program 1 (id=1646):
r0 = syz_open_dev$sndpcmp(&(0x7f0000000340), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_PARAMS(r0, 0xc2604110, &(0x7f0000000600)={0x0, [[0x9, 0x0, 0x0, 0x9], [0x1000], [0x2]], '\x00', [{}, {}, {}, {}, {}, {}, {}, {0x0, 0xfffffffc}], '\x00', 0x0, 0x0, 0x0, 0x2})
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f00000000c0))
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0x3)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGPROP(r3, 0x40047438, &(0x7f0000000180)=""/246)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, 0xffffffffffffffff)
ioctl$PPPIOCSFLAGS1(r3, 0x4004743a, &(0x7f0000000300))
read$FUSE(r1, 0x0, 0x0)
ioctl$F2FS_IOC_START_ATOMIC_WRITE(r2, 0xf501, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$F2FS_IOC_MOVE_RANGE(r4, 0x541b, &(0x7f0000000040)={<r5=>0xffffffffffffffff, 0x2, 0x9, 0x100})
r6 = socket$kcm(0x10, 0x3, 0x10)
ioctl$NS_GET_PARENT(r6, 0xb702, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
lsetxattr$trusted_overlay_opaque(&(0x7f0000000100)='\x00', &(0x7f0000000380), &(0x7f00000003c0), 0x2, 0x2)
mount$tmpfs(0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000640)=ANY=[@ANYBLOB='mpol=bind:0-N'])
r7 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r7, 0x4601, &(0x7f0000000040)={0x320, 0x258, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, {}, {0x0, 0xff0000}, {0xef}, {0x0, 0x1, 0x401}, 0x2, 0x2, 0x0, 0x4, 0x0, 0xfffffffc, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3})
sendmsg$kcm(r6, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b11d25a806c8c6f94f90424fc601000407a0a000600053582c137153e37000c1180fc0b2f020300", 0x33fe0}], 0x1, 0x0, 0x0, 0x35}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0)
open(&(0x7f0000000400)='./file0\x00', 0x0, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000080)={[{0x2b, 'cpuset'}]}, 0x8)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f00000000c0)={[{0x2d, 'cpuset'}]}, 0x8)
close_range(r5, 0xffffffffffffffff, 0x0)

5.725946851s ago: executing program 3 (id=1647):
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f0000000d00)=[{{0xfffffffffffffffe, 0x0, &(0x7f0000000e40)=[{&(0x7f0000000400)="d4", 0x1}], 0x1}}], 0x1, 0x0)
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000000300)=[{{0x0, 0x0, &(0x7f0000002940)=[{&(0x7f000000bc00)=""/91, 0x5b}], 0x1}}], 0x1, 0x0, 0x0)

5.668479051s ago: executing program 0 (id=1648):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000005c0)=@newqdisc={0x24}, 0x24}}, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000), 0x8a980, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045002, &(0x7f0000000400))
read$dsp(r0, &(0x7f0000001500)=""/4096, 0x1000)
read$dsp(r0, &(0x7f00000000c0)=""/96, 0x60)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x5}, 0x1c)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r1, 0x8946, &(0x7f0000000900)={'veth1_virt_wifi\x00', @random='\x00\x00\x00 \x00'})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000540)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)

4.681153434s ago: executing program 3 (id=1649):
r0 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0)
syz_emit_ethernet(0x83, &(0x7f0000000180)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030086dd601b8b97004d88bd9edace00000000000000002100000002ff02000000000000000000000000000104004e20004d03"], 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x2, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xfffff000)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x2d)
r4 = syz_open_procfs(0x0, &(0x7f0000000080)='net/fib_trie\x00')
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
read$FUSE(r4, &(0x7f0000001e00)={0x2020}, 0x1c6d)

3.550287926s ago: executing program 0 (id=1650):
r0 = socket$packet(0x11, 0x3, 0x300)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x11, r0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000100)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x800}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
r2 = socket$key(0xf, 0x3, 0x2)
recvmmsg(r2, &(0x7f0000000440), 0x6f5, 0x2000000022, &(0x7f0000000480)={0x77359400})
setsockopt$sock_int(r2, 0x1, 0x4b, &(0x7f0000000040)=0xfd87, 0x4)
sendmsg$key(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="0216000002"], 0x10}}, 0x0)

3.534631754s ago: executing program 3 (id=1651):
r0 = socket$packet(0x11, 0x3, 0x300)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x11, r0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000100)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x800}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getsockname$packet(r0, &(0x7f00000001c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000240)=0x14)
r4 = socket$key(0xf, 0x3, 0x2)
r5 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r6 = fcntl$dupfd(r5, 0x0, r5)
write$FUSE_INIT(r6, &(0x7f0000000000)={0x50, 0x0, 0x0, {0x7, 0x27, 0x0, 0x0, 0x0, 0x0, 0x1ff}}, 0x50)
recvmmsg(r4, &(0x7f0000000440), 0x6f5, 0x2000000022, &(0x7f0000000480)={0x77359400})
setsockopt$sock_int(r4, 0x1, 0x4b, &(0x7f0000000040)=0xfd87, 0x4)
sendmsg$key(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="0216000002"], 0x10}}, 0x0)
r7 = syz_open_dev$usbfs(&(0x7f0000000040), 0x20000007d, 0x0)
ioctl$MON_IOCX_GET(0xffffffffffffffff, 0x40189206, &(0x7f0000000340)={&(0x7f0000000780), 0x0, 0xfffffffffffffe70})
r8 = dup3(0xffffffffffffffff, r7, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
fchown(r9, 0x0, 0x0)
ioctl$MON_IOCX_GETX(r8, 0x4018920a, &(0x7f0000000200)={&(0x7f0000000000), &(0x7f0000002e40)=""/4109, 0x100d})

3.509136022s ago: executing program 1 (id=1652):
r0 = socket$kcm(0x10, 0x2, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x48, 0x16, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x14, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}]}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x1}]}, @NFT_MSG_DELFLOWTABLE={0x5c, 0x16, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x30, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x2c, 0x3, 0x0, 0x1, [{0x14, 0x1, 'bond0\x00'}, {0x14, 0x1, 'veth0_to_team\x00'}]}]}]}], {0x14, 0x10}}, 0xec}}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
socket$packet(0x11, 0x3, 0x300)
memfd_create(&(0x7f0000000100)=';e\x00\x00\xa4\xd8\xe0\x9c\x7f9\x8aZ]3N\xbb\xe1^\x9c\xe1\x9b6s$0Y\xf8\x90\x00\x00\x00\x00\xd2~l\xf6\x12\xde\xdd\xd5\x1d\x96\xb0a\xad\xcd\x16\xd8G\xae\xd9DZm\xabO\xad\x11%\x7f`@\x16c\xc0\xb6\x1f\xe3\x00\x1a_\xc7\xbf\xa7T\xbe\x13\x8b\xb3r\x8fL\xe6\xba\xe7\x18\xb4$BIj\xa3\xc9\xc6|\x9b\x88\xddPx\x02I\xde\xe8\xcd\x02\xc1\xedc2\x06\xcbM\xfb\x13jZ\x96\xeej\x9b\xe4XjN\xb9>\xdf3U\r \x8dh8T/h)\x90\xff\x8d\xd9\x89\xab\xf8P\xacYtk\xa3\xed\xfa*8\x13\b\xce\xf8z\xed\xadnz\x96\xa3\x9a9R\xd9]\xe11We\xfe3\xe06\x1a^\x04^\xef\xa3\x0fU\x9b1\xc6J\x83\x9d[\\a\xfd\xdc\xa1\xcd\xbe\x9b\xc5z7\xe8VP\x89\x16MK`\xe5\x137\b\x00\x00\x00\xd5\x01\xea\x98\xe6Z\x95j\xe3\x0ek>\x14\x80\rXS\xce\xf9\x0e\x89\xc4\xc6\x1bOm4Lla\r\xce\x17\xb5r&\xf3\x96\xbc\xc39\xa7\x95\xd9F\x17', 0x0)
syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
r4 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f0000000040)=[<r5=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r4, 0xc06864a1, &(0x7f00000002c0)={0x0, 0x0, r5, <r6=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r4, 0xc06864ce, &(0x7f0000000440)={r6, 0x0, 0x0, 0x0, 0x0, [<r7=>0x0]})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000100)={r7})
sendto(0xffffffffffffffff, &(0x7f00000000c0)="120000001200e7ef007b0000", 0xc, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {0x0}, {&(0x7f0000000400)=""/106, 0x6a}, {&(0x7f0000000200)=""/77, 0x4d}, {0x0}, {0x0}], 0x6}}], 0x1, 0x0, &(0x7f0000003700)={0x77359400})
r8 = socket$igmp(0x2, 0x3, 0x2)
ioctl$SIOCGETSGCNT_IN6(r8, 0x89e1, &(0x7f0000000280)={@loopback, @private2={0xfc, 0x2, '\x00', 0x1}})
syz_emit_ethernet(0x0, 0x0, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="0401020028000b05d25a806f8c6394f90524fc600d000347fe000100ff3582c137153e370248018010001700d1bd", 0x33fe0}], 0x1}, 0x0)

3.111527081s ago: executing program 0 (id=1653):
socket$packet(0x11, 0x3, 0x300)
write$cgroup_type(0xffffffffffffffff, &(0x7f0000000040), 0x9)
r0 = socket(0x20000000000000a, 0x2, 0x0)
setsockopt$inet6_mreq(r0, 0x29, 0x1f, 0x0, 0x0)
r1 = socket$key(0xf, 0x3, 0x2)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1d, 0xb, &(0x7f0000000180)=ANY=[@ANYRESDEC], &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r2, 0x0, 0xa}, 0x18)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYRES64=r1, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=r1, @ANYBLOB="00000000000000000000000000000000000000000000000000000f00"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000fcffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0xc36, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = creat(0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r8 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000380)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c0000000200000000000000000000020000000000002f4549295b5bc8a2000a0564d7e14f5bfe773149bd9cf42bc7434fc44e556ba9"], 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000600)={r8, 0x2, 0x0}, 0x10)
r9 = socket(0x10, 0x400000000080803, 0x0)
r10 = fcntl$dupfd(r9, 0x0, r9)
read$FUSE(r7, 0x0, 0x0)
ioctl$sock_SIOCETHTOOL(r10, 0x89f0, &(0x7f0000000000)={'bridge0\x00', &(0x7f0000000480)=@ethtool_ringparam={0x4, 0x0, 0x5, 0x0, 0xbb5f}})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x4, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

2.465653564s ago: executing program 4 (id=1654):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_io_uring_setup(0x1f87, &(0x7f0000000080)={0x0, 0x0, 0x13481}, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000140)=@IORING_OP_MSG_RING={0x28, 0x0, 0x0, r1, 0x0, 0x0})
io_uring_enter(r1, 0x56, 0x0, 0x0, 0x0, 0x0)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_SET(r0, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000080)={&(0x7f0000000300)={0x258, 0x0, 0x100, 0x70bd29, 0x25dfdbff, {}, [@TIPC_NLA_NODE={0x130, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0x4b, 0x3, "b4b0438ea4d893f6534d935426f24abc4cd1260611ea9c66ce734ae9318f22989cf180b2a846ea17c8870e9b8414fa38ed4b02c873ee934c5194bdf7a61fbc4328c7dee6b2c9ee"}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x3ff}, @TIPC_NLA_NODE_ID={0xbc, 0x3, "73e3e2da73c6f8a0e17f4e1bb7981c6899e627bfe5be05ebee782e761b56a5ca2512bff5a9cf84bd5538df26ecb8a3851c4e0f6864a746c80cda1b24e1b6b50a291fd1bc700f2c421df503c87c88c273fab5aad55fa99f01a31f9aacd65fd0b29d784620551865b1c4db0e44bf3a4b03db2f18d121920f22fbabc03fe4b4181e897488323e64d7f19ee47ae79a03a39d9cf373cc71eaab921da4e1f2a1ca5992e1b1b773379e2e6cab5c7737638132465193f1bc8f1d8f1a"}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0xa909}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xffbd}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x2}, @TIPC_NLA_NODE_KEY_MASTER={0x4}]}, @TIPC_NLA_BEARER={0x114, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e24, 0x2, @loopback, 0x6}}, {0x14, 0x2, @in={0x2, 0x4e23, @broadcast}}}}, @TIPC_NLA_BEARER_NAME={0xe, 0x1, @l2={'eth', 0x3a, 'wlan0\x00'}}, @TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffff7}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xa845}, @TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e24, 0x4, @private2={0xfc, 0x2, '\x00', 0x1}, 0x1}}, {0x14, 0x2, @in={0x2, 0x4e21, @rand_addr=0x64010101}}}}, @TIPC_NLA_BEARER_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xf}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000000}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x98000000}]}, @TIPC_NLA_BEARER_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffff9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1000}]}]}]}, 0x258}, 0x1, 0x0, 0x0, 0x8004}, 0x4000001)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000a40)={0x34, r4, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_SPEED={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x20040004}, 0x0)

2.338233095s ago: executing program 3 (id=1655):
r0 = socket$packet(0x11, 0x3, 0x300)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x11, r0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000100)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x800}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getsockname$packet(r0, &(0x7f00000001c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000240)=0x14)
r4 = socket$key(0xf, 0x3, 0x2)
r5 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r6 = fcntl$dupfd(r5, 0x0, r5)
write$FUSE_INIT(r6, &(0x7f0000000000)={0x50, 0x0, 0x0, {0x7, 0x27, 0x0, 0x0, 0x0, 0x0, 0x1ff}}, 0x50)
recvmmsg(r4, &(0x7f0000000440), 0x6f5, 0x2000000022, &(0x7f0000000480)={0x77359400})
setsockopt$sock_int(r4, 0x1, 0x4b, &(0x7f0000000040)=0xfd87, 0x4)
sendmsg$key(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="0216000002"], 0x10}}, 0x0)
r7 = syz_open_dev$usbfs(&(0x7f0000000040), 0x20000007d, 0x0)
ioctl$MON_IOCX_GET(0xffffffffffffffff, 0x40189206, &(0x7f0000000340)={&(0x7f0000000780), 0x0, 0xfffffffffffffe70})
r8 = dup3(0xffffffffffffffff, r7, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
fchown(r9, 0x0, 0x0)
ioctl$MON_IOCX_GETX(r8, 0x4018920a, &(0x7f0000000200)={&(0x7f0000000000), &(0x7f0000002e40)=""/4109, 0x100d})

1.406441722s ago: executing program 4 (id=1656):
r0 = socket$packet(0x11, 0x3, 0x300)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x11, r0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000100)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x800}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
r4 = socket$key(0xf, 0x3, 0x2)
recvmmsg(r4, &(0x7f0000000440), 0x6f5, 0x2000000022, &(0x7f0000000480)={0x77359400})
setsockopt$sock_int(r4, 0x1, 0x4b, &(0x7f0000000040)=0xfd87, 0x4)
sendmsg$key(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="0216000002"], 0x10}}, 0x0)

1.292994997s ago: executing program 0 (id=1657):
r0 = socket$packet(0x11, 0x3, 0x300)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x11, r0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000100)=0x8)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x800}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
r3 = socket$key(0xf, 0x3, 0x2)
recvmmsg(r3, &(0x7f0000000440), 0x6f5, 0x2000000022, &(0x7f0000000480)={0x77359400})
setsockopt$sock_int(r3, 0x1, 0x4b, &(0x7f0000000040)=0xfd87, 0x4)
sendmsg$key(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="0216000002"], 0x10}}, 0x0)

1.265795753s ago: executing program 3 (id=1658):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x420000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f00000003c0)='./file0\x00', 0x0)
clock_gettime(0x0, &(0x7f00000009c0)={<r4=>0x0, <r5=>0x0})
recvmmsg(r2, &(0x7f0000000980)=[{{&(0x7f00000004c0)=@x25, 0x80, &(0x7f00000008c0)=[{&(0x7f0000000540)=""/132, 0x84}, {&(0x7f0000000600)=""/249, 0xf9}, {&(0x7f0000000380)=""/57, 0x39}, {&(0x7f0000000700)=""/205, 0xcd}, {&(0x7f0000000800)=""/192, 0xc0}], 0x5, &(0x7f0000000940)=""/44, 0x2c}, 0x3}], 0x1, 0x40, &(0x7f0000000a00)={r4, r5+10000000})
r6 = open(0x0, 0x0, 0x0)
fcntl$notify(r6, 0x402, 0x15)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r7}, 0x10)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x4010bc08, &(0x7f0000000080)={0x0, 0x1, 0x0, 0x3d})
r8 = fanotify_init(0x0, 0x0)
fanotify_mark(r8, 0x180, 0x0, 0xffffffffffffffff, 0x0)
syz_open_dev$usbfs(&(0x7f0000000280), 0x77, 0x101a01)

1.043793991s ago: executing program 4 (id=1659):
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f0000000d00)=[{{0xfffffffffffffffe, 0x0, &(0x7f0000000e40)=[{&(0x7f0000000400)="d4", 0x1}], 0x1}}], 0x1, 0x0)
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000000300)=[{{0x0, 0x0, &(0x7f0000002940)=[{&(0x7f000000bc00)=""/91, 0x5b}], 0x1}}], 0x1, 0x0, 0x0)

450.539102ms ago: executing program 33 (id=1610):
r0 = syz_open_dev$mouse(&(0x7f00000000c0), 0xfffdffffffffffff, 0x14a080)
openat$rtc(0xffffffffffffff9c, 0x0, 0x200000, 0x0)
ioctl$SNDCTL_SEQ_GETOUTCOUNT(0xffffffffffffffff, 0x80045104, &(0x7f0000000040))
ioctl$FIBMAP(r0, 0x1, &(0x7f0000000000)=0x3)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r2 = dup(r1)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000140)='.\x00', &(0x7f0000000080), 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}})

406.173481ms ago: executing program 4 (id=1661):
socket$inet6(0xa, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
sendmsg$IPVS_CMD_GET_INFO(r1, &(0x7f0000000380)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x1c, 0x0, 0x32c, 0x70bd28, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4042810)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0185500, 0x0)
ptrace$PTRACE_SECCOMP_GET_METADATA(0x420d, 0x0, 0x10, &(0x7f0000000240)={0xd8})
syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0x6d89, 0x0, 0x1}, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
clock_settime(0x0, &(0x7f0000003c80)={0x77359400})
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
listen(r2, 0x0)
pipe(&(0x7f0000000180)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$int_in(r4, 0x5452, &(0x7f00000001c0)=0x8000)
close(r3)
close(r2)
socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'bridge_slave_0\x00'})
r5 = socket(0x2, 0x80805, 0x0)
r6 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r6, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r7=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r5, 0x84, 0xa, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r7}, 0x20)
socket$pppl2tp(0x18, 0x1, 0x1)
socket$inet_udp(0x2, 0x2, 0x0)

382.560155ms ago: executing program 3 (id=1662):
syz_open_dev$vim2m(0x0, 0x2000000f5, 0x2)
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r0, &(0x7f0000000080)={0x6c, 0x0, 0x3, 0x1}, 0x8)
r1 = userfaultfd(0x801)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f00000006c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000200)='nv\x00', 0x3)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000e00)={&(0x7f0000000600)=ANY=[@ANYBLOB="9feb01001800000000000000600000006000000005000000070000000000000e04000000010000000000000000000003000000000400000004000015773bd8a01d165e800000000e050000000100000005000000000000010000000048005202100000000000000b00000000030000000000000700000000005f612e00"], &(0x7f0000000d00)=""/248, 0x7d, 0xf8, 0x0, 0x2, 0x0, @void, @value}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f0000000e40)=@base={0x19, 0x9, 0xffffffff, 0x8, 0x2000, 0xffffffffffffffff, 0x80000000, '\x00', 0x0, r4, 0x2, 0x5, 0x5, 0x0, @void, @value, @void, @value}, 0x48)
sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x6c, 0x2, 0x7, 0x3, 0x0, 0x0, {0x3}, [@NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x1}, @NFACCT_FILTER={0x44, 0x7, 0x0, 0x1, [@NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x5}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x1000}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x7}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x4}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x747}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x3ff}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x277f}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0xffffffff}]}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x6}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4004880}, 0x40000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r5, 0x8946, &(0x7f0000000000)={'netdevsim0\x00', &(0x7f0000000400)=@ethtool_flash={0x33, 0x0, '.\x00'}})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000700)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a140000001000410000000000000000070000000a21fb289f99a1ef08421a5b19e5f756c859362250170bb2a63f8fcbe8540401006f6924b92cd796093b0cbae2394817be5f7c13d3a1ca46291cede2feae713bb67cf891c746906eef4eb8fd1d3536f631c479165eb0601dacf754df3af46183e58ec854aeb444f5c6ebc9679ab031"], 0x28}}, 0x0)
bind$inet(r2, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_int(r2, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000280)=0x2, 0x4)
connect$inet(r2, 0x0, 0x0)
r6 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
writev(r6, &(0x7f0000000a40)=[{&(0x7f0000002500)='\f', 0x1}, {0x0}], 0x2)
ioctl$FS_IOC_GETFLAGS(r3, 0x80086601, &(0x7f00000002c0))
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x48c})
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})

0s ago: executing program 0 (id=1663):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_open_dev$vim2m(&(0x7f0000000080), 0x1, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r4, 0xc0145608, &(0x7f00000000c0)={0x2, 0x1, 0x1})
setsockopt$SO_BINDTODEVICE_wg(r2, 0x1, 0x19, &(0x7f0000000040)='wg1\x00', 0x4)
ioctl$vim2m_VIDIOC_STREAMOFF(r4, 0x40045612, &(0x7f0000000000)=0x1)
socket$inet6_sctp(0xa, 0x0, 0x84)
shutdown(0xffffffffffffffff, 0x0)
ioctl$vim2m_VIDIOC_QBUF(r4, 0xc058560f, &(0x7f0000000140)=@multiplanar_mmap={0x0, 0x1, 0x4, 0x0, 0x0, {0x0, 0x2710}, {}, 0x0, 0x1, {0x0}})
close(r4)
bind$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4e22, 0x5, @empty}, 0x1c)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000040)='ip6tnl0\x00', 0x10)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r5, &(0x7f0000000080)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x4}, 0x1c)
bind$inet6(r5, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c)
listen(r5, 0x1)

kernel console output (not intermixed with test programs):

12132]  ___sys_sendmsg+0x135/0x1e0
[  439.755430][T12132]  ? __pfx____sys_sendmsg+0x10/0x10
[  439.760622][T12132]  ? lock_acquire+0x2f/0xb0
[  439.765109][T12132]  ? __fget_files+0x40/0x3f0
[  439.769707][T12132]  ? fdget+0x176/0x210
[  439.773775][T12132]  __sys_sendmsg+0x117/0x1f0
[  439.778356][T12132]  ? __pfx___sys_sendmsg+0x10/0x10
[  439.783485][T12132]  ? __x64_sys_futex+0x1e1/0x4c0
[  439.788426][T12132]  do_syscall_64+0xcd/0x250
[  439.792916][T12132]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  439.798802][T12132] RIP: 0033:0x7fe2c257e719
[  439.803203][T12132] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  439.822799][T12132] RSP: 002b:00007fe2c3416038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  439.831198][T12132] RAX: ffffffffffffffda RBX: 00007fe2c2735f80 RCX: 00007fe2c257e719
[  439.839156][T12132] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000009
[  439.847112][T12132] RBP: 00007fe2c25f139e R08: 0000000000000000 R09: 0000000000000000
[  439.855081][T12132] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  439.863037][T12132] R13: 0000000000000000 R14: 00007fe2c2735f80 R15: 00007fffb5d22728
[  439.871015][T12132]  </TASK>
[  439.882999][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  439.933035][T11315] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  439.949367][   T25] usb 5-1: new high-speed USB device number 50 using dummy_hcd
[  439.974572][T11315] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  440.002460][T11315] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  440.026518][T11315] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  440.053081][T11315] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  440.082797][T11315] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  440.109999][   T25] usb 5-1: Using ep0 maxpacket: 16
[  440.118517][   T25] usb 5-1: config 0 descriptor has 1 excess byte, ignoring
[  440.136067][T11315] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  440.149333][   T25] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid maxpacket 65516, setting to 1024
[  440.172576][T11315] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  440.189509][   T25] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 1024
[  440.210346][T11315] batman_adv: batadv0: Interface activated: batadv_slave_1
[  440.280614][   T25] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  440.292571][   T25] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 0
[  440.323732][   T25] usb 5-1: New USB device found, idVendor=04d8, idProduct=0a30, bcdDevice=ce.47
[  440.327369][T11315] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  440.333400][   T25] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  440.349843][   T25] usb 5-1: Product: syz
[  440.354154][   T25] usb 5-1: Manufacturer: syz
[  440.358760][   T25] usb 5-1: SerialNumber: syz
[  440.367946][   T25] usb 5-1: config 0 descriptor??
[  440.373946][T12146] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  440.377126][T11315] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  440.398324][T11315] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  440.408280][T11315] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  440.518822][   T25] mcba_usb 5-1:0.0 can0: couldn't setup read URBs
[  440.530485][   T25] mcba_usb 5-1:0.0 can0: couldn't start device: -90
[  440.553145][T12170] netlink: 'syz.1.1332': attribute type 1 has an invalid length.
[  440.561017][T12170] netlink: 112860 bytes leftover after parsing attributes in process `syz.1.1332'.
[  441.029155][   T25] mcba_usb 5-1:0.0: probe with driver mcba_usb failed with error -90
[  441.754748][   T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  441.766002][   T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  441.774600][ T3511] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  441.795167][ T3511] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  441.824965][   T29] audit: type=1400 audit(1731289764.876:825): avc:  denied  { mounton } for  pid=11315 comm="syz-executor" path="/root/syzkaller.iwti4T/syz-tmp" dev="sda1" ino=1950 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[  441.903498][   T29] audit: type=1400 audit(1731289764.876:826): avc:  denied  { mounton } for  pid=11315 comm="syz-executor" path="/root/syzkaller.iwti4T/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[  442.146721][   T29] audit: type=1400 audit(1731289764.876:827): avc:  denied  { mounton } for  pid=11315 comm="syz-executor" path="/root/syzkaller.iwti4T/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=27591 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[  442.174381][   T29] audit: type=1400 audit(1731289764.926:828): avc:  denied  { mounton } for  pid=11315 comm="syz-executor" path="/dev/binderfs" dev="devtmpfs" ino=2724 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[  442.197329][    C1] vkms_vblank_simulate: vblank timer overrun
[  442.203896][   T29] audit: type=1400 audit(1731289764.936:829): avc:  denied  { mount } for  pid=11315 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  442.226766][   T29] audit: type=1400 audit(1731289764.936:830): avc:  denied  { mounton } for  pid=11315 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[  442.250686][    C1] vkms_vblank_simulate: vblank timer overrun
[  442.280573][   T25] usb 5-1: USB disconnect, device number 50
[  446.349446][ T5912] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  446.819471][ T5912] usb 6-1: Using ep0 maxpacket: 8
[  446.827843][ T5912] usb 6-1: config 162 has an invalid interface number: 84 but max is 2
[  446.836724][ T5912] usb 6-1: config 162 has an invalid interface number: 3 but max is 2
[  446.865019][ T5912] usb 6-1: config 162 has no interface number 0
[  446.877379][T12332] misc userio: Can't change port type on an already running userio instance
[  446.887013][ T5912] usb 6-1: config 162 has no interface number 1
[  446.903359][T12336] misc userio: Can't change port type on an already running userio instance
[  446.908990][ T5912] usb 6-1: config 162 interface 84 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  446.934322][ T5912] usb 6-1: config 162 interface 2 altsetting 1 has a duplicate endpoint with address 0x9, skipping
[  446.948709][ T5912] usb 6-1: config 162 interface 2 altsetting 1 has an endpoint descriptor with address 0xA6, changing to 0x86
[  446.967069][ T5912] usb 6-1: config 162 interface 2 altsetting 1 endpoint 0x86 has invalid maxpacket 23105, setting to 1024
[  446.979101][ T5912] usb 6-1: config 162 interface 2 altsetting 1 bulk endpoint 0x86 has invalid maxpacket 1024
[  447.062591][ T5912] usb 6-1: config 162 interface 2 altsetting 1 has 5 endpoint descriptors, different from the interface descriptor's value: 4
[  447.139327][ T5912] usb 6-1: config 162 interface 84 has no altsetting 0
[  447.734403][ T5912] usb 6-1: config 162 interface 2 has no altsetting 0
[  447.749989][ T5912] usb 6-1: New USB device found, idVendor=0e8d, idProduct=763f, bcdDevice=9b.23
[  447.759086][ T5912] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  447.767189][ T5912] usb 6-1: Product: syz
[  447.771942][ T5912] usb 6-1: Manufacturer: syz
[  447.776549][ T5912] usb 6-1: SerialNumber: syz
[  448.016173][T12368] input: syz0 as /devices/virtual/input/input56
[  448.198917][ T5912] usb 6-1: USB disconnect, device number 2
[  449.652711][   T29] audit: type=1400 audit(1731289772.506:831): avc:  denied  { sys_chroot } for  pid=12420 comm="dhcpcd" capability=18  scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=capability permissive=1
[  449.721369][   T29] audit: type=1400 audit(1731289772.506:832): avc:  denied  { setgid } for  pid=12420 comm="dhcpcd" capability=6  scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=capability permissive=1
[  449.999336][   T29] audit: type=1400 audit(1731289772.506:833): avc:  denied  { setrlimit } for  pid=12420 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=process permissive=1
[  450.705170][   T29] audit: type=1400 audit(1731289773.686:834): avc:  denied  { create } for  pid=12428 comm="syz.0.1355" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[  450.725781][   T29] audit: type=1400 audit(1731289773.696:835): avc:  denied  { connect } for  pid=12428 comm="syz.0.1355" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[  451.076100][T12444] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1355'.
[  451.177302][T12418] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.1352'.
[  451.362567][T12418] sysfs: cannot create duplicate filename '/class/ieee80211/ü!'
[  451.389830][T12418] CPU: 0 UID: 0 PID: 12418 Comm: syz.4.1352 Not tainted 6.12.0-rc6-syzkaller-00318-ga9cda7c0ffed #0
[  451.400644][T12418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  451.410716][T12418] Call Trace:
[  451.414000][T12418]  <TASK>
[  451.416936][T12418]  dump_stack_lvl+0x16c/0x1f0
[  451.421629][T12418]  sysfs_warn_dup+0x7f/0xa0
[  451.426149][T12418]  sysfs_do_create_link_sd+0x124/0x140
[  451.431620][T12418]  sysfs_create_link+0x61/0xc0
[  451.436395][T12418]  device_add+0x62e/0x1a70
[  451.440833][T12418]  ? __pfx_device_add+0x10/0x10
[  451.446387][T12418]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  451.452304][T12418]  ? ieee80211_set_bitrate_flags+0x249/0x6a0
[  451.458312][T12418]  wiphy_register+0x2101/0x2d00
[  451.463186][T12418]  ? __pfx_wiphy_register+0x10/0x10
[  451.468400][T12418]  ? ieee80211_init_rate_ctrl_alg+0x125/0x6b0
[  451.474489][T12418]  ieee80211_register_hw+0x2aaa/0x41b0
[  451.479983][T12418]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  451.485802][T12418]  ? net_generic+0xea/0x2a0
[  451.490330][T12418]  ? __asan_memset+0x23/0x50
[  451.494924][T12418]  ? __hrtimer_init+0x106/0x2c0
[  451.499791][T12418]  mac80211_hwsim_new_radio+0x304e/0x54d0
[  451.505535][T12418]  ? trace_kmalloc+0x2d/0xe0
[  451.510143][T12418]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  451.516241][T12418]  ? hwsim_new_radio_nl+0x9ff/0x12b0
[  451.521525][T12418]  ? __asan_memcpy+0x3c/0x60
[  451.526107][T12418]  hwsim_new_radio_nl+0xb42/0x12b0
[  451.531210][T12418]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  451.536750][T12418]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  451.544109][T12418]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  451.551471][T12418]  genl_family_rcv_msg_doit+0x202/0x2f0
[  451.557004][T12418]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  451.563060][T12418]  ? bpf_lsm_capable+0x9/0x10
[  451.567722][T12418]  ? security_capable+0x7e/0x260
[  451.572652][T12418]  ? ns_capable+0xd7/0x110
[  451.577057][T12418]  genl_rcv_msg+0x565/0x800
[  451.581549][T12418]  ? __pfx_genl_rcv_msg+0x10/0x10
[  451.586580][T12418]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  451.592148][T12418]  netlink_rcv_skb+0x16b/0x440
[  451.596909][T12418]  ? __pfx_genl_rcv_msg+0x10/0x10
[  451.601925][T12418]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  451.607259][T12418]  ? down_read+0xc9/0x330
[  451.611578][T12418]  ? __pfx_down_read+0x10/0x10
[  451.616327][T12418]  ? rcu_is_watching+0x12/0xc0
[  451.621084][T12418]  genl_rcv+0x28/0x40
[  451.625072][T12418]  netlink_unicast+0x53c/0x7f0
[  451.629826][T12418]  ? __pfx_netlink_unicast+0x10/0x10
[  451.635096][T12418]  ? const_folio_flags.constprop.0+0x56/0x150
[  451.641156][T12418]  netlink_sendmsg+0x8b8/0xd70
[  451.645909][T12418]  ? __pfx_netlink_sendmsg+0x10/0x10
[  451.651295][T12418]  ____sys_sendmsg+0xaaf/0xc90
[  451.656068][T12418]  ? copy_msghdr_from_user+0x10b/0x160
[  451.661529][T12418]  ? __pfx_____sys_sendmsg+0x10/0x10
[  451.666821][T12418]  ___sys_sendmsg+0x135/0x1e0
[  451.671489][T12418]  ? __pfx____sys_sendmsg+0x10/0x10
[  451.676685][T12418]  ? lock_acquire+0x2f/0xb0
[  451.681187][T12418]  ? __fget_files+0x40/0x3f0
[  451.685780][T12418]  ? fdget+0x176/0x210
[  451.689850][T12418]  __sys_sendmsg+0x117/0x1f0
[  451.694429][T12418]  ? __pfx___sys_sendmsg+0x10/0x10
[  451.699535][T12418]  ? __x64_sys_futex+0x1e1/0x4c0
[  451.704485][T12418]  do_syscall_64+0xcd/0x250
[  451.708994][T12418]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  451.714881][T12418] RIP: 0033:0x7f065037e719
[  451.719283][T12418] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  451.738895][T12418] RSP: 002b:00007f0651184038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  451.747295][T12418] RAX: ffffffffffffffda RBX: 00007f0650535f80 RCX: 00007f065037e719
[  451.755252][T12418] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000009
[  451.763226][T12418] RBP: 00007f06503f139e R08: 0000000000000000 R09: 0000000000000000
[  451.771182][T12418] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  451.779138][T12418] R13: 0000000000000000 R14: 00007f0650535f80 R15: 00007ffd313f1128
[  451.787121][T12418]  </TASK>
[  452.015462][T12458] FAULT_INJECTION: forcing a failure.
[  452.015462][T12458] name failslab, interval 1, probability 0, space 0, times 0
[  452.274583][T12458] CPU: 1 UID: 0 PID: 12458 Comm: syz.3.1358 Not tainted 6.12.0-rc6-syzkaller-00318-ga9cda7c0ffed #0
[  452.285465][T12458] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  452.295521][T12458] Call Trace:
[  452.298795][T12458]  <TASK>
[  452.301730][T12458]  dump_stack_lvl+0x16c/0x1f0
[  452.306412][T12458]  should_fail_ex+0x497/0x5b0
[  452.311077][T12458]  ? fs_reclaim_acquire+0xae/0x150
[  452.316184][T12458]  should_failslab+0xc2/0x120
[  452.320868][T12458]  __kmalloc_cache_noprof+0x6b/0x300
[  452.326165][T12458]  ? rtnl_newlink+0x49/0xa0
[  452.330652][T12458]  rtnl_newlink+0x49/0xa0
[  452.334969][T12458]  ? __pfx_rtnl_newlink+0x10/0x10
[  452.339981][T12458]  rtnetlink_rcv_msg+0x3c7/0xea0
[  452.344903][T12458]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  452.350350][T12458]  ? __pfx_mark_lock+0x10/0x10
[  452.355091][T12458]  netlink_rcv_skb+0x16b/0x440
[  452.359827][T12458]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  452.365259][T12458]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  452.370545][T12458]  ? rcu_is_watching+0x12/0xc0
[  452.375332][T12458]  netlink_unicast+0x53c/0x7f0
[  452.376533][T12465] binder: 12464:12465 ioctl 4018620d 0 returned -22
[  452.380098][T12458]  ? __pfx_netlink_unicast+0x10/0x10
[  452.380171][T12458]  ? const_folio_flags.constprop.0+0x56/0x150
[  452.380201][T12458]  netlink_sendmsg+0x8b8/0xd70
[  452.380222][T12458]  ? __pfx_netlink_sendmsg+0x10/0x10
[  452.380249][T12458]  sock_sendmsg+0x3cb/0x470
[  452.380275][T12458]  ? mark_held_locks+0x9f/0xe0
[  452.380294][T12458]  ? __pfx_sock_sendmsg+0x10/0x10
[  452.422442][T12458]  ? splice_to_socket+0x9ac/0x1040
[  452.427537][T12458]  splice_to_socket+0xaac/0x1040
[  452.432457][T12458]  ? __pfx_splice_to_socket+0x10/0x10
[  452.437811][T12458]  ? inode_has_perm+0x16f/0x1d0
[  452.440045][T12466] binder: 12464:12466 ioctl c0306201 0 returned -14
[  452.442681][T12458]  ? bpf_lsm_file_permission+0x9/0x10
[  452.455195][T12458]  ? security_file_permission+0x71/0x210
[  452.460813][T12458]  ? rw_verify_area+0xd0/0x700
[  452.465557][T12458]  ? __pfx_splice_to_socket+0x10/0x10
[  452.470921][T12458]  do_splice+0x145c/0x1f60
[  452.475349][T12458]  ? __pfx_do_splice+0x10/0x10
[  452.480107][T12458]  ? __pfx_pipe_clear_nowait+0x10/0x10
[  452.485545][T12458]  __do_splice+0x327/0x360
[  452.489939][T12458]  ? __pfx___do_splice+0x10/0x10
[  452.494855][T12458]  __x64_sys_splice+0x1cd/0x270
[  452.499685][T12458]  do_syscall_64+0xcd/0x250
[  452.504194][T12458]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  452.510094][T12458] RIP: 0033:0x7fcedb37e719
[  452.514488][T12458] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  452.534075][T12458] RSP: 002b:00007fcedc209038 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  452.542465][T12458] RAX: ffffffffffffffda RBX: 00007fcedb536058 RCX: 00007fcedb37e719
[  452.551135][T12458] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000003
[  452.559098][T12458] RBP: 00007fcedc209090 R08: 000000000004ffe6 R09: 0000000000000000
[  452.567063][T12458] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  452.575030][T12458] R13: 0000000000000001 R14: 00007fcedb536058 R15: 00007ffc6300a2a8
[  452.582985][T12458]  </TASK>
[  453.676511][T12507] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  453.684850][T12507] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  453.758635][T12507] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[  455.758769][T12543] vivid-000: kernel_thread() failed
[  455.982794][   T29] audit: type=1400 audit(1731289778.096:836): avc:  denied  { write } for  pid=12525 comm="syz.5.1366" name="ptp0" dev="devtmpfs" ino=1265 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  457.229273][ T5912] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  457.410814][ T1200] usb 1-1: new high-speed USB device number 49 using dummy_hcd
[  458.179950][ T1200] usb 1-1: Using ep0 maxpacket: 8
[  458.193236][ T1200] usb 1-1: config 168 descriptor has 1 excess byte, ignoring
[  458.201319][ T5912] usb 6-1: Using ep0 maxpacket: 16
[  458.207612][ T1200] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  458.219406][ T1200] usb 1-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  458.231286][ T1200] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  458.242405][ T1200] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  458.369353][ T5912] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  458.382654][ T5912] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  458.392995][ T5912] usb 6-1: New USB device found, idVendor=1532, idProduct=011b, bcdDevice= 0.00
[  458.407277][ T5912] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  459.369088][ T1200] usb 1-1: config 168 descriptor has 1 excess byte, ignoring
[  459.376629][ T1200] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  459.387980][ T1200] usb 1-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  459.399752][ T1200] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  459.412276][ T1200] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  460.374991][ T5912] usb 6-1: config 0 descriptor??
[  460.386042][ T5912] usb 6-1: can't set config #0, error -71
[  460.394891][ T5912] usb 6-1: USB disconnect, device number 3
[  460.588696][ T1200] usb 1-1: unable to read config index 2 descriptor/start: -71
[  460.596382][ T1200] usb 1-1: can't read configurations, error -71
[  460.733592][T12640] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1380'.
[  460.759624][   T25] usb 2-1: new high-speed USB device number 40 using dummy_hcd
[  461.005136][   T25] usb 2-1: Using ep0 maxpacket: 16
[  461.016205][   T25] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  461.038326][   T25] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  461.075812][   T25] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  461.117296][   T25] usb 2-1: New USB device found, idVendor=056a, idProduct=0022, bcdDevice= 0.00
[  461.157637][   T25] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  461.199610][ T5869] usb 5-1: new high-speed USB device number 51 using dummy_hcd
[  461.222139][   T25] usb 2-1: config 0 descriptor??
[  461.359282][ T5869] usb 5-1: Using ep0 maxpacket: 32
[  461.384756][ T5869] usb 5-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config
[  461.435037][ T5869] usb 5-1: New USB device found, idVendor=3344, idProduct=22f0, bcdDevice=ef.4d
[  461.444744][ T5869] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  461.456421][ T5869] usb 5-1: Product: syz
[  461.461065][ T5869] usb 5-1: Manufacturer: syz
[  461.478922][ T5869] usb 5-1: SerialNumber: syz
[  461.694596][   T25] wacom 0003:056A:0022.0021: ignoring exceeding usage max
[  461.708831][   T25] wacom 0003:056A:0022.0021: unknown main item tag 0x0
[  461.793357][ T5869] usb 5-1: selecting invalid altsetting 1
[  461.816422][   T25] wacom 0003:056A:0022.0021: unknown main item tag 0x0
[  461.826043][   T25] wacom 0003:056A:0022.0021: unknown main item tag 0x0
[  461.835330][   T25] wacom 0003:056A:0022.0021: unknown main item tag 0x0
[  461.844154][   T25] wacom 0003:056A:0022.0021: unknown main item tag 0x0
[  461.852033][   T25] wacom 0003:056A:0022.0021: unknown main item tag 0x0
[  461.863957][   T25] wacom 0003:056A:0022.0021: Unknown device_type for 'HID 056a:0022'. Assuming pen.
[  461.891300][   T25] wacom 0003:056A:0022.0021: hidraw0: USB HID v0.00 Device [HID 056a:0022] on usb-dummy_hcd.1-1/input0
[  461.904704][   T25] input: Wacom Intuos 9x12 Pen as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:056A:0022.0021/input/input57
[  462.011448][   T25] usb 2-1: USB disconnect, device number 40
[  462.023805][ T5869] LME2510(C): Firmware Status: 00 00 00 00 00 00
[  462.023873][ T5869] dvb_usb_lmedm04 5-1:2.0: probe with driver dvb_usb_lmedm04 failed with error -22
[  463.789759][   T29] audit: type=1400 audit(1731289786.846:837): avc:  denied  { connect } for  pid=12733 comm="syz.3.1385" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  463.810253][   T29] audit: type=1400 audit(1731289786.846:838): avc:  denied  { name_connect } for  pid=12733 comm="syz.3.1385" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[  464.227870][   T29] audit: type=1400 audit(1731289786.906:839): avc:  denied  { shutdown } for  pid=12733 comm="syz.3.1385" laddr=fe80::12 lport=45914 faddr=fe80::bb scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  464.563092][T12760] netlink: 'syz.0.1388': attribute type 1 has an invalid length.
[  464.571306][T12760] netlink: 112860 bytes leftover after parsing attributes in process `syz.0.1388'.
[  464.966233][ T1217] usb 5-1: USB disconnect, device number 51
[  465.339466][   T25] usb 4-1: new high-speed USB device number 37 using dummy_hcd
[  465.893454][T12804] netlink: 209852 bytes leftover after parsing attributes in process `syz.5.1392'.
[  465.931591][T12804] debugfs: Directory 'ü!' with parent 'ieee80211' already present!
[  465.962401][   T25] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  465.992853][   T25] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  466.004377][ T1217] usb 2-1: new high-speed USB device number 41 using dummy_hcd
[  466.061645][   T25] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  466.138658][   T25] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  466.185403][   T25] usb 4-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  466.194737][   T25] usb 4-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  466.203768][   T25] usb 4-1: Manufacturer: syz
[  466.209409][ T1217] usb 2-1: Using ep0 maxpacket: 16
[  466.218818][   T25] usb 4-1: config 0 descriptor??
[  466.295354][ T1217] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  467.271241][ T1217] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  467.282718][ T1217] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  467.292583][ T1217] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  467.302414][ T1217] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  467.317358][ T1217] usb 2-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  467.384173][ T1217] usb 2-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  467.392469][ T1217] usb 2-1: Manufacturer: syz
[  467.401205][ T1217] usb 2-1: config 0 descriptor??
[  467.979904][T12797] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  467.988487][T12797] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  468.349499][ T1217] rc_core: IR keymap rc-hauppauge not found
[  468.355943][ T1217] Registered IR keymap rc-empty
[  468.420920][ T1217] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  469.389471][ T1217] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  469.409900][ T1217] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0
[  469.422789][ T1217] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0/input60
[  469.974150][   T25] usbhid 4-1:0.0: can't add hid device: -71
[  469.982607][   T25] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  470.411711][ T1217] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  470.525842][ T1217] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  470.578012][   T25] usb 4-1: USB disconnect, device number 37
[  470.592174][ T1217] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  470.619298][ T1217] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  470.639404][ T1217] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  470.751951][T12920] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  470.788061][ T1217] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  470.808104][T12912] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.1406'.
[  470.809328][ T1217] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  470.817775][T12920] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  470.839328][ T1217] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  470.846679][T12912] sysfs: cannot create duplicate filename '/class/ieee80211/ü!'
[  471.499402][T12920] netdevsim netdevsim3: Falling back to sysfs fallback for: .
[  471.559002][T12912] CPU: 0 UID: 0 PID: 12912 Comm: syz.1.1406 Not tainted 6.12.0-rc6-syzkaller-00318-ga9cda7c0ffed #0
[  471.569782][T12912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  471.579825][T12912] Call Trace:
[  471.583085][T12912]  <TASK>
[  471.585998][T12912]  dump_stack_lvl+0x16c/0x1f0
[  471.590669][T12912]  sysfs_warn_dup+0x7f/0xa0
[  471.595150][T12912]  sysfs_do_create_link_sd+0x124/0x140
[  471.600586][T12912]  sysfs_create_link+0x61/0xc0
[  471.605325][T12912]  device_add+0x62e/0x1a70
[  471.609732][T12912]  ? __pfx_device_add+0x10/0x10
[  471.614595][T12912]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  471.620490][T12912]  ? ieee80211_set_bitrate_flags+0x249/0x6a0
[  471.626454][T12912]  wiphy_register+0x2101/0x2d00
[  471.631289][T12912]  ? __pfx_wiphy_register+0x10/0x10
[  471.636466][T12912]  ? ieee80211_init_rate_ctrl_alg+0x125/0x6b0
[  471.642526][T12912]  ieee80211_register_hw+0x2aaa/0x41b0
[  471.647971][T12912]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  471.653760][T12912]  ? net_generic+0xea/0x2a0
[  471.658247][T12912]  ? __asan_memset+0x23/0x50
[  471.662814][T12912]  ? __hrtimer_init+0x106/0x2c0
[  471.667664][T12912]  mac80211_hwsim_new_radio+0x304e/0x54d0
[  471.673368][T12912]  ? trace_kmalloc+0x2d/0xe0
[  471.677949][T12912]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  471.683992][T12912]  ? hwsim_new_radio_nl+0x9ff/0x12b0
[  471.689266][T12912]  ? __asan_memcpy+0x3c/0x60
[  471.693843][T12912]  hwsim_new_radio_nl+0xb42/0x12b0
[  471.698929][T12912]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  471.704473][T12912]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  471.711867][T12912]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  471.719289][T12912]  genl_family_rcv_msg_doit+0x202/0x2f0
[  471.724851][T12912]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  471.730921][T12912]  ? bpf_lsm_capable+0x9/0x10
[  471.735586][T12912]  ? security_capable+0x7e/0x260
[  471.740520][T12912]  ? ns_capable+0xd7/0x110
[  471.744924][T12912]  genl_rcv_msg+0x565/0x800
[  471.749415][T12912]  ? __pfx_genl_rcv_msg+0x10/0x10
[  471.754427][T12912]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  471.759966][T12912]  netlink_rcv_skb+0x16b/0x440
[  471.764719][T12912]  ? __pfx_genl_rcv_msg+0x10/0x10
[  471.769736][T12912]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  471.775014][T12912]  ? down_read+0xc9/0x330
[  471.779332][T12912]  ? __pfx_down_read+0x10/0x10
[  471.784082][T12912]  ? netlink_deliver_tap+0x1ae/0xd90
[  471.789370][T12912]  genl_rcv+0x28/0x40
[  471.793341][T12912]  netlink_unicast+0x53c/0x7f0
[  471.798092][T12912]  ? __pfx_netlink_unicast+0x10/0x10
[  471.803363][T12912]  ? const_folio_flags.constprop.0+0x56/0x150
[  471.809422][T12912]  netlink_sendmsg+0x8b8/0xd70
[  471.814173][T12912]  ? __pfx_netlink_sendmsg+0x10/0x10
[  471.819451][T12912]  ____sys_sendmsg+0xaaf/0xc90
[  471.824222][T12912]  ? copy_msghdr_from_user+0x10b/0x160
[  471.829681][T12912]  ? __pfx_____sys_sendmsg+0x10/0x10
[  471.834975][T12912]  ? __pfx___lock_acquire+0x10/0x10
[  471.840164][T12912]  ___sys_sendmsg+0x135/0x1e0
[  471.844831][T12912]  ? __pfx____sys_sendmsg+0x10/0x10
[  471.850028][T12912]  ? lock_acquire+0x2f/0xb0
[  471.854513][T12912]  ? __fget_files+0x40/0x3f0
[  471.859103][T12912]  ? fdget+0x176/0x210
[  471.863194][T12912]  __sys_sendmsg+0x117/0x1f0
[  471.867774][T12912]  ? __pfx___sys_sendmsg+0x10/0x10
[  471.872886][T12912]  ? __x64_sys_futex+0x1e1/0x4c0
[  471.877835][T12912]  do_syscall_64+0xcd/0x250
[  471.882328][T12912]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  471.888215][T12912] RIP: 0033:0x7f89fb77e719
[  471.892618][T12912] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  471.912213][T12912] RSP: 002b:00007f89f9bf6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  471.920615][T12912] RAX: ffffffffffffffda RBX: 00007f89fb935f80 RCX: 00007f89fb77e719
[  471.928572][T12912] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000009
[  471.936629][T12912] RBP: 00007f89fb7f139e R08: 0000000000000000 R09: 0000000000000000
[  471.944586][T12912] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  471.952540][T12912] R13: 0000000000000000 R14: 00007f89fb935f80 R15: 00007ffe4dc05548
[  471.960507][T12912]  </TASK>
[  471.975863][ T1217] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  472.059821][ T1217] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  472.177690][ T1217] mceusb 2-1:0.0: Registered  with mce emulator interface version 1
[  472.186048][ T1217] mceusb 2-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  472.865370][ T1217] usb 2-1: USB disconnect, device number 41
[  472.869265][   T29] audit: type=1400 audit(1731289795.486:840): avc:  denied  { remount } for  pid=12929 comm="syz.4.1408" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  474.117294][T12978] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1413'.
[  474.414087][T12997] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1412'.
[  474.423541][T12997] unsupported nlmsg_type 40
[  474.812347][T12999] netlink: 'syz.1.1414': attribute type 1 has an invalid length.
[  474.820323][T12999] netlink: 112860 bytes leftover after parsing attributes in process `syz.1.1414'.
[  475.224993][T13001] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1413'.
[  475.292498][   T29] audit: type=1400 audit(1731289798.356:841): avc:  denied  { ioctl } for  pid=13003 comm="syz.5.1415" path="/dev/fuse" dev="devtmpfs" ino=99 ioctlcmd=0x9365 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  475.466066][T13021] xt_connbytes: Forcing CT accounting to be enabled
[  475.654152][T13021] x_tables: ip_tables: icmp match: only valid for protocol 1
[  475.923476][T13018] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  477.715708][T13059] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  477.815762][   T29] audit: type=1400 audit(1731289800.876:842): avc:  denied  { write } for  pid=13064 comm="syz.4.1424" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  477.856447][T13059] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  478.186014][T13059] netdevsim netdevsim3: Falling back to sysfs fallback for: .
[  478.233443][T13074] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1425'.
[  478.368565][   T29] audit: type=1400 audit(1731289801.406:843): avc:  denied  { write } for  pid=13080 comm="syz.5.1427" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  478.861823][   T29] audit: type=1400 audit(1731289801.916:844): avc:  denied  { set_context_mgr } for  pid=13093 comm="syz.5.1429" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  478.902455][T13095] binder: 13093:13095 ioctl 89f0 20000380 returned -22
[  479.340155][   T29] audit: type=1400 audit(1731289802.356:845): avc:  denied  { create } for  pid=13107 comm="syz.5.1431" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  480.049682][T13123] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1433'.
[  480.067295][   T29] audit: type=1400 audit(1731289803.116:846): avc:  denied  { ioctl } for  pid=13122 comm="syz.0.1433" path="socket:[29948]" dev="sockfs" ino=29948 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  480.112024][T13113] usb usb1: usbfs: interface 0 claimed by hub while 'syz.5.1431' sets config #1
[  481.213996][T13154] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  481.345796][   T29] audit: type=1400 audit(1731289804.056:847): avc:  denied  { setopt } for  pid=13137 comm="syz.4.1436" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  481.485666][T13164] binder: 13163:13164 ioctl 89f0 20000380 returned -22
[  482.606772][   T29] audit: type=1400 audit(1731289805.666:848): avc:  denied  { module_load } for  pid=13177 comm="syz.1.1443" path="/sys/power/wakeup_count" dev="sysfs" ino=1383 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=system permissive=1
[  482.938282][T13199] IPVS: set_ctl: invalid protocol: 255 172.20.20.170:20000
[  482.961184][   T29] audit: type=1400 audit(1731289806.016:849): avc:  denied  { getopt } for  pid=13196 comm="syz.1.1446" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  482.987329][   T29] audit: type=1400 audit(1731289806.016:850): avc:  denied  { append } for  pid=13196 comm="syz.1.1446" name="autofs" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  483.001480][T13217] netlink: 209852 bytes leftover after parsing attributes in process `syz.5.1449'.
[  483.018185][   T29] audit: type=1400 audit(1731289806.016:851): avc:  denied  { open } for  pid=13196 comm="syz.1.1446" path="/dev/autofs" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  483.046168][T13217] sysfs: cannot create duplicate filename '/class/ieee80211/ü!'
[  483.066788][T13217] CPU: 1 UID: 0 PID: 13217 Comm: syz.5.1449 Not tainted 6.12.0-rc6-syzkaller-00318-ga9cda7c0ffed #0
[  483.077598][T13217] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  483.087674][T13217] Call Trace:
[  483.090959][T13217]  <TASK>
[  483.093898][T13217]  dump_stack_lvl+0x16c/0x1f0
[  483.098601][T13217]  sysfs_warn_dup+0x7f/0xa0
[  483.103161][T13217]  sysfs_do_create_link_sd+0x124/0x140
[  483.108672][T13217]  sysfs_create_link+0x61/0xc0
[  483.113465][T13217]  device_add+0x62e/0x1a70
[  483.117909][T13217]  ? __pfx_device_add+0x10/0x10
[  483.122791][T13217]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  483.128726][T13217]  ? ieee80211_set_bitrate_flags+0x249/0x6a0
[  483.134747][T13217]  wiphy_register+0x2101/0x2d00
[  483.139637][T13217]  ? __pfx_wiphy_register+0x10/0x10
[  483.144870][T13217]  ? ieee80211_init_rate_ctrl_alg+0x125/0x6b0
[  483.150982][T13217]  ieee80211_register_hw+0x2aaa/0x41b0
[  483.156485][T13217]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  483.162327][T13217]  ? net_generic+0xea/0x2a0
[  483.166872][T13217]  ? __asan_memset+0x23/0x50
[  483.171485][T13217]  ? __hrtimer_init+0x106/0x2c0
[  483.176362][T13217]  mac80211_hwsim_new_radio+0x304e/0x54d0
[  483.182124][T13217]  ? trace_kmalloc+0x2d/0xe0
[  483.186742][T13217]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  483.192827][T13217]  ? hwsim_new_radio_nl+0x9ff/0x12b0
[  483.198145][T13217]  ? __asan_memcpy+0x3c/0x60
[  483.202760][T13217]  hwsim_new_radio_nl+0xb42/0x12b0
[  483.207930][T13217]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  483.212621][   T29] audit: type=1400 audit(1731289806.016:852): avc:  denied  { ioctl } for  pid=13196 comm="syz.1.1446" path="/dev/autofs" dev="devtmpfs" ino=98 ioctlcmd=0x937e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  483.213487][T13217]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  483.245834][T13217]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  483.253241][T13217]  genl_family_rcv_msg_doit+0x202/0x2f0
[  483.258812][T13217]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  483.264905][T13217]  ? bpf_lsm_capable+0x9/0x10
[  483.269780][T13217]  ? security_capable+0x7e/0x260
[  483.274743][T13217]  ? ns_capable+0xd7/0x110
[  483.279164][T13217]  genl_rcv_msg+0x565/0x800
[  483.283689][T13217]  ? __pfx_genl_rcv_msg+0x10/0x10
[  483.288705][T13217]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  483.294428][T13217]  netlink_rcv_skb+0x16b/0x440
[  483.299206][T13217]  ? __pfx_genl_rcv_msg+0x10/0x10
[  483.304254][T13217]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  483.309571][T13217]  ? down_read+0xc9/0x330
[  483.313924][T13217]  ? __pfx_down_read+0x10/0x10
[  483.318710][T13217]  ? netlink_deliver_tap+0x1ae/0xd90
[  483.324027][T13217]  genl_rcv+0x28/0x40
[  483.328026][T13217]  netlink_unicast+0x53c/0x7f0
[  483.332810][T13217]  ? __pfx_netlink_unicast+0x10/0x10
[  483.338111][T13217]  ? const_folio_flags.constprop.0+0x56/0x150
[  483.344209][T13217]  netlink_sendmsg+0x8b8/0xd70
[  483.348983][T13217]  ? __pfx_netlink_sendmsg+0x10/0x10
[  483.354267][T13217]  ____sys_sendmsg+0xaaf/0xc90
[  483.359011][T13217]  ? copy_msghdr_from_user+0x10b/0x160
[  483.364459][T13217]  ? __pfx_____sys_sendmsg+0x10/0x10
[  483.369728][T13217]  ? __pfx___lock_acquire+0x10/0x10
[  483.374905][T13217]  ___sys_sendmsg+0x135/0x1e0
[  483.379568][T13217]  ? __pfx____sys_sendmsg+0x10/0x10
[  483.384749][T13217]  ? lock_acquire+0x2f/0xb0
[  483.389238][T13217]  ? __fget_files+0x40/0x3f0
[  483.393813][T13217]  ? fdget+0x176/0x210
[  483.397863][T13217]  __sys_sendmsg+0x117/0x1f0
[  483.402429][T13217]  ? __pfx___sys_sendmsg+0x10/0x10
[  483.407519][T13217]  ? __x64_sys_futex+0x1e1/0x4c0
[  483.412443][T13217]  do_syscall_64+0xcd/0x250
[  483.416925][T13217]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  483.422797][T13217] RIP: 0033:0x7fecb617e719
[  483.427202][T13217] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  483.446786][T13217] RSP: 002b:00007fecb6f8c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  483.455177][T13217] RAX: ffffffffffffffda RBX: 00007fecb6335f80 RCX: 00007fecb617e719
[  483.463124][T13217] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000009
[  483.471073][T13217] RBP: 00007fecb61f139e R08: 0000000000000000 R09: 0000000000000000
[  483.479034][T13217] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  483.486982][T13217] R13: 0000000000000000 R14: 00007fecb6335f80 R15: 00007ffe42afa468
[  483.494937][T13217]  </TASK>
[  483.559334][   T51] usb 1-1: new high-speed USB device number 51 using dummy_hcd
[  484.829626][   T51] usb 1-1: device descriptor read/64, error -71
[  484.919403][   T25] usb 2-1: new high-speed USB device number 42 using dummy_hcd
[  485.005513][T13272] netlink: 'syz.5.1455': attribute type 1 has an invalid length.
[  485.013290][T13272] netlink: 112860 bytes leftover after parsing attributes in process `syz.5.1455'.
[  485.086243][   T51] usb 1-1: new high-speed USB device number 52 using dummy_hcd
[  485.959422][   T25] usb 2-1: Using ep0 maxpacket: 32
[  485.973801][   T25] usb 2-1: config 0 has an invalid interface number: 51 but max is 0
[  486.090729][   T25] usb 2-1: config 0 has no interface number 0
[  486.269289][   T25] usb 2-1: string descriptor 0 read error: -71
[  486.281083][   T25] usb 2-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  486.353182][   T29] audit: type=1400 audit(1731289809.366:853): avc:  denied  { append } for  pid=13292 comm="syz.0.1460" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  486.462117][   T25] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  486.471862][   T25] usb 2-1: config 0 descriptor??
[  486.477265][   T25] usb 2-1: can't set config #0, error -71
[  486.484189][   T25] usb 2-1: USB disconnect, device number 42
[  487.949626][   T25] usb 2-1: new high-speed USB device number 43 using dummy_hcd
[  488.179414][   T25] usb 2-1: Using ep0 maxpacket: 16
[  488.308736][   T29] audit: type=1400 audit(1731289811.366:854): avc:  denied  { connect } for  pid=13337 comm="syz.3.1464" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  489.123657][   T25] usb 2-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6
[  489.132868][   T25] usb 2-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[  489.141160][   T25] usb 2-1: Product: syz
[  489.145411][   T25] usb 2-1: Manufacturer: syz
[  489.150356][   T25] usb 2-1: SerialNumber: syz
[  489.156570][   T25] usb 2-1: config 0 descriptor??
[  489.267735][T13362] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  489.372577][T13364] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  489.388760][   T29] audit: type=1326 audit(1731289812.446:855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13350 comm="syz.4.1465" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f065037e719 code=0x0
[  489.422560][   T29] audit: type=1400 audit(1731289812.476:856): avc:  denied  { getopt } for  pid=13351 comm="syz.3.1466" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  489.800086][   T29] audit: type=1400 audit(1731289812.856:857): avc:  denied  { setattr } for  pid=13377 comm="syz.0.1469" name="NETLINK" dev="sockfs" ino=31251 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  490.563060][   T25] usb 2-1: USB disconnect, device number 43
[  490.647011][T13405] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1472'.
[  490.656132][T13405] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1472'.
[  490.665310][T13405] netlink: 'syz.3.1472': attribute type 12 has an invalid length.
[  491.545447][T13435] FAULT_INJECTION: forcing a failure.
[  491.545447][T13435] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  491.558621][T13435] CPU: 0 UID: 0 PID: 13435 Comm: syz.3.1475 Not tainted 6.12.0-rc6-syzkaller-00318-ga9cda7c0ffed #0
[  491.569383][T13435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  491.579435][T13435] Call Trace:
[  491.582713][T13435]  <TASK>
[  491.585656][T13435]  dump_stack_lvl+0x16c/0x1f0
[  491.590358][T13435]  should_fail_ex+0x497/0x5b0
[  491.595050][T13435]  _copy_from_user+0x2e/0xd0
[  491.599653][T13435]  do_ip6t_set_ctl+0xa88/0xc40
[  491.604443][T13435]  ? rcu_is_watching+0x12/0xc0
[  491.609211][T13435]  ? trace_contention_end+0xea/0x140
[  491.614505][T13435]  ? __pfx_do_ip6t_set_ctl+0x10/0x10
[  491.619800][T13435]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  491.625796][T13435]  ? nf_sockopt_find.constprop.0+0x221/0x290
[  491.631793][T13435]  nf_setsockopt+0x8a/0xf0
[  491.636222][T13435]  ipv6_setsockopt+0x135/0x170
[  491.640992][T13435]  tcp_setsockopt+0xa4/0x100
[  491.645585][T13435]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  491.651486][T13435]  do_sock_setsockopt+0x222/0x480
[  491.656515][T13435]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  491.662074][T13435]  ? fdget+0x176/0x210
[  491.666154][T13435]  __sys_setsockopt+0x1a4/0x270
[  491.671008][T13435]  ? __pfx___sys_setsockopt+0x10/0x10
[  491.676381][T13435]  ? fput+0x30/0x390
[  491.680288][T13435]  ? ksys_write+0x1ad/0x260
[  491.684791][T13435]  ? __pfx_ksys_write+0x10/0x10
[  491.689659][T13435]  __x64_sys_setsockopt+0xbd/0x160
[  491.694772][T13435]  ? do_syscall_64+0x91/0x250
[  491.699451][T13435]  ? lockdep_hardirqs_on+0x7c/0x110
[  491.704657][T13435]  do_syscall_64+0xcd/0x250
[  491.709163][T13435]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  491.715060][T13435] RIP: 0033:0x7fcedb37e719
[  491.719474][T13435] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  491.739083][T13435] RSP: 002b:00007fcedc1e8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  491.747499][T13435] RAX: ffffffffffffffda RBX: 00007fcedb536130 RCX: 00007fcedb37e719
[  491.755471][T13435] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000008
[  491.763448][T13435] RBP: 00007fcedc1e8090 R08: 0000000000000450 R09: 0000000000000000
[  491.771419][T13435] R10: 0000000020000980 R11: 0000000000000246 R12: 0000000000000001
[  491.779388][T13435] R13: 0000000000000000 R14: 00007fcedb536130 R15: 00007ffc6300a2a8
[  491.787368][T13435]  </TASK>
[  491.908319][   T29] audit: type=1400 audit(1731289814.856:858): avc:  denied  { read } for  pid=13424 comm="syz.3.1475" name="loop-control" dev="devtmpfs" ino=646 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  491.990179][   T29] audit: type=1400 audit(1731289814.856:859): avc:  denied  { open } for  pid=13424 comm="syz.3.1475" path="/dev/loop-control" dev="devtmpfs" ino=646 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  492.044532][T13442] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  492.126037][T13443] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  492.145175][   T29] audit: type=1400 audit(1731289814.856:860): avc:  denied  { ioctl } for  pid=13424 comm="syz.3.1475" path="/dev/loop-control" dev="devtmpfs" ino=646 ioctlcmd=0x4c80 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  492.262628][T13448] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1481'.
[  492.274106][T13448] macsec1: entered promiscuous mode
[  492.279418][T13448] macvlan1: entered promiscuous mode
[  492.284813][T13448] macsec1: entered allmulticast mode
[  492.290157][T13448] macvlan1: entered allmulticast mode
[  492.295502][T13448] veth1_vlan: entered allmulticast mode
[  492.678812][   T29] audit: type=1400 audit(1731289815.696:861): avc:  denied  { getopt } for  pid=13452 comm="syz.4.1483" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  493.008359][   T29] audit: type=1400 audit(1731289815.706:862): avc:  denied  { connect } for  pid=13452 comm="syz.4.1483" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  493.269343][ T1200] usb 2-1: new high-speed USB device number 44 using dummy_hcd
[  493.517059][ T5869] usb 6-1: new full-speed USB device number 4 using dummy_hcd
[  493.548077][ T1200] usb 2-1: Using ep0 maxpacket: 32
[  493.564486][ T1200] usb 2-1: config index 0 descriptor too short (expected 29220, got 36)
[  493.574339][ T1200] usb 2-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  493.676885][ T1200] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 81
[  494.237666][ T1200] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  494.256498][T13486] PKCS7: Unknown OID: [4] 0.38.35.0.951690.11253
[  494.262948][T13486] PKCS7: Only support pkcs7_signedData type
[  494.269539][ T1200] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  494.279430][   T29] audit: type=1400 audit(1731289817.316:863): avc:  denied  { write } for  pid=13483 comm="syz.0.1487" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  494.279470][   T29] audit: type=1400 audit(1731289817.336:864): avc:  denied  { mount } for  pid=13483 comm="syz.0.1487" name="/" dev="bdev" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bdev_t tclass=filesystem permissive=1
[  494.326289][ T1200] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  494.386428][ T1200] usb 2-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  494.411805][ T1200] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  494.445132][ T1200] usb 2-1: config 0 descriptor??
[  494.511965][ T5869] usb 6-1: unable to get BOS descriptor or descriptor too short
[  494.523768][ T5869] usb 6-1: not running at top speed; connect to a high speed hub
[  494.541090][ T5869] usb 6-1: config 64 has an invalid interface number: 16 but max is 0
[  494.555982][ T5869] usb 6-1: config 64 has no interface number 0
[  494.563791][ T5869] usb 6-1: config 64 interface 16 altsetting 6 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  494.579908][ T5869] usb 6-1: config 64 interface 16 altsetting 6 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  494.596453][ T5869] usb 6-1: config 64 interface 16 altsetting 6 endpoint 0x8F has invalid maxpacket 73, setting to 64
[  494.649250][ T5869] usb 6-1: config 64 interface 16 altsetting 6 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  494.684570][ T1200] usblp 2-1:0.0: usblp0: USB Bidirectional printer dev 44 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  494.716791][ T5869] usb 6-1: config 64 interface 16 has no altsetting 0
[  494.727169][ T1200] usb 2-1: USB disconnect, device number 44
[  494.740056][ T5869] usb 6-1: New USB device found, idVendor=040b, idProduct=6521, bcdDevice=3c.11
[  494.749466][ T5869] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  494.757469][ T5869] usb 6-1: Product: syz
[  494.771416][ T1200] usblp0: removed
[  494.786783][ T5869] usb 6-1: Manufacturer: syz
[  494.804911][ T5869] usb 6-1: SerialNumber: syz
[  494.833331][T13471] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  495.881941][T13524] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1491'.
[  495.931173][T13526] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  495.939785][T13526] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  496.094032][ T1200] usb 2-1: new high-speed USB device number 45 using dummy_hcd
[  496.290361][T13540] tty tty27: ldisc open failed (-12), clearing slot 26
[  496.363575][T13535] A link change request failed with some changes committed already. Interface bond_slave_0 may have been left with an inconsistent configuration, please check.
[  496.553188][T13538] A link change request failed with some changes committed already. Interface bond_slave_0 may have been left with an inconsistent configuration, please check.
[  496.613280][T13543] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1491'.
[  496.752510][T13555] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1494'.
[  496.795222][T13561] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1496'.
[  496.890403][   T29] audit: type=1400 audit(1731289819.946:865): avc:  denied  { ioctl } for  pid=13559 comm="syz.1.1496" path="socket:[30339]" dev="sockfs" ino=30339 ioctlcmd=0x8946 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  497.249364][   T29] audit: type=1400 audit(1731289819.996:866): avc:  denied  { getopt } for  pid=13559 comm="syz.1.1496" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  498.596096][ T5869] rc_core: IR keymap rc-xbox-dvd not found
[  498.636592][ T5869] Registered IR keymap rc-empty
[  498.642094][ T5869] rc rc0: syz syz as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:64.16/rc/rc0
[  498.652004][ T5869] input: syz syz as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:64.16/rc/rc0/input61
[  498.728037][ T5869] usb 6-1: USB disconnect, device number 4
[  498.728082][    C0] xbox_remote 6-1:64.16: xbox_remote_irq_in: usb_submit_urb()=-19
[  499.329434][   T51] usb 2-1: new high-speed USB device number 46 using dummy_hcd
[  499.688056][   T51] usb 2-1: Using ep0 maxpacket: 32
[  499.727385][   T51] usb 2-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92
[  499.771157][   T51] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  500.211817][   T51] usb 2-1: config 0 descriptor??
[  500.219030][   T51] gspca_main: nw80x-2.14.0 probing 055f:d001
[  501.210426][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  501.227057][   T51] gspca_nw80x: reg_w err -110
[  501.232027][   T51] nw80x 2-1:0.0: probe with driver nw80x failed with error -110
[  501.663086][T13644] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  501.678750][T13650] FAULT_INJECTION: forcing a failure.
[  501.678750][T13650] name failslab, interval 1, probability 0, space 0, times 0
[  501.680514][T13644] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  501.717446][T13650] CPU: 1 UID: 0 PID: 13650 Comm: syz.5.1509 Not tainted 6.12.0-rc6-syzkaller-00318-ga9cda7c0ffed #0
[  501.728255][T13650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  501.738329][T13650] Call Trace:
[  501.741611][T13650]  <TASK>
[  501.744542][T13650]  dump_stack_lvl+0x16c/0x1f0
[  501.749206][T13650]  should_fail_ex+0x497/0x5b0
[  501.753877][T13650]  ? fs_reclaim_acquire+0xae/0x150
[  501.758980][T13650]  should_failslab+0xc2/0x120
[  501.759646][T13657] FAULT_INJECTION: forcing a failure.
[  501.759646][T13657] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  501.763659][T13650]  __kmalloc_cache_noprof+0x6b/0x300
[  501.781961][T13650]  ? dev_ethtool+0x197/0x57e0
[  501.786665][T13650]  dev_ethtool+0x197/0x57e0
[  501.791180][T13650]  ? kernel_text_address+0x8d/0x100
[  501.796382][T13650]  ? __kernel_text_address+0xd/0x40
[  501.801579][T13650]  ? unwind_get_return_address+0x59/0xa0
[  501.807213][T13650]  ? arch_stack_walk+0xa7/0x100
[  501.812067][T13650]  ? __pfx_dev_ethtool+0x10/0x10
[  501.817031][T13650]  ? hlock_class+0x4e/0x130
[  501.821540][T13650]  ? hlock_class+0x4e/0x130
[  501.826048][T13650]  ? mark_lock+0xb5/0xc60
[  501.830379][T13650]  ? __pfx_mark_lock+0x10/0x10
[  501.835142][T13650]  ? __pfx_mark_lock+0x10/0x10
[  501.839904][T13650]  ? __pfx___lock_acquire+0x10/0x10
[  501.845102][T13650]  ? kasan_save_stack+0x42/0x60
[  501.849954][T13650]  ? kasan_save_stack+0x33/0x60
[  501.854805][T13650]  ? kasan_save_track+0x14/0x30
[  501.859659][T13650]  ? kasan_save_free_info+0x3b/0x60
[  501.864864][T13650]  ? __kasan_slab_free+0x51/0x70
[  501.869803][T13650]  ? kfree+0x14f/0x4b0
[  501.873877][T13650]  ? hlock_class+0x4e/0x130
[  501.878382][T13650]  ? __lock_acquire+0xbdd/0x3ce0
[  501.883332][T13650]  ? __pfx___lock_acquire+0x10/0x10
[  501.888531][T13650]  ? __pfx___lock_acquire+0x10/0x10
[  501.893732][T13650]  ? avc_has_extended_perms+0x902/0xf70
[  501.899465][T13650]  ? find_held_lock+0x2d/0x110
[  501.904255][T13650]  ? dev_load+0x8e/0x240
[  501.908509][T13650]  ? __pfx_lock_release+0x10/0x10
[  501.913531][T13650]  ? trace_lock_acquire+0x14a/0x1d0
[  501.918824][T13650]  ? full_name_hash+0xbc/0x110
[  501.923611][T13650]  dev_ioctl+0x2a2/0x10c0
[  501.927954][T13650]  sock_do_ioctl+0x19e/0x280
[  501.932552][T13650]  ? __pfx_sock_do_ioctl+0x10/0x10
[  501.937677][T13650]  ? ioctl_has_perm.constprop.0.isra.0+0x2ea/0x460
[  501.944184][T13650]  ? ioctl_has_perm.constprop.0.isra.0+0x2f3/0x460
[  501.950695][T13650]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  501.957551][T13650]  sock_ioctl+0x228/0x6c0
[  501.961890][T13650]  ? __pfx_sock_ioctl+0x10/0x10
[  501.966753][T13650]  ? selinux_file_ioctl+0x180/0x270
[  501.971955][T13650]  ? selinux_file_ioctl+0xb4/0x270
[  501.977070][T13650]  ? __pfx_sock_ioctl+0x10/0x10
[  501.981935][T13650]  __x64_sys_ioctl+0x18f/0x220
[  501.986713][T13650]  do_syscall_64+0xcd/0x250
[  501.991222][T13650]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  501.997124][T13650] RIP: 0033:0x7fecb617e719
[  502.001538][T13650] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  502.021155][T13650] RSP: 002b:00007fecb6f8c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  502.029586][T13650] RAX: ffffffffffffffda RBX: 00007fecb6335f80 RCX: 00007fecb617e719
[  502.037558][T13650] RDX: 0000000020000080 RSI: 0000000000008946 RDI: 0000000000000003
[  502.045530][T13650] RBP: 00007fecb6f8c090 R08: 0000000000000000 R09: 0000000000000000
[  502.053541][T13650] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  502.061513][T13650] R13: 0000000000000000 R14: 00007fecb6335f80 R15: 00007ffe42afa468
[  502.069495][T13650]  </TASK>
[  502.072628][T13657] CPU: 0 UID: 0 PID: 13657 Comm: syz.4.1511 Not tainted 6.12.0-rc6-syzkaller-00318-ga9cda7c0ffed #0
[  502.083402][T13657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  502.093462][T13657] Call Trace:
[  502.096729][T13657]  <TASK>
[  502.099650][T13657]  dump_stack_lvl+0x16c/0x1f0
[  502.104319][T13657]  should_fail_ex+0x497/0x5b0
[  502.108986][T13657]  _copy_to_user+0x32/0xd0
[  502.113393][T13657]  simple_read_from_buffer+0xd0/0x160
[  502.118754][T13657]  proc_fail_nth_read+0x198/0x270
[  502.123768][T13657]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  502.129304][T13657]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  502.134856][T13657]  vfs_read+0x1df/0xbe0
[  502.139003][T13657]  ? __fget_files+0x23a/0x3f0
[  502.143672][T13657]  ? fdget_pos+0x24c/0x360
[  502.148070][T13657]  ? __pfx_lock_release+0x10/0x10
[  502.153079][T13657]  ? trace_lock_acquire+0x14a/0x1d0
[  502.158279][T13657]  ? __pfx_vfs_read+0x10/0x10
[  502.162945][T13657]  ? __pfx___mutex_lock+0x10/0x10
[  502.167969][T13657]  ? __fget_files+0x244/0x3f0
[  502.172656][T13657]  ksys_read+0x12f/0x260
[  502.176906][T13657]  ? __pfx_ksys_read+0x10/0x10
[  502.181667][T13657]  do_syscall_64+0xcd/0x250
[  502.186155][T13657]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  502.192056][T13657] RIP: 0033:0x7f065037d15c
[  502.196457][T13657] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  502.216050][T13657] RSP: 002b:00007f0651184030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  502.224449][T13657] RAX: ffffffffffffffda RBX: 00007f0650535f80 RCX: 00007f065037d15c
[  502.232422][T13657] RDX: 000000000000000f RSI: 00007f06511840a0 RDI: 0000000000000005
[  502.240376][T13657] RBP: 00007f0651184090 R08: 0000000000000000 R09: 0000000000000000
[  502.248342][T13657] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  502.256297][T13657] R13: 0000000000000000 R14: 00007f0650535f80 R15: 00007ffd313f1128
[  502.264263][T13657]  </TASK>
[  502.371396][T13672] fuse: Unknown parameter 'group_i00000000000000000000'
[  502.380666][T13672] netlink: 'syz.4.1514': attribute type 9 has an invalid length.
[  502.388478][   T29] audit: type=1400 audit(1731289825.446:867): avc:  denied  { setopt } for  pid=13666 comm="syz.5.1513" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  502.408540][T13672] netlink: 134660 bytes leftover after parsing attributes in process `syz.4.1514'.
[  503.511961][ T5828] usb 2-1: USB disconnect, device number 46
[  503.819392][   T25] usb 4-1: new high-speed USB device number 38 using dummy_hcd
[  503.827196][   T51] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  503.979544][   T25] usb 4-1: Using ep0 maxpacket: 8
[  504.009322][   T51] usb 6-1: Using ep0 maxpacket: 16
[  504.075891][   T25] usb 4-1: config 168 descriptor has 1 excess byte, ignoring
[  504.119781][   T51] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  504.196724][   T25] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  504.260959][   T51] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  504.275318][   T25] usb 4-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  504.293901][   T51] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  504.332983][   T25] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  504.352637][   T51] usb 6-1: New USB device found, idVendor=056a, idProduct=0022, bcdDevice= 0.00
[  504.372495][   T25] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  504.388295][   T51] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  504.404162][   T25] usb 4-1: config 168 descriptor has 1 excess byte, ignoring
[  504.413889][   T25] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  504.428108][   T51] usb 6-1: config 0 descriptor??
[  504.438550][   T25] usb 4-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  504.500474][T13731] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1524'.
[  504.530513][   T25] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  504.541747][   T25] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  504.555536][   T25] usb 4-1: config 168 descriptor has 1 excess byte, ignoring
[  504.563422][   T25] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  504.574761][   T25] usb 4-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  504.586180][T13731] FAULT_INJECTION: forcing a failure.
[  504.586180][T13731] name failslab, interval 1, probability 0, space 0, times 0
[  504.586711][   T25] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  504.616115][T13731] CPU: 0 UID: 0 PID: 13731 Comm: syz.1.1524 Not tainted 6.12.0-rc6-syzkaller-00318-ga9cda7c0ffed #0
[  504.618860][   T25] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  504.626891][T13731] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  504.626907][T13731] Call Trace:
[  504.626915][T13731]  <TASK>
[  504.626923][T13731]  dump_stack_lvl+0x16c/0x1f0
[  504.626947][T13731]  should_fail_ex+0x497/0x5b0
[  504.626970][T13731]  should_failslab+0xc2/0x120
[  504.626992][T13731]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  504.627011][T13731]  ? skb_clone+0x190/0x3f0
[  504.627036][T13731]  skb_clone+0x190/0x3f0
[  504.627058][T13731]  netlink_deliver_tap+0xab3/0xd90
[  504.627085][T13731]  netlink_unicast+0x6b4/0x7f0
[  504.627105][T13731]  ? __pfx_netlink_unicast+0x10/0x10
[  504.627120][T13731]  ? rtnetlink_rcv_msg+0x3e6/0xea0
[  504.660906][   T25] usb 4-1: string descriptor 0 read error: -22
[  504.663936][T13731]  netlink_ack+0x6a8/0xb90
[  504.668692][   T25] usb 4-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  504.673977][T13731]  netlink_rcv_skb+0x348/0x440
[  504.673996][T13731]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  504.674018][T13731]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  504.674046][T13731]  ? netlink_deliver_tap+0x1ae/0xd90
[  504.674078][T13731]  netlink_unicast+0x53c/0x7f0
[  504.689375][T13736] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.1525'.
[  504.692544][T13731]  ? __pfx_netlink_unicast+0x10/0x10
[  504.701434][   T25] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  504.702918][T13731]  netlink_sendmsg+0x8b8/0xd70
[  504.722453][T13731]  ? __pfx_netlink_sendmsg+0x10/0x10
[  504.722487][T13731]  ____sys_sendmsg+0xaaf/0xc90
[  504.722512][T13731]  ? copy_msghdr_from_user+0x10b/0x160
[  504.722533][T13731]  ? __pfx_____sys_sendmsg+0x10/0x10
[  504.737272][T13736] sysfs: cannot create duplicate filename '/class/ieee80211/ü!'
[  504.738010][T13731]  ? __pfx___lock_acquire+0x10/0x10
[  504.750490][   T25] adutux 4-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  504.757280][T13731]  ___sys_sendmsg+0x135/0x1e0
[  504.821133][T13731]  ? __pfx____sys_sendmsg+0x10/0x10
[  504.826358][T13731]  ? lock_acquire+0x2f/0xb0
[  504.830872][T13731]  ? __fget_files+0x40/0x3f0
[  504.835494][T13731]  ? fdget+0x176/0x210
[  504.839587][T13731]  __sys_sendmsg+0x117/0x1f0
[  504.844190][T13731]  ? __pfx___sys_sendmsg+0x10/0x10
[  504.849318][T13731]  ? __fget_files+0x244/0x3f0
[  504.854031][T13731]  do_syscall_64+0xcd/0x250
[  504.858557][T13731]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  504.864468][T13731] RIP: 0033:0x7f89fb77e719
[  504.868880][T13731] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  504.888490][T13731] RSP: 002b:00007f89f9bf6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  504.896894][T13731] RAX: ffffffffffffffda RBX: 00007f89fb935f80 RCX: 00007f89fb77e719
[  504.904853][T13731] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000004
[  504.912813][T13731] RBP: 00007f89f9bf6090 R08: 0000000000000000 R09: 0000000000000000
[  504.920774][T13731] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  504.928736][T13731] R13: 0000000000000000 R14: 00007f89fb935f80 R15: 00007ffe4dc05548
[  504.936704][T13731]  </TASK>
[  504.970028][T13736] CPU: 1 UID: 0 PID: 13736 Comm: syz.0.1525 Not tainted 6.12.0-rc6-syzkaller-00318-ga9cda7c0ffed #0
[  504.980845][T13736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  504.990926][T13736] Call Trace:
[  504.994207][T13736]  <TASK>
[  504.997122][T13736]  dump_stack_lvl+0x16c/0x1f0
[  505.001789][T13736]  sysfs_warn_dup+0x7f/0xa0
[  505.006287][T13736]  sysfs_do_create_link_sd+0x124/0x140
[  505.011736][T13736]  sysfs_create_link+0x61/0xc0
[  505.016509][T13736]  device_add+0x62e/0x1a70
[  505.020916][T13736]  ? __pfx_device_add+0x10/0x10
[  505.025753][T13736]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  505.031643][T13736]  ? ieee80211_set_bitrate_flags+0x249/0x6a0
[  505.037644][T13736]  wiphy_register+0x2101/0x2d00
[  505.042491][T13736]  ? __pfx_wiphy_register+0x10/0x10
[  505.047682][T13736]  ? ieee80211_init_rate_ctrl_alg+0x125/0x6b0
[  505.053759][T13736]  ieee80211_register_hw+0x2aaa/0x41b0
[  505.059306][T13736]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  505.065107][T13736]  ? net_generic+0xea/0x2a0
[  505.069611][T13736]  ? __asan_memset+0x23/0x50
[  505.074216][T13736]  ? __hrtimer_init+0x106/0x2c0
[  505.079073][T13736]  mac80211_hwsim_new_radio+0x304e/0x54d0
[  505.084824][T13736]  ? trace_kmalloc+0x2d/0xe0
[  505.089434][T13736]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  505.095489][T13736]  ? hwsim_new_radio_nl+0x9ff/0x12b0
[  505.100764][T13736]  ? __asan_memcpy+0x3c/0x60
[  505.105357][T13736]  hwsim_new_radio_nl+0xb42/0x12b0
[  505.110459][T13736]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  505.115998][T13736]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  505.123357][T13736]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  505.130724][T13736]  genl_family_rcv_msg_doit+0x202/0x2f0
[  505.136259][T13736]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  505.142319][T13736]  ? bpf_lsm_capable+0x9/0x10
[  505.146991][T13736]  ? security_capable+0x7e/0x260
[  505.151921][T13736]  ? ns_capable+0xd7/0x110
[  505.156330][T13736]  genl_rcv_msg+0x565/0x800
[  505.160847][T13736]  ? __pfx_genl_rcv_msg+0x10/0x10
[  505.165858][T13736]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  505.171398][T13736]  ? kasan_check_range+0x6e/0x1a0
[  505.176419][T13736]  netlink_rcv_skb+0x16b/0x440
[  505.181173][T13736]  ? __pfx_genl_rcv_msg+0x10/0x10
[  505.186185][T13736]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  505.191463][T13736]  ? down_read+0xc9/0x330
[  505.195781][T13736]  ? __pfx_down_read+0x10/0x10
[  505.200531][T13736]  ? netlink_deliver_tap+0x1ae/0xd90
[  505.205816][T13736]  genl_rcv+0x28/0x40
[  505.209790][T13736]  netlink_unicast+0x53c/0x7f0
[  505.214539][T13736]  ? __pfx_netlink_unicast+0x10/0x10
[  505.219824][T13736]  ? const_folio_flags.constprop.0+0x56/0x150
[  505.225887][T13736]  netlink_sendmsg+0x8b8/0xd70
[  505.230639][T13736]  ? __pfx_netlink_sendmsg+0x10/0x10
[  505.235915][T13736]  ____sys_sendmsg+0xaaf/0xc90
[  505.240672][T13736]  ? copy_msghdr_from_user+0x10b/0x160
[  505.246116][T13736]  ? __pfx_____sys_sendmsg+0x10/0x10
[  505.251396][T13736]  ? __pfx___lock_acquire+0x10/0x10
[  505.256583][T13736]  ___sys_sendmsg+0x135/0x1e0
[  505.261263][T13736]  ? __pfx____sys_sendmsg+0x10/0x10
[  505.266459][T13736]  ? lock_acquire+0x2f/0xb0
[  505.270945][T13736]  ? __fget_files+0x40/0x3f0
[  505.275536][T13736]  ? fdget+0x176/0x210
[  505.279614][T13736]  __sys_sendmsg+0x117/0x1f0
[  505.284190][T13736]  ? __pfx___sys_sendmsg+0x10/0x10
[  505.289291][T13736]  ? __x64_sys_futex+0x1e1/0x4c0
[  505.294233][T13736]  do_syscall_64+0xcd/0x250
[  505.298730][T13736]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  505.304615][T13736] RIP: 0033:0x7fe2c257e719
[  505.309016][T13736] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  505.328610][T13736] RSP: 002b:00007fe2c3416038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  505.337097][T13736] RAX: ffffffffffffffda RBX: 00007fe2c2735f80 RCX: 00007fe2c257e719
[  505.345058][T13736] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000009
[  505.353272][T13736] RBP: 00007fe2c25f139e R08: 0000000000000000 R09: 0000000000000000
[  505.361227][T13736] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  505.369196][T13736] R13: 0000000000000000 R14: 00007fe2c2735f80 R15: 00007fffb5d22728
[  505.377161][T13736]  </TASK>
[  505.395036][T13695] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  505.416829][   T51] wacom 0003:056A:0022.0022: ignoring exceeding usage max
[  505.431892][T13695] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  505.441147][   T51] wacom 0003:056A:0022.0022: unknown main item tag 0x0
[  505.466374][   T51] wacom 0003:056A:0022.0022: unknown main item tag 0x0
[  505.481825][   T51] wacom 0003:056A:0022.0022: unknown main item tag 0x0
[  505.509075][   T29] audit: type=1400 audit(1731289828.566:868): avc:  denied  { map } for  pid=13694 comm="syz.3.1518" path="/dev/binderfs/binder0" dev="binder" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  505.535364][   T51] wacom 0003:056A:0022.0022: Unknown device_type for 'HID 056a:0022'. Assuming pen.
[  505.546065][T13695] binder: 13694:13695 ioctl 89f0 20000380 returned -22
[  505.562662][   T51] wacom 0003:056A:0022.0022: hidraw0: USB HID v0.00 Device [HID 056a:0022] on usb-dummy_hcd.5-1/input0
[  505.574792][   T51] input: Wacom Intuos 9x12 Pen as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:056A:0022.0022/input/input62
[  505.661143][   T29] audit: type=1400 audit(1731289828.726:869): avc:  denied  { call } for  pid=13694 comm="syz.3.1518" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  505.707562][   T29] audit: type=1400 audit(1731289828.726:870): avc:  denied  { transfer } for  pid=13694 comm="syz.3.1518" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  505.774326][ T5872] usb 6-1: USB disconnect, device number 5
[  506.008620][T13781] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  506.027350][T13781] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  506.044360][T13781] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[  506.049223][ T5869] usb 4-1: USB disconnect, device number 38
[  507.013252][T13821] s: rxe_newlink: already configured on team_slave_1
[  507.308030][ T1200] usb 5-1: new high-speed USB device number 52 using dummy_hcd
[  507.569367][ T5872] usb 1-1: new high-speed USB device number 53 using dummy_hcd
[  507.589335][ T1200] usb 5-1: Using ep0 maxpacket: 8
[  507.599034][ T1200] usb 5-1: config 4 has an invalid interface number: 182 but max is 0
[  507.609099][ T1200] usb 5-1: config 4 has no interface number 0
[  507.694437][ T1200] usb 5-1: New USB device found, idVendor=0499, idProduct=1033, bcdDevice=5c.79
[  507.770419][ T5872] usb 1-1: config index 0 descriptor too short (expected 23569, got 27)
[  507.786136][ T5872] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  507.861590][ T1200] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  507.980407][ T5872] usb 1-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  508.026582][ T1200] usb 5-1: Product: syz
[  508.045755][ T1200] usb 5-1: Manufacturer: syz
[  508.057009][ T5872] usb 1-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  508.069292][ T1200] usb 5-1: SerialNumber: syz
[  508.077120][ T5872] usb 1-1: Manufacturer: syz
[  508.091685][ T5872] usb 1-1: config 0 descriptor??
[  508.105601][ T5872] igorplugusb 1-1:0.0: incorrect number of endpoints
[  508.287791][T13821] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  508.296491][T13821] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  508.361371][ T1200] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  508.452004][ T1200] snd-usb-audio 5-1:4.182: probe with driver snd-usb-audio failed with error -2
[  508.494198][ T1200] usb 5-1: USB disconnect, device number 52
[  508.879162][ T5872] usb 4-1: new high-speed USB device number 39 using dummy_hcd
[  508.899986][ T5818] udevd[5818]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:4.182/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  508.922019][T13886] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[  508.960207][T13886] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[  508.990919][T13886] netdevsim netdevsim4: Falling back to sysfs fallback for: .
[  509.099877][ T5872] usb 4-1: Using ep0 maxpacket: 32
[  509.107248][ T5872] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  509.118319][ T5872] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  509.133603][ T5872] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  509.149372][ T5872] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  509.175195][ T5872] usb 4-1: New USB device found, idVendor=1b96, idProduct=000a, bcdDevice= 0.00
[  509.194643][ T5872] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  509.224662][ T5872] usb 4-1: config 0 descriptor??
[  509.360961][   T29] audit: type=1400 audit(1731289832.416:871): avc:  denied  { unlink } for  pid=13891 comm="syz.1.1543" name="#f" dev="tmpfs" ino=1642 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  510.239301][   T51] usb 1-1: USB disconnect, device number 53
[  510.972853][ T5872] ntrig 0003:1B96:000A.0023: unknown main item tag 0x0
[  510.979798][ T5872] ntrig 0003:1B96:000A.0023: unknown main item tag 0x0
[  510.986639][ T5872] ntrig 0003:1B96:000A.0023: unknown main item tag 0x0
[  510.993593][ T5872] ntrig 0003:1B96:000A.0023: unknown main item tag 0x0
[  511.000506][ T5872] ntrig 0003:1B96:000A.0023: unknown main item tag 0x0
[  511.368686][ T5872] ntrig 0003:1B96:000A.0023: hidraw0: USB HID v0.00 Device [HID 1b96:000a] on usb-dummy_hcd.3-1/input0
[  511.421290][T13866] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  511.433096][T13866] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  511.890935][ T5872] usb 4-1: USB disconnect, device number 39
[  512.459388][T12211] usb 2-1: new high-speed USB device number 47 using dummy_hcd
[  512.906436][T13964] s: rxe_newlink: already configured on team_slave_1
[  512.937327][T13957] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.1551'.
[  512.951596][T13957] sysfs: cannot create duplicate filename '/class/ieee80211/ü!'
[  512.963912][T13957] CPU: 1 UID: 0 PID: 13957 Comm: syz.0.1551 Not tainted 6.12.0-rc6-syzkaller-00318-ga9cda7c0ffed #0
[  512.974716][T13957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  512.984785][T13957] Call Trace:
[  512.988065][T13957]  <TASK>
[  512.990996][T13957]  dump_stack_lvl+0x16c/0x1f0
[  512.995691][T13957]  sysfs_warn_dup+0x7f/0xa0
[  513.000205][T13957]  sysfs_do_create_link_sd+0x124/0x140
[  513.005676][T13957]  sysfs_create_link+0x61/0xc0
[  513.010448][T13957]  device_add+0x62e/0x1a70
[  513.014877][T13957]  ? __pfx_device_add+0x10/0x10
[  513.019742][T13957]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  513.025668][T13957]  ? ieee80211_set_bitrate_flags+0x249/0x6a0
[  513.031681][T13957]  wiphy_register+0x2101/0x2d00
[  513.036537][T13957]  ? __pfx_wiphy_register+0x10/0x10
[  513.041729][T13957]  ? ieee80211_init_rate_ctrl_alg+0x125/0x6b0
[  513.047790][T13957]  ieee80211_register_hw+0x2aaa/0x41b0
[  513.053251][T13957]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  513.059047][T13957]  ? net_generic+0xea/0x2a0
[  513.063550][T13957]  ? __asan_memset+0x23/0x50
[  513.068125][T13957]  ? __hrtimer_init+0x106/0x2c0
[  513.072968][T13957]  mac80211_hwsim_new_radio+0x304e/0x54d0
[  513.078683][T13957]  ? trace_kmalloc+0x2d/0xe0
[  513.083260][T13957]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  513.089312][T13957]  ? hwsim_new_radio_nl+0x9ff/0x12b0
[  513.094580][T13957]  ? __asan_memcpy+0x3c/0x60
[  513.099157][T13957]  hwsim_new_radio_nl+0xb42/0x12b0
[  513.104262][T13957]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  513.109802][T13957]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  513.117156][T13957]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  513.124515][T13957]  genl_family_rcv_msg_doit+0x202/0x2f0
[  513.130051][T13957]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  513.136133][T13957]  ? bpf_lsm_capable+0x9/0x10
[  513.140796][T13957]  ? security_capable+0x7e/0x260
[  513.145728][T13957]  ? ns_capable+0xd7/0x110
[  513.150133][T13957]  genl_rcv_msg+0x565/0x800
[  513.154624][T13957]  ? __pfx_genl_rcv_msg+0x10/0x10
[  513.159633][T13957]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  513.165185][T13957]  netlink_rcv_skb+0x16b/0x440
[  513.169933][T13957]  ? __pfx_genl_rcv_msg+0x10/0x10
[  513.174942][T13957]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  513.180216][T13957]  ? down_read+0xc9/0x330
[  513.184534][T13957]  ? __pfx_down_read+0x10/0x10
[  513.189282][T13957]  ? netlink_deliver_tap+0x1ae/0xd90
[  513.194560][T13957]  genl_rcv+0x28/0x40
[  513.198529][T13957]  netlink_unicast+0x53c/0x7f0
[  513.203277][T13957]  ? __pfx_netlink_unicast+0x10/0x10
[  513.208544][T13957]  ? const_folio_flags.constprop.0+0x56/0x150
[  513.214602][T13957]  netlink_sendmsg+0x8b8/0xd70
[  513.219353][T13957]  ? __pfx_netlink_sendmsg+0x10/0x10
[  513.224628][T13957]  ____sys_sendmsg+0xaaf/0xc90
[  513.229383][T13957]  ? copy_msghdr_from_user+0x10b/0x160
[  513.234829][T13957]  ? __pfx_____sys_sendmsg+0x10/0x10
[  513.240109][T13957]  ? __pfx___lock_acquire+0x10/0x10
[  513.245293][T13957]  ___sys_sendmsg+0x135/0x1e0
[  513.249957][T13957]  ? __pfx____sys_sendmsg+0x10/0x10
[  513.255165][T13957]  ? lock_acquire+0x2f/0xb0
[  513.259650][T13957]  ? __fget_files+0x40/0x3f0
[  513.264238][T13957]  ? fdget+0x176/0x210
[  513.268301][T13957]  __sys_sendmsg+0x117/0x1f0
[  513.272879][T13957]  ? __pfx___sys_sendmsg+0x10/0x10
[  513.277978][T13957]  ? __x64_sys_futex+0x1e1/0x4c0
[  513.282917][T13957]  do_syscall_64+0xcd/0x250
[  513.287406][T13957]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  513.293289][T13957] RIP: 0033:0x7fe2c257e719
[  513.297687][T13957] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  513.317282][T13957] RSP: 002b:00007fe2c3416038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  513.325680][T13957] RAX: ffffffffffffffda RBX: 00007fe2c2735f80 RCX: 00007fe2c257e719
[  513.333635][T13957] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000009
[  513.341591][T13957] RBP: 00007fe2c25f139e R08: 0000000000000000 R09: 0000000000000000
[  513.349547][T13957] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  513.357502][T13957] R13: 0000000000000000 R14: 00007fe2c2735f80 R15: 00007fffb5d22728
[  513.365471][T13957]  </TASK>
[  513.375931][T12211] usb 2-1: Using ep0 maxpacket: 8
[  513.390358][T12211] usb 2-1: config 168 descriptor has 1 excess byte, ignoring
[  513.409788][T13974] sp0: Synchronizing with TNC
[  513.519313][   T51] usb 5-1: new high-speed USB device number 53 using dummy_hcd
[  513.527718][T12211] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  513.539800][T12211] usb 2-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  513.551736][T12211] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  513.563148][T12211] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  513.578594][T12211] usb 2-1: config 168 descriptor has 1 excess byte, ignoring
[  513.586144][T12211] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  513.597547][T12211] usb 2-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  513.613041][T12211] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  513.624219][T12211] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  513.736512][T12211] usb 2-1: config 168 descriptor has 1 excess byte, ignoring
[  513.904440][T12211] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  513.939219][T12211] usb 2-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  513.963842][T13988] netdevsim netdevsim5: loading /lib/firmware/. failed with error -22
[  514.001458][T12211] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  514.017388][T13988] netdevsim netdevsim5: Direct firmware load for . failed with error -22
[  514.049291][   T51] usb 5-1: Using ep0 maxpacket: 8
[  514.055985][T13988] netdevsim netdevsim5: Falling back to sysfs fallback for: .
[  514.072133][   T51] usb 5-1: config 4 has an invalid interface number: 182 but max is 0
[  514.084528][   T51] usb 5-1: config 4 has no interface number 0
[  514.099044][   T51] usb 5-1: New USB device found, idVendor=0499, idProduct=1033, bcdDevice=5c.79
[  514.113193][   T51] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  514.121350][   T51] usb 5-1: Product: syz
[  514.125514][   T51] usb 5-1: Manufacturer: syz
[  514.130261][   T51] usb 5-1: SerialNumber: syz
[  514.165070][T12211] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  514.352639][T13964] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  514.361314][T13964] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  514.373397][T12211] usb 2-1: string descriptor 0 read error: -22
[  514.379711][T12211] usb 2-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  514.388759][T12211] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  514.710825][   T51] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  515.007975][   T51] snd-usb-audio 5-1:4.182: probe with driver snd-usb-audio failed with error -2
[  515.066506][T12211] adutux 2-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  515.178410][T12211] usb 2-1: USB disconnect, device number 47
[  515.215392][   T51] usb 5-1: USB disconnect, device number 53
[  515.574248][T14036] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1559'.
[  516.490373][ T5818] udevd[5818]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:4.182/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  517.229973][T14059] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.1566'.
[  517.273056][T14059] sysfs: cannot create duplicate filename '/class/ieee80211/ü!'
[  517.314249][T14059] CPU: 0 UID: 0 PID: 14059 Comm: syz.3.1566 Not tainted 6.12.0-rc6-syzkaller-00318-ga9cda7c0ffed #0
[  517.325063][T14059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  517.335142][T14059] Call Trace:
[  517.338433][T14059]  <TASK>
[  517.341375][T14059]  dump_stack_lvl+0x16c/0x1f0
[  517.346076][T14059]  sysfs_warn_dup+0x7f/0xa0
[  517.350605][T14059]  sysfs_do_create_link_sd+0x124/0x140
[  517.356087][T14059]  sysfs_create_link+0x61/0xc0
[  517.360875][T14059]  device_add+0x62e/0x1a70
[  517.365313][T14059]  ? __pfx_device_add+0x10/0x10
[  517.370184][T14059]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  517.376115][T14059]  ? ieee80211_set_bitrate_flags+0x249/0x6a0
[  517.382126][T14059]  wiphy_register+0x2101/0x2d00
[  517.387013][T14059]  ? __pfx_wiphy_register+0x10/0x10
[  517.392233][T14059]  ? ieee80211_init_rate_ctrl_alg+0x125/0x6b0
[  517.398301][T14059]  ieee80211_register_hw+0x2aaa/0x41b0
[  517.403762][T14059]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  517.409561][T14059]  ? net_generic+0xea/0x2a0
[  517.414235][T14059]  ? __asan_memset+0x23/0x50
[  517.418895][T14059]  ? __hrtimer_init+0x106/0x2c0
[  517.423732][T14059]  mac80211_hwsim_new_radio+0x304e/0x54d0
[  517.429451][T14059]  ? trace_kmalloc+0x2d/0xe0
[  517.434028][T14059]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  517.440081][T14059]  ? hwsim_new_radio_nl+0x9ff/0x12b0
[  517.445352][T14059]  ? __asan_memcpy+0x3c/0x60
[  517.449946][T14059]  hwsim_new_radio_nl+0xb42/0x12b0
[  517.455043][T14059]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  517.460668][T14059]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  517.468022][T14059]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  517.475382][T14059]  genl_family_rcv_msg_doit+0x202/0x2f0
[  517.480914][T14059]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  517.486984][T14059]  ? bpf_lsm_capable+0x9/0x10
[  517.491646][T14059]  ? security_capable+0x7e/0x260
[  517.496574][T14059]  ? ns_capable+0xd7/0x110
[  517.500978][T14059]  genl_rcv_msg+0x565/0x800
[  517.505492][T14059]  ? __pfx_genl_rcv_msg+0x10/0x10
[  517.510531][T14059]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  517.516085][T14059]  netlink_rcv_skb+0x16b/0x440
[  517.520840][T14059]  ? __pfx_genl_rcv_msg+0x10/0x10
[  517.525851][T14059]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  517.531131][T14059]  ? down_read+0xc9/0x330
[  517.535446][T14059]  ? __pfx_down_read+0x10/0x10
[  517.540195][T14059]  ? netlink_deliver_tap+0x1ae/0xd90
[  517.545475][T14059]  genl_rcv+0x28/0x40
[  517.549442][T14059]  netlink_unicast+0x53c/0x7f0
[  517.554192][T14059]  ? __pfx_netlink_unicast+0x10/0x10
[  517.559461][T14059]  ? const_folio_flags.constprop.0+0x56/0x150
[  517.565520][T14059]  netlink_sendmsg+0x8b8/0xd70
[  517.570289][T14059]  ? __pfx_netlink_sendmsg+0x10/0x10
[  517.575585][T14059]  ____sys_sendmsg+0xaaf/0xc90
[  517.580352][T14059]  ? copy_msghdr_from_user+0x10b/0x160
[  517.585804][T14059]  ? __pfx_____sys_sendmsg+0x10/0x10
[  517.591087][T14059]  ? __pfx___lock_acquire+0x10/0x10
[  517.596275][T14059]  ___sys_sendmsg+0x135/0x1e0
[  517.600941][T14059]  ? __pfx____sys_sendmsg+0x10/0x10
[  517.606134][T14059]  ? lock_acquire+0x2f/0xb0
[  517.610618][T14059]  ? __fget_files+0x40/0x3f0
[  517.615209][T14059]  ? fdget+0x176/0x210
[  517.619273][T14059]  __sys_sendmsg+0x117/0x1f0
[  517.623847][T14059]  ? __pfx___sys_sendmsg+0x10/0x10
[  517.628945][T14059]  ? __x64_sys_futex+0x1e1/0x4c0
[  517.634664][T14059]  do_syscall_64+0xcd/0x250
[  517.639203][T14059]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  517.645088][T14059] RIP: 0033:0x7fcedb37e719
[  517.649487][T14059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  517.669092][T14059] RSP: 002b:00007fcedc22a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  517.677503][T14059] RAX: ffffffffffffffda RBX: 00007fcedb535f80 RCX: 00007fcedb37e719
[  517.685458][T14059] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000009
[  517.693413][T14059] RBP: 00007fcedb3f139e R08: 0000000000000000 R09: 0000000000000000
[  517.701369][T14059] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  517.709322][T14059] R13: 0000000000000000 R14: 00007fcedb535f80 R15: 00007ffc6300a2a8
[  517.717285][T14059]  </TASK>
[  518.112445][T14082] netlink: 'syz.0.1562': attribute type 1 has an invalid length.
[  518.120307][T14082] netlink: 112860 bytes leftover after parsing attributes in process `syz.0.1562'.
[  519.321546][   T29] audit: type=1400 audit(1731289842.366:872): avc:  denied  { read } for  pid=14093 comm="syz.4.1571" name="btrfs-control" dev="devtmpfs" ino=1309 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  519.346411][    C0] vkms_vblank_simulate: vblank timer overrun
[  519.919121][   T29] audit: type=1400 audit(1731289842.366:873): avc:  denied  { open } for  pid=14093 comm="syz.4.1571" path="/dev/btrfs-control" dev="devtmpfs" ino=1309 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  519.943372][    C0] vkms_vblank_simulate: vblank timer overrun
[  520.634515][   T29] audit: type=1400 audit(1731289843.696:874): avc:  denied  { read write } for  pid=14115 comm="syz.1.1574" name="nvram" dev="devtmpfs" ino=623 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  520.685824][   T29] audit: type=1400 audit(1731289843.726:875): avc:  denied  { open } for  pid=14115 comm="syz.1.1574" path="/dev/nvram" dev="devtmpfs" ino=623 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  520.709351][    C0] vkms_vblank_simulate: vblank timer overrun
[  520.724112][   T29] audit: type=1400 audit(1731289843.726:876): avc:  denied  { ioctl } for  pid=14115 comm="syz.1.1574" path="/dev/nvram" dev="devtmpfs" ino=623 ioctlcmd=0x671e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  520.749066][    C0] vkms_vblank_simulate: vblank timer overrun
[  521.186466][T14130] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1577'.
[  521.433898][T12211] usb 2-1: new high-speed USB device number 48 using dummy_hcd
[  521.446483][   T29] audit: type=1400 audit(1731289844.266:877): avc:  denied  { write } for  pid=14129 comm="syz.0.1577" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  521.600346][   T29] audit: type=1400 audit(1731289844.646:878): avc:  denied  { bind } for  pid=14127 comm="syz.4.1576" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  521.602208][T12211] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  521.638060][T12211] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  521.645666][   T29] audit: type=1400 audit(1731289844.646:879): avc:  denied  { name_bind } for  pid=14127 comm="syz.4.1576" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[  521.710364][   T29] audit: type=1400 audit(1731289844.646:880): avc:  denied  { node_bind } for  pid=14127 comm="syz.4.1576" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=dccp_socket permissive=1
[  521.751912][T12211] usb 2-1: New USB device found, idVendor=056a, idProduct=0003, bcdDevice= 0.00
[  521.785523][T12211] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  522.009384][   T51] usb 5-1: new high-speed USB device number 54 using dummy_hcd
[  522.154334][   T29] audit: type=1400 audit(1731289844.646:881): avc:  denied  { listen } for  pid=14127 comm="syz.4.1576" lport=20000 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  522.277215][T12211] usb 2-1: config 0 descriptor??
[  522.386871][T14156] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1579'.
[  522.406889][T14156] vlan2: entered promiscuous mode
[  522.412030][T14156] ip6gretap0: entered promiscuous mode
[  522.558722][T14116] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  522.977965][T14116] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  522.986368][   T51] usb 5-1: Using ep0 maxpacket: 8
[  523.007342][   T51] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  523.091208][   T51] usb 5-1: config 0 has no interfaces?
[  523.188807][T14116] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1574'.
[  523.222963][   T51] usb 5-1: New USB device found, idVendor=0572, idProduct=0320, bcdDevice=9c.be
[  523.232223][   T51] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  523.240330][   T51] usb 5-1: Product: syz
[  523.244526][   T51] usb 5-1: Manufacturer: syz
[  523.249117][   T51] usb 5-1: SerialNumber: syz
[  523.280164][   T51] usb 5-1: config 0 descriptor??
[  523.495075][T14186] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=14186 comm=syz.5.1582
[  523.516036][T12211] usbhid 2-1:0.0: can't add hid device: -71
[  523.522082][T12211] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  523.546780][T12211] usb 2-1: USB disconnect, device number 48
[  523.769278][ T5828] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  523.941627][T14200] netlink: 'syz.3.1583': attribute type 1 has an invalid length.
[  523.950679][T14200] netlink: 112860 bytes leftover after parsing attributes in process `syz.3.1583'.
[  524.104110][ T5828] usb 6-1: Using ep0 maxpacket: 8
[  524.113695][ T5828] usb 6-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  524.124633][ T5828] usb 6-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  524.139399][ T5828] usb 6-1: config 1 has no interface number 1
[  524.147187][ T5828] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  524.156470][ T5828] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  524.169903][ T5828] usb 6-1: Product: syz
[  524.174178][ T5828] usb 6-1: Manufacturer: syz
[  524.179042][ T5828] usb 6-1: SerialNumber: syz
[  524.860015][ T5828] usb 6-1: 2:1 : no or invalid class specific endpoint descriptor
[  524.879143][   T51] usb 5-1: USB disconnect, device number 54
[  524.925789][ T5828] usb 6-1: 2:1 : format type 0 is detected, processed as PCM
[  524.938869][ T5828] usb 6-1: 2:1 : invalid UAC_FORMAT_TYPE desc
[  524.952255][ T5828] usb 6-1: 2:1 : invalid channels 0
[  525.031746][ T5828] usb 6-1: USB disconnect, device number 6
[  525.809317][   T25] usb 2-1: new high-speed USB device number 49 using dummy_hcd
[  525.903399][T14261] binder: 14259:14261 ioctl c0306201 20000680 returned -22
[  525.959391][   T25] usb 2-1: Using ep0 maxpacket: 16
[  525.970852][   T25] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  526.020019][   T25] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  526.267227][   T25] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  526.423928][   T25] usb 2-1: New USB device found, idVendor=056a, idProduct=0022, bcdDevice= 0.00
[  526.439686][   T25] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  526.449257][   T25] usb 2-1: config 0 descriptor??
[  526.659364][T12211] usb 5-1: new high-speed USB device number 55 using dummy_hcd
[  526.871544][T14291] UBIFS error (pid: 14291): cannot open "/dev/sg0", error -22
[  526.920051][T14290] FAULT_INJECTION: forcing a failure.
[  526.920051][T14290] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  526.953477][T12211] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  526.988050][T12211] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  527.035471][T12211] usb 5-1: New USB device found, idVendor=060b, idProduct=700a, bcdDevice= 0.00
[  527.110642][T14290] CPU: 0 UID: 0 PID: 14290 Comm: syz.0.1595 Not tainted 6.12.0-rc6-syzkaller-00318-ga9cda7c0ffed #0
[  527.121461][T14290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  527.131518][T14290] Call Trace:
[  527.134803][T14290]  <TASK>
[  527.137731][T14290]  dump_stack_lvl+0x16c/0x1f0
[  527.142430][T14290]  should_fail_ex+0x497/0x5b0
[  527.147116][T14290]  _copy_from_user+0x2e/0xd0
[  527.151730][T14290]  move_addr_to_kernel+0x68/0x160
[  527.156765][T14290]  __sys_connect+0xb4/0x180
[  527.161268][T14290]  ? __pfx___sys_connect+0x10/0x10
[  527.166397][T14290]  __x64_sys_connect+0x72/0xb0
[  527.171161][T14290]  ? lockdep_hardirqs_on+0x7c/0x110
[  527.176371][T14290]  do_syscall_64+0xcd/0x250
[  527.180875][T14290]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  527.186774][T14290] RIP: 0033:0x7fe2c257e719
[  527.191297][T14290] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  527.193069][ T5828] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  527.210910][T14290] RSP: 002b:00007fe2c3416038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  527.210939][T14290] RAX: ffffffffffffffda RBX: 00007fe2c2735f80 RCX: 00007fe2c257e719
[  527.210951][T14290] RDX: 0000000000000010 RSI: 0000000020000180 RDI: 0000000000000004
[  527.210961][T14290] RBP: 00007fe2c3416090 R08: 0000000000000000 R09: 0000000000000000
[  527.210971][T14290] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  527.210981][T14290] R13: 0000000000000000 R14: 00007fe2c2735f80 R15: 00007fffb5d22728
[  527.211004][T14290]  </TASK>
[  527.226996][T12211] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  527.242041][   T25] wacom 0003:056A:0022.0024: ignoring exceeding usage max
[  527.281341][T12211] usb 5-1: config 0 descriptor??
[  527.286957][   T25] wacom 0003:056A:0022.0024: unknown main item tag 0x0
[  527.297612][   T25] wacom 0003:056A:0022.0024: unknown main item tag 0x0
[  527.304809][   T25] wacom 0003:056A:0022.0024: unknown main item tag 0x0
[  527.314262][   T25] wacom 0003:056A:0022.0024: Unknown device_type for 'HID 056a:0022'. Assuming pen.
[  527.325736][   T25] wacom 0003:056A:0022.0024: hidraw0: USB HID v0.00 Device [HID 056a:0022] on usb-dummy_hcd.1-1/input0
[  527.338737][   T25] input: Wacom Intuos 9x12 Pen as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:056A:0022.0024/input/input65
[  527.365672][   T25] usb 2-1: USB disconnect, device number 49
[  527.673288][   T29] kauditd_printk_skb: 4 callbacks suppressed
[  527.673324][   T29] audit: type=1400 audit(1731289850.566:886): avc:  denied  { ioctl } for  pid=14306 comm="syz.0.1596" path="socket:[32074]" dev="sockfs" ino=32074 ioctlcmd=0x89e4 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  527.733899][ T5828] usb 6-1: Using ep0 maxpacket: 16
[  527.822943][ T5828] usb 6-1: config 0 has an invalid interface number: 41 but max is 0
[  527.920173][ T5828] usb 6-1: config 0 has no interface number 0
[  527.997852][ T5828] usb 6-1: config 0 interface 41 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[  528.020421][T12211] cougar 0003:060B:700A.0025: hidraw0: USB HID v0.00 Device [HID 060b:700a] on usb-dummy_hcd.4-1/input0
[  528.022905][ T5828] usb 6-1: config 0 interface 41 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[  528.050031][ T5828] usb 6-1: config 0 interface 41 has no altsetting 0
[  528.065192][ T5828] usb 6-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[  528.074895][ T5828] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  528.086134][ T5828] usb 6-1: Product: syz
[  528.091606][ T5828] usb 6-1: Manufacturer: syz
[  528.096418][ T5828] usb 6-1: SerialNumber: syz
[  528.104773][ T5828] usb 6-1: config 0 descriptor??
[  528.111305][T14278] raw-gadget.2 gadget.5: fail, usb_ep_enable returned -22
[  528.118545][T14278] raw-gadget.2 gadget.5: fail, usb_ep_enable returned -22
[  528.223693][T12211] usb 5-1: USB disconnect, device number 55
[  528.333601][T14278] raw-gadget.2 gadget.5: fail, usb_ep_enable returned -22
[  528.342191][T14278] raw-gadget.2 gadget.5: fail, usb_ep_enable returned -22
[  528.932746][T14348] infiniband syz2: set active
[  528.937477][T14348] infiniband syz2: added team_slave_1
[  528.961043][T14348] RDS/IB: syz2: added
[  528.965087][T14348] smc: adding ib device syz2 with port count 1
[  528.971318][T14348] smc:    ib device syz2 port 1 has pnetid 
[  529.119388][   T25] usb 1-1: new high-speed USB device number 54 using dummy_hcd
[  529.420539][   T25] usb 1-1: Using ep0 maxpacket: 8
[  529.427670][   T25] usb 1-1: config 4 has an invalid interface number: 182 but max is 0
[  529.439654][   T25] usb 1-1: config 4 has no interface number 0
[  529.448714][   T25] usb 1-1: New USB device found, idVendor=0499, idProduct=1033, bcdDevice=5c.79
[  529.458406][   T25] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  529.495316][   T25] usb 1-1: Product: syz
[  529.504097][   T25] usb 1-1: Manufacturer: syz
[  529.514347][   T25] usb 1-1: SerialNumber: syz
[  529.558185][   T29] audit: type=1400 audit(1731289852.616:887): avc:  denied  { remount } for  pid=14377 comm="syz.1.1604" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  529.648050][ T5828] CoreChips 6-1:0.41: probe with driver CoreChips failed with error -71
[  529.663659][ T5828] usb 6-1: USB disconnect, device number 7
[  529.733691][T14348] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  529.742819][T14348] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  529.761173][   T25] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[  529.886594][T14407] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1606'.
[  530.195724][   T25] snd-usb-audio 1-1:4.182: probe with driver snd-usb-audio failed with error -2
[  530.216744][   T25] usb 1-1: USB disconnect, device number 54
[  530.302781][   T29] audit: type=1400 audit(1731289853.366:888): avc:  denied  { accept } for  pid=14417 comm="syz.3.1607" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  530.354711][T14421] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  530.364433][T14421] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  530.373955][T14421] netdevsim netdevsim0: Falling back to sysfs fallback for: .
[  530.377375][   T29] audit: type=1400 audit(1731289853.366:889): avc:  denied  { setopt } for  pid=14417 comm="syz.3.1607" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  530.421003][ T5818] udevd[5818]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:4.182/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  530.738483][T14436] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.1611' sets config #1
[  531.064244][   T29] audit: type=1400 audit(1731289853.936:890): avc:  denied  { read } for  pid=14432 comm="syz.1.1611" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  532.055378][T14451] VFS: could not find a valid V7 on nullb0.
[  532.253710][T14458] VFS: could not find a valid V7 on nullb0.
[  533.279315][ T1200] usb 5-1: new high-speed USB device number 56 using dummy_hcd
[  533.299337][T12211] usb 2-1: new high-speed USB device number 50 using dummy_hcd
[  533.459373][ T1200] usb 5-1: Using ep0 maxpacket: 8
[  533.468390][ T1200] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  533.479270][T12211] usb 2-1: Using ep0 maxpacket: 8
[  533.486218][ T1200] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  533.514630][T12211] usb 2-1: config 168 descriptor has 1 excess byte, ignoring
[  533.529211][ T1200] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  533.541073][T12211] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  533.559301][ T1200] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  533.570716][T12211] usb 2-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  533.589219][ T1200] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  533.603026][T12211] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  533.624365][T12211] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  533.646187][ T1200] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  533.653636][ T1200] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  533.664974][ T1200] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  533.676751][ T1200] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  533.687882][ T1200] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  533.700659][T12211] usb 2-1: config 168 descriptor has 1 excess byte, ignoring
[  533.708122][T12211] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  533.719554][T12211] usb 2-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  533.731258][T12211] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  533.742353][T12211] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  533.754803][ T1200] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  533.762391][ T1200] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  533.773784][ T1200] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  533.785471][ T1200] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  533.796575][ T1200] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  533.808577][T12211] usb 2-1: config 168 descriptor has 1 excess byte, ignoring
[  533.816427][T12211] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  533.830004][T12211] usb 2-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  533.841773][T12211] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  533.852853][T12211] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  533.867471][ T1200] usb 5-1: string descriptor 0 read error: -22
[  533.873774][T12211] usb 2-1: string descriptor 0 read error: -22
[  533.880036][T12211] usb 2-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  533.889069][T12211] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  533.898130][ T1200] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  533.907222][ T1200] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  533.927299][T12211] adutux 2-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  533.953318][ T1200] adutux 5-1:168.0: ADU100  now attached to /dev/usb/adutux1
[  534.090817][T14506] FAULT_INJECTION: forcing a failure.
[  534.090817][T14506] name failslab, interval 1, probability 0, space 0, times 0
[  534.104218][T14506] CPU: 0 UID: 0 PID: 14506 Comm: syz.0.1624 Not tainted 6.12.0-rc6-syzkaller-00318-ga9cda7c0ffed #0
[  534.114990][T14506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  534.125036][T14506] Call Trace:
[  534.128303][T14506]  <TASK>
[  534.131220][T14506]  dump_stack_lvl+0x16c/0x1f0
[  534.135887][T14506]  should_fail_ex+0x497/0x5b0
[  534.140551][T14506]  ? fs_reclaim_acquire+0xae/0x150
[  534.145649][T14506]  should_failslab+0xc2/0x120
[  534.150317][T14506]  kmem_cache_alloc_node_noprof+0x71/0x310
[  534.156111][T14506]  ? __alloc_skb+0x2b1/0x380
[  534.160690][T14506]  __alloc_skb+0x2b1/0x380
[  534.165093][T14506]  ? __pfx___alloc_skb+0x10/0x10
[  534.170052][T14506]  netlink_ack+0x164/0xb90
[  534.174466][T14506]  ? avc_has_perm_noaudit+0x61/0x3a0
[  534.179748][T14506]  netlink_rcv_skb+0x348/0x440
[  534.184511][T14506]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  534.189956][T14506]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  534.195251][T14506]  ? bpf_lsm_capable+0x9/0x10
[  534.199916][T14506]  ? security_capable+0x7e/0x260
[  534.204845][T14506]  ? ns_capable+0xd7/0x110
[  534.209255][T14506]  nfnetlink_rcv+0x1b4/0x430
[  534.213847][T14506]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  534.218945][T14506]  ? netlink_deliver_tap+0x1ae/0xd90
[  534.224223][T14506]  netlink_unicast+0x53c/0x7f0
[  534.228973][T14506]  ? __pfx_netlink_unicast+0x10/0x10
[  534.234247][T14506]  netlink_sendmsg+0x8b8/0xd70
[  534.238997][T14506]  ? __pfx_netlink_sendmsg+0x10/0x10
[  534.244274][T14506]  ____sys_sendmsg+0xaaf/0xc90
[  534.249034][T14506]  ? copy_msghdr_from_user+0x10b/0x160
[  534.254480][T14506]  ? __pfx_____sys_sendmsg+0x10/0x10
[  534.259758][T14506]  ? __pfx___lock_acquire+0x10/0x10
[  534.264942][T14506]  ___sys_sendmsg+0x135/0x1e0
[  534.269608][T14506]  ? __pfx____sys_sendmsg+0x10/0x10
[  534.274813][T14506]  ? lock_acquire+0x2f/0xb0
[  534.279302][T14506]  ? __fget_files+0x40/0x3f0
[  534.283888][T14506]  ? fdget+0x176/0x210
[  534.287952][T14506]  __sys_sendmsg+0x117/0x1f0
[  534.292526][T14506]  ? __pfx___sys_sendmsg+0x10/0x10
[  534.297625][T14506]  ? __fget_files+0x244/0x3f0
[  534.302307][T14506]  do_syscall_64+0xcd/0x250
[  534.306796][T14506]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  534.312679][T14506] RIP: 0033:0x7fe2c257e719
[  534.317080][T14506] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  534.336691][T14506] RSP: 002b:00007fe2c3416038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  534.345110][T14506] RAX: ffffffffffffffda RBX: 00007fe2c2735f80 RCX: 00007fe2c257e719
[  534.353073][T14506] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[  534.361029][T14506] RBP: 00007fe2c3416090 R08: 0000000000000000 R09: 0000000000000000
[  534.368985][T14506] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  534.376942][T14506] R13: 0000000000000000 R14: 00007fe2c2735f80 R15: 00007fffb5d22728
[  534.385034][T14506]  </TASK>
[  534.413578][T14475] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  534.422700][T14475] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  534.444738][T14475] binder: 14474:14475 ioctl 89f0 20000380 returned -22
[  534.483192][T14507] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  534.502597][T14507] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  534.511468][T14507] netdevsim netdevsim3: Falling back to sysfs fallback for: .
[  534.518587][T14480] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  534.529448][T14480] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  534.541001][T14480] binder: BINDER_SET_CONTEXT_MGR bad uid 0 != 3327
[  534.547664][T14480] binder: 14479:14480 ioctl 4018620d 20000100 returned -1
[  534.562672][T14480] binder: BINDER_SET_CONTEXT_MGR bad uid 0 != 3327
[  534.569357][T14480] binder: 14479:14480 ioctl 4018620d 20000040 returned -1
[  534.586897][T14480] binder: 14479:14480 ioctl 89f0 20000380 returned -22
[  534.790445][ T1200] usb 5-1: USB disconnect, device number 56
[  535.270360][ T5872] usb 2-1: USB disconnect, device number 50
[  535.438314][T14554] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  535.494252][T12211] usb 4-1: new high-speed USB device number 40 using dummy_hcd
[  535.506555][   T29] audit: type=1400 audit(1731289858.566:891): avc:  denied  { read write } for  pid=14558 comm="syz.4.1631" name="cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[  535.535169][   T29] audit: type=1400 audit(1731289858.566:892): avc:  denied  { open } for  pid=14558 comm="syz.4.1631" path="/dev/cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[  536.199223][T12211] usb 4-1: Using ep0 maxpacket: 32
[  536.213545][T12211] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  536.225188][T12211] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  536.236436][T12211] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  536.247818][T12211] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  536.257187][T12211] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  536.269502][T12211] usb 4-1: config 0 descriptor??
[  536.275026][T14537] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  536.286269][T12211] hub 4-1:0.0: USB hub found
[  536.530165][T12211] hub 4-1:0.0: 2 ports detected
[  536.869268][ T5828] usb 5-1: new high-speed USB device number 57 using dummy_hcd
[  537.019756][ T5828] usb 5-1: Using ep0 maxpacket: 16
[  537.034312][ T5828] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  537.055579][ T5828] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  537.089506][ T5828] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  537.120912][ T5828] usb 5-1: New USB device found, idVendor=056a, idProduct=0022, bcdDevice= 0.00
[  537.139620][ T5828] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  537.159362][ T5828] usb 5-1: config 0 descriptor??
[  537.292448][   T29] audit: type=1400 audit(1731289860.356:893): avc:  denied  { bind } for  pid=14601 comm="syz.0.1638" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  537.337341][   T29] audit: type=1400 audit(1731289860.356:894): avc:  denied  { write } for  pid=14601 comm="syz.0.1638" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  537.989322][ T5828] wacom 0003:056A:0022.0026: ignoring exceeding usage max
[  537.997978][ T5828] wacom 0003:056A:0022.0026: unknown main item tag 0x0
[  538.004983][ T5828] wacom 0003:056A:0022.0026: unknown main item tag 0x0
[  538.011963][ T5828] wacom 0003:056A:0022.0026: unknown main item tag 0x0
[  538.021128][ T5828] wacom 0003:056A:0022.0026: Unknown device_type for 'HID 056a:0022'. Assuming pen.
[  538.034544][ T5828] wacom 0003:056A:0022.0026: hidraw0: USB HID v0.00 Device [HID 056a:0022] on usb-dummy_hcd.4-1/input0
[  538.048655][ T5828] input: Wacom Intuos 9x12 Pen as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:056A:0022.0026/input/input68
[  538.142017][ T5828] usb 5-1: USB disconnect, device number 57
[  538.477242][T14640] FAULT_INJECTION: forcing a failure.
[  538.477242][T14640] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  538.490844][T14640] CPU: 1 UID: 0 PID: 14640 Comm: syz.1.1642 Not tainted 6.12.0-rc6-syzkaller-00318-ga9cda7c0ffed #0
[  538.501601][T14640] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  538.511660][T14640] Call Trace:
[  538.514942][T14640]  <TASK>
[  538.517872][T14640]  dump_stack_lvl+0x16c/0x1f0
[  538.522543][T14640]  should_fail_ex+0x497/0x5b0
[  538.527207][T14640]  _copy_to_user+0x32/0xd0
[  538.531618][T14640]  drm_ioctl+0x5fe/0xc00
[  538.535852][T14640]  ? __pfx_drm_mode_revoke_lease_ioctl+0x10/0x10
[  538.542163][T14640]  ? __pfx_drm_ioctl+0x10/0x10
[  538.546913][T14640]  ? trace_lock_acquire+0x14a/0x1d0
[  538.552107][T14640]  ? selinux_file_ioctl+0x180/0x270
[  538.557291][T14640]  ? selinux_file_ioctl+0xb4/0x270
[  538.562409][T14640]  ? __pfx_drm_ioctl+0x10/0x10
[  538.567189][T14640]  __x64_sys_ioctl+0x18f/0x220
[  538.571966][T14640]  do_syscall_64+0xcd/0x250
[  538.576465][T14640]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  538.582351][T14640] RIP: 0033:0x7f89fb77e719
[  538.586749][T14640] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  538.606343][T14640] RSP: 002b:00007f89f9bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  538.614758][T14640] RAX: ffffffffffffffda RBX: 00007f89fb935f80 RCX: 00007f89fb77e719
[  538.622714][T14640] RDX: 0000000020000340 RSI: 00000000c00464c9 RDI: 0000000000000003
[  538.630760][T14640] RBP: 00007f89f9bf6090 R08: 0000000000000000 R09: 0000000000000000
[  538.638714][T14640] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  538.646669][T14640] R13: 0000000000000000 R14: 00007f89fb935f80 R15: 00007ffe4dc05548
[  538.654636][T14640]  </TASK>
[  538.862883][ T5872] hub 4-1:0.0: hub_ext_port_status failed (err = 0)
[  539.109527][T12211] usb 4-1: USB disconnect, device number 40
[  539.529332][T14665] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1644'.
[  540.619451][T12211] usb 5-1: new high-speed USB device number 58 using dummy_hcd
[  540.749603][T12211] usb 5-1: device descriptor read/64, error -71
[  541.080679][T12211] usb 5-1: new high-speed USB device number 59 using dummy_hcd
[  541.213254][T14676] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.1646'.
[  541.311132][T12211] usb 5-1: device descriptor read/64, error -71
[  541.480327][T12211] usb usb5-port1: attempt power cycle
[  541.681051][T14676] sysfs: cannot create duplicate filename '/class/ieee80211/ü!'
[  541.800453][T14676] CPU: 0 UID: 0 PID: 14676 Comm: syz.1.1646 Not tainted 6.12.0-rc6-syzkaller-00318-ga9cda7c0ffed #0
[  541.811270][T14676] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  541.821351][T14676] Call Trace:
[  541.824640][T14676]  <TASK>
[  541.827572][T14676]  dump_stack_lvl+0x16c/0x1f0
[  541.832280][T14676]  sysfs_warn_dup+0x7f/0xa0
[  541.836880][T14676]  sysfs_do_create_link_sd+0x124/0x140
[  541.842365][T14676]  sysfs_create_link+0x61/0xc0
[  541.847147][T14676]  device_add+0x62e/0x1a70
[  541.851576][T14676]  ? __pfx_device_add+0x10/0x10
[  541.856432][T14676]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  541.862346][T14676]  ? ieee80211_set_bitrate_flags+0x249/0x6a0
[  541.868352][T14676]  wiphy_register+0x2101/0x2d00
[  541.873223][T14676]  ? __pfx_wiphy_register+0x10/0x10
[  541.878436][T14676]  ? ieee80211_init_rate_ctrl_alg+0x125/0x6b0
[  541.884517][T14676]  ieee80211_register_hw+0x2aaa/0x41b0
[  541.890004][T14676]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  541.895830][T14676]  ? __asan_memset+0x23/0x50
[  541.900424][T14676]  ? __hrtimer_init+0x106/0x2c0
[  541.905286][T14676]  mac80211_hwsim_new_radio+0x304e/0x54d0
[  541.911030][T14676]  ? trace_kmalloc+0x2d/0xe0
[  541.915628][T14676]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  541.921698][T14676]  ? hwsim_new_radio_nl+0x9ff/0x12b0
[  541.926989][T14676]  ? __asan_memcpy+0x3c/0x60
[  541.931588][T14676]  hwsim_new_radio_nl+0xb42/0x12b0
[  541.936707][T14676]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  541.942266][T14676]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  541.949662][T14676]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  541.957043][T14676]  genl_family_rcv_msg_doit+0x202/0x2f0
[  541.962614][T14676]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  541.968694][T14676]  ? bpf_lsm_capable+0x9/0x10
[  541.973377][T14676]  ? security_capable+0x7e/0x260
[  541.978328][T14676]  ? ns_capable+0xd7/0x110
[  541.982755][T14676]  genl_rcv_msg+0x565/0x800
[  541.987268][T14676]  ? __pfx_genl_rcv_msg+0x10/0x10
[  541.992300][T14676]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  541.997865][T14676]  netlink_rcv_skb+0x16b/0x440
[  542.002635][T14676]  ? __pfx_genl_rcv_msg+0x10/0x10
[  542.007668][T14676]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  542.012968][T14676]  ? down_read+0xc9/0x330
[  542.017302][T14676]  ? __pfx_down_read+0x10/0x10
[  542.022071][T14676]  ? rcu_is_watching+0x12/0xc0
[  542.026847][T14676]  genl_rcv+0x28/0x40
[  542.030836][T14676]  netlink_unicast+0x53c/0x7f0
[  542.035606][T14676]  ? __pfx_netlink_unicast+0x10/0x10
[  542.040894][T14676]  ? const_folio_flags.constprop.0+0x56/0x150
[  542.046977][T14676]  netlink_sendmsg+0x8b8/0xd70
[  542.051749][T14676]  ? __pfx_netlink_sendmsg+0x10/0x10
[  542.057051][T14676]  ____sys_sendmsg+0xaaf/0xc90
[  542.061827][T14676]  ? copy_msghdr_from_user+0x10b/0x160
[  542.067293][T14676]  ? __pfx_____sys_sendmsg+0x10/0x10
[  542.072615][T14676]  ? __pfx___lock_acquire+0x10/0x10
[  542.077821][T14676]  ___sys_sendmsg+0x135/0x1e0
[  542.082507][T14676]  ? __pfx____sys_sendmsg+0x10/0x10
[  542.087726][T14676]  ? lock_acquire+0x2f/0xb0
[  542.092230][T14676]  ? __fget_files+0x40/0x3f0
[  542.096844][T14676]  ? fdget+0x176/0x210
[  542.100935][T14676]  __sys_sendmsg+0x117/0x1f0
[  542.105531][T14676]  ? __pfx___sys_sendmsg+0x10/0x10
[  542.110826][T14676]  ? __x64_sys_futex+0x1e1/0x4c0
[  542.115797][T14676]  do_syscall_64+0xcd/0x250
[  542.120308][T14676]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  542.126314][T14676] RIP: 0033:0x7f89fb77e719
[  542.130749][T14676] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  542.150377][T14676] RSP: 002b:00007f89f9bf6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  542.158814][T14676] RAX: ffffffffffffffda RBX: 00007f89fb935f80 RCX: 00007f89fb77e719
[  542.166793][T14676] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000009
[  542.174767][T14676] RBP: 00007f89fb7f139e R08: 0000000000000000 R09: 0000000000000000
[  542.182739][T14676] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  542.190716][T14676] R13: 0000000000000000 R14: 00007f89fb935f80 R15: 00007ffe4dc05548
[  542.198708][T14676]  </TASK>
[  542.201955][    C0] vkms_vblank_simulate: vblank timer overrun
[  542.639257][T12211] usb 5-1: new high-speed USB device number 60 using dummy_hcd
[  543.573270][T12211] usb 5-1: device descriptor read/8, error -71
[  545.476606][T14704] netlink: 'syz.1.1652': attribute type 1 has an invalid length.
[  545.484605][T14704] netlink: 112860 bytes leftover after parsing attributes in process `syz.1.1652'.
[  545.737874][T14744] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  545.759590][T14744] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  545.818587][T14744] netdevsim netdevsim3: Falling back to sysfs fallback for: .
[  546.029231][   T29] audit: type=1400 audit(2000000000.190:895): avc:  denied  { listen } for  pid=14741 comm="syz.4.1661" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  650.869134][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  650.876112][    C0] rcu: 	1-...!: (0 ticks this GP) idle=5e0c/0/0x1 softirq=47925/47926 fqs=5
[  650.885952][    C0] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P14739/1:b..l
[  650.893956][    C0] rcu: 	(detected by 0, t=10506 jiffies, g=39069, q=246 ncpus=2)
[  650.901670][    C0] Sending NMI from CPU 0 to CPUs 1:
[  650.901694][    C1] NMI backtrace for cpu 1
[  650.901703][    C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted 6.12.0-rc6-syzkaller-00318-ga9cda7c0ffed #0
[  650.901719][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  650.901728][    C1] RIP: 0010:lock_release+0x4f1/0x6f0
[  650.901746][    C1] Code: 0d 9c 3a 99 7e 0f 85 a8 fb ff ff e8 79 02 96 ff e9 a5 fb ff ff 48 8b 54 24 08 4c 89 e6 4c 89 ff e8 74 5f ff ff e9 b2 fe ff ff <e8> 8a e0 08 00 84 c0 0f 85 b9 fb ff ff 80 3d 95 6e dd 0e 00 0f 85
[  650.901759][    C1] RSP: 0018:ffffc90000a18d50 EFLAGS: 00000047
[  650.901770][    C1] RAX: 0000000000000001 RBX: 1ffff920001431ac RCX: ffffffff816a9d09
[  650.901779][    C1] RDX: fffffbfff20beb32 RSI: 0000000000000008 RDI: ffffffff905f5988
[  650.901788][    C1] RBP: 0000000000000001 R08: 0000000000000000 R09: fffffbfff20beb31
[  650.901796][    C1] R10: ffffffff905f598f R11: 0000000000000000 R12: ffff8880b872c9d8
[  650.901805][    C1] R13: ffff8880b872cac0 R14: 000000000003dbcc R15: ffffffff89327830
[  650.901814][    C1] FS:  0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  650.901829][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  650.901838][    C1] CR2: 0000000020003c80 CR3: 000000007a324000 CR4: 00000000003526f0
[  650.901847][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  650.901855][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  650.901863][    C1] Call Trace:
[  650.901869][    C1]  <NMI>
[  650.901888][    C1]  ? nmi_cpu_backtrace+0x1d8/0x390
[  650.901912][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  650.901932][    C1]  ? nmi_handle+0x1a9/0x5c0
[  650.901946][    C1]  ? lock_release+0x4f1/0x6f0
[  650.901958][    C1]  ? default_do_nmi+0x6a/0x160
[  650.901974][    C1]  ? exc_nmi+0x170/0x1e0
[  650.901989][    C1]  ? end_repeat_nmi+0xf/0x53
[  650.902001][    C1]  ? __pfx_advance_sched+0x10/0x10
[  650.902019][    C1]  ? lock_release+0xa9/0x6f0
[  650.902032][    C1]  ? lock_release+0x4f1/0x6f0
[  650.902044][    C1]  ? lock_release+0x4f1/0x6f0
[  650.902056][    C1]  ? lock_release+0x4f1/0x6f0
[  650.902068][    C1]  </NMI>
[  650.902072][    C1]  <IRQ>
[  650.902077][    C1]  ? __hrtimer_run_queues+0x53d/0xae0
[  650.902091][    C1]  ? __pfx_lock_release+0x10/0x10
[  650.902105][    C1]  ? timerqueue_del+0x83/0x150
[  650.902122][    C1]  ? __pfx_advance_sched+0x10/0x10
[  650.902135][    C1]  _raw_spin_unlock_irqrestore+0x1a/0x80
[  650.902154][    C1]  __hrtimer_run_queues+0x53d/0xae0
[  650.902171][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  650.902185][    C1]  ? ktime_get_update_offsets_now+0x201/0x310
[  650.902205][    C1]  hrtimer_interrupt+0x31b/0x800
[  650.902223][    C1]  __sysvec_apic_timer_interrupt+0x10f/0x400
[  650.902238][    C1]  sysvec_apic_timer_interrupt+0x9f/0xc0
[  650.902255][    C1]  </IRQ>
[  650.902260][    C1]  <TASK>
[  650.902265][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  650.902284][    C1] RIP: 0010:acpi_safe_halt+0x1a/0x20
[  650.902299][    C1] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 65 48 8b 05 68 3a e0 74 48 8b 00 a8 08 75 0c 66 90 0f 00 2d 38 a0 b9 00 fb f4 <fa> c3 cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  650.902310][    C1] RSP: 0018:ffffc900001a7d58 EFLAGS: 00000246
[  650.902321][    C1] RAX: 0000000000004000 RBX: 0000000000000001 RCX: ffffffff8b238489
[  650.902329][    C1] RDX: 0000000000000001 RSI: ffff888021eda800 RDI: ffff888021eda864
[  650.902338][    C1] RBP: ffff888021eda864 R08: 0000000000000001 R09: ffffed10170e7025
[  650.902346][    C1] R10: ffff8880b873812b R11: 0000000000000000 R12: ffff88802179a800
[  650.902355][    C1] R13: ffffffff8ee122c0 R14: 0000000000000001 R15: 0000000000000000
[  650.902366][    C1]  ? ct_kernel_exit+0x139/0x190
[  650.902380][    C1]  acpi_idle_enter+0xc5/0x160
[  650.902395][    C1]  cpuidle_enter_state+0xaa/0x4f0
[  650.902408][    C1]  ? __pfx_tsc_verify_tsc_adjust+0x10/0x10
[  650.902429][    C1]  cpuidle_enter+0x4e/0xa0
[  650.902443][    C1]  do_idle+0x313/0x3f0
[  650.902462][    C1]  ? __pfx_do_idle+0x10/0x10
[  650.902483][    C1]  cpu_startup_entry+0x4f/0x60
[  650.902501][    C1]  start_secondary+0x222/0x2b0
[  650.902518][    C1]  ? __pfx_start_secondary+0x10/0x10
[  650.902538][    C1]  common_startup_64+0x13e/0x148
[  650.902558][    C1]  </TASK>
[  650.902688][    C0] task:syz-executor    state:R  running task     stack:25312 pid:14739 tgid:14739 ppid:5814   flags:0x00000000
[  651.320486][    C0] Call Trace:
[  651.323760][    C0]  <TASK>
[  651.326694][    C0]  __schedule+0xe55/0x5740
[  651.331125][    C0]  ? hlock_class+0x4e/0x130
[  651.335645][    C0]  ? __lock_acquire+0xbdd/0x3ce0
[  651.340586][    C0]  ? __pfx___schedule+0x10/0x10
[  651.345438][    C0]  ? hlock_class+0x4e/0x130
[  651.349940][    C0]  ? __lock_acquire+0xbdd/0x3ce0
[  651.354885][    C0]  preempt_schedule_irq+0x51/0x90
[  651.359911][    C0]  irqentry_exit+0x36/0x90
[  651.364323][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  651.370311][    C0] RIP: 0010:lock_release+0x3e5/0x6f0
[  651.375590][    C0] Code: 7e 83 f8 01 0f 85 fd 01 00 00 9c 58 f6 c4 02 0f 85 e8 01 00 00 48 f7 04 24 00 02 00 00 74 01 fb 48 b8 00 00 00 00 00 fc ff df <48> 01 c3 48 c7 03 00 00 00 00 c7 43 08 00 00 00 00 48 8b 84 24 88
[  651.395193][    C0] RSP: 0018:ffffc900164e7748 EFLAGS: 00000206
[  651.401259][    C0] RAX: dffffc0000000000 RBX: 1ffff92002c9ceeb RCX: ffffc900164e7798
[  651.409228][    C0] RDX: 1ffff110057c615a RSI: ffffffff8b6cd340 RDI: ffffffff8bd1b440
[  651.417195][    C0] RBP: ffffffffffffffff R08: 0000000000000000 R09: fffffbfff20beb31
[  651.425164][    C0] R10: ffffffff905f598f R11: 0000000000000000 R12: 0000000000000000
[  651.433132][    C0] R13: 0000000000000001 R14: ffff88802be30ad8 R15: ffff88802be30000
[  651.441114][    C0]  ? page_ext_put+0x3e/0xd0
[  651.445626][    C0]  ? __pfx_lock_release+0x10/0x10
[  651.450645][    C0]  ? page_ext_get+0x34/0x310
[  651.455246][    C0]  page_ext_put+0x43/0xd0
[  651.459574][    C0]  __page_table_check_zero+0x2d7/0x360
[  651.465035][    C0]  post_alloc_hook+0x2c0/0x350
[  651.469802][    C0]  get_page_from_freelist+0xfce/0x2f80
[  651.475276][    C0]  ? __pfx___might_resched+0x10/0x10
[  651.480576][    C0]  ? fs_reclaim_acquire+0xae/0x150
[  651.485686][    C0]  ? __pfx_get_page_from_freelist+0x10/0x10
[  651.491577][    C0]  ? should_fail_alloc_page+0xee/0x130
[  651.497037][    C0]  ? prepare_alloc_pages.constprop.0+0x16f/0x560
[  651.503376][    C0]  ? __pfx_stack_trace_save+0x10/0x10
[  651.508837][    C0]  __alloc_pages_noprof+0x223/0x25a0
[  651.514126][    C0]  ? alloc_pages_bulk_noprof+0x77c/0x1110
[  651.519844][    C0]  ? __vmalloc_node_range_noprof+0x3d8/0x15a0
[  651.525909][    C0]  ? vmalloc_user_noprof+0x6b/0x90
[  651.531017][    C0]  ? __x64_sys_ioctl+0x18f/0x220
[  651.535955][    C0]  ? do_syscall_64+0xcd/0x250
[  651.540716][    C0]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  651.546451][    C0]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  651.552438][    C0]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  651.558339][    C0]  ? policy_nodemask+0xea/0x4e0
[  651.563189][    C0]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  651.569090][    C0]  ? policy_nodemask+0xea/0x4e0
[  651.573944][    C0]  alloc_pages_mpol_noprof+0x2c9/0x610
[  651.579405][    C0]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  651.585390][    C0]  ? __pfx___might_resched+0x10/0x10
[  651.590672][    C0]  ? __kmalloc_node_noprof+0x22f/0x430
[  651.596127][    C0]  ? __sanitizer_cov_trace_switch+0x1/0x90
[  651.601936][    C0]  ? __vmalloc_node_range_noprof+0x3d8/0x15a0
[  651.608005][    C0]  __vmalloc_node_range_noprof+0x724/0x15a0
[  651.613904][    C0]  ? kcov_ioctl+0x4c/0x730
[  651.618331][    C0]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  651.624669][    C0]  ? kcov_ioctl+0x4c/0x730
[  651.629093][    C0]  vmalloc_user_noprof+0x6b/0x90
[  651.634028][    C0]  ? kcov_ioctl+0x4c/0x730
[  651.638447][    C0]  kcov_ioctl+0x4c/0x730
[  651.642711][    C0]  ? __pfx_kcov_ioctl+0x10/0x10
[  651.647565][    C0]  __x64_sys_ioctl+0x18f/0x220
[  651.652332][    C0]  do_syscall_64+0xcd/0x250
[  651.656833][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  651.662741][    C0] RIP: 0033:0x7fef0197e31b
[  651.667166][    C0] RSP: 002b:00007ffd2aeadbe0 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  651.675577][    C0] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fef0197e31b
[  651.683552][    C0] RDX: 0000000000040000 RSI: ffffffff80086301 RDI: 00000000000000e0
[  651.691517][    C0] RBP: 00007fef01b366d8 R08: 00000000000000da R09: 0000000000000000
[  651.699482][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  651.707447][    C0] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
[  651.715425][    C0]  </TASK>
[  651.718439][    C0] rcu: rcu_preempt kthread starved for 10480 jiffies! g39069 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[  651.729625][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  651.739582][    C0] rcu: RCU grace-period kthread stack dump:
[  651.745465][    C0] task:rcu_preempt     state:R  running task     stack:27344 pid:17    tgid:17    ppid:2      flags:0x00004000
[  651.757221][    C0] Call Trace:
[  651.760494][    C0]  <TASK>
[  651.763422][    C0]  __schedule+0xe55/0x5740
[  651.767839][    C0]  ? __pfx___lock_acquire+0x10/0x10
[  651.773046][    C0]  ? __pfx___schedule+0x10/0x10
[  651.777902][    C0]  ? schedule+0x298/0x350
[  651.782233][    C0]  ? __pfx_lock_release+0x10/0x10
[  651.787255][    C0]  ? trace_lock_acquire+0x14a/0x1d0
[  651.792456][    C0]  ? lock_acquire+0x2f/0xb0
[  651.796953][    C0]  ? schedule+0x1fd/0x350
[  651.801304][    C0]  schedule+0xe7/0x350
[  651.805376][    C0]  schedule_timeout+0x136/0x2a0
[  651.810231][    C0]  ? __pfx_schedule_timeout+0x10/0x10
[  651.815603][    C0]  ? __pfx_process_timeout+0x10/0x10
[  651.820978][    C0]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  651.826786][    C0]  ? prepare_to_swait_event+0xf3/0x470
[  651.832246][    C0]  rcu_gp_fqs_loop+0x1eb/0xb00
[  651.837009][    C0]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[  651.842290][    C0]  ? rcu_gp_init+0xc82/0x1630
[  651.846962][    C0]  ? _raw_spin_unlock_irq+0x2e/0x50
[  651.852166][    C0]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  651.857981][    C0]  rcu_gp_kthread+0x271/0x380
[  651.862653][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  651.867846][    C0]  ? lockdep_hardirqs_on+0x7c/0x110
[  651.873049][    C0]  ? __kthread_parkme+0x148/0x220
[  651.878074][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  651.883270][    C0]  kthread+0x2c1/0x3a0
[  651.887335][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  651.892532][    C0]  ? __pfx_kthread+0x10/0x10
[  651.897123][    C0]  ret_from_fork+0x45/0x80
[  651.901534][    C0]  ? __pfx_kthread+0x10/0x10
[  651.906121][    C0]  ret_from_fork_asm+0x1a/0x30
[  651.910899][    C0]  </TASK>
[  651.913908][    C0] rcu: Stack dump where RCU GP kthread last ran:
[  651.920222][    C0] CPU: 0 UID: 0 PID: 14751 Comm: syz.0.1663 Not tainted 6.12.0-rc6-syzkaller-00318-ga9cda7c0ffed #0
[  651.930974][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  651.941023][    C0] RIP: 0010:smp_call_function_many_cond+0x458/0x1300
[  651.947695][    C0] Code: 0c 00 85 ed 74 4d 48 b8 00 00 00 00 00 fc ff df 4d 89 f4 4c 89 f5 49 c1 ec 03 83 e5 07 49 01 c4 83 c5 03 e8 8a 1b 0c 00 f3 90 <41> 0f b6 04 24 40 38 c5 7c 08 84 c0 0f 85 a4 0c 00 00 8b 43 08 31
[  651.967329][    C0] RSP: 0018:ffffc90016dff5b0 EFLAGS: 00000246
[  651.973393][    C0] RAX: 0000000000040000 RBX: ffff8880b8744cc0 RCX: ffffc9000451a000
[  651.981365][    C0] RDX: 0000000000040000 RSI: ffffffff81815fd6 RDI: 0000000000000005
[  651.989330][    C0] RBP: 0000000000000003 R08: 0000000000000005 R09: 0000000000000000
[  651.997301][    C0] R10: 0000000000000001 R11: 0000000000000000 R12: ffffed10170e8999
[  652.005274][    C0] R13: 0000000000000001 R14: ffff8880b8744cc8 R15: ffff8880b8640100
[  652.013241][    C0] FS:  00007fe2c34166c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[  652.022170][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  652.028751][    C0] CR2: 0000001b2fd1bff8 CR3: 000000003d7ba000 CR4: 00000000003526f0
[  652.036721][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  652.044685][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  652.052652][    C0] Call Trace:
[  652.055923][    C0]  <IRQ>
[  652.058765][    C0]  ? rcu_check_gp_kthread_starvation+0x31b/0x450
[  652.065092][    C0]  ? do_raw_spin_unlock+0x172/0x230
[  652.070290][    C0]  ? rcu_sched_clock_irq+0x23d7/0x32a0
[  652.075758][    C0]  ? __pfx_rcu_sched_clock_irq+0x10/0x10
[  652.081389][    C0]  ? __asan_memcpy+0x3c/0x60
[  652.085977][    C0]  ? __asan_memcpy+0x3c/0x60
[  652.090564][    C0]  ? cgroup_rstat_updated+0x2a/0xb20
[  652.095866][    C0]  ? update_process_times+0x178/0x220
[  652.101242][    C0]  ? __pfx_update_process_times+0x10/0x10
[  652.106963][    C0]  ? update_wall_time+0x1c/0x40
[  652.111817][    C0]  ? tick_nohz_handler+0x376/0x530
[  652.116928][    C0]  ? __pfx_tick_nohz_handler+0x10/0x10
[  652.122388][    C0]  ? __hrtimer_run_queues+0x5fb/0xae0
[  652.127762][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  652.133498][    C0]  ? ktime_get_update_offsets_now+0x201/0x310
[  652.139571][    C0]  ? hrtimer_interrupt+0x31b/0x800
[  652.144689][    C0]  ? __sysvec_apic_timer_interrupt+0x10f/0x400
[  652.150840][    C0]  ? sysvec_apic_timer_interrupt+0x9f/0xc0
[  652.156648][    C0]  </IRQ>
[  652.159573][    C0]  <TASK>
[  652.162504][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  652.168669][    C0]  ? smp_call_function_many_cond+0x456/0x1300
[  652.174736][    C0]  ? smp_call_function_many_cond+0x458/0x1300
[  652.180801][    C0]  ? __pfx_do_sync_core+0x10/0x10
[  652.185830][    C0]  ? __pfx_do_sync_core+0x10/0x10
[  652.190852][    C0]  on_each_cpu_cond_mask+0x40/0x90
[  652.195962][    C0]  text_poke_bp_batch+0x22b/0x760
[  652.200989][    C0]  ? __pfx_text_poke_loc_init+0x10/0x10
[  652.206537][    C0]  ? __pfx_text_poke_bp_batch+0x10/0x10
[  652.212091][    C0]  ? __SCT__tp_func_sched_wakeup_new+0x8/0x8
[  652.218074][    C0]  text_poke_bp+0xa3/0xd0
[  652.222406][    C0]  ? __pfx_text_poke_bp+0x10/0x10
[  652.227428][    C0]  ? __mutex_lock+0x1a6/0x9c0
[  652.232098][    C0]  ? arch_static_call_transform+0x28/0xb0
[  652.237814][    C0]  ? __SCT__tp_func_sched_wakeup_new+0x8/0x8
[  652.243795][    C0]  __static_call_transform+0x34d/0x770
[  652.249263][    C0]  ? __pfx___static_call_transform+0x10/0x10
[  652.255241][    C0]  ? __SCT__tp_func_sched_wakeup_new+0x8/0x8
[  652.261225][    C0]  ? __pfx___traceiter_sched_switch+0x10/0x10
[  652.267296][    C0]  ? __SCT__tp_func_sched_wakeup_new+0x8/0x8
[  652.273278][    C0]  ? __pfx___traceiter_sched_switch+0x10/0x10
[  652.279437][    C0]  arch_static_call_transform+0x5d/0xb0
[  652.284975][    C0]  ? __SCT__tp_func_sched_wakeup_new+0x8/0x8
[  652.290958][    C0]  __static_call_update+0xee/0x660
[  652.296072][    C0]  ? __pfx___traceiter_sched_switch+0x10/0x10
[  652.302145][    C0]  ? __pfx___static_call_update+0x10/0x10
[  652.307867][    C0]  ? trace_kmalloc+0x2d/0xe0
[  652.312456][    C0]  ? __kmalloc_noprof+0x207/0x400
[  652.317480][    C0]  ? __pfx___bpf_trace_sched_switch+0x10/0x10
[  652.323545][    C0]  tracepoint_add_func+0xb50/0xe50
[  652.328668][    C0]  ? __pfx___bpf_trace_sched_switch+0x10/0x10
[  652.334739][    C0]  tracepoint_probe_register_prio_may_exist+0xbd/0x110
[  652.341583][    C0]  ? __pfx_tracepoint_probe_register_prio_may_exist+0x10/0x10
[  652.349039][    C0]  ? __pfx___bpf_trace_sched_switch+0x10/0x10
[  652.355119][    C0]  ? bpf_link_prime+0x8a/0x4d0
[  652.359906][    C0]  ? __local_bh_enable_ip+0xa4/0x120
[  652.365205][    C0]  bpf_probe_register+0x189/0x200
[  652.370240][    C0]  bpf_raw_tp_link_attach+0x245/0x540
[  652.375609][    C0]  ? __pfx_lock_release+0x10/0x10
[  652.380626][    C0]  ? trace_lock_acquire+0x14a/0x1d0
[  652.385824][    C0]  ? __pfx_bpf_raw_tp_link_attach+0x10/0x10
[  652.391716][    C0]  ? lock_acquire+0x2f/0xb0
[  652.396211][    C0]  ? __fget_files+0x40/0x3f0
[  652.400811][    C0]  ? fput+0x30/0x390
[  652.404704][    C0]  ? __bpf_prog_get+0xa0/0x290
[  652.409472][    C0]  __sys_bpf+0x3a4/0x49a0
[  652.413802][    C0]  ? __pfx___sys_bpf+0x10/0x10
[  652.418568][    C0]  ? do_futex+0x123/0x350
[  652.422934][    C0]  ? __pfx_do_futex+0x10/0x10
[  652.427623][    C0]  ? xfd_validate_state+0x5d/0x180
[  652.432729][    C0]  ? rcu_is_watching+0x12/0xc0
[  652.437496][    C0]  __x64_sys_bpf+0x78/0xc0
[  652.441909][    C0]  ? lockdep_hardirqs_on+0x7c/0x110
[  652.447109][    C0]  do_syscall_64+0xcd/0x250
[  652.451611][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  652.457506][    C0] RIP: 0033:0x7fe2c257e719
[  652.461930][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  652.481534][    C0] RSP: 002b:00007fe2c3416038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  652.489945][    C0] RAX: ffffffffffffffda RBX: 00007fe2c2735f80 RCX: 00007fe2c257e719
[  652.497912][    C0] RDX: 0000000000000010 RSI: 0000000020000080 RDI: 0000000000000011
[  652.505875][    C0] RBP: 00007fe2c25f139e R08: 0000000000000000 R09: 0000000000000000
[  652.513843][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  652.521807][    C0] R13: 0000000000000000 R14: 00007fe2c2735f80 R15: 00007fffb5d22728
[  652.529786][    C0]  </TASK>