last executing test programs:

8m41.806627207s ago: executing program 1 (id=2):
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB='\t\x00\x00\x00'], 0x48)
openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/partitions\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
arch_prctl$ARCH_SHSTK_UNLOCK(0x5004, 0x1)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socket$kcm(0x11, 0x200000000000002, 0x300)
r3 = socket(0x10, 0x3, 0xfffffffe)
write(r3, &(0x7f0000000100)="140000001a", 0x5)
r4 = syz_open_dev$dri(&(0x7f0000000180), 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_QUERY(r4, 0xc01864cb, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(r4, 0xc01064c2, &(0x7f0000000280))
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_FD(0xffffffffffffffff, 0xc01064c2, &(0x7f0000000400))
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000020000000000000a20000000000a03000000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a3000000000080005400000000d08000640ffffff00080003400000000b640000000c0a03000000000000000000070000000900020073797a31000000000900010073797a300000000038000380340000800800034000000002280002802400028008000180fffffffb08000180fffffffb"], 0xf8}}, 0x0)

8m40.831617057s ago: executing program 1 (id=6):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_int(0xffffffffffffffff, 0x0, 0x5, &(0x7f0000000080), 0x0)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r1 = socket$inet6(0xa, 0x2, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x409c884, &(0x7f00000001c0)={0xa, 0x4e20, 0x0, @mcast1, 0x4}, 0x1c)
sendto$inet6(r1, 0x0, 0x0, 0x6d91fb6106d8d95c, 0x0, 0x0)
epoll_create1(0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000c80)={'lo\x00'})
syz_open_dev$cec(&(0x7f0000000100), 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xb, &(0x7f0000000240)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
r3 = syz_open_dev$video4linux(&(0x7f0000000000), 0x4000003, 0x40000)
ioctl$VIDIOC_SUBDEV_ENUM_DV_TIMINGS(r3, 0xc0945662, &(0x7f00000002c0)={0x0, 0x0, '\x00', {0x0, @bt={0x1, 0x3, 0x0, 0x1, 0x100000, 0x104, 0x3, 0x0, 0xc, 0x5, 0x25, 0x7, 0x0, 0xfb, 0xa, 0x0, {0xc000000, 0xe3a}, 0x3, 0x3}}})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
mq_open(0x0, 0x0, 0x1da, &(0x7f0000000180)={0xb, 0xab35})
mq_notify(0xffffffffffffffff, 0x0)
r5 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000280)={r5, r5, r5}, &(0x7f00000000c0)=""/83, 0x53, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r6, 0x4008af60, &(0x7f0000000040)={@my=0x1})
socket$vsock_stream(0x28, 0x1, 0x0)

8m25.534274773s ago: executing program 32 (id=6):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_int(0xffffffffffffffff, 0x0, 0x5, &(0x7f0000000080), 0x0)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r1 = socket$inet6(0xa, 0x2, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x409c884, &(0x7f00000001c0)={0xa, 0x4e20, 0x0, @mcast1, 0x4}, 0x1c)
sendto$inet6(r1, 0x0, 0x0, 0x6d91fb6106d8d95c, 0x0, 0x0)
epoll_create1(0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000c80)={'lo\x00'})
syz_open_dev$cec(&(0x7f0000000100), 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xb, &(0x7f0000000240)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
r3 = syz_open_dev$video4linux(&(0x7f0000000000), 0x4000003, 0x40000)
ioctl$VIDIOC_SUBDEV_ENUM_DV_TIMINGS(r3, 0xc0945662, &(0x7f00000002c0)={0x0, 0x0, '\x00', {0x0, @bt={0x1, 0x3, 0x0, 0x1, 0x100000, 0x104, 0x3, 0x0, 0xc, 0x5, 0x25, 0x7, 0x0, 0xfb, 0xa, 0x0, {0xc000000, 0xe3a}, 0x3, 0x3}}})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
mq_open(0x0, 0x0, 0x1da, &(0x7f0000000180)={0xb, 0xab35})
mq_notify(0xffffffffffffffff, 0x0)
r5 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000280)={r5, r5, r5}, &(0x7f00000000c0)=""/83, 0x53, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r6, 0x4008af60, &(0x7f0000000040)={@my=0x1})
socket$vsock_stream(0x28, 0x1, 0x0)

7m17.350576956s ago: executing program 4 (id=238):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000480)={0x26, 'hash\x00', 0x0, 0x0, 'nhpoly1305-sse2\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="8a", 0x440)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = socket(0x1e, 0x4, 0x0)
connect$tipc(r2, &(0x7f0000000040)=@name={0x1e, 0x2, 0x0, {{0x1, 0x2}, 0x2}}, 0x10)
sendmmsg$unix(r1, &(0x7f0000003480)=[{{&(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000280)}}, {{&(0x7f00000002c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000440)=[{&(0x7f0000000380)="83f87eeb2e08d3cd92a83defa75bab3f78a27a051da94ff8a425ee1df21b81a78ca1f3b8ec859db7287131c7a3de15562b32ed", 0x33}, {&(0x7f0000000400)="c2b14498cb63e6a329bfce38911ba63978068b1dc5a91a3ed17e2c1e", 0x1c}], 0x2, 0x0, 0x0, 0x42}}, {{&(0x7f0000000500)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000680)=[{&(0x7f0000000580)="55efbe21372ee3db64106c7f1f6e8be219b98a95591231bd96cb0caf3f897d39e1de5b5b38a819c155a38aaa70bc59c815c9d0a00a27252698866cf059542d3ff0c9a9947d2fd426a4b059b0e9ad414df574c88b0b3ba86aa2faea6554cc16fe7388497ea0bd0ed7f60c17f2924e6a452409cba0b1e0aee8e4100f909249466c8d99fa19f9b693a8f72a30ec43e55b76b89318c222225688fb9f28693292f6a70212ae1ec12916a153742bf3ae027b9fcc8eb44c3eb0bd9336b095e018bdb112ed12fbaa6a622e3de0ef68e10355c6adc8fa4ac11775d11114acaf405c0d5971f1ae6a134f22ab6c8de9", 0xea}], 0x1, &(0x7f0000000b40)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, r2]}}, @rights={{0x18, 0x1, 0x1, [r1, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff}}}, @rights={{0x18, 0x1, 0x1, [r2, r0]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xe8, 0x20048101}}, {{&(0x7f00000020c0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000002140)=[{&(0x7f0000000cc0)="a2359a407018764d56b25e42883b4f5bc52ec8ef4d88a98526b4ec5d1a93585684ef3d09c1a286212912e9cbd8bdeff518", 0x31}, {&(0x7f0000000ec0)="2599def1df148d3016db7ecd561dea0fbdee62167aa0702a496126d099edd303384f7148f5b7a67f68ec596c37ac761fc9c9cd4076705cb785e263f5ad3ce2", 0x3f}, {&(0x7f00000032c0)}], 0x3, &(0x7f0000003400)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x10}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60, 0x800}}], 0x4, 0x8d0)
getsockopt$TIPC_SRC_DROPPABLE(r2, 0x10f, 0x80, &(0x7f0000000000), &(0x7f0000000140)=0x4)
set_mempolicy(0x3, &(0x7f00000003c0)=0x5, 0xffff)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
r4 = syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x0)
r5 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r5, 0x10f, 0x87, &(0x7f0000000200)={0x42, 0x18000000, 0x2}, 0x46)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r6, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x30, r7, 0x400, 0x70bd26, 0x0, {{}, {}, {0x14, 0x19, {0x5, 0xfffffffd, 0x20000007, 0xc1}}}}, 0xffffffffffffff10}, 0x1, 0x0, 0x0, 0x4008090}, 0x40080)
ioctl$SNDRV_PCM_IOCTL_WRITEI_FRAMES(r4, 0xc0884123, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0)
r8 = accept4$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @local}, &(0x7f0000000100)=0x10, 0x0)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r8, 0x8982, &(0x7f0000000140)={0x1, 'ip6_vti0\x00', {}, 0x1ff})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, 0x0)
r9 = syz_open_dev$loop(&(0x7f00000000c0), 0xfd18, 0x0)
unshare(0x20000400)
r10 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r10, 0xae03, 0x52)
ioctl$BLKGETSIZE(r9, 0x1260, &(0x7f0000000040))
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
listen(r3, 0x0)

7m16.429940031s ago: executing program 4 (id=243):
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB='\t\x00\x00\x00'], 0x48)
openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/partitions\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
arch_prctl$ARCH_SHSTK_UNLOCK(0x5004, 0x1)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socket$kcm(0x11, 0x200000000000002, 0x300)
r4 = socket(0x10, 0x3, 0xfffffffe)
write(r4, &(0x7f0000000100)="140000001a", 0x5)
r5 = syz_open_dev$dri(&(0x7f0000000180), 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_QUERY(r5, 0xc01864cb, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(r5, 0xc01064c2, &(0x7f0000000280))
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)={0x24, 0x2, 0x3, 0x801, 0x0, 0x0, {0x0, 0x0, 0x2}, [@NFQA_CFG_MASK={0xfffffffffffffff1, 0x4, 0x1, 0x0, 0x2a}, @NFQA_CFG_FLAGS={0x8, 0x5, 0x1, 0x0, 0x7}, @NFQA_CFG_MASK={0x0, 0x4, 0x1, 0x0, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000880}, 0x4000800)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_FD(0xffffffffffffffff, 0xc01064c2, &(0x7f0000000400))
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000020000000000000a20000000000a03000000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a3000000000080005400000000d08000640ffffff00080003400000000b640000000c0a03000000000000000000070000000900020073797a31000000000900010073797a300000000038000380340000800800034000000002280002802400028008000180fffffffb08000180fffffffb"], 0xf8}}, 0x0)

7m13.164561948s ago: executing program 4 (id=247):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
ioctl$SNDCTL_DSP_SETFRAGMENT(0xffffffffffffffff, 0xc004500a, &(0x7f0000000000))
ioctl$SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, &(0x7f00000001c0))
ioctl$SNDCTL_DSP_CHANNELS(0xffffffffffffffff, 0xc0045006, &(0x7f0000000040)=0xc)
ioctl$SNDCTL_DSP_GETIPTR(0xffffffffffffffff, 0x800c5011, &(0x7f0000000080))
ioctl$SNDCTL_DSP_SETFMT(0xffffffffffffffff, 0xc0045005, &(0x7f0000000640)=0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000000c0)='cachefiles_trunc\x00'}, 0x23)
sched_setscheduler(0x0, 0x2, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={0xffffffffffffffff, 0x2000000, 0x0, 0x5, &(0x7f0000000080)="d1d2e7ce393d27ef0de09bb9b12f4059f3654b8d09ce", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
r4 = io_uring_setup(0x67bb, &(0x7f0000000280)={0x0, 0xce92})
io_uring_enter(r4, 0x0, 0x2, 0xf, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={0x0, 0xa0}}, 0x0)
r5 = socket(0x10, 0x3, 0x0)
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[], 0x6c}}, 0x0)
r6 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000380)=ANY=[@ANYBLOB="5400000000000000000000000000000000000000b1d168a924c2b9feb3abd9dbbeb874d3f98e43219c500c0792f416582e724e0b6b630390bf6d97c5273716ccefdd3b35128f79b2a4d60292a52406d3e562e402bab4d7d235c1ed874774d6eea81afa5da9be9f0fb805d31795e949b385c3a3e9610168fbb2ee80fef0d6ff16f6a43b1825a47c9d1d9dc5b86dc4a93c0e2d7342805f8db664d94a0d1230c0574726b0985731e5178e82d134f5435b3de9523be3c03f07bd8091524eac0cae50125b0527942647a67200049f70bade4647eb66c5f4c8", @ANYRESOCT=r0, @ANYRESHEX=0x0], 0x54}, 0x1, 0x0, 0x0, 0x4000080}, 0x80)
sendmmsg(r5, &(0x7f0000000000), 0x4000000000001f2, 0x0)
getsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f0000000000), &(0x7f0000000040)=0x4)
unshare(0x20000400)
socket$inet6_sctp(0xa, 0x1, 0x84)

7m12.252386116s ago: executing program 4 (id=249):
r0 = socket$alg(0x26, 0x5, 0x0)
ioperm(0x0, 0x12b, 0x8000000000008)
sendmsg$NL80211_CMD_SET_QOS_MAP(0xffffffffffffffff, 0x0, 0x4008040)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bind$alg(r0, &(0x7f0000000480)={0x26, 'hash\x00', 0x0, 0x0, 'nhpoly1305-generic\x00'}, 0x58)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xc, 0xc, &(0x7f0000000000)=@framed={{}, [@ringbuf_output={{0x18, 0x5, 0x1, 0x0, r1}, {}, {0x3, 0x3, 0x6, 0xa, 0x5, 0xfe00, 0xa1}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x15}}]}, &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0xcc03, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="8a", 0x440)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCSIFBR(r2, 0x890c, &(0x7f0000000000)=@generic={0x0, 0x2})

7m11.285611405s ago: executing program 4 (id=252):
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB='\t\x00\x00\x00'], 0x48)
openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/partitions\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
arch_prctl$ARCH_SHSTK_UNLOCK(0x5004, 0x1)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socket$kcm(0x11, 0x200000000000002, 0x300)
r4 = socket(0x10, 0x3, 0xfffffffe)
write(r4, &(0x7f0000000100)="140000001a", 0x5)
r5 = syz_open_dev$dri(&(0x7f0000000180), 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_QUERY(r5, 0xc01864cb, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(r5, 0xc01064c2, &(0x7f0000000280))
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)={0x24, 0x2, 0x3, 0x801, 0x0, 0x0, {0x0, 0x0, 0x2}, [@NFQA_CFG_MASK={0xfffffffffffffff1, 0x4, 0x1, 0x0, 0x2a}, @NFQA_CFG_FLAGS={0x8, 0x5, 0x1, 0x0, 0x7}, @NFQA_CFG_MASK={0x0, 0x4, 0x1, 0x0, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000880}, 0x4000800)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_FD(0xffffffffffffffff, 0xc01064c2, &(0x7f0000000400))
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000020000000000000a20000000000a03000000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a3000000000080005400000000d08000640ffffff00080003400000000b640000000c0a03000000000000000000070000000900020073797a31000000000900010073797a300000000038000380340000800800034000000002280002802400028008000180fffffffb08000180fffffffb"], 0xf8}}, 0x0)

7m9.109241896s ago: executing program 4 (id=255):
syz_init_net_socket$rose(0xb, 0x5, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xb, &(0x7f0000000140)={0x0, 0x2}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
sendto$inet6(r1, 0x0, 0x0, 0x20004041, 0x0, 0x0)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x3, @dev, 0x7}, 0x1c)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0900000000000000000002000000140001800500020001"], 0x28}}, 0x20000000)
mknodat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x81c0, 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x0, 0x0, 0x800)
r4 = socket$unix(0x1, 0x5, 0x0)
bind$unix(r4, &(0x7f0000000280)=@abs={0x1, 0x5c}, 0x25)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x8}}, './file1\x00'})
r5 = dup(0xffffffffffffffff)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0xff2e, 0x0})
openat$udambuf(0xffffffffffffff9c, 0x0, 0x2)
ioctl$BLKRRPART(r5, 0x125f, 0x0)
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r6, 0x4018620d, 0x0)
r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r8 = dup3(r7, r6, 0x0)
ioctl$BINDER_WRITE_READ(r8, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})

6m53.901692582s ago: executing program 33 (id=255):
syz_init_net_socket$rose(0xb, 0x5, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xb, &(0x7f0000000140)={0x0, 0x2}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
sendto$inet6(r1, 0x0, 0x0, 0x20004041, 0x0, 0x0)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x3, @dev, 0x7}, 0x1c)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0900000000000000000002000000140001800500020001"], 0x28}}, 0x20000000)
mknodat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x81c0, 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x0, 0x0, 0x800)
r4 = socket$unix(0x1, 0x5, 0x0)
bind$unix(r4, &(0x7f0000000280)=@abs={0x1, 0x5c}, 0x25)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x8}}, './file1\x00'})
r5 = dup(0xffffffffffffffff)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0xff2e, 0x0})
openat$udambuf(0xffffffffffffff9c, 0x0, 0x2)
ioctl$BLKRRPART(r5, 0x125f, 0x0)
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r6, 0x4018620d, 0x0)
r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r8 = dup3(r7, r6, 0x0)
ioctl$BINDER_WRITE_READ(r8, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})

6m9.302290101s ago: executing program 2 (id=420):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000480)=@newtaction={0x80, 0x30, 0xb, 0x3, 0x0, {}, [{0x6c, 0x1, [@m_ct={0x68, 0x1, 0x0, 0x0, {{0x7}, {0x40, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x80000001, 0x0, 0x0, 0x0, 0x400}}, @TCA_CT_MARK_MASK={0x8, 0x6, 0x10}, @TCA_CT_MARK={0x8, 0x5, 0xf237}, @TCA_CT_LABELS={0x14, 0x7, "bbf4939de30e3e944bffa48b3a567e01"}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0x80}, 0x1, 0x0, 0x0, 0x8890}, 0x40)
write$dsp(r0, &(0x7f00000001c0)="5cba91a4", 0xffffffd9)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r2, 0x6, 0x1, 0x0, 0x0)
ioctl$SNDCTL_DSP_SYNC(r0, 0x5001, 0x0)
ioctl$SNDCTL_DSP_SPEED(r0, 0xc0045009, &(0x7f0000000040))
sendto$llc(0xffffffffffffffff, &(0x7f0000000500)="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", 0x1000, 0x24004490, &(0x7f0000000080)={0x1a, 0x312, 0xa, 0x5, 0x6, 0x4, @broadcast}, 0x10)
ioctl$SNDCTL_DSP_RESET(r0, 0x5000, 0x0)

6m7.894059492s ago: executing program 2 (id=426):
r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x0, 0x1d9)
r1 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000080), 0x80043, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000280)={0x0, r0}, 0x8)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000003c0)='personality\x00')
read$FUSE(r2, &(0x7f0000006840)={0x2020}, 0x2020)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x10, 0x16, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000006c0)={r1, 0xffffffffffffffff, 0x1c, 0x0, @val=@netfilter={0xb, 0x1, 0x907d, 0x1}}, 0x20)
accept(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$nl_rdma(0x10, 0x3, 0x14)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
munlock(&(0x7f000048a000/0x4000)=nil, 0x4000)
getpid()
r7 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r7, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$RDMA_NLDEV_CMD_STAT_DEL(r3, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x10, 0x1412, 0x1}, 0x10}}, 0x40000)
renameat2(r0, &(0x7f0000000040)='./file0\x00', r1, &(0x7f00000000c0)='./file0\x00', 0x2)
syz_genetlink_get_family_id$wireguard(&(0x7f00000001c0), r1)

6m6.246566476s ago: executing program 2 (id=432):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000b80)={0x0, 0x0, 0x0}, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
mount(&(0x7f0000000100)=@nullb, &(0x7f0000000040)='./file1\x00', &(0x7f00000001c0)='gfs2\x00', 0x0, 0x0)
ioctl$int_out(r5, 0x5460, 0x0)
write$sndseq(r5, &(0x7f00000004c0)=[{0x6, 0x2, 0x80, 0xe, @time={0x3, 0x80000001}, {0x5, 0xf}, {0x7, 0x7}, @queue={0xd0, {0x35c, 0x7}}}], 0x1c)
connect$inet(0xffffffffffffffff, &(0x7f0000772000)={0x2, 0x4e23}, 0x10)
sendmmsg(0xffffffffffffffff, &(0x7f0000000480)=[{{&(0x7f00000003c0)=@isdn={0x22, 0x4, 0x2, 0xf2, 0xaf}, 0x80, &(0x7f0000000440)=[{0x0}], 0x1}}], 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x358, 0x128, 0x5802, 0x294, 0x0, 0x294, 0x288, 0x378, 0x378, 0x288, 0x378, 0x3, 0x0, {[{{@uncond, 0xf202, 0x108, 0x128, 0x52020000, {0x0, 0x600}, [@common=@frag={{0x30}}, @common=@srh={{0x30}}]}, @unspec=@TRACE={0x20}}, {{@ipv6={@empty, @private0, [], [], 'team_slave_1\x00', 'erspan0\x00', {}, {}, 0x87}, 0x0, 0xf8, 0x160, 0x0, {}, [@common=@mh={{0x28}, {"123a"}}, @inet=@rpfilter={{0x28}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3b8)
r6 = socket$can_j1939(0x1d, 0x2, 0x7)
r7 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r7, 0x8933, &(0x7f00000000c0)={'vxcan0\x00', <r8=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x20}}, 0x0)
bind$can_j1939(r6, &(0x7f0000000100)={0x1d, r8, 0x1, {}, 0xff}, 0x18)
setsockopt$sock_int(r6, 0x1, 0x6, &(0x7f0000000040)=0x1, 0x4)
sendmsg$can_j1939(r6, &(0x7f0000000140)={&(0x7f0000000180)={0x1d, 0x0, 0x0, {0x2, 0xfe, 0x4}, 0xff}, 0x18, &(0x7f0000000080)={0x0}, 0x4, 0x0, 0x0, 0x40805}, 0x8001)

6m5.077423581s ago: executing program 2 (id=437):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000001400000008000a00fc00000018000180140002006e657464657673696d300000000000000800080000fcffff0800090000000000080011000000000008000e00800000000800", @ANYRES64=r0], 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0) (fail_nth: 4)

6m4.673851232s ago: executing program 2 (id=438):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x1c1242, 0x0)
ftruncate(r1, 0x2007ffb)
r2 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000000), 0x103902, 0x0)
sendfile(r2, r1, 0x0, 0x7ffff000)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f0000000280)={<r3=>0x0, 0x1, 0x30, 0x4, 0x8}, &(0x7f0000000340)=0x18)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000480)={r3, @in6={{0xa, 0x4e23, 0x7f, @mcast2, 0x7f}}, 0xfffffffb, 0x4e23, 0x81, 0x5de1, 0x4, 0x2, 0x5}, 0x9c)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000380)=@allocspi={0xf8, 0x16, 0x0, 0x0, 0x0, {{{@in=@local, @in6=@mcast1}, {@in=@broadcast}, @in6=@loopback, {}, {0x0, 0x48a9, 0x0, 0x1}}, 0x0, 0x800000}}, 0xf8}, 0x1, 0x0, 0x0, 0x20000840}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000600)={'ip6tnl0\x00', &(0x7f0000000000)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x60, 0xe7, 0x9, @loopback, @mcast2={0xff, 0x3}}})
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
pipe2$9p(&(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r5, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff017f000e080039503230"], 0x15)
r6 = dup(r5)
write$FUSE_BMAP(r6, &(0x7f0000000000)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r6, &(0x7f00000003c0)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_GETXATTR(r6, &(0x7f00000000c0)={0x18}, 0x18)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="12000000090000000400000002"], 0x48)
bpf$MAP_DELETE_ELEM(0x4, &(0x7f00000000c0)={r7, &(0x7f0000000200), 0x20000000}, 0x20)
r8 = openat$fuse(0xffffffffffffff9c, &(0x7f00000003c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000100000,user_idk=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r8, &(0x7f00000021c0)={0x2020, 0x0, <r9=>0x0}, 0x2020)
write$FUSE_INIT(r6, &(0x7f0000000200)={0x50, 0x0, r9, {0x7, 0x29, 0x20200}}, 0x50)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[{@cache_fscache}]}})

6m2.097398155s ago: executing program 2 (id=445):
r0 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, 0x0, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, &(0x7f0000000000)={0x1000031, 0x6, 0x0, 0x0, 0x80000000, 0x8000})
r2 = syz_open_dev$evdev(&(0x7f0000000140), 0x80, 0x20200)
ioctl$EVIOCGKEY(r2, 0x80404518, &(0x7f0000000340)=""/197)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r3, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r4=>0x0}, &(0x7f0000000040)=0x54)
sendto(r1, &(0x7f0000000080)="dac7f1162922400caf2540a0a7af605d3d36f33975ca13c5d37b17daeacaa642ae41781c0c4291af46a8ed3a724fcaa8265223284a5df099ac8f212eb2cdb6353b4660a854bcfe78a63286d22e8f9c87e70319faea05a336259da924f74963aca12f6ef687acd1c2fb14892afb9a7ad33f01aabda1d4a721e031485774465a7eae9a00d4212eeb532e66def77d2a4194069a8f1655689217360a68fff1e6c37afaf94db7a87e188a2da4a18fe083980fd0b66d346afe1b", 0xb7, 0x24000000, 0x0, 0x0)
openat$sysfs(0xffffff9c, &(0x7f0000000540)='/sys/power/mem_sleep', 0x42, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
r5 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000640), 0x0, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000240)='smaps_rollup\x00')
close_range(r5, 0xffffffffffffffff, 0x0)
r6 = open$dir(&(0x7f0000000040)='./file0\x00', 0x105240, 0x0)
r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r7, 0x4058534c, &(0x7f0000000080)={0x80, 0x0, 0x2})
dup3(r6, r7, 0x0)
r8 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r8, &(0x7f00000007c0)={0x1f, 0x0, @any, 0x4}, 0xe)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r8, 0x6, 0x1, &(0x7f00000000c0)={0x9, 0x7fd, 0x0, 0x3, 0x14, 0x6, 0x1}, 0xc)
r9 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0xd01000)
r10 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r10, 0x1, r9, &(0x7f0000000100))
epoll_ctl$EPOLL_CTL_MOD(r10, 0x3, r9, &(0x7f0000000000)={0x6})
r11 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r11, @ANYBLOB=',wfdno=', @ANYBLOB='7'])
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x84, &(0x7f0000000180)={r4, @in={{0x2, 0x0, @empty}}}, 0x90)

5m46.97502225s ago: executing program 34 (id=445):
r0 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, 0x0, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, &(0x7f0000000000)={0x1000031, 0x6, 0x0, 0x0, 0x80000000, 0x8000})
r2 = syz_open_dev$evdev(&(0x7f0000000140), 0x80, 0x20200)
ioctl$EVIOCGKEY(r2, 0x80404518, &(0x7f0000000340)=""/197)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r3, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r4=>0x0}, &(0x7f0000000040)=0x54)
sendto(r1, &(0x7f0000000080)="dac7f1162922400caf2540a0a7af605d3d36f33975ca13c5d37b17daeacaa642ae41781c0c4291af46a8ed3a724fcaa8265223284a5df099ac8f212eb2cdb6353b4660a854bcfe78a63286d22e8f9c87e70319faea05a336259da924f74963aca12f6ef687acd1c2fb14892afb9a7ad33f01aabda1d4a721e031485774465a7eae9a00d4212eeb532e66def77d2a4194069a8f1655689217360a68fff1e6c37afaf94db7a87e188a2da4a18fe083980fd0b66d346afe1b", 0xb7, 0x24000000, 0x0, 0x0)
openat$sysfs(0xffffff9c, &(0x7f0000000540)='/sys/power/mem_sleep', 0x42, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
r5 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000640), 0x0, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000240)='smaps_rollup\x00')
close_range(r5, 0xffffffffffffffff, 0x0)
r6 = open$dir(&(0x7f0000000040)='./file0\x00', 0x105240, 0x0)
r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r7, 0x4058534c, &(0x7f0000000080)={0x80, 0x0, 0x2})
dup3(r6, r7, 0x0)
r8 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r8, &(0x7f00000007c0)={0x1f, 0x0, @any, 0x4}, 0xe)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r8, 0x6, 0x1, &(0x7f00000000c0)={0x9, 0x7fd, 0x0, 0x3, 0x14, 0x6, 0x1}, 0xc)
r9 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0xd01000)
r10 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r10, 0x1, r9, &(0x7f0000000100))
epoll_ctl$EPOLL_CTL_MOD(r10, 0x3, r9, &(0x7f0000000000)={0x6})
r11 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r11, @ANYBLOB=',wfdno=', @ANYBLOB='7'])
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x84, &(0x7f0000000180)={r4, @in={{0x2, 0x0, @empty}}}, 0x90)

14.577171366s ago: executing program 0 (id=1695):
ioprio_set$pid(0x2, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000200)='mounts\x00')
read$FUSE(r0, 0x0, 0x0)

13.408975694s ago: executing program 0 (id=1699):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x8)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000300), 0xffffffffffffffff)
link(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000900), 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r5, 0xc0145401, &(0x7f0000000040)={0x3, 0x0, 0x1, 0x3})
openat$smackfs_ipv6host(0xffffff9c, &(0x7f0000000080), 0x2, 0x0)
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x38, r6, 0x7, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_OURS={0xc, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x9}]}]}, 0x38}}, 0x0)
sendmsg$IPVS_CMD_DEL_DEST(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000004c0)=ANY=[@ANYRES16=r1, @ANYBLOB="170c000000000000000004000000090001"], 0x28}}, 0x0)

12.27142055s ago: executing program 0 (id=1704):
creat(&(0x7f0000000240)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000001900)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000500)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x4010, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB="2cf4376378653d6d6d61702cf446d4e76b"])
chmod(&(0x7f0000000140)='./file0\x00', 0x0)
r3 = open$dir(&(0x7f0000000140)='./file0\x00', 0x1, 0x0)
write$binfmt_misc(r3, &(0x7f0000000300), 0x4)

12.029760911s ago: executing program 0 (id=1710):
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
write$FUSE_NOTIFY_STORE(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB='/'], 0x2)
mount$fuse(0x20000000, &(0x7f00000000c0)='./file0\x00', 0x0, 0xa6d214, 0x0)
umount2(&(0x7f0000000040)='./file0\x00', 0xeb)

10.801025822s ago: executing program 0 (id=1713):
r0 = socket$inet6(0xa, 0x2, 0x0)
sendmsg$inet6(r0, &(0x7f0000000600)={&(0x7f0000000080)={0xa, 0x4e20, 0x1000000080000, @dev={0xfe, 0x80, '\x00', 0x2d}}, 0x1c, 0x0, 0x0, &(0x7f0000000400)=[@dstopts_2292={{0x18, 0x29, 0x4, {0x2b}}}, @dstopts_2292={{0x18, 0x29, 0x4, {0xc, 0x5a}}}], 0x30}, 0x0) (fail_nth: 5)

7.945454219s ago: executing program 3 (id=1729):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, 0x0, 0x0)
shutdown(r1, 0x0)
connect$bt_l2cap(r1, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
writev(r1, &(0x7f0000000240)=[{&(0x7f0000002740)="1e", 0x1}], 0x1)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
r4 = dup(r3)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r5, 0x0, 0x40, &(0x7f0000000480)=@mangle={'mangle\x00', 0x44, 0x6, 0x418, 0x2b0, 0x210, 0x2b0, 0x2b0, 0x98, 0x380, 0x380, 0x380, 0x380, 0x380, 0x6, 0x0, {[{{@ip={@broadcast, @multicast1=0xe0007600, 0x0, 0x0, 'geneve1\x00', 'ip6gre0\x00'}, 0x0, 0x70, 0x98}, @inet=@DSCP={0x28}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @local, 0x0, 0x0, 'batadv_slave_1\x00', 'veth1_virt_wifi\x00'}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @local}}}, {{@ip={@broadcast, @multicast2, 0x0, 0x0, 'vlan1\x00', 'nr0\x00'}, 0x0, 0xb0, 0xd8, 0x0, {}, [@common=@unspec=@connlimit={{0x40}}]}, @ECN={0x28}}, {{@ip={@loopback, @multicast2, 0x0, 0x0, 'syzkaller0\x00', 'veth1_to_team\x00'}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @empty}}}, {{@ip={@broadcast, @multicast2, 0x0, 0x0, 'lo\x00', 'batadv_slave_1\x00'}, 0x0, 0xa0, 0xd0, 0x0, {}, [@common=@unspec=@mac={{0x30}, {@multicast}}]}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @loopback}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x478)
ioctl$KVM_SET_MSRS(r4, 0xc008ae88, &(0x7f00000000c0)=ANY=[@ANYBLOB="820000000000000071000040"])

7.858093209s ago: executing program 0 (id=1730):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000), 0xc, 0x0}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x19, 0x4, 0x4, 0x9, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r0}, &(0x7f00000001c0), &(0x7f0000000340)}, 0x20)

7.850876354s ago: executing program 5 (id=1731):
syz_emit_ethernet(0x38f, &(0x7f00000003c0)={@multicast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "122d92", 0x359, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [{0x0, 0xa, "a78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af1802"}, {0x0, 0x1, "000000050000000026000400"}, {0x18, 0x18, "fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829af02d7f44d92324a7051e460a13ddde25a5b85b9d930914625d8a049b4cf0d129806a610ad8477a2499a9a0527f75b655a6653d0363a979acf93f88eea07d68423e90280409de1657275f716a2bf2915d1783e8eb477b0d1170f0ecbdef4c23e1b76e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177704c5fd4698c934de4731f3f61effc978"}, {0x0, 0x1d, "06aa85616177c41bc943afcb84619755403946b0730a18d5c38cf7dcad830f2dc8674b87ba8b58f81ece27975cc39e595e9af90b4fe92a38d25551c2d9ebfc5dfc5a2a501b7e483de3f808895c5f4a1a2367bc591dd8b094822ff0dea07c9a1f643c822a18b79f7c5eba31fb68b2d734a6671e27182aee96f24a4a5cf390dab23b500b0c0272479611e4f7f4299ec4d926d443367b105185e6ecd9602ba95392343e9bbd047ef6bc1ba42399907ccd0a562db212baa39eb8164e240069f656d3a05fecf894222a141123f5ac010000000000000090aa235a670670ffc5dc49dfb58d00000000000000"}, {0x18, 0xb, "17dcea46805d4809c20547406b18901b0aeff04c0300f3c75dc2d227a83b89483b1084743475671545e65eb2e9ac946a3f0e2bc4619f91394c02bcfbbb7d71138537d68e2d2c6393a9f3becd1a9f51a948b5b303f4f003"}, {0x21, 0x7, "ffffffffffff00000000000200000000000000000000000000008879e66485201a0015ca837400"/55}, {0x0, 0x14, "5e14f0e7e72d42cfb3f27fafb60845f90b6dfc2e37bc87c6905bbc94d33e1ea71a28105f543e868a8a53b360a9d33e2b1e26eb1d18065daa7628cf9ef083611c9f6ae2e1eb3d8bf9c6ab2642c4808288e62afbf03269f1f98aea6ab3beb5fdc5fdaabc2c676d8800871a6aa54155dea2d995cb22c9924e0ad38c6967052cc7786d779b8353aac33a57d79b05613a12328f61129017fa632dbf04542188b196e213408c"}, {0x3}]}}}}}}, 0x0)

7.578855147s ago: executing program 35 (id=1730):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000), 0xc, 0x0}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x19, 0x4, 0x4, 0x9, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r0}, &(0x7f00000001c0), &(0x7f0000000340)}, 0x20)

7.573069442s ago: executing program 5 (id=1733):
r0 = landlock_create_ruleset(&(0x7f0000000040)={0x123}, 0x10, 0x0)
landlock_restrict_self(r0, 0x0)
landlock_restrict_self(r0, 0x0)
landlock_restrict_self(r0, 0x0)
signalfd4(r0, &(0x7f0000000080)={[0x9]}, 0x8, 0x80000)
landlock_restrict_self(r0, 0x0)
landlock_restrict_self(r0, 0x0)
landlock_restrict_self(r0, 0x0)
r1 = landlock_create_ruleset(&(0x7f0000000000)={0x8242500218b4dded, 0x3, 0x1}, 0x18, 0x0)
landlock_restrict_self(r1, 0x0)
landlock_create_ruleset(&(0x7f0000000140)={0x895}, 0x10, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f00000003c0)='./file1\x00', &(0x7f0000000100)='autofs\x00', 0x20b0000, &(0x7f0000000740)='\xe2[\x97>\xcf\x05\xde\x1bH\v\xdf\x00\xc9\x8d\x87\xd5p\x94(Jp\x9a\xe87f\xb8')
chdir(&(0x7f00000000c0)='./file1\x00')
r2 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r2, 0x810c9365, 0x0)
r3 = landlock_create_ruleset(&(0x7f0000000140)={0x895}, 0x10, 0x0)
r4 = syz_open_dev$admmidi(&(0x7f0000000140), 0x20, 0x0)
ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(r4, 0xc0305710, &(0x7f0000000040)={0x1, 0xff, 0x1f})
r5 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x80383, 0x0)
read$midi(r4, 0x0, 0x0)
ioctl$SNDCTL_SEQ_PANIC(r5, 0x5111)
ioctl$SNDCTL_SEQ_PANIC(r5, 0x5100)
r6 = io_uring_setup(0x30d0, &(0x7f0000000240)={0x0, 0xfffffffe, 0x40})
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
close_range(r6, 0xffffffffffffffff, 0x0)
landlock_restrict_self(r3, 0x0)
vmsplice(r2, &(0x7f00000006c0)=[{&(0x7f0000000180)="b0cdadfe0680c840c633f61989d1", 0xe}, {&(0x7f0000000440)="9a5db0bee2c4725eaf94fa470fbf83741eff91b6374cc26dd7552de80c80097d8213d05240bb3ae8f35c61d824fa6095bc9b81faeaa24e54db40ac972d9933459406fea3cf7ff39e6d11d251f423ba0e29f101a2b19e6e9ef929fb5a35ba5ca158a332b0ebaa6afe35519eca75e3df08141b5e4cda597287f63ede53d064e75640b02fb9f241809685b55e7004e9aeef4580779796d939c1d37b1319e8d02cf088211cbaac57483bbcf76ab1a117ba76657d25a48a06412651fae1fd0865e923b5463f99cd3b3a7de4fc73506cc8a740311da37165731375f9b7b5c7d75d8c0af5cf935d8948dc8eed4b6c33", 0xec}, {&(0x7f0000000540)="e8f5abfd04b0fddee61fc5336f5862028c58fcaf4101fc4210fc2ebff2345ac94b3fd91258e94838e8f4efa9af12daefc94082559df3b0c915968cbec9910564f62951b7da4634f3e34eb9c5216ff65e0c2d48fec2145764860b6d395155f791e8f4b7e68dfb3e2d3291a501038ee57d5a53a9cf2695b51fc75483cb3d0328b1ad11d82b327ec9603467d12fcf3bf72ad3803c77faea3ce5d643a8646f14bd4f40cc8634bc31bf95549a44380ce1ce6a87ced563e609181c4abc007f7fc63230e78070401c707b0f99608c02c3bd17c6b3b0ab34c6a3cb5c7847fd372a2bb99b85a72d34cc551db78d9b92803cd4cf6a81b4ab21ca8b60ec6ba56d2c986c89", 0xff}, {&(0x7f00000001c0)="ea2497a9a286f678be403ee56cf519192b7bd8d9001e87e8a07f6f8670c36e094c1657a43bb003737b6840ec924f0a92f9447466f3f38478b8ab8220e92afb6bcac027be594a1a4c1c51f6b674815c7ace84bf30aaf9d7e5b83ac5237ea62cba2b4e7f8a541d977d25f60a7d10e42c45a475c8516d9cdcc78bed10c3125a9b5ae45f07735723f71d816cd7be0ca534c1e12a6ced", 0x94}, {&(0x7f0000000640)="91c8a954ca9c8ce66e0136629d3990c017ef4091094802e447cb2a033b245e02656d962c309bdd9479d077148478b71673b85bb53a22d4888bb3202cc6da7944ebff5678a69c20dbcf0ef80f1f155253b6255107", 0x54}], 0x5, 0x1)
landlock_restrict_self(r3, 0x0)

7.572479549s ago: executing program 3 (id=1734):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x1000000000021, 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x380000, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c)
syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000240), 0x8080, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000400), 0x1090c2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000001700))
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000580)=ANY=[@ANYBLOB="1c0000001800ffff00000000000000000a00000000000009"], 0x1c}}, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000001400), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
r3 = socket(0xa, 0x3, 0x3a)
setsockopt$inet6_int(r3, 0x29, 0xcf, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mount$fuse(0x0, 0x0, &(0x7f0000002100), 0x0, &(0x7f0000000280)=ANY=[])
r4 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000000180))
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ffd000/0x3000)=nil, 0x3000}, 0x1})
syz_io_uring_setup(0x1612, &(0x7f0000000040)={0x0, 0x3, 0x400}, &(0x7f00000000c0), &(0x7f0000000100))
ioctl$UFFDIO_COPY(r4, 0xc028aa05, &(0x7f0000000040)={&(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000000/0x3000)=nil, 0x3000})
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)

7.393809319s ago: executing program 5 (id=1736):
add_key$user(&(0x7f0000000480), &(0x7f0000000100)={'syz', 0x2}, &(0x7f0000000540)="eb1aa8392c5fa6df3ce0210a2cfd30698d3acaef809efb43d82f6959cf37a0c0229d536dab6e4589c5c7690122c2a74676c4d046e20fca9243bb68709acb1c261c493de40a1e6b1ffbf4a3f4004000"/104, 0x68, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
close(r0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000240)=0x1, 0x4)
shutdown(r1, 0x1)
socket$kcm(0x29, 0x7, 0x0)
connect$inet(r1, &(0x7f00000006c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x4}}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000100)=0x2, 0x4)
write$cgroup_int(r0, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x20, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000002295000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff})
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_team(r7, 0x8933, &(0x7f0000000040))
sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000340)=ANY=[@ANYRESOCT=0x0, @ANYRES64, @ANYRESDEC=0x0, @ANYRES8=r7, @ANYRESDEC=r3], 0x18}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
connect$unix(r5, &(0x7f0000000180)=@abs, 0x6e)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000180)={0x0, 0x4}, 0x8, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x0)

7.30316629s ago: executing program 5 (id=1737):
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
write$FUSE_NOTIFY_STORE(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB='/'], 0x2)
mount$fuse(0x20000000, &(0x7f00000000c0)='./file0\x00', 0x0, 0xa6d214, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
process_vm_readv(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
umount2(&(0x7f0000000040)='./file0\x00', 0x0)

7.194503037s ago: executing program 3 (id=1739):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000040)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x24004}, 0x48000)
io_setup(0x23, &(0x7f0000000280)=<r2=>0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r3}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
r5 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000001c0)='blkio.bfq.sectors\x00', 0x0, 0x0)
setsockopt$inet_MCAST_MSFILTER(r5, 0x0, 0x30, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b0000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r8}, 0x10)
socket(0x10, 0x2, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
io_submit(r2, 0x0, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000c00)=@raw={'raw\x00', 0x3c1, 0x1a6cc7, 0x290, 0xf0, 0x5802, 0x294, 0x0, 0x294, 0x1c0, 0x378, 0x378, 0x1c0, 0x378, 0x3, 0x0, {[{{@ipv6={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @ipv4, [], [], 'macvlan0\x00', 'team_slave_0\x00', {}, {}, 0x0, 0x0, 0x8}, 0x0, 0xa8, 0xf0, 0x52020000}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x0, 'syz1\x00'}}}, {{@ipv6={@loopback, @mcast2, [], [], 'ip6erspan0\x00', 'gre0\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@CONNSECMARK={0x28, 'CONNSECMARK\x00', 0x0, {0x1}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x2f0)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000400)=@assoc_value, &(0x7f0000000440)=0x8)

7.135547281s ago: executing program 8 (id=1732):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="c4000000190001000004000000000000e00000020000000000000000000000000000000000000000000000000000000000000000000000000a00000029000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000700000000000000000000000000000000000000000000000200000000000000ffffffffffffffff0000000000000000000000000000000000000000000000000000000000000000ffffffffffffffff000000000000000000000000000000000c00150059"], 0xc4}}, 0x4004)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b8000000190001e7"], 0xb8}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b800000028"], 0xb8}}, 0x0)

7.057855147s ago: executing program 5 (id=1740):
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000040))
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_route(0x10, 0x3, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYRES32], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000080)={'syz0\x00', {}, 0x15, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4], [0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x10000000, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x1ffc, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], [0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0xd7, 0x5], [0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1001, 0x0, 0x0, 0x100, 0xa90a, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0xfffffffc, 0x7ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x10000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xcc000000]}, 0x45c)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, 0x0, &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0)
fstat(r1, &(0x7f0000000140))
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket(0x40000000015, 0x5, 0x0)
r5 = syz_io_uring_setup(0x5169, &(0x7f0000000200)={0x0, 0x0, 0x10100}, 0x0, &(0x7f0000000000)=<r6=>0x0)
syz_io_uring_submit(0x0, r6, 0x0)
ustat(0x11, &(0x7f0000000600))
io_uring_enter(r5, 0xb15, 0x0, 0x0, 0x0, 0x0)
r7 = socket$vsock_stream(0x28, 0x1, 0x0)
accept4$vsock_stream(r7, 0x0, 0x0, 0x0)
syz_usb_connect(0x2, 0x5f, &(0x7f0000000b40)={{0x12, 0x1, 0x250, 0x6c, 0x3c, 0x62, 0x10, 0x46d, 0x8d3, 0x300e, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x4d, 0x1, 0x2, 0x9, 0x0, 0x0, [{{0x9, 0x4, 0x70, 0xfc, 0x0, 0xe, 0x1, 0x0, 0x3, [@cdc_ncm={{0x8, 0x24, 0x6, 0x0, 0x1, "f01826"}, {0x5, 0x24, 0x0, 0x8001}, {0xd, 0x24, 0xf, 0x1, 0x200, 0x6, 0x400}, {0x6, 0x24, 0x1a, 0xf, 0x24}, [@acm={0x4, 0x24, 0x2, 0x1}, @acm={0x4}, @mbim={0xc, 0x24, 0x1b, 0x80, 0x6, 0x5, 0x80, 0x0, 0x80}, @dmm={0x7, 0x24, 0x14, 0x2, 0x8}]}]}}]}}]}}, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0})

6.163029411s ago: executing program 5 (id=1741):
r0 = socket$kcm(0x29, 0x2, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x2000000)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="040e0506c5de9722"], 0x8)
r1 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000000), 0x2)
r2 = memfd_create(&(0x7f0000000040)='[[/*\'-.+*:+\x15/#\x00', 0x1)
r3 = memfd_create(&(0x7f0000000080)='/:.*/{]\x00', 0x5)
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
write$binfmt_misc(r4, &(0x7f0000000000), 0xd)
r6 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r6, &(0x7f0000000240)={0x2a, 0x3, 0x4001}, 0xc)
r7 = memfd_create(&(0x7f00000000c0)=',\x00', 0x3)
r8 = openat$userio(0xffffffffffffff9c, &(0x7f0000000200), 0x220000, 0x0)
write$USERIO_CMD_SEND_INTERRUPT(r8, &(0x7f0000000280)={0x2, 0x7}, 0x2)
r9 = memfd_create(&(0x7f0000000100)='\'#@.%\x00', 0x5)
ioctl$UDMABUF_CREATE_LIST(r1, 0x40087543, &(0x7f0000000140)=ANY=[@ANYBLOB="0000000004000000", @ANYRES32=r2, @ANYBLOB="000000000000000100"/20, @ANYRES32=r3, @ANYBLOB="00000000000000f0ffffffff00f0ffffffffffff", @ANYRES32=r7, @ANYBLOB="0004000000100000000000000000000001000000", @ANYRES32=r9, @ANYBLOB="00000000000000010000000000a0ffff00000000"])

6.162596988s ago: executing program 7 (id=1742):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, 0x0, 0x0, 0x7d7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r0 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000001, 0x20010, r0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write(0xffffffffffffffff, &(0x7f0000000300)='(', 0x1)
ioctl$KVM_CAP_HYPERV_SEND_IPI(0xffffffffffffffff, 0x4068aea3, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
creat(0x0, 0xecf86c37d53049cc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000740)={0x0, 0x0, 0x0}, 0x0)
ioctl$PPPIOCGCHAN(0xffffffffffffffff, 0x80047437, &(0x7f0000001f00))
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r1, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x45c], 0x0, 0x0, 0x1f, 0x1}}, 0x3c)
getpid()

5.828807098s ago: executing program 36 (id=1741):
r0 = socket$kcm(0x29, 0x2, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x2000000)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="040e0506c5de9722"], 0x8)
r1 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000000), 0x2)
r2 = memfd_create(&(0x7f0000000040)='[[/*\'-.+*:+\x15/#\x00', 0x1)
r3 = memfd_create(&(0x7f0000000080)='/:.*/{]\x00', 0x5)
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
write$binfmt_misc(r4, &(0x7f0000000000), 0xd)
r6 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r6, &(0x7f0000000240)={0x2a, 0x3, 0x4001}, 0xc)
r7 = memfd_create(&(0x7f00000000c0)=',\x00', 0x3)
r8 = openat$userio(0xffffffffffffff9c, &(0x7f0000000200), 0x220000, 0x0)
write$USERIO_CMD_SEND_INTERRUPT(r8, &(0x7f0000000280)={0x2, 0x7}, 0x2)
r9 = memfd_create(&(0x7f0000000100)='\'#@.%\x00', 0x5)
ioctl$UDMABUF_CREATE_LIST(r1, 0x40087543, &(0x7f0000000140)=ANY=[@ANYBLOB="0000000004000000", @ANYRES32=r2, @ANYBLOB="000000000000000100"/20, @ANYRES32=r3, @ANYBLOB="00000000000000f0ffffffff00f0ffffffffffff", @ANYRES32=r7, @ANYBLOB="0004000000100000000000000000000001000000", @ANYRES32=r9, @ANYBLOB="00000000000000010000000000a0ffff00000000"])

5.81076671s ago: executing program 7 (id=1745):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, 0x0, 0x0, 0x7d7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000001, 0x20010, r1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x1d, 0x15, &(0x7f0000000340)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0xc}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}, @jmp={0x5, 0x1, 0x9, 0x7, 0x0, 0xfffffffffffffff8, 0xc8d82e52ba3f51d8}, @alu={0x0, 0x0, 0x7, 0x9, 0x5, 0x100, 0xffffffffffffffff}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000100)='GPL\x00', 0x9, 0x8f, &(0x7f0000000400)=""/143, 0x41100, 0x22, '\x00', 0x0, @fallback=0x8, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000180)={0x0, 0x4, 0x9, 0x2}, 0x10, 0xffffffffffffffff, r0, 0x3, &(0x7f00000004c0)=[r0, r0, r0, r0, r0, r0], &(0x7f0000000500)=[{0x1, 0x4, 0x8, 0xa}, {0x0, 0x2, 0x2, 0x1}, {0x8, 0x4, 0xc, 0x8}], 0x10, 0x10001, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write(0xffffffffffffffff, &(0x7f0000000300)='(', 0x1)
ioctl$KVM_CAP_HYPERV_SEND_IPI(0xffffffffffffffff, 0x4068aea3, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
creat(0x0, 0xecf86c37d53049cc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000740)={0x0, 0x0, 0x0}, 0x0)
ioctl$PPPIOCGCHAN(0xffffffffffffffff, 0x80047437, &(0x7f0000001f00))
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r3, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x45c], 0x0, 0x0, 0x1f, 0x1}}, 0x3c)
getpid()

5.804084993s ago: executing program 3 (id=1746):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={0x0}, 0x10)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x9, 0x5, &(0x7f00000002c0)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x6b, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
unshare(0x4000400)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d0000007b0000000700000095", @ANYBLOB="7ebe67a19fec98e5f24ac500b2f669c744af3ab0fcdb88209fcc5e482f51e0e3254ad6c0f2fb897628c86b101fac54a3bf1248633f3cd1aeacdb0dcf015c1cb772084f2edf15b8a2609e7131bd88b2334236d36d4a670b1f021cabc7f8388308fe51f273f257f24020b9affc6f93d7c570c0ba41a0b1613a8e7b8f5ef4438d012b73736b45e8f1860a8d57760e43ad05c6"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x38, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='ext4_es_lookup_extent_enter\x00', r2}, 0x10)
bpf$OBJ_PIN_PROG(0x6, &(0x7f00000000c0)=@generic={0x0, r3}, 0x18)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40a01, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
r7 = socket$kcm(0x29, 0x5, 0x0)
r8 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
pwritev(r8, &(0x7f0000001a40)=[{&(0x7f0000000240)="02000000", 0x4}, {&(0x7f0000000280)="f697079a161cfb7702311e629acda76933ddd0c24174eb4d4d28f9", 0x1b}, {&(0x7f0000000340)="527302587e0a4e47ad", 0x9}], 0x3, 0x0, 0x7)
set_mempolicy(0x3, &(0x7f0000000040)=0x9, 0x5)
set_mempolicy(0x2, &(0x7f0000000140)=0xa, 0x4)
sendmsg$rds(r7, &(0x7f0000002940)={0x0, 0x0, &(0x7f0000002800)=[{&(0x7f0000002980)=""/4112, 0xfffffe09}], 0x1}, 0x0)
write(r7, 0x0, 0x0)
r9 = add_key$keyring(&(0x7f0000000000), 0x0, 0x0, 0x0, 0x0)
r10 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x1}, 0x0, 0x0, r9)
r11 = add_key$keyring(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x1}, 0x0, 0x0, r10)
add_key$keyring(0x0, 0x0, 0x0, 0x0, r11)

5.722993252s ago: executing program 8 (id=1732):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="c4000000190001000004000000000000e00000020000000000000000000000000000000000000000000000000000000000000000000000000a00000029000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000700000000000000000000000000000000000000000000000200000000000000ffffffffffffffff0000000000000000000000000000000000000000000000000000000000000000ffffffffffffffff000000000000000000000000000000000c00150059"], 0xc4}}, 0x4004)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b8000000190001e7"], 0xb8}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b800000028"], 0xb8}}, 0x0)

5.515757475s ago: executing program 7 (id=1748):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x1000000000021, 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x380000, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c)
syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000240), 0x8080, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000400), 0x1090c2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000001700))
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000580)=ANY=[@ANYBLOB="1c0000001800ffff00000000000000000a00000000000009"], 0x1c}}, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000001400), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
r3 = socket(0xa, 0x3, 0x3a)
setsockopt$inet6_int(r3, 0x29, 0xcf, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mount$fuse(0x0, 0x0, &(0x7f0000002100), 0x0, &(0x7f0000000280)=ANY=[])
r4 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000000180))
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ffd000/0x3000)=nil, 0x3000}, 0x1})
syz_io_uring_setup(0x1612, &(0x7f0000000040)={0x0, 0x3, 0x400}, &(0x7f00000000c0), &(0x7f0000000100))
ioctl$UFFDIO_COPY(r4, 0xc028aa05, &(0x7f0000000040)={&(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000000/0x3000)=nil, 0x3000})
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)

5.162565682s ago: executing program 6 (id=1749):
r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x11, 0x4, 0x4, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, &(0x7f0000000200)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x50}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {0x4}, {0x6, 0x0, 0xa}, {}, {}, {0x85, 0x0, 0x0, 0x33}}]}, &(0x7f00000004c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r2}, 0xc)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000800)={{0x12, 0x1, 0x0, 0x96, 0x5d, 0x6, 0x40, 0x133e, 0x815, 0x7e66, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0xff, 0x87, 0x28, 0x0, [], [{{0x9, 0x5, 0x5}}]}}]}}]}}, 0x0)
fchdir(r0)
openat$smackfs_load(0xffffffffffffff9c, &(0x7f0000000000)='/sys/fs/smackfs/load-self\x00', 0x2, 0x0)
mount(&(0x7f0000000000), &(0x7f0000000280)='./cgroup\x00', 0x0, 0x75809, 0x0)
mount(0x0, &(0x7f0000000140)='./cgroup\x00', 0x0, 0x21a8f5, 0x0)
r3 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000000000406d041bc700000000000109022400010000000009042000010300000009210000000122070009058103"], 0x0)
syz_usb_control_io$hid(r3, 0x0, 0x0)
syz_usb_control_io(r3, &(0x7f0000000500)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB='\x00\x00\a'], 0x0, 0x0, 0x0, 0x0}, 0x0)

5.156753396s ago: executing program 9 (id=1744):
syz_emit_ethernet(0x3a3, &(0x7f00000003c0)={@multicast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "122d92", 0x36d, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [{0x0, 0xa, "a78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af1802"}, {0x0, 0x1, "000000050000000026000400"}, {0x18, 0x18, "fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829af02d7f44d92324a7051e460a13ddde25a5b85b9d930914625d8a049b4cf0d129806a610ad8477a2499a9a0527f75b655a6653d0363a979acf93f88eea07d68423e90280409de1657275f716a2bf2915d1783e8eb477b0d1170f0ecbdef4c23e1b76e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177704c5fd4698c934de4731f3f61effc978"}, {0x0, 0x1d, "06aa85616177c41bc943afcb84619755403946b0730a18d5c38cf7dcad830f2dc8674b87ba8b58f81ece27975cc39e595e9af90b4fe92a38d25551c2d9ebfc5dfc5a2a501b7e483de3f808895c5f4a1a2367bc591dd8b094822ff0dea07c9a1f643c822a18b79f7c5eba31fb68b2d734a6671e27182aee96f24a4a5cf390dab23b500b0c0272479611e4f7f4299ec4d926d443367b105185e6ecd9602ba95392343e9bbd047ef6bc1ba42399907ccd0a562db212baa39eb8164e240069f656d3a05fecf894222a141123f5ac010000000000000090aa235a670670ffc5dc49dfb58d00000000000000"}, {0x18, 0xb, "17dcea46805d4809c20547406b18901b0aeff04c0300f3c75dc2d227a83b89483b1084743475671545e65eb2e9ac946a3f0e2bc4619f91394c02bcfbbb7d71138537d68e2d2c6393a9f3becd1a9f51a948b5b303f4f003"}, {0x21, 0x7, "ffffffffffff00000000000200000000000000000000000000008879e66485201a0015ca837400"/55}, {0x0, 0x14, "5e14f0e7e72d42cfb3f27fafb60845f90b6dfc2e37bc87c6905bbc94d33e1ea71a28105f543e868a8a53b360a9d33e2b1e26eb1d18065daa7628cf9ef083611c9f6ae2e1eb3d8bf9c6ab2642c4808288e62afbf03269f1f98aea6ab3beb5fdc5fdaabc2c676d8800871a6aa54155dea2d995cb22c9924e0ad38c6967052cc7786d779b8353aac33a57d79b05613a12328f61129017fa632dbf04542188b196e213408c"}, {0x3, 0x2, "d5170000dce9674a36da018dff16e70b8b14c4b7"}]}}}}}}, 0x0)

4.765876182s ago: executing program 3 (id=1750):
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000002140)="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", 0x1a10, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001080)=ANY=[@ANYBLOB="020000000400000004000000090000", @ANYBLOB, @ANYBLOB='\x00'/15, @ANYRES32, @ANYBLOB], 0x48)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000100)={'syztnl0\x00', 0x0})
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0xd, 0x6, 0x4, 0x1, 0x0, r0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
ftruncate(0xffffffffffffffff, 0x1f)
pwritev(0xffffffffffffffff, &(0x7f0000000680), 0x0, 0xdcd, 0xa)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8a}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
setregid(0xffffffffffffffff, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0)
lseek(r4, 0xc6c3, 0x0)
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

4.726876426s ago: executing program 8 (id=1732):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="c4000000190001000004000000000000e00000020000000000000000000000000000000000000000000000000000000000000000000000000a00000029000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000700000000000000000000000000000000000000000000000200000000000000ffffffffffffffff0000000000000000000000000000000000000000000000000000000000000000ffffffffffffffff000000000000000000000000000000000c00150059"], 0xc4}}, 0x4004)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b8000000190001e7"], 0xb8}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b800000028"], 0xb8}}, 0x0)

4.437962313s ago: executing program 6 (id=1751):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f0000000240)={0x1d, r1, 0x20000000}, 0x18)
ioctl$VIDIOC_QBUF(0xffffffffffffffff, 0xc058560f, &(0x7f00000001c0)=@mmap={0x3ff, 0x8, 0x4, 0x800, 0x3, {}, {0x1, 0x0, 0x27, 0x3, 0x3, 0x7f, "96ed3468"}, 0x4, 0x1, {}, 0xa})
socket$inet6(0xa, 0x800000000000002, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet_udp(0x2, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r3 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000100), 0x802, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000000500)=ANY=[@ANYBLOB="0b00000073797a300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000073797a3000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
writev(r3, 0x0, 0x0)
sendmsg(r0, &(0x7f00000019c0)={&(0x7f00000001c0)=@can={0x1d, r1}, 0x80, 0x0}, 0x4000c005)
r4 = socket$packet(0x11, 0x3, 0x300)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000001900)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r6, 0x8933, &(0x7f0000000200)={'batadv_slave_0\x00', <r7=>0x0})
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000880)=@ipv6_newroute={0x44, 0x18, 0x1, 0x0, 0x0, {}, [@RTA_ENCAP={0x18, 0x16, 0x0, 0x0, @SEG6_IPTUNNEL_SRH={0x14, 0x1, {{0x4, {0x0, 0x0, 0x10, 0x0, 0xfc}}}}}, @RTA_OIF={0x8, 0x4, r7}, @RTA_ENCAP_TYPE={0x6, 0x15, 0x7}]}, 0x44}}, 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$SEG6_CMD_GET_TUNSRC(r9, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000c40)={0x14, r10, 0x1, 0x70bd26, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x4084}, 0x0)
sendmsg$SEG6_CMD_SET_TUNSRC(r5, &(0x7f0000000780)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000740)={&(0x7f0000000700)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="000125bd7000ffdbdf250300000014000100fc01000000000000000000000000000108000483000000"], 0x38}, 0x1, 0x0, 0x0, 0x8000}, 0x80)
setsockopt$packet_int(r4, 0x107, 0xa, &(0x7f0000000000)=0x2, 0x4)
setsockopt$packet_tx_ring(r4, 0x107, 0xd, &(0x7f0000000040)=@req={0x8001, 0x7, 0x9, 0x3}, 0x10)

4.384389503s ago: executing program 9 (id=1744):
syz_emit_ethernet(0x3a3, &(0x7f00000003c0)={@multicast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "122d92", 0x36d, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [{0x0, 0xa, "a78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af1802"}, {0x0, 0x1, "000000050000000026000400"}, {0x18, 0x18, "fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829af02d7f44d92324a7051e460a13ddde25a5b85b9d930914625d8a049b4cf0d129806a610ad8477a2499a9a0527f75b655a6653d0363a979acf93f88eea07d68423e90280409de1657275f716a2bf2915d1783e8eb477b0d1170f0ecbdef4c23e1b76e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177704c5fd4698c934de4731f3f61effc978"}, {0x0, 0x1d, "06aa85616177c41bc943afcb84619755403946b0730a18d5c38cf7dcad830f2dc8674b87ba8b58f81ece27975cc39e595e9af90b4fe92a38d25551c2d9ebfc5dfc5a2a501b7e483de3f808895c5f4a1a2367bc591dd8b094822ff0dea07c9a1f643c822a18b79f7c5eba31fb68b2d734a6671e27182aee96f24a4a5cf390dab23b500b0c0272479611e4f7f4299ec4d926d443367b105185e6ecd9602ba95392343e9bbd047ef6bc1ba42399907ccd0a562db212baa39eb8164e240069f656d3a05fecf894222a141123f5ac010000000000000090aa235a670670ffc5dc49dfb58d00000000000000"}, {0x18, 0xb, "17dcea46805d4809c20547406b18901b0aeff04c0300f3c75dc2d227a83b89483b1084743475671545e65eb2e9ac946a3f0e2bc4619f91394c02bcfbbb7d71138537d68e2d2c6393a9f3becd1a9f51a948b5b303f4f003"}, {0x21, 0x7, "ffffffffffff00000000000200000000000000000000000000008879e66485201a0015ca837400"/55}, {0x0, 0x14, "5e14f0e7e72d42cfb3f27fafb60845f90b6dfc2e37bc87c6905bbc94d33e1ea71a28105f543e868a8a53b360a9d33e2b1e26eb1d18065daa7628cf9ef083611c9f6ae2e1eb3d8bf9c6ab2642c4808288e62afbf03269f1f98aea6ab3beb5fdc5fdaabc2c676d8800871a6aa54155dea2d995cb22c9924e0ad38c6967052cc7786d779b8353aac33a57d79b05613a12328f61129017fa632dbf04542188b196e213408c"}, {0x3, 0x2, "d5170000dce9674a36da018dff16e70b8b14c4b7"}]}}}}}}, 0x0)

4.034609565s ago: executing program 7 (id=1752):
r0 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
lstat(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, <r1=>0x0, <r2=>0x0})
fsetxattr$security_capability(r0, &(0x7f0000000000), &(0x7f0000000100)=@v3={0x3000000, [{0x6, 0xb}, {0x7, 0x3ff}], r1}, 0x18, 0x1)
chown(&(0x7f0000000140)='./file0\x00', r1, r2)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(r4, 0x6, 0xe, &(0x7f0000000180)={@in6={{0xa, 0x4e21, 0x40, @loopback, 0xfffffff9}}, 0x0, 0x0, 0x40, 0x0, "b51a5344e86ad4d2b738ff33b5a89fb7f1cf61a6e95c96264ba141706036f6deb8639582ea777f19dbe09afa7d2f3bd0265188df3e5200a72182725e0fd8d16861aa6265e797523f485ef13cfb01874a"}, 0xd8)
r5 = socket$inet6_dccp(0xa, 0x6, 0x0)
bind$inet6(r5, &(0x7f0000000280)={0xa, 0x4e24, 0x800, @empty, 0x4}, 0x1c)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000002c0)={{0x1, 0x1, 0x18, <r6=>r5, {0x1, 0x200}}, './file0\x00'})
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r3, 0x89f3, &(0x7f0000000380)={'tunl0\x00', &(0x7f0000000340)={'tunl0\x00', <r7=>0x0, 0x8000, 0x40, 0xffff1c9a, 0xfe1, {{0x7, 0x4, 0x0, 0x9, 0x1c, 0x65, 0x0, 0xf, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @multicast2, {[@generic={0x7, 0x8, "803d84ce6e65"}]}}}}})
sendmsg$nl_route(r6, &(0x7f0000000480)={&(0x7f0000000300), 0xc, &(0x7f0000000440)={&(0x7f00000003c0)=@ipv6_getaddrlabel={0x64, 0x4a, 0x200, 0x70bd28, 0x25dfdbfb, {0xa, 0x0, 0x0, 0x0, r7, 0x839c}, [@IFAL_LABEL={0x8, 0x2, 0xc}, @IFAL_ADDRESS={0x14, 0x1, @loopback}, @IFAL_LABEL={0x8, 0x2, 0x3}, @IFAL_LABEL={0x8, 0x2, 0x1}, @IFAL_ADDRESS={0x14, 0x1, @local}, @IFAL_LABEL={0x8, 0x2, 0x5e9a6f4423ed65cf}]}, 0x64}, 0x1, 0x0, 0x0, 0x800}, 0x840)
ioctl$sock_SIOCBRDELBR(r3, 0x89a1, &(0x7f00000004c0)='ipvlan0\x00')
io_uring_enter(0xffffffffffffffff, 0x6bdb, 0x7504, 0x2, &(0x7f0000000500)={[0x9]}, 0x8)
r8 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r8, 0x84, 0x7, &(0x7f0000000540), &(0x7f0000000580)=0x4)
r9 = openat$autofs(0xffffffffffffff9c, &(0x7f00000005c0), 0x38000, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r9, 0xc0189371, &(0x7f0000000600)={{0x1, 0x1, 0x18, r4}, './file1\x00'})
r10 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000640), 0x2, 0x0)
pipe2$watch_queue(&(0x7f0000000680)={0xffffffffffffffff, <r11=>0xffffffffffffffff}, 0x80)
listen(r11, 0x8d8)
r12 = signalfd4(r10, &(0x7f00000006c0)={[0xda4]}, 0x8, 0x0)
recvfrom$inet(r12, &(0x7f0000000700)=""/83, 0x53, 0x3, &(0x7f0000000780)={0x2, 0x4e23, @multicast2}, 0x10)
r13 = memfd_secret(0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r13, 0xc4c85513, &(0x7f00000007c0)={{0x9, 0x0, 0x200, 0xfff, 'syz1\x00', 0x80000001}, 0x1, [0x8b91, 0x6, 0xffffffffffff8000, 0x5, 0x6, 0x9, 0x0, 0x5, 0x10001, 0x20, 0x8, 0x5, 0xffffffff00000000, 0x400, 0x90c, 0xffffffff, 0x6, 0x0, 0x4, 0x401, 0x1258800000000, 0x1, 0x1, 0x7, 0x4, 0x3ff, 0xffffffff, 0x8d3bf7c, 0x80000000, 0x77de, 0x6, 0x4, 0x1, 0x4, 0x5, 0x5, 0x6, 0x1, 0x2, 0x1, 0x6, 0xffffffffffffffff, 0x8, 0x7f, 0x3, 0x6, 0x9, 0x5, 0x1, 0x5, 0x61, 0x6, 0x7, 0x7, 0x7, 0x9, 0xb, 0x40, 0x2, 0x800, 0x7, 0xffffffffffffffff, 0x6, 0x401, 0x0, 0x0, 0x400, 0x1000000000000, 0x6, 0x10, 0x4, 0x6, 0x8, 0xd8, 0xa, 0x16a26ff, 0xfffffffffffff000, 0x56, 0x4, 0xabb, 0x7, 0x0, 0x3ce9, 0x0, 0x53, 0x420, 0x1, 0x6, 0x2, 0x80000001, 0x0, 0xfffffffffffffff9, 0x43c, 0x7fff, 0xffffffffffffff9b, 0x4, 0x1, 0x6, 0x7, 0x4, 0x3, 0x4, 0x4, 0xfff, 0x816c, 0x4, 0xfffffffffffffff7, 0x3ff, 0x10000, 0x1, 0x0, 0x0, 0x67, 0x5aaa5012, 0xfffffffffffffff7, 0x3, 0x9, 0xc5a, 0x9, 0x9, 0x8000000000000001, 0x0, 0x5, 0x2, 0x9, 0x4, 0x6, 0x7]})
close_range(r6, r12, 0x2)
r14 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000cc0), 0x628900, 0x0)
ioctl$VIDIOC_SUBDEV_S_FMT(r14, 0xc0585605, &(0x7f0000000d00)={0x0, 0x0, {0x401, 0x6b0f, 0x2021, 0x4, 0x4, 0x8, 0x1, 0x2}})
ioctl$KVM_CREATE_VCPU(r14, 0xae41, 0x1)
ioctl$RTC_WIE_OFF(r13, 0x7010)

4.034212664s ago: executing program 6 (id=1753):
r0 = io_uring_setup(0x2e34, &(0x7f0000000180))
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mkdir(&(0x7f0000000280)='./bus\x00', 0x100)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents(r3, 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
getdents64(r4, 0x0, 0x0)
syz_init_net_socket$ax25(0x3, 0x5, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
r5 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SNDCTL_DSP_SPEED(r5, 0xc0045002, &(0x7f00000001c0))
ioctl$SNDCTL_DSP_GETISPACE(r5, 0x8010500d, &(0x7f0000000080))

3.947863483s ago: executing program 8 (id=1732):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="c4000000190001000004000000000000e00000020000000000000000000000000000000000000000000000000000000000000000000000000a00000029000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000700000000000000000000000000000000000000000000000200000000000000ffffffffffffffff0000000000000000000000000000000000000000000000000000000000000000ffffffffffffffff000000000000000000000000000000000c00150059"], 0xc4}}, 0x4004)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b8000000190001e7"], 0xb8}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b800000028"], 0xb8}}, 0x0)

3.161111217s ago: executing program 9 (id=1744):
syz_emit_ethernet(0x3a3, &(0x7f00000003c0)={@multicast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "122d92", 0x36d, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [{0x0, 0xa, "a78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af1802"}, {0x0, 0x1, "000000050000000026000400"}, {0x18, 0x18, "fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829af02d7f44d92324a7051e460a13ddde25a5b85b9d930914625d8a049b4cf0d129806a610ad8477a2499a9a0527f75b655a6653d0363a979acf93f88eea07d68423e90280409de1657275f716a2bf2915d1783e8eb477b0d1170f0ecbdef4c23e1b76e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177704c5fd4698c934de4731f3f61effc978"}, {0x0, 0x1d, "06aa85616177c41bc943afcb84619755403946b0730a18d5c38cf7dcad830f2dc8674b87ba8b58f81ece27975cc39e595e9af90b4fe92a38d25551c2d9ebfc5dfc5a2a501b7e483de3f808895c5f4a1a2367bc591dd8b094822ff0dea07c9a1f643c822a18b79f7c5eba31fb68b2d734a6671e27182aee96f24a4a5cf390dab23b500b0c0272479611e4f7f4299ec4d926d443367b105185e6ecd9602ba95392343e9bbd047ef6bc1ba42399907ccd0a562db212baa39eb8164e240069f656d3a05fecf894222a141123f5ac010000000000000090aa235a670670ffc5dc49dfb58d00000000000000"}, {0x18, 0xb, "17dcea46805d4809c20547406b18901b0aeff04c0300f3c75dc2d227a83b89483b1084743475671545e65eb2e9ac946a3f0e2bc4619f91394c02bcfbbb7d71138537d68e2d2c6393a9f3becd1a9f51a948b5b303f4f003"}, {0x21, 0x7, "ffffffffffff00000000000200000000000000000000000000008879e66485201a0015ca837400"/55}, {0x0, 0x14, "5e14f0e7e72d42cfb3f27fafb60845f90b6dfc2e37bc87c6905bbc94d33e1ea71a28105f543e868a8a53b360a9d33e2b1e26eb1d18065daa7628cf9ef083611c9f6ae2e1eb3d8bf9c6ab2642c4808288e62afbf03269f1f98aea6ab3beb5fdc5fdaabc2c676d8800871a6aa54155dea2d995cb22c9924e0ad38c6967052cc7786d779b8353aac33a57d79b05613a12328f61129017fa632dbf04542188b196e213408c"}, {0x3, 0x2, "d5170000dce9674a36da018dff16e70b8b14c4b7"}]}}}}}}, 0x0)

3.155921732s ago: executing program 7 (id=1754):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
syz_usb_connect(0x0, 0x24, &(0x7f0000000700)={{0x12, 0x1, 0x0, 0x6b, 0x17, 0xcd, 0x20, 0xd81, 0x1900, 0x207a, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x4, [{{0x9, 0x4, 0x0, 0xfc, 0x0, 0x6c, 0x90, 0xbe, 0x10}}]}}]}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)={0xb8, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @ipv4={'\x00', '\xff\xff', @dev}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @ipv4={'\x00', '\xff\xff', @multicast2}}, {0x14, 0x4, @private2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_SYNPROXY={0x1c, 0x18, 0x0, 0x1, [@CTA_SYNPROXY_ISN={0x8}, @CTA_SYNPROXY_TSOFF={0x8}, @CTA_SYNPROXY_ITS={0x8}]}, @CTA_MARK={0x8}]}, 0xb8}, 0x1, 0xfffff000}, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000040)={0x3, 0x1, 0x0, "27425b815f17386bcec1d8665c0084feea0bc1b2ff8f647d307219e300"})

3.155490271s ago: executing program 6 (id=1755):
creat(&(0x7f0000000040)='./file0\x00', 0xa4)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000380), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f000000e3c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20, 0x0, 0x0, {0x0, 0xb}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f0000006380)="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", 0x2000, &(0x7f0000001040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000800)={0x18, 0xfffffffffffffff5, 0x8, {0x268}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20c01, 0x0)
io_setup(0x202, &(0x7f0000000200)=<r3=>0x0)
io_submit(r3, 0x140b, &(0x7f0000000700)=[&(0x7f0000000440)={0x18, 0x7000000, 0x2, 0x1, 0x0, r2, &(0x7f0000000180)='\x00', 0x1001}]) (fail_nth: 5)

2.497344376s ago: executing program 6 (id=1756):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000040)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x24004}, 0x48000)
io_setup(0x23, &(0x7f0000000280)=<r2=>0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r3}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
r5 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000001c0)='blkio.bfq.sectors\x00', 0x0, 0x0)
setsockopt$inet_MCAST_MSFILTER(r5, 0x0, 0x30, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b00000000000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r8}, 0x10)
socket(0x10, 0x2, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
io_submit(r2, 0x0, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000c00)=@raw={'raw\x00', 0x3c1, 0x1a6cc7, 0x290, 0xf0, 0x5802, 0x294, 0x0, 0x294, 0x1c0, 0x378, 0x378, 0x1c0, 0x378, 0x3, 0x0, {[{{@ipv6={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @ipv4, [], [], 'macvlan0\x00', 'team_slave_0\x00', {}, {}, 0x0, 0x0, 0x8}, 0x0, 0xa8, 0xf0, 0x52020000}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x0, 'syz1\x00'}}}, {{@ipv6={@loopback, @mcast2, [], [], 'ip6erspan0\x00', 'gre0\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@CONNSECMARK={0x28, 'CONNSECMARK\x00', 0x0, {0x1}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x2f0)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000400)=@assoc_value, &(0x7f0000000440)=0x8)

2.385139976s ago: executing program 9 (id=1744):
syz_emit_ethernet(0x3a3, &(0x7f00000003c0)={@multicast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "122d92", 0x36d, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [{0x0, 0xa, "a78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af1802"}, {0x0, 0x1, "000000050000000026000400"}, {0x18, 0x18, "fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829af02d7f44d92324a7051e460a13ddde25a5b85b9d930914625d8a049b4cf0d129806a610ad8477a2499a9a0527f75b655a6653d0363a979acf93f88eea07d68423e90280409de1657275f716a2bf2915d1783e8eb477b0d1170f0ecbdef4c23e1b76e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177704c5fd4698c934de4731f3f61effc978"}, {0x0, 0x1d, "06aa85616177c41bc943afcb84619755403946b0730a18d5c38cf7dcad830f2dc8674b87ba8b58f81ece27975cc39e595e9af90b4fe92a38d25551c2d9ebfc5dfc5a2a501b7e483de3f808895c5f4a1a2367bc591dd8b094822ff0dea07c9a1f643c822a18b79f7c5eba31fb68b2d734a6671e27182aee96f24a4a5cf390dab23b500b0c0272479611e4f7f4299ec4d926d443367b105185e6ecd9602ba95392343e9bbd047ef6bc1ba42399907ccd0a562db212baa39eb8164e240069f656d3a05fecf894222a141123f5ac010000000000000090aa235a670670ffc5dc49dfb58d00000000000000"}, {0x18, 0xb, "17dcea46805d4809c20547406b18901b0aeff04c0300f3c75dc2d227a83b89483b1084743475671545e65eb2e9ac946a3f0e2bc4619f91394c02bcfbbb7d71138537d68e2d2c6393a9f3becd1a9f51a948b5b303f4f003"}, {0x21, 0x7, "ffffffffffff00000000000200000000000000000000000000008879e66485201a0015ca837400"/55}, {0x0, 0x14, "5e14f0e7e72d42cfb3f27fafb60845f90b6dfc2e37bc87c6905bbc94d33e1ea71a28105f543e868a8a53b360a9d33e2b1e26eb1d18065daa7628cf9ef083611c9f6ae2e1eb3d8bf9c6ab2642c4808288e62afbf03269f1f98aea6ab3beb5fdc5fdaabc2c676d8800871a6aa54155dea2d995cb22c9924e0ad38c6967052cc7786d779b8353aac33a57d79b05613a12328f61129017fa632dbf04542188b196e213408c"}, {0x3, 0x2, "d5170000dce9674a36da018dff16e70b8b14c4b7"}]}}}}}}, 0x0)

1.418318118s ago: executing program 8 (id=1732):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="c4000000190001000004000000000000e00000020000000000000000000000000000000000000000000000000000000000000000000000000a00000029000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000700000000000000000000000000000000000000000000000200000000000000ffffffffffffffff0000000000000000000000000000000000000000000000000000000000000000ffffffffffffffff000000000000000000000000000000000c00150059"], 0xc4}}, 0x4004)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b8000000190001e7"], 0xb8}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b800000028"], 0xb8}}, 0x0)

894.985232ms ago: executing program 7 (id=1757):
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
sendmmsg$inet(r0, &(0x7f0000003f80)=[{{0x0, 0x0, 0x0}}, {{&(0x7f0000000100)={0x1e, 0x204, @rand_addr=0x1000000}, 0x10, 0x0}}], 0x2, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/partitions\x00', 0x0, 0x0)
r6 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/compact_memory\x00', 0x1, 0x0)
sendfile(r6, r5, &(0x7f00000000c0)=0x58, 0x9)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x0)
shutdown(r1, 0x0)
r7 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_MCAST_JOIN_GROUP(r7, 0x0, 0x2a, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_DELAYED_SACK(r7, 0x84, 0x10, &(0x7f0000000040)=@sack_info={0x0, 0x9, 0x3}, &(0x7f0000000080)=0xc)
r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000001400000014000000b3c516"], 0x0, 0x36, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8b04, &(0x7f0000000000)={'wlan1\x00'})
r9 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYRES8=r0], 0x0)
syz_usb_control_io(r9, 0x0, 0x0)
syz_usb_control_io(r9, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r9, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r9, 0x0, 0x0)

894.668823ms ago: executing program 3 (id=1758):
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fcffff09058b1e20"], 0x0)
syz_usb_control_io$printer(r0, 0x0, &(0x7f0000000480)={0x34, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$EVIOCGMASK(r1, 0x5b03, 0x0)
ioctl$FS_IOC_GETVERSION(r1, 0x80087601, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x3, &(0x7f0000000000)=[{0x2c}, {0x80}, {0x6, 0x0, 0x0, 0x7ffffffb}]})
syz_usb_disconnect(r0)

894.428033ms ago: executing program 9 (id=1744):
syz_emit_ethernet(0x3a3, &(0x7f00000003c0)={@multicast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "122d92", 0x36d, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [{0x0, 0xa, "a78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af1802"}, {0x0, 0x1, "000000050000000026000400"}, {0x18, 0x18, "fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829af02d7f44d92324a7051e460a13ddde25a5b85b9d930914625d8a049b4cf0d129806a610ad8477a2499a9a0527f75b655a6653d0363a979acf93f88eea07d68423e90280409de1657275f716a2bf2915d1783e8eb477b0d1170f0ecbdef4c23e1b76e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177704c5fd4698c934de4731f3f61effc978"}, {0x0, 0x1d, "06aa85616177c41bc943afcb84619755403946b0730a18d5c38cf7dcad830f2dc8674b87ba8b58f81ece27975cc39e595e9af90b4fe92a38d25551c2d9ebfc5dfc5a2a501b7e483de3f808895c5f4a1a2367bc591dd8b094822ff0dea07c9a1f643c822a18b79f7c5eba31fb68b2d734a6671e27182aee96f24a4a5cf390dab23b500b0c0272479611e4f7f4299ec4d926d443367b105185e6ecd9602ba95392343e9bbd047ef6bc1ba42399907ccd0a562db212baa39eb8164e240069f656d3a05fecf894222a141123f5ac010000000000000090aa235a670670ffc5dc49dfb58d00000000000000"}, {0x18, 0xb, "17dcea46805d4809c20547406b18901b0aeff04c0300f3c75dc2d227a83b89483b1084743475671545e65eb2e9ac946a3f0e2bc4619f91394c02bcfbbb7d71138537d68e2d2c6393a9f3becd1a9f51a948b5b303f4f003"}, {0x21, 0x7, "ffffffffffff00000000000200000000000000000000000000008879e66485201a0015ca837400"/55}, {0x0, 0x14, "5e14f0e7e72d42cfb3f27fafb60845f90b6dfc2e37bc87c6905bbc94d33e1ea71a28105f543e868a8a53b360a9d33e2b1e26eb1d18065daa7628cf9ef083611c9f6ae2e1eb3d8bf9c6ab2642c4808288e62afbf03269f1f98aea6ab3beb5fdc5fdaabc2c676d8800871a6aa54155dea2d995cb22c9924e0ad38c6967052cc7786d779b8353aac33a57d79b05613a12328f61129017fa632dbf04542188b196e213408c"}, {0x3, 0x2, "d5170000dce9674a36da018dff16e70b8b14c4b7"}]}}}}}}, 0x0)

59.897929ms ago: executing program 6 (id=1759):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x6666, 0x8801, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0xb}}}}]}}]}}, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000010000304000000000000000000007400", @ANYRES32=r2, @ANYBLOB="08000000000000000a0001"], 0x2c}}, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0xe0, 0x7ffffdbf}]})
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000800000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
prlimit64(0x0, 0x1, &(0x7f0000000140)={0x8, 0x18b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
gettid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0}, 0x18)
r7 = add_key$fscrypt_v1(&(0x7f0000000400), &(0x7f0000000440)={'fscrypt:', @desc1}, &(0x7f0000000480)={0x0, "6035ae1e0fe721441705322225930e6c1e3e2a51a92fd796bc34d7cf6e0236805b4377f7ab1a9b01c103a4c6a7ef54e6763fd7264c39ea00c508ba6062696138"}, 0x48, 0xfffffffffffffffe)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000880)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a300000000040000000030a01020000010000000000010000000900030073797a320000000014000480080002400000000008000140000000000900010073797a30000000003c000000060a010400000000000000000100000008000b40000000000900010073797a300000000014000480100001800a0001007265646972000000140000001100"], 0xc4}}, 0x0)
keyctl$KEYCTL_MOVE(0x4, r7, 0x0, 0x0, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)

0s ago: executing program 8 (id=1732):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="c4000000190001000004000000000000e00000020000000000000000000000000000000000000000000000000000000000000000000000000a00000029000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000700000000000000000000000000000000000000000000000200000000000000ffffffffffffffff0000000000000000000000000000000000000000000000000000000000000000ffffffffffffffff000000000000000000000000000000000c00150059"], 0xc4}}, 0x4004)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b8000000190001e7"], 0xb8}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b800000028"], 0xb8}}, 0x0)

kernel console output (not intermixed with test programs):

2.0-rc7-syzkaller-00187-gf868cd251776 #0
[  449.439218][T10628] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  449.449284][T10628] Call Trace:
[  449.452564][T10628]  <TASK>
[  449.455493][T10628]  dump_stack_lvl+0x241/0x360
[  449.460189][T10628]  ? __pfx_dump_stack_lvl+0x10/0x10
[  449.465387][T10628]  ? __pfx__printk+0x10/0x10
[  449.470068][T10628]  ? __pfx_lock_release+0x10/0x10
[  449.475099][T10628]  should_fail_ex+0x3b0/0x4e0
[  449.479781][T10628]  _copy_from_user+0x2f/0xc0
[  449.484370][T10628]  generic_map_update_batch+0x5ba/0x900
[  449.489958][T10628]  ? __pfx_generic_map_update_batch+0x10/0x10
[  449.496053][T10628]  ? __fget_files+0x29/0x470
[  449.500662][T10628]  ? __pfx_generic_map_update_batch+0x10/0x10
[  449.506731][T10628]  bpf_map_do_batch+0x39a/0x660
[  449.511588][T10628]  __sys_bpf+0x377/0x810
[  449.515832][T10628]  ? __pfx___sys_bpf+0x10/0x10
[  449.520601][T10628]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  449.526584][T10628]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  449.532917][T10628]  ? do_syscall_64+0x100/0x230
[  449.537686][T10628]  __x64_sys_bpf+0x7c/0x90
[  449.542107][T10628]  do_syscall_64+0xf3/0x230
[  449.546614][T10628]  ? clear_bhb_loop+0x35/0x90
[  449.551296][T10628]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  449.557194][T10628] RIP: 0033:0x7f1383f7e719
[  449.561615][T10628] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  449.581225][T10628] RSP: 002b:00007f1384e48038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  449.589642][T10628] RAX: ffffffffffffffda RBX: 00007f1384135f80 RCX: 00007f1383f7e719
[  449.597651][T10628] RDX: 0000000000000038 RSI: 0000000020000280 RDI: 000000000000001a
[  449.605630][T10628] RBP: 00007f1384e48090 R08: 0000000000000000 R09: 0000000000000000
[  449.613602][T10628] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  449.621582][T10628] R13: 0000000000000000 R14: 00007f1384135f80 R15: 00007ffc7a626ba8
[  449.629567][T10628]  </TASK>
[  449.633084][    C0] vkms_vblank_simulate: vblank timer overrun
[  449.937997][ T5926] usb 1-1: new high-speed USB device number 29 using dummy_hcd
[  449.959338][   T46] usb 7-1: new high-speed USB device number 22 using dummy_hcd
[  449.968953][ T5926] usb 1-1: Using ep0 maxpacket: 32
[  449.975699][ T5926] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 36
[  450.023274][ T5926] usb 1-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[  450.053117][ T5926] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  450.083767][ T5926] usb 1-1: Product: syz
[  450.103200][ T5926] usb 1-1: Manufacturer: syz
[  450.122370][   T46] usb 7-1: Using ep0 maxpacket: 32
[  450.127624][ T5926] usb 1-1: SerialNumber: syz
[  450.154620][   T46] usb 7-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  450.172306][ T5926] usb 1-1: config 0 descriptor??
[  450.195367][   T46] usb 7-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  450.221424][T10626] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  450.247601][ T5926] hub 1-1:0.0: bad descriptor, ignoring hub
[  450.431075][ T5926] hub 1-1:0.0: probe with driver hub failed with error -5
[  450.441395][ T5926] input: syz syz as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input18
[  450.460505][T10289] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[  450.469225][ T5933] usb 6-1: new high-speed USB device number 33 using dummy_hcd
[  450.478905][   T46] usb 7-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  450.489301][   T46] usb 7-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  450.499218][   T46] usb 7-1: Product: syz
[  450.516966][   T46] usb 7-1: Manufacturer: syz
[  450.528915][   T46] hub 7-1:4.0: USB hub found
[  451.432220][   T46] hub 7-1:4.0: 2 ports detected
[  451.437531][T10289] usb 4-1: device descriptor read/64, error -71
[  451.444255][   T46] hub 7-1:4.0: config failed, can't get hub status (err -5)
[  451.482195][   T46] usb 7-1: USB disconnect, device number 22
[  451.576067][ T5933] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[  451.586079][ T5933] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 7
[  451.611159][ T5933] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[  451.627935][ T5933] usb 6-1: New USB device found, idVendor=2040, idProduct=1605, bcdDevice= a.94
[  451.646114][ T5933] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  451.687666][ T5933] usb 6-1: config 0 descriptor??
[  451.698216][T10289] usb 4-1: new high-speed USB device number 28 using dummy_hcd
[  451.741492][T10660] FAULT_INJECTION: forcing a failure.
[  451.741492][T10660] name failslab, interval 1, probability 0, space 0, times 0
[  451.762861][T10660] CPU: 0 UID: 0 PID: 10660 Comm: syz.7.1249 Not tainted 6.12.0-rc7-syzkaller-00187-gf868cd251776 #0
[  451.773687][T10660] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  451.783766][T10660] Call Trace:
[  451.787051][T10660]  <TASK>
[  451.789991][T10660]  dump_stack_lvl+0x241/0x360
[  451.794688][T10660]  ? __pfx_dump_stack_lvl+0x10/0x10
[  451.799898][T10660]  ? __pfx__printk+0x10/0x10
[  451.804502][T10660]  ? ref_tracker_alloc+0x332/0x490
[  451.809620][T10660]  should_fail_ex+0x3b0/0x4e0
[  451.814328][T10660]  ? skb_clone+0x20c/0x390
[  451.818762][T10660]  should_failslab+0xac/0x100
[  451.823440][T10660]  ? skb_clone+0x20c/0x390
[  451.827871][T10660]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  451.833261][T10660]  skb_clone+0x20c/0x390
[  451.837508][T10660]  __netlink_deliver_tap+0x3cc/0x7c0
[  451.842808][T10660]  ? netlink_deliver_tap+0x2e/0x1b0
[  451.848009][T10660]  netlink_deliver_tap+0x19d/0x1b0
[  451.853126][T10660]  netlink_unicast+0x7c4/0x990
[  451.857902][T10660]  ? __pfx_netlink_unicast+0x10/0x10
[  451.863196][T10660]  ? __virt_addr_valid+0x183/0x530
[  451.868308][T10660]  ? __check_object_size+0x48e/0x900
[  451.873608][T10660]  netlink_sendmsg+0x8e4/0xcb0
[  451.878408][T10660]  ? __pfx_netlink_sendmsg+0x10/0x10
[  451.883709][T10660]  ? __pfx_netlink_sendmsg+0x10/0x10
[  451.889257][T10660]  __sock_sendmsg+0x221/0x270
[  451.893935][T10660]  ____sys_sendmsg+0x52a/0x7e0
[  451.898709][T10660]  ? __pfx_____sys_sendmsg+0x10/0x10
[  451.904029][T10660]  __sys_sendmsg+0x292/0x380
[  451.908626][T10660]  ? __pfx___sys_sendmsg+0x10/0x10
[  451.913859][T10660]  ? __pfx_vfs_write+0x10/0x10
[  451.918663][T10660]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  451.924997][T10660]  ? do_syscall_64+0x100/0x230
[  451.929779][T10660]  ? do_syscall_64+0xb6/0x230
[  451.934470][T10660]  do_syscall_64+0xf3/0x230
[  451.938977][T10660]  ? clear_bhb_loop+0x35/0x90
[  451.943670][T10660]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  451.949563][T10660] RIP: 0033:0x7f1383f7e719
[  451.953981][T10660] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  451.973602][T10660] RSP: 002b:00007f1384e48038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  451.982030][T10660] RAX: ffffffffffffffda RBX: 00007f1384135f80 RCX: 00007f1383f7e719
[  451.990008][T10660] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[  451.997989][T10660] RBP: 00007f1384e48090 R08: 0000000000000000 R09: 0000000000000000
[  452.005986][T10660] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  452.013962][T10660] R13: 0000000000000000 R14: 00007f1384135f80 R15: 00007ffc7a626ba8
[  452.021946][T10660]  </TASK>
[  452.025071][    C0] vkms_vblank_simulate: vblank timer overrun
[  452.067317][   T29] audit: type=1326 audit(1731745007.911:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10640 comm="syz.5.1245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c91d7e719 code=0x7ffc0000
[  452.088820][    C0] vkms_vblank_simulate: vblank timer overrun
[  452.095353][   T29] audit: type=1326 audit(1731745007.911:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10640 comm="syz.5.1245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f9c91d7e719 code=0x7ffc0000
[  452.097984][T10289] usb 4-1: device descriptor read/64, error -71
[  452.116935][   T29] audit: type=1326 audit(1731745007.921:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10640 comm="syz.5.1245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c91d7e719 code=0x7ffc0000
[  452.116980][   T29] audit: type=1326 audit(1731745007.921:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10640 comm="syz.5.1245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f9c91d7e719 code=0x7ffc0000
[  452.117011][   T29] audit: type=1326 audit(1731745007.921:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10640 comm="syz.5.1245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c91d7e719 code=0x7ffc0000
[  452.117043][   T29] audit: type=1326 audit(1731745007.921:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10640 comm="syz.5.1245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=173 compat=0 ip=0x7f9c91d7e719 code=0x7ffc0000
[  452.117073][   T29] audit: type=1326 audit(1731745007.921:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10640 comm="syz.5.1245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c91d7e719 code=0x7ffc0000
[  452.117102][   T29] audit: type=1326 audit(1731745007.921:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10640 comm="syz.5.1245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=229 compat=0 ip=0x7f9c91d7e719 code=0x7ffc0000
[  452.117133][   T29] audit: type=1326 audit(1731745007.921:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10640 comm="syz.5.1245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c91d7e719 code=0x7ffc0000
[  452.188755][    C0] vkms_vblank_simulate: vblank timer overrun
[  452.202227][T10662] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  452.210661][   T29] audit: type=1326 audit(1731745007.921:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10640 comm="syz.5.1245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f9c91d7e719 code=0x7ffc0000
[  452.232230][T10662] FAULT_INJECTION: forcing a failure.
[  452.232230][T10662] name failslab, interval 1, probability 0, space 0, times 0
[  452.232266][T10662] CPU: 1 UID: 0 PID: 10662 Comm: syz.6.1250 Not tainted 6.12.0-rc7-syzkaller-00187-gf868cd251776 #0
[  452.232290][T10662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  452.232302][T10662] Call Trace:
[  452.232311][T10662]  <TASK>
[  452.232319][T10662]  dump_stack_lvl+0x241/0x360
[  452.232351][T10662]  ? __pfx_dump_stack_lvl+0x10/0x10
[  452.232377][T10662]  ? __pfx__printk+0x10/0x10
[  452.232401][T10662]  ? __pfx_validate_chain+0x10/0x10
[  452.232420][T10662]  ? ip6_pol_route+0x11d7/0x15d0
[  452.253847][    C0] vkms_vblank_simulate: vblank timer overrun
[  452.275267][T10662]  ? __pfx_validate_chain+0x10/0x10
[  452.387482][T10662]  should_fail_ex+0x3b0/0x4e0
[  452.392181][T10662]  should_failslab+0xac/0x100
[  452.396857][T10662]  ? __alloc_skb+0x1c3/0x440
[  452.401447][T10662]  kmem_cache_alloc_node_noprof+0x71/0x320
[  452.407257][T10662]  __alloc_skb+0x1c3/0x440
[  452.411681][T10662]  ? __pfx___alloc_skb+0x10/0x10
[  452.416625][T10662]  tcp_make_synack+0x10f/0x2600
[  452.421487][T10662]  ? __pfx_tcp_make_synack+0x10/0x10
[  452.426774][T10662]  ? __pfx_lock_acquire+0x10/0x10
[  452.431808][T10662]  ? ip6_mtu+0x81/0x3f0
[  452.435964][T10662]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  452.441953][T10662]  ? __pfx_lock_release+0x10/0x10
[  452.446995][T10662]  ? tcp_select_initial_window+0x270/0x3d0
[  452.452835][T10662]  ? tcp_openreq_init_rwin+0x5be/0xa60
[  452.458323][T10662]  tcp_v6_send_synack+0xdf/0xe90
[  452.463287][T10662]  ? __pfx_tcp_openreq_init_rwin+0x10/0x10
[  452.469102][T10662]  ? __pfx_tcp_v6_send_synack+0x10/0x10
[  452.474660][T10662]  ? cookie_v6_init_sequence+0xac/0x160
[  452.480229][T10662]  tcp_conn_request+0x1ae1/0x34a0
[  452.485293][T10662]  ? __pfx_tcp_conn_request+0x10/0x10
[  452.490699][T10662]  ? tcp_v6_conn_request+0x247/0x350
[  452.495999][T10662]  ? tcp_rcv_state_process+0x20a/0x4570
[  452.501551][T10662]  tcp_rcv_state_process+0x1bd7/0x4570
[  452.507028][T10662]  ? __pfx_tcp_rcv_state_process+0x10/0x10
[  452.512834][T10662]  ? sk_filter_trim_cap+0x1b3/0xa80
[  452.518036][T10662]  ? sk_filter_trim_cap+0x5bf/0xa80
[  452.523236][T10662]  ? __pfx_tcp_inbound_hash+0x10/0x10
[  452.528602][T10662]  ? inet6_lookup_listener+0x1d1/0x2d0
[  452.534068][T10662]  tcp_v6_do_rcv+0x8f0/0x13e0
[  452.538751][T10662]  ? tcp_v6_fill_cb+0x1e2/0x470
[  452.543606][T10662]  tcp_v6_rcv+0x220a/0x2fb0
[  452.548140][T10662]  ? __pfx_tcp_v6_rcv+0x10/0x10
[  452.553005][T10662]  ? __pfx_tcp_v6_rcv+0x10/0x10
[  452.557881][T10662]  ? __pfx_tcp_v6_rcv+0x10/0x10
[  452.562730][T10662]  ip6_protocol_deliver_rcu+0xc79/0x1580
[  452.568384][T10662]  ? ip6_input_finish+0xdc/0x2d0
[  452.573326][T10662]  ip6_input_finish+0x187/0x2d0
[  452.578183][T10662]  ? __pfx_ip6_input_finish+0x10/0x10
[  452.583553][T10662]  NF_HOOK+0x3a4/0x450
[  452.587623][T10662]  ? NF_HOOK+0x9a/0x450
[  452.591781][T10662]  ? __pfx_NF_HOOK+0x10/0x10
[  452.596370][T10662]  ? __pfx_ip6_input_finish+0x10/0x10
[  452.601746][T10662]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  452.606943][T10662]  NF_HOOK+0x3a4/0x450
[  452.611011][T10662]  ? skb_orphan+0x4b/0xd0
[  452.615342][T10662]  ? NF_HOOK+0x9a/0x450
[  452.619497][T10662]  ? __pfx_NF_HOOK+0x10/0x10
[  452.624087][T10662]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  452.629300][T10662]  ? __pfx_ipv6_rcv+0x10/0x10
[  452.634038][T10662]  __netif_receive_skb+0x1ea/0x650
[  452.639155][T10662]  ? __pfx_lock_acquire+0x10/0x10
[  452.644216][T10662]  ? seqcount_lockdep_reader_access+0x1d7/0x220
[  452.650459][T10662]  ? __pfx___netif_receive_skb+0x10/0x10
[  452.656093][T10662]  ? __kasan_slab_alloc+0x66/0x80
[  452.661120][T10662]  ? read_tsc+0x9/0x20
[  452.665188][T10662]  ? timekeeping_get_ns+0x2c0/0x420
[  452.670394][T10662]  ? netif_receive_skb+0x131/0x890
[  452.675514][T10662]  ? netif_receive_skb+0x131/0x890
[  452.680628][T10662]  netif_receive_skb+0x1e8/0x890
[  452.685608][T10662]  ? tun_rx_batched+0x160/0x8f0
[  452.690474][T10662]  ? __pfx_netif_receive_skb+0x10/0x10
[  452.695944][T10662]  ? tun_rx_batched+0x160/0x8f0
[  452.700796][T10662]  tun_rx_batched+0x1b7/0x8f0
[  452.705476][T10662]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  452.711827][T10662]  ? __pfx_lock_acquire+0x10/0x10
[  452.716859][T10662]  ? __pfx_tun_rx_batched+0x10/0x10
[  452.722070][T10662]  tun_get_user+0x3056/0x47e0
[  452.726753][T10662]  ? tun_get_user+0x2b44/0x47e0
[  452.731617][T10662]  ? __lock_acquire+0x1384/0x2050
[  452.736658][T10662]  ? __pfx_tun_get_user+0x10/0x10
[  452.741697][T10662]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  452.747158][T10662]  ? tun_get+0x1e/0x2f0
[  452.751315][T10662]  ? __pfx_lock_release+0x10/0x10
[  452.756355][T10662]  ? tun_get+0x1e/0x2f0
[  452.760508][T10662]  ? tun_get+0x27d/0x2f0
[  452.764764][T10662]  tun_chr_write_iter+0x10d/0x1f0
[  452.769794][T10662]  vfs_write+0xaeb/0xd30
[  452.774050][T10662]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  452.779606][T10662]  ? __pfx_vfs_write+0x10/0x10
[  452.784383][T10662]  ? fdget_pos+0x19a/0x320
[  452.788806][T10662]  ksys_write+0x183/0x2b0
[  452.793143][T10662]  ? __pfx_ksys_write+0x10/0x10
[  452.797996][T10662]  ? do_syscall_64+0x100/0x230
[  452.802772][T10662]  ? do_syscall_64+0xb6/0x230
[  452.807448][T10662]  do_syscall_64+0xf3/0x230
[  452.811956][T10662]  ? clear_bhb_loop+0x35/0x90
[  452.816633][T10662]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  452.822525][T10662] RIP: 0033:0x7f229897d1ff
[  452.826940][T10662] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48
[  452.846549][T10662] RSP: 002b:00007f22997a9000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  452.854968][T10662] RAX: ffffffffffffffda RBX: 00007f2298b35f80 RCX: 00007f229897d1ff
[  452.862943][T10662] RDX: 000000000000004a RSI: 0000000020000040 RDI: 00000000000000c8
[  452.870911][T10662] RBP: 00007f22997a9090 R08: 0000000000000000 R09: 0000000000000000
[  452.878888][T10662] R10: 000000000000004a R11: 0000000000000293 R12: 0000000000000001
[  452.886907][T10662] R13: 0000000000000000 R14: 00007f2298b35f80 R15: 00007ffd2841cce8
[  452.894891][T10662]  </TASK>
[  452.920486][T10289] usb usb4-port1: attempt power cycle
[  452.931478][ T5933] usb 1-1: USB disconnect, device number 29
[  452.937458][    C1] usbtouchscreen 1-1:0.0: usbtouch_irq - usb_submit_urb failed with result: -19
[  453.020236][ T5890] usb 6-1: USB disconnect, device number 33
[  453.151031][T10671] netlink: 104 bytes leftover after parsing attributes in process `syz.3.1254'.
[  453.212321][T10680] FAULT_INJECTION: forcing a failure.
[  453.212321][T10680] name failslab, interval 1, probability 0, space 0, times 0
[  453.226130][T10680] CPU: 0 UID: 0 PID: 10680 Comm: syz.7.1255 Not tainted 6.12.0-rc7-syzkaller-00187-gf868cd251776 #0
[  453.236938][T10680] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  453.246993][T10680] Call Trace:
[  453.250281][T10680]  <TASK>
[  453.253209][T10680]  dump_stack_lvl+0x241/0x360
[  453.257912][T10680]  ? __pfx_dump_stack_lvl+0x10/0x10
[  453.263142][T10680]  ? __pfx__printk+0x10/0x10
[  453.267748][T10680]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[  453.273745][T10680]  ? __pfx___might_resched+0x10/0x10
[  453.279046][T10680]  should_fail_ex+0x3b0/0x4e0
[  453.283738][T10680]  should_failslab+0xac/0x100
[  453.288432][T10680]  ? dup_task_struct+0x57/0x8c0
[  453.293301][T10680]  kmem_cache_alloc_node_noprof+0x71/0x320
[  453.299113][T10680]  dup_task_struct+0x57/0x8c0
[  453.303790][T10680]  ? _raw_spin_unlock_irq+0x23/0x50
[  453.308984][T10680]  ? lockdep_hardirqs_on+0x99/0x150
[  453.314181][T10680]  copy_process+0x5d1/0x3d50
[  453.318777][T10680]  ? get_pid_task+0x23/0x1f0
[  453.323371][T10680]  ? __pfx_lock_release+0x10/0x10
[  453.328406][T10680]  ? kstrtouint_from_user+0x128/0x190
[  453.333790][T10680]  ? __pfx_copy_process+0x10/0x10
[  453.338850][T10680]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  453.344762][T10680]  kernel_clone+0x223/0x880
[  453.349269][T10680]  ? vfs_write+0x730/0xd30
[  453.353682][T10680]  ? __pfx_kernel_clone+0x10/0x10
[  453.358721][T10680]  __x64_sys_clone+0x258/0x2a0
[  453.363493][T10680]  ? __pfx___x64_sys_clone+0x10/0x10
[  453.368798][T10680]  ? do_syscall_64+0x100/0x230
[  453.373563][T10680]  ? do_syscall_64+0xb6/0x230
[  453.378238][T10680]  do_syscall_64+0xf3/0x230
[  453.382744][T10680]  ? clear_bhb_loop+0x35/0x90
[  453.387427][T10680]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  453.393324][T10680] RIP: 0033:0x7f1383f7e719
[  453.397737][T10680] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  453.417704][T10680] RSP: 002b:00007f1384e47fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  453.426119][T10680] RAX: ffffffffffffffda RBX: 00007f1384135f80 RCX: 00007f1383f7e719
[  453.434089][T10680] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000050900000
[  453.442068][T10680] RBP: 00007f1384e48090 R08: 0000000000000000 R09: 0000000000000000
[  453.450044][T10680] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[  453.458016][T10680] R13: 0000000000000000 R14: 00007f1384135f80 R15: 00007ffc7a626ba8
[  453.466001][T10680]  </TASK>
[  453.469132][    C0] vkms_vblank_simulate: vblank timer overrun
[  456.188068][T10289] usb 4-1: new high-speed USB device number 30 using dummy_hcd
[  456.332620][T10289] usb 4-1: device descriptor read/64, error -71
[  456.415030][T10726] input: syz1 as /devices/virtual/input/input19
[  456.658054][T10289] usb 4-1: new high-speed USB device number 31 using dummy_hcd
[  457.998219][  T972] usb 7-1: new high-speed USB device number 23 using dummy_hcd
[  458.167982][  T972] usb 7-1: device descriptor read/64, error -71
[  458.174530][   T54] Bluetooth: hci2: link tx timeout
[  458.180212][   T54] Bluetooth: hci2: killing stalled connection 11:aa:aa:aa:aa:aa
[  458.238846][T10752] IPv6: sit1: Disabled Multicast RS
[  458.445701][  T972] usb 7-1: new high-speed USB device number 24 using dummy_hcd
[  458.598214][  T972] usb 7-1: device descriptor read/64, error -71
[  458.712797][  T972] usb usb7-port1: attempt power cycle
[  459.068390][  T972] usb 7-1: new high-speed USB device number 25 using dummy_hcd
[  459.113264][  T972] usb 7-1: device descriptor read/8, error -71
[  459.408312][T10773] fuse: Bad value for 'fd'
[  459.878103][ T5933] usb 1-1: new high-speed USB device number 30 using dummy_hcd
[  460.100374][ T5933] usb 1-1: device descriptor read/64, error -71
[  460.244086][   T54] Bluetooth: hci2: command 0x0405 tx timeout
[  460.607942][ T5933] usb 1-1: new high-speed USB device number 31 using dummy_hcd
[  460.738292][ T5933] usb 1-1: device descriptor read/64, error -71
[  460.868260][ T5933] usb usb1-port1: attempt power cycle
[  461.067119][T10803] netlink: 40 bytes leftover after parsing attributes in process `syz.7.1291'.
[  461.076335][T10803] netlink: 40 bytes leftover after parsing attributes in process `syz.7.1291'.
[  461.806234][ T5933] usb 1-1: new high-speed USB device number 32 using dummy_hcd
[  461.829038][ T5933] usb 1-1: device descriptor read/8, error -71
[  461.977407][T10785] kexec: Could not allocate control_code_buffer
[  462.760235][ T5933] usb 1-1: new high-speed USB device number 33 using dummy_hcd
[  462.808175][ T5933] usb 1-1: device descriptor read/8, error -71
[  463.489111][ T5933] usb usb1-port1: unable to enumerate USB device
[  463.589083][T10828] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1302'.
[  463.713796][T10831] fuse: Bad value for 'fd'
[  464.284635][T10846] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1307'.
[  464.294203][T10846] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1307'.
[  466.236421][T10862] capability: warning: `syz.0.1313' uses deprecated v2 capabilities in a way that may be insecure
[  466.251001][T10862] loop4: detected capacity change from 0 to 16384
[  466.421157][T10865] I/O error, dev loop4, sector 0 op 0x1:(WRITE) flags 0x8800 phys_seg 16 prio class 0
[  466.431240][T10865] I/O error, dev loop4, sector 0 op 0x1:(WRITE) flags 0x8800 phys_seg 16 prio class 0
[  468.917185][ T5919] usb 8-1: new high-speed USB device number 23 using dummy_hcd
[  469.167945][ T5919] usb 8-1: device descriptor read/64, error -71
[  469.437958][ T5919] usb 8-1: new high-speed USB device number 24 using dummy_hcd
[  469.568092][ T5919] usb 8-1: device descriptor read/64, error -71
[  469.734050][ T5919] usb usb8-port1: attempt power cycle
[  469.883383][T10898] overlayfs: failed to clone lowerpath
[  470.077950][ T5919] usb 8-1: new high-speed USB device number 25 using dummy_hcd
[  470.099038][ T5919] usb 8-1: device descriptor read/8, error -71
[  471.098826][T10907] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  472.078066][T10933] netlink: 16 bytes leftover after parsing attributes in process `syz.7.1335'.
[  472.753332][T10941] syz.0.1334: attempt to access beyond end of device
[  472.753332][T10941] nbd0: rw=0, sector=64, nr_sectors = 1 limit=0
[  472.907287][T10941] syz.0.1334: attempt to access beyond end of device
[  472.907287][T10941] nbd0: rw=0, sector=256, nr_sectors = 1 limit=0
[  473.076462][T10941] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=256, location=256
[  473.092489][T10941] syz.0.1334: attempt to access beyond end of device
[  473.092489][T10941] nbd0: rw=0, sector=512, nr_sectors = 1 limit=0
[  473.105547][T10941] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=512, location=512
[  473.117162][T10941] syz.0.1334: attempt to access beyond end of device
[  473.117162][T10941] nbd0: rw=0, sector=64, nr_sectors = 2 limit=0
[  473.130343][T10941] syz.0.1334: attempt to access beyond end of device
[  473.130343][T10941] nbd0: rw=0, sector=512, nr_sectors = 2 limit=0
[  473.143706][T10941] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=256, location=256
[  473.154405][T10941] syz.0.1334: attempt to access beyond end of device
[  473.154405][T10941] nbd0: rw=0, sector=1024, nr_sectors = 2 limit=0
[  473.167931][T10941] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=512, location=512
[  473.178185][T10941] syz.0.1334: attempt to access beyond end of device
[  473.178185][T10941] nbd0: rw=0, sector=64, nr_sectors = 4 limit=0
[  473.224099][T10941] syz.0.1334: attempt to access beyond end of device
[  473.224099][T10941] nbd0: rw=0, sector=1024, nr_sectors = 4 limit=0
[  473.237289][T10941] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=256, location=256
[  473.247056][T10941] syz.0.1334: attempt to access beyond end of device
[  473.247056][T10941] nbd0: rw=0, sector=2048, nr_sectors = 4 limit=0
[  473.261218][T10941] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=512, location=512
[  473.271522][T10941] syz.0.1334: attempt to access beyond end of device
[  473.271522][T10941] nbd0: rw=0, sector=64, nr_sectors = 8 limit=0
[  473.285557][T10941] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=256, location=256
[  473.295644][T10941] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=512, location=512
[  473.310464][T10941] UDF-fs: warning (device nbd0): udf_fill_super: No partition found (1)
[  473.337999][ T5933] usb 4-1: new high-speed USB device number 32 using dummy_hcd
[  473.467953][ T5933] usb 4-1: device descriptor read/64, error -71
[  473.708041][ T5933] usb 4-1: new high-speed USB device number 33 using dummy_hcd
[  473.857907][ T5933] usb 4-1: device descriptor read/64, error -71
[  473.988336][ T5933] usb usb4-port1: attempt power cycle
[  474.048378][T10967] overlayfs: failed to clone lowerpath
[  474.204868][T10972] FAULT_INJECTION: forcing a failure.
[  474.204868][T10972] name failslab, interval 1, probability 0, space 0, times 0
[  474.233348][T10972] CPU: 1 UID: 0 PID: 10972 Comm: syz.7.1349 Not tainted 6.12.0-rc7-syzkaller-00187-gf868cd251776 #0
[  474.244175][T10972] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  474.254272][T10972] Call Trace:
[  474.257573][T10972]  <TASK>
[  474.260537][T10972]  dump_stack_lvl+0x241/0x360
[  474.265271][T10972]  ? __pfx_dump_stack_lvl+0x10/0x10
[  474.270515][T10972]  ? __pfx__printk+0x10/0x10
[  474.275143][T10972]  ? __kmalloc_noprof+0xb0/0x400
[  474.280115][T10972]  ? __pfx___might_resched+0x10/0x10
[  474.285436][T10972]  should_fail_ex+0x3b0/0x4e0
[  474.290142][T10972]  ? security_sk_alloc+0x53/0x360
[  474.295191][T10972]  should_failslab+0xac/0x100
[  474.299887][T10972]  ? security_sk_alloc+0x53/0x360
[  474.304937][T10972]  __kmalloc_noprof+0xd8/0x400
[  474.309728][T10972]  ? sk_prot_alloc+0xe0/0x210
[  474.314430][T10972]  ? rcu_is_watching+0x15/0xb0
[  474.319221][T10972]  security_sk_alloc+0x53/0x360
[  474.324186][T10972]  sk_prot_alloc+0xfa/0x210
[  474.328724][T10972]  ? sk_alloc+0x26/0x370
[  474.332990][T10972]  sk_alloc+0x38/0x370
[  474.337079][T10972]  ? bpf_test_init+0x15a/0x180
[  474.341866][T10972]  ? bpf_ctx_init+0x162/0x1b0
[  474.346570][T10972]  bpf_prog_test_run_skb+0x3bd/0x1820
[  474.351974][T10972]  ? __pfx_lock_release+0x10/0x10
[  474.357045][T10972]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  474.362963][T10972]  ? fput+0x1a8/0x230
[  474.366962][T10972]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  474.372800][T10972]  bpf_prog_test_run+0x2e4/0x360
[  474.377765][T10972]  __sys_bpf+0x48d/0x810
[  474.382040][T10972]  ? __pfx___sys_bpf+0x10/0x10
[  474.386841][T10972]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  474.392851][T10972]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  474.399203][T10972]  ? do_syscall_64+0x100/0x230
[  474.403989][T10972]  __x64_sys_bpf+0x7c/0x90
[  474.408425][T10972]  do_syscall_64+0xf3/0x230
[  474.412949][T10972]  ? clear_bhb_loop+0x35/0x90
[  474.417739][T10972]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  474.423659][T10972] RIP: 0033:0x7f1383f7e719
[  474.428540][T10972] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  474.448176][T10972] RSP: 002b:00007f1384e48038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  474.456623][T10972] RAX: ffffffffffffffda RBX: 00007f1384135f80 RCX: 00007f1383f7e719
[  474.464625][T10972] RDX: 0000000000000050 RSI: 00000000200002c0 RDI: 000000000000000a
[  474.472622][T10972] RBP: 00007f1384e48090 R08: 0000000000000000 R09: 0000000000000000
[  474.480621][T10972] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  474.488626][T10972] R13: 0000000000000000 R14: 00007f1384135f80 R15: 00007ffc7a626ba8
[  474.496636][T10972]  </TASK>
[  474.569036][ T5933] usb 4-1: new high-speed USB device number 34 using dummy_hcd
[  474.599038][ T5933] usb 4-1: device descriptor read/8, error -71
[  474.848190][ T5933] usb 4-1: new high-speed USB device number 35 using dummy_hcd
[  474.908056][ T5933] usb 4-1: device descriptor read/8, error -71
[  475.029839][ T5933] usb usb4-port1: unable to enumerate USB device
[  475.452363][T10991] netlink: 'syz.6.1356': attribute type 3 has an invalid length.
[  475.563370][T10998] overlayfs: failed to clone lowerpath
[  475.698184][ T5919] usb 7-1: new high-speed USB device number 27 using dummy_hcd
[  475.858476][ T5919] usb 7-1: Using ep0 maxpacket: 16
[  475.865607][ T5919] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  475.891501][ T5919] usb 7-1: config 0 interface 0 has no altsetting 0
[  475.919390][ T5919] usb 7-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[  475.944705][ T5919] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  475.952695][T11011] FAULT_INJECTION: forcing a failure.
[  475.952695][T11011] name failslab, interval 1, probability 0, space 0, times 0
[  475.952775][T11011] CPU: 1 UID: 0 PID: 11011 Comm: syz.7.1366 Not tainted 6.12.0-rc7-syzkaller-00187-gf868cd251776 #0
[  475.952798][T11011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  475.952809][T11011] Call Trace:
[  475.952817][T11011]  <TASK>
[  475.952825][T11011]  dump_stack_lvl+0x241/0x360
[  475.952854][T11011]  ? __pfx_dump_stack_lvl+0x10/0x10
[  475.952877][T11011]  ? __pfx__printk+0x10/0x10
[  475.952911][T11011]  should_fail_ex+0x3b0/0x4e0
[  475.973783][ T5919] usb 7-1: config 0 descriptor??
[  475.976731][T11011]  ? radix_tree_node_alloc+0x8b/0x3c0
[  475.976765][T11011]  should_failslab+0xac/0x100
[  475.976786][T11011]  ? radix_tree_node_alloc+0x8b/0x3c0
[  475.976805][T11011]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  476.038078][T11011]  radix_tree_node_alloc+0x8b/0x3c0
[  476.043292][T11011]  idr_get_free+0x296/0xab0
[  476.047822][T11011]  idr_alloc_u32+0x195/0x330
[  476.052430][T11011]  ? __pfx_idr_alloc_u32+0x10/0x10
[  476.057560][T11011]  ? __pfx_lock_acquire+0x10/0x10
[  476.062696][T11011]  idr_alloc_cyclic+0x106/0x300
[  476.067584][T11011]  ? __pfx_idr_alloc_cyclic+0x10/0x10
[  476.072969][T11011]  ? __radix_tree_preload+0x80/0x860
[  476.078258][T11011]  ? __radix_tree_preload+0x80/0x860
[  476.083544][T11011]  ? bpf_link_prime+0x4c/0x240
[  476.088310][T11011]  bpf_link_prime+0x6b/0x240
[  476.092908][T11011]  bpf_raw_tp_link_attach+0x3c4/0x6e0
[  476.098288][T11011]  ? __pfx_bpf_raw_tp_link_attach+0x10/0x10
[  476.104208][T11011]  ? fput+0x1a8/0x230
[  476.108195][T11011]  bpf_raw_tracepoint_open+0x177/0x1f0
[  476.113670][T11011]  __sys_bpf+0x3c0/0x810
[  476.117920][T11011]  ? __pfx___sys_bpf+0x10/0x10
[  476.122697][T11011]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  476.128697][T11011]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  476.135032][T11011]  ? do_syscall_64+0x100/0x230
[  476.139802][T11011]  __x64_sys_bpf+0x7c/0x90
[  476.144216][T11011]  do_syscall_64+0xf3/0x230
[  476.148726][T11011]  ? clear_bhb_loop+0x35/0x90
[  476.153407][T11011]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  476.159305][T11011] RIP: 0033:0x7f1383f7e719
[  476.163727][T11011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  476.183425][T11011] RSP: 002b:00007f1384e48038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  476.191840][T11011] RAX: ffffffffffffffda RBX: 00007f1384135f80 RCX: 00007f1383f7e719
[  476.199823][T11011] RDX: 0000000000000010 RSI: 0000000020000040 RDI: 0000000000000011
[  476.207797][T11011] RBP: 00007f1384e48090 R08: 0000000000000000 R09: 0000000000000000
[  476.215770][T11011] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  476.223746][T11011] R13: 0000000000000000 R14: 00007f1384135f80 R15: 00007ffc7a626ba8
[  476.231752][T11011]  </TASK>
[  476.470497][ T5919] hid (null): global environment stack underflow
[  476.534541][ T5919] hid (null): unknown global tag 0x84
[  476.558130][ T5890] usb 4-1: new high-speed USB device number 36 using dummy_hcd
[  476.619324][ T5919] hid (null): report_id 0 is invalid
[  476.704755][ T5890] usb 4-1: device descriptor read/64, error -71
[  476.754268][ T5919] hid (null): unknown global tag 0xc
[  476.817898][ T5889] usb 6-1: new high-speed USB device number 34 using dummy_hcd
[  477.030604][ T5919] hid (null): unknown global tag 0xd
[  477.036001][ T5919] hid (null): report_id 2863014418 is invalid
[  477.054311][ T5919] hid (null): report_id 2384115945 is invalid
[  477.078696][ T5919] cougar 0003:060B:500A.000C: unexpected long global item
[  477.095320][ T5919] cougar 0003:060B:500A.000C: parse failed
[  477.103131][ T5919] cougar 0003:060B:500A.000C: probe with driver cougar failed with error -22
[  477.137898][ T5889] usb 6-1: Using ep0 maxpacket: 16
[  477.161670][ T5889] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  477.209995][ T5889] usb 6-1: New USB device found, idVendor=0d46, idProduct=2011, bcdDevice=82.8f
[  477.256703][ T5889] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  477.341105][ T5889] usb 6-1: Product: syz
[  477.386266][ T5889] usb 6-1: Manufacturer: syz
[  477.440284][ T5889] usb 6-1: SerialNumber: syz
[  477.547416][ T5889] usb 6-1: config 0 descriptor??
[  477.662254][ T5889] kobil_sct 6-1:0.0: required endpoints missing
[  477.710732][ T5890] usb 4-1: new high-speed USB device number 37 using dummy_hcd
[  477.723253][ T5919] usb 7-1: USB disconnect, device number 27
[  477.858009][ T5890] usb 4-1: device descriptor read/64, error -71
[  477.899153][  T972] usb 6-1: USB disconnect, device number 34
[  477.969453][ T5890] usb usb4-port1: attempt power cycle
[  478.049846][T11030] overlayfs: failed to clone lowerpath
[  478.307994][ T5890] usb 4-1: new high-speed USB device number 38 using dummy_hcd
[  478.338703][ T5890] usb 4-1: device descriptor read/8, error -71
[  478.491787][T11053] netlink: 'syz.0.1381': attribute type 3 has an invalid length.
[  478.598209][ T5890] usb 4-1: new high-speed USB device number 39 using dummy_hcd
[  478.618712][ T5890] usb 4-1: device descriptor read/8, error -71
[  479.450987][  T972] usb 1-1: new high-speed USB device number 34 using dummy_hcd
[  479.475327][ T5890] usb usb4-port1: unable to enumerate USB device
[  479.643157][T11060] xt_TPROXY: Can be used only with -p tcp or -p udp
[  479.678367][  T972] usb 1-1: Using ep0 maxpacket: 16
[  479.685147][  T972] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  479.695348][  T972] usb 1-1: config 0 interface 0 has no altsetting 0
[  479.703819][  T972] usb 1-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[  479.728996][T11060] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1384'.
[  479.738327][  T972] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  479.753945][  T972] usb 1-1: config 0 descriptor??
[  479.760296][T11060] vlan2: entered promiscuous mode
[  480.012371][T11065] overlayfs: failed to clone lowerpath
[  480.173081][  T972] hid (null): global environment stack underflow
[  480.197903][  T972] hid (null): unknown global tag 0x84
[  480.212926][  T972] hid (null): report_id 0 is invalid
[  480.229999][  T972] hid (null): unknown global tag 0xc
[  480.242741][  T972] hid (null): unknown global tag 0xd
[  480.249398][  T972] hid (null): report_id 2863014418 is invalid
[  480.255780][  T972] hid (null): report_id 2384115945 is invalid
[  480.264602][  T972] cougar 0003:060B:500A.000D: unexpected long global item
[  480.292806][  T972] cougar 0003:060B:500A.000D: parse failed
[  480.578086][  T972] cougar 0003:060B:500A.000D: probe with driver cougar failed with error -22
[  480.850032][  T972] usb 1-1: USB disconnect, device number 34
[  482.380181][T11093] macsec1: entered allmulticast mode
[  482.392587][T11098] netlink: 14 bytes leftover after parsing attributes in process `syz.5.1399'.
[  482.465485][T11098] netlink: 'syz.5.1399': attribute type 1 has an invalid length.
[  482.502672][T11098] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1399'.
[  482.857567][T11116] xt_CT: You must specify a L4 protocol and not use inversions on it
[  482.872556][T11118] netlink: 'syz.6.1405': attribute type 3 has an invalid length.
[  483.217971][ T5889] usb 7-1: new high-speed USB device number 28 using dummy_hcd
[  484.108228][ T5889] usb 7-1: Using ep0 maxpacket: 16
[  484.114609][ T5889] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  484.163206][ T5889] usb 7-1: config 0 interface 0 has no altsetting 0
[  484.183892][ T5889] usb 7-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[  484.203817][ T5889] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  484.218195][ T5889] usb 7-1: config 0 descriptor??
[  484.281882][T11135] xt_TPROXY: Can be used only with -p tcp or -p udp
[  484.346717][T11141] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1411'.
[  484.546452][T11154] dccp_invalid_packet: P.Data Offset(101) too large
[  484.608240][T11158] netlink: 'syz.0.1418': attribute type 1 has an invalid length.
[  484.616156][T11158] netlink: 9388 bytes leftover after parsing attributes in process `syz.0.1418'.
[  484.626506][T11158] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1418'.
[  484.641620][ T5889] hid (null): global environment stack underflow
[  484.658095][ T5889] hid (null): unknown global tag 0x84
[  484.677955][ T5889] hid (null): report_id 0 is invalid
[  484.683395][ T5889] hid (null): unknown global tag 0xc
[  484.697346][ T5889] hid (null): unknown global tag 0xd
[  484.706058][ T5889] hid (null): report_id 2863014418 is invalid
[  484.731649][ T5889] hid (null): report_id 2384115945 is invalid
[  484.746038][ T5889] cougar 0003:060B:500A.000E: unexpected long global item
[  484.761642][ T5889] cougar 0003:060B:500A.000E: parse failed
[  484.771374][ T5889] cougar 0003:060B:500A.000E: probe with driver cougar failed with error -22
[  484.791730][T11158] netlink: 'syz.0.1418': attribute type 10 has an invalid length.
[  484.829004][T11158] bridge0: port 2(bridge_slave_1) entered disabled state
[  484.836389][T11158] bridge0: port 1(bridge_slave_0) entered disabled state
[  484.874794][T11158] bridge0: left promiscuous mode
[  484.882253][T11158] bridge0: left allmulticast mode
[  484.896222][T11158] bridge0: port 2(bridge_slave_1) entered blocking state
[  484.903578][T11158] bridge0: port 2(bridge_slave_1) entered forwarding state
[  484.911149][T11158] bridge0: port 1(bridge_slave_0) entered blocking state
[  484.918418][T11158] bridge0: port 1(bridge_slave_0) entered forwarding state
[  485.320584][T11158] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  485.343261][ T5889] usb 7-1: USB disconnect, device number 28
[  485.396189][T11164] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1418'.
[  485.438875][T11164] bridge_slave_1: left allmulticast mode
[  485.444874][T11164] bridge_slave_1: left promiscuous mode
[  485.452096][T11164] bridge0: port 2(bridge_slave_1) entered disabled state
[  486.356304][T11164] bridge_slave_0: left allmulticast mode
[  486.364077][T11164] bridge_slave_0: left promiscuous mode
[  486.370287][T11164] bridge0: port 1(bridge_slave_0) entered disabled state
[  486.463092][T11164] bond0: (slave bridge0): Releasing backup interface
[  486.598089][ T5926] usb 6-1: new high-speed USB device number 35 using dummy_hcd
[  486.721140][T11188] bio_check_eod: 2 callbacks suppressed
[  486.721373][T11188] syz.6.1431: attempt to access beyond end of device
[  486.721373][T11188] nbd6: rw=4096, sector=0, nr_sectors = 1 limit=0
[  486.787891][ T5926] usb 6-1: config 0 interface 0 altsetting 247 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  487.017479][ T5926] usb 6-1: config 0 interface 0 altsetting 247 endpoint 0x81 has invalid wMaxPacketSize 0
[  487.257219][ T5926] usb 6-1: config 0 interface 0 has no altsetting 0
[  487.273396][ T5926] usb 6-1: New USB device found, idVendor=0eef, idProduct=0001, bcdDevice= 0.00
[  487.338161][ T5926] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  487.555670][ T5926] usb 6-1: config 0 descriptor??
[  488.920981][ T5926] hid-generic 0003:0EEF:0001.000F: item fetching failed at offset 3/7
[  488.929591][ T5840] Bluetooth: hci0: command 0x0406 tx timeout
[  489.527381][ T5926] hid-generic 0003:0EEF:0001.000F: probe with driver hid-generic failed with error -22
[  489.529089][T11205] RDS: rds_bind could not find a transport for fec0:ffff::1, load rds_tcp or rds_rdma?
[  489.588491][ T5926] usb 6-1: USB disconnect, device number 35
[  490.977181][T11231] netlink: 'syz.5.1439': attribute type 3 has an invalid length.
[  491.247111][T11245] 9pnet_fd: Insufficient options for proto=fd
[  491.307894][T11014] usb 6-1: new high-speed USB device number 36 using dummy_hcd
[  492.470261][T11014] usb 6-1: Using ep0 maxpacket: 16
[  492.495227][T11014] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  492.700201][T11014] usb 6-1: config 0 interface 0 has no altsetting 0
[  492.706874][T11014] usb 6-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[  492.716168][T11014] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  492.732799][T11014] usb 6-1: config 0 descriptor??
[  493.126538][T11275] netlink: 16 bytes leftover after parsing attributes in process `syz.7.1451'.
[  493.611553][T11014] hid (null): global environment stack underflow
[  493.618567][T11014] hid (null): unknown global tag 0x84
[  493.624694][T11014] hid (null): report_id 0 is invalid
[  493.684788][T11014] hid (null): unknown global tag 0xc
[  493.724992][T11014] hid (null): unknown global tag 0xd
[  493.730596][T11014] hid (null): report_id 2863014418 is invalid
[  493.752218][T11014] hid (null): report_id 2384115945 is invalid
[  493.766204][T11014] cougar 0003:060B:500A.0010: unexpected long global item
[  493.781484][T11014] cougar 0003:060B:500A.0010: parse failed
[  493.807401][T11014] cougar 0003:060B:500A.0010: probe with driver cougar failed with error -22
[  493.942562][T11282] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1452'.
[  494.236896][T11283] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  494.577476][T11014] usb 6-1: USB disconnect, device number 36
[  495.869912][T11303] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1459'.
[  497.136733][T11319] netlink: 54 bytes leftover after parsing attributes in process `syz.6.1465'.
[  497.809693][T11334] netlink: 'syz.0.1469': attribute type 3 has an invalid length.
[  498.210850][T11337] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1468'.
[  498.578049][T11014] usb 8-1: new high-speed USB device number 27 using dummy_hcd
[  499.661910][ T5919] usb 1-1: new high-speed USB device number 35 using dummy_hcd
[  499.941495][T11014] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  499.953557][T11014] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  499.967872][T11014] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  499.978859][T11014] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  499.991991][T11014] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  500.001202][ T5919] usb 1-1: Using ep0 maxpacket: 16
[  500.006651][T11014] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  500.016040][ T5919] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  500.027511][T11014] usb 8-1: config 0 descriptor??
[  500.032868][ T5919] usb 1-1: config 0 interface 0 has no altsetting 0
[  500.040506][ T5919] usb 1-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[  500.049925][T11014] usb 8-1: can't set config #0, error -71
[  500.057062][T11014] usb 8-1: USB disconnect, device number 27
[  500.066195][ T5919] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  500.076590][ T5919] usb 1-1: config 0 descriptor??
[  500.722081][ T5919] hid (null): global environment stack underflow
[  500.728757][ T5919] hid (null): unknown global tag 0x84
[  500.734299][ T5919] hid (null): report_id 0 is invalid
[  500.745147][ T5919] hid (null): unknown global tag 0xc
[  500.750826][ T5919] hid (null): unknown global tag 0xd
[  500.756932][ T5919] hid (null): report_id 2863014418 is invalid
[  500.775135][ T5919] hid (null): report_id 2384115945 is invalid
[  500.786116][ T5919] cougar 0003:060B:500A.0011: unexpected long global item
[  500.805702][ T5919] cougar 0003:060B:500A.0011: parse failed
[  500.814366][ T5919] cougar 0003:060B:500A.0011: probe with driver cougar failed with error -22
[  501.104887][T11366] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1474'.
[  501.169936][ T5926] usb 1-1: USB disconnect, device number 35
[  501.245997][T11376] overlayfs: conflicting lowerdir path
[  501.552784][T11378] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1482'.
[  501.841405][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  502.548153][ T5840] Bluetooth: hci3: command 0x0406 tx timeout
[  505.488105][ T5926] usb 7-1: new high-speed USB device number 29 using dummy_hcd
[  505.918749][T11424] FAULT_INJECTION: forcing a failure.
[  505.918749][T11424] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  505.932081][T11424] CPU: 1 UID: 0 PID: 11424 Comm: syz.0.1492 Not tainted 6.12.0-rc7-syzkaller-00187-gf868cd251776 #0
[  505.942850][T11424] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  505.952968][T11424] Call Trace:
[  505.956280][T11424]  <TASK>
[  505.959212][T11424]  dump_stack_lvl+0x241/0x360
[  505.963887][T11424]  ? __pfx_dump_stack_lvl+0x10/0x10
[  505.969119][T11424]  ? __pfx__printk+0x10/0x10
[  505.973707][T11424]  ? snprintf+0xda/0x120
[  505.977973][T11424]  should_fail_ex+0x3b0/0x4e0
[  505.982670][T11424]  _copy_to_user+0x31/0xb0
[  505.987101][T11424]  simple_read_from_buffer+0xca/0x150
[  505.992486][T11424]  proc_fail_nth_read+0x1e9/0x250
[  505.994866][T11427] fuse: Unknown parameter 'groìp_id'
[  505.997640][T11424]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  506.008575][T11424]  ? rw_verify_area+0x55e/0x6f0
[  506.013438][T11424]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  506.018999][T11424]  vfs_read+0x1fc/0xb70
[  506.023162][T11424]  ? fdget_pos+0x24e/0x320
[  506.027592][T11424]  ? __pfx_vfs_read+0x10/0x10
[  506.032294][T11424]  ? __fget_files+0x3f3/0x470
[  506.037006][T11424]  ? fdget_pos+0x24e/0x320
[  506.041441][T11424]  ksys_read+0x183/0x2b0
[  506.045685][T11424]  ? __pfx_ksys_read+0x10/0x10
[  506.050449][T11424]  ? do_syscall_64+0x100/0x230
[  506.055233][T11424]  ? do_syscall_64+0xb6/0x230
[  506.059956][T11424]  do_syscall_64+0xf3/0x230
[  506.064479][T11424]  ? clear_bhb_loop+0x35/0x90
[  506.069171][T11424]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  506.075084][T11424] RIP: 0033:0x7fa85997d15c
[  506.079497][T11424] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  506.099108][T11424] RSP: 002b:00007fa85a822030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  506.107526][T11424] RAX: ffffffffffffffda RBX: 00007fa859b35f80 RCX: 00007fa85997d15c
[  506.115520][T11424] RDX: 000000000000000f RSI: 00007fa85a8220a0 RDI: 0000000000000005
[  506.123511][T11424] RBP: 00007fa85a822090 R08: 0000000000000000 R09: 0000000000000000
[  506.131524][T11424] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  506.139504][T11424] R13: 0000000000000000 R14: 00007fa859b35f80 R15: 00007fff6353f598
[  506.147488][T11424]  </TASK>
[  506.317964][ T5926] usb 7-1: Using ep0 maxpacket: 8
[  506.327615][ T5926] usb 7-1: config 0 has an invalid interface number: 237 but max is 0
[  506.336615][ T5926] usb 7-1: config 0 has no interface number 0
[  506.350684][ T5926] usb 7-1: New USB device found, idVendor=093a, idProduct=2460, bcdDevice=2a.87
[  506.363334][ T5926] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  506.407854][ T5926] usb 7-1: Product: syz
[  506.411464][T11437] netlink: 'syz.5.1494': attribute type 3 has an invalid length.
[  506.413752][ T5926] usb 7-1: Manufacturer: syz
[  506.421358][T11438] netlink: 'syz.0.1495': attribute type 39 has an invalid length.
[  506.444885][ T5926] usb 7-1: SerialNumber: syz
[  506.456136][ T5926] usb 7-1: config 0 descriptor??
[  506.744598][T11014] usb 6-1: new high-speed USB device number 37 using dummy_hcd
[  508.467902][T11014] usb 6-1: Using ep0 maxpacket: 16
[  508.474671][T11014] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  508.485524][T11014] usb 6-1: config 0 interface 0 has no altsetting 0
[  508.502881][ T5840] Bluetooth: hci0: command 0x0406 tx timeout
[  508.511086][T11014] usb 6-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[  508.524384][T11014] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  508.624062][T11014] usb 6-1: config 0 descriptor??
[  508.738107][ T5890] usb 8-1: new high-speed USB device number 28 using dummy_hcd
[  508.902769][ T5890] usb 8-1: config 0 has an invalid interface number: 117 but max is 0
[  508.921597][ T5890] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  508.983141][ T5890] usb 8-1: config 0 has no interface number 0
[  509.023966][ T5890] usb 8-1: config 0 interface 117 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0
[  509.088069][ T5890] usb 8-1: config 0 interface 117 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  509.123029][T11014] hid (null): global environment stack underflow
[  509.129742][T11014] hid (null): unknown global tag 0x84
[  509.135153][T11014] hid (null): report_id 0 is invalid
[  509.157965][T11014] hid (null): unknown global tag 0xc
[  509.163345][T11014] hid (null): unknown global tag 0xd
[  509.202564][ T5926] gspca_main: pac207-2.14.0 probing 093a:2460
[  509.373069][ T5926] gspca_pac207: Failed to read a register (index 0x0000, error -71)
[  510.002497][T11014] hid (null): report_id 2863014418 is invalid
[  510.008669][    C0] raw-gadget.2 gadget.7: ignoring, device is not running
[  510.016227][T11014] hid (null): report_id 2384115945 is invalid
[  510.026873][    C0] raw-gadget.2 gadget.7: ignoring, device is not running
[  510.035525][T11014] cougar 0003:060B:500A.0012: unexpected long global item
[  510.043194][T11014] cougar 0003:060B:500A.0012: parse failed
[  510.048192][ T5926] usb 7-1: USB disconnect, device number 29
[  510.049375][T11014] cougar 0003:060B:500A.0012: probe with driver cougar failed with error -22
[  510.092361][ T5890] usb 8-1: New USB device found, idVendor=0afa, idProduct=03e8, bcdDevice=99.d0
[  510.117638][ T5890] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  510.340147][ T5890] usb 8-1: config 0 descriptor??
[  510.348582][ T5890] usb 8-1: can't set config #0, error -71
[  510.358533][ T5890] usb 8-1: USB disconnect, device number 28
[  510.436310][T11014] usb 6-1: USB disconnect, device number 37
[  510.533043][T11476] mkiss: ax0: crc mode is auto.
[  514.127322][T11518] FAULT_INJECTION: forcing a failure.
[  514.127322][T11518] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  514.156156][T11518] CPU: 1 UID: 0 PID: 11518 Comm: syz.0.1512 Not tainted 6.12.0-rc7-syzkaller-00187-gf868cd251776 #0
[  514.166978][T11518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  514.177059][T11518] Call Trace:
[  514.180359][T11518]  <TASK>
[  514.183301][T11518]  dump_stack_lvl+0x241/0x360
[  514.188009][T11518]  ? __pfx_dump_stack_lvl+0x10/0x10
[  514.193239][T11518]  ? __pfx__printk+0x10/0x10
[  514.197846][T11518]  ? __pfx_lock_release+0x10/0x10
[  514.202899][T11518]  should_fail_ex+0x3b0/0x4e0
[  514.207598][T11518]  _copy_from_iter+0x21f/0x1e70
[  514.212475][T11518]  ? __virt_addr_valid+0x183/0x530
[  514.217609][T11518]  ? __pfx_lock_release+0x10/0x10
[  514.222661][T11518]  ? __alloc_skb+0x28f/0x440
[  514.227273][T11518]  ? __pfx__copy_from_iter+0x10/0x10
[  514.232594][T11518]  ? __virt_addr_valid+0x183/0x530
[  514.237721][T11518]  ? __virt_addr_valid+0x183/0x530
[  514.242855][T11518]  ? __virt_addr_valid+0x45f/0x530
[  514.247996][T11518]  ? __check_object_size+0x48e/0x900
[  514.253313][T11518]  netlink_sendmsg+0x73d/0xcb0
[  514.258113][T11518]  ? __pfx_netlink_sendmsg+0x10/0x10
[  514.263447][T11518]  ? __pfx_netlink_sendmsg+0x10/0x10
[  514.268766][T11518]  __sock_sendmsg+0x221/0x270
[  514.273471][T11518]  ____sys_sendmsg+0x52a/0x7e0
[  514.278269][T11518]  ? __pfx_____sys_sendmsg+0x10/0x10
[  514.283602][T11518]  __sys_sendmsg+0x292/0x380
[  514.288236][T11518]  ? __pfx___sys_sendmsg+0x10/0x10
[  514.293400][T11518]  ? __pfx_vfs_write+0x10/0x10
[  514.298214][T11518]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  514.304580][T11518]  ? do_syscall_64+0x100/0x230
[  514.309373][T11518]  ? do_syscall_64+0xb6/0x230
[  514.314074][T11518]  do_syscall_64+0xf3/0x230
[  514.318689][T11518]  ? clear_bhb_loop+0x35/0x90
[  514.323404][T11518]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  514.329409][T11518] RIP: 0033:0x7fa85997e719
[  514.333843][T11518] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  514.353478][T11518] RSP: 002b:00007fa85a822038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  514.361928][T11518] RAX: ffffffffffffffda RBX: 00007fa859b35f80 RCX: 00007fa85997e719
[  514.369920][T11518] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000003
[  514.377919][T11518] RBP: 00007fa85a822090 R08: 0000000000000000 R09: 0000000000000000
[  514.386355][T11518] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  514.394436][T11518] R13: 0000000000000000 R14: 00007fa859b35f80 R15: 00007fff6353f598
[  514.402541][T11518]  </TASK>
[  514.440178][T11509] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1508'.
[  515.434822][T11535] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1514'.
[  515.975742][T11538] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1516'.
[  516.344683][T11540] netlink: 'syz.3.1515': attribute type 3 has an invalid length.
[  517.788808][ T5926] usb 4-1: new high-speed USB device number 40 using dummy_hcd
[  519.822701][ T5926] usb 4-1: Using ep0 maxpacket: 16
[  520.564388][ T5926] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  520.594314][ T5926] usb 4-1: config 0 interface 0 has no altsetting 0
[  520.628550][ T5926] usb 4-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[  521.091646][T11571] program syz.7.1523 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  521.193384][ T5926] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  521.209015][ T5926] usb 4-1: config 0 descriptor??
[  521.223400][T11579] FAULT_INJECTION: forcing a failure.
[  521.223400][T11579] name failslab, interval 1, probability 0, space 0, times 0
[  521.236694][T11579] CPU: 0 UID: 0 PID: 11579 Comm: syz.5.1525 Not tainted 6.12.0-rc7-syzkaller-00187-gf868cd251776 #0
[  521.247520][T11579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  521.257607][T11579] Call Trace:
[  521.260918][T11579]  <TASK>
[  521.263879][T11579]  dump_stack_lvl+0x241/0x360
[  521.268601][T11579]  ? __pfx_dump_stack_lvl+0x10/0x10
[  521.273841][T11579]  ? __pfx__printk+0x10/0x10
[  521.278469][T11579]  ? __kmalloc_cache_noprof+0x44/0x2c0
[  521.283968][T11579]  ? __pfx___might_resched+0x10/0x10
[  521.289345][T11579]  should_fail_ex+0x3b0/0x4e0
[  521.294072][T11579]  should_failslab+0xac/0x100
[  521.298787][T11579]  ? refill_pi_state_cache+0x91/0x170
[  521.304188][T11579]  __kmalloc_cache_noprof+0x6c/0x2c0
[  521.309492][T11579]  refill_pi_state_cache+0x91/0x170
[  521.314720][T11579]  futex_requeue+0x1d8/0x1930
[  521.319426][T11579]  ? get_pid_task+0x23/0x1f0
[  521.324040][T11579]  ? kstrtouint_from_user+0x128/0x190
[  521.329458][T11579]  ? __pfx_futex_requeue+0x10/0x10
[  521.334602][T11579]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  521.340542][T11579]  ? vfs_write+0x730/0xd30
[  521.344994][T11579]  do_futex+0x3f4/0x560
[  521.349187][T11579]  ? __pfx_do_futex+0x10/0x10
[  521.353893][T11579]  ? __fget_files+0x3f3/0x470
[  521.358621][T11579]  __se_sys_futex+0x3f9/0x480
[  521.363368][T11579]  ? __pfx___se_sys_futex+0x10/0x10
[  521.368576][T11579]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  521.374919][T11579]  ? do_syscall_64+0x100/0x230
[  521.379729][T11579]  ? __x64_sys_futex+0x21/0xf0
[  521.384534][T11579]  do_syscall_64+0xf3/0x230
[  521.389078][T11579]  ? clear_bhb_loop+0x35/0x90
[  521.393796][T11579]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  521.399731][T11579] RIP: 0033:0x7f9c91d7e719
[  521.404177][T11579] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  521.423817][T11579] RSP: 002b:00007f9c92c62038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  521.432264][T11579] RAX: ffffffffffffffda RBX: 00007f9c91f35f80 RCX: 00007f9c91d7e719
[  521.440263][T11579] RDX: 0000000000000001 RSI: 000000000000008c RDI: 00000000200002c0
[  521.448259][T11579] RBP: 00007f9c92c62090 R08: 00000000200000c0 R09: 0000000000000000
[  521.456252][T11579] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  521.464250][T11579] R13: 0000000000000000 R14: 00007f9c91f35f80 R15: 00007ffdf16ddfd8
[  521.472268][T11579]  </TASK>
[  521.598972][ T5919] usb 8-1: new high-speed USB device number 29 using dummy_hcd
[  522.510254][T11594] netlink: 84 bytes leftover after parsing attributes in process `syz.6.1530'.
[  522.519802][T11594] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1530'.
[  523.572749][ T5926] usbhid 4-1:0.0: can't add hid device: -71
[  523.587171][ T5926] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  523.647862][ T5919] usb 8-1: Using ep0 maxpacket: 32
[  523.853298][ T5926] usb 4-1: USB disconnect, device number 40
[  523.968589][T11605] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1529'.
[  524.454233][ T5919] usb 8-1: device descriptor read/all, error -71
[  525.309107][ T5890] usb 7-1: new high-speed USB device number 30 using dummy_hcd
[  525.487073][ T5890] usb 7-1: Using ep0 maxpacket: 8
[  525.920518][ T5890] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  525.952276][ T5890] usb 7-1: New USB device found, idVendor=05e1, idProduct=0893, bcdDevice=fd.5b
[  525.990607][ T5890] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  526.010482][ T5890] usb 7-1: Product: syz
[  526.014898][ T5890] usb 7-1: Manufacturer: syz
[  526.024148][T11627] netlink: 'syz.5.1539': attribute type 3 has an invalid length.
[  526.037903][ T5890] usb 7-1: SerialNumber: syz
[  526.054876][ T5890] usb 7-1: config 0 descriptor??
[  526.069484][ T5890] gspca_main: stk014-2.14.0 probing 05e1:0893
[  526.078033][ T5890] usb 7-1: selecting invalid altsetting 1
[  526.379643][T11634] FAULT_INJECTION: forcing a failure.
[  526.379643][T11634] name failslab, interval 1, probability 0, space 0, times 0
[  526.392732][T11634] CPU: 0 UID: 0 PID: 11634 Comm: syz.7.1541 Not tainted 6.12.0-rc7-syzkaller-00187-gf868cd251776 #0
[  526.403539][T11634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  526.409056][T11611] binder: 11608:11611 unknown command 0
[  526.413863][T11634] Call Trace:
[  526.413880][T11634]  <TASK>
[  526.413891][T11634]  dump_stack_lvl+0x241/0x360
[  526.420447][T11611] binder: 11608:11611 ioctl c0306201 20000280 returned -22
[  526.422707][T11634]  ? __pfx_dump_stack_lvl+0x10/0x10
[  526.422742][T11634]  ? __pfx__printk+0x10/0x10
[  526.447292][T11634]  ? ref_tracker_alloc+0x332/0x490
[  526.452427][T11634]  should_fail_ex+0x3b0/0x4e0
[  526.457122][T11634]  ? skb_clone+0x20c/0x390
[  526.461536][T11634]  should_failslab+0xac/0x100
[  526.466200][T11634]  ? skb_clone+0x20c/0x390
[  526.470623][T11634]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  526.476034][T11634]  skb_clone+0x20c/0x390
[  526.480309][T11634]  __netlink_deliver_tap+0x3cc/0x7c0
[  526.485602][T11634]  ? netlink_deliver_tap+0x2e/0x1b0
[  526.490807][T11634]  netlink_deliver_tap+0x19d/0x1b0
[  526.495938][T11634]  netlink_unicast+0x7c4/0x990
[  526.500732][T11634]  ? __pfx_netlink_unicast+0x10/0x10
[  526.506052][T11634]  ? __virt_addr_valid+0x183/0x530
[  526.511182][T11634]  ? __check_object_size+0x48e/0x900
[  526.516476][T11634]  netlink_sendmsg+0x8e4/0xcb0
[  526.521253][T11634]  ? __pfx_netlink_sendmsg+0x10/0x10
[  526.526548][T11634]  ? __pfx_netlink_sendmsg+0x10/0x10
[  526.531862][T11634]  __sock_sendmsg+0x221/0x270
[  526.536541][T11634]  ____sys_sendmsg+0x52a/0x7e0
[  526.541318][T11634]  ? __pfx_____sys_sendmsg+0x10/0x10
[  526.546615][T11634]  __sys_sendmsg+0x292/0x380
[  526.551224][T11634]  ? __pfx___sys_sendmsg+0x10/0x10
[  526.556351][T11634]  ? __pfx_vfs_write+0x10/0x10
[  526.561134][T11634]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  526.567476][T11634]  ? do_syscall_64+0x100/0x230
[  526.572253][T11634]  ? do_syscall_64+0xb6/0x230
[  526.576933][T11634]  do_syscall_64+0xf3/0x230
[  526.581434][T11634]  ? clear_bhb_loop+0x35/0x90
[  526.586113][T11634]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  526.592007][T11634] RIP: 0033:0x7f1383f7e719
[  526.596421][T11634] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  526.616042][T11634] RSP: 002b:00007f1384e48038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  526.624470][T11634] RAX: ffffffffffffffda RBX: 00007f1384135f80 RCX: 00007f1383f7e719
[  526.632441][T11634] RDX: 000000002004c080 RSI: 0000000020000180 RDI: 0000000000000003
[  526.640408][T11634] RBP: 00007f1384e48090 R08: 0000000000000000 R09: 0000000000000000
[  526.648476][T11634] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  526.656444][T11634] R13: 0000000000000000 R14: 00007f1384135f80 R15: 00007ffc7a626ba8
[  526.664424][T11634]  </TASK>
[  526.800127][ T5890] gspca_stk014: reg_r err -71
[  526.861005][ T5890] stk014 7-1:0.0: probe with driver stk014 failed with error -71
[  527.011170][ T5890] usb 7-1: USB disconnect, device number 30
[  527.261718][T11014] usb 6-1: new high-speed USB device number 38 using dummy_hcd
[  527.307007][T11644] ebt_among: src integrity fail: 300
[  527.330576][T11644] program syz.3.1544 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  527.458119][T11014] usb 6-1: Using ep0 maxpacket: 16
[  527.468742][T11014] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  527.481833][T11014] usb 6-1: config 0 interface 0 has no altsetting 0
[  527.488949][T11014] usb 6-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[  527.498810][T11014] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  527.509118][T11014] usb 6-1: config 0 descriptor??
[  527.605411][ T5889] usb 4-1: new high-speed USB device number 41 using dummy_hcd
[  527.758055][ T5889] usb 4-1: Using ep0 maxpacket: 32
[  527.771941][ T5889] usb 4-1: config 0 interface 0 has no altsetting 0
[  527.778806][ T5889] usb 4-1: New USB device found, idVendor=2040, idProduct=c602, bcdDevice= 1.8e
[  527.787996][ T5889] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  527.798269][ T5889] usb 4-1: config 0 descriptor??
[  527.806240][ T5889] usb 4-1: dvb_usb_v2: found a 'HCW 126xxx' in warm state
[  527.819411][ T5889] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  527.833881][ T5889] dvbdev: DVB: registering new adapter (HCW 126xxx)
[  527.844839][ T5889] usb 4-1: media controller created
[  527.882640][ T5889] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  527.953473][T11014] usbhid 6-1:0.0: can't add hid device: -71
[  527.978242][T11014] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  527.994896][T11014] usb 6-1: USB disconnect, device number 38
[  528.095214][ T5889] set interface failed
[  528.095848][ T5889] usb 4-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  528.113062][ T5889] error writing reg: 0xff, val: 0x00
[  528.226443][ T5889] dvb_usb_mxl111sf 4-1:0.0: probe with driver dvb_usb_mxl111sf failed with error -22
[  528.347214][ T5889] usb 4-1: USB disconnect, device number 41
[  529.309355][T11682] overlayfs: failed to clone lowerpath
[  529.395674][T11683] 9pnet: p9_errstr2errno: server reported unknown error �@íÎhQ$I¸ñº6‚}hñEÒŒ¸i)
[  531.083927][T11701] ebt_among: src integrity fail: 300
[  531.097589][T11701] program syz.6.1562 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  531.224586][T11696] lo speed is unknown, defaulting to 1000
[  531.297723][T11713] netlink: 16 bytes leftover after parsing attributes in process `syz.7.1564'.
[  532.058264][  T972] usb 7-1: new high-speed USB device number 31 using dummy_hcd
[  532.213195][  T972] usb 7-1: Using ep0 maxpacket: 32
[  532.232945][  T972] usb 7-1: config 0 interface 0 has no altsetting 0
[  532.242416][  T972] usb 7-1: New USB device found, idVendor=2040, idProduct=c602, bcdDevice= 1.8e
[  532.277126][  T972] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  532.361369][  T972] usb 7-1: config 0 descriptor??
[  532.373690][  T972] usb 7-1: dvb_usb_v2: found a 'HCW 126xxx' in warm state
[  532.404011][  T972] usb 7-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  532.456556][  T972] dvbdev: DVB: registering new adapter (HCW 126xxx)
[  532.478130][  T972] usb 7-1: media controller created
[  532.511186][T11728] FAULT_INJECTION: forcing a failure.
[  532.511186][T11728] name failslab, interval 1, probability 0, space 0, times 0
[  532.542099][  T972] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  532.568380][T11728] CPU: 0 UID: 0 PID: 11728 Comm: syz.7.1568 Not tainted 6.12.0-rc7-syzkaller-00187-gf868cd251776 #0
[  532.579294][T11728] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  532.589381][T11728] Call Trace:
[  532.592690][T11728]  <TASK>
[  532.595644][T11728]  dump_stack_lvl+0x241/0x360
[  532.600365][T11728]  ? __pfx_dump_stack_lvl+0x10/0x10
[  532.605602][T11728]  ? __pfx__printk+0x10/0x10
[  532.610229][T11728]  ? fs_reclaim_acquire+0x93/0x130
[  532.615384][T11728]  ? __pfx___might_resched+0x10/0x10
[  532.620713][T11728]  should_fail_ex+0x3b0/0x4e0
[  532.625786][T11728]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  532.631544][T11728]  should_failslab+0xac/0x100
[  532.636239][T11728]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  532.641969][T11728]  __kmalloc_noprof+0xd8/0x400
[  532.646787][T11728]  tomoyo_realpath_from_path+0xcf/0x5e0
[  532.652356][T11728]  tomoyo_path_number_perm+0x23a/0x880
[  532.657821][T11728]  ? rcu_read_lock_any_held+0xb7/0x160
[  532.663276][T11728]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  532.669161][T11728]  ? tomoyo_path_number_perm+0x208/0x880
[  532.674789][T11728]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  532.680818][T11728]  ? sb_end_write+0xe9/0x1c0
[  532.685422][T11728]  ? vfs_write+0x730/0xd30
[  532.689853][T11728]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  532.695842][T11728]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  532.702171][T11728]  security_file_ioctl+0xc6/0x2a0
[  532.707203][T11728]  __se_sys_ioctl+0x47/0x170
[  532.711793][T11728]  do_syscall_64+0xf3/0x230
[  532.716294][T11728]  ? clear_bhb_loop+0x35/0x90
[  532.720974][T11728]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  532.726877][T11728] RIP: 0033:0x7f1383f7e719
[  532.731298][T11728] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  532.750922][T11728] RSP: 002b:00007f1384e27038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  532.759334][T11728] RAX: ffffffffffffffda RBX: 00007f1384136058 RCX: 00007f1383f7e719
[  532.767385][T11728] RDX: 0000000020000040 RSI: 0000000000002275 RDI: 0000000000000007
[  532.775353][T11728] RBP: 00007f1384e27090 R08: 0000000000000000 R09: 0000000000000000
[  532.783415][T11728] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  532.791380][T11728] R13: 0000000000000000 R14: 00007f1384136058 R15: 00007ffc7a626ba8
[  532.799358][T11728]  </TASK>
[  532.859137][  T972] set interface failed
[  532.859172][  T972] usb 7-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  532.870556][  T972] error writing reg: 0xff, val: 0x00
[  532.931990][  T972] dvb_usb_mxl111sf 7-1:0.0: probe with driver dvb_usb_mxl111sf failed with error -22
[  532.947284][T11728] ERROR: Out of memory at tomoyo_realpath_from_path.
[  533.011318][ T5933] usb 1-1: new high-speed USB device number 36 using dummy_hcd
[  533.033091][  T972] usb 7-1: USB disconnect, device number 31
[  533.174446][T11735] xt_TPROXY: Can be used only with -p tcp or -p udp
[  533.178981][ T5933] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  533.216366][ T5933] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  533.226344][ T5933] usb 1-1: New USB device found, idVendor=04b4, idProduct=de61, bcdDevice= 0.00
[  533.241907][ T5933] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  533.254780][ T5933] usb 1-1: config 0 descriptor??
[  533.516344][T11748] FAULT_INJECTION: forcing a failure.
[  533.516344][T11748] name failslab, interval 1, probability 0, space 0, times 0
[  533.533177][T11748] CPU: 1 UID: 0 PID: 11748 Comm: syz.5.1574 Not tainted 6.12.0-rc7-syzkaller-00187-gf868cd251776 #0
[  533.543998][T11748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  533.554085][T11748] Call Trace:
[  533.557380][T11748]  <TASK>
[  533.560330][T11748]  dump_stack_lvl+0x241/0x360
[  533.565039][T11748]  ? __pfx_dump_stack_lvl+0x10/0x10
[  533.570274][T11748]  ? __pfx__printk+0x10/0x10
[  533.574903][T11748]  ? ref_tracker_alloc+0x332/0x490
[  533.580042][T11748]  should_fail_ex+0x3b0/0x4e0
[  533.584744][T11748]  ? skb_clone+0x20c/0x390
[  533.589194][T11748]  should_failslab+0xac/0x100
[  533.593897][T11748]  ? skb_clone+0x20c/0x390
[  533.598339][T11748]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  533.603742][T11748]  skb_clone+0x20c/0x390
[  533.608027][T11748]  __netlink_deliver_tap+0x3cc/0x7c0
[  533.613369][T11748]  ? netlink_deliver_tap+0x2e/0x1b0
[  533.618597][T11748]  netlink_deliver_tap+0x19d/0x1b0
[  533.623728][T11748]  netlink_unicast+0x7c4/0x990
[  533.628511][T11748]  ? __pfx_netlink_unicast+0x10/0x10
[  533.633807][T11748]  ? __virt_addr_valid+0x183/0x530
[  533.638927][T11748]  ? __check_object_size+0x48e/0x900
[  533.644222][T11748]  netlink_sendmsg+0x8e4/0xcb0
[  533.649003][T11748]  ? __pfx_netlink_sendmsg+0x10/0x10
[  533.654328][T11748]  ? __pfx_netlink_sendmsg+0x10/0x10
[  533.659646][T11748]  __sock_sendmsg+0x221/0x270
[  533.664354][T11748]  ____sys_sendmsg+0x52a/0x7e0
[  533.669155][T11748]  ? __pfx_____sys_sendmsg+0x10/0x10
[  533.674493][T11748]  __sys_sendmsg+0x292/0x380
[  533.679117][T11748]  ? __pfx___sys_sendmsg+0x10/0x10
[  533.684271][T11748]  ? __pfx_vfs_write+0x10/0x10
[  533.689089][T11748]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  533.695538][T11748]  ? do_syscall_64+0x100/0x230
[  533.700339][T11748]  ? do_syscall_64+0xb6/0x230
[  533.705048][T11748]  do_syscall_64+0xf3/0x230
[  533.709589][T11748]  ? clear_bhb_loop+0x35/0x90
[  533.714302][T11748]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  533.720218][T11748] RIP: 0033:0x7f9c91d7e719
[  533.724662][T11748] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  533.744388][T11748] RSP: 002b:00007f9c92c62038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  533.752846][T11748] RAX: ffffffffffffffda RBX: 00007f9c91f35f80 RCX: 00007f9c91d7e719
[  533.761002][T11748] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000008
[  533.769001][T11748] RBP: 00007f9c92c62090 R08: 0000000000000000 R09: 0000000000000000
[  533.776997][T11748] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  533.784995][T11748] R13: 0000000000000000 R14: 00007f9c91f35f80 R15: 00007ffdf16ddfd8
[  533.793006][T11748]  </TASK>
[  533.796158][    C1] vkms_vblank_simulate: vblank timer overrun
[  533.853532][T11748] vlan2: entered promiscuous mode
[  533.872853][T11748] syz_tun: entered promiscuous mode
[  533.926152][T11748] syz_tun: left promiscuous mode
[  534.007143][ T5933] cypress 0003:04B4:DE61.0013: item fetching failed at offset 5/7
[  534.016624][ T5933] cypress 0003:04B4:DE61.0013: parse failed
[  534.022942][ T5933] cypress 0003:04B4:DE61.0013: probe with driver cypress failed with error -22
[  534.137138][T11769] netlink: 'syz.6.1573': attribute type 39 has an invalid length.
[  535.124365][T11777] netlink: 16 bytes leftover after parsing attributes in process `syz.7.1580'.
[  535.288294][ T5926] usb 1-1: USB disconnect, device number 36
[  535.582548][T11784] ebt_among: src integrity fail: 300
[  535.585948][T11785] FAULT_INJECTION: forcing a failure.
[  535.585948][T11785] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  535.592469][T11784] program syz.7.1583 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  535.634343][T11785] CPU: 1 UID: 0 PID: 11785 Comm: syz.3.1584 Not tainted 6.12.0-rc7-syzkaller-00187-gf868cd251776 #0
[  535.645159][T11785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  535.655228][T11785] Call Trace:
[  535.658508][T11785]  <TASK>
[  535.661428][T11785]  dump_stack_lvl+0x241/0x360
[  535.666105][T11785]  ? __pfx_dump_stack_lvl+0x10/0x10
[  535.671292][T11785]  ? __pfx__printk+0x10/0x10
[  535.675901][T11785]  should_fail_ex+0x3b0/0x4e0
[  535.680569][T11785]  _copy_from_user+0x2f/0xc0
[  535.685156][T11785]  copy_from_sockptr+0x62/0xa0
[  535.689913][T11785]  packet_setsockopt+0xcac/0x1970
[  535.694932][T11785]  ? mark_lock+0x9a/0x360
[  535.699291][T11785]  ? __pfx_packet_setsockopt+0x10/0x10
[  535.704757][T11785]  ? __pfx_lock_acquire+0x10/0x10
[  535.709779][T11785]  ? __fget_files+0x29/0x470
[  535.714363][T11785]  ? __pfx_lock_release+0x10/0x10
[  535.719405][T11785]  ? __mutex_unlock_slowpath+0x21d/0x750
[  535.725071][T11785]  ? __pfx_packet_setsockopt+0x10/0x10
[  535.730523][T11785]  do_sock_setsockopt+0x3af/0x720
[  535.735652][T11785]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  535.741200][T11785]  ? __fget_files+0x29/0x470
[  535.745810][T11785]  ? __fget_files+0x3f3/0x470
[  535.750494][T11785]  ? __fget_files+0x29/0x470
[  535.755085][T11785]  __sys_setsockopt+0x1a2/0x250
[  535.759952][T11785]  __x64_sys_setsockopt+0xb5/0xd0
[  535.764992][T11785]  do_syscall_64+0xf3/0x230
[  535.769494][T11785]  ? clear_bhb_loop+0x35/0x90
[  535.774172][T11785]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  535.780059][T11785] RIP: 0033:0x7f0b1597e719
[  535.784495][T11785] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  535.804101][T11785] RSP: 002b:00007f0b16799038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  535.812532][T11785] RAX: ffffffffffffffda RBX: 00007f0b15b35f80 RCX: 00007f0b1597e719
[  535.820522][T11785] RDX: 0000000000000012 RSI: 0000000000000107 RDI: 0000000000000003
[  535.828775][T11785] RBP: 00007f0b16799090 R08: 0000000000000004 R09: 0000000000000000
[  535.836751][T11785] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001
[  535.844737][T11785] R13: 0000000000000000 R14: 00007f0b15b35f80 R15: 00007ffd3bf7d0a8
[  535.852745][T11785]  </TASK>
[  535.855816][    C1] vkms_vblank_simulate: vblank timer overrun
[  535.878041][ T5890] usb 8-1: new high-speed USB device number 31 using dummy_hcd
[  536.038031][ T5890] usb 8-1: Using ep0 maxpacket: 32
[  536.178133][ T5890] usb 8-1: config 0 interface 0 has no altsetting 0
[  536.189737][ T5890] usb 8-1: New USB device found, idVendor=2040, idProduct=c602, bcdDevice= 1.8e
[  536.205417][ T5890] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  536.598023][ T5919] usb 4-1: new high-speed USB device number 42 using dummy_hcd
[  537.066557][ T5890] usb 8-1: config 0 descriptor??
[  537.073218][ T5890] usb 8-1: dvb_usb_v2: found a 'HCW 126xxx' in warm state
[  537.081547][ T5890] usb 8-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  537.092047][ T5890] dvbdev: DVB: registering new adapter (HCW 126xxx)
[  537.098750][ T5890] usb 8-1: media controller created
[  537.117892][ T5919] usb 4-1: device descriptor read/64, error -71
[  537.175680][ T5890] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  537.284569][ T5890] set interface failed
[  537.284607][ T5890] usb 8-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  537.308506][ T5890] error writing reg: 0xff, val: 0x00
[  537.363389][ T5890] dvb_usb_mxl111sf 8-1:0.0: probe with driver dvb_usb_mxl111sf failed with error -22
[  537.378721][ T5919] usb 4-1: new high-speed USB device number 43 using dummy_hcd
[  537.441281][ T5890] usb 8-1: USB disconnect, device number 31
[  537.517882][ T5919] usb 4-1: device descriptor read/64, error -71
[  537.577949][ T5926] usb 1-1: new high-speed USB device number 37 using dummy_hcd
[  537.580583][T11803] FAULT_INJECTION: forcing a failure.
[  537.580583][T11803] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  537.598989][T11803] CPU: 0 UID: 0 PID: 11803 Comm: syz.6.1589 Not tainted 6.12.0-rc7-syzkaller-00187-gf868cd251776 #0
[  537.609791][T11803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  537.619846][T11803] Call Trace:
[  537.623116][T11803]  <TASK>
[  537.626036][T11803]  dump_stack_lvl+0x241/0x360
[  537.630716][T11803]  ? __pfx_dump_stack_lvl+0x10/0x10
[  537.635909][T11803]  ? __pfx__printk+0x10/0x10
[  537.640496][T11803]  ? snprintf+0xda/0x120
[  537.644735][T11803]  should_fail_ex+0x3b0/0x4e0
[  537.649405][T11803]  _copy_to_user+0x31/0xb0
[  537.653819][T11803]  simple_read_from_buffer+0xca/0x150
[  537.659195][T11803]  proc_fail_nth_read+0x1e9/0x250
[  537.664228][T11803]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  537.669782][T11803]  ? rw_verify_area+0x55e/0x6f0
[  537.674628][T11803]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  537.680186][T11803]  vfs_read+0x1fc/0xb70
[  537.684342][T11803]  ? fdget_pos+0x24e/0x320
[  537.688756][T11803]  ? __pfx_vfs_read+0x10/0x10
[  537.693439][T11803]  ? __fget_files+0x3f3/0x470
[  537.698116][T11803]  ? fdget_pos+0x24e/0x320
[  537.702543][T11803]  ksys_read+0x183/0x2b0
[  537.706818][T11803]  ? __pfx_ksys_read+0x10/0x10
[  537.711607][T11803]  ? do_syscall_64+0x100/0x230
[  537.716387][T11803]  ? do_syscall_64+0xb6/0x230
[  537.721082][T11803]  do_syscall_64+0xf3/0x230
[  537.725594][T11803]  ? clear_bhb_loop+0x35/0x90
[  537.730276][T11803]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  537.736179][T11803] RIP: 0033:0x7f229897d15c
[  537.740595][T11803] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  537.760211][T11803] RSP: 002b:00007f22997a9030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  537.768638][T11803] RAX: ffffffffffffffda RBX: 00007f2298b35f80 RCX: 00007f229897d15c
[  537.776612][T11803] RDX: 000000000000000f RSI: 00007f22997a90a0 RDI: 0000000000000006
[  537.784582][T11803] RBP: 00007f22997a9090 R08: 0000000000000000 R09: 0000000000000000
[  537.792557][T11803] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  537.800526][T11803] R13: 0000000000000000 R14: 00007f2298b35f80 R15: 00007ffd2841cce8
[  537.808518][T11803]  </TASK>
[  537.848329][ T5919] usb usb4-port1: attempt power cycle
[  538.191804][ T5926] usb 1-1: config 0 has an invalid descriptor of length 49, skipping remainder of the config
[  538.202261][ T5926] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  538.215524][ T5926] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  538.215692][ T5919] usb 4-1: new high-speed USB device number 44 using dummy_hcd
[  538.224782][ T5926] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  538.243312][ T5926] usb 1-1: config 0 descriptor??
[  538.279616][ T5926] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[  539.128489][T11822] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1595'.
[  539.166835][T11014] usb 6-1: new high-speed USB device number 39 using dummy_hcd
[  539.175174][ T5919] usb 4-1: device descriptor read/8, error -71
[  539.367096][T11828] netlink: 16 bytes leftover after parsing attributes in process `syz.7.1596'.
[  540.077899][T11014] usb 6-1: Using ep0 maxpacket: 8
[  540.086975][T11014] usb 6-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c
[  540.120771][T11014] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  540.139477][T11014] usb 6-1: Product: syz
[  540.164719][T11014] usb 6-1: Manufacturer: syz
[  540.174605][T11014] usb 6-1: SerialNumber: syz
[  540.198607][T11014] usb 6-1: config 0 descriptor??
[  540.205765][T11014] gspca_main: se401-2.14.0 probing 047d:5003
[  540.594911][  T972] usb 1-1: USB disconnect, device number 37
[  540.610522][T11014] gspca_se401: Bayer format not supported!
[  541.456762][T11848] ebt_among: src integrity fail: 300
[  541.457217][ T6160] Bluetooth: hci1: Frame reassembly failed (-84)
[  541.466603][T11848] program syz.0.1602 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  541.825973][ T5919] usb 1-1: new high-speed USB device number 38 using dummy_hcd
[  543.288722][ T5919] usb 1-1: Using ep0 maxpacket: 32
[  543.305721][ T5919] usb 1-1: config 0 interface 0 has no altsetting 0
[  543.344340][ T5919] usb 1-1: New USB device found, idVendor=2040, idProduct=c602, bcdDevice= 1.8e
[  543.378451][ T5919] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  543.396364][T11862] FAULT_INJECTION: forcing a failure.
[  543.396364][T11862] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  543.409997][T11862] CPU: 1 UID: 0 PID: 11862 Comm: syz.6.1607 Not tainted 6.12.0-rc7-syzkaller-00187-gf868cd251776 #0
[  543.415243][ T5919] usb 1-1: config 0 descriptor??
[  543.420771][T11862] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  543.420791][T11862] Call Trace:
[  543.420799][T11862]  <TASK>
[  543.420807][T11862]  dump_stack_lvl+0x241/0x360
[  543.420840][T11862]  ? __pfx_dump_stack_lvl+0x10/0x10
[  543.452000][T11862]  ? __pfx__printk+0x10/0x10
[  543.456642][T11862]  should_fail_ex+0x3b0/0x4e0
[  543.461048][ T5919] usb 1-1: dvb_usb_v2: found a 'HCW 126xxx' in warm state
[  543.461330][T11862]  _copy_from_user+0x2f/0xc0
[  543.473043][T11862]  snd_rawmidi_kernel_write1+0x376/0x5f0
[  543.478741][T11862]  snd_rawmidi_write+0x5b3/0xb70
[  543.483719][T11862]  ? __pfx_snd_rawmidi_write+0x10/0x10
[  543.489214][T11862]  ? __pfx_default_wake_function+0x10/0x10
[  543.495053][T11862]  ? bpf_lsm_file_permission+0x9/0x10
[  543.500457][T11862]  ? security_file_permission+0x74/0x280
[  543.506120][T11862]  ? rw_verify_area+0x1c3/0x6f0
[  543.508161][   T54] Bluetooth: hci1: command 0x1003 tx timeout
[  543.510980][T11862]  ? __pfx_snd_rawmidi_write+0x10/0x10
[  543.517353][ T5840] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  543.522703][T11862]  vfs_write+0x2a3/0xd30
[  543.522737][T11862]  ? __pfx_vfs_write+0x10/0x10
[  543.522760][T11862]  ? __fget_files+0x29/0x470
[  543.522784][T11862]  ? __fget_files+0x3f3/0x470
[  543.522806][T11862]  ? __fget_files+0x29/0x470
[  543.522835][T11862]  ? fdget_pos+0x19a/0x320
[  543.522863][T11862]  ksys_write+0x183/0x2b0
[  543.522888][T11862]  ? __pfx_ksys_write+0x10/0x10
[  543.522910][T11862]  ? do_syscall_64+0x100/0x230
[  543.522936][T11862]  ? do_syscall_64+0xb6/0x230
[  543.575431][T11862]  do_syscall_64+0xf3/0x230
[  543.579968][T11862]  ? clear_bhb_loop+0x35/0x90
[  543.584671][T11862]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  543.590606][T11862] RIP: 0033:0x7f229897e719
[  543.595040][T11862] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  543.614680][T11862] RSP: 002b:00007f22997a9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  543.623134][T11862] RAX: ffffffffffffffda RBX: 00007f2298b35f80 RCX: 00007f229897e719
[  543.631133][T11862] RDX: 00000000fffffd2c RSI: 0000000020000000 RDI: 0000000000000004
[  543.639129][T11862] RBP: 00007f22997a9090 R08: 0000000000000000 R09: 0000000000000000
[  543.647122][T11862] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  543.655118][T11862] R13: 0000000000000000 R14: 00007f2298b35f80 R15: 00007ffd2841cce8
[  543.663127][T11862]  </TASK>
[  543.669524][ T5919] usb 1-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  543.686091][T10289] usb 6-1: USB disconnect, device number 39
[  543.707571][ T5919] dvbdev: DVB: registering new adapter (HCW 126xxx)
[  543.737024][ T5919] usb 1-1: media controller created
[  543.799831][ T5919] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  543.834070][ T5919] set interface failed
[  543.834106][ T5919] usb 1-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  543.845543][ T5919] error writing reg: 0xff, val: 0x00
[  543.905683][T11868] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1608'.
[  544.295704][ T5919] dvb_usb_mxl111sf 1-1:0.0: probe with driver dvb_usb_mxl111sf failed with error -22
[  544.573790][ T5919] usb 1-1: USB disconnect, device number 38
[  545.786087][T11890] loop2: detected capacity change from 0 to 7
[  545.789674][T11881] ceph: No mds server is up or the cluster is laggy
[  545.804129][T10289] libceph: connect (1)[c::]:6789 error -101
[  545.810939][T10289] libceph: mon0 (1)[c::]:6789 connect error
[  545.830215][T11890] Dev loop2: unable to read RDB block 7
[  545.846087][T11890]  loop2: unable to read partition table
[  545.856364][T11890] loop2: partition table beyond EOD, truncated
[  545.887417][T11890] loop_reread_partitions: partition scan of loop2 (þ被) failed (rc=-5)
[  548.843796][T11927] netlink: 16 bytes leftover after parsing attributes in process `syz.7.1622'.
[  550.698069][ T5919] usb 8-1: new high-speed USB device number 32 using dummy_hcd
[  550.881547][ T5919] usb 8-1: Using ep0 maxpacket: 8
[  550.906663][ T5919] usb 8-1: config 0 has an invalid interface number: 227 but max is 0
[  550.941481][ T5919] usb 8-1: config 0 has no interface number 0
[  550.972614][ T5919] usb 8-1: New USB device found, idVendor=07ca, idProduct=a868, bcdDevice=c4.d4
[  551.185708][ T5919] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  551.196568][ T5919] usb 8-1: config 0 descriptor??
[  551.205012][ T5919] dvb-usb: found a 'AVerMedia AVerTVHD Volar (A868R)' in warm state.
[  551.213935][ T5919] cxusb: set interface failed
[  551.219316][ T5919] dvb-usb: bulk message failed: -22 (1/0)
[  551.237190][ T5919] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  551.248092][ T5919] dvbdev: DVB: registering new adapter (AVerMedia AVerTVHD Volar (A868R))
[  551.256683][ T5919] usb 8-1: media controller created
[  551.490266][T11939] netlink: 20 bytes leftover after parsing attributes in process `syz.7.1624'.
[  551.958947][ T5919] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  552.084412][ T5919] DVB: Unable to find symbol lgdt330x_attach()
[  552.108403][ T5919] dvb-usb: no frontend was attached by 'AVerMedia AVerTVHD Volar (A868R)'
[  552.128629][ T5919] dvb-usb: bulk message failed: -22 (1/0)
[  552.134409][ T5919] dvb-usb: AVerMedia AVerTVHD Volar (A868R) successfully initialized and connected.
[  552.263260][ T5933] usb 8-1: USB disconnect, device number 32
[  552.297234][ T5933] dvb-usb: AVerMedia AVerTVHD Volar (A868R) successfully deinitialized and disconnected.
[  552.297908][  T972] usb 7-1: new high-speed USB device number 32 using dummy_hcd
[  553.818705][ T5933] usb 8-1: new high-speed USB device number 33 using dummy_hcd
[  553.901542][T11975] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1634'.
[  554.040652][  T972] usb 7-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  554.228517][  T972] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  554.373100][  T972] usb 7-1: Product: syz
[  554.592220][  T972] usb 7-1: Manufacturer: syz
[  554.601217][  T972] usb 7-1: SerialNumber: syz
[  555.024829][  T972] usb 7-1: config 0 descriptor??
[  555.042911][  T972] usb 7-1: can't set config #0, error -71
[  555.051593][  T972] usb 7-1: USB disconnect, device number 32
[  556.248183][ T5840] Bluetooth: hci5: command 0x0406 tx timeout
[  556.436498][T11990] FAULT_INJECTION: forcing a failure.
[  556.436498][T11990] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  556.611000][T11990] CPU: 1 UID: 0 PID: 11990 Comm: syz.3.1640 Not tainted 6.12.0-rc7-syzkaller-00187-gf868cd251776 #0
[  556.621821][T11990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  556.631913][T11990] Call Trace:
[  556.635211][T11990]  <TASK>
[  556.638159][T11990]  dump_stack_lvl+0x241/0x360
[  556.642872][T11990]  ? __pfx_dump_stack_lvl+0x10/0x10
[  556.648100][T11990]  ? __pfx__printk+0x10/0x10
[  556.652717][T11990]  should_fail_ex+0x3b0/0x4e0
[  556.657416][T11990]  prepare_alloc_pages+0x1da/0x5b0
[  556.662554][T11990]  __alloc_pages_noprof+0x16f/0x710
[  556.667778][T11990]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  556.673535][T11990]  alloc_pages_mpol_noprof+0x3e8/0x680
[  556.679022][T11990]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  556.685031][T11990]  ? alloc_pages_noprof+0xef/0x170
[  556.690159][T11990]  pte_alloc_one+0x8f/0x610
[  556.694687][T11990]  ? __pfx_pte_alloc_one+0x10/0x10
[  556.699835][T11990]  ? __pfx_validate_chain+0x10/0x10
[  556.705057][T11990]  ? handle_pte_fault+0x4c56/0x6820
[  556.710283][T11990]  __pte_alloc+0x79/0x3c0
[  556.714640][T11990]  ? __pfx___pte_alloc+0x10/0x10
[  556.719596][T11990]  ? mark_lock+0x9a/0x360
[  556.723960][T11990]  handle_pte_fault+0x50dd/0x6820
[  556.729019][T11990]  ? mark_lock+0x9a/0x360
[  556.733364][T11990]  ? __pfx_handle_pte_fault+0x10/0x10
[  556.738765][T11990]  ? __lock_acquire+0x1384/0x2050
[  556.743843][T11990]  ? mt_find+0x2a9/0x920
[  556.748103][T11990]  ? __pfx_lock_release+0x10/0x10
[  556.753157][T11990]  handle_mm_fault+0x1053/0x1ad0
[  556.758139][T11990]  ? __pfx_handle_mm_fault+0x10/0x10
[  556.763456][T11990]  ? __pfx_find_vma+0x10/0x10
[  556.768154][T11990]  ? vma_is_secretmem+0xd/0x50
[  556.772934][T11990]  ? check_vma_flags+0x4fa/0x5a0
[  556.777893][T11990]  __get_user_pages+0x1c82/0x49e0
[  556.782962][T11990]  ? __lock_acquire+0x1384/0x2050
[  556.788029][T11990]  ? __pfx___get_user_pages+0x10/0x10
[  556.793422][T11990]  ? __pfx_down_read_killable+0x10/0x10
[  556.798993][T11990]  ? __lock_acquire+0x1384/0x2050
[  556.804140][T11990]  __gup_longterm_locked+0xe64/0x17f0
[  556.809544][T11990]  ? mark_lock+0x9a/0x360
[  556.813903][T11990]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  556.819916][T11990]  ? __pfx___gup_longterm_locked+0x10/0x10
[  556.825861][T11990]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  556.832207][T11990]  ? sanity_check_pinned_pages+0x12b9/0x13b0
[  556.838207][T11990]  ? gup_fast_fallback+0x2247/0x2b80
[  556.843513][T11990]  gup_fast_fallback+0x276c/0x2b80
[  556.848674][T11990]  ? __pfx_gup_fast_fallback+0x10/0x10
[  556.854146][T11990]  ? validate_chain+0x11e/0x5920
[  556.859109][T11990]  ? irqentry_exit+0x63/0x90
[  556.863719][T11990]  ? nh_generic+0x308/0xc60
[  556.868227][T11990]  ? is_valid_gup_args+0x124/0x200
[  556.873363][T11990]  pin_user_pages_fast+0xcc/0x160
[  556.878436][T11990]  ? __pfx_pin_user_pages_fast+0x10/0x10
[  556.884093][T11990]  ? nhpoly1305_units+0x3d4/0x420
[  556.889236][T11990]  iov_iter_extract_pages+0x3bb/0x5c0
[  556.894636][T11990]  extract_iter_to_sg+0xf28/0x29c0
[  556.899778][T11990]  ? crypto_hash_walk_done+0x3bd/0x570
[  556.905263][T11990]  ? sanity_check_pinned_pages+0x12b2/0x13b0
[  556.911277][T11990]  ? __pfx_extract_iter_to_sg+0x10/0x10
[  556.916850][T11990]  ? unpin_user_page+0xe0/0x1e0
[  556.921724][T11990]  ? __pfx_unpin_user_page+0x10/0x10
[  556.927029][T11990]  ? __local_bh_enable_ip+0x168/0x200
[  556.932428][T11990]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  556.938174][T11990]  ? do_raw_spin_unlock+0x13c/0x8b0
[  556.943393][T11990]  ? __asan_memset+0x23/0x50
[  556.948005][T11990]  hash_sendmsg+0x513/0x1110
[  556.952640][T11990]  ? __pfx_hash_sendmsg+0x10/0x10
[  556.957683][T11990]  __sock_sendmsg+0x221/0x270
[  556.962387][T11990]  ____sys_sendmsg+0x52a/0x7e0
[  556.967186][T11990]  ? __pfx_____sys_sendmsg+0x10/0x10
[  556.972523][T11990]  __sys_sendmsg+0x292/0x380
[  556.977148][T11990]  ? __pfx___sys_sendmsg+0x10/0x10
[  556.982300][T11990]  ? __pfx_vfs_write+0x10/0x10
[  556.987118][T11990]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  556.993476][T11990]  ? do_syscall_64+0x100/0x230
[  556.998278][T11990]  ? do_syscall_64+0xb6/0x230
[  557.002972][T11990]  do_syscall_64+0xf3/0x230
[  557.007498][T11990]  ? clear_bhb_loop+0x35/0x90
[  557.012213][T11990]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  557.018128][T11990] RIP: 0033:0x7f0b1597e719
[  557.022561][T11990] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  557.042190][T11990] RSP: 002b:00007f0b16799038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  557.050629][T11990] RAX: ffffffffffffffda RBX: 00007f0b15b35f80 RCX: 00007f0b1597e719
[  557.058623][T11990] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 0000000000000004
[  557.066613][T11990] RBP: 00007f0b16799090 R08: 0000000000000000 R09: 0000000000000000
[  557.074600][T11990] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  557.082590][T11990] R13: 0000000000000000 R14: 00007f0b15b35f80 R15: 00007ffd3bf7d0a8
[  557.090596][T11990]  </TASK>
[  557.300281][T12003] FAULT_INJECTION: forcing a failure.
[  557.300281][T12003] name failslab, interval 1, probability 0, space 0, times 0
[  557.461662][T12003] CPU: 1 UID: 0 PID: 12003 Comm: syz.7.1642 Not tainted 6.12.0-rc7-syzkaller-00187-gf868cd251776 #0
[  557.472517][T12003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  557.482606][T12003] Call Trace:
[  557.485939][T12003]  <TASK>
[  557.488884][T12003]  dump_stack_lvl+0x241/0x360
[  557.493599][T12003]  ? __pfx_dump_stack_lvl+0x10/0x10
[  557.498824][T12003]  ? __pfx__printk+0x10/0x10
[  557.503436][T12003]  ? fs_reclaim_acquire+0x93/0x130
[  557.508572][T12003]  ? __pfx___might_resched+0x10/0x10
[  557.513889][T12003]  should_fail_ex+0x3b0/0x4e0
[  557.518613][T12003]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  557.524361][T12003]  should_failslab+0xac/0x100
[  557.529061][T12003]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  557.534808][T12003]  __kmalloc_noprof+0xd8/0x400
[  557.539604][T12003]  tomoyo_realpath_from_path+0xcf/0x5e0
[  557.545183][T12003]  tomoyo_check_open_permission+0x255/0x500
[  557.551095][T12003]  ? __lock_acquire+0x1384/0x2050
[  557.556145][T12003]  ? tomoyo_check_open_permission+0x204/0x500
[  557.562325][T12003]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  557.568785][T12003]  ? tomoyo_file_open+0x165/0x220
[  557.573833][T12003]  security_file_open+0x777/0x990
[  557.578891][T12003]  do_dentry_open+0x369/0x1460
[  557.583691][T12003]  vfs_open+0x3e/0x330
[  557.587780][T12003]  path_openat+0x2c84/0x3590
[  557.592399][T12003]  ? __lock_acquire+0x1384/0x2050
[  557.597474][T12003]  ? __pfx_path_openat+0x10/0x10
[  557.602464][T12003]  do_filp_open+0x235/0x490
[  557.606997][T12003]  ? __pfx_do_filp_open+0x10/0x10
[  557.612076][T12003]  ? _raw_spin_unlock+0x28/0x50
[  557.616953][T12003]  ? alloc_fd+0x5a1/0x640
[  557.621322][T12003]  do_sys_openat2+0x13e/0x1d0
[  557.626033][T12003]  ? __pfx_do_sys_openat2+0x10/0x10
[  557.631279][T12003]  __x64_sys_openat+0x247/0x2a0
[  557.636162][T12003]  ? __pfx___x64_sys_openat+0x10/0x10
[  557.641581][T12003]  ? do_syscall_64+0x100/0x230
[  557.646377][T12003]  ? do_syscall_64+0xb6/0x230
[  557.651093][T12003]  do_syscall_64+0xf3/0x230
[  557.655627][T12003]  ? clear_bhb_loop+0x35/0x90
[  557.660335][T12003]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  557.666257][T12003] RIP: 0033:0x7f1383f7e719
[  557.670691][T12003] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  557.690308][T12003] RSP: 002b:00007f1384e27038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  557.698747][T12003] RAX: ffffffffffffffda RBX: 00007f1384136058 RCX: 00007f1383f7e719
[  557.706741][T12003] RDX: 0000000000004000 RSI: 00000000200002c0 RDI: ffffffffffffff9c
[  557.714750][T12003] RBP: 00007f1384e27090 R08: 0000000000000000 R09: 0000000000000000
[  557.722720][T12003] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  557.730693][T12003] R13: 0000000000000000 R14: 00007f1384136058 R15: 00007ffc7a626ba8
[  557.738691][T12003]  </TASK>
[  557.752946][T12007] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  557.772725][T12003] ERROR: Out of memory at tomoyo_realpath_from_path.
[  558.881329][T12003] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  558.887648][T12003] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  559.886986][T12003] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  559.893164][T12003] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  559.910303][T12003] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  559.916434][T12003] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  560.153518][T12021] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1648'.
[  561.957966][   T54] Bluetooth: hci0: command 0x0406 tx timeout
[  561.964216][ T5840] Bluetooth: hci5: command 0x0406 tx timeout
[  562.294673][T12031] Bluetooth: hci3: command 0x0406 tx timeout
[  562.715891][T12003] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  562.729286][T12003] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  563.190026][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  563.208306][T12044] mmap: syz.3.1657 (12044): VmData 37597184 exceed data ulimit 8. Update limits or use boot option ignore_rlimit_data.
[  564.002325][T12031] Bluetooth: hci0: command 0x0406 tx timeout
[  564.002336][T11847] Bluetooth: hci5: command 0x0406 tx timeout
[  565.005353][T11847] Bluetooth: hci3: command 0x0406 tx timeout
[  565.011598][T11847] Bluetooth: hci2: command 0x0405 tx timeout
[  565.011595][ T5840] Bluetooth: hci3: Opcode 0x2046 failed: -110
[  565.513865][T12055] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1658'.
[  566.404179][T12066] netlink: 'syz.7.1662': attribute type 4 has an invalid length.
[  566.496158][T12066] netlink: 152 bytes leftover after parsing attributes in process `syz.7.1662'.
[  566.614226][T12069] FAULT_INJECTION: forcing a failure.
[  566.614226][T12069] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  566.668045][T12069] CPU: 0 UID: 0 PID: 12069 Comm: syz.3.1660 Not tainted 6.12.0-rc7-syzkaller-00187-gf868cd251776 #0
[  566.678863][T12069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  566.688915][T12069] Call Trace:
[  566.692189][T12069]  <TASK>
[  566.695112][T12069]  dump_stack_lvl+0x241/0x360
[  566.699805][T12069]  ? __pfx_dump_stack_lvl+0x10/0x10
[  566.705031][T12069]  ? __pfx__printk+0x10/0x10
[  566.709616][T12069]  ? snprintf+0xda/0x120
[  566.713855][T12069]  should_fail_ex+0x3b0/0x4e0
[  566.718543][T12069]  _copy_to_user+0x31/0xb0
[  566.722986][T12069]  simple_read_from_buffer+0xca/0x150
[  566.728374][T12069]  proc_fail_nth_read+0x1e9/0x250
[  566.733416][T12069]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  566.738980][T12069]  ? rw_verify_area+0x55e/0x6f0
[  566.743884][T12069]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  566.749447][T12069]  vfs_read+0x1fc/0xb70
[  566.753623][T12069]  ? fdget_pos+0x24e/0x320
[  566.758051][T12069]  ? __pfx_vfs_read+0x10/0x10
[  566.762809][T12069]  ? __fget_files+0x3f3/0x470
[  566.767482][T12069]  ? fdget_pos+0x24e/0x320
[  566.771908][T12069]  ksys_read+0x183/0x2b0
[  566.776139][T12069]  ? __pfx_ksys_read+0x10/0x10
[  566.780946][T12069]  ? do_syscall_64+0x100/0x230
[  566.785724][T12069]  ? do_syscall_64+0xb6/0x230
[  566.790404][T12069]  do_syscall_64+0xf3/0x230
[  566.794902][T12069]  ? clear_bhb_loop+0x35/0x90
[  566.799573][T12069]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  566.805459][T12069] RIP: 0033:0x7f0b1597d15c
[  566.809869][T12069] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  566.829735][T12069] RSP: 002b:00007f0b16799030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  566.838160][T12069] RAX: ffffffffffffffda RBX: 00007f0b15b35f80 RCX: 00007f0b1597d15c
[  566.846126][T12069] RDX: 000000000000000f RSI: 00007f0b167990a0 RDI: 0000000000000004
[  566.854106][T12069] RBP: 00007f0b16799090 R08: 0000000000000000 R09: 0000000000000000
[  566.862330][T12069] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  566.870296][T12069] R13: 0000000000000000 R14: 00007f0b15b35f80 R15: 00007ffd3bf7d0a8
[  566.878278][T12069]  </TASK>
[  566.933470][T12066] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check.
[  567.537949][T12031] Bluetooth: hci2: command 0x0405 tx timeout
[  567.544041][T12031] Bluetooth: hci3: command 0x0406 tx timeout
[  567.910336][T12089] fuse: Bad value for 'fd'
[  569.512654][T12109] FAULT_INJECTION: forcing a failure.
[  569.512654][T12109] name failslab, interval 1, probability 0, space 0, times 0
[  569.580690][T12109] CPU: 0 UID: 0 PID: 12109 Comm: syz.3.1672 Not tainted 6.12.0-rc7-syzkaller-00187-gf868cd251776 #0
[  569.591503][T12109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  569.601582][T12109] Call Trace:
[  569.604875][T12109]  <TASK>
[  569.607839][T12109]  dump_stack_lvl+0x241/0x360
[  569.612642][T12109]  ? __pfx_dump_stack_lvl+0x10/0x10
[  569.617879][T12109]  ? __pfx__printk+0x10/0x10
[  569.622497][T12109]  ? fs_reclaim_acquire+0x93/0x130
[  569.627631][T12109]  ? __pfx___might_resched+0x10/0x10
[  569.632941][T12109]  ? dynamic_dname+0x141/0x1b0
[  569.637732][T12109]  should_fail_ex+0x3b0/0x4e0
[  569.642445][T12109]  ? tomoyo_encode+0x26f/0x540
[  569.647233][T12109]  should_failslab+0xac/0x100
[  569.651937][T12109]  ? tomoyo_encode+0x26f/0x540
[  569.656721][T12109]  __kmalloc_noprof+0xd8/0x400
[  569.661513][T12109]  tomoyo_encode+0x26f/0x540
[  569.666134][T12109]  ? __pfx_sockfs_dname+0x10/0x10
[  569.671191][T12109]  tomoyo_realpath_from_path+0x59e/0x5e0
[  569.676867][T12109]  tomoyo_path_number_perm+0x23a/0x880
[  569.682363][T12109]  ? tomoyo_path_number_perm+0x208/0x880
[  569.688104][T12109]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  569.694157][T12109]  ? __fget_files+0x29/0x470
[  569.698774][T12109]  ? __fget_files+0x3f3/0x470
[  569.703485][T12109]  security_file_ioctl+0xc6/0x2a0
[  569.708528][T12109]  __se_sys_ioctl+0x47/0x170
[  569.713150][T12109]  do_syscall_64+0xf3/0x230
[  569.717677][T12109]  ? clear_bhb_loop+0x35/0x90
[  569.722374][T12109]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  569.728371][T12109] RIP: 0033:0x7f0b1597e719
[  569.732809][T12109] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  569.752432][T12109] RSP: 002b:00007f0b16799038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  569.760865][T12109] RAX: ffffffffffffffda RBX: 00007f0b15b35f80 RCX: 00007f0b1597e719
[  569.768856][T12109] RDX: 0000000020000300 RSI: 00000000000089f3 RDI: 0000000000000003
[  569.776842][T12109] RBP: 00007f0b16799090 R08: 0000000000000000 R09: 0000000000000000
[  569.784832][T12109] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  569.792831][T12109] R13: 0000000000000000 R14: 00007f0b15b35f80 R15: 00007ffd3bf7d0a8
[  569.800842][T12109]  </TASK>
[  569.845849][T12109] ERROR: Out of memory at tomoyo_realpath_from_path.
[  569.877976][T11014] usb 1-1: new high-speed USB device number 39 using dummy_hcd
[  570.544168][T12121] netlink: 'syz.5.1677': attribute type 5 has an invalid length.
[  570.907870][T11014] usb 1-1: Using ep0 maxpacket: 32
[  570.915080][T11014] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  570.926422][T11014] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  570.949549][T11014] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  570.975969][T11014] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  570.986473][T11014] usb 1-1: config 0 descriptor??
[  570.992343][T12107] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  571.001905][T11014] hub 1-1:0.0: USB hub found
[  571.118388][   T29] kauditd_printk_skb: 17 callbacks suppressed
[  571.118460][   T29] audit: type=1326 audit(1731745126.971:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12129 comm="syz.5.1681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c91d7e719 code=0x7fc00000
[  571.239478][T11014] hub 1-1:0.0: config failed, hub doesn't have any ports! (err -19)
[  571.450807][   T29] audit: type=1326 audit(1731745126.971:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12129 comm="syz.5.1681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7f9c91d7e719 code=0x7fc00000
[  571.633554][   T29] audit: type=1326 audit(1731745126.971:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12129 comm="syz.5.1681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c91d7e719 code=0x7fc00000
[  571.664430][   T29] audit: type=1326 audit(1731745126.971:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12129 comm="syz.5.1681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c91d7e719 code=0x7fc00000
[  571.781002][T11014] hid-generic 0003:046D:C314.0014: item fetching failed at offset 0/1
[  571.786691][   T29] audit: type=1326 audit(1731745126.971:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12129 comm="syz.5.1681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c91d7e719 code=0x7fc00000
[  571.789895][T11014] hid-generic 0003:046D:C314.0014: probe with driver hid-generic failed with error -22
[  571.836369][   T29] audit: type=1326 audit(1731745126.971:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12129 comm="syz.5.1681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c91d7e719 code=0x7fc00000
[  571.864985][   T29] audit: type=1326 audit(1731745126.971:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12129 comm="syz.5.1681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c91d7e719 code=0x7fc00000
[  572.507558][   T29] audit: type=1326 audit(1731745126.971:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12129 comm="syz.5.1681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c91d7e719 code=0x7fc00000
[  572.584173][T11014] usb 1-1: USB disconnect, device number 39
[  572.641900][   T29] audit: type=1326 audit(1731745126.971:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12129 comm="syz.5.1681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c91d7e719 code=0x7fc00000
[  572.673850][   T29] audit: type=1326 audit(1731745126.971:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12129 comm="syz.5.1681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c91d7e719 code=0x7fc00000
[  572.695462][    C1] vkms_vblank_simulate: vblank timer overrun
[  574.169256][T11014] usb 7-1: new high-speed USB device number 33 using dummy_hcd
[  574.186830][T12167] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1687'.
[  574.307891][T11014] usb 7-1: device descriptor read/64, error -71
[  575.007890][T11014] usb 7-1: new high-speed USB device number 34 using dummy_hcd
[  575.227998][ T5926] usb 4-1: new high-speed USB device number 46 using dummy_hcd
[  575.297866][T11014] usb 7-1: device descriptor read/64, error -71
[  575.368049][T12183] xt_addrtype: output interface limitation not valid in PREROUTING and INPUT
[  575.498382][T12184] (unnamed net_device) (uninitialized): option miimon: invalid value (18446744071563247616)
[  575.508619][T12184] (unnamed net_device) (uninitialized): option miimon: allowed values 0 - 2147483647
[  576.253688][T11014] usb usb7-port1: attempt power cycle
[  576.381194][ T5926] usb 4-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  576.390851][ T5926] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  576.399664][ T5926] usb 4-1: Product: syz
[  576.403864][ T5926] usb 4-1: Manufacturer: syz
[  576.427660][ T5926] usb 4-1: SerialNumber: syz
[  576.449495][ T5926] usb 4-1: config 0 descriptor??
[  576.488819][T12198] FAULT_INJECTION: forcing a failure.
[  576.488819][T12198] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  576.590322][T12198] CPU: 0 UID: 0 PID: 12198 Comm: syz.6.1700 Not tainted 6.12.0-rc7-syzkaller-00187-gf868cd251776 #0
[  576.601148][T12198] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  576.611315][T12198] Call Trace:
[  576.614609][T12198]  <TASK>
[  576.617554][T12198]  dump_stack_lvl+0x241/0x360
[  576.622262][T12198]  ? __pfx_dump_stack_lvl+0x10/0x10
[  576.627492][T12198]  ? __pfx__printk+0x10/0x10
[  576.632113][T12198]  ? snprintf+0xda/0x120
[  576.636385][T12198]  should_fail_ex+0x3b0/0x4e0
[  576.641090][T12198]  _copy_to_user+0x31/0xb0
[  576.645527][T12198]  simple_read_from_buffer+0xca/0x150
[  576.650928][T12198]  proc_fail_nth_read+0x1e9/0x250
[  576.655992][T12198]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  576.661566][T12198]  ? rw_verify_area+0x55e/0x6f0
[  576.666447][T12198]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  576.672021][T12198]  vfs_read+0x1fc/0xb70
[  576.676212][T12198]  ? fdget_pos+0x24e/0x320
[  576.680662][T12198]  ? __pfx_vfs_read+0x10/0x10
[  576.685369][T12198]  ? __fget_files+0x3f3/0x470
[  576.690081][T12198]  ? fdget_pos+0x24e/0x320
[  576.694531][T12198]  ksys_read+0x183/0x2b0
[  576.698807][T12198]  ? __pfx_ksys_read+0x10/0x10
[  576.703603][T12198]  ? do_syscall_64+0x100/0x230
[  576.708413][T12198]  ? do_syscall_64+0xb6/0x230
[  576.713132][T12198]  do_syscall_64+0xf3/0x230
[  576.713970][ T5926] usb 4-1: USB disconnect, device number 46
[  576.717649][T12198]  ? clear_bhb_loop+0x35/0x90
[  576.717682][T12198]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  576.717705][T12198] RIP: 0033:0x7f229897d15c
[  576.738606][T12198] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  576.758252][T12198] RSP: 002b:00007f22997a9030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  576.766711][T12198] RAX: ffffffffffffffda RBX: 00007f2298b35f80 RCX: 00007f229897d15c
[  576.774724][T12198] RDX: 000000000000000f RSI: 00007f22997a90a0 RDI: 0000000000000006
[  576.782820][T12198] RBP: 00007f22997a9090 R08: 0000000000000000 R09: 0000000000000000
[  576.790826][T12198] R10: 0000000000034000 R11: 0000000000000246 R12: 0000000000000001
[  576.798832][T12198] R13: 0000000000000000 R14: 00007f2298b35f80 R15: 00007ffd2841cce8
[  576.806852][T12198]  </TASK>
[  577.258185][ T5933] usb 6-1: new high-speed USB device number 40 using dummy_hcd
[  577.459708][ T5933] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xA4, changing to 0x84
[  577.496240][ T5933] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[  577.563333][ T5933] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  577.605987][ T5933] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  577.626848][T12216] FAULT_INJECTION: forcing a failure.
[  577.626848][T12216] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  577.632408][ T5933] usb 6-1: config 0 descriptor??
[  577.668140][T12219] netlink: 'syz.3.1708': attribute type 3 has an invalid length.
[  577.671944][T12216] CPU: 0 UID: 0 PID: 12216 Comm: syz.7.1706 Not tainted 6.12.0-rc7-syzkaller-00187-gf868cd251776 #0
[  577.686669][T12216] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  577.696751][T12216] Call Trace:
[  577.700059][T12216]  <TASK>
[  577.703012][T12216]  dump_stack_lvl+0x241/0x360
[  577.707725][T12216]  ? __pfx_dump_stack_lvl+0x10/0x10
[  577.712953][T12216]  ? __pfx__printk+0x10/0x10
[  577.717575][T12216]  ? __pfx_lock_release+0x10/0x10
[  577.722645][T12216]  should_fail_ex+0x3b0/0x4e0
[  577.727359][T12216]  _copy_from_iter+0x21f/0x1e70
[  577.732243][T12216]  ? __virt_addr_valid+0x183/0x530
[  577.737381][T12216]  ? __pfx_lock_release+0x10/0x10
[  577.742434][T12216]  ? __alloc_skb+0x28f/0x440
[  577.747033][T12216]  ? __pfx__copy_from_iter+0x10/0x10
[  577.752336][T12216]  ? __virt_addr_valid+0x183/0x530
[  577.757456][T12216]  ? __virt_addr_valid+0x183/0x530
[  577.762570][T12216]  ? __virt_addr_valid+0x45f/0x530
[  577.767681][T12216]  ? __check_object_size+0x48e/0x900
[  577.772966][T12216]  netlink_sendmsg+0x73d/0xcb0
[  577.777748][T12216]  ? __pfx_netlink_sendmsg+0x10/0x10
[  577.783059][T12216]  ? __pfx_netlink_sendmsg+0x10/0x10
[  577.788348][T12216]  __sock_sendmsg+0x221/0x270
[  577.793036][T12216]  ____sys_sendmsg+0x52a/0x7e0
[  577.797832][T12216]  ? __pfx_____sys_sendmsg+0x10/0x10
[  577.803151][T12216]  __sys_sendmsg+0x292/0x380
[  577.807757][T12216]  ? __pfx___sys_sendmsg+0x10/0x10
[  577.812895][T12216]  ? __pfx_vfs_write+0x10/0x10
[  577.817685][T12216]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  577.824022][T12216]  ? do_syscall_64+0x100/0x230
[  577.828800][T12216]  ? do_syscall_64+0xb6/0x230
[  577.833840][T12216]  do_syscall_64+0xf3/0x230
[  577.838350][T12216]  ? clear_bhb_loop+0x35/0x90
[  577.843047][T12216]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  577.848940][T12216] RIP: 0033:0x7f1383f7e719
[  577.853352][T12216] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  577.872961][T12216] RSP: 002b:00007f1384e48038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  577.881381][T12216] RAX: ffffffffffffffda RBX: 00007f1384135f80 RCX: 00007f1383f7e719
[  577.889367][T12216] RDX: 0000000004000004 RSI: 0000000020000340 RDI: 0000000000000003
[  577.897341][T12216] RBP: 00007f1384e48090 R08: 0000000000000000 R09: 0000000000000000
[  577.905312][T12216] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  577.913291][T12216] R13: 0000000000000000 R14: 00007f1384135f80 R15: 00007ffc7a626ba8
[  577.921277][T12216]  </TASK>
[  577.955879][ T5933] ath6kl: Failed to submit usb control message: -71
[  577.964069][ T5933] ath6kl: unable to send the bmi data to the device: -71
[  577.975835][ T5933] ath6kl: Unable to send get target info: -71
[  577.992670][ T5933] ath6kl: Failed to init ath6kl core: -71
[  578.146097][ T5933] ath6kl_usb 6-1:0.0: probe with driver ath6kl_usb failed with error -71
[  578.186654][ T5933] usb 6-1: USB disconnect, device number 40
[  580.339934][T12256] FAULT_INJECTION: forcing a failure.
[  580.339934][T12256] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  580.386219][T12256] CPU: 0 UID: 0 PID: 12256 Comm: syz.6.1719 Not tainted 6.12.0-rc7-syzkaller-00187-gf868cd251776 #0
[  580.397311][T12256] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  580.407399][T12256] Call Trace:
[  580.410681][T12256]  <TASK>
[  580.413615][T12256]  dump_stack_lvl+0x241/0x360
[  580.418313][T12256]  ? __pfx_dump_stack_lvl+0x10/0x10
[  580.423515][T12256]  ? __pfx__printk+0x10/0x10
[  580.428109][T12256]  ? snprintf+0xda/0x120
[  580.432355][T12256]  should_fail_ex+0x3b0/0x4e0
[  580.437037][T12256]  _copy_to_user+0x31/0xb0
[  580.441450][T12256]  simple_read_from_buffer+0xca/0x150
[  580.446828][T12256]  proc_fail_nth_read+0x1e9/0x250
[  580.451859][T12256]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  580.457409][T12256]  ? rw_verify_area+0x55e/0x6f0
[  580.462265][T12256]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  580.467828][T12256]  vfs_read+0x1fc/0xb70
[  580.472007][T12256]  ? fdget_pos+0x24e/0x320
[  580.476427][T12256]  ? __pfx_vfs_read+0x10/0x10
[  580.481119][T12256]  ? __fget_files+0x3f3/0x470
[  580.485806][T12256]  ? fdget_pos+0x24e/0x320
[  580.490227][T12256]  ksys_read+0x183/0x2b0
[  580.494473][T12256]  ? __pfx_ksys_read+0x10/0x10
[  580.499240][T12256]  ? do_syscall_64+0x100/0x230
[  580.504011][T12256]  ? do_syscall_64+0xb6/0x230
[  580.508689][T12256]  do_syscall_64+0xf3/0x230
[  580.513193][T12256]  ? clear_bhb_loop+0x35/0x90
[  580.517874][T12256]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  580.523773][T12256] RIP: 0033:0x7f229897d15c
[  580.528188][T12256] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  580.547916][T12256] RSP: 002b:00007f22997a9030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  580.556347][T12256] RAX: ffffffffffffffda RBX: 00007f2298b35f80 RCX: 00007f229897d15c
[  580.564319][T12256] RDX: 000000000000000f RSI: 00007f22997a90a0 RDI: 0000000000000004
[  580.572297][T12256] RBP: 00007f22997a9090 R08: 0000000000000000 R09: 0000000000000000
[  580.580272][T12256] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  580.588245][T12256] R13: 0000000000000000 R14: 00007f2298b35f80 R15: 00007ffd2841cce8
[  580.596225][T12256]  </TASK>
[  580.743064][T12268] xt_TPROXY: Can be used only with -p tcp or -p udp
[  581.275780][T12278] xt_l2tp: missing protocol rule (udp|l2tpip)
[  581.861916][T12285] xt_TPROXY: Can be used only with -p tcp or -p udp
[  581.884497][T12286] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(6)
[  581.891216][T12286] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  581.900974][T12286] vhci_hcd vhci_hcd.0: Device attached
[  581.954311][T12286] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  581.964280][T12286] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  581.973081][T12286] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  581.982365][T12286] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  581.991330][T12286] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  582.003810][T12286] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  582.022979][T12286] vhci_hcd vhci_hcd.0: pdev(7) rhport(7) sockfd(20)
[  582.029608][T12286] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  582.039423][T12286] vhci_hcd vhci_hcd.0: Device attached
[  582.046287][T12289] vhci_hcd: connection closed
[  582.049213][T12287] vhci_hcd: connection closed
[  582.076020][ T7419] vhci_hcd: stop threads
[  582.087892][ T5926] vhci_hcd: vhci_device speed not set
[  582.109869][ T7419] vhci_hcd: release socket
[  582.117289][ T7419] vhci_hcd: disconnect device
[  582.129983][ T7419] vhci_hcd: stop threads
[  582.134298][ T7419] vhci_hcd: release socket
[  582.139219][ T1148] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  582.151442][ T5926] usb 47-1: new full-speed USB device number 2 using vhci_hcd
[  582.159201][ T7419] vhci_hcd: disconnect device
[  582.314741][ T1148] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  582.437520][ T1148] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  582.636236][ T1148] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  583.721994][T12318] xt_TPROXY: Can be used only with -p tcp or -p udp
[  584.206932][ T5919] IPVS: starting estimator thread 0...
[  584.217105][T12327] IPVS: rr: SCTP 127.0.0.1:0 - no destination available
[  584.318388][T12328] IPVS: using max 20 ests per chain, 48000 per kthread
[  585.369325][ T1148] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  585.406487][ T1148] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  585.473404][ T1148] bond0 (unregistering): Released all slaves
[  585.505398][ T1148] bond1 (unregistering): Released all slaves
[  585.557360][T12347] netlink: 'syz.6.1751': attribute type 1 has an invalid length.
[  585.718685][ T1148] tipc: Disabling bearer <udp:s>
[  585.738497][ T1148] tipc: Left network mode
[  586.424212][ T1148] hsr_slave_0: left promiscuous mode
[  586.448028][ T1148] hsr_slave_1: left promiscuous mode
[  586.454091][ T1148] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  586.484084][ T1148] batman_adv: batadv0: Removing interface: batadv_slave_0
[  586.505245][ T1148] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  586.513665][ T1148] batman_adv: batadv0: Removing interface: batadv_slave_1
[  586.537451][ T1148] veth1_macvtap: left promiscuous mode
[  586.547274][ T1148] veth0_macvtap: left promiscuous mode
[  586.553012][ T1148] veth1_vlan: left promiscuous mode
[  586.558487][ T1148] veth0_vlan: left promiscuous mode
[  586.718602][T12365] FAULT_INJECTION: forcing a failure.
[  586.718602][T12365] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  586.760836][T12365] CPU: 0 UID: 0 PID: 12365 Comm: syz.6.1755 Not tainted 6.12.0-rc7-syzkaller-00187-gf868cd251776 #0
[  586.771746][T12365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  586.781830][T12365] Call Trace:
[  586.785142][T12365]  <TASK>
[  586.788097][T12365]  dump_stack_lvl+0x241/0x360
[  586.792812][T12365]  ? __pfx_dump_stack_lvl+0x10/0x10
[  586.798035][T12365]  ? __pfx__printk+0x10/0x10
[  586.802674][T12365]  ? __lock_acquire+0x1384/0x2050
[  586.807822][T12365]  should_fail_ex+0x3b0/0x4e0
[  586.812515][T12365]  prepare_alloc_pages+0x1da/0x5b0
[  586.817647][T12365]  __alloc_pages_noprof+0x16f/0x710
[  586.822869][T12365]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  586.828638][T12365]  alloc_pages_mpol_noprof+0x3e8/0x680
[  586.834134][T12365]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  586.840237][T12365]  ? __pfx_lock_release+0x10/0x10
[  586.845268][T12365]  ? xas_start+0x3cc/0x7b0
[  586.849690][T12365]  folio_alloc_mpol_noprof+0x36/0x50
[  586.854974][T12365]  shmem_alloc_and_add_folio+0x49b/0x13d0
[  586.860709][T12365]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  586.866868][T12365]  ? shmem_allowable_huge_orders+0x1f2/0x3d0
[  586.872857][T12365]  shmem_get_folio_gfp+0x5a9/0x20a0
[  586.878083][T12365]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  586.883727][T12365]  shmem_write_begin+0x17e/0x460
[  586.888670][T12365]  ? __pfx_shmem_write_begin+0x10/0x10
[  586.894135][T12365]  ? fault_in_iov_iter_readable+0x229/0x280
[  586.900030][T12365]  generic_perform_write+0x344/0x6d0
[  586.905322][T12365]  ? __pfx_generic_perform_write+0x10/0x10
[  586.911135][T12365]  ? mnt_put_write_access_file+0xbf/0x100
[  586.916860][T12365]  ? file_update_time+0x3be/0x430
[  586.921893][T12365]  shmem_file_write_iter+0xf9/0x120
[  586.927112][T12365]  aio_write+0x56b/0x7c0
[  586.931374][T12365]  ? __pfx_aio_write+0x10/0x10
[  586.936150][T12365]  ? __might_fault+0xaa/0x120
[  586.940850][T12365]  ? __pfx_lock_release+0x10/0x10
[  586.945913][T12365]  ? __fget_files+0x3f3/0x470
[  586.950611][T12365]  ? __might_fault+0xaa/0x120
[  586.955297][T12365]  io_submit_one+0x8a7/0x18a0
[  586.960012][T12365]  ? __pfx_io_submit_one+0x10/0x10
[  586.965141][T12365]  ? __might_fault+0xaa/0x120
[  586.969827][T12365]  ? __pfx_lock_release+0x10/0x10
[  586.974961][T12365]  ? __might_fault+0xaa/0x120
[  586.979658][T12365]  ? __might_fault+0xc6/0x120
[  586.984335][T12365]  __se_sys_io_submit+0x179/0x2f0
[  586.989376][T12365]  ? __pfx___se_sys_io_submit+0x10/0x10
[  586.994919][T12365]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  587.000906][T12365]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  587.007239][T12365]  ? do_syscall_64+0x100/0x230
[  587.012005][T12365]  ? do_syscall_64+0xb6/0x230
[  587.016689][T12365]  do_syscall_64+0xf3/0x230
[  587.021208][T12365]  ? clear_bhb_loop+0x35/0x90
[  587.025893][T12365]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  587.031790][T12365] RIP: 0033:0x7f229897e719
[  587.036204][T12365] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  587.055808][T12365] RSP: 002b:00007f22997a9038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1
[  587.064224][T12365] RAX: ffffffffffffffda RBX: 00007f2298b35f80 RCX: 00007f229897e719
[  587.072218][T12365] RDX: 0000000020000700 RSI: 000000000000140b RDI: 00007f2299780000
[  587.080202][T12365] RBP: 00007f22997a9090 R08: 0000000000000000 R09: 0000000000000000
[  587.088181][T12365] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  587.096150][T12365] R13: 0000000000000000 R14: 00007f2298b35f80 R15: 00007ffd2841cce8
[  587.104148][T12365]  </TASK>
[  587.278762][ T5926] vhci_hcd: vhci_device speed not set
[  588.838339][ T1148] team0 (unregistering): Port device team_slave_1 removed
[  589.101518][ T1148] team0 (unregistering): Port device team_slave_0 removed
[  589.852083][T12382] ==================================================================
[  589.860287][T12382] BUG: KASAN: slab-use-after-free in move_to_new_folio+0x231/0x1330
[  589.868302][T12382] Read of size 8 at addr ffff888024e07a58 by task syz.7.1757/12382
[  589.876214][T12382] 
[  589.878558][T12382] CPU: 0 UID: 0 PID: 12382 Comm: syz.7.1757 Not tainted 6.12.0-rc7-syzkaller-00187-gf868cd251776 #0
[  589.889338][T12382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  589.899416][T12382] Call Trace:
[  589.902712][T12382]  <TASK>
[  589.905662][T12382]  dump_stack_lvl+0x241/0x360
[  589.910373][T12382]  ? __pfx_dump_stack_lvl+0x10/0x10
[  589.915601][T12382]  ? __pfx__printk+0x10/0x10
[  589.920222][T12382]  ? _printk+0xd5/0x120
[  589.924402][T12382]  ? __virt_addr_valid+0x183/0x530
[  589.929626][T12382]  ? __virt_addr_valid+0x183/0x530
[  589.934763][T12382]  print_report+0x169/0x550
[  589.939293][T12382]  ? __virt_addr_valid+0x183/0x530
[  589.944516][T12382]  ? __virt_addr_valid+0x183/0x530
[  589.949741][T12382]  ? __virt_addr_valid+0x45f/0x530
[  589.954876][T12382]  ? __phys_addr+0xba/0x170
[  589.959413][T12382]  ? move_to_new_folio+0x231/0x1330
[  589.964650][T12382]  kasan_report+0x143/0x180
[  589.969195][T12382]  ? do_raw_spin_unlock+0x13c/0x8b0
[  589.974441][T12382]  ? move_to_new_folio+0x231/0x1330
[  589.979671][T12382]  kasan_check_range+0x282/0x290
[  589.984648][T12382]  move_to_new_folio+0x231/0x1330
[  589.989697][T12382]  ? page_ext_get+0x1d6/0x2a0
[  589.994404][T12382]  ? __pfx_move_to_new_folio+0x10/0x10
[  589.999899][T12382]  ? post_alloc_hook+0x206/0x230
[  590.004862][T12382]  ? compaction_alloc+0x3381/0x3960
[  590.010102][T12382]  ? debug_check_no_obj_freed+0x561/0x580
[  590.015862][T12382]  ? __pfx___might_resched+0x10/0x10
[  590.021184][T12382]  ? __pfx_validate_chain+0x10/0x10
[  590.026414][T12382]  migrate_pages_batch+0x266b/0x36d0
[  590.031731][T12382]  ? __lock_acquire+0x1384/0x2050
[  590.036798][T12382]  ? __pfx_compaction_free+0x10/0x10
[  590.042119][T12382]  ? __pfx_migrate_pages_batch+0x10/0x10
[  590.047772][T12382]  ? __lock_acquire+0x1384/0x2050
[  590.052823][T12382]  ? cgroup_rstat_updated+0x13b/0xc60
[  590.058218][T12382]  ? mark_lock+0x9a/0x360
[  590.062563][T12382]  ? __pfx_compaction_free+0x10/0x10
[  590.067869][T12382]  migrate_pages+0x2062/0x3560
[  590.072658][T12382]  ? __pfx_compaction_free+0x10/0x10
[  590.077977][T12382]  ? __pfx_compaction_alloc+0x10/0x10
[  590.083389][T12382]  ? __pfx_migrate_pages+0x10/0x10
[  590.088527][T12382]  ? isolate_migratepages_block+0x4f2b/0x5820
[  590.094627][T12382]  ? isolate_migratepages_block+0x2031/0x5820
[  590.100725][T12382]  ? __pfx_isolate_migratepages_block+0x10/0x10
[  590.106985][T12382]  ? __pageblock_pfn_to_page+0xd3/0x3c0
[  590.112559][T12382]  ? __pageblock_pfn_to_page+0xd3/0x3c0
[  590.118128][T12382]  compact_zone+0x3404/0x4af0
[  590.122837][T12382]  ? __pfx_try_to_wake_up+0x10/0x10
[  590.128057][T12382]  ? do_raw_spin_unlock+0x13c/0x8b0
[  590.133286][T12382]  ? wake_up_q+0xdc/0x120
[  590.137639][T12382]  ? __pfx_compact_zone+0x10/0x10
[  590.142690][T12382]  ? __lock_acquire+0x1384/0x2050
[  590.147736][T12382]  sysctl_compaction_handler+0x496/0x990
[  590.153477][T12382]  ? __pfx_sysctl_compaction_handler+0x10/0x10
[  590.159668][T12382]  ? __virt_addr_valid+0x183/0x530
[  590.164789][T12382]  ? __virt_addr_valid+0x183/0x530
[  590.169911][T12382]  ? __virt_addr_valid+0x45f/0x530
[  590.175032][T12382]  ? __check_object_size+0x48e/0x900
[  590.180427][T12382]  ? __pfx_sysctl_compaction_handler+0x10/0x10
[  590.186606][T12382]  proc_sys_call_handler+0x550/0x8b0
[  590.191917][T12382]  ? __pfx_proc_sys_call_handler+0x10/0x10
[  590.197756][T12382]  iter_file_splice_write+0xbfa/0x1510
[  590.203293][T12382]  ? __pfx_iter_file_splice_write+0x10/0x10
[  590.209304][T12382]  ? rcu_read_lock_any_held+0xb7/0x160
[  590.214784][T12382]  ? __pfx_iter_file_splice_write+0x10/0x10
[  590.220704][T12382]  direct_splice_actor+0x11b/0x220
[  590.225849][T12382]  splice_direct_to_actor+0x586/0xc80
[  590.231409][T12382]  ? __pfx_direct_splice_actor+0x10/0x10
[  590.237130][T12382]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  590.243196][T12382]  ? __fget_files+0x29/0x470
[  590.247789][T12382]  ? __pfx_lock_release+0x10/0x10
[  590.252865][T12382]  do_splice_direct+0x289/0x3e0
[  590.257715][T12382]  ? __pfx_do_splice_direct+0x10/0x10
[  590.263099][T12382]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  590.269024][T12382]  ? rw_verify_area+0x1c3/0x6f0
[  590.273905][T12382]  do_sendfile+0x561/0xe10
[  590.278326][T12382]  ? __might_fault+0xaa/0x120
[  590.283011][T12382]  ? __pfx_do_sendfile+0x10/0x10
[  590.287970][T12382]  ? __might_fault+0xc6/0x120
[  590.292655][T12382]  __se_sys_sendfile64+0x100/0x1e0
[  590.297789][T12382]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  590.303429][T12382]  ? do_syscall_64+0x100/0x230
[  590.308194][T12382]  ? do_syscall_64+0xb6/0x230
[  590.312878][T12382]  do_syscall_64+0xf3/0x230
[  590.317557][T12382]  ? clear_bhb_loop+0x35/0x90
[  590.322262][T12382]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  590.328171][T12382] RIP: 0033:0x7f1383f7e719
[  590.332598][T12382] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  590.352303][T12382] RSP: 002b:00007f1384e06038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  590.360723][T12382] RAX: ffffffffffffffda RBX: 00007f1384136130 RCX: 00007f1383f7e719
[  590.368694][T12382] RDX: 00000000200000c0 RSI: 0000000000000008 RDI: 0000000000000009
[  590.376658][T12382] RBP: 00007f1383ff175e R08: 0000000000000000 R09: 0000000000000000
[  590.384624][T12382] R10: 0000000000000009 R11: 0000000000000246 R12: 0000000000000000
[  590.392590][T12382] R13: 0000000000000000 R14: 00007f1384136130 R15: 00007ffc7a626ba8
[  590.400574][T12382]  </TASK>
[  590.403586][T12382] 
[  590.405897][T12382] Allocated by task 27:
[  590.410039][T12382]  kasan_save_track+0x3f/0x80
[  590.414725][T12382]  __kasan_slab_alloc+0x66/0x80
[  590.419574][T12382]  kmem_cache_alloc_lru_noprof+0x139/0x2b0
[  590.425371][T12382]  shmem_alloc_inode+0x28/0x40
[  590.430129][T12382]  alloc_inode+0x65/0x1a0
[  590.434457][T12382]  new_inode+0x22/0x1d0
[  590.438807][T12382]  shmem_get_inode+0x34a/0xd70
[  590.443567][T12382]  shmem_mknod+0x5f/0x1e0
[  590.447888][T12382]  vfs_mknod+0x36d/0x3b0
[  590.452123][T12382]  devtmpfs_work_loop+0x963/0x1040
[  590.457224][T12382]  devtmpfsd+0x4c/0x50
[  590.461282][T12382]  kthread+0x2f0/0x390
[  590.465339][T12382]  ret_from_fork+0x4b/0x80
[  590.469841][T12382]  ret_from_fork_asm+0x1a/0x30
[  590.474599][T12382] 
[  590.476911][T12382] Freed by task 5851:
[  590.480875][T12382]  kasan_save_track+0x3f/0x80
[  590.485548][T12382]  kasan_save_free_info+0x40/0x50
[  590.490561][T12382]  __kasan_slab_free+0x59/0x70
[  590.495319][T12382]  kmem_cache_free+0x1a2/0x420
[  590.500079][T12382]  rcu_core+0xaaa/0x17a0
[  590.504326][T12382]  handle_softirqs+0x2c5/0x980
[  590.509101][T12382]  __irq_exit_rcu+0xf4/0x1c0
[  590.513692][T12382]  irq_exit_rcu+0x9/0x30
[  590.517931][T12382]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  590.523641][T12382]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  590.529616][T12382] 
[  590.531930][T12382] Last potentially related work creation:
[  590.537643][T12382]  kasan_save_stack+0x3f/0x60
[  590.542319][T12382]  __kasan_record_aux_stack+0xac/0xc0
[  590.547690][T12382]  call_rcu+0x167/0xa70
[  590.551860][T12382]  evict+0x83c/0x9b0
[  590.555753][T12382]  do_unlinkat+0x512/0x830
[  590.560165][T12382]  __x64_sys_unlink+0x47/0x50
[  590.564840][T12382]  do_syscall_64+0xf3/0x230
[  590.569347][T12382]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  590.575239][T12382] 
[  590.577554][T12382] The buggy address belongs to the object at ffff888024e07590
[  590.577554][T12382]  which belongs to the cache shmem_inode_cache of size 1544
[  590.592209][T12382] The buggy address is located 1224 bytes inside of
[  590.592209][T12382]  freed 1544-byte region [ffff888024e07590, ffff888024e07b98)
[  590.606175][T12382] 
[  590.608496][T12382] The buggy address belongs to the physical page:
[  590.614930][T12382] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x24e00
[  590.623686][T12382] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  590.632178][T12382] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  590.639724][T12382] page_type: f5(slab)
[  590.643698][T12382] raw: 00fff00000000040 ffff888140ab0280 dead000000000122 0000000000000000
[  590.652359][T12382] raw: 0000000000000000 0000000000130013 00000001f5000000 0000000000000000
[  590.660938][T12382] head: 00fff00000000040 ffff888140ab0280 dead000000000122 0000000000000000
[  590.669600][T12382] head: 0000000000000000 0000000000130013 00000001f5000000 0000000000000000
[  590.678266][T12382] head: 00fff00000000003 ffffea0000938001 ffffffffffffffff 0000000000000000
[  590.686928][T12382] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000
[  590.695637][T12382] page dumped because: kasan: bad access detected
[  590.702049][T12382] page_owner tracks the page as allocated
[  590.707762][T12382] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 27, tgid 27 (kdevtmpfs), ts 6404741746, free_ts 0
[  590.727855][T12382]  post_alloc_hook+0x1f3/0x230
[  590.732620][T12382]  get_page_from_freelist+0x363e/0x3790
[  590.738167][T12382]  __alloc_pages_noprof+0x292/0x710
[  590.743359][T12382]  alloc_pages_mpol_noprof+0x3e8/0x680
[  590.748831][T12382]  alloc_slab_page+0x6a/0x140
[  590.753505][T12382]  allocate_slab+0x5a/0x2f0
[  590.758002][T12382]  ___slab_alloc+0xcd1/0x14b0
[  590.762686][T12382]  __slab_alloc+0x58/0xa0
[  590.767009][T12382]  kmem_cache_alloc_lru_noprof+0x1c5/0x2b0
[  590.772816][T12382]  shmem_alloc_inode+0x28/0x40
[  590.777580][T12382]  alloc_inode+0x65/0x1a0
[  590.781906][T12382]  new_inode+0x22/0x1d0
[  590.786055][T12382]  shmem_get_inode+0x34a/0xd70
[  590.790821][T12382]  shmem_mknod+0x5f/0x1e0
[  590.795146][T12382]  vfs_mknod+0x36d/0x3b0
[  590.799390][T12382]  devtmpfs_work_loop+0x963/0x1040
[  590.804498][T12382] page_owner free stack trace missing
[  590.809869][T12382] 
[  590.812185][T12382] Memory state around the buggy address:
[  590.817811][T12382]  ffff888024e07900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  590.825870][T12382]  ffff888024e07980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  590.833940][T12382] >ffff888024e07a00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  590.841992][T12382]                                                     ^
[  590.848918][T12382]  ffff888024e07a80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  590.856967][T12382]  ffff888024e07b00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  590.865019][T12382] ==================================================================
[  590.876457][T12382] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  590.883678][T12382] CPU: 0 UID: 0 PID: 12382 Comm: syz.7.1757 Not tainted 6.12.0-rc7-syzkaller-00187-gf868cd251776 #0
[  590.894451][T12382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  590.904515][T12382] Call Trace:
[  590.907824][T12382]  <TASK>
[  590.910770][T12382]  dump_stack_lvl+0x241/0x360
[  590.915476][T12382]  ? __pfx_dump_stack_lvl+0x10/0x10
[  590.920689][T12382]  ? __pfx__printk+0x10/0x10
[  590.925290][T12382]  ? preempt_schedule+0xe1/0xf0
[  590.930160][T12382]  ? vscnprintf+0x5d/0x90
[  590.934588][T12382]  panic+0x349/0x880
[  590.938506][T12382]  ? check_panic_on_warn+0x21/0xb0
[  590.943627][T12382]  ? __pfx_panic+0x10/0x10
[  590.948067][T12382]  ? _raw_spin_unlock_irqrestore+0x130/0x140
[  590.954062][T12382]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  590.960401][T12382]  ? print_report+0x502/0x550
[  590.965100][T12382]  check_panic_on_warn+0x86/0xb0
[  590.970048][T12382]  ? move_to_new_folio+0x231/0x1330
[  590.975256][T12382]  end_report+0x77/0x160
[  590.979603][T12382]  kasan_report+0x154/0x180
[  590.984121][T12382]  ? do_raw_spin_unlock+0x13c/0x8b0
[  590.989347][T12382]  ? move_to_new_folio+0x231/0x1330
[  590.994571][T12382]  kasan_check_range+0x282/0x290
[  590.999538][T12382]  move_to_new_folio+0x231/0x1330
[  591.004617][T12382]  ? page_ext_get+0x1d6/0x2a0
[  591.009317][T12382]  ? __pfx_move_to_new_folio+0x10/0x10
[  591.014888][T12382]  ? post_alloc_hook+0x206/0x230
[  591.019847][T12382]  ? compaction_alloc+0x3381/0x3960
[  591.025064][T12382]  ? debug_check_no_obj_freed+0x561/0x580
[  591.030814][T12382]  ? __pfx___might_resched+0x10/0x10
[  591.036141][T12382]  ? __pfx_validate_chain+0x10/0x10
[  591.041377][T12382]  migrate_pages_batch+0x266b/0x36d0
[  591.046696][T12382]  ? __lock_acquire+0x1384/0x2050
[  591.051762][T12382]  ? __pfx_compaction_free+0x10/0x10
[  591.057074][T12382]  ? __pfx_migrate_pages_batch+0x10/0x10
[  591.062725][T12382]  ? __lock_acquire+0x1384/0x2050
[  591.067771][T12382]  ? cgroup_rstat_updated+0x13b/0xc60
[  591.073159][T12382]  ? mark_lock+0x9a/0x360
[  591.077501][T12382]  ? __pfx_compaction_free+0x10/0x10
[  591.082807][T12382]  migrate_pages+0x2062/0x3560
[  591.087593][T12382]  ? __pfx_compaction_free+0x10/0x10
[  591.092910][T12382]  ? __pfx_compaction_alloc+0x10/0x10
[  591.098304][T12382]  ? __pfx_migrate_pages+0x10/0x10
[  591.103425][T12382]  ? isolate_migratepages_block+0x4f2b/0x5820
[  591.109518][T12382]  ? isolate_migratepages_block+0x2031/0x5820
[  591.115610][T12382]  ? __pfx_isolate_migratepages_block+0x10/0x10
[  591.121873][T12382]  ? __pageblock_pfn_to_page+0xd3/0x3c0
[  591.127432][T12382]  ? __pageblock_pfn_to_page+0xd3/0x3c0
[  591.133029][T12382]  compact_zone+0x3404/0x4af0
[  591.137731][T12382]  ? __pfx_try_to_wake_up+0x10/0x10
[  591.142944][T12382]  ? do_raw_spin_unlock+0x13c/0x8b0
[  591.148165][T12382]  ? wake_up_q+0xdc/0x120
[  591.152514][T12382]  ? __pfx_compact_zone+0x10/0x10
[  591.157554][T12382]  ? __lock_acquire+0x1384/0x2050
[  591.162612][T12382]  sysctl_compaction_handler+0x496/0x990
[  591.168280][T12382]  ? __pfx_sysctl_compaction_handler+0x10/0x10
[  591.174467][T12382]  ? __virt_addr_valid+0x183/0x530
[  591.179590][T12382]  ? __virt_addr_valid+0x183/0x530
[  591.184712][T12382]  ? __virt_addr_valid+0x45f/0x530
[  591.189831][T12382]  ? __check_object_size+0x48e/0x900
[  591.195132][T12382]  ? __pfx_sysctl_compaction_handler+0x10/0x10
[  591.201306][T12382]  proc_sys_call_handler+0x550/0x8b0
[  591.206617][T12382]  ? __pfx_proc_sys_call_handler+0x10/0x10
[  591.212444][T12382]  iter_file_splice_write+0xbfa/0x1510
[  591.217942][T12382]  ? __pfx_iter_file_splice_write+0x10/0x10
[  591.223864][T12382]  ? rcu_read_lock_any_held+0xb7/0x160
[  591.229360][T12382]  ? __pfx_iter_file_splice_write+0x10/0x10
[  591.235280][T12382]  direct_splice_actor+0x11b/0x220
[  591.240421][T12382]  splice_direct_to_actor+0x586/0xc80
[  591.245823][T12382]  ? __pfx_direct_splice_actor+0x10/0x10
[  591.251491][T12382]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  591.257412][T12382]  ? __fget_files+0x29/0x470
[  591.262030][T12382]  ? __pfx_lock_release+0x10/0x10
[  591.267080][T12382]  do_splice_direct+0x289/0x3e0
[  591.271955][T12382]  ? __pfx_do_splice_direct+0x10/0x10
[  591.277340][T12382]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  591.283255][T12382]  ? rw_verify_area+0x1c3/0x6f0
[  591.288126][T12382]  do_sendfile+0x561/0xe10
[  591.292555][T12382]  ? __might_fault+0xaa/0x120
[  591.297264][T12382]  ? __pfx_do_sendfile+0x10/0x10
[  591.302213][T12382]  ? __might_fault+0xc6/0x120
[  591.306909][T12382]  __se_sys_sendfile64+0x100/0x1e0
[  591.312033][T12382]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  591.317695][T12382]  ? do_syscall_64+0x100/0x230
[  591.322484][T12382]  ? do_syscall_64+0xb6/0x230
[  591.327194][T12382]  do_syscall_64+0xf3/0x230
[  591.331718][T12382]  ? clear_bhb_loop+0x35/0x90
[  591.336419][T12382]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  591.342333][T12382] RIP: 0033:0x7f1383f7e719
[  591.346795][T12382] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  591.366423][T12382] RSP: 002b:00007f1384e06038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  591.374864][T12382] RAX: ffffffffffffffda RBX: 00007f1384136130 RCX: 00007f1383f7e719
[  591.382850][T12382] RDX: 00000000200000c0 RSI: 0000000000000008 RDI: 0000000000000009
[  591.390840][T12382] RBP: 00007f1383ff175e R08: 0000000000000000 R09: 0000000000000000
[  591.398825][T12382] R10: 0000000000000009 R11: 0000000000000246 R12: 0000000000000000
[  591.406805][T12382] R13: 0000000000000000 R14: 00007f1384136130 R15: 00007ffc7a626ba8
[  591.414803][T12382]  </TASK>
[  591.418194][T12382] Kernel Offset: disabled
[  591.422517][T12382] Rebooting in 86400 seconds..