last executing test programs:

5m44.279836655s ago: executing program 0 (id=1148):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x1ffffffffffffe12, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000980)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$PTP_PEROUT_REQUEST(r5, 0x40383d03, &(0x7f0000000180)={{0x4, 0x4}, {0x0, 0x7}, 0xf, 0x1})
r6 = dup(r5)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000100)={'wg0\x00', &(0x7f0000000000)=@ethtool_drvinfo={0x3, "063395a6c0e66d0b528419c28e32d8d8b9f676f1fa43584b9c92c1ea9be3166b", "04c9f1271844f0cadb63b99cef040fb5043a1a2fc878373f00", "b45a66ed760dd888360268e34af15c8c4215dbc5d41495db312c17ac4ac28ebc", "654996b85dd87cfa810c4993e7995306cf5804fa99bb4160616215619f92c566", "5e4d6000000080000000000000000000000200", "d9010dd21f106bfa86eec373"}})
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000880)={r6, &(0x7f00000007c0)="e2819d2f5f90c3a09e3578a08a188790a68c7f6cd282c61696f9ccc94bd52f83838baa8bf795002b7c2c666de7c308e00ded3fd658342aa41dabc10a7ffef4b8ad503efdb6acea6d88b5b985716a66af31bcbd31d3d61a7a4c28b27a717f08ddcb2435211682892683afd6ec70e1e684a4f6d8db4fd8076486c6e5044d9b501571428413f7b6024e8edba8a8aca0fa0ea721cb0fd4b8eac0d325b74a", 0x0, 0x3}, 0x20)
ioctl$PTP_EXTTS_REQUEST2(r6, 0x40603d07, &(0x7f0000000040))
sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)={{0x14}, [@NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x5}], {0x14, 0x10}}, 0x3c}}, 0x0)

5m41.066561224s ago: executing program 0 (id=1161):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000d, 0x4008031, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x10, 0x3, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_open_dev$media(&(0x7f0000000180), 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r0, 0x3000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$unix(r4, &(0x7f0000000a80)=[{{&(0x7f0000000900)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000a40), 0x0, 0x0, 0x5, 0xc1}}], 0x1, 0x28008041)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
set_mempolicy(0x0, 0x0, 0x0)
socket(0x0, 0x0, 0xfa)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff0000"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, 0x0, 0x0)
r5 = socket(0xa, 0x40000000002, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r5, 0x0, 0x80, &(0x7f0000000280)=@nat={'nat\x00', 0x19, 0x2, 0x208, [0x20000600, 0x0, 0x0, 0x20000630, 0x20000660], 0x0, 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0200000005000000000000000000766574683098c76f5f7465616d00000064756d6d79300000000000000000000064756d0004300000000000000000000073797a6b616c6c8279a7e00000000000ffffffffffff000000000000ffffffff7fff00000000000000087000000070000000a000000072656469726563740000000000000000000000000000000000000000000000000800000000000000ffffffff000000000b00000000000000000073797a6b616c6c65723100000000000067726574617030000000000000000000766c616e30000000000000000000000064756d6d7930000000000000000000000180c2000000000000000000aaaaaaaaaabb00000000000000007000000070000000a8000000736e6174000000000000000000000000000000000000000001b700000000000010000000000000000000000000000000ffffffff00000000"]}, 0x280)
r6 = socket(0xa, 0x40000000002, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r6, 0x0, 0x80, &(0x7f0000000880)=@nat={'nat\x00', 0x19, 0x2, 0x348, [0x20000280, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x2, 0x0, &(0x7f0000000ac0)=ANY=[@ANYBLOB="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"]}, 0x3c0)
setsockopt$EBT_SO_SET_ENTRIES(r5, 0x0, 0x80, &(0x7f0000000880)=@nat={'nat\x00', 0x19, 0x2, 0x348, [0x20000280, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x2, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x3c0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[], 0x74}, 0x1, 0x0, 0x0, 0x80}, 0x0)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000040)="1400000038000b63d25a80648c2594f90124fc60", 0xfffffffffffffff1}], 0x1}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x88fd1570936f102a}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB="280000006801d71133ca83c037cc00020028bd7000fbdbdf250000e1ff01000000100008800c0001"], 0x28}, 0x1, 0x0, 0x0, 0x800}, 0x48000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)

5m36.02929055s ago: executing program 0 (id=1174):
r0 = socket$igmp(0x2, 0x3, 0x2)
unshare(0xc000400)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x4040051)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000480)=@security={'security\x00', 0xe, 0x4, 0x33c, 0xffffffff, 0x1c0, 0xe4, 0xe4, 0xffffffff, 0xffffffff, 0x2d4, 0x2d4, 0x2d4, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x0, 0x70, 0xb8}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x9, 'syz0\x00', {0x8}}}}, {{@uncond, 0x0, 0x70, 0xdc}, @common=@unspec=@NFLOG={0x6c, 'NFLOG\x00', 0x0, {0x8, 0x8, 0xd, 0x1, 0x0, "b71618beb33d68b88ff72c6c41b00d861d614946b2cc8b94e2914d580ddb9e042f40e51da5273378c5045d19f71a5d4e2a605a284004a3909d1f025f2813f5f1"}}}, {{@ip={@empty, @broadcast, 0xffffffff, 0xff, 'pim6reg0\x00', 'ip_vti0\x00', {}, {}, 0x2e, 0x0, 0x10}, 0x0, 0xb4, 0x114, 0x0, {}, [@common=@unspec=@nfacct={{0x44}, {'syz0\x00', 0x10}}]}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x0, [0x0, 0x4, 0x0, 0x6, 0x1, 0x2], 0x5, 0x2}, {0x1, [0x0, 0x5, 0x1, 0x7, 0x5, 0x2], 0x6, 0x5}}}}], {{'\x00', 0x0, 0x70, 0x94}, {0x24}}}}, 0x398)

5m35.898221825s ago: executing program 0 (id=1175):
bind$inet(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(0x0, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000040)='./file0/../file0/../file0\x00', &(0x7f0000000000)='hugetlbfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000000)=0x15)
ioctl$KDFONTOP_GET(0xffffffffffffffff, 0x560f, &(0x7f0000000000)={0x1, 0x1, 0x1d, 0x1a, 0x1, 0x0})
ioctl$TCFLSH(r1, 0x40384708, 0x20000000)
creat(&(0x7f0000000080)='./file0\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
acct(&(0x7f00000001c0)='./file0\x00')
openat$snapshot(0xffffffffffffff9c, 0x0, 0x2001, 0x0)
r2 = syz_io_uring_setup(0x10d, &(0x7f0000000380)={0x0, 0x0, 0x80}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r2, 0x47f9, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)

5m35.526850548s ago: executing program 0 (id=1177):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff})
r1 = gettid()
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
r2 = syz_open_dev$radio(&(0x7f0000000000), 0x2, 0x2)
r3 = epoll_create(0x1)
r4 = dup3(r2, r3, 0x0)
read$FUSE(r4, &(0x7f0000000040)={0x2020}, 0x2020)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x1, 0x5, 0x9fd, 0x84, 0x105, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0xffffffffffffffff, 0x0, &(0x7f00000000c0), &(0x7f0000000240), 0x800, r5}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x19, &(0x7f0000000800)={0x0, &(0x7f0000000840)=""/95, &(0x7f0000002100)="efa3ece3bd4999da743fd40b659f07f97cae4547c6c1374b2a40eddfa60adeb98a12932d2e08810a71de0e5c8a3fd72390c0f45ef8fc84433a8ae5c7d51b180b1926b2027dd2c16734d98ff058808c96a74d7729a8e71ae46e9c7ea9412dd0178396f07fdcb6ce7a7545f0d5e9edd58ee8cc8a7ca806a7c7292e4a2316b197e0a8b966007733b3b0c478f95d9df89ba546f55b4e326d4cc9471e42585a09d6bc0312ef8795c99351b02fedf06100000000000000000000007de50000", &(0x7f00000021c0)="1f9f27b3424d884ad7b6524a153406ddf08a928ba11b8cf55d56d081b42b34dec0372185341122cec23f47b836d4003a5cf66399b5f5a2b1abf9cb90cdc3d1bbf97c2684c8afcbe0a1333ff0c3490bde7ba913fc125c74267597d8ffd3ff35b64ea5f48dd9d4ebe245deb63f8f78befd6c1be9a3e37070aa4ff095c888", 0x6c, r5, 0x4}, 0x38)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r6 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r6, &(0x7f00000001c0)={0x18, 0x0, {0x9, @multicast, 'vxcan1\x00'}}, 0x1e)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r7 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGPROP(r7, 0x40047438, &(0x7f0000000180)=""/246)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000000), 0x101c02, 0x0)
pwritev(r0, &(0x7f0000000180)=[{&(0x7f0000000080)="845fbf5c0eebe70c5f36f9966436431e0b0be71bf27d775b", 0xfffffffffffffd62}, {&(0x7f0000000400)="f7217f92fb94ce540570732e484c3f676ad3ef3f763b9a0bf08fb6edc34cd834f80381939bf7fdf6b6", 0x29}], 0x0, 0x0, 0x0)
r8 = dup(r7)
read$dsp(r8, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READ_FIXED={0x4, 0x1})
r9 = memfd_secret(0x0)
r10 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
r11 = fcntl$dupfd(r10, 0x0, r9)
ioctl$SCSI_IOCTL_GET_PCI(r11, 0x2284, &(0x7f0000000000))
r12 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r12, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB="400000000000a9321665b0101b71000000000000", @ANYRES32=0x0, @ANYBLOB="a5fdad8800000000140012800b0001006272696467650000040002800a000100aaaaaaaaaabb0000"], 0x40}}, 0x4000000)
close_range(r0, 0xffffffffffffffff, 0x0)
dup(r0)

5m33.372741703s ago: executing program 0 (id=1185):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000240)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg$alg(r1, &(0x7f0000000f00)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=[@assoc={0x18, 0x117, 0x2}], 0xf}], 0x49249249249261c, 0x0)
r2 = socket$igmp(0x2, 0x3, 0x2)
unshare(0xc000400)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
getsockopt$IP_VS_SO_GET_DAEMON(r3, 0x0, 0x487, &(0x7f0000000040), &(0x7f0000000080)=0x30)
getsockopt(r3, 0x0, 0x0, 0x0, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x4040051)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000480)=@security={'security\x00', 0xe, 0x4, 0x33c, 0xffffffff, 0x1c0, 0xe4, 0xe4, 0xffffffff, 0xffffffff, 0x2d4, 0x2d4, 0x2d4, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x0, 0x70, 0xb8}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x9, 'syz0\x00', {0x8}}}}, {{@uncond, 0x0, 0x70, 0xdc}, @common=@unspec=@NFLOG={0x6c, 'NFLOG\x00', 0x0, {0x8, 0x8, 0xd, 0x1, 0x0, "b71618beb33d68b88ff72c6c40b00d861d614946b2cc8b94e2914d580ddb9e042f40e51da5273378c5045d19f71a5d4e2a605a284004a3909d1f025f2813f5f1"}}}, {{@ip={@empty, @broadcast, 0xffffffff, 0xff, 'pim6reg0\x00', 'ip_vti0\x00', {}, {}, 0x2e, 0x0, 0x10}, 0x0, 0xb4, 0x114, 0x0, {}, [@common=@unspec=@nfacct={{0x44}, {'syz0\x00', 0x10}}]}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x0, [0x0, 0x4, 0x0, 0x6, 0x1, 0x2], 0x5, 0x2}, {0x1, [0x0, 0x5, 0x1, 0x7, 0x5, 0x2], 0x6, 0x5}}}}], {{'\x00', 0x0, 0x70, 0x94}, {0x24}}}}, 0x398)

5m32.931204241s ago: executing program 32 (id=1185):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000240)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg$alg(r1, &(0x7f0000000f00)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=[@assoc={0x18, 0x117, 0x2}], 0xf}], 0x49249249249261c, 0x0)
r2 = socket$igmp(0x2, 0x3, 0x2)
unshare(0xc000400)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
getsockopt$IP_VS_SO_GET_DAEMON(r3, 0x0, 0x487, &(0x7f0000000040), &(0x7f0000000080)=0x30)
getsockopt(r3, 0x0, 0x0, 0x0, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x4040051)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000480)=@security={'security\x00', 0xe, 0x4, 0x33c, 0xffffffff, 0x1c0, 0xe4, 0xe4, 0xffffffff, 0xffffffff, 0x2d4, 0x2d4, 0x2d4, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x0, 0x70, 0xb8}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x9, 'syz0\x00', {0x8}}}}, {{@uncond, 0x0, 0x70, 0xdc}, @common=@unspec=@NFLOG={0x6c, 'NFLOG\x00', 0x0, {0x8, 0x8, 0xd, 0x1, 0x0, "b71618beb33d68b88ff72c6c40b00d861d614946b2cc8b94e2914d580ddb9e042f40e51da5273378c5045d19f71a5d4e2a605a284004a3909d1f025f2813f5f1"}}}, {{@ip={@empty, @broadcast, 0xffffffff, 0xff, 'pim6reg0\x00', 'ip_vti0\x00', {}, {}, 0x2e, 0x0, 0x10}, 0x0, 0xb4, 0x114, 0x0, {}, [@common=@unspec=@nfacct={{0x44}, {'syz0\x00', 0x10}}]}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x0, [0x0, 0x4, 0x0, 0x6, 0x1, 0x2], 0x5, 0x2}, {0x1, [0x0, 0x5, 0x1, 0x7, 0x5, 0x2], 0x6, 0x5}}}}], {{'\x00', 0x0, 0x70, 0x94}, {0x24}}}}, 0x398)

2m26.650036321s ago: executing program 2 (id=1767):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="60000000100001040100"/20, @ANYRES32=0x0, @ANYBLOB="7b130000000000003800128008000100677470002c000280080001", @ANYRES32, @ANYBLOB="08000200", @ANYRES32, @ANYBLOB], 0x60}}, 0x0)
r0 = socket(0xa, 0x2, 0x0)
getsockopt$bt_hci(r0, 0x29, 0x1, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008a}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
epoll_create(0x208000)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000340), 0xc901, 0x0)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(0xffffffffffffffff, 0x1, 0x0, 0x0)
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
add_key(&(0x7f0000000000)='ceph\x00', 0x0, &(0x7f0000000840), 0x0, 0xffffffffffffffff)
getsockopt$inet_pktinfo(r2, 0x0, 0x8, 0x0, &(0x7f0000000040))
r3 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r3, 0x4601, &(0x7f0000000100)={0x400, 0xf0, 0x3e, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x16, 0x0, 0x0, 0x5})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000100)={'wlan1\x00'})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan0\x00'})

2m25.777235872s ago: executing program 2 (id=1771):
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r0 = syz_open_dev$vcsu(&(0x7f0000000080), 0x7, 0x101001)
fcntl$setownex(r0, 0xf, &(0x7f0000000100)={0x0, 0xffffffffffffffff})
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x4)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = socket$key(0xf, 0x3, 0x2)
recvmmsg(r2, &(0x7f0000000440), 0x6f5, 0x2, &(0x7f0000000480)={0x77359400})
setsockopt$sock_int(r2, 0x1, 0x4b, &(0x7f0000000040)=0xfd87, 0x4)
sendmsg$key(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="0216000002"], 0x10}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/uevent_helper', 0x202, 0x0)

2m24.989153796s ago: executing program 2 (id=1774):
close(0xffffffffffffffff)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, 0x0)
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000080)=0xb0000)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="180000009fff514a000000003a810000850000000700000085000000d000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x42, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb863, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='contention_end\x00', r1}, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000000)={0x44, r2, 0x801, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_KEY={0x28, 0x50, 0x0, 0x1, [@NL80211_KEY_DATA_WEP104={0x11, 0x1, "4abee339084eeef16f162471f4"}, @NL80211_KEY_IDX={0x5, 0x2, 0x6}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac0d}]}]}, 0x44}}, 0x0)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000000)={@my=0x1})
ioctl$IOCTL_VMCI_QUEUEPAIR_SETVA(r0, 0x7a4, &(0x7f0000000040)={{@my=0x1}})
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000180))
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
sched_rr_get_interval(r4, &(0x7f0000000240))
prlimit64(r4, 0x3, &(0x7f0000000100)={0x4e691c6f, 0xd}, &(0x7f00000002c0))
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0x3)
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGPROP(r5, 0x40047438, &(0x7f0000000180)=""/246)
close(r3)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r5, 0x40047435, &(0x7f0000000680)={0x0, 0x0, "23154184c1daeba3f83aedcf7834d50b28b058e3a78d27464a8502351ec9c6eeb35b9856286457373539b9ba89a4a3094fe646a67463566ccaa7e4ffb30793c810bcbb036cf62e15b2e76fae94574836f89eec17876863a696d4d6b6d8f564e5ea69629b86b03651059aed2dfa2440ed96851780e91b75d1b8dbae539d185c354b94ab31c98c6626314f4b284a8c7fee7f07eb6d4069448159194fd9aba40d797dbe48de87ac11de03b68a9f433a4304022af30b8c1ce0e6c879f66d80dbb1c3962eff3d68ff9ad94bc96eded7e6f1e8713420a48f661fc4a6ca0198598c837911cde43a967fa57f15203e60c44b79ec141fa6723557eeabbc674eab6f231054", "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"})
syz_usb_control_io(0xffffffffffffffff, 0x0, &(0x7f0000000d00)={0x84, &(0x7f0000000000)={0x0, 0x9}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

2m23.88120707s ago: executing program 2 (id=1777):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_int(r0, 0x0, 0x7, &(0x7f0000000000)=0x714, 0x4)
syz_emit_ethernet(0x52, &(0x7f0000000100)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaa0008004c0000440000000000019078ac1e0001ac1414bb441c0e01b814140000000000e000000200000000ac1414aa000000000d00907800"/82], 0x0)
r1 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, 0x0, 0x0)
setsockopt$sock_int(r1, 0x1, 0x28, &(0x7f0000000040)=0x8004, 0x4)
syz_emit_ethernet(0x83, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030086dd601b8b97004d88c19edace00000000000000002100000002ff02000000000000000000000000000104004e20004d13"], 0x0)
recvmmsg(r1, &(0x7f0000000080)=[{{0x0, 0x0, 0x0}, 0x5}], 0x40002ff, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r3}, 0x10)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001180)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r4, 0x18000000000002a0, 0xfe, 0x60000000, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000}, 0x2c)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @link_local})
close(0xffffffffffffffff)
r6 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmmsg$inet6(r6, &(0x7f0000001800)=[{{&(0x7f0000000000)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c, 0x0}}], 0x1, 0x0)

2m22.347170381s ago: executing program 2 (id=1783):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
r1 = socket$inet6(0xa, 0x3, 0x7)
connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendmmsg(r1, &(0x7f0000000480), 0x2e9, 0xf5ffffff)

2m21.02885032s ago: executing program 2 (id=1784):
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r0, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x0, 0x0, 0x0, @multicast}, 0x10)
sendmmsg(r0, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
ioperm(0x0, 0x5, 0x4000000000000020)
rt_sigqueueinfo(0x0, 0x2d, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="2a8b1a0200000016ffffff010200048000000000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0x10, &(0x7f00000008c0)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b704000000000000850000001c00000095"], &(0x7f0000000000)='syzkaller\x00', 0xaa7e53d0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000001bc0)={r2, 0x0, 0x138, 0x4c, &(0x7f0000001cc0)="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", &(0x7f0000001c40)=""/76, 0x4000, 0x0, 0x47, 0x50, &(0x7f0000001ac0)="9c01bd6f9a6028c80d7364240fd78867d9d62eca43c565f2c5ac65dd4a0fadceb6c65dcb07f2421e69087e0f17b4eb709e4805f2722709c46bef17c4cb9aed9fb1c342179ea349", &(0x7f0000001a40)="408fd0050dc7945b483103067eca9bd26ffbe35abf0f88a103f6893dc2b1d1cdc2195d4ae89abc04ff5fe5d2466892c81015df835a7d47be4f852161bc4015e7564b08584290fe1762f943a653008ac5", 0x1, 0x0, 0x13}, 0x22)
openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x22002, 0x0)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000040)={0xffffffffffffffff, &(0x7f0000000100)='H', 0x0}, 0x20)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r3, &(0x7f0000000100), 0x6)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000240)={'geneve0\x00', &(0x7f0000000540)=@ethtool_coalesce={0x7, 0x0, 0x0, 0xfffffffc, 0x2, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0xffffffff}})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
setrlimit(0x8, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$rds(0x15, 0x5, 0x0)
r5 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$FUSE_NOTIFY_RETRIEVE(r5, &(0x7f0000000200)={0x30}, 0x30)
socket$unix(0x1, 0x1, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140))
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$alg(0x26, 0x5, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x3)

2m5.763228062s ago: executing program 33 (id=1784):
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r0, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x0, 0x0, 0x0, @multicast}, 0x10)
sendmmsg(r0, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
ioperm(0x0, 0x5, 0x4000000000000020)
rt_sigqueueinfo(0x0, 0x2d, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="2a8b1a0200000016ffffff010200048000000000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0x10, &(0x7f00000008c0)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b704000000000000850000001c00000095"], &(0x7f0000000000)='syzkaller\x00', 0xaa7e53d0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000001bc0)={r2, 0x0, 0x138, 0x4c, &(0x7f0000001cc0)="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", &(0x7f0000001c40)=""/76, 0x4000, 0x0, 0x47, 0x50, &(0x7f0000001ac0)="9c01bd6f9a6028c80d7364240fd78867d9d62eca43c565f2c5ac65dd4a0fadceb6c65dcb07f2421e69087e0f17b4eb709e4805f2722709c46bef17c4cb9aed9fb1c342179ea349", &(0x7f0000001a40)="408fd0050dc7945b483103067eca9bd26ffbe35abf0f88a103f6893dc2b1d1cdc2195d4ae89abc04ff5fe5d2466892c81015df835a7d47be4f852161bc4015e7564b08584290fe1762f943a653008ac5", 0x1, 0x0, 0x13}, 0x22)
openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x22002, 0x0)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000040)={0xffffffffffffffff, &(0x7f0000000100)='H', 0x0}, 0x20)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r3, &(0x7f0000000100), 0x6)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000240)={'geneve0\x00', &(0x7f0000000540)=@ethtool_coalesce={0x7, 0x0, 0x0, 0xfffffffc, 0x2, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0xffffffff}})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
setrlimit(0x8, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$rds(0x15, 0x5, 0x0)
r5 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$FUSE_NOTIFY_RETRIEVE(r5, &(0x7f0000000200)={0x30}, 0x30)
socket$unix(0x1, 0x1, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140))
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$alg(0x26, 0x5, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x3)

12.882621897s ago: executing program 6 (id=2118):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x1, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
r2 = socket$igmp6(0xa, 0x3, 0x2)
ioctl$F2FS_IOC_MOVE_RANGE(r2, 0x89e0, &(0x7f00000003c0)={0xffffffffffffffff, 0x7})
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r3 = bpf$LINK_GET_FD_BY_ID(0x1e, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000230000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb7020000080000dfb703000000000000850000006d00000095", @ANYRESOCT=r3], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000007c0)={r4}, 0xc)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = openat$cgroup_freezer_state(r5, &(0x7f0000000140), 0x2, 0x0)
write$cgroup_freezer_state(r6, &(0x7f0000000400)='FROZEN\x00', 0x7)

9.072475244s ago: executing program 5 (id=2127):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x88)
lseek(r0, 0x0, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000040)={&(0x7f0000003580)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [@NFT_MSG_NEWSETELEM={0x2c68, 0xc, 0xa, 0x5, 0x0, 0x0, {0x1, 0x0, 0x7}, [@NFTA_SET_ELEM_LIST_ELEMENTS={0x38c, 0x3, 0x0, 0x1, [{0x384, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x8000000000000001}, @NFTA_SET_ELEM_DATA={0x150, 0x2, 0x0, 0x1, [@NFTA_DATA_VALUE={0x7f, 0x1, "ff0878658a25caf430040a0ced02774667cb3029e6612312cb0b11d5618224a613a85fdb1d04eccd356f0b2d5d8cad201a89ac2cf7a96a5db92d39942c5a36b1b8aa879d18b3ace8454e581d62addd7578d168b6c4fd0bda7b589f729025492de3bb6c35676d86b0cf723cf638e8ef1113d7e567f2e73e456e29fd"}, @NFTA_DATA_VERDICT={0x1c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VERDICT={0x4}, @NFTA_DATA_VALUE={0xaa, 0x1, "dceb9fbb3f4e1ea4a601a64a0198f3648010b4c871efd3c84d791f40ea428bdd045ba084410571ecedf6106bc913a5d78deea1340774c5cac6c1bf01a20cd19fc3003a1fc052eab1c20462d5d176d375b4f0ec3549378358f09433554f0c5d4148d4b14a1fda5bc54f03d279171e324d2ce87d8157e28ff77e911b775b73e10ede3b9b816aed51ae966ef3b948f129154c75238fb8e1537ea14a765f53e4d59de804948f7c2e"}]}, @NFTA_SET_ELEM_DATA={0x78, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x20, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}]}, @NFTA_DATA_VALUE={0x52, 0x1, "b0dee0214f0c4485922a863ae4fd0b0a6cfd82692e16a4702eaa6d0cfdefe82da6f6b3f8911aeb377a7654f013c7bb6f4177a7a2ea14537543322454cbc2396217933f91cf3306c99a40754aab6f"}]}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x7f}, @NFTA_SET_ELEM_EXPR={0x18, 0x7, 0x0, 0x1, @flow_offload={{0x11}, @void}}, @NFTA_SET_ELEM_KEY_END={0x180, 0xa, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x1c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}]}, @NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}]}, @NFTA_DATA_VERDICT={0x40, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}]}, @NFTA_DATA_VALUE={0xca, 0x1, "3d4ea275ad81cd3f9d92c106d42855547a13ab1a26c60743b62678426c0734c837672a5eb783209f24eca259dd41e4092ab25e7cb1e00b729c61593dbc3e54f911bb0136b39871aa2b25f6a9af61d881022a5ce3023957259ae6507e501045c7d37cc8cf7152c1a431e712df5e67e71f2ef09bd297e4f00b6645d3ff74f83cbab7980c7d6b82935f9acde12a09105c3b8987dd60067816b75c0e2550f3c0a0385b091d199eed994f9e57090f6512fe798d1bf2c50f370fdc176d363f3760af49b7e403212148"}, @NFTA_DATA_VERDICT={0x48, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}]}, @NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}]}, {0x4}]}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x2880, 0x3, 0x0, 0x1, [{0x287c, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz0\x00'}, @NFTA_SET_ELEM_EXPRESSIONS={0x2858, 0xb, 0x0, 0x1, [{0x27e0, 0x1, 0x0, 0x1, @range={{0xa}, @val={0x27d0, 0x2, 0x0, 0x1, [@NFTA_RANGE_SREG={0x8, 0x1, 0x1, 0x0, 0xb}, @NFTA_RANGE_TO_DATA={0xdc, 0x4, 0x0, 0x1, [@NFTA_DATA_VALUE={0x53, 0x1, "fe2be452825308b37889ca9c54b554e2e80a7f09cc4797656c107f58e0f431747e9663eece8c4d537bed27275eed9931467b599b6d62437fce7399cc1b5be5da3ebc4526f44f813dc24de21f476269"}, @NFTA_DATA_VERDICT={0x2c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}]}, @NFTA_DATA_VALUE={0x4a, 0x1, "90d17071f3aaacc70e6a6778e3f8594dcd90d2145b7e81d46c0d6376a6fbf82382f4f49456da6a8c5fcdbfd81257f1c9c6f7cb864cfc3e4c1aa5112fd5fcf9f7608bbe70dd6c"}, @NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}]}]}, @NFTA_RANGE_TO_DATA={0x10, 0x4, 0x0, 0x1, [@NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}]}]}, @NFTA_RANGE_OP={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_RANGE_FROM_DATA={0x113c, 0x3, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x10, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}, @NFTA_DATA_VERDICT={0x40, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0x9}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}]}, @NFTA_DATA_VALUE={0x1004, 0x1, "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"}, @NFTA_DATA_VALUE={0x7f, 0x1, "6540d259cda0f74a40f8b386decd930f87866f5934dc2828999a3d0d38f283f389dc48d9da159d2a8b90853746c88ba0bfb9e56d9d72dd31a29492be594282f2fe7f13cbc419f4aedf13ad6d783f1541f3cb55d247ca655af67157217143afbbab128366e28eff1106428eabda351eb4a2e982cf034ebddf5df4d3"}, @NFTA_DATA_VERDICT={0x64, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}]}]}, @NFTA_RANGE_TO_DATA={0x224, 0x4, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x18, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}]}, @NFTA_DATA_VALUE={0xc0, 0x1, "48c9bde0dec6bba1db52e15f108d98a1bcc09e518ac7c3fae245c9525b06e3563b583a53a9afb157c96af78fbd423ebd110529c7336ea35d295644eda3839d27df8bf5b44d98c1ac61a243b3d8fb8d1d848c6d55a4ddf0f89be484ede8a2f9848668b9a46e9cb44e9ab82696292918f4d5d46abaa868f6512604a8f7621b97e6475813d83f51a91e5ba0756bcd0e4a54648b5f87e0b120759562b640cb1ea444a5fb9003d6743ea99bb993d1fb41b45b62b7905bfc695c4af47f2db8"}, @NFTA_DATA_VALUE={0xe9, 0x1, "b0903a0c1c9c831b079b54817f66d554f17b99041f0fbe99ed30cade6c95e1c2bbb084b9d7d73b4c43ca199120a7640d6f20528fa71dc66633e30516eb9e34266066cf26e6681bed8aee267ca97fa21cd3ccabdd84fc1046c34552d6ecb3c54017f3e88ad2e6000cc1c418ced55064c2700ed970198e102f691b8d44808543ff4e444a83085aaf95efeb0365b0003c1a5a7a6b186bfe453ff77d4eeed14ffc1f51c5d4d0ef0b039179cc2b4daae59df977d620d4dd87a867581ee06922cc7bb4a2fdca30ee66aa5be0d11ffcb5d4f3804b96ccc82df2f835b61396589ed08baa54eb279f6b"}, @NFTA_DATA_VERDICT={0x40, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}, @NFTA_DATA_VERDICT={0x1c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}]}]}, @NFTA_RANGE_SREG={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_RANGE_FROM_DATA={0x26c, 0x3, 0x0, 0x1, [@NFTA_DATA_VALUE={0x55, 0x1, "1f994040d924caf0d1194c33a1c3d1566201f32177ffcbd38974cc5626201bd832a3d125aa5fab689a688e7a5d135eee1e719dd2c9b904f12b614d1413120906759431d58261eb6a195e23760ce9f03f46"}, @NFTA_DATA_VALUE={0xc4, 0x1, "2c18b52fff999c33368dca9f35ad61f4591ce926388d8cbe94771abdcb7b2c0b6b67c1bfaca8e919f2d749c3e84396dd75ed10b6d175955d959e8b0ceb694c57b58e6a5243017020bd3c6bf239a0bda3adafaa238d0b9cf7fcb297cf2a353294a00f94405bb6c633acaeab2e1d651b1068b0f6047a4078d17614f7af289a71376ac151b083039502b2c9b56c773b0a9aeb2519bc54a20b2df6ce9bd205817abdb0f4d3885d6226950b0ee7b5f0b9010f4a84de477a71948675d39fff1595cba0"}, @NFTA_DATA_VERDICT={0x2c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0x1}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}]}, @NFTA_DATA_VERDICT={0x4}, @NFTA_DATA_VALUE={0x6, 0x1, "9e00"}, @NFTA_DATA_VERDICT={0x10, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}, @NFTA_DATA_VERDICT={0x34, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VALUE={0xce, 0x1, "7056ef701b6e4198d41d578749ff039e10498d590ffb116c12ab8370db090aba112b857e7656d57b3d4b0be6518f321793c4818d32ccf564bad766d4634aded7305ed0fdfaeab6979753a8647f229eb0b2dc30dee8fcb0f68b67cfb2c83bd3ef5d5e092d5894b5d82974207cec6f767a1d90c0196c32b57593acd023fd9ae079215aa02986a699acb9a953e5f3bd28e2615c30a47e4ae01b9b33d097ad11c61fdbd19ee29209cdb33904c3070f116bf8e48b624649c4639df6d1ac0d1d3597e8a5f73c61247e319a3a28"}]}, @NFTA_RANGE_FROM_DATA={0x10fc, 0x3, 0x0, 0x1, [@NFTA_DATA_VALUE={0x1004, 0x1, "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"}, @NFTA_DATA_VERDICT={0x54, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xde5fceabad9cf31b}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0x321a0ada33639c57}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}]}, @NFTA_DATA_VERDICT={0x38, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}]}, @NFTA_DATA_VERDICT={0x3c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0x5}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}]}, @NFTA_DATA_VALUE={0x2c, 0x1, "ed10a385d2b08c8837209dce4af121d11cf6a0aed819317153cdc3215674ee891af3dd845c3d96e8"}]}]}}}, {0x24, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_OFFSET={0x8, 0x3, 0x1, 0x0, 0xd6}, @NFTA_EXTHDR_OFFSET={0x8, 0x3, 0x1, 0x0, 0x39}]}}}, {0x10, 0x1, 0x0, 0x1, @numgen={{0xb}, @void}}, {0x10, 0x1, 0x0, 0x1, @reject={{0xb}, @void}}, {0x24, 0x1, 0x0, 0x1, @hash={{0x9}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_HASH_MODULUS={0x8, 0x4, 0x1, 0x0, 0xb}, @NFTA_HASH_MODULUS={0x8, 0x4, 0x1, 0x0, 0x4}]}}}, {0xc, 0x1, 0x0, 0x1, @fib={{0x8}, @void}}]}, @NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x12000000000}]}]}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x54, 0x9, 0xa, 0x401, 0x0, 0x0, {0x0, 0x0, 0x7}, [@NFTA_SET_EXPRESSIONS={0x40, 0x12, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_XFRM_SPNUM={0x8, 0x4, 0x1, 0x0, 0x6}, @NFTA_XFRM_DREG={0x8, 0x1, 0x1, 0x0, 0x14}]}}}, {0x18, 0x1, 0x0, 0x1, @dup={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_DUP_SREG_DEV={0x8, 0x2, 0x1, 0x0, 0x9}]}}}]}]}], {0x14}}, 0x2ce4}}, 0x4001)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000840)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$NLBL_MGMT_C_ADDDEF(0xffffffffffffffff, 0x0, 0x4000)

8.952763391s ago: executing program 6 (id=2131):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_80211_inject_frame(&(0x7f0000000400)=@device_b, &(0x7f0000000540)=ANY=[@ANYBLOB="80000000080211000001080211000000500000000000000000000064000100000602020202020201020b9672060303030303037107000000ff0000000000000000"], 0x41)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = gettid()
sendmsg$netlink(r1, &(0x7f0000000080)={&(0x7f0000000040)=@proc, 0xc, &(0x7f00000008c0)=[{&(0x7f0000000200)={0x10}, 0x10}], 0x1, &(0x7f0000002100)=[@cred={{0x1c, 0x1, 0x2, {r2, 0x0, 0xee01}}}], 0x20}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r4, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000a00)={0x28, r4, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}]}, 0x28}}, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r6, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000480)={0x28, r7, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}]}, 0x28}}, 0x0)
syz_80211_inject_frame(&(0x7f00000005c0)=@device_b, &(0x7f0000000c00)=@data_frame={@msdu=@type01={{0x0, 0x2, 0x9, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1}, {}, @device_b, @random="e3b017c45a9a", @broadcast, {0x1, 0x8}, "", @value={0x0, 0x0, 0x2, 0x0, 0x84}}, @a_msdu=[{@broadcast, @device_a, 0xa8, "a55f95cc9a6d5ae9081bc017a3fba6a4e994428088adb796a48cf730ea6fdd2392855b8c001632f5c66c4ad717f56ab3d6b98928c8894c658122f5a8e942758ab5aad8eb3ed01d468633a039e2ae413de7a193bef9c3b6e4e09aa4e8ebdd363cc719cf93f094a2bc9b8202278fb6d7dd56609db2cf7b0c323fcac2bb09b574f40e660f5671d973e68eb65a5b27830041cbd1cf9b3f22cc599ac43c2867a21d546e8e783d4d5f3960"}, {@device_b, @device_a, 0x1c, "7e14cbde8e69c700baff4c919e41030a5029c384de41abdcffc9a2a7"}, {@broadcast, @device_a, 0xa8, "39344b0496b3793a14a89aace4b7de2fed1fbff8315f1ec19f2e99e243cd892309bad109b12bac6f348960a73f9afdfe1ee9969dc95457c448ebfa3b4759e223f474c0603872db6674b097faa07570fc9a77e5d684215079955923db14fd6b6051048d38997160793d264f488d82d63acdad783983c401e6bba00c976663cd66a55ce1e74e10b0c0f295286c3daa62ed21b84df6daaf48e3c604e0402e3d77ba50575b44c7a89754"}, {@device_b, @broadcast, 0x1c, "f6027297e05fffd56ebc92f80d281b05395be37bb25932ace82a1e33"}, {@device_b, @device_b, 0xb8, "2db3f0f0062d81c9c1ec1f77a34ac2032f336dea3c4069c58bc173fe26d4e2c63b0a45de1a980854c7024ab707c693829d9a44bfd3ff7222f1bc1385b74f5f34bf656b338078ffb411c5dd599f50a406040ef4300d21ecd966b7517728915cd264fd174df648bfddcaa9e6594026a8537b8f19cd02131c463048fae82fc1b0d3b2d999997033db237a40600e139fc9bc6b9f86ae19cdc674fb854fe4105e078b2bc1c6fbee6b3582a8d9cf6fa305463c889c6346da2f45cc"}, {@device_b, @device_b, 0x50, "6ca704c14dd582667385e3f5b599553415b019f541077a18e83865b8d2db682190e05660323d279b2e733a315c6e0d5718d22a685b84948d8849414af9723cd1f966ec227fe2161ceb3be0ee2512bfc6"}, {@device_b, @device_b, 0x70, "12938a95ef195efffdb43846373a56a5ebcef0ed64d01f9c6817d39bd9a45ed26e4910a1d6a1bdc9bc11b1c65e386df68429fb1a2e26f6223388e455538e810118ff3070a9dfa2d166346cd2dd9d0440646b4d72e9151ff1de5b9df204ce52efe312e22c84b186dd85a833ebdf68ab5e"}, {@device_b, @device_a, 0x51, "e154c7222f129c8f682f831e5b13cde575ca8e9cb55508a8bf83819b9b8da56e11fe2692bd257d7df2a1d4154fcb80cdf81d602f170d58d04b45e13987ba4ddc77f99a23a3c193408cb400e7e4424a42c6"}]}, 0x3ea)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r6, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="050000000000000000002100000008000300", @ANYRES32=r8], 0x40}}, 0x0)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r10=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0xfffffffffffffcdc, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r9, 0x5, 0x0, 0x0, {{}, {@val={0x3, 0x3, r10}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="44de5000", @ANYRES16=r9, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r10, @ANYBLOB="0a00340002020202020200000a00060008021100000000000800350000000000080026006c090000"], 0x44}, 0x1, 0x0, 0x0, 0x40}, 0x0)
syz_80211_inject_frame(&(0x7f00000002c0)=@device_b, &(0x7f0000000300)=@mgmt_frame=@probe_response={{{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void}, 0x36)
nanosleep(&(0x7f0000000340)={0x0, 0x2faf080}, &(0x7f0000000380))
socket$key(0xf, 0x3, 0x2)
nanosleep(&(0x7f0000000440)={0x0, 0x2faf080}, 0x0)
r11 = socket(0x15, 0x80000, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f00000003c0)=0x14)
r12 = socket$igmp(0x2, 0x3, 0x2)
setresuid(0xee01, 0xee01, 0x0)
setsockopt$MRT_ADD_VIF(r12, 0x0, 0xca, 0x0, 0x0)
bind$unix(r11, &(0x7f00000002c0)=@file={0x0, './file0\x00'}, 0x6e)

8.473560249s ago: executing program 1 (id=2133):
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000600)=ANY=[@ANYBLOB, @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x2d)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup_subtree(r6, &(0x7f0000000200), 0x2, 0x0)
write$cgroup_subtree(r7, &(0x7f0000000080)={[{0x2b, 'cpu'}]}, 0x5)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000019002100000000000000000002180000000210010000000008000100ac1414"], 0x2c}}, 0x0)
unshare(0x22000600)
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$EBT_SO_SET_ENTRIES(r8, 0x0, 0x80, &(0x7f00000000c0)=@broute={'broute\x00', 0x20, 0x1, 0x1a8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000480], 0x0, 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000cb001b000000000000000000000000000000080000000000000000000000000000ffffffff0000000000000000000000000600000000000000000000000000000000000000000000000000000000000000ffffffff01000000110000000500000086dd6361696630000000000000000000000076657468315f746f5f7465616d00000073797a6b616c6c65723100000000000076657468315f746f5f7465616d000000aaaaaaaaaabb0000000000000180c20000000000000000000000e8000000e80000001801000069703600000000000000000009000000000000000000000000000000000000005000000000000000fe80000000000000000000000400000000000000000000000000ffffac1e0000000000000019000000000040000000000000000000800000000000000000000006364d715607563e0049040010005f608b540000001d000000000000000028e835cc51aa2c00"/424]}, 0x220)
syz_open_procfs(0x0, &(0x7f0000000040)='net/tcp\x00')
r9 = getpid()
syz_clone3(&(0x7f0000001100)={0x40200, 0x0, 0x0, 0x0, {0x36}, 0x0, 0x0, 0x0, &(0x7f0000000000)=[r9], 0x1}, 0x58)

7.749077381s ago: executing program 5 (id=2135):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
write$tun(0xffffffffffffffff, &(0x7f0000000380)=ANY=[], 0xc9)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000380)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0xc000}})
read$FUSE(r3, &(0x7f0000002300)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_INIT(r3, &(0x7f00000001c0)={0x50, 0x0, r4}, 0x50)
syz_fuse_handle_req(r3, 0x0, 0x0, &(0x7f0000000b80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)={0x78, 0x0, 0x0, {0x0, 0x4, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc000}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = open_tree(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0)
fstat(r5, 0x0)

7.748454057s ago: executing program 3 (id=2136):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x40000000000008b}, 0x0)
quotactl_fd$Q_GETFMT(0xffffffffffffffff, 0x0, 0xee00, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f00000004c0)=@raw={'raw\x00', 0x8, 0x3, 0x430, 0x0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x360, 0xffffffff, 0xffffffff, 0x360, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [0xffffff00], 'veth0_virt_wifi\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010101}, [], [], 'wg1\x00', 'gre0\x00', {}, {}, 0x87}, 0x0, 0x258, 0x290, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}, {0x100}}}, @common=@inet=@hashlimit3={{0x158}, {'pim6reg\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3, 0x40}}}]}, @common=@inet=@SET3={0x38, 'SET\x00', 0x3, {{0xffffffffffffffff, 0x6, 0x7}, {0x1, 0x1, 0x3}, {0x1, 0x0, 0x4}, 0x4, 0x9}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x490)

6.191755658s ago: executing program 1 (id=2137):
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendmsg$802154_raw(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)="711f04800000000000000c55f5", 0xd}}, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000002c80)=0x142, 0x4)
recvmmsg(r0, &(0x7f0000002e40)=[{{0x0, 0x0, 0x0}}], 0x40000000000019e, 0x142, 0x0)

6.183021634s ago: executing program 4 (id=2138):
bpf$MAP_DELETE_ELEM(0x3, 0x0, 0x0) (async)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) (async)
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, &(0x7f0000000180)={0x4, 0x7, {<r2=>0x0}, {}, 0x8, 0x400000000000})
ptrace(0x10, r2)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000), 0x208e24b) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f00008ee000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000040)="0f01c2b805000000b9030000000f01c166ba430066b8003866efc4c105f141d0f3260f35c4e17c50e8b8010000000f01d967650f01ca2e0f08", 0x39}], 0x1, 0x0, 0x0, 0x0)
preadv(r3, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x22, '\x00', 0x0, @fallback, r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0) (async)
r5 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000040)={'veth1_macvtap\x00', @broadcast})
r6 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="380000001000030500"/20, @ANYRES8=r3, @ANYBLOB="0000000000fce93cdcf81cf2ae8ed00a00000018001280080001006874b2302b92f597119b76b2be58c76dd2d35d8a6b85c85e5c7541ffa8e68f02518f674f30a0618517b57a85b2f61019404d4df9aefa56d2796c44e091b1f7bea78b3a63af67ce8ce52af6409e4be2f4edb0548e7e783e357735512b3f4746", @ANYRESHEX=r0, @ANYBLOB], 0x38}}, 0x0)
r8 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r8, 0x4010e501, 0x0) (async)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r5, 0x8983, &(0x7f0000000380)={0x0, 'ip6gre0\x00', {}, 0x5})
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) (async, rerun: 64)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r10=>0x0}) (rerun: 64)
sendmsg$NL80211_CMD_SET_INTERFACE(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)={0x30, r9, 0x5, 0xfffffffd, 0x0, {{}, {@val={0x8, 0x3, r10}, @val={0xc, 0x99, {0x200, 0x76}}}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x30}}, 0x0)

6.093076195s ago: executing program 3 (id=2139):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f00000000c0), 0x10)
sendmmsg(r0, &(0x7f00000026c0)=[{{&(0x7f0000000380)=@phonet={0x1d, 0x5, 0x8, 0x5e}, 0x80, &(0x7f0000001840)=[{&(0x7f00000007c0)="9914bf5dfe33154f044a5399e9770f0d", 0x10}, {&(0x7f0000000400)="86df64ee615b087181f734614812888b19e509b413774c0268afba28f35d389f4f322fe3063cbc2b9cc82c067a91d90a2970196d69c7c3a217ea5a36521a9a5f5638a22df9203263d183d3383bc125654640f187d6eabda46a805ff969536d91e6a6b7d5b5b6e8775d275f0761265517bc8248f381ebd15df068bbcefe8c2bc641266786e0d882f7703ca6488414764d7da76bc58dc409b3bcb35c6f", 0x9c}, {&(0x7f0000000540)="8b88bace46074dea6728175cdb1aead1649dec8a7f027c521eb93c071d08da398abc4d9e5e0db2317c7a396acbe0cbb369bb24408b1ba71711cce3018d9fe84477931aed2e0e3ea8da7e4859c03fba97a32d966703a252241af4f886b2079436aa9a6e1cb637d364327cc322ce6c556bf4994e86e3ca8c3b29383c5abc32c109772d22315d7501224ca339d8f55c4163841a89b19cdcd49989a71ec27f3153654a3b23e4ca27f19c3b041c056ce3bb3d1facecf86789ea142d", 0xb9}], 0x3}}], 0x1, 0x4014)

5.908457504s ago: executing program 1 (id=2140):
close(0xffffffffffffffff)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, 0x0)
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="180000009fff514a000000003a810000850000000700000085000000d000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x42, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb863, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='contention_end\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_NEW_KEY(r2, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000000)={0x44, 0x0, 0x801, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_KEY={0x28, 0x50, 0x0, 0x1, [@NL80211_KEY_DATA_WEP104={0x11, 0x1, "4abee339084eeef16f162471f4"}, @NL80211_KEY_IDX={0x5, 0x2, 0x6}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac0d}]}]}, 0x44}}, 0x0)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000000)={@my=0x1})
ioctl$IOCTL_VMCI_QUEUEPAIR_SETVA(r0, 0x7a4, &(0x7f0000000040)={{@my=0x1}})
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000180))
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
sched_rr_get_interval(r4, &(0x7f0000000240))
prlimit64(r4, 0x3, &(0x7f0000000100)={0x4e691c6f, 0xd}, &(0x7f00000002c0))
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0x3)
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGPROP(r5, 0x40047438, &(0x7f0000000180)=""/246)
close(r3)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r5, 0x40047435, &(0x7f0000000680)={0x0, 0x0, "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", "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"})
syz_usb_control_io(0xffffffffffffffff, 0x0, &(0x7f0000000d00)={0x84, &(0x7f0000000000)={0x0, 0x9}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

5.744773578s ago: executing program 3 (id=2141):
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
bpf$BPF_BTF_GET_NEXT_ID(0x7, &(0x7f00000000c0)={0x20ffffff}, 0x8)
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000140)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r0, 0x3ba0, &(0x7f0000000340)={0x48, 0x2, r1})
r2 = socket$nl_route(0x10, 0x3, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000fc0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmsg$inet(r3, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000080)="3bfdd75fa5717852d59a9367444a2130e72cd4dabc8854532cca0c32a5b9f844a4610c7525650ce3d3b76b15026d93e6dee896115e9364066aa3d14e33ef732b4681335c576902153114bdb9c74b538a71115fb1d1a63d1b04129661b29aab89d0be999a6b7c9bea755adedbf305a79f70b71d3d4c98577b49db4963ce89b0def5e840f459659cb6f86d56b069a5de11d601d348ff88ca6e5e2cfe40176880b33e9e8dbc32ba2e6a99b1b50276dc4f06166000d7069a3cc76f", 0xb9}, {&(0x7f0000000180)="892950e2405ee8629d9384a91c16d1706a3e61f305119f95cac0f1927f4c205b971eb41147cb1f86883d6910e68ac3996551800b3ec64b77f8444b18345a2c8b178eeeba0cde7319a5a46bfe7f5770e019efd9d52069edcced33a758c4e657f3a792dc193a1911b4e82ea800ad7afe03c851a8", 0x73}, {&(0x7f0000000200)="a68cde0d56b170df7710b54f17d9a39c4f98f3547190", 0x20000216}, {&(0x7f0000000240)="45e04400f2b383517a08c397dd0a76e67ecfc8e74573c24dedd3a48fb62418c1412fdcd15e888cb0f5d02e77bfecefda6b064c0bb2b66a9a522e63873dde02330510255eec7dfa1af708cdab59fb71eca786a359a2c3b0cbad35144ec5b069c53f90e43339845dc7fd140c55b0149ab38eb27c140f374bcc2c95b0b121d1a9302f3a01b888243b3fc0d46f0de0", 0x8d}, {&(0x7f0000000300)="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", 0xcb3}], 0x5, &(0x7f0000001480)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @private, @multicast1}}}], 0x20}, 0x0)
recvmsg$unix(r4, &(0x7f0000001140)={0x0, 0x0, &(0x7f0000001040)=[{&(0x7f00000015c0)=""/4096, 0x7ffff000}], 0x1, 0x0, 0x2}, 0x40000100)
sendmsg$nl_route_sched(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=@newtaction={0x14, 0x2e, 0xffff}, 0x14}}, 0x0)
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000040)={0x28, 0x4, r1, 0x0, &(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x2b8000000000000})
r5 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000a80), 0x40900)
pipe2(&(0x7f0000000000)={0x0, <r6=>0x0}, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x20, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000080)={r7, 0xffffffffffffffff, 0x2d, 0x0, @val=@netfilter={0xa, 0x0, 0x6, 0x1}}, 0x20)
close_range(r6, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r5, 0xc0505405, &(0x7f0000000b80)={{0x3, 0x0, 0x96, 0x0, 0x7f}, 0x1000, 0x1, 0x2})
r8 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendmsg$802154_raw(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)="711f04800000000000000c55f5", 0xd}}, 0x0)
setsockopt$SO_TIMESTAMPING(r8, 0x1, 0x25, &(0x7f0000002c80)=0x142, 0x4)
recvmmsg(r8, &(0x7f0000000ac0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f00000002c0)=""/65, 0x41}, {&(0x7f0000000400)=""/49, 0x31}, {&(0x7f0000000440)=""/139, 0x8b}], 0x3, &(0x7f0000000600)=""/153, 0x99}}, {{&(0x7f00000006c0)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @private1}}}, 0x80, &(0x7f0000000900)=[{&(0x7f0000000740)=""/98, 0x62}, {&(0x7f00000007c0)=""/7, 0x7}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f0000000800)=""/236, 0xec}], 0x4, &(0x7f0000000940)=""/172, 0xac}, 0x59}], 0x3, 0x10020, 0x0)

5.735961982s ago: executing program 4 (id=2142):
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendmsg$802154_raw(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)="711f04800000000000000c55f5", 0xd}}, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000002c80)=0x142, 0x4)
recvmmsg(r0, &(0x7f0000002e40)=[{{0x0, 0x0, 0x0}}], 0x40000000000019e, 0x142, 0x0) (fail_nth: 2)

5.373879197s ago: executing program 4 (id=2143):
r0 = syz_open_procfs(0x0, &(0x7f0000000240)='gid_map\x00')
writev(r0, &(0x7f00000001c0)=[{&(0x7f0000000100)="fcb7", 0x2}, {0x0}], 0x2)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000001300)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x4cd8bf1e, 0x0, 0xca}, 0x9c)
bind$inet6(r1, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r1, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
ioctl$FS_IOC_FIEMAP(0xffffffffffffffff, 0xc020660b, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r2, 0xc004500a, &(0x7f0000000000))
r3 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
r5 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'geneve0\x00', <r6=>0x0})
sendto$packet(r5, &(0x7f0000000180)="0b036800e0ff64000200475400f6a13bb1000000080088474820", 0x100a6, 0x0, &(0x7f0000000140)={0x11, 0x0, r6}, 0x14)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000c80)={'virt_wifi0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x14, 0x2, [@TCA_FQ_FLOW_MAX_RATE={0x8}, @TCA_FQ_LOW_RATE_THRESHOLD={0x8}]}}]}, 0x40}}, 0x0)
r10 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r10, 0x8933, &(0x7f0000000100)={'vxcan0\x00', <r11=>0x0})
r12 = socket$can_raw(0x1d, 0x3, 0x1)
bind$can_raw(r12, &(0x7f0000000000)={0x1d, r11}, 0x10)
fsetxattr(r8, &(0x7f00000035c0)=ANY=[@ANYBLOB="627472667394246465762f616473703100e66534eab93f8d77ddd65bc6c0"], &(0x7f0000003580)='##}m*[{\x00', 0x8, 0x1)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001480)={r0, 0xe0, &(0x7f0000001500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x5, 0x7, &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x59, &(0x7f00000013c0)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {}], 0x50, 0x10, &(0x7f0000000200), &(0x7f0000000280), 0x8, 0x33, 0x8, 0x8, &(0x7f0000001440)}}, 0x10)
getsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f0000001600)={@dev}, &(0x7f0000001640)=0x14)
read$dsp(r3, &(0x7f00000002c0)=""/4096, 0x1000)
write$dsp(r2, &(0x7f00000012c0)="a52876830a602214f6b4e928d758f38a5a7cb4b31c4c09289e9ebb6286784ca3", 0x4000)

5.312749829s ago: executing program 6 (id=2144):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, 0x0, 0x0)

5.120979982s ago: executing program 6 (id=2145):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000240)=0x9, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe26}, 0x1c)
syz_emit_ethernet(0xbe, &(0x7f0000000280)={@link_local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, {0x0, 0x4e22, 0x9c, 0x0, @wg=@initiation={0x1, 0x4, "48e0f2f20314db1ad708e9d8d1637cd0e5adb0ab494d1188b4500f094642ad4e", "4716d982204b2cccc9a867f7f52842b27231ef78ac5018d01ed5e09cb96d1a4a2431d920397d27458f1794d92b944498", "cd7f94046661d78805009b2f9e86b8d2591977cef1fef860e59cd8f5", {"20039e104fa0b89bf0c650f2f197d894", "12901c1f8bdda641d302febfb8cc8b19"}}}}}}}, 0x0)
writev(r0, &(0x7f0000000340)=[{&(0x7f0000000f00)="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", 0x1000}, {&(0x7f0000000180)="657bcb56c757cc33a596668799262fe9a584a7286f6a7d46602a7e9691cc2e53a12ddd727da9bd3d0c4e2b995932c95d49c7183574a017fa6ea7a6c5c42daa7926858cc6102752743a327a7da802a030f5c93fa57ffb01006180c95e9dd4d89b7562f2c7c4eaf39ba3487b55fd4d02f43f6c1d5227b4c1de93ba", 0x7a}, {&(0x7f0000000200)="8c79a699cc00", 0x6}], 0x3)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0)
write$binfmt_aout(r1, &(0x7f0000000000)=ANY=[], 0xff2e)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x0, 0x0, "0000fa00ea8000"})
r2 = syz_open_pts(r1, 0x0)
r3 = dup3(r2, r1, 0x0)
ioctl$TIOCSETD(r3, 0x541b, &(0x7f0000000ec0)=0x14)
getsockopt$WPAN_SECURITY(r3, 0x0, 0x1, &(0x7f0000000040), &(0x7f00000000c0)=0x4)
r4 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="440000001300290a00", @ANYRES32, @ANYBLOB="00000000000000001c"], 0x44}}, 0x0)
r5 = socket$unix(0x1, 0x5, 0x0)
getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r6=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(r6, r6, r6)
quotactl_fd$Q_GETFMT(r1, 0xffffffff80000402, r6, &(0x7f0000000140))

5.034931139s ago: executing program 3 (id=2146):
ioperm(0x0, 0x7, 0x7)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x420000008b}, 0x0)
r0 = getpid()
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000540)={r0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYRESHEX], &(0x7f0000000100)='GPL\x00', 0x3982, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000280)=ANY=[@ANYRES32=r1, @ANYRES32=r2, @ANYBLOB="020000000200000000000000", @ANYRES32, @ANYBLOB="0b06cca28370e42fa78fd74070b1c484ccb39ffc2204cadb66398049e0c1af64729a10f3524f6d31baab3aaface021b3cebbb530b5b6a796b8149d41694dfbfa37d65c25055c9d8dcbdc893d2730502d1aa09abd9d0ab8b0a4a8c31930b64886b4f38f39a9955da9c06b12a235d63fd530fbfa02d53db8861d9e065ab1a9b17492f710e5b9f7b84d3ab03d6fdf86f088a44ca3b4160c3cf9280f9ba234823a7508ca1e8acf8e57614a718ccfdad25d659a847e00d9d6c822fdea317163f200d71c0822c340200780ba8803e0476b6f3b86f5be80070800d8d173f4db4140532ded8169a372b25cb0b43e065605bd41a1ddbdecce72a513f102dd5f2d60a9e4830f07c14aec169f975110ca87f9db130fb5fee79c76e4b26f2f834661bb04df0de9d60709e142817788683046c36f06d1050c3c", @ANYRES64=0x0], 0x10)
socket$inet6(0xa, 0x1, 0x100)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'bridge_slave_0\x00', <r6=>0x0})
sendmsg$ETHTOOL_MSG_CHANNELS_SET(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000006c0)=ANY=[@ANYBLOB="2800000074cd284cd1a81a71a5509fe8a41b0351c9c340ba48c8db6ad5fd382a66fb267e6bd4390fb4c089b475290606212a01310b7ada1ab9a051106a53977f4429b487e104af30f606b886e34d0158ca40db76ae9bc319e120f04bf8aab091d9dd668fb0d4127df7b2bc95d44a8b46df512960e3a4397a5085c35a354e2f57d7308e125e63c2bccda93bf9f064a9d9aab9604a001efe92d551e274b02b08d32cdf1da50e0580108443364ec83f889b12e4bacf497fe6e46f1d8dfa27bcb66d4a60e6200f850bca5e341e90ef5c2db57fe7372dda9d17e22dda32e36c693391ca6939b486dfbe7fcd784cce703426a1cde84b632b2c34", @ANYRES16=0x0, @ANYBLOB="210e00000000000000001200000008000800fa00000008000900ffff000004000180"], 0x28}}, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="2c0000001300290a000000000000000007000000", @ANYRES32=r6, @ANYBLOB="00000000300000000c001a"], 0x2c}}, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
accept$alg(0xffffffffffffffff, 0x0, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
read$FUSE(r8, &(0x7f0000000e40)={0x2020, 0x0, 0x0, 0x0, 0x0, <r9=>0x0}, 0x2020)
r10 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000020000000000000000ee000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
socket$packet(0x11, 0x2, 0x300)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r10, 0x5, 0xb68, 0x560b0007, &(0x7f0000000000)="259a53f271a76d2688634c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
ptrace$getregset(0x4204, r9, 0x4, &(0x7f0000000480)={&(0x7f0000000400)=""/114, 0x72})
mkdirat(r8, &(0x7f0000000040)='./file0\x00', 0x0)
mount(&(0x7f0000000040)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='xfs\x00', 0x0, &(0x7f0000000140)='grpquota')

4.960799733s ago: executing program 5 (id=2147):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_S_INPUT(r0, 0xc0045627, &(0x7f0000000100)=0x3)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x2c, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_DISABLE_VHT={0x4}]}, 0x2c}}, 0x0)
ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f0000000200)={0x0, @bt={0xe10, 0x870, 0x1, 0x1, 0xd59f80, 0x19f2, 0x3f, 0x0, 0xffffffff, 0x8, 0x2800, 0x6, 0x2, 0xba2, 0xc, 0x30, {0x5, 0xffffffff}, 0xd0, 0x9}})
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000006000000000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r5}, 0x10)
ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(0xffffffffffffffff, 0x8008f513, &(0x7f0000000040))
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000008c0), r6)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000003c0), r8)
sendmsg$NLBL_CIPSOV4_C_LISTALL(r8, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000800)=ANY=[@ANYBLOB="14000000", @ANYRES16=r9, @ANYBLOB="fba7000000002bd4000004"], 0x14}}, 0x0)
pipe2(&(0x7f0000000300)={0xffffffffffffffff, <r10=>0xffffffffffffffff}, 0x80000)
openat$cgroup_type(r10, &(0x7f0000000340), 0x2, 0x0)
sendmsg$NLBL_UNLABEL_C_STATICLISTDEF(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000900)={0x14, r7, 0x400, 0x0, 0x0, {0x5}}, 0x14}}, 0x20008010)

4.959233955s ago: executing program 1 (id=2148):
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000600)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x2d)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup_subtree(r6, &(0x7f0000000200), 0x2, 0x0)
write$cgroup_subtree(r7, &(0x7f0000000080)={[{0x2b, 'cpu'}]}, 0x5)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000019002100000000000000000002180000000210010000000008000100ac1414"], 0x2c}}, 0x0)
unshare(0x22000600)
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$EBT_SO_SET_ENTRIES(r8, 0x0, 0x80, &(0x7f00000000c0)=@broute={'broute\x00', 0x20, 0x1, 0x1a8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000480], 0x0, 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000cb001b000000000000000000000000000000080000000000000000000000000000ffffffff0000000000000000000000000600000000000000000000000000000000000000000000000000000000000000ffffffff01000000110000000500000086dd6361696630000000000000000000000076657468315f746f5f7465616d00000073797a6b616c6c65723100000000000076657468315f746f5f7465616d000000aaaaaaaaaabb0000000000000180c20000000000000000000000e8000000e80000001801000069703600000000000000000009000000000000000000000000000000000000005000000000000000fe80000000000000000000000400000000000000000000000000ffffac1e0000000000000019000000000040000000000000000000800000000000000000000006364d715607563e0049040010005f608b540000001d000000000000000028e835cc51aa2c00"/424]}, 0x220)
syz_open_procfs(0x0, &(0x7f0000000040)='net/tcp\x00')
r9 = getpid()
syz_clone3(&(0x7f0000001100)={0x40200, 0x0, 0x0, 0x0, {0x36}, 0x0, 0x0, 0x0, &(0x7f0000000000)=[r9], 0x1}, 0x58)

3.96397798s ago: executing program 6 (id=2149):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
sendmsg$rds(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000480)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000003700000008000300", @ANYRES32=r2, @ANYBLOB="08002600901500000800570080"], 0x2c}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000180)={&(0x7f0000000040)={0x30, r3, 0x300, 0x70bd2c, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0xb1, 0x7c}}}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x1ff}]}, 0x30}, 0x1, 0x0, 0x0, 0x5}, 0x80)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=ANY=[], 0x2c}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="0500000000000000000021", @ANYBLOB], 0x38}}, 0x0)

3.837664467s ago: executing program 1 (id=2150):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000840)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r3 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_DEV_CREATE(r3, 0x5501)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x3, 0xe, &(0x7f00000021c0)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xffffffffffffffc2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

3.792577683s ago: executing program 3 (id=2151):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000efffffff850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10)
setfsgid(0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x400, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x10003, 0x6, 0x5000, 0x1000, &(0x7f00007a1000/0x1000)=nil})
syz_clone(0x89011080, &(0x7f0000000200)="7db39eb9246df06195b64cbb835a3d5e3a0862be24c5bad989cad7aa25693c55aeb340472560f71815b34efab5ee1ff7bef0904df1214beb5588844d15d0434879c451733e7fcc26068e187f1c02d4896d4ea1522ec486fac65b2c9bd9d9abc1894c4bb5", 0x64, &(0x7f0000000000), &(0x7f0000000100), &(0x7f0000000340)="add5c9f41001d850c900450998b1eb7864baff090cbdee345d13c0f6e76a48da4e9ff6cc53d55d4d52ce1d6c6f267afe99d2567e937696b1351c99d0ef467b1b7bb18859f1be59c3442cf79a52a118f44a2d58c81267f825ac41aa7893bb89bebf6ed81326067fd9e16c76dc8ff46f47432bc595ffe668bd683e25864805a9afdcfcfd1e50ca891601674fb44fe375941c400350bf6093fc56bd2ec2dd8f1218685d8655f895")
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f00000002c0), r6)
sendmsg$NLBL_MGMT_C_PROTOCOLS(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000300)={0x14, r7, 0x30d}, 0x14}}, 0x0)
syz_genetlink_get_family_id$ieee802154(&(0x7f00000002c0), r6)
r8 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$NLBL_MGMT_C_REMOVE(r6, &(0x7f0000000480)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x30, r8, 0x8, 0x70bd26, 0x25dfdbff, {}, [@NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @NLBL_MGMT_A_CLPDOI={0x8}]}, 0x30}, 0x1, 0x0, 0x0, 0x20008086}, 0x40880)
connect$pppl2tp(r4, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r5, {0x2, 0x0, @dev}, 0x2}}, 0x2e)
close(r4)
setsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x23, &(0x7f0000000540)={{{@in, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0xa}}, {{@in=@multicast2, 0x0, 0x32}, 0x0, @in=@local}}, 0xe4)
r9 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r4, &(0x7f0000000140)=@pppol2tpv3in6={0x18, 0x1, {0x0, r5, 0x2, 0x0, 0x3, 0x4, {0xa, 0x4e23, 0x1, @private2, 0xfffffffc}}}, 0x3a)
ioctl$PPPIOCGL2TPSTATS(r9, 0x80487436, &(0x7f0000005280))
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000040)={[0x2600000000000000, 0xa0, 0x7, 0x3, 0x4, 0xfff, 0x9, 0x1, 0x8, 0x0, 0x1, 0x4, 0x3, 0x9, 0x5a94, 0x9], 0x80a0000, 0x96044})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000793000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f00000001c0)={0x0, 0x4000})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

3.789397975s ago: executing program 5 (id=2152):
openat$pfkey(0xffffff9c, &(0x7f0000000140), 0x6800, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000000c0), 0x204, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100, 0x0, 0x0, 0x0, r1}, &(0x7f0000000180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r8 = open(&(0x7f0000000000)='./file0\x00', 0x42040, 0x50)
fcntl$setlease(r8, 0x400, 0x1)
open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
close_range(r8, 0xffffffffffffffff, 0x0)
r9 = add_key$keyring(&(0x7f0000000340), &(0x7f00000004c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r9, &(0x7f0000000240)='asymmetric\x00', &(0x7f0000000500)=@keyring={'key_or_keyring:', r9})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

3.788534852s ago: executing program 4 (id=2153):
r0 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8100000}, 0x0)

2.465197491s ago: executing program 1 (id=2154):
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
socket$key(0xf, 0x3, 0x2)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r4=>0x0})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x1, 0x40, 0x20, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000140), 0x1003, r6}, 0x38)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x20, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x0, {}, [@NHA_OIF={0x8, 0x5, r4}]}, 0x20}}, 0x0)
sendmsg$nl_route(r1, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=@ipv6_newrule={0x24, 0x18, 0x409, 0x0, 0x0, {}, [@FIB_RULE_POLICY=@FRA_GOTO={0x8, 0x1e, 0x1}]}, 0x24}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000003c0)=@newlink={0x20, 0x10, 0x437, 0x0, 0x0, {0x0, 0x0, 0x0, r4, 0x192}}, 0x20}}, 0x0)
mount$nfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="01000000262c61756469742c61756469742c66756e633d4d4d41505f434845434b2c6f626a5e6d6dbd"])
socket(0x1e, 0x4, 0x0)
socket(0x1e, 0x4, 0x0)

2.464925627s ago: executing program 4 (id=2155):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)

2.386221397s ago: executing program 4 (id=2156):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x1, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='mm_page_alloc\x00', r2}, 0x10)
readv(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000280)=""/144, 0x28}], 0x300)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
ioctl$FS_IOC_GETFSLABEL(r3, 0x800452d2, &(0x7f0000000100))
syz_open_pts(0xffffffffffffffff, 0x224400)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r5=>0x0})
r6 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000100)={&(0x7f00000003c0)=ANY=[@ANYBLOB="9feb010018000000000000001400000014000000080000e80004000000010000000000005f415f1000"/52], 0x0, 0x34, 0x0, 0x1, 0x1, 0x0, @void, @value}, 0x28)
r7 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CAP_X2APIC_API(r7, 0x4068aea3, &(0x7f0000000180)={0x81, 0x0, 0x2})
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000000)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0xf1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x80000001, 0xbe00000000000000, 0x4, 0x0, 0x7, 0x2, 0x6, 0x6, 0x6, 0x20, 0x7, 0x7, 0x311, 0x7, 0x81, 0x8], 0xeeee8000, 0x80000})
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
syz_open_dev$dri(0x0, 0x1f, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
sendmsg$NL80211_CMD_JOIN_MESH(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000380)={&(0x7f00000004c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="000127bd7000fcdbdf254400000008000300", @ANYRES32=r5, @ANYBLOB="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"], 0x1c}, 0x1, 0x0, 0x0, 0x20008000}, 0x40040)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
ioctl$KVM_SET_VCPU_EVENTS(r8, 0x4040aea0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x3)
r9 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r9, &(0x7f0000019680)=""/102392, 0x18ff8)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)

2.251754828s ago: executing program 3 (id=2157):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
write$tun(0xffffffffffffffff, &(0x7f0000000380)=ANY=[], 0xc9)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000380)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0xc000}})
read$FUSE(r3, &(0x7f0000002300)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_INIT(r3, &(0x7f00000001c0)={0x50, 0x0, r4}, 0x50)
syz_fuse_handle_req(r3, 0x0, 0x0, &(0x7f0000000b80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)={0x78, 0x0, 0x0, {0x0, 0x4, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc000}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = open_tree(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0)
fstat(r5, 0x0)

2.160792314s ago: executing program 5 (id=2158):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket(0x1e, 0x4, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x183d41, 0x0)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=r2, @ANYRESDEC=r2, @ANYRESDEC=0x0, @ANYRESOCT=r2, @ANYRESDEC=0x0])
read$FUSE(r3, &(0x7f00000021c0)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_INIT(r3, &(0x7f0000000240)={0x50, 0x0, r4, {0x7, 0x1f, 0x0, 0x202}}, 0x50)
syz_fuse_handle_req(r3, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r3, &(0x7f0000004200)="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", 0x2013, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x28, 0xffffffffffffffda}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
fcntl$lock(r5, 0x5, &(0x7f0000000200))
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r6 = socket(0x2, 0x80805, 0x0)
r7 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r7, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r8=>0x0}, &(0x7f00000001c0)=0x8)
getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r6, 0x84, 0xa, &(0x7f00000000c0)={0x0, 0x0, 0x8200, 0xffff8001, 0x0, 0x0, 0x0, 0x0, r8}, &(0x7f0000000100)=0x20)
fsopen(&(0x7f0000000000)='btrfs\x00', 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r9 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r9, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x8}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r9, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xca}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000007240), 0x0)
sendmmsg$inet6(r9, 0x0, 0x0, 0x0)

119.464098ms ago: executing program 6 (id=2159):
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000140), 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000010000000900010073797a3000000087ec5deaf2ad6c1b02000000000000000001001ec34270010073797a30000000000900030073797a31000000000c0004800800014000000000140000001100010000000000000000000000000ac232a0a5cec9a09341a29a6644e54babf50e1e"], 0x80}}, 0x0)
syz_open_dev$vim2m(&(0x7f0000000000), 0x0, 0x2)
socket$packet(0x11, 0x2, 0x300)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae03, 0xbb)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/crypto\x00', 0x0, 0x0)
sendfile(r2, r3, 0x0, 0x4000000000010042)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x1, 0x31, 0xffffffffffffffff, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000001a40)='fdinfo\x00')
getdents64(r4, &(0x7f0000002f40)=""/4098, 0x1002)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r6 = dup(r5)
write$6lowpan_enable(r6, &(0x7f0000000000)='0', 0xfffffd2c)
listen(0xffffffffffffffff, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r8=>0x0})
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r7)
sendmsg$NL80211_CMD_NEW_INTERFACE(r7, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)={0x3c, r9, 0x1, 0x70bd28, 0x25dfdbfd, {{}, {@void, @val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'syzkaller0\x00'}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x7}, @NL80211_ATTR_SOCKET_OWNER={0x4}]}, 0x3c}, 0x1, 0x0, 0x0, 0x91}, 0x24044884)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0)
pselect6(0x40, &(0x7f00000000c0)={0x4, 0x0, 0x3, 0x0, 0x40000000000000, 0x0, 0x1d}, 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffd}, 0x0, 0x0)

0s ago: executing program 5 (id=2160):
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000600)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x2d)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup_subtree(r6, &(0x7f0000000200), 0x2, 0x0)
write$cgroup_subtree(r7, &(0x7f0000000080)={[{0x2b, 'cpu'}]}, 0x5)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000019002100000000000000000002180000000210010000000008000100ac1414"], 0x2c}}, 0x0)
unshare(0x22000600)
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$EBT_SO_SET_ENTRIES(r8, 0x0, 0x80, &(0x7f00000000c0)=@broute={'broute\x00', 0x20, 0x1, 0x1a8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000480], 0x0, 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000cb001b000000000000000000000000000000080000000000000000000000000000ffffffff0000000000000000000000000600000000000000000000000000000000000000000000000000000000000000ffffffff01000000110000000500000086dd6361696630000000000000000000000076657468315f746f5f7465616d00000073797a6b616c6c65723100000000000076657468315f746f5f7465616d000000aaaaaaaaaabb0000000000000180c20000000000000000000000e8000000e80000001801000069703600000000000000000009000000000000000000000000000000000000005000000000000000fe80000000000000000000000400000000000000000000000000ffffac1e0000000000000019000000000040000000000000000000800000000000000000000006364d715607563e0049040010005f608b540000001d000000000000000028e835cc51aa2c00"/424]}, 0x220)
syz_open_procfs(0x0, &(0x7f0000000040)='net/tcp\x00')
r9 = getpid()
syz_clone3(&(0x7f0000001100)={0x40200, 0x0, 0x0, 0x0, {0x36}, 0x0, 0x0, 0x0, &(0x7f0000000000)=[r9], 0x1}, 0x58)

kernel console output (not intermixed with test programs):

2]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  563.669960][T11982]  ? hook_sb_mount+0x122/0x390
[  563.669977][T11982]  ? security_sb_mount+0x22/0x2f0
[  563.669999][T11982]  security_sb_mount+0xe0/0x2f0
[  563.670019][T11982]  path_mount+0xb9/0xfa0
[  563.670041][T11982]  ? kmem_cache_free+0x1a2/0x420
[  563.670060][T11982]  ? user_path_at+0x44/0x60
[  563.761238][T11982]  __se_sys_mount+0x2d6/0x3c0
[  563.765926][T11982]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  563.771906][T11982]  ? __pfx___se_sys_mount+0x10/0x10
[  563.777106][T11982]  ? do_syscall_64+0x100/0x230
[  563.781868][T11982]  ? __x64_sys_mount+0x20/0xc0
[  563.786650][T11982]  do_syscall_64+0xf3/0x230
[  563.791163][T11982]  ? clear_bhb_loop+0x35/0x90
[  563.795843][T11982]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  563.801737][T11982] RIP: 0033:0x7fed9857e719
[  563.806153][T11982] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  563.825763][T11982] RSP: 002b:00007fed99430038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  563.834185][T11982] RAX: ffffffffffffffda RBX: 00007fed98735f80 RCX: 00007fed9857e719
[  563.842161][T11982] RDX: 00000000200002c0 RSI: 0000000020000280 RDI: 0000000020000100
[  563.850131][T11982] RBP: 00007fed99430090 R08: 0000000000000000 R09: 0000000000000000
[  563.858097][T11982] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  563.866059][T11982] R13: 0000000000000000 R14: 00007fed98735f80 R15: 00007ffcc68a9048
[  563.874037][T11982]  </TASK>
[  563.879896][T11970] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  563.888167][T11985] CPU: 1 UID: 0 PID: 11985 Comm: syz.5.1588 Not tainted 6.12.0-rc5-syzkaller-00322-gb9021de3ec2f #0
[  563.898969][T11985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  563.909038][T11985] Call Trace:
[  563.912330][T11985]  <TASK>
[  563.915286][T11985]  dump_stack_lvl+0x241/0x360
[  563.920008][T11985]  ? __pfx_dump_stack_lvl+0x10/0x10
[  563.925233][T11985]  ? __pfx__printk+0x10/0x10
[  563.929861][T11985]  should_fail_ex+0x3b0/0x4e0
[  563.934671][T11985]  should_failslab+0xac/0x100
[  563.939374][T11985]  ? __alloc_skb+0x1c3/0x440
[  563.944018][T11985]  kmem_cache_alloc_node_noprof+0x71/0x320
[  563.949847][T11985]  __alloc_skb+0x1c3/0x440
[  563.954289][T11985]  ? timekeeping_get_ns+0x5c/0x420
[  563.959421][T11985]  ? __pfx___alloc_skb+0x10/0x10
[  563.964375][T11985]  ? rcu_is_watching+0x15/0xb0
[  563.969163][T11985]  ? trace_inet_sock_set_state+0x90/0x230
[  563.974904][T11985]  ? inet_sk_state_store+0x44/0x90
[  563.980035][T11985]  skb_copy+0x19d/0x9c0
[  563.984225][T11985]  tcp_send_synack+0x1af/0xaa0
[  563.989020][T11985]  tcp_rcv_state_process+0x13b1/0x4570
[  563.994506][T11985]  ? validate_chain+0x167/0x5920
[  563.999470][T11985]  ? __pfx_tcp_rcv_state_process+0x10/0x10
[  564.005298][T11985]  ? __local_bh_enable_ip+0x168/0x200
[  564.010694][T11985]  ? lockdep_hardirqs_on+0x99/0x150
[  564.015915][T11985]  ? __local_bh_enable_ip+0x168/0x200
[  564.021319][T11985]  ? __release_sock+0x9a/0x350
[  564.026111][T11985]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  564.031861][T11985]  tcp_v4_do_rcv+0x77d/0xc70
[  564.036483][T11985]  ? __pfx_tcp_v4_do_rcv+0x10/0x10
[  564.041609][T11985]  __release_sock+0x214/0x350
[  564.046297][T11985]  release_sock+0x61/0x1f0
[  564.050710][T11985]  tcp_sendmsg+0x3a/0x50
[  564.054948][T11985]  __sock_sendmsg+0x1a6/0x270
[  564.059631][T11985]  __sys_sendto+0x39b/0x4f0
[  564.064133][T11985]  ? __pfx___sys_sendto+0x10/0x10
[  564.069151][T11985]  ? __mutex_unlock_slowpath+0x21d/0x750
[  564.074799][T11985]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  564.080781][T11985]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  564.087111][T11985]  __x64_sys_sendto+0xde/0x100
[  564.091878][T11985]  do_syscall_64+0xf3/0x230
[  564.096385][T11985]  ? clear_bhb_loop+0x35/0x90
[  564.101064][T11985]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  564.106952][T11985] RIP: 0033:0x7fd37e17e719
[  564.111366][T11985] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  564.130976][T11985] RSP: 002b:00007fd37f057038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  564.139389][T11985] RAX: ffffffffffffffda RBX: 00007fd37e335f80 RCX: 00007fd37e17e719
[  564.147355][T11985] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  564.155320][T11985] RBP: 00007fd37f057090 R08: 0000000020008400 R09: 0000000000000010
[  564.163282][T11985] R10: 00000000200007ed R11: 0000000000000246 R12: 0000000000000002
[  564.171261][T11985] R13: 0000000000000000 R14: 00007fd37e335f80 R15: 00007ffe480bfea8
[  564.179249][T11985]  </TASK>
[  564.185370][ T5888] usb-storage 4-1:0.20: USB Mass Storage device detected
[  564.248430][ T5888] usb-storage 4-1:0.20: Quirks match for vid 04e6 pid 000b: 4
[  564.307410][T11970] netlink: 104 bytes leftover after parsing attributes in process `syz.3.1582'.
[  564.435551][T11995] netlink: 'syz.3.1582': attribute type 9 has an invalid length.
[  564.497965][T11995] netlink: 134660 bytes leftover after parsing attributes in process `syz.3.1582'.
[  564.529239][ T5888] usb 4-1: USB disconnect, device number 38
[  565.248581][   T29] kauditd_printk_skb: 5 callbacks suppressed
[  565.248598][   T29] audit: type=1326 audit(1730687073.565:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12004 comm="syz.1.1592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed9857e719 code=0x7ffc0000
[  565.299969][   T29] audit: type=1326 audit(1730687073.565:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12004 comm="syz.1.1592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7fed9857e719 code=0x7ffc0000
[  565.377588][   T29] audit: type=1326 audit(1730687073.565:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12004 comm="syz.1.1592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed9857e719 code=0x7ffc0000
[  565.454207][   T29] audit: type=1326 audit(1730687073.565:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12004 comm="syz.1.1592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed9857e719 code=0x7ffc0000
[  565.485671][T12011] ax25_connect(): syz.3.1595 uses autobind, please contact jreuter@yaina.de
[  565.498313][    T9] usb 2-1: new high-speed USB device number 32 using dummy_hcd
[  565.510318][T12016] netlink: 'syz.5.1597': attribute type 3 has an invalid length.
[  565.579135][   T29] audit: type=1326 audit(1730687073.565:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12004 comm="syz.1.1592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=327 compat=0 ip=0x7fed9857e719 code=0x7ffc0000
[  565.715138][T12021] tipc: Started in network mode
[  565.724758][T12021] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[  565.757501][T12021] tipc: New replicast peer: 0000:0000:0000:0000:0000:0000:0000:0001
[  565.771564][T12021] tipc: Enabled bearer <udp:syz0>, priority 10
[  565.790693][   T29] audit: type=1326 audit(1730687073.565:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12004 comm="syz.1.1592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed9857e719 code=0x7ffc0000
[  566.013412][   T29] audit: type=1326 audit(1730687073.565:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12004 comm="syz.1.1592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed9857e719 code=0x7ffc0000
[  566.129983][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  566.141436][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  566.163509][    T9] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  567.287192][   T29] audit: type=1326 audit(1730687073.565:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12004 comm="syz.1.1592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fed9857e719 code=0x7ffc0000
[  567.309276][   T29] audit: type=1326 audit(1730687073.565:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12004 comm="syz.1.1592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed9857e719 code=0x7ffc0000
[  567.331414][   T29] audit: type=1326 audit(1730687073.565:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12004 comm="syz.1.1592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed9857e719 code=0x7ffc0000
[  567.432400][T10567] tipc: Node number set to 1
[  567.438686][    T9] usb 2-1: New USB device found, idVendor=1223, idProduct=3f07, bcdDevice= 0.00
[  567.475873][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  567.555624][    T9] usb 2-1: config 0 descriptor??
[  567.906083][T12040] FAULT_INJECTION: forcing a failure.
[  567.906083][T12040] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  567.919355][T12040] CPU: 0 UID: 0 PID: 12040 Comm: syz.4.1604 Not tainted 6.12.0-rc5-syzkaller-00322-gb9021de3ec2f #0
[  567.930134][T12040] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  567.940199][T12040] Call Trace:
[  567.943495][T12040]  <TASK>
[  567.946442][T12040]  dump_stack_lvl+0x241/0x360
[  567.951125][T12040]  ? __pfx_dump_stack_lvl+0x10/0x10
[  567.956325][T12040]  ? __pfx__printk+0x10/0x10
[  567.960927][T12040]  ? snprintf+0xda/0x120
[  567.965185][T12040]  should_fail_ex+0x3b0/0x4e0
[  567.969873][T12040]  _copy_to_user+0x31/0xb0
[  567.974306][T12040]  simple_read_from_buffer+0xca/0x150
[  567.979699][T12040]  proc_fail_nth_read+0x1e9/0x250
[  567.984754][T12040]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  567.990330][T12040]  ? rw_verify_area+0x55e/0x6f0
[  567.995189][T12040]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  568.000739][T12040]  vfs_read+0x1fc/0xb70
[  568.004902][T12040]  ? fdget_pos+0x24e/0x320
[  568.009324][T12040]  ? __pfx_vfs_read+0x10/0x10
[  568.014003][T12040]  ? __fget_files+0x3f3/0x470
[  568.018691][T12040]  ? fdget_pos+0x24e/0x320
[  568.023115][T12040]  ksys_read+0x183/0x2b0
[  568.027362][T12040]  ? __pfx_ksys_read+0x10/0x10
[  568.032138][T12040]  ? do_syscall_64+0x100/0x230
[  568.036911][T12040]  ? do_syscall_64+0xb6/0x230
[  568.041594][T12040]  do_syscall_64+0xf3/0x230
[  568.046099][T12040]  ? clear_bhb_loop+0x35/0x90
[  568.050774][T12040]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  568.056664][T12040] RIP: 0033:0x7fdc4c17d15c
[  568.061084][T12040] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  568.080706][T12040] RSP: 002b:00007fdc4cf26030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  568.089120][T12040] RAX: ffffffffffffffda RBX: 00007fdc4c335f80 RCX: 00007fdc4c17d15c
[  568.097084][T12040] RDX: 000000000000000f RSI: 00007fdc4cf260a0 RDI: 0000000000000004
[  568.105051][T12040] RBP: 00007fdc4cf26090 R08: 0000000000000000 R09: 0000000000000000
[  568.113018][T12040] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  568.120983][T12040] R13: 0000000000000000 R14: 00007fdc4c335f80 R15: 00007ffd21b77498
[  568.128964][T12040]  </TASK>
[  568.371129][    T9] ortek 0003:1223:3F07.0011: unknown main item tag 0x6
[  568.381323][T12051] FAULT_INJECTION: forcing a failure.
[  568.381323][T12051] name failslab, interval 1, probability 0, space 0, times 0
[  568.394347][    T9] ortek 0003:1223:3F07.0011: report_id 29495 is invalid
[  568.419175][    T9] ortek 0003:1223:3F07.0011: item 0 2 1 8 parsing failed
[  568.429402][T12051] CPU: 0 UID: 0 PID: 12051 Comm: syz.2.1606 Not tainted 6.12.0-rc5-syzkaller-00322-gb9021de3ec2f #0
[  568.440197][T12051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  568.450269][T12051] Call Trace:
[  568.453556][T12051]  <TASK>
[  568.456494][T12051]  dump_stack_lvl+0x241/0x360
[  568.461196][T12051]  ? __pfx_dump_stack_lvl+0x10/0x10
[  568.466410][T12051]  ? __pfx__printk+0x10/0x10
[  568.471020][T12051]  ? ref_tracker_alloc+0x332/0x490
[  568.476153][T12051]  should_fail_ex+0x3b0/0x4e0
[  568.480847][T12051]  ? skb_clone+0x20c/0x390
[  568.485280][T12051]  should_failslab+0xac/0x100
[  568.489975][T12051]  ? skb_clone+0x20c/0x390
[  568.494409][T12051]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  568.499797][T12051]  skb_clone+0x20c/0x390
[  568.504059][T12051]  __netlink_deliver_tap+0x3cc/0x7c0
[  568.509368][T12051]  ? netlink_deliver_tap+0x2e/0x1b0
[  568.514578][T12051]  netlink_deliver_tap+0x19d/0x1b0
[  568.519711][T12051]  netlink_sendskb+0x68/0x140
[  568.524409][T12051]  netlink_unicast+0x39d/0x990
[  568.529181][T12051]  ? __asan_memcpy+0x40/0x70
[  568.533793][T12051]  ? __pfx_netlink_unicast+0x10/0x10
[  568.539105][T12051]  netlink_rcv_skb+0x262/0x430
[  568.543889][T12051]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  568.549363][T12051]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  568.554690][T12051]  ? netlink_deliver_tap+0x2e/0x1b0
[  568.559906][T12051]  netlink_unicast+0x7f6/0x990
[  568.564692][T12051]  ? __pfx_netlink_unicast+0x10/0x10
[  568.569988][T12051]  ? __virt_addr_valid+0x183/0x530
[  568.575116][T12051]  ? __check_object_size+0x48e/0x900
[  568.580422][T12051]  netlink_sendmsg+0x8e4/0xcb0
[  568.585210][T12051]  ? __pfx_netlink_sendmsg+0x10/0x10
[  568.590527][T12051]  ? __pfx_netlink_sendmsg+0x10/0x10
[  568.595823][T12051]  __sock_sendmsg+0x221/0x270
[  568.600528][T12051]  ____sys_sendmsg+0x52a/0x7e0
[  568.605318][T12051]  ? __pfx_____sys_sendmsg+0x10/0x10
[  568.610643][T12051]  __sys_sendmsg+0x292/0x380
[  568.615250][T12051]  ? __pfx___sys_sendmsg+0x10/0x10
[  568.620391][T12051]  ? __pfx_vfs_write+0x10/0x10
[  568.625198][T12051]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  568.631543][T12051]  ? do_syscall_64+0x100/0x230
[  568.636327][T12051]  ? do_syscall_64+0xb6/0x230
[  568.641024][T12051]  do_syscall_64+0xf3/0x230
[  568.645547][T12051]  ? clear_bhb_loop+0x35/0x90
[  568.650240][T12051]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  568.656147][T12051] RIP: 0033:0x7fc65177e719
[  568.660575][T12051] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  568.680214][T12051] RSP: 002b:00007fc6511ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  568.688647][T12051] RAX: ffffffffffffffda RBX: 00007fc651936058 RCX: 00007fc65177e719
[  568.696616][T12051] RDX: 0000000000000000 RSI: 0000000020000440 RDI: 0000000000000003
[  568.704587][T12051] RBP: 00007fc6511ff090 R08: 0000000000000000 R09: 0000000000000000
[  568.712555][T12051] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  568.720522][T12051] R13: 0000000000000001 R14: 00007fc651936058 R15: 00007ffe53fc1fa8
[  568.728507][T12051]  </TASK>
[  568.736740][    T9] ortek 0003:1223:3F07.0011: probe with driver ortek failed with error -22
[  569.313285][    T9] usb 2-1: USB disconnect, device number 32
[  569.457804][T12058] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1607'.
[  569.459734][T12056] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1607'.
[  570.826846][ T5838] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  572.799830][ T5838] usb 5-1: Using ep0 maxpacket: 8
[  572.831959][ T5838] usb 5-1: device descriptor read/all, error -71
[  573.117657][ T5888] usb 4-1: new full-speed USB device number 39 using dummy_hcd
[  574.059909][ T5888] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  574.076824][ T5888] usb 4-1: New USB device found, idVendor=15f4, idProduct=0015, bcdDevice=74.72
[  574.086103][ T5888] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  574.098949][ T5888] usb 4-1: Product: syz
[  574.109539][ T5888] usb 4-1: Manufacturer: syz
[  574.116374][ T5888] usb 4-1: SerialNumber: syz
[  574.142327][ T5888] usb 4-1: config 0 descriptor??
[  574.235907][ T5888] dvb-usb: found a 'Hanftek UMT-010 DVB-T USB2.0' in warm state.
[  574.263368][T12089] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  574.271037][ T5888] dvb-usb: bulk message failed: -22 (3/0)
[  574.398017][ T5888] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  574.449039][T12089] batadv_slave_0: entered promiscuous mode
[  574.644514][ T5888] dvb-usb: Hanftek UMT-010 DVB-T USB2.0 error while loading driver (-19)
[  574.678435][ T5888] dvb_usb_umt_010 4-1:0.0: probe with driver dvb_usb_umt_010 failed with error -22
[  575.954571][ T5888] usb 4-1: USB disconnect, device number 39
[  575.980898][T12098] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  577.074264][ T5888] usb 3-1: new low-speed USB device number 36 using dummy_hcd
[  577.453668][ T5888] usb 3-1: unable to get BOS descriptor or descriptor too short
[  577.620872][ T5888] usb 3-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  577.630773][ T5888] usb 3-1: config 1 has no interface number 1
[  577.636889][ T5888] usb 3-1: config 1 interface 0 altsetting 0 has an invalid endpoint descriptor of length 5, skipping
[  577.651663][ T5888] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  577.665518][ T5888] usb 3-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 4
[  577.676745][ T5888] usb 3-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid maxpacket 512, setting to 0
[  577.719062][ T5888] usb 3-1: string descriptor 0 read error: -22
[  577.725688][ T5888] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  577.738841][ T5888] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  577.757887][T12110] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  577.789849][ T5888] usb 3-1: low speed audio streaming not supported
[  578.114648][T12134] tipc: New replicast peer: 0000:0000:0000:0000:0000:0000:0000:0001
[  578.131889][T12134] tipc: Enabled bearer <udp:syz0>, priority 10
[  578.907628][    T9] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[  579.079475][    T9] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  579.102771][    T9] usb 5-1: config 0 has no interfaces?
[  579.134738][    T9] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  579.174473][    T9] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  579.184113][    T9] usb 5-1: Manufacturer: syz
[  579.201205][    T9] usb 5-1: config 0 descriptor??
[  579.301085][    T9] usb 3-1: USB disconnect, device number 36
[  579.345784][T12151] xt_recent: Unsupported userspace flags (00000076)
[  579.427887][ T5887] usb 2-1: new high-speed USB device number 33 using dummy_hcd
[  579.578912][ T5887] usb 2-1: Using ep0 maxpacket: 8
[  579.613854][ T5887] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  579.826904][ T5887] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  579.856065][ T5887] usb 2-1: config 16 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  579.870495][ T5887] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  579.886474][ T5887] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  579.920079][ T5887] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  580.167273][ T5887] usbtmc 2-1:16.0: bulk endpoints not found
[  580.322061][ T5888] usb 5-1: USB disconnect, device number 24
[  581.075848][T12177] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1642'.
[  581.301650][T12183] FAULT_INJECTION: forcing a failure.
[  581.301650][T12183] name failslab, interval 1, probability 0, space 0, times 0
[  581.467391][T12183] CPU: 0 UID: 0 PID: 12183 Comm: syz.3.1644 Not tainted 6.12.0-rc5-syzkaller-00322-gb9021de3ec2f #0
[  581.478211][T12183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  581.488280][T12183] Call Trace:
[  581.491566][T12183]  <TASK>
[  581.494506][T12183]  dump_stack_lvl+0x241/0x360
[  581.499205][T12183]  ? __pfx_dump_stack_lvl+0x10/0x10
[  581.504417][T12183]  ? __pfx__printk+0x10/0x10
[  581.509024][T12183]  ? fs_reclaim_acquire+0x93/0x130
[  581.514150][T12183]  ? __pfx___might_resched+0x10/0x10
[  581.519464][T12183]  should_fail_ex+0x3b0/0x4e0
[  581.524158][T12183]  ? tomoyo_encode+0x26f/0x540
[  581.528942][T12183]  should_failslab+0xac/0x100
[  581.533639][T12183]  ? tomoyo_encode+0x26f/0x540
[  581.538425][T12183]  __kmalloc_noprof+0xd8/0x400
[  581.543208][T12183]  tomoyo_encode+0x26f/0x540
[  581.547829][T12183]  tomoyo_realpath_from_path+0x59e/0x5e0
[  581.553499][T12183]  tomoyo_path_number_perm+0x23a/0x880
[  581.558984][T12183]  ? tomoyo_path_number_perm+0x208/0x880
[  581.564639][T12183]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  581.570686][T12183]  ? __fget_files+0x29/0x470
[  581.575301][T12183]  ? __fget_files+0x3f3/0x470
[  581.580007][T12183]  security_file_ioctl+0xc6/0x2a0
[  581.585049][T12183]  __se_sys_ioctl+0x47/0x170
[  581.589667][T12183]  do_syscall_64+0xf3/0x230
[  581.594188][T12183]  ? clear_bhb_loop+0x35/0x90
[  581.598882][T12183]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  581.604798][T12183] RIP: 0033:0x7fe24bd7e719
[  581.607182][T12185] netlink: 108 bytes leftover after parsing attributes in process `syz.4.1646'.
[  581.609214][T12183] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  581.609235][T12183] RSP: 002b:00007fe24cc2b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  581.609258][T12183] RAX: ffffffffffffffda RBX: 00007fe24bf35f80 RCX: 00007fe24bd7e719
[  581.609272][T12183] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000003
[  581.609285][T12183] RBP: 00007fe24cc2b090 R08: 0000000000000000 R09: 0000000000000000
[  581.609296][T12183] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  581.609308][T12183] R13: 0000000000000000 R14: 00007fe24bf35f80 R15: 00007ffea2dc0748
[  581.609336][T12183]  </TASK>
[  581.828125][T12183] ERROR: Out of memory at tomoyo_realpath_from_path.
[  582.270951][ T5838] usb 2-1: USB disconnect, device number 33
[  584.622688][T12228] netlink: 'syz.3.1657': attribute type 1 has an invalid length.
[  584.727603][T12203] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1652'.
[  585.050235][T12237] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  585.629100][T12242] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  585.658673][T12242] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  587.092649][T12255] 9p: Unknown Cache mode or invalid value mmapvmci
[  588.378394][T12287] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  590.065152][T12301] fuse: Bad value for 'fd'
[  590.334738][T12311] netlink: 'syz.3.1682': attribute type 8 has an invalid length.
[  590.438306][ T5888] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[  591.147909][ T5838] usb 3-1: new high-speed USB device number 37 using dummy_hcd
[  591.347757][ T5838] usb 3-1: device descriptor read/64, error -71
[  591.353817][ T5888] usb 5-1: unable to get BOS descriptor or descriptor too short
[  591.374356][ T5888] usb 5-1: config 3 has an invalid interface number: 102 but max is 0
[  591.383058][ T5888] usb 5-1: config 3 has no interface number 0
[  591.389342][ T5888] usb 5-1: config 3 interface 102 has no altsetting 0
[  591.432554][ T5888] usb 5-1: New USB device found, idVendor=0781, idProduct=0005, bcdDevice= 0.05
[  591.441861][ T5888] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  591.449964][ T5888] usb 5-1: Product: syz
[  591.454144][ T5888] usb 5-1: Manufacturer: syz
[  591.459080][ T5888] usb 5-1: SerialNumber: syz
[  591.591603][T12319] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1684'.
[  591.653697][ T5838] usb 3-1: new high-speed USB device number 38 using dummy_hcd
[  591.741610][T12326] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  591.786083][T12326] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  591.849559][ T5888] ums-usbat 5-1:3.102: USB Mass Storage device detected
[  591.923750][ T5888] ums-usbat 5-1:3.102: Quirks match for vid 0781 pid 0005: 1
[  591.985065][ T5888] ums-usbat 5-1:3.102: This device (0781,0005,0005 S 06 P 14) has an unneeded SubClass entry in unusual_devs.h (kernel 6.12.0-rc5-syzkaller-00322-gb9021de3ec2f)
[  591.985065][ T5888]    Please send a copy of this message to <linux-usb@vger.kernel.org> and <usb-storage@lists.one-eyed-alien.net>
[  592.177568][ T5838] usb 3-1: device descriptor read/64, error -71
[  592.300213][ T5888] usb 5-1: USB disconnect, device number 25
[  592.300378][ T5838] usb usb3-port1: attempt power cycle
[  593.280507][T12339] netlink: 'syz.3.1689': attribute type 4 has an invalid length.
[  593.347579][T12340] netlink: 'syz.3.1689': attribute type 4 has an invalid length.
[  593.649898][ T5838] usb 3-1: new high-speed USB device number 39 using dummy_hcd
[  593.678451][ T5838] usb 3-1: device descriptor read/8, error -71
[  593.777743][T12345] netlink: 'syz.1.1691': attribute type 1 has an invalid length.
[  593.882401][T12345] netlink: 'syz.1.1691': attribute type 2 has an invalid length.
[  593.939603][ T5838] usb 3-1: new high-speed USB device number 40 using dummy_hcd
[  594.001992][ T5838] usb 3-1: device descriptor read/8, error -71
[  594.160177][ T5838] usb usb3-port1: unable to enumerate USB device
[  594.433911][T12353] fuse: Bad value for 'fd'
[  596.793977][ T5887] usb 3-1: new high-speed USB device number 41 using dummy_hcd
[  596.839268][    C1] raw-gadget.1 gadget.2: ignoring, device is not running
[  596.967806][ T5887] usb 3-1: device descriptor read/64, error -32
[  597.207755][ T5887] usb 3-1: new high-speed USB device number 42 using dummy_hcd
[  597.227217][T12380] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1695'.
[  597.397675][ T5887] usb 3-1: Using ep0 maxpacket: 16
[  597.465342][ T5887] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  597.833210][ T5887] usb 3-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice= 0.40
[  597.858493][ T5887] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  597.901528][ T5887] usb 3-1: Product: syz
[  597.905929][ T5887] usb 3-1: Manufacturer: syz
[  597.946825][ T5887] usb 3-1: SerialNumber: syz
[  598.187685][ T5887] input: bcm5974 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/input/input26
[  598.349645][T12399] fuse: Bad value for 'fd'
[  598.486820][    T9] usb 3-1: USB disconnect, device number 42
[  599.455557][T12413] netlink: 'syz.1.1708': attribute type 8 has an invalid length.
[  601.654783][T12430] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  602.087907][T10567] usb 4-1: new high-speed USB device number 40 using dummy_hcd
[  604.819532][T12460] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1720'.
[  604.938579][T12463] FAULT_INJECTION: forcing a failure.
[  604.938579][T12463] name failslab, interval 1, probability 0, space 0, times 0
[  604.992477][T12463] CPU: 0 UID: 0 PID: 12463 Comm: syz.3.1726 Not tainted 6.12.0-rc5-syzkaller-00322-gb9021de3ec2f #0
[  605.003296][T12463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  605.013365][T12463] Call Trace:
[  605.016643][T12463]  <TASK>
[  605.019572][T12463]  dump_stack_lvl+0x241/0x360
[  605.024256][T12463]  ? __pfx_dump_stack_lvl+0x10/0x10
[  605.029452][T12463]  ? __pfx__printk+0x10/0x10
[  605.034040][T12463]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[  605.040018][T12463]  ? __pfx___might_resched+0x10/0x10
[  605.045304][T12463]  should_fail_ex+0x3b0/0x4e0
[  605.049976][T12463]  should_failslab+0xac/0x100
[  605.054649][T12463]  ? __alloc_skb+0x1c3/0x440
[  605.059236][T12463]  kmem_cache_alloc_node_noprof+0x71/0x320
[  605.065039][T12463]  __alloc_skb+0x1c3/0x440
[  605.069454][T12463]  ? __pfx___alloc_skb+0x10/0x10
[  605.074388][T12463]  ? netlink_ack_tlv_len+0x6e/0x200
[  605.079583][T12463]  netlink_ack+0x13f/0xa30
[  605.083989][T12463]  ? ____sys_sendmsg+0x52a/0x7e0
[  605.088921][T12463]  ? __sys_sendmsg+0x292/0x380
[  605.093676][T12463]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  605.099755][T12463]  netlink_rcv_skb+0x262/0x430
[  605.104519][T12463]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  605.109977][T12463]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  605.115261][T12463]  ? cap_capable+0x1b4/0x250
[  605.119853][T12463]  ? safesetid_security_capable+0xb2/0x1d0
[  605.125656][T12463]  ? bpf_lsm_capable+0x9/0x10
[  605.130327][T12463]  ? security_capable+0x7e/0x2d0
[  605.135260][T12463]  nfnetlink_rcv+0x297/0x2ab0
[  605.139937][T12463]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  605.145656][T12463]  ? __dev_queue_xmit+0x2da/0x3ed0
[  605.150764][T12463]  ? __dev_queue_xmit+0x171d/0x3ed0
[  605.155954][T12463]  ? kasan_save_track+0x51/0x80
[  605.160807][T12463]  ? do_syscall_64+0xf3/0x230
[  605.165488][T12463]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  605.170595][T12463]  ? __dev_queue_xmit+0x2da/0x3ed0
[  605.175703][T12463]  ? __pfx___dev_queue_xmit+0x10/0x10
[  605.181082][T12463]  ? ref_tracker_free+0x643/0x7e0
[  605.186103][T12463]  ? __asan_memcpy+0x40/0x70
[  605.190688][T12463]  ? __pfx_ref_tracker_free+0x10/0x10
[  605.196062][T12463]  ? netlink_deliver_tap+0x2e/0x1b0
[  605.201256][T12463]  ? skb_clone+0x240/0x390
[  605.205669][T12463]  ? __pfx_lock_release+0x10/0x10
[  605.210694][T12463]  ? __netlink_deliver_tap+0x77e/0x7c0
[  605.216157][T12463]  ? netlink_deliver_tap+0x2e/0x1b0
[  605.221349][T12463]  netlink_unicast+0x7f6/0x990
[  605.226110][T12463]  ? __pfx_netlink_unicast+0x10/0x10
[  605.231384][T12463]  ? __virt_addr_valid+0x183/0x530
[  605.236490][T12463]  ? __check_object_size+0x48e/0x900
[  605.241780][T12463]  netlink_sendmsg+0x8e4/0xcb0
[  605.246546][T12463]  ? __pfx_netlink_sendmsg+0x10/0x10
[  605.251836][T12463]  ? __pfx_netlink_sendmsg+0x10/0x10
[  605.257112][T12463]  __sock_sendmsg+0x221/0x270
[  605.261789][T12463]  ____sys_sendmsg+0x52a/0x7e0
[  605.266555][T12463]  ? __pfx_____sys_sendmsg+0x10/0x10
[  605.271849][T12463]  __sys_sendmsg+0x292/0x380
[  605.276435][T12463]  ? __pfx___sys_sendmsg+0x10/0x10
[  605.281550][T12463]  ? __pfx_vfs_write+0x10/0x10
[  605.286326][T12463]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  605.292652][T12463]  ? do_syscall_64+0x100/0x230
[  605.297411][T12463]  ? do_syscall_64+0xb6/0x230
[  605.302091][T12463]  do_syscall_64+0xf3/0x230
[  605.306589][T12463]  ? clear_bhb_loop+0x35/0x90
[  605.311265][T12463]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  605.317152][T12463] RIP: 0033:0x7fe24bd7e719
[  605.321560][T12463] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  605.341163][T12463] RSP: 002b:00007fe24cc2b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  605.349574][T12463] RAX: ffffffffffffffda RBX: 00007fe24bf35f80 RCX: 00007fe24bd7e719
[  605.357537][T12463] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[  605.365932][T12463] RBP: 00007fe24cc2b090 R08: 0000000000000000 R09: 0000000000000000
[  605.373896][T12463] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  605.381861][T12463] R13: 0000000000000000 R14: 00007fe24bf35f80 R15: 00007ffea2dc0748
[  605.389843][T12463]  </TASK>
[  605.417516][T10567] usb 4-1: device not accepting address 40, error -71
[  605.477746][T12464] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1724'.
[  606.159348][T12476] FAULT_INJECTION: forcing a failure.
[  606.159348][T12476] name failslab, interval 1, probability 0, space 0, times 0
[  606.234880][T12476] CPU: 0 UID: 0 PID: 12476 Comm: syz.4.1730 Not tainted 6.12.0-rc5-syzkaller-00322-gb9021de3ec2f #0
[  606.245694][T12476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  606.255772][T12476] Call Trace:
[  606.259060][T12476]  <TASK>
[  606.261989][T12476]  dump_stack_lvl+0x241/0x360
[  606.266677][T12476]  ? __pfx_dump_stack_lvl+0x10/0x10
[  606.271871][T12476]  ? __pfx__printk+0x10/0x10
[  606.276458][T12476]  ? fs_reclaim_acquire+0x93/0x130
[  606.281574][T12476]  ? __pfx___might_resched+0x10/0x10
[  606.286859][T12476]  should_fail_ex+0x3b0/0x4e0
[  606.291534][T12476]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  606.297250][T12476]  should_failslab+0xac/0x100
[  606.301925][T12476]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  606.307644][T12476]  __kmalloc_noprof+0xd8/0x400
[  606.312404][T12476]  tomoyo_realpath_from_path+0xcf/0x5e0
[  606.317957][T12476]  tomoyo_path_number_perm+0x23a/0x880
[  606.323414][T12476]  ? tomoyo_path_number_perm+0x208/0x880
[  606.329045][T12476]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  606.335057][T12476]  ? __fget_files+0x29/0x470
[  606.339650][T12476]  ? __fget_files+0x3f3/0x470
[  606.344332][T12476]  security_file_ioctl+0xc6/0x2a0
[  606.349358][T12476]  __se_sys_ioctl+0x47/0x170
[  606.353947][T12476]  do_syscall_64+0xf3/0x230
[  606.358450][T12476]  ? clear_bhb_loop+0x35/0x90
[  606.363125][T12476]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  606.369016][T12476] RIP: 0033:0x7fdc4c17e719
[  606.373423][T12476] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  606.393024][T12476] RSP: 002b:00007fdc4cf26038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  606.401436][T12476] RAX: ffffffffffffffda RBX: 00007fdc4c335f80 RCX: 00007fdc4c17e719
[  606.409402][T12476] RDX: 0000000020000000 RSI: 0000000000008b18 RDI: 0000000000000003
[  606.417363][T12476] RBP: 00007fdc4cf26090 R08: 0000000000000000 R09: 0000000000000000
[  606.425327][T12476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  606.433292][T12476] R13: 0000000000000000 R14: 00007fdc4c335f80 R15: 00007ffd21b77498
[  606.441273][T12476]  </TASK>
[  606.499625][T12476] ERROR: Out of memory at tomoyo_realpath_from_path.
[  607.720169][T10567] usb 4-1: new high-speed USB device number 42 using dummy_hcd
[  607.898340][T10567] usb 4-1: Using ep0 maxpacket: 8
[  608.178650][T10567] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  608.196517][T10567] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[  608.208574][T10567] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 16
[  608.228861][T10567] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  608.327782][T10567] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  608.371137][T10567] usb 4-1: Product: 墔๛뢂燜擰ꉿ퐫廙鯜罛饬ꣶײ霬ջ嗱罏钐颹掋딉⭞ᒬ峖௮ꩱȲ᨜ᪧᆿ땜㕈診柘휀军빘諭伩෎픫ၿꋶ路ﺤⵐ㪏ꬲᓠ㬜穽풦捠偄뜎㛏檨鶠ཷ킁뉝쬊痜墳㤺䅎혟娋䧾≴ꦡ暚ꞗ㔩䄿犚媖ݿƓ䗩摫ꪽ∇➂䒤ꢒ𧻓〼惢′蘵䏆秊͈類顋
[  608.436736][T10567] usb 4-1: Manufacturer: ﱟ絷ᇈG꧸긭箢譽
[  608.471994][T10567] usb 4-1: SerialNumber: 闿䳨⇨䖜膶弳ᦪ૜뼴
[  608.545212][   T29] kauditd_printk_skb: 60 callbacks suppressed
[  608.545230][   T29] audit: type=1326 audit(1730687116.855:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12502 comm="syz.2.1738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc65177e719 code=0x7ffc0000
[  608.594988][   T29] audit: type=1326 audit(1730687116.895:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12502 comm="syz.2.1738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc65177e719 code=0x7ffc0000
[  608.626881][   T29] audit: type=1326 audit(1730687116.905:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12502 comm="syz.2.1738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fc65177e719 code=0x7ffc0000
[  608.672904][   T29] audit: type=1326 audit(1730687116.985:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12517 comm="syz.4.1741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4c17e719 code=0x7ffc0000
[  608.732496][   T29] audit: type=1326 audit(1730687116.985:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12517 comm="syz.4.1741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4c17e719 code=0x7ffc0000
[  608.761368][T12489] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  608.792634][T12489] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  608.803970][T12489] random: crng reseeded on system resumption
[  608.817537][   T29] audit: type=1326 audit(1730687117.025:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12517 comm="syz.4.1741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7fdc4c17e719 code=0x7ffc0000
[  608.895369][   T29] audit: type=1326 audit(1730687117.025:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12517 comm="syz.4.1741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4c17e719 code=0x7ffc0000
[  608.934337][T10567] cdc_ncm 4-1:1.0: bind() failure
[  608.954046][T10567] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found
[  608.973824][T10567] cdc_ncm 4-1:1.1: bind() failure
[  608.979097][ T5838] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[  608.985877][   T29] audit: type=1326 audit(1730687117.025:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12517 comm="syz.4.1741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4c17e719 code=0x7ffc0000
[  609.029280][T10567] usb 4-1: USB disconnect, device number 42
[  609.093596][   T29] audit: type=1326 audit(1730687117.025:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12517 comm="syz.4.1741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=327 compat=0 ip=0x7fdc4c17e719 code=0x7ffc0000
[  609.172073][   T29] audit: type=1326 audit(1730687117.025:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12517 comm="syz.4.1741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4c17e719 code=0x7ffc0000
[  609.200695][ T5838] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  609.217835][ T5838] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  609.251872][ T5838] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  609.295296][ T5838] usb 5-1: New USB device found, idVendor=1223, idProduct=3f07, bcdDevice= 0.00
[  609.327518][ T5838] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  609.349475][ T5838] usb 5-1: config 0 descriptor??
[  609.450079][T12526] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  609.476035][T12526] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  609.767146][ T5838] ortek 0003:1223:3F07.0012: unknown main item tag 0x6
[  609.789864][ T5838] ortek 0003:1223:3F07.0012: report_id 29495 is invalid
[  609.807108][ T5838] ortek 0003:1223:3F07.0012: item 0 2 1 8 parsing failed
[  609.817961][ T5838] ortek 0003:1223:3F07.0012: probe with driver ortek failed with error -22
[  610.819531][T12531] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1744'.
[  611.757122][ T5838] usb 5-1: USB disconnect, device number 26
[  612.007576][ T5889] usb 2-1: new high-speed USB device number 34 using dummy_hcd
[  612.493825][ T5889] usb 2-1: Using ep0 maxpacket: 32
[  612.503691][ T5889] usb 2-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  612.512746][ T5889] usb 2-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  612.527596][ T5889] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  612.547686][ T5889] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  612.556749][ T5889] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  612.570794][ T5889] usb 2-1: Product: syz
[  612.575206][ T5889] usb 2-1: Manufacturer: syz
[  612.582725][ T5889] usb 2-1: SerialNumber: syz
[  612.898031][    T9] usb 4-1: new high-speed USB device number 43 using dummy_hcd
[  613.064683][    T9] usb 4-1: New USB device found, idVendor=102c, idProduct=6251, bcdDevice=75.3e
[  613.079652][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  613.100407][    T9] usb 4-1: Product: syz
[  613.111535][    T9] usb 4-1: Manufacturer: syz
[  613.127907][    T9] usb 4-1: SerialNumber: syz
[  613.150499][    T9] usb 4-1: config 0 descriptor??
[  613.163241][    T9] gspca_main: etoms-2.14.0 probing 102c:6251
[  613.269061][T12551] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  613.478405][    T9] usb 4-1: USB disconnect, device number 43
[  613.950647][T12582] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1757'.
[  613.971590][T12582] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1757'.
[  614.388472][T12588] loop0: detected capacity change from 0 to 7
[  614.537655][T12588] Dev loop0: unable to read RDB block 7
[  614.544350][T12588]  loop0: AHDI p2
[  614.550931][T12588] loop0: partition table partially beyond EOD, truncated
[  615.316182][ T5889] usb 2-1: 0:2 : does not exist
[  615.417536][ T5889] usb 2-1: USB disconnect, device number 34
[  615.465846][T10331] udevd[10331]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  615.663750][T12599] netlink: 'syz.1.1761': attribute type 8 has an invalid length.
[  616.293823][T12607] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1763'.
[  618.184509][T12625] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  618.241171][T12625] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  618.292027][T12625] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  618.313206][T12625] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  618.333443][T12625] random: crng reseeded on system resumption
[  618.517515][T10567] usb 2-1: new high-speed USB device number 35 using dummy_hcd
[  618.717589][T10567] usb 2-1: Using ep0 maxpacket: 32
[  618.727398][T10567] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid maxpacket 512, setting to 64
[  618.771688][T10567] usb 2-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=58.16
[  618.790000][T10567] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  618.861806][T10567] usb 2-1: Product: syz
[  618.910563][T10567] usb 2-1: Manufacturer: syz
[  618.926342][T10567] usb 2-1: SerialNumber: syz
[  618.963231][T10567] usb 2-1: config 0 descriptor??
[  618.990475][T12639] 9pnet_fd: Insufficient options for proto=fd
[  619.056777][T10567] usb 2-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[  620.137165][ T2988] usb 2-1: Failed to submit usb control message: -110
[  620.165441][ T2988] usb 2-1: unable to send the bmi data to the device: -110
[  620.257776][ T2988] usb 2-1: unable to get target info from device
[  620.307975][ T2988] usb 2-1: could not get target info (-110)
[  620.314219][ T2988] usb 2-1: could not probe fw (-110)
[  620.460492][ T5918] usb 2-1: USB disconnect, device number 35
[  621.485271][T12676] netlink: 'syz.5.1779': attribute type 2 has an invalid length.
[  621.663607][T12678] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  621.687824][T12678] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  622.070016][T12687] bridge0: port 3(erspan0) entered blocking state
[  622.076795][T12687] bridge0: port 3(erspan0) entered disabled state
[  622.083856][T12687] erspan0: entered allmulticast mode
[  622.092072][T12687] erspan0: entered promiscuous mode
[  622.098826][T12687] bridge0: port 3(erspan0) entered blocking state
[  622.105494][T12687] bridge0: port 3(erspan0) entered forwarding state
[  623.557872][ T5887] usb 2-1: new high-speed USB device number 36 using dummy_hcd
[  623.795501][ T5887] usb 2-1: New USB device found, idVendor=04bb, idProduct=0901, bcdDevice=55.ba
[  623.808240][ T5887] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  623.826836][ T5887] usb 2-1: Product: syz
[  624.533487][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  624.540328][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  624.673373][ T5887] usb 2-1: Manufacturer: syz
[  624.693137][ T5887] usb 2-1: SerialNumber: syz
[  624.927009][ T5887] usb 2-1: config 0 descriptor??
[  625.051907][T12717] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1789'.
[  628.564524][ T5887] kaweth 2-1:0.0: Firmware present in device.
[  628.786234][ T5887] kaweth 2-1:0.0: Error reading configuration (-71), no net device created
[  629.539058][T12744] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  629.639536][ T5887] kaweth 2-1:0.0: probe with driver kaweth failed with error -5
[  629.639694][T12744] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  629.696781][ T5887] usb 2-1: USB disconnect, device number 36
[  629.843640][T12744] tipc: Enabled bearer <udp:syz2>, priority 10
[  630.098964][T12761] FAULT_INJECTION: forcing a failure.
[  630.098964][T12761] name failslab, interval 1, probability 0, space 0, times 0
[  630.154491][T12761] CPU: 1 UID: 0 PID: 12761 Comm: syz.4.1802 Not tainted 6.12.0-rc5-syzkaller-00322-gb9021de3ec2f #0
[  630.165296][T12761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  630.175368][T12761] Call Trace:
[  630.178661][T12761]  <TASK>
[  630.181608][T12761]  dump_stack_lvl+0x241/0x360
[  630.186316][T12761]  ? __pfx_dump_stack_lvl+0x10/0x10
[  630.191541][T12761]  ? __pfx__printk+0x10/0x10
[  630.196155][T12761]  ? __kmalloc_noprof+0xb0/0x400
[  630.201117][T12761]  ? __pfx___might_resched+0x10/0x10
[  630.206433][T12761]  should_fail_ex+0x3b0/0x4e0
[  630.211138][T12761]  ? mpi_alloc+0x7a/0x140
[  630.215488][T12761]  should_failslab+0xac/0x100
[  630.220186][T12761]  ? mpi_alloc+0x7a/0x140
[  630.224532][T12761]  __kmalloc_noprof+0xd8/0x400
[  630.229315][T12761]  mpi_alloc+0x7a/0x140
[  630.233488][T12761]  mpi_read_raw_data+0x169/0x970
[  630.238446][T12761]  ? crypto_dh_decode_key+0x362/0x690
[  630.243846][T12761]  dh_set_secret+0x26a/0x460
[  630.248452][T12761]  ? __kmalloc_node_noprof+0x247/0x440
[  630.253937][T12761]  ? crypto_create_tfm_node+0x88/0x3d0
[  630.259422][T12761]  ? __pfx_dh_set_secret+0x10/0x10
[  630.264549][T12761]  ? crypto_create_tfm_node+0x1fb/0x3d0
[  630.270123][T12761]  ? crypto_alloc_tfm_node+0x332/0x360
[  630.275613][T12761]  __keyctl_dh_compute+0x64c/0xf50
[  630.280758][T12761]  ? __pfx___keyctl_dh_compute+0x10/0x10
[  630.286423][T12761]  ? get_pid_task+0x23/0x1f0
[  630.291056][T12761]  keyctl_dh_compute+0x107/0x160
[  630.296020][T12761]  ? __pfx_keyctl_dh_compute+0x10/0x10
[  630.301507][T12761]  ? vfs_write+0x730/0xd30
[  630.305950][T12761]  __se_sys_keyctl+0x3f3/0x910
[  630.310739][T12761]  ? __mutex_unlock_slowpath+0x21d/0x750
[  630.316395][T12761]  ? __pfx___se_sys_keyctl+0x10/0x10
[  630.321708][T12761]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  630.327709][T12761]  ? __fget_files+0x3f3/0x470
[  630.332399][T12761]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  630.338386][T12761]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  630.344713][T12761]  ? do_syscall_64+0x100/0x230
[  630.349477][T12761]  ? __x64_sys_keyctl+0x20/0xc0
[  630.354328][T12761]  do_syscall_64+0xf3/0x230
[  630.358835][T12761]  ? clear_bhb_loop+0x35/0x90
[  630.363507][T12761]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  630.369394][T12761] RIP: 0033:0x7fdc4c17e719
[  630.373801][T12761] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  630.393400][T12761] RSP: 002b:00007fdc4cf26038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[  630.401815][T12761] RAX: ffffffffffffffda RBX: 00007fdc4c335f80 RCX: 00007fdc4c17e719
[  630.409784][T12761] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000017
[  630.417749][T12761] RBP: 00007fdc4cf26090 R08: 0000000000000000 R09: 0000000000000000
[  630.425710][T12761] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  630.433670][T12761] R13: 0000000000000000 R14: 00007fdc4c335f80 R15: 00007ffd21b77498
[  630.441647][T12761]  </TASK>
[  630.484629][T12763] netlink: 'syz.1.1803': attribute type 3 has an invalid length.
[  632.568828][   T29] kauditd_printk_skb: 54 callbacks suppressed
[  632.568841][   T29] audit: type=1804 audit(1730687140.875:402): pid=12792 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.5.1809" name="/newroot/116/file1" dev="fuse" ino=1 res=1 errno=0
[  632.595498][T12799] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  632.603851][   T29] audit: type=1800 audit(1730687140.875:403): pid=12792 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.5.1809" name="/" dev="fuse" ino=1 res=0 errno=0
[  632.612699][ T5889] usb 4-1: new high-speed USB device number 44 using dummy_hcd
[  632.623689][   T29] audit: type=1804 audit(1730687140.895:404): pid=12792 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.5.1809" name="/newroot/116/file1" dev="fuse" ino=1 res=1 errno=0
[  632.842443][   T29] audit: type=1804 audit(1730687140.895:405): pid=12792 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.5.1809" name="/newroot/116/file1" dev="fuse" ino=1 res=1 errno=0
[  633.407807][   T29] audit: type=1800 audit(1730687140.895:406): pid=12792 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.5.1809" name="/" dev="fuse" ino=1 res=0 errno=0
[  633.584510][ T5889] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0
[  634.641825][ T5889] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 0
[  634.651633][ T5889] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0
[  634.661405][ T5889] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x88 has invalid maxpacket 0
[  634.738220][ T5889] usb 4-1: New USB device found, idVendor=04e6, idProduct=5591, bcdDevice=b5.39
[  634.759914][ T5889] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  634.848019][ T5889] usb 4-1: Product: syz
[  634.857540][ T5889] usb 4-1: Manufacturer: syz
[  634.867558][ T5889] usb 4-1: SerialNumber: syz
[  634.922271][ T5889] usb 4-1: config 0 descriptor??
[  634.936327][ T5889] usb 4-1: NFC: Unable to get FW version
[  634.942943][ T5889] pn533_usb 4-1:0.0: probe with driver pn533_usb failed with error -90
[  635.178860][T10567] usb 4-1: USB disconnect, device number 44
[  637.585329][T12831] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1819'.
[  638.351566][T12830] sit0: entered promiscuous mode
[  638.379307][T12830] netlink: 'syz.3.1818': attribute type 1 has an invalid length.
[  638.446951][T12830] netlink: 1 bytes leftover after parsing attributes in process `syz.3.1818'.
[  638.666561][T12837] bond_slave_0: entered promiscuous mode
[  638.672705][T12837] bond_slave_1: entered promiscuous mode
[  638.746199][T12837] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  638.780097][T12837] team0: Port device macvlan2 added
[  639.070855][T12839] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1817'.
[  639.351480][ T5840] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  639.363500][ T5840] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  639.418184][ T5840] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  639.437621][ T5840] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  639.457743][ T5840] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  639.469675][ T5840] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  640.240192][T12856] input: syz0 as /devices/virtual/input/input29
[  641.520062][T12876] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  641.700502][ T5840] Bluetooth: hci5: command tx timeout
[  642.085429][T12876] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  642.139663][T12885] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1827'.
[  642.221146][T12838] chnl_net:caif_netlink_parms(): no params data found
[  642.744270][T12838] bridge0: port 1(bridge_slave_0) entered blocking state
[  642.903929][T12838] bridge0: port 1(bridge_slave_0) entered disabled state
[  642.957813][T12838] bridge_slave_0: entered allmulticast mode
[  642.982668][T12838] bridge_slave_0: entered promiscuous mode
[  643.011757][T12838] bridge0: port 2(bridge_slave_1) entered blocking state
[  643.040385][T12838] bridge0: port 2(bridge_slave_1) entered disabled state
[  643.121461][T12838] bridge_slave_1: entered allmulticast mode
[  643.155930][T12838] bridge_slave_1: entered promiscuous mode
[  643.220370][T12838] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  643.259284][T12838] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  643.349990][T12838] team0: Port device team_slave_0 added
[  643.372544][T12838] team0: Port device team_slave_1 added
[  643.729873][ T5840] Bluetooth: hci5: command tx timeout
[  643.834282][T12838] batman_adv: batadv0: Adding interface: batadv_slave_0
[  643.842154][T12838] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  643.884692][T12838] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  643.909584][T12838] batman_adv: batadv0: Adding interface: batadv_slave_1
[  643.916556][T12838] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  644.867234][T12838] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  646.240740][ T5840] Bluetooth: hci5: command tx timeout
[  646.259260][T12838] hsr_slave_0: entered promiscuous mode
[  646.333466][T12838] hsr_slave_1: entered promiscuous mode
[  646.384314][T12838] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  646.418852][T12838] Cannot create hsr debugfs directory
[  647.134696][T12922] netlink: 'syz.1.1832': attribute type 5 has an invalid length.
[  647.336117][T12940] x_tables: ip_tables: icmp match: only valid for protocol 1
[  648.583420][T12949] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  648.583420][T12949]    program syz.5.1837 not setting count and/or reply_len properly
[  648.661881][ T5840] Bluetooth: hci5: command tx timeout
[  648.662203][   T29] audit: type=1804 audit(1730687156.315:407): pid=12947 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.3.1838" name="/newroot/349/file1" dev="fuse" ino=1 res=1 errno=0
[  648.687633][   T29] audit: type=1800 audit(1730687156.315:408): pid=12947 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.1838" name="/" dev="fuse" ino=1 res=0 errno=0
[  648.707034][   T29] audit: type=1804 audit(1730687156.325:409): pid=12947 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.3.1838" name="/newroot/349/file1" dev="fuse" ino=1 res=1 errno=0
[  648.727163][   T29] audit: type=1804 audit(1730687156.325:410): pid=12947 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.3.1838" name="/newroot/349/file1" dev="fuse" ino=1 res=1 errno=0
[  648.747198][   T29] audit: type=1800 audit(1730687156.325:411): pid=12947 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.1838" name="/" dev="fuse" ino=1 res=0 errno=0
[  649.134679][T12953] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  649.518049][T12838] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  649.894752][T12838] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  649.926418][T12958] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  649.974803][T12838] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  650.187242][T12838] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  650.369534][T12838] 8021q: adding VLAN 0 to HW filter on device bond0
[  650.390635][T12838] 8021q: adding VLAN 0 to HW filter on device team0
[  650.403801][ T8255] bridge0: port 1(bridge_slave_0) entered blocking state
[  650.410937][ T8255] bridge0: port 1(bridge_slave_0) entered forwarding state
[  650.502928][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  650.510071][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  650.633350][T12838] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  650.644073][T12838] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  651.252892][T12838] 8021q: adding VLAN 0 to HW filter on device batadv0
[  653.123248][T12838] veth0_vlan: entered promiscuous mode
[  653.146371][T12838] veth1_vlan: entered promiscuous mode
[  653.214101][T12838] veth0_macvtap: entered promiscuous mode
[  653.278885][T12838] veth1_macvtap: entered promiscuous mode
[  653.310029][T12838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  653.326114][T12838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  653.362239][T12838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  653.377547][T12838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  653.402349][T12838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  653.418646][T12838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  653.445646][T12838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  653.466790][T12838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  653.490233][T12838] batman_adv: batadv0: Interface activated: batadv_slave_0
[  653.514828][T12838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  653.830973][T12838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  653.857851][T12838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  653.890132][T12838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  653.927577][T12838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  653.941487][T12838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  653.966807][T12838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  653.989914][T12838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  654.012543][T12838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  654.058800][T12838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  654.102010][T12838] batman_adv: batadv0: Interface activated: batadv_slave_1
[  654.138653][T12838] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  654.223333][T12838] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  654.247844][T12838] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  654.277279][T12838] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  654.300058][   T29] audit: type=1804 audit(1730687162.615:412): pid=13000 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.4.1848" name="/newroot/420/file1" dev="fuse" ino=1 res=1 errno=0
[  654.347674][   T29] audit: type=1800 audit(1730687162.655:413): pid=13000 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.4.1848" name="/" dev="fuse" ino=1 res=0 errno=0
[  654.393347][   T29] audit: type=1804 audit(1730687162.655:414): pid=13000 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.4.1848" name="/newroot/420/file1" dev="fuse" ino=1 res=1 errno=0
[  654.413065][    C0] vkms_vblank_simulate: vblank timer overrun
[  654.659845][   T29] audit: type=1804 audit(1730687162.655:415): pid=13000 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.4.1848" name="/newroot/420/file1" dev="fuse" ino=1 res=1 errno=0
[  654.698482][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  654.746908][   T29] audit: type=1800 audit(1730687162.655:416): pid=13000 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.4.1848" name="/" dev="fuse" ino=1 res=0 errno=0
[  654.760598][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  654.862193][ T8255] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  654.880614][ T8255] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  655.147772][ T5887] usb 4-1: new high-speed USB device number 45 using dummy_hcd
[  655.434408][ T5887] usb 4-1: Using ep0 maxpacket: 8
[  656.170975][ T5887] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  656.182039][ T5887] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[  656.259199][ T5887] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 16
[  656.702298][ T5887] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  656.748671][ T5887] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  656.987642][ T5887] usb 4-1: Product: 墔๛뢂燜擰ꉿ퐫廙鯜罛饬ꣶײ霬ջ嗱罏钐颹掋딉⭞ᒬ峖௮ꩱȲ᨜ᪧᆿ땜㕈診柘휀军빘諭伩෎픫ၿꋶ路ﺤⵐ㪏ꬲᓠ㬜穽풦捠偄뜎㛏檨鶠ཷ킁뉝쬊痜墳㤺䅎혟娋䧾≴ꦡ暚ꞗ㔩䄿犚媖ݿƓ䗩摫ꪽ∇➂䒤ꢒ𧻓〼惢′蘵䏆秊͈類顋
[  657.045101][T13023] binder_alloc: binder_alloc_mmap_handler: 13022 20ffd000-21000000 already mapped failed -16
[  657.953812][ T5887] usb 4-1: Manufacturer: ﱟ絷ᇈG꧸긭箢譽
[  657.974196][ T5887] usb 4-1: can't set config #1, error -71
[  657.981301][ T5887] usb 4-1: USB disconnect, device number 45
[  659.162071][T13038] FAULT_INJECTION: forcing a failure.
[  659.162071][T13038] name failslab, interval 1, probability 0, space 0, times 0
[  659.175401][T13038] CPU: 1 UID: 0 PID: 13038 Comm: syz.1.1856 Not tainted 6.12.0-rc5-syzkaller-00322-gb9021de3ec2f #0
[  659.186191][T13038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  659.196254][T13038] Call Trace:
[  659.199550][T13038]  <TASK>
[  659.202489][T13038]  dump_stack_lvl+0x241/0x360
[  659.207187][T13038]  ? __pfx_dump_stack_lvl+0x10/0x10
[  659.212397][T13038]  ? __pfx__printk+0x10/0x10
[  659.216999][T13038]  ? __kmalloc_cache_noprof+0x44/0x2c0
[  659.222467][T13038]  ? __pfx___might_resched+0x10/0x10
[  659.227769][T13038]  should_fail_ex+0x3b0/0x4e0
[  659.232461][T13038]  should_failslab+0xac/0x100
[  659.237151][T13038]  ? alloc_pipe_info+0xeb/0x4d0
[  659.242017][T13038]  __kmalloc_cache_noprof+0x6c/0x2c0
[  659.247318][T13038]  alloc_pipe_info+0xeb/0x4d0
[  659.252013][T13038]  splice_direct_to_actor+0xa9e/0xc80
[  659.257413][T13038]  ? __pfx_direct_splice_actor+0x10/0x10
[  659.263065][T13038]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  659.268973][T13038]  ? __fget_files+0x29/0x470
[  659.273577][T13038]  ? __schedule+0x1802/0x4bd0
[  659.278265][T13038]  ? __pfx_lock_release+0x10/0x10
[  659.283309][T13038]  do_splice_direct+0x289/0x3e0
[  659.288175][T13038]  ? __pfx_do_splice_direct+0x10/0x10
[  659.293559][T13038]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  659.299471][T13038]  ? rw_verify_area+0x1c3/0x6f0
[  659.304337][T13038]  do_sendfile+0x561/0xe10
[  659.308773][T13038]  ? __pfx_do_sendfile+0x10/0x10
[  659.313724][T13038]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  659.319722][T13038]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  659.326075][T13038]  __se_sys_sendfile64+0x17c/0x1e0
[  659.331205][T13038]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  659.336864][T13038]  do_syscall_64+0xf3/0x230
[  659.341381][T13038]  ? clear_bhb_loop+0x35/0x90
[  659.346068][T13038]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  659.351970][T13038] RIP: 0033:0x7fed9857e719
[  659.356397][T13038] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  659.376017][T13038] RSP: 002b:00007fed993ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  659.384453][T13038] RAX: ffffffffffffffda RBX: 00007fed98736130 RCX: 00007fed9857e719
[  659.392434][T13038] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000008
[  659.400417][T13038] RBP: 00007fed993ee090 R08: 0000000000000000 R09: 0000000000000000
[  659.408397][T13038] R10: 000000000000023d R11: 0000000000000246 R12: 0000000000000001
[  659.416376][T13038] R13: 0000000000000000 R14: 00007fed98736130 R15: 00007ffcc68a9048
[  659.424369][T13038]  </TASK>
[  659.547364][T13040] syz.3.1858: attempt to access beyond end of device
[  659.547364][T13040] nbd3: rw=0, sector=0, nr_sectors = 1 limit=0
[  659.659344][T13040] exFAT-fs (nbd3): unable to read boot sector
[  659.665503][T13040] exFAT-fs (nbd3): failed to read boot sector
[  659.678326][T13040] exFAT-fs (nbd3): failed to recognize exfat type
[  659.815199][   T29] audit: type=1800 audit(1730687168.125:417): pid=13046 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.4.1861" name="bus" dev="overlay" ino=2282 res=0 errno=0
[  659.864282][T13050] /dev/nbd3: Can't open blockdev
[  659.928457][T13052] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1854'.
[  659.969235][ T5887] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  660.297781][ T5887] usb 7-1: Using ep0 maxpacket: 16
[  660.305001][ T5887] usb 7-1: config 0 has an invalid interface number: 35 but max is 0
[  660.313257][ T5887] usb 7-1: config 0 has no interface number 0
[  660.320159][ T5887] usb 7-1: config 0 interface 35 altsetting 0 endpoint 0x3 has invalid maxpacket 1023, setting to 64
[  660.336194][ T5887] usb 7-1: New USB device found, idVendor=06cd, idProduct=0202, bcdDevice=3e.04
[  660.345489][ T5887] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  660.355927][ T5887] usb 7-1: Product: syz
[  660.374653][ T5887] usb 7-1: Manufacturer: syz
[  661.027557][ T5887] usb 7-1: SerialNumber: syz
[  661.047109][T13063] netlink: 210596 bytes leftover after parsing attributes in process `syz.4.1864'.
[  661.084852][ T5887] usb 7-1: config 0 descriptor??
[  661.536698][T13070] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  661.667951][T13070] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  661.690912][T13070] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  661.762101][T13070] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  661.793631][T13070] random: crng reseeded on system resumption
[  666.089694][T13103] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  666.418212][T13103] batadv_slave_0: entered promiscuous mode
[  666.437928][ T5838] usb 7-1: USB disconnect, device number 2
[  667.713838][T13112] overlayfs: failed to resolve './file1': -2
[  667.734265][T13111] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1878'.
[  667.783000][T13111] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1878'.
[  667.789023][T13115] FAULT_INJECTION: forcing a failure.
[  667.789023][T13115] name failslab, interval 1, probability 0, space 0, times 0
[  667.847228][T13115] CPU: 1 UID: 0 PID: 13115 Comm: syz.5.1877 Not tainted 6.12.0-rc5-syzkaller-00322-gb9021de3ec2f #0
[  667.858046][T13115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  667.868119][T13115] Call Trace:
[  667.871397][T13115]  <TASK>
[  667.874323][T13115]  dump_stack_lvl+0x241/0x360
[  667.879011][T13115]  ? __pfx_dump_stack_lvl+0x10/0x10
[  667.884231][T13115]  ? __pfx__printk+0x10/0x10
[  667.888840][T13115]  ? fs_reclaim_acquire+0x93/0x130
[  667.893954][T13115]  ? __pfx___might_resched+0x10/0x10
[  667.899242][T13115]  should_fail_ex+0x3b0/0x4e0
[  667.903921][T13115]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  667.909644][T13115]  should_failslab+0xac/0x100
[  667.914325][T13115]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  667.920049][T13115]  __kmalloc_noprof+0xd8/0x400
[  667.924816][T13115]  tomoyo_realpath_from_path+0xcf/0x5e0
[  667.930371][T13115]  tomoyo_path_number_perm+0x23a/0x880
[  667.935834][T13115]  ? tomoyo_path_number_perm+0x208/0x880
[  667.941465][T13115]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  667.947483][T13115]  ? __fget_files+0x29/0x470
[  667.952085][T13115]  ? __fget_files+0x3f3/0x470
[  667.956767][T13115]  security_file_ioctl+0xc6/0x2a0
[  667.961797][T13115]  __se_sys_ioctl+0x47/0x170
[  667.966388][T13115]  do_syscall_64+0xf3/0x230
[  667.970893][T13115]  ? clear_bhb_loop+0x35/0x90
[  667.975568][T13115]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  667.981465][T13115] RIP: 0033:0x7fd37e17e719
[  667.985876][T13115] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  668.005473][T13115] RSP: 002b:00007fd37f057038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  668.013885][T13115] RAX: ffffffffffffffda RBX: 00007fd37e335f80 RCX: 00007fd37e17e719
[  668.021853][T13115] RDX: 00000000200000c0 RSI: 00000000800448d3 RDI: 0000000000000004
[  668.029819][T13115] RBP: 00007fd37f057090 R08: 0000000000000000 R09: 0000000000000000
[  668.037791][T13115] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  668.045766][T13115] R13: 0000000000000000 R14: 00007fd37e335f80 R15: 00007ffe480bfea8
[  668.053751][T13115]  </TASK>
[  668.108614][T13111] netlink: 36 bytes leftover after parsing attributes in process `syz.6.1878'.
[  668.158384][ T5888] usb 2-1: new high-speed USB device number 37 using dummy_hcd
[  668.197747][T13115] ERROR: Out of memory at tomoyo_realpath_from_path.
[  668.339747][ T5888] usb 2-1: config 1 has an invalid descriptor of length 72, skipping remainder of the config
[  668.352215][ T5888] usb 2-1: New USB device found, idVendor=05ac, idProduct=0238, bcdDevice= 0.40
[  668.387685][ T5888] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  668.426287][ T5888] usb 2-1: Product: syz
[  668.438039][ T5888] usb 2-1: Manufacturer: syz
[  668.442666][ T5888] usb 2-1: SerialNumber: syz
[  668.550432][ T5888] input: bcm5974 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/input/input30
[  669.287297][ T5190] bcm5974 2-1:1.0: could not read from device
[  669.299303][ T5888] usb 2-1: USB disconnect, device number 37
[  669.405740][ T5190] bcm5974 2-1:1.0: could not read from device
[  669.451998][ T5190] bcm5974 2-1:1.0: could not read from device
[  669.462595][ T5190] bcm5974 2-1:1.0: could not read from device
[  671.093314][T13128] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  671.121249][T13128] batadv_slave_0: entered promiscuous mode
[  671.787983][ T5888] usb 2-1: new high-speed USB device number 38 using dummy_hcd
[  672.047704][ T5888] usb 2-1: Using ep0 maxpacket: 32
[  672.054864][ T5888] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  672.122684][ T5888] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  672.133752][ T5888] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  672.183896][ T5888] usb 2-1: config 0 descriptor??
[  672.221686][ T5888] hub 2-1:0.0: USB hub found
[  672.403654][ T5888] hub 2-1:0.0: 1 port detected
[  673.262964][T13156] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1891'.
[  673.275798][T13156] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1891'.
[  673.296411][T13156] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1891'.
[  673.336776][ T5838] usb 2-1: USB disconnect, device number 38
[  673.821501][ T5888] hub 2-1:0.0: hub_ext_port_status failed (err = -71)
[  676.303452][T13175] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1896'.
[  677.748057][T13186] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1902'.
[  677.757711][T13186] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1902'.
[  677.793053][T13186] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1902'.
[  677.939130][T13194] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  678.024447][T13194] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  679.488277][T13194] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  680.083498][T13208] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  680.846274][T13208] batadv_slave_0: entered promiscuous mode
[  680.914796][T13211] FAULT_INJECTION: forcing a failure.
[  680.914796][T13211] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  680.943182][T13211] CPU: 1 UID: 0 PID: 13211 Comm: syz.4.1906 Not tainted 6.12.0-rc5-syzkaller-00322-gb9021de3ec2f #0
[  680.953982][T13211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  680.964047][T13211] Call Trace:
[  680.967334][T13211]  <TASK>
[  680.970282][T13211]  dump_stack_lvl+0x241/0x360
[  680.974991][T13211]  ? __pfx_dump_stack_lvl+0x10/0x10
[  680.980213][T13211]  ? __pfx__printk+0x10/0x10
[  680.984830][T13211]  should_fail_ex+0x3b0/0x4e0
[  680.989528][T13211]  _copy_from_user+0x2f/0xc0
[  680.994138][T13211]  copy_from_sockptr+0x62/0xa0
[  680.998916][T13211]  packet_setsockopt+0x631/0x1970
[  681.003954][T13211]  ? mark_lock+0x9a/0x360
[  681.008305][T13211]  ? __pfx_packet_setsockopt+0x10/0x10
[  681.013810][T13211]  ? __fget_files+0x29/0x470
[  681.018417][T13211]  ? __pfx_lock_release+0x10/0x10
[  681.023458][T13211]  ? __mutex_unlock_slowpath+0x21d/0x750
[  681.029109][T13211]  ? __pfx_packet_setsockopt+0x10/0x10
[  681.034583][T13211]  do_sock_setsockopt+0x3af/0x720
[  681.039631][T13211]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  681.045189][T13211]  ? __fget_files+0x29/0x470
[  681.049798][T13211]  ? __fget_files+0x3f3/0x470
[  681.054490][T13211]  ? __fget_files+0x29/0x470
[  681.059108][T13211]  __sys_setsockopt+0x1a2/0x250
[  681.063980][T13211]  __x64_sys_setsockopt+0xb5/0xd0
[  681.069022][T13211]  do_syscall_64+0xf3/0x230
[  681.073538][T13211]  ? clear_bhb_loop+0x35/0x90
[  681.078237][T13211]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  681.084149][T13211] RIP: 0033:0x7fdc4c17e719
[  681.088575][T13211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  681.108193][T13211] RSP: 002b:00007fdc4cf26038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  681.116620][T13211] RAX: ffffffffffffffda RBX: 00007fdc4c335f80 RCX: 00007fdc4c17e719
[  681.124605][T13211] RDX: 0000000000000017 RSI: 0000000000000107 RDI: 0000000000000003
[  681.132586][T13211] RBP: 00007fdc4cf26090 R08: 0000000000000004 R09: 0000000000000000
[  681.140567][T13211] R10: 0000000020000080 R11: 0000000000000246 R12: 0000000000000001
[  681.148548][T13211] R13: 0000000000000000 R14: 00007fdc4c335f80 R15: 00007ffd21b77498
[  681.156544][T13211]  </TASK>
[  681.325491][T13216] netlink: 104 bytes leftover after parsing attributes in process `syz.6.1908'.
[  682.594101][T13236] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1914'.
[  682.603958][T13236] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1914'.
[  682.615993][T13236] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1914'.
[  682.714827][T13240] netlink: 168 bytes leftover after parsing attributes in process `syz.6.1917'.
[  682.738356][ T5838] usb 5-1: new high-speed USB device number 27 using dummy_hcd
[  682.767150][T13244] x_tables: duplicate underflow at hook 2
[  682.907640][ T5838] usb 5-1: Using ep0 maxpacket: 8
[  682.923948][ T5838] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  682.962230][ T5838] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  683.021778][ T5838] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  683.071887][ T5838] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  683.106122][ T5838] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  683.127510][ T5838] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  683.446834][ T5838] usb 5-1: GET_CAPABILITIES returned 0
[  683.465708][ T5838] usbtmc 5-1:16.0: can't read capabilities
[  683.652365][    C0] usbtmc 5-1:16.0: usbtmc_write_bulk_cb - nonzero write bulk status received: -71
[  683.673665][ T5838] usb 5-1: USB disconnect, device number 27
[  684.730219][T13301] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1928'.
[  685.218511][T13301] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1928'.
[  685.228429][T13301] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1928'.
[  685.389643][T13314] FAULT_INJECTION: forcing a failure.
[  685.389643][T13314] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  685.403897][T13314] CPU: 1 UID: 0 PID: 13314 Comm: syz.3.1931 Not tainted 6.12.0-rc5-syzkaller-00322-gb9021de3ec2f #0
[  685.414690][T13314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  685.424771][T13314] Call Trace:
[  685.428066][T13314]  <TASK>
[  685.431013][T13314]  dump_stack_lvl+0x241/0x360
[  685.435721][T13314]  ? __pfx_dump_stack_lvl+0x10/0x10
[  685.440944][T13314]  ? __pfx__printk+0x10/0x10
[  685.445561][T13314]  ? snprintf+0xda/0x120
[  685.449830][T13314]  should_fail_ex+0x3b0/0x4e0
[  685.454530][T13314]  _copy_to_user+0x31/0xb0
[  685.458967][T13314]  simple_read_from_buffer+0xca/0x150
[  685.464363][T13314]  proc_fail_nth_read+0x1e9/0x250
[  685.469414][T13314]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  685.474989][T13314]  ? rw_verify_area+0x568/0x6f0
[  685.479866][T13314]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  685.485440][T13314]  vfs_read+0x1fc/0xb70
[  685.489627][T13314]  ? fdget_pos+0x24e/0x320
[  685.494070][T13314]  ? __pfx_vfs_read+0x10/0x10
[  685.498779][T13314]  ? __fget_files+0x3f3/0x470
[  685.503486][T13314]  ? fdget_pos+0x24e/0x320
[  685.507920][T13314]  ksys_read+0x183/0x2b0
[  685.512183][T13314]  ? __pfx_ksys_read+0x10/0x10
[  685.516968][T13314]  ? do_syscall_64+0x100/0x230
[  685.521746][T13314]  ? do_syscall_64+0xb6/0x230
[  685.526416][T13314]  do_syscall_64+0xf3/0x230
[  685.530922][T13314]  ? clear_bhb_loop+0x35/0x90
[  685.535622][T13314]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  685.541537][T13314] RIP: 0033:0x7fe24bd7d15c
[  685.545976][T13314] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  685.565599][T13314] RSP: 002b:00007fe24cc2b030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  685.574037][T13314] RAX: ffffffffffffffda RBX: 00007fe24bf35f80 RCX: 00007fe24bd7d15c
[  685.582026][T13314] RDX: 000000000000000f RSI: 00007fe24cc2b0a0 RDI: 0000000000000003
[  685.590015][T13314] RBP: 00007fe24cc2b090 R08: 0000000000000000 R09: 0000000000000000
[  685.598006][T13314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  685.605993][T13314] R13: 0000000000000000 R14: 00007fe24bf35f80 R15: 00007ffea2dc0748
[  685.613997][T13314]  </TASK>
[  685.617205][    C1] vkms_vblank_simulate: vblank timer overrun
[  685.799042][T13317] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1932'.
[  686.128078][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  686.134405][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  687.818710][T13347] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1938'.
[  688.075145][T13353] overlay: ./bus is not a directory
[  688.366397][T13367] FAULT_INJECTION: forcing a failure.
[  688.366397][T13367] name failslab, interval 1, probability 0, space 0, times 0
[  688.392731][T13367] CPU: 1 UID: 0 PID: 13367 Comm: syz.5.1945 Not tainted 6.12.0-rc5-syzkaller-00322-gb9021de3ec2f #0
[  688.403505][T13367] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  688.413549][T13367] Call Trace:
[  688.416816][T13367]  <TASK>
[  688.419736][T13367]  dump_stack_lvl+0x241/0x360
[  688.424403][T13367]  ? __pfx_dump_stack_lvl+0x10/0x10
[  688.429589][T13367]  ? __pfx__printk+0x10/0x10
[  688.434171][T13367]  ? ref_tracker_alloc+0x332/0x490
[  688.439271][T13367]  should_fail_ex+0x3b0/0x4e0
[  688.443938][T13367]  ? skb_clone+0x20c/0x390
[  688.448343][T13367]  should_failslab+0xac/0x100
[  688.453016][T13367]  ? skb_clone+0x20c/0x390
[  688.457419][T13367]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  688.462786][T13367]  skb_clone+0x20c/0x390
[  688.467014][T13367]  __netlink_deliver_tap+0x3cc/0x7c0
[  688.472295][T13367]  ? netlink_deliver_tap+0x2e/0x1b0
[  688.477492][T13367]  netlink_deliver_tap+0x19d/0x1b0
[  688.482595][T13367]  netlink_unicast+0x7c4/0x990
[  688.487348][T13367]  ? __pfx_netlink_unicast+0x10/0x10
[  688.492617][T13367]  ? __virt_addr_valid+0x183/0x530
[  688.497717][T13367]  ? __check_object_size+0x48e/0x900
[  688.502993][T13367]  netlink_sendmsg+0x8e4/0xcb0
[  688.507750][T13367]  ? __pfx_netlink_sendmsg+0x10/0x10
[  688.513020][T13367]  ? __mutex_trylock_common+0x183/0x2e0
[  688.518560][T13367]  ? __pfx_netlink_sendmsg+0x10/0x10
[  688.523833][T13367]  __sock_sendmsg+0x221/0x270
[  688.528503][T13367]  sock_sendmsg+0x134/0x200
[  688.532999][T13367]  ? __pfx_sock_sendmsg+0x10/0x10
[  688.538021][T13367]  ? iov_iter_bvec+0x4e/0x180
[  688.542688][T13367]  splice_to_socket+0xa10/0x10b0
[  688.547613][T13367]  ? _parse_integer_limit+0x1b5/0x200
[  688.552984][T13367]  ? __pfx_splice_to_socket+0x10/0x10
[  688.558361][T13367]  ? __lock_acquire+0x1384/0x2050
[  688.563386][T13367]  ? bpf_lsm_file_permission+0x9/0x10
[  688.568743][T13367]  ? security_file_permission+0x74/0x280
[  688.574366][T13367]  ? rw_verify_area+0x1c3/0x6f0
[  688.579205][T13367]  ? __pfx_splice_to_socket+0x10/0x10
[  688.584559][T13367]  do_splice+0xd68/0x18e0
[  688.588875][T13367]  ? __pfx_lock_release+0x10/0x10
[  688.593885][T13367]  ? vfs_write+0x730/0xd30
[  688.598289][T13367]  ? pipe_clear_nowait+0x196/0x220
[  688.603384][T13367]  ? __pfx_do_splice+0x10/0x10
[  688.608138][T13367]  __se_sys_splice+0x331/0x4a0
[  688.612889][T13367]  ? __pfx___se_sys_splice+0x10/0x10
[  688.618160][T13367]  ? do_syscall_64+0x100/0x230
[  688.622908][T13367]  ? __x64_sys_splice+0x21/0xf0
[  688.627757][T13367]  do_syscall_64+0xf3/0x230
[  688.632258][T13367]  ? clear_bhb_loop+0x35/0x90
[  688.636920][T13367]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  688.642810][T13367] RIP: 0033:0x7fd37e17e719
[  688.647207][T13367] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  688.666800][T13367] RSP: 002b:00007fd37f036038 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  688.675199][T13367] RAX: ffffffffffffffda RBX: 00007fd37e336058 RCX: 00007fd37e17e719
[  688.683158][T13367] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000003
[  688.691119][T13367] RBP: 00007fd37f036090 R08: 0000000000008001 R09: 0000000000000000
[  688.699074][T13367] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  688.707029][T13367] R13: 0000000000000001 R14: 00007fd37e336058 R15: 00007ffe480bfea8
[  688.714994][T13367]  </TASK>
[  689.541081][   T29] audit: type=1804 audit(1730687197.765:418): pid=13373 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.1.1946" name="/newroot/391/file1" dev="fuse" ino=1 res=1 errno=0
[  689.610398][   T29] audit: type=1800 audit(1730687197.765:419): pid=13373 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.1.1946" name="/" dev="fuse" ino=1 res=0 errno=0
[  689.629815][   T29] audit: type=1804 audit(1730687197.765:420): pid=13373 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.1.1946" name="/newroot/391/file1" dev="fuse" ino=1 res=1 errno=0
[  689.649848][   T29] audit: type=1804 audit(1730687197.765:421): pid=13373 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.1.1946" name="/newroot/391/file1" dev="fuse" ino=1 res=1 errno=0
[  689.669769][   T29] audit: type=1800 audit(1730687197.765:422): pid=13373 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.1.1946" name="/" dev="fuse" ino=1 res=0 errno=0
[  689.880162][T13382] random: crng reseeded on system resumption
[  691.921591][T13396] zonefs: Unknown parameter 'grpquota'
[  691.928321][T13396] PKCS7: Unknown OID: [4] 0.38.35.0.951690.11253
[  691.934908][T13396] PKCS7: Only support pkcs7_signedData type
[  692.050054][T13391] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR
[  692.076129][ T2988] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  693.050013][T13409] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  693.068853][ T2988] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  694.077741][   T29] audit: type=1804 audit(1730687201.865:423): pid=13415 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.1.1960" name="/newroot/393/file1" dev="fuse" ino=1 res=1 errno=0
[  694.119632][   T29] audit: type=1800 audit(1730687201.865:424): pid=13415 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.1.1960" name="/" dev="fuse" ino=1 res=0 errno=0
[  694.194457][   T29] audit: type=1804 audit(1730687201.875:425): pid=13415 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.1.1960" name="/newroot/393/file1" dev="fuse" ino=1 res=1 errno=0
[  694.214560][   T29] audit: type=1804 audit(1730687201.875:426): pid=13415 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.1.1960" name="/newroot/393/file1" dev="fuse" ino=1 res=1 errno=0
[  694.738041][T13409] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  695.846753][   T29] audit: type=1800 audit(1730687201.875:427): pid=13415 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.1.1960" name="/" dev="fuse" ino=1 res=0 errno=0
[  695.951328][ T2988] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  695.996059][T13429] netlink: 'syz.4.1964': attribute type 4 has an invalid length.
[  696.010305][T13424] binder: 13423:13424 ioctl c0306201 200003c0 returned -22
[  696.023471][T13433] netlink: 'syz.4.1964': attribute type 4 has an invalid length.
[  696.216776][ T2988] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  698.998000][ T5918] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  699.389650][ T5918] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  699.420944][ T5918] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[  699.456316][ T5918] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  699.614176][T13456] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  699.719074][ T2988] bridge_slave_1: left allmulticast mode
[  699.724760][ T2988] bridge_slave_1: left promiscuous mode
[  699.732135][T13456] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  699.794558][T13456] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  700.011338][ T2988] bridge0: port 2(bridge_slave_1) entered disabled state
[  700.065711][T13456] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  700.371715][T13456] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  700.599709][ T2988] bridge_slave_0: left allmulticast mode
[  700.606796][ T2988] bridge_slave_0: left promiscuous mode
[  700.638022][T13456] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  700.658712][ T2988] bridge0: port 1(bridge_slave_0) entered disabled state
[  703.846254][ T5918] usb 7-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[  703.857040][ T5918] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  703.929438][ T5918] usb 7-1: config 0 descriptor??
[  703.948856][ T5918] usb 7-1: can't set config #0, error -71
[  703.962829][ T5918] usb 7-1: USB disconnect, device number 3
[  705.478082][T13516] Cannot find del_set index 1 as target
[  705.795973][T13518] 9pnet_fd: Insufficient options for proto=fd
[  705.926426][ T2988] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  705.945656][ T2988] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  705.965418][ T2988] bond0 (unregistering): Released all slaves
[  706.546301][ T2988] tipc: Disabling bearer <udp:syz0>
[  706.563193][ T2988] tipc: Left network mode
[  707.487569][   T25] usb 4-1: new high-speed USB device number 46 using dummy_hcd
[  707.802047][T13548] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  708.307618][T13548] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  708.498141][   T25] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 7
[  708.517978][   T25] usb 4-1: New USB device found, idVendor=2040, idProduct=1605, bcdDevice= a.94
[  708.530003][   T25] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  708.863680][   T25] usb 4-1: config 0 descriptor??
[  708.887655][T13529] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  708.898067][T13529] batadv_slave_0: entered promiscuous mode
[  709.161606][ T5918] usb 4-1: USB disconnect, device number 46
[  709.231583][ T2988] hsr_slave_0: left promiscuous mode
[  709.323291][ T2988] hsr_slave_1: left promiscuous mode
[  709.403556][ T2988] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  709.483383][T13568] --map-set only usable from mangle table
[  709.630134][ T2988] batman_adv: batadv0: Removing interface: batadv_slave_0
[  710.226105][ T2988] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  710.233996][ T2988] batman_adv: batadv0: Removing interface: batadv_slave_1
[  710.374785][ T2988] veth1_macvtap: left promiscuous mode
[  711.379308][ T2988] veth0_macvtap: left promiscuous mode
[  711.394098][ T2988] veth1_vlan: left promiscuous mode
[  711.445496][ T2988] veth0_vlan: left promiscuous mode
[  712.193705][T13584] FAULT_INJECTION: forcing a failure.
[  712.193705][T13584] name failslab, interval 1, probability 0, space 0, times 0
[  712.216637][T13584] CPU: 1 UID: 0 PID: 13584 Comm: syz.4.1997 Not tainted 6.12.0-rc5-syzkaller-00322-gb9021de3ec2f #0
[  712.227460][T13584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  712.237536][T13584] Call Trace:
[  712.240833][T13584]  <TASK>
[  712.243775][T13584]  dump_stack_lvl+0x241/0x360
[  712.248481][T13584]  ? __pfx_dump_stack_lvl+0x10/0x10
[  712.253703][T13584]  ? __pfx__printk+0x10/0x10
[  712.258330][T13584]  should_fail_ex+0x3b0/0x4e0
[  712.263034][T13584]  should_failslab+0xac/0x100
[  712.267737][T13584]  ? sctp_add_bind_addr+0x89/0x3a0
[  712.272870][T13584]  __kmalloc_cache_noprof+0x6c/0x2c0
[  712.278185][T13584]  sctp_add_bind_addr+0x89/0x3a0
[  712.283149][T13584]  sctp_copy_local_addr_list+0x311/0x500
[  712.288805][T13584]  ? sctp_copy_local_addr_list+0xab/0x500
[  712.294549][T13584]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  712.300993][T13584]  ? sctp_v6_is_any+0x60/0x70
[  712.305716][T13584]  sctp_bind_addr_copy+0xad/0x3b0
[  712.310777][T13584]  ? sctp_assoc_set_bind_addr_from_ep+0x75/0x190
[  712.317132][T13584]  sctp_connect_new_asoc+0x2f3/0x6c0
[  712.322435][T13584]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  712.328250][T13584]  ? sctp_sendmsg+0xbb9/0x3520
[  712.333019][T13584]  ? sctp_endpoint_lookup_assoc+0x7c/0x250
[  712.338819][T13584]  ? sctp_endpoint_lookup_assoc+0x217/0x250
[  712.344706][T13584]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  712.350253][T13584]  sctp_sendmsg+0x219a/0x3520
[  712.354942][T13584]  ? __pfx_sctp_sendmsg+0x10/0x10
[  712.359964][T13584]  ? __pfx_tomoyo_socket_sendmsg_permission+0x10/0x10
[  712.366741][T13584]  ? inet_sendmsg+0x330/0x390
[  712.371421][T13584]  __sock_sendmsg+0x1a6/0x270
[  712.376104][T13584]  __sys_sendto+0x39b/0x4f0
[  712.380612][T13584]  ? __pfx___sys_sendto+0x10/0x10
[  712.385635][T13584]  ? __mutex_unlock_slowpath+0x21d/0x750
[  712.391288][T13584]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  712.397275][T13584]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  712.403606][T13584]  __x64_sys_sendto+0xde/0x100
[  712.408371][T13584]  do_syscall_64+0xf3/0x230
[  712.412875][T13584]  ? clear_bhb_loop+0x35/0x90
[  712.417562][T13584]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  712.423458][T13584] RIP: 0033:0x7fdc4c17e719
[  712.427866][T13584] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  712.447478][T13584] RSP: 002b:00007fdc4cf26038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  712.455895][T13584] RAX: ffffffffffffffda RBX: 00007fdc4c335f80 RCX: 00007fdc4c17e719
[  712.463858][T13584] RDX: 0000000000000001 RSI: 0000000020000580 RDI: 0000000000000003
[  712.471826][T13584] RBP: 00007fdc4cf26090 R08: 0000000020000100 R09: 000000000000001c
[  712.479790][T13584] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  712.487752][T13584] R13: 0000000000000000 R14: 00007fdc4c335f80 R15: 00007ffd21b77498
[  712.495727][T13584]  </TASK>
[  715.687660][   T29] audit: type=1804 audit(1730687223.425:428): pid=13615 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.3.2005" name="/newroot/391/file1" dev="fuse" ino=1 res=1 errno=0
[  715.710990][   T29] audit: type=1800 audit(1730687223.425:429): pid=13615 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.2005" name="/" dev="fuse" ino=1 res=0 errno=0
[  715.730519][   T29] audit: type=1804 audit(1730687223.425:430): pid=13615 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.3.2005" name="/newroot/391/file1" dev="fuse" ino=1 res=1 errno=0
[  715.750600][   T29] audit: type=1804 audit(1730687223.425:431): pid=13615 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.3.2005" name="/newroot/391/file1" dev="fuse" ino=1 res=1 errno=0
[  715.770432][   T29] audit: type=1800 audit(1730687223.425:432): pid=13615 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.2005" name="/" dev="fuse" ino=1 res=0 errno=0
[  717.250558][ T2988] team0 (unregistering): Port device team_slave_1 removed
[  717.364816][ T2988] team0 (unregistering): Port device team_slave_0 removed
[  717.447662][   T25] usb 4-1: new high-speed USB device number 47 using dummy_hcd
[  717.623079][   T25] usb 4-1: Using ep0 maxpacket: 16
[  717.630819][   T25] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  717.644935][   T25] usb 4-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  717.654505][   T25] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  717.676324][   T25] usb 4-1: config 0 descriptor??
[  717.698262][   T25] input: bcm5974 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input34
[  717.708710][T10567] usb 2-1: new high-speed USB device number 39 using dummy_hcd
[  717.885423][T10567] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  717.908121][T10567] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  717.918415][T10567] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2cf6, bcdDevice= 0.00
[  717.927869][T10567] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  717.947664][T10567] usb 2-1: config 0 descriptor??
[  718.138838][ T5190] bcm5974 4-1:0.0: could not read from device
[  718.206830][ T5190] bcm5974 4-1:0.0: could not read from device
[  718.275364][   T25] usb 4-1: USB disconnect, device number 47
[  718.296545][T10331] bcm5974 4-1:0.0: could not read from device
[  718.384651][T10567] pyra 0003:1E7D:2CF6.0013: hidraw0: USB HID v0.00 Device [HID 1e7d:2cf6] on usb-dummy_hcd.1-1/input0
[  718.549308][ T5838] usb 5-1: new high-speed USB device number 28 using dummy_hcd
[  718.733276][ T5838] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x31, changing to 0x1
[  718.760527][ T2988] IPVS: stop unused estimator thread 0...
[  718.784922][ T5838] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid maxpacket 13364, setting to 64
[  718.859216][ T5838] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  718.883464][ T5838] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  718.904132][ T5838] usb 5-1: config 0 descriptor??
[  719.106812][T10567] pyra 0003:1E7D:2CF6.0013: couldn't init struct pyra_device
[  719.127050][T10567] pyra 0003:1E7D:2CF6.0013: couldn't install mouse
[  719.155509][ T5838] ath6kl: Failed to submit usb control message: -71
[  719.166275][T10567] pyra 0003:1E7D:2CF6.0013: probe with driver pyra failed with error -5
[  720.139201][ T5838] ath6kl: unable to send the bmi data to the device: -71
[  720.148877][ T5838] ath6kl: Unable to send get target info: -71
[  720.562219][ T5838] ath6kl: Failed to init ath6kl core: -71
[  720.570589][ T5838] ath6kl_usb 5-1:0.0: probe with driver ath6kl_usb failed with error -71
[  720.978099][   T29] audit: type=1804 audit(1730687229.135:433): pid=13670 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.5.2018" name="/newroot/160/file1" dev="fuse" ino=1 res=1 errno=0
[  720.983669][ T5838] usb 5-1: USB disconnect, device number 28
[  721.000270][   T29] audit: type=1800 audit(1730687229.135:434): pid=13670 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.5.2018" name="/" dev="fuse" ino=1 res=0 errno=0
[  721.024031][   T29] audit: type=1804 audit(1730687229.135:435): pid=13670 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.5.2018" name="/newroot/160/file1" dev="fuse" ino=1 res=1 errno=0
[  721.044228][   T29] audit: type=1804 audit(1730687229.135:436): pid=13670 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.5.2018" name="/newroot/160/file1" dev="fuse" ino=1 res=1 errno=0
[  721.064723][   T29] audit: type=1800 audit(1730687229.135:437): pid=13670 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.5.2018" name="/" dev="fuse" ino=1 res=0 errno=0
[  721.670833][T13686] FAULT_INJECTION: forcing a failure.
[  721.670833][T13686] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  721.686880][T13686] CPU: 0 UID: 0 PID: 13686 Comm: syz.6.2020 Not tainted 6.12.0-rc5-syzkaller-00322-gb9021de3ec2f #0
[  721.697640][T13686] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  721.707681][T13686] Call Trace:
[  721.710951][T13686]  <TASK>
[  721.713867][T13686]  dump_stack_lvl+0x241/0x360
[  721.718538][T13686]  ? __pfx_dump_stack_lvl+0x10/0x10
[  721.723719][T13686]  ? __pfx__printk+0x10/0x10
[  721.728307][T13686]  ? __pfx_lock_release+0x10/0x10
[  721.733339][T13686]  should_fail_ex+0x3b0/0x4e0
[  721.738010][T13686]  _copy_from_user+0x2f/0xc0
[  721.742592][T13686]  copy_msghdr_from_user+0xae/0x680
[  721.747783][T13686]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  721.753593][T13686]  __sys_sendmsg+0x22d/0x380
[  721.758175][T13686]  ? __pfx___sys_sendmsg+0x10/0x10
[  721.763277][T13686]  ? __pfx_vfs_write+0x10/0x10
[  721.768043][T13686]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  721.774361][T13686]  ? do_syscall_64+0x100/0x230
[  721.779113][T13686]  ? do_syscall_64+0xb6/0x230
[  721.783774][T13686]  do_syscall_64+0xf3/0x230
[  721.788296][T13686]  ? clear_bhb_loop+0x35/0x90
[  721.792975][T13686]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  721.798858][T13686] RIP: 0033:0x7f07d877e719
[  721.803261][T13686] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  721.822857][T13686] RSP: 002b:00007f07d94b3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  721.831260][T13686] RAX: ffffffffffffffda RBX: 00007f07d8935f80 RCX: 00007f07d877e719
[  721.839234][T13686] RDX: 0000000000000000 RSI: 0000000020000740 RDI: 0000000000000003
[  721.847218][T13686] RBP: 00007f07d94b3090 R08: 0000000000000000 R09: 0000000000000000
[  721.855207][T13686] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  721.863183][T13686] R13: 0000000000000000 R14: 00007f07d8935f80 R15: 00007ffd77ed0318
[  721.871150][T13686]  </TASK>
[  721.985132][   T29] audit: type=1326 audit(1730687230.295:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13642 comm="syz.1.2013" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fed9857e719 code=0x0
[  722.436023][    T9] usb 2-1: USB disconnect, device number 39
[  722.765776][T13703] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  722.792341][T13703] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  722.953176][T13703] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  723.321721][T13729] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2027'.
[  724.838557][   T54] Bluetooth: hci5: command 0x0c1a tx timeout
[  724.896500][T13745] netlink: 'syz.6.2032': attribute type 3 has an invalid length.
[  724.971180][T13745] netlink: 'syz.6.2032': attribute type 4 has an invalid length.
[  724.984488][T13745] netlink: 'syz.6.2032': attribute type 7 has an invalid length.
[  725.006953][T13745] netlink: 'syz.6.2032': attribute type 8 has an invalid length.
[  725.014872][T13745] netlink: 'syz.6.2032': attribute type 7 has an invalid length.
[  725.023534][T13745] netlink: 198140 bytes leftover after parsing attributes in process `syz.6.2032'.
[  725.607635][    T9] usb 2-1: new high-speed USB device number 40 using dummy_hcd
[  725.767657][    T9] usb 2-1: Using ep0 maxpacket: 8
[  725.791908][    T9] usb 2-1: config 179 has an invalid interface number: 65 but max is 0
[  725.818985][    T9] usb 2-1: config 179 has no interface number 0
[  725.844006][    T9] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  725.896850][    T9] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  725.952347][    T9] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  726.064968][T13780] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2039'.
[  726.217604][    T9] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  726.229300][    T9] usb 2-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  726.242959][    T9] usb 2-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  726.252590][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  726.328212][T13762] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  726.927387][   T54] Bluetooth: hci5: command 0x0c1a tx timeout
[  727.023278][    T9] input: Generic X-Box pad as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:179.65/input/input35
[  727.435427][    T9] usb 2-1: USB disconnect, device number 40
[  727.441444][    C0] xpad 2-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  727.441472][    C0] xpad 2-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  727.528855][    T9] xpad 2-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  728.999000][   T54] Bluetooth: hci5: command 0x0c1a tx timeout
[  730.996947][T13873] Process accounting resumed
[  731.277633][T13866] FAULT_INJECTION: forcing a failure.
[  731.277633][T13866] name failslab, interval 1, probability 0, space 0, times 0
[  731.397176][T13866] CPU: 0 UID: 0 PID: 13866 Comm: syz.6.2058 Not tainted 6.12.0-rc5-syzkaller-00322-gb9021de3ec2f #0
[  731.405409][T13879] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  731.407966][T13866] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  731.407983][T13866] Call Trace:
[  731.407992][T13866]  <TASK>
[  731.408000][T13866]  dump_stack_lvl+0x241/0x360
[  731.437285][T13866]  ? __pfx_dump_stack_lvl+0x10/0x10
[  731.442518][T13866]  ? __pfx__printk+0x10/0x10
[  731.447141][T13866]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[  731.453155][T13866]  ? __pfx___might_resched+0x10/0x10
[  731.458478][T13866]  should_fail_ex+0x3b0/0x4e0
[  731.463183][T13866]  should_failslab+0xac/0x100
[  731.467891][T13866]  ? __alloc_skb+0x1c3/0x440
[  731.472507][T13866]  kmem_cache_alloc_node_noprof+0x71/0x320
[  731.478342][T13866]  __alloc_skb+0x1c3/0x440
[  731.482782][T13866]  ? __pfx___alloc_skb+0x10/0x10
[  731.487750][T13866]  ? netlink_ack_tlv_len+0x6e/0x200
[  731.492990][T13866]  netlink_ack+0x13f/0xa30
[  731.497441][T13866]  ? __kasan_kmalloc+0x98/0xb0
[  731.502246][T13866]  ? nfnetlink_rcv+0x1265/0x2ab0
[  731.507245][T13866]  ? nfnetlink_rcv+0x12c6/0x2ab0
[  731.512198][T13866]  ? skb_pull+0xc1/0x1e0
[  731.516447][T13866]  nfnetlink_rcv+0x26b6/0x2ab0
[  731.521240][T13866]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  731.526380][T13866]  ? netlink_deliver_tap+0x2e/0x1b0
[  731.531575][T13866]  ? skb_clone+0x240/0x390
[  731.535992][T13866]  ? __pfx_lock_release+0x10/0x10
[  731.541023][T13866]  ? netlink_deliver_tap+0x2e/0x1b0
[  731.546217][T13866]  netlink_unicast+0x7f6/0x990
[  731.550984][T13866]  ? __pfx_netlink_unicast+0x10/0x10
[  731.556262][T13866]  ? __virt_addr_valid+0x183/0x530
[  731.561379][T13866]  ? __check_object_size+0x48e/0x900
[  731.566669][T13866]  netlink_sendmsg+0x8e4/0xcb0
[  731.571439][T13866]  ? __pfx_netlink_sendmsg+0x10/0x10
[  731.576733][T13866]  ? __pfx_netlink_sendmsg+0x10/0x10
[  731.582027][T13866]  __sock_sendmsg+0x221/0x270
[  731.586717][T13866]  ____sys_sendmsg+0x52a/0x7e0
[  731.591489][T13866]  ? __pfx_____sys_sendmsg+0x10/0x10
[  731.596792][T13866]  __sys_sendmsg+0x292/0x380
[  731.601393][T13866]  ? __pfx___sys_sendmsg+0x10/0x10
[  731.606520][T13866]  ? __pfx_vfs_write+0x10/0x10
[  731.611303][T13866]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  731.617634][T13866]  ? do_syscall_64+0x100/0x230
[  731.622396][T13866]  ? do_syscall_64+0xb6/0x230
[  731.627073][T13866]  do_syscall_64+0xf3/0x230
[  731.631587][T13866]  ? clear_bhb_loop+0x35/0x90
[  731.636271][T13866]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  731.642168][T13866] RIP: 0033:0x7f07d877e719
[  731.646589][T13866] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  731.666208][T13866] RSP: 002b:00007f07d94b3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  731.674628][T13866] RAX: ffffffffffffffda RBX: 00007f07d8935f80 RCX: 00007f07d877e719
[  731.682593][T13866] RDX: 0000000000000040 RSI: 0000000020000100 RDI: 0000000000000004
[  731.690557][T13866] RBP: 00007f07d94b3090 R08: 0000000000000000 R09: 0000000000000000
[  731.698525][T13866] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  731.706489][T13866] R13: 0000000000000000 R14: 00007f07d8935f80 R15: 00007ffd77ed0318
[  731.714467][T13866]  </TASK>
[  731.736973][T13879] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  733.126251][T13891] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  733.312882][T13902] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  733.756932][T13916] FAULT_INJECTION: forcing a failure.
[  733.756932][T13916] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  733.820696][T13916] CPU: 0 UID: 0 PID: 13916 Comm: syz.5.2068 Not tainted 6.12.0-rc5-syzkaller-00322-gb9021de3ec2f #0
[  733.831508][T13916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  733.841588][T13916] Call Trace:
[  733.844889][T13916]  <TASK>
[  733.847834][T13916]  dump_stack_lvl+0x241/0x360
[  733.852545][T13916]  ? __pfx_dump_stack_lvl+0x10/0x10
[  733.857770][T13916]  ? __pfx__printk+0x10/0x10
[  733.862389][T13916]  ? snprintf+0xda/0x120
[  733.866662][T13916]  should_fail_ex+0x3b0/0x4e0
[  733.871368][T13916]  _copy_to_user+0x31/0xb0
[  733.875808][T13916]  simple_read_from_buffer+0xca/0x150
[  733.881213][T13916]  proc_fail_nth_read+0x1e9/0x250
[  733.886280][T13916]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  733.891855][T13916]  ? rw_verify_area+0x55e/0x6f0
[  733.896724][T13916]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  733.902295][T13916]  vfs_read+0x1fc/0xb70
[  733.906479][T13916]  ? fdget_pos+0x24e/0x320
[  733.910926][T13916]  ? __pfx_vfs_read+0x10/0x10
[  733.915636][T13916]  ? __fget_files+0x3f3/0x470
[  733.920348][T13916]  ? fdget_pos+0x24e/0x320
[  733.924796][T13916]  ksys_read+0x183/0x2b0
[  733.929067][T13916]  ? __pfx_ksys_read+0x10/0x10
[  733.933855][T13916]  ? do_syscall_64+0x100/0x230
[  733.938644][T13916]  ? do_syscall_64+0xb6/0x230
[  733.943349][T13916]  do_syscall_64+0xf3/0x230
[  733.947875][T13916]  ? clear_bhb_loop+0x35/0x90
[  733.952581][T13916]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  733.958495][T13916] RIP: 0033:0x7fd37e17d15c
[  733.962930][T13916] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  733.982560][T13916] RSP: 002b:00007fd37f036030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  733.991002][T13916] RAX: ffffffffffffffda RBX: 00007fd37e336058 RCX: 00007fd37e17d15c
[  733.998995][T13916] RDX: 000000000000000f RSI: 00007fd37f0360a0 RDI: 0000000000000004
[  734.006991][T13916] RBP: 00007fd37f036090 R08: 0000000000000000 R09: 0000000000000000
[  734.014984][T13916] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  734.022977][T13916] R13: 0000000000000001 R14: 00007fd37e336058 R15: 00007ffe480bfea8
[  734.030990][T13916]  </TASK>
[  734.034100][    C0] vkms_vblank_simulate: vblank timer overrun
[  735.008410][T13931] Process accounting resumed
[  735.388030][T13934] fuse: Bad value for 'fd'
[  737.377577][    T9] usb 5-1: new high-speed USB device number 29 using dummy_hcd
[  738.297709][    T9] usb 5-1: device descriptor read/64, error -71
[  738.537550][    T9] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[  738.682331][    T9] usb 5-1: device descriptor read/64, error -71
[  738.799328][    T9] usb usb5-port1: attempt power cycle
[  739.167795][    T9] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  739.239329][    T9] usb 5-1: device descriptor read/8, error -71
[  739.267664][T10567] usb 2-1: new high-speed USB device number 41 using dummy_hcd
[  739.324746][T13983] syz.5.2079: attempt to access beyond end of device
[  739.324746][T13983] loop5: rw=0, sector=2, nr_sectors = 2 limit=0
[  739.421452][T13983] syz.5.2079: attempt to access beyond end of device
[  739.421452][T13983] loop5: rw=0, sector=16, nr_sectors = 2 limit=0
[  739.432135][T13984] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR
[  739.598513][T10567] usb 2-1: Using ep0 maxpacket: 16
[  739.639828][T13982] syz.5.2079: attempt to access beyond end of device
[  739.639828][T13982] loop5: rw=0, sector=2, nr_sectors = 2 limit=0
[  739.653529][    T9] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  739.684349][T10567] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  739.695892][T10567] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  739.709088][    T9] usb 5-1: device descriptor read/8, error -71
[  739.730460][T13982] syz.5.2079: attempt to access beyond end of device
[  739.730460][T13982] loop5: rw=0, sector=16, nr_sectors = 2 limit=0
[  739.744607][T10567] usb 2-1: New USB device found, idVendor=1b1c, idProduct=1d00, bcdDevice= 0.00
[  739.755426][T10567] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  739.818238][    T9] usb usb5-port1: unable to enumerate USB device
[  739.859369][T10567] usb 2-1: config 0 descriptor??
[  741.974984][T14013] Process accounting resumed
[  742.306892][T10567] corsair-cpro 0003:1B1C:1D00.0014: hidraw0: USB HID v0.00 Device [HID 1b1c:1d00] on usb-dummy_hcd.1-1/input0
[  742.386530][T10567] corsair-cpro 0003:1B1C:1D00.0014: probe with driver corsair-cpro failed with error -38
[  742.401319][T10567] usb 2-1: USB disconnect, device number 41
[  745.540649][T14066] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  745.658620][T14066] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  745.678108][T14069] FAULT_INJECTION: forcing a failure.
[  745.678108][T14069] name failslab, interval 1, probability 0, space 0, times 0
[  745.696520][T14069] CPU: 0 UID: 0 PID: 14069 Comm: syz.4.2099 Not tainted 6.12.0-rc5-syzkaller-00322-gb9021de3ec2f #0
[  745.707321][T14069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  745.717396][T14069] Call Trace:
[  745.720696][T14069]  <TASK>
[  745.723646][T14069]  dump_stack_lvl+0x241/0x360
[  745.728354][T14069]  ? __pfx_dump_stack_lvl+0x10/0x10
[  745.733573][T14069]  ? __pfx__printk+0x10/0x10
[  745.738191][T14069]  ? fs_reclaim_acquire+0x93/0x130
[  745.743326][T14069]  ? __pfx___might_resched+0x10/0x10
[  745.748645][T14069]  should_fail_ex+0x3b0/0x4e0
[  745.753340][T14069]  ? tomoyo_encode+0x26f/0x540
[  745.758110][T14069]  should_failslab+0xac/0x100
[  745.762787][T14069]  ? tomoyo_encode+0x26f/0x540
[  745.767547][T14069]  __kmalloc_noprof+0xd8/0x400
[  745.772306][T14069]  tomoyo_encode+0x26f/0x540
[  745.776898][T14069]  tomoyo_realpath_from_path+0x59e/0x5e0
[  745.782534][T14069]  tomoyo_path_number_perm+0x23a/0x880
[  745.788011][T14069]  ? tomoyo_path_number_perm+0x208/0x880
[  745.793649][T14069]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  745.799659][T14069]  ? __fget_files+0x29/0x470
[  745.804259][T14069]  ? __fget_files+0x3f3/0x470
[  745.808943][T14069]  security_file_ioctl+0xc6/0x2a0
[  745.813972][T14069]  __se_sys_ioctl+0x47/0x170
[  745.818563][T14069]  do_syscall_64+0xf3/0x230
[  745.823076][T14069]  ? clear_bhb_loop+0x35/0x90
[  745.827754][T14069]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  745.833645][T14069] RIP: 0033:0x7fdc4c17e719
[  745.838060][T14069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  745.857673][T14069] RSP: 002b:00007fdc4cf26038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  745.866088][T14069] RAX: ffffffffffffffda RBX: 00007fdc4c335f80 RCX: 00007fdc4c17e719
[  745.874054][T14069] RDX: 0000000020000180 RSI: 00000000c010640b RDI: 0000000000000003
[  745.882024][T14069] RBP: 00007fdc4cf26090 R08: 0000000000000000 R09: 0000000000000000
[  745.889993][T14069] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  745.897963][T14069] R13: 0000000000000000 R14: 00007fdc4c335f80 R15: 00007ffd21b77498
[  745.905956][T14069]  </TASK>
[  745.913525][T14069] ERROR: Out of memory at tomoyo_realpath_from_path.
[  745.923668][T14052] netlink: zone id is out of range
[  746.046800][T14052] netlink: set zone limit has 4 unknown bytes
[  746.104395][T14075] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2098'.
[  747.319825][T14100] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2105'.
[  747.411068][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  747.420106][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  747.682050][T14110] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2104'.
[  748.325526][T14116] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  748.390099][T14116] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  748.630148][T14123] netlink: 56 bytes leftover after parsing attributes in process `syz.5.2109'.
[  748.689140][T14123] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2109'.
[  748.767626][ T5838] usb 4-1: new high-speed USB device number 48 using dummy_hcd
[  749.118230][ T5838] usb 4-1: Using ep0 maxpacket: 32
[  749.131359][ T5838] usb 4-1: config index 0 descriptor too short (expected 156, got 27)
[  749.153897][ T5838] usb 4-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  749.243612][ T5838] usb 4-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  749.827770][ T5838] usb 4-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  749.841053][ T5838] usb 4-1: config 0 interface 0 has no altsetting 0
[  749.962453][ T5838] usb 4-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  749.971872][ T5838] usb 4-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  749.980669][ T5838] usb 4-1: Product: syz
[  749.984867][ T5838] usb 4-1: Manufacturer: syz
[  749.996499][ T5838] usb 4-1: SerialNumber: syz
[  750.004460][ T5838] usb 4-1: config 0 descriptor??
[  750.045707][ T5838] ldusb 4-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  750.063311][ T5838] ldusb 4-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  751.658754][   T25] usb 4-1: USB disconnect, device number 48
[  751.668511][   T25] ldusb 4-1:0.0: LD USB Device #0 now disconnected
[  752.216944][T14197] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2120'.
[  752.525406][ T5891] kworker/0:5 (5891) used greatest stack depth: 16696 bytes left
[  754.133844][T14211] sp0: Synchronizing with TNC
[  755.208530][T14225] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  755.271498][T14230] FAULT_INJECTION: forcing a failure.
[  755.271498][T14230] name failslab, interval 1, probability 0, space 0, times 0
[  755.347691][T14230] CPU: 1 UID: 0 PID: 14230 Comm: syz.3.2130 Not tainted 6.12.0-rc5-syzkaller-00322-gb9021de3ec2f #0
[  755.358509][T14230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  755.368585][T14230] Call Trace:
[  755.371880][T14230]  <TASK>
[  755.374827][T14230]  dump_stack_lvl+0x241/0x360
[  755.379541][T14230]  ? __pfx_dump_stack_lvl+0x10/0x10
[  755.384766][T14230]  ? __pfx__printk+0x10/0x10
[  755.389385][T14230]  ? __kmalloc_noprof+0xb0/0x400
[  755.394350][T14230]  ? __pfx___might_resched+0x10/0x10
[  755.399665][T14230]  should_fail_ex+0x3b0/0x4e0
[  755.404377][T14230]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  755.410646][T14230]  should_failslab+0xac/0x100
[  755.415360][T14230]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  755.421621][T14230]  __kmalloc_noprof+0xd8/0x400
[  755.426389][T14230]  genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  755.432463][T14230]  genl_rcv_msg+0x802/0xec0
[  755.436995][T14230]  ? mark_lock+0x9a/0x360
[  755.441326][T14230]  ? __pfx_genl_rcv_msg+0x10/0x10
[  755.446383][T14230]  ? __pfx_lock_acquire+0x10/0x10
[  755.451406][T14230]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[  755.457325][T14230]  ? __pfx___might_resched+0x10/0x10
[  755.462622][T14230]  netlink_rcv_skb+0x1e3/0x430
[  755.467383][T14230]  ? __pfx_genl_rcv_msg+0x10/0x10
[  755.472408][T14230]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  755.477696][T14230]  ? __netlink_deliver_tap+0x77e/0x7c0
[  755.483158][T14230]  genl_rcv+0x28/0x40
[  755.487136][T14230]  netlink_unicast+0x7f6/0x990
[  755.491901][T14230]  ? __pfx_netlink_unicast+0x10/0x10
[  755.497175][T14230]  ? __virt_addr_valid+0x183/0x530
[  755.502284][T14230]  ? __check_object_size+0x48e/0x900
[  755.507583][T14230]  netlink_sendmsg+0x8e4/0xcb0
[  755.512354][T14230]  ? __pfx_netlink_sendmsg+0x10/0x10
[  755.517643][T14230]  ? __pfx_netlink_sendmsg+0x10/0x10
[  755.522922][T14230]  __sock_sendmsg+0x221/0x270
[  755.527607][T14230]  ____sys_sendmsg+0x52a/0x7e0
[  755.532373][T14230]  ? __pfx_____sys_sendmsg+0x10/0x10
[  755.537669][T14230]  __sys_sendmsg+0x292/0x380
[  755.542255][T14230]  ? __pfx___sys_sendmsg+0x10/0x10
[  755.547380][T14230]  ? __pfx_vfs_write+0x10/0x10
[  755.552160][T14230]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  755.558485][T14230]  ? do_syscall_64+0x100/0x230
[  755.563247][T14230]  ? do_syscall_64+0xb6/0x230
[  755.567923][T14230]  do_syscall_64+0xf3/0x230
[  755.572422][T14230]  ? clear_bhb_loop+0x35/0x90
[  755.577094][T14230]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  755.583000][T14230] RIP: 0033:0x7fe24bd7e719
[  755.587423][T14230] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  755.607040][T14230] RSP: 002b:00007fe24cc2b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  755.615463][T14230] RAX: ffffffffffffffda RBX: 00007fe24bf35f80 RCX: 00007fe24bd7e719
[  755.623433][T14230] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000004
[  755.631447][T14230] RBP: 00007fe24cc2b090 R08: 0000000000000000 R09: 0000000000000000
[  755.639423][T14230] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  755.647420][T14230] R13: 0000000000000000 R14: 00007fe24bf35f80 R15: 00007ffea2dc0748
[  755.655407][T14230]  </TASK>
[  756.067613][T14237] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  756.262300][T14237] netlink: 36 bytes leftover after parsing attributes in process `syz.6.2131'.
[  756.857286][T14221] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2131'.
[  757.379673][T14246] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  757.668292][T14243] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2133'.
[  757.754662][T14257] --map-set only usable from mangle table
[  758.335834][T14277] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  758.366847][T14280] FAULT_INJECTION: forcing a failure.
[  758.366847][T14280] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  758.384125][T14280] CPU: 0 UID: 0 PID: 14280 Comm: syz.4.2142 Not tainted 6.12.0-rc5-syzkaller-00322-gb9021de3ec2f #0
[  758.394943][T14280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  758.405017][T14280] Call Trace:
[  758.408314][T14280]  <TASK>
[  758.411298][T14280]  dump_stack_lvl+0x241/0x360
[  758.416005][T14280]  ? __pfx_dump_stack_lvl+0x10/0x10
[  758.421221][T14280]  ? __pfx__printk+0x10/0x10
[  758.425846][T14280]  ? __pfx_lock_release+0x10/0x10
[  758.430899][T14280]  should_fail_ex+0x3b0/0x4e0
[  758.435597][T14280]  _copy_from_user+0x2f/0xc0
[  758.440218][T14280]  copy_msghdr_from_user+0xae/0x680
[  758.445444][T14280]  ? __pfx___might_resched+0x10/0x10
[  758.450737][T14280]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  758.456551][T14280]  ? rcu_is_watching+0x15/0xb0
[  758.461312][T14280]  ? __might_fault+0xaa/0x120
[  758.465991][T14280]  do_recvmmsg+0x3f9/0xad0
[  758.470413][T14280]  ? __pfx_do_recvmmsg+0x10/0x10
[  758.475368][T14280]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  758.481256][T14280]  ? ksys_write+0x229/0x2b0
[  758.485754][T14280]  ? __pfx_lock_release+0x10/0x10
[  758.490807][T14280]  ? vfs_write+0x730/0xd30
[  758.495236][T14280]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  758.501229][T14280]  __x64_sys_recvmmsg+0x199/0x250
[  758.506257][T14280]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  758.511805][T14280]  ? do_syscall_64+0x100/0x230
[  758.516568][T14280]  ? do_syscall_64+0xb6/0x230
[  758.521242][T14280]  do_syscall_64+0xf3/0x230
[  758.525741][T14280]  ? clear_bhb_loop+0x35/0x90
[  758.530416][T14280]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  758.536306][T14280] RIP: 0033:0x7fdc4c17e719
[  758.540716][T14280] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  758.560322][T14280] RSP: 002b:00007fdc4cf26038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  758.568738][T14280] RAX: ffffffffffffffda RBX: 00007fdc4c335f80 RCX: 00007fdc4c17e719
[  758.576707][T14280] RDX: 040000000000019e RSI: 0000000020002e40 RDI: 0000000000000004
[  758.584671][T14280] RBP: 00007fdc4cf26090 R08: 0000000000000000 R09: 0000000000000000
[  758.592642][T14280] R10: 0000000000000142 R11: 0000000000000246 R12: 0000000000000001
[  758.600614][T14280] R13: 0000000000000000 R14: 00007fdc4c335f80 R15: 00007ffd21b77498
[  758.608598][T14280]  </TASK>
[  759.262445][T14306] netlink: 36 bytes leftover after parsing attributes in process `syz.6.2145'.
[  759.705928][T14320] xfs: Unknown parameter 'grpquotalave_0'
[  760.106589][T14317] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2148'.
[  761.470288][T14324] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2149'.
[  763.164931][   T25] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[  763.256167][T14370] fuse: Bad value for 'fd'
[  763.369255][   T25] usb 5-1: too many configurations: 241, using maximum allowed: 8
[  763.949335][   T25] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  763.971511][   T25] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  764.014916][   T25] usb 5-1: Product: syz
[  764.019316][   T25] usb 5-1: Manufacturer: syz
[  764.026953][   T25] usb 5-1: SerialNumber: syz
[  764.131020][   T25] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  764.302521][T14377] 
[  764.304890][T14377] ======================================================
[  764.311910][T14377] WARNING: possible circular locking dependency detected
[  764.318933][T14377] 6.12.0-rc5-syzkaller-00322-gb9021de3ec2f #0 Not tainted
[  764.326040][T14377] ------------------------------------------------------
[  764.333057][T14377] syz.6.2159/14377 is trying to acquire lock:
[  764.339125][T14377] ffff88802fb81e80 (&p->lock){+.+.}-{3:3}, at: seq_read_iter+0xb4/0xd70
[  764.347505][T14377] 
[  764.347505][T14377] but task is already holding lock:
[  764.354873][T14377] ffff88805c1ae468 (&pipe->mutex){+.+.}-{3:3}, at: splice_file_to_pipe+0x2e/0x500
[  764.364125][T14377] 
[  764.364125][T14377] which lock already depends on the new lock.
[  764.364125][T14377] 
[  764.374530][T14377] 
[  764.374530][T14377] the existing dependency chain (in reverse order) is:
[  764.383550][T14377] 
[  764.383550][T14377] -> #4 (&pipe->mutex){+.+.}-{3:3}:
[  764.390957][T14377]        lock_acquire+0x1ed/0x550
[  764.395996][T14377]        __mutex_lock+0x136/0xd70
[  764.401027][T14377]        iter_file_splice_write+0x330/0x1510
[  764.407026][T14377]        do_splice+0xd68/0x18e0
[  764.411886][T14377]        __se_sys_splice+0x331/0x4a0
[  764.417179][T14377]        do_syscall_64+0xf3/0x230
[  764.422211][T14377]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  764.428632][T14377] 
[  764.428632][T14377] -> #3 (sb_writers#5){.+.+}-{0:0}:
[  764.436053][T14377]        lock_acquire+0x1ed/0x550
[  764.441096][T14377]        sb_start_write+0x4d/0x1c0
[  764.446209][T14377]        mnt_want_write+0x3f/0x90
[  764.451238][T14377]        ovl_create_object+0x13a/0x3a0
[  764.456708][T14377]        path_openat+0x1c03/0x3590
[  764.461828][T14377]        do_filp_open+0x235/0x490
[  764.466861][T14377]        do_sys_openat2+0x13e/0x1d0
[  764.472113][T14377]        __x64_sys_creat+0x123/0x170
[  764.477409][T14377]        do_syscall_64+0xf3/0x230
[  764.478272][T14379] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2160'.
[  764.482436][T14377]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  764.497712][T14377] 
[  764.497712][T14377] -> #2 (&ovl_i_mutex_dir_key[depth]#2){++++}-{3:3}:
[  764.506599][T14377]        lock_acquire+0x1ed/0x550
[  764.511630][T14377]        down_read+0xb1/0xa40
[  764.516322][T14377]        lookup_slow+0x45/0x70
[  764.521113][T14377]        walk_component+0x2e1/0x410
[  764.526335][T14377]        path_lookupat+0x16f/0x450
[  764.531455][T14377]        filename_lookup+0x256/0x610
[  764.536738][T14377]        kern_path+0x35/0x50
[  764.541350][T14377]        lookup_bdev+0xc5/0x290
[  764.546216][T14377]        resume_store+0x1a0/0x710
[  764.551245][T14377]        kernfs_fop_write_iter+0x3a0/0x500
[  764.557069][T14377]        vfs_write+0xaeb/0xd30
[  764.561847][T14377]        ksys_write+0x183/0x2b0
[  764.566745][T14377]        do_syscall_64+0xf3/0x230
[  764.571779][T14377]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  764.578203][T14377] 
[  764.578203][T14377] -> #1 (&of->mutex){+.+.}-{3:3}:
[  764.585406][T14377]        lock_acquire+0x1ed/0x550
[  764.590440][T14377]        __mutex_lock+0x136/0xd70
[  764.595472][T14377]        kernfs_seq_start+0x53/0x3b0
[  764.600773][T14377]        traverse+0x14f/0x550
[  764.605469][T14377]        seq_read_iter+0xc8c/0xd70
[  764.610587][T14377]        copy_splice_read+0x663/0xb60
[  764.615979][T14377]        splice_direct_to_actor+0x4af/0xc80
[  764.621874][T14377]        do_splice_direct+0x289/0x3e0
[  764.627244][T14377]        do_sendfile+0x561/0xe10
[  764.632167][T14377]        __se_sys_sendfile64+0x100/0x1e0
[  764.637794][T14377]        do_syscall_64+0xf3/0x230
[  764.642821][T14377]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  764.649245][T14377] 
[  764.649245][T14377] -> #0 (&p->lock){+.+.}-{3:3}:
[  764.656283][T14377]        validate_chain+0x18ef/0x5920
[  764.661672][T14377]        __lock_acquire+0x1384/0x2050
[  764.665795][ T5921] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  764.667050][T14377]        lock_acquire+0x1ed/0x550
[  764.667079][T14377]        __mutex_lock+0x136/0xd70
[  764.685993][T14377]        seq_read_iter+0xb4/0xd70
[  764.691003][T14377]        proc_reg_read_iter+0x1c2/0x290
[  764.696535][T14377]        copy_splice_read+0x663/0xb60
[  764.701896][T14377]        splice_file_to_pipe+0x290/0x500
[  764.707520][T14377]        do_sendfile+0x509/0xe10
[  764.712458][T14377]        __se_sys_sendfile64+0x17c/0x1e0
[  764.718087][T14377]        do_syscall_64+0xf3/0x230
[  764.723106][T14377]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  764.729504][T14377] 
[  764.729504][T14377] other info that might help us debug this:
[  764.729504][T14377] 
[  764.739712][T14377] Chain exists of:
[  764.739712][T14377]   &p->lock --> sb_writers#5 --> &pipe->mutex
[  764.739712][T14377] 
[  764.751605][T14377]  Possible unsafe locking scenario:
[  764.751605][T14377] 
[  764.759052][T14377]        CPU0                    CPU1
[  764.764412][T14377]        ----                    ----
[  764.769759][T14377]   lock(&pipe->mutex);
[  764.773924][T14377]                                lock(sb_writers#5);
[  764.780586][T14377]                                lock(&pipe->mutex);
[  764.787253][T14377]   lock(&p->lock);
[  764.791046][T14377] 
[  764.791046][T14377]  *** DEADLOCK ***
[  764.791046][T14377] 
[  764.799171][T14377] 1 lock held by syz.6.2159/14377:
[  764.804259][T14377]  #0: ffff88805c1ae468 (&pipe->mutex){+.+.}-{3:3}, at: splice_file_to_pipe+0x2e/0x500
[  764.813943][T14377] 
[  764.813943][T14377] stack backtrace:
[  764.819813][T14377] CPU: 0 UID: 0 PID: 14377 Comm: syz.6.2159 Not tainted 6.12.0-rc5-syzkaller-00322-gb9021de3ec2f #0
[  764.830555][T14377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  764.840597][T14377] Call Trace:
[  764.843867][T14377]  <TASK>
[  764.846791][T14377]  dump_stack_lvl+0x241/0x360
[  764.851460][T14377]  ? __pfx_dump_stack_lvl+0x10/0x10
[  764.856656][T14377]  ? __pfx__printk+0x10/0x10
[  764.861255][T14377]  print_circular_bug+0x13a/0x1b0
[  764.866281][T14377]  check_noncircular+0x36a/0x4a0
[  764.871221][T14377]  ? __pfx_check_noncircular+0x10/0x10
[  764.876673][T14377]  ? lockdep_lock+0x123/0x2b0
[  764.881355][T14377]  validate_chain+0x18ef/0x5920
[  764.886195][T14377]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  764.892163][T14377]  ? __pfx_validate_chain+0x10/0x10
[  764.897346][T14377]  ? do_raw_spin_unlock+0x13c/0x8b0
[  764.902537][T14377]  ? finish_task_switch+0x1e5/0x870
[  764.907727][T14377]  ? lockdep_hardirqs_on+0x99/0x150
[  764.912942][T14377]  ? finish_task_switch+0x1e5/0x870
[  764.918154][T14377]  ? look_up_lock_class+0x77/0x170
[  764.923253][T14377]  ? register_lock_class+0x102/0x980
[  764.928523][T14377]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  764.934414][T14377]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  764.940721][T14377]  ? __pfx_register_lock_class+0x10/0x10
[  764.946342][T14377]  ? mark_lock+0x9a/0x360
[  764.950655][T14377]  __lock_acquire+0x1384/0x2050
[  764.955495][T14377]  lock_acquire+0x1ed/0x550
[  764.959989][T14377]  ? seq_read_iter+0xb4/0xd70
[  764.964653][T14377]  ? __pfx_lock_acquire+0x10/0x10
[  764.969663][T14377]  ? __pfx___might_resched+0x10/0x10
[  764.974954][T14377]  ? preempt_schedule_notrace_thunk+0x1a/0x30
[  764.981037][T14377]  ? rcu_is_watching+0x15/0xb0
[  764.985782][T14377]  __mutex_lock+0x136/0xd70
[  764.990269][T14377]  ? seq_read_iter+0xb4/0xd70
[  764.994937][T14377]  ? do_syscall_64+0xf3/0x230
[  764.999608][T14377]  ? seq_read_iter+0xb4/0xd70
[  765.004269][T14377]  ? __pfx___mutex_lock+0x10/0x10
[  765.009280][T14377]  ? alloc_pages_bulk_noprof+0x729/0xd40
[  765.014902][T14377]  seq_read_iter+0xb4/0xd70
[  765.019391][T14377]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  765.025370][T14377]  ? copy_splice_read+0x18d/0xb60
[  765.030375][T14377]  proc_reg_read_iter+0x1c2/0x290
[  765.035384][T14377]  copy_splice_read+0x663/0xb60
[  765.040217][T14377]  ? __pfx_copy_splice_read+0x10/0x10
[  765.045573][T14377]  ? __pfx___mutex_lock+0x10/0x10
[  765.050594][T14377]  ? __fget_files+0x29/0x470
[  765.055191][T14377]  ? wait_for_space+0x254/0x2e0
[  765.060026][T14377]  ? __pfx_copy_splice_read+0x10/0x10
[  765.065378][T14377]  splice_file_to_pipe+0x290/0x500
[  765.070475][T14377]  do_sendfile+0x509/0xe10
[  765.074877][T14377]  ? __pfx_do_sendfile+0x10/0x10
[  765.079802][T14377]  __se_sys_sendfile64+0x17c/0x1e0
[  765.084901][T14377]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  765.090516][T14377]  ? do_syscall_64+0x100/0x230
[  765.095260][T14377]  ? do_syscall_64+0xb6/0x230
[  765.099919][T14377]  do_syscall_64+0xf3/0x230
[  765.104401][T14377]  ? clear_bhb_loop+0x35/0x90
[  765.109065][T14377]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  765.114941][T14377] RIP: 0033:0x7f07d877e719
[  765.119338][T14377] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  765.138944][T14377] RSP: 002b:00007f07d9492038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  765.147341][T14377] RAX: ffffffffffffffda RBX: 00007f07d8936058 RCX: 00007f07d877e719
[  765.155312][T14377] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000001
[  765.163290][T14377] RBP: 00007f07d87f132e R08: 0000000000000000 R09: 0000000000000000
[  765.171244][T14377] R10: 4000000000010042 R11: 0000000000000246 R12: 0000000000000000
[  765.179200][T14377] R13: 0000000000000000 R14: 00007f07d8936058 R15: 00007ffd77ed0318
[  765.187154][T14377]  </TASK>
[  767.618288][ T5921] ath9k_htc 5-1:1.0: ath9k_htc: Target is unresponsive
[  767.638565][ T5921] ath9k_htc: Failed to initialize the device
[  769.557599][   T25] usb 5-1: USB disconnect, device number 33
[  769.566266][   T25] usb 5-1: ath9k_htc: USB layer deinitialized