last executing test programs:

1m39.560746558s ago: executing program 2 (id=243):
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0xa)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000240)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'vcan0\x00'})
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x50, 0x0, 0x0)
syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
preadv(0xffffffffffffffff, &(0x7f00000014c0)=[{&(0x7f0000000340)=""/191, 0xfffffd90}], 0x1, 0x182, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f0000001100)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}], [], 0x2c})
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

1m34.782887426s ago: executing program 2 (id=268):
r0 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000080)='./file1\x00', 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
stat(&(0x7f0000000100)='./file0\x00', &(0x7f00000001c0))
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000040)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000180)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0)
mknodat$null(r0, &(0x7f0000000040)='./file1/file0\x00', 0x0, 0x103)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
mknodat(r2, &(0x7f0000000180)='./file0\x00', 0x1000, 0x0)

1m34.025496723s ago: executing program 2 (id=270):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000200)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0xb}}, 0x10)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f00000001c0)={0x0, 0x3d, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[], 0x30}}, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r6 = openat$smackfs_load(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/fs/smackfs/load-self2\x00', 0x2, 0x0)
write$binfmt_script(r6, &(0x7f0000000140)={'#! ', './file0', [{0x20, '{:(,&'}, {0x20, 'rwatl'}, {0x20, '.\\^]!\'\xa8'}, {0x20, 'rBRtl'}, {0x20, '!,'}, {0x20, '.\\^]!\'\xa8'}], 0xa, 'o'}, 0x31)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bind$bt_hci(r5, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
write(r5, &(0x7f0000000100)="52000300010007", 0x7)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$KVM_SET_GUEST_DEBUG(r3, 0x4048ae9b, &(0x7f0000000200)={0x4376ea830d5ed49f, 0x0, [0x2, 0x0, 0x18, 0xd]})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r7 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_SET(r0, &(0x7f0000000280)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x18, r7, 0x20, 0x70bd27, 0x25dfdbfe, {}, [@TIPC_NLA_MON={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x45}, 0x10)
recvmmsg(r0, &(0x7f0000000240)=[{{0x0, 0x0, 0x0}}], 0x1, 0x22, 0x0)
r8 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r8, &(0x7f0000000100)={0x2, 0x0, @remote}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r8, 0x6, 0xd, &(0x7f00000003c0)='dctcp-reno\x00', 0xb)

1m32.826202607s ago: executing program 2 (id=276):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r2=>0x0})
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
r3 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)
r4 = userfaultfd(0x801)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x280})
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$UFFDIO_WRITEPROTECT(r4, 0xc018aa06, &(0x7f00000000c0)={{&(0x7f00002a7000/0x2000)=nil, 0x2000}})
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r3, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r3, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r6=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r3, 0xc02064b6, &(0x7f0000000200)={r6, <r7=>0x0, <r8=>0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_SETCRTC(r3, 0xc06864a2, &(0x7f0000000400)={0x0, 0x0, r7, r8, 0x7, 0x0, 0xfffffffc, 0x7, {0x4, 0x1, 0x3, 0x7, 0x200, 0x81, 0x9, 0x5, 0x4cab, 0xe176, 0xffff, 0x0, 0x3e, 0xa7b2, "fe4802395c8e4e0b0000772f31fd8d0606aa8c00000000e8fdffffffffdfff00"}})
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x161090, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000100)='./file0/file0\x00', &(0x7f0000000480)='./file0/../file0\x00', 0x0, 0x21adc51, 0x0)
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010083000000000000006600000008000300", @ANYRES32=r2, @ANYBLOB], 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r9, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r11=>0x0})
r12 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r12, 0x84, 0x71, &(0x7f0000000100)={0x0, 0x8}, &(0x7f00000001c0)=0x8)
sendmsg$NL80211_CMD_FRAME(r9, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000440)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="09002dbd7000000000003b00000008000300", @ANYRES32=r11, @ANYBLOB="2a003300d0000000ffffffffffff080211000000505050505050004004040100020076060405270003000000"], 0x48}, 0x1, 0x0, 0x0, 0xc0}, 0x0)

1m32.119417903s ago: executing program 2 (id=284):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000004c0)={{{@in=@remote, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0xa}}, {{@in6=@mcast2, 0x0, 0x2b}, 0x0, @in=@empty}}, 0xe8)
r2 = socket$key(0xf, 0x3, 0x2)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f00000001c0), 0x4)
sendmsg$key(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000240)=ANY=[@ANYBLOB="0212000002"], 0x10}}, 0x0)
close(r1)
socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="b80000001d0001"], 0xb8}}, 0x0)

1m28.96412411s ago: executing program 2 (id=289):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = syz_io_uring_setup(0x186, &(0x7f0000000080)={0x0, 0x0, 0x13100}, &(0x7f0000000100), &(0x7f0000000000))
io_uring_enter(r3, 0x7df6, 0x4a5d, 0x0, 0x0, 0x0)

1m27.742952096s ago: executing program 32 (id=289):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = syz_io_uring_setup(0x186, &(0x7f0000000080)={0x0, 0x0, 0x13100}, &(0x7f0000000100), &(0x7f0000000000))
io_uring_enter(r3, 0x7df6, 0x4a5d, 0x0, 0x0, 0x0)

10.464006289s ago: executing program 1 (id=481):
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/vs/sloppy_sctp\x00', 0x2, 0x0)
add_key$user(&(0x7f0000000180), &(0x7f0000000200)={'syz', 0x3}, &(0x7f0000000140)="04", 0x1, 0xfffffffffffffffe)
add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/slabinfo\x00', 0x41, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r3 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r3, 0xc0285700, &(0x7f0000000b00)={0x4, "abacd211119ca94c63377526aeb5ab2c7b9ca5fa07558139ede6dc06270ee042", <r4=>0xffffffffffffffff})
ioctl$SW_SYNC_IOC_CREATE_FENCE(r2, 0xc0285700, &(0x7f0000000f40)={0x8, "b546baa5cc590d3033de259c2996817bb959ebab028deda525e19bdeffafde25", <r5=>0xffffffffffffffff})
ioctl$SYNC_IOC_MERGE(r4, 0xc0303e03, &(0x7f0000000780)={"d1ed39d88b014976ab94c1fb10628c46d2e681cdb9e5c1a31965c61e0df52c5e", r5, <r6=>0xffffffffffffffff})
close_range(r2, r3, 0x0)
ppoll(&(0x7f0000000380)=[{r6, 0x2000}], 0x1, &(0x7f00000003c0), 0x0, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
close_range(r0, 0xffffffffffffffff, 0x0)

9.170285226s ago: executing program 1 (id=484):
io_uring_setup(0x2ba3, 0x0)
r0 = openat$zero(0xffffffffffffff9c, 0x0, 0x2002, 0x0)
sendfile(r0, r0, 0x0, 0x40000f63c)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'veth0_vlan\x00', <r6=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {0x0, 0xe32b60fbedc7f0cc}, {0x7}, {0x0, 0xa}}}, 0x24}}, 0x0)

8.12094449s ago: executing program 1 (id=486):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0x1}, {0xffff, 0xffff}, {0x0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@newtfilter={0x5c, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xf}, {}, {0x4, 0xc}}, [@filter_kind_options=@f_flow={{0x9}, {0x2c, 0x2, [@TCA_FLOW_EMATCHES={0x28, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x6, 0x2, 0x0, 0x1, [@TCF_EM_CMP={0x18, 0x2, 0x0, 0x0, {{0x8, 0x1, 0x400}, {0xffffffff, 0x401, 0x0, 0x6, 0x2, 0x2, 0x2}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x43}}]}]}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x10}, 0x8c094)

6.95670499s ago: executing program 1 (id=488):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = socket$inet(0x2, 0x4, 0x7ff)
bind$inet(r1, &(0x7f0000000240)={0x2, 0x4e23, @private=0xa010102}, 0x10)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syslog(0xa, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_SHUTDOWN={0x22, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1, 0x0, 0x1})
r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000380), 0x101040)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r4, 0x40345410, &(0x7f0000000300)={{0x0, 0x2}})
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000600), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r5, 0xc08c5332, &(0x7f00000003c0)={0x9c9, 0x0, 0x0, 'queue1\x00', 0x200000})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r5, 0x40605346, &(0x7f0000000280)={0x0, 0x0, {0x3}})
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r4, 0x40505412, &(0x7f00000000c0)={0x3, 0x2, 0x40, 0x0, 0x6})
ioctl$SNDRV_TIMER_IOCTL_START(r4, 0x54a0)
r6 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r6, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xe, 0x3, &(0x7f0000000640)=ANY=[@ANYBLOB="180008000000000000000000000000009500eb2f3f67b2511b692455764f4c130d7c16bc06f654cabfb95afcd2e35bdf7206925d10c15e4071c11dc892d793e7ce6562f9a9d7182ba8c2a3fe97e4e771a52b63a32f435862e1e8ed184bab9f02aa1a6e2110d9d733df9f38cd79367c5d9e6d82ddd45cdc993b23741c2299edcc03f7901d75d49fa48abab510a596e93dfc0f67c8a93d5f9002e048d10b685b6bd1da63e26007d83618df75d877e528ff9a1dc4b3eadfc799"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x1, '\x00', 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x3b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x40000000, @void, @value}, 0x94)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r6, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r7=>0x0], 0x2b9})
ioctl$DRM_IOCTL_MODE_ATOMIC(r6, 0xc03864bc, &(0x7f00000001c0)={0x0, 0x1, &(0x7f0000000340)=[r7], &(0x7f0000000280)=[0x1], &(0x7f0000000200), &(0x7f0000000040), 0x0, 0x7f})
ioctl$KVM_SET_MSRS(r3, 0xc008ae88, &(0x7f00000001c0)=ANY=[@ANYBLOB="6400e0000000000095020000000000000200000001000000"])
r8 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0xa0002)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r8, 0x40045532, &(0x7f0000000100))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000001c0)={0x1, &(0x7f0000000180)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r9 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000540)=ANY=[@ANYBLOB="5d4755d9a6741ef6c94ddfe07a7ae4792dbdf50ce57c471b0d062103fd273acccf0e1b0a9b47ad9466407b55ebb7bfb62cb093af37baca41b1b5f109efa515c5a6877838a6eeb23fada84dc71859a5b7d3d2c1237c626282bbf4f3abfa96ec1b0996652eb7ecdd78026c0027dd019aca9596381c5f0fcd44b5a6308679b9e08bca44745a539d5f360ec0d648e098"], 0x4c}, 0x1, 0x0, 0x0, 0x24040830}, 0x8081)
ioctl$SNDCTL_DSP_GETODELAY(0xffffffffffffffff, 0x80045017, 0x0)
r10 = syz_open_dev$sndpcmp(&(0x7f0000001200), 0x0, 0xa2c65)
write$snddsp(r10, &(0x7f0000000200)="a38d", 0x2)

6.934876562s ago: executing program 0 (id=490):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r6=>0x0})
sendmsg$BATADV_CMD_GET_NEIGHBORS(r5, &(0x7f0000004340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)={0x1c, 0x0, 0x331, 0x0, 0x0, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r6}]}, 0x1c}}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f00000005c0)={'ip_vti0\x00', &(0x7f0000000180)={'syztnl1\x00', 0x0, 0x2500, 0x700, 0x0, 0x0, {{0x28, 0x4, 0x0, 0x1, 0xa0, 0x0, 0x0, 0x0, 0x4, 0x0, @rand_addr=0x64010100, @private, {[@timestamp_addr={0x44, 0x2c, 0x71, 0x1, 0xf, [{@local, 0x40}, {@broadcast, 0xc000000}, {@local, 0x101}, {@multicast1, 0x4}, {@multicast1, 0x6}]}, @timestamp_prespec={0x44, 0xc, 0x0, 0x3, 0x4, [{@broadcast, 0x4e3d}]}, @timestamp_addr={0x44, 0x54, 0xa5, 0x1, 0x4, [{@initdev={0xac, 0x1e, 0x1, 0x0}, 0x4}, {@local, 0x200}, {@multicast1, 0x5}, {@rand_addr=0x64010101, 0x7}, {@rand_addr=0x640100fe, 0x800}, {@initdev={0xac, 0x1e, 0x0, 0x0}}, {@broadcast, 0x6}, {@remote, 0x3}, {@multicast1, 0x464}, {@loopback, 0xffff0001}]}]}}}}})
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x4, 0x5, &(0x7f0000002500)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffe89, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000002340)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f00000002c0)=ANY=[@ANYRES32=r8, @ANYRES32=r8, @ANYBLOB='/\x00'/12, @ANYRES32, @ANYBLOB="59bcfb0b4227c030fb71316eaf439e05524154bef73faa4c0adc25409ecb16091f71d66612c9d10a5cbb342d73e2df7048eaa5f0e9d1927f1ea69f89d510361099c489", @ANYRES64=0x0], 0x20)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000000)={@cgroup=r7, r8, 0x2f, 0x8, 0x4, @void, @value}, 0x20)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x6000, 0x0)

6.657379368s ago: executing program 3 (id=491):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="18020000004000000000000000000000850000007a00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$inet6(0xa, 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x275a, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
socket$tipc(0x1e, 0x2, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
socket$inet6_udp(0xa, 0x2, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$nl_xfrm(0x10, 0x3, 0x6)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000240)=ANY=[@ANYRES32, @ANYRES32, @ANYRES64=r0, @ANYRES64=0x0], 0x20)

6.352701962s ago: executing program 3 (id=493):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000400)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000480)=ANY=[@ANYRES64=r1, @ANYRES16=0x0, @ANYRES64=r2], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r3}, 0x18)
syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00')
r4 = add_key$user(&(0x7f0000000a40), &(0x7f0000000080)={'syz', 0x2}, &(0x7f0000000a80)='X', 0x1, 0xfffffffffffffffe)
r5 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xf1, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f00000000c0)={r4, r5, r5}, &(0x7f00000013c0)=""/272, 0x110, &(0x7f0000001140)={&(0x7f0000000140)={'sha224-ssse3\x00'}})
r6 = fanotify_init(0x200, 0x0)
fanotify_mark(r6, 0x101, 0x10, 0xffffffffffffffff, 0x0)

6.34051953s ago: executing program 1 (id=494):
r0 = socket$inet6(0xa, 0x1, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000380)=ANY=[@ANYBLOB="12010000000000406d0422c2000000000001090224000100000000090400000103000000092100000001220b0009058103"], 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io(r1, &(0x7f0000000100)={0x2c, &(0x7f0000000680)=ANY=[@ANYBLOB="00000b0000000b00304d9481"], 0x0, 0x0, 0x0, 0x0}, 0x0)
bind$inet6(r0, &(0x7f0000000180)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000140)={0x2, &(0x7f0000000080)=[{0x28, 0x0, 0x0, 0xfffff00c}, {0x80000006}]}, 0x10)
r3 = syz_open_dev$ptys(0xc, 0x3, 0x1)
r4 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
capset(&(0x7f0000000180)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000080)={0x8, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000a0000000000000000000001b7080000000001007baaf8ff00000000b5080200000001007b8af0ff00000000bf8100000000000007010000a8d5b100bfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r5, @ANYBLOB="0000000001000000b705000008000000850000000800000095"], &(0x7f0000000300)='GPL\x00', 0xb, 0xff7, &(0x7f0000001e00)=""/4087, 0x41100, 0x21, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
getdents64(r4, 0x0, 0x11)
ioctl$TCGETS2(r4, 0x802c542a, &(0x7f0000000000))
madvise(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x19)
sendto$inet6(r0, 0x0, 0x0, 0xfffffefffffbffaf, &(0x7f0000000140)={0xa, 0x4e20, 0x4, @loopback}, 0x1c)
ioctl$KDGKBMODE(r3, 0x4b44, &(0x7f0000000040))
sendto$inet6(r0, &(0x7f0000001600)='\b', 0x1, 0x40045, 0x0, 0x0)

5.501983531s ago: executing program 0 (id=495):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f00000004c0)='.\x00', &(0x7f0000000500), 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
ioctl$TIOCSLCKTRMIOS(r0, 0x5457, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_CONTEXT(r1, 0x84, 0x11, 0x0, &(0x7f0000000240))
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_LIST_PHY(r2, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20040010}, 0x40000)
syz_genetlink_get_family_id$nl802154(0x0, r2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000327000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19)
getsockopt$inet_sctp6_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000000080)={0x0, 0x6, 0x0, 0x9, 0x9, 0x5}, &(0x7f00000000c0)=0x14)

5.428292171s ago: executing program 3 (id=496):
r0 = socket$kcm(0x10, 0x2, 0x4)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001240)={&(0x7f00000003c0)={0x64, 0x18, 0x1, 0x0, 0x0, {0x1d, 0xd601, 0x9}, [@nested={0x4d, 0xf, 0x0, 0x1, [@generic="ac71f62954dd34c4d59330029f1d0dbbc8b3d269768b65b181a471e0e020f07f6f654eb62f06c587a408fc99a8537b6a7f7585477bf88829bb647802aac0c3c5efe87285ce595c0fd6"]}]}, 0x64}}, 0x0)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000800)="39000000140081ae10003c000500018311001f9f660fcf066505acb612f691f3bd3508abca1be6eeb89c44ebb37358582bdbb7d553b4e92155", 0x39}], 0x1}, 0x0)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
r3 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r3, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback, 0x9}, 0x1c)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000004c0)=ANY=[@ANYBLOB="d8000000", @ANYRES16=0x0, @ANYBLOB="04002dbd7000f2dbdf254f0000000c00839ced540000680000004c007a8008000400000000181c000200134ecc4d908540c3c8630b918a29360800040004005111335ced5fd94e0800040009000000080004000300000048007a801400010003d869f47d8c428eaa74b31794b4b314b5000400000000000c0003004180081ee4f88f1a080004000c0000000c0003007858754e3c504054080004000800000004007a8020007a800800040005000000140002002929590c"], 0xd8}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
sendmsg(r3, &(0x7f00000000c0)={0x0, 0x9521, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0x5dc}], 0x1, 0x0, 0x0, 0x2c}, 0x44004)

5.13489064s ago: executing program 3 (id=499):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_open_dev$dri(0x0, 0x1ff, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r1, 0x0, 0x9}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
rt_sigaction(0x19, &(0x7f0000000300)={0xfffffffffffffffc, 0x4000007, 0x0}, 0x0, 0x8, &(0x7f0000000280))
r5 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000240), 0x80, 0x0)
r6 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r6, 0x3b81, &(0x7f0000000200)={0xc, 0x0, <r7=>0x0})
ioctl$IOMMU_VFIO_IOAS$SET(r6, 0x3b88, &(0x7f0000000300)={0xc, r7})
ioctl$IOMMU_IOAS_MAP$PAGES(r6, 0x3b85, &(0x7f0000000340)={0x28, 0x4, r7, 0x0, &(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2})
ioctl$IOMMU_VFIO_IOAS$SET(r5, 0x3b88, &(0x7f00000002c0)={0xc, r7})
r8 = memfd_create(&(0x7f00000006c0)='\x00\xac=\x9d\xd2\xdb\xe6\xbf\xb4\xf2\xed\x04\x00\x00\x00\xd4N\x12\x9b\x1f\t\xd1Z+\x86T\x16\xf8\x01\x00\x00\x00\x9f+\x8d!\x0fG\xab\xc2\xdc\xa3\xb3\xae8\x9f9?\xefo\xa4k\x01\xb2>\xa1\x9c\x86xm\xe6\x9bZ4\x91\x1a\xdb\xdd\x89\xb9\xc0LF;\xd6\x84\x195\x06\x00\x00\x00~\xf3S\x12\"p^\xc1jP\x8a\xc6[\xbd\xe7q]\xdd\r\x1aZS\x01*\x1b\xfd\xbcMA\xdcq\xa1\x00\xb3\xf9\x91r\x7f\xdc\xf1\xc3G,\xdb\xccS\x15\x95b\x17\xab\xe4?\x96\x95\xa4kP\x99YO\xb8V\xd5p\x90X\xaaf', 0x0)
fallocate(r8, 0x0, 0x400000000000003, 0x2)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="600000000206030000000000000000000000000005000100070000000900020073797a310000000014000780080013000000000008001240000000000500040000000000050005000200000014000300686173683a0100000000000000697000"], 0x60}, 0x1, 0x0, 0x0, 0x20000884}, 0x0)

4.98095874s ago: executing program 5 (id=500):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='ip_vti0\x00', 0x10)
write$binfmt_aout(r0, &(0x7f0000000480)=ANY=[], 0x9cf)

4.064629046s ago: executing program 5 (id=501):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000015c0)={0x0, r0}, 0x18)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000180)={@private0, 0x8000000, 0x0, 0xff, 0x1}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000180)={@mcast2, 0x81, 0x2, 0x0, 0x0, 0x4, 0xa}, 0x20)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f00000002c0)=@raw={'raw\x00', 0x9, 0x3, 0x430, 0x0, 0xffffffff, 0xffffffff, 0xf0, 0xffffffff, 0x360, 0xffffffff, 0xffffffff, 0x360, 0xffffffff, 0x3, &(0x7f0000000040), {[{{@uncond, 0x0, 0xd0, 0xf0, 0x0, {}, [@common=@inet=@ecn={{0x28}, {0x20, 0x1, 0x8, 0x5}}]}, @unspec=@TRACE={0x20}}, {{@ipv6={@mcast1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', [0xffffffff, 0xffffffff, 0xff000000, 0xff], [0xff, 0xffffff00, 0x0, 0xffffff00], 'dvmrp1\x00', 'pim6reg0\x00', {}, {}, 0x62, 0x9, 0x4, 0x40}, 0x0, 0x230, 0x270, 0x0, {}, [@common=@rt={{0x138}, {0x0, [0x5, 0xe], 0x21, 0x4, 0x1, [@mcast1, @empty, @empty, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010101}, @mcast1, @mcast1, @empty, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @empty, @remote, @dev={0xfe, 0x80, '\x00', 0x13}, @loopback, @mcast1, @mcast2, @local, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}], 0x9}}, @common=@inet=@set3={{0x50}, {{0x4, 0x0, 0x6}, {0x2, 0x2}, {0xa, 0x3}, 0xc}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x0, 0x9, {0x401}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x490)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e020030000b03d25a806f8c2d94f90324fc602f1a04000a740100053582c137153e370248018000f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x4000}, 0x0)

4.054717964s ago: executing program 4 (id=502):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000400)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000480)=ANY=[@ANYRES64=r1, @ANYRES16=0x0, @ANYRES64=r2], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00')
r4 = add_key$user(0x0, &(0x7f0000000080)={'syz', 0x2}, &(0x7f0000000a80)='X', 0x1, 0xfffffffffffffffe)
r5 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xf1, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f00000000c0)={r4, r5, r5}, &(0x7f00000013c0)=""/272, 0x110, &(0x7f0000001140)={&(0x7f0000000140)={'sha224-ssse3\x00'}})
r6 = fanotify_init(0x200, 0x0)
fanotify_mark(r6, 0x101, 0x10, 0xffffffffffffffff, 0x0)

3.97273871s ago: executing program 3 (id=503):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="18020000004000000000000000000000850000007a00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$inet6(0xa, 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x275a, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
socket$tipc(0x1e, 0x2, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
socket$inet6_udp(0xa, 0x2, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$nl_xfrm(0x10, 0x3, 0x6)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000240)=ANY=[@ANYRES32, @ANYRES32, @ANYRES64=r0, @ANYRES64=0x0], 0x20)

3.735864631s ago: executing program 5 (id=504):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = socket$inet(0x2, 0x4, 0x7ff)
bind$inet(r1, &(0x7f0000000240)={0x2, 0x4e23, @private=0xa010102}, 0x10)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syslog(0xa, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_SHUTDOWN={0x22, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1, 0x0, 0x1})
r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000380), 0x101040)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r4, 0x40345410, &(0x7f0000000300)={{0x0, 0x2}})
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000600), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r5, 0xc08c5332, &(0x7f00000003c0)={0x9c9, 0x0, 0x0, 'queue1\x00', 0x200000})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r5, 0x40605346, &(0x7f0000000280)={0x0, 0x0, {0x3}})
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r4, 0x40505412, &(0x7f00000000c0)={0x3, 0x2, 0x40, 0x0, 0x6})
ioctl$SNDRV_TIMER_IOCTL_START(r4, 0x54a0)
r6 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r6, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xe, 0x3, &(0x7f0000000640)=ANY=[@ANYBLOB="180008000000000000000000000000009500eb2f3f67b2511b692455764f4c130d7c16bc06f654cabfb95afcd2e35bdf7206925d10c15e4071c11dc892d793e7ce6562f9a9d7182ba8c2a3fe97e4e771a52b63a32f435862e1e8ed184bab9f02aa1a6e2110d9d733df9f38cd79367c5d9e6d82ddd45cdc993b23741c2299edcc03f7901d75d49fa48abab510a596e93dfc0f67c8a93d5f9002e048d10b685b6bd1da63e26007d83618df75d877e528ff9a1dc4b3eadfc799"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x1, '\x00', 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x3b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x40000000, @void, @value}, 0x94)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r6, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r7=>0x0], 0x2b9})
ioctl$DRM_IOCTL_MODE_ATOMIC(r6, 0xc03864bc, &(0x7f00000001c0)={0x0, 0x1, &(0x7f0000000340)=[r7], &(0x7f0000000280)=[0x1], &(0x7f0000000200), &(0x7f0000000040), 0x0, 0x7f})
ioctl$KVM_SET_MSRS(r3, 0xc008ae88, &(0x7f00000001c0)=ANY=[@ANYBLOB="6400e0000000000095020000000000000200000001000000"])
r8 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0xa0002)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r8, 0x40045532, &(0x7f0000000100))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000001c0)={0x1, &(0x7f0000000180)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r9 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000540)=ANY=[@ANYBLOB="5d4755d9a6741ef6c94ddfe07a7ae4792dbdf50ce57c471b0d062103fd273acccf0e1b0a9b47ad9466407b55ebb7bfb62cb093af37baca41b1b5f109efa515c5a6877838a6eeb23fada84dc71859a5b7d3d2c1237c626282bbf4f3abfa96ec1b0996652eb7ecdd78026c0027dd019aca9596381c5f0fcd44b5a6308679b9e08bca44745a539d5f360ec0d648e098"], 0x4c}, 0x1, 0x0, 0x0, 0x24040830}, 0x8081)
ioctl$SNDCTL_DSP_GETODELAY(0xffffffffffffffff, 0x80045017, 0x0)
r10 = syz_open_dev$sndpcmp(&(0x7f0000001200), 0x0, 0xa2c65)
write$snddsp(r10, &(0x7f0000000200)="a38d", 0x2)

3.696640705s ago: executing program 3 (id=505):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r2, &(0x7f00000000c0), 0x8)
listen(r2, 0x0)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0x7, &(0x7f0000000380)=0x1, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r3 = syz_usb_connect(0x0, 0x24, &(0x7f0000000680)=ANY=[@ANYBLOB="12010000d507df08c410448200dc01020301090212000100000000090480000003"], 0x0)
syz_usb_control_io$printer(r3, 0x0, &(0x7f0000000440)={0x34, 0x0, 0x0, &(0x7f0000000340)={0x0, 0x8, 0x1, 0xc5}, 0x0, 0x0, 0x0})
syz_usb_control_io$uac1(r3, 0x0, &(0x7f0000000000)={0x44, &(0x7f00000000c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) (async)
syz_usb_control_io$uac1(r3, 0x0, &(0x7f0000000000)={0x44, &(0x7f00000000c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7) (async)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e) (async)
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$DRM_IOCTL_MODE_ADDFB(0xffffffffffffffff, 0xc01c64ae, 0x0) (async)
ioctl$DRM_IOCTL_MODE_ADDFB(0xffffffffffffffff, 0xc01c64ae, 0x0)
openat$ppp(0xffffffffffffff9c, 0x0, 0xc0802, 0x0)
socket$phonet_pipe(0x23, 0x5, 0x2) (async)
socket$phonet_pipe(0x23, 0x5, 0x2)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x88200, 0x0)
ioctl$TCXONC(r7, 0x540a, 0x2) (async)
ioctl$TCXONC(r7, 0x540a, 0x2)
sendmsg$nl_xfrm(r0, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000140)=ANY=[@ANYBLOB="3801000010f60100000000000000000000000000000000000000000000000001fe8000000000000000000000000000bb00"/64, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="e0000001000000000000000000000000000004d632000000ffffffff0000000000000000000000000000000000000000090000000000000000000000000000000000000000000000feffffffffffffff0000000000000000000000000000000000000000000000000000000000000000ff0100000000000000000000000000000000000000000000ff0100003d000000000000000000000000000000020000001400000000000000480003006465666c61746500"/240], 0x138}}, 0x0) (async)
sendmsg$nl_xfrm(r0, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000140)=ANY=[@ANYBLOB="3801000010f60100000000000000000000000000000000000000000000000001fe8000000000000000000000000000bb00"/64, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="e0000001000000000000000000000000000004d632000000ffffffff0000000000000000000000000000000000000000090000000000000000000000000000000000000000000000feffffffffffffff0000000000000000000000000000000000000000000000000000000000000000ff0100000000000000000000000000000000000000000000ff0100003d000000000000000000000000000000020000001400000000000000480003006465666c61746500"/240], 0x138}}, 0x0)

2.982915462s ago: executing program 4 (id=506):
syz_open_procfs(0x0, &(0x7f0000000100)='syscall\x00')
socket$nl_route(0x10, 0x3, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000071122e000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0xfffffffc, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_LOOKUP_ELEM(0x5, &(0x7f00000000c0)={r0, &(0x7f0000000000), &(0x7f0000000040)=""/66}, 0x20)

2.779767882s ago: executing program 0 (id=507):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r5=>0x0})
sendmsg$BATADV_CMD_GET_NEIGHBORS(r4, &(0x7f0000004340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)={0x1c, 0x0, 0x331, 0x0, 0x0, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}]}, 0x1c}}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f00000005c0)={'ip_vti0\x00', &(0x7f0000000180)={'syztnl1\x00', 0x0, 0x2500, 0x700, 0x0, 0x0, {{0x28, 0x4, 0x0, 0x1, 0xa0, 0x0, 0x0, 0x0, 0x4, 0x0, @rand_addr=0x64010100, @private, {[@timestamp_addr={0x44, 0x2c, 0x71, 0x1, 0xf, [{@local, 0x40}, {@broadcast, 0xc000000}, {@local, 0x101}, {@multicast1, 0x4}, {@multicast1, 0x6}]}, @timestamp_prespec={0x44, 0xc, 0x0, 0x3, 0x4, [{@broadcast, 0x4e3d}]}, @timestamp_addr={0x44, 0x54, 0xa5, 0x1, 0x4, [{@initdev={0xac, 0x1e, 0x1, 0x0}, 0x4}, {@local, 0x200}, {@multicast1, 0x5}, {@rand_addr=0x64010101, 0x7}, {@rand_addr=0x640100fe, 0x800}, {@initdev={0xac, 0x1e, 0x0, 0x0}}, {@broadcast, 0x6}, {@remote, 0x3}, {@multicast1, 0x464}, {@loopback, 0xffff0001}]}]}}}}})
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000002340)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f00000002c0)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB='/\x00'/12, @ANYRES32, @ANYBLOB="59bcfb0b4227c030fb71316eaf439e05524154bef73faa4c0adc25409ecb16091f71d66612c9d10a5cbb342d73e2df7048eaa5f0e9d1927f1ea69f89d510361099c489", @ANYRES64=0x0], 0x20)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r6, 0xffffffffffffffff, 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0)

2.778694222s ago: executing program 4 (id=508):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)

2.746027244s ago: executing program 1 (id=509):
r0 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000000c0), 0x4)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000240)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
sendto$inet6(r1, 0x0, 0x1e, 0x2200c851, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c)
recvmsg(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000d00)=[{&(0x7f0000000b40)=""/151, 0x97}, {0x0}], 0x2}, 0x40000001)
r2 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[], 0x48)
syz_genetlink_get_family_id$batadv(0x0, r2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r3 = userfaultfd(0x1)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f000000e480), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_GET_ADDR(r4, &(0x7f000000e580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r5, @ANYBLOB="b77226bd8200fcdbdf25030000000c0001800600010007000000"], 0x20}, 0x1, 0x0, 0x0, 0x20040810}, 0x24040000)
io_setup(0x7, &(0x7f0000007f00)=<r6=>0x0)
io_submit(r6, 0x1, &(0x7f00000002c0)=[&(0x7f0000007f80)={0x0, 0x0, 0x8, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x2}])
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r7 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r7, &(0x7f0000019680)=""/102392, 0x18ff8)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$IPVS_CMD_DEL_DAEMON(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r9, @ANYBLOB="01002abd7000fddbdf250a0000000c000200060007004e220000"], 0x20}, 0x1, 0x0, 0x0, 0x4c000}, 0x2004a0c0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000004340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8814}, 0x20000084)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="13010000bd460e10490d1070900c010203010902120001000000000904000000d202", @ANYRES32=r0], 0x0)
mbind(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1, &(0x7f0000000000)=0x5, 0x5, 0x0)

2.682926681s ago: executing program 5 (id=510):
r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x7, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f00000000c0)={0x4a, 0x1, 0x1, "9601f8ffffffffffff0000000000000800f8ffffff0000000400", 0x42345335}) (fail_nth: 1)

2.46482732s ago: executing program 4 (id=511):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000100000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0x22242, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r2, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r2, 0x0)
write$USERIO_CMD_SET_PORT_TYPE(r1, &(0x7f00000002c0)={0x1, 0x5}, 0x2)

2.083335855s ago: executing program 5 (id=512):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000100000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0x22242, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r2, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r2, 0x0)
write$USERIO_CMD_SET_PORT_TYPE(r1, &(0x7f00000002c0)={0x1, 0x5}, 0x2) (fail_nth: 1)

1.478657545s ago: executing program 4 (id=513):
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480))
socket(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000f40)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_open_procfs(0x0, &(0x7f0000000400)='stack\x00')
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000480)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000013c0)=ANY=[@ANYBLOB="640000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c0002001c0000001f000000060001000000000008000500", @ANYRES32=r0, @ANYBLOB='\b\x00\n\x00', @ANYRES32, @ANYBLOB="0a000100"], 0x64}}, 0x0)

1.047591609s ago: executing program 0 (id=514):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000015c0)={0x0, r0}, 0x18)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000180)={@private0, 0x8000000, 0x0, 0xff, 0x1}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000180)={@mcast2, 0x81, 0x2, 0x0, 0x0, 0x4, 0xa}, 0x20)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f00000002c0)=@raw={'raw\x00', 0x9, 0x3, 0x430, 0x0, 0xffffffff, 0xffffffff, 0xf0, 0xffffffff, 0x360, 0xffffffff, 0xffffffff, 0x360, 0xffffffff, 0x3, &(0x7f0000000040), {[{{@uncond, 0x0, 0xd0, 0xf0, 0x0, {}, [@common=@inet=@ecn={{0x28}, {0x20, 0x1, 0x8, 0x5}}]}, @unspec=@TRACE={0x20}}, {{@ipv6={@mcast1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', [0xffffffff, 0xffffffff, 0xff000000, 0xff], [0xff, 0xffffff00, 0x0, 0xffffff00], 'dvmrp1\x00', 'pim6reg0\x00', {}, {}, 0x62, 0x9, 0x4, 0x40}, 0x0, 0x230, 0x270, 0x0, {}, [@common=@rt={{0x138}, {0x0, [0x5, 0xe], 0x21, 0x4, 0x1, [@mcast1, @empty, @empty, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010101}, @mcast1, @mcast1, @empty, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @empty, @remote, @dev={0xfe, 0x80, '\x00', 0x13}, @loopback, @mcast1, @mcast2, @local, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}], 0x9}}, @common=@inet=@set3={{0x50}, {{0x4, 0x0, 0x6}, {0x2, 0x2}, {0xa, 0x3}, 0xc}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x0, 0x9, {0x401}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x490)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e020030000b03d25a806f8c2d94f90324fc602f1a04000a740100053582c137153e370248018000f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x4000}, 0x0)

978.112421ms ago: executing program 5 (id=515):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
madvise(&(0x7f00006c9000/0x3000)=nil, 0x3000, 0x1)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newtaction={0x44, 0x30, 0x1, 0x70bd2d, 0x25dfdbfb, {}, [{0x30, 0x1, [@m_ife={0x2c, 0x1, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0xc}, {0xc}}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'rmd160-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x3, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b70800000000000e7b8af0ff0000", @ANYRES32, @ANYBLOB="0000000000000000b70500000800000085000000c500000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
recvmmsg$unix(r1, 0x0, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x1, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
futex(&(0x7f0000000000)=0x2, 0x3, 0x0, 0x0, 0xffffffffffffffff, 0x2)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r7, 0x4048aecb, &(0x7f0000000000))

974.535182ms ago: executing program 4 (id=516):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x180)
syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000140)={{0x12, 0x1, 0x200, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x230, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x3, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x4, 0x1, 0x3, 0x1, 0x2, 0x6, {0x9, 0x21, 0x5, 0x7, 0x1, {0x22, 0x31e}}, {{{0x9, 0x5, 0x81, 0x3, 0x20, 0xa, 0x4}}}}}]}}]}}, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0})
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r0, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x40)
mkdir(&(0x7f0000005800)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
ioprio_set$pid(0x2, 0x0, 0x4000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000540)='./file1\x00', 0x46842, 0x0)
sendfile(r1, r1, 0x0, 0x7a680000)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r1, 0x29, 0xd1, &(0x7f00000000c0)=0x1ff, 0x4)
getsockopt$inet6_buf(r2, 0x29, 0x6, &(0x7f0000000140)=""/19, &(0x7f0000000240)=0x13)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, {<r3=>r2}}, './file0\x00'})
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x1d, 0x1e, &(0x7f0000000300)=ANY=[@ANYBLOB="180000000002000000000000ffff0000181100", @ANYRES32, @ANYRESOCT, @ANYRES16, @ANYBLOB="00000000000000008510000008000000180100002020692500000000002020207b"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x1, '\x00', 0x0, @lsm=0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x7, @void, @value}, 0x94)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x80840, 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x56, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$LOOP_SET_STATUS(r3, 0x4c02, &(0x7f0000000440)={0x0, {}, 0x0, {}, 0xf617, 0x9, 0x14, 0x2, "b5ba2b2da9f948f8b53ea8d6d13e1fde0f04fa35ca30c0b44eff8616b26ce4068144c63902ab8c304e356105f596ce74ae93245593d0d7066f48044b7c81767b", "0c3b6e615cc961db86432ec26c004354725b420ad6b7bd229b56d6fbb0df9e84", [0x5a, 0x8]})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_MSG_GETFLOWTABLE(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="38117e785043085752f14d4d79ec2c000000170a03000000000000000000020000040900020073790d08000081d4fa6e025bbd7ceaeb86894523e98c3c13d9eaa5497ad5d8106a6a9596fd4f27247928f9235fea21a78feffcfd444190e70e8c83cb42c7541518b59fa4c91b3351b9fa8c02647d77ae237f08dc1d2aa38556c4c60200000000000000360f75ef3e0dc93d452ffc1e48da46814e3d6e53b12864052a4a90cd9f44c316"], 0x2c}, 0x1, 0x0, 0x0, 0x20040090}, 0x80)

888.685129ms ago: executing program 0 (id=517):
r0 = openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xb, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
bind$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x4e23, @broadcast}, 0x10)
syz_open_dev$sg(&(0x7f0000000100), 0x7ff, 0x224c00)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f00000001c0)={0x400, 0x300, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x3f0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x3, 0x0, 0x0, 0xb})
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r3=>0x0})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3400000013000100000000000000000007000000", @ANYRES32=r3, @ANYBLOB="000000000000000014001a80100004800c00068008"], 0x34}}, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000180)='./file5\x00', 0x61c0, 0x700)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000500)={@cgroup=r5, 0x2b, 0x0, 0x0, &(0x7f00000005c0)=[0x0], 0x1, 0x0, 0x0, 0x0, 0x0}, 0x40)

0s ago: executing program 0 (id=518):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000000c00850000000f00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0xcc0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00'}, 0x10)
ioctl$VHOST_SET_FEATURES(0xffffffffffffffff, 0x4008af00, 0x0)
write$vhost_msg_v2(0xffffffffffffffff, 0x0, 0x0)
write$vhost_msg_v2(0xffffffffffffffff, 0x0, 0x0)
socket$key(0xf, 0x3, 0x2)
r3 = io_uring_setup(0x6281, &(0x7f0000000080)={0x0, 0xbdad, 0x0, 0x10})
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x1, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f0000000140), 0x2, 0x141381)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
io_uring_register$IORING_REGISTER_BUFFERS(r3, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x18)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x100201, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff)

kernel console output (not intermixed with test programs):

[ T6263] Bluetooth: MGMT ver 1.23
[  108.724585][ T5836] Bluetooth: hci4: command 0x0c1a tx timeout
[  108.724677][   T54] Bluetooth: hci3: command 0x0c1a tx timeout
[  109.052033][ T6285] FAULT_INJECTION: forcing a failure.
[  109.052033][ T6285] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  109.065404][ T6285] CPU: 0 UID: 0 PID: 6285 Comm: syz.0.95 Not tainted 6.14.0-rc3-syzkaller-00012-g2408a807bfc3 #0
[  109.065427][ T6285] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  109.065436][ T6285] Call Trace:
[  109.065443][ T6285]  <TASK>
[  109.065448][ T6285]  dump_stack_lvl+0x241/0x360
[  109.065464][ T6285]  ? __pfx_dump_stack_lvl+0x10/0x10
[  109.065474][ T6285]  ? __pfx__printk+0x10/0x10
[  109.065489][ T6285]  ? __pfx_lock_release+0x10/0x10
[  109.065507][ T6285]  should_fail_ex+0x40a/0x550
[  109.065522][ T6285]  _copy_from_user+0x2d/0xb0
[  109.065535][ T6285]  do_ipv6_setsockopt+0x2fc/0x35b0
[  109.065554][ T6285]  ? __pfx_do_ipv6_setsockopt+0x10/0x10
[  109.065576][ T6285]  ? __pfx___schedule+0x10/0x10
[  109.065587][ T6285]  ? irqentry_exit+0x63/0x90
[  109.065598][ T6285]  ? lockdep_hardirqs_on+0x99/0x150
[  109.065617][ T6285]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  109.065631][ T6285]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  109.065646][ T6285]  ? irqentry_exit+0x63/0x90
[  109.065658][ T6285]  ipv6_setsockopt+0x5d/0x170
[  109.065673][ T6285]  rawv6_setsockopt+0x2ac/0x690
[  109.065699][ T6285]  ? __pfx_rawv6_setsockopt+0x10/0x10
[  109.065713][ T6285]  ? sock_common_setsockopt+0x72/0xc0
[  109.065726][ T6285]  ? sock_common_setsockopt+0x37/0xc0
[  109.065738][ T6285]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  109.065749][ T6285]  do_sock_setsockopt+0x3af/0x720
[  109.065766][ T6285]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  109.065778][ T6285]  ? __rcu_read_unlock+0xa1/0x110
[  109.065793][ T6285]  ? __fget_files+0x395/0x410
[  109.065802][ T6285]  ? __fget_files+0x2a/0x410
[  109.065815][ T6285]  __x64_sys_setsockopt+0x1ee/0x280
[  109.065832][ T6285]  do_syscall_64+0xf3/0x230
[  109.065844][ T6285]  ? clear_bhb_loop+0x35/0x90
[  109.065860][ T6285]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.065872][ T6285] RIP: 0033:0x7f43ca38cde9
[  109.065881][ T6285] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.065889][ T6285] RSP: 002b:00007f43cb11b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  109.065900][ T6285] RAX: ffffffffffffffda RBX: 00007f43ca5a6160 RCX: 00007f43ca38cde9
[  109.065907][ T6285] RDX: 00000000000000cc RSI: 0000000000000029 RDI: 000000000000000b
[  109.065912][ T6285] RBP: 00007f43cb11b090 R08: 000000000000005c R09: 0000000000000000
[  109.065917][ T6285] R10: 0000400000000280 R11: 0000000000000246 R12: 0000000000000001
[  109.065923][ T6285] R13: 0000000000000000 R14: 00007f43ca5a6160 R15: 00007fff9aeeeae8
[  109.065937][ T6285]  </TASK>
[  109.884195][   T54] Bluetooth: hci1: ACL packet for unknown connection handle 201
[  109.921469][ T6289] mmap: syz.2.97 (6289) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  110.274665][ T5873] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  111.268783][ T5873] usb 3-1: Using ep0 maxpacket: 32
[  111.276132][ T5873] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  111.303818][ T5873] usb 3-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  111.325164][ T5873] usb 3-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  111.344625][ T5873] usb 3-1: Product: syz
[  111.348960][ T5873] usb 3-1: Manufacturer: syz
[  111.353559][ T5873] usb 3-1: SerialNumber: syz
[  111.386202][ T5873] usb 3-1: config 0 descriptor??
[  111.402117][ T6289] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  111.679953][ T5873] usb 3-1: USB disconnect, device number 4
[  112.897670][ T6312] FAULT_INJECTION: forcing a failure.
[  112.897670][ T6312] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  112.922188][ T6312] CPU: 0 UID: 0 PID: 6312 Comm: syz.2.104 Not tainted 6.14.0-rc3-syzkaller-00012-g2408a807bfc3 #0
[  112.922206][ T6312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  112.922212][ T6312] Call Trace:
[  112.922217][ T6312]  <TASK>
[  112.922222][ T6312]  dump_stack_lvl+0x241/0x360
[  112.922238][ T6312]  ? __pfx_dump_stack_lvl+0x10/0x10
[  112.922248][ T6312]  ? __pfx__printk+0x10/0x10
[  112.922264][ T6312]  ? __pfx_lock_release+0x10/0x10
[  112.922281][ T6312]  should_fail_ex+0x40a/0x550
[  112.922296][ T6312]  _copy_from_user+0x2d/0xb0
[  112.922309][ T6312]  copy_msghdr_from_user+0xae/0x680
[  112.922326][ T6312]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  112.922335][ T6312]  ? __fget_files+0x2a/0x410
[  112.922347][ T6312]  ? __fget_files+0x2a/0x410
[  112.922360][ T6312]  __sys_sendmsg+0x209/0x350
[  112.922377][ T6312]  ? __pfx___sys_sendmsg+0x10/0x10
[  112.922397][ T6312]  ? do_sys_openat2+0x17a/0x1d0
[  112.922418][ T6312]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  112.922432][ T6312]  ? do_syscall_64+0x100/0x230
[  112.922445][ T6312]  ? do_syscall_64+0xb6/0x230
[  112.922457][ T6312]  do_syscall_64+0xf3/0x230
[  112.922469][ T6312]  ? clear_bhb_loop+0x35/0x90
[  112.922484][ T6312]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.922497][ T6312] RIP: 0033:0x7fe9e6b8cde9
[  112.922506][ T6312] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.922514][ T6312] RSP: 002b:00007fe9e7a7e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  112.922525][ T6312] RAX: ffffffffffffffda RBX: 00007fe9e6da5fa0 RCX: 00007fe9e6b8cde9
[  112.922532][ T6312] RDX: 0000000020004804 RSI: 0000400000006040 RDI: 0000000000000004
[  112.922538][ T6312] RBP: 00007fe9e7a7e090 R08: 0000000000000000 R09: 0000000000000000
[  112.922543][ T6312] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  112.922548][ T6312] R13: 0000000000000000 R14: 00007fe9e6da5fa0 R15: 00007ffd22fd0278
[  112.922562][ T6312]  </TASK>
[  114.969905][ T6334] input: syz0 as /devices/virtual/input/input8
[  115.084557][ T5873] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  116.196005][ T5873] usb 3-1: config 0 has an invalid interface number: 9 but max is 0
[  116.204034][ T5873] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  116.219238][ T5873] usb 3-1: config 0 has no interface number 0
[  116.344490][ T5873] usb 3-1: New USB device found, idVendor=0421, idProduct=0302, bcdDevice=45.e8
[  116.353577][ T5873] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  116.374898][ T5873] usb 3-1: config 0 descriptor??
[  116.388157][ T5873] rndis_host 3-1:0.9: skipping garbage
[  116.393678][ T5873] usb 3-1: bad CDC descriptors
[  116.405183][ T5873] cdc_acm 3-1:0.9: skipping garbage
[  116.708882][    T8] usb 3-1: USB disconnect, device number 5
[  121.364612][ T5876] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  122.115745][ T5876] usb 1-1: Using ep0 maxpacket: 32
[  122.135913][ T5876] usb 1-1: config 0 has an invalid interface number: 184 but max is 0
[  122.155706][ T5876] usb 1-1: config 0 has no interface number 0
[  122.174998][ T5876] usb 1-1: config 0 interface 184 has no altsetting 0
[  122.387225][ T5876] usb 1-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  122.406058][ T5876] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  122.421944][ T5876] usb 1-1: Product: syz
[  122.427800][ T5876] usb 1-1: Manufacturer: syz
[  122.433226][ T5876] usb 1-1: SerialNumber: syz
[  122.461913][ T5876] usb 1-1: config 0 descriptor??
[  122.508036][ T5876] smsc75xx v1.0.0
[  122.621349][ T4889] Bluetooth: Error in BCSP hdr checksum
[  123.270016][ T6394] FAULT_INJECTION: forcing a failure.
[  123.270016][ T6394] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  123.283780][ T6394] CPU: 0 UID: 0 PID: 6394 Comm: syz.3.127 Not tainted 6.14.0-rc3-syzkaller-00012-g2408a807bfc3 #0
[  123.283803][ T6394] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  123.283812][ T6394] Call Trace:
[  123.283818][ T6394]  <TASK>
[  123.283825][ T6394]  dump_stack_lvl+0x241/0x360
[  123.283849][ T6394]  ? __pfx_dump_stack_lvl+0x10/0x10
[  123.283866][ T6394]  ? __pfx__printk+0x10/0x10
[  123.283901][ T6394]  ? __pfx_lock_release+0x10/0x10
[  123.283931][ T6394]  should_fail_ex+0x40a/0x550
[  123.283957][ T6394]  _copy_from_user+0x2d/0xb0
[  123.283976][ T6394]  copy_msghdr_from_user+0xae/0x680
[  123.284001][ T6394]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  123.284018][ T6394]  ? __fget_files+0x2a/0x410
[  123.284038][ T6394]  ? __fget_files+0x2a/0x410
[  123.284062][ T6394]  __sys_sendmsg+0x209/0x350
[  123.284095][ T6394]  ? __pfx___sys_sendmsg+0x10/0x10
[  123.284128][ T6394]  ? do_sys_openat2+0x17a/0x1d0
[  123.284169][ T6394]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  123.284192][ T6394]  ? do_syscall_64+0x100/0x230
[  123.284214][ T6394]  ? do_syscall_64+0xb6/0x230
[  123.284236][ T6394]  do_syscall_64+0xf3/0x230
[  123.284255][ T6394]  ? clear_bhb_loop+0x35/0x90
[  123.284279][ T6394]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.284299][ T6394] RIP: 0033:0x7fa70718cde9
[  123.284314][ T6394] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  123.284326][ T6394] RSP: 002b:00007fa708056038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  123.284347][ T6394] RAX: ffffffffffffffda RBX: 00007fa7073a5fa0 RCX: 00007fa70718cde9
[  123.284357][ T6394] RDX: 0000000000000000 RSI: 0000400000000200 RDI: 0000000000000003
[  123.284366][ T6394] RBP: 00007fa708056090 R08: 0000000000000000 R09: 0000000000000000
[  123.284376][ T6394] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  123.284384][ T6394] R13: 0000000000000000 R14: 00007fa7073a5fa0 R15: 00007ffc72a68848
[  123.284406][ T6394]  </TASK>
[  123.293775][ T5876] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[  123.495895][ T5876] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  124.324620][   T54] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  125.304531][ T5876] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000010: -71
[  125.405223][ T5876] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read HW_CFG: -71
[  125.450986][ T5876] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[  125.462564][ T5876] smsc75xx 1-1:0.184: probe with driver smsc75xx failed with error -71
[  126.313113][ T5876] usb 1-1: USB disconnect, device number 3
[  127.367741][ T6426] 9pnet_fd: Insufficient options for proto=fd
[  127.445015][    T8] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  127.618283][    T8] usb 5-1: Using ep0 maxpacket: 8
[  127.640423][    T8] usb 5-1: config 0 has an invalid interface number: 178 but max is 0
[  127.654578][    T8] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  128.347015][    T8] usb 5-1: config 0 has no interface number 0
[  128.353766][    T8] usb 5-1: config 0 interface 178 altsetting 0 has an endpoint descriptor with address 0x14, changing to 0x4
[  128.374701][    T8] usb 5-1: config 0 interface 178 altsetting 0 endpoint 0x4 has invalid maxpacket 1289, setting to 64
[  128.393239][    T8] usb 5-1: config 0 interface 178 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  128.434698][    T8] usb 5-1: New USB device found, idVendor=f755, idProduct=92f0, bcdDevice=ec.60
[  128.446118][    T8] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  128.454277][    T8] usb 5-1: Product: syz
[  128.458696][    T8] usb 5-1: Manufacturer: syz
[  128.463317][    T8] usb 5-1: SerialNumber: syz
[  128.488854][    T8] usb 5-1: config 0 descriptor??
[  128.653144][ T6434] netlink: 168 bytes leftover after parsing attributes in process `syz.1.139'.
[  128.877283][    T8] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  129.139668][    T8] usb 5-1: USB disconnect, device number 2
[  129.318656][ T6444] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  129.501013][ T5835] udevd[5835]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.178/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  129.954544][ T6451] FAULT_INJECTION: forcing a failure.
[  129.954544][ T6451] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  130.116405][ T6451] CPU: 0 UID: 0 PID: 6451 Comm: syz.1.144 Not tainted 6.14.0-rc3-syzkaller-00012-g2408a807bfc3 #0
[  130.116431][ T6451] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  130.116441][ T6451] Call Trace:
[  130.116446][ T6451]  <TASK>
[  130.116453][ T6451]  dump_stack_lvl+0x241/0x360
[  130.116480][ T6451]  ? __pfx_dump_stack_lvl+0x10/0x10
[  130.116498][ T6451]  ? __pfx__printk+0x10/0x10
[  130.116523][ T6451]  ? __pfx_lock_release+0x10/0x10
[  130.116560][ T6451]  should_fail_ex+0x40a/0x550
[  130.116587][ T6451]  _copy_from_user+0x2d/0xb0
[  130.116608][ T6451]  __sys_bpf+0x1be/0x820
[  130.116631][ T6451]  ? __pfx___sys_bpf+0x10/0x10
[  130.116663][ T6451]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  130.116691][ T6451]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  130.116713][ T6451]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  130.116740][ T6451]  __x64_sys_bpf+0x7c/0x90
[  130.116760][ T6451]  do_syscall_64+0xf3/0x230
[  130.116781][ T6451]  ? clear_bhb_loop+0x35/0x90
[  130.116805][ T6451]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.116825][ T6451] RIP: 0033:0x7f75fbd8cde9
[  130.116839][ T6451] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  130.116852][ T6451] RSP: 002b:00007f75fcb17038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  130.116871][ T6451] RAX: ffffffffffffffda RBX: 00007f75fbfa5fa0 RCX: 00007f75fbd8cde9
[  130.116883][ T6451] RDX: 0000000000000010 RSI: 00004000000001c0 RDI: 0000000000000011
[  130.116894][ T6451] RBP: 00007f75fcb17090 R08: 0000000000000000 R09: 0000000000000000
[  130.116904][ T6451] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  130.116914][ T6451] R13: 0000000000000000 R14: 00007f75fbfa5fa0 R15: 00007ffca2b6e6a8
[  130.116940][ T6451]  </TASK>
[  130.643819][ T5876] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  131.035098][ T5876] usb 1-1: Using ep0 maxpacket: 16
[  131.506023][ T5876] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  131.624416][ T5876] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  131.634220][ T5876] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  131.648507][ T5876] usb 1-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  131.658106][ T5876] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  131.712980][ T5876] usb 1-1: config 0 descriptor??
[  131.832921][ T6471] netlink: 'syz.1.150': attribute type 4 has an invalid length.
[  132.204981][ T5876] shield 0003:0955:7214.0001: unknown main item tag 0x0
[  132.269193][ T5876] shield 0003:0955:7214.0001: unknown main item tag 0x0
[  132.301267][ T5876] shield 0003:0955:7214.0001: unknown main item tag 0x0
[  132.376233][ T5876] shield 0003:0955:7214.0001: unknown main item tag 0x0
[  132.399331][ T6475] netlink: 168 bytes leftover after parsing attributes in process `syz.1.151'.
[  132.441885][ T5876] shield 0003:0955:7214.0001: unknown main item tag 0x0
[  133.423475][ T6483] netlink: 40 bytes leftover after parsing attributes in process `syz.3.152'.
[  133.442866][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  133.450237][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  133.802917][ T5876] input: HID 0955:7214 Haptics as /devices/virtual/input/input10
[  134.087219][ T5876] shield 0003:0955:7214.0001: Registered Thunderstrike controller
[  134.170499][ T5876] shield 0003:0955:7214.0001: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.0-1/input0
[  134.193789][ T6490] FAULT_INJECTION: forcing a failure.
[  134.193789][ T6490] name failslab, interval 1, probability 0, space 0, times 0
[  134.209840][ T6490] CPU: 1 UID: 0 PID: 6490 Comm: syz.3.155 Not tainted 6.14.0-rc3-syzkaller-00012-g2408a807bfc3 #0
[  134.209864][ T6490] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  134.209871][ T6490] Call Trace:
[  134.209875][ T6490]  <TASK>
[  134.209881][ T6490]  dump_stack_lvl+0x241/0x360
[  134.209897][ T6490]  ? __pfx_dump_stack_lvl+0x10/0x10
[  134.209906][ T6490]  ? __pfx__printk+0x10/0x10
[  134.209922][ T6490]  ? kmem_cache_alloc_noprof+0x48/0x380
[  134.209947][ T6490]  ? __pfx___might_resched+0x10/0x10
[  134.209959][ T6490]  ? __fget_files+0x2a/0x410
[  134.209971][ T6490]  should_fail_ex+0x40a/0x550
[  134.209987][ T6490]  should_failslab+0xac/0x100
[  134.210002][ T6490]  ? getname_flags+0xb7/0x540
[  134.210011][ T6490]  kmem_cache_alloc_noprof+0x70/0x380
[  134.210028][ T6490]  getname_flags+0xb7/0x540
[  134.210036][ T6490]  ? do_syscall_64+0x100/0x230
[  134.210050][ T6490]  __x64_sys_unlinkat+0xb1/0xf0
[  134.210064][ T6490]  do_syscall_64+0xf3/0x230
[  134.210076][ T6490]  ? clear_bhb_loop+0x35/0x90
[  134.210091][ T6490]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.210103][ T6490] RIP: 0033:0x7fa70718cde9
[  134.210113][ T6490] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.210120][ T6490] RSP: 002b:00007fa708056038 EFLAGS: 00000246 ORIG_RAX: 0000000000000107
[  134.210131][ T6490] RAX: ffffffffffffffda RBX: 00007fa7073a5fa0 RCX: 00007fa70718cde9
[  134.210138][ T6490] RDX: 0000000000000000 RSI: 0000400000000340 RDI: ffffffffffffff9c
[  134.210144][ T6490] RBP: 00007fa708056090 R08: 0000000000000000 R09: 0000000000000000
[  134.210150][ T6490] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  134.210155][ T6490] R13: 0000000000000000 R14: 00007fa7073a5fa0 R15: 00007ffc72a68848
[  134.210168][ T6490]  </TASK>
[  134.580383][ T5872] shield 0003:0955:7214.0001: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[  134.592632][ T5876] usb 1-1: USB disconnect, device number 4
[  134.604382][ T5872] shield 0003:0955:7214.0001: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  134.675315][ T5872] shield 0003:0955:7214.0001: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  134.701016][ T5872] shield 0003:0955:7214.0001: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  135.103890][ T6497] FAULT_INJECTION: forcing a failure.
[  135.103890][ T6497] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  135.996536][ T6497] CPU: 0 UID: 0 PID: 6497 Comm: syz.3.157 Not tainted 6.14.0-rc3-syzkaller-00012-g2408a807bfc3 #0
[  135.996566][ T6497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  135.996575][ T6497] Call Trace:
[  135.996708][ T6497]  <TASK>
[  135.996715][ T6497]  dump_stack_lvl+0x241/0x360
[  135.996732][ T6497]  ? __pfx_dump_stack_lvl+0x10/0x10
[  135.996742][ T6497]  ? __pfx__printk+0x10/0x10
[  135.996757][ T6497]  ? __pfx_lock_release+0x10/0x10
[  135.996828][ T6497]  should_fail_ex+0x40a/0x550
[  135.996844][ T6497]  _copy_from_user+0x2d/0xb0
[  135.996857][ T6497]  copy_msghdr_from_user+0xae/0x680
[  135.996872][ T6497]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  135.996881][ T6497]  ? __fget_files+0x2a/0x410
[  135.996893][ T6497]  ? __fget_files+0x2a/0x410
[  135.996906][ T6497]  __sys_sendmsg+0x209/0x350
[  135.996924][ T6497]  ? __pfx___sys_sendmsg+0x10/0x10
[  135.996943][ T6497]  ? do_sys_openat2+0x17a/0x1d0
[  135.996965][ T6497]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  135.996978][ T6497]  ? do_syscall_64+0x100/0x230
[  135.996992][ T6497]  ? do_syscall_64+0xb6/0x230
[  135.997004][ T6497]  do_syscall_64+0xf3/0x230
[  135.997016][ T6497]  ? clear_bhb_loop+0x35/0x90
[  135.997036][ T6497]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.997053][ T6497] RIP: 0033:0x7fa70718cde9
[  135.997063][ T6497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  135.997070][ T6497] RSP: 002b:00007fa708056038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  135.997082][ T6497] RAX: ffffffffffffffda RBX: 00007fa7073a5fa0 RCX: 00007fa70718cde9
[  135.997089][ T6497] RDX: 0000000000000800 RSI: 0000400000006040 RDI: 0000000000000005
[  135.997095][ T6497] RBP: 00007fa708056090 R08: 0000000000000000 R09: 0000000000000000
[  135.997100][ T6497] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  135.997106][ T6497] R13: 0000000000000000 R14: 00007fa7073a5fa0 R15: 00007ffc72a68848
[  135.997119][ T6497]  </TASK>
[  136.638228][ T6510] netlink: 12 bytes leftover after parsing attributes in process `syz.4.159'.
[  139.384666][ T5876] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  139.574534][ T5876] usb 3-1: Using ep0 maxpacket: 16
[  139.584794][ T5876] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  139.602406][ T5876] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  139.612903][ T5876] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  139.626598][ T5876] usb 3-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  139.636316][ T5876] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  139.658550][ T5876] usb 3-1: config 0 descriptor??
[  139.863979][ T6535] syz.3.169 (6535) used greatest stack depth: 18776 bytes left
[  140.177653][ T6539] netlink: 'syz.3.170': attribute type 4 has an invalid length.
[  140.199532][ T6541] FAULT_INJECTION: forcing a failure.
[  140.199532][ T6541] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  140.220934][ T6541] CPU: 0 UID: 0 PID: 6541 Comm: syz.4.171 Not tainted 6.14.0-rc3-syzkaller-00012-g2408a807bfc3 #0
[  140.220959][ T6541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  140.220968][ T6541] Call Trace:
[  140.220974][ T6541]  <TASK>
[  140.220980][ T6541]  dump_stack_lvl+0x241/0x360
[  140.221003][ T6541]  ? __pfx_dump_stack_lvl+0x10/0x10
[  140.221019][ T6541]  ? __pfx__printk+0x10/0x10
[  140.221044][ T6541]  ? __pfx_lock_release+0x10/0x10
[  140.221073][ T6541]  should_fail_ex+0x40a/0x550
[  140.221098][ T6541]  _copy_from_user+0x2d/0xb0
[  140.221116][ T6541]  do_sock_getsockopt+0x1d1/0x740
[  140.221143][ T6541]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  140.221162][ T6541]  ? __fget_files+0x2a/0x410
[  140.221180][ T6541]  ? __fget_files+0x395/0x410
[  140.221195][ T6541]  ? __fget_files+0x2a/0x410
[  140.221217][ T6541]  __x64_sys_getsockopt+0x2a1/0x370
[  140.221243][ T6541]  ? __pfx___x64_sys_getsockopt+0x10/0x10
[  140.221265][ T6541]  ? do_syscall_64+0x100/0x230
[  140.221287][ T6541]  ? do_syscall_64+0xb6/0x230
[  140.221307][ T6541]  do_syscall_64+0xf3/0x230
[  140.221325][ T6541]  ? clear_bhb_loop+0x35/0x90
[  140.221350][ T6541]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.221370][ T6541] RIP: 0033:0x7f4ace38cde9
[  140.221386][ T6541] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  140.221407][ T6541] RSP: 002b:00007f4acf2ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  140.221425][ T6541] RAX: ffffffffffffffda RBX: 00007f4ace5a5fa0 RCX: 00007f4ace38cde9
[  140.221437][ T6541] RDX: 0000000000000014 RSI: 0000000000000084 RDI: 0000000000000003
[  140.221445][ T6541] RBP: 00007f4acf2ca090 R08: 0000400000000200 R09: 0000000000000000
[  140.221456][ T6541] R10: 0000400000000080 R11: 0000000000000246 R12: 0000000000000001
[  140.221465][ T6541] R13: 0000000000000000 R14: 00007f4ace5a5fa0 R15: 00007ffc6c48f1e8
[  140.221490][ T6541]  </TASK>
[  140.227504][ T5876] shield 0003:0955:7214.0002: unknown main item tag 0x0
[  140.475171][ T5876] shield 0003:0955:7214.0002: unknown main item tag 0x0
[  140.483018][ T5876] shield 0003:0955:7214.0002: unknown main item tag 0x0
[  141.299995][ T6550] netlink: 'syz.3.174': attribute type 1 has an invalid length.
[  141.314697][ T6550] netlink: 92 bytes leftover after parsing attributes in process `syz.3.174'.
[  141.480762][ T5876] shield 0003:0955:7214.0002: unknown main item tag 0x0
[  141.489782][ T5876] shield 0003:0955:7214.0002: unknown main item tag 0x0
[  141.573111][ T5876] input: HID 0955:7214 Haptics as /devices/virtual/input/input11
[  141.751721][ T5876] shield 0003:0955:7214.0002: Registered Thunderstrike controller
[  141.798116][ T5876] shield 0003:0955:7214.0002: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.2-1/input0
[  142.045906][ T6561] netlink: 68 bytes leftover after parsing attributes in process `syz.0.175'.
[  142.092244][ T6561] FAULT_INJECTION: forcing a failure.
[  142.092244][ T6561] name failslab, interval 1, probability 0, space 0, times 0
[  142.105184][ T6561] CPU: 1 UID: 0 PID: 6561 Comm: syz.0.175 Not tainted 6.14.0-rc3-syzkaller-00012-g2408a807bfc3 #0
[  142.105207][ T6561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  142.105218][ T6561] Call Trace:
[  142.105224][ T6561]  <TASK>
[  142.105231][ T6561]  dump_stack_lvl+0x241/0x360
[  142.105256][ T6561]  ? __pfx_dump_stack_lvl+0x10/0x10
[  142.105274][ T6561]  ? __pfx__printk+0x10/0x10
[  142.105299][ T6561]  ? kmem_cache_alloc_noprof+0x48/0x380
[  142.105324][ T6561]  ? __pfx___might_resched+0x10/0x10
[  142.105343][ T6561]  ? __fget_files+0x2a/0x410
[  142.105364][ T6561]  should_fail_ex+0x40a/0x550
[  142.105390][ T6561]  should_failslab+0xac/0x100
[  142.105414][ T6561]  ? getname_flags+0xb7/0x540
[  142.105435][ T6561]  kmem_cache_alloc_noprof+0x70/0x380
[  142.105464][ T6561]  getname_flags+0xb7/0x540
[  142.105478][ T6561]  ? do_syscall_64+0x100/0x230
[  142.105503][ T6561]  __x64_sys_mknodat+0x96/0xc0
[  142.105525][ T6561]  do_syscall_64+0xf3/0x230
[  142.105544][ T6561]  ? clear_bhb_loop+0x35/0x90
[  142.105569][ T6561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.105589][ T6561] RIP: 0033:0x7f43ca38cde9
[  142.105604][ T6561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  142.105617][ T6561] RSP: 002b:00007f43cb128038 EFLAGS: 00000246 ORIG_RAX: 0000000000000103
[  142.105635][ T6561] RAX: ffffffffffffffda RBX: 00007f43ca5a6160 RCX: 00007f43ca38cde9
[  142.105647][ T6561] RDX: 00000000000081c0 RSI: 00004000000000c0 RDI: ffffffffffffff9c
[  142.105658][ T6561] RBP: 00007f43cb128090 R08: 0000000000000000 R09: 0000000000000000
[  142.105669][ T6561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  142.105678][ T6561] R13: 0000000000000000 R14: 00007f43ca5a6160 R15: 00007fff9aeeeae8
[  142.105704][ T6561]  </TASK>
[  142.614746][ T5873] usb 4-1: new full-speed USB device number 5 using dummy_hcd
[  143.136861][ T5873] usb 4-1: not running at top speed; connect to a high speed hub
[  143.160467][ T5873] usb 4-1: config 1 interface 0 has no altsetting 0
[  143.183110][ T5872] shield 0003:0955:7214.0002: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[  143.206088][ T5876] usb 3-1: USB disconnect, device number 6
[  143.225462][ T5872] shield 0003:0955:7214.0002: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  143.234707][ T5873] usb 4-1: New USB device found, idVendor=05ac, idProduct=0230, bcdDevice= 0.40
[  143.240745][ T5872] shield 0003:0955:7214.0002: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  143.256842][ T5872] shield 0003:0955:7214.0002: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  143.310643][ T5873] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  143.345546][ T5873] usb 4-1: Product: syz
[  143.349746][ T5873] usb 4-1: Manufacturer: syz
[  143.359660][ T5873] usb 4-1: SerialNumber: syz
[  143.625617][ T5873] input: bcm5974 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/input/input12
[  143.650971][ T5181] bcm5974 4-1:1.0: could not read from device
[  143.754533][    T8] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  143.790422][ T5873] usb 4-1: USB disconnect, device number 5
[  143.916826][    T8] usb 5-1: config 0 has an invalid interface number: 239 but max is 0
[  143.925445][    T8] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  144.720663][    T8] usb 5-1: config 0 has no interface number 0
[  144.727986][    T8] usb 5-1: config 0 interface 239 altsetting 0 has an endpoint descriptor with address 0x5F, changing to 0xF
[  144.762427][    T8] usb 5-1: config 0 interface 239 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  144.809978][    T8] usb 5-1: config 0 interface 239 altsetting 0 endpoint 0xF has invalid maxpacket 24933, setting to 1024
[  144.821672][    T8] usb 5-1: config 0 interface 239 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  144.838068][    T8] usb 5-1: New USB device found, idVendor=2201, idProduct=012c, bcdDevice=60.d9
[  144.878875][    T8] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  145.045519][    T8] usb 5-1: Product: syz
[  145.049739][    T8] usb 5-1: Manufacturer: syz
[  145.062495][    T8] usb 5-1: SerialNumber: syz
[  145.106588][    T8] usb 5-1: config 0 descriptor??
[  145.186656][   T54] Bluetooth: hci2: ACL packet for unknown connection handle 201
[  145.324545][    T8] usb 5-1: probing VID:PID(2201:012C)   
[  145.331569][    T8] usb 5-1: vub300 testing UNKNOWN EndPoint(0) 0F
[  145.378301][    T8] usb 5-1: vub300 ignoring EndPoint(0) 0F
[  145.400311][    T8] usb 5-1: Could not find two sets of bulk-in/out endpoint pairs
[  145.444473][ T5873] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  145.463150][    T8] vub300 5-1:0.239: probe with driver vub300 failed with error -22
[  145.511881][    T8] usb 5-1: USB disconnect, device number 3
[  145.604426][ T5873] usb 4-1: Using ep0 maxpacket: 32
[  145.617707][ T5873] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  145.646519][ T5873] usb 4-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  145.672097][ T5873] usb 4-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  145.697391][ T6595] netlink: 168 bytes leftover after parsing attributes in process `syz.1.188'.
[  145.710953][ T5873] usb 4-1: Product: syz
[  145.715836][ T5873] usb 4-1: Manufacturer: syz
[  145.720486][ T5873] usb 4-1: SerialNumber: syz
[  145.729888][ T5873] usb 4-1: config 0 descriptor??
[  145.818118][ T6591] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  146.331562][ T5876] usb 4-1: USB disconnect, device number 6
[  146.408957][ T6607] xt_CT: You must specify a L4 protocol and not use inversions on it
[  146.922430][ T5872] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  147.114444][ T5872] usb 3-1: Using ep0 maxpacket: 16
[  147.143309][ T6615] netlink: 56 bytes leftover after parsing attributes in process `syz.1.196'.
[  147.153074][ T6615] netlink: 8 bytes leftover after parsing attributes in process `syz.1.196'.
[  147.313445][ T5872] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  147.325347][ T5872] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  147.335746][ T5872] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  147.348601][ T5872] usb 3-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  147.357800][ T5872] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  147.368096][ T5872] usb 3-1: config 0 descriptor??
[  147.918458][ T5872] shield 0003:0955:7214.0003: unknown main item tag 0x0
[  148.008442][    T8] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  148.021168][ T5872] shield 0003:0955:7214.0003: unknown main item tag 0x0
[  148.056963][ T5872] shield 0003:0955:7214.0003: unknown main item tag 0x0
[  148.274618][ T5872] shield 0003:0955:7214.0003: unknown main item tag 0x0
[  148.281082][    T8] usb 2-1: Using ep0 maxpacket: 8
[  148.282607][ T5872] shield 0003:0955:7214.0003: unknown main item tag 0x0
[  148.296363][ T5872] input: HID 0955:7214 Haptics as /devices/virtual/input/input13
[  148.309325][    T8] usb 2-1: config 1 interface 0 altsetting 253 bulk endpoint 0x82 has invalid maxpacket 8
[  148.312370][ T5872] shield 0003:0955:7214.0003: Registered Thunderstrike controller
[  148.345675][    T8] usb 2-1: config 1 interface 0 altsetting 253 bulk endpoint 0x3 has invalid maxpacket 1023
[  148.348959][ T5872] shield 0003:0955:7214.0003: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.2-1/input0
[  148.388577][   T54] Bluetooth: hci0: ACL packet for unknown connection handle 201
[  149.103111][    T8] usb 2-1: config 1 interface 0 has no altsetting 0
[  149.176416][    T8] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  149.176447][    T8] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  149.176467][    T8] usb 2-1: Product: syz
[  149.176481][    T8] usb 2-1: Manufacturer: syz
[  149.176496][    T8] usb 2-1: SerialNumber: syz
[  149.230620][ T6615] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  149.230754][ T6615] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  149.312006][ T6638] 9pnet_fd: Insufficient options for proto=fd
[  149.508640][    T8] cdc_ether 2-1:1.0: probe with driver cdc_ether failed with error -71
[  149.511658][ T6271] shield 0003:0955:7214.0003: Failed to output Thunderstrike HOSTCMD request HID report due to -ESHUTDOWN
[  149.525442][    T8] usb 2-1: USB disconnect, device number 4
[  149.555516][ T5873] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  149.588974][ T6271] shield 0003:0955:7214.0003: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[  149.613682][ T6271] shield 0003:0955:7214.0003: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[  149.638238][ T6271] shield 0003:0955:7214.0003: Failed to output Thunderstrike HOSTCMD request HID report due to -EPIPE
[  149.695240][   T51] usb 3-1: reset high-speed USB device number 7 using dummy_hcd
[  149.736062][ T5873] usb 1-1: Using ep0 maxpacket: 32
[  149.753399][ T5873] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  149.775115][ T5873] usb 1-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  149.784250][ T5873] usb 1-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  149.795245][ T5873] usb 1-1: Product: syz
[  149.799486][ T5873] usb 1-1: Manufacturer: syz
[  149.804112][ T5873] usb 1-1: SerialNumber: syz
[  149.811133][ T5873] usb 1-1: config 0 descriptor??
[  149.823229][ T6635] raw-gadget.2 gadget.0: fail, usb_ep_enable returned -22
[  149.864560][   T51] usb 3-1: device descriptor read/64, error -32
[  149.987096][ T6271] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  150.046232][ T5873] usb 1-1: USB disconnect, device number 5
[  150.110846][   T51] usb 3-1: reset high-speed USB device number 7 using dummy_hcd
[  150.305302][ T6271] usb 5-1: Using ep0 maxpacket: 32
[  150.312537][ T6271] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[  150.323244][ T6271] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 0
[  150.345814][ T6271] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  150.358255][ T6271] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  150.367398][ T6271] usb 5-1: Product: syz
[  150.371748][ T6271] usb 5-1: Manufacturer: syz
[  151.131064][ T6271] usb 5-1: SerialNumber: syz
[  151.300152][ T6271] usb 5-1: config 0 descriptor??
[  152.554766][ T5872] usb 3-1: USB disconnect, device number 7
[  153.127567][ T6670] xt_connbytes: Forcing CT accounting to be enabled
[  153.169178][ T6670] Cannot find add_set index 0 as target
[  153.592332][ T5904] usb 5-1: USB disconnect, device number 4
[  155.063807][ T6686] netlink: 24 bytes leftover after parsing attributes in process `syz.4.212'.
[  155.955908][ T6696] 9pnet_fd: Insufficient options for proto=fd
[  156.847034][ T6712] netlink: 56 bytes leftover after parsing attributes in process `syz.0.218'.
[  157.490196][ T6712] netdevsim netdevsim0 netdevsim0: set [1, 1] type 2 family 0 port 19968 - 0
[  157.530944][ T6712] netdevsim netdevsim0 netdevsim1: set [1, 1] type 2 family 0 port 19968 - 0
[  158.190283][ T6712] netdevsim netdevsim0 netdevsim2: set [1, 1] type 2 family 0 port 19968 - 0
[  158.241286][ T6721] FAULT_INJECTION: forcing a failure.
[  158.241286][ T6721] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  158.254727][ T6721] CPU: 0 UID: 0 PID: 6721 Comm: syz.3.221 Not tainted 6.14.0-rc3-syzkaller-00012-g2408a807bfc3 #0
[  158.254747][ T6721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  158.254756][ T6721] Call Trace:
[  158.254761][ T6721]  <TASK>
[  158.254768][ T6721]  dump_stack_lvl+0x241/0x360
[  158.254790][ T6721]  ? __pfx_dump_stack_lvl+0x10/0x10
[  158.254806][ T6721]  ? __pfx__printk+0x10/0x10
[  158.254830][ T6721]  ? __pfx_lock_release+0x10/0x10
[  158.254857][ T6721]  should_fail_ex+0x40a/0x550
[  158.254881][ T6721]  _copy_from_user+0x2d/0xb0
[  158.254900][ T6721]  copy_msghdr_from_user+0xae/0x680
[  158.254917][ T6721]  ? irqentry_exit+0x63/0x90
[  158.254936][ T6721]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  158.254965][ T6721]  __sys_sendmsg+0x209/0x350
[  158.254993][ T6721]  ? __pfx___sys_sendmsg+0x10/0x10
[  158.255034][ T6721]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  158.255080][ T6721]  do_syscall_64+0xf3/0x230
[  158.255101][ T6721]  ? clear_bhb_loop+0x35/0x90
[  158.255125][ T6721]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.255145][ T6721] RIP: 0033:0x7fa70718cde9
[  158.255158][ T6721] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  158.255168][ T6721] RSP: 002b:00007fa708035038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  158.255184][ T6721] RAX: ffffffffffffffda RBX: 00007fa7073a6080 RCX: 00007fa70718cde9
[  158.255195][ T6721] RDX: 0000000000000000 RSI: 0000400000000100 RDI: 0000000000000003
[  158.255204][ T6721] RBP: 00007fa708035090 R08: 0000000000000000 R09: 0000000000000000
[  158.255213][ T6721] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  158.255221][ T6721] R13: 0000000000000000 R14: 00007fa7073a6080 R15: 00007ffc72a68848
[  158.255244][ T6721]  </TASK>
[  158.521227][ T6712] netdevsim netdevsim0 netdevsim3: set [1, 1] type 2 family 0 port 19968 - 0
[  158.904596][   T29] audit: type=1326 audit(1739881418.546:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6722 comm="syz.1.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75fbd8cde9 code=0x7ffc0000
[  158.995949][   T29] audit: type=1326 audit(1739881418.556:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6722 comm="syz.1.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=459 compat=0 ip=0x7f75fbd8cde9 code=0x7ffc0000
[  159.074474][   T29] audit: type=1326 audit(1739881418.556:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6722 comm="syz.1.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75fbd8cde9 code=0x7ffc0000
[  159.221605][   T29] audit: type=1326 audit(1739881418.556:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6722 comm="syz.1.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f75fbd8b750 code=0x7ffc0000
[  159.247449][   T29] audit: type=1326 audit(1739881418.556:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6722 comm="syz.1.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f75fbd8c9eb code=0x7ffc0000
[  159.311743][   T29] audit: type=1326 audit(1739881418.556:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6722 comm="syz.1.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f75fbd8c9eb code=0x7ffc0000
[  159.317037][ T5874] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  159.344888][   T29] audit: type=1326 audit(1739881418.566:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6722 comm="syz.1.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f75fbd8c9eb code=0x7ffc0000
[  159.373361][   T29] audit: type=1326 audit(1739881418.566:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6722 comm="syz.1.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f75fbd8c9eb code=0x7ffc0000
[  159.397881][   T29] audit: type=1326 audit(1739881418.676:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6722 comm="syz.1.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f75fbd8c9eb code=0x7ffc0000
[  159.420456][   T29] audit: type=1326 audit(1739881418.756:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6722 comm="syz.1.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f75fbd8c9eb code=0x7ffc0000
[  159.494544][ T5874] usb 2-1: Using ep0 maxpacket: 16
[  159.713060][ T5874] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  159.825594][ T5874] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  159.934601][ T5874] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  160.148115][ T5874] usb 2-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  160.159505][ T5874] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  160.192138][ T5874] usb 2-1: config 0 descriptor??
[  160.281785][ T6741] dvmrp0: entered allmulticast mode
[  160.479251][ T6746] netlink: 8 bytes leftover after parsing attributes in process `syz.4.228'.
[  160.734866][ T5848] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  160.792782][ T6756] 9pnet_fd: Insufficient options for proto=fd
[  161.015271][ T5848] usb 4-1: Using ep0 maxpacket: 32
[  161.163725][ T5848] usb 4-1: config 2 has an invalid interface number: 126 but max is 0
[  161.163996][ T5848] usb 4-1: config 2 has no interface number 0
[  161.164493][ T5848] usb 4-1: config 2 interface 126 altsetting 0 bulk endpoint 0xC has invalid maxpacket 1024
[  161.164593][ T5848] usb 4-1: config 2 interface 126 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 1023
[  161.273023][ T5848] usb 4-1: New USB device found, idVendor=0bfd, idProduct=0124, bcdDevice=ea.37
[  161.273057][ T5848] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  161.273077][ T5848] usb 4-1: Product: syz
[  161.273091][ T5848] usb 4-1: Manufacturer: syz
[  161.273106][ T5848] usb 4-1: SerialNumber: syz
[  161.276338][ T6748] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  161.276456][ T6748] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  161.278261][ T5848] kvaser_usb 4-1:2.126: error -ENODEV: Cannot get usb endpoint(s)
[  161.323408][ T5874] usbhid 2-1:0.0: can't add hid device: -71
[  161.323517][ T5874] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  161.341356][ T5874] usb 2-1: USB disconnect, device number 5
[  161.434277][ T6762] netlink: 'syz.1.233': attribute type 8 has an invalid length.
[  161.522590][ T5848] usb 4-1: USB disconnect, device number 7
[  161.933035][ T6753] tty tty29: ldisc open failed (-12), clearing slot 28
[  162.581523][ T6782] FAULT_INJECTION: forcing a failure.
[  162.581523][ T6782] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  162.596150][ T6782] CPU: 1 UID: 0 PID: 6782 Comm: syz.1.238 Not tainted 6.14.0-rc3-syzkaller-00012-g2408a807bfc3 #0
[  162.596172][ T6782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  162.596183][ T6782] Call Trace:
[  162.596189][ T6782]  <TASK>
[  162.596196][ T6782]  dump_stack_lvl+0x241/0x360
[  162.596221][ T6782]  ? __pfx_dump_stack_lvl+0x10/0x10
[  162.596238][ T6782]  ? __pfx__printk+0x10/0x10
[  162.596268][ T6782]  ? snprintf+0xda/0x120
[  162.596287][ T6782]  should_fail_ex+0x40a/0x550
[  162.596314][ T6782]  _copy_to_user+0x31/0xb0
[  162.596335][ T6782]  simple_read_from_buffer+0xca/0x150
[  162.596363][ T6782]  proc_fail_nth_read+0x1e9/0x250
[  162.596397][ T6782]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  162.596424][ T6782]  ? rw_verify_area+0x243/0x630
[  162.596443][ T6782]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  162.596467][ T6782]  vfs_read+0x1f8/0xb40
[  162.596488][ T6782]  ? fdget_pos+0x254/0x320
[  162.596506][ T6782]  ? __pfx___mutex_lock+0x10/0x10
[  162.596527][ T6782]  ? __pfx_vfs_read+0x10/0x10
[  162.596543][ T6782]  ? do_sys_openat2+0x17a/0x1d0
[  162.596563][ T6782]  ? __fget_files+0x2a/0x410
[  162.596581][ T6782]  ? __fget_files+0x395/0x410
[  162.596596][ T6782]  ? __fget_files+0x2a/0x410
[  162.596622][ T6782]  ksys_read+0x18f/0x2b0
[  162.596643][ T6782]  ? __pfx_ksys_read+0x10/0x10
[  162.596663][ T6782]  ? do_syscall_64+0x100/0x230
[  162.596686][ T6782]  ? do_syscall_64+0xb6/0x230
[  162.596708][ T6782]  do_syscall_64+0xf3/0x230
[  162.596727][ T6782]  ? clear_bhb_loop+0x35/0x90
[  162.596751][ T6782]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.596771][ T6782] RIP: 0033:0x7f75fbd8b7fc
[  162.596786][ T6782] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  162.596798][ T6782] RSP: 002b:00007f75fcb17030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  162.596816][ T6782] RAX: ffffffffffffffda RBX: 00007f75fbfa5fa0 RCX: 00007f75fbd8b7fc
[  162.596828][ T6782] RDX: 000000000000000f RSI: 00007f75fcb170a0 RDI: 0000000000000004
[  162.596838][ T6782] RBP: 00007f75fcb17090 R08: 0000000000000000 R09: 0000000000000000
[  162.596848][ T6782] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  162.596858][ T6782] R13: 0000000000000000 R14: 00007f75fbfa5fa0 R15: 00007ffca2b6e6a8
[  162.596884][ T6782]  </TASK>
[  163.219258][ T6792] capability: warning: `syz.3.242' uses 32-bit capabilities (legacy support in use)
[  163.231032][ T6794] netlink: 8 bytes leftover after parsing attributes in process `syz.1.241'.
[  163.485367][ T6803] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  163.694922][ T5872] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  163.713096][ T6801] overlayfs: workdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  163.755344][ T6807] x_tables: duplicate underflow at hook 1
[  163.868168][ T6803] x_tables: duplicate underflow at hook 1
[  164.125476][ T5872] usb 4-1: Using ep0 maxpacket: 32
[  164.145194][ T5872] usb 4-1: config 0 has an invalid interface number: 12 but max is 0
[  164.154124][ T5872] usb 4-1: config 0 has no interface number 0
[  164.172590][ T5872] usb 4-1: config 0 interface 12 has no altsetting 0
[  164.183559][ T5872] usb 4-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  164.193365][ T5872] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  164.203104][ T5872] usb 4-1: Product: syz
[  164.211846][ T5872] usb 4-1: Manufacturer: syz
[  164.217888][ T5872] usb 4-1: SerialNumber: syz
[  164.247596][ T5872] usb 4-1: config 0 descriptor??
[  164.295706][ T6811] netlink: 'syz.1.247': attribute type 4 has an invalid length.
[  164.884279][ T5872] f81534 4-1:0.12: f81534_set_register: reg: 1003 data: 90 failed: -71
[  164.899415][ T5872] f81534 4-1:0.12: f81534_find_config_idx: read failed: -71
[  164.929128][ T5872] f81534 4-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  164.940688][ T5872] f81534 4-1:0.12: probe with driver f81534 failed with error -71
[  164.983772][ T5872] usb 4-1: USB disconnect, device number 8
[  165.031332][ T6828] FAULT_INJECTION: forcing a failure.
[  165.031332][ T6828] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  165.067876][ T6828] CPU: 0 UID: 0 PID: 6828 Comm: syz.4.255 Not tainted 6.14.0-rc3-syzkaller-00012-g2408a807bfc3 #0
[  165.067903][ T6828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  165.067920][ T6828] Call Trace:
[  165.067926][ T6828]  <TASK>
[  165.067933][ T6828]  dump_stack_lvl+0x241/0x360
[  165.067956][ T6828]  ? __pfx_dump_stack_lvl+0x10/0x10
[  165.067969][ T6828]  ? __pfx__printk+0x10/0x10
[  165.067988][ T6828]  ? __pfx_lock_release+0x10/0x10
[  165.068006][ T6828]  ? vfs_write+0x7fa/0xd10
[  165.068024][ T6828]  should_fail_ex+0x40a/0x550
[  165.068045][ T6828]  _copy_from_user+0x2d/0xb0
[  165.068062][ T6828]  move_addr_to_kernel+0x82/0x150
[  165.068077][ T6828]  __sys_connect+0xb6/0x2d0
[  165.068094][ T6828]  ? __fget_files+0x2a/0x410
[  165.068107][ T6828]  ? __pfx___sys_connect+0x10/0x10
[  165.068130][ T6828]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  165.068148][ T6828]  ? do_syscall_64+0x100/0x230
[  165.068167][ T6828]  __x64_sys_connect+0x7a/0x90
[  165.068184][ T6828]  do_syscall_64+0xf3/0x230
[  165.068199][ T6828]  ? clear_bhb_loop+0x35/0x90
[  165.068219][ T6828]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.068235][ T6828] RIP: 0033:0x7f4ace38cde9
[  165.068247][ T6828] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  165.068257][ T6828] RSP: 002b:00007f4acf2ca038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  165.068271][ T6828] RAX: ffffffffffffffda RBX: 00007f4ace5a5fa0 RCX: 00007f4ace38cde9
[  165.068280][ T6828] RDX: 000000000000001c RSI: 0000400000000000 RDI: 0000000000000004
[  165.068288][ T6828] RBP: 00007f4acf2ca090 R08: 0000000000000000 R09: 0000000000000000
[  165.068295][ T6828] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  165.068303][ T6828] R13: 0000000000000000 R14: 00007f4ace5a5fa0 R15: 00007ffc6c48f1e8
[  165.068320][ T6828]  </TASK>
[  167.327368][ T6854] FAULT_INJECTION: forcing a failure.
[  167.327368][ T6854] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  167.441563][ T6854] CPU: 1 UID: 0 PID: 6854 Comm: syz.3.265 Not tainted 6.14.0-rc3-syzkaller-00012-g2408a807bfc3 #0
[  167.441589][ T6854] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  167.441598][ T6854] Call Trace:
[  167.441604][ T6854]  <TASK>
[  167.441610][ T6854]  dump_stack_lvl+0x241/0x360
[  167.441635][ T6854]  ? __pfx_dump_stack_lvl+0x10/0x10
[  167.441657][ T6854]  ? __pfx__printk+0x10/0x10
[  167.441685][ T6854]  ? snprintf+0xda/0x120
[  167.441703][ T6854]  should_fail_ex+0x40a/0x550
[  167.441729][ T6854]  _copy_to_user+0x31/0xb0
[  167.441750][ T6854]  simple_read_from_buffer+0xca/0x150
[  167.441777][ T6854]  proc_fail_nth_read+0x1e9/0x250
[  167.441802][ T6854]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  167.441828][ T6854]  ? rw_verify_area+0x243/0x630
[  167.441844][ T6854]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  167.441867][ T6854]  vfs_read+0x1f8/0xb40
[  167.441889][ T6854]  ? fdget_pos+0x254/0x320
[  167.441906][ T6854]  ? __pfx___mutex_lock+0x10/0x10
[  167.441926][ T6854]  ? __pfx_vfs_read+0x10/0x10
[  167.441948][ T6854]  ? __fget_files+0x2a/0x410
[  167.441966][ T6854]  ? __fget_files+0x395/0x410
[  167.441981][ T6854]  ? __fget_files+0x2a/0x410
[  167.442005][ T6854]  ksys_read+0x18f/0x2b0
[  167.442025][ T6854]  ? __pfx_ksys_read+0x10/0x10
[  167.442045][ T6854]  ? do_syscall_64+0x100/0x230
[  167.442067][ T6854]  ? do_syscall_64+0xb6/0x230
[  167.442088][ T6854]  do_syscall_64+0xf3/0x230
[  167.442107][ T6854]  ? clear_bhb_loop+0x35/0x90
[  167.442130][ T6854]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.442149][ T6854] RIP: 0033:0x7fa70718b7fc
[  167.442163][ T6854] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  167.442175][ T6854] RSP: 002b:00007fa708034030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  167.442191][ T6854] RAX: ffffffffffffffda RBX: 00007fa7073a6080 RCX: 00007fa70718b7fc
[  167.442201][ T6854] RDX: 000000000000000f RSI: 00007fa7080340a0 RDI: 0000000000000006
[  167.442211][ T6854] RBP: 00007fa708034090 R08: 0000000000000000 R09: 0000000000000000
[  167.442220][ T6854] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  167.442228][ T6854] R13: 0000000000000001 R14: 00007fa7073a6080 R15: 00007ffc72a68848
[  167.442252][ T6854]  </TASK>
[  168.009076][ T6859] netlink: 8 bytes leftover after parsing attributes in process `syz.3.267'.
[  168.853651][ T6872] warning: `syz.4.271' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  170.130699][ T6890] =======================================================
[  170.130699][ T6890] WARNING: The mand mount option has been deprecated and
[  170.130699][ T6890]          and is ignored by this kernel. Remove the mand
[  170.130699][ T6890]          option from the mount to silence this warning.
[  170.130699][ T6890] =======================================================
[  170.165595][    C0] vkms_vblank_simulate: vblank timer overrun
[  170.285189][ T6895] netlink: 16 bytes leftover after parsing attributes in process `syz.2.276'.
[  172.297142][ T6912] overlayfs: workdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  172.578192][ T6919] overlayfs: workdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  173.810943][   T69] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  175.111114][   T69] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  175.307554][   T69] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  175.572599][ T6941] xt_CT: You must specify a L4 protocol and not use inversions on it
[  176.395348][   T69] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  176.910644][ T6946] netlink: 4 bytes leftover after parsing attributes in process `syz.3.295'.
[  176.952173][ T5836] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  176.965160][ T5836] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  176.997114][ T5836] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  177.010593][ T5836] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  177.020412][ T5836] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  177.028337][ T5836] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  177.277920][   T69] bridge_slave_1: left allmulticast mode
[  177.296889][   T69] bridge_slave_1: left promiscuous mode
[  177.344381][   T69] bridge0: port 2(bridge_slave_1) entered disabled state
[  177.478942][   T69] bridge_slave_0: left allmulticast mode
[  177.486770][   T69] bridge_slave_0: left promiscuous mode
[  177.493202][   T69] bridge0: port 1(bridge_slave_0) entered disabled state
[  177.744785][ T5872] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  178.630581][ T5872] usb 4-1: Using ep0 maxpacket: 32
[  178.646398][ T5872] usb 4-1: config 0 has an invalid interface number: 12 but max is 0
[  178.679652][ T5872] usb 4-1: config 0 has no interface number 0
[  178.702364][ T5872] usb 4-1: config 0 interface 12 has no altsetting 0
[  178.727617][ T5872] usb 4-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  178.794546][ T5872] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  178.802730][ T5872] usb 4-1: Product: syz
[  178.828934][ T5872] usb 4-1: Manufacturer: syz
[  178.833715][ T5872] usb 4-1: SerialNumber: syz
[  178.863703][ T5872] usb 4-1: config 0 descriptor??
[  178.891225][ T6961] netlink: 168 bytes leftover after parsing attributes in process `syz.0.299'.
[  179.124824][ T5836] Bluetooth: hci1: command tx timeout
[  179.428735][ T6975] netlink: 4 bytes leftover after parsing attributes in process `syz.1.300'.
[  179.561769][ T5872] f81534 4-1:0.12: f81534_set_register: reg: 1003 data: 90 failed: -71
[  179.778206][ T5872] f81534 4-1:0.12: f81534_find_config_idx: read failed: -71
[  179.935800][ T5872] f81534 4-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  179.946044][ T5872] f81534 4-1:0.12: probe with driver f81534 failed with error -71
[  179.961579][ T5872] usb 4-1: USB disconnect, device number 9
[  180.034968][   T69] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  180.050986][   T69] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  180.061526][   T69] bond0 (unregistering): (slave wlan1): Releasing backup interface
[  180.083132][   T69] bond0 (unregistering): Released all slaves
[  181.204640][ T5836] Bluetooth: hci1: command tx timeout
[  181.868602][   T69] hsr_slave_0: left promiscuous mode
[  181.892306][   T69] hsr_slave_1: left promiscuous mode
[  181.908946][   T69] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  181.936059][   T69] batman_adv: batadv0: Removing interface: batadv_slave_0
[  181.960546][   T69] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  181.982415][   T69] batman_adv: batadv0: Removing interface: batadv_slave_1
[  181.998515][ T7016] netlink: 28 bytes leftover after parsing attributes in process `syz.1.309'.
[  182.014557][ T5872] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  182.062780][ T7018] netlink: 20 bytes leftover after parsing attributes in process `syz.1.309'.
[  182.097376][   T69] veth1_macvtap: left promiscuous mode
[  182.118101][   T69] veth0_macvtap: left promiscuous mode
[  182.137293][   T69] veth1_vlan: left promiscuous mode
[  182.155252][   T69] veth0_vlan: left promiscuous mode
[  182.214583][ T5872] usb 4-1: Using ep0 maxpacket: 16
[  182.236148][ T5872] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  182.273805][ T5872] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  182.297600][ T5872] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  182.333456][ T5872] usb 4-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  182.361306][ T5872] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  182.381932][ T5872] usb 4-1: config 0 descriptor??
[  183.502098][ T5836] Bluetooth: hci1: command tx timeout
[  183.654812][ T5872] shield 0003:0955:7214.0004: unknown main item tag 0x0
[  183.662433][ T5872] shield 0003:0955:7214.0004: unknown main item tag 0x0
[  183.724651][ T5872] shield 0003:0955:7214.0004: unknown main item tag 0x0
[  183.824490][ T5872] shield 0003:0955:7214.0004: unknown main item tag 0x0
[  183.858656][ T5872] shield 0003:0955:7214.0004: unknown main item tag 0x0
[  183.934029][ T5872] input: HID 0955:7214 Haptics as /devices/virtual/input/input14
[  184.284530][ T5872] shield 0003:0955:7214.0004: Registered Thunderstrike controller
[  184.293890][ T5872] shield 0003:0955:7214.0004: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.3-1/input0
[  185.276733][   T25] shield 0003:0955:7214.0004: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[  185.291435][ T6271] usb 4-1: USB disconnect, device number 10
[  185.302033][   T25] shield 0003:0955:7214.0004: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  185.361421][   T25] shield 0003:0955:7214.0004: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  185.413720][   T25] shield 0003:0955:7214.0004: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  185.595365][ T5836] Bluetooth: hci1: command tx timeout
[  185.912568][   T69] team0 (unregistering): Port device team_slave_1 removed
[  186.000332][   T69] team0 (unregistering): Port device team_slave_0 removed
[  187.059849][ T6947] chnl_net:caif_netlink_parms(): no params data found
[  187.863230][ T7066] overlayfs: workdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  188.470574][ T6947] bridge0: port 1(bridge_slave_0) entered blocking state
[  188.524127][ T6947] bridge0: port 1(bridge_slave_0) entered disabled state
[  188.541916][ T6947] bridge_slave_0: entered allmulticast mode
[  188.591303][ T6947] bridge_slave_0: entered promiscuous mode
[  188.631180][ T6947] bridge0: port 2(bridge_slave_1) entered blocking state
[  188.692640][ T6947] bridge0: port 2(bridge_slave_1) entered disabled state
[  188.819716][ T6947] bridge_slave_1: entered allmulticast mode
[  188.841069][ T6947] bridge_slave_1: entered promiscuous mode
[  189.759988][ T7094] FAULT_INJECTION: forcing a failure.
[  189.759988][ T7094] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  189.776981][ T6947] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  189.795225][ T7094] CPU: 0 UID: 0 PID: 7094 Comm: syz.3.324 Not tainted 6.14.0-rc3-syzkaller-00012-g2408a807bfc3 #0
[  189.795242][ T7094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  189.795249][ T7094] Call Trace:
[  189.795253][ T7094]  <TASK>
[  189.795258][ T7094]  dump_stack_lvl+0x241/0x360
[  189.795283][ T7094]  ? __pfx_dump_stack_lvl+0x10/0x10
[  189.795293][ T7094]  ? __pfx__printk+0x10/0x10
[  189.795309][ T7094]  ? __pfx_lock_release+0x10/0x10
[  189.795323][ T7094]  ? vfs_write+0x7fa/0xd10
[  189.795338][ T7094]  should_fail_ex+0x40a/0x550
[  189.795354][ T7094]  _copy_from_user+0x2d/0xb0
[  189.795366][ T7094]  move_addr_to_kernel+0x82/0x150
[  189.795380][ T7094]  __sys_connect+0xb6/0x2d0
[  189.795392][ T7094]  ? __fget_files+0x2a/0x410
[  189.795402][ T7094]  ? __pfx___sys_connect+0x10/0x10
[  189.795420][ T7094]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  189.795436][ T7094]  ? do_syscall_64+0x100/0x230
[  189.795451][ T7094]  __x64_sys_connect+0x7a/0x90
[  189.795464][ T7094]  do_syscall_64+0xf3/0x230
[  189.795479][ T7094]  ? clear_bhb_loop+0x35/0x90
[  189.795502][ T7094]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.795521][ T7094] RIP: 0033:0x7fa70718cde9
[  189.795541][ T7094] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  189.795553][ T7094] RSP: 002b:00007fa708056038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  189.795574][ T7094] RAX: ffffffffffffffda RBX: 00007fa7073a5fa0 RCX: 00007fa70718cde9
[  189.795586][ T7094] RDX: 0000000000000010 RSI: 0000400000000080 RDI: 0000000000000004
[  189.795596][ T7094] RBP: 00007fa708056090 R08: 0000000000000000 R09: 0000000000000000
[  189.795604][ T7094] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  189.795610][ T7094] R13: 0000000000000000 R14: 00007fa7073a5fa0 R15: 00007ffc72a68848
[  189.795624][ T7094]  </TASK>
[  190.078116][ T6947] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  190.525445][ T7105] bond_slave_0: entered promiscuous mode
[  190.531504][ T7105] bond_slave_1: entered promiscuous mode
[  190.537512][ T7105] vlan2: entered promiscuous mode
[  190.542587][ T7105] bond0: entered promiscuous mode
[  190.553472][ T7105] bond0: left promiscuous mode
[  190.561076][ T7105] bond_slave_0: left promiscuous mode
[  190.566629][ T7105] bond_slave_1: left promiscuous mode
[  190.633347][ T6947] team0: Port device team_slave_0 added
[  190.675824][ T6947] team0: Port device team_slave_1 added
[  191.635175][ T6947] batman_adv: batadv0: Adding interface: batadv_slave_0
[  191.674643][ T6947] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  191.711022][ T6947] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  191.864568][ T6947] batman_adv: batadv0: Adding interface: batadv_slave_1
[  191.871930][ T6947] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  191.917783][ T6947] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  191.985525][    T8] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  192.018618][ T6947] hsr_slave_0: entered promiscuous mode
[  192.038652][ T6947] hsr_slave_1: entered promiscuous mode
[  192.065000][ T6947] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  192.072624][ T6947] Cannot create hsr debugfs directory
[  192.134824][    T8] usb 2-1: Using ep0 maxpacket: 32
[  192.158379][    T8] usb 2-1: config 0 interface 0 altsetting 1 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  192.202757][    T8] usb 2-1: config 0 interface 0 altsetting 1 endpoint 0x81 has invalid wMaxPacketSize 0
[  192.234099][    T8] usb 2-1: config 0 interface 0 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  192.274142][    T8] usb 2-1: config 0 interface 0 has no altsetting 0
[  192.312846][    T8] usb 2-1: New USB device found, idVendor=1430, idProduct=474c, bcdDevice= 0.00
[  192.361942][    T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  192.388423][    T8] usb 2-1: config 0 descriptor??
[  192.636926][    T8] usb 2-1: string descriptor 0 read error: -71
[  192.914712][   T51] usb 4-1: new full-speed USB device number 11 using dummy_hcd
[  193.011900][ T7144] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  193.050624][ T7144] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  193.343247][    T8] usbhid 2-1:0.0: can't add hid device: -71
[  193.356139][   T51] usb 4-1: not running at top speed; connect to a high speed hub
[  193.364495][    T8] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  193.376922][ T6947] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  193.384202][    T8] usb 2-1: USB disconnect, device number 6
[  193.400599][ T6947] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  193.401193][   T51] usb 4-1: config 1 interface 0 has no altsetting 0
[  193.432298][ T6947] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  193.432523][   T51] usb 4-1: New USB device found, idVendor=05ac, idProduct=0230, bcdDevice= 0.40
[  193.463983][   T51] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  193.475141][ T6947] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  193.478445][   T51] usb 4-1: Product: syz
[  193.509659][ T7150] netlink: 'syz.0.337': attribute type 2 has an invalid length.
[  193.512435][   T51] usb 4-1: Manufacturer: syz
[  193.534915][   T51] usb 4-1: SerialNumber: syz
[  193.537896][ T7150] netlink: 'syz.0.337': attribute type 1 has an invalid length.
[  193.553644][ T7150] netlink: 112860 bytes leftover after parsing attributes in process `syz.0.337'.
[  193.572752][ T7150] nbd: couldn't find a device at index 1568768
[  193.984484][ T5903] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  194.068184][ T7141] netlink: 8 bytes leftover after parsing attributes in process `syz.3.335'.
[  194.241289][ T7141] netlink: 8 bytes leftover after parsing attributes in process `syz.3.335'.
[  194.321418][   T51] input: bcm5974 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/input/input15
[  194.362110][ T5181] bcm5974 4-1:1.0: could not read from device
[  194.503465][ T5903] usb 2-1: Using ep0 maxpacket: 16
[  194.508922][ T5181] bcm5974 4-1:1.0: could not read from device
[  194.540767][ T5903] usb 2-1: New USB device found, idVendor=0d49, idProduct=7010, bcdDevice= c.90
[  194.567463][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  194.573815][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  194.576970][ T6947] 8021q: adding VLAN 0 to HW filter on device bond0
[  194.590395][ T5903] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  194.611496][ T5181] bcm5974 4-1:1.0: could not read from device
[  194.614806][   T51] usb 4-1: USB disconnect, device number 11
[  194.644453][ T5903] usb 2-1: Product: syz
[  194.660173][ T5181] bcm5974 4-1:1.0: could not read from device
[  194.696145][ T5903] usb 2-1: Manufacturer: syz
[  194.735308][ T5903] usb 2-1: SerialNumber: syz
[  194.746654][ T5903] usb 2-1: config 0 descriptor??
[  194.769367][ T6947] 8021q: adding VLAN 0 to HW filter on device team0
[  194.811816][ T6008] bridge0: port 1(bridge_slave_0) entered blocking state
[  194.819076][ T6008] bridge0: port 1(bridge_slave_0) entered forwarding state
[  194.882120][ T6008] bridge0: port 2(bridge_slave_1) entered blocking state
[  194.889361][ T6008] bridge0: port 2(bridge_slave_1) entered forwarding state
[  194.993356][ T5903] ums-onetouch 2-1:0.0: USB Mass Storage device detected
[  195.146064][ T5903] usb 2-1: USB disconnect, device number 7
[  195.195516][ T5826] udevd[5826]: setting mode of /dev/bus/usb/002/007 to 020664 failed: No such file or directory
[  195.255676][ T5826] udevd[5826]: setting owner of /dev/bus/usb/002/007 to uid=0, gid=0 failed: No such file or directory
[  195.922474][ T6947] 8021q: adding VLAN 0 to HW filter on device batadv0
[  196.781190][ T7209] FAULT_INJECTION: forcing a failure.
[  196.781190][ T7209] name failslab, interval 1, probability 0, space 0, times 0
[  196.839553][ T7209] CPU: 0 UID: 0 PID: 7209 Comm: syz.3.345 Not tainted 6.14.0-rc3-syzkaller-00012-g2408a807bfc3 #0
[  196.839578][ T7209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  196.839589][ T7209] Call Trace:
[  196.839595][ T7209]  <TASK>
[  196.839603][ T7209]  dump_stack_lvl+0x241/0x360
[  196.839630][ T7209]  ? __pfx_dump_stack_lvl+0x10/0x10
[  196.839646][ T7209]  ? __pfx__printk+0x10/0x10
[  196.839669][ T7209]  ? fs_reclaim_acquire+0x93/0x130
[  196.839689][ T7209]  ? __pfx___might_resched+0x10/0x10
[  196.839712][ T7209]  should_fail_ex+0x40a/0x550
[  196.839737][ T7209]  should_failslab+0xac/0x100
[  196.839762][ T7209]  __kmalloc_noprof+0xdd/0x4c0
[  196.839776][ T7209]  ? kstrtouint_from_user+0x128/0x190
[  196.839790][ T7209]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  196.839812][ T7209]  tomoyo_realpath_from_path+0xcf/0x5e0
[  196.839839][ T7209]  tomoyo_path_number_perm+0x239/0x770
[  196.839860][ T7209]  ? __lock_acquire+0x1397/0x2100
[  196.839882][ T7209]  ? tomoyo_path_number_perm+0x209/0x770
[  196.839903][ T7209]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  196.839960][ T7209]  ? __fget_files+0x2a/0x410
[  196.839980][ T7209]  ? __fget_files+0x2a/0x410
[  196.840009][ T7209]  security_file_ioctl+0xc6/0x2a0
[  196.840033][ T7209]  __se_sys_ioctl+0x46/0x170
[  196.840055][ T7209]  do_syscall_64+0xf3/0x230
[  196.840075][ T7209]  ? clear_bhb_loop+0x35/0x90
[  196.840097][ T7209]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  196.840117][ T7209] RIP: 0033:0x7fa70718cde9
[  196.840132][ T7209] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  196.840146][ T7209] RSP: 002b:00007fa708056038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  196.840164][ T7209] RAX: ffffffffffffffda RBX: 00007fa7073a5fa0 RCX: 00007fa70718cde9
[  196.840176][ T7209] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  196.840185][ T7209] RBP: 00007fa708056090 R08: 0000000000000000 R09: 0000000000000000
[  196.840195][ T7209] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  196.840204][ T7209] R13: 0000000000000000 R14: 00007fa7073a5fa0 R15: 00007ffc72a68848
[  196.840230][ T7209]  </TASK>
[  196.840296][ T7209] ERROR: Out of memory at tomoyo_realpath_from_path.
[  197.239120][ T6947] veth0_vlan: entered promiscuous mode
[  197.285702][ T6947] veth1_vlan: entered promiscuous mode
[  197.305521][ T7216] capability: warning: `syz.4.346' uses deprecated v2 capabilities in a way that may be insecure
[  197.318169][ T7216] program syz.4.346 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  197.962169][ T6947] veth0_macvtap: entered promiscuous mode
[  198.136846][ T6947] veth1_macvtap: entered promiscuous mode
[  198.157890][ T6947] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  198.226354][ T7223] FAULT_INJECTION: forcing a failure.
[  198.226354][ T7223] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  198.239821][ T7223] CPU: 1 UID: 0 PID: 7223 Comm: syz.4.347 Not tainted 6.14.0-rc3-syzkaller-00012-g2408a807bfc3 #0
[  198.239844][ T7223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  198.239854][ T7223] Call Trace:
[  198.239863][ T7223]  <TASK>
[  198.239872][ T7223]  dump_stack_lvl+0x241/0x360
[  198.239898][ T7223]  ? __pfx_dump_stack_lvl+0x10/0x10
[  198.239916][ T7223]  ? __pfx__printk+0x10/0x10
[  198.239945][ T7223]  ? snprintf+0xda/0x120
[  198.239964][ T7223]  should_fail_ex+0x40a/0x550
[  198.239992][ T7223]  _copy_to_user+0x31/0xb0
[  198.240014][ T7223]  simple_read_from_buffer+0xca/0x150
[  198.240042][ T7223]  proc_fail_nth_read+0x1e9/0x250
[  198.240069][ T7223]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  198.240097][ T7223]  ? rw_verify_area+0x243/0x630
[  198.240116][ T7223]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  198.240142][ T7223]  vfs_read+0x1f8/0xb40
[  198.240163][ T7223]  ? fdget_pos+0x254/0x320
[  198.240182][ T7223]  ? __pfx___mutex_lock+0x10/0x10
[  198.240203][ T7223]  ? __pfx_vfs_read+0x10/0x10
[  198.240226][ T7223]  ? __fget_files+0x2a/0x410
[  198.240245][ T7223]  ? __fget_files+0x395/0x410
[  198.240261][ T7223]  ? __fget_files+0x2a/0x410
[  198.240287][ T7223]  ksys_read+0x18f/0x2b0
[  198.240309][ T7223]  ? __pfx_ksys_read+0x10/0x10
[  198.240330][ T7223]  ? do_syscall_64+0x100/0x230
[  198.240353][ T7223]  ? do_syscall_64+0xb6/0x230
[  198.240376][ T7223]  do_syscall_64+0xf3/0x230
[  198.240396][ T7223]  ? clear_bhb_loop+0x35/0x90
[  198.240421][ T7223]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  198.240442][ T7223] RIP: 0033:0x7f4ace38b7fc
[  198.240458][ T7223] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  198.240472][ T7223] RSP: 002b:00007f4acf288030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  198.240490][ T7223] RAX: ffffffffffffffda RBX: 00007f4ace5a6160 RCX: 00007f4ace38b7fc
[  198.240503][ T7223] RDX: 000000000000000f RSI: 00007f4acf2880a0 RDI: 0000000000000006
[  198.240514][ T7223] RBP: 00007f4acf288090 R08: 0000000000000000 R09: 0000000000000000
[  198.240524][ T7223] R10: 000000000000f27b R11: 0000000000000246 R12: 0000000000000001
[  198.240534][ T7223] R13: 0000000000000000 R14: 00007f4ace5a6160 R15: 00007ffc6c48f1e8
[  198.240562][ T7223]  </TASK>
[  198.588425][ T6947] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  198.598448][ T6947] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  198.686418][ T6947] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  198.717524][ T6947] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  198.759214][ T6947] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  198.784756][ T6947] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  199.092049][ T5903] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  199.146704][ T6947] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  199.215594][ T6947] batman_adv: batadv0: Interface activated: batadv_slave_0
[  199.314942][ T6947] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  199.442714][ T6947] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  199.473236][ T6947] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  199.491653][ T5903] usb 5-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  199.499099][ T6947] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  199.514365][ T5903] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  199.522416][ T5903] usb 5-1: Product: syz
[  199.541008][ T5903] usb 5-1: Manufacturer: syz
[  199.552099][ T6947] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  199.554518][ T5903] usb 5-1: SerialNumber: syz
[  199.585492][ T5903] usb 5-1: config 0 descriptor??
[  199.593365][ T6947] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  199.620399][ T6947] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  199.651397][ T6947] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  199.667578][ T6947] batman_adv: batadv0: Interface activated: batadv_slave_1
[  199.726234][ T7244] batadv1: entered promiscuous mode
[  199.784660][ T6947] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  199.796422][ T7230] FAULT_INJECTION: forcing a failure.
[  199.796422][ T7230] name failslab, interval 1, probability 0, space 0, times 0
[  199.839157][ T7247] FAULT_INJECTION: forcing a failure.
[  199.839157][ T7247] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  199.839584][ T6947] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  199.861673][ T7230] CPU: 0 UID: 0 PID: 7230 Comm: syz.4.349 Not tainted 6.14.0-rc3-syzkaller-00012-g2408a807bfc3 #0
[  199.861706][ T7230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  199.861716][ T7230] Call Trace:
[  199.861722][ T7230]  <TASK>
[  199.861729][ T7230]  dump_stack_lvl+0x241/0x360
[  199.861755][ T7230]  ? __pfx_dump_stack_lvl+0x10/0x10
[  199.861772][ T7230]  ? __pfx__printk+0x10/0x10
[  199.861795][ T7230]  ? fs_reclaim_acquire+0x93/0x130
[  199.861813][ T7230]  ? __pfx___might_resched+0x10/0x10
[  199.861836][ T7230]  should_fail_ex+0x40a/0x550
[  199.861862][ T7230]  should_failslab+0xac/0x100
[  199.861888][ T7230]  __kmalloc_noprof+0xdd/0x4c0
[  199.861903][ T7230]  ? kstrtouint_from_user+0x128/0x190
[  199.861917][ T7230]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  199.861938][ T7230]  tomoyo_realpath_from_path+0xcf/0x5e0
[  199.861967][ T7230]  tomoyo_path_number_perm+0x239/0x770
[  199.861989][ T7230]  ? __lock_acquire+0x1397/0x2100
[  199.862012][ T7230]  ? tomoyo_path_number_perm+0x209/0x770
[  199.862036][ T7230]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  199.862094][ T7230]  ? __fget_files+0x2a/0x410
[  199.862113][ T7230]  ? __fget_files+0x2a/0x410
[  199.862131][ T7230]  security_file_ioctl+0xc6/0x2a0
[  199.862155][ T7230]  __se_sys_ioctl+0x46/0x170
[  199.862177][ T7230]  do_syscall_64+0xf3/0x230
[  199.862197][ T7230]  ? clear_bhb_loop+0x35/0x90
[  199.862221][ T7230]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  199.862241][ T7230] RIP: 0033:0x7f4ace38cde9
[  199.862256][ T7230] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  199.862270][ T7230] RSP: 002b:00007f4acf2ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  199.862287][ T7230] RAX: ffffffffffffffda RBX: 00007f4ace5a5fa0 RCX: 00007f4ace38cde9
[  199.862300][ T7230] RDX: 0000400000010140 RSI: 00000000c0045520 RDI: 0000000000000004
[  199.862310][ T7230] RBP: 00007f4acf2ca090 R08: 0000000000000000 R09: 0000000000000000
[  199.862320][ T7230] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  199.862330][ T7230] R13: 0000000000000000 R14: 00007f4ace5a5fa0 R15: 00007ffc6c48f1e8
[  199.862356][ T7230]  </TASK>
[  199.862379][ T7230] ERROR: Out of memory at tomoyo_realpath_from_path.
[  199.886233][ T7247] CPU: 1 UID: 0 PID: 7247 Comm: syz.0.352 Not tainted 6.14.0-rc3-syzkaller-00012-g2408a807bfc3 #0
[  199.886258][ T7247] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  199.886269][ T7247] Call Trace:
[  199.886278][ T7247]  <TASK>
[  199.886286][ T7247]  dump_stack_lvl+0x241/0x360
[  199.886311][ T7247]  ? __pfx_dump_stack_lvl+0x10/0x10
[  199.886327][ T7247]  ? __pfx__printk+0x10/0x10
[  199.886351][ T7247]  ? __pfx_lock_release+0x10/0x10
[  199.886374][ T7247]  ? vfs_write+0x7fa/0xd10
[  199.886398][ T7247]  should_fail_ex+0x40a/0x550
[  199.886434][ T7247]  _copy_from_user+0x2d/0xb0
[  199.886455][ T7247]  move_addr_to_kernel+0x82/0x150
[  199.886475][ T7247]  __sys_connect+0xb6/0x2d0
[  199.886496][ T7247]  ? __fget_files+0x2a/0x410
[  199.886512][ T7247]  ? __pfx___sys_connect+0x10/0x10
[  199.886543][ T7247]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  199.886565][ T7247]  ? do_syscall_64+0x100/0x230
[  199.886589][ T7247]  __x64_sys_connect+0x7a/0x90
[  199.886610][ T7247]  do_syscall_64+0xf3/0x230
[  199.886629][ T7247]  ? clear_bhb_loop+0x35/0x90
[  199.886652][ T7247]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  199.886673][ T7247] RIP: 0033:0x7f43ca38cde9
[  199.886688][ T7247] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  199.886702][ T7247] RSP: 002b:00007f43cb16a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  199.886720][ T7247] RAX: ffffffffffffffda RBX: 00007f43ca5a5fa0 RCX: 00007f43ca38cde9
[  199.886732][ T7247] RDX: 000000000000001c RSI: 0000400000000180 RDI: 0000000000000003
[  199.886742][ T7247] RBP: 00007f43cb16a090 R08: 0000000000000000 R09: 0000000000000000
[  199.886752][ T7247] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  199.886762][ T7247] R13: 0000000000000000 R14: 00007f43ca5a5fa0 R15: 00007fff9aeeeae8
[  199.886787][ T7247]  </TASK>
[  200.016488][ T6947] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  200.133513][ T5874] usb 5-1: USB disconnect, device number 5
[  200.431052][ T6947] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  200.780044][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  200.824508][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  200.850297][ T7257] ip6gretap0: entered promiscuous mode
[  200.871673][ T7257] batadv_slave_0: entered promiscuous mode
[  201.144526][ T3483] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  201.153558][ T3483] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  202.242026][ T7271] netlink: 168 bytes leftover after parsing attributes in process `syz.4.358'.
[  204.648449][ T7301] overlayfs: workdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  204.685498][ T7314] netlink: 'syz.4.365': attribute type 10 has an invalid length.
[  204.708436][ T7314] 8021q: adding VLAN 0 to HW filter on device batadv0
[  204.722027][ T7314] team0: Port device batadv0 added
[  207.164884][ T7349] netlink: 4 bytes leftover after parsing attributes in process `syz.0.371'.
[  211.225170][ T7380] netlink: 4 bytes leftover after parsing attributes in process `syz.4.379'.
[  212.099174][ T7390] netlink: 1280 bytes leftover after parsing attributes in process `syz.0.383'.
[  212.145776][   T29] kauditd_printk_skb: 27 callbacks suppressed
[  212.145794][   T29] audit: type=1326 audit(1739881471.806:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7389 comm="syz.0.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43ca38cde9 code=0x7ffc0000
[  212.213875][   T29] audit: type=1326 audit(1739881471.806:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7389 comm="syz.0.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43ca38cde9 code=0x7ffc0000
[  212.248488][   T29] audit: type=1326 audit(1739881471.836:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7389 comm="syz.0.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7f43ca38cde9 code=0x7ffc0000
[  212.307753][   T29] audit: type=1326 audit(1739881471.836:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7389 comm="syz.0.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43ca38cde9 code=0x7ffc0000
[  212.799502][ T7399] netlink: 20 bytes leftover after parsing attributes in process `syz.5.384'.
[  212.801819][   T29] audit: type=1326 audit(1739881471.836:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7389 comm="syz.0.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43ca38cde9 code=0x7ffc0000
[  212.830105][    C0] vkms_vblank_simulate: vblank timer overrun
[  212.838662][   T29] audit: type=1326 audit(1739881471.836:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7389 comm="syz.0.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f43ca38cde9 code=0x7ffc0000
[  213.064564][   T29] audit: type=1326 audit(1739881471.836:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7389 comm="syz.0.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43ca38cde9 code=0x7ffc0000
[  213.097517][   T29] audit: type=1326 audit(1739881471.836:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7389 comm="syz.0.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f43ca38b750 code=0x7ffc0000
[  213.166911][   T29] audit: type=1326 audit(1739881471.836:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7389 comm="syz.0.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f43ca38e617 code=0x7ffc0000
[  213.188528][   T29] audit: type=1326 audit(1739881471.836:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7389 comm="syz.0.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f43ca38cde9 code=0x7ffc0000
[  214.172182][ T7423] netlink: 36 bytes leftover after parsing attributes in process `syz.0.388'.
[  215.105070][ T7426] FAULT_INJECTION: forcing a failure.
[  215.105070][ T7426] name failslab, interval 1, probability 0, space 0, times 0
[  215.223531][ T7426] CPU: 0 UID: 0 PID: 7426 Comm: syz.4.390 Not tainted 6.14.0-rc3-syzkaller-00012-g2408a807bfc3 #0
[  215.223557][ T7426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  215.223567][ T7426] Call Trace:
[  215.223573][ T7426]  <TASK>
[  215.223580][ T7426]  dump_stack_lvl+0x241/0x360
[  215.223605][ T7426]  ? __pfx_dump_stack_lvl+0x10/0x10
[  215.223620][ T7426]  ? __pfx__printk+0x10/0x10
[  215.223644][ T7426]  ? fs_reclaim_acquire+0x93/0x130
[  215.223664][ T7426]  ? __pfx___might_resched+0x10/0x10
[  215.223685][ T7426]  should_fail_ex+0x40a/0x550
[  215.223710][ T7426]  should_failslab+0xac/0x100
[  215.223733][ T7426]  __kmalloc_noprof+0xdd/0x4c0
[  215.223747][ T7426]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  215.223768][ T7426]  tomoyo_realpath_from_path+0xcf/0x5e0
[  215.223795][ T7426]  tomoyo_path_number_perm+0x239/0x770
[  215.223818][ T7426]  ? __lock_acquire+0x1397/0x2100
[  215.223838][ T7426]  ? tomoyo_path_number_perm+0x209/0x770
[  215.223859][ T7426]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  215.223912][ T7426]  ? __lock_acquire+0x1397/0x2100
[  215.223933][ T7426]  ? __pfx_from_kuid+0x10/0x10
[  215.223957][ T7426]  ? down_write+0x18c/0x220
[  215.223980][ T7426]  tomoyo_path_chown+0x42/0xb0
[  215.223999][ T7426]  security_path_chown+0x140/0x370
[  215.224021][ T7426]  chown_common+0x4b3/0x850
[  215.224054][ T7426]  ? __pfx_chown_common+0x10/0x10
[  215.224075][ T7426]  ? rcu_read_lock_any_held+0xb7/0x160
[  215.224103][ T7426]  ? sb_start_write+0x110/0x1c0
[  215.224125][ T7426]  ksys_fchown+0xe2/0x150
[  215.224149][ T7426]  __x64_sys_fchown+0x7a/0x90
[  215.224180][ T7426]  do_syscall_64+0xf3/0x230
[  215.224199][ T7426]  ? clear_bhb_loop+0x35/0x90
[  215.224222][ T7426]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.224241][ T7426] RIP: 0033:0x7f4ace38cde9
[  215.224255][ T7426] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  215.224267][ T7426] RSP: 002b:00007f4acf2ca038 EFLAGS: 00000246 ORIG_RAX: 000000000000005d
[  215.224285][ T7426] RAX: ffffffffffffffda RBX: 00007f4ace5a5fa0 RCX: 00007f4ace38cde9
[  215.224300][ T7426] RDX: 0000000000000000 RSI: 000000000000ee01 RDI: 0000000000000003
[  215.224309][ T7426] RBP: 00007f4acf2ca090 R08: 0000000000000000 R09: 0000000000000000
[  215.224318][ T7426] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  215.224327][ T7426] R13: 0000000000000000 R14: 00007f4ace5a5fa0 R15: 00007ffc6c48f1e8
[  215.224352][ T7426]  </TASK>
[  215.506441][ T7430] PKCS7: Unknown OID: [4] 5.25(bad)
[  215.515527][ T7430] PKCS7: Only support pkcs7_signedData type
[  215.580970][ T7426] ERROR: Out of memory at tomoyo_realpath_from_path.
[  216.864173][ T7443] netlink: 32 bytes leftover after parsing attributes in process `syz.1.394'.
[  218.807546][ T7461] netlink: 1280 bytes leftover after parsing attributes in process `syz.1.398'.
[  218.878208][   T29] kauditd_printk_skb: 11 callbacks suppressed
[  218.878255][   T29] audit: type=1326 audit(1739881478.526:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7459 comm="syz.1.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75fbd8cde9 code=0x7ffc0000
[  218.937760][   T29] audit: type=1326 audit(1739881478.526:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7459 comm="syz.1.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75fbd8cde9 code=0x7ffc0000
[  218.959962][   T29] audit: type=1326 audit(1739881478.526:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7459 comm="syz.1.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7f75fbd8cde9 code=0x7ffc0000
[  219.030965][   T29] audit: type=1326 audit(1739881478.526:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7459 comm="syz.1.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75fbd8cde9 code=0x7ffc0000
[  219.054454][   T29] audit: type=1326 audit(1739881478.526:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7459 comm="syz.1.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75fbd8cde9 code=0x7ffc0000
[  219.114210][   T29] audit: type=1326 audit(1739881478.526:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7459 comm="syz.1.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f75fbd8cde9 code=0x7ffc0000
[  219.153118][ T7468] netlink: 20 bytes leftover after parsing attributes in process `syz.5.399'.
[  219.166806][   T29] audit: type=1326 audit(1739881478.526:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7459 comm="syz.1.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75fbd8cde9 code=0x7ffc0000
[  219.280514][   T29] audit: type=1326 audit(1739881478.526:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7459 comm="syz.1.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f75fbd8b750 code=0x7ffc0000
[  219.419630][   T29] audit: type=1326 audit(1739881478.526:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7459 comm="syz.1.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f75fbd8e617 code=0x7ffc0000
[  219.442697][   T29] audit: type=1326 audit(1739881478.526:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7459 comm="syz.1.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f75fbd8cde9 code=0x7ffc0000
[  220.210894][ T7473] netlink: 1280 bytes leftover after parsing attributes in process `syz.1.400'.
[  221.394638][    T8] usb 2-1: new full-speed USB device number 8 using dummy_hcd
[  222.396252][    T8] usb 2-1: config 64 has an invalid interface number: 28 but max is 0
[  222.404806][    T8] usb 2-1: config 64 has no interface number 0
[  222.420520][    T8] usb 2-1: config 64 interface 28 has no altsetting 0
[  222.436598][    T8] usb 2-1: New USB device found, idVendor=0ccd, idProduct=0062, bcdDevice=25.e8
[  222.446124][    T8] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  222.454153][    T8] usb 2-1: Product: syz
[  222.475443][    T8] usb 2-1: Manufacturer: syz
[  222.480120][    T8] usb 2-1: SerialNumber: syz
[  223.157288][    T8] dvb-usb: found a 'Terratec Cinergy T Express' in warm state.
[  223.206131][    T8] dvb-usb: will use the device's hardware PID filter (table count: 32).
[  223.216652][    T8] dvbdev: DVB: registering new adapter (Terratec Cinergy T Express)
[  223.226887][    T8] usb 2-1: media controller created
[  223.239071][    T8] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  224.233665][    T8] DVB: Unable to find symbol dib7000p_attach()
[  224.244194][ T7517] netlink: 1280 bytes leftover after parsing attributes in process `syz.5.411'.
[  224.261432][    T8] dvb-usb: no frontend was attached by 'Terratec Cinergy T Express'
[  224.282046][   T29] kauditd_printk_skb: 30 callbacks suppressed
[  224.282062][   T29] audit: type=1326 audit(1739881483.936:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7516 comm="syz.5.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57a198cde9 code=0x7ffc0000
[  224.401309][   T29] audit: type=1326 audit(1739881483.986:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7516 comm="syz.5.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57a198cde9 code=0x7ffc0000
[  224.484461][    T8] rc_core: IR keymap rc-dib0700-rc5 not found
[  224.504868][    T8] Registered IR keymap rc-empty
[  224.510488][    T8] dvb-usb: could not initialize remote control.
[  224.536486][   T29] audit: type=1326 audit(1739881483.986:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7516 comm="syz.5.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7f57a198cde9 code=0x7ffc0000
[  224.629812][    T8] dvb-usb: Terratec Cinergy T Express successfully initialized and connected.
[  224.649774][    T8] usb 2-1: USB disconnect, device number 8
[  224.664759][   T29] audit: type=1326 audit(1739881483.986:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7516 comm="syz.5.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57a198cde9 code=0x7ffc0000
[  224.845928][    T8] dvb-usb: Terratec Cinergy T Express successfully deinitialized and disconnected.
[  224.863778][   T29] audit: type=1326 audit(1739881483.986:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7516 comm="syz.5.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f57a198cde9 code=0x7ffc0000
[  224.962722][   T29] audit: type=1326 audit(1739881483.986:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7516 comm="syz.5.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57a198cde9 code=0x7ffc0000
[  225.020636][   T29] audit: type=1326 audit(1739881483.986:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7516 comm="syz.5.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f57a198b750 code=0x7ffc0000
[  225.156593][   T29] audit: type=1326 audit(1739881483.986:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7516 comm="syz.5.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f57a198e617 code=0x7ffc0000
[  225.191327][   T29] audit: type=1326 audit(1739881483.986:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7516 comm="syz.5.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f57a198cde9 code=0x7ffc0000
[  225.213566][ T5836] Bluetooth: hci1: command tx timeout
[  225.219780][   T29] audit: type=1326 audit(1739881483.986:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7516 comm="syz.5.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f57a198e617 code=0x7ffc0000
[  228.142430][ T7572] overlayfs: workdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  229.458458][ T7593] netlink: 32 bytes leftover after parsing attributes in process `syz.4.423'.
[  230.059572][    T8] usb 5-1: new low-speed USB device number 6 using dummy_hcd
[  230.266300][    T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  230.279417][    T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 32, setting to 8
[  230.302620][    T8] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  230.334883][    T8] usb 5-1: New USB device found, idVendor=04b4, idProduct=de61, bcdDevice= 0.00
[  230.361389][    T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  230.389911][    T8] usb 5-1: config 0 descriptor??
[  230.429309][ T7594] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  230.849589][    T8] usbhid 5-1:0.0: can't add hid device: -71
[  230.893321][    T8] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  230.939366][    T8] usb 5-1: USB disconnect, device number 6
[  234.100980][ T7636] overlayfs: workdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  234.369560][ T7649] FAULT_INJECTION: forcing a failure.
[  234.369560][ T7649] name failslab, interval 1, probability 0, space 0, times 0
[  234.413301][ T7649] CPU: 1 UID: 0 PID: 7649 Comm: syz.0.433 Not tainted 6.14.0-rc3-syzkaller-00012-g2408a807bfc3 #0
[  234.413328][ T7649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  234.413339][ T7649] Call Trace:
[  234.413347][ T7649]  <TASK>
[  234.413354][ T7649]  dump_stack_lvl+0x241/0x360
[  234.413381][ T7649]  ? __pfx_dump_stack_lvl+0x10/0x10
[  234.413398][ T7649]  ? __pfx__printk+0x10/0x10
[  234.413424][ T7649]  ? fs_reclaim_acquire+0x93/0x130
[  234.413446][ T7649]  ? __pfx___might_resched+0x10/0x10
[  234.413469][ T7649]  should_fail_ex+0x40a/0x550
[  234.413497][ T7649]  should_failslab+0xac/0x100
[  234.413522][ T7649]  __kmalloc_noprof+0xdd/0x4c0
[  234.413537][ T7649]  ? kstrtouint_from_user+0x128/0x190
[  234.413553][ T7649]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  234.413576][ T7649]  tomoyo_realpath_from_path+0xcf/0x5e0
[  234.413605][ T7649]  tomoyo_path_number_perm+0x239/0x770
[  234.413625][ T7649]  ? __lock_acquire+0x1397/0x2100
[  234.413647][ T7649]  ? tomoyo_path_number_perm+0x209/0x770
[  234.413668][ T7649]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  234.413726][ T7649]  ? __fget_files+0x2a/0x410
[  234.413748][ T7649]  ? __fget_files+0x2a/0x410
[  234.413769][ T7649]  security_file_ioctl+0xc6/0x2a0
[  234.413794][ T7649]  __se_sys_ioctl+0x46/0x170
[  234.413817][ T7649]  do_syscall_64+0xf3/0x230
[  234.413839][ T7649]  ? clear_bhb_loop+0x35/0x90
[  234.413864][ T7649]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.413885][ T7649] RIP: 0033:0x7f43ca38cde9
[  234.413900][ T7649] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  234.413915][ T7649] RSP: 002b:00007f43cb16a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  234.413934][ T7649] RAX: ffffffffffffffda RBX: 00007f43ca5a5fa0 RCX: 00007f43ca38cde9
[  234.413946][ T7649] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  234.413956][ T7649] RBP: 00007f43cb16a090 R08: 0000000000000000 R09: 0000000000000000
[  234.413967][ T7649] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  234.413977][ T7649] R13: 0000000000000000 R14: 00007f43ca5a5fa0 R15: 00007fff9aeeeae8
[  234.414004][ T7649]  </TASK>
[  234.414018][ T7649] ERROR: Out of memory at tomoyo_realpath_from_path.
[  234.492467][ T7655] netlink: 'syz.1.432': attribute type 4 has an invalid length.
[  234.737605][ T7660] netlink: 'syz.3.434': attribute type 24 has an invalid length.
[  235.249898][    T8] IPVS: starting estimator thread 0...
[  235.261650][ T7661] netdevsim netdevsim3 netdevsim0: entered promiscuous mode
[  235.364617][ T7662] IPVS: using max 37 ests per chain, 88800 per kthread
[  237.414104][ T7678] FAULT_INJECTION: forcing a failure.
[  237.414104][ T7678] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  237.441092][ T7678] CPU: 0 UID: 0 PID: 7678 Comm: syz.0.438 Not tainted 6.14.0-rc3-syzkaller-00012-g2408a807bfc3 #0
[  237.441119][ T7678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  237.441129][ T7678] Call Trace:
[  237.441135][ T7678]  <TASK>
[  237.441142][ T7678]  dump_stack_lvl+0x241/0x360
[  237.441168][ T7678]  ? __pfx_dump_stack_lvl+0x10/0x10
[  237.441184][ T7678]  ? __pfx__printk+0x10/0x10
[  237.441210][ T7678]  ? __pfx_lock_release+0x10/0x10
[  237.441239][ T7678]  should_fail_ex+0x40a/0x550
[  237.441265][ T7678]  _copy_from_user+0x2d/0xb0
[  237.441286][ T7678]  copy_msghdr_from_user+0xae/0x680
[  237.441310][ T7678]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  237.441327][ T7678]  ? __fget_files+0x2a/0x410
[  237.441348][ T7678]  ? __fget_files+0x2a/0x410
[  237.441372][ T7678]  __sys_sendmsg+0x209/0x350
[  237.441401][ T7678]  ? __pfx___sys_sendmsg+0x10/0x10
[  237.441435][ T7678]  ? do_sys_openat2+0x17a/0x1d0
[  237.441476][ T7678]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  237.441499][ T7678]  ? do_syscall_64+0x100/0x230
[  237.441521][ T7678]  ? do_syscall_64+0xb6/0x230
[  237.441543][ T7678]  do_syscall_64+0xf3/0x230
[  237.441563][ T7678]  ? clear_bhb_loop+0x35/0x90
[  237.441587][ T7678]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  237.441607][ T7678] RIP: 0033:0x7f43ca38cde9
[  237.441622][ T7678] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  237.441635][ T7678] RSP: 002b:00007f43cb16a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  237.441654][ T7678] RAX: ffffffffffffffda RBX: 00007f43ca5a5fa0 RCX: 00007f43ca38cde9
[  237.441667][ T7678] RDX: 0000000020000000 RSI: 00004000000002c0 RDI: 0000000000000004
[  237.441679][ T7678] RBP: 00007f43cb16a090 R08: 0000000000000000 R09: 0000000000000000
[  237.441689][ T7678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  237.441700][ T7678] R13: 0000000000000000 R14: 00007f43ca5a5fa0 R15: 00007fff9aeeeae8
[  237.441725][ T7678]  </TASK>
[  241.043966][ T7730] overlayfs: overlapping lowerdir path
[  241.461319][ T7730] program syz.0.446 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  242.129686][ T7745] FAULT_INJECTION: forcing a failure.
[  242.129686][ T7745] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  242.305343][ T7745] CPU: 1 UID: 0 PID: 7745 Comm: syz.0.448 Not tainted 6.14.0-rc3-syzkaller-00012-g2408a807bfc3 #0
[  242.305370][ T7745] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  242.305381][ T7745] Call Trace:
[  242.305387][ T7745]  <TASK>
[  242.305394][ T7745]  dump_stack_lvl+0x241/0x360
[  242.305421][ T7745]  ? __pfx_dump_stack_lvl+0x10/0x10
[  242.305439][ T7745]  ? __pfx__printk+0x10/0x10
[  242.305477][ T7745]  ? snprintf+0xda/0x120
[  242.305496][ T7745]  should_fail_ex+0x40a/0x550
[  242.305523][ T7745]  _copy_to_user+0x31/0xb0
[  242.305546][ T7745]  simple_read_from_buffer+0xca/0x150
[  242.305573][ T7745]  proc_fail_nth_read+0x1e9/0x250
[  242.305600][ T7745]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  242.305628][ T7745]  ? rw_verify_area+0x243/0x630
[  242.305646][ T7745]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  242.305672][ T7745]  vfs_read+0x1f8/0xb40
[  242.305692][ T7745]  ? fdget_pos+0x254/0x320
[  242.305711][ T7745]  ? __pfx___mutex_lock+0x10/0x10
[  242.305731][ T7745]  ? __pfx_vfs_read+0x10/0x10
[  242.305748][ T7745]  ? do_sys_openat2+0x17a/0x1d0
[  242.305768][ T7745]  ? __fget_files+0x2a/0x410
[  242.305786][ T7745]  ? __fget_files+0x395/0x410
[  242.305802][ T7745]  ? __fget_files+0x2a/0x410
[  242.305828][ T7745]  ksys_read+0x18f/0x2b0
[  242.305854][ T7745]  ? __pfx_ksys_read+0x10/0x10
[  242.305874][ T7745]  ? do_syscall_64+0x100/0x230
[  242.305898][ T7745]  ? do_syscall_64+0xb6/0x230
[  242.305920][ T7745]  do_syscall_64+0xf3/0x230
[  242.305940][ T7745]  ? clear_bhb_loop+0x35/0x90
[  242.305964][ T7745]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  242.305985][ T7745] RIP: 0033:0x7f43ca38b7fc
[  242.306000][ T7745] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  242.306014][ T7745] RSP: 002b:00007f43cb16a030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  242.306033][ T7745] RAX: ffffffffffffffda RBX: 00007f43ca5a5fa0 RCX: 00007f43ca38b7fc
[  242.306044][ T7745] RDX: 000000000000000f RSI: 00007f43cb16a0a0 RDI: 0000000000000003
[  242.306051][ T7745] RBP: 00007f43cb16a090 R08: 0000000000000000 R09: 0000000000000000
[  242.306061][ T7745] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  242.306070][ T7745] R13: 0000000000000001 R14: 00007f43ca5a5fa0 R15: 00007fff9aeeeae8
[  242.306097][ T7745]  </TASK>
[  245.594908][ T7785] FAULT_INJECTION: forcing a failure.
[  245.594908][ T7785] name failslab, interval 1, probability 0, space 0, times 0
[  245.596560][   T29] kauditd_printk_skb: 10 callbacks suppressed
[  245.596576][   T29] audit: type=1400 audit(1739881505.256:158): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject="*" object="_" requested=w pid=7781 comm="syz.4.459" dest=20002 netif=wpan0
[  245.647420][ T7783] sctp: [Deprecated]: syz.4.459 (pid 7783) Use of struct sctp_assoc_value in delayed_ack socket option.
[  245.647420][ T7783] Use struct sctp_sack_info instead
[  245.727608][   T29] audit: type=1400 audit(1739881505.386:159): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject="*" object="_" requested=w pid=7781 comm="syz.4.459" dest=20002 netif=wpan0
[  245.738981][ T7785] CPU: 1 UID: 0 PID: 7785 Comm: syz.5.458 Not tainted 6.14.0-rc3-syzkaller-00012-g2408a807bfc3 #0
[  245.739006][ T7785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  245.739017][ T7785] Call Trace:
[  245.739023][ T7785]  <TASK>
[  245.739030][ T7785]  dump_stack_lvl+0x241/0x360
[  245.739056][ T7785]  ? __pfx_dump_stack_lvl+0x10/0x10
[  245.739073][ T7785]  ? __pfx__printk+0x10/0x10
[  245.739097][ T7785]  ? fs_reclaim_acquire+0x93/0x130
[  245.739118][ T7785]  ? __pfx___might_resched+0x10/0x10
[  245.739141][ T7785]  should_fail_ex+0x40a/0x550
[  245.739173][ T7785]  should_failslab+0xac/0x100
[  245.739198][ T7785]  __kmalloc_noprof+0xdd/0x4c0
[  245.739213][ T7785]  ? kstrtouint_from_user+0x128/0x190
[  245.739227][ T7785]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  245.739250][ T7785]  tomoyo_realpath_from_path+0xcf/0x5e0
[  245.739278][ T7785]  tomoyo_path_number_perm+0x239/0x770
[  245.739299][ T7785]  ? __lock_acquire+0x1397/0x2100
[  245.739322][ T7785]  ? tomoyo_path_number_perm+0x209/0x770
[  245.739346][ T7785]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  245.739403][ T7785]  ? __fget_files+0x2a/0x410
[  245.739422][ T7785]  ? __fget_files+0x2a/0x410
[  245.739443][ T7785]  security_file_ioctl+0xc6/0x2a0
[  245.739468][ T7785]  __se_sys_ioctl+0x46/0x170
[  245.739490][ T7785]  do_syscall_64+0xf3/0x230
[  245.739510][ T7785]  ? clear_bhb_loop+0x35/0x90
[  245.739534][ T7785]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  245.739554][ T7785] RIP: 0033:0x7f57a198cde9
[  245.739569][ T7785] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  245.739582][ T7785] RSP: 002b:00007f57a2899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  245.739601][ T7785] RAX: ffffffffffffffda RBX: 00007f57a1ba5fa0 RCX: 00007f57a198cde9
[  245.739612][ T7785] RDX: 0000400000000380 RSI: 00000000c100565c RDI: 0000000000000003
[  245.739623][ T7785] RBP: 00007f57a2899090 R08: 0000000000000000 R09: 0000000000000000
[  245.739633][ T7785] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  245.739643][ T7785] R13: 0000000000000000 R14: 00007f57a1ba5fa0 R15: 00007ffc0822a848
[  245.739668][ T7785]  </TASK>
[  245.739675][ T7785] ERROR: Out of memory at tomoyo_realpath_from_path.
[  245.747613][ T7792] sctp: [Deprecated]: syz.4.459 (pid 7792) Use of struct sctp_assoc_value in delayed_ack socket option.
[  245.747613][ T7792] Use struct sctp_sack_info instead
[  246.448830][    T8] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  246.684446][    T8] usb 2-1: Using ep0 maxpacket: 8
[  246.695852][    T8] usb 2-1: config 0 has an invalid interface number: 99 but max is 0
[  246.704003][    T8] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  246.718232][    T8] usb 2-1: config 0 has no interface number 0
[  246.724563][    T8] usb 2-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a
[  246.734881][    T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  246.781839][    T8] usb 2-1: config 0 descriptor??
[  246.922460][    T8] gspca_main: vc032x-2.14.0 probing 046d:0892
[  247.805010][    T8] gspca_vc032x: reg_r err -110
[  247.810046][    T8] vc032x 2-1:0.99: probe with driver vc032x failed with error -110
[  248.613134][ T5848] usb 2-1: USB disconnect, device number 9
[  248.663837][ T7820] netlink: 'syz.4.467': attribute type 24 has an invalid length.
[  248.935885][ T5873] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  249.349261][ T5873] usb 6-1: Using ep0 maxpacket: 32
[  249.379869][ T5873] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  249.470866][ T5873] usb 6-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  249.500155][ T5873] usb 6-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  249.521101][ T5873] usb 6-1: Product: syz
[  249.554413][ T5873] usb 6-1: Manufacturer: syz
[  249.569873][ T5873] usb 6-1: SerialNumber: syz
[  249.611757][ T5873] usb 6-1: config 0 descriptor??
[  249.907578][ T7818] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  250.247595][ T7837] overlayfs: workdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  250.427632][ T6271] usb 6-1: USB disconnect, device number 2
[  252.494673][ T5873] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  252.741170][ T5873] usb 6-1: Using ep0 maxpacket: 32
[  253.277344][ T5873] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  253.373439][ T5873] usb 6-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  253.392962][ T5873] usb 6-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  253.411567][ T5873] usb 6-1: Product: syz
[  253.423378][ T5873] usb 6-1: Manufacturer: syz
[  253.437609][ T5873] usb 6-1: SerialNumber: syz
[  253.454450][ T5903] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  253.468265][ T5873] usb 6-1: config 0 descriptor??
[  253.493170][ T7876] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  253.604995][ T5903] usb 4-1: device descriptor read/64, error -71
[  253.757747][ T6271] usb 6-1: USB disconnect, device number 3
[  254.024979][ T5903] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  254.052318][ T7900] netlink: 4 bytes leftover after parsing attributes in process `syz.1.484'.
[  254.165339][ T5903] usb 4-1: device descriptor read/64, error -71
[  254.764764][ T5903] usb usb4-port1: attempt power cycle
[  255.413007][ T5903] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  255.455504][ T5903] usb 4-1: device descriptor read/8, error -71
[  256.008763][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  256.015234][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  257.354518][   T25] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  257.566248][   T25] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  257.589903][   T25] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  257.618376][   T25] usb 2-1: New USB device found, idVendor=046d, idProduct=c222, bcdDevice= 0.00
[  257.642352][   T25] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  257.701071][   T25] usb 2-1: config 0 descriptor??
[  257.740481][ T7951] team_slave_0: entered promiscuous mode
[  257.747119][ T7951] team_slave_1: entered promiscuous mode
[  257.752812][ T7951] batadv0: entered promiscuous mode
[  257.758791][ T7951] vlan0: entered promiscuous mode
[  257.763849][ T7951] team0: entered promiscuous mode
[  257.803885][ T7951] team0: left promiscuous mode
[  257.809541][ T7951] team_slave_0: left promiscuous mode
[  257.815031][ T7951] team_slave_1: left promiscuous mode
[  257.820579][ T7951] batadv0: left promiscuous mode
[  257.991175][   T29] audit: type=1326 audit(1739881517.626:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7952 comm="syz.3.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa70718cde9 code=0x7ffc0000
[  258.012733][    C0] vkms_vblank_simulate: vblank timer overrun
[  258.352486][   T29] audit: type=1326 audit(1739881517.626:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7952 comm="syz.3.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa70718cde9 code=0x7ffc0000
[  258.548040][ T7957] Can't find ip_set type hash:

[  258.657317][   T29] audit: type=1326 audit(1739881517.626:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7952 comm="syz.3.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fa70718cde9 code=0x7ffc0000
[  258.678964][    C0] vkms_vblank_simulate: vblank timer overrun
[  258.689155][   T25] lg-g15 0003:046D:C222.0005: unknown main item tag 0x0
[  258.700959][   T25] lg-g15 0003:046D:C222.0005: unknown main item tag 0x0
[  258.708681][   T25] lg-g15 0003:046D:C222.0005: unknown main item tag 0x0
[  258.724482][   T25] lg-g15 0003:046D:C222.0005: unknown main item tag 0x0
[  258.765546][   T25] lg-g15 0003:046D:C222.0005: hidraw0: USB HID v0.00 Device [HID 046d:c222] on usb-dummy_hcd.1-1/input0
[  258.810937][ T7965] x_tables: duplicate underflow at hook 3
[  258.818158][   T29] audit: type=1326 audit(1739881517.626:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7952 comm="syz.3.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa70718cde9 code=0x7ffc0000
[  258.880667][   T29] audit: type=1326 audit(1739881517.626:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7952 comm="syz.3.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa70718cde9 code=0x7ffc0000
[  258.911701][   T29] audit: type=1326 audit(1739881517.626:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7952 comm="syz.3.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa70718cde9 code=0x7ffc0000
[  259.671909][   T29] audit: type=1326 audit(1739881517.626:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7952 comm="syz.3.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa70718cde9 code=0x7ffc0000
[  259.754347][   T29] audit: type=1326 audit(1739881517.626:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7952 comm="syz.3.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa70718cde9 code=0x7ffc0000
[  259.777444][   T29] audit: type=1326 audit(1739881517.626:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7952 comm="syz.3.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa70718cde9 code=0x7ffc0000
[  259.809258][   T29] audit: type=1326 audit(1739881517.636:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7952 comm="syz.3.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa70718cde9 code=0x7ffc0000
[  259.959351][ T5873] usb 2-1: USB disconnect, device number 10
[  260.075647][ T5903] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  260.220701][ T7985] FAULT_INJECTION: forcing a failure.
[  260.220701][ T7985] name failslab, interval 1, probability 0, space 0, times 0
[  260.264184][ T7985] CPU: 1 UID: 0 PID: 7985 Comm: syz.5.510 Not tainted 6.14.0-rc3-syzkaller-00012-g2408a807bfc3 #0
[  260.264210][ T7985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  260.264220][ T7985] Call Trace:
[  260.264227][ T7985]  <TASK>
[  260.264235][ T7985]  dump_stack_lvl+0x241/0x360
[  260.264263][ T7985]  ? __pfx_dump_stack_lvl+0x10/0x10
[  260.264283][ T7985]  ? __pfx__printk+0x10/0x10
[  260.264307][ T7985]  ? fs_reclaim_acquire+0x93/0x130
[  260.264326][ T7985]  ? __pfx___might_resched+0x10/0x10
[  260.264349][ T7985]  should_fail_ex+0x40a/0x550
[  260.264374][ T7985]  should_failslab+0xac/0x100
[  260.264399][ T7985]  __kmalloc_noprof+0xdd/0x4c0
[  260.264413][ T7985]  ? kstrtouint_from_user+0x128/0x190
[  260.264427][ T7985]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  260.264451][ T7985]  tomoyo_realpath_from_path+0xcf/0x5e0
[  260.264479][ T7985]  tomoyo_path_number_perm+0x239/0x770
[  260.264501][ T7985]  ? __lock_acquire+0x1397/0x2100
[  260.264527][ T7985]  ? tomoyo_path_number_perm+0x209/0x770
[  260.264550][ T7985]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  260.264605][ T7985]  ? __fget_files+0x2a/0x410
[  260.264625][ T7985]  ? __fget_files+0x2a/0x410
[  260.264645][ T7985]  security_file_ioctl+0xc6/0x2a0
[  260.264676][ T7985]  __se_sys_ioctl+0x46/0x170
[  260.264697][ T7985]  do_syscall_64+0xf3/0x230
[  260.264716][ T7985]  ? clear_bhb_loop+0x35/0x90
[  260.264739][ T7985]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  260.264760][ T7985] RIP: 0033:0x7f57a198cde9
[  260.264776][ T7985] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  260.264788][ T7985] RSP: 002b:00007f57a2899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  260.264805][ T7985] RAX: ffffffffffffffda RBX: 00007f57a1ba5fa0 RCX: 00007f57a198cde9
[  260.264816][ T7985] RDX: 00004000000000c0 RSI: 00000000c0405602 RDI: 0000000000000003
[  260.264826][ T7985] RBP: 00007f57a2899090 R08: 0000000000000000 R09: 0000000000000000
[  260.264835][ T7985] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  260.264844][ T7985] R13: 0000000000000000 R14: 00007f57a1ba5fa0 R15: 00007ffc0822a848
[  260.264868][ T7985]  </TASK>
[  260.265156][ T5903] usb 4-1: Using ep0 maxpacket: 8
[  260.276416][ T7985] ERROR: Out of memory at tomoyo_realpath_from_path.
[  260.388600][ T5903] usb 4-1: config 0 has an invalid interface number: 128 but max is 0
[  260.429581][    C0] vkms_vblank_simulate: vblank timer overrun
[  261.079083][ T7988] misc userio: No port type given on /dev/userio
[  261.113847][ T5903] usb 4-1: config 0 has no interface number 0
[  261.156988][ T5903] usb 4-1: New USB device found, idVendor=10c4, idProduct=8244, bcdDevice=dc.00
[  261.179696][ T5903] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  261.203313][ T5903] usb 4-1: Product: syz
[  261.270345][ T5903] usb 4-1: Manufacturer: syz
[  261.283206][ T7991] FAULT_INJECTION: forcing a failure.
[  261.283206][ T7991] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  261.300260][ T5903] usb 4-1: SerialNumber: syz
[  261.322351][ T5903] usb 4-1: config 0 descriptor??
[  261.335187][ T7993] vcan0: entered promiscuous mode
[  261.340545][ T7993] vlan0: entered promiscuous mode
[  261.350753][ T7991] CPU: 1 UID: 0 PID: 7991 Comm: syz.5.512 Not tainted 6.14.0-rc3-syzkaller-00012-g2408a807bfc3 #0
[  261.350777][ T7991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  261.350787][ T7991] Call Trace:
[  261.350793][ T7991]  <TASK>
[  261.350799][ T7991]  dump_stack_lvl+0x241/0x360
[  261.350822][ T7991]  ? __pfx_dump_stack_lvl+0x10/0x10
[  261.350837][ T7991]  ? __pfx__printk+0x10/0x10
[  261.350863][ T7991]  ? __pfx_lock_release+0x10/0x10
[  261.350889][ T7991]  ? __lock_acquire+0x1397/0x2100
[  261.350913][ T7991]  should_fail_ex+0x40a/0x550
[  261.350940][ T7991]  _copy_from_user+0x2d/0xb0
[  261.350961][ T7991]  userio_char_write+0xe5/0x550
[  261.350985][ T7991]  ? __pfx_userio_char_write+0x10/0x10
[  261.351005][ T7991]  ? bpf_lsm_file_permission+0x9/0x10
[  261.351027][ T7991]  ? rw_verify_area+0x243/0x630
[  261.351046][ T7991]  ? __pfx_userio_char_write+0x10/0x10
[  261.351068][ T7991]  vfs_write+0x29f/0xd10
[  261.351091][ T7991]  ? __mutex_unlock_slowpath+0x227/0x800
[  261.351115][ T7991]  ? __pfx_vfs_write+0x10/0x10
[  261.351132][ T7991]  ? do_sys_openat2+0x17a/0x1d0
[  261.351152][ T7991]  ? __fget_files+0x2a/0x410
[  261.351171][ T7991]  ? __fget_files+0x395/0x410
[  261.351186][ T7991]  ? __fget_files+0x2a/0x410
[  261.351211][ T7991]  ksys_write+0x18f/0x2b0
[  261.351234][ T7991]  ? __pfx_ksys_write+0x10/0x10
[  261.351259][ T7991]  ? do_syscall_64+0x100/0x230
[  261.351282][ T7991]  ? do_syscall_64+0xb6/0x230
[  261.351304][ T7991]  do_syscall_64+0xf3/0x230
[  261.351323][ T7991]  ? clear_bhb_loop+0x35/0x90
[  261.351348][ T7991]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  261.351367][ T7991] RIP: 0033:0x7f57a198cde9
[  261.351382][ T7991] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  261.351396][ T7991] RSP: 002b:00007f57a2899038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  261.351415][ T7991] RAX: ffffffffffffffda RBX: 00007f57a1ba5fa0 RCX: 00007f57a198cde9
[  261.351428][ T7991] RDX: 0000000000000002 RSI: 00004000000002c0 RDI: 0000000000000005
[  261.351439][ T7991] RBP: 00007f57a2899090 R08: 0000000000000000 R09: 0000000000000000
[  261.351449][ T7991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  261.351459][ T7991] R13: 0000000000000000 R14: 00007f57a1ba5fa0 R15: 00007ffc0822a848
[  261.351486][ T7991]  </TASK>
[  261.378592][ T5903] radio-usb-si4713 4-1:0.128: Si4713 development board discovered: (10C4:8244)
[  261.598608][ T7993] vcan0: left promiscuous mode
[  261.614456][ T5873] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  261.753649][ T7995] x_tables: duplicate underflow at hook 3
[  261.787916][ T5873] usb 2-1: Using ep0 maxpacket: 16
[  261.850500][ T5873] usb 2-1: New USB device found, idVendor=0d49, idProduct=7010, bcdDevice= c.90
[  261.881149][ T5873] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  262.255413][ T5848] usb 5-1: new full-speed USB device number 7 using dummy_hcd
[  262.545673][ T5873] usb 2-1: Product: syz
[  262.546872][ T5848] usb 5-1: not running at top speed; connect to a high speed hub
[  262.549919][ T5873] usb 2-1: Manufacturer: syz
[  262.549940][ T5873] usb 2-1: SerialNumber: syz
[  262.607036][ T5873] usb 2-1: config 0 descriptor??
[  262.624046][ T5848] usb 5-1: config 1 interface 0 has no altsetting 0
[  262.681204][ T5848] usb 5-1: New USB device found, idVendor=05ac, idProduct=0230, bcdDevice= 0.40
[  262.690703][ T5848] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  262.714030][ T5848] usb 5-1: Product: syz
[  262.731196][ T5848] usb 5-1: Manufacturer: syz
[  262.759286][ T5848] usb 5-1: SerialNumber: syz
[  262.812738][ T5903] radio-usb-si4713 4-1:0.128: probe with driver radio-usb-si4713 failed with error -32
[  262.829910][ T5873] ums-onetouch 2-1:0.0: USB Mass Storage device detected
[  262.855981][ T5903] usbhid 4-1:0.128: couldn't find an input interrupt endpoint
[  263.005533][ T5848] input: bcm5974 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/input/input17
[  263.032883][ T5181] bcm5974 5-1:1.0: could not read from device
[  263.047937][ T5848] usb 5-1: USB disconnect, device number 7
[  264.008111][ T5181] bcm5974 5-1:1.0: could not read from device
[  264.009123][ T5873] usb 2-1: USB disconnect, device number 11
[  264.153068][ T8012] page: refcount:3 mapcount:1 mapping:ffff88807d5f2ad0 index:0x0 pfn:0x7bb6a
[  264.162436][ T8012] memcg:ffff88814d570000
[  264.166677][ T8012] aops:shmem_aops ino:44b
[  264.171002][ T8012] flags: 0xfff0000002012d(locked|referenced|uptodate|lru|active|swapbacked|node=0|zone=1|lastcpupid=0x7ff)
[  264.182374][ T8012] raw: 00fff0000002012d ffff88805397b858 ffffea000160f1c8 ffff88807d5f2ad0
[  264.190966][ T8012] raw: 0000000000000000 0000000000000000 0000000300000000 ffff88814d570000
[  264.199652][ T8012] page dumped because: VM_BUG_ON_FOLIO(folio_mapped(folio))
[  264.206944][ T8012] page_owner tracks the page as allocated
[  264.213200][ T8012] page last allocated via order 0, migratetype Movable, gfp_mask 0x140cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP), pid 8007, tgid 8006 (syz.0.518), ts 262845454366, free_ts 262845019335
[  264.230839][ T8012]  post_alloc_hook+0x1f4/0x240
[  264.235648][ T8012]  get_page_from_freelist+0x3651/0x37a0
[  264.241243][ T8012]  __alloc_frozen_pages_noprof+0x292/0x710
[  264.247052][ T8012]  alloc_pages_mpol+0x311/0x660
[  264.251901][ T8012]  folio_alloc_mpol_noprof+0x36/0x70
[  264.257196][ T8012]  shmem_alloc_and_add_folio+0x4a0/0x1090
[  264.262922][ T8012]  shmem_get_folio_gfp+0x621/0x1840
[  264.268186][ T8012]  shmem_fault+0x220/0x5b0
[  264.272636][ T8012]  __do_fault+0x135/0x390
[  264.276982][ T8012]  __handle_mm_fault+0x4c44/0x70f0
[  264.282099][ T8012]  handle_mm_fault+0x2c1/0x7e0
[  264.286872][ T8012]  __get_user_pages+0x1a92/0x4140
[  264.291901][ T8012]  populate_vma_page_range+0x264/0x330
[  264.297464][ T8012]  __mm_populate+0x27a/0x460
[  264.302094][ T8012]  vm_mmap_pgoff+0x303/0x430
[  264.306692][ T8012]  do_syscall_64+0xf3/0x230
[  264.311188][ T8012] page last free pid 8007 tgid 8006 stack trace:
[  264.317536][ T8012]  free_unref_folios+0xe2f/0x18a0
[  264.322578][ T8012]  folios_put_refs+0x76c/0x860
[  264.327345][ T8012]  free_pages_and_swap_cache+0x5c3/0x690
[  264.332970][ T8012]  tlb_flush_mmu+0x3a3/0x680
[  264.337548][ T8012]  tlb_finish_mmu+0xd4/0x200
[  264.342123][ T8012]  vms_clear_ptes+0x432/0x530
[  264.346825][ T8012]  mmap_region+0x1187/0x2fa0
[  264.351419][ T8012]  do_mmap+0xecc/0x13a0
[  264.355575][ T8012]  vm_mmap_pgoff+0x214/0x430
[  264.360176][ T8012]  do_syscall_64+0xf3/0x230
[  264.364712][ T8012]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  264.370868][ T8012] ------------[ cut here ]------------
[  264.376321][ T8012] kernel BUG at mm/filemap.c:154!
[  264.381362][ T8012] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI
[  264.388302][ T8012] CPU: 1 UID: 0 PID: 8012 Comm: syz.0.518 Not tainted 6.14.0-rc3-syzkaller-00012-g2408a807bfc3 #0
[  264.398870][ T8012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  264.408917][ T8012] RIP: 0010:filemap_unaccount_folio+0x73d/0x7d0
[  264.415161][ T8012] Code: ca c7 ff 48 89 df 48 c7 c6 00 d7 33 8c e8 1b 27 10 00 90 0f 0b e8 c3 ca c7 ff 48 89 df 48 c7 c6 e0 d5 33 8c e8 04 27 10 00 90 <0f> 0b e8 ac ca c7 ff 48 89 df 48 c7 c6 00 d7 33 8c e8 ed 26 10 00
[  264.434939][ T8012] RSP: 0018:ffffc90003eef070 EFLAGS: 00010046
[  264.440993][ T8012] RAX: ab5841ad525cd100 RBX: ffffea0001eeda80 RCX: ffffc90003eeec03
[  264.449036][ T8012] RDX: 0000000000000002 RSI: ffffffff8c2ab6a0 RDI: ffffffff8c801940
[  264.457069][ T8012] RBP: 0000000000000000 R08: ffffffff903bbd77 R09: 1ffffffff20777ae
[  264.465456][ T8012] R10: dffffc0000000000 R11: fffffbfff20777af R12: dffffc0000000000
[  264.473421][ T8012] R13: 1ffffd40003ddb51 R14: ffff88807d5f2ad0 R15: ffffea0001eeda88
[  264.481397][ T8012] FS:  0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  264.490321][ T8012] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  264.496981][ T8012] CR2: 0000400001000000 CR3: 000000000e938000 CR4: 00000000003526f0
[  264.504943][ T8012] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  264.512902][ T8012] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  264.521208][ T8012] Call Trace:
[  264.524486][ T8012]  <TASK>
[  264.527469][ T8012]  ? __die_body+0x5f/0xb0
[  264.531834][ T8012]  ? die+0x9e/0xc0
[  264.535544][ T8012]  ? do_trap+0x15a/0x3a0
[  264.539837][ T8012]  ? filemap_unaccount_folio+0x73d/0x7d0
[  264.545479][ T8012]  ? do_error_trap+0x1dc/0x2c0
[  264.550255][ T8012]  ? filemap_unaccount_folio+0x73d/0x7d0
[  264.555888][ T8012]  ? __pfx_do_error_trap+0x10/0x10
[  264.560994][ T8012]  ? report_bug+0x3cd/0x500
[  264.565573][ T8012]  ? handle_invalid_op+0x34/0x40
[  264.570496][ T8012]  ? filemap_unaccount_folio+0x73d/0x7d0
[  264.576120][ T8012]  ? exc_invalid_op+0x38/0x50
[  264.580813][ T8012]  ? asm_exc_invalid_op+0x1a/0x20
[  264.585838][ T8012]  ? filemap_unaccount_folio+0x73d/0x7d0
[  264.591494][ T8012]  __filemap_remove_folio+0xc7/0x670
[  264.596764][ T8012]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  264.602130][ T8012]  ? __pfx___filemap_remove_folio+0x10/0x10
[  264.608043][ T8012]  ? _raw_spin_lock_irq+0xdf/0x120
[  264.613150][ T8012]  ? __pfx__raw_spin_lock_irq+0x10/0x10
[  264.618681][ T8012]  filemap_remove_folio+0xe1/0x1f0
[  264.623779][ T8012]  truncate_inode_folio+0x5d/0x70
[  264.628789][ T8012]  shmem_undo_range+0x44b/0x1820
[  264.633719][ T8012]  ? validate_chain+0x11e/0x5920
[  264.638642][ T8012]  ? __pfx_shmem_undo_range+0x10/0x10
[  264.644026][ T8012]  ? __pfx_validate_chain+0x10/0x10
[  264.649224][ T8012]  ? percpu_counter_add_batch+0xff/0x1f0
[  264.654846][ T8012]  shmem_evict_inode+0x29b/0xa80
[  264.659782][ T8012]  ? inode_wait_for_writeback+0x111/0x2a0
[  264.665524][ T8012]  ? __pfx_shmem_evict_inode+0x10/0x10
[  264.670994][ T8012]  ? do_raw_spin_unlock+0x13c/0x8b0
[  264.676207][ T8012]  ? __pfx_shmem_evict_inode+0x10/0x10
[  264.681658][ T8012]  evict+0x4e8/0x9a0
[  264.685543][ T8012]  ? __pfx_evict+0x10/0x10
[  264.689945][ T8012]  ? iput+0x713/0xa50
[  264.693915][ T8012]  __dentry_kill+0x20d/0x630
[  264.698523][ T8012]  ? dput+0x37/0x2b0
[  264.702431][ T8012]  dput+0x19f/0x2b0
[  264.706227][ T8012]  __fput+0x60b/0x9f0
[  264.710217][ T8012]  task_work_run+0x24f/0x310
[  264.714798][ T8012]  ? __pfx_task_work_run+0x10/0x10
[  264.719900][ T8012]  ? switch_task_namespaces+0xe4/0x110
[  264.725343][ T8012]  do_exit+0xa2a/0x28e0
[  264.729509][ T8012]  ? __pfx_do_exit+0x10/0x10
[  264.734100][ T8012]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  264.739465][ T8012]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  264.745435][ T8012]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  264.751773][ T8012]  ? _raw_spin_lock_irq+0xdf/0x120
[  264.756868][ T8012]  do_group_exit+0x207/0x2c0
[  264.761458][ T8012]  ? _raw_spin_unlock_irq+0x23/0x50
[  264.766649][ T8012]  ? lockdep_hardirqs_on+0x99/0x150
[  264.771837][ T8012]  get_signal+0x168c/0x1720
[  264.776346][ T8012]  ? __pfx___se_sys_mbind+0x10/0x10
[  264.781530][ T8012]  ? __pfx_get_signal+0x10/0x10
[  264.786367][ T8012]  arch_do_signal_or_restart+0x96/0x860
[  264.791900][ T8012]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  264.798059][ T8012]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  264.804035][ T8012]  ? syscall_exit_to_user_mode+0xa3/0x340
[  264.809740][ T8012]  syscall_exit_to_user_mode+0xce/0x340
[  264.815279][ T8012]  do_syscall_64+0x100/0x230
[  264.819856][ T8012]  ? clear_bhb_loop+0x35/0x90
[  264.824542][ T8012]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  264.830424][ T8012] RIP: 0033:0x7f43ca38cde9
[  264.834833][ T8012] Code: Unable to access opcode bytes at 0x7f43ca38cdbf.
[  264.841848][ T8012] RSP: 002b:00007f43cb107038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[  264.850245][ T8012] RAX: 0000000000000000 RBX: 00007f43ca5a6240 RCX: 00007f43ca38cde9
[  264.858210][ T8012] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000400000001000
[  264.866170][ T8012] RBP: 00007f43ca40e2a0 R08: 0000000000000000 R09: 0000000000000002
[  264.874147][ T8012] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  264.882105][ T8012] R13: 0000000000000000 R14: 00007f43ca5a6240 R15: 00007fff9aeeeae8
[  264.890083][ T8012]  </TASK>
[  264.893086][ T8012] Modules linked in:
[  264.896987][ T8012] ---[ end trace 0000000000000000 ]---
[  264.902445][ T8012] RIP: 0010:filemap_unaccount_folio+0x73d/0x7d0
[  264.908683][ T8012] Code: ca c7 ff 48 89 df 48 c7 c6 00 d7 33 8c e8 1b 27 10 00 90 0f 0b e8 c3 ca c7 ff 48 89 df 48 c7 c6 e0 d5 33 8c e8 04 27 10 00 90 <0f> 0b e8 ac ca c7 ff 48 89 df 48 c7 c6 00 d7 33 8c e8 ed 26 10 00
[  264.928290][ T8012] RSP: 0018:ffffc90003eef070 EFLAGS: 00010046
[  264.934376][ T8012] RAX: ab5841ad525cd100 RBX: ffffea0001eeda80 RCX: ffffc90003eeec03
[  264.942338][ T8012] RDX: 0000000000000002 RSI: ffffffff8c2ab6a0 RDI: ffffffff8c801940
[  264.950294][ T8012] RBP: 0000000000000000 R08: ffffffff903bbd77 R09: 1ffffffff20777ae
[  264.958254][ T8012] R10: dffffc0000000000 R11: fffffbfff20777af R12: dffffc0000000000
[  264.966265][ T8012] R13: 1ffffd40003ddb51 R14: ffff88807d5f2ad0 R15: ffffea0001eeda88
[  264.974232][ T8012] FS:  0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  264.983168][ T8012] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  264.989767][ T8012] CR2: 0000400001000000 CR3: 000000000e938000 CR4: 00000000003526f0
[  264.997738][ T8012] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  265.005709][ T8012] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  265.013693][ T8012] Kernel panic - not syncing: Fatal exception
[  265.020093][ T8012] Kernel Offset: disabled
[  265.024415][ T8012] Rebooting in 86400 seconds..