last executing test programs:

15m48.973236228s ago: executing program 2 (id=210):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000380)={0x28, 0x3, r1, 0x0, &(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x6})

15m48.792553291s ago: executing program 2 (id=211):
getpid()
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x3000)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x0, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
process_mrelease(0xffffffffffffffff, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000040)=ANY=[@ANYBLOB="1c0100002e00010000000000fcdbdf250b"], 0x11c}], 0x1, 0x0, 0x0, 0x1}, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_CONNECT(r5, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0)
syz_genetlink_get_family_id$netlbl_cipso(0x0, 0xffffffffffffffff)
bind$alg(r4, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_sha512\x00'}, 0x58)

15m45.130364353s ago: executing program 2 (id=214):
timer_create(0x1, 0x0, 0x0)
timer_settime(0x0, 0x0, 0x0, 0x0)
timer_settime(0x0, 0x1, 0x0, 0x0)
r0 = getpgrp(0xffffffffffffffff)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
semtimedop(0x0, 0x0, 0x0, &(0x7f0000000040))
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r4, 0x0, 0x0)
listen(r4, 0xfff)
syz_emit_ethernet(0x4a, &(0x7f0000000140)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "04f46b", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000680)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb86dd600a843500140600fe8000000000000000000000000000bbfe8000faffffff0000000000000000aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB='P'], 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x40)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f00000000c0)={&(0x7f0000ffd000/0x2000)=nil, &(0x7f00001d7000/0x4000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff2000/0x1000)=nil, &(0x7f0000ff9000/0x5000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ff2000/0x2000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ff3000/0x1000)=nil, 0x0}, 0x68)
openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)

15m41.740129549s ago: executing program 2 (id=217):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r3 = dup(r2)
write$UHID_INPUT(r3, &(0x7f0000000000)={0x8, {"a2e3ad21ed6b52f99cfbf4c087f70c1b3e6ee7ff7fc6e5539b9b3b0e8b9b411b5d52091b080d29428f0e1ac6e7049b346d959b4c9a242a9b67f3988f7ef319520200ffe8d178708c523c921b1b25380a169b63d336cd3b78130daa61d8e809ea882f5802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f309f4cff7738596ecae8707ce065cd5b91cd0ae193973735b36d5b1b63e91c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecd03aded6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca5b6bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295cba0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27afc953854a642c57519544ae15a7e454dea05918b4124351601611c8f11baa500a3621c56cea8d20ff911a0c41db6ebe8cac64f17679141d540b09bc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a60560a22f1fca567e65d5e880572286522449df466c632b3570243f989cce3803f465e41e610c20d80421d653a5120000008213b704c7fb082ff27590678ef9f190bae979babc7041d860420c5664ba7921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202fd28f28381aab144a5d429a04a689b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2f05dd3318271a1f5f8528f227e79c1388dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eefc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44060bebc2420aed92fa9b6578b4779415d97b9a6d6d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a9737d214060005ea6f1783f287b3bee96e3a7288afe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f48fe4eae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf02b98a269b891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efedfd71af9444e197f47e866101496f42355bc7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615f7084a607a7eceb6243378e0610060f02cca4051c2f001edb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c4fe5b7b6eb65ca8104e1b4da1fbb77ab2fc043aead87c32ab875ee7c2e7b7019c902cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad948741b2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd73643de50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c1023bf70cc77737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d7d8ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73c497579773767075428067e7f16f4dde374f8211fef42cb468e623daf60b3569d462f4f19eacdb3ed70eeef8f483f8fd777d443e8b40426db6fe29068c0ca3d3414442e863a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae44369ddb4581c55925d0f6f1ba471eba281f259152f85a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b405177548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaaf29d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e05130935e00785ec27e923911fab964c271556527697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9ddbfb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e7027132f2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afae5336651b1b9bd522d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee29165895ac4b008e595f437491d87abed02cefcd9db53d94d02dae17b118e5d6787463181f4b87c10772d2b13f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76d57227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f84fad6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b3110b932a4d02da711b757fe43c06d21e35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a050011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc238a081ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7348663a52190202c7af288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae003050000004908b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cb0b3e35cb80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c60edddab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec014508e5247d33ae6c962d35603ff8454c16f8342856935125102bb784ed714887071f3d998efdd9923c954ab6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee658e4cb5e930ed624806c43a006dc9336d07c2b8081c128ad2706f48261f7897084c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da3932ba5c04c24a560ad80a3ce654578376e599aff3565b1d531f30912b99e6619ebe93cc0b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e45df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e6491953264d2700c838fa2c7b34252600c9654e502dcea39cb6bc3eb69992e234b4ca7db2f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c6000064b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c7e36bb2fc4c40e9cf96f06817fb903729a7db6ff957697c9ede7885d94ff1aa70826ad01a9b03c37b0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f9000", 0x1000}}, 0x1006)
r4 = syz_genetlink_get_family_id$smc(&(0x7f00000033c0), 0xffffffffffffffff)
sendmsg$SMC_PNETID_ADD(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x34, r4, 0x1, 0x70bd2b, 0x25dfdbfd, {}, [@SMC_PNETID_NAME={0x9, 0x1, 'syz2\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'hsr0\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x24040000}, 0x800)
r5 = socket$kcm(0x29, 0x5, 0x0)
sendmsg$SMC_PNETID_ADD(r1, &(0x7f0000001140)={&(0x7f0000001040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000001100)={&(0x7f0000001080)={0x60, r4, 0x1, 0x70bd28, 0x25dfdbfd, {}, [@SMC_PNETID_IBNAME={0x9, 0x3, 'syz1\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'wg1\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'veth1\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz1\x00'}]}, 0x60}, 0x1, 0x0, 0x0, 0x815}, 0x4010000)
setsockopt$kcm_KCM_RECV_DISABLE(r5, 0x119, 0x1, &(0x7f0000000080)=0x5, 0xfffffffffffffcbe)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r6 = syz_init_net_socket$ax25(0x3, 0x3, 0xcb)
getsockopt$ax25_int(r6, 0x101, 0x6, &(0x7f0000000100), &(0x7f0000000140)=0x4)
pipe2$watch_queue(&(0x7f00000000c0), 0x80)
syz_open_dev$vim2m(&(0x7f0000000680), 0x8, 0x2)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newlink={0x44, 0x10, 0x401, 0x20000, 0x0, {0x0, 0x0, 0x0, 0x0, 0x8003}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvtap={{0xc}, {0x4}}}, @IFLA_LINK={0x8}, @IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0x7}]}, 0x44}, 0x1, 0x0, 0x0, 0x240008c4}, 0x2000c010)

15m39.657256132s ago: executing program 2 (id=219):
timer_create(0x1, 0x0, 0x0)
timer_settime(0x0, 0x0, 0x0, 0x0)
timer_settime(0x0, 0x1, 0x0, 0x0)
r0 = getpgrp(0xffffffffffffffff)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
semtimedop(0x0, 0x0, 0x0, &(0x7f0000000040))
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r4, &(0x7f0000000100)={0xa, 0x4e22, 0x0, @rand_addr, 0xffeffffe}, 0x1c)
listen(r4, 0xfff)
syz_emit_ethernet(0x4a, &(0x7f0000000140)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "04f46b", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)
syz_emit_ethernet(0x4a, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x40)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f00000000c0)={&(0x7f0000ffd000/0x2000)=nil, &(0x7f00001d7000/0x4000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff2000/0x1000)=nil, &(0x7f0000ff9000/0x5000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ff2000/0x2000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ff3000/0x1000)=nil, 0x0}, 0x68)
openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)

15m34.756474022s ago: executing program 2 (id=225):
socket$inet6(0xa, 0x3, 0x8000000003c)
socket$igmp6(0xa, 0x3, 0x2)
fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x19}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0), 0x48)
bpf$MAP_LOOKUP_ELEM(0x5, &(0x7f00000000c0)={r0, &(0x7f0000000000), &(0x7f0000000040)=""/73}, 0x70) (fail_nth: 8)

15m26.037280563s ago: executing program 1 (id=237):
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0xffff5b8b}}, './file0\x00'})
r1 = socket$key(0xf, 0x3, 0x2)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
r3 = getpgrp(0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r5 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r5, 0x1, 0x0)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_LINKAT={0x27, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, r0, 0x400})
io_uring_enter(0xffffffffffffffff, 0x47f6, 0x80ffff, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000680)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB="00a500f800", @ANYRES32, @ANYBLOB, @ANYRES64=0x0], 0x20)
connect$inet(0xffffffffffffffff, &(0x7f0000000480)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0xf}}, 0x10)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000002680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000940)=[@timestamping={{0x14, 0x1, 0x25, 0x6}}], 0x18}}], 0x1, 0x24008000)
setsockopt$inet_tcp_int(r2, 0x6, 0x3, &(0x7f0000000040)=0x24, 0x4)
sendmsg$key(r1, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYRES16=r2], 0x50}}, 0x0)

15m24.201905769s ago: executing program 1 (id=238):
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000800)={'lo\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000700)=@newqdisc={0x44, 0x24, 0xd0f, 0x70bd2a, 0x0, {0x60, 0x0, 0x0, r1, {0x0, 0x1}, {0xffff, 0xffff}, {0x0, 0xb}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x14, 0x2, [@TCA_CAKE_MPU={0x8, 0xe, 0x6f}, @TCA_CAKE_RTT={0x8, 0x7, 0x5}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x15181b09c6bdc4c6}, 0x20008004)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x10, 0x3, &(0x7f0000000000)=@framed={{0x62, 0xa, 0x0, 0xffc4, 0x0, 0x71, 0x10, 0x26}}, &(0x7f0000000480)='GPL\x00'}, 0x80)
sendto$rxrpc(r0, &(0x7f0000000040)="3a4dd6639f4884b285dce73c740fd290d28fcb9ddf99da7ff92cee578e7bffe20b51dfc1c9af2fd568390ee6c440748ec68483eff62f7759c8c5ab3e1695d62830bca9", 0x43, 0xc000, &(0x7f00000000c0)=@in6={0x21, 0x3, 0x2, 0x1c, {0xa, 0x4e22, 0x0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x1000}}, 0x24)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000140)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010029bd7080000000000200000008000300", @ANYRES32=r3, @ANYBLOB="0c00990041000000600000000800270002000000080026009a03"], 0x40}}, 0x0)
sendmsg$NL80211_CMD_SET_PMKSA(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, r4, 0x2, 0x70bd2b, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_PMK_REAUTH_THRESHOLD={0x5, 0x120, 0x39}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000002}, 0x80)

15m23.381430341s ago: executing program 1 (id=239):
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0xffff5b8b}}, './file0\x00'})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000610000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
r1 = socket$key(0xf, 0x3, 0x2)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
r3 = getpgrp(0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = getpid()
sched_setscheduler(r4, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r5 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r5, 0x1, 0x0)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_LINKAT={0x27, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, r0, 0x400})
io_uring_enter(0xffffffffffffffff, 0x47f6, 0x80ffff, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='nfsd\x00', 0x0, 0x0)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000680)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB="00a500f800", @ANYRES32, @ANYBLOB, @ANYRES64=0x0], 0x20)
connect$inet(r7, &(0x7f0000000480)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0xf}}, 0x10)
sendmmsg$sock(r7, &(0x7f0000002680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000940)=[@timestamping={{0x14, 0x1, 0x25, 0x6}}], 0x18}}], 0x1, 0x24008000)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='nfsd\x00', 0x0, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x3, &(0x7f0000000040)=0x24, 0x4)
sendmsg$key(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000000380)=ANY=[@ANYBLOB="020101090800000000170006ffffff000300060012000000020000007217440502000000e000000100"/56], 0x40}}, 0x0)
sendmsg$key(r1, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYRES16=r2], 0x50}}, 0x0)

15m21.372655329s ago: executing program 1 (id=242):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x2ca}, 0x48)
socket$nl_generic(0x10, 0x3, 0x10)
socket$netlink(0x10, 0x3, 0x10)
socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x10)
socket$kcm(0x2, 0x3, 0x2)
socket$inet6(0xa, 0x3, 0x29)
socket$netlink(0x10, 0x3, 0x4)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0x14, &(0x7f0000000080)=0xfff, 0x4)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
getpeername$packet(r1, &(0x7f0000000000)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
sendmmsg(r0, &(0x7f0000000440)=[{{&(0x7f0000000700)=@xdp={0x2c, 0x0, r2}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180), 0x63}], 0x1}}], 0x1, 0x4)

15m17.387205687s ago: executing program 32 (id=225):
socket$inet6(0xa, 0x3, 0x8000000003c)
socket$igmp6(0xa, 0x3, 0x2)
fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x19}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0), 0x48)
bpf$MAP_LOOKUP_ELEM(0x5, &(0x7f00000000c0)={r0, &(0x7f0000000000), &(0x7f0000000040)=""/73}, 0x70) (fail_nth: 8)

15m13.231581745s ago: executing program 1 (id=253):
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0xffff5b8b}}, './file0\x00'})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000610000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
r1 = socket$key(0xf, 0x3, 0x2)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
r3 = getpgrp(0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = getpid()
sched_setscheduler(r4, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r5 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r5, 0x1, 0x0)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_LINKAT={0x27, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, r0, 0x400})
io_uring_enter(0xffffffffffffffff, 0x47f6, 0x80ffff, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='nfsd\x00', 0x0, 0x0)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000680)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB="00a500f800", @ANYRES32, @ANYBLOB, @ANYRES64=0x0], 0x20)
connect$inet(r7, &(0x7f0000000480)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0xf}}, 0x10)
sendmmsg$sock(r7, &(0x7f0000002680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000940)=[@timestamping={{0x14, 0x1, 0x25, 0x6}}], 0x18}}], 0x1, 0x24008000)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='nfsd\x00', 0x0, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x3, &(0x7f0000000040)=0x24, 0x4)
sendmsg$key(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000000380)=ANY=[@ANYBLOB="020101090800000000170006ffffff000300060012000000020000007217440502000000e000000100"/56], 0x40}}, 0x0)
sendmsg$key(r1, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYRES16=r2], 0x50}}, 0x0)

15m8.668866968s ago: executing program 1 (id=261):
r0 = socket(0x2, 0xa, 0x300)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000100)={0x2, &(0x7f00000001c0)=[{0x30, 0x3, 0x51, 0xfffff034}, {0x6, 0x4, 0x5, 0x6}]}, 0x10)
r1 = socket(0x2, 0x3, 0x6)
r2 = syz_open_dev$loop(&(0x7f0000000280), 0xa4f, 0x0)
ioctl$LOOP_CONFIGURE(r2, 0x4c0a, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1d, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d00009520a1a93c5240f45f819e01177d3d458dd4992861ac00", "f4bc0007008019000000000000000000000000af1e4ccfb7b3cad80004010400", [0x1, 0x2000000000001]}})
bind$inet(r1, &(0x7f0000000080)={0x2, 0xfffa, @local}, 0x10)
sendto$inet(r1, 0x0, 0x0, 0x0, &(0x7f0000002400)={0x2, 0x0, @multicast2}, 0x10)
timer_settime(0x0, 0x0, 0x0, 0x0)

14m53.548155397s ago: executing program 33 (id=261):
r0 = socket(0x2, 0xa, 0x300)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000100)={0x2, &(0x7f00000001c0)=[{0x30, 0x3, 0x51, 0xfffff034}, {0x6, 0x4, 0x5, 0x6}]}, 0x10)
r1 = socket(0x2, 0x3, 0x6)
r2 = syz_open_dev$loop(&(0x7f0000000280), 0xa4f, 0x0)
ioctl$LOOP_CONFIGURE(r2, 0x4c0a, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1d, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d00009520a1a93c5240f45f819e01177d3d458dd4992861ac00", "f4bc0007008019000000000000000000000000af1e4ccfb7b3cad80004010400", [0x1, 0x2000000000001]}})
bind$inet(r1, &(0x7f0000000080)={0x2, 0xfffa, @local}, 0x10)
sendto$inet(r1, 0x0, 0x0, 0x0, &(0x7f0000002400)={0x2, 0x0, @multicast2}, 0x10)
timer_settime(0x0, 0x0, 0x0, 0x0)

13m23.701762251s ago: executing program 4 (id=410):
r0 = socket$inet6(0xa, 0x3, 0x5)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f00000000c0)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x800, 0x0, 0x3, 0x9}, 0x20)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f0000000000)=0xffffffc3, 0x4)
sendmmsg(r0, &(0x7f0000001500)=[{{&(0x7f0000000180)=@l2tp6={0xa, 0x500, 0x80000, @remote, 0x0, 0x3}, 0x80, 0x0}, 0x5b4}, {{&(0x7f0000000040)=@l2tp6={0xa, 0x0, 0x7080000, @ipv4={'\x00', '\xff\xff', @loopback}, 0x20, 0x1}, 0x80, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="120000000000000029000000", @ANYRES8=r0], 0x108}}], 0x2, 0xc040)

13m23.395155387s ago: executing program 4 (id=411):
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1000, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f000068c000/0xc000)=nil, &(0x7f0000817000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r1 = io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0xc8a1, 0xc000, 0x8, 0xc1})
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x12, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="16"], 0x50)
io_uring_enter(r1, 0x2219, 0x7721, 0x16, 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x2, 0x0, 0x2, 0x8}}, 0x20)

13m23.158879823s ago: executing program 4 (id=412):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000009500000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x18)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, 0x0, &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1, 0x0, 0x7}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000026000/0x3000)=nil, 0x3000, 0x8, 0x1010, r2, 0x62b26000)
pread64(0xffffffffffffffff, &(0x7f0000000700)=""/57, 0x39, 0x0)
r6 = syz_open_dev$vim2m(&(0x7f00000001c0), 0x80000a, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r6, 0xc0405602, &(0x7f0000000040)={0x17, 0x2, 0x0, "11000f4cb052000004000000000000000000000000003342251b8e646b0f00", 0x30314442})
socket$caif_stream(0x25, 0x1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
open(0x0, 0x10000, 0x0)
openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0), 0x103642, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r7 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r7, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8010}, 0x4000800)
syz_open_dev$tty1(0xc, 0x4, 0x2)

13m19.973426038s ago: executing program 4 (id=413):
connect$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x800001000088}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x80000, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_udp_int(r4, 0x11, 0x67, &(0x7f0000000040)=0x91, 0x4)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e21, 0x1, @dev={0xfe, 0x80, '\x00', 0x26}, 0x3}, 0x1c)
r5 = socket(0x11, 0xa, 0x5)
ioctl$sock_inet_SIOCSIFDSTADDR(0xffffffffffffffff, 0x8918, &(0x7f0000000040)={'ipvlan0\x00', {0x2, 0x4e20, @loopback}})
sendto$inet(r5, &(0x7f0000000000), 0x0, 0x8000, &(0x7f0000000040)={0x2, 0x4e20, @remote}, 0x10)
bind$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(0xffffffffffffffff, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, 0x0, 0x0)
setsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@dev, @in6=@mcast2, 0x0, 0x0, 0xffff, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x28c, 0x1}, {0x7}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010102, 0x2000000, 0x33}, 0x0, @in6=@loopback, 0x0, 0x3, 0x0, 0xb7, 0x0, 0x8000000}}, 0xe8)

13m15.677149271s ago: executing program 4 (id=417):
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0xffff5b8b}}, './file0\x00'})
r1 = socket$key(0xf, 0x3, 0x2)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
r3 = getpgrp(0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r5 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r5, 0x1, 0x0)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_LINKAT={0x27, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, r0, 0x400})
io_uring_enter(0xffffffffffffffff, 0x47f6, 0x80ffff, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='nfsd\x00', 0x0, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000680)=ANY=[], 0x20)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$sock(0xffffffffffffffff, 0x0, 0x0, 0x24008000)
setsockopt$inet_tcp_int(r2, 0x6, 0x3, &(0x7f0000000040)=0x24, 0x4)
sendmsg$key(r1, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYRES16=r2], 0x50}}, 0x0)

13m12.571733054s ago: executing program 4 (id=419):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000007900)=@newlink={0x40, 0x10, 0x401, 0x0, 0x1, {0x0, 0x0, 0x0, 0x0, 0x137b}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x8, 0x2, 0x0, 0x1, [@IFLA_IPTUN_COLLECT_METADATA={0x4}]}}}, @IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0x9}]}, 0x40}}, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00', r5}, 0x10)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x2004c7f9, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r0, &(0x7f0000000700)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff959bcecc7a95425a3a07e758044ab4ea6f7c555d88fecf90b037511bf746bec66ba", 0x994b6e03113064ae, 0x0, 0x0, 0x0)
recvmsg(r0, &(0x7f0000000100)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f0000000780)=""/4108, 0x437aba2}], 0x1, 0x0, 0xfffffdee, 0x407006}, 0x104)
mknodat$loop(0xffffffffffffffff, 0x0, 0x200, 0x0)
write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, 0x0, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, &(0x7f0000000180)={0x3, 0x40, 0xfa00, {{0xa, 0x4e23, 0xe, @empty, 0x2}, {0xa, 0x4e23, 0x7, @remote, 0x3}, 0xffffffffffffffff, 0x7}}, 0x48)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000740), 0x2, 0x5}}, 0x20)
r6 = socket$kcm(0x11, 0x3, 0x0)
sendmsg$kcm(r6, &(0x7f0000000080)={&(0x7f0000000100)=@ieee802154, 0x80, 0x0}, 0x9cdc2384016b48b8)

12m57.299122134s ago: executing program 34 (id=419):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000007900)=@newlink={0x40, 0x10, 0x401, 0x0, 0x1, {0x0, 0x0, 0x0, 0x0, 0x137b}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x8, 0x2, 0x0, 0x1, [@IFLA_IPTUN_COLLECT_METADATA={0x4}]}}}, @IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0x9}]}, 0x40}}, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00', r5}, 0x10)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x2004c7f9, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r0, &(0x7f0000000700)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff959bcecc7a95425a3a07e758044ab4ea6f7c555d88fecf90b037511bf746bec66ba", 0x994b6e03113064ae, 0x0, 0x0, 0x0)
recvmsg(r0, &(0x7f0000000100)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f0000000780)=""/4108, 0x437aba2}], 0x1, 0x0, 0xfffffdee, 0x407006}, 0x104)
mknodat$loop(0xffffffffffffffff, 0x0, 0x200, 0x0)
write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, 0x0, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, &(0x7f0000000180)={0x3, 0x40, 0xfa00, {{0xa, 0x4e23, 0xe, @empty, 0x2}, {0xa, 0x4e23, 0x7, @remote, 0x3}, 0xffffffffffffffff, 0x7}}, 0x48)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000740), 0x2, 0x5}}, 0x20)
r6 = socket$kcm(0x11, 0x3, 0x0)
sendmsg$kcm(r6, &(0x7f0000000080)={&(0x7f0000000100)=@ieee802154, 0x80, 0x0}, 0x9cdc2384016b48b8)

10m15.130783213s ago: executing program 0 (id=645):
shutdown(0xffffffffffffffff, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000200)={'batadv_slave_0\x00'})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000800)=@ipv6_newroute={0x1c, 0x18, 0x1}, 0x1c}}, 0x0)

10m13.939554933s ago: executing program 0 (id=647):
r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12030000000000203312073f0000000000010902240001000060060904001005030001810300009dfd2800"/54], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f00000003c0)={0x2c, &(0x7f0000000200)=ANY=[], 0x0, 0x0, 0x0, 0x0}, 0x0) (async)
r1 = fspick(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000080)='@${&\'\x00', &(0x7f00000000c0)='\x00', 0x0)

10m10.781044203s ago: executing program 0 (id=652):
prlimit64(0x0, 0xb, &(0x7f0000000180)={0x6, 0x800001000088}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
syz_usb_connect$hid(0x4, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x200, 0x0, 0x0, 0x0, 0xff, 0x486, 0x185, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x6, 0x80, 0x9, [{{0x9, 0x4, 0x0, 0xf8, 0x1, 0x3, 0x1, 0x3, 0x1, {0x9, 0x21, 0x5, 0x8, 0x1, {0x22, 0xc02}}, {{{0x9, 0x5, 0x81, 0x3, 0x10, 0x4, 0x2, 0x8}}}}}]}}]}}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x2, [{0x0, 0x0}, {0x4, &(0x7f0000000280)=@lang_id={0x4, 0x3, 0x426}}]})
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000200)={0x1b, 0x0, 0x0, 0x80000000, 0x0, 0x1, 0xa, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x4, 0x5}, 0x50)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x80000, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sendto$packet(0xffffffffffffffff, &(0x7f00000000c0)="3f03fe7f0302140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c153cfdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0xc9, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'vlan1\x00', <r4=>0x0})
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'batadv_slave_1\x00', <r5=>0x0})
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000540)={'ip_vti0\x00', &(0x7f00000003c0)={'tunl0\x00', <r6=>r5, 0x700, 0x7800, 0x401, 0x0, {{0x13, 0x4, 0x1, 0x2a, 0x4c, 0x68, 0x0, 0xfb, 0x0, 0x0, @multicast1, @multicast2, {[@ssrr={0x89, 0xf, 0xa1, [@remote, @rand_addr=0x64010100, @empty]}, @rr={0x7, 0x27, 0x52, [@remote, @private=0xa010101, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1, @initdev={0xac, 0x1e, 0x21, 0x0}, @private=0xa0100ff, @multicast2, @multicast1, @dev={0xac, 0x14, 0x14, 0x1d}]}]}}}}})
sendmsg$ETHTOOL_MSG_DEBUG_GET(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000700)={&(0x7f0000000580)={0x15c, 0x0, 0x300, 0x70bd28, 0x25dfdbfc, {}, [@HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x4, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x7c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @HEADER={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}]}, 0x15c}, 0x1, 0x0, 0x0, 0x8000}, 0x85)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
setsockopt$TIPC_CONN_TIMEOUT(0xffffffffffffffff, 0x10f, 0x82, 0x0, 0x0)
socket$key(0xf, 0x3, 0x2)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r7, 0x39b3)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000048c0)={0xffffffffffffffff, 0x0, 0x0}, 0x20)
recvmmsg(r7, 0x0, 0x0, 0x21, 0x0)
setsockopt$inet6_tcp_int(r7, 0x6, 0x19, &(0x7f0000000740)=0x17, 0x4)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, 0x0, 0x0)

10m8.223060487s ago: executing program 0 (id=654):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x110, 0x0, &(0x7f00000006c0)=[@increfs_done={0x40106308, 0x2}, @acquire={0x40046305, 0x4}, @acquire_done={0x40106309, 0x3}, @transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x50, 0x18, &(0x7f0000000200)={@fd={0x66642a85, 0x0, r1}, @flat=@binder={0x73622a85, 0x3000}, @fda={0x66646185, 0x6, 0x0, 0xb}}, &(0x7f0000000500)={0x0, 0x18, 0x30}}}, @exit_looper, @transaction={0x40406300, {0x1, 0x0, 0x0, 0x0, 0x30, 0x0, 0x0, 0x68, 0x18, &(0x7f0000000540)={@fda={0x66646185, 0x5, 0x2, 0x33}, @ptr={0x70742a85, 0x0, &(0x7f0000000340)=""/52, 0x34, 0x0, 0x19}, @fda={0x66646185, 0x8, 0x1, 0x1c}}, &(0x7f0000000380)={0x0, 0x20, 0x48}}}, @acquire, @transaction={0x40406300, {0x3, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x50, 0x18, &(0x7f00000003c0)={@fd={0x66642a85, 0x0, r1}, @fda={0x66646185, 0x4, 0x1, 0x18}, @flat=@binder={0x73622a85, 0x1100, 0x2}}, &(0x7f0000000180)={0x0, 0x18, 0x38}}}], 0x0, 0x0, 0x0})
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x1c4)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="2c006bf5f800532c3858032f37438252a0e232a35bf99734869afe"])
dup(r1)
read$FUSE(r2, &(0x7f00000021c0)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(r2, &(0x7f0000004200)={0x50, 0x0, r3, {0x7, 0x2b, 0x0, 0x10000008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}}, 0x50)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
syz_fuse_handle_req(r2, &(0x7f00000062c0)="951362b26839a8c6b782b516edbfa9f200ca4c533dee53959e8336864158873107c5bdf893c0aa94875f35c14908be1f4ac3b2b34294a34b2a63549b12a9ee0e9ea1fc58e51d2ab81b7bbebce3ec5fb16947723529df64803c88290e2d4b43dea249709aa8f1a0bc38e03aad948717e2287e06bbe50b71eeacc2f5ef6cf5e0bd0b75b78acd02ade919da12e572202e0b7c6e8c06b495e4f3a415398a98cdac9f469263bb21e4a72bd0b119abd54c94a5d2e8e15502423a963cb53b867d29afa2c45e0a5db73ecec96eb657f835cfe14d143be526eb355dcfa8da185e2fe5355841c4f38acd3259e3d58e130844ab8ff88af28d5d1d6fe04694b8e1935a20440c0a8a65cb2fcb35ac6bf0ad57220c0550bc5e6e3c66b062fc471cdd9288d942ee4120ab83c59bd4a191772d262dbc1bae7474389bdd1191dfbc100a7ef75f2eb678837552a6944a836ae188d196ae3abc5d3b2659566e65704cdc10550492a3dff5b0d818e66f2374486746e4277d719e2e00481fa443bacd499f2d0b770b05e837b813212a92eaf151471606f5a0b35c47308ee02005d7a2d81a06af5323795099e333eddd786a419b37763a0a7b2afd7a699a34f0e0466304b45e8a314d49e4656201d1174ced46fb8124c830db3bd70e6d229bfd1ca26dc78b474c2c6fe812590c8b5a1f38d159958904ca2c00581bb8ba13faceb7f7efc83635c30c033ab8fac3b768d327a5914240e87440d59f8a50689f91b103b29728d41396eec2898297658c0e4dd11e81d948f011161341a37ed8e1a479435be90cb85c07856d7d227d3d8d7eed963be5913f748c4e70120e56be2e0b3f1958a93ff7a87d36108bcfd0bfed8f92fe351df301f3fd14ad84a4aa420316063a05c2f87fed873daeae7863ecf8dbdf4fd7412d7f617714352a4face96c55b5cede1455a5e229afe3ae52fe438974fe4abdf21d96d7ea9cb3d4e2980b185ccc42f9a7c9c545a4854d5acc46ea034225919d7f433e61f312482f72636b1de7dc893b9a08f17191be1198474cc5f7ef9dab06bb47d971ba6d5b7b6480e5123ff0032b766fce139d97d89f9fae1c7534df76e2c8a0e1e10b0fa0a90da1db18b9aa0dbde2477ec6659def7763e85bc657d080cd214d7fcd4865d00f9ebe7c8b7743aba0c65cf2a71ff64c6b82687163afd6d22731771fc0a1b2156507150a9baaeeceddcf9d72d3ceac937c1c98bc8a5ed774c6c499ed4eca8a3b60482e3efb5440f5fa7c3ad1937cd7579cc6c456c5c9b2dadb973926a61b44585d23ec9c87d5ec702f945137fd58d642eca3d3223c13ea005148f5dd7779d7eaa00c8d249de0e263bb0acf2eecdb7d3f93ca927023ffccf0b6410e0faa6d22f7ec89cd8f09a886e05fe61e7149d8fe1731672b768d4879c67b8ce11ff76731726de078dba517f5754dded64d89c5dde6ab1447b4d2efb85a44c7ade6091e19c2d61a084951661525d9e67cff6c135959850e6fa2ac30069854b9636b46f740d9c785d10af7c47473ed94ad95ccfab84ee268aa49d7abaf1504354f61bcd3204f68243c7b6b3166cdc2ef68ade2cca4eccd60cbcc736ed1935f1f0f85e613a34b1dcd85384d3c618a0cee99ac833d8d13bef7adba4d49265e76d4c52ae2aa8f18fb1a9ea6fa3e0d0ec4e74f962e2b88c17adb617a1a756c2755c0d4c6c34bc8e9504261012e7c2c43a9913f9e5bae8963ba71cb7bb330de1781af0cc32b018902e33e0c96862a39d2b2afc1fb97e71cd16f5075c56ae8f85e218c667fe85d0d2867dd5197cc421657dad032c449a74ae0c46b24014fa362b3686b75ae382578b2c8431f60109f31b1010e8cf38a8f6b738f1d040c8c77f8b2a41d25def27f5c88cbe87a8c8989ba41325daad5fd0408d920144ac8f9946f7a2f356e1e4f395533b2634dbc89c7afdb8b730463fe54acc0ee1641b2b04aa8499662d149b9f26d4efa6f3ce4861e7c8f76a69dd5eb83031baf06294c8f1dbc2eab5a6e66f5e90e9cb17c73393190f4c624d3c66c4ad9f6fb9a638b0155d011343f3b071037e041edc990e6fc24084349f7f233a7956fdf4505e9feeb6005f0f307427e8e69e5e9eaabe8afc7d0f326d994bb80a03f025925c8a894d2603904156aecd66716db3f79f45cecfd9b575827f273c363d8bfa0f9cb3aff8eaab742689fd0aea93e2092ebec5290c1e132071dbd37996189b5650c7c5bb3435fdd8fe8f30f1e3661ad8658fd5cac0eb412575799c38e6fb6f0968df0f75f07d5034f36ce147ca23c2e7676b998efefe0ef0abc580582f8e32d1f0148fa1820ac4121f4a2395a0d81171682daf6609219c570813013623d5d124bf25c6911e9148cb6d048da12e4cd2c5ccaa0801120100390aac358f03a61ae37f1055bc64ae5e1a6f9fb733483406b295e20d7dff733bc9ed324a7e9e9dcdccd0f4e945c596bf69ca268077819bb39bbfc138b214c27c190fde2a1ef02ccf6f9a8e158a2fc10f6529cad59e6634acf1b543f664e8f106d47c9fcb98304939e9dba5455d60772077faee8c73987afa1a8f03c2d3c2d0ad7faecfadf6e0a58c8844c5cb7cd44f2c04a89ccc9fbc56213b7494a89f23a6d98b04298b40ab61e7d7ef6a8722216f6ac7079e4ff4277cdc419fe6b418e2b4aeb5a2a0700d8c549870e3be2dd9a3f9342a27228cdb4bb1e5cdfe844685a28bfddf223032f2de49ced8ba59fde03ec091178149e56f154bdb99b17dbd7f69b72cfcde82df2af0fe9d5057ddfeb490bb57f7dbfdf32773f73b6e2e95553184f1294bc316d00d632d8ec2b1775628a8f42db063536f5f1a2dc4a2ac77e8a78e377e786124906dd639dbe546b033dd7b16ae4f03b585008e5ebdb93ab255592d48d04bd767074c5313d41cbb5b8cb68a36022a2860504c9bae4d48c664a3a51fb0fb65177a01b6fcef78ee6aeda3b189c33fbcb022f796dd8ef42b22f340c7f9e381899de454d693bc8bb387ff1df5b527372ae1a2e6e1b21925df67253954fbd6e4fd463eca7631a366dbee4396bcf39e28d54fafbb5aa17e6db72fb8d729f7c719a605faac22f3e7083685c44f8abba064ec6e53221668e92234588024bedb7fe616911d82dc5a84553478b0e3adecb9ec2059cfcaa94eb3d604cbe16cfdb29fabf3cd6c5622a5b6d93b82ae46d73c49033895f6bc70e584aee6f050ed5f5a355b25d364898334fb5273d87318f738d6f2db7ceec5bebaa8ffa89f4eb145de7b4fb8eb494488a699322cc9807eb9f77b534fdb9eaa4f8059c669fec8d97c29b60fef6c62eeeeea697b2e4dafba794bcf2ac58ba7e19352a07b38bfa39fb87405ec3f8ada31e7b3acee9ea9388d7098f958ab547372cb0b40be31078e6406e6cc0ba3baad3b272aebf2f174bc7299ce2c5eefdbc2b262f12bbde5efa127599d911dd794fd96abf02df6a28cfb25bb7913cbc232d29a587925127cdb2e636331853b6915e993dd7840c1019eefb2462e3646fda4d111aa4926c5e52b2cc9c6628b7f8ed0c9dd570de724c9b2e9cb00e6e6c9c3264a4791d48b74d7cfd923e9632a283568c8e98acaa45d5940fe411c2ffb5cdc7fc8c3aedf008503e185e272be65c3d16e5c19c6ad580947869df341f136732bb6de60c87fe20750c21ec1f3bb20b72666bb9c1d6d0f2c87d154e1727047766342dbb2091caf1c17a6265738a0ba478bfa2c15b7cd3e95c1e8f3711acf2244fff50fdab046715619510e81aab9794520025bcfd5deef5d699c8434ee4ce8f624140af9d6d57834c9661861925ac9817659ed89af527a1a28d38362a12ccd5dcdfa8c84742af44929a5cdc31f9efaad69a697a93e14f4d8aa7bf924189a68b01d0c0ccb55e69e102826c846ae2d13339d3c7f57435da002b438b1d9cd649b50bf3e8c247ed56bae54729a03b2c8009ccfcdc26d3b78dcc1fa9c0f53df99c81686989adf4273ecd8a5d975bd1c9c1601edf9f2952e3324450db4c523cf2c9a862d913905687a835cc538e38ba5e1ad3a30980cf1167f592d8a0f08f5fe4cbe595d1d132c71920bf62ce8cea43bb7cb7d59c7dc5ee6f46f12e48abf2d900f9395c47abfdac050ccd735009a395f961edb20394988815978ae2fa9cfc889161cb920bebc9b403fa5494c2266006ea44cd8528702e9d440409672691081ad61758f1d1e3b70dc5fdda2d9dc734be6b7190cd8a83c7448211992f252234e6c18e7a601ed1952b47ec335e028dff00ae4961c6aca4723f641e99f94e4a96204da8bf31f5feed2487f1b95f265501b676e8262f5bcc52824accc1e2b4fa8458cd693c2df92582ae6509b59ad28ff729564c5312c703c78579334ee77958bbbeb52e303b6bf0bacee550909602a8e9b865a9c1956e76e80035f9f4d1faf03e4729cab60507adfaed591e420ed5322f2592864f3c215f6ade725ef65371b29ead42704a7ed129b7b2df78963046a6d21dbf5d374f420848678185a046dc303ec3a86093a820eaa02087350d9703e6bc373b9dd331fdc5aca084f6c3d2aa113e880a61aa01b2e490bf6735c684ca8c0493267a901893923f33e0ae59f8bdd5d8e0b08fc0901e872fcbac97732e3f0e3ddf7d55e17b85dacef2193cc2cc2746dbe4cf3daba3065b42df96e76a2f5ad464bccde5bf25cfce98e24c299447985c8013834bc406d8231495318e5e5b3f912c7d47783fd79674b863feb3935d5964d180d0e24d24d294b825ef5b36d154fdc39d8fe86703026165f0a9e67bd3222044c0011bb5b47e31bed557f0de3cfa9b2c6bc83296b2e22e80b27a263eebcfcb7028c113eeb8c6cf54911c40e954eacd84676ea38f2a1efb7c9be423c8717c98e3c5e668bf1163d25fcf10b751f4d415eb9cdd7c049c29f0fb0716190ead889246a0032032a4032f8cc5c14358915e9454f904c237477e78d3ff0559640f2fbc65058d5fd7d7c4903f4440ae22aa02606ad2429d42c424b710446336796dcb3b97ce4049e7ec664f8ed2ed6ed185f3874cc5289cc2d41335f887e4a04f91c163ef3ad426d6900987db5edf2657310ecc1aeb8514194e8a9f6896a6cbbe847d7377ed0cc2d85da82ba00050311196ea59657fc931a8f9c945d31c448854841beb1e10454f1a5d02ef86ece26245a12923d7baa8284b1081d1b308a218d293367ef3f9d4056090d864dce6bb30c0117bc7f4c7751526b6bb8d55cec46b2762aca68b39969edefb1ad9c961eb75b9cb196651496fa8fe2e874bd395c804894be4135c156694810b4a24dd55265828e3dfb7b8d826525d54046d0eff24b797ca43fc42976a4f410971362bb2789c89aab602da2562c4af19e00cf8c0cae0f4ffdb40241333d64662aec4d8977a70cd7d548873d26c147be4b112ef13c8b0407b96310f5727d39e75b8a4f560bdaa241a1dc6f615b5643e6a2248bbbc0d381f1406e7adcb7a45a437d6b96b142e19f9fd93ba53f443ed3d5e37771eba3c12fd38dcc63d35bc75d5af550b246a04aeb8ae597fa7ebf60475e92c9bd1d21676aaddfda9375b066d2e23349666e5970174122462fc3b7213dcf60491c8da994f8d1a764d48c4a9c239f94a73b34429fb3c7c6070441b22fea2e05c80c972476649dbeb5e275365255d7c5f46212a85a74083e7107e2547fc46633acad7577b6544f8af50e07aec150a242359ff2a3f0d0b8297c864b03af9795f05edd10fd5400d064399c8c08d21d512eb3fdb08781bd5c914c6dd028f37737052aacceeb1881d56109a2976f39fb87e143ed8b15720429f10eb2b141a5f1b1ded8ca4fbb921b954d683cb83758c3b02fb618cfb6b2fe2227571b9ef69bc0ac9efe6fece4ba887c5392b89933e2adaa3adc6490c280e98f0c0298c66d17f49e8e44d93090a543f791248ba7b11cd957e7007f9b1f96da8b8a91894bc6f1fbbb8c29d2d0cb05586f2859c5009fd4a718522a591180cabe57873dccc11f651bc023e1d90f7cd7d7f57677e81896b3d5ca5d0e26dabd58d0772ffc319cf7bb035df4d124ec443583a7702da0a522aa88d1fc816b193883c77c0bfa317558f13cbc6b17827c4956770b8292202fb4f19f49438ce4fbc858f0c276d94e337698b4f5d5ebed4a40d0167badc70db43961143bd942ffff346d96cfd0dc87350c851f3bdec223dfc68efea869c528295645b688c53183e1c9742cb6f57b1a82e4724a61b0ef42256dc5f2ebd639985edc5af1fb98ec77e783f1925db4dacfef6a7b90f8cb59dda11bd69892e22d081b43a70f5028cdaae50b32f6e5d40085d6fdf5037b7c62bc406ea1881aea057e30f02145792722eb25b26aa531aacd89093f73aa8a8fc405fce2b09e4c23eb1118987cb01110e638895a5862cd9d70e6a778ee0268840a2b58322806a051c361e1f3caad36a75b3f7e6c6b76a5fdaff157c66079e91b091f14be21656ed0d0768c018c80c163a64bd50bfd2e4d1296d3d25faf2fa501402419722ce6bf78694e8495cc708afa380e95a4b4e854eca5b962340dd757d886b877b588bd11b4dee435f65d3751716ec4d7d0a7472814e0102bd8eddba6d7a2528145da4490e091f7236501d37925be9fc9b72b1294284409c1424381f71635ab530015d6f36757623f296603824ca8e4e3232ff089a194de49b13558de28e30d567716d8445e10b8cd2fc1a52321952262f35cd3af7205a464ccc0cdd467971fdfe03ad6f8d46366ccfbed1dd566f464c88ddc4faa4ebcb18e308d0b4e55fa16c93eae5003e21918a7c44235e97903953aef1ca38141db1f28d3ef8639608a2c0a73b4da9effb2a0813c7d78cc03742aafdf6c78fcacada195f12d4cb4b34ca5c8ace3f294b4faaf7a8625697ca3381ae17242a416abb9f6363f992a655c1f2452db286c68829d5aec0cccdfc3d9439ff10b7d04b91bf6444d272319927903db1e3e57b2c9ba450fc52d78372f33cc9e2aea469ccb6a3ed56dbc1a07a96502f8e0a9cd96b06b36084322667f5b4a1624efc096d5a7dffe8c7eb438a1d2547088bb6211c85a4ec9ce349f67be2e1fbcd4d6caa3ddcdbf68a3ad4f7a33661263ca9028f648a9d91a5470bfcebc56b0ef7e93d182988bd39442d1488ce5d93f3495809f166f21d756d7f5253fdd341bf0df220c2584340477f0169cc7cdb24c3543f3dc77379d96b01c0f5a2968ad6c5bbfee7518f6756c88cbeff4d708089019611d607db89ce7cdb63a02b13e6d9afbc600110fa19005ab922858989dfd76ce804d0978f2f5da1d9bea00ecdfd1c09b9d80be41ce6a0873e5215c76a5fadcf8584e1260ebe589928255c9b7f47d48b4e8e71b5c94c5509e276f644d1d486f67e61047c1061524a8b36b2a2ca4f1d163a8ad959222836614984c50f9be57d2028dea787db89a86c42482cbfb9a133119486952b949ed3a6ef5a7226b1e95c0624e2aa11f34ce6fa68c08af12e35914b23d71bb4b8a70fde2dba6b441c5d29c6c428eb9a8760fe345c36c375c1f22821417b8a09f9010c6a5a0892a8e1e062729575648d479e244cd352fe841faef576e983750a026a9933b24d8c017fdc0347c2b90294c11cad8d345b7dd12ac7f0cf4d1eee9a0280759995bf6c71dff9467b1b4f4ae711383a92e43667a9e7206f11bf96f69ad0a34d0e9367fd98716405bfca6114598e0ce2cb90521aec542b97ef79837ba9b5d88832b287383167cb7b9ee7d95cb0de159c00008bd84ddb9b0707a496852fbe7a1cf2aeef2f45481f110f5c673c601faa510b100a50930cd979b71f399577d26d480db015bb5e59e03271c3776c1157304324a24131f599a52626e8d38613dda9f0d35144822a6cc586c1d92e74f520be5a70625fe0d33ad0ff8b15c03158f50560e7fb487a4d92e63931acf89da78e9eeda94ea3ff0e8ac2dc2fbf0120a16a2294ae86a849a1bb80d53220ec13d995a0fb3f7abe4a78c7ebebfb30ffd12c1d7e56f2ba49e44b2ebeba39275710548d1ff5e218e7126a4421b9536e3b12a32a517fba934d02e3840be3c451fd5e6913a90f4ecf880993234729c0bdb1b3a3c0e5d46e8a909f8a6ddd2c2d004f8a56338455649653b24b18417a38ffe9ea56c9df6f55228514612cb308f00c742e155f1b1bf5b04efdfd426529cae8684c5846c032905e25d2bbf3b9a8ff3c015fa3352b0670320db13ba62d6c80ff342c355dad39259b998602c91f9ba488ed4f977430f47b0903e64c798adcc04bb287971d5620a4f5276f7cb8b8f12869bc480de19d71a32f280833efc6f8ceb7422331466244dd03c0cab1f7e7c801126a1213ee501cfd6e119a78d64ccbf9093ba1cb80a57e28f9e60266d6f0b2af231b9a598c1bb3b3287ebea63e57e0fcb5b2600a56998a4febaa8ff34ba6934ec9d2c959414f9d530c91d222927a82cd48c60760d3addcc19c5c8a8970268eec7ac04674bf6e7309ca0761ca525dad7a4ceee98cd6a91dea2302c492455ebc95874ad1fb8e0472538c892efb829cc4c887020ffeb8ac2aaf5daee66f614824f42cfcc1db64288cc2e2781226e68aa92282b7aa157cbe5db8f76b3f180622cc54595ce40b4af9ae39b173e7619ed1273f3a0d1c0e119022a26b39492f6c8a9a38288713a7416f6230ae45ba7b56326f1061ff331b7a29aa22b8eb8661132138bb4623537b618987e71f35b563561e0eb1d4997df0bdde236e41f13b063e5c0ea5277e30c18adb15e188dab93c37d57cc77055748f5eed02aefba3cb518c78888cf45359efa84343d8f2ebb91ab627d6534fe974337bd6fe24fb56328da368aca2ba5ba09d00cfec577fe6d452745b22bfec4bec63f316602e53af538f880c97d4d15c4377accb8b35d2366c09b3feb22bd19aedfc4c0ebf05a08e6db306656015c5e56c22a8c8fbf938664109b68a08e2a5df9f82c13997165282037f0412b7a9720c0ede99d222f30baab75759805acc3d43b2aeebba4fd1bfc5d51415a7c234b368227c292d86d3f069378b94955582a074e05a6873ffc0558001ad34ff31ab12c1a36946809add2f69262c8f7fa238ef7259b1299baf2281a5387f82f1c2969f2430f221b25a2d71273db5901a1d5958af154e17ab7f0a09f75772f428fde683b863552cd09032d604d6bb1785473fcf18859f51ed214799bc9cb1017f29e8bd62fd628398d36d3595cf09da6f61b6dd5b2621427ef7e63e824dab42270b46db86a5797fa6c989ac115592e768084d8732669911371b77e0622ab7b0474d7bfd9bf32f4be961cb9773b1ff2e8933a9dccd453fd085899855c3f0b230457682a2ec535ff03443621db34c55ddb18c04985c99e487b7bd45f6d03cfcb51616e2160f3e41b35d0ddb5aeec057b0da6f4937c367db2854dde381d7d898d3b889817e624f4582f436e23867a7e738dd21b363bcd62027a43992486e822c4f5cd3fc94d47ea4abd7d460966807d651aa31fda3bc3242834354c566bb57a93f2a5245e16b5757bd7adb2e50c372ada464395ee5b7d3de7fd7f2491d5d66eadc50418d632393e729d9d5407c4e1ff3cf0f30fe823b53bb40a706155e709c0d66e81488340e1cb1fd58607fc1f7be8480beee7b9b501504668254c52c7862e20a6ff5fca0e0220fdd540f0d63997ce0df879a9d6571ce6f05490e5d22ca015467da2bed047c6b450ebddc097f2a15650e520562ce8f4f4775516296117043d56174865e61dcd346b013ed8f7c62daf0fb6741e87c030b8b507263ae6ac8a1c7bd11ef352ea3e50fa3244d164ac3e18f22dc9a2f601de4107e1a0a89643be7abfaef8794c0719a70f24998453cffc6dbaca928113f47836a5efaa993256c7c1c7d13dee566c6385c6f0917452e9d46eb3f95adf3b9c1c5bfcbbd3a31ae5171a6acd60f4b1f89201a5f1ab422b3438af5697f883000bcd4bd82d8fc56e6b4cea2e591a5cf22b22d746d9bd4783d9b252c2783416c384a5d345c7c636976186ab3ad7ea57234ffa642d4f7b42bc903337a6751afc515258074fdff9ba8caff4a7e5f0870580062d45208d9b643f3f1d3dbc3c99009482b9eaec406a31a8bccd5578c1999e1e97308cfed3edb0fa767022a3e6ac10d91c876e47dcb8acdf1a61a8a3749e33f8370335675b23efa211bc8cf50f0bacc0274e3b6952dbca3d93a7611d5995f3d1bb47dd545c27c283cb190c45c87f420f059552227af8f8e1679fc7bf1c38c3e207e8936c86bd60482e6c42df6ed5d16a8cea261b14ded991c07361aa4c8162b55090648b301a073995539a984cd897308f6a948be98acfd913570d9513d7b1c057e617f95573892beed8b204c168f498b55f4b0b8c1613b34944565577ac823d78fa11bae38aab42de9c50f17e6dd8a2a08dd2619c740d1882fed10caa8de12e8a80da94dd24018f7e9f31a8d9006f293531e15f90fee15b48fff39c3d752c51765dc9b06248664124a5156167b953431fe776f51420308880a490d9a336762edb4d754398dd9ee676d86f912d2e648b151e038a0830f60c4226f30aa7cdebe496ebaf27372373ccdef9f8464dafc2ecc6bfbf227a8588d998086f238e2e655fcc3a00635143f0bf1f06af7e333ab09412b09d9a82b1a40cc23ae813ee6228cb98ede4685fe63385cfd9659f73ff877493a1a8562be8a05ae800033990c6149e4a3679c9157dde9fc57101c82794ebb6488e9c07a3eea5dff3b0909342bfcf610c4b264bacf0790d97a8084fb056d82e49d4e6cd9e96959069f9071e52731fd144b223c40ceeaf3151225579052d9decfbc658f814a2826cdc68cd8ac336029a4c0c78bb0cd882cb0d9bc26bd05438a0f759939186a8efd7c7dfdfed5bbeec934d8414c66056dcd0bbc84b15f49f87c876d28d553d435a3eeb2ebe602822ae6ab85a3e91257c6035298fe32f93a8527e9e71c7ff8178dc208a3472c9dfdbce5a1d53ae93102b700f49babc45cfaef781e73a81dd2c0e230b10b7ba240c7722e7a74827e8be7263b5c94f3ff72f9b225009c44737342a23d73d30f6bf2567d142cc6105f48dee6c7b63f455cbb8e2c52a33ac58f4c21e5f363f9d302e00fb76f3aedbeb12b50426c44c36800f69141a4c4b22563b1a76823970f95254d1130c38cebe5026e795c03af3f49143e6f9a39f4be93e1d4eccb7b2885eb76940b6fde5d313cfae6b9dce71358e7d9ef3b7cec7e99707f4d1108bcc0f63f14a186281b1ab1904871c21ebbe6418d15e4b24618d111fe5a13a7d7f6fcf8cd4e5a3e5be124951776a793ed2d8de1cc79760874be39c99b9cf9016c7a9251d2c10a4b009d8cc68222a47f7b9f0d5af95ea83232eee419448c2c340a400b3ea945f8c35cdd2cf5c7e1aaabae4a9e38048d74271023805aad23029b47eb5ecbc49d7b50b8fb93ba8eb8e5ab7e6f2c13577446ef84498028b93708a16c7f473c317e3fa1e429164340faa38c2cd6e4cdf1b6358b18f99b43c667dc46910e90f245a7e7181dfb32a2f8aa6215e0c5212d688c6445897afea77147c0f97e0a84af73e220a0b97edc5b5b2538b2d6c8d239a26ef0e3c7d36747f1b739d117db221d611b04eb328db031fd2a4e54a1e137407a3a190e080db8681e6931db1c245a76b2733c16b05b64f44d3e28fd9bed082250", 0x2000, &(0x7f0000000a80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)={0x20, 0x0, 0x100000000003ff, {0x0, 0x12}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r2, &(0x7f00000082c0)="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", 0x2000, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="58000000000000000600000000000000050000000000003002000000000000002c00000004000000a66328b77d5b9d95fb079df5b6fc4347ca7d77e0eebf9c76c25369cc41791fa63b97549669060000002e2de00000002887171cc7e9d5c7ddc3f2bd00000000"], 0x0, 0x0, 0x0, 0x0})
getdents64(r4, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_mr_cache\x00')
ioctl$TUNSETQUEUE(0xffffffffffffffff, 0x400454d9, 0x0)
r5 = getpgrp(0x0)
sched_setaffinity(r5, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0xc, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = getpid()
sched_setscheduler(r6, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r7 = syz_clone(0x2008000, 0x0, 0xfffffffffffffee0, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r7, 0x1, 0x0)
r8 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r8, &(0x7f0000019680)=""/102392, 0x18ff8)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)

10m6.636863244s ago: executing program 0 (id=655):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'geneve1\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000740)=@newlink={0x44, 0x10, 0x1, 0x600, 0x0, {0x0, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x24, 0x1a, 0x0, 0x1, [@AF_INET={0x8, 0x2, 0x0, 0x1, {0x4}}, @AF_INET6={0x18, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @empty}]}]}]}, 0x44}}, 0x0)

10m3.12886612s ago: executing program 0 (id=660):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_connect(0x0, 0xdd5, &(0x7f0000001800)=ANY=[@ANYBLOB="120110038f08e140ac051d92bec2010203010902c30d040306104e0904080605035600a6090582031000f80d01fa"], &(0x7f0000001080)={0x0, 0x0, 0x0, 0x0})
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)={0x1c, 0x46, 0x107, 0xfffffffe, 0x0, {0x1, 0x7c}, [@nested={0x8, 0x2, 0x0, 0x1, [@typed={0x4, 0x7, 0x0, 0x0, @binary}]}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
r1 = socket$netlink(0x10, 0x3, 0x15)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'veth0_to_hsr\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newqdisc={0x24, 0x24, 0xd0f, 0x70bd2b, 0x0, {0x60, 0x0, 0x0, r2, {0x0, 0x8}, {0xffff, 0xffff}, {0xfff2, 0xc}}}, 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x3000c81c)
syz_emit_ethernet(0x80, &(0x7f0000000100)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x1, 0x61, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x4e24, 0x4e20, 0x4d, 0x0, @wg=@initiation={0x1, 0x1, "65a252e7cb7a5918c004a9971a46afced2c32642b1ec9fe34818d8ccd82041b7", "c930713c550e74ee13c2638ac75b2a9666efd31a34fce4498df8105d8bd8ed283a220c3a9becd8a70d3607ea8270d351", "ae12e16b560f2f8ac4ca3e745ce285f12f6e8719e7f1e7f286a68f76", {"980aa8fb8f80d69f1fb587086447e93e", "55e824bb69e833bd36300b088233545a"}}}}}}}, 0x0)
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f00000001c0)={{{@in6=@dev, @in6=@loopback}}, {{@in6=@mcast1}, 0x0, @in6=@initdev}}, &(0x7f0000000040)=0xe8)
socket$netlink(0x10, 0x3, 0xb)

10m2.836390246s ago: executing program 35 (id=660):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_connect(0x0, 0xdd5, &(0x7f0000001800)=ANY=[@ANYBLOB="120110038f08e140ac051d92bec2010203010902c30d040306104e0904080605035600a6090582031000f80d01fa"], &(0x7f0000001080)={0x0, 0x0, 0x0, 0x0})
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)={0x1c, 0x46, 0x107, 0xfffffffe, 0x0, {0x1, 0x7c}, [@nested={0x8, 0x2, 0x0, 0x1, [@typed={0x4, 0x7, 0x0, 0x0, @binary}]}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
r1 = socket$netlink(0x10, 0x3, 0x15)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'veth0_to_hsr\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newqdisc={0x24, 0x24, 0xd0f, 0x70bd2b, 0x0, {0x60, 0x0, 0x0, r2, {0x0, 0x8}, {0xffff, 0xffff}, {0xfff2, 0xc}}}, 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x3000c81c)
syz_emit_ethernet(0x80, &(0x7f0000000100)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x1, 0x61, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x4e24, 0x4e20, 0x4d, 0x0, @wg=@initiation={0x1, 0x1, "65a252e7cb7a5918c004a9971a46afced2c32642b1ec9fe34818d8ccd82041b7", "c930713c550e74ee13c2638ac75b2a9666efd31a34fce4498df8105d8bd8ed283a220c3a9becd8a70d3607ea8270d351", "ae12e16b560f2f8ac4ca3e745ce285f12f6e8719e7f1e7f286a68f76", {"980aa8fb8f80d69f1fb587086447e93e", "55e824bb69e833bd36300b088233545a"}}}}}}}, 0x0)
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f00000001c0)={{{@in6=@dev, @in6=@loopback}}, {{@in6=@mcast1}, 0x0, @in6=@initdev}}, &(0x7f0000000040)=0xe8)
socket$netlink(0x10, 0x3, 0xb)

4m39.530345454s ago: executing program 6 (id=1004):
r0 = syz_open_procfs(0x0, &(0x7f0000000480)='net/ip_tables_matches\x00')
fchdir(r0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x6, 0x8, 0x1}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000a40)=ANY=[@ANYBLOB="180000000000e3ff0000", @ANYRES32=r1, @ANYRES8=r0], &(0x7f0000000c40)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000880)={{r1}, 0x0, &(0x7f0000000840)='%pK    \x00'}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f0000000b80)='tlb_flush\x00', r2}, 0x10)
timer_settime(0x0, 0x1, &(0x7f0000040fe0)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000740)={r2, 0xe0, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, &(0x7f0000000440)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x1, 0x5, &(0x7f00000004c0)=[0x0], &(0x7f0000000500)=[0x0, 0x0, 0x0, 0x0, 0x0], <r3=>0x0, 0x71, &(0x7f0000000540)=[{}, {}, {}, {}], 0x20, 0x10, &(0x7f0000000580), &(0x7f00000005c0), 0x8, 0x45, 0x8, 0x8, &(0x7f0000000600)}}, 0x10)
move_mount(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x100)
pipe2$9p(&(0x7f0000000140)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
r6 = dup(r5)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r4, @ANYBLOB='(wfdno=', @ANYRESHEX=r6, @ANYBLOB=',msize=0x0000000000001000,k'])
r7 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000780)={0x0, 0x10, 0x10}, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0xff21b6cf8939b53b, 0x8, &(0x7f0000000200)=@raw=[@alu={0x4, 0x1, 0x5, 0xb, 0xa, 0xffffffffffffffff, 0xfffffffffffffffc}, @initr0={0x18, 0x0, 0x0, 0x0, 0x3800, 0x0, 0x0, 0x0, 0xff}, @tail_call={{0x18, 0x2, 0x1, 0x0, r1}}], &(0x7f0000000240)='GPL\x00', 0x6bc1, 0xa0, &(0x7f0000000280)=""/160, 0x82100, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x8, &(0x7f00000003c0)={0x9, 0x5}, 0x8, 0x10, &(0x7f0000000400)={0x0, 0xd, 0x7fffffff, 0x5}, 0x10, r3, 0xffffffffffffffff, 0x0, &(0x7f00000007c0)=[r0, 0xffffffffffffffff, r1, r0, 0xffffffffffffffff, r6, r1, r7, r0], 0x0, 0x10, 0x3ff}, 0x94)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), r8)
r10 = socket(0x1e, 0x1, 0x0)
connect$tipc(r10, &(0x7f0000000000)=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x10)
write$binfmt_misc(r10, &(0x7f0000000080), 0x2000011a)
sendmsg$TIPC_NL_NET_SET(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={0x20, r9, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x4}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x0)

4m36.792475607s ago: executing program 6 (id=1011):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_emit_ethernet(0x46, &(0x7f0000000b40)={@multicast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "122d92", 0x10, 0x3a, 0xff, @remote, @mcast2, {[], @ni={0x193, 0x0, 0x0, 0x6, 0x332, 0xe7f}}}}}}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan0\x00'})
sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000100)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRESDEC, @ANYBLOB="010149bd7000000088002b00005cc38ee8d0", @ANYRES16=r0, @ANYBLOB="040046000500340076000200080026"], 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x8050)
socket$inet6_sctp(0xa, 0x1, 0x84)
close(0x3)
r1 = socket(0x2, 0x80805, 0x0)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r2, 0x0)
close(0x3)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000200)={<r3=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r2, 0x84, 0x7a, &(0x7f0000000340)={r3, @in={{0x2, 0xce23, @broadcast}}}, &(0x7f0000000040)=0x84)
sendmmsg$inet_sctp(r1, &(0x7f00000032c0)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="30000000000000008400000001000000000000017c"], 0x30}], 0x1, 0x0)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x6, &(0x7f0000000240)={0x0, @in6={{0xa, 0xffff, 0x9, @dev={0xfe, 0x80, '\x00', 0x29}, 0x7}}}, &(0x7f00000000c0)=0x84)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$kvm(0xffffff9c, &(0x7f00000001c0), 0x841, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
socket$netlink(0x10, 0x3, 0xa)
ioctl$KVM_GET_XCRS(r6, 0x8188aea6, &(0x7f0000000600))
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bf8100000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018210000", @ANYRES32=r7, @ANYBLOB="0000000002000000b705000008000000850000005e00000095"], &(0x7f0000000300)='GPL\x00', 0x4, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x800}, 0x94)
ioctl$KVM_GET_ONE_REG(r6, 0x4010aeab, &(0x7f0000000180)=@arm64_fw={0x6030000000140002, 0x0})
r8 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x162e02, 0x0)
r9 = dup(r8)
fallocate(r9, 0x10, 0x0, 0x72000)
ioctl$VIDIOC_G_CTRL(r9, 0xc008561b, &(0x7f0000000080)={0x1, 0xece6})
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_xfrm(0x10, 0x3, 0x6)

4m34.373109298s ago: executing program 6 (id=1016):
bind$pptp(0xffffffffffffffff, &(0x7f0000000bc0)={0x18, 0x2, {0x0, @multicast2}}, 0x1e)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0)
r0 = syz_usb_connect(0x2, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000c4b20710200e0101"], 0x0)
syz_usb_control_io(r0, &(0x7f00000006c0)={0x2c, &(0x7f0000000500)={0x20, 0x6, 0x2c, {0x2c, 0x21, "9240f86b4d59001498adc2a3a931232a88dec4f3f0775b2c6e5954752c4345f729bf83ddcad7c1dc5a9d"}}, &(0x7f0000000540)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x2009}}, &(0x7f0000000580)={0x0, 0xf, 0x92, {0x5, 0xf, 0x92, 0x3, [@generic={0x6f, 0x10, 0x1, "e3e88aab7340cb0876f5db44eafe8b7086f5bce00d92cbd2e6928ff870f5e079553d7961868953421c25772dc118995c7f75316bddd950262c49fb9e7c071d726c6e92fce545d4dcea926cffa61a55d60534ac982a9ec911830909a7ff1faa28a0774a7400e3d2362eaaba87"}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x0, 0xc, 0x81, 0xff6}, @ss_container_id={0x14, 0x10, 0x4, 0x4, "b89e0694cf303719d320668d1ab2ea31"}]}}, &(0x7f0000000640)={0x20, 0x29, 0xf, {0xf, 0x29, 0x8, 0x2, 0x40, 0x8, "706249c5", "e2c2cb6a"}}, &(0x7f0000000680)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x9, 0x0, 0x5, 0x1, 0x7f, 0xff, 0x8}}}, &(0x7f0000000b00)={0x84, &(0x7f0000000700)={0x20, 0xf, 0x25, "19d1af55665fbb42007ad1a2033bfe609b6276b2050b96bb383729a7ac968c5398e0e17927"}, &(0x7f0000000740)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000780)={0x0, 0x8, 0x1, 0x7f}, &(0x7f00000007c0)={0x20, 0x0, 0x4, {0x0, 0x1}}, &(0x7f0000000800)={0x20, 0x0, 0x8, {0x4, 0x20, [0xff00]}}, &(0x7f0000000840)={0x40, 0x7, 0x2, 0x4}, &(0x7f0000000880)={0x40, 0x9, 0x1, 0x73}, &(0x7f00000008c0)={0x40, 0xb, 0x2, "32e9"}, &(0x7f0000000900)={0x40, 0xf, 0x2, 0x5}, &(0x7f0000000940)={0x40, 0x13, 0x6}, &(0x7f0000000980)={0x40, 0x17, 0x6, @local}, &(0x7f00000009c0)={0x40, 0x19, 0x2, "e820"}, &(0x7f0000000a00)={0x40, 0x1a, 0x2, 0x2007}, &(0x7f0000000a40)={0x40, 0x1c, 0x1, 0x8}, &(0x7f0000000a80)={0x40, 0x1e, 0x1, 0x40}, &(0x7f0000000ac0)={0x40, 0x21, 0x1, 0x2}})
syz_usb_connect$printer(0x1, 0x2d, &(0x7f0000000040)={{0x12, 0x1, 0x310, 0x0, 0x0, 0x0, 0x10, 0x4b8, 0x202, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x1, 0x1, 0x30, 0x4, [{{0x9, 0x4, 0x0, 0x6, 0x2, 0x7, 0x1, 0x2, 0xfa, "", {{{0x9, 0x5, 0x1, 0x2, 0x3ff, 0x1, 0x3, 0x7}}}}}]}}]}}, &(0x7f0000000440)={0xa, &(0x7f0000000080)={0xa, 0x6, 0x250, 0xce, 0x3f, 0x6, 0x20, 0xf}, 0x127, &(0x7f00000000c0)={0x5, 0xf, 0x127, 0x6, [@wireless={0xb, 0x10, 0x1, 0x8, 0x1a, 0x9, 0xff, 0x2f8b, 0x7}, @ssp_cap={0x20, 0x10, 0xa, 0xb8, 0x5, 0x5, 0xff1e, 0x9, [0xcf, 0x30, 0xff3fc0, 0xc0c0, 0xfff0]}, @ss_container_id={0x14, 0x10, 0x4, 0x5, "251cebf8ec15b575cec2ddf7b84dce15"}, @ptm_cap={0x3}, @wireless={0xb, 0x10, 0x1, 0x2, 0x78, 0x5, 0x10, 0x7, 0x9}, @generic={0xd5, 0x10, 0x4, "faffe1d87d299c2613cbf28af09d6ae35c2f4629e768e36d3faa01c7d70ad1440fe88f68d72e775f8c9fc441f9ee52d69bccbf794d91cf55a110c36cf386a9f098cf6df09e2ffc945596cef74fae8909dcda0a06486a541f51e0b75b618a9f9597fcbd7c75518de0661fd610e0f86aebb42d620b1c7f15652dbc7609b47d9a3939357a79a54222721f1987f3f4b89b277b9e9b501bb0e3bb3501b575b163014a4dc87bee2e13b53f1c69d86e6bc72870c8a884c1513151791fc259878a6e936b04ce36f13bc6d558d18bace6246288c66d36"}]}, 0x6, [{0x4, &(0x7f0000000200)=@lang_id={0x4, 0x3, 0x41c}}, {0x35, &(0x7f0000000240)=@string={0x35, 0x3, "d9d588267b569e52e464b2b26cdb69c08ea614437e200eb4bd53d1a4c137948b1ebddf1fde65b146ad0ea0175d2a297123c2b9"}}, {0xc1, &(0x7f0000000280)=@string={0xc1, 0x3, "4ea2716672894fada31a714fa76c553c0f009a4c7a26a17682e60d0b4516bc35da7943b72095c3a0995867d2959de58557678198c8ff1fc67fcf65eb98a6f61ae5a05acf0f772eca657462083bc1a4708548efb083219d15448d9cdb6dc8b25ff73d0696c7ee07c79d345ed9654071d55bb3910d26db01d24a181cbbd510cf73215e0c4c9b4f0267aa1bb2d9c42876b395b2d79d0e6a40e4bd40bbe51038c561b506a01de11f2f70cb48ce60c05a3bc0ff8c8595c78a8339323818823f03b2"}}, {0x32, &(0x7f0000000380)=@string={0x32, 0x3, "b262baaf899610480feee6554e0753324dbba9dd52aecf86d1d01df61241e1193ea690c445d4441bf12f98a8917bbc0e"}}, {0x4, &(0x7f00000003c0)=@lang_id={0x4, 0x3, 0x5c62}}, {0x4, &(0x7f0000000400)=@lang_id={0x4, 0x3, 0x860}}]})
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_FLAG_CMD(r1, 0x8983, &(0x7f00000004c0)={0x7, 'ipvlan0\x00', {0xb1b3}, 0x9})

4m32.063049968s ago: executing program 6 (id=1019):
syz_usb_connect(0x3, 0x26, &(0x7f0000000000)=ANY=[@ANYBLOB="120100025f85e208ea3d7236f302010203010902140001170310020904200500ef0101"], 0x0)

4m26.569095799s ago: executing program 6 (id=1027):
socket$inet6_sctp(0xa, 0x5, 0x84)
keyctl$dh_compute(0x17, &(0x7f0000000100), 0x0, 0x0, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffff23})
syz_open_dev$vim2m(&(0x7f0000000680), 0x10000, 0x2)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$inet6(r0, &(0x7f0000000000)={&(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c, 0x0, 0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="180000000000000029000000050000000000020100000000e7d614b5bc04d43d0666c7d58197a944821dc68e8f90b8e2538f832ddabafeb34beaa4e75d7907f71cf93cf852ac59379fb697fb9d99b254b241599d362b7fc32e4ee967f4f1e46eaf2a1de3110c31352ee243e6911036bbdf9e13b48aeede147bd1fa009b7f16e70fff224e50b81485197a8110a9feb63561c4bd5a38a32d85684a195bb5dbc2970f20e2c6243c8a1a90c4ea9bf49a3ed1501f5042c651010fa06a564cc0b16de65ec00cbcc73d7b11520d961aff316939"], 0x18}, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000080)='netlink_extack\x00', r1}, 0x10)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000006c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x20000000, &(0x7f0000000000)={<r3=>0xffffffffffffffff}, 0x13f, 0x9}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY(r2, &(0x7f0000000240)={0x13, 0x10, 0x7, {0x0, r3, 0x3}}, 0x18)
openat$cachefiles(0xffffffffffffff9c, &(0x7f00000002c0), 0x4a180, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000500)='status\x00')
r5 = getpgrp(0x0)
sched_setaffinity(r5, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = getpid()
sched_setscheduler(r6, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r7 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r7, 0x1, 0x0)
r8 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r8, &(0x7f0000019680)=""/102392, 0x18ff8)
add_key$user(&(0x7f0000000100), &(0x7f00000001c0)={'syz', 0x3}, &(0x7f0000000200), 0x0, 0xffffffffffffffff)
lseek(r8, 0x9, 0x0)
r9 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000280)={0x10004, 0x6, 0x231d5000, 0x1000, &(0x7f0000215000/0x1000)=nil})
ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x2)

4m23.288345276s ago: executing program 6 (id=1032):
syz_open_dev$tty1(0xc, 0x4, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket(0x28, 0x5, 0x0)
r3 = socket$xdp(0x2c, 0x3, 0x0)
getsockopt$XDP_MMAP_OFFSETS(r3, 0x11b, 0x1, 0x0, 0x0)

4m7.222190448s ago: executing program 36 (id=1032):
syz_open_dev$tty1(0xc, 0x4, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket(0x28, 0x5, 0x0)
r3 = socket$xdp(0x2c, 0x3, 0x0)
getsockopt$XDP_MMAP_OFFSETS(r3, 0x11b, 0x1, 0x0, 0x0)

2m22.700700119s ago: executing program 8 (id=1216):
socket$inet_sctp(0x2, 0x1, 0x84)
mount(&(0x7f0000000000)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000000c0)='.\x00', &(0x7f0000000100)='btrfs\x00', 0x210818, 0x0)
pipe2$9p(&(0x7f00000000c0), 0x0)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0xd, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x5c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}, @NFTA_SET_EXPR={0x20, 0x11, 0x0, 0x1, @quota={{0xa}, @val={0x10, 0x2, 0x0, 0x1, [@NFTA_QUOTA_BYTES={0xc}]}}}]}, @NFT_MSG_NEWSETELEM={0x3c, 0xc, 0xa, 0x101, 0x0, 0x0, {0x7}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}]}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xe0}}, 0x20008844)

2m19.563882684s ago: executing program 8 (id=1220):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
socket$vsock_stream(0x28, 0x1, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$MAP_CREATE_TAIL_CALL(0x9, &(0x7f0000000380)=ANY=[@ANYBLOB="0300000004"], 0xc)

2m16.305496678s ago: executing program 8 (id=1224):
r0 = socket(0x2, 0x80805, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r1, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000200)={<r2=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f0000000240)={r2, 0x0, 0x2, "c298"}, 0xa) (fail_nth: 2)

2m12.269393495s ago: executing program 8 (id=1227):
personality(0xbe4e602dc9e6c1d3)
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$AUTOFS_IOC_FAIL(0xffffffffffffffff, 0x4c80, 0x7000000)
r4 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000540)=ANY=[@ANYBLOB="1200000081eb5ef63dc1a1fbfccfa76992f996e0864fd44a7a86db7e4c4ba61f330fbfd42f13b37bb08de9ddf67f45a050fedaf87243935bfdfb3212629563d92e534b71df312c60a54f9a432fcae7f5e67768dcf4dafd024f6c40e914dc38844fdad166cd39cc2ecc6d0000000040b5b95046495210200000000000"], 0x14)
bpf$MAP_UPDATE_ELEM(0x4, &(0x7f0000000100)={r4, 0x0, 0x0}, 0x20)
uname(&(0x7f00000000c0)=""/167)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-twofish-3way\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000c18000), 0x0)
r6 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r6, &(0x7f00000001c0)={0x3, 0x40, 0xfa00, {{0xa, 0x4e24, 0x2, @ipv4={'\x00', '\xff\xff', @empty}, 0x80000001}, {0xa, 0x4e25, 0x7, @dev={0xfe, 0x80, '\x00', 0xb}}, 0xffffffffffffffff, 0xffff8001}}, 0x48)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x7, &(0x7f00000014c0)=0x10000b, 0x4)
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000280)=@abs={0x1, 0x0, 0x4e22}, 0x6e)

2m8.457897403s ago: executing program 8 (id=1233):
r0 = syz_open_procfs(0x0, &(0x7f0000000480)='net/ip_tables_matches\x00')
fchdir(r0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x6, 0x8, 0x1}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000a40)=ANY=[@ANYBLOB="180000000000e3ff0000", @ANYRES32=r1, @ANYRES8=r0], &(0x7f0000000c40)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000880)={{r1}, &(0x7f0000000800), 0x0}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f0000000b80)='tlb_flush\x00', r2}, 0x10)
timer_settime(0x0, 0x1, &(0x7f0000040fe0)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000740)={r2, 0xe0, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f0000000440)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x1, 0x5, &(0x7f00000004c0)=[0x0], &(0x7f0000000500)=[0x0, 0x0, 0x0, 0x0, 0x0], <r3=>0x0, 0x71, &(0x7f0000000540)=[{}, {}, {}, {}], 0x20, 0x10, &(0x7f0000000580), &(0x7f00000005c0), 0x8, 0x45, 0x8, 0x8, &(0x7f0000000600)}}, 0x10)
move_mount(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x100)
pipe2$9p(&(0x7f0000000140)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
r6 = dup(r5)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r4, @ANYBLOB='(wfdno=', @ANYRESHEX=r6, @ANYBLOB=',msize=0x0000000000001000,k'])
r7 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000780)={0x0, 0x10, 0x10}, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0xff21b6cf8939b53b, 0x8, &(0x7f0000000200)=@raw=[@alu={0x4, 0x1, 0x5, 0xb, 0xa, 0xffffffffffffffff, 0xfffffffffffffffc}, @initr0={0x18, 0x0, 0x0, 0x0, 0x3800, 0x0, 0x0, 0x0, 0xff}, @tail_call={{0x18, 0x2, 0x1, 0x0, r1}}], &(0x7f0000000240)='GPL\x00', 0x6bc1, 0xa0, &(0x7f0000000280)=""/160, 0x82100, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x8, &(0x7f00000003c0)={0x9, 0x5}, 0x8, 0x10, &(0x7f0000000400)={0x0, 0xd, 0x7fffffff, 0x5}, 0x10, r3, 0xffffffffffffffff, 0x0, &(0x7f00000007c0)=[r0, 0xffffffffffffffff, r1, r0, 0xffffffffffffffff, r6, r1, r7, r0], 0x0, 0x10, 0x3ff}, 0x94)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), r8)
r10 = socket(0x1e, 0x1, 0x0)
connect$tipc(r10, &(0x7f0000000000)=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x10)
write$binfmt_misc(r10, &(0x7f0000000080), 0x2000011a)
sendmsg$TIPC_NL_NET_SET(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={0x20, r9, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x4}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x0)

2m5.035115027s ago: executing program 8 (id=1242):
r0 = syz_open_dev$vcsu(&(0x7f0000000000), 0x40, 0x202000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000002140)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={0x28, r2, 0x505, 0x7fc, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0xc, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_NOLEARN={0x5, 0x1e, 0x1}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x400c0d0}, 0x4000004)
sendmsg$NL80211_CMD_ASSOCIATE(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x74, r2, 0x8, 0x70bd2a, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x10001, 0x5c}}}}, [@NL80211_ATTR_HT_CAPABILITY={0x1e, 0x1f, {0x400, 0x0, 0x0, 0x0, {0xfffffffffffffffa, 0x9, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1}, 0x400, 0x9}}, @NL80211_ATTR_HT_CAPABILITY_MASK={0x1e, 0x94, {0x800, 0x3, 0x1, 0x0, {0x10000, 0x0, 0x0, 0x9, 0x0, 0x1, 0x1, 0x0, 0x1}, 0x6, 0xb500, 0x8}}, @NL80211_ATTR_DISABLE_VHT={0x4}, @NL80211_ATTR_VHT_CAPABILITY={0x10, 0x9d, {0x400, {0xfc00, 0x7ff, 0xb0a3, 0x6}}}]}, 0x74}, 0x1, 0x0, 0x0, 0x4}, 0x20000815)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSETS(r4, 0x40045431, &(0x7f0000000180)={0x0, 0x100, 0x0, 0x0, 0x6, "0000fa00ea8000"})
socket(0x2a, 0x2, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000000)='sched_switch\x00', r5, 0x0, 0x400}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$TCSETS2(0xffffffffffffffff, 0x402c542b, &(0x7f0000000140)={0x3, 0x7, 0x49, 0x81, 0x2, "ca3d0064586099b4374718ebd534f7c8e54ac9", 0x7fffffff, 0x80000000})
syz_emit_vhci(&(0x7f00000039c0)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)

1m49.81889095s ago: executing program 37 (id=1242):
r0 = syz_open_dev$vcsu(&(0x7f0000000000), 0x40, 0x202000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000002140)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={0x28, r2, 0x505, 0x7fc, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0xc, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_NOLEARN={0x5, 0x1e, 0x1}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x400c0d0}, 0x4000004)
sendmsg$NL80211_CMD_ASSOCIATE(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x74, r2, 0x8, 0x70bd2a, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x10001, 0x5c}}}}, [@NL80211_ATTR_HT_CAPABILITY={0x1e, 0x1f, {0x400, 0x0, 0x0, 0x0, {0xfffffffffffffffa, 0x9, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1}, 0x400, 0x9}}, @NL80211_ATTR_HT_CAPABILITY_MASK={0x1e, 0x94, {0x800, 0x3, 0x1, 0x0, {0x10000, 0x0, 0x0, 0x9, 0x0, 0x1, 0x1, 0x0, 0x1}, 0x6, 0xb500, 0x8}}, @NL80211_ATTR_DISABLE_VHT={0x4}, @NL80211_ATTR_VHT_CAPABILITY={0x10, 0x9d, {0x400, {0xfc00, 0x7ff, 0xb0a3, 0x6}}}]}, 0x74}, 0x1, 0x0, 0x0, 0x4}, 0x20000815)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSETS(r4, 0x40045431, &(0x7f0000000180)={0x0, 0x100, 0x0, 0x0, 0x6, "0000fa00ea8000"})
socket(0x2a, 0x2, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000000)='sched_switch\x00', r5, 0x0, 0x400}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$TCSETS2(0xffffffffffffffff, 0x402c542b, &(0x7f0000000140)={0x3, 0x7, 0x49, 0x81, 0x2, "ca3d0064586099b4374718ebd534f7c8e54ac9", 0x7fffffff, 0x80000000})
syz_emit_vhci(&(0x7f00000039c0)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)

1m21.967382419s ago: executing program 7 (id=1299):
openat(0xffffffffffffff9c, 0x0, 0x2, 0x48)
signalfd(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
socket$rxrpc(0x21, 0x2, 0xa)
ppoll(&(0x7f0000000e80), 0x0, 0x0, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x20, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x25dfdbff, {}, [@NHA_OIF={0x8, 0x5, r3}]}, 0x20}}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=@newnexthop={0x38, 0x68, 0x1, 0x100003, 0x7ffffffd, {}, [@NHA_GROUP={0xc, 0x2, [{0x1, 0x15}]}, @NHA_RES_GROUP={0xc, 0xc, 0x0, 0x1, [@NHA_RES_GROUP_BUCKETS={0x6, 0x1, 0x3fd4}]}, @NHA_GROUP_TYPE={0x6, 0x3, 0x1}]}, 0x38}, 0x1, 0x0, 0x0, 0x4008018}, 0x4000080)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000003c0)=@newlink={0x20, 0x10, 0x437, 0x0, 0x0, {0x0, 0x0, 0x0, r3, 0x192}}, 0x20}}, 0x0)

1m19.992529759s ago: executing program 7 (id=1301):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
socket$rxrpc(0x21, 0x2, 0xa)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
gettid()
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(r3, 0x560a, &(0x7f00000006c0)={0x4, 0x0, 0x0, 0x0, 0x132, 0x3})

1m18.519510116s ago: executing program 7 (id=1303):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$inet(0x2, 0x1, 0x100)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
r4 = socket$rxrpc(0x21, 0x2, 0xa)
bind$rxrpc(r4, &(0x7f0000000000)=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x0, @empty}}, 0x24)
listen(r4, 0x80000001)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
shutdown(r0, 0x1)
r5 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r5, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0)
r6 = gettid()
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x14c}}, 0x4c0c8)
tkill(r6, 0xb)
r8 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(r8, 0x560a, &(0x7f00000006c0)={0x4, 0x0, 0x0, 0x0, 0x132, 0x3})
sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000041}, 0x55fdb4595c3d8036)
ioctl$TIOCL_SETSEL(0xffffffffffffffff, 0x541c, &(0x7f0000001900)={0x2, {0xc, 0x117, 0x5, 0x101, 0x200}})

1m17.232712487s ago: executing program 7 (id=1304):
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000180)={'ip6_vti0\x00', &(0x7f0000000280)={'ip6_vti0\x00', 0x0, 0x4, 0x0, 0x3, 0x5, 0x12, @mcast2, @private0, 0x0, 0x8007, 0x100, 0x5}})
sched_setattr(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$inet(r3, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x122}, 0x0)

1m9.257262084s ago: executing program 7 (id=1319):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100"/13], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000300)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="fc0000001900010000000000fcdbdf2500000000000000000000000000000000fe8000000000000000000000000000bb00000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000004000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000001000000000000004400050000000000000000000000000000000000000000022b"], 0xfc}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)
bind$inet(r4, &(0x7f0000000100)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x17}}, 0x10)
setsockopt$sock_int(r4, 0x1, 0x6, &(0x7f0000000000)=0x4, 0x4)
connect$inet(r4, &(0x7f0000000280)={0x2, 0x0, @broadcast}, 0x10)
sendmmsg$inet(r4, &(0x7f0000004d00), 0x7fffffffffffd33, 0x20000890)
connect$inet(r4, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x7a, &(0x7f0000000340)={<r6=>0x0, @in6={{0xa, 0x3, 0x4, @mcast1}}}, &(0x7f0000000040)=0x84)
setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000280)={r6, 0x3ff}, 0x8)

1m8.024604106s ago: executing program 7 (id=1321):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'lo\x00'})
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB="48010000100001000000000000000000fe880000000000000000000000000001fe88000000000000000000000000010100050000000000000a0020005c0000003240af1532606616807306757d16acde7f206e73d2e66ece78f0fe620fd7fe1ddfbf71baccd6bb5546d56a6ba3c37c9c4cd1ec284296cc8c7d14de34a793aed17ad95c1f4cd32245c4abb7786af4c61c6342f529a27f62ab4eddb286b12f861066301317dc7da7f8e27748d4d1592aa24c3212b4e73dd4b9414e2bf17a7e29f0a70101af1c", @ANYRES32=0x0, @ANYRES32=0xee01, @ANYBLOB="ac1414aa0000000000000000000000000000000033000000fc0100000000000000000000000000000000000000000000ffffffffffffffff00"/96], 0x148}, 0x1, 0x0, 0x0, 0x20004001}, 0x0)
connect$pppl2tp(r0, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_MON_GET(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}, 0x1, 0x0, 0x0, 0x24000800}, 0x8000)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000005000)={0x0, 0x0, 0x0}, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000680)={'bridge0\x00', <r7=>0x0})
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, &(0x7f00000005c0)={'batadv0\x00', @random="37b9cc16d2c8"})
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x300, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB="4800000010000104000000000007000000000000", @ANYRES32=r7, @ANYBLOB="3f00000006020400280012800b0001006272696467650000180002800c002e0003000000030000000500070008"], 0x48}, 0x1, 0x0, 0x0, 0x44000}, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x20e280, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
close(0xffffffffffffffff)
sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_MASTER={0x8}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0)

1m0.255266545s ago: executing program 9 (id=1334):
syz_open_dev$tty1(0xc, 0x4, 0x1)
mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000005000/0x4000)=nil)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, 0x0, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000540)=ANY=[@ANYBLOB="200000002c0007012bbd7000ffdbdf25057c000008000180ff200000040003"], 0x20}, 0x1, 0x0, 0x0, 0xc000}, 0x2004ec14)
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x20040801}, 0x20000004)

52.920174341s ago: executing program 38 (id=1321):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'lo\x00'})
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB="48010000100001000000000000000000fe880000000000000000000000000001fe88000000000000000000000000010100050000000000000a0020005c0000003240af1532606616807306757d16acde7f206e73d2e66ece78f0fe620fd7fe1ddfbf71baccd6bb5546d56a6ba3c37c9c4cd1ec284296cc8c7d14de34a793aed17ad95c1f4cd32245c4abb7786af4c61c6342f529a27f62ab4eddb286b12f861066301317dc7da7f8e27748d4d1592aa24c3212b4e73dd4b9414e2bf17a7e29f0a70101af1c", @ANYRES32=0x0, @ANYRES32=0xee01, @ANYBLOB="ac1414aa0000000000000000000000000000000033000000fc0100000000000000000000000000000000000000000000ffffffffffffffff00"/96], 0x148}, 0x1, 0x0, 0x0, 0x20004001}, 0x0)
connect$pppl2tp(r0, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_MON_GET(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}, 0x1, 0x0, 0x0, 0x24000800}, 0x8000)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000005000)={0x0, 0x0, 0x0}, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000680)={'bridge0\x00', <r7=>0x0})
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, &(0x7f00000005c0)={'batadv0\x00', @random="37b9cc16d2c8"})
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x300, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB="4800000010000104000000000007000000000000", @ANYRES32=r7, @ANYBLOB="3f00000006020400280012800b0001006272696467650000180002800c002e0003000000030000000500070008"], 0x48}, 0x1, 0x0, 0x0, 0x44000}, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x20e280, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
close(0xffffffffffffffff)
sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_MASTER={0x8}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0)

51.415236843s ago: executing program 9 (id=1344):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x84042, 0x0)
r1 = syz_open_dev$loop(&(0x7f0000000080), 0x47ffffa, 0x1a6c42)
ioctl$LOOP_CONFIGURE(r1, 0x4c0a, &(0x7f0000001ac0)={r0, 0x2000, {0x0, 0x0, 0x0, 0x0, 0x14a1ff, 0x0, 0x0, 0x1a, 0x1c, "339f020bbe82b398000000000000000000000d0ec0c1b4e9b1c4369d03740250ceaac594b1b3d741dd17c1c50d38ef2a565ef1e83323691c58d66500", "a9103939c787a16c1ca4f837026d1a8554feac911e1cd130e04d528539f3d3289737f0374c72a964a02447a75df8a6ca7f040000000000000072fd29f35239d2", "24431a1e77a68e174f000000000000000010e200", [0x9, 0x400]}})
r2 = dup(r1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000002, 0x28011, r2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000003c0)={0x0}}, 0x0)

51.178998525s ago: executing program 9 (id=1348):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
socket(0x400000000010, 0x3, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000440)='\x00'/16, 0x10)
r3 = accept4(r0, 0x0, 0x0, 0x80000)
r4 = accept4(r3, 0x0, 0x0, 0x0)
sendmmsg$inet6(r4, &(0x7f0000003b80)=[{{0x0, 0xd, &(0x7f00000003c0)=[{&(0x7f00000000c0)="e6", 0x1}], 0x1, 0x0, 0x0, 0x7000300}}, {{0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000440)='&', 0x23fff}], 0x1}, 0xff03}], 0x4000070, 0x8000)

39.302614052s ago: executing program 9 (id=1354):
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000580)=0xe)
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f0000000080)=0x7f)
openat$uinput(0xffffffffffffff9c, 0x0, 0x802, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
socket(0x10, 0x3, 0x0)
r3 = syz_open_dev$video(0x0, 0x8, 0x0)
ioctl$VIDIOC_G_SELECTION(r3, 0xc040565e, 0x0)
ioctl$SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f00000000c0)=0x6)
capget(0x0, 0x0)
read$dsp(r0, &(0x7f00000011c0)=""/4117, 0x200021d5)

35.902869365s ago: executing program 9 (id=1359):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x9, 0x18, 0x8, 0x40, 0x42, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000580), 0x1000, r3}, 0x38)
mount$nfs(0x0, 0x0, 0x0, 0x0, 0x0)

32.659519336s ago: executing program 9 (id=1361):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000002400)=@newlink={0x3c, 0x10, 0x44b, 0x70bd2c, 0x25dfdbfc, {0x7a, 0x0, 0x0, 0x0, 0x1000}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_NF_CALL_ARPTABLES={0x5}]}}}]}, 0x3c}}, 0x0)

17.58787549s ago: executing program 39 (id=1361):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000002400)=@newlink={0x3c, 0x10, 0x44b, 0x70bd2c, 0x25dfdbfc, {0x7a, 0x0, 0x0, 0x0, 0x1000}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_NF_CALL_ARPTABLES={0x5}]}}}]}, 0x3c}}, 0x0)

10.228844522s ago: executing program 3 (id=1385):
syz_usb_connect(0x2, 0x24, &(0x7f0000000100)=ANY=[@ANYBLOB="1201000011620140480b05101e8c00000001090212000100000000090401"], 0x0)
r0 = syz_open_dev$I2C(&(0x7f0000000040), 0x1, 0x2003)
ioctl$I2C_RDWR(r0, 0x707, &(0x7f0000000a40)={&(0x7f0000000380)=[{0x3, 0x6000, 0x22, &(0x7f00000001c0)="74f2f0b618c985b53cb668ea6161e5001843c87830126f22589ce4a218ee4d7526e6"}, {0x8, 0x2a19, 0x0, 0x0}], 0x2})

7.554746068s ago: executing program 5 (id=1388):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
ioctl$SNDCTL_DSP_SYNC(0xffffffffffffffff, 0x5001, 0x0)
capset(&(0x7f0000000040)={0x19980330}, &(0x7f0000000080)={0x6, 0x6, 0x2, 0x87, 0xffffffff, 0x2})
r2 = syz_open_dev$sg(&(0x7f0000000140), 0x6f5e, 0x0)
ioctl$FIBMAP(r2, 0x1, &(0x7f0000000040)=0x85)

7.286597142s ago: executing program 3 (id=1389):
r0 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r0)
getsockname$packet(r0, 0x0, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x1000, 0xffffff81)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
socket(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000480)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = fsopen(&(0x7f0000000000)='rpc_pipefs\x00', 0x0)
ioctl$sock_SIOCBRDELBR(r3, 0x89a1, &(0x7f0000000040)='vcan0\x00')
close(r4)
r5 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCETHTOOL(r5, 0x8946, &(0x7f0000000140)={'veth0_vlan\x00', &(0x7f00000002c0)=@ethtool_sfeatures={0x3b, 0x2, [{0x3ff, 0x2}, {0xffffffff, 0x3}]}})
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)

6.38335774s ago: executing program 5 (id=1390):
prctl$PR_SCHED_CORE(0x3e, 0x10000000001, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x1400200bce)
io_setup(0x2, 0x0)
syz_clone3(&(0x7f0000000080)={0x21800000, 0x0, 0x0, 0x0, {0x27}, 0x0, 0x0, 0x0, 0x0}, 0x58)
io_submit(0x0, 0x1, &(0x7f0000001300)=[0x0])
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
r0 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
setresuid(0x0, 0x0, 0x0)
quotactl$Q_SETQUOTA(0xffffffff80000800, 0x0, 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r3 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000180)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r3}, &(0x7f0000000280), &(0x7f0000000240)=r2}, 0x20)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)

6.113493363s ago: executing program 3 (id=1391):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$alg(0x26, 0x5, 0x0)
ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f00000000c0)={0x2, {0x2, 0x4, 0xb6cf, 0x7, 0x9, 0x1c}})
bind$alg(r4, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(camellia)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
accept4(r4, 0x0, 0x0, 0x800)
ioperm(0x0, 0x2, 0x7e)
r5 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000bbdffc))
r6 = socket$l2tp(0x2, 0x2, 0x73)
readv(r6, &(0x7f0000000280)=[{&(0x7f0000000200)=""/101, 0x65}], 0x1)

5.885140199s ago: executing program 5 (id=1392):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0xa)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_SET_OPTION(r1, &(0x7f00000002c0)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000280)=0x1, 0xffffffffffffffff, 0x0, 0x1, 0x4}}, 0x20)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(0xffffffffffffffff, 0xc10c5541, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r1, 0x0, 0x0)
r2 = socket$l2tp(0x2, 0x2, 0x73)
connect$inet(r2, &(0x7f0000000200)={0x2, 0x0, @local}, 0x10)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
r4 = getpgrp(0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r6 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r6, 0x1, 0x0)
r7 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r7, &(0x7f0000019680)=""/102392, 0x18ff8)
r8 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r8, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @dev, 0x1}, 0x1c)
sendmmsg$inet6(r8, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000040), 0x2, 0x6}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, 0x0, 0x0)

5.050759834s ago: executing program 3 (id=1393):
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r0, &(0x7f0000032680)=""/102392, 0x18ff8)
socket$nl_generic(0x10, 0x3, 0x10)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r1)
sendmsg$NFC_CMD_DEV_UP(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x1c, r2, 0x1, 0x123, 0x234, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}]}, 0x1c}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x800000009)

2.993494328s ago: executing program 5 (id=1394):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10)
write$FUSE_NOTIFY_RESEND(0xffffffffffffffff, 0x0, 0x0)
r4 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000800)={r4, r4, r4}, 0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)={'sha384\x00'}})

2.78075469s ago: executing program 3 (id=1395):
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000300)={0x84, &(0x7f0000000100)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
poll(0x0, 0x0, 0x2ba)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_RATE_GET(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000", @ANYBLOB="0303038000da964de14c"], 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001080)={0x14, 0x17, 0x301, 0x270bd24, 0x25dfdbfa, {0x1}}, 0x14}}, 0x0)
ioctl$FS_IOC_GETVERSION(r1, 0xc0145b0e, 0x0)

1.139784106s ago: executing program 5 (id=1396):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1600000000000000040000000700000000000000", @ANYRES32=0x1], 0x50)
r0 = socket$kcm(0xa, 0x5, 0x0)
r1 = socket$kcm(0x2, 0x5, 0x84)
sendmsg$inet(r1, &(0x7f00000002c0)={&(0x7f0000000180)={0x2, 0x1, @dev}, 0x10, &(0x7f0000001400)=[{&(0x7f0000000380)="c965", 0x2}], 0x1}, 0x865)
setsockopt$sock_attach_bpf(r1, 0x84, 0x1e, &(0x7f0000000240), 0x4)
r2 = socket$kcm(0xa, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x8916, &(0x7f0000000000)={r2})
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x8936, &(0x7f0000000000)={r2})

776.124961ms ago: executing program 5 (id=1397):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
ioctl$SNDCTL_DSP_SYNC(0xffffffffffffffff, 0x5001, 0x0)
capset(&(0x7f0000000040)={0x19980330}, &(0x7f0000000080)={0x6, 0x6, 0x2, 0x87, 0xffffffff, 0x2})
r3 = syz_open_dev$sg(&(0x7f0000000140), 0x6f5e, 0x0)
ioctl$FIBMAP(r3, 0x1, &(0x7f0000000040)=0x85)

0s ago: executing program 3 (id=1398):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0xc0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = socket(0x28, 0x5, 0x0)
r1 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r1, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r1, 0x4)
connect$vsock_stream(r0, &(0x7f0000000080), 0x10)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
close(r2)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000100)={0x18, 0x6, &(0x7f00000001c0)=ANY=[@ANYBLOB="180000000000000000000000ffffff80e500020000000000c500fcff000000007f00feffd100000095"], &(0x7f00000000c0)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='virtio_transport_alloc_pkt\x00', r2}, 0x18)
sendmmsg(r0, &(0x7f0000000b40)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000380)="1b", 0x1}], 0x1}}], 0x1, 0x0)

kernel console output (not intermixed with test programs):

7]  ? __pfx___schedule+0x10/0x10
[  872.380844][ T9657]  ? ref_tracker_alloc+0x2fe/0x450
[  872.380879][ T9657]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  872.380911][ T9657]  ? tun_get+0x1c/0x2f0
[  872.380938][ T9657]  ? tun_get+0x1c/0x2f0
[  872.380973][ T9657]  ? tun_get+0x1c/0x2f0
[  872.380999][ T9657]  ? tun_get+0x1c/0x2f0
[  872.381032][ T9657]  tun_chr_write_iter+0x119/0x200
[  872.381064][ T9657]  vfs_write+0x5d5/0xb40
[  872.381101][ T9657]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  872.381131][ T9657]  ? __pfx_vfs_write+0x10/0x10
[  872.381174][ T9657]  ? __fget_files+0x2a/0x420
[  872.381209][ T9657]  ksys_write+0x14b/0x260
[  872.381244][ T9657]  ? __pfx_ksys_write+0x10/0x10
[  872.381289][ T9657]  do_syscall_64+0xec/0xf80
[  872.381311][ T9657]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  872.381332][ T9657]  ? trace_irq_disable+0x37/0x100
[  872.381354][ T9657]  ? clear_bhb_loop+0x60/0xb0
[  872.381381][ T9657]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  872.381401][ T9657] RIP: 0033:0x7f208742e1ff
[  872.381422][ T9657] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  872.381446][ T9657] RSP: 002b:00007f208568e000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  872.381469][ T9657] RAX: ffffffffffffffda RBX: 00007f2087685fa0 RCX: 00007f208742e1ff
[  872.381483][ T9657] RDX: 000000000000007a RSI: 0000200000000440 RDI: 00000000000000c8
[  872.381496][ T9657] RBP: 00007f208568e090 R08: 0000000000000000 R09: 0000000000000000
[  872.381508][ T9657] R10: 000000000000007a R11: 0000000000000293 R12: 0000000000000001
[  872.381521][ T9657] R13: 00007f2087686038 R14: 00007f2087685fa0 R15: 00007fff30c714d8
[  872.381558][ T9657]  </TASK>
[  876.319728][ T1321] ieee802154 phy0 wpan0: encryption failed: -22
[  876.319803][ T1321] ieee802154 phy1 wpan1: encryption failed: -22
[  876.361393][ T9684] netlink: 32 bytes leftover after parsing attributes in process `syz.6.949'.
[  876.418314][ T9683] netlink: 8 bytes leftover after parsing attributes in process `syz.8.947'.
[  876.543704][   T37] kauditd_printk_skb: 8 callbacks suppressed
[  876.543726][   T37] audit: type=1326 audit(1766743149.695:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9676 comm="syz.8.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f208742f749 code=0x7ffc0000
[  876.543779][   T37] audit: type=1326 audit(1766743149.695:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9676 comm="syz.8.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f208742f749 code=0x7ffc0000
[  876.543828][   T37] audit: type=1326 audit(1766743149.695:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9676 comm="syz.8.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f208742f749 code=0x7ffc0000
[  876.543876][   T37] audit: type=1326 audit(1766743149.705:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9676 comm="syz.8.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=451 compat=0 ip=0x7f208742f749 code=0x7ffc0000
[  876.543923][   T37] audit: type=1326 audit(1766743149.705:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9676 comm="syz.8.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f208742f749 code=0x7ffc0000
[  876.543971][   T37] audit: type=1326 audit(1766743149.715:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9676 comm="syz.8.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f208742f749 code=0x7ffc0000
[  876.544021][   T37] audit: type=1326 audit(1766743149.715:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9676 comm="syz.8.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f208742f749 code=0x7ffc0000
[  876.544076][   T37] audit: type=1326 audit(1766743149.715:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9676 comm="syz.8.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f208742f749 code=0x7ffc0000
[  876.544125][   T37] audit: type=1326 audit(1766743149.715:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9676 comm="syz.8.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f208742f749 code=0x7ffc0000
[  876.570467][   T37] audit: type=1326 audit(1766743149.755:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9676 comm="syz.8.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=229 compat=0 ip=0x7f208742f749 code=0x7ffc0000
[  876.633340][ T9683] netlink: 4076 bytes leftover after parsing attributes in process `syz.8.947'.
[  876.793033][ T9688] netlink: 104 bytes leftover after parsing attributes in process `syz.7.950'.
[  876.874310][ T9688] netlink: 16399 bytes leftover after parsing attributes in process `syz.7.950'.
[  876.881197][ T9695] tipc: Started in network mode
[  876.881260][ T9695] tipc: Node identity 4, cluster identity 4711
[  876.881293][ T9695] tipc: Node number set to 4
[  876.914250][ T9691] netlink: 16399 bytes leftover after parsing attributes in process `syz.7.950'.
[  878.847742][ T9565] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  878.943817][ T9723] netlink: 32 bytes leftover after parsing attributes in process `syz.6.963'.
[  879.045189][ T9565] usb 6-1: Using ep0 maxpacket: 8
[  879.047073][ T9565] usb 6-1: config 23 has an invalid interface number: 32 but max is 0
[  879.047093][ T9565] usb 6-1: config 23 has an invalid descriptor of length 0, skipping remainder of the config
[  879.047107][ T9565] usb 6-1: config 23 has no interface number 0
[  879.047132][ T9565] usb 6-1: config 23 interface 32 has no altsetting 0
[  879.078331][ T9565] usb 6-1: New USB device found, idVendor=3dea, idProduct=3672, bcdDevice= 2.f3
[  879.078373][ T9565] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  879.078393][ T9565] usb 6-1: Product: syz
[  879.078407][ T9565] usb 6-1: Manufacturer: syz
[  879.078421][ T9565] usb 6-1: SerialNumber: syz
[  879.401557][ T9565] usb 6-1: USB disconnect, device number 2
[  879.681824][ T9731] netlink: 32 bytes leftover after parsing attributes in process `syz.6.965'.
[  880.251003][ T9743] netlink: 8 bytes leftover after parsing attributes in process `syz.8.969'.
[  880.298337][ T9743] netlink: 4076 bytes leftover after parsing attributes in process `syz.8.969'.
[  880.513180][ T9746] FAULT_INJECTION: forcing a failure.
[  880.513180][ T9746] name failslab, interval 1, probability 0, space 0, times 0
[  880.513220][ T9746] CPU: 0 UID: 0 PID: 9746 Comm: syz.7.971 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  880.513249][ T9746] Tainted: [L]=SOFTLOCKUP
[  880.513257][ T9746] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  880.513270][ T9746] Call Trace:
[  880.513279][ T9746]  <TASK>
[  880.513289][ T9746]  dump_stack_lvl+0xe8/0x150
[  880.513325][ T9746]  should_fail_ex+0x46c/0x600
[  880.513360][ T9746]  should_failslab+0xa8/0x100
[  880.513384][ T9746]  __kmalloc_noprof+0xe0/0x7e0
[  880.513417][ T9746]  ? kfree+0x4d/0x900
[  880.513443][ T9746]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  880.513472][ T9746]  tomoyo_realpath_from_path+0xe3/0x5d0
[  880.513497][ T9746]  ? tomoyo_domain+0xd9/0x130
[  880.513527][ T9746]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  880.513559][ T9746]  tomoyo_path_number_perm+0x1e8/0x5a0
[  880.513594][ T9746]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  880.513624][ T9746]  ? __lock_acquire+0x6b6/0x2cf0
[  880.513659][ T9746]  ? do_raw_spin_lock+0x121/0x290
[  880.513727][ T9746]  ? __fget_files+0x2a/0x420
[  880.513755][ T9746]  ? __fget_files+0x2a/0x420
[  880.513778][ T9746]  ? __fget_files+0x3a6/0x420
[  880.513802][ T9746]  ? __fget_files+0x2a/0x420
[  880.513830][ T9746]  security_file_ioctl+0xcb/0x2d0
[  880.513866][ T9746]  __se_sys_ioctl+0x47/0x170
[  880.513898][ T9746]  do_syscall_64+0xec/0xf80
[  880.513921][ T9746]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  880.513942][ T9746]  ? trace_irq_disable+0x37/0x100
[  880.513966][ T9746]  ? clear_bhb_loop+0x60/0xb0
[  880.513994][ T9746]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  880.514016][ T9746] RIP: 0033:0x7fe1328af749
[  880.514035][ T9746] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  880.514055][ T9746] RSP: 002b:00007fe130b0e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  880.514078][ T9746] RAX: ffffffffffffffda RBX: 00007fe132b05fa0 RCX: 00007fe1328af749
[  880.514093][ T9746] RDX: 0000200000000240 RSI: 00000000c0884113 RDI: 0000000000000005
[  880.514106][ T9746] RBP: 00007fe130b0e090 R08: 0000000000000000 R09: 0000000000000000
[  880.514119][ T9746] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  880.514132][ T9746] R13: 00007fe132b06038 R14: 00007fe132b05fa0 R15: 00007ffefc34ca98
[  880.514167][ T9746]  </TASK>
[  880.514186][ T9746] ERROR: Out of memory at tomoyo_realpath_from_path.
[  881.751620][ T9755] netlink: 32 bytes leftover after parsing attributes in process `syz.7.975'.
[  881.813880][ T9757] netlink: 'syz.5.974': attribute type 12 has an invalid length.
[  881.900026][ T9761] FAULT_INJECTION: forcing a failure.
[  881.900026][ T9761] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  881.900079][ T9761] CPU: 1 UID: 0 PID: 9761 Comm: syz.8.977 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  881.900108][ T9761] Tainted: [L]=SOFTLOCKUP
[  881.900116][ T9761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  881.900129][ T9761] Call Trace:
[  881.900136][ T9761]  <TASK>
[  881.900145][ T9761]  dump_stack_lvl+0xe8/0x150
[  881.900181][ T9761]  should_fail_ex+0x46c/0x600
[  881.900217][ T9761]  _copy_from_user+0x2d/0xb0
[  881.900239][ T9761]  sk_getsockopt+0x1ac/0x2460
[  881.900265][ T9761]  ? get_pid_task+0x20/0x1f0
[  881.900305][ T9761]  ? __pfx_sk_getsockopt+0x10/0x10
[  881.900345][ T9761]  ? __lock_acquire+0x6b6/0x2cf0
[  881.900391][ T9761]  ? __might_fault+0xb0/0x130
[  881.900427][ T9761]  ? __might_fault+0xb0/0x130
[  881.900481][ T9761]  do_sock_getsockopt+0x20a/0x3d0
[  881.900514][ T9761]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  881.900541][ T9761]  ? __fget_files+0x3a6/0x420
[  881.900563][ T9761]  ? __fget_files+0x2a/0x420
[  881.900593][ T9761]  __x64_sys_getsockopt+0x1ab/0x250
[  881.900630][ T9761]  do_syscall_64+0xec/0xf80
[  881.900652][ T9761]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  881.900673][ T9761]  ? trace_irq_disable+0x37/0x100
[  881.900697][ T9761]  ? clear_bhb_loop+0x60/0xb0
[  881.900724][ T9761]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  881.900745][ T9761] RIP: 0033:0x7f208742f749
[  881.900766][ T9761] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  881.900784][ T9761] RSP: 002b:00007f208568e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  881.900806][ T9761] RAX: ffffffffffffffda RBX: 00007f2087685fa0 RCX: 00007f208742f749
[  881.900822][ T9761] RDX: 000000000000001a RSI: 0000000000000001 RDI: 0000000000000003
[  881.900835][ T9761] RBP: 00007f208568e090 R08: 0000200000000080 R09: 0000000000000000
[  881.900849][ T9761] R10: 0000200000001240 R11: 0000000000000246 R12: 0000000000000001
[  881.900862][ T9761] R13: 00007f2087686038 R14: 00007f2087685fa0 R15: 00007fff30c714d8
[  881.900895][ T9761]  </TASK>
[  882.027382][ T9762] netlink: 28 bytes leftover after parsing attributes in process `syz.3.976'.
[  883.168870][ T9767] FAULT_INJECTION: forcing a failure.
[  883.168870][ T9767] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  883.168912][ T9767] CPU: 0 UID: 0 PID: 9767 Comm: syz.7.979 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  883.168941][ T9767] Tainted: [L]=SOFTLOCKUP
[  883.168950][ T9767] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  883.168963][ T9767] Call Trace:
[  883.168971][ T9767]  <TASK>
[  883.168980][ T9767]  dump_stack_lvl+0xe8/0x150
[  883.169016][ T9767]  should_fail_ex+0x46c/0x600
[  883.169052][ T9767]  _copy_from_user+0x2d/0xb0
[  883.169075][ T9767]  sctp_setsockopt+0x1c4/0x12c0
[  883.169107][ T9767]  ? sock_common_setsockopt+0x36/0xc0
[  883.169130][ T9767]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  883.169155][ T9767]  do_sock_setsockopt+0x17c/0x1b0
[  883.169187][ T9767]  __x64_sys_setsockopt+0x145/0x1b0
[  883.169225][ T9767]  do_syscall_64+0xec/0xf80
[  883.169249][ T9767]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  883.169271][ T9767]  ? trace_irq_disable+0x37/0x100
[  883.169296][ T9767]  ? clear_bhb_loop+0x60/0xb0
[  883.169323][ T9767]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  883.169346][ T9767] RIP: 0033:0x7fe1328af749
[  883.169364][ T9767] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  883.169381][ T9767] RSP: 002b:00007fe130b0e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  883.169400][ T9767] RAX: ffffffffffffffda RBX: 00007fe132b05fa0 RCX: 00007fe1328af749
[  883.169414][ T9767] RDX: 0000000000000001 RSI: 0000000000000084 RDI: 0000000000000003
[  883.169424][ T9767] RBP: 00007fe130b0e090 R08: 0000000000000014 R09: 0000000000000000
[  883.169436][ T9767] R10: 0000200000000140 R11: 0000000000000246 R12: 0000000000000001
[  883.169453][ T9767] R13: 00007fe132b06038 R14: 00007fe132b05fa0 R15: 00007ffefc34ca98
[  883.169480][ T9767]  </TASK>
[  883.274167][ T9772] bridge_slave_0: vlans aren't supported yet for dev_uc|mc_add()
[  883.280252][ T9772] netlink: 209852 bytes leftover after parsing attributes in process `syz.8.981'.
[  883.293812][ T9764] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  883.293832][ T9764] IPv6: NLM_F_CREATE should be set when creating new route
[  883.354509][ T9769] FAULT_INJECTION: forcing a failure.
[  883.354509][ T9769] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  883.354597][ T9769] CPU: 1 UID: 0 PID: 9769 Comm: syz.5.980 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  883.354678][ T9769] Tainted: [L]=SOFTLOCKUP
[  883.354700][ T9769] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  883.354742][ T9769] Call Trace:
[  883.354763][ T9769]  <TASK>
[  883.354785][ T9769]  dump_stack_lvl+0xe8/0x150
[  883.354878][ T9769]  should_fail_ex+0x46c/0x600
[  883.354971][ T9769]  _copy_from_user+0x2d/0xb0
[  883.355032][ T9769]  sctp_setsockopt+0x1c4/0x12c0
[  883.355116][ T9769]  ? sock_common_setsockopt+0x36/0xc0
[  883.355188][ T9769]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  883.355251][ T9769]  do_sock_setsockopt+0x17c/0x1b0
[  883.355334][ T9769]  __x64_sys_setsockopt+0x145/0x1b0
[  883.355419][ T9769]  do_syscall_64+0xec/0xf80
[  883.355474][ T9769]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  883.355515][ T9769]  ? trace_irq_disable+0x37/0x100
[  883.355541][ T9769]  ? clear_bhb_loop+0x60/0xb0
[  883.355576][ T9769]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  883.355639][ T9769] RIP: 0033:0x7fb373fdf749
[  883.355692][ T9769] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  883.355734][ T9769] RSP: 002b:00007fb37223e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  883.355765][ T9769] RAX: ffffffffffffffda RBX: 00007fb374235fa0 RCX: 00007fb373fdf749
[  883.355824][ T9769] RDX: 0000000000000064 RSI: 0000000000000084 RDI: 0000000000000003
[  883.355869][ T9769] RBP: 00007fb37223e090 R08: 0000000000000020 R09: 0000000000000000
[  883.355902][ T9769] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[  883.355949][ T9769] R13: 00007fb374236038 R14: 00007fb374235fa0 R15: 00007fff97efe728
[  883.356034][ T9769]  </TASK>
[  884.118825][ T9779] netlink: 'syz.6.983': attribute type 6 has an invalid length.
[  884.118852][ T9779] netlink: 36 bytes leftover after parsing attributes in process `syz.6.983'.
[  885.627109][ T9797] __vm_enough_memory: pid: 9797, comm: syz.7.988, bytes: 4503599627366400 not enough memory for the allocation
[  885.814999][ T9797] hfs: can't find a HFS filesystem on dev nullb0
[  885.931369][ T9801] netlink: 20 bytes leftover after parsing attributes in process `syz.6.990'.
[  889.800952][ T9835] input input17: cannot allocate more than FF_MAX_EFFECTS effects
[  890.959166][ T9842] netlink: 'syz.6.1000': attribute type 2 has an invalid length.
[  890.962567][ T9842] netlink: 'syz.6.1000': attribute type 2 has an invalid length.
[  890.964358][ T9842] netlink: 'syz.6.1000': attribute type 29 has an invalid length.
[  897.477780][ T6300] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  897.629406][ T6300] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  897.629444][ T6300] usb 7-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  897.629461][ T6300] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  897.632992][ T6300] usb 7-1: config 0 descriptor??
[  897.777746][ T9685] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  897.841405][ T9889] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  897.841788][ T9889] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  897.848793][ T9889] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  897.849460][ T9889] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  897.896047][ T6300] usbhid 7-1:0.0: can't add hid device: -71
[  897.896184][ T6300] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  897.913392][ T6300] usb 7-1: USB disconnect, device number 3
[  897.942308][ T9685] usb 6-1: device descriptor read/64, error -71
[  898.177743][ T9685] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  898.307763][ T9685] usb 6-1: device descriptor read/64, error -71
[  898.418437][ T9685] usb usb6-port1: attempt power cycle
[  898.678596][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  898.762574][ T9685] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  898.778517][ T9685] usb 6-1: device descriptor read/8, error -71
[  898.847899][ T6300] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  901.118198][ T9685] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  901.135266][ T6300] usb 7-1: Using ep0 maxpacket: 8
[  901.137790][ T6300] usb 7-1: config 23 has an invalid interface number: 32 but max is 0
[  901.137820][ T6300] usb 7-1: config 23 has an invalid descriptor of length 0, skipping remainder of the config
[  901.137848][ T6300] usb 7-1: config 23 has no interface number 0
[  901.137985][ T6300] usb 7-1: config 23 interface 32 has no altsetting 0
[  901.179351][ T6300] usb 7-1: New USB device found, idVendor=3dea, idProduct=3672, bcdDevice= 2.f3
[  901.179384][ T6300] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  901.179405][ T6300] usb 7-1: Product: syz
[  901.179420][ T6300] usb 7-1: Manufacturer: syz
[  901.179435][ T6300] usb 7-1: SerialNumber: syz
[  901.180100][ T9685] usb 6-1: device descriptor read/8, error -71
[  901.289369][ T9685] usb usb6-port1: unable to enumerate USB device
[  903.899919][ T6300] usb 7-1: bad CDC descriptors
[  904.709272][ T6300] usb 7-1: USB disconnect, device number 4
[  904.780269][ T9924] FAULT_INJECTION: forcing a failure.
[  904.780269][ T9924] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  904.780310][ T9924] CPU: 0 UID: 0 PID: 9924 Comm: syz.5.1026 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  904.780339][ T9924] Tainted: [L]=SOFTLOCKUP
[  904.780346][ T9924] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  904.780359][ T9924] Call Trace:
[  904.780367][ T9924]  <TASK>
[  904.780377][ T9924]  dump_stack_lvl+0xe8/0x150
[  904.780413][ T9924]  should_fail_ex+0x46c/0x600
[  904.780458][ T9924]  _copy_from_user+0x2d/0xb0
[  904.780482][ T9924]  sctp_getsockopt_scheduler+0xb8/0x2a0
[  904.780515][ T9924]  ? __local_bh_enable+0x1e2/0x2f0
[  904.780555][ T9924]  ? __pfx_sctp_getsockopt_scheduler+0x10/0x10
[  904.780590][ T9924]  ? __local_bh_enable_ip+0x1af/0x2c0
[  904.780615][ T9924]  ? lockdep_hardirqs_on+0x7b/0x110
[  904.780644][ T9924]  sctp_getsockopt+0xa7b/0xb90
[  904.780675][ T9924]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  904.780701][ T9924]  do_sock_getsockopt+0x2b4/0x3d0
[  904.780731][ T9924]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  904.780760][ T9924]  ? __fget_files+0x3a6/0x420
[  904.780783][ T9924]  ? __fget_files+0x2a/0x420
[  904.780816][ T9924]  __x64_sys_getsockopt+0x1ab/0x250
[  904.780855][ T9924]  do_syscall_64+0xec/0xf80
[  904.780877][ T9924]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  904.780900][ T9924]  ? trace_irq_disable+0x37/0x100
[  904.780925][ T9924]  ? clear_bhb_loop+0x60/0xb0
[  904.780953][ T9924]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  904.780974][ T9924] RIP: 0033:0x7fb373fdf749
[  904.780994][ T9924] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  904.781014][ T9924] RSP: 002b:00007fb37221d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  904.781038][ T9924] RAX: ffffffffffffffda RBX: 00007fb374236090 RCX: 00007fb373fdf749
[  904.781054][ T9924] RDX: 000000000000007b RSI: 0000000000000084 RDI: 0000000000000003
[  904.781068][ T9924] RBP: 00007fb37221d090 R08: 0000200000000100 R09: 0000000000000000
[  904.781082][ T9924] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000001
[  904.781096][ T9924] R13: 00007fb374236128 R14: 00007fb374236090 R15: 00007fff97efe728
[  904.781132][ T9924]  </TASK>
[  907.249032][ T9943] FAULT_INJECTION: forcing a failure.
[  907.249032][ T9943] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  907.249073][ T9943] CPU: 1 UID: 0 PID: 9943 Comm: syz.5.1031 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  907.249103][ T9943] Tainted: [L]=SOFTLOCKUP
[  907.249110][ T9943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  907.249124][ T9943] Call Trace:
[  907.249132][ T9943]  <TASK>
[  907.249141][ T9943]  dump_stack_lvl+0xe8/0x150
[  907.249176][ T9943]  should_fail_ex+0x46c/0x600
[  907.249209][ T9943]  _copy_from_user+0x2d/0xb0
[  907.249231][ T9943]  load_msg+0x1f5/0x3b0
[  907.249259][ T9943]  do_msgsnd+0x19a/0x13d0
[  907.249300][ T9943]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  907.249321][ T9943]  ? rt_mutex_slowunlock+0x1be/0x2e0
[  907.249346][ T9943]  ? __might_fault+0xb0/0x130
[  907.249371][ T9943]  ? __might_fault+0xb0/0x130
[  907.249397][ T9943]  ? __pfx_do_msgsnd+0x10/0x10
[  907.249418][ T9943]  ? __might_fault+0xb0/0x130
[  907.249444][ T9943]  ? __x64_sys_msgsnd+0xee/0x120
[  907.249464][ T9943]  do_syscall_64+0xec/0xf80
[  907.249479][ T9943]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  907.249494][ T9943]  ? trace_irq_disable+0x37/0x100
[  907.249511][ T9943]  ? clear_bhb_loop+0x60/0xb0
[  907.249530][ T9943]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  907.249545][ T9943] RIP: 0033:0x7fb373fdf749
[  907.249559][ T9943] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  907.249573][ T9943] RSP: 002b:00007fb3721fc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000045
[  907.249590][ T9943] RAX: ffffffffffffffda RBX: 00007fb374236180 RCX: 00007fb373fdf749
[  907.249602][ T9943] RDX: 0000000000000008 RSI: 0000200000000040 RDI: 0000000000000000
[  907.249612][ T9943] RBP: 00007fb3721fc090 R08: 0000000000000000 R09: 0000000000000000
[  907.249621][ T9943] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  907.249631][ T9943] R13: 00007fb374236218 R14: 00007fb374236180 R15: 00007fff97efe728
[  907.249655][ T9943]  </TASK>
[  907.415127][ T9920] usb 4-1: new high-speed USB device number 54 using dummy_hcd
[  909.668227][ T9949] FAULT_INJECTION: forcing a failure.
[  909.668227][ T9949] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  909.668268][ T9949] CPU: 1 UID: 0 PID: 9949 Comm: syz.5.1035 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  909.668297][ T9949] Tainted: [L]=SOFTLOCKUP
[  909.668305][ T9949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  909.668318][ T9949] Call Trace:
[  909.668326][ T9949]  <TASK>
[  909.668335][ T9949]  dump_stack_lvl+0xe8/0x150
[  909.668370][ T9949]  should_fail_ex+0x46c/0x600
[  909.668405][ T9949]  _copy_to_user+0x31/0xb0
[  909.668429][ T9949]  simple_read_from_buffer+0xe1/0x170
[  909.668458][ T9949]  proc_fail_nth_read+0x1b6/0x220
[  909.668495][ T9949]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  909.668533][ T9949]  ? rw_verify_area+0x2ac/0x4e0
[  909.668562][ T9949]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  909.668596][ T9949]  vfs_read+0x206/0xa30
[  909.668635][ T9949]  ? __pfx_vfs_read+0x10/0x10
[  909.668669][ T9949]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  909.668693][ T9949]  ? lockdep_hardirqs_on+0x7b/0x110
[  909.668715][ T9949]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  909.668737][ T9949]  ? mutex_lock_nested+0x154/0x1d0
[  909.668775][ T9949]  ? fdget_pos+0x253/0x320
[  909.668809][ T9949]  ksys_read+0x14b/0x260
[  909.668843][ T9949]  ? __pfx_ksys_read+0x10/0x10
[  909.668886][ T9949]  do_syscall_64+0xec/0xf80
[  909.668908][ T9949]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  909.668929][ T9949]  ? trace_irq_disable+0x37/0x100
[  909.668953][ T9949]  ? clear_bhb_loop+0x60/0xb0
[  909.668981][ T9949]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  909.669003][ T9949] RIP: 0033:0x7fb373fde15c
[  909.669023][ T9949] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  909.669042][ T9949] RSP: 002b:00007fb37223e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  909.669066][ T9949] RAX: ffffffffffffffda RBX: 00007fb374235fa0 RCX: 00007fb373fde15c
[  909.669082][ T9949] RDX: 000000000000000f RSI: 00007fb37223e0a0 RDI: 0000000000000004
[  909.669096][ T9949] RBP: 00007fb37223e090 R08: 0000000000000000 R09: 0000000000000000
[  909.669109][ T9949] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  909.669121][ T9949] R13: 00007fb374236038 R14: 00007fb374235fa0 R15: 00007fff97efe728
[  909.669156][ T9949]  </TASK>
[  909.798434][ T9953] FAULT_INJECTION: forcing a failure.
[  909.798434][ T9953] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  909.798463][ T9953] CPU: 1 UID: 0 PID: 9953 Comm: syz.7.1034 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  909.798484][ T9953] Tainted: [L]=SOFTLOCKUP
[  909.798490][ T9953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  909.798499][ T9953] Call Trace:
[  909.798505][ T9953]  <TASK>
[  909.798512][ T9953]  dump_stack_lvl+0xe8/0x150
[  909.798537][ T9953]  should_fail_ex+0x46c/0x600
[  909.798563][ T9953]  _copy_from_iter+0x1cd/0x1630
[  909.798586][ T9953]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  909.798611][ T9953]  ? __pfx__copy_from_iter+0x10/0x10
[  909.798638][ T9953]  ? set_page_refcounted+0xa0/0x1e0
[  909.798654][ T9953]  ? page_copy_sane+0x4e/0x280
[  909.798678][ T9953]  copy_page_from_iter+0xdd/0x170
[  909.798704][ T9953]  tun_get_user+0x1d40/0x3de0
[  909.798736][ T9953]  ? tun_get_user+0x6fc/0x3de0
[  909.798765][ T9953]  ? __pfx_tun_get_user+0x10/0x10
[  909.798786][ T9953]  ? __lock_acquire+0x6b6/0x2cf0
[  909.798809][ T9953]  ? kstrtoull+0x12f/0x1d0
[  909.798835][ T9953]  ? ref_tracker_alloc+0x2fe/0x450
[  909.798856][ T9953]  ? get_pid_task+0x20/0x1f0
[  909.798879][ T9953]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  909.798902][ T9953]  ? tun_get+0x1c/0x2f0
[  909.798921][ T9953]  ? tun_get+0x1c/0x2f0
[  909.798944][ T9953]  ? tun_get+0x1c/0x2f0
[  909.798962][ T9953]  ? tun_get+0x1c/0x2f0
[  909.798985][ T9953]  tun_chr_write_iter+0x119/0x200
[  909.799006][ T9953]  vfs_write+0x5d5/0xb40
[  909.799032][ T9953]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  909.799052][ T9953]  ? __pfx_vfs_write+0x10/0x10
[  909.799081][ T9953]  ? __fget_files+0x2a/0x420
[  909.799104][ T9953]  ksys_write+0x14b/0x260
[  909.799128][ T9953]  ? __pfx_ksys_write+0x10/0x10
[  909.799159][ T9953]  do_syscall_64+0xec/0xf80
[  909.799174][ T9953]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  909.799190][ T9953]  ? trace_irq_disable+0x37/0x100
[  909.799208][ T9953]  ? clear_bhb_loop+0x60/0xb0
[  909.799227][ T9953]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  909.799242][ T9953] RIP: 0033:0x7fe1328ae1ff
[  909.799255][ T9953] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  909.799269][ T9953] RSP: 002b:00007fe130aed000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  909.799286][ T9953] RAX: ffffffffffffffda RBX: 00007fe132b06090 RCX: 00007fe1328ae1ff
[  909.799297][ T9953] RDX: 0000000000000036 RSI: 0000200000000280 RDI: 00000000000000c8
[  909.799308][ T9953] RBP: 00007fe130aed090 R08: 0000000000000000 R09: 0000000000000000
[  909.799318][ T9953] R10: 0000000000000036 R11: 0000000000000293 R12: 0000000000000001
[  909.799327][ T9953] R13: 00007fe132b06128 R14: 00007fe132b06090 R15: 00007ffefc34ca98
[  909.799351][ T9953]  </TASK>
[  911.101252][   T31] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  911.267848][   T31] usb 6-1: Using ep0 maxpacket: 8
[  911.271363][   T31] usb 6-1: config 23 has an invalid interface number: 32 but max is 0
[  911.271397][   T31] usb 6-1: config 23 has an invalid descriptor of length 0, skipping remainder of the config
[  911.271419][   T31] usb 6-1: config 23 has no interface number 0
[  911.271457][   T31] usb 6-1: config 23 interface 32 has no altsetting 0
[  911.279622][   T31] usb 6-1: New USB device found, idVendor=3dea, idProduct=3672, bcdDevice= 2.f3
[  911.279706][   T31] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  911.279762][   T31] usb 6-1: Product: syz
[  911.279804][   T31] usb 6-1: Manufacturer: syz
[  911.279841][   T31] usb 6-1: SerialNumber: syz
[  911.653192][   T31] usb 6-1: bad CDC descriptors
[  912.508344][   T31] usb 6-1: USB disconnect, device number 7
[  920.027706][ T8818] usb 6-1: new full-speed USB device number 8 using dummy_hcd
[  921.927797][  T862] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  922.881224][  T862] usb 9-1: Using ep0 maxpacket: 16
[  923.263898][  T862] usb 9-1: unable to read config index 0 descriptor/start: -71
[  923.263940][  T862] usb 9-1: can't read configurations, error -71
[  924.828977][ T8317] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  924.837325][ T8317] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  924.862909][ T8317] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  924.866006][ T8317] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  924.867493][ T8317] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  925.027821][  T862] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  925.177767][  T862] usb 9-1: Using ep0 maxpacket: 32
[  925.180661][  T862] usb 9-1: unable to get BOS descriptor or descriptor too short
[  925.185073][  T862] usb 9-1: config 7 has an invalid interface number: 187 but max is 0
[  925.185102][  T862] usb 9-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config
[  925.185123][  T862] usb 9-1: config 7 has no interface number 0
[  925.185176][  T862] usb 9-1: config 7 interface 187 altsetting 6 endpoint 0x7 has invalid wMaxPacketSize 0
[  925.185202][  T862] usb 9-1: config 7 interface 187 altsetting 6 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  925.185230][  T862] usb 9-1: config 7 interface 187 has no altsetting 0
[  925.263328][  T862] usb 9-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice=5a.bb
[  925.263361][  T862] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  925.263384][  T862] usb 9-1: Product: syz
[  925.263399][  T862] usb 9-1: Manufacturer: syz
[  925.263415][  T862] usb 9-1: SerialNumber: syz
[  925.360351][T10023] FAULT_INJECTION: forcing a failure.
[  925.360351][T10023] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  925.360395][T10023] CPU: 1 UID: 0 PID: 10023 Comm: syz.5.1055 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  925.360423][T10023] Tainted: [L]=SOFTLOCKUP
[  925.360432][T10023] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  925.360451][T10023] Call Trace:
[  925.360458][T10023]  <TASK>
[  925.360465][T10023]  dump_stack_lvl+0xe8/0x150
[  925.360509][T10023]  should_fail_ex+0x46c/0x600
[  925.360548][T10023]  _copy_from_user+0x2d/0xb0
[  925.360571][T10023]  sctp_getsockopt_rtoinfo+0xbe/0x3b0
[  925.360600][T10023]  ? __local_bh_enable+0x1e2/0x2f0
[  925.360634][T10023]  ? __pfx_sctp_getsockopt_rtoinfo+0x10/0x10
[  925.360656][T10023]  ? __local_bh_enable_ip+0x1af/0x2c0
[  925.360693][T10023]  ? lockdep_hardirqs_on+0x7b/0x110
[  925.360723][T10023]  sctp_getsockopt+0xab2/0xb90
[  925.360756][T10023]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  925.360781][T10023]  do_sock_getsockopt+0x2b4/0x3d0
[  925.360813][T10023]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  925.360834][T10023]  ? __fget_files+0x3a6/0x420
[  925.360870][T10023]  ? __fget_files+0x2a/0x420
[  925.360903][T10023]  __x64_sys_getsockopt+0x1ab/0x250
[  925.360942][T10023]  do_syscall_64+0xec/0xf80
[  925.360963][T10023]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  925.360987][T10023]  ? trace_irq_disable+0x37/0x100
[  925.361005][T10023]  ? clear_bhb_loop+0x60/0xb0
[  925.361041][T10023]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  925.361064][T10023] RIP: 0033:0x7fb373fdf749
[  925.361085][T10023] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  925.361104][T10023] RSP: 002b:00007fb37223e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  925.361126][T10023] RAX: ffffffffffffffda RBX: 00007fb374235fa0 RCX: 00007fb373fdf749
[  925.361142][T10023] RDX: 0000000000000000 RSI: 0000000000000084 RDI: 0000000000000003
[  925.361160][T10023] RBP: 00007fb37223e090 R08: 00002000000000c0 R09: 0000000000000000
[  925.361170][T10023] R10: 0000200000000080 R11: 0000000000000246 R12: 0000000000000001
[  925.361181][T10023] R13: 00007fb374236038 R14: 00007fb374235fa0 R15: 00007fff97efe728
[  925.361225][T10023]  </TASK>
[  925.563211][  T862] usb 9-1: Unknown endpoint type found, address 0x07
[  925.563254][  T862] usb 9-1: Not enough endpoints found in device, aborting!
[  927.879557][ T8452] Bluetooth: hci1: command tx timeout
[  927.908312][ T9991] usb 9-1: USB disconnect, device number 6
[  928.523377][T10018] chnl_net:caif_netlink_parms(): no params data found
[  930.182908][ T5824] Bluetooth: hci1: command tx timeout
[  930.182946][ T5824] Bluetooth: hci2: command 0x0406 tx timeout
[  931.498289][T10061] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1063'.
[  931.498316][T10061] netlink: 144 bytes leftover after parsing attributes in process `syz.5.1063'.
[  931.498372][T10061] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1063'.
[  932.334127][ T8317] Bluetooth: hci1: command tx timeout
[  932.677888][T10070] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1065'.
[  932.681277][   T37] kauditd_printk_skb: 40 callbacks suppressed
[  932.681298][   T37] audit: type=1326 audit(1766743205.865:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10065 comm="syz.5.1065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb373fdf749 code=0x7ffc0000
[  932.731913][   T37] audit: type=1326 audit(1766743205.915:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10065 comm="syz.5.1065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb373fdf749 code=0x7ffc0000
[  932.731973][   T37] audit: type=1326 audit(1766743205.915:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10065 comm="syz.5.1065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb373fdf749 code=0x7ffc0000
[  932.733126][   T37] audit: type=1326 audit(1766743205.915:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10065 comm="syz.5.1065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=451 compat=0 ip=0x7fb373fdf749 code=0x7ffc0000
[  932.733297][   T37] audit: type=1326 audit(1766743205.915:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10065 comm="syz.5.1065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb373fdf749 code=0x7ffc0000
[  932.739913][   T37] audit: type=1326 audit(1766743205.925:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10065 comm="syz.5.1065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb373fdf749 code=0x7ffc0000
[  932.740998][   T37] audit: type=1326 audit(1766743205.925:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10065 comm="syz.5.1065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb373fdf749 code=0x7ffc0000
[  932.742664][   T37] audit: type=1326 audit(1766743205.925:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10065 comm="syz.5.1065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb373fdf749 code=0x7ffc0000
[  932.744216][   T37] audit: type=1326 audit(1766743205.925:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10065 comm="syz.5.1065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb373fdf749 code=0x7ffc0000
[  932.745642][   T37] audit: type=1326 audit(1766743205.925:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10065 comm="syz.5.1065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=229 compat=0 ip=0x7fb373fdf749 code=0x7ffc0000
[  932.942001][ T9811] usb 9-1: new full-speed USB device number 7 using dummy_hcd
[  933.107906][ T9811] usb 9-1: config 0 has an invalid interface number: 189 but max is 0
[  933.107929][ T9811] usb 9-1: config 0 has no interface number 0
[  933.107965][ T9811] usb 9-1: config 0 interface 189 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  933.107980][ T9811] usb 9-1: config 0 interface 189 altsetting 0 has an endpoint descriptor with address 0xE3, changing to 0x83
[  933.107999][ T9811] usb 9-1: config 0 interface 189 altsetting 0 endpoint 0x83 has invalid maxpacket 33307, setting to 64
[  933.108020][ T9811] usb 9-1: config 0 interface 189 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  933.108037][ T9811] usb 9-1: config 0 interface 189 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  933.142146][ T9811] usb 9-1: New USB device found, idVendor=07b4, idProduct=010a, bcdDevice= 1.02
[  933.142239][ T9811] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  933.142301][ T9811] usb 9-1: Product: syz
[  933.142343][ T9811] usb 9-1: Manufacturer: syz
[  933.142387][ T9811] usb 9-1: SerialNumber: syz
[  933.259096][ T9811] usb 9-1: config 0 descriptor??
[  933.260222][T10068] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[  933.263715][ T9811] ums-alauda 9-1:0.189: USB Mass Storage device detected
[  933.343154][ T9811] scsi host1: usb-storage 9-1:0.189
[  933.479631][T10068] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  933.484911][T10068] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  933.487126][ T7367] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  933.593742][ T5884] usb 9-1: USB disconnect, device number 7
[  933.860930][T10071] netlink: 4076 bytes leftover after parsing attributes in process `syz.5.1065'.
[  934.509297][ T5824] Bluetooth: hci4: command 0x0406 tx timeout
[  934.514187][T10033] Bluetooth: hci1: command tx timeout
[  936.031754][T10095] capability: warning: `syz.8.1070' uses deprecated v2 capabilities in a way that may be insecure
[  937.088556][ T1321] ieee802154 phy0 wpan0: encryption failed: -22
[  937.088651][ T1321] ieee802154 phy1 wpan1: encryption failed: -22
[  943.055514][ T7367] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  943.364727][T10018] bridge0: port 1(bridge_slave_0) entered blocking state
[  943.364968][T10018] bridge0: port 1(bridge_slave_0) entered disabled state
[  943.365227][T10018] bridge_slave_0: entered allmulticast mode
[  943.381804][T10018] bridge_slave_0: entered promiscuous mode
[  945.252303][ T5824] Bluetooth: hci5: command 0x0406 tx timeout
[  945.354101][ T7367] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  945.438454][T10018] bridge0: port 2(bridge_slave_1) entered blocking state
[  945.438597][T10018] bridge0: port 2(bridge_slave_1) entered disabled state
[  945.438857][T10018] bridge_slave_1: entered allmulticast mode
[  945.458014][T10018] bridge_slave_1: entered promiscuous mode
[  946.063318][ T7367] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  946.334963][T10018] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  946.362132][T10018] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  947.655292][T10018] team0: Port device team_slave_0 added
[  947.664233][T10018] team0: Port device team_slave_1 added
[  948.266605][T10148] FAULT_INJECTION: forcing a failure.
[  948.266605][T10148] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  948.266676][T10148] CPU: 0 UID: 0 PID: 10148 Comm: syz.8.1085 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  948.266709][T10148] Tainted: [L]=SOFTLOCKUP
[  948.266717][T10148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  948.266731][T10148] Call Trace:
[  948.266740][T10148]  <TASK>
[  948.266754][T10148]  dump_stack_lvl+0xe8/0x150
[  948.266782][T10148]  should_fail_ex+0x46c/0x600
[  948.266808][T10148]  prepare_alloc_pages+0x22b/0x6c0
[  948.266830][T10148]  __alloc_frozen_pages_noprof+0x123/0x370
[  948.266850][T10148]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  948.266871][T10148]  ? policy_nodemask+0x4e6/0x720
[  948.266892][T10148]  alloc_pages_mpol+0xd1/0x380
[  948.266911][T10148]  vma_alloc_folio_noprof+0xe4/0x280
[  948.266929][T10148]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  948.266945][T10148]  ? irqentry_exit+0x5dd/0x660
[  948.266961][T10148]  ? lockdep_hardirqs_on+0x7b/0x110
[  948.266979][T10148]  folio_prealloc+0x30/0x180
[  948.267006][T10148]  do_pte_missing+0x86a/0x27a0
[  948.267032][T10148]  ? handle_mm_fault+0xd1/0x1330
[  948.267054][T10148]  handle_mm_fault+0xcc1/0x1330
[  948.267083][T10148]  ? handle_mm_fault+0xd1/0x1330
[  948.267108][T10148]  ? __pfx_handle_mm_fault+0x10/0x10
[  948.267131][T10148]  ? irqentry_exit+0x5dd/0x660
[  948.267157][T10148]  ? do_user_addr_fault+0xc1d/0x1380
[  948.267183][T10148]  do_user_addr_fault+0xa7c/0x1380
[  948.267207][T10148]  ? rcu_is_watching+0x15/0xb0
[  948.267223][T10148]  ? trace_page_fault_user+0x84/0x1c0
[  948.267243][T10148]  exc_page_fault+0x71/0xd0
[  948.267259][T10148]  asm_exc_page_fault+0x26/0x30
[  948.267275][T10148] RIP: 0033:0x7f20872fa65b
[  948.267290][T10148] Code: 00 00 00 48 8d 3d dd 5a 19 00 48 89 c1 31 c0 e8 2b 39 ff ff eb d2 66 0f 1f 84 00 00 00 00 00 55 31 c0 53 48 81 ec 68 10 00 00 <48> 89 7c 24 08 48 8d 3d 11 5b 19 00 48 89 34 24 48 8b 14 24 48 8b
[  948.267304][T10148] RSP: 002b:00007f208566bfb0 EFLAGS: 00010202
[  948.267319][T10148] RAX: 0000000000000000 RBX: 00007f2087686090 RCX: 0000000000000000
[  948.267330][T10148] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 00002000000000c0
[  948.267340][T10148] RBP: 00007f208566d090 R08: 0000000000000000 R09: 0000000000000000
[  948.267350][T10148] R10: 00002000000000c0 R11: 0000000000000000 R12: 0000000000000001
[  948.267361][T10148] R13: 00007f2087686128 R14: 00007f2087686090 R15: 00007fff30c714d8
[  948.267386][T10148]  </TASK>
[  948.267846][T10148] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  952.432366][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  952.777242][T10018] batman_adv: batadv0: Adding interface: batadv_slave_0
[  952.777264][T10018] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  952.777294][T10018] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  952.780016][T10018] batman_adv: batadv0: Adding interface: batadv_slave_1
[  952.780038][T10018] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  952.780068][T10018] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  952.967784][T10166] netlink: 104 bytes leftover after parsing attributes in process `syz.7.1093'.
[  954.100669][T10018] hsr_slave_0: entered promiscuous mode
[  954.102148][T10018] hsr_slave_1: entered promiscuous mode
[  954.106089][T10018] debugfs: 'hsr0' already exists in 'hsr'
[  954.106118][T10018] Cannot create hsr debugfs directory
[  954.269295][ T9840] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  954.286633][ T7367] bridge_slave_1: left allmulticast mode
[  954.286672][ T7367] bridge_slave_1: left promiscuous mode
[  954.286921][ T7367] bridge0: port 2(bridge_slave_1) entered disabled state
[  954.307981][ T9565] usb 8-1: new full-speed USB device number 2 using dummy_hcd
[  954.359314][ T7367] bridge_slave_0: left allmulticast mode
[  954.359346][ T7367] bridge_slave_0: left promiscuous mode
[  954.359627][ T7367] bridge0: port 1(bridge_slave_0) entered disabled state
[  956.217687][ T9840] usb 9-1: Using ep0 maxpacket: 16
[  956.220414][ T9840] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  956.220462][ T9840] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  956.220508][ T9840] usb 9-1: New USB device found, idVendor=5543, idProduct=0064, bcdDevice= 0.00
[  956.220535][ T9840] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  956.226504][ T9840] usb 9-1: config 0 descriptor??
[  956.341669][ T9565] usb 8-1: device descriptor read/all, error -71
[  958.422661][ T9840] usbhid 9-1:0.0: can't add hid device: -71
[  958.422788][ T9840] usbhid 9-1:0.0: probe with driver usbhid failed with error -71
[  958.450975][ T9840] usb 9-1: USB disconnect, device number 8
[  968.631547][T10231] trusted_key: encrypted_key: insufficient parameters specified
[  973.019192][ T7367] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  973.135722][ T7367] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  973.197287][ T7367] bond0 (unregistering): Released all slaves
[  974.584234][ T7367] tipc: Left network mode
[  978.209628][T10286] FAULT_INJECTION: forcing a failure.
[  978.209628][T10286] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  978.209676][T10286] CPU: 0 UID: 0 PID: 10286 Comm: syz.3.1125 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  978.209707][T10286] Tainted: [L]=SOFTLOCKUP
[  978.209715][T10286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  978.209729][T10286] Call Trace:
[  978.209737][T10286]  <TASK>
[  978.209747][T10286]  dump_stack_lvl+0xe8/0x150
[  978.209785][T10286]  should_fail_ex+0x46c/0x600
[  978.209821][T10286]  prepare_alloc_pages+0x22b/0x6c0
[  978.209853][T10286]  __alloc_frozen_pages_noprof+0x123/0x370
[  978.209881][T10286]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  978.209924][T10286]  alloc_pages_bulk_noprof+0x5fa/0x7d0
[  978.209950][T10286]  ? trace_kmalloc+0x1f/0xb0
[  978.209982][T10286]  ? copy_splice_read+0x143/0xa60
[  978.210011][T10286]  copy_splice_read+0x173/0xa60
[  978.210031][T10286]  ? kstrtoull+0x12f/0x1d0
[  978.210065][T10286]  ? do_raw_spin_lock+0x121/0x290
[  978.210090][T10286]  ? lock_acquire+0x107/0x340
[  978.210122][T10286]  ? __pfx_copy_splice_read+0x10/0x10
[  978.210154][T10286]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  978.210177][T10286]  ? lockdep_hardirqs_on+0x7b/0x110
[  978.210197][T10286]  ? wait_for_space+0x248/0x2d0
[  978.210227][T10286]  ? __pfx_sock_splice_read+0x10/0x10
[  978.210261][T10286]  splice_file_to_pipe+0x27f/0x450
[  978.210292][T10286]  do_splice+0xdd8/0x1680
[  978.210322][T10286]  ? __fget_files+0x2a/0x420
[  978.210366][T10286]  ? __pfx_do_splice+0x10/0x10
[  978.210401][T10286]  __se_sys_splice+0x2e1/0x460
[  978.210434][T10286]  ? __pfx___se_sys_splice+0x10/0x10
[  978.210467][T10286]  ? __x64_sys_splice+0x21/0xf0
[  978.210495][T10286]  do_syscall_64+0xec/0xf80
[  978.210517][T10286]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  978.210540][T10286]  ? trace_irq_disable+0x37/0x100
[  978.210563][T10286]  ? clear_bhb_loop+0x60/0xb0
[  978.210592][T10286]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  978.210613][T10286] RIP: 0033:0x7f1363d1f749
[  978.210633][T10286] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  978.210653][T10286] RSP: 002b:00007f1361f86038 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  978.210683][T10286] RAX: ffffffffffffffda RBX: 00007f1363f75fa0 RCX: 00007f1363d1f749
[  978.210700][T10286] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000004
[  978.210713][T10286] RBP: 00007f1361f86090 R08: 0000000000000f3a R09: 0000000000000000
[  978.210727][T10286] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  978.210740][T10286] R13: 00007f1363f76038 R14: 00007f1363f75fa0 R15: 00007ffebc5a2ce8
[  978.210776][T10286]  </TASK>
[  978.723574][T10293] FAULT_INJECTION: forcing a failure.
[  978.723574][T10293] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  978.723616][T10293] CPU: 1 UID: 0 PID: 10293 Comm: syz.7.1129 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  978.723752][T10293] Tainted: [L]=SOFTLOCKUP
[  978.723763][T10293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  978.723777][T10293] Call Trace:
[  978.723788][T10293]  <TASK>
[  978.723799][T10293]  dump_stack_lvl+0xe8/0x150
[  978.723838][T10293]  should_fail_ex+0x46c/0x600
[  978.723874][T10293]  prepare_alloc_pages+0x22b/0x6c0
[  978.723907][T10293]  __alloc_frozen_pages_noprof+0x123/0x370
[  978.723936][T10293]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  978.723970][T10293]  ? policy_nodemask+0x27c/0x720
[  978.723998][T10293]  alloc_pages_mpol+0xd1/0x380
[  978.724025][T10293]  vma_alloc_folio_noprof+0xe4/0x280
[  978.724051][T10293]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  978.724074][T10293]  ? ___pte_offset_map+0x29/0x200
[  978.724108][T10293]  ? ___pte_offset_map+0x29/0x200
[  978.724143][T10293]  folio_prealloc+0x30/0x180
[  978.724182][T10293]  do_pte_missing+0x86a/0x27a0
[  978.724216][T10293]  ? handle_mm_fault+0xd1/0x1330
[  978.724252][T10293]  ? handle_mm_fault+0xd1/0x1330
[  978.724283][T10293]  handle_mm_fault+0xcc1/0x1330
[  978.724325][T10293]  ? handle_mm_fault+0xd1/0x1330
[  978.724362][T10293]  ? __pfx_handle_mm_fault+0x10/0x10
[  978.724396][T10293]  ? follow_page_pte+0xc0d/0x1360
[  978.724439][T10293]  ? __pfx_follow_page_pte+0x10/0x10
[  978.724484][T10293]  __get_user_pages+0x166e/0x2830
[  978.724549][T10293]  __gup_longterm_locked+0xde4/0x1660
[  978.724595][T10293]  ? sanity_check_pinned_pages+0x1241/0x1300
[  978.724635][T10293]  gup_fast_fallback+0x1c95/0x21f0
[  978.724710][T10293]  ? __pfx_gup_fast_fallback+0x10/0x10
[  978.724751][T10293]  ? pin_user_pages_fast+0x4d/0xb0
[  978.724787][T10293]  iov_iter_extract_pages+0x35f/0x5e0
[  978.724812][T10293]  ? do_syscall_64+0xec/0xf80
[  978.724842][T10293]  extract_iter_to_sg+0xe46/0x24e0
[  978.724892][T10293]  ? __pfx_extract_iter_to_sg+0x10/0x10
[  978.724945][T10293]  ? __asan_memset+0x22/0x50
[  978.724978][T10293]  af_alg_get_rsgl+0x436/0x810
[  978.725025][T10293]  skcipher_recvmsg+0x3d1/0x11d0
[  978.725056][T10293]  ? __lock_acquire+0x6b6/0x2cf0
[  978.725103][T10293]  ? __pfx_skcipher_recvmsg+0x10/0x10
[  978.725135][T10293]  ? kstrtouint+0x6e/0xe0
[  978.725160][T10293]  ? bpf_lsm_socket_recvmsg+0x9/0x20
[  978.725192][T10293]  ? security_socket_recvmsg+0x7e/0x2e0
[  978.725221][T10293]  ? __pfx_skcipher_recvmsg+0x10/0x10
[  978.725249][T10293]  sock_recvmsg+0x22c/0x270
[  978.725292][T10293]  sock_read_iter+0x23a/0x2f0
[  978.725328][T10293]  ? __pfx_sock_read_iter+0x10/0x10
[  978.725390][T10293]  vfs_read+0x563/0xa30
[  978.725432][T10293]  ? __pfx_vfs_read+0x10/0x10
[  978.725476][T10293]  ? __fget_files+0x2a/0x420
[  978.725512][T10293]  ksys_read+0x14b/0x260
[  978.725543][T10293]  ? __pfx_ksys_read+0x10/0x10
[  978.725586][T10293]  do_syscall_64+0xec/0xf80
[  978.725605][T10293]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  978.725624][T10293]  ? trace_irq_disable+0x37/0x100
[  978.725684][T10293]  ? clear_bhb_loop+0x60/0xb0
[  978.725712][T10293]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  978.725739][T10293] RIP: 0033:0x7fe1328af749
[  978.725762][T10293] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  978.725779][T10293] RSP: 002b:00007fe130b0e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  978.725800][T10293] RAX: ffffffffffffffda RBX: 00007fe132b05fa0 RCX: 00007fe1328af749
[  978.725814][T10293] RDX: 0000000000001078 RSI: 00002000000011c0 RDI: 0000000000000004
[  978.725826][T10293] RBP: 00007fe130b0e090 R08: 0000000000000000 R09: 0000000000000000
[  978.725837][T10293] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  978.725849][T10293] R13: 00007fe132b06038 R14: 00007fe132b05fa0 R15: 00007ffefc34ca98
[  978.725886][T10293]  </TASK>
[  979.262231][T10303] netlink: 'syz.5.1130': attribute type 10 has an invalid length.
[  979.349776][T10301] FAULT_INJECTION: forcing a failure.
[  979.349776][T10301] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  979.349819][T10301] CPU: 1 UID: 0 PID: 10301 Comm: syz.7.1131 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  979.349850][T10301] Tainted: [L]=SOFTLOCKUP
[  979.349858][T10301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  979.349873][T10301] Call Trace:
[  979.349882][T10301]  <TASK>
[  979.349892][T10301]  dump_stack_lvl+0xe8/0x150
[  979.349930][T10301]  should_fail_ex+0x46c/0x600
[  979.349967][T10301]  _copy_from_user+0x2d/0xb0
[  979.349991][T10301]  sctp_getsockopt_peer_addr_params+0xff/0xa90
[  979.350027][T10301]  ? __pfx_sctp_getsockopt_peer_addr_params+0x10/0x10
[  979.350056][T10301]  ? rt_mutex_slowunlock+0x493/0x8a0
[  979.350110][T10301]  ? __local_bh_enable_ip+0x1af/0x2c0
[  979.350139][T10301]  ? lockdep_hardirqs_on+0x7b/0x110
[  979.350167][T10301]  sctp_getsockopt+0x7e7/0xb90
[  979.350201][T10301]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  979.350227][T10301]  do_sock_getsockopt+0x2b4/0x3d0
[  979.350260][T10301]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  979.350290][T10301]  ? __fget_files+0x3a6/0x420
[  979.350313][T10301]  ? __fget_files+0x2a/0x420
[  979.350353][T10301]  __x64_sys_getsockopt+0x1ab/0x250
[  979.350394][T10301]  do_syscall_64+0xec/0xf80
[  979.350417][T10301]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  979.350440][T10301]  ? trace_irq_disable+0x37/0x100
[  979.350464][T10301]  ? clear_bhb_loop+0x60/0xb0
[  979.350492][T10301]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  979.350515][T10301] RIP: 0033:0x7fe1328af749
[  979.350536][T10301] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  979.350556][T10301] RSP: 002b:00007fe130b0e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  979.350581][T10301] RAX: ffffffffffffffda RBX: 00007fe132b05fa0 RCX: 00007fe1328af749
[  979.350598][T10301] RDX: 0000000000000009 RSI: 0000000000000084 RDI: 0000000000000003
[  979.350612][T10301] RBP: 00007fe130b0e090 R08: 0000200000000440 R09: 0000000000000000
[  979.350628][T10301] R10: 00002000000004c0 R11: 0000000000000246 R12: 0000000000000001
[  979.350643][T10301] R13: 00007fe132b06038 R14: 00007fe132b05fa0 R15: 00007ffefc34ca98
[  979.350680][T10301]  </TASK>
[  982.192493][T10299] netlink: 'syz.5.1130': attribute type 10 has an invalid length.
[  985.112536][T10303] team0: Port device dummy0 added
[  985.273285][T10033] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  985.286748][T10033] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  985.287828][T10299] team0: Port device dummy0 removed
[  985.312445][T10033] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  985.314616][T10033] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  985.315519][T10033] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  985.371883][T10299] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  985.377779][T10329] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1138'.
[  985.746389][ T7367] hsr_slave_0: left promiscuous mode
[  985.770750][ T7367] hsr_slave_1: left promiscuous mode
[  985.771814][ T7367] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  985.771843][ T7367] batman_adv: batadv0: Removing interface: batadv_slave_0
[  985.799338][ T7367] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  985.799368][ T7367] batman_adv: batadv0: Removing interface: batadv_slave_1
[  985.973142][ T7367] veth1_macvtap: left promiscuous mode
[  985.973254][ T7367] veth0_macvtap: left promiscuous mode
[  985.990144][ T7367] veth1_vlan: left promiscuous mode
[  985.991217][ T7367] veth0_vlan: left promiscuous mode
[  987.527361][ T8317] Bluetooth: hci0: command tx timeout
[  987.732822][T10360] FAULT_INJECTION: forcing a failure.
[  987.732822][T10360] name failslab, interval 1, probability 0, space 0, times 0
[  987.732862][T10360] CPU: 0 UID: 0 PID: 10360 Comm: syz.5.1146 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  987.732893][T10360] Tainted: [L]=SOFTLOCKUP
[  987.732901][T10360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  987.732916][T10360] Call Trace:
[  987.732925][T10360]  <TASK>
[  987.732935][T10360]  dump_stack_lvl+0xe8/0x150
[  987.732972][T10360]  should_fail_ex+0x46c/0x600
[  987.733005][T10360]  ? __alloc_skb+0x1dc/0x3a0
[  987.733029][T10360]  should_failslab+0xa8/0x100
[  987.733053][T10360]  ? __alloc_skb+0x1dc/0x3a0
[  987.733075][T10360]  kmem_cache_alloc_node_noprof+0x8b/0x6f0
[  987.733106][T10360]  ? __pfx_tcp_current_mss+0x10/0x10
[  987.733133][T10360]  ? try_to_take_rt_mutex+0x840/0xb00
[  987.733165][T10360]  __alloc_skb+0x1dc/0x3a0
[  987.733189][T10360]  tcp_stream_alloc_skb+0x3d/0x350
[  987.733214][T10360]  tcp_sendmsg_locked+0x1abe/0x5520
[  987.733278][T10360]  ? __pfx_tcp_sendmsg_locked+0x10/0x10
[  987.733307][T10360]  ? __local_bh_enable_ip+0x1af/0x2c0
[  987.733329][T10360]  ? lockdep_hardirqs_on+0x7b/0x110
[  987.733352][T10360]  tcp_sendmsg+0x2f/0x50
[  987.733373][T10360]  __sock_sendmsg+0x19c/0x270
[  987.733406][T10360]  ____sys_sendmsg+0x534/0x810
[  987.733434][T10360]  ? __pfx_____sys_sendmsg+0x10/0x10
[  987.733466][T10360]  ? import_iovec+0x74/0xa0
[  987.733486][T10360]  ___sys_sendmsg+0x21f/0x2a0
[  987.733511][T10360]  ? __pfx____sys_sendmsg+0x10/0x10
[  987.733540][T10360]  ? kstrtouint+0x6e/0xe0
[  987.733587][T10360]  ? __fget_files+0x2a/0x420
[  987.733605][T10360]  ? __fget_files+0x3a6/0x420
[  987.733633][T10360]  __sys_sendmmsg+0x22d/0x430
[  987.733661][T10360]  ? __pfx___sys_sendmmsg+0x10/0x10
[  987.733700][T10360]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  987.733737][T10360]  ? ksys_write+0x230/0x260
[  987.733765][T10360]  ? __pfx_ksys_write+0x10/0x10
[  987.733797][T10360]  __x64_sys_sendmmsg+0xa0/0xc0
[  987.733856][T10360]  do_syscall_64+0xec/0xf80
[  987.733874][T10360]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  987.733892][T10360]  ? trace_irq_disable+0x37/0x100
[  987.733912][T10360]  ? clear_bhb_loop+0x60/0xb0
[  987.733934][T10360]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  987.733952][T10360] RIP: 0033:0x7fb373fdf749
[  987.733969][T10360] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  987.733985][T10360] RSP: 002b:00007fb37223e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  987.734005][T10360] RAX: ffffffffffffffda RBX: 00007fb374235fa0 RCX: 00007fb373fdf749
[  987.734019][T10360] RDX: 0000000000000001 RSI: 0000200000002440 RDI: 0000000000000003
[  987.734031][T10360] RBP: 00007fb37223e090 R08: 0000000000000000 R09: 0000000000000000
[  987.734043][T10360] R10: 00000000040408e0 R11: 0000000000000246 R12: 0000000000000001
[  987.734055][T10360] R13: 00007fb374236038 R14: 00007fb374235fa0 R15: 00007fff97efe728
[  987.734083][T10360]  </TASK>
[  990.223673][ T8317] Bluetooth: hci0: command tx timeout
[  992.275086][ T8317] Bluetooth: hci0: command tx timeout
[  993.873775][ T9685] kernel write not supported for file bpf-prog (pid: 9685 comm: kworker/1:7)
[  994.348397][ T8317] Bluetooth: hci0: command tx timeout
[  994.758351][ T7367] team0 (unregistering): Port device team_slave_1 removed
[  995.020355][ T7367] team0 (unregistering): Port device team_slave_0 removed
[  998.212933][T10388] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1153'.
[  998.236925][T10388] veth2: entered promiscuous mode
[  998.236951][T10388] veth2: entered allmulticast mode
[  998.441014][ T9920] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  998.530241][ T1321] ieee802154 phy0 wpan0: encryption failed: -22
[  998.530299][ T1321] ieee802154 phy1 wpan1: encryption failed: -22
[  998.607679][ T9920] usb 8-1: Using ep0 maxpacket: 8
[  998.610204][ T9920] usb 8-1: config 0 has an invalid interface number: 102 but max is 0
[  998.610235][ T9920] usb 8-1: config 0 has no interface number 0
[  998.610283][ T9920] usb 8-1: config 0 interface 102 altsetting 6 has an endpoint descriptor with address 0xDA, changing to 0x8A
[  998.610315][ T9920] usb 8-1: config 0 interface 102 altsetting 6 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  998.610345][ T9920] usb 8-1: config 0 interface 102 has no altsetting 0
[  998.639143][ T9920] usb 8-1: New USB device found, idVendor=0fb8, idProduct=3002, bcdDevice=a8.f7
[  998.639177][ T9920] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  998.639200][ T9920] usb 8-1: Product: syz
[  998.639217][ T9920] usb 8-1: Manufacturer: syz
[  998.639233][ T9920] usb 8-1: SerialNumber: syz
[  998.766548][ T9920] usb 8-1: config 0 descriptor??
[  999.747672][ T9920] usb 8-1: USB disconnect, device number 4
[  999.856617][T10403] FAULT_INJECTION: forcing a failure.
[  999.856617][T10403] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  999.856658][T10403] CPU: 0 UID: 0 PID: 10403 Comm: syz.8.1160 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  999.856688][T10403] Tainted: [L]=SOFTLOCKUP
[  999.856697][T10403] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  999.856711][T10403] Call Trace:
[  999.856719][T10403]  <TASK>
[  999.856729][T10403]  dump_stack_lvl+0xe8/0x150
[  999.856764][T10403]  should_fail_ex+0x46c/0x600
[  999.856800][T10403]  _copy_from_user+0x2d/0xb0
[  999.856824][T10403]  sctp_setsockopt+0x1c4/0x12c0
[  999.856858][T10403]  ? sock_common_setsockopt+0x36/0xc0
[  999.856881][T10403]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  999.856905][T10403]  do_sock_setsockopt+0x17c/0x1b0
[  999.856938][T10403]  __x64_sys_setsockopt+0x145/0x1b0
[  999.856972][T10403]  do_syscall_64+0xec/0xf80
[  999.856995][T10403]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  999.857017][T10403]  ? trace_irq_disable+0x37/0x100
[  999.857042][T10403]  ? clear_bhb_loop+0x60/0xb0
[  999.857069][T10403]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  999.857091][T10403] RIP: 0033:0x7f208742f749
[  999.857111][T10403] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  999.857131][T10403] RSP: 002b:00007f208568e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  999.857155][T10403] RAX: ffffffffffffffda RBX: 00007f2087685fa0 RCX: 00007f208742f749
[  999.857172][T10403] RDX: 0000000000000017 RSI: 0000000000000084 RDI: 0000000000000003
[  999.857186][T10403] RBP: 00007f208568e090 R08: 000000000000000a R09: 0000000000000000
[  999.857200][T10403] R10: 0000200000000240 R11: 0000000000000246 R12: 0000000000000001
[  999.857215][T10403] R13: 00007f2087686038 R14: 00007f2087685fa0 R15: 00007fff30c714d8
[  999.857250][T10403]  </TASK>
[ 1000.190049][T10408] FAULT_INJECTION: forcing a failure.
[ 1000.190049][T10408] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1000.190092][T10408] CPU: 0 UID: 0 PID: 10408 Comm: syz.8.1162 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1000.190122][T10408] Tainted: [L]=SOFTLOCKUP
[ 1000.190131][T10408] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1000.190145][T10408] Call Trace:
[ 1000.190153][T10408]  <TASK>
[ 1000.190163][T10408]  dump_stack_lvl+0xe8/0x150
[ 1000.190205][T10408]  should_fail_ex+0x46c/0x600
[ 1000.190240][T10408]  _copy_from_user+0x2d/0xb0
[ 1000.190263][T10408]  ucma_listen+0x89/0x260
[ 1000.190292][T10408]  ? __pfx_ucma_listen+0x10/0x10
[ 1000.190331][T10408]  ucma_write+0x252/0x2f0
[ 1000.190360][T10408]  ? __pfx_ucma_write+0x10/0x10
[ 1000.190391][T10408]  ? rw_verify_area+0x25b/0x4e0
[ 1000.190422][T10408]  ? __pfx_ucma_write+0x10/0x10
[ 1000.190451][T10408]  vfs_write+0x287/0xb40
[ 1000.190490][T10408]  ? __pfx_vfs_write+0x10/0x10
[ 1000.190525][T10408]  ? __fget_files+0x2a/0x420
[ 1000.190552][T10408]  ? __fget_files+0x2a/0x420
[ 1000.190575][T10408]  ? __fget_files+0x3a6/0x420
[ 1000.190603][T10408]  ? __fget_files+0x2a/0x420
[ 1000.190642][T10408]  ksys_write+0x14b/0x260
[ 1000.190677][T10408]  ? __pfx_ksys_write+0x10/0x10
[ 1000.190720][T10408]  do_syscall_64+0xec/0xf80
[ 1000.190742][T10408]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1000.190763][T10408]  ? trace_irq_disable+0x37/0x100
[ 1000.190786][T10408]  ? clear_bhb_loop+0x60/0xb0
[ 1000.190814][T10408]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1000.190836][T10408] RIP: 0033:0x7f208742f749
[ 1000.190855][T10408] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1000.190876][T10408] RSP: 002b:00007f208568e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1000.190899][T10408] RAX: ffffffffffffffda RBX: 00007f2087685fa0 RCX: 00007f208742f749
[ 1000.190916][T10408] RDX: 0000000000000010 RSI: 0000200000000200 RDI: 0000000000000004
[ 1000.190931][T10408] RBP: 00007f208568e090 R08: 0000000000000000 R09: 0000000000000000
[ 1000.190945][T10408] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1000.190958][T10408] R13: 00007f2087686038 R14: 00007f2087685fa0 R15: 00007fff30c714d8
[ 1000.190993][T10408]  </TASK>
[ 1002.170757][T10335] chnl_net:caif_netlink_parms(): no params data found
[ 1003.249401][T10429] trusted_key: encrypted_key: insufficient parameters specified
[ 1004.528840][ T7367] bridge_slave_1: left allmulticast mode
[ 1004.528865][ T7367] bridge_slave_1: left promiscuous mode
[ 1004.529054][ T7367] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1004.688942][ T7367] bridge_slave_0: left allmulticast mode
[ 1004.688967][ T7367] bridge_slave_0: left promiscuous mode
[ 1004.689193][ T7367] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1007.255774][ T7367] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1007.396950][ T7367] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1007.492143][ T7367] bond0 (unregistering): Released all slaves
[ 1007.609691][T10434] tipc: Started in network mode
[ 1007.609715][T10434] tipc: Node identity 4, cluster identity 4711
[ 1007.609729][T10434] tipc: Node number set to 4
[ 1008.602281][T10335] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1008.602486][T10335] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1008.602725][T10335] bridge_slave_0: entered allmulticast mode
[ 1008.605571][T10335] bridge_slave_0: entered promiscuous mode
[ 1009.404760][T10335] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1009.404907][T10335] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1009.405186][T10335] bridge_slave_1: entered allmulticast mode
[ 1009.429258][T10335] bridge_slave_1: entered promiscuous mode
[ 1009.568887][ T7367] hsr_slave_0: left promiscuous mode
[ 1009.657671][ T7367] hsr_slave_1: left promiscuous mode
[ 1009.658674][ T7367] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1009.684237][ T7367] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1010.760388][ T7367] team0 (unregistering): Port device team_slave_1 removed
[ 1010.938475][ T7367] team0 (unregistering): Port device team_slave_0 removed
[ 1011.833804][T10335] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1011.860769][T10335] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1011.910019][T10498] FAULT_INJECTION: forcing a failure.
[ 1011.910019][T10498] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1011.910060][T10498] CPU: 1 UID: 0 PID: 10498 Comm: syz.5.1187 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1011.910090][T10498] Tainted: [L]=SOFTLOCKUP
[ 1011.910099][T10498] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1011.910113][T10498] Call Trace:
[ 1011.910122][T10498]  <TASK>
[ 1011.910133][T10498]  dump_stack_lvl+0xe8/0x150
[ 1011.910171][T10498]  should_fail_ex+0x46c/0x600
[ 1011.910208][T10498]  _copy_from_user+0x2d/0xb0
[ 1011.910233][T10498]  kstrtouint_from_user+0xc4/0x170
[ 1011.910267][T10498]  ? __pfx_kstrtouint_from_user+0x10/0x10
[ 1011.910318][T10498]  proc_fail_nth_write+0x88/0x200
[ 1011.910361][T10498]  ? __pfx_proc_fail_nth_write+0x10/0x10
[ 1011.910402][T10498]  ? __pfx_proc_fail_nth_write+0x10/0x10
[ 1011.910439][T10498]  vfs_write+0x287/0xb40
[ 1011.910484][T10498]  ? __pfx_vfs_write+0x10/0x10
[ 1011.910518][T10498]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1011.910542][T10498]  ? lockdep_hardirqs_on+0x7b/0x110
[ 1011.910564][T10498]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1011.910589][T10498]  ? mutex_lock_nested+0x154/0x1d0
[ 1011.910618][T10498]  ? fdget_pos+0x253/0x320
[ 1011.910653][T10498]  ksys_write+0x14b/0x260
[ 1011.910686][T10498]  ? __fget_files+0x3a6/0x420
[ 1011.910712][T10498]  ? __pfx_ksys_write+0x10/0x10
[ 1011.910759][T10498]  do_syscall_64+0xec/0xf80
[ 1011.910781][T10498]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1011.910804][T10498]  ? trace_irq_disable+0x37/0x100
[ 1011.910828][T10498]  ? clear_bhb_loop+0x60/0xb0
[ 1011.910854][T10498]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1011.910876][T10498] RIP: 0033:0x7fb373fde1ff
[ 1011.910895][T10498] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 1011.910914][T10498] RSP: 002b:00007fb37221d030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 1011.910934][T10498] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fb373fde1ff
[ 1011.910947][T10498] RDX: 0000000000000001 RSI: 00007fb37221d0a0 RDI: 0000000000000005
[ 1011.910959][T10498] RBP: 00007fb37221d090 R08: 0000000000000000 R09: 0000000000000000
[ 1011.910971][T10498] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[ 1011.910982][T10498] R13: 00007fb374236128 R14: 00007fb374236090 R15: 00007fff97efe728
[ 1011.911011][T10498]  </TASK>
[ 1012.261037][ T5983] usb 4-1: new high-speed USB device number 55 using dummy_hcd
[ 1012.373196][T10335] team0: Port device team_slave_0 added
[ 1012.378195][T10335] team0: Port device team_slave_1 added
[ 1012.438509][ T5983] usb 4-1: config 0 has an invalid interface number: 64 but max is 0
[ 1012.438541][ T5983] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1012.438562][ T5983] usb 4-1: config 0 has no interface number 0
[ 1012.443867][ T5983] usb 4-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice=39.48
[ 1012.443899][ T5983] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1012.443920][ T5983] usb 4-1: Product: syz
[ 1012.443948][ T5983] usb 4-1: Manufacturer: syz
[ 1012.443964][ T5983] usb 4-1: SerialNumber: syz
[ 1012.509013][ T5983] usb 4-1: config 0 descriptor??
[ 1012.529810][T10504] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 1012.529847][T10504] overlayfs: missing 'lowerdir'
[ 1012.534407][ T5983] uvcvideo 4-1:0.64: probe with driver uvcvideo failed with error -22
[ 1013.021696][T10509] FAULT_INJECTION: forcing a failure.
[ 1013.021696][T10509] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1013.021738][T10509] CPU: 1 UID: 0 PID: 10509 Comm: syz.5.1193 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1013.021770][T10509] Tainted: [L]=SOFTLOCKUP
[ 1013.021778][T10509] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1013.021792][T10509] Call Trace:
[ 1013.021802][T10509]  <TASK>
[ 1013.021812][T10509]  dump_stack_lvl+0xe8/0x150
[ 1013.021848][T10509]  should_fail_ex+0x46c/0x600
[ 1013.021885][T10509]  _copy_to_user+0x31/0xb0
[ 1013.021910][T10509]  simple_read_from_buffer+0xe1/0x170
[ 1013.021940][T10509]  proc_fail_nth_read+0x1b6/0x220
[ 1013.021979][T10509]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1013.022018][T10509]  ? rw_verify_area+0x2ac/0x4e0
[ 1013.022048][T10509]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1013.022084][T10509]  vfs_read+0x206/0xa30
[ 1013.022126][T10509]  ? __pfx_vfs_read+0x10/0x10
[ 1013.022169][T10509]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1013.022194][T10509]  ? lockdep_hardirqs_on+0x7b/0x110
[ 1013.022216][T10509]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1013.022240][T10509]  ? mutex_lock_nested+0x154/0x1d0
[ 1013.022269][T10509]  ? fdget_pos+0x253/0x320
[ 1013.022304][T10509]  ksys_read+0x14b/0x260
[ 1013.022339][T10509]  ? __pfx_ksys_read+0x10/0x10
[ 1013.022369][T10509]  ? __se_sys_kcmp+0x80e/0x950
[ 1013.022407][T10509]  do_syscall_64+0xec/0xf80
[ 1013.022431][T10509]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1013.022452][T10509]  ? trace_irq_disable+0x37/0x100
[ 1013.022477][T10509]  ? clear_bhb_loop+0x60/0xb0
[ 1013.022506][T10509]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1013.022527][T10509] RIP: 0033:0x7fb373fde15c
[ 1013.022548][T10509] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1013.022568][T10509] RSP: 002b:00007fb37223e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1013.022591][T10509] RAX: ffffffffffffffda RBX: 00007fb374235fa0 RCX: 00007fb373fde15c
[ 1013.022608][T10509] RDX: 000000000000000f RSI: 00007fb37223e0a0 RDI: 0000000000000006
[ 1013.022623][T10509] RBP: 00007fb37223e090 R08: 0000000000000000 R09: 0000000000000000
[ 1013.022636][T10509] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000001
[ 1013.022649][T10509] R13: 00007fb374236038 R14: 00007fb374235fa0 R15: 00007fff97efe728
[ 1013.022686][T10509]  </TASK>
[ 1013.347721][T10511] syz.8.1190 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[ 1013.539122][T10335] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1013.539140][T10335] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1013.539164][T10335] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1013.594439][T10335] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1013.594459][T10335] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1013.594484][T10335] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1013.987683][ T5884] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[ 1014.074437][T10335] hsr_slave_0: entered promiscuous mode
[ 1014.076202][T10335] hsr_slave_1: entered promiscuous mode
[ 1014.137644][ T5884] usb 6-1: Using ep0 maxpacket: 16
[ 1014.146199][ T5884] usb 6-1: config 4 has an invalid interface number: 51 but max is 0
[ 1014.146235][ T5884] usb 6-1: config 4 has no interface number 0
[ 1014.146260][ T5884] usb 6-1: config 4 interface 51 has no altsetting 0
[ 1014.152789][ T5884] usb 6-1: New USB device found, idVendor=0409, idProduct=0063, bcdDevice=83.4b
[ 1014.152822][ T5884] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1014.152843][ T5884] usb 6-1: Product: syz
[ 1014.152865][ T5884] usb 6-1: Manufacturer: syz
[ 1014.152876][ T5884] usb 6-1: SerialNumber: syz
[ 1014.240487][ T5884] upd78f0730 6-1:4.51: upd78f0730 converter detected
[ 1014.278592][ T5884] usb 6-1: upd78f0730 converter now attached to ttyUSB0
[ 1014.449063][T10516] netlink: 80 bytes leftover after parsing attributes in process `syz.5.1195'.
[ 1014.454596][T10516] netlink: 80 bytes leftover after parsing attributes in process `syz.5.1195'.
[ 1014.485832][ T9840] usb 6-1: USB disconnect, device number 9
[ 1014.520317][ T9840] upd78f0730 ttyUSB0: upd78f0730 converter now disconnected from ttyUSB0
[ 1014.520791][ T9840] upd78f0730 6-1:4.51: device disconnected
[ 1015.483357][T10535] FAULT_INJECTION: forcing a failure.
[ 1015.483357][T10535] name failslab, interval 1, probability 0, space 0, times 0
[ 1015.483399][T10535] CPU: 0 UID: 0 PID: 10535 Comm: syz.7.1202 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1015.483429][T10535] Tainted: [L]=SOFTLOCKUP
[ 1015.483438][T10535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1015.483452][T10535] Call Trace:
[ 1015.483462][T10535]  <TASK>
[ 1015.483473][T10535]  dump_stack_lvl+0xe8/0x150
[ 1015.483512][T10535]  should_fail_ex+0x46c/0x600
[ 1015.483548][T10535]  should_failslab+0xa8/0x100
[ 1015.483574][T10535]  __kmalloc_noprof+0xe0/0x7e0
[ 1015.483610][T10535]  ? tomoyo_encode+0x28b/0x550
[ 1015.483638][T10535]  tomoyo_encode+0x28b/0x550
[ 1015.483667][T10535]  tomoyo_realpath_from_path+0x58d/0x5d0
[ 1015.483694][T10535]  ? tomoyo_domain+0xd9/0x130
[ 1015.483724][T10535]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 1015.483757][T10535]  tomoyo_path_number_perm+0x1e8/0x5a0
[ 1015.483794][T10535]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1015.483826][T10535]  ? __lock_acquire+0x6b6/0x2cf0
[ 1015.483861][T10535]  ? do_raw_spin_lock+0x121/0x290
[ 1015.483924][T10535]  ? __fget_files+0x2a/0x420
[ 1015.483953][T10535]  ? __fget_files+0x2a/0x420
[ 1015.483977][T10535]  ? __fget_files+0x3a6/0x420
[ 1015.484000][T10535]  ? __fget_files+0x2a/0x420
[ 1015.484037][T10535]  security_file_ioctl+0xcb/0x2d0
[ 1015.484073][T10535]  __se_sys_ioctl+0x47/0x170
[ 1015.484108][T10535]  do_syscall_64+0xec/0xf80
[ 1015.484132][T10535]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1015.484164][T10535]  ? trace_irq_disable+0x37/0x100
[ 1015.484189][T10535]  ? clear_bhb_loop+0x60/0xb0
[ 1015.484218][T10535]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1015.484241][T10535] RIP: 0033:0x7fe1328af749
[ 1015.484261][T10535] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1015.484281][T10535] RSP: 002b:00007fe130b0e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1015.484306][T10535] RAX: ffffffffffffffda RBX: 00007fe132b05fa0 RCX: 00007fe1328af749
[ 1015.484322][T10535] RDX: 0000200000000040 RSI: 000000004018aebd RDI: 0000000000000004
[ 1015.484337][T10535] RBP: 00007fe130b0e090 R08: 0000000000000000 R09: 0000000000000000
[ 1015.484351][T10535] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1015.484364][T10535] R13: 00007fe132b06038 R14: 00007fe132b05fa0 R15: 00007ffefc34ca98
[ 1015.484400][T10535]  </TASK>
[ 1015.484422][T10535] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1016.205529][T10540] ./cgroup: Can't lookup blockdev
[ 1016.319341][ T9840] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[ 1016.387369][T10335] netdevsim netdevsim9 netdevsim0: renamed from eth0
[ 1016.494277][ T9840] usb 9-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1016.494311][ T9840] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1016.494332][ T9840] usb 9-1: Product: syz
[ 1016.494347][ T9840] usb 9-1: Manufacturer: syz
[ 1016.494362][ T9840] usb 9-1: SerialNumber: syz
[ 1016.494406][T10335] netdevsim netdevsim9 netdevsim1: renamed from eth1
[ 1016.570569][T10335] netdevsim netdevsim9 netdevsim2: renamed from eth2
[ 1016.572333][ T9840] usb 9-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1016.698626][T10335] netdevsim netdevsim9 netdevsim3: renamed from eth3
[ 1017.066044][ T9920] usb 9-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1017.754234][T10335] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1018.781847][ T6387] usb 9-1: USB disconnect, device number 9
[ 1020.597618][ T9920] usb 9-1: Service connection timeout for: 256
[ 1020.597659][ T9920] ath9k_htc 9-1:1.0: ath9k_htc: Unable to initialize HTC services
[ 1020.602861][ T9920] ath9k_htc: Failed to initialize the device
[ 1020.661323][ T6387] usb 9-1: ath9k_htc: USB layer deinitialized
[ 1020.712109][T10335] 8021q: adding VLAN 0 to HW filter on device team0
[ 1020.860070][ T3564] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1020.877879][ T3564] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1020.902337][ T3564] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1020.902510][ T3564] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1021.468420][ T9920] usb 4-1: USB disconnect, device number 55
[ 1022.475291][T10335] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1022.630968][ T6387] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[ 1023.257608][ T6387] usb 6-1: Using ep0 maxpacket: 16
[ 1023.259667][ T6387] usb 6-1: config 8 has an invalid interface number: 206 but max is 0
[ 1023.259697][ T6387] usb 6-1: config 8 has no interface number 0
[ 1023.259746][ T6387] usb 6-1: config 8 interface 206 altsetting 1 has an endpoint descriptor with address 0xF7, changing to 0x87
[ 1023.259775][ T6387] usb 6-1: config 8 interface 206 altsetting 1 endpoint 0x87 has invalid maxpacket 33058, setting to 1024
[ 1023.259805][ T6387] usb 6-1: config 8 interface 206 altsetting 1 endpoint 0xC has invalid wMaxPacketSize 0
[ 1023.259829][ T6387] usb 6-1: config 8 interface 206 altsetting 1 bulk endpoint 0xC has invalid maxpacket 0
[ 1023.259854][ T6387] usb 6-1: config 8 interface 206 altsetting 1 has 2 endpoint descriptors, different from the interface descriptor's value: 9
[ 1023.259883][ T6387] usb 6-1: config 8 interface 206 has no altsetting 0
[ 1023.262541][ T6387] usb 6-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=35.bb
[ 1023.262575][ T6387] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1023.262597][ T6387] usb 6-1: Product: syz
[ 1023.262613][ T6387] usb 6-1: Manufacturer: syz
[ 1023.262629][ T6387] usb 6-1: SerialNumber: syz
[ 1024.387942][T10578] FAULT_INJECTION: forcing a failure.
[ 1024.387942][T10578] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1024.387972][T10578] CPU: 0 UID: 0 PID: 10578 Comm: syz.7.1206 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1024.387995][T10578] Tainted: [L]=SOFTLOCKUP
[ 1024.388001][T10578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1024.388011][T10578] Call Trace:
[ 1024.388017][T10578]  <TASK>
[ 1024.388024][T10578]  dump_stack_lvl+0xe8/0x150
[ 1024.388051][T10578]  should_fail_ex+0x46c/0x600
[ 1024.388078][T10578]  _copy_to_user+0x31/0xb0
[ 1024.388098][T10578]  simple_read_from_buffer+0xe1/0x170
[ 1024.388118][T10578]  proc_fail_nth_read+0x1b6/0x220
[ 1024.388145][T10578]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1024.388172][T10578]  ? rw_verify_area+0x2ac/0x4e0
[ 1024.388193][T10578]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1024.388218][T10578]  vfs_read+0x206/0xa30
[ 1024.388272][T10578]  ? __pfx_vfs_read+0x10/0x10
[ 1024.388308][T10578]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1024.388342][T10578]  ? lockdep_hardirqs_on+0x7b/0x110
[ 1024.388369][T10578]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1024.388386][T10578]  ? mutex_lock_nested+0x154/0x1d0
[ 1024.388406][T10578]  ? fdget_pos+0x253/0x320
[ 1024.388429][T10578]  ksys_read+0x14b/0x260
[ 1024.388453][T10578]  ? __pfx_ksys_read+0x10/0x10
[ 1024.388484][T10578]  do_syscall_64+0xec/0xf80
[ 1024.388501][T10578]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1024.388517][T10578]  ? clear_bhb_loop+0x60/0xb0
[ 1024.388536][T10578]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1024.388552][T10578] RIP: 0033:0x7fe1328ae15c
[ 1024.388566][T10578] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1024.388580][T10578] RSP: 002b:00007fe130aed030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1024.388597][T10578] RAX: ffffffffffffffda RBX: 00007fe132b06090 RCX: 00007fe1328ae15c
[ 1024.388609][T10578] RDX: 000000000000000f RSI: 00007fe130aed0a0 RDI: 0000000000000006
[ 1024.388619][T10578] RBP: 00007fe130aed090 R08: 0000000000000000 R09: 0000000000000000
[ 1024.388629][T10578] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1024.388639][T10578] R13: 00007fe132b06128 R14: 00007fe132b06090 R15: 00007ffefc34ca98
[ 1024.388664][T10578]  </TASK>
[ 1025.454276][ T6387] garmin_gps 6-1:8.206: Garmin GPS usb/tty converter detected
[ 1025.471116][ T6387] garmin_gps ttyUSB0: garmin_write_bulk - usb_submit_urb(write bulk) failed with status = -90
[ 1025.471742][ T6387] garmin_gps ttyUSB0: probe with driver garmin_gps failed with error -90
[ 1025.517651][ T6387] usb 6-1: USB disconnect, device number 10
[ 1025.522269][ T6387] garmin_gps 6-1:8.206: device disconnected
[ 1027.304748][T10585] loop6: detected capacity change from 0 to 524287999
[ 1027.376561][T10585] Dev loop6: unable to read RDB block 8
[ 1027.376808][T10585]  loop6: unable to read partition table
[ 1027.376990][T10585] loop_reread_partitions: partition scan of loop6 (3��x��C�

) failed (rc=-5)
[ 1027.399271][T10335] veth0_vlan: entered promiscuous mode
[ 1027.470716][T10335] veth1_vlan: entered promiscuous mode
[ 1027.585677][T10335] veth0_macvtap: entered promiscuous mode
[ 1027.623633][T10335] veth1_macvtap: entered promiscuous mode
[ 1027.678694][T10335] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1027.729145][T10335] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1027.773127][ T7367] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1027.773211][ T7367] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1027.773267][ T7367] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1027.773303][ T7367] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1029.458865][T10603] FAULT_INJECTION: forcing a failure.
[ 1029.458865][T10603] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1029.458934][T10603] CPU: 0 UID: 0 PID: 10603 Comm: syz.5.1218 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1029.458967][T10603] Tainted: [L]=SOFTLOCKUP
[ 1029.458976][T10603] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1029.458990][T10603] Call Trace:
[ 1029.458999][T10603]  <TASK>
[ 1029.459009][T10603]  dump_stack_lvl+0xe8/0x150
[ 1029.459046][T10603]  should_fail_ex+0x46c/0x600
[ 1029.459072][T10603]  _copy_from_user+0x2d/0xb0
[ 1029.459089][T10603]  ___sys_sendmsg+0x158/0x2a0
[ 1029.459112][T10603]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1029.459135][T10603]  ? __schedule+0x1475/0x5070
[ 1029.459180][T10603]  ? __fget_files+0x2a/0x420
[ 1029.459197][T10603]  ? __fget_files+0x3a6/0x420
[ 1029.459221][T10603]  __sys_sendmmsg+0x22d/0x430
[ 1029.459245][T10603]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1029.459273][T10603]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 1029.459304][T10603]  ? ksys_write+0x230/0x260
[ 1029.459328][T10603]  ? __pfx_ksys_write+0x10/0x10
[ 1029.459356][T10603]  __x64_sys_sendmmsg+0xa0/0xc0
[ 1029.459378][T10603]  do_syscall_64+0xec/0xf80
[ 1029.459393][T10603]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1029.459416][T10603]  ? clear_bhb_loop+0x60/0xb0
[ 1029.459435][T10603]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1029.459451][T10603] RIP: 0033:0x7fb373fdf749
[ 1029.459465][T10603] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1029.459479][T10603] RSP: 002b:00007fb37221d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1029.459495][T10603] RAX: ffffffffffffffda RBX: 00007fb374236090 RCX: 00007fb373fdf749
[ 1029.459508][T10603] RDX: 0000000000000001 RSI: 0000200000000c00 RDI: 0000000000000005
[ 1029.459518][T10603] RBP: 00007fb37221d090 R08: 0000000000000000 R09: 0000000000000000
[ 1029.459528][T10603] R10: 0000000000008040 R11: 0000000000000246 R12: 0000000000000001
[ 1029.459538][T10603] R13: 00007fb374236128 R14: 00007fb374236090 R15: 00007fff97efe728
[ 1029.459563][T10603]  </TASK>
[ 1031.161882][ T6488] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1031.161910][ T6488] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1032.355136][ T6488] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1032.355162][ T6488] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1036.829650][T10630] FAULT_INJECTION: forcing a failure.
[ 1036.829650][T10630] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1036.829692][T10630] CPU: 1 UID: 0 PID: 10630 Comm: syz.8.1224 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1036.829723][T10630] Tainted: [L]=SOFTLOCKUP
[ 1036.829732][T10630] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1036.829747][T10630] Call Trace:
[ 1036.829756][T10630]  <TASK>
[ 1036.829766][T10630]  dump_stack_lvl+0xe8/0x150
[ 1036.829803][T10630]  should_fail_ex+0x46c/0x600
[ 1036.829840][T10630]  _copy_from_user+0x2d/0xb0
[ 1036.829864][T10630]  sctp_setsockopt+0x1c4/0x12c0
[ 1036.829898][T10630]  ? sock_common_setsockopt+0x36/0xc0
[ 1036.829922][T10630]  ? __pfx_sock_common_setsockopt+0x10/0x10
[ 1036.829947][T10630]  do_sock_setsockopt+0x17c/0x1b0
[ 1036.829988][T10630]  __x64_sys_setsockopt+0x145/0x1b0
[ 1036.830022][T10630]  do_syscall_64+0xec/0xf80
[ 1036.830044][T10630]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1036.830066][T10630]  ? trace_irq_disable+0x37/0x100
[ 1036.830089][T10630]  ? clear_bhb_loop+0x60/0xb0
[ 1036.830116][T10630]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1036.830139][T10630] RIP: 0033:0x7f208742f749
[ 1036.830159][T10630] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1036.830179][T10630] RSP: 002b:00007f208568e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1036.830202][T10630] RAX: ffffffffffffffda RBX: 00007f2087685fa0 RCX: 00007f208742f749
[ 1036.830217][T10630] RDX: 0000000000000017 RSI: 0000000000000084 RDI: 0000000000000003
[ 1036.830229][T10630] RBP: 00007f208568e090 R08: 000000000000000a R09: 0000000000000000
[ 1036.830244][T10630] R10: 0000200000000240 R11: 0000000000000246 R12: 0000000000000001
[ 1036.830258][T10630] R13: 00007f2087686038 R14: 00007f2087685fa0 R15: 00007fff30c714d8
[ 1036.830294][T10630]  </TASK>
[ 1040.899858][   T37] kauditd_printk_skb: 8 callbacks suppressed
[ 1040.899880][   T37] audit: type=1326 audit(1766743321.083:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10638 comm="syz.3.1228" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f1363d1f749 code=0x0
[ 1041.861505][T10657] netlink: 212328 bytes leftover after parsing attributes in process `syz.9.1231'.
[ 1041.952577][T10657] netlink: Unknown conntrack attr (type=2304, max=9)
[ 1042.667908][ T5983] usb 4-1: new full-speed USB device number 56 using dummy_hcd
[ 1042.807722][ T5983] usb 4-1: device descriptor read/64, error -71
[ 1043.021683][T10677] netlink: 24 bytes leftover after parsing attributes in process `syz.7.1237'.
[ 1043.069651][ T5983] usb 4-1: new full-speed USB device number 57 using dummy_hcd
[ 1043.197662][ T5983] usb 4-1: device descriptor read/64, error -71
[ 1043.287688][ T9633] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[ 1043.308371][ T5983] usb usb4-port1: attempt power cycle
[ 1043.437679][ T9633] usb 6-1: Using ep0 maxpacket: 16
[ 1043.440534][ T9633] usb 6-1: unable to read config index 0 descriptor/start: -61
[ 1043.440575][ T9633] usb 6-1: can't read configurations, error -61
[ 1045.417640][ T5983] usb 4-1: new full-speed USB device number 58 using dummy_hcd
[ 1045.457739][ T9633] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[ 1045.734130][ T5983] usb 4-1: device not accepting address 58, error -71
[ 1045.757682][ T9633] usb 6-1: Using ep0 maxpacket: 16
[ 1045.762032][ T9633] usb 6-1: unable to read config index 0 descriptor/start: -61
[ 1045.762072][ T9633] usb 6-1: can't read configurations, error -61
[ 1045.762724][ T9633] usb usb6-port1: attempt power cycle
[ 1046.266084][T10695] syz.9.1243 (10695): /proc/10694/oom_adj is deprecated, please use /proc/10694/oom_score_adj instead.
[ 1046.278160][ T9633] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[ 1046.725146][ T9633] usb 6-1: device descriptor read/8, error -71
[ 1048.366636][ T9633] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[ 1048.388481][ T9633] usb 6-1: Using ep0 maxpacket: 16
[ 1048.390790][ T9633] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1048.390824][ T9633] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1048.390871][ T9633] usb 6-1: New USB device found, idVendor=046d, idProduct=c29c, bcdDevice= 0.00
[ 1048.390896][ T9633] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1048.402524][ T9633] usb 6-1: config 0 descriptor??
[ 1048.507867][ T9633] usbhid 6-1:0.0: can't add hid device: -22
[ 1048.508017][ T9633] usbhid 6-1:0.0: probe with driver usbhid failed with error -22
[ 1048.614619][T10194] usb 6-1: USB disconnect, device number 14
[ 1048.937811][ T9633] usb 4-1: new high-speed USB device number 60 using dummy_hcd
[ 1049.320431][ T9633] usb 4-1: config 57 has an invalid interface number: 195 but max is 1
[ 1049.320467][ T9633] usb 4-1: config 57 contains an unexpected descriptor of type 0x2, skipping
[ 1049.320487][ T9633] usb 4-1: config 57 contains an unexpected descriptor of type 0x1, skipping
[ 1049.320507][ T9633] usb 4-1: config 57 has an invalid interface number: 8 but max is 1
[ 1049.320528][ T9633] usb 4-1: config 57 has an invalid interface number: 82 but max is 1
[ 1049.320548][ T9633] usb 4-1: config 57 contains an unexpected descriptor of type 0x2, skipping
[ 1049.320567][ T9633] usb 4-1: config 57 has an invalid interface number: 182 but max is 1
[ 1049.320607][ T9633] usb 4-1: config 57 has 4 interfaces, different from the descriptor's value: 2
[ 1049.320630][ T9633] usb 4-1: config 57 has no interface number 0
[ 1049.320648][ T9633] usb 4-1: config 57 has no interface number 1
[ 1049.320665][ T9633] usb 4-1: config 57 has no interface number 2
[ 1049.320683][ T9633] usb 4-1: config 57 has no interface number 3
[ 1049.320796][ T9633] usb 4-1: config 57 interface 195 altsetting 2 endpoint 0xE has invalid maxpacket 1024, setting to 64
[ 1049.320828][ T9633] usb 4-1: config 57 interface 195 altsetting 2 endpoint 0x4 has invalid maxpacket 512, setting to 64
[ 1049.320857][ T9633] usb 4-1: config 57 interface 195 altsetting 2 endpoint 0xF has invalid maxpacket 1023, setting to 64
[ 1049.320886][ T9633] usb 4-1: config 57 interface 195 altsetting 2 has a duplicate endpoint with address 0xF, skipping
[ 1049.320911][ T9633] usb 4-1: config 57 interface 195 altsetting 2 has a duplicate endpoint with address 0xF, skipping
[ 1049.320935][ T9633] usb 4-1: config 57 interface 195 altsetting 2 endpoint 0x5 has invalid maxpacket 1024, setting to 64
[ 1049.320962][ T9633] usb 4-1: config 57 interface 195 altsetting 2 has an invalid descriptor for endpoint zero, skipping
[ 1049.320984][ T9633] usb 4-1: config 57 interface 195 altsetting 2 has a duplicate endpoint with address 0x4, skipping
[ 1049.321008][ T9633] usb 4-1: config 57 interface 195 altsetting 2 has a duplicate endpoint with address 0x9, skipping
[ 1049.321033][ T9633] usb 4-1: config 57 interface 195 altsetting 2 has an invalid descriptor for endpoint zero, skipping
[ 1049.321057][ T9633] usb 4-1: config 57 interface 195 altsetting 2 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1049.321081][ T9633] usb 4-1: config 57 interface 195 altsetting 2 has 15 endpoint descriptors, different from the interface descriptor's value: 16
[ 1049.321128][ T9633] usb 4-1: config 57 interface 8 altsetting 236 has a duplicate endpoint with address 0x4, skipping
[ 1049.321152][ T9633] usb 4-1: config 57 interface 8 altsetting 236 has an invalid descriptor for endpoint zero, skipping
[ 1049.321175][ T9633] usb 4-1: config 57 interface 8 altsetting 236 has a duplicate endpoint with address 0xF, skipping
[ 1049.321199][ T9633] usb 4-1: config 57 interface 8 altsetting 236 endpoint 0x7 has invalid maxpacket 1024, setting to 64
[ 1049.321226][ T9633] usb 4-1: config 57 interface 8 altsetting 236 has 4 endpoint descriptors, different from the interface descriptor's value: 15
[ 1049.321254][ T9633] usb 4-1: too many endpoints for config 57 interface 82 altsetting 185: 171, using maximum allowed: 30
[ 1049.321296][ T9633] usb 4-1: config 57 interface 82 altsetting 185 has a duplicate endpoint with address 0x9, skipping
[ 1049.321323][ T9633] usb 4-1: config 57 interface 82 altsetting 185 endpoint 0xD has invalid maxpacket 1024, setting to 64
[ 1049.321350][ T9633] usb 4-1: config 57 interface 82 altsetting 185 has a duplicate endpoint with address 0xE, skipping
[ 1049.321375][ T9633] usb 4-1: config 57 interface 82 altsetting 185 has a duplicate endpoint with address 0xD, skipping
[ 1049.321400][ T9633] usb 4-1: config 57 interface 82 altsetting 185 endpoint 0x2 has invalid maxpacket 1023, setting to 64
[ 1049.321429][ T9633] usb 4-1: config 57 interface 82 altsetting 185 has 7 endpoint descriptors, different from the interface descriptor's value: 171
[ 1049.321458][ T9633] usb 4-1: too many endpoints for config 57 interface 182 altsetting 245: 133, using maximum allowed: 30
[ 1049.321499][ T9633] usb 4-1: config 57 interface 182 altsetting 245 has a duplicate endpoint with address 0xB, skipping
[ 1049.321524][ T9633] usb 4-1: config 57 interface 182 altsetting 245 has a duplicate endpoint with address 0xE, skipping
[ 1049.321549][ T9633] usb 4-1: config 57 interface 182 altsetting 245 has a duplicate endpoint with address 0xB, skipping
[ 1049.321575][ T9633] usb 4-1: config 57 interface 182 altsetting 245 has 4 endpoint descriptors, different from the interface descriptor's value: 133
[ 1049.321604][ T9633] usb 4-1: config 57 interface 195 has no altsetting 0
[ 1049.321623][ T9633] usb 4-1: config 57 interface 8 has no altsetting 0
[ 1049.321643][ T9633] usb 4-1: config 57 interface 82 has no altsetting 0
[ 1049.321663][ T9633] usb 4-1: config 57 interface 182 has no altsetting 0
[ 1049.326363][ T9633] usb 4-1: Dual-Role OTG device on HNP port
[ 1049.326710][ T9633] usb 4-1: New USB device found, idVendor=2c7c, idProduct=0121, bcdDevice=65.30
[ 1049.326745][ T9633] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1049.326774][ T9633] usb 4-1: Product: о
[ 1049.326790][ T9633] usb 4-1: Manufacturer: 颙뗖Ꮃ캚둙܁蟺␿붵ﵜꑙ㝇踒侄嶼즒㹀龯꩔簙컏˨︳ଜ빫꙰葻溾觮謗뿘懃塼ᾚǭᄤ챂넛ἙḌ凌龡ɾ禂㉟믓찍蝖悜総ꡏ൓∍䔪夻欋䅯⟅䕏᱘㸜⸛箕䊎軐⣺䑛ᎿᦢﲗDž앩䧨剢ꙜꞓɜᏫூ㇨﬛ﭕ̮븓迺랠䣷豐竧䢵践鉽춛鏆町ぢ㒵ぁ벻孲㭨壙풫
[ 1049.326828][ T9633] usb 4-1: SerialNumber: 퇨쥗앛兛䅬呄쪝츅Ŏ䆝鱱︥ළ
[ 1054.167895][ T9633] usb 4-1: USB disconnect, device number 60
[ 1054.227780][ T6387] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[ 1054.768760][ T6387] usb 10-1: Using ep0 maxpacket: 16
[ 1054.827880][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1055.207724][ T6387] usb 10-1: device descriptor read/all, error -71
[ 1059.954825][ T1321] ieee802154 phy0 wpan0: encryption failed: -22
[ 1059.954900][ T1321] ieee802154 phy1 wpan1: encryption failed: -22
[ 1060.599684][T10756] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1263'.
[ 1061.161565][T10033] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1061.188648][T10033] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1061.208723][T10033] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1061.214128][T10033] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1061.238714][T10033] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1061.690344][T10767] FAULT_INJECTION: forcing a failure.
[ 1061.690344][T10767] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1061.690388][T10767] CPU: 0 UID: 0 PID: 10767 Comm: syz.3.1267 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1061.690418][T10767] Tainted: [L]=SOFTLOCKUP
[ 1061.690426][T10767] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1061.690439][T10767] Call Trace:
[ 1061.690448][T10767]  <TASK>
[ 1061.690458][T10767]  dump_stack_lvl+0xe8/0x150
[ 1061.690495][T10767]  should_fail_ex+0x46c/0x600
[ 1061.690531][T10767]  _copy_from_iter+0x1cd/0x1630
[ 1061.690566][T10767]  ? kmalloc_reserve+0xbd/0x290
[ 1061.690593][T10767]  ? rcu_is_watching+0x15/0xb0
[ 1061.690622][T10767]  ? __pfx__copy_from_iter+0x10/0x10
[ 1061.690656][T10767]  ? __build_skb_around+0x22d/0x3c0
[ 1061.690694][T10767]  ? __alloc_skb+0x198/0x3a0
[ 1061.690720][T10767]  ? netlink_sendmsg+0x642/0xb30
[ 1061.690751][T10767]  ? skb_put+0x11b/0x210
[ 1061.690782][T10767]  netlink_sendmsg+0x6b2/0xb30
[ 1061.690823][T10767]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1061.690862][T10767]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 1061.690894][T10767]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1061.690927][T10767]  __sock_sendmsg+0x21c/0x270
[ 1061.690965][T10767]  ____sys_sendmsg+0x508/0x810
[ 1061.691000][T10767]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1061.691038][T10767]  ? import_iovec+0x74/0xa0
[ 1061.691062][T10767]  ___sys_sendmsg+0x21f/0x2a0
[ 1061.691093][T10767]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1061.691159][T10767]  ? __fget_files+0x2a/0x420
[ 1061.691184][T10767]  ? __fget_files+0x3a6/0x420
[ 1061.691220][T10767]  __x64_sys_sendmsg+0x1a1/0x260
[ 1061.691254][T10767]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 1061.691294][T10767]  ? __pfx_ksys_write+0x10/0x10
[ 1061.691345][T10767]  do_syscall_64+0xec/0xf80
[ 1061.691368][T10767]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1061.691390][T10767]  ? trace_irq_disable+0x37/0x100
[ 1061.691415][T10767]  ? clear_bhb_loop+0x60/0xb0
[ 1061.691443][T10767]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1061.691466][T10767] RIP: 0033:0x7f1363d1f749
[ 1061.691487][T10767] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1061.691507][T10767] RSP: 002b:00007f1361f86038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1061.691530][T10767] RAX: ffffffffffffffda RBX: 00007f1363f75fa0 RCX: 00007f1363d1f749
[ 1061.691547][T10767] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000003
[ 1061.691561][T10767] RBP: 00007f1361f86090 R08: 0000000000000000 R09: 0000000000000000
[ 1061.691575][T10767] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1061.691589][T10767] R13: 00007f1363f76038 R14: 00007f1363f75fa0 R15: 00007ffebc5a2ce8
[ 1061.691624][T10767]  </TASK>
[ 1063.449239][ T8317] Bluetooth: hci1: command tx timeout
[ 1066.102720][ T8317] Bluetooth: hci1: command tx timeout
[ 1066.478475][   T37] audit: type=1326 audit(1766743346.663:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10787 comm="syz.3.1273" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f1363d1f749 code=0x0
[ 1067.428770][T10764] chnl_net:caif_netlink_parms(): no params data found
[ 1068.314374][ T8317] Bluetooth: hci1: command tx timeout
[ 1069.307972][ T5891] usb 4-1: new high-speed USB device number 61 using dummy_hcd
[ 1070.348089][ T8317] Bluetooth: hci1: command tx timeout
[ 1070.657620][ T5891] usb 4-1: Using ep0 maxpacket: 32
[ 1070.657860][T10794] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[ 1070.871014][ T5891] usb 4-1: device descriptor read/all, error -71
[ 1071.794096][T10764] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1071.795142][T10764] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1071.795383][T10764] bridge_slave_0: entered allmulticast mode
[ 1071.797265][T10764] bridge_slave_0: entered promiscuous mode
[ 1072.256734][T10764] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1072.256969][T10764] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1072.257223][T10764] bridge_slave_1: entered allmulticast mode
[ 1073.270635][T10764] bridge_slave_1: entered promiscuous mode
[ 1074.777708][ T9565] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[ 1076.677685][ T9565] usb 8-1: Using ep0 maxpacket: 16
[ 1076.772239][ T9565] usb 8-1: device descriptor read/all, error -71
[ 1078.557321][T10764] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1078.572998][T10764] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1079.207771][ T9840] usb 8-1: new low-speed USB device number 7 using dummy_hcd
[ 1079.290167][T10847] FAULT_INJECTION: forcing a failure.
[ 1079.290167][T10847] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1079.290235][T10847] CPU: 0 UID: 0 PID: 10847 Comm: syz.5.1276 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1079.290266][T10847] Tainted: [L]=SOFTLOCKUP
[ 1079.290275][T10847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1079.290290][T10847] Call Trace:
[ 1079.290299][T10847]  <TASK>
[ 1079.290310][T10847]  dump_stack_lvl+0xe8/0x150
[ 1079.290357][T10847]  should_fail_ex+0x46c/0x600
[ 1079.290395][T10847]  _copy_from_user+0x2d/0xb0
[ 1079.290418][T10847]  ___sys_sendmsg+0x158/0x2a0
[ 1079.290453][T10847]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1079.290524][T10847]  ? __fget_files+0x2a/0x420
[ 1079.290548][T10847]  ? __fget_files+0x3a6/0x420
[ 1079.290585][T10847]  __x64_sys_sendmsg+0x1a1/0x260
[ 1079.290618][T10847]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 1079.290675][T10847]  do_syscall_64+0xec/0xf80
[ 1079.290698][T10847]  ? rcu_is_watching+0x15/0xb0
[ 1079.290718][T10847]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1079.290742][T10847]  ? clear_bhb_loop+0x60/0xb0
[ 1079.290771][T10847]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1079.290794][T10847] RIP: 0033:0x7fb373fdf749
[ 1079.290815][T10847] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1079.290835][T10847] RSP: 002b:00007fb3721fc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1079.290859][T10847] RAX: ffffffffffffffda RBX: 00007fb374236180 RCX: 00007fb373fdf749
[ 1079.290876][T10847] RDX: 00000000040000c0 RSI: 0000200000000180 RDI: 0000000000000006
[ 1079.290891][T10847] RBP: 00007fb3721fc090 R08: 0000000000000000 R09: 0000000000000000
[ 1079.290906][T10847] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1079.290919][T10847] R13: 00007fb374236218 R14: 00007fb374236180 R15: 00007fff97efe728
[ 1079.290955][T10847]  </TASK>
[ 1081.117689][ T9840] usb 8-1: device descriptor read/64, error -71
[ 1081.387914][ T9840] usb 8-1: new low-speed USB device number 8 using dummy_hcd
[ 1081.517763][ T9840] usb 8-1: device descriptor read/64, error -71
[ 1081.628806][ T9840] usb usb8-port1: attempt power cycle
[ 1082.127310][T10764] team0: Port device team_slave_0 added
[ 1082.697722][ T9840] usb 8-1: new low-speed USB device number 9 using dummy_hcd
[ 1082.719539][ T9840] usb 8-1: device descriptor read/8, error -71
[ 1082.966303][T10862] FAULT_INJECTION: forcing a failure.
[ 1082.966303][T10862] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1082.966333][T10862] CPU: 0 UID: 0 PID: 10862 Comm: syz.3.1288 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1082.966355][T10862] Tainted: [L]=SOFTLOCKUP
[ 1082.966362][T10862] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1082.966372][T10862] Call Trace:
[ 1082.966379][T10862]  <TASK>
[ 1082.966386][T10862]  dump_stack_lvl+0xe8/0x150
[ 1082.966412][T10862]  should_fail_ex+0x46c/0x600
[ 1082.966438][T10862]  _copy_to_user+0x31/0xb0
[ 1082.966456][T10862]  simple_read_from_buffer+0xe1/0x170
[ 1082.966477][T10862]  proc_fail_nth_read+0x1b6/0x220
[ 1082.966504][T10862]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1082.966531][T10862]  ? rw_verify_area+0x2ac/0x4e0
[ 1082.966553][T10862]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1082.966578][T10862]  vfs_read+0x206/0xa30
[ 1082.966606][T10862]  ? __pfx_vfs_read+0x10/0x10
[ 1082.966633][T10862]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1082.966650][T10862]  ? lockdep_hardirqs_on+0x7b/0x110
[ 1082.966665][T10862]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1082.966682][T10862]  ? mutex_lock_nested+0x154/0x1d0
[ 1082.966702][T10862]  ? fdget_pos+0x253/0x320
[ 1082.966726][T10862]  ksys_read+0x14b/0x260
[ 1082.966750][T10862]  ? __pfx_ksys_read+0x10/0x10
[ 1082.966780][T10862]  do_syscall_64+0xec/0xf80
[ 1082.966796][T10862]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1082.966811][T10862]  ? trace_irq_disable+0x37/0x100
[ 1082.966828][T10862]  ? clear_bhb_loop+0x60/0xb0
[ 1082.966848][T10862]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1082.966864][T10862] RIP: 0033:0x7f1363d1e15c
[ 1082.966911][T10862] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1082.966931][T10862] RSP: 002b:00007f1361f86030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1082.966954][T10862] RAX: ffffffffffffffda RBX: 00007f1363f75fa0 RCX: 00007f1363d1e15c
[ 1082.966970][T10862] RDX: 000000000000000f RSI: 00007f1361f860a0 RDI: 0000000000000004
[ 1082.966985][T10862] RBP: 00007f1361f86090 R08: 0000000000000000 R09: 0000000000000000
[ 1082.966999][T10862] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1082.967011][T10862] R13: 00007f1363f76038 R14: 00007f1363f75fa0 R15: 00007ffebc5a2ce8
[ 1082.967048][T10862]  </TASK>
[ 1082.997664][ T9840] usb 8-1: new low-speed USB device number 10 using dummy_hcd
[ 1086.006729][ T9840] usb 8-1: device descriptor read/8, error -71
[ 1086.108180][ T9840] usb usb8-port1: unable to enumerate USB device
[ 1088.042220][ T1289] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1088.183812][T10764] team0: Port device team_slave_1 added
[ 1088.707942][ T5983] usb 10-1: new full-speed USB device number 4 using dummy_hcd
[ 1088.781166][ T1289] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1088.900987][ T5983] usb 10-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1088.901021][ T5983] usb 10-1: config 0 interface 0 has no altsetting 0
[ 1089.019489][ T5983] usb 10-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1089.019523][ T5983] usb 10-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[ 1089.019545][ T5983] usb 10-1: Product: syz
[ 1089.019562][ T5983] usb 10-1: Manufacturer: syz
[ 1089.019577][ T5983] usb 10-1: SerialNumber: syz
[ 1089.067841][ T5983] usb 10-1: config 0 descriptor??
[ 1089.077026][ T5983] usb 10-1: selecting invalid altsetting 0
[ 1089.139395][T10888] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1089.140500][T10888] batadv_slave_0: entered promiscuous mode
[ 1089.235215][T10764] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1089.235234][T10764] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1089.235263][T10764] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1091.888742][ T9615] usb 10-1: USB disconnect, device number 4
[ 1092.305657][ T1289] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1093.105914][T10910] workqueue: Failed to create a rescuer kthread for wq "ceph-watch-notify": -EINTR
[ 1093.448863][T10764] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1093.448885][T10764] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1093.448926][T10764] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1094.074693][T10916] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 1094.075082][T10916] block device autoloading is deprecated and will be removed.
[ 1094.221243][ T1289] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1094.544380][T10764] hsr_slave_0: entered promiscuous mode
[ 1094.557977][T10764] hsr_slave_1: entered promiscuous mode
[ 1094.563822][T10764] debugfs: 'hsr0' already exists in 'hsr'
[ 1094.563853][T10764] Cannot create hsr debugfs directory
[ 1094.653020][T10928] sctp: [Deprecated]: syz.3.1296 (pid 10928) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1094.653020][T10928] Use struct sctp_sack_info instead
[ 1099.828058][T10961] input: syz1 as /devices/virtual/input/input27
[ 1101.069072][ T1289] bridge_slave_1: left allmulticast mode
[ 1101.069112][ T1289] bridge_slave_1: left promiscuous mode
[ 1101.069373][ T1289] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1101.287132][ T1289] bridge_slave_0: left allmulticast mode
[ 1101.287166][ T1289] bridge_slave_0: left promiscuous mode
[ 1101.287439][ T1289] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1102.556934][T10974] netlink: 88 bytes leftover after parsing attributes in process `syz.7.1321'.
[ 1108.230592][T10033] Bluetooth: hci0: command 0x0406 tx timeout
[ 1109.628136][ T8317] Bluetooth: hci2: command 0x0406 tx timeout
[ 1113.435000][ T5824] Bluetooth: hci2: command 0x0406 tx timeout
[ 1115.998452][ T1289] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1116.038937][ T1289] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1116.099082][ T1289] bond0 (unregistering): Released all slaves
[ 1116.207228][T10977] bridge_slave_0: left allmulticast mode
[ 1116.207263][T10977] bridge_slave_0: left promiscuous mode
[ 1116.275345][T10977] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1116.623941][T10977] bridge_slave_1: left allmulticast mode
[ 1116.623966][T10977] bridge_slave_1: left promiscuous mode
[ 1116.624129][T10977] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1116.765682][T11042] program syz.3.1339 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1117.701748][T10977] bond0: (slave bond_slave_0): Releasing backup interface
[ 1117.789120][T10977] bond0: (slave bond_slave_1): Releasing backup interface
[ 1117.877044][ T5824] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1117.891467][ T5824] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1117.893083][ T5824] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1117.894434][ T5824] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1117.895977][ T5824] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1118.112356][T10977] team0: Port device team_slave_0 removed
[ 1118.943002][T10977] team0: Port device team_slave_1 removed
[ 1118.944190][T10977] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1118.969733][T10977] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1118.969758][T10977] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1119.011327][T10977] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[ 1119.070293][ T1289] tipc: Left network mode
[ 1119.273768][T11060] Invalid logical block size (8192)
[ 1119.989242][ T5824] Bluetooth: hci4: command tx timeout
[ 1120.471311][ T9615] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[ 1121.086225][ T9615] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1121.086305][ T9615] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1121.086444][ T9615] usb 6-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00
[ 1121.086508][ T9615] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1121.188566][ T9615] usb 6-1: config 0 descriptor??
[ 1121.441191][ T1321] ieee802154 phy0 wpan0: encryption failed: -22
[ 1121.441268][ T1321] ieee802154 phy1 wpan1: encryption failed: -22
[ 1122.027656][ T5824] Bluetooth: hci4: command tx timeout
[ 1124.117810][ T5824] Bluetooth: hci4: command tx timeout
[ 1126.187900][ T5824] Bluetooth: hci4: command tx timeout
[ 1126.411264][ T9615] usbhid 6-1:0.0: can't add hid device: -71
[ 1126.411365][ T9615] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[ 1126.416620][ T9615] usb 6-1: USB disconnect, device number 15
[ 1126.901191][ T8317] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1126.907196][ T8317] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1126.932084][ T8317] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1126.951220][ T8317] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1126.951976][ T8317] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1130.255200][ T5824] Bluetooth: hci5: command tx timeout
[ 1130.833645][ T1289] hsr_slave_0: left promiscuous mode
[ 1130.864379][ T1289] hsr_slave_1: left promiscuous mode
[ 1130.865358][ T1289] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1130.865386][ T1289] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1130.917939][ T1289] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1130.918005][ T1289] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1131.582884][ T1289] veth1_macvtap: left promiscuous mode
[ 1131.582959][ T1289] veth0_macvtap: left promiscuous mode
[ 1131.605357][ T1289] veth1_vlan: left promiscuous mode
[ 1131.605486][ T1289] veth0_vlan: left promiscuous mode
[ 1132.278343][ T5824] Bluetooth: hci5: command tx timeout
[ 1134.348255][ T5824] Bluetooth: hci5: command tx timeout
[ 1136.438766][ T5824] Bluetooth: hci5: command tx timeout
[ 1145.618707][ T1289] team0 (unregistering): Port device team_slave_1 removed
[ 1146.089295][ T1289] team0 (unregistering): Port device team_slave_0 removed
[ 1153.192510][T11144] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1153.192645][T11144] Bluetooth: hci3: Opcode 0x0406 failed: -4
[ 1153.272832][T11144] Bluetooth: hci3: Opcode 0x0406 failed: -4
[ 1153.371285][T11144] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1153.397722][T11144] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 1153.502855][T11144] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1153.503024][T11144] Bluetooth: hci0: Opcode 0x0406 failed: -4
[ 1153.656891][T11048] chnl_net:caif_netlink_parms(): no params data found
[ 1153.788553][T11144] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1153.788663][T11144] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1153.915819][T11144] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1154.046265][T11144] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1154.046419][T11144] Bluetooth: hci4: Opcode 0x0406 failed: -4
[ 1154.166780][T11144] Bluetooth: hci4: Opcode 0x0406 failed: -4
[ 1154.408891][T11144] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1154.409333][T11144] Bluetooth: hci5: Opcode 0x0406 failed: -4
[ 1155.237679][ T5824] Bluetooth: hci3: command 0x0406 tx timeout
[ 1155.240510][T11144] Bluetooth: hci5: Opcode 0x0406 failed: -4
[ 1155.247661][T11048] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1155.247871][T11048] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1155.248131][T11048] bridge_slave_0: entered allmulticast mode
[ 1155.267751][T11048] bridge_slave_0: entered promiscuous mode
[ 1155.271826][T11048] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1155.275283][T11048] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1155.275527][T11048] bridge_slave_1: entered allmulticast mode
[ 1155.324246][T11048] bridge_slave_1: entered promiscuous mode
[ 1155.768356][ T5824] Bluetooth: hci2: command 0x0406 tx timeout
[ 1155.868107][ T5824] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1156.113702][ T5824] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1156.164493][ T8317] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1156.191622][ T8317] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1156.194220][ T8317] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1156.195591][ T8317] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1156.197240][ T8317] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1156.636117][ T8317] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1157.506993][ T8317] Bluetooth: hci3: command 0x0406 tx timeout
[ 1157.787679][ T8317] Bluetooth: hci2: command 0x0406 tx timeout
[ 1158.160467][T11200] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1381'.
[ 1158.192056][ T8317] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1158.225886][T11048] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1158.350562][ T8317] Bluetooth: hci0: command tx timeout
[ 1158.395276][T11048] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1158.673454][ T8317] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1159.548382][ T8317] Bluetooth: hci3: command 0x0406 tx timeout
[ 1160.267770][ T8317] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1160.362556][T11048] team0: Port device team_slave_0 added
[ 1160.387341][T11048] team0: Port device team_slave_1 added
[ 1160.438998][ T8317] Bluetooth: hci0: command tx timeout
[ 1160.617906][   T31] usb 4-1: new full-speed USB device number 63 using dummy_hcd
[ 1160.866339][ T8317] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1160.940630][   T31] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[ 1160.940661][   T31] usb 4-1: config 0 has no interface number 0
[ 1160.940715][   T31] usb 4-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e
[ 1160.940733][   T31] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1160.945895][   T31] usb 4-1: config 0 descriptor??
[ 1161.225363][   T31] usb 4-1: selecting invalid altsetting 1
[ 1161.259435][   T31] dvb_ttusb_budget: ttusb_init_controller: error
[ 1161.259568][   T31] dvbdev: DVB: registering new adapter (Technotrend/Hauppauge Nova-USB)
[ 1162.075677][   T31] DVB: Unable to find symbol cx22700_attach()
[ 1162.138502][   T31] DVB: Unable to find symbol tda10046_attach()
[ 1162.138515][   T31] dvb_ttusb_budget: no frontend driver found for device [0b48:1005]
[ 1162.140634][   T31] usb 4-1: USB disconnect, device number 63
[ 1162.790097][ T8317] Bluetooth: hci0: command tx timeout
[ 1163.252640][T11227] program syz.5.1388 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1164.124548][T11048] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1164.124568][T11048] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1164.124599][T11048] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1165.454282][ T8317] Bluetooth: hci0: command tx timeout
[ 1167.756289][T11048] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1167.756309][T11048] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1167.756339][T11048] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1167.947671][ T9840] usb 4-1: new high-speed USB device number 64 using dummy_hcd
[ 1168.128688][ T9840] usb 4-1: Using ep0 maxpacket: 8
[ 1168.134263][ T9840] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1168.134294][ T9840] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1168.134319][ T9840] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1168.134343][ T9840] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1168.134383][ T9840] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1168.134408][ T9840] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1168.210442][ T1289] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1168.275745][T11077] chnl_net:caif_netlink_parms(): no params data found
[ 1168.428759][ T9840] usb 4-1: GET_CAPABILITIES returned 0
[ 1168.428816][ T9840] usbtmc 4-1:16.0: can't read capabilities
[ 1169.604216][ T1289] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1169.665744][T11048] hsr_slave_0: entered promiscuous mode
[ 1169.666991][T11048] hsr_slave_1: entered promiscuous mode
[ 1169.669550][T11048] debugfs: 'hsr0' already exists in 'hsr'
[ 1169.669624][T11048] Cannot create hsr debugfs directory
[ 1169.983160][ T9504] usb 4-1: USB disconnect, device number 64
[ 1170.080269][T11271] program syz.5.1397 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1170.837124][T11273] BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48
[ 1170.837145][T11273] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 11273, name: syz.3.1398
[ 1170.837159][T11273] preempt_count: 2, expected: 0
[ 1170.837168][T11273] RCU nest depth: 1, expected: 1
[ 1170.837180][T11273] 3 locks held by syz.3.1398/11273:
[ 1170.837190][T11273]  #0: ffff888027eb2398 (sk_lock-AF_VSOCK){+.+.}-{0:0}, at: vsock_connectible_sendmsg+0x189/0x1040
[ 1170.837276][T11273]  #1: ffffffff8d5ae940 (rcu_read_lock){....}-{1:3}, at: bpf_trace_run9+0x1ec/0x510
[ 1170.837386][T11273]  #2: ffff8880b883fe88 (&s->lock_key#14){+.+.}-{3:3}, at: ___slab_alloc+0x12f/0x13e0
[ 1170.837491][T11273] Preemption disabled at:
[ 1170.837499][T11273] [<0000000000000000>] 0x0
[ 1170.837531][T11273] CPU: 0 UID: 0 PID: 11273 Comm: syz.3.1398 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1170.837628][T11273] Tainted: [L]=SOFTLOCKUP
[ 1170.837635][T11273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1170.837646][T11273] Call Trace:
[ 1170.837653][T11273]  <TASK>
[ 1170.837660][T11273]  dump_stack_lvl+0xe8/0x150
[ 1170.837686][T11273]  __might_resched+0x32a/0x480
[ 1170.837709][T11273]  rt_spin_lock+0xc7/0x3e0
[ 1170.837735][T11273]  ? __pfx_rt_spin_lock+0x10/0x10
[ 1170.837756][T11273]  ? __lock_acquire+0x6b6/0x2cf0
[ 1170.837781][T11273]  ? __lock_acquire+0x6b6/0x2cf0
[ 1170.837808][T11273]  ___slab_alloc+0x12f/0x13e0
[ 1170.837829][T11273]  ? unwind_next_frame+0xa5/0x23d0
[ 1170.837849][T11273]  ? lock_acquire+0x107/0x340
[ 1170.837869][T11273]  ? __bpf_stream_push_str+0xa8/0x2b0
[ 1170.837890][T11273]  __slab_alloc+0xc6/0x1f0
[ 1170.837906][T11273]  ? __bpf_stream_push_str+0xa8/0x2b0
[ 1170.837923][T11273]  kmalloc_nolock_noprof+0x1be/0x440
[ 1170.837947][T11273]  ? __bpf_stream_push_str+0xa8/0x2b0
[ 1170.837966][T11273]  __bpf_stream_push_str+0xa8/0x2b0
[ 1170.837980][T11273]  ? __asan_memcpy+0x40/0x70
[ 1170.838002][T11273]  ? __pfx___bpf_stream_push_str+0x10/0x10
[ 1170.838026][T11273]  bpf_stream_stage_printk+0x14e/0x1c0
[ 1170.838041][T11273]  ? __pfx_find_from_stack_cb+0x10/0x10
[ 1170.838060][T11273]  ? arch_bpf_stack_walk+0x112/0x170
[ 1170.838088][T11273]  ? __pfx_bpf_stream_stage_printk+0x10/0x10
[ 1170.838117][T11273]  bpf_prog_report_may_goto_violation+0xc4/0x190
[ 1170.838134][T11273]  ? __pfx_bpf_prog_report_may_goto_violation+0x10/0x10
[ 1170.838149][T11273]  ? irqentry_exit+0x5dd/0x660
[ 1170.838165][T11273]  ? trace_irq_disable+0x37/0x100
[ 1170.838185][T11273]  ? read_tsc+0x9/0x20
[ 1170.838203][T11273]  bpf_check_timed_may_goto+0xaa/0xb0
[ 1170.838231][T11273]  arch_bpf_timed_may_goto+0x21/0x40
[ 1170.838251][T11273]  bpf_prog_262a74d054ad2993+0x53/0x5f
[ 1170.838267][T11273]  bpf_trace_run9+0x2de/0x510
[ 1170.838287][T11273]  ? bpf_trace_run9+0x1ec/0x510
[ 1170.838306][T11273]  ? __pfx_bpf_trace_run9+0x10/0x10
[ 1170.838341][T11273]  __bpf_trace_virtio_transport_alloc_pkt+0x2d7/0x340
[ 1170.838369][T11273]  ? __pfx___bpf_trace_virtio_transport_alloc_pkt+0x10/0x10
[ 1170.838388][T11273]  ? kmem_cache_alloc_node_noprof+0x292/0x6f0
[ 1170.838459][T11273]  ? skb_copy_datagram_from_iter_full+0x122/0x170
[ 1170.838516][T11273]  virtio_transport_alloc_skb+0x10af/0x1110
[ 1170.838599][T11273]  ? __pfx_virtio_transport_alloc_skb+0x10/0x10
[ 1170.838625][T11273]  ? __local_bh_enable_ip+0x1af/0x2c0
[ 1170.838645][T11273]  ? lockdep_hardirqs_on+0x7b/0x110
[ 1170.838664][T11273]  virtio_transport_send_pkt_info+0x694/0x10b0
[ 1170.838689][T11273]  ? virtio_transport_send_pkt_info+0x1ea/0x10b0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1170.838721][T11273]  ? virtio_transport_seqpacket_enqueue+0xba/0x1f0
[ 1170.838743][T11273]  virtio_transport_seqpacket_enqueue+0x166/0x1f0
[ 1170.838763][T11273]  ? reacquire_held_locks+0x104/0x190
[ 1170.838790][T11273]  ? __pfx_virtio_transport_seqpacket_enqueue+0x10/0x10
[ 1170.838817][T11273]  ? rt_spin_unlock+0x150/0x200
[ 1170.838844][T11273]  ? rt_spin_unlock+0x161/0x200
[ 1170.838868][T11273]  vsock_connectible_sendmsg+0xabf/0x1040
[ 1170.838908][T11273]  ? __pfx_vsock_connectible_sendmsg+0x10/0x10
[ 1170.838937][T11273]  ? __pfx_woken_wake_function+0x10/0x10
[ 1170.838960][T11273]  ? lockdep_hardirqs_on+0x7b/0x110
[ 1170.838975][T11273]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1170.838995][T11273]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 1170.839018][T11273]  ? __pfx_vsock_connectible_sendmsg+0x10/0x10
[ 1170.839044][T11273]  __sock_sendmsg+0x21c/0x270
[ 1170.839074][T11273]  ____sys_sendmsg+0x534/0x810
[ 1170.839099][T11273]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1170.839128][T11273]  ? import_iovec+0x74/0xa0
[ 1170.839146][T11273]  ___sys_sendmsg+0x21f/0x2a0
[ 1170.839169][T11273]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1170.839196][T11273]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1170.839233][T11273]  ? __fget_files+0x2a/0x420
[ 1170.839251][T11273]  ? __fget_files+0x3a6/0x420
[ 1170.839276][T11273]  __sys_sendmmsg+0x22d/0x430
[ 1170.839302][T11273]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1170.839322][T11273]  ? do_futex+0x333/0x420
[ 1170.839384][T11273]  ? __pfx___se_sys_futex+0x10/0x10
[ 1170.839438][T11273]  ? rcu_is_watching+0x15/0xb0
[ 1170.839468][T11273]  __x64_sys_sendmmsg+0xa0/0xc0
[ 1170.839500][T11273]  do_syscall_64+0xec/0xf80
[ 1170.839522][T11273]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1170.839544][T11273]  ? trace_irq_disable+0x37/0x100
[ 1170.839576][T11273]  ? clear_bhb_loop+0x60/0xb0
[ 1170.839604][T11273]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1170.839626][T11273] RIP: 0033:0x7f1363d1f749
[ 1170.839646][T11273] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1170.839667][T11273] RSP: 002b:00007f1361f86038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1170.839690][T11273] RAX: ffffffffffffffda RBX: 00007f1363f75fa0 RCX: 00007f1363d1f749
[ 1170.839707][T11273] RDX: 0000000000000001 RSI: 0000200000000b40 RDI: 0000000000000003
[ 1170.839720][T11273] RBP: 00007f1363da3f91 R08: 0000000000000000 R09: 0000000000000000
[ 1170.839734][T11273] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1170.839747][T11273] R13: 00007f1363f76038 R14: 00007f1363f75fa0 R15: 00007ffebc5a2ce8
[ 1170.839783][T11273]  </TASK>
[ 1171.206608][ T1289] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1173.100022][ T1289] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1174.169444][ T1289] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1174.382289][ T1289] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1174.609923][ T1289] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1174.851578][ T1289] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1175.058217][ T1289] bridge_slave_1: left allmulticast mode
[ 1175.058245][ T1289] bridge_slave_1: left promiscuous mode
[ 1175.061463][ T1289] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1175.148871][ T1289] bridge_slave_0: left allmulticast mode
[ 1175.148895][ T1289] bridge_slave_0: left promiscuous mode
[ 1175.149098][ T1289] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1175.200761][ T1289] bridge_slave_1: left allmulticast mode
[ 1175.200788][ T1289] bridge_slave_1: left promiscuous mode
[ 1175.200967][ T1289] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1175.258726][ T1289] bridge_slave_0: left allmulticast mode
[ 1175.258753][ T1289] bridge_slave_0: left promiscuous mode
[ 1175.258964][ T1289] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1175.858773][ T1289] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1175.938409][ T1289] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1176.001527][ T1289] bond0 (unregistering): Released all slaves
[ 1177.938419][ T1289] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1177.998602][ T1289] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1178.020356][ T1289] bond0 (unregistering): Released all slaves
[ 1179.850110][ T1289] bond0 (unregistering): Released all slaves