last executing test programs:

17m24.882214207s ago: executing program 4 (id=53):
socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
io_setup(0x1, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_X86_SETUP_MCE(r5, 0x4008ae9c, &(0x7f0000000080)={0x11, 0x0, 0x3})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0)

17m23.264052672s ago: executing program 4 (id=60):
memfd_create(&(0x7f0000000000)='Y\xff\xff\x00\x00\x00\x00\x00K\xb2\x02\x80B\xe9\xe8\xcc\xde\x06\x00l\xa8\x1aJ\xaf\xb2M\xba\xb8_\x05U\xcd<|>\x9e\xec^\x0e\xbe\x18+-\x9b\x893\x02\x00\xa6\x1f+\xb3\xc5\x90z5\xe0\xdfi\xb7\x9f\xb4QW\xc9\xc9\x92\x03\t\x00\x00\x00\x00\x00\xb2\x0f\xee\xbe\f8\xcc\x7f\x00\x00\x00Z\x81\x00\x00\x00\x00\x18I\x13\xf1\xa2x\x04\x81R\xd45R\xae\x05\x00\x00\x00\x00\x00\x00\x00_M^dQ:\xbc\xafq\x88\x19nSF|;]\xe1A\x8c\x8a\x98\xd7|\xdcLF\r\xb1\xfd\xbf!\xc7u\xccP\xdd\x13~\x89\xcf\x85\xca\xa0%\xc6\xc7\x11\x00\x00\x00\x00\x00\x00\x00?M9\\\av~\'\xd9\xb0\xacdya]8\x9d\xb7\v\xf39\xc5{\x9c!\x0f/\xb8o8\xb9\x8d\x19\xc0\xca\x01y\x83\xe7\ng\x87\xd93<u\xbe\xeag\xd2\x04e\xf2s\xde}o#\x90\xda\x9cs,r\xfd:\xcb\xc7\vTmPZJ\xac\x8b\xd0\xc0\xbcRK\xcb\x1e8\xce\xbd[N\xb0\xb4<\xeb\x86[\xec\x8f\x14\n\x83\x9e&\\\xb7!\xed\xa0\xc3,\x90m\x0f\x00\x00\x00\x00\x00\x00\xff\xd0\xb3\x94\x00\x00\x00\x00\x00\x00\x00\x9dH\xf8\xffRo\xa3W\xe1\xed\x8eS\xaeX\x93\x7f\xd3\xb9\x84Q\x9c\"\xd9\xf5\xe4e\xf9\xcam\xe3\x03\xe4\xad\xd5&A\x02\xc8\xa9\xfe\xcb\x87\xd9\xd3\x8c\f\xc08T~\xc4\xbd\x90?\x1f\x9c\x9b0\x19 \x9f\xd1p`\xc0/\x00u\x19\x1d\xac\xe8%\xb7\t\x9f4\xbb\x89\xe9\xc1\x81\xb0\xd6\xf7\x90\x1f\x94\x01M.\x16\x05\x16\xb9\xe9\xdc~\xd3-s\xe6;\x94\x1c^\x06\xdav;\xb5\xe9\x91\xado\x14=\xccD\x95sj\xe0\xd5\xbeS\xac\xe5N\xea\x9eyl[[\xce5\xee\x05\x9c\x96\xabJ^c\xf7\x19\xb4\xd8\xe4\x87\x9d`\xea?/\xcb\x9a\xaa5\'Q\fuG\x81\x8a@\x97M=v\xfe\a\xabp\xf3\x93\x9d\x7f@9\xc0\xd2\xf1\x00\x10\x00\x00\x00\x00\x00\x00\x82\x13\xb2\xa9\xef\xa5\xf8\x8bk\xb3\x9ev\x92\x0e\xd1\x1f\x17Dx[\xad\xb0\x9d/\x96\xe42mO\x9fh\xea\xf3\x14\xcd\x96\x89_)\x1b\xe2\xd6\b\x94b\xaf;\x92T\xafz\x94\x9fG\xfb\xfd|$k\x03\xd7;\x9ay\xee\xf9W?\xb3\xf9\xf8I.E4\xc3eWq\xfa\":$\xd0\x17Q\x94\xf5\xe5mk\x8e&\xf1;#z\xef*\xce\x99\x04\xb9\x90\xbc\xc9#-\x8di\xae\xc5\xdf\x13\xd2K\x8b\xf5\f\xb2x\xdd\xd5\xb4\xa9^~O<\x12\xe3\xc3P|7\xc4\xc8\xb1r0Z\x98\x87^\xd70\xe7\xfep\x83\xa7\xa1\xd9\xe4\xba\x92\x17\xbf\xe0\xe1\x01\xb7\x8b\x18j\x19n\xc8\xff\xe9\xf4\xf4\xcf a\xd7_w\x0f\x9dF\xae\xccA-/\x83\xabU\xd5\xbf8\xa4O\xb4\xef\xc8\xccH\xd1=\xbe\xbex\xb5-\x05\x01\x11\xfa\xcf\x1dm\xb5X\xe9\xb5O\x15\xc7;Lb\xce\x1a\xcc\x98\xe8\xe9e\xe0\xc2N\xe7\xd7\x1d\x92\x87F8\x9e\xf7\xdd\xdaW\xf5X\x80\xa0f\xceo\xd8\x7f\xc0\x96\bSB\xce&\x04$\xc3\xe31U\x84\x82\xf0{i\x1d\x02\x10\xc6C\x01^\xcf\x93?w\x01\x84\xa0\xd6\xa2\x10\xa4\xfcG\xabD\xd6dGZ\xb2Cx\x1b\xfdD9\x17\xe6\xcauM\xe3\x05)\xe2\x03\xe2j$F1n@\xde\n9t.[\xad\xb5\f<o\xdb\xa4\x90\xc4\xd0I\xa6\x96\xa1\x00\xbb\xdd\x94\x00t/1YekG\x7f\xbdrI\x1e\x8a4=\xa2\xe9\x82<\x9e|\xf5\xa4\x05#\x7f\xa8\x01\x00\x82ih\xf9?\x03Q\xf5\xc4\x95\x99 \xa7v~:$\x02O\xe3\xaa\x1f\x00\xebh\'\xd2q\xba\xc9\x10\x1e\x94n\xd7w\xb1\xc8G\x89\xf4\x8ct\xf9R\x85\x1b8OE\x04\x9a\xd8\x80\x10x\xbf\n0\b,r\xc6r\xf7=\xfe\xc1\x16\xe6\xee\xbb:-h\xba\x8b\x14\x9a?\x8e\x03;\xe5\x04\xd8\xa9\x9a\x7f|\xadU\xafe\x87V.i4$6U,R\x9b\n{\'\xfe1\xc4\xb09\x96{\xc0e\xa1\xe7\xa9\xb4\x1a\n\xf5\xd7zuvz\x972\xd4\xfb\x13u2\xab\x18\x01~r\xbbcW!)\xf4\x9b\x1dI\x9ex;\xb2\xe3I\xbd\x16T\xb75\xa6\a\xb7\xa1\x8d\xc9\x12\xb1\xbd\xbc\xd9c\xe9\xe6k\xee\x06\x83\xf4\xab\x18\x038\x8f\xc9^\x0f\xab\xea&P\b\xef#\xf6\xc3\xfc\xd4\xa0\xfd\x15N\xd3\xa0\x80\x9f\bU\xa63\xf6\xc9\xecZ`\xa4\xa0(\xf9\x98B\xaf\xde*\x91\xddk\xa1`d\xf0\x97\xc9e\xc1\"EC\x9a?x\x89\x8d\xb3\xfaF}\x82D\xf8\f\xf1`\x90D\xd1|%(\xd8\t\xea\x00C\xce\x7fo+?v\xee\xc6bL\x1d\xbe\x84p\x8d\xa3\xec\xf7\xe0\xfe\x8c=<\xf2\x1f@\xe66E\xa7\x9c\xd3\xb6\xf5\xe0\x14\xb8\xd4`\x85\xe3;|\xf8\xf2\xd9)\x0e\xd0\xff\xa5K\xf3\xf1\xc4\x18\xf4Z\xdci\x91\x84\xe8\xb7\x10\x90\xbc\xect\x14\xdfR\xe2\x80\xf8a\x92\xb2R\xdf0\xcaQ\xdf\x87\xbdjp\x1ch3h\xcf<\x82\x97\xa5s/m\xb2\x1dd\xf7\xfc\xf5\xa9\x1d\xd34{\xcc\x1f\t,i\x16\x82\xad\x8e\xb6\x17\x0f\xaa\x85^/w\xbb~\xff\xce\x92\x90\x83\n\xe5\x14\x95\x92|\xfe-S%\x91i\xafh\x97z\x00@K\xbb\xc2\fcD\xff\xdcl\xa1\xfaR\xbc\xd0k\\\x92\x19a6Sv\x05%{\xe2\xe9\xf1\xddRB$8\xb0q9\xa1g&\x17\xe5P\xef\xb1<\xb6\xe2\xb2\xc06^\x0f4\xba\x10\xba\x00\x00\x00\x00\x00\x00\x00\x00\xef\xba\"\xb7\xc7~T\xc4Ei\xfdk\xa9\"F\xa9C\xa0\xd3\xa0\x1b\xbf\x13\xfb\x14S<\xa6\n5\x86\x9e\xb2=8\'g`\x8f\xa8\x027\xbd\xb5s\xe9dti\xc0\xbd\\H\xe5v\xdd\x0fP\x8b+-\x02i\x8eZU\xa8YB\xfc\xc2R7\xe9\x11\x06\x1aRd\xa93\xa1\\\xf4_s\xf7\xe8+\xbdg\x13\xaea\x04\xd8\x82\xf6\x90\xaf1\x86b\x81J\xb7E\xb0\xe2\xd6\x93S\xb3\x98\xcb\xf9\xde=\xd6T\x8d\xea\xab\xa9Z!\xd3-\xa6_\xc4\xa4\xb6+\x89\xdc]O<g\x06~\x12W\x86\x06\xba\x15#\xa7Q\xffa\x926>\xf0y\xd6\xb0\xf2\x9f\xa7\xcf\xad\x86\\\xec\xec\xd6\x9d\bT\xcd\xa2\xea\x00'/1535, 0x6)
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000080)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000300)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000180)=@abs, 0x6e, 0x0}, 0x140)
connect$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x0, 0x0, @empty}, 0x1c)
socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$inet6_mtu(0xffffffffffffffff, 0x29, 0x17, &(0x7f00000001c0)=0x2, 0x4)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$FS_IOC_GETVERSION(r1, 0x40045b0a, &(0x7f0000000040))

17m18.312272483s ago: executing program 4 (id=69):
landlock_create_ruleset(&(0x7f0000000080)={0x8000}, 0x10, 0x0)
socket$alg(0x26, 0x5, 0x0)
r0 = syz_io_uring_setup(0xd3, &(0x7f00000004c0)={0x0, 0xfffffffe, 0x0, 0xffffdfff}, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
io_uring_enter(r0, 0x47ba, 0x0, 0x0, 0x0, 0x0)

17m16.621505449s ago: executing program 4 (id=72):
memfd_create(&(0x7f0000000040)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6\xa1\x00\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1YV\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19T\xff\x01\x00\x00\xe2\xb8\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\xbe`\'\xcb\xb6\xaf\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11A\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfc\x00\xe3\xde\x00\x00\xa8\xcbo\x90\xe1{\x84\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3J\xc2t\x96\xf8\xb1\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x16\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xba\xce\xb3%QF\x03\b\x9dh\xcb)\xf4f\x12[\xf9\r\t\xef{h\xb0\xc0:\x8f|\x8f\x06\xf8T\x826`M\x11\x1c\xb0*8\v\x1e\xcf\x03\xd3U\xe6\xa9B\n\xc9%\x82\xed#?\xab\x1c\x11\x00\xc5\x9c\xd6B[\xc9\x00\xf5]\x81\xf3\xfd\x06M\xbe\xf9\xba\x9em\xe9\"\x03\x933P\xa3\xcc\x9b\f\xa7\x8f\x91O\xc9\xb9\x14M\x8b\xd0\xc0\xb8E%\xd9\xd8w\x00k\x042Y\xd9\xc5\xe59\xa95\xd1m\xd8hCuZYi\x10D\xb9\xe6\xff\x04K%yH\xe5\x00\x00\x00D~\xc9=\x95\xd4\x18\x97J\x1d\xb7\x11\xcbcE\x0eAU\xe6\x19*\x98}!\xde\xf1\xd3\xf7\x84\x9c\xb4\xf1\x17\xf9-\xc6\xba\xe3\xa8oz\b\xfe\xbc\x1b\xff$\xac=\xf2V**\x8f\x84Oq\xe3\xa16\x1d{f\x91\xbbBORJ\xbcm\xfb\xb0Q\x1c\xd9\x1bg\xf5\xc9p\xc5lo\x90\xb0\xd5\x90\x86\x19\xafC\xee7\x91O)\xf1\xf0\x00\x00\x00\x00\x00\x00\x00\x05t\v\x12\x03\xf5hRQ\b\x97\xc3d-\xfb\x12\x1e\xb2\xce\x9br*M\x10\xd5g\fwx\xb8\xa9\t\xc5\xf9W\x9b\x06\xcc\xa0\x1a\x03\v\x14n7\x92{\x8bH\x9d\x95\xe31\xf4hy\xf6%\xcdC\x9cT\xec57\xbd\xd5\x81\xd9\x13\xee\xdf\xef\xf3\x17H\xd2\xe3k\xe0\xe3^y\xe3\xbb(fEt\x15\xeb/\x90\xca\xde\x189\xdfN 7}|\xa8 2\xd9;\xfa\xeayZS\x10.\x8b,\xd0\x02J\xf8>\xe9\xf0\r\xc2A\xc8q\x89\"+\xa6\xa9^E94\x01\xb5\xba]\xa8\xe9\x86\xea\xe5\xbaH\x11\x8fLLJ(\xfb\x96\x15\xbb\a\xcbj\x1b\xfdL\x88\xbf\xd7\x00\x00\x00\x00\x00t\xdd\xe7z\x87N\x9a\xd1\xe8\xe6\xe5\xa5\rz\\ljD\x19|\x84\x90\xaa\x91\x93\xc7\xdf\xd2\xe9h', 0x0)
syz_mount_image$minix(&(0x7f0000000040), &(0x7f0000000140)='./file1\x00', 0x42, &(0x7f0000000540)=ANY=[], 0xd, 0x1a4, &(0x7f0000000640)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuset.effective_cpus\x00', 0x275a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xf1c09000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_mount_image$tmpfs(&(0x7f00000001c0), &(0x7f00000000c0)='./file0\x00', 0x21408, 0x0, 0x1, 0x0, &(0x7f00000001c0))
mount(&(0x7f0000004300)=@sg0, 0x0, 0x0, 0x1, 0x0)
r3 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCX25GSUBSCRIP(r3, 0x89e0, &(0x7f0000000d80)={'rose0\x00', 0x9, 0x1})

17m14.130109069s ago: executing program 4 (id=75):
syz_open_dev$vbi(0x0, 0x1, 0x2)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
getsockopt$bt_hci(0xffffffffffffffff, 0x29, 0x1, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008a}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x2)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, 0x0, 0x0)
r1 = syz_io_uring_setup(0x16e, &(0x7f0000000780)={0x0, 0x0, 0x10100}, &(0x7f0000001240), &(0x7f0000001340))
io_uring_enter(r1, 0x567, 0x0, 0x0, 0x0, 0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_int(r2, 0x29, 0x19, &(0x7f0000000400)=0xa4, 0x4)
syz_emit_ethernet(0x0, 0x0, 0x0)
sendmsg$DEVLINK_CMD_RATE_GET(0xffffffffffffffff, 0x0, 0x4000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x1, 0x123800)
ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r4, 0xc0045520, &(0x7f0000000040)=0x400)

17m11.069179161s ago: executing program 4 (id=80):
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = syz_open_dev$usbfs(&(0x7f0000003f00), 0x200, 0xa401)
ioctl$USBDEVFS_GET_SPEED(r3, 0x551f)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100))
syz_open_dev$sndctrl(&(0x7f0000001a80), 0x0, 0x684580)
mkdir(0x0, 0x0)
open(0x0, 0x0, 0x0)

17m3.317101362s ago: executing program 32 (id=68):
r0 = socket$inet6(0xa, 0x5, 0x0)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000002dc0)={0x0, @in6={{0xa, 0x4e21, 0x4f, @ipv4={'\x00', '\xff\xff', @multicast1}, 0x1}}, 0x3, 0xa}, &(0x7f0000002e80)=0x90)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
fsopen(0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
openat2$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080), 0x18)
shutdown(r1, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f0000000300)=[@in6={0xa, 0x4e20, 0x4ae, @empty, 0x4}]}, &(0x7f0000000440)=0x10)

16m55.738792464s ago: executing program 33 (id=80):
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = syz_open_dev$usbfs(&(0x7f0000003f00), 0x200, 0xa401)
ioctl$USBDEVFS_GET_SPEED(r3, 0x551f)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100))
syz_open_dev$sndctrl(&(0x7f0000001a80), 0x0, 0x684580)
mkdir(0x0, 0x0)
open(0x0, 0x0, 0x0)

13m35.860897102s ago: executing program 5 (id=444):
sendmsg$key(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000500)={0x2, 0x9, 0x0, 0x0, 0x2}, 0x10}}, 0x0)
sendmsg$NL80211_CMD_SET_CQM(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000006c0)={0x98, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @val={0xc}}}, [@NL80211_ATTR_CQM={0x38, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_THOLD={0x4}, @NL80211_ATTR_CQM_RSSI_THOLD={0x18, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0]}, @NL80211_ATTR_CQM_TXE_RATE={0x8}, @NL80211_ATTR_CQM_RSSI_HYST={0x8}, @NL80211_ATTR_CQM_TXE_INTVL={0x8}]}, @NL80211_ATTR_CQM={0x4}, @NL80211_ATTR_CQM={0x34, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT={0x8}, @NL80211_ATTR_CQM_RSSI_HYST={0x8}, @NL80211_ATTR_CQM_RSSI_HYST={0x8}, @NL80211_ATTR_CQM_TXE_RATE={0x8}, @NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT={0x8}, @NL80211_ATTR_CQM_TXE_RATE={0x8}]}]}, 0x98}}, 0x0)
syz_emit_ethernet(0x66, &(0x7f0000000780)={@broadcast, @random="6487a2bed3d6", @void, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x2f, 0x0, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x806}}}}}}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000340)={'wlan1\x00', <r3=>0x0})
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000480)=ANY=[@ANYBLOB="98030000", @ANYRES16=r1, @ANYBLOB="010028057000fcdbdf253b00000008000300", @ANYRES32=r3, @ANYBLOB="04008e00080057001b0a000004006c000500190107000000080026006c0900005603330080b0c000ffffffffffff"], 0x398}}, 0x0)
r4 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000340), 0x1a1402, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r4, 0xc004500a, &(0x7f00000001c0))
syz_mount_image$squashfs(&(0x7f0000000180), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f00000001c0)=ANY=[@ANYRES16=0x0, @ANYRES64=0x0, @ANYRESOCT, @ANYRESOCT, @ANYRES8, @ANYBLOB="e1cc9e585bf1ccbca5939bcef3ab754c3b730034e20162", @ANYRESOCT, @ANYRES16, @ANYRES8], 0x1, 0x1d2, &(0x7f0000000580)="$eJzslU9rE0EYxn+zO2kSzaFnrxbbi7bZgvgN7AfwAxjStRYT/3QDmlAweunFg/glCn4KD4LePYgIXupBQQ8VTxWJzM474ywNRMVQCvPA8j7vM++fmVlm5mZxr6gDPw93uyxSQtHivVJoYFlZ7WjB2m9iJ4JP2vpt0Z+L/Si2GI7ePLF0dKvT6+U7xXAGUQpmxVTIcUn/cbMp5PXjqqL4tzrzJ4PU7uzxoacVpT4tRnI58VXMg3xvQah8/t8tasx7FeCVH63Zv+ndM/s7p8akkt6kui2njyR/lVUg11dx9VHC19J5e7jbNeS63GJG27SfOxJljHFeBjHnNIxBpUx8HV3elrAMrA76d1eL4ejidr+zlW/lt7Ns/fLaq7NyRCcPYbuXr6lgGokhGg9zTpvBeA348Ht8TAAVTM3gDCiX61Lc5bxyPkhsQhLkhjUMGrzw/euipfS5xgUawP2xGc6wu7WEqaa5YZa2gSIVp62DecIRCY1y4FL3Tm9zD4VyaftoX6N9QM07mTimUb5+xS9/T+yS2A2x+2IPxLq3y71JuqzwRbyVMSzwoDMY7JSPl2Vey7yWLfrOiXR1r6FyM6kTEREREREREXFK8CsAAP//TTFPEQ==")
r5 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
lseek(r5, 0x0, 0x2)
ioctl$FICLONERANGE(0xffffffffffffffff, 0x4020940d, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
getdents(r5, 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r4, 0xc0045005, &(0x7f0000000a00)=0x40000)
pwritev2(r4, &(0x7f0000000200)=[{&(0x7f0000000000)="7f8711e7e1a1e267f32d5557d5275ccf2bdae51a02fa966b49678d739797c866db0a3943095be208709fd076eb918e8f8d1e4d43ea3d962ff9932517dd7505130de8f24bc846406ca33f2be9573327baab909f262805428893880db0d8c34971c87e68862f5294d7b6c76e1126394053997dd8f84c917b21e3317f32309076185a85818b5684ed0a95d9d7", 0x8b}, {&(0x7f00000000c0)="976d175b1ebba7c838360193ac428c74246b16cc678e90cfd628dcbf3b95ec2267efe10867f9df1a32ce8de6c18a5fd04ef21e5be317d96926c20a107312683c90389d7950fbf383a9e194a44f68da3cfd2b5d642e9ce556321dad803a50b7ffe18a2ec542f5f05f6448f84784f0fc83c82b612e980fb5d83f011413f940d1e5b1add6d117d3", 0x86}, {&(0x7f0000000180)="2d9304b56f5547f432c30676b8d0a208c5578254b7", 0x15}], 0x3, 0x2, 0x401, 0x4)

13m35.386907547s ago: executing program 5 (id=447):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000680)=@abs, 0x6e)
r3 = openat$nullb(0xffffffffffffff9c, 0x0, 0x169802, 0x0)
r4 = dup(r3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r4, 0x0)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600004, 0x15)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
write$cgroup_type(r5, &(0x7f0000000180), 0x40010)

13m34.069730456s ago: executing program 5 (id=450):
syz_mount_image$erofs(&(0x7f0000000340), &(0x7f0000000180)='./file2\x00', 0x2000000, &(0x7f00000004c0)=ANY=[], 0x1, 0x225, &(0x7f0000000d80)="$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")
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r0 = accept4$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast2}, &(0x7f0000000080)=0x1c, 0x80000)
open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x28011, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x2, 0x2172, 0xffffffffffffffff, 0x0)
mlock2(&(0x7f0000004000/0x4000)=nil, 0x4000, 0x1)
mlock2(&(0x7f0000005000/0x1000)=nil, 0x1000, 0x0)
mlock2(&(0x7f0000000000/0x8000)=nil, 0x8000, 0x0)
ioctl$sock_netdev_private(r0, 0x89fb, &(0x7f0000000480)="bee954abc1e89ba79973c8a56d65aae6bb55a334283274bffe0a61bdeae323881653bf1fa5773e0e22af77d6cc9a5b9d3b34ec0ca1cd7e0c2740781d8db6ef100765e50ba82ba1473d48780cd1a302562481f69af5f543b6d55a4c658c9fde692918ad8937c088977efab893a2576cf30b4882cd12cfa0e4286823f568a5333420c918c23e0329bedd1876abcfbe5d5c4538f326b3654e05ca9dc0cfce4336ffcb3894f25f684ef1")
setsockopt(r0, 0x4, 0x7, &(0x7f00000000c0)="ec92a882b02c4081", 0x8)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r2 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000003005740ed0b0011c3ec000000010902120001000000000904"], 0x0)
syz_usb_control_io$hid(r2, 0x0, &(0x7f0000000100)={0x2c, &(0x7f0000000440)=ANY=[@ANYBLOB="00000100000004"], 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r2, 0x0, &(0x7f0000000600)={0x2c, &(0x7f0000000340)={0x0, 0x0, 0xd, "8be5143a9de81e98b6c5088d5d"}, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ecm(r2, &(0x7f0000000280)={0x14, &(0x7f00000001c0)={0x0, 0x23, 0xb1, {0xb1, 0x23, "22d669f635129b39fd88fac613975411b145f5bed5e3c7a219552b5e512bb1b1ccb1bf8b1628da841207243f9125b524e2427dcde1a18e6ff467f06aa4c8638d621d8c05e83d5522502b373ef34ea8c41b630eba25fc1b85f18f6639186819a3167bf608d6acc407abcd4a39f50746baf821c9ddb968d92d5f667188a1fecf935b0ad56bc475657b2b6db489c333adf959579c6bcbd270b5f10036a6c87be5ea20e6d0d9964af9fac7887395925efc"}}, &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f0000000400)={0x1c, &(0x7f00000002c0)={0xbcd693241e9e4dd6, 0x1, 0x5f, "fcabfdcf25cfd97318d553ebf3ff944a33e0d77da05e39ffbf9f292b68affce65b6da655c2005c111279bfee0bdac8e29bf0cfbc2d4405d48c81286a47c041429710c3bcf07eb7234052cc978c5c2f04c93dc0335e7c3e602a361f62ed6206"}, &(0x7f0000000380)={0x0, 0xa, 0x1, 0x39}, &(0x7f00000003c0)={0x0, 0x8, 0x1, 0x9}})
getdents64(r1, &(0x7f0000000f80)=""/4096, 0x1035)
umount2(&(0x7f0000000100)='./file2\x00', 0xa)

13m28.772483886s ago: executing program 5 (id=461):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x40000000000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0x3, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000}}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2f5, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
r4 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r5, 0x3b81, &(0x7f0000000140)={0xc, 0x0, <r6=>0x0})
ioctl$IOMMU_IOAS_ALLOC(r4, 0x3b81, &(0x7f0000000240)={0xc, 0x0, <r7=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r4, 0x3b85, &(0x7f0000000280)={0x28, 0x7, r7, 0x0, &(0x7f00007ff000/0x800000)=nil, 0x800000})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r4, 0x3ba0, &(0x7f0000000400)={0x48, 0x5, r6, 0x0, <r8=>0xffffffffffffffff, 0x1})
ioctl$IOMMU_TEST_OP_ACCESS_RW(r5, 0x3ba0, &(0x7f0000000080)={0x48, 0x8, r8, 0x0, 0x81, 0x680, &(0x7f0000000700)="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", 0x4})
syz_open_dev$rtc(&(0x7f0000000140), 0x0, 0x0)

13m24.134908891s ago: executing program 5 (id=463):
syz_open_procfs(0x0, &(0x7f0000001040)='net/ip6_tables_targets\x00')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x24, 0x0, 0x0)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4)
setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000100)='dctcp\x00', 0x6)
bind$inet(r3, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r3, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x13}}, 0x10)
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000000600), 0x4)
sendto$inet(r3, &(0x7f0000000700)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff959bcecc7a95425a3a07e758044ab4ea6f7c555d88fecf90b037511bf746bec66ba", 0x994b6e03113064ae, 0x0, 0x0, 0x0)
recvmsg(r3, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x437aba2}], 0x1, 0x0, 0x46, 0x407006}, 0x104)
setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000140)='bic\x00', 0x4)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuset.effective_mems\x00', 0x275a, 0x0)
dup(r4)

13m21.770128956s ago: executing program 5 (id=468):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"/3590], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r3, 0x3b81, &(0x7f0000000380)={0xc, 0x0, <r4=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r3, 0x3ba0, &(0x7f0000000200)={0x48, 0x2, r4, 0x0, 0x0, 0x0, <r5=>0x0})
ioctl$IOMMU_IOAS_ALLOC(r3, 0x3b81, &(0x7f0000000140)={0xc, 0x0, <r6=>0x0})
ioctl$IOMMU_HWPT_ALLOC$TEST(r3, 0x3b89, &(0x7f00000002c0)={0x18, 0x0, r5, r6, 0x0, 0x0, 0xdead, 0x4, &(0x7f0000000280)})
ioctl$IOMMU_IOAS_MAP$PAGES(r3, 0x3b85, &(0x7f0000000080)={0x28, 0x2, r6, 0x0, &(0x7f0000236000/0x800000)=nil, 0x800000, 0x400000000000000})

13m5.900388479s ago: executing program 34 (id=468):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"/3590], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r3, 0x3b81, &(0x7f0000000380)={0xc, 0x0, <r4=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r3, 0x3ba0, &(0x7f0000000200)={0x48, 0x2, r4, 0x0, 0x0, 0x0, <r5=>0x0})
ioctl$IOMMU_IOAS_ALLOC(r3, 0x3b81, &(0x7f0000000140)={0xc, 0x0, <r6=>0x0})
ioctl$IOMMU_HWPT_ALLOC$TEST(r3, 0x3b89, &(0x7f00000002c0)={0x18, 0x0, r5, r6, 0x0, 0x0, 0xdead, 0x4, &(0x7f0000000280)})
ioctl$IOMMU_IOAS_MAP$PAGES(r3, 0x3b85, &(0x7f0000000080)={0x28, 0x2, r6, 0x0, &(0x7f0000236000/0x800000)=nil, 0x800000, 0x400000000000000})

12m21.129655674s ago: executing program 0 (id=551):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={0x0, r0}, 0x18)
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x360044, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0)
r1 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x88, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='net/softnet_stat\x00')
preadv(r3, &(0x7f00000007c0)=[{0x0}], 0x1, 0x75, 0x0)
r4 = openat$cgroup_subtree(r1, &(0x7f00000001c0), 0x2, 0x0)
write$cgroup_subtree(r4, &(0x7f00000061c0)=ANY=[], 0x6)
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x0)

12m19.505939159s ago: executing program 0 (id=554):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xdef0, 0x8000000000000000}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000480)=ANY=[@ANYBLOB="480000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800b00010065727370616e0000160002800500170003650000040012000500160002"], 0x48}}, 0x4000004)
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000500)=0x4)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000006c0), r7)
sendmsg$IEEE802154_LLSEC_SETPARAMS(r6, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000700)={0x20, r8, 0x1, 0x0, 0x0, {0x22}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}]}, 0x20}}, 0x0)
sendmsg$SEG6_CMD_SET_TUNSRC(r5, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8081}, 0x20040001)
r9 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/partitions\x00', 0x0, 0x0)
r10 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
sendfile(r10, r9, &(0x7f0000002080)=0x64, 0x23b)

12m14.288271246s ago: executing program 0 (id=561):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bf"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r3)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r3, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r4, 0x4)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r5, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r6 = accept(r3, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r6, &(0x7f0000000080)={0x0, 0xe, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[], 0xfffffdef}}, 0x0)
recvfrom(r5, &(0x7f0000000180)=""/60, 0xfffffffffffffecb, 0x0, 0x0, 0x0)

12m12.626236643s ago: executing program 0 (id=565):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000000c0)='./bus\x00', 0x0, &(0x7f0000000700)=ANY=[@ANYRES8=0x0], 0x1, 0x217, &(0x7f00000004c0)="$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")
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x7, 0xc, &(0x7f0000000300)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@ipv4_getrule={0x1c}, 0x1c}}, 0x800)
r4 = inotify_init1(0x0)
inotify_add_watch(r4, &(0x7f0000000140)='.\x00', 0x40000022)
write$binfmt_elf32(r3, &(0x7f0000000040)=ANY=[@ANYBLOB="7f454c4600f60f000000000000000000030006000000000000000000380000000000000000191bda0000200001000000000280000000000003"], 0x69)
execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
mkdir(&(0x7f0000000440)='./file0\x00', 0x0)
openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0)
bind$bt_sco(0xffffffffffffffff, &(0x7f0000000000)={0x1f, @fixed}, 0x8)
setsockopt$bt_BT_VOICE(0xffffffffffffffff, 0x112, 0xb, &(0x7f0000000280)=0x60, 0x2)

12m9.726595507s ago: executing program 0 (id=569):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000006c0), r0)
sendmsg$IEEE802154_LLSEC_SETPARAMS(0xffffffffffffffff, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000700)={0x20, r1, 0x1, 0x0, 0x0, {0x22}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}]}, 0x20}}, 0x0)

12m7.784772654s ago: executing program 0 (id=570):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xdef0, 0x8000000000000000}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000480)=ANY=[@ANYBLOB="480000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800b00010065727370616e0000160002800500170003650000040012000500160002"], 0x48}}, 0x4000004)
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000500)=0x4)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000006c0), r6)
sendmsg$IEEE802154_LLSEC_SETPARAMS(0xffffffffffffffff, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000700)={0x20, r7, 0x1, 0x0, 0x0, {0x22}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}]}, 0x20}}, 0x0)
sendmsg$SEG6_CMD_SET_TUNSRC(r5, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8081}, 0x20040001)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/partitions\x00', 0x0, 0x0)
r9 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
sendfile(r9, r8, &(0x7f0000002080)=0x64, 0x23b)

11m52.190515525s ago: executing program 35 (id=570):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xdef0, 0x8000000000000000}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000480)=ANY=[@ANYBLOB="480000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800b00010065727370616e0000160002800500170003650000040012000500160002"], 0x48}}, 0x4000004)
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000500)=0x4)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000006c0), r6)
sendmsg$IEEE802154_LLSEC_SETPARAMS(0xffffffffffffffff, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000700)={0x20, r7, 0x1, 0x0, 0x0, {0x22}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}]}, 0x20}}, 0x0)
sendmsg$SEG6_CMD_SET_TUNSRC(r5, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8081}, 0x20040001)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/partitions\x00', 0x0, 0x0)
r9 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
sendfile(r9, r8, &(0x7f0000002080)=0x64, 0x23b)

9m4.619088974s ago: executing program 2 (id=836):
r0 = socket(0x2, 0x2, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
pipe2$9p(&(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[], 0x15)
r3 = dup(r2)
write$FUSE_BMAP(r3, &(0x7f0000000000)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r3, &(0x7f00000003c0)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_GETXATTR(r3, &(0x7f00000000c0)={0x18}, 0x18)
openat$fuse(0xffffffffffffff9c, &(0x7f00000003c0), 0x42, 0x0)
write$FUSE_INIT(r3, &(0x7f0000000200)={0x50, 0x0, 0x0, {0x7, 0x29, 0x20200}}, 0x50)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}]}})
r4 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
writev(r4, &(0x7f0000000000)=[{&(0x7f00000000c0)="14", 0x1f68}], 0x2)
close_range(r0, 0xffffffffffffffff, 0x0)

9m4.068159662s ago: executing program 2 (id=838):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="540000001000010400000000000000ffff000000", @ANYRES32=0x0, @ANYBLOB="0380000000000000240012800c0001006d6163766c616e001400028008000100080000000600020001000000080005", @ANYBLOB='\b\x00\n'], 0x54}}, 0x0)

9m3.843229624s ago: executing program 2 (id=839):
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='tmpfs\x00', 0x0, &(0x7f00000001c0)='grpquota')
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000080)={0x0, 0x0, <r1=>0x0}, 0x0)
lchown(&(0x7f0000000100)='./file0\x00', 0x0, r1)

9m3.586073654s ago: executing program 2 (id=841):
r0 = landlock_create_ruleset(&(0x7f0000000380)={0x0, 0x2}, 0x10, 0x0)
landlock_restrict_self(r0, 0x0)
landlock_restrict_self(r0, 0x0)
landlock_restrict_self(r0, 0x0)
landlock_restrict_self(r0, 0x0)
landlock_restrict_self(r0, 0x0)
landlock_restrict_self(r0, 0x0)
r1 = landlock_create_ruleset(0x0, 0x0, 0x0)
landlock_restrict_self(r1, 0x0)
r2 = fsopen(&(0x7f0000000040)='binder\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
landlock_restrict_self(r0, 0x0)
fsmount(r2, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x7, 0x0, 0x0, 0x0)

9m2.432535564s ago: executing program 2 (id=842):
r0 = socket$nl_route(0x10, 0x3, 0x0)
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000003300), 0x0, 0x0)
syz_mount_image$nilfs2(&(0x7f0000000ec0), &(0x7f0000000f00)='./file0\x00', 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="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"], 0x1, 0xee2, &(0x7f0000001e80)="$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")
open(&(0x7f0000000180)='./bus\x00', 0xa37e, 0x0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x46342, 0x0)
ftruncate(r1, 0x2088002)
r2 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
r3 = open(&(0x7f0000000000)='./bus\x00', 0x60142, 0x0)
r4 = open(&(0x7f0000007f80)='./bus\x00', 0x0, 0x0)
r5 = open(&(0x7f0000000000)='./bus\x00', 0x60142, 0x0)
r6 = open(&(0x7f0000007f80)='./bus\x00', 0x145142, 0x0)
sendfile(r5, r6, 0x0, 0x1000000201005)
sendfile(r3, r4, 0x0, 0x1000000201005)
ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f0000000340)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00?'])
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r8, 0xae60)
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r9, 0x0)
r10 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
ioctl$KVM_RUN(r10, 0xae80, 0x0)
ioctl$KVM_RUN(r10, 0xae80, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=@newlink={0x3c, 0x10, 0x581, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @geneve={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GENEVE_LABEL={0x8, 0xb, 0x1, 0x0, 0x1e82}]}}}]}, 0x3c}}, 0x0)

8m57.56830228s ago: executing program 2 (id=848):
r0 = socket(0x2, 0x2, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
pipe2$9p(&(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[], 0x15)
r3 = dup(r2)
write$FUSE_BMAP(r3, &(0x7f0000000000)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r3, &(0x7f00000003c0)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_GETXATTR(r3, &(0x7f00000000c0)={0x18}, 0x18)
openat$fuse(0xffffffffffffff9c, &(0x7f00000003c0), 0x42, 0x0)
write$FUSE_INIT(r3, &(0x7f0000000200)={0x50, 0x0, 0x0, {0x7, 0x29, 0x20200}}, 0x50)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}]}})
r4 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
writev(r4, &(0x7f0000000000)=[{&(0x7f00000000c0)="14", 0x1f68}], 0x2)
close_range(r0, 0xffffffffffffffff, 0x0)

8m42.326720474s ago: executing program 36 (id=848):
r0 = socket(0x2, 0x2, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
pipe2$9p(&(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[], 0x15)
r3 = dup(r2)
write$FUSE_BMAP(r3, &(0x7f0000000000)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r3, &(0x7f00000003c0)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_GETXATTR(r3, &(0x7f00000000c0)={0x18}, 0x18)
openat$fuse(0xffffffffffffff9c, &(0x7f00000003c0), 0x42, 0x0)
write$FUSE_INIT(r3, &(0x7f0000000200)={0x50, 0x0, 0x0, {0x7, 0x29, 0x20200}}, 0x50)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}]}})
r4 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
writev(r4, &(0x7f0000000000)=[{&(0x7f00000000c0)="14", 0x1f68}], 0x2)
close_range(r0, 0xffffffffffffffff, 0x0)

8m12.049123468s ago: executing program 1 (id=912):
socket$nl_xfrm(0x10, 0x3, 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00'}, 0x10)
r4 = epoll_create1(0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000000c0), r6)
sendmsg$IEEE802154_LLSEC_ADD_KEY(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x28, r7, 0xc1049d4b140ba69f, 0x70bd2d, 0x25dfdbfb, {}, [@IEEE802154_ATTR_SHORT_ADDR={0x6, 0x4, 0xaaa2}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x40040}, 0x2000c080)
r8 = eventfd2(0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000000180))
epoll_ctl$EPOLL_CTL_MOD(r4, 0x3, r8, &(0x7f0000000040)={0x20000006})
epoll_ctl$EPOLL_CTL_MOD(r4, 0x3, r8, &(0x7f0000000140))
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000780)=ANY=[@ANYBLOB], 0x1c}}, 0x40000)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xd, 0x4, &(0x7f0000000400)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x11, 0x48}, [@kfunc={0x85, 0x0, 0x2, 0x0, 0x2}]}, &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00'}, 0x10)
r9 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000d80)={&(0x7f0000000c80)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000060000000400000000000007000000000000000061"], 0x0, 0x2a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
ioctl$TIOCSETD(r9, 0x5423, &(0x7f00000000c0)=0x2)
readv(r9, &(0x7f0000000000)=[{&(0x7f0000001300)=""/244, 0x940}], 0x1)

8m10.7850298s ago: executing program 1 (id=913):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bf"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r3)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
bind$inet6(r3, 0x0, 0x0)
listen(r4, 0x4)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r5, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r6 = accept(r3, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r6, &(0x7f0000000080)={0x0, 0xe, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[], 0xfffffdef}}, 0x0)
recvfrom(r5, &(0x7f0000000180)=""/60, 0xfffffffffffffecb, 0x0, 0x0, 0x0)

8m7.921917042s ago: executing program 1 (id=916):
syz_open_procfs(0x0, &(0x7f0000001040)='net/ip6_tables_targets\x00')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4)
setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000100)='dctcp\x00', 0x6)
bind$inet(r3, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r3, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x13}}, 0x10)
sendto$inet(r3, &(0x7f0000000700)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff959bcecc7a95425a3a07e758044ab4ea6f7c555d88fecf90b037511bf746bec66ba", 0x994b6e03113064ae, 0x0, 0x0, 0x0)
recvmsg(r3, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x437aba2}], 0x1, 0x0, 0x46, 0x407006}, 0x104)
setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000140)='bic\x00', 0x4)

8m6.645711682s ago: executing program 1 (id=918):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = syz_open_dev$usbfs(0x0, 0x0, 0x0)
ioctl$USBDEVFS_CONTROL(r0, 0xc0185500, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6(0xa, 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x100000000000000, 0x0, 0x0)
r2 = syz_mount_image$ext4(&(0x7f00000000c0)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x2000400, &(0x7f0000000440)={[], [{@uid_lt}, {@pcr={'pcr', 0x3d, 0x31}}, {@uid_lt}, {@fsmagic={'fsmagic', 0x3d, 0x6}}, {@smackfsfloor}]}, 0x1, 0x520, &(0x7f00000010c0)="$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")
socket$inet(0x2, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x1, 0xc, &(0x7f00000004c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xd7c1, 0x0, 0x0, 0x0, 0xffffff94}, [@map_fd={0x18, 0x7, 0x1, 0x0, r1}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffc}, @exit, @func={0x85, 0x0, 0x1, 0x0, 0x3}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r1}}]}, &(0x7f0000000540)='GPL\x00', 0x8, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback=0x13, r0, 0x8, &(0x7f00000006c0)={0x3, 0x4}, 0x8, 0x10, &(0x7f0000000700)={0x5, 0x2, 0x5, 0x2}, 0x10, 0x0, r2, 0x4, &(0x7f0000000900)=[r1, r1], &(0x7f0000000940)=[{0x1, 0x4, 0x10, 0x7}, {0x3, 0x5, 0x6, 0xa}, {0x3, 0x4, 0x8, 0x2}, {0x0, 0x3, 0x10, 0x3}], 0x10, 0x7, @void, @value}, 0x94)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200))
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
connect$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@getnexthop={0x18, 0x76, 0x401}, 0x18}}, 0x0)
r5 = getpgid(0x0)
r6 = syz_clone3(&(0x7f00000003c0)={0x0, &(0x7f0000000140), &(0x7f0000000180), &(0x7f0000000240), {0x3}, &(0x7f0000001600)=""/4096, 0x1000, &(0x7f0000000280)=""/146, &(0x7f0000000340)=[0x0], 0x1}, 0x58)
kcmp(r5, r6, 0x6, r3, r2)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$sock_SIOCETHTOOL(r7, 0x8946, &(0x7f0000002740)={'wlan1\x00', &(0x7f0000002700)=@ethtool_ts_info})
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x28000, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r8}, &(0x7f0000000580), 0x0}, 0x20)

8m3.858092182s ago: executing program 1 (id=921):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000003300), 0x0, 0x0)
ioctl$IOCTL_STATUS_ACCEL_DEV(r1, 0x40046103, 0x0)
syz_mount_image$nilfs2(&(0x7f0000000ec0), &(0x7f0000000f00)='./file0\x00', 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="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"], 0x1, 0xee2, &(0x7f0000001e80)="$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")
open(&(0x7f0000000180)='./bus\x00', 0xa37e, 0x0)
r2 = open(&(0x7f0000000040)='./bus\x00', 0x46342, 0x0)
ftruncate(r2, 0x2088002)
r3 = open(0x0, 0x0, 0x0)
r4 = open(&(0x7f0000000000)='./bus\x00', 0x60142, 0x0)
r5 = open(&(0x7f0000007f80)='./bus\x00', 0x0, 0x0)
r6 = open(&(0x7f0000000000)='./bus\x00', 0x60142, 0x0)
r7 = open(&(0x7f0000007f80)='./bus\x00', 0x145142, 0x0)
sendfile(r6, r7, 0x0, 0x1000000201005)
sendfile(r4, r5, 0x0, 0x1000000201005)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f0000000340)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00?'])
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r9, 0xae60)
ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r10, 0x0)
r11 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
ioctl$KVM_RUN(r11, 0xae80, 0x0)
ioctl$KVM_RUN(r11, 0xae80, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=@newlink={0x3c, 0x10, 0x581, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @geneve={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GENEVE_LABEL={0x8, 0xb, 0x1, 0x0, 0x1e82}]}}}]}, 0x3c}}, 0x0)

7m57.002146812s ago: executing program 1 (id=934):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bf"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r3)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
bind$inet6(r3, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r4, 0x4)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r5, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r6 = accept(r3, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r6, &(0x7f0000000080)={0x0, 0xe, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[], 0xfffffdef}}, 0x0)
recvfrom(r5, &(0x7f0000000180)=""/60, 0xfffffffffffffecb, 0x0, 0x0, 0x0)

7m40.495933941s ago: executing program 37 (id=934):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bf"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r3)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
bind$inet6(r3, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r4, 0x4)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r5, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r6 = accept(r3, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r6, &(0x7f0000000080)={0x0, 0xe, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[], 0xfffffdef}}, 0x0)
recvfrom(r5, &(0x7f0000000180)=""/60, 0xfffffffffffffecb, 0x0, 0x0, 0x0)

11.18370959s ago: executing program 8 (id=1821):
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100))
mknod(&(0x7f0000000180)='./file0\x00', 0x1ffa, 0x0)
acct(&(0x7f0000000140)='./file0\x00')
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
timer_create(0x0, &(0x7f0000000200)={0x0, 0x13}, &(0x7f0000000240)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)

7.15321689s ago: executing program 3 (id=1861):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r0, 0xc0189378, 0x0)
syz_usb_connect$hid(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="1201000000000010ac0544020000000000010902240001000000000904000000030002"], 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

6.666061533s ago: executing program 8 (id=1864):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f0000000100)=ANY=[@ANYBLOB="61636c2c6865617274626561743d6e6f6e652c6572726f72733d72656d6f756e742d726f2c636f686572656e63793d66756c6c2c636f686572656e63793d66756c6c2c6c6f63616c666c6f636b732c696e74722c6e6f61636c2c001967b9b8a6cdd636d75428f2c5e8054d01858eef552755576e749526b36860cf2511040d1ce5a743ffd83d29d1ba3a54a59d8c7aa249f08d3c8c6d04ac105d67934db6190d59f2323b55a5a4"], 0x1, 0x4441, &(0x7f0000004480)="$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")
syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000000), 0x200, 0x102)
r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
preadv(r1, &(0x7f0000000240)=[{&(0x7f00000004c0)=""/152, 0x98}, {&(0x7f0000000580)=""/142, 0x2000060e}], 0x2, 0x0, 0x0)
r2 = dup(r0)
ioctl$USBDEVFS_SUBMITURB(r2, 0x8038550a, &(0x7f0000000100)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0xffff}, 0x10007, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

5.415188427s ago: executing program 7 (id=1866):
bind$alg(0xffffffffffffffff, &(0x7f0000000040)={0x26, 'skcipher\x00', 0x0, 0x0, 'adiantum(xts-twofish-avx,camellia-asm,cbcmac(aes))\x00'}, 0x58)
socket$inet6(0xa, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x5, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff})
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
dup3(0xffffffffffffffff, r3, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
r4 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
write$FUSE_NOTIFY_POLL(r4, &(0x7f0000002940)={0x18, 0x3, 0x0, {0x8}}, 0x18)

4.710394726s ago: executing program 3 (id=1868):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000040)={0x100000011, @multicast2, 0x0, 0x0, 'lblc\x00', 0x1b, 0xffffffff, 0x203e}, 0x2c)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16, @ANYBLOB="0100000000000000000003000000400001802c0004001400010002000000ac1414aa00000000000000001400020002000000e000000200000000000004000d0001007564703a73"], 0x54}}, 0x0)

4.324614082s ago: executing program 3 (id=1869):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x12, 0x8, 0x4, 0x3, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
listen(r1, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000580)={r0, &(0x7f0000000480), &(0x7f0000000540)=@tcp=r1}, 0x20)
capset(&(0x7f0000000080)={0x20080522}, 0x0)
bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000400)={r0, &(0x7f0000000080), 0x20000000}, 0x20)

4.156452689s ago: executing program 7 (id=1871):
r0 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @local}, 0xfc, 0x0}, 0x30004001)
recvmsg(r0, 0x0, 0x1)

3.922492362s ago: executing program 3 (id=1872):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @multicast1}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x20020084, &(0x7f00000018c0)={0x2, 0x4e20}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01080000000000000000020000000900020073797a2a0000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x40)
sendto$inet(r0, &(0x7f00000000c0)='+', 0xffffffffffffff60, 0xf405, 0x0, 0xf06)

3.579846436s ago: executing program 7 (id=1874):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000280)={{0x12, 0x1, 0x0, 0xe3, 0xdd, 0xef, 0x20, 0x1d50, 0x60a1, 0xa14f, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x9d, 0x14, 0x4e}}]}}]}}, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, &(0x7f0000000240)={0x1c, &(0x7f0000000140)=ANY=[], 0x0, 0x0})
syz_usb_control_io$printer(r0, 0x0, &(0x7f0000000400)={0x34, &(0x7f0000000640)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000540)={0x44, &(0x7f00000002c0)={0x20, 0x15}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)={0x20, 0x89, 0x2, 0x1}})
syz_usb_control_io(r0, 0x0, &(0x7f0000000a40)={0x84, &(0x7f0000000640)={0x0, 0x11}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000000)={0x44, &(0x7f0000000180)={0x0, 0x7}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ecm(r0, 0x0, &(0x7f00000004c0)={0x1c, &(0x7f0000000600)={0x40, 0x1}, 0x0, 0x0})

3.428174485s ago: executing program 9 (id=1876):
r0 = landlock_create_ruleset(&(0x7f0000000080)={0x12}, 0x18, 0x0)
landlock_restrict_self(r0, 0x0)
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000080)='./file1\x00', 0x88, &(0x7f0000000a40)={[{}, {@gid}, {@barrier}, {@uid}, {@force}, {@force}, {@nls={'nls', 0x3d, 'macgaelic'}}, {@part={'part', 0x3d, 0x6}}, {@force}]}, 0x41, 0x6e8, &(0x7f00000001c0)="$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")

3.087054655s ago: executing program 8 (id=1877):
r0 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$VIDIOC_ENUM_FRAMESIZES(r0, 0xc02c564a, &(0x7f0000000200)={0x3a6, 0x34324142, 0x1, @discrete={0x98, 0x8}})

2.985969415s ago: executing program 9 (id=1879):
rt_sigtimedwait(&(0x7f0000000080), 0x0, 0x0, 0x8)

2.816095698s ago: executing program 3 (id=1881):
acct(0x0)

2.474986766s ago: executing program 3 (id=1883):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, 0x0)
syz_open_procfs(0x0, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(r1, 0x4038ae7a, &(0x7f0000000280)={0x0, 0x150c, 0x0, 0x0})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

2.338340606s ago: executing program 6 (id=1884):
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x1, 0x0, 0xfffffffffffff, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x50032, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c831, 0xffffffffffffffff, 0x0)

2.084069747s ago: executing program 6 (id=1885):
r0 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @local}, 0xfc, 0x0}, 0x30004001)
recvmsg(r0, 0x0, 0x1)

1.953936864s ago: executing program 8 (id=1886):
r0 = socket$inet6(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'sit0\x00', <r1=>0x0})
ioctl$sock_inet6_SIOCSIFDSTADDR(r0, 0x8918, &(0x7f0000000080)={@loopback={0x0, 0x3fc}, 0x0, r1})

1.842682967s ago: executing program 6 (id=1887):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

1.654203075s ago: executing program 6 (id=1888):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'\x00', 0x1})
ioctl$TUNGETFILTER(r0, 0x801054db, 0x0)

1.496264171s ago: executing program 9 (id=1889):
syz_mount_image$hfsplus(&(0x7f0000000440), &(0x7f0000000080)='./file0\x00', 0x800000, &(0x7f00000002c0)=ANY=[@ANYBLOB="706172743d3078303030303030303030303030303437372c666f7263652c706172743d3078303030303030303030303030303466352c747970653d883b7f382c6e6c733d6370313235312c756d61736b3d30303030303030303030303030303030303030303031312c7569643d", @ANYRESHEX=0x0, @ANYBLOB="2c6e6f6465636f6d706f73652c63726561746f723d853544712c00596b0ef4cdc421fbd02b91c13684c156114df156a5c51754a9ddfcee438b48190bcaaef9dfefb7262f48bff37813a9aa9150fa7daab42645c8bef0de8f2e1503a97c83478a2e03a1782a2ce27ca80c93120e75f9710450ca5ac05a8ea5d43aeb1464c6b6cc5732d31a3a2e66825a6d23a0136c951772dd4aabe1fa6270e5c5047c985e0f919a032ffc208c9a5effb439648b40dc33371b2412edbe9749d9f32243001542c11709"], 0x1, 0x6da, &(0x7f0000000580)="$eJzs3UtoHOcdAPD/rFarXRUcOfEjLYEsMaSlorZkobTqpW4pRYdQQnroebHlWHgtB0kpsimN0se9h5x6Sg+6hR5Keje054ZAyVXHQCGXnHRTmdmZ1Ur7lKzHJv39xMx8M99z/rMzsw/EBPB/a3k2ys8iieXZN7fS9d2dhebEzsJUnt2MiEpElCLKrUUka5Hl3smn+Ha6MS+f9Ovnw9Wltz//aveL1lo5n7LypUH1eqh0b9rOp6hHxES+7DbZp8VPjnZ/qL27fdsbVdLewzRgN4rAxV+eq1V4bvtdttt5H/8nmw+qfpzzFhhTSeu+2WUmYjoiqhGtu35+dSid7+hO3/ZFDwAAAACOq3b8Ki/sxV5sxaWzGA4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB8U+XP/0/yqVSk65EUz/+v5NsiT4+h4Q9C/GyqtXx29oMBAAAAAAAAgDP36l7sxVZcKtb3k+w3/9c6fuP/VrwXG7ES63EztqIRm7EZ6zEfETMdDVW2Gpub6/NZzYgrA2rejk971Lzdf4x3TnmfAQAAAAAAAGDMVYfkP5zs3vb7WD74/R8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMZBEjHRWmTTlSI9E6VyRFQjopKW2474tEh/TSS9Nj47/3EAAADAc6keXk2qI9R54f3Yi624VKzvJ9ln/mvZ5+VqvBdrsRmrsRnNWIl7+Wfo9FN/aXdnobm7s/Aonbrb/emXxxp61mK0vnvo3fPLWYla3I/VbMvNuBtJ7GdKeSsv7+4spMtHvcf1QTqm5Ce5AaOZ6EjfS2fXP8nSfz78LUL5WLt4QqW+OTNZ7mQ7InP52NIal4sI9I7E0KNTHtjTfJTa3/xcGdxT75h/MLj36SOlen5zcyGORuJ2lNpH6NrgSER89x8f//pBc+3hg/sbs+OzSz29P7TE0UgsdETi+jcoEsPNZZG42l5fjl/Er2I2vpx6K9ZjNX4TjdiMlXqR38hfz+l8ZnCkPpvuXHtr2EjSc7Levn71GlM9Do0p6vHzLNWI17JjeilWI4nHEbESb2R/t2O+fTU4OMJXRzjrSyNcaTvc+F62aIcpav3L/m20Jk9LGtfLHXHtvObOZHmdWw6i9GLPKBX3utHvRx3K38kTaQt/GHh/OG9HIzHfEYmX+r1eWiH9634632iuPVx/0Hh3xP5ez5fpefSnsbpLpEf4xajmO3c5myfZOTWX5b3UvsMejlcl/8WlpdSVd7Vdr3Wm/jIex71DZ+oPYzEWYykrfS0rPdl1x0rzrrdbOnwNT/PSd1rl9g87ne+3Hkez9X4IgPE2/f3pSu2/tX/XPqr9sfag9mb1Z1M/mnqlEpP/mvxxeW7i9dIryd/jo/jdwed/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAADg5DaePH3YaDZX1nsnSr2zksG1Gs394kFiA8ocSiT5o3JGKJxsPHm6P7TBwYmpfHgnrH6aieJpjcML189wGMn20eNVHX4siqc8jdBF0hXwtPKJx1z0fLBlcgwO5dFE/fQaLF6wHVnHf/XWeh2viYjoVXjIhWPiNK4+wEW6tfno3VsbT57+YPVR452Vd1bWJhcXl+aWFt9YuHV/tbky15p3VDiXh98C56Hz7URbJSJeHV53wINaAQAAAAAAAAAAgDN0Hv8LcdH7CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHy9Lc9G+VkkMT93cy5d391ZaKZTkT4oWY6IUkQkv41I/hlxJ1pTzHQ0l/Tr58PVpbc//2r3i4O2ykX5UsR233qj2c6nqEfERL48rfbuDm+vcpCc6pGdtCOTBuxGETi4aP8LAAD//7co7JU=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000001280)=""/4089, 0xff9)

1.236832474s ago: executing program 9 (id=1890):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000980)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x1, 0x0, 0x7ffc0001}]})
setreuid(0x0, 0x0)

909.166425ms ago: executing program 9 (id=1891):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
bind$inet6(r1, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r1, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
syz_usb_connect$cdc_ncm(0x6, 0x0, 0x0, 0x0)
ioctl$TCFLSH(0xffffffffffffffff, 0x400455c8, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

641.197171ms ago: executing program 8 (id=1892):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)

523.268107ms ago: executing program 8 (id=1893):
close(0xffffffffffffffff)
socket$netlink(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$inet6_sctp(0xa, 0x5, 0x84)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8)

413.703741ms ago: executing program 7 (id=1894):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000000c0)='sched_process_wait\x00', r0}, 0x18)
bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000300)='ns/net\x00')
r2 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x16, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="85000000080000004e00000000000000850000007d00000095000000000000007ab9e683b171b4b09980af6c1ebeda4ac0d3e3aa71a9ab17e14e1b0be949499ca6a5b2c467b6d3d1c0ae1e9820331afd90cc832c761aa3adf9be48c401c7f893694bf8cd19b7173cd4688904f7310af046fd490d3f2cf49b5f68aecf0bc659dc3d53c2"], &(0x7f0000000140)='GPL\x00', 0x0, 0xbd, &(0x7f00000004c0)=""/153, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x15)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000440)={r2, 0x0, 0x11, 0x0, &(0x7f0000000600)="61df712bc884fef053a7a9a26e9b722780", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000005c0)={@ifindex, 0x11, 0x0, 0x8, &(0x7f0000000040)=[0x0, 0x0], 0x2, 0x0, 0x0, 0x0, 0x0}, 0x40)

312.63336ms ago: executing program 7 (id=1895):
pipe2(0x0, 0x0)
readv(0xffffffffffffffff, &(0x7f0000000040)=[{&(0x7f0000000240)=""/193, 0xc1}], 0x1)
close(0xffffffffffffffff)
writev(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000100)="19", 0x3a4e1e905c56cdb7}], 0x1)

141.48849ms ago: executing program 6 (id=1896):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000c80)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
socket$packet(0x11, 0x2, 0x300)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
sendto$inet(r0, 0x0, 0x0, 0xc806, &(0x7f0000000180)={0x2, 0x4e21, @multicast2}, 0x10)
sendto$inet(r0, &(0x7f0000000100)='J', 0xfdbe, 0x4004084, 0x0, 0x11000a00)

2.371032ms ago: executing program 9 (id=1897):
r0 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @local}, 0xfc, 0x0}, 0x30004001)
recvmsg(r0, 0x0, 0x1)

2.214514ms ago: executing program 7 (id=1898):
r0 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'netdevsim0\x00', <r3=>0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$packet(0x11, 0x3, 0x300)
prlimit64(0x0, 0xe, 0x0, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000000)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xffe1}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x8}]}, 0x38}}, 0x0)

0s ago: executing program 6 (id=1899):
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000740), 0x8202, 0x0)
mmap$binder(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x8000000000000000)
rt_sigtimedwait(&(0x7f0000000080), 0x0, 0x0, 0x8)

kernel console output (not intermixed with test programs):

 9-1: New USB device found, idVendor=0458, idProduct=5015, bcdDevice= 0.00
[  781.019334][T12224] ext4: Unknown parameter 'dont_appraise'
[  781.093824][ T5885] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  781.178424][ T5885] usb 9-1: config 0 descriptor??
[  781.549084][ T5882] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  781.751948][T12243] serio: Serial port ptm0
[  782.578965][ T5885] usbhid 9-1:0.0: can't add hid device: -71
[  782.604581][ T5885] usbhid 9-1:0.0: probe with driver usbhid failed with error -71
[  782.949522][T12251] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1096'.
[  782.990451][T12252] syz.9.1095 (12252): drop_caches: 2
[  782.996472][T12252] syz.9.1095 (12252): drop_caches: 2
[  783.208237][ T5885] usb 9-1: USB disconnect, device number 9
[  783.821330][ T5882] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 33, using maximum allowed: 30
[  783.832239][ T5882] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  783.843401][ T5882] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  783.853350][ T5882] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 33
[  783.866337][ T5882] usb 7-1: New USB device found, idVendor=0458, idProduct=5015, bcdDevice= 0.00
[  783.875612][ T5882] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  783.910896][ T5882] usb 7-1: config 0 descriptor??
[  783.920593][ T5882] usb 7-1: can't set config #0, error -71
[  783.929090][ T5882] usb 7-1: USB disconnect, device number 8
[  785.724652][T12265] loop6: detected capacity change from 0 to 1024
[  786.116541][T12271] serio: Serial port ptm0
[  786.227060][T12265] EXT4-fs: Ignoring removed orlov option
[  786.313691][T12265] ext4: Unknown parameter 'dont_appraise'
[  786.435928][T12279] loop9: detected capacity change from 0 to 512
[  786.499643][T12279] ext2: Unknown parameter 'uid<00000000000000000000'
[  786.707054][T12293] serio: Serial port ptm0
[  787.048137][T12290] loop8: detected capacity change from 0 to 512
[  787.055283][T12290] ext2: Unknown parameter 'uid<00000000000000000000'
[  787.141404][T12297] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1102'.
[  788.362548][ T5919] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  788.571523][T12312] serio: Serial port ptm0
[  789.528576][T12323] syz.6.1108 (12323): drop_caches: 2
[  789.542094][T12323] syz.6.1108 (12323): drop_caches: 2
[  789.695481][T12320] loop9: detected capacity change from 0 to 512
[  789.764663][T12325] loop3: detected capacity change from 0 to 512
[  789.766500][T12320] ext2: Unknown parameter 'uid<00000000000000000000'
[  789.779811][T12325] ext2: Unknown parameter 'uid<00000000000000000000'
[  790.475630][T12344] loop6: detected capacity change from 0 to 512
[  790.482744][T12344] ext2: Unknown parameter 'uid<00000000000000000000'
[  790.824734][T12351] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1110'.
[  792.821247][T12371] loop9: detected capacity change from 0 to 1024
[  793.309831][T12371] EXT4-fs: Ignoring removed orlov option
[  793.320996][T12371] ext4: Unknown parameter 'dont_appraise'
[  794.383718][ T5885] usb 10-1: new high-speed USB device number 7 using dummy_hcd
[  794.720532][T12400] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1119'.
[  795.002146][T12403] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1121'.
[  795.499778][ T5919] usb 9-1: new high-speed USB device number 10 using dummy_hcd
[  796.846630][T12397] loop3: detected capacity change from 0 to 1024
[  798.776058][ T5919] usb 9-1: device descriptor read/all, error -71
[  798.862130][ T5885] usb 10-1: device descriptor read/all, error -71
[  799.123437][T12415] loop3: detected capacity change from 0 to 1024
[  799.134604][T12415] EXT4-fs: Ignoring removed orlov option
[  799.368970][T12415] ext4: Unknown parameter 'dont_appraise'
[  799.609297][T12429] serio: Serial port ptm0
[  799.622847][T12430] serio: Serial port ptm1
[  800.868008][T12437] loop7: detected capacity change from 0 to 512
[  800.949483][T12437] ext2: Unknown parameter 'uid<00000000000000000000'
[  801.008416][T12445] netlink: 4 bytes leftover after parsing attributes in process `syz.9.1124'.
[  801.038221][ T5882] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  802.209874][ T5882] usb 4-1: device descriptor read/all, error -71
[  802.332264][T12461] loop3: detected capacity change from 0 to 1024
[  802.339975][T12461] EXT4-fs: Ignoring removed orlov option
[  802.345738][T12461] ext4: Unknown parameter 'dont_appraise'
[  803.572663][ T5882] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  803.700944][T12482] loop7: detected capacity change from 0 to 1024
[  803.708249][T12482] EXT4-fs: Ignoring removed orlov option
[  803.720324][T12482] ext4: Unknown parameter 'dont_appraise'
[  803.726382][T12483] loop9: detected capacity change from 0 to 1024
[  803.748844][ T5882] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 33, using maximum allowed: 30
[  803.780850][ T5882] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  803.828731][ T5882] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  803.861983][T12483] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  803.867808][T12488] loop6: detected capacity change from 0 to 1024
[  803.898328][T12488] EXT4-fs: Ignoring removed orlov option
[  803.899492][ T5882] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 33
[  803.905146][ T5886] usb 9-1: new high-speed USB device number 12 using dummy_hcd
[  803.935430][T12488] ext4: Unknown parameter 'dont_appraise'
[  803.988718][ T5882] usb 4-1: New USB device found, idVendor=0458, idProduct=5015, bcdDevice= 0.00
[  804.037394][ T5882] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  804.107198][ T5882] usb 4-1: config 0 descriptor??
[  804.121072][ T5886] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  804.143446][ T5886] usb 9-1: config 0 has no interfaces?
[  804.154979][ T5886] usb 9-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  804.164720][ T5886] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  804.182638][ T5886] usb 9-1: config 0 descriptor??
[  804.358769][ T5885] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  804.531833][ T5885] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 33, using maximum allowed: 30
[  804.551310][ T5882] kye 0003:0458:5015.000D: tablet report size too small, or kye_tablet_rdesc unexpectedly large
[  804.564909][ T5885] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  804.612809][ T5882] kye 0003:0458:5015.000D: hidraw0: USB HID v0.00 Device [HID 0458:5015] on usb-dummy_hcd.3-1/input0
[  804.623865][ T5885] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  804.634196][ T5885] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 33
[  804.637740][T12511] netlink: 52 bytes leftover after parsing attributes in process `syz.9.1136'.
[  804.647687][ T5882] kye 0003:0458:5015.000D: tablet-enabling feature report not found
[  804.664900][ T5885] usb 7-1: New USB device found, idVendor=0458, idProduct=5015, bcdDevice= 0.00
[  804.675558][ T5882] kye 0003:0458:5015.000D: tablet enabling failed
[  804.682183][ T5885] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  804.706046][ T5885] usb 7-1: config 0 descriptor??
[  804.842014][ T6653] usb 4-1: USB disconnect, device number 6
[  804.900044][T12518] loop9: detected capacity change from 0 to 1024
[  804.909945][T12518] EXT4-fs: Ignoring removed orlov option
[  804.931150][T12518] ext4: Unknown parameter 'dont_appraise'
[  805.122714][ T5885] kye 0003:0458:5015.000E: tablet report size too small, or kye_tablet_rdesc unexpectedly large
[  805.148268][ T5885] kye 0003:0458:5015.000E: hidraw0: USB HID v0.00 Device [HID 0458:5015] on usb-dummy_hcd.6-1/input0
[  805.165794][ T5885] kye 0003:0458:5015.000E: tablet-enabling feature report not found
[  805.174854][ T5885] kye 0003:0458:5015.000E: tablet enabling failed
[  805.238748][ T5882] usb 10-1: new high-speed USB device number 9 using dummy_hcd
[  805.352486][ T5885] usb 7-1: USB disconnect, device number 10
[  805.411275][ T5882] usb 10-1: too many endpoints for config 0 interface 0 altsetting 0: 33, using maximum allowed: 30
[  805.448435][ T5882] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  805.474089][ T5882] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  805.497253][ T5882] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 33
[  805.504940][T12537] loop3: detected capacity change from 0 to 1024
[  805.518335][ T5882] usb 10-1: New USB device found, idVendor=0458, idProduct=5015, bcdDevice= 0.00
[  805.528070][ T5882] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  805.547967][T12537] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  805.575640][ T5882] usb 10-1: config 0 descriptor??
[  806.004604][ T5882] kye 0003:0458:5015.000F: tablet report size too small, or kye_tablet_rdesc unexpectedly large
[  806.033701][ T5882] kye 0003:0458:5015.000F: hidraw0: USB HID v0.00 Device [HID 0458:5015] on usb-dummy_hcd.9-1/input0
[  806.064471][ T5882] kye 0003:0458:5015.000F: tablet-enabling feature report not found
[  806.082331][ T5882] kye 0003:0458:5015.000F: tablet enabling failed
[  806.217449][ T5882] usb 10-1: USB disconnect, device number 9
[  806.298874][ T5885] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  806.460886][ T5885] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 33, using maximum allowed: 30
[  806.481276][ T5885] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  806.497477][ T5885] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  806.509935][T12567] loop3: detected capacity change from 0 to 1024
[  806.514957][ T5885] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 33
[  806.542181][ T5885] usb 7-1: New USB device found, idVendor=0458, idProduct=5015, bcdDevice= 0.00
[  806.546130][T12567] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  806.578172][ T5885] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  806.600706][ T5885] usb 7-1: config 0 descriptor??
[  806.668588][ T5886] usb 9-1: USB disconnect, device number 12
[  807.044187][ T5885] kye 0003:0458:5015.0010: tablet report size too small, or kye_tablet_rdesc unexpectedly large
[  807.085309][ T5885] kye 0003:0458:5015.0010: hidraw0: USB HID v0.00 Device [HID 0458:5015] on usb-dummy_hcd.6-1/input0
[  807.106295][T12585] loop9: detected capacity change from 0 to 512
[  807.143263][ T5885] kye 0003:0458:5015.0010: tablet-enabling feature report not found
[  807.156787][T12585] ext2: Unknown parameter 'uid<00000000000000000000'
[  807.174301][ T5885] kye 0003:0458:5015.0010: tablet enabling failed
[  807.535994][T12596] loop7: detected capacity change from 0 to 64
[  807.882099][T12592] Can't find ip_set type hash:ne
[  807.887764][T12590] Can't find ip_set type hash:ne
[  808.788539][ T5919] usb 7-1: USB disconnect, device number 11
[  808.836166][T12604] loop8: detected capacity change from 0 to 1024
[  808.940078][T12606] loop3: detected capacity change from 0 to 1024
[  809.417158][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  809.846481][T12610] netlink: 52 bytes leftover after parsing attributes in process `syz.7.1147'.
[  809.880992][T12604] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  809.904109][T12612] loop9: detected capacity change from 0 to 1024
[  809.946991][T12614] loop6: detected capacity change from 0 to 1024
[  810.024886][T12617] loop7: detected capacity change from 0 to 1024
[  810.043546][T12617] EXT4-fs: Ignoring removed orlov option
[  810.049542][T12617] ext4: Unknown parameter 'dont_appraise'
[  810.145418][T12606] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  810.206442][T12614] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  810.339026][T12612] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  810.655656][T12635] loop3: detected capacity change from 0 to 512
[  810.667574][T12635] ext2: Unknown parameter 'uid<00000000000000000000'
[  811.161740][   T54] Bluetooth: hci0: command 0x0406 tx timeout
[  815.511568][T12672] loop3: detected capacity change from 0 to 1024
[  815.584950][T12672] EXT4-fs: Ignoring removed orlov option
[  815.903398][T12672] ext4: Unknown parameter 'dont_appraise'
[  816.327994][T12681] loop6: detected capacity change from 0 to 1024
[  816.379667][T12681] EXT4-fs: Ignoring removed orlov option
[  816.401705][T12685] loop9: detected capacity change from 0 to 1024
[  816.409875][T12685] EXT4-fs: Ignoring removed orlov option
[  816.415636][T12685] ext4: Unknown parameter 'dont_appraise'
[  816.425556][T12681] ext4: Unknown parameter 'dont_appraise'
[  816.610119][T12690] loop7: detected capacity change from 0 to 1024
[  816.689570][ T6653] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  817.014691][T12690] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  817.038763][ T5886] usb 10-1: new high-speed USB device number 10 using dummy_hcd
[  817.046534][ T5841] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  817.071878][ T6653] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 33, using maximum allowed: 30
[  817.104428][ T6653] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  817.146593][ T6653] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  817.198302][ T6653] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 33
[  817.232099][ T5841] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 33, using maximum allowed: 30
[  817.243026][ T5886] usb 10-1: too many endpoints for config 0 interface 0 altsetting 0: 33, using maximum allowed: 30
[  817.273002][ T5886] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  817.284544][ T5841] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  817.296663][ T6653] usb 4-1: New USB device found, idVendor=0458, idProduct=5015, bcdDevice= 0.00
[  817.308868][ T5886] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  817.329034][ T5841] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  817.339263][ T6653] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  817.349383][ T5886] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 33
[  817.362555][ T5841] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 33
[  817.377945][ T6653] usb 4-1: config 0 descriptor??
[  817.384981][ T5886] usb 10-1: New USB device found, idVendor=0458, idProduct=5015, bcdDevice= 0.00
[  817.399117][ T5841] usb 7-1: New USB device found, idVendor=0458, idProduct=5015, bcdDevice= 0.00
[  817.408526][ T5886] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  817.417465][ T5841] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  817.430970][ T5886] usb 10-1: config 0 descriptor??
[  817.447264][ T5841] usb 7-1: config 0 descriptor??
[  817.467844][T12713] loop8: detected capacity change from 0 to 1024
[  817.532197][T12713] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  817.900505][ T6653] usbhid 4-1:0.0: can't add hid device: -71
[  817.906721][ T6653] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  817.917622][ T6653] usb 4-1: USB disconnect, device number 7
[  818.211395][ T5841] kye 0003:0458:5015.0012: tablet report size too small, or kye_tablet_rdesc unexpectedly large
[  818.237146][ T5886] kye 0003:0458:5015.0011: tablet report size too small, or kye_tablet_rdesc unexpectedly large
[  818.607775][ T5886] kye 0003:0458:5015.0011: hidraw0: USB HID v0.00 Device [HID 0458:5015] on usb-dummy_hcd.9-1/input0
[  818.641762][ T5841] kye 0003:0458:5015.0012: hidraw1: USB HID v0.00 Device [HID 0458:5015] on usb-dummy_hcd.6-1/input0
[  818.735046][ T5886] kye 0003:0458:5015.0011: tablet-enabling feature report not found
[  818.756518][ T5841] kye 0003:0458:5015.0012: tablet-enabling feature report not found
[  818.795374][ T5886] kye 0003:0458:5015.0011: tablet enabling failed
[  818.807566][ T5841] kye 0003:0458:5015.0012: tablet enabling failed
[  818.846945][ T5886] usb 10-1: USB disconnect, device number 10
[  819.739583][ T5841] usb 7-1: USB disconnect, device number 12
[  823.355554][T12776] loop6: detected capacity change from 0 to 1024
[  825.978249][T12776] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  826.030968][T12795] loop9: detected capacity change from 0 to 1024
[  826.141487][T12795] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  829.748772][ T5922] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[  829.812484][T12840] loop8: detected capacity change from 0 to 1024
[  829.828156][T12840] EXT4-fs: Ignoring removed orlov option
[  829.834112][T12840] ext4: Unknown parameter 'dont_appraise'
[  829.990748][ T5922] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  830.005676][ T5922] usb 7-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  830.015045][ T5922] usb 7-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  830.024286][ T5922] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  830.053618][ T5922] usb 7-1: config 0 descriptor??
[  830.908795][ T5922] usb 9-1: new high-speed USB device number 13 using dummy_hcd
[  831.091691][ T5922] usb 9-1: too many endpoints for config 0 interface 0 altsetting 0: 33, using maximum allowed: 30
[  831.109096][ T5922] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  831.131052][ T5922] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  831.175871][ T5922] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 33
[  831.231746][ T5922] usb 9-1: New USB device found, idVendor=0458, idProduct=5015, bcdDevice= 0.00
[  831.294343][ T5922] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  831.356934][ T5922] usb 9-1: config 0 descriptor??
[  832.349280][ T5915] usb 7-1: USB disconnect, device number 13
[  832.446465][T12871] loop9: detected capacity change from 0 to 1024
[  832.480545][T12871] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  832.528810][ T5922] usbhid 9-1:0.0: can't add hid device: -71
[  832.535021][ T5922] usbhid 9-1:0.0: probe with driver usbhid failed with error -71
[  833.471866][ T5922] usb 9-1: USB disconnect, device number 13
[  835.716909][T12908] Bluetooth: MGMT ver 1.23
[  840.303192][T12930] vivid-000: kernel_thread() failed
[  842.969679][T12946] vivid-000: kernel_thread() failed
[  843.237573][T12950] loop9: detected capacity change from 0 to 4096
[  844.052628][T12962] NILFS (loop9): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  844.169043][   T29] audit: type=1804 audit(1731944865.859:318): pid=12950 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.9.1209" name="/newroot/63/file0/bus" dev="loop9" ino=18 res=1 errno=0
[  844.269553][   T29] audit: type=1804 audit(1731944865.879:319): pid=12950 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.9.1209" name="/newroot/63/file0/bus" dev="loop9" ino=18 res=1 errno=0
[  844.372092][   T29] audit: type=1804 audit(1731944865.879:320): pid=12950 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.9.1209" name="/newroot/63/file0/bus" dev="loop9" ino=18 res=1 errno=0
[  849.675577][T12996] vivid-000: kernel_thread() failed
[  854.811133][T13028] loop3: detected capacity change from 0 to 1024
[  854.901029][T13028] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  855.136732][T13033] loop6: detected capacity change from 0 to 1024
[  856.436293][T13033] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  856.507792][T13035] loop8: detected capacity change from 0 to 4096
[  856.736979][T13052] NILFS (loop8): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  857.582233][T13061] vivid-000: kernel_thread() failed
[  858.373367][   T29] audit: type=1804 audit(1731944880.029:321): pid=13035 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.8.1226" name="/newroot/133/file0/bus" dev="loop8" ino=18 res=1 errno=0
[  858.425481][   T29] audit: type=1804 audit(1731944880.029:322): pid=13035 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.8.1226" name="/newroot/133/file0/bus" dev="loop8" ino=18 res=1 errno=0
[  858.606195][   T29] audit: type=1804 audit(1731944880.029:323): pid=13035 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.8.1226" name="/newroot/133/file0/bus" dev="loop8" ino=18 res=1 errno=0
[  862.501669][T13091] vivid-000: kernel_thread() failed
[  863.468385][T13103] vivid-000: kernel_thread() failed
[  864.385774][T13118] loop7: detected capacity change from 0 to 1024
[  864.604752][T13118] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  865.018207][T13123] loop3: detected capacity change from 0 to 4096
[  865.168953][T13132] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  865.196384][   T29] audit: type=1804 audit(1731944886.859:324): pid=13123 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1241" name="/newroot/53/file0/bus" dev="loop3" ino=18 res=1 errno=0
[  865.226806][T13133] loop8: detected capacity change from 0 to 1024
[  865.290404][T13133] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  865.299640][   T29] audit: type=1804 audit(1731944886.859:325): pid=13123 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.1241" name="/newroot/53/file0/bus" dev="loop3" ino=18 res=1 errno=0
[  865.299693][   T29] audit: type=1804 audit(1731944886.859:326): pid=13123 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.1241" name="/newroot/53/file0/bus" dev="loop3" ino=18 res=1 errno=0
[  868.346627][T13165] loop6: detected capacity change from 0 to 1024
[  869.381885][T13165] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  870.559086][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  870.574135][T13184] vivid-000: kernel_thread() failed
[  872.144432][T13199] vivid-000: kernel_thread() failed
[  872.550459][T13198] loop9: detected capacity change from 0 to 4096
[  874.449138][T13219] vivid-000: kernel_thread() failed
[  875.409244][T13224] vivid-000: kernel_thread() failed
[  876.174997][T13198] NILFS (loop9): error -4 creating segctord thread
[  879.381634][T13259] loop6: detected capacity change from 0 to 1024
[  879.673285][T13259] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  881.866194][T13291] loop8: detected capacity change from 0 to 4096
[  883.671254][T13305] NILFS (loop8): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  884.177930][   T29] audit: type=1804 audit(1731944905.859:327): pid=13291 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.8.1272" name="/newroot/146/file0/bus" dev="loop8" ino=18 res=1 errno=0
[  884.260909][   T29] audit: type=1804 audit(1731944905.859:328): pid=13291 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.8.1272" name="/newroot/146/file0/bus" dev="loop8" ino=18 res=1 errno=0
[  884.282616][   T29] audit: type=1804 audit(1731944905.859:329): pid=13291 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.8.1272" name="/newroot/146/file0/bus" dev="loop8" ino=18 res=1 errno=0
[  888.809236][T13345] vivid-000: kernel_thread() failed
[  890.611470][T13361] vivid-000: kernel_thread() failed
[  896.108936][T13385] vivid-000: kernel_thread() failed
[  896.842152][T13395] loop9: detected capacity change from 0 to 1024
[  899.303698][T13395] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  899.373319][T13417] loop7: detected capacity change from 0 to 1024
[  899.564523][T13417] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  903.528377][T13445] loop9: detected capacity change from 0 to 1024
[  903.568547][T13445] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  908.891414][T13485] loop8: detected capacity change from 0 to 1024
[  911.195554][T13485] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  912.734105][T13510] loop7: detected capacity change from 0 to 1024
[  916.512937][T13510] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  919.787228][T13558] loop8: detected capacity change from 0 to 1024
[  919.947433][T13558] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  921.175208][T13575] loop6: detected capacity change from 0 to 1024
[  921.215771][T13575] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  922.039197][T13577] vivid-000: kernel_thread() failed
[  925.003271][T13597] vivid-000: kernel_thread() failed
[  931.969152][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  932.039698][T13639] vivid-000: kernel_thread() failed
[  934.592677][T13649] vivid-000: kernel_thread() failed
[  940.587442][T13687] vivid-000: kernel_thread() failed
[  942.665500][T13702] vivid-000: kernel_thread() failed
[  944.666777][T13701] Cache volume key already in use (9p,(null),)
[  945.046076][T13718] loop7: detected capacity change from 0 to 1024
[  945.706897][T13718] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  947.170310][T13742] vivid-000: kernel_thread() failed
[  948.310579][T13745] loop6: detected capacity change from 0 to 16
[  948.607381][T13745] erofs (device loop6): mounted with root inode @ nid 36.
[  950.974133][T13771] vivid-000: kernel_thread() failed
[  953.011379][T13790] syz.8.1382 (13790): drop_caches: 2
[  953.048627][T13790] syz.8.1382 (13790): drop_caches: 2
[  957.857709][T13809] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1385'.
[  958.588686][T13810] vivid-000: kernel_thread() failed
[  961.026527][T13820] loop7: detected capacity change from 0 to 1024
[  961.077201][T13820] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  962.293203][T13825] QAT: failed to copy from user.
[  962.568014][T13825] loop9: detected capacity change from 0 to 4096
[  962.761200][T13842] NILFS (loop9): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  962.837200][   T29] audit: type=1804 audit(1731944984.509:330): pid=13825 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.9.1391" name="/newroot/103/file0/bus" dev="loop9" ino=18 res=1 errno=0
[  963.602260][T13845] 9pnet_fd: Insufficient options for proto=fd
[  963.671549][   T29] audit: type=1804 audit(1731944984.519:331): pid=13825 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.9.1391" name="/newroot/103/file0/bus" dev="loop9" ino=18 res=1 errno=0
[  963.834008][   T29] audit: type=1804 audit(1731944985.239:332): pid=13825 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.9.1391" name="/newroot/103/file0/bus" dev="loop9" ino=18 res=1 errno=0
[  963.878684][   T29] audit: type=1804 audit(1731944985.239:333): pid=13825 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.9.1391" name="/newroot/103/file0/bus" dev="loop9" ino=18 res=1 errno=0
[  963.901124][   T29] audit: type=1804 audit(1731944985.239:334): pid=13825 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.9.1391" name="/newroot/103/file0/bus" dev="loop9" ino=18 res=1 errno=0
[  963.942854][T13849] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  967.450931][T13863] syz.3.1399 (13863): drop_caches: 2
[  967.463745][T13863] syz.3.1399 (13863): drop_caches: 2
[  968.415420][T13867] QAT: failed to copy from user.
[  968.547809][T13870] syz.7.1400 (13870): drop_caches: 2
[  968.560908][T13870] syz.7.1400 (13870): drop_caches: 2
[  969.381021][T13867] loop6: detected capacity change from 0 to 4096
[  969.445146][T13875] QAT: failed to copy from user.
[  969.499214][T13875] loop7: detected capacity change from 0 to 4096
[  969.602998][T13877] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  969.603289][T13876] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  969.953666][   T29] audit: type=1804 audit(1731944991.629:335): pid=13867 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.1401" name="/newroot/234/file0/bus" dev="loop6" ino=18 res=1 errno=0
[  970.406619][T13879] QAT: failed to copy from user.
[  970.816726][   T29] audit: type=1804 audit(1731944991.629:336): pid=13867 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.6.1401" name="/newroot/234/file0/bus" dev="loop6" ino=18 res=1 errno=0
[  970.924008][   T29] audit: type=1804 audit(1731944991.629:337): pid=13867 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.1401" name="/newroot/234/file0/bus" dev="loop6" ino=18 res=1 errno=0
[  971.095841][   T29] audit: type=1804 audit(1731944991.629:338): pid=13867 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.6.1401" name="/newroot/234/file0/bus" dev="loop6" ino=18 res=1 errno=0
[  971.203906][T13879] loop9: detected capacity change from 0 to 4096
[  971.277305][   T29] audit: type=1804 audit(1731944991.869:339): pid=13875 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.7.1403" name="/newroot/131/file0/bus" dev="loop7" ino=18 res=1 errno=0
[  971.348165][   T29] audit: type=1804 audit(1731944992.069:341): pid=13867 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.6.1401" name="/newroot/234/file0/bus" dev="loop6" ino=18 res=1 errno=0
[  971.378682][   T29] audit: type=1804 audit(1731944992.069:340): pid=13875 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.7.1403" name="/newroot/131/file0/bus" dev="loop7" ino=18 res=1 errno=0
[  971.846110][T13897] NILFS (loop9): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  972.319162][T13899] syz.7.1407 (13899): drop_caches: 2
[  972.365196][   T29] audit: type=1804 audit(1731944992.529:342): pid=13884 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.7.1403" name="/newroot/131/file0/bus" dev="loop7" ino=18 res=1 errno=0
[  972.386517][   T29] audit: type=1804 audit(1731944992.529:343): pid=13887 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.7.1403" name="/newroot/131/file0/bus" dev="loop7" ino=18 res=1 errno=0
[  972.547161][   T29] audit: type=1804 audit(1731944992.559:344): pid=13875 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.7.1403" name="/newroot/131/file0/bus" dev="loop7" ino=18 res=1 errno=0
[  973.207001][T13905] syz.3.1408 (13905): drop_caches: 2
[  973.363775][T13905] syz.3.1408 (13905): drop_caches: 2
[  975.334893][T13918] netlink: 16 bytes leftover after parsing attributes in process `syz.9.1413'.
[  975.344155][T13918] netlink: 12 bytes leftover after parsing attributes in process `syz.9.1413'.
[  977.448712][T13933] syz.3.1415 (13933): drop_caches: 2
[  977.454699][T13933] syz.3.1415 (13933): drop_caches: 2
[  977.458888][T13934] syz.6.1409 (13934): drop_caches: 2
[  977.466295][T13934] syz.6.1409 (13934): drop_caches: 2
[  979.497328][T13953] syz.3.1421 (13953): drop_caches: 2
[  979.503687][T13953] syz.3.1421 (13953): drop_caches: 2
[  979.742360][T13960] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  983.166217][T13981] syz.7.1426 (13981): drop_caches: 2
[  983.210054][T13981] syz.7.1426 (13981): drop_caches: 2
[  984.050474][T13986] loop6: detected capacity change from 0 to 16
[  984.610004][T13988] syz.7.1428 (13988): drop_caches: 2
[  984.655080][T13988] syz.7.1428 (13988): drop_caches: 2
[  984.727296][T13986] erofs (device loop6): mounted with root inode @ nid 36.
[  986.228842][ T5882] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[  987.583027][ T5882] usb 7-1: device descriptor read/all, error -71
[  990.736646][T14026] vivid-000: kernel_thread() failed
[  992.115830][T14040] syz.8.1441 (14040): drop_caches: 2
[  992.123212][T14040] syz.8.1441 (14040): drop_caches: 2
[  993.453659][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  993.540382][T14043] loop9: detected capacity change from 0 to 4096
[  994.181843][T14051] NILFS (loop9): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  994.503592][   T29] audit: type=1804 audit(1731945016.189:345): pid=14043 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.9.1442" name="/newroot/111/file0/bus" dev="loop9" ino=18 res=1 errno=0
[  994.889051][   T29] audit: type=1804 audit(1731945016.189:346): pid=14043 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.9.1442" name="/newroot/111/file0/bus" dev="loop9" ino=18 res=1 errno=0
[  995.488935][   T29] audit: type=1804 audit(1731945016.189:347): pid=14043 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.9.1442" name="/newroot/111/file0/bus" dev="loop9" ino=18 res=1 errno=0
[  996.038938][T14061] netlink: 52 bytes leftover after parsing attributes in process `syz.8.1447'.
[  996.082902][T14063] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1446'.
[  996.247668][T14065] QAT: failed to copy from user.
[  996.732816][T14065] loop3: detected capacity change from 0 to 4096
[  996.787999][T14073] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  997.648763][   T29] audit: type=1800 audit(1731945019.309:348): pid=14080 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1449" name="bus" dev="loop3" ino=18 res=0 errno=0
[  999.409503][   T29] audit: type=1800 audit(1731945021.099:349): pid=14080 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1449" name="bus" dev="loop3" ino=18 res=0 errno=0
[  999.476340][   T29] audit: type=1800 audit(1731945021.159:350): pid=14065 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1449" name="bus" dev="loop3" ino=18 res=0 errno=0
[  999.590262][   T29] audit: type=1800 audit(1731945021.159:351): pid=14081 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1449" name="bus" dev="loop3" ino=18 res=0 errno=0
[ 1003.450887][T14124] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1007.578626][T14158] syz.9.1470 (14158): drop_caches: 2
[ 1007.586687][T14158] syz.9.1470 (14158): drop_caches: 2
[ 1008.569906][T14162] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1010.481663][T14169] FAULT_INJECTION: forcing a failure.
[ 1010.481663][T14169] name fail_usercopy, interval 1, probability 0, space 0, times 1
[ 1010.555853][T14169] CPU: 1 UID: 0 PID: 14169 Comm: syz.3.1475 Not tainted 6.12.0-next-20241118-syzkaller #0
[ 1010.565834][T14169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[ 1010.575947][T14169] Call Trace:
[ 1010.579259][T14169]  <TASK>
[ 1010.582225][T14169]  dump_stack_lvl+0x241/0x360
[ 1010.586958][T14169]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1010.592219][T14169]  ? __pfx__printk+0x10/0x10
[ 1010.596867][T14169]  ? __pfx_lock_release+0x10/0x10
[ 1010.601944][T14169]  should_fail_ex+0x3b0/0x4e0
[ 1010.606678][T14169]  _copy_from_user+0x2f/0xc0
[ 1010.611309][T14169]  __sys_bpf+0x1a4/0x810
[ 1010.615600][T14169]  ? __pfx___sys_bpf+0x10/0x10
[ 1010.620422][T14169]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1010.626436][T14169]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1010.632806][T14169]  ? do_syscall_64+0x100/0x230
[ 1010.637613][T14169]  __x64_sys_bpf+0x7c/0x90
[ 1010.642075][T14169]  do_syscall_64+0xf3/0x230
[ 1010.646611][T14169]  ? clear_bhb_loop+0x35/0x90
[ 1010.651410][T14169]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1010.657348][T14169] RIP: 0033:0x7f098517e759
[ 1010.661808][T14169] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1010.682058][T14169] RSP: 002b:00007f0985f98038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1010.690490][T14169] RAX: ffffffffffffffda RBX: 00007f0985335f80 RCX: 00007f098517e759
[ 1010.698476][T14169] RDX: 0000000000000070 RSI: 0000000020000440 RDI: 0000000000000005
[ 1010.706464][T14169] RBP: 00007f0985f98090 R08: 0000000000000000 R09: 0000000000000000
[ 1010.714452][T14169] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1010.722435][T14169] R13: 0000000000000001 R14: 00007f0985335f80 R15: 00007ffda58d3698
[ 1010.730432][T14169]  </TASK>
[ 1011.543295][T14180] loop6: detected capacity change from 0 to 128
[ 1011.553032][T14176] loop9: detected capacity change from 0 to 40427
[ 1011.574739][T14176] F2FS-fs (loop9): Invalid log_blocksize (268), supports only 12
[ 1011.582714][T14176] F2FS-fs (loop9): Can't find valid F2FS filesystem in 1th superblock
[ 1011.603979][T14176] F2FS-fs (loop9): invalid crc value
[ 1011.834659][T14176] F2FS-fs (loop9): Found nat_bits in checkpoint
[ 1012.196824][T14197] loop3: detected capacity change from 0 to 64
[ 1012.321419][ T5886] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[ 1012.652118][T14176] F2FS-fs (loop9): Try to recover 1th superblock, ret: 0
[ 1012.660238][T14176] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[ 1012.873691][   T29] audit: type=1800 audit(1731945034.539:352): pid=14194 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1480" name="file2" dev="loop3" ino=6 res=0 errno=0
[ 1012.878696][ T5886] usb 7-1: Using ep0 maxpacket: 16
[ 1012.893560][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1012.921743][ T5886] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1012.928869][T14204] loop7: detected capacity change from 0 to 256
[ 1012.932648][ T5886] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x7 has an invalid bInterval 0, changing to 7
[ 1012.977327][T14204] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=256, location=256
[ 1012.991939][T14204] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=512, location=512
[ 1013.010051][ T5886] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[ 1013.059547][T14206] FAULT_INJECTION: forcing a failure.
[ 1013.059547][T14206] name failslab, interval 1, probability 0, space 0, times 1
[ 1013.087257][T14204] UDF-fs: warning (device loop7): udf_load_vrs: No anchor found
[ 1013.108094][T14206] CPU: 0 UID: 0 PID: 14206 Comm: syz.3.1482 Not tainted 6.12.0-next-20241118-syzkaller #0
[ 1013.118060][T14206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[ 1013.118727][ T5886] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1013.128131][T14206] Call Trace:
[ 1013.128147][T14206]  <TASK>
[ 1013.128158][T14206]  dump_stack_lvl+0x241/0x360
[ 1013.151886][T14206]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1013.154529][T14204] UDF-fs: Scanning with blocksize 512 failed
[ 1013.157112][T14206]  ? __pfx__printk+0x10/0x10
[ 1013.167723][T14206]  ? __kmalloc_noprof+0xb5/0x4c0
[ 1013.172711][T14206]  ? __pfx___might_resched+0x10/0x10
[ 1013.178045][T14206]  ? __fget_files+0x2a/0x410
[ 1013.182687][T14206]  should_fail_ex+0x3b0/0x4e0
[ 1013.187409][T14206]  should_failslab+0xac/0x100
[ 1013.192128][T14206]  __kmalloc_noprof+0xdd/0x4c0
[ 1013.196933][T14206]  ? strnlen_user+0x108/0x190
[ 1013.201645][T14206]  ? __se_sys_memfd_create+0x265/0x840
[ 1013.207164][T14206]  __se_sys_memfd_create+0x265/0x840
[ 1013.212500][T14206]  do_syscall_64+0xf3/0x230
[ 1013.217039][T14206]  ? clear_bhb_loop+0x35/0x90
[ 1013.221737][T14206]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1013.227654][T14206] RIP: 0033:0x7f098517e759
[ 1013.232084][T14206] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1013.251708][T14206] RSP: 002b:00007f0985f97e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[ 1013.260138][T14206] RAX: ffffffffffffffda RBX: 0000000000000517 RCX: 00007f098517e759
[ 1013.268124][T14206] RDX: 00007f0985f97ef0 RSI: 0000000000000000 RDI: 00007f09851f1fca
[ 1013.276209][T14206] RBP: 0000000020000600 R08: 00007f0985f97bb7 R09: 00007f0985f97e40
[ 1013.284202][T14206] R10: 000000000000000a R11: 0000000000000202 R12: 0000000020000580
[ 1013.292194][T14206] R13: 00007f0985f97ef0 R14: 00007f0985f97eb0 R15: 00000000200005c0
[ 1013.300198][T14206]  </TASK>
[ 1013.303330][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1013.404695][ T5886] usb 7-1: New USB device found, idVendor=04e8, idProduct=ff30, bcdDevice=54.21
[ 1013.414271][ T5886] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1013.422776][ T5886] usb 7-1: Product: syz
[ 1013.426983][ T5886] usb 7-1: Manufacturer: syz
[ 1013.432644][ T5886] usb 7-1: SerialNumber: syz
[ 1013.471196][ T5886] usb 7-1: config 0 descriptor??
[ 1013.496498][T14211] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1484'.
[ 1013.526797][ T5886] imon_raw 7-1:0.0: IR endpoint missing
[ 1013.537189][T14204] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=256, location=256
[ 1013.783674][T14180] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1013.815083][T14180] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1013.905176][T14216] loop3: detected capacity change from 0 to 128
[ 1013.918145][T14216] ufs: Unable to do repair on error, will lock lock instead
[ 1013.926005][T14216] ufs: Invalid option: "type=sunx86" or missing value
[ 1013.932972][T14216] ufs: wrong mount options
[ 1013.961007][T14216] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[ 1014.609509][ T5886] usb 7-1: USB disconnect, device number 16
[ 1014.672606][T14204] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1015.207710][T14224] loop7: detected capacity change from 0 to 256
[ 1015.272568][T14226] loop8: detected capacity change from 0 to 2048
[ 1015.381888][T14224] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=256, location=256
[ 1015.430174][T14228] NILFS (loop8): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1015.473492][T14224] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=512, location=512
[ 1015.508664][T14224] UDF-fs: warning (device loop7): udf_load_vrs: No anchor found
[ 1015.527533][T14224] UDF-fs: Scanning with blocksize 512 failed
[ 1015.557551][T14224] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=256, location=256
[ 1015.698206][T14234] FAULT_INJECTION: forcing a failure.
[ 1015.698206][T14234] name failslab, interval 1, probability 0, space 0, times 0
[ 1015.730816][T14224] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1015.784573][T14234] CPU: 0 UID: 0 PID: 14234 Comm: syz.8.1490 Not tainted 6.12.0-next-20241118-syzkaller #0
[ 1015.794549][T14234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[ 1015.804643][T14234] Call Trace:
[ 1015.807951][T14234]  <TASK>
[ 1015.810916][T14234]  dump_stack_lvl+0x241/0x360
[ 1015.815650][T14234]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1015.820898][T14234]  ? __pfx__printk+0x10/0x10
[ 1015.825518][T14234]  ? __kmalloc_noprof+0xb5/0x4c0
[ 1015.830480][T14234]  ? __pfx___might_resched+0x10/0x10
[ 1015.835786][T14234]  ? __fget_files+0x2a/0x410
[ 1015.840401][T14234]  should_fail_ex+0x3b0/0x4e0
[ 1015.845098][T14234]  should_failslab+0xac/0x100
[ 1015.849796][T14234]  __kmalloc_noprof+0xdd/0x4c0
[ 1015.854686][T14234]  ? strnlen_user+0x108/0x190
[ 1015.859401][T14234]  ? __se_sys_memfd_create+0x265/0x840
[ 1015.864903][T14234]  __se_sys_memfd_create+0x265/0x840
[ 1015.870241][T14234]  do_syscall_64+0xf3/0x230
[ 1015.874759][T14234]  ? clear_bhb_loop+0x35/0x90
[ 1015.879471][T14234]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1015.885426][T14234] RIP: 0033:0x7fc47137e759
[ 1015.889859][T14234] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1015.909526][T14234] RSP: 002b:00007fc4721ace18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[ 1015.917963][T14234] RAX: ffffffffffffffda RBX: 0000000000000a07 RCX: 00007fc47137e759
[ 1015.925947][T14234] RDX: 00007fc4721acef0 RSI: 0000000000000000 RDI: 00007fc4713f1fca
[ 1015.933936][T14234] RBP: 0000000020000b00 R08: 00007fc4721acbb7 R09: 00007fc4721ace40
[ 1015.941920][T14234] R10: 000000000000000a R11: 0000000000000202 R12: 0000000020000a80
[ 1015.949934][T14234] R13: 00007fc4721acef0 R14: 00007fc4721aceb0 R15: 0000000020000ac0
[ 1015.957936][T14234]  </TASK>
[ 1015.961095][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1016.288671][ T5886] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[ 1016.695910][ T5886] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1016.807148][ T5886] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1016.892549][T14240] loop7: detected capacity change from 0 to 2048
[ 1016.919706][ T5886] usb 7-1: New USB device found, idVendor=06cb, idProduct=81a7, bcdDevice= 0.00
[ 1016.970093][ T5886] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1017.026365][ T5886] usb 7-1: config 0 descriptor??
[ 1017.047035][T14242] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1017.301021][ T5886] hid-rmi 0003:06CB:81A7.0013: hidraw0: USB HID v0.00 Device [HID 06cb:81a7] on usb-dummy_hcd.6-1/input0
[ 1017.498622][ T5886] usb 7-1: USB disconnect, device number 17
[ 1054.752570][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[ 1066.568568][T14267] vivid-000: kernel_thread() failed
[ 1067.194470][T14266] vivid-000: kernel_thread() failed
[ 1068.569835][T14284] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1070.205769][T14291] FAULT_INJECTION: forcing a failure.
[ 1070.205769][T14291] name failslab, interval 1, probability 0, space 0, times 0
[ 1070.256558][T14291] CPU: 1 UID: 0 PID: 14291 Comm: syz.6.1501 Not tainted 6.12.0-next-20241118-syzkaller #0
[ 1070.266542][T14291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[ 1070.276660][T14291] Call Trace:
[ 1070.279979][T14291]  <TASK>
[ 1070.282942][T14291]  dump_stack_lvl+0x241/0x360
[ 1070.287679][T14291]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1070.292932][T14291]  ? __pfx__printk+0x10/0x10
[ 1070.297588][T14291]  ? __kmalloc_noprof+0xb5/0x4c0
[ 1070.302597][T14291]  ? __pfx___might_resched+0x10/0x10
[ 1070.307942][T14291]  ? __fget_files+0x2a/0x410
[ 1070.312585][T14291]  should_fail_ex+0x3b0/0x4e0
[ 1070.317307][T14291]  should_failslab+0xac/0x100
[ 1070.322035][T14291]  __kmalloc_noprof+0xdd/0x4c0
[ 1070.326840][T14291]  ? strnlen_user+0x108/0x190
[ 1070.331549][T14291]  ? __se_sys_memfd_create+0x265/0x840
[ 1070.337054][T14291]  __se_sys_memfd_create+0x265/0x840
[ 1070.342385][T14291]  do_syscall_64+0xf3/0x230
[ 1070.346932][T14291]  ? clear_bhb_loop+0x35/0x90
[ 1070.351653][T14291]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1070.357600][T14291] RIP: 0033:0x7f666617e759
[ 1070.362048][T14291] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1070.381776][T14291] RSP: 002b:00007f6666e94e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[ 1070.390226][T14291] RAX: ffffffffffffffda RBX: 000000000001f260 RCX: 00007f666617e759
[ 1070.398242][T14291] RDX: 00007f6666e94ef0 RSI: 0000000000000000 RDI: 00007f66661f1fca
[ 1070.406263][T14291] RBP: 000000002001f700 R08: 00007f6666e94bb7 R09: 00007f6666e94e40
[ 1070.414273][T14291] R10: 000000000000000a R11: 0000000000000202 R12: 0000000020000100
[ 1070.422275][T14291] R13: 00007f6666e94ef0 R14: 00007f6666e94eb0 R15: 0000000020000480
[ 1070.430296][T14291]  </TASK>
[ 1071.344838][T14294] loop3: detected capacity change from 0 to 4096
[ 1071.374188][T14294] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[ 1072.780337][T14294] ntfs3(loop3): failed to convert "c46c" to cp860
[ 1072.816221][T14312] loop9: detected capacity change from 0 to 16
[ 1072.892419][T14312] erofs (device loop9): mounted with root inode @ nid 36.
[ 1073.272696][  T764] usb 10-1: new high-speed USB device number 11 using dummy_hcd
[ 1073.448758][ T5922] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[ 1073.459589][  T764] usb 10-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1073.472505][  T764] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1073.497837][  T764] usb 10-1: config 0 descriptor??
[ 1073.516264][  T764] cp210x 10-1:0.0: cp210x converter detected
[ 1073.601175][ T5922] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1073.642577][ T5922] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1073.689994][ T5922] usb 4-1: config 0 descriptor??
[ 1073.708767][ T5922] cp210x 4-1:0.0: cp210x converter detected
[ 1073.786078][T14324] netlink: 'syz.7.1510': attribute type 3 has an invalid length.
[ 1073.928377][  T764] usb 10-1: cp210x converter now attached to ttyUSB0
[ 1073.939064][ T5922] cp210x 4-1:0.0: failed to get vendor val 0x370b size 1: -121
[ 1073.960296][ T5922] cp210x 4-1:0.0: querying part number failed
[ 1074.029165][ T5922] usb 4-1: cp210x converter now attached to ttyUSB1
[ 1074.091420][T14326] fuse: Bad value for 'fd'
[ 1074.141864][T14324] loop7: detected capacity change from 0 to 2048
[ 1074.152579][ T5922] usb 4-1: USB disconnect, device number 8
[ 1074.173555][  T764] usb 10-1: USB disconnect, device number 11
[ 1074.185270][  T764] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1074.198197][ T5922] cp210x ttyUSB1: cp210x converter now disconnected from ttyUSB1
[ 1074.225862][ T5922] cp210x 4-1:0.0: device disconnected
[ 1074.235692][  T764] cp210x 10-1:0.0: device disconnected
[ 1074.243565][T14324] hpfs: hpfs_map_sector(): read error
[ 1074.313390][T14324] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1510'.
[ 1074.352125][T14324] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1510'.
[ 1074.859984][T14336] syz.8.1512 (14336): drop_caches: 2
[ 1074.869528][T14336] syz.8.1512 (14336): drop_caches: 2
[ 1076.146088][T14342] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1076.229846][T14347] QAT: failed to copy from user.
[ 1076.281640][T14347] loop7: detected capacity change from 0 to 4096
[ 1076.468299][T14349] FAULT_INJECTION: forcing a failure.
[ 1076.468299][T14349] name failslab, interval 1, probability 0, space 0, times 0
[ 1076.481764][T14349] CPU: 1 UID: 0 PID: 14349 Comm: syz.6.1518 Not tainted 6.12.0-next-20241118-syzkaller #0
[ 1076.491727][T14349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[ 1076.501839][T14349] Call Trace:
[ 1076.505151][T14349]  <TASK>
[ 1076.508114][T14349]  dump_stack_lvl+0x241/0x360
[ 1076.512855][T14349]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1076.518119][T14349]  ? __pfx__printk+0x10/0x10
[ 1076.522770][T14349]  ? fs_reclaim_acquire+0x93/0x130
[ 1076.527935][T14349]  ? __pfx___might_resched+0x10/0x10
[ 1076.533288][T14349]  should_fail_ex+0x3b0/0x4e0
[ 1076.538033][T14349]  should_failslab+0xac/0x100
[ 1076.542776][T14349]  __kmalloc_noprof+0xdd/0x4c0
[ 1076.547575][T14349]  ? kstrtouint_from_user+0x128/0x190
[ 1076.552987][T14349]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[ 1076.558745][T14349]  tomoyo_realpath_from_path+0xcf/0x5e0
[ 1076.564324][T14349]  tomoyo_path_number_perm+0x236/0x860
[ 1076.569828][T14349]  ? __lock_acquire+0x1397/0x2100
[ 1076.574871][T14349]  ? tomoyo_path_number_perm+0x206/0x860
[ 1076.580526][T14349]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1076.586556][T14349]  ? __fget_files+0x2a/0x410
[ 1076.591168][T14349]  ? __fget_files+0x2a/0x410
[ 1076.595783][T14349]  security_file_ioctl+0xc6/0x2a0
[ 1076.600828][T14349]  __se_sys_ioctl+0x46/0x170
[ 1076.605441][T14349]  do_syscall_64+0xf3/0x230
[ 1076.609963][T14349]  ? clear_bhb_loop+0x35/0x90
[ 1076.614656][T14349]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1076.620573][T14349] RIP: 0033:0x7f666617e759
[ 1076.625023][T14349] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1076.644652][T14349] RSP: 002b:00007f6666e95038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1076.653087][T14349] RAX: ffffffffffffffda RBX: 00007f6666335f80 RCX: 00007f666617e759
[ 1076.661083][T14349] RDX: 00000000200007c0 RSI: 00000000c018620b RDI: 0000000000000003
[ 1076.669070][T14349] RBP: 00007f6666e95090 R08: 0000000000000000 R09: 0000000000000000
[ 1076.677058][T14349] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1076.685064][T14349] R13: 0000000000000000 R14: 00007f6666335f80 R15: 00007ffcf20bb1c8
[ 1076.693074][T14349]  </TASK>
[ 1077.119905][T14349] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1078.507165][T14365] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1078.529055][T14369] loop6: detected capacity change from 0 to 128
[ 1078.537453][T14369] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[ 1078.553913][T14370] mmap: syz.9.1524 (14370) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[ 1078.555602][   T29] audit: type=1804 audit(1731945100.239:353): pid=14347 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.7.1517" name="/newroot/156/file0/bus" dev="loop7" ino=18 res=1 errno=0
[ 1078.588192][   T29] audit: type=1804 audit(1731945100.239:354): pid=14347 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.7.1517" name="/newroot/156/file0/bus" dev="loop7" ino=18 res=1 errno=0
[ 1078.610324][   T29] audit: type=1804 audit(1731945100.239:355): pid=14347 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.7.1517" name="/newroot/156/file0/bus" dev="loop7" ino=18 res=1 errno=0
[ 1078.633555][   T29] audit: type=1804 audit(1731945100.239:356): pid=14347 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.7.1517" name="/newroot/156/file0/bus" dev="loop7" ino=18 res=1 errno=0
[ 1078.654942][   T29] audit: type=1804 audit(1731945100.239:357): pid=14347 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.7.1517" name="/newroot/156/file0/bus" dev="loop7" ino=18 res=1 errno=0
[ 1078.706533][T14369] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1078.755207][T14369] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1078.773975][T14369] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1078.998845][ T5922] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[ 1079.138706][ T5922] usb 7-1: device descriptor read/64, error -71
[ 1079.418951][ T5922] usb 7-1: new high-speed USB device number 19 using dummy_hcd
[ 1079.568683][ T5922] usb 7-1: device descriptor read/64, error -71
[ 1079.689089][ T5922] usb usb7-port1: attempt power cycle
[ 1080.060795][ T5922] usb 7-1: new high-speed USB device number 20 using dummy_hcd
[ 1080.096757][ T5922] usb 7-1: device descriptor read/8, error -71
[ 1080.159916][T14381] loop9: detected capacity change from 0 to 32768
[ 1080.205163][T14381] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop9 (7:9) scanned by syz.9.1526 (14381)
[ 1080.270356][T14381] BTRFS info (device loop9): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1080.303984][T14381] BTRFS info (device loop9): using sha256 (sha256-avx2) checksum algorithm
[ 1080.350334][ T5922] usb 7-1: new high-speed USB device number 21 using dummy_hcd
[ 1080.389446][ T5922] usb 7-1: device descriptor read/8, error -71
[ 1080.478828][T14381] BTRFS info (device loop9): rebuilding free space tree
[ 1080.497377][T14385] loop3: detected capacity change from 0 to 32768
[ 1080.509083][ T5922] usb usb7-port1: unable to enumerate USB device
[ 1080.547271][T14385] BTRFS: device /dev/loop3 (7:3) using temp-fsid 5c573b83-7071-4ae5-86b1-2439d1582d4d
[ 1080.609923][T14385] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.1527 (14385)
[ 1080.667788][T14381] BTRFS info (device loop9): disabling free space tree
[ 1080.677624][T14387] loop8: detected capacity change from 0 to 32768
[ 1080.694955][T14381] BTRFS info (device loop9): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1080.708162][T14387] btrfs: Unknown parameter 'fragment'
[ 1080.727849][T14381] BTRFS info (device loop9): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1080.758845][T14385] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1080.776426][T14385] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[ 1080.947658][   T29] audit: type=1800 audit(1731945102.629:358): pid=14381 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.1526" name="file1" dev="loop9" ino=260 res=0 errno=0
[ 1080.985471][T14385] BTRFS info (device loop3): rebuilding free space tree
[ 1081.054363][T14385] BTRFS info (device loop3): disabling free space tree
[ 1081.085576][T14385] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1081.085640][T14385] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1081.099420][   T29] audit: type=1800 audit(1731945102.779:359): pid=14381 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.1526" name="file1" dev="loop9" ino=260 res=0 errno=0
[ 1081.348655][   T29] audit: type=1800 audit(1731945102.919:360): pid=14385 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1527" name="file1" dev="loop3" ino=260 res=0 errno=0
[ 1081.348708][   T29] audit: type=1800 audit(1731945102.929:361): pid=14385 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1527" name="file1" dev="loop3" ino=260 res=0 errno=0
[ 1081.608466][T10640] BTRFS info (device loop9): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1082.242326][T11288] BTRFS info (device loop3): last unmount of filesystem 5c573b83-7071-4ae5-86b1-2439d1582d4d
[ 1082.357418][ T5922] usb 7-1: new high-speed USB device number 22 using dummy_hcd
[ 1083.255846][ T5922] usb 7-1: config index 0 descriptor too short (expected 19, got 18)
[ 1083.264219][ T5922] usb 7-1: config 241 has no interfaces?
[ 1083.297932][ T5922] usb 7-1: New USB device found, idVendor=59cc, idProduct=980d, bcdDevice=b4.8e
[ 1083.371304][ T5922] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1083.394691][T14443] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1083.494502][T14445] netlink: 128 bytes leftover after parsing attributes in process `syz.3.1534'.
[ 1083.517996][T14445] loop3: detected capacity change from 0 to 764
[ 1083.591956][T14439] loop9: detected capacity change from 0 to 4096
[ 1083.608985][T14445] rock: directory entry would overflow storage
[ 1083.630854][T14445] rock: sig=0x4654, size=5, remaining=4
[ 1083.788047][T14449] NILFS (loop9): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1084.049057][   T29] audit: type=1804 audit(1731945105.729:362): pid=14439 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.9.1529" name="/newroot/127/file0/bus" dev="loop9" ino=18 res=1 errno=0
[ 1084.070653][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1084.100954][T14452] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1084.144604][   T29] audit: type=1804 audit(1731945105.749:363): pid=14439 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.9.1529" name="/newroot/127/file0/bus" dev="loop9" ino=18 res=1 errno=0
[ 1084.180321][T14455] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1084.237002][   T29] audit: type=1804 audit(1731945105.759:364): pid=14439 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.9.1529" name="/newroot/127/file0/bus" dev="loop9" ino=18 res=1 errno=0
[ 1084.258215][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1084.648038][T14459] loop3: detected capacity change from 0 to 256
[ 1084.693006][T14459] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1540'.
[ 1086.363948][ T6653] usb 7-1: USB disconnect, device number 22
[ 1086.469714][ T5882] IPVS: starting estimator thread 0...
[ 1086.781294][T14481] IPVS: using max 18 ests per chain, 43200 per kthread
[ 1088.152674][T14498] FAULT_INJECTION: forcing a failure.
[ 1088.152674][T14498] name failslab, interval 1, probability 0, space 0, times 0
[ 1088.166513][T14498] CPU: 1 UID: 0 PID: 14498 Comm: syz.6.1550 Not tainted 6.12.0-next-20241118-syzkaller #0
[ 1088.176465][T14498] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[ 1088.186590][T14498] Call Trace:
[ 1088.189909][T14498]  <TASK>
[ 1088.192876][T14498]  dump_stack_lvl+0x241/0x360
[ 1088.197609][T14498]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1088.202870][T14498]  ? __pfx__printk+0x10/0x10
[ 1088.207518][T14498]  ? fs_reclaim_acquire+0x93/0x130
[ 1088.212690][T14498]  ? __pfx___might_resched+0x10/0x10
[ 1088.218027][T14498]  should_fail_ex+0x3b0/0x4e0
[ 1088.222779][T14498]  should_failslab+0xac/0x100
[ 1088.227515][T14498]  __kmalloc_noprof+0xdd/0x4c0
[ 1088.228721][T14499] hugetlbfs: syz.3.1547 (14499): Using mlock ulimits for SHM_HUGETLB is obsolete
[ 1088.232302][T14498]  ? kstrtouint_from_user+0x128/0x190
[ 1088.247249][T14498]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[ 1088.253214][T14498]  tomoyo_realpath_from_path+0xcf/0x5e0
[ 1088.258853][T14498]  tomoyo_path_number_perm+0x236/0x860
[ 1088.264368][T14498]  ? __lock_acquire+0x1397/0x2100
[ 1088.269446][T14498]  ? tomoyo_path_number_perm+0x206/0x860
[ 1088.275483][T14498]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1088.281555][T14498]  ? __fget_files+0x2a/0x410
[ 1088.286199][T14498]  ? __fget_files+0x2a/0x410
[ 1088.290853][T14498]  security_file_ioctl+0xc6/0x2a0
[ 1088.295930][T14498]  __se_sys_ioctl+0x46/0x170
[ 1088.300570][T14498]  do_syscall_64+0xf3/0x230
[ 1088.305132][T14498]  ? clear_bhb_loop+0x35/0x90
[ 1088.309868][T14498]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1088.315835][T14498] RIP: 0033:0x7f666617e759
[ 1088.320294][T14498] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1088.339948][T14498] RSP: 002b:00007f6666e95038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1088.348390][T14498] RAX: ffffffffffffffda RBX: 00007f6666335f80 RCX: 00007f666617e759
[ 1088.356378][T14498] RDX: 0000000020000040 RSI: 0000000000008946 RDI: 0000000000000004
[ 1088.364362][T14498] RBP: 00007f6666e95090 R08: 0000000000000000 R09: 0000000000000000
[ 1088.372344][T14498] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1088.380329][T14498] R13: 0000000000000000 R14: 00007f6666335f80 R15: 00007ffcf20bb1c8
[ 1088.388413][T14498]  </TASK>
[ 1088.429493][T14498] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1088.771593][T14503] block nbd8: shutting down sockets
[ 1090.049386][T14516] FAULT_INJECTION: forcing a failure.
[ 1090.049386][T14516] name failslab, interval 1, probability 0, space 0, times 0
[ 1090.079523][T14516] CPU: 0 UID: 0 PID: 14516 Comm: syz.8.1555 Not tainted 6.12.0-next-20241118-syzkaller #0
[ 1090.089508][T14516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[ 1090.099614][T14516] Call Trace:
[ 1090.102935][T14516]  <TASK>
[ 1090.105901][T14516]  dump_stack_lvl+0x241/0x360
[ 1090.110637][T14516]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1090.115888][T14516]  ? __pfx__printk+0x10/0x10
[ 1090.120538][T14516]  ? __kmalloc_cache_noprof+0x48/0x390
[ 1090.126059][T14516]  ? __pfx___might_resched+0x10/0x10
[ 1090.131415][T14516]  should_fail_ex+0x3b0/0x4e0
[ 1090.136149][T14516]  should_failslab+0xac/0x100
[ 1090.140878][T14516]  __kmalloc_cache_noprof+0x70/0x390
[ 1090.146216][T14516]  ? binderfs_init_fs_context+0x51/0x130
[ 1090.151908][T14516]  binderfs_init_fs_context+0x51/0x130
[ 1090.157428][T14516]  finish_clean_context+0xa1/0x1f0
[ 1090.162622][T14516]  __se_sys_fsconfig+0x9d8/0xf60
[ 1090.167617][T14516]  ? __pfx___se_sys_fsconfig+0x10/0x10
[ 1090.173130][T14516]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1090.179159][T14516]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1090.185530][T14516]  ? do_syscall_64+0x100/0x230
[ 1090.190349][T14516]  ? __x64_sys_fsconfig+0x20/0xc0
[ 1090.195433][T14516]  do_syscall_64+0xf3/0x230
[ 1090.199990][T14516]  ? clear_bhb_loop+0x35/0x90
[ 1090.204800][T14516]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1090.210748][T14516] RIP: 0033:0x7fc47137e759
[ 1090.215203][T14516] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1090.234858][T14516] RSP: 002b:00007fc4721ad038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[ 1090.243327][T14516] RAX: ffffffffffffffda RBX: 00007fc471535f80 RCX: 00007fc47137e759
[ 1090.251340][T14516] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000005
[ 1090.259362][T14516] RBP: 00007fc4721ad090 R08: 0000000000000000 R09: 0000000000000000
[ 1090.267386][T14516] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1090.275411][T14516] R13: 0000000000000000 R14: 00007fc471535f80 R15: 00007ffff620a7c8
[ 1090.283460][T14516]  </TASK>
[ 1090.395028][T14524] FAULT_INJECTION: forcing a failure.
[ 1090.395028][T14524] name failslab, interval 1, probability 0, space 0, times 0
[ 1090.478759][T14524] CPU: 0 UID: 0 PID: 14524 Comm: syz.6.1559 Not tainted 6.12.0-next-20241118-syzkaller #0
[ 1090.488753][T14524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[ 1090.498853][T14524] Call Trace:
[ 1090.502164][T14524]  <TASK>
[ 1090.505126][T14524]  dump_stack_lvl+0x241/0x360
[ 1090.509861][T14524]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1090.515109][T14524]  ? __pfx__printk+0x10/0x10
[ 1090.519748][T14524]  ? kmem_cache_alloc_noprof+0x48/0x380
[ 1090.525342][T14524]  ? __pfx___might_resched+0x10/0x10
[ 1090.530692][T14524]  should_fail_ex+0x3b0/0x4e0
[ 1090.535423][T14524]  should_failslab+0xac/0x100
[ 1090.540147][T14524]  ? getname_flags+0xb7/0x540
[ 1090.544868][T14524]  kmem_cache_alloc_noprof+0x70/0x380
[ 1090.550298][T14524]  getname_flags+0xb7/0x540
[ 1090.554868][T14524]  ? __fget_files+0x2a/0x410
[ 1090.559525][T14524]  user_path_at+0x24/0x60
[ 1090.563896][T14524]  do_fchownat+0xed/0x240
[ 1090.568275][T14524]  ? __pfx_do_fchownat+0x10/0x10
[ 1090.573262][T14524]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1090.579652][T14524]  ? do_syscall_64+0x100/0x230
[ 1090.584502][T14524]  __x64_sys_lchown+0x85/0xa0
[ 1090.589212][T14524]  do_syscall_64+0xf3/0x230
[ 1090.593761][T14524]  ? clear_bhb_loop+0x35/0x90
[ 1090.598497][T14524]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1090.604446][T14524] RIP: 0033:0x7f666617e759
[ 1090.608887][T14524] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1090.628547][T14524] RSP: 002b:00007f6666e95038 EFLAGS: 00000246 ORIG_RAX: 000000000000005e
[ 1090.637023][T14524] RAX: ffffffffffffffda RBX: 00007f6666335f80 RCX: 00007f666617e759
[ 1090.645058][T14524] RDX: 00000000000000ff RSI: 0000000000000000 RDI: 0000000020000100
[ 1090.653080][T14524] RBP: 00007f6666e95090 R08: 0000000000000000 R09: 0000000000000000
[ 1090.661111][T14524] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1090.669151][T14524] R13: 0000000000000000 R14: 00007f6666335f80 R15: 00007ffcf20bb1c8
[ 1090.677201][T14524]  </TASK>
[ 1091.143235][T14533] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1091.306865][T14536] loop7: detected capacity change from 0 to 16
[ 1091.779354][T14536] erofs (device loop7): mounted with root inode @ nid 36.
[ 1092.233810][T14539] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1563'.
[ 1092.258477][T14540] FAULT_INJECTION: forcing a failure.
[ 1092.258477][T14540] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1092.321225][T14540] CPU: 0 UID: 0 PID: 14540 Comm: syz.7.1564 Not tainted 6.12.0-next-20241118-syzkaller #0
[ 1092.331209][T14540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[ 1092.341315][T14540] Call Trace:
[ 1092.344805][T14540]  <TASK>
[ 1092.347785][T14540]  dump_stack_lvl+0x241/0x360
[ 1092.352549][T14540]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1092.357797][T14540]  ? __pfx__printk+0x10/0x10
[ 1092.362441][T14540]  ? __pfx_lock_release+0x10/0x10
[ 1092.367539][T14540]  should_fail_ex+0x3b0/0x4e0
[ 1092.372601][T14540]  _copy_from_user+0x2f/0xc0
[ 1092.377245][T14540]  copy_msghdr_from_user+0xae/0x680
[ 1092.382498][T14540]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1092.388362][T14540]  ? __fget_files+0x2a/0x410
[ 1092.393018][T14540]  ? __fget_files+0x2a/0x410
[ 1092.397675][T14540]  __sys_sendmsg+0x209/0x350
[ 1092.402320][T14540]  ? __pfx_lock_release+0x10/0x10
[ 1092.407408][T14540]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1092.412603][T14540]  ? __pfx_vfs_write+0x10/0x10
[ 1092.417451][T14540]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1092.423861][T14540]  ? do_syscall_64+0x100/0x230
[ 1092.428688][T14540]  ? do_syscall_64+0xb6/0x230
[ 1092.433431][T14540]  do_syscall_64+0xf3/0x230
[ 1092.437999][T14540]  ? clear_bhb_loop+0x35/0x90
[ 1092.442733][T14540]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1092.448699][T14540] RIP: 0033:0x7f729a97e759
[ 1092.453158][T14540] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1092.472817][T14540] RSP: 002b:00007f729b7ce038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1092.481316][T14540] RAX: ffffffffffffffda RBX: 00007f729ab35f80 RCX: 00007f729a97e759
[ 1092.489350][T14540] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000003
[ 1092.497377][T14540] RBP: 00007f729b7ce090 R08: 0000000000000000 R09: 0000000000000000
[ 1092.505401][T14540] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1092.513418][T14540] R13: 0000000000000000 R14: 00007f729ab35f80 R15: 00007fff8a063c58
[ 1092.521463][T14540]  </TASK>
[ 1092.627894][T14548] (unnamed net_device) (uninitialized): option lacp_active: mode dependency failed, not supported in mode balance-rr(0)
[ 1092.718392][T14551] FAULT_INJECTION: forcing a failure.
[ 1092.718392][T14551] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1092.733050][T14551] CPU: 0 UID: 0 PID: 14551 Comm: syz.9.1569 Not tainted 6.12.0-next-20241118-syzkaller #0
[ 1092.742998][T14551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[ 1092.753093][T14551] Call Trace:
[ 1092.756400][T14551]  <TASK>
[ 1092.759359][T14551]  dump_stack_lvl+0x241/0x360
[ 1092.764084][T14551]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1092.769328][T14551]  ? __pfx__printk+0x10/0x10
[ 1092.773968][T14551]  should_fail_ex+0x3b0/0x4e0
[ 1092.778694][T14551]  _copy_from_user+0x2f/0xc0
[ 1092.783322][T14551]  __se_sys_memfd_create+0x2a1/0x840
[ 1092.788660][T14551]  do_syscall_64+0xf3/0x230
[ 1092.793200][T14551]  ? clear_bhb_loop+0x35/0x90
[ 1092.797918][T14551]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1092.803877][T14551] RIP: 0033:0x7fe9ad37e759
[ 1092.808324][T14551] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1092.827970][T14551] RSP: 002b:00007fe9ae25ee18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[ 1092.836436][T14551] RAX: ffffffffffffffda RBX: 0000000000000167 RCX: 00007fe9ad37e759
[ 1092.844449][T14551] RDX: 00007fe9ae25eef0 RSI: 0000000000000000 RDI: 00007fe9ad3f1fca
[ 1092.852462][T14551] RBP: 0000000020000240 R08: 00007fe9ae25ebb7 R09: 00007fe9ae25ee40
[ 1092.860469][T14551] R10: 000000000000000a R11: 0000000000000202 R12: 00000000200001c0
[ 1092.868473][T14551] R13: 00007fe9ae25eef0 R14: 00007fe9ae25eeb0 R15: 0000000020000200
[ 1092.876499][T14551]  </TASK>
[ 1093.816137][T14563] netlink: 892 bytes leftover after parsing attributes in process `syz.9.1570'.
[ 1093.991776][T14566] loop3: detected capacity change from 0 to 128
[ 1094.012882][T14566] EXT4-fs (loop3): Test dummy encryption mode enabled
[ 1094.035505][T14566] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1094.057932][T14567] loop9: detected capacity change from 0 to 2048
[ 1094.084435][T14566] ext4 filesystem being mounted at /120/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1094.122426][T14567] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1094.189389][T14566] xt_connbytes: Forcing CT accounting to be enabled
[ 1094.196134][T14566] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[ 1094.208146][T14566] xt_bpf: check failed: parse error
[ 1095.012258][T14579] loop6: detected capacity change from 0 to 128
[ 1095.248455][T14579] FAT-fs (loop6): bogus sectors per cluster 0
[ 1095.268849][T14579] FAT-fs (loop6): Can't find a valid FAT filesystem
[ 1095.547491][T14584] loop6: detected capacity change from 0 to 2048
[ 1095.554837][T14584] NILFS: invalid option "cp=0": invalid checkpoint number 0
[ 1095.632498][T14587] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1578'.
[ 1095.654951][T14577] fscrypt: AES-256-CBC-CTS using implementation "cts-cbc-aes-aesni"
[ 1095.727627][T10640] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1095.919372][T11288] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1095.974384][T14590] loop6: detected capacity change from 0 to 256
[ 1096.083097][T14590] exFAT-fs (loop6): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[ 1096.138354][T14565] loop7: detected capacity change from 0 to 32768
[ 1096.229254][T14592] loop3: detected capacity change from 0 to 64
[ 1096.344446][T14592] hfs: get root inode failed
[ 1096.429688][T14596] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1096.632165][ T6653] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[ 1096.655376][T14598] input: syz0 as /devices/virtual/input/input12
[ 1096.791751][T14582] loop8: detected capacity change from 0 to 40427
[ 1096.851412][ T6653] usb 4-1: Using ep0 maxpacket: 16
[ 1096.865972][T14582] F2FS-fs (loop8): build fault injection attr: rate: 690, type: 0x1fffff
[ 1096.867755][ T6653] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 11
[ 1096.889053][T14582] F2FS-fs (loop8): Image doesn't support compression
[ 1096.926481][ T6653] usb 4-1: config 1 interface 0 altsetting 3 endpoint 0xB has invalid wMaxPacketSize 0
[ 1096.936298][ T6653] usb 4-1: config 1 interface 0 altsetting 3 bulk endpoint 0xB has invalid maxpacket 0
[ 1096.946406][ T6653] usb 4-1: config 1 interface 0 altsetting 3 endpoint 0x8A has invalid wMaxPacketSize 0
[ 1096.956324][ T6653] usb 4-1: config 1 interface 0 altsetting 3 bulk endpoint 0x8A has invalid maxpacket 0
[ 1096.966377][ T6653] usb 4-1: config 1 interface 0 has no altsetting 0
[ 1096.973185][ T6653] usb 4-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77
[ 1096.982423][ T6653] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1097.034592][T14582] F2FS-fs (loop8): invalid crc value
[ 1097.045858][ T6653] ums-sddr09 4-1:1.0: USB Mass Storage device detected
[ 1097.089215][T14582] F2FS-fs (loop8): Found nat_bits in checkpoint
[ 1097.125095][T14602] loop7: detected capacity change from 0 to 4096
[ 1097.270508][T14582] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[ 1097.295716][T14612] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1097.401619][T14582] 9pnet: p9_errstr2errno: server reported unknown error �@í΂Í(ááí«QhQI¸¥00000000000000000010ÿ
[ 1097.461141][ T6653] ums-sddr09 4-1:1.0: probe with driver ums-sddr09 failed with error -22
[ 1097.492562][ T6653] usb 4-1: USB disconnect, device number 9
[ 1097.536859][T14613] syz.6.1583 (14613): drop_caches: 2
[ 1097.630897][ T8949] syz-executor: attempt to access beyond end of device
[ 1097.630897][ T8949] loop8: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[ 1097.653226][T14613] syz.6.1583 (14613): drop_caches: 2
[ 1097.681107][ T8949] F2FS-fs (loop8): Stopped filesystem due to reason: 3
[ 1097.768367][ T8949] F2FS-fs (loop8): Stopped filesystem due to reason: 3
[ 1097.846734][T14619] loop9: detected capacity change from 0 to 512
[ 1097.909637][T14619] vfat: Unknown parameter '01777777777777777777777'
[ 1098.290931][T14623] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1098.308691][ T6653] usb 10-1: new high-speed USB device number 12 using dummy_hcd
[ 1098.842894][ T6653] usb 10-1: Using ep0 maxpacket: 16
[ 1098.851028][ T6653] usb 10-1: config 1 has an invalid descriptor of length 14, skipping remainder of the config
[ 1098.861715][ T6653] usb 10-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1098.914316][ T6653] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1098.958642][ T6653] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1098.969021][ T6653] usb 10-1: Product: syz
[ 1098.974320][ T6653] usb 10-1: Manufacturer: Я
[ 1098.979225][ T6653] usb 10-1: SerialNumber: syz
[ 1099.221429][ T6653] cdc_ncm 10-1:1.0: skipping garbage
[ 1099.227028][ T6653] cdc_ncm 10-1:1.0: CDC Union missing and no IAD found
[ 1099.297657][ T6653] cdc_ncm 10-1:1.0: bind() failure
[ 1099.321895][ T6653] cdc_ncm 10-1:1.1: CDC Union missing and no IAD found
[ 1099.332958][ T6653] cdc_ncm 10-1:1.1: bind() failure
[ 1099.382726][T14633] FAULT_INJECTION: forcing a failure.
[ 1099.382726][T14633] name failslab, interval 1, probability 0, space 0, times 0
[ 1099.409153][T14633] CPU: 0 UID: 0 PID: 14633 Comm: syz.8.1585 Not tainted 6.12.0-next-20241118-syzkaller #0
[ 1099.419129][T14633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[ 1099.429231][T14633] Call Trace:
[ 1099.432545][T14633]  <TASK>
[ 1099.435507][T14633]  dump_stack_lvl+0x241/0x360
[ 1099.440243][T14633]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1099.445490][T14633]  ? __pfx__printk+0x10/0x10
[ 1099.450119][T14633]  ? fs_reclaim_acquire+0x93/0x130
[ 1099.455266][T14633]  ? __pfx___might_resched+0x10/0x10
[ 1099.460613][T14633]  should_fail_ex+0x3b0/0x4e0
[ 1099.465336][T14633]  should_failslab+0xac/0x100
[ 1099.470058][T14633]  __kmalloc_noprof+0xdd/0x4c0
[ 1099.474865][T14633]  ? tomoyo_encode+0x26f/0x540
[ 1099.479688][T14633]  tomoyo_encode+0x26f/0x540
[ 1099.484328][T14633]  tomoyo_realpath_from_path+0x59e/0x5e0
[ 1099.490025][T14633]  tomoyo_path_number_perm+0x236/0x860
[ 1099.495521][T14633]  ? __lock_acquire+0x1397/0x2100
[ 1099.500589][T14633]  ? tomoyo_path_number_perm+0x206/0x860
[ 1099.506301][T14633]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1099.512371][T14633]  ? __fget_files+0x2a/0x410
[ 1099.517024][T14633]  ? __fget_files+0x2a/0x410
[ 1099.521662][T14633]  security_file_ioctl+0xc6/0x2a0
[ 1099.526735][T14633]  __se_sys_ioctl+0x46/0x170
[ 1099.531364][T14633]  do_syscall_64+0xf3/0x230
[ 1099.535922][T14633]  ? clear_bhb_loop+0x35/0x90
[ 1099.540636][T14633]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1099.546599][T14633] RIP: 0033:0x7fc47137e759
[ 1099.551045][T14633] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1099.570691][T14633] RSP: 002b:00007fc4721ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1099.579146][T14633] RAX: ffffffffffffffda RBX: 00007fc471535f80 RCX: 00007fc47137e759
[ 1099.587155][T14633] RDX: 0000000000000000 RSI: 0000000000005437 RDI: 0000000000000003
[ 1099.595158][T14633] RBP: 00007fc4721ad090 R08: 0000000000000000 R09: 0000000000000000
[ 1099.603164][T14633] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1099.611169][T14633] R13: 0000000000000000 R14: 00007fc471535f80 R15: 00007ffff620a7c8
[ 1099.619197][T14633]  </TASK>
[ 1099.689419][T14633] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1099.709177][T14633] [U] ^A
[ 1099.811717][T14636] fuse: Bad value for 'fd'
[ 1100.088874][T14638] loop3: detected capacity change from 0 to 1024
[ 1100.096074][T14638] EXT4-fs: Ignoring removed orlov option
[ 1100.111099][T14638] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1100.117990][T14640] loop6: detected capacity change from 0 to 1024
[ 1100.133995][T14638] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[ 1100.148889][T14640] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1100.167645][T14638] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[ 1100.207024][T14638] EXT4-fs (loop3): invalid journal inode
[ 1100.224566][T14638] EXT4-fs (loop3): can't get journal size
[ 1100.254508][T14638] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1100.820317][ T6653] usb 10-1: USB disconnect, device number 12
[ 1101.270277][T11288] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1101.458806][ T5882] usb 7-1: new high-speed USB device number 23 using dummy_hcd
[ 1101.642190][ T5882] usb 7-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1101.658807][ T5882] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1101.681328][ T5882] usb 7-1: config 0 descriptor??
[ 1101.691065][ T5882] cp210x 7-1:0.0: cp210x converter detected
[ 1101.751208][T14646] loop8: detected capacity change from 0 to 32768
[ 1101.901716][ T5882] cp210x 7-1:0.0: failed to get vendor val 0x370b size 1: -121
[ 1101.917533][ T5882] cp210x 7-1:0.0: querying part number failed
[ 1101.959108][ T5882] usb 7-1: cp210x converter now attached to ttyUSB0
[ 1102.115990][ T5882] usb 7-1: USB disconnect, device number 23
[ 1102.125602][ T5882] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1102.172140][ T5882] cp210x 7-1:0.0: device disconnected
[ 1102.179388][  T764] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[ 1102.311435][T14657] loop9: detected capacity change from 0 to 32768
[ 1102.365801][  T764] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1102.387596][  T764] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1102.413384][  T764] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[ 1102.423877][  T764] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1102.644003][  T764] usb 4-1: SerialNumber: syz
[ 1102.681358][T14657] XFS (loop9): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1102.772294][T14677] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1102.861271][T14657] XFS (loop9): Ending clean mount
[ 1102.963418][  T764] usb 4-1: skipping empty audio interface (v1)
[ 1103.099204][  T764] snd-usb-audio 4-1:1.0: probe with driver snd-usb-audio failed with error -22
[ 1103.167534][  T764] usb 4-1: USB disconnect, device number 10
[ 1103.228210][T10640] XFS (loop9): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1103.575642][T14679] loop6: detected capacity change from 0 to 32768
[ 1103.779176][T14287] udevd[14287]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1103.854863][T14679] JBD2: Ignoring recovery information on journal
[ 1103.975896][T14685] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1103.996104][T14685] FAULT_INJECTION: forcing a failure.
[ 1103.996104][T14685] name failslab, interval 1, probability 0, space 0, times 0
[ 1104.005375][T14682] loop8: detected capacity change from 0 to 4096
[ 1104.364008][T14685] CPU: 0 UID: 0 PID: 14685 Comm: syz.9.1605 Not tainted 6.12.0-next-20241118-syzkaller #0
[ 1104.373990][T14685] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[ 1104.384101][T14685] Call Trace:
[ 1104.387414][T14685]  <TASK>
[ 1104.390378][T14685]  dump_stack_lvl+0x241/0x360
[ 1104.395112][T14685]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1104.400369][T14685]  ? __pfx__printk+0x10/0x10
[ 1104.405023][T14685]  ? fs_reclaim_acquire+0x93/0x130
[ 1104.410178][T14685]  ? __pfx___might_resched+0x10/0x10
[ 1104.415528][T14685]  should_fail_ex+0x3b0/0x4e0
[ 1104.420340][T14685]  should_failslab+0xac/0x100
[ 1104.425062][T14685]  __kmalloc_noprof+0xdd/0x4c0
[ 1104.429852][T14685]  ? tomoyo_encode+0x26f/0x540
[ 1104.434648][T14685]  tomoyo_encode+0x26f/0x540
[ 1104.439267][T14685]  tomoyo_realpath_from_path+0x59e/0x5e0
[ 1104.444930][T14685]  tomoyo_path_number_perm+0x236/0x860
[ 1104.450420][T14685]  ? __lock_acquire+0x1397/0x2100
[ 1104.455459][T14685]  ? tomoyo_path_number_perm+0x206/0x860
[ 1104.461110][T14685]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1104.467143][T14685]  ? __fget_files+0x2a/0x410
[ 1104.471757][T14685]  ? __fget_files+0x2a/0x410
[ 1104.476370][T14685]  security_file_ioctl+0xc6/0x2a0
[ 1104.481414][T14685]  __se_sys_ioctl+0x46/0x170
[ 1104.486019][T14685]  do_syscall_64+0xf3/0x230
[ 1104.490536][T14685]  ? clear_bhb_loop+0x35/0x90
[ 1104.495233][T14685]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1104.501153][T14685] RIP: 0033:0x7fe9ad37e759
[ 1104.505595][T14685] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1104.525228][T14685] RSP: 002b:00007fe9ae25f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1104.533667][T14685] RAX: ffffffffffffffda RBX: 00007fe9ad535f80 RCX: 00007fe9ad37e759
[ 1104.541653][T14685] RDX: 0000000020000280 RSI: 0000000000003b8d RDI: 0000000000000003
[ 1104.549635][T14685] RBP: 00007fe9ae25f090 R08: 0000000000000000 R09: 0000000000000000
[ 1104.557620][T14685] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1104.565603][T14685] R13: 0000000000000000 R14: 00007fe9ad535f80 R15: 00007fff7fbcdcc8
[ 1104.573622][T14685]  </TASK>
[ 1104.590660][T14685] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1104.656891][T14679] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[ 1105.532622][   T29] audit: type=1800 audit(1731945127.219:365): pid=14695 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1604" name="file1" dev="loop6" ino=16946 res=0 errno=0
[ 1106.131045][T14704] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1106.854243][ T6810] ocfs2: Unmounting device (7,6) on (node local)
[ 1107.611984][T14721] loop6: detected capacity change from 0 to 8192
[ 1107.634361][T14721] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1108.839621][T14738] loop8: detected capacity change from 0 to 1024
[ 1108.977260][T14738] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1109.093323][T14744] FAULT_INJECTION: forcing a failure.
[ 1109.093323][T14744] name failslab, interval 1, probability 0, space 0, times 0
[ 1109.127704][T14744] CPU: 1 UID: 0 PID: 14744 Comm: syz.6.1622 Not tainted 6.12.0-next-20241118-syzkaller #0
[ 1109.137731][T14744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[ 1109.147926][T14744] Call Trace:
[ 1109.151247][T14744]  <TASK>
[ 1109.154212][T14744]  dump_stack_lvl+0x241/0x360
[ 1109.158945][T14744]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1109.164195][T14744]  ? __pfx__printk+0x10/0x10
[ 1109.168835][T14744]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[ 1109.174865][T14744]  ? __pfx___might_resched+0x10/0x10
[ 1109.180203][T14744]  should_fail_ex+0x3b0/0x4e0
[ 1109.184939][T14744]  should_failslab+0xac/0x100
[ 1109.189671][T14744]  kmem_cache_alloc_node_noprof+0x77/0x380
[ 1109.195551][T14744]  ? __alloc_skb+0x1c3/0x440
[ 1109.200202][T14744]  __alloc_skb+0x1c3/0x440
[ 1109.204671][T14744]  ? __pfx___alloc_skb+0x10/0x10
[ 1109.209655][T14744]  ? netlink_autobind+0xd6/0x2f0
[ 1109.214643][T14744]  ? netlink_autobind+0x2b0/0x2f0
[ 1109.219719][T14744]  netlink_sendmsg+0x638/0xcb0
[ 1109.224551][T14744]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1109.229892][T14744]  ? aa_sock_msg_perm+0x91/0x160
[ 1109.234881][T14744]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1109.240201][T14744]  __sock_sendmsg+0x221/0x270
[ 1109.244907][T14744]  ____sys_sendmsg+0x52a/0x7e0
[ 1109.249698][T14744]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1109.255007][T14744]  ? __fget_files+0x2a/0x410
[ 1109.259626][T14744]  ? __fget_files+0x2a/0x410
[ 1109.264267][T14744]  __sys_sendmsg+0x269/0x350
[ 1109.268901][T14744]  ? __pfx_lock_release+0x10/0x10
[ 1109.273959][T14744]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1109.279102][T14744]  ? __pfx_vfs_write+0x10/0x10
[ 1109.283898][T14744]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1109.290352][T14744]  ? do_syscall_64+0x100/0x230
[ 1109.295130][T14744]  ? do_syscall_64+0xb6/0x230
[ 1109.299857][T14744]  do_syscall_64+0xf3/0x230
[ 1109.304384][T14744]  ? clear_bhb_loop+0x35/0x90
[ 1109.309078][T14744]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1109.314997][T14744] RIP: 0033:0x7f666617e759
[ 1109.319439][T14744] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1109.339068][T14744] RSP: 002b:00007f6666e95038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1109.347502][T14744] RAX: ffffffffffffffda RBX: 00007f6666335f80 RCX: 00007f666617e759
[ 1109.355488][T14744] RDX: 0000000000000000 RSI: 0000000020000780 RDI: 0000000000000004
[ 1109.363469][T14744] RBP: 00007f6666e95090 R08: 0000000000000000 R09: 0000000000000000
[ 1109.371456][T14744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1109.379468][T14744] R13: 0000000000000000 R14: 00007f6666335f80 R15: 00007ffcf20bb1c8
[ 1109.387468][T14744]  </TASK>
[ 1109.670151][T14754] ieee802154 phy0 wpan0: encryption failed: -22
[ 1109.679421][T14755] netlink: 'syz.6.1626': attribute type 39 has an invalid length.
[ 1109.766307][T14756] loop6: detected capacity change from 0 to 2048
[ 1109.857574][T14756] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1109.869949][T14756] ext4 filesystem being mounted at /278/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1109.922822][T14756] fs-verity: sha512 using implementation "sha512-avx2"
[ 1109.987475][T14736] loop9: detected capacity change from 0 to 32768
[ 1110.261500][T14736] XFS (loop9): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1110.427381][T14752] [U] ^A
[ 1110.811793][ T6810] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1111.087178][T14736] XFS (loop9): Ending clean mount
[ 1111.102992][T14778] xt_connbytes: Forcing CT accounting to be enabled
[ 1111.167168][T14736] XFS (loop9): Quotacheck needed: Please wait.
[ 1111.187849][T14778] xt_bpf: check failed: parse error
[ 1111.194679][T14780] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1111.308853][T14736] XFS (loop9): Quotacheck: Done.
[ 1111.380011][T14736] XFS (loop9): User initiated shutdown received.
[ 1111.386897][T14736] XFS (loop9): Log I/O Error (0x6) detected at xfs_fs_goingdown+0xe2/0x160 (fs/xfs/xfs_fsops.c:453).  Shutting down filesystem.
[ 1111.400511][T14736] XFS (loop9): Please unmount the filesystem and rectify the problem(s)
[ 1111.444911][T14778] loop6: detected capacity change from 0 to 4096
[ 1111.460182][T14778] nilfs2: Unknown parameter '0x0000000000000003'
[ 1111.500764][T10640] XFS (loop9): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1112.733141][T14793] loop9: detected capacity change from 0 to 64
[ 1112.740344][T14793] hfs: Bad value for 'part'
[ 1112.813167][T14796] xt_TPROXY: Can be used only with -p tcp or -p udp
[ 1112.891494][T14797] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1639'.
[ 1113.601235][T14804] iommufd_mock iommufd_mock1: Adding to iommu group 1
[ 1113.853385][T14807] loop6: detected capacity change from 0 to 1024
[ 1113.860529][T14807] hfsplus: Unknown parameter './file0'
[ 1113.884158][T14807] loop6: detected capacity change from 0 to 512
[ 1113.912056][T14780] loop3: detected capacity change from 0 to 32768
[ 1113.919513][T14780] gfs2: Bad value for 'commit'
[ 1114.038914][T14780] iommufd_mock iommufd_mock1: Adding to iommu group 1
[ 1114.082740][T14791] loop7: detected capacity change from 0 to 32768
[ 1114.159582][T14810] loop8: detected capacity change from 0 to 24
[ 1114.192626][T14815] loop9: detected capacity change from 0 to 512
[ 1114.201814][T14815] EXT4-fs: Ignoring removed nobh option
[ 1114.219473][T14815] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[ 1114.277457][T14810] MTD: Attempt to mount non-MTD device "/dev/loop8"
[ 1114.317486][T14810] romfs: Mounting image 'rom 637cf1fa' through the block layer
[ 1114.362154][T14815] EXT4-fs (loop9): 1 truncate cleaned up
[ 1114.387981][T14815] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1114.401660][T14807] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1114.431845][T14807] ext4 filesystem being mounted at /283/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1114.472869][T14807] EXT4-fs error (device loop6): ext4_do_update_inode:5153: inode #2: comm syz.6.1641: corrupted inode contents
[ 1114.496619][T14810] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1114.566569][T14807] EXT4-fs error (device loop6): ext4_dirty_inode:6041: inode #2: comm syz.6.1641: mark_inode_dirty error
[ 1114.623576][T14807] EXT4-fs error (device loop6): ext4_do_update_inode:5153: inode #2: comm syz.6.1641: corrupted inode contents
[ 1114.673219][T14791] JBD2: Ignoring recovery information on journal
[ 1114.733588][T14807] EXT4-fs error (device loop6): __ext4_ext_dirty:207: inode #2: comm syz.6.1641: mark_inode_dirty error
[ 1115.138202][T14791] ocfs2: Mounting device (7,7) on (node local, slot 0) with ordered data mode.
[ 1115.464621][T14830] FAULT_INJECTION: forcing a failure.
[ 1115.464621][T14830] name failslab, interval 1, probability 0, space 0, times 0
[ 1115.477541][T14830] CPU: 0 UID: 0 PID: 14830 Comm: syz.8.1645 Not tainted 6.12.0-next-20241118-syzkaller #0
[ 1115.487500][T14830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[ 1115.497606][T14830] Call Trace:
[ 1115.500930][T14830]  <TASK>
[ 1115.503907][T14830]  dump_stack_lvl+0x241/0x360
[ 1115.508640][T14830]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1115.513887][T14830]  ? __pfx__printk+0x10/0x10
[ 1115.518529][T14830]  ? kmem_cache_alloc_lru_noprof+0x4d/0x390
[ 1115.524483][T14830]  ? __pfx___might_resched+0x10/0x10
[ 1115.529842][T14830]  should_fail_ex+0x3b0/0x4e0
[ 1115.534568][T14830]  should_failslab+0xac/0x100
[ 1115.539303][T14830]  ? shmem_alloc_inode+0x28/0x40
[ 1115.544280][T14830]  kmem_cache_alloc_lru_noprof+0x75/0x390
[ 1115.550022][T14830]  ? __pfx_lock_release+0x10/0x10
[ 1115.555067][T14830]  shmem_alloc_inode+0x28/0x40
[ 1115.559858][T14830]  ? __pfx_shmem_alloc_inode+0x10/0x10
[ 1115.565339][T14830]  alloc_inode+0x65/0x1a0
[ 1115.569697][T14830]  new_inode+0x22/0x1d0
[ 1115.573880][T14830]  shmem_get_inode+0x39d/0xf20
[ 1115.578672][T14830]  ? _raw_spin_unlock+0x28/0x50
[ 1115.583553][T14830]  ? alloc_fd+0x61a/0x690
[ 1115.587905][T14830]  __shmem_file_setup+0x171/0x2c0
[ 1115.592951][T14830]  __se_sys_memfd_create+0x36b/0x840
[ 1115.598265][T14830]  do_syscall_64+0xf3/0x230
[ 1115.602781][T14830]  ? clear_bhb_loop+0x35/0x90
[ 1115.607474][T14830]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1115.613393][T14830] RIP: 0033:0x7fc47137e759
[ 1115.617820][T14830] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1115.637446][T14830] RSP: 002b:00007fc4721ace18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[ 1115.645880][T14830] RAX: ffffffffffffffda RBX: 0000000000004581 RCX: 00007fc47137e759
[ 1115.653884][T14830] RDX: 00007fc4721acef0 RSI: 0000000000000000 RDI: 00007fc4713f1fca
[ 1115.661870][T14830] RBP: 0000000020004680 R08: 00007fc4721acbb7 R09: 00007fc4721ace40
[ 1115.669862][T14830] R10: 000000000000000a R11: 0000000000000202 R12: 0000000020004600
[ 1115.677850][T14830] R13: 00007fc4721acef0 R14: 00007fc4721aceb0 R15: 0000000020004640
[ 1115.685854][T14830]  </TASK>
[ 1115.754302][T10640] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1115.764956][ T6810] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1115.799323][ T9315] ocfs2: Unmounting device (7,7) on (node local)
[ 1116.214939][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[ 1116.724381][T14839] FAULT_INJECTION: forcing a failure.
[ 1116.724381][T14839] name failslab, interval 1, probability 0, space 0, times 0
[ 1116.796604][T14841] netlink: 'syz.3.1651': attribute type 2 has an invalid length.
[ 1116.798973][T14839] CPU: 0 UID: 0 PID: 14839 Comm: syz.9.1648 Not tainted 6.12.0-next-20241118-syzkaller #0
[ 1116.814317][T14839] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[ 1116.824420][T14839] Call Trace:
[ 1116.827730][T14839]  <TASK>
[ 1116.830705][T14839]  dump_stack_lvl+0x241/0x360
[ 1116.835433][T14839]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1116.840695][T14839]  ? __pfx__printk+0x10/0x10
[ 1116.845339][T14839]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[ 1116.851377][T14839]  ? __pfx___might_resched+0x10/0x10
[ 1116.856728][T14839]  should_fail_ex+0x3b0/0x4e0
[ 1116.861468][T14839]  should_failslab+0xac/0x100
[ 1116.866205][T14839]  kmem_cache_alloc_node_noprof+0x77/0x380
[ 1116.869470][T14841] Xÿ: entered promiscuous mode
[ 1116.872040][T14839]  ? __alloc_skb+0x1c3/0x440
[ 1116.872080][T14839]  __alloc_skb+0x1c3/0x440
[ 1116.872114][T14839]  ? __pfx___alloc_skb+0x10/0x10
[ 1116.891162][T14839]  ? netlink_autobind+0xd6/0x2f0
[ 1116.896154][T14839]  ? netlink_autobind+0x2b0/0x2f0
[ 1116.901239][T14839]  netlink_sendmsg+0x638/0xcb0
[ 1116.906090][T14839]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1116.911428][T14839]  ? aa_sock_msg_perm+0x91/0x160
[ 1116.916432][T14839]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1116.921766][T14839]  __sock_sendmsg+0x221/0x270
[ 1116.926498][T14839]  ____sys_sendmsg+0x52a/0x7e0
[ 1116.931374][T14839]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1116.936708][T14839]  ? __fget_files+0x2a/0x410
[ 1116.941354][T14839]  ? __fget_files+0x2a/0x410
[ 1116.946003][T14839]  __sys_sendmsg+0x269/0x350
[ 1116.950658][T14839]  ? __pfx_lock_release+0x10/0x10
[ 1116.955738][T14839]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1116.960921][T14839]  ? __pfx_vfs_write+0x10/0x10
[ 1116.965760][T14839]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1116.972136][T14839]  ? do_syscall_64+0x100/0x230
[ 1116.976943][T14839]  ? do_syscall_64+0xb6/0x230
[ 1116.981653][T14839]  do_syscall_64+0xf3/0x230
[ 1116.986192][T14839]  ? clear_bhb_loop+0x35/0x90
[ 1116.990908][T14839]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1116.996830][T14839] RIP: 0033:0x7fe9ad37e759
[ 1117.001269][T14839] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1117.020931][T14839] RSP: 002b:00007fe9ae25f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1117.029377][T14839] RAX: ffffffffffffffda RBX: 00007fe9ad535f80 RCX: 00007fe9ad37e759
[ 1117.037365][T14839] RDX: 000000002000c080 RSI: 00000000200000c0 RDI: 0000000000000004
[ 1117.045349][T14839] RBP: 00007fe9ae25f090 R08: 0000000000000000 R09: 0000000000000000
[ 1117.053332][T14839] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1117.061332][T14839] R13: 0000000000000000 R14: 00007fe9ad535f80 R15: 00007fff7fbcdcc8
[ 1117.069329][T14839]  </TASK>
[ 1117.111019][T14847] loop6: detected capacity change from 0 to 256
[ 1117.118461][T14847] udf: Unknown parameter 'fila
[ 1117.118461][T14847] ȃ(ç5˜ìjýeset'
[ 1117.148243][T14846] random: crng reseeded on system resumption
[ 1118.522188][  T764] usb 10-1: new high-speed USB device number 13 using dummy_hcd
[ 1118.545521][ T5922] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[ 1118.709322][  T764] usb 10-1: Using ep0 maxpacket: 32
[ 1118.717836][ T5922] usb 4-1: Using ep0 maxpacket: 16
[ 1118.737095][ T5922] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1118.753689][  T764] usb 10-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1118.759272][T14870] netlink: 'syz.6.1658': attribute type 2 has an invalid length.
[ 1118.771764][ T5922] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xE5, changing to 0x85
[ 1118.771841][T14869] netlink: 188 bytes leftover after parsing attributes in process `syz.7.1659'.
[ 1118.788769][  T764] usb 10-1: config 0 interface 0 altsetting 16 endpoint 0x2 has an invalid bInterval 0, changing to 7
[ 1118.815937][ T5922] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[ 1118.840398][  T764] usb 10-1: config 0 interface 0 altsetting 16 has 2 endpoint descriptors, different from the interface descriptor's value: 5
[ 1118.859442][ T5922] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1118.879189][T14870] Xÿ: entered promiscuous mode
[ 1118.897741][  T764] usb 10-1: config 0 interface 0 has no altsetting 0
[ 1118.934926][ T5922] usb 4-1: New USB device found, idVendor=0c72, idProduct=000c, bcdDevice=f6.59
[ 1118.947000][  T764] usb 10-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[ 1118.958772][ T5922] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1118.977881][  T764] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1118.988736][ T5922] usb 4-1: Product: syz
[ 1118.992972][ T5922] usb 4-1: Manufacturer: syz
[ 1119.007339][  T764] usb 10-1: config 0 descriptor??
[ 1119.023040][ T5922] usb 4-1: SerialNumber: syz
[ 1119.046384][ T5922] usb 4-1: config 0 descriptor??
[ 1119.166893][T14869] loop7: detected capacity change from 0 to 2048
[ 1119.216358][T14869] UDF-fs: warning (device loop7): udf_load_vrs: No anchor found
[ 1119.226670][T14869] UDF-fs: Scanning with blocksize 512 failed
[ 1119.268243][T14869] UDF-fs: warning (device loop7): udf_load_vrs: No anchor found
[ 1119.292993][T14869] UDF-fs: Scanning with blocksize 1024 failed
[ 1119.311878][T14851] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1119.344262][T14869] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=512, location=512
[ 1119.358431][T14869] UDF-fs: warning (device loop7): udf_load_vrs: No anchor found
[ 1119.364099][T14873] loop8: detected capacity change from 0 to 4096
[ 1119.372756][T14869] UDF-fs: Scanning with blocksize 2048 failed
[ 1119.380435][T14851] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1119.405063][T14869] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=256, location=256
[ 1119.415216][T14873] ntfs3(loop8): Different NTFS sector size (1024) and media sector size (512).
[ 1119.415994][T14851] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1119.463608][T14856] warning: `syz.9.1655' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[ 1119.479734][T14869] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=512, location=512
[ 1119.496191][T14851] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1119.531532][ T5882] usb 4-1: USB disconnect, device number 11
[ 1119.565978][  T764] hid-thrustmaster 0003:044F:B65D.0014: unknown main item tag 0x0
[ 1119.578968][  T764] hid-thrustmaster 0003:044F:B65D.0014: unknown main item tag 0x0
[ 1119.580150][T14869] UDF-fs: warning (device loop7): udf_load_vrs: No anchor found
[ 1119.587013][  T764] hid-thrustmaster 0003:044F:B65D.0014: unknown main item tag 0x0
[ 1119.603990][  T764] hid-thrustmaster 0003:044F:B65D.0014: unknown main item tag 0x0
[ 1119.618445][  T764] hid-thrustmaster 0003:044F:B65D.0014: unknown main item tag 0x0
[ 1119.621790][T14869] UDF-fs: Scanning with blocksize 4096 failed
[ 1119.636883][  T764] hid-thrustmaster 0003:044F:B65D.0014: hidraw0: USB HID v0.00 Device [HID 044f:b65d] on usb-dummy_hcd.9-1/input0
[ 1119.679360][T14869] UDF-fs: warning (device loop7): udf_fill_super: No partition found (1)
[ 1119.713314][T14856] loop9: detected capacity change from 0 to 256
[ 1119.878143][T14875] loop8: detected capacity change from 0 to 1024
[ 1119.888381][T14856] FAT-fs (loop9): Directory bread(block 64) failed
[ 1119.905332][T14856] FAT-fs (loop9): Directory bread(block 65) failed
[ 1119.910650][T14875] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1119.919286][T14856] FAT-fs (loop9): Directory bread(block 66) failed
[ 1119.928161][T14856] FAT-fs (loop9): Directory bread(block 67) failed
[ 1119.935072][T14856] FAT-fs (loop9): Directory bread(block 68) failed
[ 1119.941728][T14856] FAT-fs (loop9): Directory bread(block 69) failed
[ 1119.948534][T14856] FAT-fs (loop9): Directory bread(block 70) failed
[ 1119.955176][T14856] FAT-fs (loop9): Directory bread(block 71) failed
[ 1119.962051][T14856] FAT-fs (loop9): Directory bread(block 72) failed
[ 1119.969412][T14856] FAT-fs (loop9): Directory bread(block 73) failed
[ 1120.051150][T14879] [U] ^A
[ 1120.230219][  T764] hid-thrustmaster 0003:044F:B65D.0014: setup data couldn't be sent
[ 1120.238805][    C0] hid-thrustmaster 0003:044F:B65D.0014: URB to get model id failed with error -71
[ 1120.265042][  T764] usb 10-1: USB disconnect, device number 13
[ 1120.346384][T14882] loop3: detected capacity change from 0 to 2048
[ 1120.403642][T14886] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1120.544686][T14882] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1665'.
[ 1120.598915][T14890] loop7: detected capacity change from 0 to 64
[ 1121.758383][T14895] netlink: 16 bytes leftover after parsing attributes in process `syz.8.1667'.
[ 1122.550937][T14877] loop6: detected capacity change from 0 to 32768
[ 1122.629788][T14877] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.1661 (14877)
[ 1122.728044][T14877] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1122.768667][T14877] BTRFS info (device loop6): using sha256 (sha256-avx2) checksum algorithm
[ 1122.792097][T14909] loop8: detected capacity change from 0 to 128
[ 1122.807653][T14877] BTRFS info (device loop6): using free-space-tree
[ 1122.873978][T14877] workqueue: Failed to create a rescuer kthread for wq "btrfs-flush_delalloc": -EINTR
[ 1122.874385][T14877] workqueue: Failed to create a rescuer kthread for wq "btrfs-cache": -EINTR
[ 1122.919903][T14909] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1122.946272][T14877] workqueue: Failed to create a rescuer kthread for wq "btrfs-fixup": -EINTR
[ 1122.955731][T14877] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio": -EINTR
[ 1123.029028][T14877] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-meta": -EINTR
[ 1123.044627][T14918] loop3: detected capacity change from 0 to 512
[ 1123.074352][T14877] workqueue: Failed to create a rescuer kthread for wq "btrfs-rmw": -EINTR
[ 1123.074694][T14877] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR
[ 1123.111323][T14909] ext4 filesystem being mounted at /229/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1123.188134][T14927] tipc: Started in network mode
[ 1123.193389][T14927] tipc: Node identity ac1414aa, cluster identity 4711
[ 1123.201888][T14927] tipc: Enabled bearer <udp:s>, priority 10
[ 1123.231709][T14877] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR
[ 1123.232003][T14877] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR
[ 1123.260823][T14918] EXT4-fs: Mount option(s) incompatible with ext3
[ 1123.270346][T14933] loop9: detected capacity change from 0 to 128
[ 1123.310923][T14877] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[ 1123.311358][T14877] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[ 1123.351840][T14933] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1123.799149][T14933] ext4 filesystem being mounted at /155/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1124.167144][T14909] fscrypt (loop8): Missing crypto API support for AES-256-XTS (API name: "xts(aes)")
[ 1124.269100][T14877] BTRFS error (device loop6): open_ctree failed
[ 1124.276345][T14933] FAULT_INJECTION: forcing a failure.
[ 1124.276345][T14933] name failslab, interval 1, probability 0, space 0, times 0
[ 1124.289269][T14933] CPU: 0 UID: 0 PID: 14933 Comm: syz.9.1674 Not tainted 6.12.0-next-20241118-syzkaller #0
[ 1124.299224][T14933] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[ 1124.309324][T14933] Call Trace:
[ 1124.312630][T14933]  <TASK>
[ 1124.315588][T14933]  dump_stack_lvl+0x241/0x360
[ 1124.320317][T14933]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1124.325556][T14933]  ? __pfx__printk+0x10/0x10
[ 1124.330186][T14933]  ? kmem_cache_alloc_noprof+0x48/0x380
[ 1124.335781][T14933]  ? __pfx___might_resched+0x10/0x10
[ 1124.341145][T14933]  ? 0xffffffffa0003c80
[ 1124.345311][T14933]  should_fail_ex+0x3b0/0x4e0
[ 1124.350018][T14933]  should_failslab+0xac/0x100
[ 1124.354747][T14933]  ? alloc_empty_file+0x9e/0x1d0
[ 1124.359731][T14933]  kmem_cache_alloc_noprof+0x70/0x380
[ 1124.365151][T14933]  alloc_empty_file+0x9e/0x1d0
[ 1124.369973][T14933]  path_openat+0x107/0x3590
[ 1124.374499][T14933]  ? mark_lock+0x9a/0x360
[ 1124.378876][T14933]  ? __pfx_stack_trace_save+0x10/0x10
[ 1124.384292][T14933]  ? __lock_acquire+0x1397/0x2100
[ 1124.389340][T14933]  ? __pfx_path_openat+0x10/0x10
[ 1124.394320][T14933]  do_filp_open+0x27f/0x4e0
[ 1124.398856][T14933]  ? __pfx_do_filp_open+0x10/0x10
[ 1124.403959][T14933]  ? do_raw_spin_lock+0x14f/0x370
[ 1124.409084][T14933]  do_sys_openat2+0x13e/0x1d0
[ 1124.413821][T14933]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1124.419069][T14933]  ? __fget_files+0x2a/0x410
[ 1124.423714][T14933]  ? __fget_files+0x2a/0x410
[ 1124.428383][T14933]  __x64_sys_openat+0x247/0x2a0
[ 1124.433302][T14933]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1124.438738][T14933]  ? do_syscall_64+0x100/0x230
[ 1124.443549][T14933]  ? do_syscall_64+0xb6/0x230
[ 1124.448275][T14933]  do_syscall_64+0xf3/0x230
[ 1124.452826][T14933]  ? clear_bhb_loop+0x35/0x90
[ 1124.457555][T14933]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1124.463515][T14933] RIP: 0033:0x7fe9ad37e759
[ 1124.467981][T14933] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1124.487636][T14933] RSP: 002b:00007fe9ae25f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1124.496111][T14933] RAX: ffffffffffffffda RBX: 00007fe9ad535f80 RCX: 00007fe9ad37e759
[ 1124.504135][T14933] RDX: 0000000000000042 RSI: 0000000020000700 RDI: ffffffffffffff9c
[ 1124.512161][T14933] RBP: 00007fe9ae25f090 R08: 0000000000000000 R09: 0000000000000000
[ 1124.520303][T14933] R10: 0000000000000180 R11: 0000000000000246 R12: 0000000000000001
[ 1124.528410][T14933] R13: 0000000000000000 R14: 00007fe9ad535f80 R15: 00007fff7fbcdcc8
[ 1124.536452][T14933]  </TASK>
[ 1124.580657][ T5882] tipc: Node number set to 2886997162
[ 1124.632249][T14949] loop7: detected capacity change from 0 to 1024
[ 1124.632839][T10640] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1124.663757][ T8949] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1124.716631][T14949] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1124.885020][T14956] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1125.000099][T13105] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[ 1125.180618][T13105] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1125.218702][T13105] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1125.249293][T13105] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1125.296704][T13105] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1125.333559][T13105] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1125.405602][T13105] usb 4-1: config 0 descriptor??
[ 1125.750595][T14976] netlink: 144 bytes leftover after parsing attributes in process `syz.7.1688'.
[ 1125.838041][T13105] plantronics 0003:047F:FFFF.0015: unknown main item tag 0x0
[ 1125.858586][T13105] plantronics 0003:047F:FFFF.0015: unknown main item tag 0x5
[ 1125.891266][T13105] plantronics 0003:047F:FFFF.0015: No inputs registered, leaving
[ 1125.964331][T13105] plantronics 0003:047F:FFFF.0015: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[ 1126.523629][T15007] netlink: 'syz.9.1703': attribute type 29 has an invalid length.
[ 1126.545025][T15007] netlink: 'syz.9.1703': attribute type 29 has an invalid length.
[ 1126.557770][T15007] netlink: 'syz.9.1703': attribute type 29 has an invalid length.
[ 1126.669859][T15017] netlink: 'syz.9.1703': attribute type 29 has an invalid length.
[ 1126.690272][T15016] netlink: 'syz.6.1706': attribute type 29 has an invalid length.
[ 1126.698743][T15007] netlink: 'syz.9.1703': attribute type 29 has an invalid length.
[ 1126.717777][T15016] netlink: 'syz.6.1706': attribute type 29 has an invalid length.
[ 1126.737144][T15017] netlink: 'syz.9.1703': attribute type 29 has an invalid length.
[ 1126.785786][T15016] netlink: 'syz.6.1706': attribute type 29 has an invalid length.
[ 1126.838116][T15016] netlink: 'syz.6.1706': attribute type 29 has an invalid length.
[ 1126.859999][T15020] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1126.937581][T15020] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1127.060717][T13105] usb 4-1: USB disconnect, device number 12
[ 1128.176766][T15087] Illegal XDP return value 4294967274 on prog  (id 319) dev N/A, expect packet loss!
[ 1128.389335][T15098] netlink: 193500 bytes leftover after parsing attributes in process `syz.6.1736'.
[ 1128.460056][T15098] netlink: 3084 bytes leftover after parsing attributes in process `syz.6.1736'.
[ 1128.868335][T15109] syz_tun: entered promiscuous mode
[ 1128.956518][T15107] loop7: detected capacity change from 0 to 32768
[ 1128.963881][T15109] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[ 1128.977776][T15107] (syz.7.1739,15107,1):ocfs2_parse_options:1460 ERROR: Invalid heartbeat mount options
[ 1128.988661][T15107] (syz.7.1739,15107,1):ocfs2_fill_super:1178 ERROR: status = -22
[ 1129.373910][T15126] loop6: detected capacity change from 0 to 64
[ 1129.455596][T15124] loop7: detected capacity change from 0 to 512
[ 1129.472995][T15124] EXT4-fs: inline encryption not supported
[ 1129.673432][T15124] Quota error (device loop7): v2_read_file_info: Free block number 8 out of range (1, 6).
[ 1129.700123][T15124] EXT4-fs warning (device loop7): ext4_enable_quotas:7156: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[ 1129.743913][T15124] EXT4-fs (loop7): mount failed
[ 1129.926666][T15139] kvm: pic: non byte read
[ 1130.247736][T15160] loop7: detected capacity change from 0 to 64
[ 1130.300810][T15160] capability: warning: `syz.7.1762' uses deprecated v2 capabilities in a way that may be insecure
[ 1130.685939][T15178] loop9: detected capacity change from 0 to 256
[ 1130.733279][T15178] exfat: Deprecated parameter 'utf8'
[ 1130.739168][T15178] exfat: Deprecated parameter 'utf8'
[ 1130.906113][T15178] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[ 1131.159591][T15188] loop7: detected capacity change from 0 to 4096
[ 1131.346421][T15202] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1131.802356][T15207] loop9: detected capacity change from 0 to 32768
[ 1131.881744][T15197] loop8: detected capacity change from 0 to 512
[ 1131.985018][T15207] ocfs2: Mounting device (7,9) on (node local, slot 0) with ordered data mode.
[ 1132.385388][T15197] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1132.405686][T15197] ext4 filesystem being mounted at /240/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1132.462450][T15217] delete_channel: no stack
[ 1132.469993][T10640] ocfs2: Unmounting device (7,9) on (node local)
[ 1132.789525][T15235] validate_nla: 11 callbacks suppressed
[ 1132.789548][T15235] netlink: 'syz.7.1792': attribute type 29 has an invalid length.
[ 1132.845732][T15235] netlink: 'syz.7.1792': attribute type 29 has an invalid length.
[ 1132.863537][T15240] loop9: detected capacity change from 0 to 256
[ 1132.901714][T15242] loop6: detected capacity change from 0 to 256
[ 1132.906359][T15240] exFAT-fs (loop9): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[ 1132.937041][T15242] exFAT-fs (loop6): failed to load upcase table (idx : 0x0001e4a3, chksum : 0x009b275e, utbl_chksum : 0x7319d30d)
[ 1133.299101][ T5922] IPVS: starting estimator thread 0...
[ 1133.455539][T15253] IPVS: using max 19 ests per chain, 45600 per kthread
[ 1133.575863][T15266] loop7: detected capacity change from 0 to 512
[ 1133.602872][T15266] EXT4-fs: Ignoring removed orlov option
[ 1133.625324][T15268] netlink: 'syz.9.1805': attribute type 29 has an invalid length.
[ 1133.649833][T15268] netlink: 'syz.9.1805': attribute type 29 has an invalid length.
[ 1133.659699][T15266] EXT4-fs error (device loop7): dx_probe:823: inode #2: comm syz.7.1802: Attempting to read directory block (0) that is past i_size (256)
[ 1133.729138][T15266] EXT4-fs (loop7): Remounting filesystem read-only
[ 1133.736885][T15266] EXT4-fs (loop7): Cannot turn on journaled quota: type 1: error -117
[ 1133.858070][T15266] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1133.880935][T15277] RDS: rds_bind could not find a transport for ::ffff:10.1.1.2, load rds_tcp or rds_rdma?
[ 1133.882616][T15266] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1133.933344][T15275] netlink: 'syz.3.1807': attribute type 3 has an invalid length.
[ 1133.945853][T15266] loop7: detected capacity change from 0 to 512
[ 1133.956256][T15275] netlink: 'syz.3.1807': attribute type 3 has an invalid length.
[ 1134.045465][T15266] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1134.054702][T15275] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1807'.
[ 1134.058363][T15266] ext4 filesystem being mounted at /226/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1134.088010][T15266] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1134.130552][ T8949] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1135.064632][T15307] loop7: detected capacity change from 0 to 22
[ 1135.072916][T15307] MTD: Attempt to mount non-MTD device "/dev/loop7"
[ 1135.100907][T15307] romfs: Mounting image 'rom 637cf1fa' through the block layer
[ 1135.121342][T15307] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1136.098970][ T5922] usb 10-1: new full-speed USB device number 14 using dummy_hcd
[ 1136.260311][ T5922] usb 10-1: not running at top speed; connect to a high speed hub
[ 1136.270055][ T5922] usb 10-1: config 5 has an invalid interface number: 148 but max is 0
[ 1136.278838][ T5922] usb 10-1: config 5 has no interface number 0
[ 1136.285275][ T5922] usb 10-1: config 5 interface 148 altsetting 1 endpoint 0xC has an invalid bInterval 250, changing to 4
[ 1136.306073][ T5922] usb 10-1: config 5 interface 148 altsetting 1 endpoint 0xD has invalid maxpacket 1024, setting to 64
[ 1136.319057][ T5922] usb 10-1: config 5 interface 148 has no altsetting 0
[ 1136.328885][ T5922] usb 10-1: New USB device found, idVendor=05ac, idProduct=d181, bcdDevice=b4.a2
[ 1136.340230][ T5922] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1136.353785][ T5922] usb 10-1: Product: syz
[ 1136.359327][ T5922] usb 10-1: Manufacturer: syz
[ 1136.364339][ T5922] usb 10-1: SerialNumber: syz
[ 1136.593732][ T5922] ipheth 10-1:5.148: Unable to find endpoints
[ 1136.605343][ T5922] usb 10-1: USB disconnect, device number 14
[ 1137.773096][T15379] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1852'.
[ 1139.179194][ T5884] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[ 1139.358796][ T5884] usb 4-1: Using ep0 maxpacket: 16
[ 1139.381890][ T5884] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1139.402080][ T5884] usb 4-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[ 1139.416347][ T5884] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1139.450716][ T5884] usb 4-1: config 0 descriptor??
[ 1139.463473][ T5884] input: bcm5974 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input13
[ 1139.939361][T15410] loop8: detected capacity change from 0 to 32768
[ 1140.109990][T15410] (syz.8.1864,15410,1):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #66: rec_len % 4 != 0 - offset=160, inode=72, rec_len=111, name_len=15
[ 1140.130319][T15410] (syz.8.1864,15410,1):ocfs2_init_local_system_inodes:492 ERROR: status=-22, sysfile=7, slot=0
[ 1140.141856][T15410] (syz.8.1864,15410,1):ocfs2_init_local_system_inodes:501 ERROR: status = -22
[ 1140.150895][T15410] (syz.8.1864,15410,1):ocfs2_mount_volume:1813 ERROR: status = -22
[ 1140.167412][T15410] (syz.8.1864,15410,1):ocfs2_fill_super:1178 ERROR: status = -22
[ 1140.288850][ T5185] bcm5974 4-1:0.0: could not read from device
[ 1140.392582][ T5884] bcm5974 4-1:0.0: could not read from device
[ 1140.457337][ T5185] bcm5974 4-1:0.0: could not read from device
[ 1140.569991][ T5884] input: failed to attach handler mousedev to device input13, error: -5
[ 1140.658111][ T5185] bcm5974 4-1:0.0: could not read from device
[ 1140.669864][ T5884] usb 4-1: USB disconnect, device number 13
[ 1140.688956][T15417] netlink: 'syz.9.1865': attribute type 29 has an invalid length.
[ 1141.222308][T15424] netlink: 'syz.9.1865': attribute type 29 has an invalid length.
[ 1141.325092][T15429] netlink: 'syz.9.1865': attribute type 29 has an invalid length.
[ 1141.427634][T15417] netlink: 'syz.9.1865': attribute type 29 has an invalid length.
[ 1141.495769][T15424] netlink: 'syz.9.1865': attribute type 29 has an invalid length.
[ 1141.542287][T15417] netlink: 'syz.9.1865': attribute type 29 has an invalid length.
[ 1142.242643][T15442] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1872'.
[ 1142.705140][T15455] loop9: detected capacity change from 0 to 1024
[ 1143.052861][T14558] hfsplus: b-tree write err: -5, ino 4
[ 1144.571063][T15486] loop9: detected capacity change from 0 to 1024
[ 1144.641343][T15486] hfsplus: bad catalog entry type
[ 1144.734638][ T6866] hfsplus: b-tree write err: -5, ino 4
[ 1144.829036][   T29] audit: type=1326 audit(1731945166.509:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15487 comm="syz.9.1890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe9ad37e759 code=0x7ffc0000
[ 1144.856086][   T29] audit: type=1326 audit(1731945166.509:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15487 comm="syz.9.1890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe9ad37e759 code=0x7ffc0000
[ 1144.923610][   T29] audit: type=1326 audit(1731945166.609:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15487 comm="syz.9.1890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=113 compat=0 ip=0x7fe9ad37e759 code=0x7ffc0000
[ 1144.983773][   T29] audit: type=1326 audit(1731945166.639:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15487 comm="syz.9.1890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe9ad37e759 code=0x7ffc0000
[ 1145.082369][   T29] audit: type=1326 audit(1731945166.639:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15487 comm="syz.9.1890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe9ad37e759 code=0x7ffc0000
[ 1164.828376][    C1] sched: DL replenish lagged too much
[ 1265.254858][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[ 1266.735820][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[ 1290.748462][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[ 1290.755487][    C1] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P15503/1:b..l P5493/1:b..l P8940/1:b..l
[ 1290.766700][    C1] rcu: 	(detected by 1, t=10503 jiffies, g=54021, q=1867379 ncpus=2)
[ 1290.774821][    C1] task:syz-executor    state:R  running task     stack:22752 pid:8940  tgid:8940  ppid:5817   flags:0x00004004
[ 1290.788803][    C1] Call Trace:
[ 1290.792162][    C1]  <TASK>
[ 1290.795190][    C1]  __schedule+0x1850/0x4c30
[ 1290.799802][    C1]  ? __pfx___schedule+0x10/0x10
[ 1290.804725][    C1]  ? mark_lock+0x9a/0x360
[ 1290.809128][    C1]  ? preempt_schedule+0xe1/0xf0
[ 1290.814039][    C1]  preempt_schedule_common+0x84/0xd0
[ 1290.819389][    C1]  preempt_schedule+0xe1/0xf0
[ 1290.824132][    C1]  ? __pfx_preempt_schedule+0x10/0x10
[ 1290.829557][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 1290.835515][    C1]  preempt_schedule_thunk+0x1a/0x30
[ 1290.840772][    C1]  _raw_spin_unlock+0x3e/0x50
[ 1290.845519][    C1]  unmap_page_range+0x37fa/0x4230
[ 1290.850642][    C1]  ? __pfx_unmap_page_range+0x10/0x10
[ 1290.856079][    C1]  ? mas_next_slot+0xdc6/0xea0
[ 1290.860905][    C1]  ? uprobe_munmap+0x183/0x460
[ 1290.865720][    C1]  ? unmap_single_vma+0x1bd/0x2b0
[ 1290.870800][    C1]  unmap_vmas+0x3cc/0x5f0
[ 1290.875201][    C1]  ? __pfx_unmap_vmas+0x10/0x10
[ 1290.880119][    C1]  ? tlb_gather_mmu_fullmm+0x160/0x210
[ 1290.885638][    C1]  exit_mmap+0x292/0xcb0
[ 1290.889953][    C1]  ? __pfx_exit_mmap+0x10/0x10
[ 1290.894794][    C1]  ? __pfx_exit_aio+0x10/0x10
[ 1290.899554][    C1]  ? uprobe_clear_state+0x271/0x290
[ 1290.904791][    C1]  ? mm_update_next_owner+0xa4/0x810
[ 1290.910132][    C1]  ? do_raw_spin_unlock+0x13c/0x8b0
[ 1290.915391][    C1]  __mmput+0x115/0x390
[ 1290.919523][    C1]  exit_mm+0x220/0x310
[ 1290.923645][    C1]  ? __pfx_exit_mm+0x10/0x10
[ 1290.928278][    C1]  ? hrtimer_try_to_cancel+0x3d1/0x410
[ 1290.933792][    C1]  ? taskstats_exit+0x326/0xa60
[ 1290.938705][    C1]  do_exit+0x9b2/0x28e0
[ 1290.942918][    C1]  ? __pfx_do_exit+0x10/0x10
[ 1290.947555][    C1]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1290.952994][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1290.959031][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1290.965410][    C1]  ? _raw_spin_lock_irq+0xdf/0x120
[ 1290.970594][    C1]  do_group_exit+0x207/0x2c0
[ 1290.975242][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1290.980499][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[ 1290.985753][    C1]  get_signal+0x16b2/0x1750
[ 1290.990327][    C1]  ? __pfx_get_signal+0x10/0x10
[ 1290.995244][    C1]  arch_do_signal_or_restart+0x96/0x860
[ 1291.000977][    C1]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 1291.007222][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1291.013267][    C1]  ? syscall_exit_to_user_mode+0xa3/0x340
[ 1291.019054][    C1]  syscall_exit_to_user_mode+0xce/0x340
[ 1291.024664][    C1]  do_syscall_64+0x100/0x230
[ 1291.029305][    C1]  ? clear_bhb_loop+0x35/0x90
[ 1291.034035][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1291.039990][    C1] RIP: 0033:0x7fc471374993
[ 1291.044452][    C1] RSP: 002b:00007ffff620ad18 EFLAGS: 00000202 ORIG_RAX: 000000000000003d
[ 1291.052920][    C1] RAX: fffffffffffffe00 RBX: 00000000000022f5 RCX: 00007fc471374993
[ 1291.060941][    C1] RDX: 0000000040000000 RSI: 00007ffff620ad2c RDI: 00000000ffffffff
[ 1291.068964][    C1] RBP: 00007ffff620ad2c R08: 0000000000000000 R09: 0000000000000000
[ 1291.076980][    C1] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000000000c
[ 1291.084996][    C1] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
[ 1291.093038][    C1]  </TASK>
[ 1291.096094][    C1] task:dhcpcd          state:R  running task     stack:22272 pid:5493  tgid:5493  ppid:1      flags:0x00000002
[ 1291.107918][    C1] Call Trace:
[ 1291.111231][    C1]  <TASK>
[ 1291.114202][    C1]  __schedule+0x1850/0x4c30
[ 1291.118773][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 1291.124988][    C1]  ? __pfx___schedule+0x10/0x10
[ 1291.129938][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1291.136011][    C1]  ? preempt_schedule_irq+0xf0/0x1c0
[ 1291.141369][    C1]  preempt_schedule_irq+0xfb/0x1c0
[ 1291.146542][    C1]  ? __pfx_preempt_schedule_irq+0x10/0x10
[ 1291.152344][    C1]  irqentry_exit+0x5e/0x90
[ 1291.156814][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1291.162846][    C1] RIP: 0010:kasan_check_range+0x5/0x290
[ 1291.168446][    C1] Code: 8e e8 0f 8a e1 ff 90 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 55 <41> 57 41 56 41 54 53 b0 01 48 85 f6 0f 84 a0 01 00 00 4c 8d 04 37
[ 1291.188108][    C1] RSP: 0018:ffffc90002f2f0e8 EFLAGS: 00000246
[ 1291.194265][    C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff82170262
[ 1291.202290][    C1] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffff88801c917a0c
[ 1291.210338][    C1] RBP: ffff88801c917a0c R08: ffffffff82170249 R09: 1ffff11003922f41
[ 1291.218381][    C1] R10: dffffc0000000000 R11: ffffed1003922f42 R12: ffff88801c9179c0
[ 1291.226411][    C1] R13: 1ffffffff34801dc R14: 0000000000000003 R15: 0000000000000004
[ 1291.234442][    C1]  ? __page_table_check_zero+0x159/0x350
[ 1291.240143][    C1]  ? __page_table_check_zero+0x172/0x350
[ 1291.245846][    C1]  __page_table_check_zero+0x172/0x350
[ 1291.251378][    C1]  free_unref_page+0xe0e/0x1140
[ 1291.256314][    C1]  __put_partials+0xeb/0x130
[ 1291.260970][    C1]  put_cpu_partial+0x17c/0x250
[ 1291.265778][    C1]  ? put_cpu_partial+0x70/0x250
[ 1291.270688][    C1]  __slab_free+0x2ea/0x3d0
[ 1291.275157][    C1]  ? __phys_addr+0xba/0x170
[ 1291.279713][    C1]  qlist_free_all+0x9a/0x140
[ 1291.284362][    C1]  kasan_quarantine_reduce+0x14f/0x170
[ 1291.289877][    C1]  __kasan_slab_alloc+0x23/0x80
[ 1291.294787][    C1]  __kmalloc_node_track_caller_noprof+0x237/0x4c0
[ 1291.301278][    C1]  ? __alloc_skb+0x1f3/0x440
[ 1291.305975][    C1]  ? __alloc_skb+0x1f3/0x440
[ 1291.310620][    C1]  kmalloc_reserve+0x111/0x2a0
[ 1291.315455][    C1]  __alloc_skb+0x1f3/0x440
[ 1291.319955][    C1]  ? __pfx___alloc_skb+0x10/0x10
[ 1291.324964][    C1]  alloc_skb_with_frags+0xc3/0x820
[ 1291.330164][    C1]  sock_alloc_send_pskb+0x91a/0xa60
[ 1291.335447][    C1]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[ 1291.341235][    C1]  ? do_raw_spin_unlock+0x13c/0x8b0
[ 1291.346494][    C1]  ? __lock_acquire+0x1397/0x2100
[ 1291.351579][    C1]  unix_dgram_sendmsg+0x6d3/0x1f80
[ 1291.356779][    C1]  ? aa_sk_perm+0x96d/0xab0
[ 1291.361348][    C1]  ? __pfx_unix_dgram_sendmsg+0x10/0x10
[ 1291.366964][    C1]  ? __lock_acquire+0x1397/0x2100
[ 1291.372045][    C1]  ? aa_sock_msg_perm+0x91/0x160
[ 1291.377050][    C1]  ? __pfx_unix_dgram_sendmsg+0x10/0x10
[ 1291.382662][    C1]  __sock_sendmsg+0x221/0x270
[ 1291.387407][    C1]  sock_write_iter+0x2d7/0x3f0
[ 1291.392251][    C1]  ? __pfx_sock_write_iter+0x10/0x10
[ 1291.397622][    C1]  do_iter_readv_writev+0x600/0x880
[ 1291.402882][    C1]  ? __pfx_do_iter_readv_writev+0x10/0x10
[ 1291.408667][    C1]  ? bpf_lsm_file_permission+0x9/0x10
[ 1291.414113][    C1]  ? security_file_permission+0x74/0x280
[ 1291.419807][    C1]  ? rw_verify_area+0x1c3/0x6f0
[ 1291.424716][    C1]  vfs_writev+0x376/0xba0
[ 1291.429114][    C1]  ? __seccomp_filter+0x4fe/0x1fe0
[ 1291.434286][    C1]  ? __pfx_vfs_writev+0x10/0x10
[ 1291.439224][    C1]  do_writev+0x1b6/0x360
[ 1291.443518][    C1]  ? __pfx_do_writev+0x10/0x10
[ 1291.448346][    C1]  ? __secure_computing+0x125/0x370
[ 1291.453598][    C1]  do_syscall_64+0xf3/0x230
[ 1291.458140][    C1]  ? clear_bhb_loop+0x35/0x90
[ 1291.462858][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1291.468799][    C1] RIP: 0033:0x7fc3e3acce03
[ 1291.473247][    C1] RSP: 002b:00007ffee38962f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[ 1291.481702][    C1] RAX: ffffffffffffffda RBX: 00007ffee3896658 RCX: 00007fc3e3acce03
[ 1291.489745][    C1] RDX: 0000000000000005 RSI: 00007ffee3896310 RDI: 000000000000000a
[ 1291.497760][    C1] RBP: 000000000000012c R08: 000000000000000a R09: 00007ffee3896350
[ 1291.505779][    C1] R10: 00007ffee3896358 R11: 0000000000000246 R12: 0000557344b83b60
[ 1291.513811][    C1] R13: 0000557336ef4f88 R14: 00000000ffffffff R15: 0000000000000001
[ 1291.521849][    C1]  </TASK>
[ 1291.524900][    C1] task:syz.9.1897      state:R  running task     stack:23608 pid:15503 tgid:15501 ppid:10640  flags:0x00004006
[ 1291.536725][    C1] Call Trace:
[ 1291.540042][    C1]  <TASK>
[ 1291.543011][    C1]  __schedule+0x1850/0x4c30
[ 1291.547592][    C1]  ? __pfx___schedule+0x10/0x10
[ 1291.552499][    C1]  ? mark_lock+0x9a/0x360
[ 1291.556888][    C1]  ? preempt_schedule+0xe1/0xf0
[ 1291.561797][    C1]  preempt_schedule_common+0x84/0xd0
[ 1291.567141][    C1]  preempt_schedule+0xe1/0xf0
[ 1291.571877][    C1]  ? __pfx_preempt_schedule+0x10/0x10
[ 1291.577301][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 1291.583258][    C1]  preempt_schedule_thunk+0x1a/0x30
[ 1291.588517][    C1]  _raw_spin_unlock+0x3e/0x50
[ 1291.593247][    C1]  unmap_page_range+0x37fa/0x4230
[ 1291.598317][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1291.604733][    C1]  ? __pfx_unmap_page_range+0x10/0x10
[ 1291.610167][    C1]  ? mas_next_slot+0xdc6/0xea0
[ 1291.614990][    C1]  ? uprobe_munmap+0x183/0x460
[ 1291.619820][    C1]  ? unmap_single_vma+0x1bd/0x2b0
[ 1291.624900][    C1]  unmap_vmas+0x3cc/0x5f0
[ 1291.629354][    C1]  ? __pfx_unmap_vmas+0x10/0x10
[ 1291.634269][    C1]  ? tlb_gather_mmu_fullmm+0x160/0x210
[ 1291.639787][    C1]  exit_mmap+0x292/0xcb0
[ 1291.644081][    C1]  ? __pfx_exit_mmap+0x10/0x10
[ 1291.648897][    C1]  ? __pfx_exit_aio+0x10/0x10
[ 1291.653641][    C1]  ? uprobe_clear_state+0x271/0x290
[ 1291.658880][    C1]  ? mm_update_next_owner+0xa4/0x810
[ 1291.664226][    C1]  ? do_raw_spin_unlock+0x13c/0x8b0
[ 1291.669476][    C1]  __mmput+0x115/0x390
[ 1291.673597][    C1]  exit_mm+0x220/0x310
[ 1291.677711][    C1]  ? __pfx_exit_mm+0x10/0x10
[ 1291.682343][    C1]  ? taskstats_exit+0x326/0xa60
[ 1291.687238][    C1]  do_exit+0x9b2/0x28e0
[ 1291.691446][    C1]  ? __pfx_do_exit+0x10/0x10
[ 1291.696086][    C1]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1291.701522][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1291.707547][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1291.713922][    C1]  ? _raw_spin_lock_irq+0xdf/0x120
[ 1291.719113][    C1]  do_group_exit+0x207/0x2c0
[ 1291.723739][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1291.729000][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[ 1291.734275][    C1]  get_signal+0x16b2/0x1750
[ 1291.738850][    C1]  ? __pfx_get_signal+0x10/0x10
[ 1291.743758][    C1]  arch_do_signal_or_restart+0x96/0x860
[ 1291.749349][    C1]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 1291.755572][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1291.761612][    C1]  ? syscall_exit_to_user_mode+0xa3/0x340
[ 1291.767395][    C1]  syscall_exit_to_user_mode+0xce/0x340
[ 1291.773002][    C1]  do_syscall_64+0x100/0x230
[ 1291.777642][    C1]  ? clear_bhb_loop+0x35/0x90
[ 1291.782367][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1291.788313][    C1] RIP: 0033:0x7fe9ad37e759
[ 1291.792765][    C1] RSP: 002b:00007fe9ae25f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1291.801242][    C1] RAX: fffffffffffffe00 RBX: 00007fe9ad535f80 RCX: 00007fe9ad37e759
[ 1291.809259][    C1] RDX: 0000000030004001 RSI: 0000000020000080 RDI: 0000000000000003
[ 1291.817272][    C1] RBP: 00007fe9ad3f175e R08: 0000000000000000 R09: 0000000000000000
[ 1291.825332][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1291.833349][    C1] R13: 0000000000000000 R14: 00007fe9ad535f80 R15: 00007fff7fbcdcc8
[ 1291.841383][    C1]  </TASK>
[ 1291.844432][    C1] rcu: rcu_preempt kthread starved for 10595 jiffies! g54021 f0x2 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
[ 1291.855667][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[ 1291.865672][    C1] rcu: RCU grace-period kthread stack dump:
[ 1291.871596][    C1] task:rcu_preempt     state:R  running task     stack:25008 pid:17    tgid:17    ppid:2      flags:0x00004000
[ 1291.883442][    C1] Call Trace:
[ 1291.886758][    C1]  <TASK>
[ 1291.889723][    C1]  __schedule+0x1850/0x4c30
[ 1291.894306][    C1]  ? __pfx___schedule+0x10/0x10
[ 1291.899208][    C1]  ? __pfx_lock_release+0x10/0x10
[ 1291.904280][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1291.910659][    C1]  ? schedule+0x90/0x320
[ 1291.914947][    C1]  schedule+0x14b/0x320
[ 1291.919154][    C1]  schedule_timeout+0x15a/0x290
[ 1291.924059][    C1]  ? __pfx_schedule_timeout+0x10/0x10
[ 1291.929476][    C1]  ? __pfx_process_timeout+0x10/0x10
[ 1291.934818][    C1]  ? prepare_to_swait_event+0x330/0x350
[ 1291.940421][    C1]  rcu_gp_fqs_loop+0x2df/0x1330
[ 1291.945307][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[ 1291.950584][    C1]  ? __pfx_rcu_watching_snap_recheck+0x10/0x10
[ 1291.956785][    C1]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[ 1291.962145][    C1]  ? finish_swait+0xd4/0x1e0
[ 1291.966798][    C1]  rcu_gp_kthread+0xa7/0x3b0
[ 1291.971439][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1291.976688][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 1291.982639][    C1]  ? __kthread_parkme+0x169/0x1d0
[ 1291.987718][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1291.992967][    C1]  kthread+0x2f0/0x390
[ 1291.997095][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1292.002347][    C1]  ? __pfx_kthread+0x10/0x10
[ 1292.006987][    C1]  ret_from_fork+0x4b/0x80
[ 1292.011453][    C1]  ? __pfx_kthread+0x10/0x10
[ 1292.016081][    C1]  ret_from_fork_asm+0x1a/0x30
[ 1292.020898][    C1]  </TASK>
[ 1292.023948][    C1] rcu: Stack dump where RCU GP kthread last ran:
[ 1292.030396][    C1] CPU: 1 UID: 0 PID: 24 Comm: ksoftirqd/1 Not tainted 6.12.0-next-20241118-syzkaller #0
[ 1292.040156][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[ 1292.050249][    C1] RIP: 0010:kasan_check_range+0x5/0x290
[ 1292.055892][    C1] Code: 8e e8 0f 8a e1 ff 90 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 55 <41> 57 41 56 41 54 53 b0 01 48 85 f6 0f 84 a0 01 00 00 4c 8d 04 37
[ 1292.075540][    C1] RSP: 0018:ffffc900001e6850 EFLAGS: 00000246
[ 1292.081659][    C1] RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffffff8994caad
[ 1292.089671][    C1] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff90186370
[ 1292.097686][    C1] RBP: 0000000000000001 R08: ffffffff8994ca88 R09: 1ffffffff2030c6e
[ 1292.105700][    C1] R10: dffffc0000000000 R11: fffffbfff2030c6f R12: ffff88822a140a58
[ 1292.113740][    C1] R13: ffff88822a140a00 R14: 0000000000000028 R15: dffffc0000000000
[ 1292.121771][    C1] FS:  0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[ 1292.130748][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1292.137375][    C1] CR2: 00007fb6b85abd99 CR3: 0000000051fe6000 CR4: 00000000003526f0
[ 1292.145400][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1292.153424][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1292.161447][    C1] Call Trace:
[ 1292.164759][    C1]  <IRQ>
[ 1292.167636][    C1]  ? rcu_check_gp_kthread_starvation+0x278/0x310
[ 1292.174022][    C1]  ? print_other_cpu_stall+0x1481/0x15c0
[ 1292.179715][    C1]  ? __pfx_print_other_cpu_stall+0x10/0x10
[ 1292.185583][    C1]  ? kvm_check_and_clear_guest_paused+0x6a/0xd0
[ 1292.191882][    C1]  ? rcu_sched_clock_irq+0xa26/0x10e0
[ 1292.197319][    C1]  ? __pfx_rcu_sched_clock_irq+0x10/0x10
[ 1292.203012][    C1]  ? update_process_times+0x242/0x2f0
[ 1292.208429][    C1]  ? tick_nohz_handler+0x37c/0x500
[ 1292.213580][    C1]  ? __pfx_tick_nohz_handler+0x10/0x10
[ 1292.219092][    C1]  ? __hrtimer_run_queues+0x551/0xd50
[ 1292.224536][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[ 1292.230302][    C1]  ? sched_clock+0x4a/0x70
[ 1292.234766][    C1]  ? read_tsc+0x9/0x20
[ 1292.238884][    C1]  ? ktime_get_update_offsets_now+0x393/0x3b0
[ 1292.245006][    C1]  ? hrtimer_interrupt+0x403/0xa40
[ 1292.250187][    C1]  ? __sysvec_apic_timer_interrupt+0x110/0x420
[ 1292.256388][    C1]  ? sysvec_apic_timer_interrupt+0xa1/0xc0
[ 1292.262242][    C1]  </IRQ>
[ 1292.265198][    C1]  <TASK>
[ 1292.268157][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1292.274360][    C1]  ? trace_netif_rx_exit+0x28/0x210
[ 1292.279608][    C1]  ? trace_netif_rx_exit+0x4d/0x210
[ 1292.284858][    C1]  ? kasan_check_range+0x5/0x290
[ 1292.289856][    C1]  trace_netif_rx_exit+0x4d/0x210
[ 1292.294933][    C1]  __netif_rx+0x81/0xc0
[ 1292.299159][    C1]  loopback_xmit+0x454/0x6b0
[ 1292.303790][    C1]  ? validate_xmit_skb+0x9b8/0xff0
[ 1292.308958][    C1]  dev_hard_start_xmit+0x27a/0x7e0
[ 1292.314135][    C1]  __dev_queue_xmit+0x1b73/0x3f50
[ 1292.319224][    C1]  ? __dev_queue_xmit+0x2f4/0x3f50
[ 1292.324387][    C1]  ? __pfx___dev_queue_xmit+0x10/0x10
[ 1292.329846][    C1]  ? ip_finish_output2+0xa14/0x1390
[ 1292.335126][    C1]  ? ip_finish_output2+0x45f/0x1390
[ 1292.340374][    C1]  ip_finish_output2+0xd41/0x1390
[ 1292.345448][    C1]  ? ip_finish_output2+0x45f/0x1390
[ 1292.350704][    C1]  ? __pfx_ip_finish_output2+0x10/0x10
[ 1292.356212][    C1]  ? ip_skb_dst_mtu+0x6ba/0x9b0
[ 1292.361111][    C1]  ? __ip_finish_output+0x349/0x400
[ 1292.366356][    C1]  synproxy_send_client_synack+0x8a4/0xe20
[ 1292.372219][    C1]  ? __pfx_synproxy_send_client_synack+0x10/0x10
[ 1292.378590][    C1]  ? synproxy_pernet+0x45/0x270
[ 1292.383496][    C1]  nft_synproxy_eval_v4+0x3ca/0x610
[ 1292.388744][    C1]  ? __pfx_nft_synproxy_eval_v4+0x10/0x10
[ 1292.394511][    C1]  ? nf_ip_checksum+0x13a/0x500
[ 1292.399405][    C1]  nft_synproxy_do_eval+0x362/0xa60
[ 1292.404656][    C1]  ? __pfx_nft_synproxy_do_eval+0x10/0x10
[ 1292.410414][    C1]  ? ip_vs_conn_hashkey_param+0x3ad/0x6b0
[ 1292.416182][    C1]  ? unwind_next_frame+0x193b/0x22d0
[ 1292.421528][    C1]  ? ip_vs_conn_out_get+0xba6/0xc00
[ 1292.426783][    C1]  nft_do_chain+0x4ad/0x1da0
[ 1292.431428][    C1]  ? tcp_conn_schedule+0x45e/0x880
[ 1292.436580][    C1]  ? __pfx_nft_do_chain+0x10/0x10
[ 1292.441699][    C1]  ? __pfx_nf_nat_inet_fn+0x10/0x10
[ 1292.446945][    C1]  ? __pfx_ip_vs_in_hook+0x10/0x10
[ 1292.452112][    C1]  nft_do_chain_inet+0x418/0x6b0
[ 1292.457098][    C1]  ? __pfx_nft_do_chain_inet+0x10/0x10
[ 1292.462627][    C1]  ? __pfx_nft_do_chain_inet+0x10/0x10
[ 1292.468155][    C1]  nf_hook_slow+0xc3/0x220
[ 1292.472708][    C1]  ? __pfx_ip_local_deliver_finish+0x10/0x10
[ 1292.478740][    C1]  ? __pfx_ip_local_deliver_finish+0x10/0x10
[ 1292.484768][    C1]  NF_HOOK+0x29e/0x450
[ 1292.488888][    C1]  ? NF_HOOK+0x9a/0x450
[ 1292.493080][    C1]  ? __pfx_NF_HOOK+0x10/0x10
[ 1292.497733][    C1]  ? __pfx_ip_local_deliver_finish+0x10/0x10
[ 1292.503769][    C1]  ? ip_rcv_finish+0x406/0x560
[ 1292.508593][    C1]  ? __pfx_ip_rcv_finish+0x10/0x10
[ 1292.513754][    C1]  NF_HOOK+0x3a4/0x450
[ 1292.517885][    C1]  ? NF_HOOK+0x9a/0x450
[ 1292.522084][    C1]  ? __pfx_NF_HOOK+0x10/0x10
[ 1292.526736][    C1]  ? ip_rcv_core+0x801/0xd10
[ 1292.531382][    C1]  ? __pfx_ip_rcv_finish+0x10/0x10
[ 1292.536552][    C1]  ? __pfx_ip_rcv+0x10/0x10
[ 1292.541110][    C1]  __netif_receive_skb+0x2bf/0x650
[ 1292.546284][    C1]  ? __pfx_lock_acquire+0x10/0x10
[ 1292.551355][    C1]  ? __pfx___netif_receive_skb+0x10/0x10
[ 1292.557030][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1292.563053][    C1]  ? __pfx_lock_release+0x10/0x10
[ 1292.568115][    C1]  ? _raw_spin_lock_irq+0xdf/0x120
[ 1292.573296][    C1]  process_backlog+0x662/0x15b0
[ 1292.578188][    C1]  ? process_backlog+0x33b/0x15b0
[ 1292.583261][    C1]  ? __pfx_process_backlog+0x10/0x10
[ 1292.588585][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1292.594632][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1292.601004][    C1]  __napi_poll+0xcb/0x490
[ 1292.605389][    C1]  net_rx_action+0x89b/0x1240
[ 1292.610127][    C1]  ? __pfx_net_rx_action+0x10/0x10
[ 1292.615284][    C1]  ? __pfx_tmigr_handle_remote+0x10/0x10
[ 1292.620992][    C1]  handle_softirqs+0x2c5/0x980
[ 1292.625810][    C1]  ? run_ksoftirqd+0xca/0x130
[ 1292.630545][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[ 1292.635876][    C1]  ? preempt_schedule+0xe1/0xf0
[ 1292.640778][    C1]  run_ksoftirqd+0xca/0x130
[ 1292.645340][    C1]  ? __pfx_run_ksoftirqd+0x10/0x10
[ 1292.650497][    C1]  ? __pfx_ksoftirqd_should_run+0x10/0x10
[ 1292.656261][    C1]  ? smpboot_thread_fn+0x2d3/0xa30
[ 1292.661412][    C1]  ? smpboot_thread_fn+0x4fb/0xa30
[ 1292.666564][    C1]  ? smpboot_thread_fn+0x656/0xa30
[ 1292.671751][    C1]  ? __pfx_run_ksoftirqd+0x10/0x10
[ 1292.676916][    C1]  smpboot_thread_fn+0x544/0xa30
[ 1292.681905][    C1]  ? smpboot_thread_fn+0x4e/0xa30
[ 1292.686987][    C1]  ? __pfx_smpboot_thread_fn+0x10/0x10
[ 1292.692501][    C1]  kthread+0x2f0/0x390
[ 1292.696639][    C1]  ? __pfx_smpboot_thread_fn+0x10/0x10
[ 1292.702147][    C1]  ? __pfx_kthread+0x10/0x10
[ 1292.706783][    C1]  ret_from_fork+0x4b/0x80
[ 1292.711235][    C1]  ? __pfx_kthread+0x10/0x10
[ 1292.715864][    C1]  ret_from_fork_asm+0x1a/0x30
[ 1292.720772][    C1]  </TASK>
[ 1300.604248][ T1292] ieee802154 phy0 wpan0: encryption failed: -22