last executing test programs:

2m28.492130564s ago: executing program 1 (id=26):
socket$tipc(0x1e, 0x5, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_GET(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000280)=ANY=[@ANYBLOB="18473c4a7f000000000000000000000004000000000000000000"], 0x18}, 0x1, 0x0, 0x0, 0x4c010}, 0x14)
r1 = socket(0x200000000000011, 0x2, 0x4)
bind$packet(r1, &(0x7f0000000080)={0x11, 0x800, 0x0, 0x1, 0x0, 0x6, @random="518440db9de1"}, 0x14)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x4700c1, 0x0)
r2 = openat$mice(0xffffffffffffff9c, &(0x7f0000000140), 0x20080)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r3 = socket$kcm(0x10, 0x2, 0x0)
recvmsg(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000a40)=[{&(0x7f00000002c0)=""/110, 0x6e}, {&(0x7f00000047c0)=""/4060, 0xfdc}, {&(0x7f00000037c0)=""/4069, 0xfe5}, {&(0x7f0000000340)=""/253, 0xfd}, {&(0x7f0000000140)=""/120, 0x78}, {&(0x7f0000001780)=""/14, 0xe}, {&(0x7f00000011c0)=""/209, 0xd1}, {&(0x7f00000012c0)=""/126, 0x7e}], 0x8}, 0x40000100)
sendmsg$inet(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000900)="5c00000012006bab9a3fe3d86e17aa0a046b4877c4aaf68187bae53dca2ba35bda6a876c1d0048007ea608649e7524765f0ef82e3c0000a705259a3651f60a84c9f4d4938037e70e4509c5bb00000000e513aeac9bf2bee150d5fe86", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x20000000)
recvmsg$kcm(r3, &(0x7f0000000e80)={0x0, 0x0, 0x0}, 0x40000002)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r5, &(0x7f00000000c0), 0x10)
r6 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f00000004c0)={'vcan0\x00', <r7=>0x0})
sendmsg$can_bcm(r5, &(0x7f0000000240)={&(0x7f0000000000)={0x1d, r7}, 0x10, &(0x7f0000000200)={&(0x7f0000000180)={0x5, 0x580, 0x3ff, {0x0, 0x2710}, {}, {0x3}, 0x1, @can={{0x3, 0x0, 0x1, 0x1}, 0x5, 0x0, 0x0, 0x0, "a3bb645553fbf26c"}}, 0x48}, 0x1, 0x0, 0x0, 0x2}, 0x10)
close_range(r4, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x18)
r8 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
unshare(0x2a000000)
r9 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r9, 0x6, 0x0, 0x0, 0x0)
r10 = fsmount(r9, 0x0, 0x4)
r11 = openat$cgroup_pressure(r10, &(0x7f0000000140)='memory.pressure\x00', 0x2, 0x0)
read(r11, &(0x7f0000000040)=""/252, 0xfc)

2m28.222987065s ago: executing program 1 (id=27):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x442, 0x1ff)
write$binfmt_elf64(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c460d04000c028000000000000003003e00"], 0x51)
close(r0)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)
creat(&(0x7f0000000080)='./file0\x00', 0x2)
mount(&(0x7f0000000180)=@rnullb, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='jfs\x00', 0x8010, 0x0)

2m28.129174416s ago: executing program 1 (id=28):
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5)
close(0x4)
syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/ipc\x00')
unshare(0x6a060000)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0)
r0 = socket(0x9, 0x3, 0x0)
ioctl$sock_netrom_SIOCADDRT(r0, 0x6180, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040))
sendmsg$can_bcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[], 0x80}, 0x1, 0x0, 0x0, 0x20000003}, 0x0)

2m27.827205386s ago: executing program 1 (id=29):
openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0x141342, 0x0)
syz_clone(0x100411, 0x0, 0x0, 0x0, 0x0, 0x0)
ioprio_set$uid(0x3, 0x0, 0x0)
mkdir(0x0, 0x50)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x2f}, 0x803}, 0x1c)
connect$inet6(r3, &(0x7f0000000480)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast1}}, 0x1c)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_MSRS(r4, 0x4008ae89, &(0x7f0000001640)=ANY=[@ANYBLOB="01000000000000002100004000000000ff"])
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
syz_open_dev$vbi(&(0x7f0000000000), 0x2, 0x2)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000004200)={0x50, 0x0, 0x0, {0x7, 0x1f, 0x0, 0x2066012, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000}}, 0x50)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r6=>0x0})
wait4(0x0, 0x0, 0x8, 0x0)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010026bd7000000000003b00000008000300", @ANYRES32=r6, @ANYBLOB="4a00330000a810000802110000010802110000005050505050509c00000000800000020000002d1a80000a0f0000000000000009000901000100000000000000000edd06e708000000b8000097c8dc1576ecd4f6c426d51f3d67d4ebdc57f5657f55ddbb8ee99e96cd23c34fb63b9fdc15a2afe639c1345bcca76bdd391bda011d04d380c16e34ee7385bceb91ea125779f52ff0efeba391da72a8e5c81f9e93e87b9b6962d5923716287b5329ddada28d265503b18a287768b68568edddf750ecebb162418eef4dbed4d1268e720c245edc24662c47ee304edf087aa7b645578131736b51"], 0x68}, 0x1, 0x0, 0x0, 0xc0}, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x40)
openat$cgroup_ro(r8, &(0x7f0000000100)='blkio.throttle.io_service_bytes_recursive\x00', 0x0, 0x0)
getdents64(r8, 0x0, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000006380)="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", 0x2000, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x3, &(0x7f00000000c0)=0x7)

2m27.299436269s ago: executing program 1 (id=33):
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5)
close(0x4)
syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/ipc\x00')
unshare(0x6a060000)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0)
r0 = socket(0x8, 0x3, 0x0)
ioctl$sock_netrom_SIOCADDRT(r0, 0x6180, 0x0)
sendmsg$can_bcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[], 0x80}, 0x1, 0x0, 0x0, 0x20000003}, 0x0) (fail_nth: 4)

2m26.863148996s ago: executing program 1 (id=37):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r1, 0x2000)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_mtu(r2, 0x0, 0xa, 0x0, 0x0)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x880}, 0x890)
fallocate(r1, 0x11, 0x0, 0x100000000007bffd)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$BTRFS_IOC_SPACE_INFO(r1, 0xc0109414, &(0x7f0000003280)={0x884, 0x100, ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']})
connect$inet6(r3, &(0x7f0000000040)={0xa, 0x5e1e, 0x0, @mcast2, 0x1}, 0x1c)
getsockopt$sock_buf(r3, 0x1, 0x19, &(0x7f0000002f80)=""/217, &(0x7f0000003080)=0xd9)
r4 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x29202, 0x0)
syz_usb_connect$hid(0x5, 0x36, &(0x7f0000003240)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x40, 0x5ac, 0x247, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x0, 0x10, 0xe2, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x1, 0x2, 0xfa, {0x9, 0x21, 0x7, 0x2, 0x1, {0x22, 0x19b}}, {{{0x9, 0x5, 0x81, 0x3, 0x20, 0x93, 0x8, 0x81}}}}}]}}]}}, 0x0)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r1, 0x8982, &(0x7f00000000c0)={0x1, 'geneve1\x00', {}, 0xff0a})
write(r4, &(0x7f0000000000)="fb196dec69a10b22", 0x8)

2m20.333153579s ago: executing program 2 (id=73):
sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0xc9, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e1f, 0x2, @ipv4={'\x00', '\xff\xff', @local}, 0x1}, 0x1c)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20014840}, 0xc010)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b000000", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

2m20.071598103s ago: executing program 2 (id=75):
sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0xc9, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
connect$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4e21, 0xc, @loopback, 0xb6}, 0x1c)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="0c0100000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400fc0000000000000000000000000000000c00028005000100000000003c0002800c00028005000100000000002c000180140003000000000000000000000000000000000114000400fe80"], 0x10c}}, 0x0)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00'})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, 0x0}, 0x0)

2m19.85425736s ago: executing program 2 (id=76):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x42901, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="034886dd0900300003001412000060ce902d9f0c110081e949b93897bc3b0000000000007d01ff020000001200000000000000000001"], 0xfdef)

2m19.579981573s ago: executing program 2 (id=78):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
connect$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4e21, 0xc, @loopback, 0xb6}, 0x1c)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e1f, 0x2, @ipv4={'\x00', '\xff\xff', @local}, 0x1}, 0x1c)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), r0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="0c0100000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400fc0000000000000000000000000000000c00028005000100000000003c0002800c00028005000100000000002c000180140003000000000000000000000000000000000114000400fe8000000000000000000000000000aa08000740000000007800068014000500fc"], 0x10c}}, 0x0)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000006c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a1c000000120a0101000000000000000005000005080003400000000964000000090a03000000000000000000030000090900010001007a300000000008000440000000000900020073"], 0xcc}, 0x1, 0x0, 0x0, 0x20014840}, 0xc010)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb0958730", 0x4c}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

2m19.518351188s ago: executing program 2 (id=79):
r0 = socket$kcm(0xa, 0x3, 0x3a)
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000000)=@l2tp6={0xa, 0x0, 0xfc000000, @loopback={0x0, 0xac14140c}, 0x900}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000140)="8bcd", 0xffe3}], 0x1, 0x0, 0x0, 0x900}, 0x60)

2m19.374329728s ago: executing program 2 (id=80):
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5)
close(0x4)
syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/ipc\x00')
unshare(0x6a060000)
socket$key(0xf, 0x3, 0x2)
socket$key(0xf, 0x3, 0x2)
r0 = socket(0x8, 0x3, 0x0)
ioctl$sock_netrom_SIOCADDRT(r0, 0x6180, 0x0)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000044082, 0x0)
fallocate(r2, 0x1, 0x0, 0x7c000)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
setsockopt$inet_sctp_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000040)={0x400, 0x6, 0x10, 0x3}, 0x8)
setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f0000000080)={0x7f, 0x221, 0x203, 0xa5, 0x45ae, 0x4, 0xfffffffd, 0xa2f}, 0x20)
sendto$inet(r1, &(0x7f0000000100)="ab", 0x1, 0x2000c8d4, &(0x7f00000000c0)={0x2, 0x4e22, @local}, 0x10)
sendmsg$can_bcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[], 0x80}, 0x1, 0x0, 0x0, 0x20000003}, 0x0)

2m11.722911406s ago: executing program 32 (id=37):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r1, 0x2000)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_mtu(r2, 0x0, 0xa, 0x0, 0x0)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x880}, 0x890)
fallocate(r1, 0x11, 0x0, 0x100000000007bffd)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$BTRFS_IOC_SPACE_INFO(r1, 0xc0109414, &(0x7f0000003280)={0x884, 0x100, ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']})
connect$inet6(r3, &(0x7f0000000040)={0xa, 0x5e1e, 0x0, @mcast2, 0x1}, 0x1c)
getsockopt$sock_buf(r3, 0x1, 0x19, &(0x7f0000002f80)=""/217, &(0x7f0000003080)=0xd9)
r4 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x29202, 0x0)
syz_usb_connect$hid(0x5, 0x36, &(0x7f0000003240)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x40, 0x5ac, 0x247, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x0, 0x10, 0xe2, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x1, 0x2, 0xfa, {0x9, 0x21, 0x7, 0x2, 0x1, {0x22, 0x19b}}, {{{0x9, 0x5, 0x81, 0x3, 0x20, 0x93, 0x8, 0x81}}}}}]}}]}}, 0x0)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r1, 0x8982, &(0x7f00000000c0)={0x1, 'geneve1\x00', {}, 0xff0a})
write(r4, &(0x7f0000000000)="fb196dec69a10b22", 0x8)

2m4.21373913s ago: executing program 33 (id=80):
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5)
close(0x4)
syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/ipc\x00')
unshare(0x6a060000)
socket$key(0xf, 0x3, 0x2)
socket$key(0xf, 0x3, 0x2)
r0 = socket(0x8, 0x3, 0x0)
ioctl$sock_netrom_SIOCADDRT(r0, 0x6180, 0x0)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000044082, 0x0)
fallocate(r2, 0x1, 0x0, 0x7c000)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
setsockopt$inet_sctp_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000040)={0x400, 0x6, 0x10, 0x3}, 0x8)
setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f0000000080)={0x7f, 0x221, 0x203, 0xa5, 0x45ae, 0x4, 0xfffffffd, 0xa2f}, 0x20)
sendto$inet(r1, &(0x7f0000000100)="ab", 0x1, 0x2000c8d4, &(0x7f00000000c0)={0x2, 0x4e22, @local}, 0x10)
sendmsg$can_bcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[], 0x80}, 0x1, 0x0, 0x0, 0x20000003}, 0x0)

1m29.202369988s ago: executing program 3 (id=317):
r0 = syz_open_dev$video(&(0x7f0000000000), 0x8, 0x802)
ioctl$VIDIOC_EXPBUF(r0, 0xc0405610, &(0x7f0000000040)={0x8, 0x8, 0x7e, 0x80080})
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$inet(0x2, 0x5, 0x2)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='dyn'])
chdir(&(0x7f0000002300)='./file0\x00')
stat(&(0x7f0000000700)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_NET_GET(r4, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="000126bd7000fbdbdf250e000000"], 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x4040004)
sendmsg$NFT_BATCH(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000940)=ANY=[@ANYRES16=r3, @ANYRES64=r1, @ANYRES16=r1, @ANYRES8=r2, @ANYRESDEC=r4, @ANYBLOB="b74a11e34441d0e65bceb46cf14870057a15a502f4099c7f446a2b204881df19a181be830b4ad5141a229fdb472bf467d1357876500d162ff77df1b16dbff6686a12ec17d971764a7daef0c9aa4a1016567924936a11a56af369a289bbe2420ff506e42e910bd69cbf52d3e296496b304a81bda4de88b1c54e94780d388c1e5cbabd229a77437467b228eee8be11ac52a67e00a26dfafd2ec66bc9", @ANYBLOB="94d0bbf18a25f4a33a54a769651c2720ee7d8a9e099e8053a13c9047b060c7a48badc7c355e65bf4cb927669f012a9a264d9b1acb7d43f354461c880cad0e9fe6c937badfe40f24aab9acbba2790179311cc27a1145f54616e1380635172d21642ebb0846b0e70f1024440fbd5dfd35347f0dd518730580476da2fa5f3622cc9c374c188964c26342561a635e76a0ed5194ec9370363b7f6f18e596d38a855a5812348cb0c6c9b572d441277c415f951", @ANYBLOB="2177b96d68bd5a735a1a157e1d316dd9366544db39632997bac8327841b11bce52e3f548d8548b63176c87313e2dc4ddecb59615a1ab36a5bbaad2f54d4db0c6b42f0c94fad927ff0712ee33402c430fb658185b5d2edc99cb3a8661f53a5b460a552b7a27ff760a0d2250dc4838e183062a58c1427984be3c539ed35c6cec9cb119175b9e014fe5d01a327420690cd47bc4300621fb7190c6e6d1f77d195d9d58e4bb92"], 0x28}, 0x1, 0x0, 0x0, 0x850}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r5, 0xc0285700, &(0x7f0000000080)={0xffffffff, "ff0f000000000000f5a72d866b0000000000f0ffdefe00"})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r6 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r6, 0xc0184800, &(0x7f0000000340)={0x0, <r7=>r6, 0x2})
ioctl$DMA_BUF_SET_NAME_A(r7, 0x40086203, &(0x7f00000001c0)='\x02\x00\x00\x00\x05\x00\x00\x00-control\x00')
ioctl$DMA_BUF_IOCTL_SYNC(r7, 0x40086200, &(0x7f0000000540)=0x1)
sendmsg$IPCTNL_MSG_CT_GET_STATS(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x5, 0x1, 0x401, 0x0, 0x0, {0x3, 0x0, 0x9}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x50)
sendmsg$NFNL_MSG_CTHELPER_GET(r1, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="2c00800001090104000000000000e4ff010000020c00048008000140000000040900010073797a3100000000"], 0x2c}, 0x1, 0x0, 0x0, 0x20008810}, 0x20000802)
chdir(&(0x7f0000000300)='./file0\x00')

1m28.678198958s ago: executing program 3 (id=322):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x1)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB='huge=always,mode=000'])
r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
unshare(0x22020600)
r3 = syz_open_dev$video4linux(&(0x7f0000000540), 0x0, 0x0)
ioctl$VIDIOC_TRY_ENCODER_CMD(r3, 0xc0305602, &(0x7f0000000400)={0x0, 0x0, [0x0, 0x2000]})
ioctl$sock_ifreq(r2, 0x8990, &(0x7f0000000180)={'bond0\x00', @ifru_names='rose0\x00'})
ioctl$KVM_SET_IRQCHIP(r1, 0x4048aec9, &(0x7f0000000380)={0x3, 0x0, @ioapic={0x2, 0x2, 0x101, 0x5, 0x0, [{0xd, 0x9, 0x7, '\x00', 0x1}, {0x6, 0x2, 0x26, '\x00', 0xfc}, {0x2, 0xef, 0xd, '\x00', 0xee}, {0xfb, 0x7, 0xd}, {0x13, 0x9, 0xf, '\x00', 0x62}, {0x0, 0x3, 0x5, '\x00', 0xd3}, {0xf, 0x0, 0x8, '\x00', 0x4}, {0x9, 0xdb, 0x1}, {0x81, 0x23, 0x5, '\x00', 0x2}, {0xde, 0x20, 0x3}, {0x40, 0x4, 0x90, '\x00', 0x1}, {0xf5, 0x5, 0x4, '\x00', 0xb5}, {0x7, 0x3, 0x2b, '\x00', 0x6}, {0x4, 0x0, 0x0, '\x00', 0xe9}, {0x10, 0x39, 0x40, '\x00', 0xcf}, {0x6c, 0x3f, 0x0, '\x00', 0x72}, {0xff, 0x9, 0x4, '\x00', 0xe}, {0x7, 0xff, 0x8, '\x00', 0x7}, {0xf, 0x7, 0x5}, {0x1, 0x6, 0x9}, {0x4, 0x6, 0x1, '\x00', 0x49}, {0xee, 0x2, 0x91, '\x00', 0xba}, {0x2, 0x8, 0x2, '\x00', 0xc3}, {0x8, 0x9, 0x54, '\x00', 0x9}]}})
r4 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r5 = syz_open_dev$vim2m(&(0x7f0000000040), 0x10001, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r5, 0xc008561c, &(0x7f0000000000)={0x980914, 0x8})
personality(0x5400004)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r6 = socket$kcm(0x2d, 0x2, 0x0)
recvmsg$can_bcm(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000001c0)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @private0}}}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000240)=""/119, 0x77}, {&(0x7f00000005c0)=""/242, 0xf2}, {&(0x7f00000006c0)=""/182, 0xb6}, {&(0x7f0000000780)=""/197, 0xc5}], 0x4, &(0x7f0000000100)=""/12, 0xc}, 0x40)
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f0000000340)={r6})
mmap(&(0x7f0000787000/0x4000)=nil, 0x4000, 0xb, 0x202812, r4, 0x7dfff000)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x1) (async)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB='huge=always,mode=000']) (async)
syz_init_net_socket$x25(0x9, 0x5, 0x0) (async)
unshare(0x22020600) (async)
syz_open_dev$video4linux(&(0x7f0000000540), 0x0, 0x0) (async)
ioctl$VIDIOC_TRY_ENCODER_CMD(r3, 0xc0305602, &(0x7f0000000400)={0x0, 0x0, [0x0, 0x2000]}) (async)
ioctl$sock_ifreq(r2, 0x8990, &(0x7f0000000180)={'bond0\x00', @ifru_names='rose0\x00'}) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x4048aec9, &(0x7f0000000380)={0x3, 0x0, @ioapic={0x2, 0x2, 0x101, 0x5, 0x0, [{0xd, 0x9, 0x7, '\x00', 0x1}, {0x6, 0x2, 0x26, '\x00', 0xfc}, {0x2, 0xef, 0xd, '\x00', 0xee}, {0xfb, 0x7, 0xd}, {0x13, 0x9, 0xf, '\x00', 0x62}, {0x0, 0x3, 0x5, '\x00', 0xd3}, {0xf, 0x0, 0x8, '\x00', 0x4}, {0x9, 0xdb, 0x1}, {0x81, 0x23, 0x5, '\x00', 0x2}, {0xde, 0x20, 0x3}, {0x40, 0x4, 0x90, '\x00', 0x1}, {0xf5, 0x5, 0x4, '\x00', 0xb5}, {0x7, 0x3, 0x2b, '\x00', 0x6}, {0x4, 0x0, 0x0, '\x00', 0xe9}, {0x10, 0x39, 0x40, '\x00', 0xcf}, {0x6c, 0x3f, 0x0, '\x00', 0x72}, {0xff, 0x9, 0x4, '\x00', 0xe}, {0x7, 0xff, 0x8, '\x00', 0x7}, {0xf, 0x7, 0x5}, {0x1, 0x6, 0x9}, {0x4, 0x6, 0x1, '\x00', 0x49}, {0xee, 0x2, 0x91, '\x00', 0xba}, {0x2, 0x8, 0x2, '\x00', 0xc3}, {0x8, 0x9, 0x54, '\x00', 0x9}]}}) (async)
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0) (async)
syz_open_dev$vim2m(&(0x7f0000000040), 0x10001, 0x2) (async)
ioctl$vim2m_VIDIOC_S_CTRL(r5, 0xc008561c, &(0x7f0000000000)={0x980914, 0x8}) (async)
personality(0x5400004) (async)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) (async)
socket$kcm(0x2d, 0x2, 0x0) (async)
recvmsg$can_bcm(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000001c0)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @private0}}}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000240)=""/119, 0x77}, {&(0x7f00000005c0)=""/242, 0xf2}, {&(0x7f00000006c0)=""/182, 0xb6}, {&(0x7f0000000780)=""/197, 0xc5}], 0x4, &(0x7f0000000100)=""/12, 0xc}, 0x40) (async)
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f0000000340)={r6}) (async)
mmap(&(0x7f0000787000/0x4000)=nil, 0x4000, 0xb, 0x202812, r4, 0x7dfff000) (async)

1m28.154574462s ago: executing program 3 (id=327):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_GET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="18000000011401e827bd7000fedbdf25080001"], 0x18}, 0x1, 0x0, 0x0, 0x40001}, 0x10) (fail_nth: 6)

1m27.937594927s ago: executing program 3 (id=329):
sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0xc9, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
connect$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4e21, 0xc, @loopback, 0xb6}, 0x1c)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="0c0100000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400fc0000000000000000000000000000000c00028005000100000000003c0002800c00028005000100000000002c000180140003000000000000000000000000000000000114000400fe80"], 0x10c}}, 0x0)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff08021100"], 0x6f4}}, 0x0)

1m27.707414846s ago: executing program 3 (id=331):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
connect$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4e21, 0xc, @loopback, 0xb6}, 0x1c)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e1f, 0x2, @ipv4={'\x00', '\xff\xff', @local}, 0x1}, 0x1c)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), r0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r2 = accept4(r1, 0x0, 0x0, 0x800)
r3 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000340), r2)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r2, &(0x7f0000000640)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000600)={&(0x7f0000000540)={0x6c, r3, 0x200, 0x70bd28, 0x25dfdbfd, {}, [@L2TP_ATTR_UDP_DPORT={0x6, 0x1b, 0x4e24}, @L2TP_ATTR_UDP_CSUM={0x5, 0xd, 0x1}, @L2TP_ATTR_UDP_SPORT={0x6, 0x1a, 0x4e20}, @L2TP_ATTR_RECV_SEQ={0x5, 0x12, 0x2}, @L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @loopback}, @L2TP_ATTR_VLAN_ID={0x6, 0xe, 0x3}, @L2TP_ATTR_UDP_SPORT={0x6, 0x1a, 0x4e24}, @L2TP_ATTR_IP6_DADDR={0x14, 0x20, @local}]}, 0x6c}, 0x1, 0x0, 0x0, 0x24}, 0x40c0000)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18, 0x4800}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00')
fchdir(r4)
openat$cgroup_ro(r4, &(0x7f00000002c0)='devices.list\x00', 0x0, 0x0)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r5, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r6, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

1m27.335968006s ago: executing program 3 (id=333):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0xa00, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000003300)=ANY=[@ANYBLOB="3c1100003e00010329bd700000dcdf2503"], 0x113c}}, 0x8004)
r2 = socket$kcm(0x10, 0x2, 0x0)
recvmsg(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000a40)=[{&(0x7f00000002c0)=""/110, 0x6e}, {&(0x7f00000047c0)=""/4060, 0xfdc}, {&(0x7f00000037c0)=""/4069, 0xfe5}, {&(0x7f0000000700)=""/244, 0xf4}, {&(0x7f0000000140)=""/120, 0x78}, {&(0x7f0000001780)=""/14, 0xe}, {&(0x7f00000011c0)=""/209, 0xd1}, {&(0x7f00000012c0)=""/126, 0x7e}, {&(0x7f00000004c0)=""/38, 0x26}], 0x9}, 0x40000100)
sendmsg$inet(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000900)="5c00000012006bab9a3fe3d86e17aa0a046b4877c4aaf68187bae53dca2ba35bda6a876c1d0048007ea608649e7524765f0ef82e3c0000a705259a3651f60a84c9f4d4938037e70e4509c5bb00000000e513aeac9bf2bee150d5fe86", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x20000000)
recvmsg$kcm(r2, &(0x7f0000000e80)={0x0, 0x0, 0x0}, 0x40000002)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000002, 0x22052, r0, 0x2000)

1m12.261854657s ago: executing program 34 (id=333):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0xa00, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000003300)=ANY=[@ANYBLOB="3c1100003e00010329bd700000dcdf2503"], 0x113c}}, 0x8004)
r2 = socket$kcm(0x10, 0x2, 0x0)
recvmsg(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000a40)=[{&(0x7f00000002c0)=""/110, 0x6e}, {&(0x7f00000047c0)=""/4060, 0xfdc}, {&(0x7f00000037c0)=""/4069, 0xfe5}, {&(0x7f0000000700)=""/244, 0xf4}, {&(0x7f0000000140)=""/120, 0x78}, {&(0x7f0000001780)=""/14, 0xe}, {&(0x7f00000011c0)=""/209, 0xd1}, {&(0x7f00000012c0)=""/126, 0x7e}, {&(0x7f00000004c0)=""/38, 0x26}], 0x9}, 0x40000100)
sendmsg$inet(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000900)="5c00000012006bab9a3fe3d86e17aa0a046b4877c4aaf68187bae53dca2ba35bda6a876c1d0048007ea608649e7524765f0ef82e3c0000a705259a3651f60a84c9f4d4938037e70e4509c5bb00000000e513aeac9bf2bee150d5fe86", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x20000000)
recvmsg$kcm(r2, &(0x7f0000000e80)={0x0, 0x0, 0x0}, 0x40000002)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000002, 0x22052, r0, 0x2000)

3.853747835s ago: executing program 0 (id=766):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xc00, 0x0)
r1 = fanotify_init(0x1, 0x2)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2)
sendmsg$NBD_CMD_CONNECT(r2, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f00000002c0)={0x30, r3, 0x1, 0xffffffff, 0x0, {}, [@NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x4}, @NBD_ATTR_SOCKETS={0x4}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x5}]}, 0x30}, 0x1, 0x0, 0x0, 0x48800}, 0x20000000)
r4 = request_key(&(0x7f0000001440)='dns_resolver\x00', &(0x7f0000001480)={'syz', 0x0}, &(0x7f00000014c0)='syz', 0xffffffffffffffff)
request_key(&(0x7f0000001680)='dns_resolver\x00', &(0x7f00000016c0)={'syz', 0x3}, 0x0, r4)
r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
fanotify_mark(r1, 0x455, 0x40000008, r5, 0x0)
mkdirat(r5, &(0x7f00000000c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
rename(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000200)='./file0\x00')

3.792942621s ago: executing program 5 (id=767):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0xa02, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000001, 0x12, r0, 0x45809000)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
getsockopt$WPAN_SECURITY_LEVEL(r1, 0x0, 0x2, 0x0, &(0x7f0000000240))

3.572115305s ago: executing program 0 (id=768):
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x1, 0x101603)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0)
write$binfmt_misc(r1, &(0x7f0000000040), 0xe09)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x8, 0x0, 0x0, 0x0, 0x4, 0x1c, "fee8a2aba0e91ddaaca7bd66c6a4b4e00d9683dda1af1ea89de2c1fb0a0100000000000000000300", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00", [0x0, 0x5]}})

3.566261144s ago: executing program 5 (id=769):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
connect$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4e21, 0xc, @loopback, 0xb6}, 0x1c)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e1f, 0x2, @ipv4={'\x00', '\xff\xff', @local}, 0x1}, 0x1c)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), r0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="0c0100000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400fc0000000000000000000000000000000c00028005000100000000003c0002800c00028005000100000000002c000180140003000000000000000000000000000000000114000400fe8000000000000000000000000000aa08000740000000007800068014000500fc"], 0x10c}}, 0x0)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000006c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a1c000000120a0101000000000000000005000005080003400000000964000000090a03000000000000000000030000090900010001007a300000000008000440000000000900020073"], 0xcc}, 0x1, 0x0, 0x0, 0x20014840}, 0xc010)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff08"], 0x6f4}}, 0x0)

3.273719909s ago: executing program 0 (id=772):
creat(&(0x7f0000000000)='./file0\x00', 0x4)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0x208c7600, 0x0, 0xfffffed8, 0x0, 0x0, 0x0)
mount(&(0x7f0000000080)=@rnullb, &(0x7f0000001440)='./file0\x00', &(0x7f0000000040)='ext3\x00', 0x400, 0x0)
nanosleep(&(0x7f00000000c0)={0x0, 0x989680}, &(0x7f0000000100))

3.220893101s ago: executing program 5 (id=773):
mount(&(0x7f0000000000)=@rnullb, 0x0, 0x0, 0x200000, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000100)={{0x7000, 0xdddd1000, 0x0, 0x0, 0x8, 0x8, 0x9, 0x2, 0x0, 0x4, 0x9, 0x10}, {0x8080000, 0x0, 0x4, 0x8, 0x0, 0x0, 0x0, 0x0, 0x7, 0x7, 0x0, 0xfb}, {0xd005, 0x5000, 0xc, 0x0, 0x7, 0x4, 0x0, 0x0, 0x3, 0x0, 0x0, 0xfc}, {0x100000, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0xfd, 0x4}, {0xeeee8000, 0x3000, 0x9, 0x0, 0xff, 0x4, 0x4, 0xe, 0x0, 0x3c}, {0x0, 0x0, 0xd, 0x8, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x80}, {0x8080000, 0x7000000, 0xa, 0x6, 0x5, 0x0, 0x3, 0x0, 0x3}, {0x80a0000, 0xdddd0000, 0x0, 0x0, 0x0, 0x1, 0x0, 0xa, 0x26}, {0x80a0000}, {0xeeef0000}, 0xfdfcffdb, 0x0, 0x0, 0x28, 0xb, 0xf801, 0x2000, [0x0, 0x0, 0x1, 0x7]})

3.004050418s ago: executing program 6 (id=774):
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
prctl$PR_SCHED_CORE(0x47, 0x1, 0x0, 0x2, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4605, &(0x7f0000000240)={0x0, 0x1e0, 0x0, 0xf0ff1f, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {0x0, 0x475}}) (async, rerun: 64)
mount(&(0x7f0000000000)=@rnullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000080)='xfs\x00', 0x1200051, 0x0) (rerun: 64)

2.898183579s ago: executing program 5 (id=775):
mkdir(&(0x7f0000000200)='./file1\x00', 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16, @ANYBLOB="210400000000040000000100000008000100030000000800020002"], 0x38}}, 0x4)
sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f0000000000)=ANY=[@ANYBLOB="a03700002d00010026bd7000fcdbdf250400000005000b00", @ANYRES32=r0, @ANYBLOB="81120c"], 0x37a0}, 0x1, 0x0, 0x0, 0x4000d}, 0x20000000)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000140)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$COMEDI_INSN(0xffffffffffffffff, 0x8028640c, &(0x7f0000000000)={0xc000003, 0xf, &(0x7f0000000180)=[0x1e, 0x9, 0xf909, 0x899d, 0x80, 0xfffffffb, 0x7, 0x10, 0xfffffe01, 0x1, 0x4, 0x2, 0x6, 0x8811, 0x0], 0x1, 0x4000007})
r2 = syz_open_procfs(0x0, &(0x7f00000001c0)='net/llc/core\x00')
ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f0000000240)={{0x1, 0x1, 0x18, r2, {0x1d}}, './file1\x00'})
r3 = open(&(0x7f00000000c0)='.\x00', 0x101800, 0x0)
symlinkat(&(0x7f00000000c0)='./file1\x00', r3, &(0x7f0000000100)='./file0\x00')
ioctl$BTRFS_IOC_SCRUB(r1, 0xc400941b, &(0x7f0000000440)={<r4=>0x0, 0x100000000, 0x7, 0x1})
ioctl$BTRFS_IOC_DEV_INFO(r1, 0xd000941e, &(0x7f0000000840)={r4, "52be7d261678ac8ccc85a075c0d43c61"})
ioctl$AUTOFS_IOC_PROTOSUBVER(r1, 0x40049366, &(0x7f0000000180))

2.88876613s ago: executing program 4 (id=776):
r0 = socket(0x10, 0x3, 0x0)
pipe2$9p(&(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r3 = dup(r2)
write$FUSE_BMAP(r3, &(0x7f0000000100)={0x18, 0x0, 0x0, {0x40}}, 0x18)
write$FUSE_DIRENTPLUS(r3, &(0x7f0000002100)=ANY=[@ANYBLOB="b0000000000000001659ec0889419429aa5db97288b0f8a87ea8e66d9a8b"], 0xb0)
write$FUSE_DIRENTPLUS(r3, &(0x7f0000000140)=ANY=[@ANYBLOB="10"], 0x10)
write$FUSE_DIRENTPLUS(r3, &(0x7f0000000280)=ANY=[@ANYBLOB="a8"], 0xa8)
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0)
write$FUSE_ENTRY(r3, &(0x7f0000000440)={0x90, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x8}}}, 0x90)
mount$9p_fd(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@posixacl}]}})
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000440)={0x7}, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)={0x14, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x14}}, 0x0)
connect$inet(r0, &(0x7f0000000300)={0x2, 0x4e21, @empty}, 0x10)
sendmsg$NL80211_CMD_DISASSOCIATE(r0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000280)={&(0x7f0000000600)={0x148, 0x0, 0x0, 0x70bd2f, 0x25cfdbfb, {{}, {@void, @val={0x0, 0x99, {0x0, 0x6b}}}}, [@NL80211_ATTR_REASON_CODE={0x3, 0x36, 0xa1}, @NL80211_ATTR_IE={0x7, 0x2a, [@sec_chan_ofs={0x3e, 0x1}]}, @NL80211_ATTR_LOCAL_STATE_CHANGE, @NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}, @NL80211_ATTR_IE={0x0, 0x2a, [@peer_mgmt={0x75, 0x0, {0x0, 0x5, @void, @void, @val="4a20dcd4c6b85356c71807256e8b0296"}}, @cf={0x4, 0x0, {0x4, 0x5, 0x6, 0x81}}, @peer_mgmt={0x75, 0x0, {0x1, 0x8, @val=0x200, @void, @val="ecaa2dc0b458d3f1c9f97b743d50cde2"}}, @ssid={0x0, 0x0, @default_ibss_ssid}, @challenge={0x10, 0x0, 0x51}, @ext_channel_switch={0x3c, 0x0, {0x1, 0x8, 0x21, 0xc}}, @ibss={0x6, 0x0, 0x1}, @dsss={0x3, 0x0, 0xac}]}, @NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}]}, 0x148}, 0x1, 0x0, 0x0, 0x4000000}, 0x4844)
mount(&(0x7f0000000000)=@rnullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000080)='msdos\x00', 0x200000, 0x0)

2.708183917s ago: executing program 0 (id=777):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000580)={0x0, @in6={{0xa, 0x4e20, 0x6, @empty, 0x4}}, 0x0, 0x0, 0x3fc, 0x0, 0x32}, 0x9c)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f0000000180)=0x3, 0x4)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in6={{0xa, 0x0, 0x0, @empty, 0x6}}, 0x0, 0x0, 0x0, 0x0, 0x8a}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000a00)={0x0, @in6={{0xa, 0x4e23, 0xf1030000, @loopback}}, 0x0, 0x0, 0x300, 0x0, 0x54}, 0x9c)

2.436011887s ago: executing program 4 (id=778):
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x1)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x90, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006300)={0x2020, 0x0, <r1=>0x0}, 0x2020)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="300000003c0007010000000000400000037c00000400fc8010"], 0x30}}, 0xc010)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x10408, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x80101, 0x0)
r3 = dup2(r2, r0)
ioctl$vim2m_VIDIOC_S_CTRL(r3, 0x40806685, &(0x7f0000000000)={0x10, 0xfff}) (fail_nth: 8)

2.237871234s ago: executing program 0 (id=779):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
bind$nfc_llcp(r3, &(0x7f00000001c0)={0x27, 0x0, 0x0, 0x2, 0x0, 0x49, "c46e9fd1a84b7fa0bf2cca6beb9363a680b652a86bcf56a1b9ca5386103a5ccbe47b7b9aa6d8d701a3ba00000000b97800001022f987617c318500", 0x3a}, 0x60)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
read$FUSE(r4, &(0x7f0000001180)={0x2020}, 0x2020)
r5 = dup(r3)
getsockopt$inet_buf(r5, 0x118, 0x28, 0x0, &(0x7f00000003c0))
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000a40)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x40, r0, 0x1, 0x70bd2a, 0x0, {{0x2}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x0, 0x7}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x7}]]}, 0x40}, 0x1, 0x0, 0x0, 0x200040c0}, 0x0)
r7 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0x567140, 0x0)
syz_clone(0x80080400, 0x0, 0x0, 0x0, 0x0, 0x0)
sendfile(r7, r7, 0x0, 0x7ffff000)

1.68810639s ago: executing program 4 (id=780):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f00000004c0)={0xc, 0x0, <r1=>0x0})
r2 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000240)={{&(0x7f0000400000/0x1000)=nil, 0x20400000}, 0x1})
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f00000000c0)={0x28, 0x7, r1, 0x0, &(0x7f0000ffb000/0x4000)=nil, 0x4000})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r0, 0x3ba0, &(0x7f00000001c0)={0x48, 0x5, r1, 0x0, <r3=>0xffffffffffffffff})
ioctl$IOMMU_TEST_OP_ACCESS_RW(r0, 0x3ba0, &(0x7f0000000300)={0x48, 0x8, r3, 0x0, 0x2fff, 0x2, &(0x7f0000000380)="9bc6", 0x5}) (fail_nth: 9)

1.579296801s ago: executing program 6 (id=781):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
connect$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4e21, 0xc, @loopback, 0xb6}, 0x1c)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e1f, 0x2, @ipv4={'\x00', '\xff\xff', @local}, 0x1}, 0x1c)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), r0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="0c0100000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400fc0000000000000000000000000000000c00028005000100000000003c0002800c00028005000100000000002c000180140003000000000000000000000000000000000114000400fe8000000000000000000000000000aa08000740000000007800068014000500fc"], 0x10c}}, 0x0)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000006c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a1c000000120a0101000000000000000005000005080003400000000964000000090a03000000000000000000030000090900010001007a300000000008000440000000000900020073"], 0xcc}, 0x1, 0x0, 0x0, 0x20014840}, 0xc010)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff08021100"], 0x6f4}}, 0x0)

1.42179514s ago: executing program 5 (id=782):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f0000001000/0x3000)=nil, 0x30000, 0x0, 0x11, r0, 0x0)
mremap(&(0x7f000000e000/0x7000)=nil, 0x7000, 0x1000, 0x3, &(0x7f0000007000/0x1000)=nil)
syz_clone(0x100, 0x0, 0x0, 0x0, 0x0, 0x0)
creat(&(0x7f0000001380)='./file0\x00', 0x0)
mount(&(0x7f0000000000)=@rnullb, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ntfs3\x00', 0x8000, 0x0)

1.264237318s ago: executing program 4 (id=783):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="5800000002060102000034e40000000000000008050005000a000000050001800600000005000400000000000900020073797a310000000a11000300686173683a69702c706f7274000000000c000780080013"], 0x58}}, 0x0)

1.253222856s ago: executing program 6 (id=784):
sendto$packet(0xffffffffffffffff, &(0x7f00000000c0)="3f031c000302140006001e0089e9aaa911d7c2290f0086dd1327c916", 0x1c, 0x0, &(0x7f0000000540)={0xc9, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000006c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a1c000000120a0101000000000000000005000005080003400000000964000000090a03000000000000000000030000090900010001007a300000000008000440000000000900020073"], 0xcc}, 0x1, 0x0, 0x0, 0x20014840}, 0xc010)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
sendto$isdn(0xffffffffffffffff, &(0x7f00000002c0)={0xffff, 0x0, "5721f7760f12d616090bdc0d9fc3701540d964d75a315245f369e512aafe5b7eb0e8a1f52cbefb26c9e5c412e1e83fed5507efe7abd0b469788a009fadc86428cf98b816346ab3e0043853c69ac62c14450a2f4d5dcf0e20fc367e"}, 0x63, 0x80, &(0x7f0000000340)={0x22, 0x8, 0xeb, 0xfd, 0x8b}, 0x6)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

1.19679174s ago: executing program 0 (id=785):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.kill\x00', 0x275a, 0x0)
fcntl$lock(r0, 0x7, &(0x7f0000000000)={0x0, 0x2, 0x1b9, 0x7fffffff})
fcntl$lock(r0, 0x6, &(0x7f0000000180)={0x2, 0x1, 0x5, 0x80000001})
sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0xc9, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
connect$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4e21, 0xc, @loopback, 0xb6}, 0x1c)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e1f, 0x2, @ipv4={'\x00', '\xff\xff', @local}, 0x1}, 0x1c)
r2 = socket$alg(0x26, 0x5, 0x0)
r3 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
sendmmsg$sock(r3, &(0x7f0000000cc0)=[{{&(0x7f0000000100)=@l2tp={0x2, 0x0, @broadcast, 0x3}, 0x80, 0x0}}, {{&(0x7f0000000700)=@in6={0xa, 0x4e20, 0x7, @dev={0xfe, 0x80, '\x00', 0x18}, 0x60}, 0x80, 0x0}}], 0x2, 0x48094)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='blkio.bfq.io_queued\x00', 0x275a, 0x0)
write$cgroup_int(r4, &(0x7f0000000000), 0xffffff6a)
sendfile(r3, r4, 0x0, 0xffffffff000)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000040)=0x1)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000380)=0x7)
bind$alg(r2, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), r1)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0xf, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="0c0100000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400fc0000000000000000000000000000000c0002800500010000008a9bd300003c0002800c00028005000100000000002c000180140003000000000000000000000000000000000114000400fe8000000000000000000000000000aa08000740000000007800068014000500fc0200000000"], 0x10c}}, 0x8)
r6 = accept4(r2, 0x0, 0x0, 0x800)
accept4(r1, 0x0, &(0x7f0000000300), 0x80800)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0xc010)
sendmmsg$alg(r6, &(0x7f00000003c0)=[{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000080)="778d9ca38fff4906be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f0000000600)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18, 0x4040045}], 0x1, 0x40800)
recvmsg(r6, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r8, 0x4068aea3, &(0x7f0000000180)={0xdf, 0x0, 0x10000})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)

1.142470998s ago: executing program 4 (id=786):
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x1, 0x101603)
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000010c0)=ANY=[], 0x1a3)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000040), 0xe09)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, {0x2a00, 0x80010000, 0x0, 0x8, 0x0, 0x0, 0x0, 0x4, 0x1c, "fee8a2aba0e91ddaaca7bd66c6a4b4e00d9683dda1af1ea89de2c1fb0a0100000000000000000300", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00", [0x0, 0x5]}})

1.007968259s ago: executing program 5 (id=787):
socket(0x1e, 0x805, 0x0) (async)
r0 = socket(0x1e, 0x805, 0x0)
connect$tipc(r0, &(0x7f0000000040)=@name={0x1e, 0x2, 0x1, {{0x0, 0x3}}}, 0x10)
openat$full(0xffffffffffffff9c, &(0x7f00000001c0), 0x41, 0x0) (async)
r1 = openat$full(0xffffffffffffff9c, &(0x7f00000001c0), 0x41, 0x0)
syz_clone3(&(0x7f0000000480)={0x110000, &(0x7f0000000200), &(0x7f0000000240), &(0x7f0000000280), {0x1e}, &(0x7f00000002c0)=""/164, 0xa4, &(0x7f0000000380)=""/139, &(0x7f0000000440)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2}, 0x58) (async)
r2 = syz_clone3(&(0x7f0000000480)={0x110000, &(0x7f0000000200), &(0x7f0000000240), &(0x7f0000000280), {0x1e}, &(0x7f00000002c0)=""/164, 0xa4, &(0x7f0000000380)=""/139, &(0x7f0000000440)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2}, 0x58)
ioctl$TIOCSPGRP(r1, 0x5410, &(0x7f0000000500)=r2) (async)
ioctl$TIOCSPGRP(r1, 0x5410, &(0x7f0000000500)=r2)
r3 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0xa00, 0x0)
openat$dsp1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) (async)
r4 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x3)
r6 = syz_open_dev$swradio(&(0x7f0000000140), 0x0, 0x2)
ioctl$VIDIOC_S_FREQUENCY(r6, 0x402c5639, &(0x7f0000000180)={0x0, 0x5}) (async)
ioctl$VIDIOC_S_FREQUENCY(r6, 0x402c5639, &(0x7f0000000180)={0x0, 0x5})
read$dsp(r4, &(0x7f0000000540)=""/14, 0xe)
r7 = dup(r5)
setsockopt$inet6_MCAST_JOIN_GROUP(r1, 0x29, 0x2a, &(0x7f0000000580)={0xc60, {{0xa, 0x4e22, 0xf, @mcast1, 0xfffffff9}}}, 0x88)
write$UHID_INPUT(r7, &(0x7f0000001040)={0xe, {"a2e3ad21ed0d52f90b9b500987f70e06d038e7ff7fc6e5539b324b298b089b0708346d090890e0878f0e1ac6e7049b334a959bfc9a240d2567f3988f7ef319520100ffe8d1780700523c921b1b9b31070d075d0936cd3b78130daa61f94b61404d64aec1b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb056d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498be0800000000000000f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c088215ec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6f44ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d208001349b41db6efcffac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ec126c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce3803f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b8247068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2a15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee53259289d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d97b9a6d6d5495c1980778efa5ea567b7b7430acc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a0700d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8440daaa69bf5c8f4350aeae9ca1207e76061b28f27da19acc7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c4e72730d56bd068ed211c7847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7beddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40426db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c5409711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e781171e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e24919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afae5136651b1b906ce2d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf3f2aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02dae17b118e5d6787463183b4b87c1050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7348663a52190202c7ae288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f00000000000000000000b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289d8523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c78e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d53588a0f9455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb784ed7148b6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d664130bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b8081c128ad2706f48261f7899484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e7c7b2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df06720ba2b26bbfcc807c8aabb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db38b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ea4cd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f031755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c7e36bb2fc4c40e9cf96f06817fb903729a7db6ff957697c9ede7885d94ffb0969be0daf60af93109eb24ee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f9000", 0x1040}}, 0x1006)
socket(0x21, 0x1, 0x1f) (async)
socket(0x21, 0x1, 0x1f)
ioctl$BTRFS_IOC_SUBVOL_CREATE(r3, 0x5000940e, &(0x7f0000002080)={{r3}, "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"})
r8 = epoll_create(0x7)
r9 = epoll_create1(0x0)
epoll_create(0x7) (async)
r10 = epoll_create(0x7)
epoll_ctl$EPOLL_CTL_ADD(r9, 0x1, r8, &(0x7f0000000180))
epoll_ctl$EPOLL_CTL_ADD(r10, 0x1, r9, &(0x7f00000000c0))
r11 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r11, 0x1, r10, &(0x7f0000000100))
r12 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r8, 0x1, r12, &(0x7f0000000080))
stat(&(0x7f0000000900)='./file0\x00', &(0x7f0000000940)={0x0, 0x0, 0x0, 0x0, 0x0, <r13=>0x0})
fsetxattr$system_posix_acl(r12, &(0x7f0000000640)='system.posix_acl_access\x00', &(0x7f00000009c0)={{}, {0x1, 0x1}, [{0x2, 0x4}, {0x2, 0x5}, {}, {0x2, 0x3}, {0x2, 0x0, 0xffffffffffffffff}], {0x4, 0x2}, [{0x8, 0x2, r13}], {0x10, 0x2}, {0x20, 0x4}}, 0x54, 0x0) (async)
fsetxattr$system_posix_acl(r12, &(0x7f0000000640)='system.posix_acl_access\x00', &(0x7f00000009c0)={{}, {0x1, 0x1}, [{0x2, 0x4}, {0x2, 0x5}, {}, {0x2, 0x3}, {0x2, 0x0, 0xffffffffffffffff}], {0x4, 0x2}, [{0x8, 0x2, r13}], {0x10, 0x2}, {0x20, 0x4}}, 0x54, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r12, 0x1, r11, &(0x7f0000000000)) (async)
epoll_ctl$EPOLL_CTL_ADD(r12, 0x1, r11, &(0x7f0000000000))
write$dsp(r4, &(0x7f0000000040)="0536000162b218ed5fd914ea95320c2a0a58b44ab321742bcdb3cd5df5654e2b472322a7b11d67ba796a6a7ee344e654addbed864f29c21d39359b33e401a22ded78994cdc6f0b2df8df716da3fa0e6054360bfe106f4b5f290827fc3dbeb142af83060f43a74bef74da4b1e9990566015d4b00bab9e3eaa9d74684dec6e2cf4cc39dbac54d25cb4b5480c4134e459cba698d33099e4ce890620dad27127c56c2f36a20dd1c622a52af52fafebb450039025091d959d403289914ec35ea103d9342db3e895536f6fc6747a68eb2a748390e995", 0xd3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000001, 0x22052, r3, 0x2000)

931.842518ms ago: executing program 6 (id=788):
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x1, 0x101603)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0)
write$binfmt_misc(r1, &(0x7f0000000040), 0xe09)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x8, 0x0, 0x0, 0x0, 0x4, 0x1c, "fee8a2aba0e91ddaaca7bd66c6a4b4e00d9683dda1af1ea89de2c1fb0a0100000000000000000300", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00", [0x0, 0x5]}})

910.067156ms ago: executing program 4 (id=789):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='loginuid\x00')
read$FUSE(r0, &(0x7f00000014c0)={0x2020}, 0x2020)
write$FUSE_DIRENT(r0, 0x0, 0x68)
syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0x8002)
syz_usb_connect(0x0, 0x3b, &(0x7f00000002c0)=ANY=[@ANYBLOB="1201000085826d20ffd56600b0d8000000010902"], 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = socket(0x10, 0x3, 0x0)
write(r1, &(0x7f0000000000)="3c00000058001f000307f4f9002304000a04d65f0800010002010002170003800500000099db973b91aa057972513500b0406700912deb5b85932234", 0x3c)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = syz_open_dev$dri(&(0x7f0000000140), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r3, 0xc06864b8, &(0x7f0000000580)={0x0, 0xc1, 0x7f, 0x20203843, 0x0, [0x2], [0x800], [], [0x0, 0x0, 0x1000000]})
sendmsg$NFT_BATCH(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x7c}}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)={0x1c, 0x1, 0x4, 0x101, 0x0, 0x0, {0x0, 0x0, 0x1}, [@NFULA_CFG_CMD={0x5, 0x1, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000004)
close(r2)
r5 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000000000404355420000000000000109022400010000000009040000010300050009210000000122070009058103"], 0x0)
syz_usb_control_io$hid(r5, 0x0, 0x0)
syz_usb_control_io$hid(r5, &(0x7f0000000080)={0x24, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x22, 0x7, {[@local=@item_012={0x1, 0x2, 0x0, '^'}, @main=@item_012={0x2, 0x0, 0x9, "20cd"}, @global=@item_012={0x1, 0x1, 0x1, "b3"}]}}, 0x0}, 0x0)
r6 = syz_usb_connect$hid(0x5, 0x36, &(0x7f00000001c0)=ANY=[@ANYBLOB="12010000000000404c05f20dafd60000000109022400010000000009040000010300010009210101000122050009058103"], 0x0)
syz_usb_connect$printer(0x2, 0x36, &(0x7f00000000c0)={{0x12, 0x1, 0x300, 0x0, 0x0, 0x0, 0x20, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x1, 0x10, 0x5, [{{0x9, 0x4, 0x0, 0x4, 0x2, 0x7, 0x1, 0x3, 0x6, "", {{{0x9, 0x5, 0x1, 0x2, 0x10, 0x4, 0x7, 0x4}}, [{{0x9, 0x5, 0x82, 0x2, 0x3ff, 0x80, 0x4d, 0xff}}]}}}]}}]}}, &(0x7f0000000400)={0xa, &(0x7f0000000300)={0xa, 0x6, 0x310, 0x4, 0x8, 0x5, 0x8, 0x1}, 0x2d, &(0x7f0000000380)={0x5, 0xf, 0x2d, 0x2, [@ss_container_id={0x14, 0x10, 0x4, 0x5, "e0537c26021e89d501d1293beb6eefcf"}, @ss_container_id={0x14, 0x10, 0x4, 0x17, "bdb79f23c1419f3a78cb43c0012b5975"}]}})
syz_usb_control_io(r6, 0x0, 0x0)
syz_usb_control_io(r6, &(0x7f00000003c0)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="000657"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io$hid(r6, 0x0, &(0x7f0000000440)={0x2c, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="20014074"], 0x0})
creat(&(0x7f0000000080)='./file0\x00', 0x2)
mount(&(0x7f0000000180)=@rnullb, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='jfs\x00', 0x8010, 0x0)

289.468194ms ago: executing program 6 (id=790):
r0 = socket(0x2000000000000021, 0x2, 0x10000000000002)
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x4e27, @private=0x4000000}}, 0x80, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x1, 0x2, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000580), r1)
r4 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
r5 = add_key$keyring(&(0x7f0000000140), &(0x7f0000000100)={'syz', 0x0}, 0x0, 0x0, r4)
keyctl$KEYCTL_MOVE(0x1e, r5, r4, r5, 0x1)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r2, 0x89f1, &(0x7f00000000c0)={'ip6tnl0\x00', &(0x7f0000000000)={'syztnl1\x00', r6, 0x0, 0x0, 0x0, 0x0, 0x0, @private2={0xfc, 0x2, '\x00', 0x1}, @empty, 0x0, 0x0, 0x0, 0x5d}})
r7 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="01002bbd7000fddbdf250500000008000200040000512c"], 0x48}, 0x1, 0x0, 0x0, 0x20044844}, 0x800)
sendmmsg(r0, &(0x7f0000000180)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18, 0xe000}, 0x5}], 0x1, 0x0)
sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0xc9, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
connect$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4e21, 0xc, @loopback, 0xb6}, 0x1c)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e1f, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0x1}, 0x1c)
r9 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
read$FUSE(r9, &(0x7f0000007fc0)={0x2020}, 0x2020)
bind$packet(r9, &(0x7f0000000340)={0x11, 0x10, 0x0, 0x1, 0x4, 0x6, @remote}, 0x14)
r10 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r10, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r10, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
accept4$inet6(r3, 0x0, &(0x7f0000000300), 0x80800)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), r8)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000600)=ANY=[@ANYBLOB="0c0100000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400fc0000000000000000000000000000000c00028005000100000000003c0002800c00028005000100000000002c000180140003000000000000000000000000000000000114000400fe8000000000000000000000000000aa08000740000000007800068014000500fc0200000000000000000000000000010c000380060001000000000014000400fc02"], 0x10c}}, 0x0)
r11 = accept4(r10, 0x0, 0x0, 0x800)
sendmmsg$alg(r11, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r11, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000740)=""/75, 0x4b}, {&(0x7f0000000200)=""/83, 0x53}], 0x2}, 0x12020)

0s ago: executing program 6 (id=791):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0xa00, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000001, 0x11, r0, 0xf648e000) (async)
madvise(&(0x7f000026d000/0x2000)=nil, 0x2000, 0x16) (async, rerun: 32)
r1 = geteuid() (rerun: 32)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000038c0)=ANY=[@ANYBLOB="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", @ANYRES32=r1, @ANYBLOB="14003d0000000000000000000000000000000101"], 0x2724}, 0x1, 0x0, 0x0, 0x4c500}, 0x800) (async)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

kernel console output (not intermixed with test programs):

e:
[  481.708168][ T6860]  <TASK>
[  481.708176][ T6860]  dump_stack_lvl+0x189/0x250
[  481.708207][ T6860]  ? __pfx____ratelimit+0x10/0x10
[  481.708227][ T6860]  ? __pfx_dump_stack_lvl+0x10/0x10
[  481.708252][ T6860]  ? __pfx__printk+0x10/0x10
[  481.708272][ T6860]  ? __lock_acquire+0xab9/0xd20
[  481.708298][ T6860]  ? iopt_pages_rw_slow+0xc3/0x570
[  481.708325][ T6860]  ? __pfx___mutex_lock+0x10/0x10
[  481.708347][ T6860]  should_fail_ex+0x414/0x560
[  481.708382][ T6860]  pfn_reader_first+0x27a/0xa80
[  481.708411][ T6860]  iopt_pages_rw_slow+0xd4/0x570
[  481.708444][ T6860]  ? __pfx_iopt_pages_rw_slow+0x10/0x10
[  481.708510][ T6860]  ? __lock_acquire+0xab9/0xd20
[  481.708539][ T6860]  iopt_pages_rw_access+0x1e6/0x880
[  481.708574][ T6860]  ? __pfx_iopt_pages_rw_access+0x10/0x10
[  481.708595][ T6860]  ? interval_tree_iter_first+0x1d0/0x1f0
[  481.708623][ T6860]  ? iopt_area_contig_init+0x17c/0x220
[  481.708650][ T6860]  iommufd_access_rw+0x312/0x4b0
[  481.708684][ T6860]  ? __pfx_iommufd_access_rw+0x10/0x10
[  481.708723][ T6860]  iommufd_test+0x4094/0x5170
[  481.708755][ T6860]  ? kasan_quarantine_put+0xdd/0x220
[  481.708783][ T6860]  ? __pfx_iommufd_test+0x10/0x10
[  481.708812][ T6860]  ? __lock_acquire+0xab9/0xd20
[  481.708846][ T6860]  ? __might_fault+0xb0/0x130
[  481.708899][ T6860]  iommufd_fops_ioctl+0x45b/0x580
[  481.708927][ T6860]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  481.708953][ T6860]  ? __fget_files+0x2a/0x420
[  481.708982][ T6860]  ? __fget_files+0x2a/0x420
[  481.709007][ T6860]  ? bpf_lsm_file_ioctl+0x9/0x20
[  481.709030][ T6860]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  481.709050][ T6860]  __se_sys_ioctl+0xf9/0x170
[  481.709080][ T6860]  do_syscall_64+0xfa/0x3b0
[  481.709105][ T6860]  ? lockdep_hardirqs_on+0x9c/0x150
[  481.709123][ T6860]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  481.709141][ T6860]  ? clear_bhb_loop+0x60/0xb0
[  481.709172][ T6860]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  481.709189][ T6860] RIP: 0033:0x7f00f638e929
[  481.709207][ T6860] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  481.709221][ T6860] RSP: 002b:00007f00f41f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  481.709242][ T6860] RAX: ffffffffffffffda RBX: 00007f00f65b5fa0 RCX: 00007f00f638e929
[  481.709255][ T6860] RDX: 0000200000000300 RSI: 0000000000003ba0 RDI: 0000000000000003
[  481.709266][ T6860] RBP: 00007f00f41f6090 R08: 0000000000000000 R09: 0000000000000000
[  481.709278][ T6860] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  481.709288][ T6860] R13: 0000000000000000 R14: 00007f00f65b5fa0 R15: 00007ffe27ee7f08
[  481.709320][ T6860]  </TASK>
[  482.128681][ T6862] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  482.665853][ T6871] netlink: 16 bytes leftover after parsing attributes in process `syz.3.277'.
[  484.289573][ T6841] tipc: Disabling bearer <eth:syzkaller0>
[  484.324342][ T6871] netlink: 16 bytes leftover after parsing attributes in process `syz.3.277'.
[  484.879752][ T3095] usb 4-1: new high-speed USB device number 25 using dummy_hcd
[  485.048748][ T6897] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 11
[  485.061106][ T3095] usb 4-1: Using ep0 maxpacket: 8
[  485.076224][ T3095] usb 4-1: config 179 has an invalid interface number: 65 but max is 0
[  485.110304][ T3095] usb 4-1: config 179 has no interface number 0
[  485.110367][ T3095] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  485.110403][ T3095] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  485.110430][ T3095] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  485.110456][ T3095] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  485.110477][ T3095] usb 4-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  485.110523][ T3095] usb 4-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  485.110546][ T3095] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  485.117575][ T6886] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  485.122247][ T3095] xpad 4-1:179.65: probe with driver xpad failed with error -5
[  485.555272][  T981] usb 4-1: USB disconnect, device number 25
[  485.879571][   T24] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  486.059389][   T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  486.096824][   T24] usb 5-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  486.117245][   T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  486.163856][   T24] usb 5-1: config 0 descriptor??
[  486.616106][   T24] keytouch 0003:0926:3333.0001: fixing up Keytouch IEC report descriptor
[  486.656005][   T24] input: HID 0926:3333 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:0926:3333.0001/input/input9
[  487.044109][   T24] keytouch 0003:0926:3333.0001: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.4-1/input0
[  487.134833][   T24] usb 5-1: USB disconnect, device number 7
[  487.287839][ T6918] fido_id[6918]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/5-1/report_descriptor': No such file or directory
[  487.786849][ T6923] netlink: 'syz.3.291': attribute type 1 has an invalid length.
[  487.794805][ T6923] netlink: 224 bytes leftover after parsing attributes in process `syz.3.291'.
[  488.073761][ T6927] netlink: 12 bytes leftover after parsing attributes in process `syz.3.294'.
[  488.103955][ T6927] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  489.798502][ T6943] netlink: 'syz.0.301': attribute type 11 has an invalid length.
[  490.087884][ T6957] FAULT_INJECTION: forcing a failure.
[  490.087884][ T6957] name failslab, interval 1, probability 0, space 0, times 0
[  490.158177][ T6957] CPU: 0 UID: 0 PID: 6957 Comm: syz.5.305 Not tainted 6.16.0-rc5-next-20250711-syzkaller #0 PREEMPT(full) 
[  490.158205][ T6957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  490.158216][ T6957] Call Trace:
[  490.158224][ T6957]  <TASK>
[  490.158233][ T6957]  dump_stack_lvl+0x189/0x250
[  490.158265][ T6957]  ? __pfx____ratelimit+0x10/0x10
[  490.158286][ T6957]  ? __pfx_dump_stack_lvl+0x10/0x10
[  490.158312][ T6957]  ? __pfx__printk+0x10/0x10
[  490.158343][ T6957]  ? __pfx___might_resched+0x10/0x10
[  490.158378][ T6957]  ? fs_reclaim_acquire+0x7d/0x100
[  490.158405][ T6957]  should_fail_ex+0x414/0x560
[  490.158441][ T6957]  should_failslab+0xa8/0x100
[  490.158463][ T6957]  __kmalloc_noprof+0xcb/0x4f0
[  490.158487][ T6957]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x2a0
[  490.158521][ T6957]  genl_family_rcv_msg_attrs_parse+0xa3/0x2a0
[  490.158558][ T6957]  genl_family_rcv_msg_doit+0xb8/0x300
[  490.158593][ T6957]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  490.158624][ T6957]  ? __pfx_genl_get_cmd+0x10/0x10
[  490.158647][ T6957]  ? __pfx_fou_nl_get_doit+0x10/0x10
[  490.158666][ T6957]  ? __pfx_fou_nl_get_dumpit+0x10/0x10
[  490.158701][ T6957]  genl_rcv_msg+0x60e/0x790
[  490.158736][ T6957]  ? __pfx_genl_rcv_msg+0x10/0x10
[  490.158758][ T6957]  ? ref_tracker_free+0x63a/0x7d0
[  490.158776][ T6957]  ? __pfx_fou_nl_get_doit+0x10/0x10
[  490.158797][ T6957]  ? __pfx_ref_tracker_free+0x10/0x10
[  490.158829][ T6957]  netlink_rcv_skb+0x205/0x470
[  490.158852][ T6957]  ? __pfx_genl_rcv_msg+0x10/0x10
[  490.158878][ T6957]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  490.158921][ T6957]  ? down_read+0x1ad/0x2e0
[  490.158947][ T6957]  genl_rcv+0x28/0x40
[  490.158970][ T6957]  netlink_unicast+0x759/0x8e0
[  490.159015][ T6957]  netlink_sendmsg+0x805/0xb30
[  490.159047][ T6957]  ? __pfx_netlink_sendmsg+0x10/0x10
[  490.159073][ T6957]  ? aa_sock_msg_perm+0xf1/0x1d0
[  490.159093][ T6957]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  490.159115][ T6957]  ? __pfx_netlink_sendmsg+0x10/0x10
[  490.159137][ T6957]  __sock_sendmsg+0x21c/0x270
[  490.159175][ T6957]  ____sys_sendmsg+0x505/0x830
[  490.159207][ T6957]  ? __pfx_____sys_sendmsg+0x10/0x10
[  490.159243][ T6957]  ? import_iovec+0x74/0xa0
[  490.159276][ T6957]  ___sys_sendmsg+0x21f/0x2a0
[  490.159304][ T6957]  ? __pfx____sys_sendmsg+0x10/0x10
[  490.159381][ T6957]  ? __fget_files+0x2a/0x420
[  490.159404][ T6957]  ? __fget_files+0x3a0/0x420
[  490.159441][ T6957]  __x64_sys_sendmsg+0x19b/0x260
[  490.159469][ T6957]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  490.159507][ T6957]  ? __pfx_ksys_write+0x10/0x10
[  490.159523][ T6957]  ? rcu_is_watching+0x15/0xb0
[  490.159556][ T6957]  ? do_syscall_64+0xbe/0x3b0
[  490.159583][ T6957]  do_syscall_64+0xfa/0x3b0
[  490.159601][ T6957]  ? lockdep_hardirqs_on+0x9c/0x150
[  490.159621][ T6957]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  490.159640][ T6957]  ? clear_bhb_loop+0x60/0xb0
[  490.159664][ T6957]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  490.159681][ T6957] RIP: 0033:0x7f6baf98e929
[  490.159700][ T6957] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  490.159715][ T6957] RSP: 002b:00007f6bb0787038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  490.159737][ T6957] RAX: ffffffffffffffda RBX: 00007f6bafbb5fa0 RCX: 00007f6baf98e929
[  490.159750][ T6957] RDX: 0000000000048020 RSI: 0000200000001ec0 RDI: 0000000000000003
[  490.159762][ T6957] RBP: 00007f6bb0787090 R08: 0000000000000000 R09: 0000000000000000
[  490.159773][ T6957] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  490.159785][ T6957] R13: 0000000000000000 R14: 00007f6bafbb5fa0 R15: 00007ffd35ef1e78
[  490.159818][ T6957]  </TASK>
[  490.521143][    C0] vkms_vblank_simulate: vblank timer overrun
[  491.157765][ T6973] ecryptfs_validate_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README
[  491.207690][ T6973] Error validating options; rc = [-22]
[  491.236352][ T6974] ecryptfs_validate_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README
[  491.278207][ T6974] Error validating options; rc = [-22]
[  491.286462][ T3095] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  491.337748][ T6979] netlink: 60 bytes leftover after parsing attributes in process `syz.0.313'.
[  491.347183][ T6977] netlink: 60 bytes leftover after parsing attributes in process `syz.0.313'.
[  491.369449][ T6977] Can't find a SQUASHFS superblock on rnullb0
[  491.446317][ T3095] usb 6-1: Using ep0 maxpacket: 16
[  491.458364][ T3095] usb 6-1: config 0 has an invalid interface number: 105 but max is 0
[  491.467732][ T3095] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  491.486433][ T3095] usb 6-1: config 0 has no interface number 0
[  491.500955][ T3095] usb 6-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28
[  491.529728][ T3095] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  491.566542][ T3095] usb 6-1: Product: syz
[  491.570986][ T3095] usb 6-1: Manufacturer: syz
[  491.575725][ T3095] usb 6-1: SerialNumber: syz
[  491.624002][ T3095] usb 6-1: config 0 descriptor??
[  491.671492][ T3095] usb 6-1: Found UVC 0.00 device syz (046d:08f3)
[  491.706745][ T3095] usb 6-1: No valid video chain found.
[  491.876837][ T3095] usb 6-1: USB disconnect, device number 2
[  492.220578][ T7005] loop1: detected capacity change from 0 to 7
[  492.236737][ T7005] Dev loop1: unable to read RDB block 7
[  492.255810][ T7005]  loop1: AHDI p4
[  492.259511][ T7005] loop1: partition table partially beyond EOD, truncated
[  492.275285][ T7004] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  492.561239][ T7012] netlink: 56 bytes leftover after parsing attributes in process `syz.4.325'.
[  492.821841][   T30] audit: type=1326 audit(6043654471.955:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7017 comm="syz.5.328" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6baf98e929 code=0x0
[  492.890003][ T7021] netlink: 256 bytes leftover after parsing attributes in process `syz.5.328'.
[  492.978934][ T7023] exFAT-fs (rnullb0): invalid boot record signature
[  493.012024][ T7023] exFAT-fs (rnullb0): failed to read boot sector
[  493.019954][ T7023] exFAT-fs (rnullb0): failed to recognize exfat type
[  493.539287][ T7033] FAULT_INJECTION: forcing a failure.
[  493.539287][ T7033] name failslab, interval 1, probability 0, space 0, times 0
[  493.567152][ T7034] netlink: 4388 bytes leftover after parsing attributes in process `syz.3.333'.
[  493.584351][ T7033] CPU: 0 UID: 0 PID: 7033 Comm: syz.4.334 Not tainted 6.16.0-rc5-next-20250711-syzkaller #0 PREEMPT(full) 
[  493.584380][ T7033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  493.584392][ T7033] Call Trace:
[  493.584400][ T7033]  <TASK>
[  493.584408][ T7033]  dump_stack_lvl+0x189/0x250
[  493.584441][ T7033]  ? __pfx____ratelimit+0x10/0x10
[  493.584462][ T7033]  ? __pfx_dump_stack_lvl+0x10/0x10
[  493.584489][ T7033]  ? __pfx__printk+0x10/0x10
[  493.584523][ T7033]  ? __pfx___might_resched+0x10/0x10
[  493.584547][ T7033]  ? fs_reclaim_acquire+0x7d/0x100
[  493.584574][ T7033]  should_fail_ex+0x414/0x560
[  493.584611][ T7033]  should_failslab+0xa8/0x100
[  493.584632][ T7033]  __kmalloc_cache_noprof+0x70/0x3d0
[  493.584660][ T7033]  ? ip_set_create+0x348/0x1940
[  493.584692][ T7033]  ip_set_create+0x348/0x1940
[  493.584730][ T7033]  ? trace_contention_end+0x39/0x120
[  493.584761][ T7033]  ? __pfx_ip_set_create+0x10/0x10
[  493.584830][ T7033]  nfnetlink_rcv_msg+0xb4d/0x1130
[  493.584860][ T7033]  ? nfnetlink_rcv_msg+0x20d/0x1130
[  493.584909][ T7033]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  493.584933][ T7033]  ? kasan_save_free_info+0x46/0x50
[  493.585018][ T7033]  netlink_rcv_skb+0x205/0x470
[  493.585040][ T7033]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  493.585069][ T7033]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  493.585111][ T7033]  ? bpf_lsm_capable+0x9/0x20
[  493.585127][ T7033]  ? security_capable+0x7e/0x2e0
[  493.585163][ T7033]  nfnetlink_rcv+0x26a/0x2520
[  493.585194][ T7033]  ? __dev_queue_xmit+0x1d79/0x3b50
[  493.585233][ T7033]  ? __dev_queue_xmit+0x27b/0x3b50
[  493.585260][ T7033]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  493.585291][ T7033]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  493.585317][ T7033]  ? __pfx___dev_queue_xmit+0x10/0x10
[  493.585358][ T7033]  ? ref_tracker_free+0x63a/0x7d0
[  493.585377][ T7033]  ? __copy_skb_header+0xa7/0x550
[  493.585404][ T7033]  ? __pfx_ref_tracker_free+0x10/0x10
[  493.585423][ T7033]  ? __skb_clone+0x63/0x7a0
[  493.585451][ T7033]  ? __skb_clone+0x483/0x7a0
[  493.585482][ T7033]  ? skb_clone+0x246/0x3a0
[  493.585511][ T7033]  ? __netlink_deliver_tap+0x807/0x850
[  493.585531][ T7033]  ? netlink_deliver_tap+0x2e/0x1b0
[  493.585560][ T7033]  ? netlink_deliver_tap+0x2e/0x1b0
[  493.585580][ T7033]  ? netlink_deliver_tap+0x2e/0x1b0
[  493.585606][ T7033]  netlink_unicast+0x759/0x8e0
[  493.585649][ T7033]  netlink_sendmsg+0x805/0xb30
[  493.585682][ T7033]  ? __pfx_netlink_sendmsg+0x10/0x10
[  493.585707][ T7033]  ? aa_sock_msg_perm+0xf1/0x1d0
[  493.585728][ T7033]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  493.585750][ T7033]  ? __pfx_netlink_sendmsg+0x10/0x10
[  493.585772][ T7033]  __sock_sendmsg+0x21c/0x270
[  493.585803][ T7033]  ____sys_sendmsg+0x505/0x830
[  493.585831][ T7033]  ? __pfx_____sys_sendmsg+0x10/0x10
[  493.585864][ T7033]  ? import_iovec+0x74/0xa0
[  493.585896][ T7033]  ___sys_sendmsg+0x21f/0x2a0
[  493.585921][ T7033]  ? __pfx____sys_sendmsg+0x10/0x10
[  493.585981][ T7033]  ? __fget_files+0x2a/0x420
[  493.586002][ T7033]  ? __fget_files+0x3a0/0x420
[  493.586034][ T7033]  __x64_sys_sendmsg+0x19b/0x260
[  493.586061][ T7033]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  493.586108][ T7033]  ? __pfx_ksys_write+0x10/0x10
[  493.586125][ T7033]  ? rcu_is_watching+0x15/0xb0
[  493.586155][ T7033]  ? do_syscall_64+0xbe/0x3b0
[  493.586180][ T7033]  do_syscall_64+0xfa/0x3b0
[  493.586198][ T7033]  ? lockdep_hardirqs_on+0x9c/0x150
[  493.586217][ T7033]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  493.586235][ T7033]  ? clear_bhb_loop+0x60/0xb0
[  493.586258][ T7033]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  493.586275][ T7033] RIP: 0033:0x7f7b27b8e929
[  493.586292][ T7033] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  493.586306][ T7033] RSP: 002b:00007f7b28abc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  493.586327][ T7033] RAX: ffffffffffffffda RBX: 00007f7b27db5fa0 RCX: 00007f7b27b8e929
[  493.586339][ T7033] RDX: 0000000000000080 RSI: 0000200000000040 RDI: 0000000000000003
[  493.586350][ T7033] RBP: 00007f7b28abc090 R08: 0000000000000000 R09: 0000000000000000
[  493.586361][ T7033] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  493.586371][ T7033] R13: 0000000000000000 R14: 00007f7b27db5fa0 R15: 00007ffff9430638
[  493.586402][ T7033]  </TASK>
[  494.325042][ T7034] netlink: 60 bytes leftover after parsing attributes in process `syz.3.333'.
[  494.384998][ T7037] netlink: 60 bytes leftover after parsing attributes in process `syz.3.333'.
[  494.425810][ T7040] netlink: 60 bytes leftover after parsing attributes in process `syz.3.333'.
[  494.623197][ T7045] loop1: detected capacity change from 0 to 7
[  494.711555][ T7045] Dev loop1: unable to read RDB block 7
[  494.729236][ T7045]  loop1: unable to read partition table
[  494.735313][ T7045] loop1: partition table beyond EOD, truncated
[  494.741522][ T7045] loop_reread_partitions: partition scan of loop1 (�被��ڬ��fƤ����ݡ������
[  494.741522][ T7045] 
) failed (rc=-5)
[  494.947228][ T7047] syztnl1: mtu less than device minimum
[  495.883772][ T7077] syzkaller1: entered promiscuous mode
[  495.910004][ T7077] syzkaller1: entered allmulticast mode
[  495.935602][ T7077] FAULT_INJECTION: forcing a failure.
[  495.935602][ T7077] name failslab, interval 1, probability 0, space 0, times 0
[  495.948490][ T7077] CPU: 1 UID: 0 PID: 7077 Comm: syz.4.347 Not tainted 6.16.0-rc5-next-20250711-syzkaller #0 PREEMPT(full) 
[  495.948517][ T7077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  495.948527][ T7077] Call Trace:
[  495.948535][ T7077]  <TASK>
[  495.948543][ T7077]  dump_stack_lvl+0x189/0x250
[  495.948575][ T7077]  ? __pfx____ratelimit+0x10/0x10
[  495.948595][ T7077]  ? __pfx_dump_stack_lvl+0x10/0x10
[  495.948622][ T7077]  ? __pfx__printk+0x10/0x10
[  495.948650][ T7077]  ? __kernel_text_address+0xd/0x40
[  495.948672][ T7077]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  495.948706][ T7077]  should_fail_ex+0x414/0x560
[  495.948743][ T7077]  should_failslab+0xa8/0x100
[  495.948764][ T7077]  kmem_cache_alloc_noprof+0x73/0x3c0
[  495.948791][ T7077]  ? skb_clone+0x212/0x3a0
[  495.948814][ T7077]  ? stack_depot_save_flags+0x40/0x900
[  495.948837][ T7077]  skb_clone+0x212/0x3a0
[  495.948860][ T7077]  ? ip_rcv_core+0x126/0xd00
[  495.948882][ T7077]  ip_rcv_core+0x148/0xd00
[  495.948900][ T7077]  ? __kasan_slab_alloc+0x6c/0x80
[  495.948925][ T7077]  ? kmem_cache_alloc_node_noprof+0x1bb/0x3c0
[  495.948951][ T7077]  ? kmalloc_reserve+0xbd/0x290
[  495.948970][ T7077]  ? __alloc_skb+0x142/0x2d0
[  495.948990][ T7077]  ? sock_alloc_send_pskb+0x857/0x990
[  495.949014][ T7077]  ? tun_get_user+0xa43/0x3e20
[  495.949050][ T7077]  ? tun_chr_write_iter+0x113/0x200
[  495.949077][ T7077]  ? __pfx_ip_rcv+0x10/0x10
[  495.949095][ T7077]  ip_rcv+0x4d/0x90
[  495.949115][ T7077]  __netif_receive_skb_core+0x34d3/0x4010
[  495.949164][ T7077]  ? __pfx___netif_receive_skb_core+0x10/0x10
[  495.949197][ T7077]  ? __lock_acquire+0xab9/0xd20
[  495.949227][ T7077]  ? netif_receive_skb+0x115/0x790
[  495.949257][ T7077]  ? netif_receive_skb+0x115/0x790
[  495.949287][ T7077]  __netif_receive_skb+0x72/0x380
[  495.949313][ T7077]  ? netif_receive_skb+0x115/0x790
[  495.949340][ T7077]  netif_receive_skb+0x1cb/0x790
[  495.949368][ T7077]  ? __pfx___local_bh_disable_ip+0x10/0x10
[  495.949390][ T7077]  ? _copy_from_iter+0x24c/0x16f0
[  495.949416][ T7077]  ? __pfx_netif_receive_skb+0x10/0x10
[  495.949444][ T7077]  ? skb_partial_csum_set+0x107/0x360
[  495.949469][ T7077]  ? tun_rx_batched+0x160/0x730
[  495.949496][ T7077]  tun_rx_batched+0x1b9/0x730
[  495.949519][ T7077]  ? __lock_acquire+0xab9/0xd20
[  495.949545][ T7077]  ? __pfx_tun_rx_batched+0x10/0x10
[  495.949574][ T7077]  ? tun_get_user+0x266c/0x3e20
[  495.949613][ T7077]  tun_get_user+0x2aa2/0x3e20
[  495.949651][ T7077]  ? tun_get_user+0x266c/0x3e20
[  495.949676][ T7077]  ? aa_file_perm+0x13e/0x11b0
[  495.949697][ T7077]  ? aa_file_perm+0x3ed/0x11b0
[  495.949715][ T7077]  ? __pfx_tun_get_user+0x10/0x10
[  495.949738][ T7077]  ? _parse_integer_limit+0x1ae/0x1f0
[  495.949772][ T7077]  ? __lock_acquire+0xab9/0xd20
[  495.949800][ T7077]  ? ref_tracker_alloc+0x318/0x460
[  495.949818][ T7077]  ? __lock_acquire+0xab9/0xd20
[  495.949841][ T7077]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  495.949868][ T7077]  ? tun_get+0x1c/0x2f0
[  495.949899][ T7077]  ? tun_get+0x1c/0x2f0
[  495.949921][ T7077]  ? tun_get+0x1c/0x2f0
[  495.949950][ T7077]  tun_chr_write_iter+0x113/0x200
[  495.949978][ T7077]  vfs_write+0x548/0xa90
[  495.950004][ T7077]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  495.950038][ T7077]  ? __pfx_vfs_write+0x10/0x10
[  495.950069][ T7077]  ? __fget_files+0x2a/0x420
[  495.950103][ T7077]  ksys_write+0x145/0x250
[  495.950126][ T7077]  ? __pfx_ksys_write+0x10/0x10
[  495.950142][ T7077]  ? rcu_is_watching+0x15/0xb0
[  495.950173][ T7077]  ? do_syscall_64+0xbe/0x3b0
[  495.950198][ T7077]  do_syscall_64+0xfa/0x3b0
[  495.950217][ T7077]  ? lockdep_hardirqs_on+0x9c/0x150
[  495.950236][ T7077]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  495.950255][ T7077]  ? clear_bhb_loop+0x60/0xb0
[  495.950278][ T7077]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  495.950294][ T7077] RIP: 0033:0x7f7b27b8e929
[  495.950311][ T7077] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  495.950327][ T7077] RSP: 002b:00007f7b28abc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  495.950348][ T7077] RAX: ffffffffffffffda RBX: 00007f7b27db5fa0 RCX: 00007f7b27b8e929
[  495.950362][ T7077] RDX: 0000000000000036 RSI: 00002000000000c0 RDI: 0000000000000005
[  495.950373][ T7077] RBP: 00007f7b28abc090 R08: 0000000000000000 R09: 0000000000000000
[  495.950385][ T7077] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  495.950396][ T7077] R13: 0000000000000000 R14: 00007f7b27db5fa0 R15: 00007ffff9430638
[  495.950428][ T7077]  </TASK>
[  496.388522][    C1] vkms_vblank_simulate: vblank timer overrun
[  496.794120][ T7091] MTD: Attempt to mount non-MTD device "/dev/rnullb0"
[  496.822643][ T7091] VFS: Can't find a romfs filesystem on dev rnullb0.
[  496.822643][ T7091] 
[  496.851599][    T9] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  497.036471][    T9] usb 6-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  497.061381][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  497.118226][    T9] usb 6-1: config 0 descriptor??
[  497.151096][    T9] cp210x 6-1:0.0: cp210x converter detected
[  497.415535][ T5958] usb 1-1: new full-speed USB device number 15 using dummy_hcd
[  497.552202][    T9] cp210x 6-1:0.0: failed to get vendor val 0x000e size 3: -32
[  497.585864][ T5958] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  497.599324][    T9] usb 6-1: cp210x converter now attached to ttyUSB0
[  497.613103][ T5958] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBE, changing to 0x8E
[  497.649119][ T5958] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8E has an invalid bInterval 0, changing to 10
[  497.673035][ T5958] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  497.727176][ T5958] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  497.770793][ T5958] usb 1-1: New USB device found, idVendor=10c5, idProduct=819a, bcdDevice=e4.46
[  497.783180][ T5958] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=35
[  497.784780][ T7084] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  497.807654][ T7084] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  497.809542][ T5958] usb 1-1: Product: syz
[  497.860823][    T9] usb 6-1: USB disconnect, device number 3
[  497.877258][ T5958] usb 1-1: Manufacturer: syz
[  497.881911][ T5958] usb 1-1: SerialNumber: syz
[  497.908308][    T9] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  497.956377][ T5958] usb 1-1: config 0 descriptor??
[  498.011116][    T9] cp210x 6-1:0.0: device disconnected
[  498.045619][ T7117] netlink: 256 bytes leftover after parsing attributes in process `syz.4.357'.
[  498.093053][ T7117] FAULT_INJECTION: forcing a failure.
[  498.093053][ T7117] name failslab, interval 1, probability 0, space 0, times 0
[  498.133815][ T7117] CPU: 0 UID: 0 PID: 7117 Comm: syz.4.357 Not tainted 6.16.0-rc5-next-20250711-syzkaller #0 PREEMPT(full) 
[  498.133844][ T7117] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  498.133855][ T7117] Call Trace:
[  498.133867][ T7117]  <TASK>
[  498.133876][ T7117]  dump_stack_lvl+0x189/0x250
[  498.133908][ T7117]  ? __pfx____ratelimit+0x10/0x10
[  498.133929][ T7117]  ? __pfx_dump_stack_lvl+0x10/0x10
[  498.133956][ T7117]  ? __pfx__printk+0x10/0x10
[  498.133991][ T7117]  ? __pfx___might_resched+0x10/0x10
[  498.134015][ T7117]  ? fs_reclaim_acquire+0x7d/0x100
[  498.134041][ T7117]  should_fail_ex+0x414/0x560
[  498.134086][ T7117]  should_failslab+0xa8/0x100
[  498.134107][ T7117]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  498.134136][ T7117]  ? __alloc_skb+0x112/0x2d0
[  498.134164][ T7117]  __alloc_skb+0x112/0x2d0
[  498.134191][ T7117]  netlink_ack+0x146/0xa50
[  498.134209][ T7117]  ? __pfx_genl_rcv_msg+0x10/0x10
[  498.134255][ T7117]  netlink_rcv_skb+0x28c/0x470
[  498.134277][ T7117]  ? __pfx_genl_rcv_msg+0x10/0x10
[  498.134305][ T7117]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  498.134345][ T7117]  ? down_read+0x1ad/0x2e0
[  498.134371][ T7117]  genl_rcv+0x28/0x40
[  498.134394][ T7117]  netlink_unicast+0x759/0x8e0
[  498.134437][ T7117]  netlink_sendmsg+0x805/0xb30
[  498.134470][ T7117]  ? __pfx_netlink_sendmsg+0x10/0x10
[  498.134496][ T7117]  ? aa_sock_msg_perm+0xf1/0x1d0
[  498.134516][ T7117]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  498.134539][ T7117]  ? __pfx_netlink_sendmsg+0x10/0x10
[  498.134562][ T7117]  __sock_sendmsg+0x21c/0x270
[  498.134595][ T7117]  ____sys_sendmsg+0x505/0x830
[  498.134627][ T7117]  ? __pfx_____sys_sendmsg+0x10/0x10
[  498.134663][ T7117]  ? import_iovec+0x74/0xa0
[  498.134697][ T7117]  ___sys_sendmsg+0x21f/0x2a0
[  498.134725][ T7117]  ? __pfx____sys_sendmsg+0x10/0x10
[  498.134794][ T7117]  ? __fget_files+0x2a/0x420
[  498.134824][ T7117]  ? __fget_files+0x3a0/0x420
[  498.134859][ T7117]  __x64_sys_sendmsg+0x19b/0x260
[  498.134887][ T7117]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  498.134924][ T7117]  ? __pfx_ksys_write+0x10/0x10
[  498.134941][ T7117]  ? rcu_is_watching+0x15/0xb0
[  498.134973][ T7117]  ? do_syscall_64+0xbe/0x3b0
[  498.134998][ T7117]  do_syscall_64+0xfa/0x3b0
[  498.135017][ T7117]  ? lockdep_hardirqs_on+0x9c/0x150
[  498.135036][ T7117]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  498.135054][ T7117]  ? clear_bhb_loop+0x60/0xb0
[  498.135086][ T7117]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  498.135104][ T7117] RIP: 0033:0x7f7b27b8e929
[  498.135121][ T7117] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  498.135136][ T7117] RSP: 002b:00007f7b28abc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  498.135157][ T7117] RAX: ffffffffffffffda RBX: 00007f7b27db5fa0 RCX: 00007f7b27b8e929
[  498.135170][ T7117] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  498.135183][ T7117] RBP: 00007f7b28abc090 R08: 0000000000000000 R09: 0000000000000000
[  498.135194][ T7117] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  498.135206][ T7117] R13: 0000000000000000 R14: 00007f7b27db5fa0 R15: 00007ffff9430638
[  498.135239][ T7117]  </TASK>
[  498.873107][ T5958] radio-si470x 1-1:0.0: DeviceID=0xf603 ChipID=0xcabd
[  498.882541][ T5958] radio-si470x 1-1:0.0: software version 246, hardware version 3
[  499.083844][ T7102] syzkaller1: entered promiscuous mode
[  499.089402][ T7102] syzkaller1: entered allmulticast mode
[  499.283272][ T5958] radio-si470x 1-1:0.0: si470x_set_report: usb_control_msg returned -71
[  499.292468][ T5958] radio-si470x 1-1:0.0: submitting int urb failed (-90)
[  499.307174][ T5958] radio-si470x 1-1:0.0: si470x_set_report: usb_control_msg returned -71
[  499.341656][ T5958] radio-si470x 1-1:0.0: probe with driver radio-si470x failed with error -22
[  499.423534][ T5958] usb 1-1: USB disconnect, device number 15
[  499.854110][ T7141] tipc: Started in network mode
[  499.866831][ T7141] tipc: Node identity 5676944ed0c3, cluster identity 4711
[  499.892155][ T7141] tipc: Enabled bearer <eth:syzkaller0>, priority 10
[  500.169154][ T7141] tipc: Resetting bearer <eth:syzkaller0>
[  500.223181][ T7140] tipc: Resetting bearer <eth:syzkaller0>
[  500.630316][ T7161] netlink: 'syz.0.367': attribute type 20 has an invalid length.
[  500.848089][ T7168] FAULT_INJECTION: forcing a failure.
[  500.848089][ T7168] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  500.866701][ T7168] CPU: 0 UID: 0 PID: 7168 Comm: syz.0.369 Not tainted 6.16.0-rc5-next-20250711-syzkaller #0 PREEMPT(full) 
[  500.866729][ T7168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  500.866739][ T7168] Call Trace:
[  500.866748][ T7168]  <TASK>
[  500.866756][ T7168]  dump_stack_lvl+0x189/0x250
[  500.866788][ T7168]  ? __pfx____ratelimit+0x10/0x10
[  500.866809][ T7168]  ? __pfx_dump_stack_lvl+0x10/0x10
[  500.866834][ T7168]  ? __pfx__printk+0x10/0x10
[  500.866861][ T7168]  ? __might_fault+0xb0/0x130
[  500.866900][ T7168]  should_fail_ex+0x414/0x560
[  500.866937][ T7168]  _copy_from_user+0x2d/0xb0
[  500.866956][ T7168]  kstrtouint_from_user+0xc4/0x170
[  500.866984][ T7168]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  500.867038][ T7168]  proc_fail_nth_write+0x88/0x240
[  500.867065][ T7168]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  500.867097][ T7168]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  500.867126][ T7168]  vfs_write+0x27b/0xa90
[  500.867157][ T7168]  ? __pfx_vfs_write+0x10/0x10
[  500.867178][ T7168]  ? __fget_files+0x2a/0x420
[  500.867206][ T7168]  ? __fget_files+0x3a0/0x420
[  500.867227][ T7168]  ? __fget_files+0x2a/0x420
[  500.867260][ T7168]  ksys_write+0x145/0x250
[  500.867290][ T7168]  ? __pfx_ksys_write+0x10/0x10
[  500.867307][ T7168]  ? rcu_is_watching+0x15/0xb0
[  500.867338][ T7168]  ? do_syscall_64+0xbe/0x3b0
[  500.867363][ T7168]  do_syscall_64+0xfa/0x3b0
[  500.867382][ T7168]  ? lockdep_hardirqs_on+0x9c/0x150
[  500.867401][ T7168]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  500.867420][ T7168]  ? clear_bhb_loop+0x60/0xb0
[  500.867442][ T7168]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  500.867460][ T7168] RIP: 0033:0x7f7775f8d3df
[  500.867478][ T7168] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  500.867493][ T7168] RSP: 002b:00007f7773df6030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  500.867514][ T7168] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f7775f8d3df
[  500.867527][ T7168] RDX: 0000000000000001 RSI: 00007f7773df60a0 RDI: 0000000000000005
[  500.867538][ T7168] RBP: 00007f7773df6090 R08: 0000000000000000 R09: 0000000000000000
[  500.867550][ T7168] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  500.867561][ T7168] R13: 0000000000000000 R14: 00007f77761b6080 R15: 00007ffc7833ec38
[  500.867592][ T7168]  </TASK>
[  500.981452][ T3095] tipc: Node number set to 2260046926
[  501.649868][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  501.656536][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  503.086611][ T7140] tipc: Disabling bearer <eth:syzkaller0>
[  503.639592][ T7182] netlink: 1752 bytes leftover after parsing attributes in process `syz.5.373'.
[  504.013409][ T7189] fuse: Bad value for 'fd'
[  504.078592][ T7191] hpfs: Bad magic ... probably not HPFS
[  504.398448][ T7195] netlink: 4 bytes leftover after parsing attributes in process `syz.4.379'.
[  504.458751][ T3095] usb 1-1: new full-speed USB device number 16 using dummy_hcd
[  504.637798][ T3095] usb 1-1: not running at top speed; connect to a high speed hub
[  504.651739][ T3095] usb 1-1: config index 0 descriptor too short (expected 9, got 0)
[  504.671918][ T3095] usb 1-1: can't read configurations, error -22
[  504.847913][ T3095] usb 1-1: new full-speed USB device number 17 using dummy_hcd
[  505.052102][ T3095] usb 1-1: not running at top speed; connect to a high speed hub
[  505.061773][ T3095] usb 1-1: config index 0 descriptor too short (expected 9, got 0)
[  505.079400][ T3095] usb 1-1: can't read configurations, error -22
[  505.094857][ T3095] usb usb1-port1: attempt power cycle
[  505.449186][ T3095] usb 1-1: new full-speed USB device number 18 using dummy_hcd
[  505.515695][ T3095] usb 1-1: not running at top speed; connect to a high speed hub
[  505.539452][ T3095] usb 1-1: config index 0 descriptor too short (expected 9, got 0)
[  505.552244][ T3095] usb 1-1: can't read configurations, error -22
[  505.697423][ T7223] netlink: 1624 bytes leftover after parsing attributes in process `syz.5.390'.
[  505.707050][ T3095] usb 1-1: new full-speed USB device number 19 using dummy_hcd
[  505.770541][ T3095] usb 1-1: not running at top speed; connect to a high speed hub
[  505.808494][ T3095] usb 1-1: config index 0 descriptor too short (expected 9, got 0)
[  505.847665][ T3095] usb 1-1: can't read configurations, error -22
[  505.883928][ T3095] usb usb1-port1: unable to enumerate USB device
[  506.496567][ T7235] FAULT_INJECTION: forcing a failure.
[  506.496567][ T7235] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  506.535207][ T7231] capability: warning: `syz.5.394' uses deprecated v2 capabilities in a way that may be insecure
[  506.546154][ T7235] CPU: 1 UID: 0 PID: 7235 Comm: syz.4.396 Not tainted 6.16.0-rc5-next-20250711-syzkaller #0 PREEMPT(full) 
[  506.546191][ T7235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  506.546203][ T7235] Call Trace:
[  506.546212][ T7235]  <TASK>
[  506.546221][ T7235]  dump_stack_lvl+0x189/0x250
[  506.546254][ T7235]  ? __pfx____ratelimit+0x10/0x10
[  506.546276][ T7235]  ? __pfx_dump_stack_lvl+0x10/0x10
[  506.546303][ T7235]  ? __pfx__printk+0x10/0x10
[  506.546345][ T7235]  should_fail_ex+0x414/0x560
[  506.546382][ T7235]  _copy_to_user+0x31/0xb0
[  506.546405][ T7235]  simple_read_from_buffer+0xe1/0x170
[  506.546435][ T7235]  proc_fail_nth_read+0x1df/0x250
[  506.546466][ T7235]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  506.546496][ T7235]  ? rw_verify_area+0x2a6/0x4d0
[  506.546514][ T7235]  ? __lock_acquire+0xab9/0xd20
[  506.546534][ T7235]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  506.546562][ T7235]  vfs_read+0x1fd/0x980
[  506.546588][ T7235]  ? __pfx___mutex_lock+0x10/0x10
[  506.546610][ T7235]  ? __pfx_vfs_read+0x10/0x10
[  506.546632][ T7235]  ? __fget_files+0x2a/0x420
[  506.546661][ T7235]  ? __fget_files+0x3a0/0x420
[  506.546682][ T7235]  ? __fget_files+0x2a/0x420
[  506.546716][ T7235]  ksys_read+0x145/0x250
[  506.546734][ T7235]  ? __fget_files+0x3a0/0x420
[  506.546759][ T7235]  ? __pfx_ksys_read+0x10/0x10
[  506.546785][ T7235]  ? do_syscall_64+0xbe/0x3b0
[  506.546810][ T7235]  do_syscall_64+0xfa/0x3b0
[  506.546829][ T7235]  ? lockdep_hardirqs_on+0x9c/0x150
[  506.546848][ T7235]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  506.546868][ T7235]  ? clear_bhb_loop+0x60/0xb0
[  506.546892][ T7235]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  506.546911][ T7235] RIP: 0033:0x7f7b27b8d33c
[  506.546929][ T7235] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  506.546945][ T7235] RSP: 002b:00007f7b28abc030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  506.546967][ T7235] RAX: ffffffffffffffda RBX: 00007f7b27db5fa0 RCX: 00007f7b27b8d33c
[  506.546980][ T7235] RDX: 000000000000000f RSI: 00007f7b28abc0a0 RDI: 0000000000000005
[  506.546992][ T7235] RBP: 00007f7b28abc090 R08: 0000000000000000 R09: 0000000000000000
[  506.547004][ T7235] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  506.547015][ T7235] R13: 0000000000000000 R14: 00007f7b27db5fa0 R15: 00007ffff9430638
[  506.547049][ T7235]  </TASK>
[  506.783719][    C1] vkms_vblank_simulate: vblank timer overrun
[  507.068366][ T5938] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  507.249405][ T5938] usb 6-1: Using ep0 maxpacket: 32
[  507.257299][ T5938] usb 6-1: unable to get BOS descriptor or descriptor too short
[  507.282075][ T5938] usb 6-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  507.302808][ T5938] usb 6-1: config 1 has no interface number 1
[  507.323548][ T5938] usb 6-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  507.357027][ T5938] usb 6-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 177, changing to 7
[  507.391211][ T5938] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  507.403961][ T5938] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  507.422810][ T5938] usb 6-1: Product: syz
[  507.433511][ T5938] usb 6-1: Manufacturer: syz
[  507.449975][ T7251] XFS (rnullb0): Invalid superblock magic number
[  507.456908][ T5938] usb 6-1: SerialNumber: syz
[  507.716867][ T5938] usb 6-1: 2:1 : unknown format tag 0x0 is detected.  processed as MPEG.
[  507.739452][ T5938] usb 6-1: found format II with max.bitrate = 6, frame size=8
[  507.749774][ T5938] usb 6-1: 2:1 : unknown format tag 0x0 is detected.  processed as MPEG.
[  507.759186][ T5938] usb 6-1: found format II with max.bitrate = 6, frame size=8
[  507.853194][ T5938] usb 6-1: USB disconnect, device number 4
[  507.933831][ T5896] udevd[5896]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  508.634745][ T7272] syzkaller1: entered promiscuous mode
[  508.646823][ T7272] syzkaller1: entered allmulticast mode
[  508.902551][ T7276] FAT-fs (rnullb0): bogus number of reserved sectors
[  508.937420][ T7276] FAT-fs (rnullb0): Can't find a valid FAT filesystem
[  508.988087][ T7276] FAT-fs (rnullb0): bogus number of reserved sectors
[  508.994836][ T7276] FAT-fs (rnullb0): Can't find a valid FAT filesystem
[  509.298677][ T7283] gfs2: not a GFS2 filesystem
[  509.609087][ T7289] FAULT_INJECTION: forcing a failure.
[  509.609087][ T7289] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  509.655306][ T7291] netlink: 36 bytes leftover after parsing attributes in process `syz.4.413'.
[  509.661886][ T7289] CPU: 0 UID: 0 PID: 7289 Comm: syz.5.412 Not tainted 6.16.0-rc5-next-20250711-syzkaller #0 PREEMPT(full) 
[  509.661910][ T7289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  509.661930][ T7289] Call Trace:
[  509.661938][ T7289]  <TASK>
[  509.661945][ T7289]  dump_stack_lvl+0x189/0x250
[  509.661974][ T7289]  ? __pfx____ratelimit+0x10/0x10
[  509.661993][ T7289]  ? __pfx_dump_stack_lvl+0x10/0x10
[  509.662016][ T7289]  ? __pfx__printk+0x10/0x10
[  509.662040][ T7289]  ? __might_fault+0xb0/0x130
[  509.662076][ T7289]  should_fail_ex+0x414/0x560
[  509.662107][ T7289]  _copy_from_user+0x2d/0xb0
[  509.662124][ T7289]  memdup_user+0x5e/0xd0
[  509.662145][ T7289]  kvm_arch_vcpu_ioctl+0x193c/0x2a40
[  509.662167][ T7289]  ? __lock_acquire+0xab9/0xd20
[  509.662192][ T7289]  ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10
[  509.662216][ T7289]  ? __lock_acquire+0xab9/0xd20
[  509.662256][ T7289]  ? is_bpf_text_address+0x26/0x2b0
[  509.662281][ T7289]  ? is_bpf_text_address+0x292/0x2b0
[  509.662299][ T7289]  ? is_bpf_text_address+0x26/0x2b0
[  509.662321][ T7289]  ? kernel_text_address+0xa5/0xe0
[  509.662340][ T7289]  ? __kernel_text_address+0xd/0x40
[  509.662357][ T7289]  ? unwind_get_return_address+0x4d/0x90
[  509.662378][ T7289]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  509.662402][ T7289]  ? arch_stack_walk+0xfc/0x150
[  509.662439][ T7289]  ? stack_trace_save+0x9c/0xe0
[  509.662466][ T7289]  ? stack_depot_save_flags+0x40/0x900
[  509.662493][ T7289]  ? kasan_save_track+0x4f/0x80
[  509.662514][ T7289]  ? kasan_save_track+0x3e/0x80
[  509.662546][ T7289]  ? __lock_acquire+0xab9/0xd20
[  509.662574][ T7289]  ? __mutex_trylock_common+0x153/0x260
[  509.662601][ T7289]  ? __pfx___mutex_trylock_common+0x10/0x10
[  509.662628][ T7289]  ? rcu_is_watching+0x15/0xb0
[  509.662650][ T7289]  ? trace_contention_end+0x39/0x120
[  509.662674][ T7289]  ? __mutex_lock+0x330/0xe80
[  509.662695][ T7289]  ? kasan_quarantine_put+0xdd/0x220
[  509.662722][ T7289]  ? kvm_vcpu_ioctl+0x22e/0xe90
[  509.662755][ T7289]  ? __pfx___mutex_lock+0x10/0x10
[  509.662774][ T7289]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  509.662801][ T7289]  ? do_vfs_ioctl+0xbe8/0x1430
[  509.662820][ T7289]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  509.662840][ T7289]  kvm_vcpu_ioctl+0x74d/0xe90
[  509.662870][ T7289]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  509.662891][ T7289]  ? __lock_acquire+0xab9/0xd20
[  509.662938][ T7289]  ? __fget_files+0x2a/0x420
[  509.662961][ T7289]  ? __fget_files+0x2a/0x420
[  509.662979][ T7289]  ? __fget_files+0x3a0/0x420
[  509.662997][ T7289]  ? __fget_files+0x2a/0x420
[  509.663020][ T7289]  ? bpf_lsm_file_ioctl+0x9/0x20
[  509.663042][ T7289]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  509.663066][ T7289]  __se_sys_ioctl+0xf9/0x170
[  509.663093][ T7289]  do_syscall_64+0xfa/0x3b0
[  509.663110][ T7289]  ? lockdep_hardirqs_on+0x9c/0x150
[  509.663127][ T7289]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  509.663143][ T7289]  ? clear_bhb_loop+0x60/0xb0
[  509.663164][ T7289]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  509.663180][ T7289] RIP: 0033:0x7f6baf98e929
[  509.663196][ T7289] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  509.663210][ T7289] RSP: 002b:00007f6bb0787038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  509.663230][ T7289] RAX: ffffffffffffffda RBX: 00007f6bafbb5fa0 RCX: 00007f6baf98e929
[  509.663242][ T7289] RDX: 0000200000000000 RSI: 000000004140aecd RDI: 0000000000000005
[  509.663253][ T7289] RBP: 00007f6bb0787090 R08: 0000000000000000 R09: 0000000000000000
[  509.663264][ T7289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  509.663274][ T7289] R13: 0000000000000000 R14: 00007f6bafbb5fa0 R15: 00007ffd35ef1e78
[  509.663302][ T7289]  </TASK>
[  509.709498][ T5909] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  509.740845][ T7291] netlink: 16 bytes leftover after parsing attributes in process `syz.4.413'.
[  509.749477][ T5909] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  509.768841][ T7291] netlink: 36 bytes leftover after parsing attributes in process `syz.4.413'.
[  509.771632][ T5909] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  509.790258][ T7291] netlink: 36 bytes leftover after parsing attributes in process `syz.4.413'.
[  509.794934][ T5909] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  510.098422][ T5958] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[  510.102412][ T7296] MTD: Attempt to mount non-MTD device "/dev/rnullb0"
[  510.107490][ T5909] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  510.167978][ T7296] VFS: Can't find a romfs filesystem on dev rnullb0.
[  510.167978][ T7296] 
[  510.211602][ T7298] MTD: Attempt to mount non-MTD device "/dev/rnullb0"
[  510.227054][ T7298] VFS: Can't find a romfs filesystem on dev rnullb0.
[  510.227054][ T7298] 
[  510.323592][ T5958] usb 1-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36
[  510.340480][ T5958] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  510.375812][ T5958] usb 1-1: Product: syz
[  510.396064][ T5958] usb 1-1: Manufacturer: syz
[  510.422516][ T5958] usb 1-1: SerialNumber: syz
[  510.445874][ T5958] usb 1-1: config 0 descriptor??
[  510.468499][ T5958] ch341 1-1:0.0: ch341-uart converter detected
[  510.824864][ T7292] chnl_net:caif_netlink_parms(): no params data found
[  510.878568][ T7287] /dev/nullb0: Can't open blockdev
[  510.889849][ T5958] usb 1-1: failed to send control message: -71
[  510.921941][ T5958] ch341-uart ttyUSB0: probe with driver ch341-uart failed with error -71
[  510.960539][ T5958] usb 1-1: USB disconnect, device number 20
[  510.994827][ T5958] ch341 1-1:0.0: device disconnected
[  511.538082][ T7292] bridge0: port 1(bridge_slave_0) entered blocking state
[  511.568272][ T7292] bridge0: port 1(bridge_slave_0) entered disabled state
[  511.575566][ T7292] bridge_slave_0: entered allmulticast mode
[  511.655376][ T7292] bridge_slave_0: entered promiscuous mode
[  511.770680][ T7292] bridge0: port 2(bridge_slave_1) entered blocking state
[  511.846157][ T7292] bridge0: port 2(bridge_slave_1) entered disabled state
[  511.901694][ T7292] bridge_slave_1: entered allmulticast mode
[  511.923070][ T7349] fuse: Unknown parameter '�v�0x0000000000000006'
[  511.952396][ T7292] bridge_slave_1: entered promiscuous mode
[  512.158521][ T7292] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  512.198221][ T5909] Bluetooth: hci6: command tx timeout
[  512.212976][ T7292] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  512.303520][ T7292] team0: Port device team_slave_0 added
[  512.314227][ T7292] team0: Port device team_slave_1 added
[  512.391046][ T7292] batman_adv: batadv0: Adding interface: batadv_slave_0
[  512.410256][ T7292] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  512.439618][ T7292] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  512.454770][ T7292] batman_adv: batadv0: Adding interface: batadv_slave_1
[  512.462512][ T7292] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  512.490362][ T7292] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  512.502810][ T7361] fuse: Bad value for 'fd'
[  512.838570][ T7292] hsr_slave_0: entered promiscuous mode
[  512.879617][ T7292] hsr_slave_1: entered promiscuous mode
[  512.893433][ T7292] debugfs: 'hsr0' already exists in 'hsr'
[  512.908545][ T7292] Cannot create hsr debugfs directory
[  512.921890][ T7365] @: renamed from vlan0 (while UP)
[  513.736074][ T5958] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  513.915630][ T5958] usb 5-1: Using ep0 maxpacket: 8
[  513.949402][ T5958] usb 5-1: unable to get BOS descriptor or descriptor too short
[  513.969569][ T5958] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xEE, changing to 0x8E
[  513.971833][ T7292] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  513.996309][ T5958] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8E has an invalid bInterval 0, changing to 7
[  514.013606][ T7379] ceph: No mds server is up or the cluster is laggy
[  514.018431][ T7292] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  514.032858][ T5958] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  514.034810][ T7383] ceph: No mds server is up or the cluster is laggy
[  514.074270][ T5958] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0xC has invalid maxpacket 1
[  514.077258][ T7292] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  514.116932][ T5958] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0xF has invalid wMaxPacketSize 0
[  514.128191][ T5958] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xDD, changing to 0x8D
[  514.136631][ T7292] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  514.152625][ T5958] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8D has invalid wMaxPacketSize 0
[  514.178486][ T5958] usb 5-1: New USB device found, idVendor=0763, idProduct=1002, bcdDevice=5f.84
[  514.194276][ T5958] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  514.228155][ T5958] usb 5-1: Product: syz
[  514.252717][ T5958] usb 5-1: Manufacturer: syz
[  514.268199][ T5958] usb 5-1: SerialNumber: syz
[  514.275577][ T5909] Bluetooth: hci6: command tx timeout
[  514.301859][ T5958] usb 5-1: config 0 descriptor??
[  514.342202][ T7393] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  514.370838][ T5958] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  514.599322][ T5958] usb 5-1: USB disconnect, device number 8
[  514.659321][ T7292] 8021q: adding VLAN 0 to HW filter on device bond0
[  514.733226][ T6066] udevd[6066]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  514.799345][ T7292] 8021q: adding VLAN 0 to HW filter on device team0
[  515.000739][ T7415] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  515.081064][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[  515.088442][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[  515.114782][  T981] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  515.222963][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[  515.230198][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[  515.312354][  T981] usb 6-1: config 0 has no interfaces?
[  515.322904][  T981] usb 6-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  515.377322][  T981] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  515.394591][  T981] usb 6-1: Product: syz
[  515.407480][  T981] usb 6-1: Manufacturer: syz
[  515.423812][ T7415] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  515.437134][  T981] usb 6-1: SerialNumber: syz
[  515.459437][  T981] usb 6-1: config 0 descriptor??
[  515.477639][ T7436] capability: warning: `syz.0.439' uses 32-bit capabilities (legacy support in use)
[  515.667351][ T7415] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  516.001135][ T7415] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  516.010175][ T7446] netlink: 24 bytes leftover after parsing attributes in process `syz.0.441'.
[  516.079173][ T7446] netlink: 'syz.0.441': attribute type 1 has an invalid length.
[  516.103076][ T7446] netlink: 32 bytes leftover after parsing attributes in process `syz.0.441'.
[  516.139748][ T7446] FAULT_INJECTION: forcing a failure.
[  516.139748][ T7446] name failslab, interval 1, probability 0, space 0, times 0
[  516.212700][ T7446] CPU: 1 UID: 0 PID: 7446 Comm: syz.0.441 Not tainted 6.16.0-rc5-next-20250711-syzkaller #0 PREEMPT(full) 
[  516.212754][ T7446] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  516.212767][ T7446] Call Trace:
[  516.212775][ T7446]  <TASK>
[  516.212784][ T7446]  dump_stack_lvl+0x189/0x250
[  516.212818][ T7446]  ? __pfx____ratelimit+0x10/0x10
[  516.212840][ T7446]  ? __pfx_dump_stack_lvl+0x10/0x10
[  516.212867][ T7446]  ? __pfx__printk+0x10/0x10
[  516.212900][ T7446]  ? __pfx___might_resched+0x10/0x10
[  516.212922][ T7446]  ? fs_reclaim_acquire+0x7d/0x100
[  516.212948][ T7446]  should_fail_ex+0x414/0x560
[  516.212983][ T7446]  should_failslab+0xa8/0x100
[  516.213003][ T7446]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  516.213031][ T7446]  ? __alloc_skb+0x112/0x2d0
[  516.213057][ T7446]  __alloc_skb+0x112/0x2d0
[  516.213083][ T7446]  netlink_ack+0x146/0xa50
[  516.213100][ T7446]  ? __pfx_genl_rcv_msg+0x10/0x10
[  516.213122][ T7446]  ? __pfx_nl802154_pre_doit+0x10/0x10
[  516.213148][ T7446]  ? __pfx_nl802154_post_doit+0x10/0x10
[  516.213182][ T7446]  netlink_rcv_skb+0x28c/0x470
[  516.213205][ T7446]  ? __pfx_genl_rcv_msg+0x10/0x10
[  516.213230][ T7446]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  516.213270][ T7446]  ? down_read+0x1ad/0x2e0
[  516.213294][ T7446]  genl_rcv+0x28/0x40
[  516.213317][ T7446]  netlink_unicast+0x759/0x8e0
[  516.213358][ T7446]  netlink_sendmsg+0x805/0xb30
[  516.213389][ T7446]  ? __pfx_netlink_sendmsg+0x10/0x10
[  516.213414][ T7446]  ? aa_sock_msg_perm+0xf1/0x1d0
[  516.213436][ T7446]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  516.213459][ T7446]  ? __pfx_netlink_sendmsg+0x10/0x10
[  516.213482][ T7446]  __sock_sendmsg+0x21c/0x270
[  516.213516][ T7446]  ____sys_sendmsg+0x505/0x830
[  516.213548][ T7446]  ? __pfx_____sys_sendmsg+0x10/0x10
[  516.213581][ T7446]  ? import_iovec+0x74/0xa0
[  516.213612][ T7446]  ___sys_sendmsg+0x21f/0x2a0
[  516.213641][ T7446]  ? __pfx____sys_sendmsg+0x10/0x10
[  516.213708][ T7446]  ? __fget_files+0x2a/0x420
[  516.213730][ T7446]  ? __fget_files+0x3a0/0x420
[  516.213766][ T7446]  __x64_sys_sendmsg+0x19b/0x260
[  516.213794][ T7446]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  516.213827][ T7446]  ? __pfx_ksys_write+0x10/0x10
[  516.213845][ T7446]  ? rcu_is_watching+0x15/0xb0
[  516.213874][ T7446]  ? do_syscall_64+0xbe/0x3b0
[  516.213899][ T7446]  do_syscall_64+0xfa/0x3b0
[  516.213917][ T7446]  ? lockdep_hardirqs_on+0x9c/0x150
[  516.213937][ T7446]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  516.213956][ T7446]  ? clear_bhb_loop+0x60/0xb0
[  516.213979][ T7446]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  516.213997][ T7446] RIP: 0033:0x7f7775f8e929
[  516.214014][ T7446] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  516.214030][ T7446] RSP: 002b:00007f7776d2c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  516.214051][ T7446] RAX: ffffffffffffffda RBX: 00007f77761b5fa0 RCX: 00007f7775f8e929
[  516.214065][ T7446] RDX: 0000000000020040 RSI: 0000200000000840 RDI: 0000000000000004
[  516.214077][ T7446] RBP: 00007f7776d2c090 R08: 0000000000000000 R09: 0000000000000000
[  516.214089][ T7446] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  516.214100][ T7446] R13: 0000000000000000 R14: 00007f77761b5fa0 R15: 00007ffc7833ec38
[  516.214142][ T7446]  </TASK>
[  516.562106][   T49] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  516.570740][ T5909] Bluetooth: hci6: command tx timeout
[  516.753937][ T5958] usb 6-1: USB disconnect, device number 5
[  516.784167][ T7292] 8021q: adding VLAN 0 to HW filter on device batadv0
[  516.864707][ T6633] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  516.910296][ T6633] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  516.947658][ T6633] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  517.420099][ T7467] netlink: 32 bytes leftover after parsing attributes in process `syz.4.445'.
[  517.814558][ T7292] veth0_vlan: entered promiscuous mode
[  517.850507][ T7292] veth1_vlan: entered promiscuous mode
[  517.905686][ T7478] netlink: 104 bytes leftover after parsing attributes in process `syz.0.448'.
[  518.010996][ T7292] veth0_macvtap: entered promiscuous mode
[  518.067558][ T7292] veth1_macvtap: entered promiscuous mode
[  518.152056][ T7292] batman_adv: batadv0: Interface activated: batadv_slave_0
[  518.202429][ T7292] batman_adv: batadv0: Interface activated: batadv_slave_1
[  518.232325][ T6633] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  518.259002][ T6633] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  518.306799][ T6633] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  518.339666][ T6633] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  518.502414][ T6635] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  518.565836][ T6635] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  518.603454][ T5909] Bluetooth: hci6: command tx timeout
[  518.618961][ T7495] misc userio: Begin command sent, but we're already running
[  518.697732][ T6633] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  518.717939][ T6633] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  518.860479][ T7498] netlink: 132 bytes leftover after parsing attributes in process `syz.0.452'.
[  519.034162][ T7500] syzkaller1: entered promiscuous mode
[  519.072651][ T7500] syzkaller1: entered allmulticast mode
[  519.115582][ T7503] netlink: 12 bytes leftover after parsing attributes in process `syz.6.404'.
[  519.183120][ T7508] omfs: Invalid superblock (0)
[  520.227704][ T7540] FAULT_INJECTION: forcing a failure.
[  520.227704][ T7540] name fail_iommufd, interval 1, probability 0, space 0, times 0
[  520.242652][ T7540] CPU: 0 UID: 0 PID: 7540 Comm: syz.6.465 Not tainted 6.16.0-rc5-next-20250711-syzkaller #0 PREEMPT(full) 
[  520.242681][ T7540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  520.242692][ T7540] Call Trace:
[  520.242701][ T7540]  <TASK>
[  520.242709][ T7540]  dump_stack_lvl+0x189/0x250
[  520.242742][ T7540]  ? __pfx____ratelimit+0x10/0x10
[  520.242764][ T7540]  ? __pfx_dump_stack_lvl+0x10/0x10
[  520.242789][ T7540]  ? __pfx__printk+0x10/0x10
[  520.242812][ T7540]  ? __lock_acquire+0xab9/0xd20
[  520.242840][ T7540]  ? iopt_pages_rw_slow+0xc3/0x570
[  520.242869][ T7540]  ? __pfx___mutex_lock+0x10/0x10
[  520.242894][ T7540]  should_fail_ex+0x414/0x560
[  520.242931][ T7540]  pfn_reader_first+0x27a/0xa80
[  520.242963][ T7540]  iopt_pages_rw_slow+0xd4/0x570
[  520.242999][ T7540]  ? __pfx_iopt_pages_rw_slow+0x10/0x10
[  520.243067][ T7540]  ? __lock_acquire+0xab9/0xd20
[  520.243107][ T7540]  iopt_pages_rw_access+0x1e6/0x880
[  520.243146][ T7540]  ? __pfx_iopt_pages_rw_access+0x10/0x10
[  520.243169][ T7540]  ? interval_tree_iter_first+0x1d0/0x1f0
[  520.243199][ T7540]  ? iopt_area_contig_init+0x17c/0x220
[  520.243230][ T7540]  iommufd_access_rw+0x312/0x4b0
[  520.243267][ T7540]  ? __pfx_iommufd_access_rw+0x10/0x10
[  520.243309][ T7540]  iommufd_test+0x4094/0x5170
[  520.243343][ T7540]  ? kasan_quarantine_put+0xdd/0x220
[  520.243375][ T7540]  ? __pfx_iommufd_test+0x10/0x10
[  520.243407][ T7540]  ? __lock_acquire+0xab9/0xd20
[  520.243443][ T7540]  ? __might_fault+0xb0/0x130
[  520.243500][ T7540]  iommufd_fops_ioctl+0x45b/0x580
[  520.243530][ T7540]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  520.243558][ T7540]  ? __fget_files+0x2a/0x420
[  520.243590][ T7540]  ? __fget_files+0x2a/0x420
[  520.243616][ T7540]  ? bpf_lsm_file_ioctl+0x9/0x20
[  520.243642][ T7540]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  520.243664][ T7540]  __se_sys_ioctl+0xf9/0x170
[  520.243697][ T7540]  do_syscall_64+0xfa/0x3b0
[  520.243716][ T7540]  ? lockdep_hardirqs_on+0x9c/0x150
[  520.243736][ T7540]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  520.243755][ T7540]  ? clear_bhb_loop+0x60/0xb0
[  520.243780][ T7540]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  520.243798][ T7540] RIP: 0033:0x7faf6db8e929
[  520.243817][ T7540] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  520.243833][ T7540] RSP: 002b:00007faf6ea6f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  520.243854][ T7540] RAX: ffffffffffffffda RBX: 00007faf6ddb5fa0 RCX: 00007faf6db8e929
[  520.243868][ T7540] RDX: 0000200000000300 RSI: 0000000000003ba0 RDI: 0000000000000003
[  520.243880][ T7540] RBP: 00007faf6ea6f090 R08: 0000000000000000 R09: 0000000000000000
[  520.243893][ T7540] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  520.243904][ T7540] R13: 0000000000000000 R14: 00007faf6ddb5fa0 R15: 00007ffdf8842e48
[  520.243938][ T7540]  </TASK>
[  520.975889][ T7546] qnx4: no qnx4 filesystem (no root dir).
[  521.180541][ T7552] netlink: 'syz.0.469': attribute type 10 has an invalid length.
[  521.190459][ T7553] tmpfs: Bad value for 'mpol'
[  521.202322][ T7528] hfs: can't find a HFS filesystem on dev rnullb0
[  521.232670][ T7552] netlink: 156 bytes leftover after parsing attributes in process `syz.0.469'.
[  521.507922][ T7559] netlink: 60 bytes leftover after parsing attributes in process `syz.5.470'.
[  521.550331][ T7558] netlink: 60 bytes leftover after parsing attributes in process `syz.5.470'.
[  521.586731][ T7559] netlink: 60 bytes leftover after parsing attributes in process `syz.5.470'.
[  521.618301][ T7558] tipc: Enabled bearer <eth:syzkaller0>, priority 10
[  521.782344][ T7561] Mount JFS Failure: -22
[  521.846437][ T7558] tipc: Resetting bearer <eth:syzkaller0>
[  521.860600][ T7557] tipc: Resetting bearer <eth:syzkaller0>
[  522.207171][ T7566] FAT-fs (rnullb0): bogus number of reserved sectors
[  522.258802][ T7566] FAT-fs (rnullb0): Can't find a valid FAT filesystem
[  522.485183][ T7571] comedi comedi0: pcl726: I/O port conflict (0x4,16)
[  525.117640][ T7590] EXT4-fs (rnullb0): VFS: Can't find ext4 filesystem
[  526.790519][ T7557] tipc: Disabling bearer <eth:syzkaller0>
[  526.837144][ T7573] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  527.461070][ T7601] netlink: 'syz.4.484': attribute type 1 has an invalid length.
[  527.470681][ T7601] netlink: 224 bytes leftover after parsing attributes in process `syz.4.484'.
[  527.528165][  T981] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  527.706927][  T981] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  527.743933][  T981] usb 6-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  527.794943][  T981] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  527.890032][  T981] usb 6-1: config 0 descriptor??
[  528.377708][ T3095] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  528.380517][  T981] keytouch 0003:0926:3333.0002: fixing up Keytouch IEC report descriptor
[  528.452992][  T981] input: HID 0926:3333 as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:0926:3333.0002/input/input11
[  528.572468][ T3095] usb 5-1: Using ep0 maxpacket: 32
[  528.598045][ T3095] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  528.628753][ T3095] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  528.665300][ T3095] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  528.685603][  T981] keytouch 0003:0926:3333.0002: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.5-1/input0
[  528.696565][ T3095] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  528.750693][ T3095] usb 5-1: config 0 descriptor??
[  528.774946][ T3095] hub 5-1:0.0: USB hub found
[  528.823743][ T7625] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1568557508 (100387680512 ns) > initial count (91621988416 ns). Using initial count to start timer.
[  528.976308][ T3095] hub 5-1:0.0: config failed, can't read hub descriptor (err -90)
[  529.133418][ T7630] netlink: 1072 bytes leftover after parsing attributes in process `syz.0.494'.
[  529.165858][ T7630] netlink: 280 bytes leftover after parsing attributes in process `syz.0.494'.
[  529.225387][ T3095] usbhid 5-1:0.0: can't add hid device: -71
[  529.247015][ T3095] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  529.310255][ T3095] usb 5-1: USB disconnect, device number 9
[  529.522524][ T7637] comedi comedi0: aio_iiro_16: I/O port conflict (0x4,8)
[  529.918660][ T7645] loop1: detected capacity change from 0 to 7
[  529.940955][ T7645] Dev loop1: unable to read RDB block 7
[  529.952978][ T7645]  loop1: AHDI p4
[  529.960055][ T7645] loop1: partition table partially beyond EOD, truncated
[  530.168406][ T7649] loop1: detected capacity change from 0 to 7
[  530.204944][ T5912] Dev loop1: unable to read RDB block 7
[  530.221234][ T5912]  loop1: AHDI p4
[  530.224998][ T5912] loop1: partition table partially beyond EOD, truncated
[  530.244029][ T7649] Dev loop1: unable to read RDB block 7
[  530.273001][ T7649]  loop1: AHDI p4
[  530.294262][ T7649] loop1: partition table partially beyond EOD, truncated
[  530.383340][ T3095] usb 6-1: USB disconnect, device number 6
[  530.591584][ T7656] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  530.678823][ T7656] netlink: 80 bytes leftover after parsing attributes in process `syz.5.505'.
[  530.922427][ T7663] FAULT_INJECTION: forcing a failure.
[  530.922427][ T7663] name failslab, interval 1, probability 0, space 0, times 0
[  530.940250][ T7663] CPU: 1 UID: 0 PID: 7663 Comm: syz.4.508 Not tainted 6.16.0-rc5-next-20250711-syzkaller #0 PREEMPT(full) 
[  530.940279][ T7663] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  530.940290][ T7663] Call Trace:
[  530.940297][ T7663]  <TASK>
[  530.940305][ T7663]  dump_stack_lvl+0x189/0x250
[  530.940336][ T7663]  ? __pfx____ratelimit+0x10/0x10
[  530.940356][ T7663]  ? __pfx_dump_stack_lvl+0x10/0x10
[  530.940384][ T7663]  ? __pfx__printk+0x10/0x10
[  530.940424][ T7663]  ? __pfx___might_resched+0x10/0x10
[  530.940447][ T7663]  ? fs_reclaim_acquire+0x7d/0x100
[  530.940473][ T7663]  should_fail_ex+0x414/0x560
[  530.940507][ T7663]  should_failslab+0xa8/0x100
[  530.940525][ T7663]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  530.940553][ T7663]  ? __alloc_skb+0x112/0x2d0
[  530.940580][ T7663]  __alloc_skb+0x112/0x2d0
[  530.940606][ T7663]  netlink_ack+0x146/0xa50
[  530.940645][ T7663]  netlink_rcv_skb+0x28c/0x470
[  530.940667][ T7663]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  530.940696][ T7663]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  530.940728][ T7663]  ? bpf_lsm_capable+0x9/0x20
[  530.940745][ T7663]  ? security_capable+0x7e/0x2e0
[  530.940779][ T7663]  nfnetlink_rcv+0x26a/0x2520
[  530.940808][ T7663]  ? __dev_queue_xmit+0x1d79/0x3b50
[  530.940845][ T7663]  ? __dev_queue_xmit+0x27b/0x3b50
[  530.940870][ T7663]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  530.940900][ T7663]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  530.940926][ T7663]  ? __pfx___dev_queue_xmit+0x10/0x10
[  530.940968][ T7663]  ? ref_tracker_free+0x63a/0x7d0
[  530.940987][ T7663]  ? __copy_skb_header+0xa7/0x550
[  530.941024][ T7663]  ? __pfx_ref_tracker_free+0x10/0x10
[  530.941044][ T7663]  ? __skb_clone+0x63/0x7a0
[  530.941074][ T7663]  ? __skb_clone+0x483/0x7a0
[  530.941107][ T7663]  ? skb_clone+0x246/0x3a0
[  530.941137][ T7663]  ? __netlink_deliver_tap+0x807/0x850
[  530.941158][ T7663]  ? netlink_deliver_tap+0x2e/0x1b0
[  530.941185][ T7663]  ? netlink_deliver_tap+0x2e/0x1b0
[  530.941204][ T7663]  ? netlink_deliver_tap+0x2e/0x1b0
[  530.941230][ T7663]  netlink_unicast+0x759/0x8e0
[  530.941272][ T7663]  netlink_sendmsg+0x805/0xb30
[  530.941305][ T7663]  ? __pfx_netlink_sendmsg+0x10/0x10
[  530.941331][ T7663]  ? aa_sock_msg_perm+0xf1/0x1d0
[  530.941352][ T7663]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  530.941374][ T7663]  ? __pfx_netlink_sendmsg+0x10/0x10
[  530.941397][ T7663]  __sock_sendmsg+0x21c/0x270
[  530.941431][ T7663]  ____sys_sendmsg+0x505/0x830
[  530.941462][ T7663]  ? __pfx_____sys_sendmsg+0x10/0x10
[  530.941498][ T7663]  ? import_iovec+0x74/0xa0
[  530.941532][ T7663]  ___sys_sendmsg+0x21f/0x2a0
[  530.941560][ T7663]  ? __pfx____sys_sendmsg+0x10/0x10
[  530.941626][ T7663]  ? __fget_files+0x2a/0x420
[  530.941648][ T7663]  ? __fget_files+0x3a0/0x420
[  530.941683][ T7663]  __x64_sys_sendmsg+0x19b/0x260
[  530.941710][ T7663]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  530.941747][ T7663]  ? __pfx_ksys_write+0x10/0x10
[  530.941762][ T7663]  ? rcu_is_watching+0x15/0xb0
[  530.941794][ T7663]  ? do_syscall_64+0xbe/0x3b0
[  530.941820][ T7663]  do_syscall_64+0xfa/0x3b0
[  530.941839][ T7663]  ? lockdep_hardirqs_on+0x9c/0x150
[  530.941858][ T7663]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  530.941877][ T7663]  ? clear_bhb_loop+0x60/0xb0
[  530.941901][ T7663]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  530.941920][ T7663] RIP: 0033:0x7f7b27b8e929
[  530.941939][ T7663] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  530.941955][ T7663] RSP: 002b:00007f7b28abc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  530.941977][ T7663] RAX: ffffffffffffffda RBX: 00007f7b27db5fa0 RCX: 00007f7b27b8e929
[  530.941992][ T7663] RDX: 0000000000000080 RSI: 0000200000000040 RDI: 0000000000000003
[  530.942013][ T7663] RBP: 00007f7b28abc090 R08: 0000000000000000 R09: 0000000000000000
[  530.942025][ T7663] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  530.942037][ T7663] R13: 0000000000000000 R14: 00007f7b27db5fa0 R15: 00007ffff9430638
[  530.942069][ T7663]  </TASK>
[  531.334241][    C1] vkms_vblank_simulate: vblank timer overrun
[  531.601189][ T7675] random: crng reseeded on system resumption
[  531.796866][ T7669] XFS (rnullb0): Invalid superblock magic number
[  532.030400][ T7690] gfs2: path_lookup on c::: returned error -2
[  532.205245][ T7695] syzkaller1: entered promiscuous mode
[  532.238414][ T7695] syzkaller1: entered allmulticast mode
[  532.545598][ T5981] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  533.255881][ T7719] netlink: 128 bytes leftover after parsing attributes in process `syz.0.526'.
[  533.299271][ T7719] netlink: 8 bytes leftover after parsing attributes in process `syz.0.526'.
[  533.345805][ T7722] netlink: 256 bytes leftover after parsing attributes in process `syz.5.527'.
[  533.390733][ T7718] netlink: 256 bytes leftover after parsing attributes in process `syz.0.526'.
[  533.434442][ T7725] netlink: 52 bytes leftover after parsing attributes in process `syz.4.529'.
[  533.462624][ T7727] binder: 7721:7727 ioctl c018620b 200000000000 returned -14
[  533.789398][ T7734] FAULT_INJECTION: forcing a failure.
[  533.789398][ T7734] name failslab, interval 1, probability 0, space 0, times 0
[  533.815002][ T7734] CPU: 1 UID: 0 PID: 7734 Comm: syz.0.532 Not tainted 6.16.0-rc5-next-20250711-syzkaller #0 PREEMPT(full) 
[  533.815031][ T7734] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  533.815044][ T7734] Call Trace:
[  533.815051][ T7734]  <TASK>
[  533.815060][ T7734]  dump_stack_lvl+0x189/0x250
[  533.815091][ T7734]  ? __pfx____ratelimit+0x10/0x10
[  533.815113][ T7734]  ? __pfx_dump_stack_lvl+0x10/0x10
[  533.815141][ T7734]  ? __pfx__printk+0x10/0x10
[  533.815175][ T7734]  ? __pfx___might_resched+0x10/0x10
[  533.815199][ T7734]  ? fs_reclaim_acquire+0x7d/0x100
[  533.815226][ T7734]  should_fail_ex+0x414/0x560
[  533.815262][ T7734]  should_failslab+0xa8/0x100
[  533.815284][ T7734]  __kmalloc_noprof+0xcb/0x4f0
[  533.815310][ T7734]  ? kfree+0x4d/0x440
[  533.815333][ T7734]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  533.815360][ T7734]  tomoyo_realpath_from_path+0xe3/0x5d0
[  533.815382][ T7734]  ? tomoyo_domain+0xd9/0x130
[  533.815409][ T7734]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  533.815436][ T7734]  tomoyo_path_number_perm+0x1e8/0x5a0
[  533.815466][ T7734]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  533.815513][ T7734]  ? __lock_acquire+0xab9/0xd20
[  533.815560][ T7734]  ? __fget_files+0x2a/0x420
[  533.815586][ T7734]  ? __fget_files+0x2a/0x420
[  533.815607][ T7734]  ? __fget_files+0x3a0/0x420
[  533.815629][ T7734]  ? __fget_files+0x2a/0x420
[  533.815656][ T7734]  security_file_ioctl+0xcb/0x2d0
[  533.815684][ T7734]  __se_sys_ioctl+0x47/0x170
[  533.815717][ T7734]  do_syscall_64+0xfa/0x3b0
[  533.815745][ T7734]  ? lockdep_hardirqs_on+0x9c/0x150
[  533.815765][ T7734]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  533.815784][ T7734]  ? clear_bhb_loop+0x60/0xb0
[  533.815808][ T7734]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  533.815826][ T7734] RIP: 0033:0x7f7775f8e929
[  533.815845][ T7734] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  533.815861][ T7734] RSP: 002b:00007f7776d2c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  533.815884][ T7734] RAX: ffffffffffffffda RBX: 00007f77761b5fa0 RCX: 00007f7775f8e929
[  533.815898][ T7734] RDX: 0000200000000540 RSI: 000000000000890b RDI: 0000000000000008
[  533.815910][ T7734] RBP: 00007f7776d2c090 R08: 0000000000000000 R09: 0000000000000000
[  533.815923][ T7734] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  533.815934][ T7734] R13: 0000000000000000 R14: 00007f77761b5fa0 R15: 00007ffc7833ec38
[  533.815967][ T7734]  </TASK>
[  533.815975][ T7734] ERROR: Out of memory at tomoyo_realpath_from_path.
[  534.134793][ T5981] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  534.242625][ T7741] syzkaller1: entered promiscuous mode
[  534.253424][ T7741] syzkaller1: entered allmulticast mode
[  534.295062][ T5981] usb 6-1: Using ep0 maxpacket: 8
[  534.339595][ T5981] usb 6-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c
[  534.373893][ T5981] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  534.394649][ T5981] usb 6-1: Product: syz
[  534.398863][ T5981] usb 6-1: Manufacturer: syz
[  534.445161][ T5981] usb 6-1: SerialNumber: syz
[  534.461654][ T5981] usb 6-1: config 0 descriptor??
[  534.526490][ T5981] gspca_main: se401-2.14.0 probing 047d:5003
[  534.681094][ T7729] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  534.712842][ T7729] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  534.927006][ T7758] vxfs: WRONG superblock magic 00000000 at 1
[  534.981523][ T7758] vxfs: WRONG superblock magic 00000000 at 8
[  534.999088][ T7758] vxfs: can't find superblock.
[  535.187204][ T5981] input: se401 as /devices/platform/dummy_hcd.5/usb6/6-1/input/input12
[  535.237068][ T7759] syzkaller1: entered promiscuous mode
[  535.252796][ T7759] syzkaller1: entered allmulticast mode
[  535.272130][ T5981] usb 6-1: USB disconnect, device number 8
[  535.765563][ T7768] FAULT_INJECTION: forcing a failure.
[  535.765563][ T7768] name failslab, interval 1, probability 0, space 0, times 0
[  535.820736][ T7768] CPU: 1 UID: 0 PID: 7768 Comm: syz.4.541 Not tainted 6.16.0-rc5-next-20250711-syzkaller #0 PREEMPT(full) 
[  535.820765][ T7768] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  535.820777][ T7768] Call Trace:
[  535.820785][ T7768]  <TASK>
[  535.820793][ T7768]  dump_stack_lvl+0x189/0x250
[  535.820827][ T7768]  ? __pfx____ratelimit+0x10/0x10
[  535.820848][ T7768]  ? __pfx_dump_stack_lvl+0x10/0x10
[  535.820875][ T7768]  ? __pfx__printk+0x10/0x10
[  535.820920][ T7768]  should_fail_ex+0x414/0x560
[  535.820957][ T7768]  should_failslab+0xa8/0x100
[  535.820978][ T7768]  kmem_cache_alloc_noprof+0x73/0x3c0
[  535.821006][ T7768]  ? skb_clone+0x212/0x3a0
[  535.821037][ T7768]  skb_clone+0x212/0x3a0
[  535.821067][ T7768]  __netlink_deliver_tap+0x404/0x850
[  535.821103][ T7768]  ? netlink_deliver_tap+0x2e/0x1b0
[  535.821127][ T7768]  netlink_deliver_tap+0x19c/0x1b0
[  535.821149][ T7768]  netlink_sendskb+0x68/0x140
[  535.821183][ T7768]  netlink_rcv_skb+0x28c/0x470
[  535.821205][ T7768]  ? __pfx_sock_diag_rcv_msg+0x10/0x10
[  535.821227][ T7768]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  535.821265][ T7768]  ? netlink_deliver_tap+0x2e/0x1b0
[  535.821285][ T7768]  ? netlink_deliver_tap+0x2e/0x1b0
[  535.821312][ T7768]  netlink_unicast+0x759/0x8e0
[  535.821356][ T7768]  netlink_sendmsg+0x805/0xb30
[  535.821389][ T7768]  ? __pfx_netlink_sendmsg+0x10/0x10
[  535.821415][ T7768]  ? aa_sock_msg_perm+0xf1/0x1d0
[  535.821436][ T7768]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  535.821460][ T7768]  ? __pfx_netlink_sendmsg+0x10/0x10
[  535.821482][ T7768]  __sock_sendmsg+0x21c/0x270
[  535.821516][ T7768]  sock_write_iter+0x258/0x330
[  535.821548][ T7768]  ? __pfx_sock_write_iter+0x10/0x10
[  535.821589][ T7768]  ? __lock_acquire+0xab9/0xd20
[  535.821623][ T7768]  do_iter_readv_writev+0x56e/0x7f0
[  535.821649][ T7768]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  535.821669][ T7768]  ? common_file_perm+0x1b5/0x230
[  535.821713][ T7768]  ? bpf_lsm_file_permission+0x9/0x20
[  535.821738][ T7768]  ? security_file_permission+0x75/0x290
[  535.821770][ T7768]  ? rw_verify_area+0x255/0x4d0
[  535.821794][ T7768]  vfs_writev+0x31a/0x960
[  535.821823][ T7768]  ? __lock_acquire+0xab9/0xd20
[  535.821847][ T7768]  ? __pfx_vfs_writev+0x10/0x10
[  535.821899][ T7768]  ? __fget_files+0x2a/0x420
[  535.821927][ T7768]  ? __fget_files+0x3a0/0x420
[  535.821948][ T7768]  ? __fget_files+0x2a/0x420
[  535.821981][ T7768]  do_writev+0x14d/0x2d0
[  535.822009][ T7768]  ? __pfx_do_writev+0x10/0x10
[  535.822031][ T7768]  ? rcu_is_watching+0x15/0xb0
[  535.822062][ T7768]  ? do_syscall_64+0xbe/0x3b0
[  535.822088][ T7768]  do_syscall_64+0xfa/0x3b0
[  535.822108][ T7768]  ? lockdep_hardirqs_on+0x9c/0x150
[  535.822128][ T7768]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  535.822147][ T7768]  ? clear_bhb_loop+0x60/0xb0
[  535.822170][ T7768]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  535.822188][ T7768] RIP: 0033:0x7f7b27b8e929
[  535.822206][ T7768] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  535.822222][ T7768] RSP: 002b:00007f7b28abc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  535.822244][ T7768] RAX: ffffffffffffffda RBX: 00007f7b27db5fa0 RCX: 00007f7b27b8e929
[  535.822258][ T7768] RDX: 0000000000000001 RSI: 0000200000000000 RDI: 0000000000000004
[  535.822270][ T7768] RBP: 00007f7b28abc090 R08: 0000000000000000 R09: 0000000000000000
[  535.822281][ T7768] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  535.822292][ T7768] R13: 0000000000000000 R14: 00007f7b27db5fa0 R15: 00007ffff9430638
[  535.822325][ T7768]  </TASK>
[  536.170012][    C1] vkms_vblank_simulate: vblank timer overrun
[  536.388196][ T7775] netlink: 'syz.6.544': attribute type 20 has an invalid length.
[  536.709863][ T7779] /dev/rnullb0: Can't open blockdev
[  538.086328][ T7811] syzkaller1: entered promiscuous mode
[  538.091886][ T7811] syzkaller1: entered allmulticast mode
[  538.267131][ T7812] syzkaller1: left promiscuous mode
[  538.272392][ T7812] syzkaller1: left allmulticast mode
[  538.633081][ T7820] netlink: 4 bytes leftover after parsing attributes in process `syz.5.561'.
[  538.897956][ T7824] loop2: detected capacity change from 0 to 1
[  538.907744][ T7810] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  538.920271][ T7824] Dev loop2: unable to read RDB block 1
[  538.926494][ T7824]  loop2: unable to read partition table
[  538.937725][ T7824] loop2: partition table beyond EOD, truncated
[  538.947615][ T7824] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[  538.962605][ T7826] tmpfs: Bad value for 'mpol'
[  539.433002][ T5981] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[  539.622568][ T5981] usb 1-1: Using ep0 maxpacket: 16
[  539.650959][ T5981] usb 1-1: config 1 has an invalid descriptor of length 102, skipping remainder of the config
[  539.675275][ T5981] usb 1-1: Duplicate descriptor for config 1 interface 0 altsetting 0, skipping
[  539.701994][ T5981] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[  539.732020][ T5981] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[  539.741738][ T5981] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 186, changing to 7
[  539.754765][ T7839] netlink: 'syz.5.569': attribute type 16 has an invalid length.
[  539.782135][ T7839] netlink: 48 bytes leftover after parsing attributes in process `syz.5.569'.
[  539.791263][ T5981] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid maxpacket 25343, setting to 1024
[  539.812003][ T5981] usb 1-1: config 1 interface 1 has no altsetting 0
[  539.835189][ T5981] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  539.853005][ T5981] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  539.868022][ T7840] netlink: 16 bytes leftover after parsing attributes in process `syz.5.569'.
[  539.876250][ T5981] usb 1-1: Product: syz
[  539.881079][ T5981] usb 1-1: Manufacturer: syz
[  539.940464][ T5981] usb 1-1: SerialNumber: syz
[  540.373386][ T7844] Mount JFS Failure: -22
[  540.609359][ T7846] 9p filesystem being mounted at /35/file0 supports timestamps until 2106-02-07 (0xffffffff)
[  540.654873][ T5981] usb 1-1: 2:1 : no or invalid class specific endpoint descriptor
[  540.684019][ T5981] usb 1-1: 2:1 : format type 9 is not supported yet
[  540.777626][ T5981] usb 1-1: USB disconnect, device number 21
[  540.868473][ T5912] udevd[5912]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  541.771382][    T9] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  541.971391][    T9] usb 5-1: Using ep0 maxpacket: 8
[  542.000054][    T9] usb 5-1: config 128 has an invalid interface number: 91 but max is 1
[  542.022341][    T9] usb 5-1: config 128 has an invalid interface number: 153 but max is 1
[  542.040899][    T9] usb 5-1: config 128 has no interface number 0
[  542.047208][    T9] usb 5-1: config 128 has no interface number 1
[  542.069532][    T9] usb 5-1: config 128 interface 91 altsetting 81 has an invalid descriptor for endpoint zero, skipping
[  542.103300][    T9] usb 5-1: config 128 interface 91 altsetting 81 has an invalid descriptor for endpoint zero, skipping
[  542.147158][    T9] usb 5-1: config 128 interface 91 altsetting 81 endpoint 0x6 has an invalid bInterval 138, changing to 7
[  542.181514][    T9] usb 5-1: config 128 interface 91 altsetting 81 has a duplicate endpoint with address 0x6, skipping
[  542.202218][    T9] usb 5-1: config 128 interface 91 altsetting 81 has an invalid descriptor for endpoint zero, skipping
[  542.224652][ T7878] gfs2: not a GFS2 filesystem
[  542.230953][    T9] usb 5-1: config 128 interface 91 altsetting 81 bulk endpoint 0xE has invalid maxpacket 1024
[  542.250843][    T9] usb 5-1: config 128 interface 91 has no altsetting 0
[  542.263752][    T9] usb 5-1: config 128 interface 153 has no altsetting 0
[  542.282138][ T7880] gfs2: not a GFS2 filesystem
[  542.318591][    T9] usb 5-1: Dual-Role OTG device on HNP port
[  542.330947][    T9] usb 5-1: New USB device found, idVendor=0a5c, idProduct=0bdc, bcdDevice=c3.b7
[  542.340114][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  542.380000][    T9] usb 5-1: Product: Ъ
[  542.387001][    T9] usb 5-1: Manufacturer: ш
[  542.409515][    T9] usb 5-1: SerialNumber: ࠝ
[  542.437960][ T7865] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  542.665203][ T7864] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  542.730914][ T7864] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  542.923566][    T9] usb 5-1: USB disconnect, device number 10
[  543.465547][ T7891] MINIX-fs: blocksize too small for device
[  543.731845][ T7895] FAULT_INJECTION: forcing a failure.
[  543.731845][ T7895] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  543.780373][ T7895] CPU: 1 UID: 0 PID: 7895 Comm: syz.5.589 Not tainted 6.16.0-rc5-next-20250711-syzkaller #0 PREEMPT(full) 
[  543.780403][ T7895] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  543.780414][ T7895] Call Trace:
[  543.780423][ T7895]  <TASK>
[  543.780432][ T7895]  dump_stack_lvl+0x189/0x250
[  543.780466][ T7895]  ? __pfx____ratelimit+0x10/0x10
[  543.780487][ T7895]  ? __pfx_dump_stack_lvl+0x10/0x10
[  543.780514][ T7895]  ? __pfx__printk+0x10/0x10
[  543.780556][ T7895]  should_fail_ex+0x414/0x560
[  543.780592][ T7895]  _copy_to_user+0x31/0xb0
[  543.780613][ T7895]  simple_read_from_buffer+0xe1/0x170
[  543.780641][ T7895]  proc_fail_nth_read+0x1df/0x250
[  543.780672][ T7895]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  543.780702][ T7895]  ? rw_verify_area+0x2a6/0x4d0
[  543.780720][ T7895]  ? __lock_acquire+0xab9/0xd20
[  543.780741][ T7895]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  543.780768][ T7895]  vfs_read+0x1fd/0x980
[  543.780795][ T7895]  ? __pfx___mutex_lock+0x10/0x10
[  543.780817][ T7895]  ? __pfx_vfs_read+0x10/0x10
[  543.780839][ T7895]  ? __fget_files+0x2a/0x420
[  543.780868][ T7895]  ? __fget_files+0x3a0/0x420
[  543.780898][ T7895]  ? __fget_files+0x2a/0x420
[  543.780931][ T7895]  ksys_read+0x145/0x250
[  543.780949][ T7895]  ? __fget_files+0x3a0/0x420
[  543.780973][ T7895]  ? __pfx_ksys_read+0x10/0x10
[  543.780999][ T7895]  ? do_syscall_64+0xbe/0x3b0
[  543.781025][ T7895]  do_syscall_64+0xfa/0x3b0
[  543.781044][ T7895]  ? lockdep_hardirqs_on+0x9c/0x150
[  543.781064][ T7895]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  543.781083][ T7895]  ? clear_bhb_loop+0x60/0xb0
[  543.781107][ T7895]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  543.781126][ T7895] RIP: 0033:0x7f6baf98d33c
[  543.781144][ T7895] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  543.781160][ T7895] RSP: 002b:00007f6bb0787030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  543.781183][ T7895] RAX: ffffffffffffffda RBX: 00007f6bafbb5fa0 RCX: 00007f6baf98d33c
[  543.781202][ T7895] RDX: 000000000000000f RSI: 00007f6bb07870a0 RDI: 0000000000000006
[  543.781215][ T7895] RBP: 00007f6bb0787090 R08: 0000000000000000 R09: 0000000000000000
[  543.781227][ T7895] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  543.781238][ T7895] R13: 0000000000000000 R14: 00007f6bafbb5fa0 R15: 00007ffd35ef1e78
[  543.781272][ T7895]  </TASK>
[  544.185890][   T30] audit: type=1326 audit(6043654523.351:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7896 comm="syz.4.591" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f7b27b8e929 code=0x0
[  544.210932][ T7900] netlink: 164 bytes leftover after parsing attributes in process `syz.6.592'.
[  544.662269][ T5907] Bluetooth: hci1: command 0x0406 tx timeout
[  544.668434][ T5172] Bluetooth: hci2: command 0x0406 tx timeout
[  544.675149][ T5902] Bluetooth: hci0: command 0x0406 tx timeout
[  544.893733][ T7910] netlink: 12 bytes leftover after parsing attributes in process `syz.0.597'.
[  544.942022][ T7915] FAULT_INJECTION: forcing a failure.
[  544.942022][ T7915] name failslab, interval 1, probability 0, space 0, times 0
[  544.979897][ T7915] CPU: 1 UID: 0 PID: 7915 Comm: syz.6.596 Not tainted 6.16.0-rc5-next-20250711-syzkaller #0 PREEMPT(full) 
[  544.979926][ T7915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  544.979936][ T7915] Call Trace:
[  544.979943][ T7915]  <TASK>
[  544.979950][ T7915]  dump_stack_lvl+0x189/0x250
[  544.979983][ T7915]  ? __pfx____ratelimit+0x10/0x10
[  544.980002][ T7915]  ? __pfx_dump_stack_lvl+0x10/0x10
[  544.980029][ T7915]  ? __pfx__printk+0x10/0x10
[  544.980064][ T7915]  ? ref_tracker_alloc+0x318/0x460
[  544.980088][ T7915]  should_fail_ex+0x414/0x560
[  544.980122][ T7915]  should_failslab+0xa8/0x100
[  544.980143][ T7915]  kmem_cache_alloc_noprof+0x73/0x3c0
[  544.980169][ T7915]  ? skb_clone+0x212/0x3a0
[  544.980200][ T7915]  skb_clone+0x212/0x3a0
[  544.980227][ T7915]  __netlink_deliver_tap+0x404/0x850
[  544.980262][ T7915]  ? netlink_deliver_tap+0x2e/0x1b0
[  544.980283][ T7915]  netlink_deliver_tap+0x19c/0x1b0
[  544.980306][ T7915]  netlink_unicast+0x730/0x8e0
[  544.980347][ T7915]  netlink_sendmsg+0x805/0xb30
[  544.980379][ T7915]  ? __pfx_netlink_sendmsg+0x10/0x10
[  544.980403][ T7915]  ? aa_sock_msg_perm+0xf1/0x1d0
[  544.980424][ T7915]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  544.980447][ T7915]  ? __pfx_netlink_sendmsg+0x10/0x10
[  544.980469][ T7915]  __sock_sendmsg+0x21c/0x270
[  544.980508][ T7915]  ____sys_sendmsg+0x505/0x830
[  544.980539][ T7915]  ? __pfx_____sys_sendmsg+0x10/0x10
[  544.980575][ T7915]  ? import_iovec+0x74/0xa0
[  544.980609][ T7915]  ___sys_sendmsg+0x21f/0x2a0
[  544.980636][ T7915]  ? __pfx____sys_sendmsg+0x10/0x10
[  544.980703][ T7915]  ? __fget_files+0x2a/0x420
[  544.980725][ T7915]  ? __fget_files+0x3a0/0x420
[  544.980759][ T7915]  __x64_sys_sendmsg+0x19b/0x260
[  544.980787][ T7915]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  544.980822][ T7915]  ? __pfx_ksys_write+0x10/0x10
[  544.980850][ T7915]  ? do_syscall_64+0xbe/0x3b0
[  544.980875][ T7915]  do_syscall_64+0xfa/0x3b0
[  544.980903][ T7915]  ? lockdep_hardirqs_on+0x9c/0x150
[  544.980922][ T7915]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  544.980940][ T7915]  ? clear_bhb_loop+0x60/0xb0
[  544.980964][ T7915]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  544.980982][ T7915] RIP: 0033:0x7faf6db8e929
[  544.981001][ T7915] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  544.981017][ T7915] RSP: 002b:00007faf6ea4e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  544.981038][ T7915] RAX: ffffffffffffffda RBX: 00007faf6ddb6080 RCX: 00007faf6db8e929
[  544.981052][ T7915] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  544.981065][ T7915] RBP: 00007faf6ea4e090 R08: 0000000000000000 R09: 0000000000000000
[  544.981076][ T7915] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  544.981088][ T7915] R13: 0000000000000001 R14: 00007faf6ddb6080 R15: 00007ffdf8842e48
[  544.981118][ T7915]  </TASK>
[  545.471325][ T7920] comedi comedi3: comedi_config --init_data is deprecated
[  545.592392][ T7926] @: renamed from vlan0 (while UP)
[  545.656519][ T5973] nci: nci_rsp_packet: unsupported rsp opcode 0xf04
[  545.823637][ T7933] hpfs: Bad magic ... probably not HPFS
[  546.223311][  T981] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  546.396261][  T981] usb 6-1: Using ep0 maxpacket: 16
[  546.443978][  T981] usb 6-1: config 1 has an invalid interface number: 223 but max is 0
[  546.477196][  T981] usb 6-1: config 1 has no interface number 0
[  546.502936][  T981] usb 6-1: config 1 interface 223 has no altsetting 0
[  546.509780][ T7942] netlink: 'syz.6.607': attribute type 2 has an invalid length.
[  546.509805][ T7942] netlink: 'syz.6.607': attribute type 6 has an invalid length.
[  546.557119][  T981] usb 6-1: New USB device found, idVendor=05ac, idProduct=0262, bcdDevice=42.53
[  546.599516][  T981] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  546.627912][  T981] usb 6-1: Product: syz
[  546.650420][  T981] usb 6-1: Manufacturer: syz
[  546.665674][  T981] usb 6-1: SerialNumber: syz
[  546.718737][  T981] input: bcm5974 as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.223/input/input14
[  546.917772][ T5207] bcm5974 6-1:1.223: could not read from device
[  546.926339][ T7940] NILFS (rnullb0): couldn't find nilfs on the device
[  547.018438][ T5207] bcm5974 6-1:1.223: could not read from device
[  547.039217][  T981] usb 6-1: USB disconnect, device number 9
[  547.194798][ T6048] udevd[6048]: Error opening device "/dev/input/event4": No such file or directory
[  547.259754][ T6048] udevd[6048]: Unable to EVIOCGABS device "/dev/input/event4"
[  547.286205][ T6048] udevd[6048]: Unable to EVIOCGABS device "/dev/input/event4"
[  547.295926][ T6048] udevd[6048]: Unable to EVIOCGABS device "/dev/input/event4"
[  547.332053][ T6048] udevd[6048]: Unable to EVIOCGABS device "/dev/input/event4"
[  547.361251][ T7959] netlink: 168 bytes leftover after parsing attributes in process `syz.4.614'.
[  547.750622][ T7967] netlink: 24 bytes leftover after parsing attributes in process `syz.5.618'.
[  547.823355][ T7967] netlink: 'syz.5.618': attribute type 1 has an invalid length.
[  547.843478][ T7967] netlink: 32 bytes leftover after parsing attributes in process `syz.5.618'.
[  548.327430][ T7983] EXT4-fs (rnullb0): VFS: Can't find ext4 filesystem
[  548.834870][ T7991] ceph: Path missing in source
[  549.180508][ T7999] netlink: 20 bytes leftover after parsing attributes in process `syz.0.630'.
[  549.392471][ T8002] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  549.874817][ T8014] sctp: [Deprecated]: syz.4.636 (pid 8014) Use of struct sctp_assoc_value in delayed_ack socket option.
[  549.874817][ T8014] Use struct sctp_sack_info instead
[  549.926750][ T8017] netlink: 8 bytes leftover after parsing attributes in process `syz.4.636'.
[  550.655644][ T8031] FAULT_INJECTION: forcing a failure.
[  550.655644][ T8031] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  550.698094][ T8031] CPU: 0 UID: 0 PID: 8031 Comm: syz.0.643 Not tainted 6.16.0-rc5-next-20250711-syzkaller #0 PREEMPT(full) 
[  550.698123][ T8031] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  550.698135][ T8031] Call Trace:
[  550.698143][ T8031]  <TASK>
[  550.698151][ T8031]  dump_stack_lvl+0x189/0x250
[  550.698184][ T8031]  ? __pfx____ratelimit+0x10/0x10
[  550.698204][ T8031]  ? __pfx_dump_stack_lvl+0x10/0x10
[  550.698232][ T8031]  ? __pfx__printk+0x10/0x10
[  550.698261][ T8031]  ? fs_reclaim_acquire+0x7d/0x100
[  550.698292][ T8031]  should_fail_ex+0x414/0x560
[  550.698327][ T8031]  prepare_alloc_pages+0x213/0x610
[  550.698358][ T8031]  __alloc_frozen_pages_noprof+0x123/0x370
[  550.698386][ T8031]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  550.698428][ T8031]  alloc_pages_mpol+0x232/0x4a0
[  550.698454][ T8031]  alloc_pages_noprof+0xa9/0x190
[  550.698475][ T8031]  folio_alloc_noprof+0x1e/0x30
[  550.698493][ T8031]  fuse_do_ioctl+0xd3a/0x1f00
[  550.698530][ T8031]  ? __pfx_fuse_do_ioctl+0x10/0x10
[  550.698545][ T8031]  ? do_vfs_ioctl+0xb33/0x1430
[  550.698584][ T8031]  ? __lock_acquire+0xab9/0xd20
[  550.698638][ T8031]  ? __fget_files+0x3a0/0x420
[  550.698659][ T8031]  ? fuse_allow_current_process+0x1eb/0x3c0
[  550.698688][ T8031]  ? fuse_file_ioctl+0xe6/0x140
[  550.698707][ T8031]  ? __pfx_fuse_file_ioctl+0x10/0x10
[  550.698726][ T8031]  __se_sys_ioctl+0xf9/0x170
[  550.698758][ T8031]  do_syscall_64+0xfa/0x3b0
[  550.698777][ T8031]  ? lockdep_hardirqs_on+0x9c/0x150
[  550.698797][ T8031]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  550.698816][ T8031]  ? clear_bhb_loop+0x60/0xb0
[  550.698849][ T8031]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  550.698867][ T8031] RIP: 0033:0x7f7775f8e929
[  550.698885][ T8031] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  550.698901][ T8031] RSP: 002b:00007f7776d2c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  550.698923][ T8031] RAX: ffffffffffffffda RBX: 00007f77761b5fa0 RCX: 00007f7775f8e929
[  550.698937][ T8031] RDX: 0000200000000000 RSI: 0000000040806685 RDI: 0000000000000003
[  550.698950][ T8031] RBP: 00007f7776d2c090 R08: 0000000000000000 R09: 0000000000000000
[  550.698962][ T8031] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  550.698974][ T8031] R13: 0000000000000000 R14: 00007f77761b5fa0 R15: 00007ffc7833ec38
[  550.699006][ T8031]  </TASK>
[  551.018996][ T5904] Bluetooth: hci6: command 0x0405 tx timeout
[  551.335648][ T5958] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  551.391291][ T5958] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  551.619639][ T8054] netlink: 24 bytes leftover after parsing attributes in process `syz.0.647'.
[  551.641316][ T8053] netlink: 1716 bytes leftover after parsing attributes in process `syz.4.649'.
[  552.382993][ T8042] hid-generic 0000:0000:0000.0003: pid 8042 passed too short report
[  552.957358][ T8075] binder: binder_mmap: 8074 200000001000-20000000b000 bad vm_flags failed -1
[  553.295240][ T5958] usb 1-1: new high-speed USB device number 22 using dummy_hcd
[  553.492752][ T5958] usb 1-1: New USB device found, idVendor=1d50, idProduct=6089, bcdDevice=d0.1d
[  553.523977][ T5958] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=16
[  553.547077][ T5958] usb 1-1: SerialNumber: syz
[  553.580442][ T8073] hfs: can't find a HFS filesystem on dev rnullb0
[  553.585834][ T5958] usb 1-1: config 0 descriptor??
[  554.004256][ T5958] hackrf 1-1:0.0: Board ID: 00
[  554.026588][ T5958] hackrf 1-1:0.0: Firmware version: 
[  554.111932][ T5958] hackrf 1-1:0.0: Registered as swradio24
[  554.126769][ T5958] videodev: could not get a free minor
[  554.143042][ T5958] hackrf 1-1:0.0: Failed to register as video device (-23)
[  554.179874][ T5958] hackrf 1-1:0.0: probe with driver hackrf failed with error -23
[  554.231426][ T5958] usb 1-1: USB disconnect, device number 22
[  554.341058][ T8093] gfs2: not a GFS2 filesystem
[  556.412200][ T8119] FAULT_INJECTION: forcing a failure.
[  556.412200][ T8119] name failslab, interval 1, probability 0, space 0, times 0
[  556.455048][ T8119] CPU: 1 UID: 0 PID: 8119 Comm: syz.6.674 Not tainted 6.16.0-rc5-next-20250711-syzkaller #0 PREEMPT(full) 
[  556.455078][ T8119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  556.455090][ T8119] Call Trace:
[  556.455098][ T8119]  <TASK>
[  556.455107][ T8119]  dump_stack_lvl+0x189/0x250
[  556.455140][ T8119]  ? __pfx____ratelimit+0x10/0x10
[  556.455161][ T8119]  ? __pfx_dump_stack_lvl+0x10/0x10
[  556.455188][ T8119]  ? __pfx__printk+0x10/0x10
[  556.455222][ T8119]  ? __pfx___might_resched+0x10/0x10
[  556.455246][ T8119]  ? fs_reclaim_acquire+0x7d/0x100
[  556.455272][ T8119]  should_fail_ex+0x414/0x560
[  556.455309][ T8119]  should_failslab+0xa8/0x100
[  556.455330][ T8119]  __kmalloc_noprof+0xcb/0x4f0
[  556.455357][ T8119]  ? nf_tables_newrule+0x1506/0x2890
[  556.455378][ T8119]  ? nla_strcmp+0x106/0x140
[  556.455404][ T8119]  nf_tables_newrule+0x1506/0x2890
[  556.455447][ T8119]  ? __pfx_nf_tables_newrule+0x10/0x10
[  556.455473][ T8119]  ? nfnl_pernet+0x23/0x240
[  556.455511][ T8119]  ? __nla_parse+0x40/0x60
[  556.455539][ T8119]  nfnetlink_rcv+0x112f/0x2520
[  556.455603][ T8119]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  556.455650][ T8119]  ? ref_tracker_free+0x63a/0x7d0
[  556.455707][ T8119]  ? __netlink_deliver_tap+0x807/0x850
[  556.455739][ T8119]  ? netlink_deliver_tap+0x2e/0x1b0
[  556.455758][ T8119]  ? netlink_deliver_tap+0x2e/0x1b0
[  556.455786][ T8119]  netlink_unicast+0x759/0x8e0
[  556.455837][ T8119]  netlink_sendmsg+0x805/0xb30
[  556.455870][ T8119]  ? __pfx_netlink_sendmsg+0x10/0x10
[  556.455895][ T8119]  ? aa_sock_msg_perm+0xf1/0x1d0
[  556.455916][ T8119]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  556.455940][ T8119]  ? __pfx_netlink_sendmsg+0x10/0x10
[  556.455962][ T8119]  __sock_sendmsg+0x21c/0x270
[  556.455997][ T8119]  ____sys_sendmsg+0x505/0x830
[  556.456029][ T8119]  ? __pfx_____sys_sendmsg+0x10/0x10
[  556.456065][ T8119]  ? import_iovec+0x74/0xa0
[  556.456099][ T8119]  ___sys_sendmsg+0x21f/0x2a0
[  556.456127][ T8119]  ? __pfx____sys_sendmsg+0x10/0x10
[  556.456195][ T8119]  ? __fget_files+0x2a/0x420
[  556.456217][ T8119]  ? __fget_files+0x3a0/0x420
[  556.456252][ T8119]  __x64_sys_sendmsg+0x19b/0x260
[  556.456280][ T8119]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  556.456316][ T8119]  ? __pfx_ksys_write+0x10/0x10
[  556.456334][ T8119]  ? rcu_is_watching+0x15/0xb0
[  556.456365][ T8119]  ? do_syscall_64+0xbe/0x3b0
[  556.456391][ T8119]  do_syscall_64+0xfa/0x3b0
[  556.456409][ T8119]  ? lockdep_hardirqs_on+0x9c/0x150
[  556.456429][ T8119]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  556.456447][ T8119]  ? clear_bhb_loop+0x60/0xb0
[  556.456471][ T8119]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  556.456490][ T8119] RIP: 0033:0x7faf6db8e929
[  556.456508][ T8119] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  556.456524][ T8119] RSP: 002b:00007faf6ea6f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  556.456545][ T8119] RAX: ffffffffffffffda RBX: 00007faf6ddb5fa0 RCX: 00007faf6db8e929
[  556.456558][ T8119] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  556.456570][ T8119] RBP: 00007faf6ea6f090 R08: 0000000000000000 R09: 0000000000000000
[  556.456581][ T8119] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  556.456593][ T8119] R13: 0000000000000000 R14: 00007faf6ddb5fa0 R15: 00007ffdf8842e48
[  556.456626][ T8119]  </TASK>
[  557.296661][ T8128] netlink: 16 bytes leftover after parsing attributes in process `syz.6.677'.
[  557.668410][ T8132] netlink: 4 bytes leftover after parsing attributes in process `syz.6.678'.
[  559.426011][    T9] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  559.602064][    T9] usb 6-1: Using ep0 maxpacket: 32
[  559.620265][    T9] usb 6-1: unable to get BOS descriptor or descriptor too short
[  559.634162][    T9] usb 6-1: config 8 has an invalid interface number: 155 but max is 0
[  559.652004][    T9] usb 6-1: config 8 has no interface number 0
[  559.676099][    T9] usb 6-1: config 8 interface 155 has no altsetting 0
[  559.735833][    T9] usb 6-1: New USB device found, idVendor=0483, idProduct=3747, bcdDevice=33.57
[  559.762127][    T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  559.780380][    T9] usb 6-1: Product: syz
[  559.785144][    T9] usb 6-1: Manufacturer: syz
[  559.797818][    T9] usb 6-1: SerialNumber: syz
[  562.110947][ T8145] FAULT_INJECTION: forcing a failure.
[  562.110947][ T8145] name failslab, interval 1, probability 0, space 0, times 0
[  562.141999][ T8145] CPU: 0 UID: 0 PID: 8145 Comm: syz.4.683 Not tainted 6.16.0-rc5-next-20250711-syzkaller #0 PREEMPT(full) 
[  562.142030][ T8145] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  562.142042][ T8145] Call Trace:
[  562.142051][ T8145]  <TASK>
[  562.142058][ T8145]  dump_stack_lvl+0x189/0x250
[  562.142096][ T8145]  ? __pfx____ratelimit+0x10/0x10
[  562.142118][ T8145]  ? __pfx_dump_stack_lvl+0x10/0x10
[  562.142144][ T8145]  ? __pfx__printk+0x10/0x10
[  562.142190][ T8145]  should_fail_ex+0x414/0x560
[  562.142224][ T8145]  should_failslab+0xa8/0x100
[  562.142245][ T8145]  __kmalloc_noprof+0xcb/0x4f0
[  562.142272][ T8145]  ? fib6_info_alloc+0x30/0xf0
[  562.142296][ T8145]  fib6_info_alloc+0x30/0xf0
[  562.142316][ T8145]  ip6_route_info_create+0x142/0x860
[  562.142339][ T8145]  ? l3mdev_fib_table_by_index+0x34/0x2d0
[  562.142366][ T8145]  ip6_route_add+0x49/0x1b0
[  562.142391][ T8145]  ipv6_route_ioctl+0x35c/0x480
[  562.142420][ T8145]  ? __pfx_ipv6_route_ioctl+0x10/0x10
[  562.142478][ T8145]  inet6_ioctl+0x219/0x280
[  562.142506][ T8145]  ? __pfx_inet6_ioctl+0x10/0x10
[  562.142530][ T8145]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  562.142565][ T8145]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  562.142591][ T8145]  sock_do_ioctl+0xdc/0x300
[  562.142621][ T8145]  ? __pfx_sock_do_ioctl+0x10/0x10
[  562.142646][ T8145]  ? __lock_acquire+0xab9/0xd20
[  562.142685][ T8145]  sock_ioctl+0x576/0x790
[  562.142714][ T8145]  ? __pfx_sock_ioctl+0x10/0x10
[  562.142751][ T8145]  ? __fget_files+0x2a/0x420
[  562.142772][ T8145]  ? __fget_files+0x3a0/0x420
[  562.142792][ T8145]  ? __fget_files+0x2a/0x420
[  562.142818][ T8145]  ? bpf_lsm_file_ioctl+0x9/0x20
[  562.142845][ T8145]  ? __pfx_sock_ioctl+0x10/0x10
[  562.142869][ T8145]  __se_sys_ioctl+0xf9/0x170
[  562.142899][ T8145]  do_syscall_64+0xfa/0x3b0
[  562.142919][ T8145]  ? lockdep_hardirqs_on+0x9c/0x150
[  562.142938][ T8145]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  562.142958][ T8145]  ? clear_bhb_loop+0x60/0xb0
[  562.142981][ T8145]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  562.142998][ T8145] RIP: 0033:0x7f7b27b8e929
[  562.143016][ T8145] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  562.143031][ T8145] RSP: 002b:00007f7b28abc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  562.143052][ T8145] RAX: ffffffffffffffda RBX: 00007f7b27db5fa0 RCX: 00007f7b27b8e929
[  562.143066][ T8145] RDX: 0000200000000540 RSI: 000000000000890b RDI: 0000000000000004
[  562.143078][ T8145] RBP: 00007f7b28abc090 R08: 0000000000000000 R09: 0000000000000000
[  562.143090][ T8145] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  562.143101][ T8145] R13: 0000000000000000 R14: 00007f7b27db5fa0 R15: 00007ffff9430638
[  562.143131][ T8145]  </TASK>
[  562.973904][ T5958] usb 1-1: new high-speed USB device number 23 using dummy_hcd
[  563.063184][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  563.070020][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  563.162541][ T5958] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  563.195273][ T5958] usb 1-1: config 0 interface 0 has no altsetting 0
[  563.242987][ T5958] usb 1-1: New USB device found, idVendor=054c, idProduct=03d5, bcdDevice= 0.00
[  563.260438][ T5958] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  563.285953][ T5958] usb 1-1: config 0 descriptor??
[  563.467708][    T9] hub 6-1:8.155: bad descriptor, ignoring hub
[  563.482016][ T5938] usb 5-1: new full-speed USB device number 11 using dummy_hcd
[  563.492753][    T9] hub 6-1:8.155: probe with driver hub failed with error -5
[  563.513672][    T9] ftdi_sio 6-1:8.155: FTDI USB Serial Device converter detected
[  563.535809][    T9] ftdi_sio ttyUSB0: unknown device type: 0x3357
[  563.584739][    T9] usb 6-1: USB disconnect, device number 10
[  563.612454][    T9] ftdi_sio 6-1:8.155: device disconnected
[  563.655213][ T5938] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  563.697186][ T5938] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 255, setting to 64
[  563.765388][ T5938] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  563.795063][ T8163] hfs: can't find a HFS filesystem on dev rnullb0
[  563.799662][ T8161] loop1: detected capacity change from 0 to 7
[  563.815795][ T8161] Dev loop1: unable to read RDB block 7
[  563.820192][ T5938] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  563.835443][ T5958] input: HID 054c:03d5 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:054C:03D5.0004/input/input15
[  563.850446][ T5938] usb 5-1: config 0 descriptor??
[  563.866032][ T8157] raw-gadget.2 gadget.4: fail, usb_ep_enable returned -22
[  563.869514][ T8161]  loop1: AHDI p4
[  563.926521][ T8161] loop1: partition table partially beyond EOD, truncated
[  563.969930][ T5958] sony 0003:054C:03D5.0004: input,hidraw0: USB HID v0.00 Joystick [HID 054c:03d5] on usb-dummy_hcd.0-1/input0
[  564.103011][ T3095] usb 1-1: USB disconnect, device number 23
[  564.204280][ T5938] ath6kl: Failed to submit usb control message: -71
[  564.211830][ T8166] netlink: 'syz.5.691': attribute type 13 has an invalid length.
[  564.245781][ T8167] fido_id[8167]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/1-1/report_descriptor': No such file or directory
[  564.252525][ T5938] ath6kl: unable to send the bmi data to the device: -71
[  564.279481][ T8166] macvtap0: entered promiscuous mode
[  564.290298][ T5938] ath6kl: Unable to send get target info: -71
[  564.306157][ T8166] macvtap0: refused to change device tx_queue_len
[  564.317745][ T5938] ath6kl: Failed to init ath6kl core: -71
[  564.351313][ T5938] ath6kl_usb 5-1:0.0: probe with driver ath6kl_usb failed with error -71
[  564.417064][ T5938] usb 5-1: USB disconnect, device number 11
[  564.448911][ T8170] netlink: 8 bytes leftover after parsing attributes in process `syz.6.692'.
[  564.908534][ T8177] netlink: 60 bytes leftover after parsing attributes in process `syz.5.694'.
[  564.947002][ T8174] netlink: 60 bytes leftover after parsing attributes in process `syz.5.694'.
[  564.967244][ T8174] netlink: 60 bytes leftover after parsing attributes in process `syz.5.694'.
[  565.130128][ T5904] Bluetooth: hci3: command 0x0401 tx timeout
[  565.480263][ T8195] @: renamed from vlan0 (while UP)
[  565.639296][ T5938] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  565.829015][ T5938] usb 6-1: Using ep0 maxpacket: 16
[  565.854086][ T5938] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  565.889082][ T5938] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  565.921197][ T5938] usb 6-1: config 0 interface 0 has no altsetting 0
[  565.927875][ T5938] usb 6-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  566.155848][ T5938] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  566.167453][ T5938] usb 6-1: config 0 descriptor??
[  566.313617][ T8211] netlink: 2384 bytes leftover after parsing attributes in process `syz.4.708'.
[  566.734429][ T8218] syz.0.711 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  566.968408][ T5938] usbhid 6-1:0.0: can't add hid device: -71
[  566.974482][ T5938] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  566.988618][ T5938] usb 6-1: USB disconnect, device number 11
[  567.210056][ T8224] FAULT_INJECTION: forcing a failure.
[  567.210056][ T8224] name failslab, interval 1, probability 0, space 0, times 0
[  567.250397][ T8224] CPU: 0 UID: 0 PID: 8224 Comm: syz.0.721 Not tainted 6.16.0-rc5-next-20250711-syzkaller #0 PREEMPT(full) 
[  567.250429][ T8224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  567.250440][ T8224] Call Trace:
[  567.250448][ T8224]  <TASK>
[  567.250457][ T8224]  dump_stack_lvl+0x189/0x250
[  567.250490][ T8224]  ? __pfx____ratelimit+0x10/0x10
[  567.250510][ T8224]  ? __pfx_dump_stack_lvl+0x10/0x10
[  567.250537][ T8224]  ? __pfx__printk+0x10/0x10
[  567.250571][ T8224]  ? __pfx___might_resched+0x10/0x10
[  567.250602][ T8224]  should_fail_ex+0x414/0x560
[  567.250637][ T8224]  should_failslab+0xa8/0x100
[  567.250658][ T8224]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  567.250688][ T8224]  ? __alloc_skb+0x112/0x2d0
[  567.250717][ T8224]  __alloc_skb+0x112/0x2d0
[  567.250744][ T8224]  __ip6_append_data+0x2c16/0x3f30
[  567.250777][ T8224]  ? __lock_acquire+0xab9/0xd20
[  567.250826][ T8224]  ? __pfx_raw6_getfrag+0x10/0x10
[  567.250875][ T8224]  ? __pfx___ip6_append_data+0x10/0x10
[  567.250896][ T8224]  ? __pfx_ip6_mtu+0x10/0x10
[  567.250930][ T8224]  ip6_append_data+0x1c4/0x380
[  567.250959][ T8224]  ? __pfx_raw6_getfrag+0x10/0x10
[  567.250989][ T8224]  rawv6_sendmsg+0x127a/0x1820
[  567.251037][ T8224]  ? __pfx_rawv6_sendmsg+0x10/0x10
[  567.251093][ T8224]  ? __pfx_aa_sk_perm+0x10/0x10
[  567.251127][ T8224]  ? sock_rps_record_flow+0x19/0x410
[  567.251159][ T8224]  ? inet_sendmsg+0x2f4/0x370
[  567.251185][ T8224]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  567.251213][ T8224]  __sock_sendmsg+0x19c/0x270
[  567.251247][ T8224]  ____sys_sendmsg+0x505/0x830
[  567.251279][ T8224]  ? __pfx_____sys_sendmsg+0x10/0x10
[  567.251315][ T8224]  ? import_iovec+0x74/0xa0
[  567.251349][ T8224]  ___sys_sendmsg+0x21f/0x2a0
[  567.251378][ T8224]  ? __pfx____sys_sendmsg+0x10/0x10
[  567.251447][ T8224]  ? __fget_files+0x2a/0x420
[  567.251470][ T8224]  ? __fget_files+0x3a0/0x420
[  567.251504][ T8224]  __x64_sys_sendmsg+0x19b/0x260
[  567.251532][ T8224]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  567.251569][ T8224]  ? __pfx_ksys_write+0x10/0x10
[  567.251597][ T8224]  ? do_syscall_64+0xbe/0x3b0
[  567.251622][ T8224]  do_syscall_64+0xfa/0x3b0
[  567.251641][ T8224]  ? lockdep_hardirqs_on+0x9c/0x150
[  567.251661][ T8224]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  567.251680][ T8224]  ? clear_bhb_loop+0x60/0xb0
[  567.251704][ T8224]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  567.251723][ T8224] RIP: 0033:0x7f7775f8e929
[  567.251741][ T8224] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  567.251766][ T8224] RSP: 002b:00007f7776d2c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  567.251788][ T8224] RAX: ffffffffffffffda RBX: 00007f77761b5fa0 RCX: 00007f7775f8e929
[  567.251803][ T8224] RDX: 0000000000000060 RSI: 0000200000000080 RDI: 0000000000000003
[  567.251815][ T8224] RBP: 00007f7776d2c090 R08: 0000000000000000 R09: 0000000000000000
[  567.251827][ T8224] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  567.251839][ T8224] R13: 0000000000000000 R14: 00007f77761b5fa0 R15: 00007ffc7833ec38
[  567.251872][ T8224]  </TASK>
[  568.023719][ T8232] qnx4: no qnx4 filesystem (no root dir).
[  568.183966][ T8235] netlink: 4 bytes leftover after parsing attributes in process `syz.6.717'.
[  568.188179][ T8237] FAULT_INJECTION: forcing a failure.
[  568.188179][ T8237] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  568.215209][ T8237] CPU: 0 UID: 0 PID: 8237 Comm: syz.5.718 Not tainted 6.16.0-rc5-next-20250711-syzkaller #0 PREEMPT(full) 
[  568.215238][ T8237] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  568.215249][ T8237] Call Trace:
[  568.215257][ T8237]  <TASK>
[  568.215265][ T8237]  dump_stack_lvl+0x189/0x250
[  568.215296][ T8237]  ? __pfx____ratelimit+0x10/0x10
[  568.215316][ T8237]  ? __pfx_dump_stack_lvl+0x10/0x10
[  568.215341][ T8237]  ? __pfx__printk+0x10/0x10
[  568.215380][ T8237]  should_fail_ex+0x414/0x560
[  568.215415][ T8237]  _copy_to_user+0x31/0xb0
[  568.215435][ T8237]  simple_read_from_buffer+0xe1/0x170
[  568.215461][ T8237]  proc_fail_nth_read+0x1df/0x250
[  568.215490][ T8237]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  568.215517][ T8237]  ? rw_verify_area+0x2a6/0x4d0
[  568.215534][ T8237]  ? __lock_acquire+0xab9/0xd20
[  568.215554][ T8237]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  568.215580][ T8237]  vfs_read+0x1fd/0x980
[  568.215606][ T8237]  ? __pfx___mutex_lock+0x10/0x10
[  568.215627][ T8237]  ? __pfx_vfs_read+0x10/0x10
[  568.215648][ T8237]  ? __fget_files+0x2a/0x420
[  568.215685][ T8237]  ? __fget_files+0x3a0/0x420
[  568.215705][ T8237]  ? __fget_files+0x2a/0x420
[  568.215734][ T8237]  ksys_read+0x145/0x250
[  568.215754][ T8237]  ? __pfx_ksys_read+0x10/0x10
[  568.215769][ T8237]  ? rcu_is_watching+0x15/0xb0
[  568.215796][ T8237]  ? do_syscall_64+0xbe/0x3b0
[  568.215822][ T8237]  do_syscall_64+0xfa/0x3b0
[  568.215838][ T8237]  ? lockdep_hardirqs_on+0x9c/0x150
[  568.215855][ T8237]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  568.215873][ T8237]  ? clear_bhb_loop+0x60/0xb0
[  568.215896][ T8237]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  568.215914][ T8237] RIP: 0033:0x7f6baf98d33c
[  568.215932][ T8237] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  568.215947][ T8237] RSP: 002b:00007f6bb0787030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  568.215965][ T8237] RAX: ffffffffffffffda RBX: 00007f6bafbb5fa0 RCX: 00007f6baf98d33c
[  568.215977][ T8237] RDX: 000000000000000f RSI: 00007f6bb07870a0 RDI: 0000000000000005
[  568.215987][ T8237] RBP: 00007f6bb0787090 R08: 0000000000000000 R09: 0000000000000000
[  568.215998][ T8237] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  568.216009][ T8237] R13: 0000000000000000 R14: 00007f6bafbb5fa0 R15: 00007ffd35ef1e78
[  568.216040][ T8237]  </TASK>
[  569.616802][ T8268] loop2: detected capacity change from 0 to 1
[  569.685243][ T8268] Dev loop2: unable to read RDB block 1
[  569.705419][ T8268]  loop2: unable to read partition table
[  569.744696][ T8268] loop2: partition table beyond EOD, truncated
[  569.758998][ T8268] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[  569.792904][ T8273] tipc: Enabled bearer <eth:syzkaller0>, priority 10
[  570.021509][ T8273] tipc: Resetting bearer <eth:syzkaller0>
[  570.103604][ T8272] tipc: Resetting bearer <eth:syzkaller0>
[  570.755057][ T8291] loop1: detected capacity change from 0 to 7
[  570.784414][ T5912] Dev loop1: unable to read RDB block 7
[  570.813575][ T5912]  loop1: unable to read partition table
[  570.836596][  T981] tipc: Node number set to 219130219
[  570.850258][ T5912] loop1: partition table beyond EOD, truncated
[  570.872503][ T8291] Dev loop1: unable to read RDB block 7
[  570.892622][ T8291]  loop1: unable to read partition table
[  570.914660][ T8291] loop1: partition table beyond EOD, truncated
[  570.939508][ T8291] loop_reread_partitions: partition scan of loop1 (�被��ڬ��fƤ����ݡ������
[  570.939508][ T8291] 
) failed (rc=-5)
[  571.132289][ T8293] comedi: No check for data length of config insn id 511 is implemented
[  571.144510][ T8293] comedi: Add a check to check_insn_config_length in drivers/comedi/comedi_fops.c
[  571.165819][ T8293] comedi: Assuming n=3591 is correct
[  571.173483][ T8293] afs: Unknown parameter 'fowner'
[  571.433594][ T8298] netlink: 16 bytes leftover after parsing attributes in process `syz.5.739'.
[  573.600494][ T8272] tipc: Disabling bearer <eth:syzkaller0>
[  573.836387][ T8303] omfs: Invalid superblock (0)
[  573.885480][ T8306] netlink: 68 bytes leftover after parsing attributes in process `syz.0.742'.
[  574.320469][ T8316] loop1: detected capacity change from 0 to 7
[  574.379060][ T8316] Dev loop1: unable to read RDB block 7
[  574.379423][ T5938] usb 1-1: new high-speed USB device number 24 using dummy_hcd
[  574.431359][ T8316]  loop1: unable to read partition table
[  574.443941][ T8316] loop1: partition table beyond EOD, truncated
[  574.453539][ T8316] loop_reread_partitions: partition scan of loop1 (�被��ڬ��fƤ����ݡ������
[  574.453539][ T8316] 
) failed (rc=-5)
[  574.584647][ T5938] usb 1-1: Using ep0 maxpacket: 16
[  574.594347][ T5938] usb 1-1: unable to get BOS descriptor or descriptor too short
[  574.610277][ T5938] usb 1-1: config 1 interface 0 altsetting 126 bulk endpoint 0x1 has invalid maxpacket 16
[  574.668990][ T5938] usb 1-1: config 1 interface 0 altsetting 126 bulk endpoint 0x82 has invalid maxpacket 64
[  574.707197][ T5938] usb 1-1: config 1 interface 0 has no altsetting 0
[  574.734281][ T5938] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  574.758538][ T5938] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  574.784436][ T5938] usb 1-1: Product: syz
[  574.795396][ T5938] usb 1-1: Manufacturer: syz
[  574.810385][ T5938] usb 1-1: SerialNumber: syz
[  574.828011][ T8306] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  574.852087][ T8306] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  574.960508][ T8329] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  575.071172][ T8331] Invalid source name
[  575.080793][ T8331] UBIFS error (pid: 8331): cannot open "./file0", error -22
[  575.085294][ T8331] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0)
[  575.098628][ T8306] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  575.171656][ T5938] usblp 1-1:1.0: usblp0: USB Bidirectional printer dev 24 if 0 alt 126 proto 2 vid 0x0525 pid 0xA4A8
[  575.212357][ T5938] usb 1-1: USB disconnect, device number 24
[  575.236741][ T5938] usblp0: removed
[  575.364529][ T5898] Bluetooth: hci4: command 0x0406 tx timeout
[  575.417031][ T5958] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  575.584090][ T5958] usb 5-1: Using ep0 maxpacket: 32
[  575.594381][ T5958] usb 5-1: config 0 has an invalid interface number: 2 but max is 0
[  575.613336][ T5958] usb 5-1: config 0 has no interface number 0
[  575.630275][ T5958] usb 5-1: config 0 interface 2 has no altsetting 0
[  575.648595][ T5958] usb 5-1: New USB device found, idVendor=086a, idProduct=0003, bcdDevice=f0.3f
[  575.661761][ T5958] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  575.676370][ T5958] usb 5-1: Product: syz
[  575.680753][ T5958] usb 5-1: Manufacturer: syz
[  575.692687][ T5958] usb 5-1: SerialNumber: syz
[  575.712585][ T5958] usb 5-1: config 0 descriptor??
[  575.934301][ T5958] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  575.973453][ T8341] atomic_op ffff8880774a5198 conn xmit_atomic 0000000000000000
[  576.134461][ T8331] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  576.175819][ T8331] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  576.207981][ T5958] usb 5-1: invalid MIDI in EP 0
[  576.329188][ T5958] snd-usb-audio 5-1:0.2: probe with driver snd-usb-audio failed with error -22
[  576.357490][ T5958] usb 5-1: USB disconnect, device number 12
[  576.426158][ T7413] udevd[7413]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.2/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  576.567021][ T8350] loop2: detected capacity change from 0 to 1
[  576.590164][ T8350] Dev loop2: unable to read RDB block 1
[  576.612043][ T8350]  loop2: unable to read partition table
[  576.629103][ T8350] loop2: partition table beyond EOD, truncated
[  576.648413][ T8350] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[  576.674057][ T8352] netlink: 20 bytes leftover after parsing attributes in process `syz.0.762'.
[  577.019025][ T8357] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  577.242480][ T8366] loop1: detected capacity change from 0 to 7
[  577.301339][ T8366] Dev loop1: unable to read RDB block 7
[  577.313341][ T8366]  loop1: unable to read partition table
[  577.337449][ T8366] loop1: partition table beyond EOD, truncated
[  577.350348][ T8368] NILFS (rnullb0): couldn't find nilfs on the device
[  577.362058][ T8366] loop_reread_partitions: partition scan of loop1 (�被��ڬ��fƤ����ݡ������
[  577.362058][ T8366] 
) failed (rc=-5)
[  577.623548][ T8372] misc userio: Begin command sent, but we're already running
[  577.667833][ T8374] EXT4-fs (rnullb0): VFS: Can't find ext4 filesystem
[  577.814500][ T8382] /dev/rnullb0: Can't open blockdev
[  577.937363][ T8382] XFS (rnullb0): Invalid superblock magic number
[  577.949795][ T8385] netlink: 'syz.5.775': attribute type 12 has an invalid length.
[  577.994716][ T8385] netlink: 9472 bytes leftover after parsing attributes in process `syz.5.775'.
[  578.103291][ T8382] XFS (rnullb0): Invalid superblock magic number
[  578.178336][ T8382] XFS (rnullb0): Invalid superblock magic number
[  578.219966][ T8405] /dev/rnullb0: Can't open blockdev
[  578.272022][ T8382] XFS (rnullb0): Invalid superblock magic number
[  578.366879][ T8382] XFS (rnullb0): Invalid superblock magic number
[  578.454070][ T8382] XFS (rnullb0): Invalid superblock magic number
[  578.501831][ T8419] FAULT_INJECTION: forcing a failure.
[  578.501831][ T8419] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  578.566215][ T8382] XFS (rnullb0): Invalid superblock magic number
[  578.612585][ T8419] CPU: 0 UID: 0 PID: 8419 Comm: syz.4.778 Not tainted 6.16.0-rc5-next-20250711-syzkaller #0 PREEMPT(full) 
[  578.612617][ T8419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  578.612629][ T8419] Call Trace:
[  578.612638][ T8419]  <TASK>
[  578.612647][ T8419]  dump_stack_lvl+0x189/0x250
[  578.612680][ T8419]  ? __pfx____ratelimit+0x10/0x10
[  578.612701][ T8419]  ? __pfx_dump_stack_lvl+0x10/0x10
[  578.612728][ T8419]  ? __pfx__printk+0x10/0x10
[  578.612757][ T8419]  ? fs_reclaim_acquire+0x7d/0x100
[  578.612788][ T8419]  should_fail_ex+0x414/0x560
[  578.612824][ T8419]  prepare_alloc_pages+0x213/0x610
[  578.612854][ T8419]  __alloc_frozen_pages_noprof+0x123/0x370
[  578.612882][ T8419]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  578.612923][ T8419]  alloc_pages_mpol+0x232/0x4a0
[  578.612948][ T8419]  alloc_pages_noprof+0xa9/0x190
[  578.612970][ T8419]  folio_alloc_noprof+0x1e/0x30
[  578.612987][ T8419]  fuse_do_ioctl+0xd3a/0x1f00
[  578.613025][ T8419]  ? __pfx_fuse_do_ioctl+0x10/0x10
[  578.613041][ T8419]  ? do_vfs_ioctl+0xb33/0x1430
[  578.613082][ T8419]  ? __lock_acquire+0xab9/0xd20
[  578.613135][ T8419]  ? __fget_files+0x3a0/0x420
[  578.613156][ T8419]  ? fuse_allow_current_process+0x1eb/0x3c0
[  578.613184][ T8419]  ? fuse_file_ioctl+0xe6/0x140
[  578.613203][ T8419]  ? __pfx_fuse_file_ioctl+0x10/0x10
[  578.613223][ T8419]  __se_sys_ioctl+0xf9/0x170
[  578.613255][ T8419]  do_syscall_64+0xfa/0x3b0
[  578.613276][ T8419]  ? lockdep_hardirqs_on+0x9c/0x150
[  578.613295][ T8419]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  578.613314][ T8419]  ? clear_bhb_loop+0x60/0xb0
[  578.613338][ T8419]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  578.613356][ T8419] RIP: 0033:0x7f7b27b8e929
[  578.613374][ T8419] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  578.613390][ T8419] RSP: 002b:00007f7b28abc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  578.613421][ T8419] RAX: ffffffffffffffda RBX: 00007f7b27db5fa0 RCX: 00007f7b27b8e929
[  578.613435][ T8419] RDX: 0000200000000000 RSI: 0000000040806685 RDI: 0000000000000003
[  578.613448][ T8419] RBP: 00007f7b28abc090 R08: 0000000000000000 R09: 0000000000000000
[  578.613460][ T8419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  578.613472][ T8419] R13: 0000000000000000 R14: 00007f7b27db5fa0 R15: 00007ffff9430638
[  578.613503][ T8419]  </TASK>
[  580.007948][ T8455] loop1: detected capacity change from 0 to 7
[  580.065737][ T8455] Dev loop1: unable to read RDB block 7
[  580.065786][ T8455]  loop1: unable to read partition table
[  580.066022][ T8455] loop1: partition table beyond EOD, truncated
[  580.066055][ T8455] loop_reread_partitions: partition scan of loop1 (�被��ڬ��fƤ����ݡ������
[  580.066055][ T8455] 
) failed (rc=-5)
[  580.242208][ T5938] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  580.441871][ T5938] usb 5-1: Using ep0 maxpacket: 32
[  580.443920][ T5938] usb 5-1: config 0 has no interfaces?
[  580.443958][ T5938] usb 5-1: New USB device found, idVendor=d5ff, idProduct=0066, bcdDevice=d8.b0
[  580.443983][ T5938] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  580.447213][ T5938] usb 5-1: config 0 descriptor??
[  580.656436][ T8458] netlink: 'syz.4.789': attribute type 3 has an invalid length.
[  580.664304][ T8458] netlink: 8 bytes leftover after parsing attributes in process `syz.4.789'.
[  580.684750][ T8458] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  580.697089][ T8458] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  580.743615][ T8458] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  580.829268][ T8458] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  580.882761][ T8458] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  580.924634][ T8458] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  580.962899][   T31] INFO: task syz.1.37:6089 blocked for more than 143 seconds.
[  580.976166][   T31]       Not tainted 6.16.0-rc5-next-20250711-syzkaller #0
[  580.987154][ T8458] Mount JFS Failure: -22
[  581.003226][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  581.032540][   T31] task:syz.1.37        state:D stack:24824 pid:6089  tgid:6089  ppid:5895   task_flags:0x440040 flags:0x00004004
[  581.068777][   T31] Call Trace:
[  581.084756][   T31]  <TASK>
[  581.090868][   T31]  __schedule+0x16f5/0x4d00
[  581.104893][   T31]  ? __lock_acquire+0xab9/0xd20
[  581.138212][   T31]  ? schedule+0x165/0x360
[  581.173347][   T31]  ? __pfx___schedule+0x10/0x10
[  581.195657][   T31]  ? schedule+0x91/0x360
[  581.209413][   T31]  schedule+0x165/0x360
[  581.240557][   T31]  schedule_preempt_disabled+0x13/0x30
[  581.261265][   T31]  rwsem_down_read_slowpath+0x5fd/0x8f0
[  581.297094][   T31]  ? rwsem_down_read_slowpath+0x4b8/0x8f0
[  581.317371][   T31]  ? __pfx_rwsem_down_read_slowpath+0x10/0x10
[  581.333845][   T31]  down_read+0x98/0x2e0
[  581.343941][   T31]  page_cache_ra_order+0x318/0xd40
[  581.349131][   T31]  ? maybe_unlock_mmap_for_io+0x225/0x2d0
[  581.380725][   T31]  do_sync_mmap_readahead+0x25e/0x7a0
[  581.396465][   T31]  ? __pfx_do_sync_mmap_readahead+0x10/0x10
[  581.415181][   T31]  ? count_memcg_event_mm+0x1d/0x250
[  581.430993][   T31]  ? count_memcg_event_mm+0x1d/0x250
[  581.451042][   T31]  filemap_fault+0x62c/0x1200
[  581.455790][   T31]  ? __pfx_filemap_fault+0x10/0x10
[  581.460955][   T31]  __do_fault+0x138/0x390
[  581.501597][   T31]  __handle_mm_fault+0x1847/0x5440
[  581.531590][   T31]  ? __lock_acquire+0xab9/0xd20
[  581.536526][   T31]  ? __pfx___handle_mm_fault+0x10/0x10
[  581.581100][   T31]  ? lock_vma_under_rcu+0xe0/0x410
[  581.597352][   T31]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[  581.627237][   T31]  handle_mm_fault+0x40a/0x8e0
[  581.637334][ T5938] usb 5-1: USB disconnect, device number 13
[  581.664225][   T31]  do_user_addr_fault+0xa81/0x1390
[  581.669449][   T31]  ? rcu_is_watching+0x15/0xb0
[  581.731576][   T31]  ? trace_page_fault_user+0x84/0x1e0
[  581.737059][   T31]  exc_page_fault+0x76/0xf0
[  581.761617][   T31]  asm_exc_page_fault+0x26/0x30
[  581.777045][   T31] RIP: 0033:0x7fb180a54f03
[  581.799415][   T31] RSP: 002b:00007ffd03c3db70 EFLAGS: 00010246
[  581.816600][   T31] RAX: 0000200000003280 RBX: 0000000000000008 RCX: 0000000000000000
[  581.829169][   T31] RDX: 0000000000000884 RSI: 0000000000000000 RDI: 00005555575313c8
[  581.852732][   T31] RBP: 00007ffd03c3dc78 R08: 0000000000000000 R09: 0000000000000000
[  581.860769][   T31] R10: 0000000000000000 R11: 0000000000000001 R12: 00007fb180db608c
[  581.871287][   T31] R13: 00007fb180db6080 R14: fffffffffffffffe R15: 00007ffd03c3dcc0
[  581.884636][   T31]  </TASK>
[  581.892348][   T31] 
[  581.892348][   T31] Showing all locks held in the system:
[  581.926429][   T31] 1 lock held by pool_workqueue_/3:
[  581.943651][   T31]  #0: ffffffff8e5420f8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: synchronize_rcu_expedited+0x3b9/0x730
[  581.958794][   T31] 3 locks held by kworker/0:0/9:
[  582.040654][   T31]  #0: ffff88801a880d48 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  582.060318][   T31]  #1: ffffc900000e7bc0 (key_gc_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  582.076978][   T31]  #2: ffffffff8e5420f8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: synchronize_rcu_expedited+0x3b9/0x730
[  582.090964][   T31] 1 lock held by khungtaskd/31:
[  582.095852][   T31]  #0: ffffffff8e53c5a0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[  582.114886][   T31] 2 locks held by getty/5612:
[  582.119643][   T31]  #0: ffff8880350da0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  582.131756][   T31]  #1: ffffc9000332b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x43e/0x1400
[  582.147768][   T31] 1 lock held by syz.1.37/6089:
[  582.161062][   T31]  #0: ffff8880230594c8 (mapping.invalidate_lock){++++}-{4:4}, at: page_cache_ra_order+0x318/0xd40
[  582.195815][   T31] 4 locks held by syz.1.37/6092:
[  582.207743][   T31] 1 lock held by syz.2.80/6220:
[  582.230666][   T31]  #0: ffff888023059328 (&sb->s_type->i_mutex_key#8){++++}-{4:4}, at: blkdev_fallocate+0x260/0x530
[  582.251268][   T31] 1 lock held by syz.3.333/7043:
[  582.256334][   T31]  #0: ffff888023059328 (&sb->s_type->i_mutex_key#8){++++}-{4:4}, at: blkdev_write_iter+0x50b/0x710
[  582.277811][   T31] 3 locks held by syz.0.779/8433:
[  582.283415][   T31] 3 locks held by syz.0.785/8448:
[  582.288542][   T31]  #0: ffff888076d5b0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_release+0xb7/0x200
[  582.302209][   T31]  #1: ffff888076d5d0a0 (&tty->ldisc_sem/1){+.+.}-{0:0}, at: tty_ldisc_release+0xdb/0x200
[  582.336221][   T31]  #2: ffffffff8e5420f8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: synchronize_rcu_expedited+0x3b9/0x730
[  582.360882][   T31] 1 lock held by syz.0.785/8457:
[  582.365865][   T31] 1 lock held by rm/8480:
[  582.390963][   T31] 
[  582.394926][   T31] =============================================
[  582.394926][   T31] 
[  582.420697][   T31] NMI backtrace for cpu 1
[  582.420718][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-rc5-next-20250711-syzkaller #0 PREEMPT(full) 
[  582.420741][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  582.420753][   T31] Call Trace:
[  582.420760][   T31]  <TASK>
[  582.420769][   T31]  dump_stack_lvl+0x189/0x250
[  582.420799][   T31]  ? __wake_up_klogd+0xd9/0x110
[  582.420822][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[  582.420847][   T31]  ? __pfx__printk+0x10/0x10
[  582.420886][   T31]  nmi_cpu_backtrace+0x39e/0x3d0
[  582.420915][   T31]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  582.420938][   T31]  ? _printk+0xcf/0x120
[  582.420968][   T31]  ? __pfx__printk+0x10/0x10
[  582.420997][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  582.421022][   T31]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[  582.421052][   T31]  watchdog+0xfee/0x1030
[  582.421075][   T31]  ? watchdog+0x1de/0x1030
[  582.421103][   T31]  kthread+0x711/0x8a0
[  582.421124][   T31]  ? __pfx_watchdog+0x10/0x10
[  582.421142][   T31]  ? __pfx_kthread+0x10/0x10
[  582.421162][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  582.421190][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  582.421207][   T31]  ? __pfx_kthread+0x10/0x10
[  582.421225][   T31]  ret_from_fork+0x3f9/0x770
[  582.421252][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  582.421282][   T31]  ? __switch_to_asm+0x39/0x70
[  582.421298][   T31]  ? __switch_to_asm+0x33/0x70
[  582.421314][   T31]  ? __pfx_kthread+0x10/0x10
[  582.421331][   T31]  ret_from_fork_asm+0x1a/0x30
[  582.421365][   T31]  </TASK>
[  582.421372][   T31] Sending NMI from CPU 1 to CPUs 0:
[  582.581586][    C0] NMI backtrace for cpu 0
[  582.581605][    C0] CPU: 0 UID: 0 PID: 6635 Comm: kworker/u8:13 Not tainted 6.16.0-rc5-next-20250711-syzkaller #0 PREEMPT(full) 
[  582.581624][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  582.581634][    C0] Workqueue: events_unbound nsim_dev_trap_report_work
[  582.581657][    C0] RIP: 0010:stack_trace_consume_entry+0x9/0x280
[  582.581683][    C0] Code: 5d e9 5b 74 d7 09 cc e8 a5 98 d4 09 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 55 41 57 41 56 <41> 55 41 54 53 48 83 ec 18 48 ba 00 00 00 00 00 fc ff df 4c 8d 47
[  582.581695][    C0] RSP: 0018:ffffc90003ec74e8 EFLAGS: 00000282
[  582.581709][    C0] RAX: ffffffff8224856e RBX: ffffc90003ec75c0 RCX: 011470358bdb7a00
[  582.581721][    C0] RDX: 0000000000000001 RSI: ffffffff8224856e RDI: ffffc90003ec75c0
[  582.581731][    C0] RBP: ffffc90003ec7590 R08: ffffc90003ec7630 R09: 0000000000000000
[  582.581742][    C0] R10: ffffc90003ec7558 R11: ffffffff81accb20 R12: ffff88807d769e00
[  582.581753][    C0] R13: ffff88801a842140 R14: ffffffff81accb20 R15: ffffc90003ec7508
[  582.581763][    C0] FS:  0000000000000000(0000) GS:ffff88812578f000(0000) knlGS:0000000000000000
[  582.581776][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  582.581787][    C0] CR2: 000055f74afd6950 CR3: 000000007c35a000 CR4: 00000000003526f0
[  582.581802][    C0] Call Trace:
[  582.581808][    C0]  <TASK>
[  582.581814][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  582.581836][    C0]  arch_stack_walk+0x10d/0x150
[  582.581858][    C0]  ? kasan_save_track+0x3e/0x80
[  582.581880][    C0]  stack_trace_save+0x9c/0xe0
[  582.581900][    C0]  ? __pfx_stack_trace_save+0x10/0x10
[  582.581922][    C0]  ? stack_depot_save_flags+0x40/0x900
[  582.581938][    C0]  kasan_save_track+0x3e/0x80
[  582.581978][    C0]  __kasan_kmalloc+0x93/0xb0
[  582.581999][    C0]  __kmalloc_node_track_caller_noprof+0x271/0x4e0
[  582.582020][    C0]  ? __alloc_skb+0x142/0x2d0
[  582.582038][    C0]  ? __alloc_skb+0x142/0x2d0
[  582.582053][    C0]  kmalloc_reserve+0x136/0x290
[  582.582071][    C0]  __alloc_skb+0x142/0x2d0
[  582.582089][    C0]  nsim_dev_trap_report_work+0x29a/0xb80
[  582.582111][    C0]  ? process_scheduled_works+0x9ef/0x17b0
[  582.582130][    C0]  process_scheduled_works+0xade/0x17b0
[  582.582164][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  582.582189][    C0]  worker_thread+0x8a0/0xda0
[  582.582217][    C0]  kthread+0x711/0x8a0
[  582.582231][    C0]  ? __pfx_worker_thread+0x10/0x10
[  582.582248][    C0]  ? __pfx_kthread+0x10/0x10
[  582.582262][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  582.582283][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  582.582297][    C0]  ? __pfx_kthread+0x10/0x10
[  582.582311][    C0]  ret_from_fork+0x3f9/0x770
[  582.582336][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[  582.582355][    C0]  ? __switch_to_asm+0x39/0x70
[  582.582370][    C0]  ? __switch_to_asm+0x33/0x70
[  582.582383][    C0]  ? __pfx_kthread+0x10/0x10
[  582.582396][    C0]  ret_from_fork_asm+0x1a/0x30
[  582.582416][    C0]  </TASK>
[  582.877574][    C1] vkms_vblank_simulate: vblank timer overrun
[  583.055774][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[  583.062690][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-rc5-next-20250711-syzkaller #0 PREEMPT(full) 
[  583.074004][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  583.084090][   T31] Call Trace:
[  583.087393][   T31]  <TASK>
[  583.090342][   T31]  dump_stack_lvl+0x99/0x250
[  583.094965][   T31]  ? __asan_memcpy+0x40/0x70
[  583.099580][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[  583.104812][   T31]  ? __pfx__printk+0x10/0x10
[  583.109444][   T31]  vpanic+0x281/0x750
[  583.113453][   T31]  ? __pfx_vpanic+0x10/0x10
[  583.117982][   T31]  ? preempt_schedule+0xae/0xc0
[  583.122860][   T31]  ? preempt_schedule_common+0x83/0xd0
[  583.128344][   T31]  panic+0xb9/0xc0
[  583.132092][   T31]  ? __pfx_panic+0x10/0x10
[  583.136536][   T31]  ? preempt_schedule_thunk+0x16/0x30
[  583.141946][   T31]  ? nmi_trigger_cpumask_backtrace+0x2bb/0x300
[  583.148132][   T31]  watchdog+0x102d/0x1030
[  583.152489][   T31]  ? watchdog+0x1de/0x1030
[  583.156939][   T31]  kthread+0x711/0x8a0
[  583.161028][   T31]  ? __pfx_watchdog+0x10/0x10
[  583.165725][   T31]  ? __pfx_kthread+0x10/0x10
[  583.170335][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  583.175569][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  583.180782][   T31]  ? __pfx_kthread+0x10/0x10
[  583.185390][   T31]  ret_from_fork+0x3f9/0x770
[  583.190006][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  583.195150][   T31]  ? __switch_to_asm+0x39/0x70
[  583.199931][   T31]  ? __switch_to_asm+0x33/0x70
[  583.204717][   T31]  ? __pfx_kthread+0x10/0x10
[  583.209323][   T31]  ret_from_fork_asm+0x1a/0x30
[  583.214121][   T31]  </TASK>
[  583.217436][   T31] Kernel Offset: disabled
[  583.221756][   T31] Rebooting in 86400 seconds..