last executing test programs:

27.83534225s ago: executing program 0 (id=446):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000d40)=ANY=[@ANYBLOB="54010000100001000000000000000000ac1e0001000000000000000000000000fc01000000000000000000000000000000000000000000000000000062000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ac141400000000000000000000000000000004d532000000fe80000000000000000000000000000b000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e492526be812ce870000000000000000000a000100000000000000000048000200656362286369706865725f6e756c6c29000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001c00040003004e224e240000fc0200"/268], 0x154}}, 0x0)

27.765546463s ago: executing program 0 (id=447):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000180)=ANY=[@ANYBLOB="480100001000010000000000000000000000000000000000000000000000000000000000f8ff0000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ac141400000000000000000000000000000000003200000000000000000000000000000000000000000000000000000000000000000000000000001eb900000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000004c00120073657169762863636d28626c6f77666973682d61736d292900"/217], 0x148}}, 0x0)

27.60011999s ago: executing program 0 (id=448):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x2, 0x4, 0x6, 0x5, 0x5000, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = gettid()
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000ec0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000580)=ANY=[@ANYBLOB="44010000100013072abd700000000000ffffffff000000000000000000000000ac1e000100000000000000000000000000000403000000000200000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ff0200000000000000000000000000010000000032000000ac1414aa000000000000000000000000040000000000000000000000000000000000000000000000000018000000000000000000000000000000000000000000000000000000000000000000002200000000000000000000000000000000000000000000000000000000000000000000000000000100002000000000feffffff0000000002000400000000000000000048000200656362286369706865725f6e756c6c29000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c001c00"], 0x144}}, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
dup(r3)
r5 = accept4(r4, 0x0, 0x0, 0x0)
recvfrom(r5, &(0x7f0000000080)=""/175, 0x59000, 0x0, 0x0, 0x10000000000000)
r6 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000140)={{0x12, 0x1, 0x0, 0x92, 0xe5, 0x9e, 0x20, 0x108c, 0x169, 0x75b9, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0xdb, 0x0, 0x1, 0xd, 0xfa, 0x0, 0x3, [], [{{0x9, 0x5, 0x80, 0x0, 0x0, 0x0, 0xfc}}]}}]}}]}}, 0x0)
syz_usb_control_io$cdc_ecm(r6, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r6, &(0x7f0000000340)={0x14, 0x0, &(0x7f0000000100)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close(r7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r10, 0xffffffffffffffff, 0x26, 0x0, 0x0, @void, @value}, 0x10)
recvmsg$unix(r8, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000006c0)=""/179, 0x33fe0}], 0x1}, 0x12)
sendmsg$inet(r9, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)

25.884358384s ago: executing program 3 (id=457):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x2d41, 0xd5)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000000780)={0x50, 0x0, r2, {0x7, 0x1f, 0x0, 0x202, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x40000000}}, 0x50)
syz_fuse_handle_req(r1, &(0x7f0000008380)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)={0x20, 0x0, 0x0, {0x0, 0x10}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = openat$userio(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
write$USERIO_CMD_SET_PORT_TYPE(r3, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x20000000)
socket$nl_route(0x10, 0x3, 0x0)

25.075120815s ago: executing program 0 (id=461):
r0 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
read$dsp(r0, &(0x7f0000000500)=""/211, 0xd3)
r1 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x100, 0x2, 0xbfdffffc}, &(0x7f0000000000)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010000000000000000001200000008000800000000000800090000000000180001801400020076657468305f746f5f626f6e640000000800070000000000080006"], 0x4c}}, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r1, 0x75fa, 0xe475, 0x0, 0x0, 0x0)
r6 = getpid()
r7 = syz_pidfd_open(r6, 0x0)
setns(r7, 0x8020000)
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0)
tkill(r6, 0x4)
r8 = epoll_create1(0x0)
r9 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r9, 0x1, r8, &(0x7f0000000000)={0xb0000001})
r10 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(r10, 0xc0305710, 0x0)
r11 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x109802, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r11, 0xc0045005, &(0x7f0000000000)=0x400)
mmap$dsp(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000002, 0x8012, r11, 0x0)
mremap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000ffc000/0x1000)=nil)
syz_io_uring_setup(0x62c4, &(0x7f0000000000)={0x0, 0xf9c2, 0x20, 0x5, 0x394}, &(0x7f0000000080), &(0x7f00000000c0))
mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x10000000)
r12 = syz_io_uring_setup(0x90c, 0x0, &(0x7f00000001c0)=<r13=>0x0, &(0x7f0000000300)=<r14=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r13, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r15 = io_uring_register$IORING_REGISTER_PERSONALITY(r12, 0x9, 0x0, 0x0)
syz_io_uring_submit(r13, r14, &(0x7f00000002c0)=@IORING_OP_FADVISE={0x18, 0x9, 0x0, @fd_index=0x9, 0x7, 0x0, 0xfffffff3, 0x2, 0x0, {0x0, r15}})
syz_open_dev$usbfs(&(0x7f0000000200), 0xcf, 0x400800)

24.749278092s ago: executing program 0 (id=462):
openat$sysfs(0xffffff9c, 0x0, 0x40002, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000200), r3)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000440)={'veth0\x00', <r5=>0x0})
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01032cbd7000fcdbdf25040000000c00018008000100", @ANYRES32=r5], 0x20}, 0x1, 0x0, 0x0, 0x20000005}, 0x80)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
r7 = socket$inet_sctp(0x2, 0x1, 0x84)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x24, 0x24, 0x20, 0x70bd26, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0xffff}, {0xffff, 0xffff}}}, 0x24}}, 0x20000000)
getsockopt$inet_sctp_SCTP_MAX_BURST(r7, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r8=>0x0}, &(0x7f00000000c0)=0x8)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r6, 0x84, 0x85, &(0x7f0000000000)={r8, @in={{0x2, 0x0, @empty}}, 0x27c0}, 0x90)
symlink(0x0, &(0x7f0000000100)='./file0\x00')
syz_emit_ethernet(0x66, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa88a800008100000086dd6076cd8a002800002001"], 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r9 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r9, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))

24.503676121s ago: executing program 0 (id=463):
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x20202, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xfffffffffffffd27, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

22.045517399s ago: executing program 3 (id=469):
r0 = socket$pptp(0x18, 0x1, 0x2)
getsockname(r0, 0x0, &(0x7f0000000100))
syz_open_dev$sndctrl(0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
epoll_create1(0x0)
socket$xdp(0x2c, 0x3, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$packet(0x11, 0x3, 0x300)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x1, 0x803, 0x0)
pipe(&(0x7f0000000100))
getsockname$packet(r2, 0x0, &(0x7f00000001c0))
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[], 0x60}, 0x1, 0x0, 0x0, 0x4004014}, 0x4000000)
ioctl$USBDEVFS_BULK(0xffffffffffffffff, 0xc00c5512, 0x0)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000240)=ANY=[@ANYBLOB="5c0000002d000100000007000000000004000080450011802fe5afbf24fbcccc554cd9761e79b8dad8a2018544a3702840054f9e143ec6c09650dbe7a1520d6147f9cdbd9d15d2dcd393701e000000"], 0x5c}], 0x1}, 0x0)
r4 = syz_open_dev$radio(0x0, 0x0, 0x2)
ioctl$VIDIOC_S_EXT_CTRLS(r4, 0xc0205647, &(0x7f0000000100)={0xf010004, 0x251, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x98f90d, 0x76, '\x00', @p_u16=0x0}})

20.160730944s ago: executing program 2 (id=473):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=','])
read$FUSE(r0, &(0x7f0000002140)={0x2020, 0x0, <r1=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000008400)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x4, {0x6, 0x1, 0x0, 0x0, 0x0, 0x0, {0x40, 0x4, 0x0, 0xffff, 0x0, 0xc9, 0x0, 0x4, 0x120, 0x6000, 0x0, 0x0, 0x0, 0x902}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000000440)={0x50, 0x0, r1}, 0x50)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x1)
ioctl$TIOCGPTPEER(r2, 0x40480923, 0x8)

20.100728709s ago: executing program 3 (id=474):
syz_usb_connect(0x0, 0x24, &(0x7f0000000140)=ANY=[@ANYBLOB="120109000000460860163209ea800102030109021200010000"], 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket(0x10, 0x3, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
r4 = syz_io_uring_setup(0x10f, &(0x7f00000000c0)={0x0, 0x211a, 0x0, 0x4, 0x306}, &(0x7f0000000340)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_ACCEPT={0xd, 0x0, 0x1, r3, 0x0})
io_uring_enter(r4, 0x3516, 0xc2de, 0x8, 0x0, 0x0)

19.889258768s ago: executing program 2 (id=475):
socket$nl_xfrm(0x10, 0x3, 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00', r3}, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
prctl$PR_SET_NAME(0xf, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r4 = socket$inet(0x2, 0x3, 0x4)
setsockopt$inet_opts(r4, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f00000000c0)='ip6_vti0\x00', 0x10)
connect$inet(r4, &(0x7f0000000080)={0x2, 0x4e20, @private=0xa010100}, 0x10)
sendmmsg$inet(r4, &(0x7f0000000f40)=[{{&(0x7f0000000040)={0x2, 0x0, @broadcast}, 0x10, 0x0}}], 0x68000, 0x0)
socket$netlink(0x10, 0x3, 0x0)

19.491026346s ago: executing program 2 (id=476):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_int(r0, &(0x7f0000000200), 0x12)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4)

19.418109422s ago: executing program 1 (id=477):
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
write(r0, &(0x7f0000000600)="33008b77000001880300a3db7274416a600ff1c92f7cf635fbe300f48401256416d82af96bc081980e39c4d1d16a763398fb00000000115d17de1f24233b1df6006997da0929c1bc681ca08c76b2ddb510abad508736c0c430201ceceacf72923fd72662cf73ff3f76826fb9ff808368df9bd4a2ab1a9850f96d86bbc5e53a5e5aed5fe838fc495ee58b4c6a33c0bc70b82fd96f6e912783a05004e9bc47b0c941bd841e4c2605d07d7f21820a9e3037e9d004d8e41dd941c09b8a98dbe2eed1bd979ee65ebfc2f0e6eefa6c", 0xfff5)

19.265620357s ago: executing program 1 (id=478):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x41, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0xe)
write$binfmt_aout(r0, &(0x7f00000003c0)=ANY=[], 0xff2e)

19.265400642s ago: executing program 2 (id=479):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
pipe2$9p(&(0x7f0000000000)={<r1=>0xffffffffffffffff}, 0x0)
r2 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
splice(r1, 0x0, r2, 0x0, 0x10000000000016, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)

19.203882608s ago: executing program 1 (id=480):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_ctr_aes128\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)

18.377426197s ago: executing program 2 (id=482):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000080)={{{@in=@multicast2, @in=@local, 0x0, 0x0, 0x4e20, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x2, 0x8001}, {}, 0x0, 0x1, 0x1}, {{@in=@empty, 0x4d6, 0x3c}, 0xa, @in6=@private2, 0x0, 0x1}}, 0xe8)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000080)=ANY=[@ANYBLOB="01000000000000009d02"])

18.376961989s ago: executing program 1 (id=483):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close(r0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000007c0)=ANY=[@ANYRES32=r3, @ANYRES32=r2, @ANYBLOB='&'], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r3}, &(0x7f0000000000), &(0x7f00000002c0)=r0}, 0x20)
sendmsg$inet(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x22fe0}], 0x1}, 0x0)

18.332049881s ago: executing program 1 (id=484):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x4001, 0x0, 0x7, 0x0)
syz_emit_ethernet(0xfc1, &(0x7f00000013c0)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x10}, @void, {@ipv4={0x800, @generic={{0x5, 0x4, 0x0, 0x0, 0xfb3, 0x0, 0x0, 0x0, 0x84, 0x0, @remote, @dev={0xac, 0x14, 0x14, 0xe}}, "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"}}}}, 0x0)

18.306216075s ago: executing program 1 (id=485):
openat$ptmx(0xffffffffffffff9c, 0x0, 0x503840, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000200)=0x40)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000000c0)=0x7e)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0xff)
r1 = getpid()
waitid$P_PIDFD(0x3, 0xffffffffffffffff, 0x0, 0x8, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x800, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000400)=@bpf_lsm={0x6, 0x6, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8766}, [@map_val={0x18, 0x0, 0x2, 0x0, r4}, @ldst={0x3, 0x0, 0x1}]}, &(0x7f0000000180)='syzkaller\x00', 0x7, 0xd2, &(0x7f00000002c0)=""/210, 0x0, 0x20, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_open_procfs(0x0, &(0x7f0000000040)='attr\x00')
r5 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r5, 0x0, 0x27, &(0x7f0000000040)={@multicast2, @local}, 0xc)

18.245518673s ago: executing program 2 (id=486):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000d00)=@newqdisc={0x48, 0x24, 0x3fe3aa0262d8c783, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0x1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_choke={{0xa}, {0x18, 0x2, [@TCA_CHOKE_PARMS={0x14, 0x1, {0x0, 0x1, 0x8002, 0x12, 0x20, 0x1d, 0x7}}]}}]}, 0x48}}, 0x0)

17.073698052s ago: executing program 3 (id=488):
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000002b80), 0x105100, 0x0)

17.032243322s ago: executing program 3 (id=489):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x2, 0x0)
r1 = syz_io_uring_setup(0xf00, &(0x7f0000000080), &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000001700)=@IORING_OP_POLL_ADD={0x6, 0x8, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0x428a}, 0x1})
syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_LINK_TIMEOUT={0xf, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)={0x77359400}})
io_uring_enter(r1, 0x1808, 0x0, 0x0, 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000240)={0x4c, 0x0, &(0x7f0000000600)=[@reply_sg={0x40486312, {0x1, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x5, 0x0, &(0x7f0000000540)="1ebeaf857b"})

16.977449981s ago: executing program 3 (id=490):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000100))
ioctl$PPPIOCSACTIVE(r0, 0x40107446, &(0x7f0000000080)={0x2, &(0x7f00000000c0)=[{0x40, 0x8, 0xfe, 0x9}, {0x6, 0x0, 0x0, 0x8eb6}]})
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
write$ppp(r0, &(0x7f0000000380)='\x00\x00', 0x2)

16.958320567s ago: executing program 4 (id=491):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_NEWRULE={0x44, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_EXPRESSIONS={0x18, 0x4, 0x0, 0x1, [{0x14, 0x20, 0x0, 0x1, @exthdr={{0xb}, @val={0x4}}}]}]}], {0x14}}, 0x6c}}, 0x0)

16.923026492s ago: executing program 4 (id=492):
openat$dlm_control(0xffffffffffffff9c, 0x0, 0x14002, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(r3, 0x4008af00, &(0x7f0000001a40)=0x100000000)
r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r4, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r4, 0x4008af03, 0x0)
r5 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)={{0x14}, [@NFT_MSG_NEWSET={0x3c, 0x12, 0xa, 0x9, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}]}], {0x14}}, 0x64}}, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(0xffffffffffffffff, 0x4004af61, &(0x7f0000000040)=0x1)
syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
rt_sigqueueinfo(r0, 0x25, 0x0)

15.997429633s ago: executing program 4 (id=493):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/sysvipc/shm\x00', 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

15.921460431s ago: executing program 4 (id=494):
openat$vmci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000001700), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f0000000000)={0x0, "f3c492eb0165203d36bec7080089b42c000004002231a110000000005900", <r1=>0xffffffffffffffff})
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESOCT=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])

15.920968748s ago: executing program 4 (id=495):
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
socket$packet(0x11, 0x2, 0x300)
writev(r0, &(0x7f0000000840)=[{0x0}, {0x0}], 0x2)
ioctl$SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, &(0x7f0000000080)=0x20000f7e)
r1 = mq_open(&(0x7f00000016c0)='\x03\x03\x03\x03\x03\x03', 0x40, 0x0, 0x0)
mq_timedreceive(r1, 0x0, 0x0, 0x0, 0x0)
write$dsp(0xffffffffffffffff, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = fsopen(&(0x7f0000000340)='sysfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r3 = fsmount(r2, 0x1, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r2, 0x4, &(0x7f0000000000)=')*&\x00', &(0x7f0000000040)='./file1\x00', r3)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r4=>0xffffffffffffffff, {0xe}}, './file0\x00'})
ioctl$DRM_IOCTL_MODE_GETENCODER(0xffffffffffffffff, 0xc01464a6, &(0x7f0000001240)={0x0, 0x0, <r5=>0x0})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r4, 0xc02064b9, &(0x7f0000001280)={&(0x7f00000000c0)=[0x0], &(0x7f0000000380)=[0x0, 0x0], 0x1, r5, 0xbbbbbbbb})
r6 = syz_open_dev$dri(0x0, 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r6, 0xc04064a0, 0x0)
ioctl$DRM_IOCTL_MODE_PAGE_FLIP(r6, 0xc01864b0, &(0x7f0000000000)={0x0, 0x0, 0x1, 0x0, 0x3})
ioctl$DRM_IOCTL_MODE_PAGE_FLIP(r3, 0xc01864b0, &(0x7f0000000100)={r5, 0x0, 0x2, 0xd, 0x8fcc})
pselect6(0x40, &(0x7f0000000240)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0xc, 0x0, 0x9, 0x7ffffffd, 0xffffffffffffffff}, 0x0, 0x0)

15.057083102s ago: executing program 4 (id=496):
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000040}, 0x24000040)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010008020000001800006600000008000300", @ANYRES32=r4, @ANYBLOB="08002600940900000800b700"], 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, 0x0)
bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000440)=@o_path={0x0}, 0x18)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
sendmsg$NL80211_CMD_DEL_KEY(0xffffffffffffffff, 0x0, 0x240041d5)
ioctl$SNDCTL_DSP_SETFRAGMENT(r5, 0xc004500a, &(0x7f0000000240)=0x3)
r6 = socket$inet6(0xa, 0x3, 0x5)
setsockopt$inet6_int(r6, 0x29, 0x1000000000021, &(0x7f0000000000)=0xffffffc3, 0x4)
ioctl$SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, &(0x7f0000000000))
read$dsp(r5, &(0x7f0000000300)=""/79, 0x4f)
read$dsp(r5, &(0x7f0000000180)=""/166, 0xa6)

2.992841651s ago: executing program 32 (id=485):
openat$ptmx(0xffffffffffffff9c, 0x0, 0x503840, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000200)=0x40)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000000c0)=0x7e)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0xff)
r1 = getpid()
waitid$P_PIDFD(0x3, 0xffffffffffffffff, 0x0, 0x8, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x800, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000400)=@bpf_lsm={0x6, 0x6, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8766}, [@map_val={0x18, 0x0, 0x2, 0x0, r4}, @ldst={0x3, 0x0, 0x1}]}, &(0x7f0000000180)='syzkaller\x00', 0x7, 0xd2, &(0x7f00000002c0)=""/210, 0x0, 0x20, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_open_procfs(0x0, &(0x7f0000000040)='attr\x00')
r5 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r5, 0x0, 0x27, &(0x7f0000000040)={@multicast2, @local}, 0xc)

2.976197538s ago: executing program 33 (id=486):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000d00)=@newqdisc={0x48, 0x24, 0x3fe3aa0262d8c783, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0x1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_choke={{0xa}, {0x18, 0x2, [@TCA_CHOKE_PARMS={0x14, 0x1, {0x0, 0x1, 0x8002, 0x12, 0x20, 0x1d, 0x7}}]}}]}, 0x48}}, 0x0)

2.001248908s ago: executing program 34 (id=490):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000100))
ioctl$PPPIOCSACTIVE(r0, 0x40107446, &(0x7f0000000080)={0x2, &(0x7f00000000c0)=[{0x40, 0x8, 0xfe, 0x9}, {0x6, 0x0, 0x0, 0x8eb6}]})
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
write$ppp(r0, &(0x7f0000000380)='\x00\x00', 0x2)

0s ago: executing program 35 (id=496):
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000040}, 0x24000040)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010008020000001800006600000008000300", @ANYRES32=r4, @ANYBLOB="08002600940900000800b700"], 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, 0x0)
bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000440)=@o_path={0x0}, 0x18)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
sendmsg$NL80211_CMD_DEL_KEY(0xffffffffffffffff, 0x0, 0x240041d5)
ioctl$SNDCTL_DSP_SETFRAGMENT(r5, 0xc004500a, &(0x7f0000000240)=0x3)
r6 = socket$inet6(0xa, 0x3, 0x5)
setsockopt$inet6_int(r6, 0x29, 0x1000000000021, &(0x7f0000000000)=0xffffffc3, 0x4)
ioctl$SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, &(0x7f0000000000))
read$dsp(r5, &(0x7f0000000300)=""/79, 0x4f)
read$dsp(r5, &(0x7f0000000180)=""/166, 0xa6)

kernel console output (not intermixed with test programs):

ways'
[  112.491789][ T6769] netlink: 8 bytes leftover after parsing attributes in process `syz.3.183'.
[  112.555105][ T6769] netlink: 24 bytes leftover after parsing attributes in process `syz.3.183'.
[  113.503130][ T6787] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  113.522744][ T6787] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  113.622854][ T6787] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  113.654981][ T6787] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  113.672079][ T6787] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  113.705844][ T6787] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  113.744378][ T6787] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  113.764068][ T6787] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  113.788049][ T6787] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  113.834823][ T6787] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  113.857197][ T6787] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  113.907263][ T6787] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  113.938674][ T6787] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  113.980337][ T6787] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  114.835960][ T6827] sctp: failed to load transform for md5: -2
[  114.865212][ T6787] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  115.762487][ T5831] Bluetooth: hci1: command 0x0c1a tx timeout
[  115.768590][ T5835] Bluetooth: hci0: command 0x0c1a tx timeout
[  115.960437][   T56] Bluetooth: hci2: command 0x0c1a tx timeout
[  115.960469][ T5835] Bluetooth: hci3: command 0x0c1a tx timeout
[  115.982047][ T5835] Bluetooth: hci4: command 0x0c1a tx timeout
[  115.990730][   T30] kauditd_printk_skb: 18 callbacks suppressed
[  115.990738][   T30] audit: type=1400 audit(1745278894.280:519): avc:  denied  { read } for  pid=6776 comm="syz.2.184" path="socket:[11281]" dev="sockfs" ino=11281 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  116.159181][   T30] audit: type=1400 audit(1745278894.300:520): avc:  denied  { append } for  pid=6776 comm="syz.2.184" name="dlm-control" dev="devtmpfs" ino=94 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  116.408678][   T30] audit: type=1400 audit(1745278894.700:521): avc:  denied  { create } for  pid=6850 comm="syz.0.198" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  116.754700][   T30] audit: type=1400 audit(1745278894.750:522): avc:  denied  { map } for  pid=6850 comm="syz.0.198" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=10758 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  116.917486][   T30] audit: type=1400 audit(1745278894.750:523): avc:  denied  { read write } for  pid=6850 comm="syz.0.198" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=10758 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  116.943090][   T30] audit: type=1400 audit(1745278894.840:524): avc:  denied  { setopt } for  pid=6851 comm="syz.2.197" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  116.962777][   T30] audit: type=1400 audit(1745278894.980:525): avc:  denied  { ioctl } for  pid=6863 comm="syz.1.199" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  116.987176][   T30] audit: type=1400 audit(1745278895.250:526): avc:  denied  { ioctl } for  pid=6850 comm="syz.0.198" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=10757 ioctlcmd=0xae80 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  117.012787][   T30] audit: type=1400 audit(1745278895.250:527): avc:  denied  { read } for  pid=6850 comm="syz.0.198" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  117.037533][   T30] audit: type=1400 audit(1745278895.250:528): avc:  denied  { open } for  pid=6850 comm="syz.0.198" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  117.316889][ T6876] lo speed is unknown, defaulting to 1000
[  117.342753][ T5872] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  117.375985][ T6881] netlink: 552 bytes leftover after parsing attributes in process `syz.1.203'.
[  117.400948][ T6881] bridge1: the hash_elasticity option has been deprecated and is always 16
[  117.513734][ T6887] vlan2: entered promiscuous mode
[  117.518961][ T6887] vlan2: entered allmulticast mode
[  117.534433][ T5872] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  117.549025][ T6887] hsr_slave_1: entered allmulticast mode
[  117.561896][ T5872] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  117.584448][ T6887] netlink: 4 bytes leftover after parsing attributes in process `syz.2.202'.
[  117.603017][ T5872] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  117.621369][ T5872] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  117.641988][ T5872] usb 5-1: SerialNumber: syz
[  117.701990][ T5937] usb 2-1: new full-speed USB device number 13 using dummy_hcd
[  117.822102][ T5835] Bluetooth: hci0: command 0x0c1a tx timeout
[  117.822240][   T56] Bluetooth: hci1: command 0x0c1a tx timeout
[  117.872646][ T5937] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  117.878090][ T5872] usb 5-1: 0:2 : does not exist
[  117.896314][ T5937] usb 2-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  117.897494][ T5872] usb 5-1: unit 5: unexpected type 0x0b
[  117.949757][ T5937] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  117.988545][   T56] Bluetooth: hci3: command 0x0c1a tx timeout
[  117.994662][ T5835] Bluetooth: hci2: command 0x0c1a tx timeout
[  118.062756][   T56] Bluetooth: hci4: command 0x0c1a tx timeout
[  118.074424][ T5937] usb 2-1: config 0 descriptor??
[  118.093340][ T6888] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  118.209556][ T5872] usb 5-1: USB disconnect, device number 6
[  118.764331][ T6913] loop2: detected capacity change from 0 to 7
[  118.831553][ T6920] netlink: 12 bytes leftover after parsing attributes in process `syz.3.205'.
[  118.870031][ T6913]  loop2: [POWERTEC] p1
[  118.902265][ T6913] loop2: p1 start 1869770799 is beyond EOD, truncated
[  118.971110][ T5937] usbhid 2-1:0.0: can't add hid device: -71
[  119.048965][ T6008] udevd[6008]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  119.206670][ T5937] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  119.267424][ T5937] usb 2-1: USB disconnect, device number 13
[  119.358035][ T6928] dlm: no local IP address has been set
[  119.397845][ T6928] dlm: cannot start dlm midcomms -107
[  119.737782][ T6947] ptrace attach of "./syz-executor exec"[5818] was attempted by "./syz-executor exec"[6947]
[  119.902194][   T56] Bluetooth: hci0: command 0x0c1a tx timeout
[  119.912633][ T5835] Bluetooth: hci1: command 0x0c1a tx timeout
[  120.084212][ T5835] Bluetooth: hci2: command 0x0c1a tx timeout
[  120.090347][ T5835] Bluetooth: hci3: command 0x0c1a tx timeout
[  120.601982][   T56] Bluetooth: hci4: command 0x0c1a tx timeout
[  120.766875][ T6959] veth1_to_team: entered allmulticast mode
[  120.776288][ T6959] veth0_vlan: entered allmulticast mode
[  120.802539][ T6959] lo speed is unknown, defaulting to 1000
[  120.932156][ T5872] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  121.044128][ T5937] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  121.462773][ T5937] usb 5-1: Using ep0 maxpacket: 16
[  121.584404][ T5937] usb 5-1: config 1 interface 0 altsetting 8 bulk endpoint 0x82 has invalid maxpacket 1023
[  121.628953][ T5872] usb 4-1: New USB device found, idVendor=03da, idProduct=2820, bcdDevice=52.3c
[  121.642586][ T5872] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  121.663792][ T5937] usb 5-1: config 1 interface 0 altsetting 8 bulk endpoint 0x3 has invalid maxpacket 16
[  121.686758][ T5872] usb 4-1: config 0 descriptor??
[  121.693946][ T5872] rndis_host 4-1:0.0: skipping garbage
[  121.699577][ T5872] usb 4-1: bad CDC descriptors
[  121.718190][ T5937] usb 5-1: config 1 interface 0 has no altsetting 0
[  121.741831][ T5937] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  121.758637][ T5937] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  121.768715][ T5937] usb 5-1: Product: �
[  121.773026][ T6972] loop8: detected capacity change from 0 to 1
[  121.773369][ T5937] usb 5-1: Manufacturer: 슾㒒魯㷶殉螮�
[  121.814303][ T5937] usb 5-1: SerialNumber: 颭ꤤ訇猻ㇵﱇ㨧ᥘ裧⿙乑㠩
[  121.815248][ T6008] Dev loop8: unable to read RDB block 1
[  121.826210][ T6950] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  121.835022][ T6950] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  121.887182][   T30] kauditd_printk_skb: 8 callbacks suppressed
[  121.887196][   T30] audit: type=1400 audit(1745278900.180:537): avc:  denied  { create } for  pid=6973 comm="syz.1.219" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  121.896510][ T5872] usb 4-1: USB disconnect, device number 9
[  121.923379][ T6008]  loop8: unable to read partition table
[  121.962134][ T6008] loop8: partition table beyond EOD, truncated
[  121.988082][ T6974] sysfs: cannot create duplicate filename '/class/ieee80211/!寿$ûÌÌULÙvy¸ÚØ¢
…D£p(@Ož>ÆÀ–PÛç¡RaGùͽ�ÒÜÓ“p'
[  122.011559][ T6972] Dev loop8: unable to read RDB block 1
[  122.020904][ T6972]  loop8: unable to read partition table
[  122.034708][ T6974] CPU: 1 UID: 0 PID: 6974 Comm: syz.1.219 Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0 PREEMPT(full) 
[  122.034739][ T6974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  122.034750][ T6974] Call Trace:
[  122.034756][ T6974]  <TASK>
[  122.034763][ T6974]  dump_stack_lvl+0x16c/0x1f0
[  122.034793][ T6974]  sysfs_warn_dup+0x7f/0xa0
[  122.034811][ T6974]  sysfs_do_create_link_sd+0x124/0x140
[  122.034840][ T6974]  sysfs_create_link+0x61/0xc0
[  122.034858][ T6974]  device_add+0x62c/0x1a70
[  122.034880][ T6974]  ? __pfx_device_add+0x10/0x10
[  122.034895][ T6974]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  122.034915][ T6974]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  122.034945][ T6974]  wiphy_register+0x1c9c/0x2850
[  122.034962][ T6974]  ? netdev_run_todo+0x864/0x1320
[  122.034984][ T6974]  ? __dev_printk+0x270/0x270
[  122.035010][ T6974]  ? __pfx_wiphy_register+0x10/0x10
[  122.035040][ T6974]  ieee80211_register_hw+0x2432/0x4020
[  122.035077][ T6974]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  122.035108][ T6974]  ? find_held_lock+0x2b/0x80
[  122.035130][ T6974]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  122.035150][ T6974]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  122.035174][ T6974]  ? __hrtimer_setup+0x176/0x280
[  122.035196][ T6974]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  122.035229][ T6974]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  122.035251][ T6974]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  122.035273][ T6974]  ? __asan_memcpy+0x3c/0x60
[  122.035303][ T6974]  hwsim_new_radio_nl+0xb51/0x12c0
[  122.035325][ T6974]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  122.035353][ T6974]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  122.035381][ T6974]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  122.035414][ T6974]  genl_family_rcv_msg_doit+0x206/0x2f0
[  122.035443][ T6974]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  122.035480][ T6974]  ? bpf_lsm_capable+0x9/0x10
[  122.035496][ T6974]  ? security_capable+0x7e/0x260
[  122.035515][ T6974]  ? ns_capable+0xd7/0x110
[  122.035539][ T6974]  genl_rcv_msg+0x55c/0x800
[  122.035569][ T6974]  ? __pfx_genl_rcv_msg+0x10/0x10
[  122.035596][ T6974]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  122.035618][ T6974]  ? __lock_acquire+0xaa4/0x1ba0
[  122.035639][ T6974]  netlink_rcv_skb+0x16a/0x440
[  122.035663][ T6974]  ? __pfx_genl_rcv_msg+0x10/0x10
[  122.035707][ T6974]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  122.035746][ T6974]  ? __pfx_down_read+0x10/0x10
[  122.035775][ T6974]  ? netlink_deliver_tap+0x1ae/0xd30
[  122.035802][ T6974]  genl_rcv+0x28/0x40
[  122.035895][ T6974]  netlink_unicast+0x53a/0x7f0
[  122.035923][ T6974]  ? __pfx_netlink_unicast+0x10/0x10
[  122.035954][ T6974]  netlink_sendmsg+0x8d1/0xdd0
[  122.035979][ T6974]  ? __pfx_netlink_sendmsg+0x10/0x10
[  122.036011][ T6974]  ____sys_sendmsg+0xa95/0xc70
[  122.036037][ T6974]  ? copy_msghdr_from_user+0x10a/0x160
[  122.036058][ T6974]  ? __pfx_____sys_sendmsg+0x10/0x10
[  122.036092][ T6974]  ___sys_sendmsg+0x134/0x1d0
[  122.036114][ T6974]  ? __pfx____sys_sendmsg+0x10/0x10
[  122.036169][ T6974]  __sys_sendmsg+0x16d/0x220
[  122.036192][ T6974]  ? __pfx___sys_sendmsg+0x10/0x10
[  122.036212][ T6974]  ? __x64_sys_futex+0x1e0/0x4c0
[  122.036244][ T6974]  ? rcu_is_watching+0x12/0xc0
[  122.036271][ T6974]  do_syscall_64+0xcd/0x260
[  122.036296][ T6974]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.036313][ T6974] RIP: 0033:0x7f29f938e169
[  122.036327][ T6974] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  122.036342][ T6974] RSP: 002b:00007f29fa23d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  122.036360][ T6974] RAX: ffffffffffffffda RBX: 00007f29f95b5fa0 RCX: 00007f29f938e169
[  122.036371][ T6974] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 000000000000000f
[  122.036381][ T6974] RBP: 00007f29f9410a68 R08: 0000000000000000 R09: 0000000000000000
[  122.036389][ T6974] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  122.036398][ T6974] R13: 0000000000000000 R14: 00007f29f95b5fa0 R15: 00007ffd017ab038
[  122.036420][ T6974]  </TASK>
[  122.102225][ T6972] loop8: partition table beyond EOD, 
[  122.107594][    C1] vkms_vblank_simulate: vblank timer overrun
[  122.140178][ T6972] truncated
[  122.144407][    C1] vkms_vblank_simulate: vblank timer overrun
[  122.239615][   T30] audit: type=1400 audit(1745278900.480:538): avc:  denied  { read } for  pid=6980 comm="syz.2.220" name="uinput" dev="devtmpfs" ino=920 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  122.487706][    C1] vkms_vblank_simulate: vblank timer overrun
[  122.494209][ T6972] loop_reread_partitions: partition scan of loop8 (þ被xü^>à– �) failed (rc=-5)
[  122.622008][ T5835] Bluetooth: hci3: command 0x0c1a tx timeout
[  122.772187][   T24] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  122.790344][ T6995] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=49248 sclass=netlink_route_socket pid=6995 comm=syz.1.223
[  122.912218][ T6999] ptrace attach of "./syz-executor exec"[5819] was attempted by "./syz-executor exec"[6999]
[  122.982200][   T24] usb 3-1: Using ep0 maxpacket: 16
[  123.026428][   T24] usb 3-1: config 8 has an invalid interface number: 206 but max is 0
[  123.101385][   T24] usb 3-1: config 8 has no interface number 0
[  123.185091][   T24] usb 3-1: config 8 interface 206 altsetting 1 has an endpoint descriptor with address 0xF7, changing to 0x87
[  123.277792][   T24] usb 3-1: config 8 interface 206 altsetting 1 endpoint 0x87 has invalid maxpacket 33058, setting to 1024
[  123.309707][   T24] usb 3-1: config 8 interface 206 altsetting 1 has an invalid descriptor for endpoint zero, skipping
[  123.363802][   T24] usb 3-1: config 8 interface 206 altsetting 1 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  123.411165][   T24] usb 3-1: config 8 interface 206 has no altsetting 0
[  123.421268][   T24] usb 3-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=35.bb
[  123.432866][   T24] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  123.441283][   T24] usb 3-1: Product: syz
[  123.446540][   T24] usb 3-1: Manufacturer: syz
[  123.451371][   T24] usb 3-1: SerialNumber: syz
[  123.574158][ T5937] cdc_ether 5-1:1.0: probe with driver cdc_ether failed with error -71
[  123.645685][ T5937] usb 5-1: USB disconnect, device number 7
[  123.713136][   T24] garmin_gps 3-1:8.206: Garmin GPS usb/tty converter detected
[  123.726104][   T30] audit: type=1400 audit(1745278902.020:539): avc:  denied  { write } for  pid=7011 comm="syz.1.226" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  123.750578][   T24] usb 3-1: Garmin GPS usb/tty converter now attached to ttyUSB0
[  123.812460][   T24] usb 3-1: USB disconnect, device number 9
[  123.865501][   T24] garmin_gps ttyUSB0: Garmin GPS usb/tty converter now disconnected from ttyUSB0
[  123.926078][   T24] garmin_gps 3-1:8.206: device disconnected
[  123.955539][   T30] audit: type=1400 audit(1745278902.250:540): avc:  denied  { accept } for  pid=7018 comm="syz.1.228" lport=58678 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  124.275040][ T7037] netlink: 552 bytes leftover after parsing attributes in process `syz.0.231'.
[  124.284125][ T7037] netlink: 8 bytes leftover after parsing attributes in process `syz.0.231'.
[  124.335620][   T30] audit: type=1400 audit(1745278902.630:541): avc:  denied  { write } for  pid=7033 comm="syz.0.231" name="card1" dev="devtmpfs" ino=628 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  124.399114][ T7042] sysfs: cannot create duplicate filename '/class/ieee80211/!寿$ûÌÌULÙvy¸ÚØ¢
…D£p(@Ož>ÆÀ–PÛç¡RaGùͽ�ÒÜÓ“p'
[  124.473258][ T7042] CPU: 1 UID: 0 PID: 7042 Comm: syz.1.233 Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0 PREEMPT(full) 
[  124.473277][ T7042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  124.473284][ T7042] Call Trace:
[  124.473289][ T7042]  <TASK>
[  124.473293][ T7042]  dump_stack_lvl+0x16c/0x1f0
[  124.473313][ T7042]  sysfs_warn_dup+0x7f/0xa0
[  124.473325][ T7042]  sysfs_do_create_link_sd+0x124/0x140
[  124.473337][ T7042]  sysfs_create_link+0x61/0xc0
[  124.473348][ T7042]  device_add+0x62c/0x1a70
[  124.473362][ T7042]  ? __pfx_device_add+0x10/0x10
[  124.473371][ T7042]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  124.473385][ T7042]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  124.473404][ T7042]  wiphy_register+0x1c9c/0x2850
[  124.473415][ T7042]  ? netdev_run_todo+0x864/0x1320
[  124.473430][ T7042]  ? __dev_printk+0x270/0x270
[  124.473447][ T7042]  ? __pfx_wiphy_register+0x10/0x10
[  124.473464][ T7042]  ieee80211_register_hw+0x2432/0x4020
[  124.473487][ T7042]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  124.473506][ T7042]  ? find_held_lock+0x2b/0x80
[  124.473520][ T7042]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  124.473532][ T7042]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  124.473548][ T7042]  ? __hrtimer_setup+0x176/0x280
[  124.473560][ T7042]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  124.473579][ T7042]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  124.473592][ T7042]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  124.473606][ T7042]  ? __asan_memcpy+0x3c/0x60
[  124.473624][ T7042]  hwsim_new_radio_nl+0xb51/0x12c0
[  124.473639][ T7042]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  124.473658][ T7042]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  124.473675][ T7042]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  124.473695][ T7042]  genl_family_rcv_msg_doit+0x206/0x2f0
[  124.473715][ T7042]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  124.473736][ T7042]  ? bpf_lsm_capable+0x9/0x10
[  124.473746][ T7042]  ? security_capable+0x7e/0x260
[  124.473759][ T7042]  ? ns_capable+0xd7/0x110
[  124.473773][ T7042]  genl_rcv_msg+0x55c/0x800
[  124.473796][ T7042]  ? __pfx_genl_rcv_msg+0x10/0x10
[  124.473813][ T7042]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  124.473826][ T7042]  ? __lock_acquire+0xaa4/0x1ba0
[  124.473838][ T7042]  netlink_rcv_skb+0x16a/0x440
[  124.473853][ T7042]  ? __pfx_genl_rcv_msg+0x10/0x10
[  124.473870][ T7042]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  124.473891][ T7042]  ? __pfx_down_read+0x10/0x10
[  124.473907][ T7042]  ? netlink_deliver_tap+0x1ae/0xd30
[  124.473923][ T7042]  genl_rcv+0x28/0x40
[  124.473937][ T7042]  netlink_unicast+0x53a/0x7f0
[  124.473952][ T7042]  ? __pfx_netlink_unicast+0x10/0x10
[  124.473971][ T7042]  netlink_sendmsg+0x8d1/0xdd0
[  124.473987][ T7042]  ? __pfx_netlink_sendmsg+0x10/0x10
[  124.474007][ T7042]  ____sys_sendmsg+0xa95/0xc70
[  124.474024][ T7042]  ? copy_msghdr_from_user+0x10a/0x160
[  124.474044][ T7042]  ? __pfx_____sys_sendmsg+0x10/0x10
[  124.474064][ T7042]  ? try_to_wake_up+0xa2f/0x1680
[  124.474081][ T7042]  ___sys_sendmsg+0x134/0x1d0
[  124.474096][ T7042]  ? __pfx____sys_sendmsg+0x10/0x10
[  124.474127][ T7042]  __sys_sendmsg+0x16d/0x220
[  124.474142][ T7042]  ? __pfx___sys_sendmsg+0x10/0x10
[  124.474155][ T7042]  ? __x64_sys_futex+0x1e0/0x4c0
[  124.474176][ T7042]  ? rcu_is_watching+0x12/0xc0
[  124.474192][ T7042]  do_syscall_64+0xcd/0x260
[  124.474208][ T7042]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.474219][ T7042] RIP: 0033:0x7f29f938e169
[  124.474228][ T7042] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  124.474238][ T7042] RSP: 002b:00007f29fa23d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  124.474249][ T7042] RAX: ffffffffffffffda RBX: 00007f29f95b5fa0 RCX: 00007f29f938e169
[  124.474255][ T7042] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 000000000000000f
[  124.474261][ T7042] RBP: 00007f29f9410a68 R08: 0000000000000000 R09: 0000000000000000
[  124.474267][ T7042] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  124.474273][ T7042] R13: 0000000000000000 R14: 00007f29f95b5fa0 R15: 00007ffd017ab038
[  124.474287][ T7042]  </TASK>
[  125.017239][   T24] usb 1-1: new full-speed USB device number 5 using dummy_hcd
[  125.256291][   T30] audit: type=1400 audit(1745278902.660:542): avc:  denied  { ioctl } for  pid=7033 comm="syz.0.231" path="/dev/dri/card1" dev="devtmpfs" ino=628 ioctlcmd=0x6406 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  125.486008][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  125.529896][   T24] usb 1-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  125.565612][   T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  125.592476][   T24] usb 1-1: config 0 descriptor??
[  125.621056][ T7044] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  125.825040][ T7062] xt_CT: You must specify a L4 protocol and not use inversions on it
[  126.330468][   T24] usbhid 1-1:0.0: can't add hid device: -71
[  126.361782][   T24] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  126.581249][   T24] usb 1-1: USB disconnect, device number 5
[  126.960690][ T7079] workqueue: Failed to create a rescuer kthread for wq "ceph-watch-notify": -EINTR
[  127.383493][ T5872] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  127.392072][   T24] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  127.598877][   T24] usb 5-1: config 0 has an invalid interface number: 95 but max is 0
[  127.651125][   T24] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  127.702005][   T24] usb 5-1: config 0 has no interface number 0
[  127.710580][   T24] usb 5-1: config 0 interface 95 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 8
[  127.764818][   T24] usb 5-1: New USB device found, idVendor=7725, idProduct=b0a8, bcdDevice= 7.46
[  127.792047][ T5872] usb 4-1: Using ep0 maxpacket: 16
[  127.798744][ T5872] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  127.822536][   T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  127.830571][   T24] usb 5-1: Product: syz
[  127.831077][ T5872] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  127.845062][   T24] usb 5-1: Manufacturer: syz
[  127.859169][   T24] usb 5-1: SerialNumber: syz
[  127.882207][ T5872] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  127.890407][   T24] usb 5-1: config 0 descriptor??
[  127.898098][ T7094] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  127.911423][ T5872] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  127.912025][   T48] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  127.945999][ T5872] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  128.069342][ T5872] usb 4-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  128.085104][   T48] usb 3-1: unable to get BOS descriptor or descriptor too short
[  128.087981][ T5872] usb 4-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  128.104977][ T5872] usb 4-1: Manufacturer: syz
[  128.114715][ T5872] usb 4-1: config 0 descriptor??
[  128.118762][   T24] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  128.134963][   T48] usb 3-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  128.145198][   T24] usb 5-1: MIDIStreaming interface descriptor not found
[  128.171981][   T48] usb 3-1: config 1 has no interface number 1
[  128.194419][   T48] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  128.241856][   T24] usb 5-1: USB disconnect, device number 8
[  128.256746][   T48] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  128.293541][   T48] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  128.347693][   T48] usb 3-1: Product: syz
[  128.367506][   T48] usb 3-1: Manufacturer: syz
[  128.390841][   T48] usb 3-1: SerialNumber: syz
[  128.448807][ T7134] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=34 sclass=netlink_audit_socket pid=7134 comm=syz.1.247
[  128.461315][ T7134] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=18 sclass=netlink_audit_socket pid=7134 comm=syz.1.247
[  128.473839][ T7134] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=56 sclass=netlink_audit_socket pid=7134 comm=syz.1.247
[  128.515215][ T5832] udevd[5832]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.95/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  128.625937][   T30] audit: type=1400 audit(1745278906.920:543): avc:  denied  { read } for  pid=7111 comm="syz.2.245" path="socket:[11058]" dev="sockfs" ino=11058 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  128.648895][    C1] vkms_vblank_simulate: vblank timer overrun
[  128.693909][   T48] usb 3-1: 2:1: invalid format type 0x1002 is detected, processed as PCM
[  128.739183][   T48] usb 3-1: failed to enable PITCH for EP 0x82
[  128.796629][ T7140] loop2: detected capacity change from 0 to 7
[  128.837667][   T48] usb 3-1: USB disconnect, device number 10
[  128.843689][ T7140]  loop2: [POWERTEC] p1
[  128.855964][ T7140] loop2: p1 start 1869770799 is beyond EOD, truncated
[  129.103305][ T5832] udevd[5832]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  129.742012][   T24] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  129.881995][   T24] usb 3-1: device descriptor read/64, error -71
[  130.057985][   T30] audit: type=1400 audit(1745278908.350:544): avc:  denied  { write } for  pid=7171 comm="syz.4.253" name="tcp6" dev="proc" ino=4026533175 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  130.080416][    C1] vkms_vblank_simulate: vblank timer overrun
[  130.142163][   T24] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  130.232217][ T5872] rc_core: IR keymap rc-hauppauge not found
[  130.238150][ T5872] Registered IR keymap rc-empty
[  130.252943][ T5872] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  130.272781][   T24] usb 3-1: device descriptor read/64, error -71
[  130.284825][ T5872] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  130.324325][   T48] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  130.384006][   T24] usb usb3-port1: attempt power cycle
[  130.581192][   T48] usb 5-1: config 1 has an invalid descriptor of length 110, skipping remainder of the config
[  130.644789][   T48] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  130.748105][   T48] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  130.823210][   T48] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  130.832232][   T24] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  130.908887][   T24] usb 3-1: device descriptor read/8, error -71
[  130.931736][   T48] usb 5-1: SerialNumber: syz
[  131.135609][ T5872] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0
[  131.163487][ T5872] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input7
[  131.264814][ T5872] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  131.309232][   T30] audit: type=1400 audit(1745278909.550:545): avc:  denied  { read } for  pid=5181 comm="acpid" name="event4" dev="devtmpfs" ino=2830 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  131.331652][    C1] vkms_vblank_simulate: vblank timer overrun
[  131.340522][   T48] usb 5-1: 0:2 : does not exist
[  131.347068][   T30] audit: type=1400 audit(1745278909.550:546): avc:  denied  { open } for  pid=5181 comm="acpid" path="/dev/input/event4" dev="devtmpfs" ino=2830 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  131.527734][   T24] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  131.555275][   T48] usb 5-1: USB disconnect, device number 9
[  131.593614][   T30] audit: type=1400 audit(1745278909.550:547): avc:  denied  { ioctl } for  pid=5181 comm="acpid" path="/dev/input/event4" dev="devtmpfs" ino=2830 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  131.698276][   T24] usb 3-1: device descriptor read/8, error -71
[  131.832150][ T5872] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  131.862151][ T5872] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  131.882238][ T5872] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  131.892524][   T24] usb usb3-port1: unable to enumerate USB device
[  131.902094][ T5872] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  131.924755][ T5872] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  131.962045][ T5872] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  131.982181][ T5872] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  132.002078][ T5872] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  132.039589][ T6008] udevd[6008]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  132.068936][ T5872] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  132.132881][ T5872] mceusb 4-1:0.0: Registered  with mce emulator interface version 1
[  132.225493][ T5872] mceusb 4-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  132.287889][ T7199] loop2: detected capacity change from 0 to 7
[  132.387689][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  132.479719][ T7199]  loop2: [POWERTEC] p1
[  132.537680][ T7199] loop2: p1 start 1869770799 is beyond EOD, truncated
[  132.580667][ T5872] usb 4-1: USB disconnect, device number 10
[  133.077063][   T30] audit: type=1400 audit(1745278911.310:548): avc:  denied  { connect } for  pid=7201 comm="syz.2.260" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  133.189693][   T30] audit: type=1400 audit(1745278911.320:549): avc:  denied  { setopt } for  pid=7201 comm="syz.2.260" lport=20001 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  133.337820][   T30] audit: type=1400 audit(1745278911.470:550): avc:  denied  { ioctl } for  pid=7205 comm="syz.4.261" path="socket:[11200]" dev="sockfs" ino=11200 ioctlcmd=0x8941 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  133.459067][   T30] audit: type=1326 audit(1745278911.740:551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7210 comm="syz.1.263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29f938e169 code=0x7ffc0000
[  133.482369][    C1] vkms_vblank_simulate: vblank timer overrun
[  133.631834][   T30] audit: type=1326 audit(1745278911.780:552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7210 comm="syz.1.263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29f938e169 code=0x7ffc0000
[  134.609354][   T30] audit: type=1326 audit(1745278911.790:553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7210 comm="syz.1.263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f29f938e169 code=0x7ffc0000
[  134.632814][   T30] audit: type=1326 audit(1745278911.790:554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7210 comm="syz.1.263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29f938e169 code=0x7ffc0000
[  135.120758][   T30] audit: type=1326 audit(1745278911.790:555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7210 comm="syz.1.263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29f938e169 code=0x7ffc0000
[  135.345002][   T30] audit: type=1326 audit(1745278911.790:556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7210 comm="syz.1.263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f29f938e169 code=0x7ffc0000
[  135.368964][   T30] audit: type=1326 audit(1745278911.790:557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7210 comm="syz.1.263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29f938e169 code=0x7ffc0000
[  135.393054][   T30] audit: type=1326 audit(1745278911.800:558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7210 comm="syz.1.263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f29f938e169 code=0x7ffc0000
[  135.431993][   T30] audit: type=1326 audit(1745278911.800:559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7210 comm="syz.1.263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29f938e169 code=0x7ffc0000
[  135.891090][   T30] audit: type=1326 audit(1745278911.800:560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7210 comm="syz.1.263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f29f938e169 code=0x7ffc0000
[  135.914451][   T30] audit: type=1326 audit(1745278911.800:561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7210 comm="syz.1.263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29f938e169 code=0x7ffc0000
[  136.322077][   T30] audit: type=1400 audit(1745278914.580:562): avc:  denied  { ioctl } for  pid=7229 comm="syz.4.268" path="/dev/fb0" dev="devtmpfs" ino=629 ioctlcmd=0x4605 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  136.745502][ T7249] sysfs: cannot create duplicate filename '/class/ieee80211/!寿$ûÌÌULÙvy¸ÚØ¢
…D£p(@Ož>ÆÀ–PÛç¡RaGùͽ�ÒÜÓ“p'
[  136.764628][ T7249] CPU: 0 UID: 0 PID: 7249 Comm: syz.4.274 Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0 PREEMPT(full) 
[  136.764645][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  136.764652][ T7249] Call Trace:
[  136.764656][ T7249]  <TASK>
[  136.764661][ T7249]  dump_stack_lvl+0x16c/0x1f0
[  136.764685][ T7249]  sysfs_warn_dup+0x7f/0xa0
[  136.764696][ T7249]  sysfs_do_create_link_sd+0x124/0x140
[  136.764709][ T7249]  sysfs_create_link+0x61/0xc0
[  136.764721][ T7249]  device_add+0x62c/0x1a70
[  136.764735][ T7249]  ? __pfx_device_add+0x10/0x10
[  136.764744][ T7249]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  136.764759][ T7249]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  136.764779][ T7249]  wiphy_register+0x1c9c/0x2850
[  136.764789][ T7249]  ? netdev_run_todo+0x864/0x1320
[  136.764804][ T7249]  ? __dev_printk+0x270/0x270
[  136.764821][ T7249]  ? __pfx_wiphy_register+0x10/0x10
[  136.764839][ T7249]  ieee80211_register_hw+0x2432/0x4020
[  136.764862][ T7249]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  136.764880][ T7249]  ? find_held_lock+0x2b/0x80
[  136.764894][ T7249]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  136.764905][ T7249]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  136.764920][ T7249]  ? __hrtimer_setup+0x176/0x280
[  136.764935][ T7249]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  136.764954][ T7249]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  136.764966][ T7249]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  136.764979][ T7249]  ? __asan_memcpy+0x3c/0x60
[  136.764997][ T7249]  hwsim_new_radio_nl+0xb51/0x12c0
[  136.765010][ T7249]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  136.765026][ T7249]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  136.765044][ T7249]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  136.765064][ T7249]  genl_family_rcv_msg_doit+0x206/0x2f0
[  136.765081][ T7249]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  136.765102][ T7249]  ? bpf_lsm_capable+0x9/0x10
[  136.765111][ T7249]  ? security_capable+0x7e/0x260
[  136.765125][ T7249]  ? ns_capable+0xd7/0x110
[  136.765139][ T7249]  genl_rcv_msg+0x55c/0x800
[  136.765156][ T7249]  ? __pfx_genl_rcv_msg+0x10/0x10
[  136.765173][ T7249]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  136.765186][ T7249]  ? __lock_acquire+0xaa4/0x1ba0
[  136.765198][ T7249]  netlink_rcv_skb+0x16a/0x440
[  136.765213][ T7249]  ? __pfx_genl_rcv_msg+0x10/0x10
[  136.765230][ T7249]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  136.765251][ T7249]  ? __pfx_down_read+0x10/0x10
[  136.765268][ T7249]  ? netlink_deliver_tap+0x1ae/0xd30
[  136.765283][ T7249]  genl_rcv+0x28/0x40
[  136.765298][ T7249]  netlink_unicast+0x53a/0x7f0
[  136.765313][ T7249]  ? __pfx_netlink_unicast+0x10/0x10
[  136.765331][ T7249]  netlink_sendmsg+0x8d1/0xdd0
[  136.765348][ T7249]  ? __pfx_netlink_sendmsg+0x10/0x10
[  136.765368][ T7249]  ____sys_sendmsg+0xa95/0xc70
[  136.765384][ T7249]  ? copy_msghdr_from_user+0x10a/0x160
[  136.765397][ T7249]  ? __pfx_____sys_sendmsg+0x10/0x10
[  136.765420][ T7249]  ___sys_sendmsg+0x134/0x1d0
[  136.765433][ T7249]  ? __pfx____sys_sendmsg+0x10/0x10
[  136.765463][ T7249]  __sys_sendmsg+0x16d/0x220
[  136.765475][ T7249]  ? __pfx___sys_sendmsg+0x10/0x10
[  136.765487][ T7249]  ? __x64_sys_futex+0x1e0/0x4c0
[  136.765506][ T7249]  ? rcu_is_watching+0x12/0xc0
[  136.765523][ T7249]  do_syscall_64+0xcd/0x260
[  136.765539][ T7249]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.765551][ T7249] RIP: 0033:0x7f4e4138e169
[  136.765560][ T7249] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  136.765570][ T7249] RSP: 002b:00007f4e4224d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  136.765581][ T7249] RAX: ffffffffffffffda RBX: 00007f4e415b5fa0 RCX: 00007f4e4138e169
[  136.765587][ T7249] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 000000000000000f
[  136.765593][ T7249] RBP: 00007f4e41410a68 R08: 0000000000000000 R09: 0000000000000000
[  136.765599][ T7249] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  136.765605][ T7249] R13: 0000000000000000 R14: 00007f4e415b5fa0 R15: 00007fffc7113248
[  136.765619][ T7249]  </TASK>
[  136.852065][   T48] usb 4-1: new full-speed USB device number 11 using dummy_hcd
[  137.273047][ T7250] netlink: 4 bytes leftover after parsing attributes in process `syz.0.273'.
[  137.305349][ T5872] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  137.399282][   T48] usb 4-1: config 0 contains an unexpected descriptor of type 0x2, skipping
[  137.412310][   T48] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  137.441968][   T48] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  137.462927][   T48] usb 4-1: New USB device found, idVendor=06d0, idProduct=0622, bcdDevice=70.f8
[  137.480824][ T7246] netlink: 4 bytes leftover after parsing attributes in process `syz.0.273'.
[  137.498682][   T48] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  137.507598][   T48] usb 4-1: Product: syz
[  137.522890][   T48] usb 4-1: Manufacturer: syz
[  137.543101][ T7246] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  137.554281][   T48] usb 4-1: SerialNumber: syz
[  137.594552][   T48] usb 4-1: config 0 descriptor??
[  137.602057][ T5872] usb 3-1: Using ep0 maxpacket: 8
[  137.616053][ T5872] usb 3-1: config index 0 descriptor too short (expected 301, got 45)
[  137.676017][ T5872] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  138.124111][ T5872] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  138.134369][ T5872] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  138.162251][ T5872] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  138.188248][ T5872] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  138.217661][ T5872] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  138.507624][ T7268] syz.1.278: attempt to access beyond end of device
[  138.507624][ T7268] loop1: rw=0, sector=0, nr_sectors = 1 limit=0
[  138.606075][ T7268] (syz.1.278,7268,0):ocfs2_get_sector:1714 ERROR: status = -5
[  138.643291][ T7269] ntfs3(nullb0): Primary boot signature is not NTFS.
[  138.650337][ T7269] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  138.682684][ T5872] usb 3-1: usb_control_msg returned -32
[  138.688372][ T5872] usbtmc 3-1:16.0: can't read capabilities
[  138.702585][ T7268] (syz.1.278,7268,1):ocfs2_sb_probe:753 ERROR: status = -5
[  138.715011][ T7268] (syz.1.278,7268,1):ocfs2_fill_super:989 ERROR: superblock probe failed!
[  138.726333][ T7268] (syz.1.278,7268,0):ocfs2_fill_super:1177 ERROR: status = -5
[  139.886394][ T5870] usb 3-1: USB disconnect, device number 15
[  139.899322][ T5872] usb 4-1: USB disconnect, device number 11
[  140.823038][ T7292] netlink: 'syz.3.285': attribute type 10 has an invalid length.
[  140.830235][ T7292] batman_adv: batadv0: Adding interface: team0
[  140.830246][ T7292] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  140.830261][ T7292] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  140.860698][ T7292] netlink: 14 bytes leftover after parsing attributes in process `syz.3.285'.
[  140.897447][   T30] kauditd_printk_skb: 14 callbacks suppressed
[  140.897461][   T30] audit: type=1400 audit(1745278919.190:577): avc:  denied  { write } for  pid=7293 comm="syz.1.286" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  141.244923][   T30] audit: type=1400 audit(1745278919.540:578): avc:  denied  { kexec_image_load } for  pid=7293 comm="syz.1.286" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[  141.507822][ T7300] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1040 sclass=netlink_route_socket pid=7300 comm=syz.3.287
[  142.089486][   T30] audit: type=1400 audit(1745278920.380:579): avc:  denied  { read } for  pid=7301 comm="syz.2.288" name="vhost-net" dev="devtmpfs" ino=1274 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  142.090980][   T30] audit: type=1400 audit(1745278920.380:580): avc:  denied  { open } for  pid=7301 comm="syz.2.288" path="/dev/vhost-net" dev="devtmpfs" ino=1274 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  142.112542][   T30] audit: type=1400 audit(1745278920.400:581): avc:  denied  { ioctl } for  pid=7301 comm="syz.2.288" path="/dev/vhost-net" dev="devtmpfs" ino=1274 ioctlcmd=0xaf00 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  142.200008][   T30] audit: type=1400 audit(1745278920.490:582): avc:  denied  { create } for  pid=7301 comm="syz.2.288" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=appletalk_socket permissive=1
[  142.215822][   T30] audit: type=1400 audit(1745278920.510:583): avc:  denied  { create } for  pid=7301 comm="syz.2.288" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  142.216775][   T30] audit: type=1400 audit(1745278920.510:584): avc:  denied  { write } for  pid=7301 comm="syz.2.288" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  142.241731][    C1] vkms_vblank_simulate: vblank timer overrun
[  142.294184][    C1] vkms_vblank_simulate: vblank timer overrun
[  142.840208][    C1] vkms_vblank_simulate: vblank timer overrun
[  142.861095][ T7297] ttyS ttyS3: ldisc open failed (-12), clearing slot 3
[  142.869073][ T7298] ttyS ttyS3: ldisc open failed (-12), clearing slot 3
[  142.953714][ T7307] ttynull ttynull: ldisc open failed (-12), clearing slot 0
[  143.220792][ T7330] netlink: 4 bytes leftover after parsing attributes in process `syz.2.292'.
[  143.232900][ T7330] netlink: 24 bytes leftover after parsing attributes in process `syz.2.292'.
[  143.680296][   T30] audit: type=1400 audit(1745278921.970:585): avc:  denied  { remount } for  pid=7340 comm="syz.2.297" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  143.706108][ T7341] virtio-fs: tag </dev/md0> not found
[  143.819082][   T30] audit: type=1400 audit(1745278922.110:586): avc:  denied  { read } for  pid=7338 comm="syz.0.296" name="rtc0" dev="devtmpfs" ino=921 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  143.841845][    C1] vkms_vblank_simulate: vblank timer overrun
[  143.853196][ T7339] Bluetooth: MGMT ver 1.23
[  143.857750][ T7339] Bluetooth: hci0: unsupported parameter 2327
[  143.967105][ T7346] netlink: 28 bytes leftover after parsing attributes in process `syz.2.297'.
[  143.976133][ T7346] netlink: 28 bytes leftover after parsing attributes in process `syz.2.297'.
[  144.404319][ T7339] Bluetooth: hci0: invalid length 0, exp 2 for type 0
[  145.080488][ T7362] Cannot find add_set index 0 as target
[  145.265899][ T7365] veth0_vlan: left promiscuous mode
[  145.274817][ T7365] veth0_vlan: entered promiscuous mode
[  145.867689][ T7373] capability: warning: `syz.3.304' uses deprecated v2 capabilities in a way that may be insecure
[  146.944822][   T30] kauditd_printk_skb: 4 callbacks suppressed
[  146.944836][   T30] audit: type=1400 audit(1745278925.240:591): avc:  denied  { setopt } for  pid=7390 comm="syz.0.307" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  147.146444][   T30] audit: type=1400 audit(1745278925.350:592): avc:  denied  { create } for  pid=7396 comm="syz.0.311" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  147.238350][   T30] audit: type=1400 audit(1745278925.350:593): avc:  denied  { getopt } for  pid=7396 comm="syz.0.311" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  147.301849][   T30] audit: type=1400 audit(1745278925.580:594): avc:  denied  { setopt } for  pid=7406 comm="syz.3.312" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  147.351693][   T30] audit: type=1400 audit(1745278925.590:596): avc:  denied  { read } for  pid=7406 comm="syz.3.312" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  147.381287][   T30] audit: type=1400 audit(1745278925.580:595): avc:  denied  { write } for  pid=7406 comm="syz.3.312" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  147.401839][   T30] audit: type=1400 audit(1745278925.640:597): avc:  denied  { audit_write } for  pid=7406 comm="syz.3.312" capability=29  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  147.514794][   T24] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  147.553793][   T30] audit: type=1400 audit(1745278925.850:598): avc:  denied  { mounton } for  pid=7419 comm="syz.4.315" path="/proc/236/task" dev="proc" ino=12660 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  147.607928][   T30] audit: type=1400 audit(1745278925.870:599): avc:  denied  { map } for  pid=7419 comm="syz.4.315" path="/dev/dri/card0" dev="devtmpfs" ino=627 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  147.635689][   T30] audit: type=1400 audit(1745278925.870:600): avc:  denied  { execute } for  pid=7419 comm="syz.4.315" path="/dev/dri/card0" dev="devtmpfs" ino=627 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  147.683457][   T24] usb 2-1: config 220 has an invalid interface number: 76 but max is 2
[  147.692216][   T24] usb 2-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  147.701066][   T24] usb 2-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  147.717936][   T24] usb 2-1: config 220 has no interface number 2
[  147.729868][   T24] usb 2-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  147.745053][   T24] usb 2-1: config 220 interface 0 has no altsetting 0
[  147.755423][   T24] usb 2-1: config 220 interface 76 has no altsetting 0
[  147.763091][   T24] usb 2-1: config 220 interface 1 has no altsetting 0
[  147.776923][   T24] usb 2-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  147.786054][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  147.796375][   T24] usb 2-1: Product: syz
[  147.800770][   T24] usb 2-1: Manufacturer: syz
[  147.806069][   T24] usb 2-1: SerialNumber: syz
[  147.986384][ T7426] veth0_vlan: left promiscuous mode
[  147.997090][ T7426] veth0_vlan: entered promiscuous mode
[  148.528916][ T7430] Invalid ELF header magic: != ELF
[  149.512829][ T5872] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  149.523295][ T5872] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  150.020615][ T7445] netlink: 16 bytes leftover after parsing attributes in process `syz.0.320'.
[  150.355376][   T24] usb 2-1: selecting invalid altsetting 0
[  150.395916][   T24] usb 2-1: Found UVC 7.01 device syz (8086:0b07)
[  150.418662][   T24] usb 2-1: No valid video chain found.
[  150.439754][   T24] usb 2-1: selecting invalid altsetting 0
[  150.457219][   T24] usbtest 2-1:220.1: probe with driver usbtest failed with error -22
[  150.493121][   T24] usb 2-1: USB disconnect, device number 14
[  152.174677][ T5937] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  152.566979][   T30] kauditd_printk_skb: 9 callbacks suppressed
[  152.566995][   T30] audit: type=1400 audit(1745278930.860:610): avc:  denied  { write } for  pid=7487 comm="syz.2.334" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  152.613072][   T30] audit: type=1400 audit(1745278930.860:611): avc:  denied  { nlmsg_write } for  pid=7487 comm="syz.2.334" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  152.660833][ T5937] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[  152.686206][ T5937] usb 2-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  152.696259][ T5937] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  152.707005][ T5937] usb 2-1: Product: syz
[  152.711213][ T5937] usb 2-1: Manufacturer: syz
[  152.718594][ T5937] usb 2-1: SerialNumber: syz
[  152.726361][ T5937] usb 2-1: config 0 descriptor??
[  153.058843][ T7504] veth0_vlan: left promiscuous mode
[  153.070209][ T7504] veth0_vlan: entered promiscuous mode
[  153.314300][ T5870] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  153.453961][   T30] audit: type=1400 audit(1745278931.710:612): avc:  denied  { write } for  pid=7505 comm="syz.3.339" name="ppp" dev="devtmpfs" ino=709 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  153.484481][ T7508] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  153.493314][ T7508] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  153.504591][ T7508] netlink: 8 bytes leftover after parsing attributes in process `syz.1.332'.
[  153.513482][ T7508] netlink: 4 bytes leftover after parsing attributes in process `syz.1.332'.
[  153.522472][ T7508] netlink: 'syz.1.332': attribute type 14 has an invalid length.
[  153.912086][ T5870] usb 3-1: Using ep0 maxpacket: 32
[  153.926496][   T30] audit: type=1400 audit(1745278931.710:613): avc:  denied  { ioctl } for  pid=7505 comm="syz.3.339" path="/dev/ppp" dev="devtmpfs" ino=709 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  153.951206][    C0] vkms_vblank_simulate: vblank timer overrun
[  153.969092][ T5870] usb 3-1: config 0 has an invalid interface number: 219 but max is 0
[  153.979134][ T5870] usb 3-1: config 0 has no interface number 0
[  153.985820][ T5870] usb 3-1: config 0 interface 219 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  154.012813][ T5870] usb 3-1: New USB device found, idVendor=108c, idProduct=0169, bcdDevice=75.b9
[  154.021889][ T5870] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  154.030187][ T5870] usb 3-1: Product: syz
[  154.037801][ T5870] usb 3-1: Manufacturer: syz
[  154.043037][ T5870] usb 3-1: SerialNumber: syz
[  154.052686][ T5870] usb 3-1: config 0 descriptor??
[  154.202044][ T5827] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  154.265206][ T5870] etas_es58x 3-1:0.219: Starting syz syz (Serial Number syz)
[  154.312705][ T5835] Bluetooth: hci4: unexpected event for opcode 0x0c58
[  154.531251][ T5872] usb 3-1: USB disconnect, device number 16
[  154.537322][ T5870] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  154.562468][   T30] audit: type=1326 audit(1745278932.850:614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7514 comm="syz.3.342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcaeb98e169 code=0x7ffc0000
[  154.585668][    C0] vkms_vblank_simulate: vblank timer overrun
[  154.593418][   T30] audit: type=1326 audit(1745278932.850:615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7514 comm="syz.3.342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcaeb98e169 code=0x7ffc0000
[  154.616750][   T30] audit: type=1326 audit(1745278932.850:616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7514 comm="syz.3.342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fcaeb98e169 code=0x7ffc0000
[  154.616813][ T5827] usb 5-1: Using ep0 maxpacket: 8
[  154.643635][   T30] audit: type=1326 audit(1745278932.860:617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7514 comm="syz.3.342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcaeb98e169 code=0x7ffc0000
[  154.650295][ T5827] usb 5-1: New USB device found, idVendor=0c45, idProduct=614a, bcdDevice=c4.6d
[  154.668287][    C0] vkms_vblank_simulate: vblank timer overrun
[  154.668967][   T30] audit: type=1326 audit(1745278932.860:618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7514 comm="syz.3.342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcaeb98e169 code=0x7ffc0000
[  154.683677][ T5827] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  154.683699][ T5827] usb 5-1: Product: syz
[  154.683712][ T5827] usb 5-1: Manufacturer: syz
[  154.683743][ T5827] usb 5-1: SerialNumber: syz
[  154.723372][ T5827] usb 5-1: config 0 descriptor??
[  154.728697][ T7518] macvlan2: entered allmulticast mode
[  154.737397][   T30] audit: type=1326 audit(1745278932.860:619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7514 comm="syz.3.342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fcaeb98e169 code=0x7ffc0000
[  154.738851][ T7518] mac80211_hwsim hwsim3 wlan0: entered allmulticast mode
[  154.769680][ T7518] mac80211_hwsim hwsim3 wlan0: left allmulticast mode
[  154.771111][ T5827] gspca_main: sonixj-2.14.0 probing 0c45:614a
[  154.793629][ T5870] usb 1-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  154.802437][ T5870] usb 1-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  154.813317][ T5870] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 66
[  154.823823][ T5870] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  154.836722][ T5870] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  154.849091][ T5870] usb 1-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  154.858306][ T5870] usb 1-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  154.866450][ T5870] usb 1-1: Product: syz
[  154.871175][ T5870] usb 1-1: Manufacturer: syz
[  154.879677][ T5870] cdc_wdm 1-1:1.0: skipping garbage
[  154.885110][ T5870] cdc_wdm 1-1:1.0: skipping garbage
[  154.893144][ T5870] cdc_wdm 1-1:1.0: cdc-wdm0: USB WDM device
[  154.899784][ T5870] cdc_wdm 1-1:1.0: Unknown control protocol
[  154.969123][ T5937] usb 2-1: USB disconnect, device number 15
[  155.204570][ T7527] sysfs: cannot create duplicate filename '/class/ieee80211/!寿$ûÌÌULÙvy¸ÚØ¢
…D£p(@Ož>ÆÀ–PÛç¡RaGùͽ�ÒÜÓ“p'
[  155.217491][ T7527] CPU: 1 UID: 0 PID: 7527 Comm: syz.3.346 Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0 PREEMPT(full) 
[  155.217518][ T7527] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  155.217528][ T7527] Call Trace:
[  155.217535][ T7527]  <TASK>
[  155.217542][ T7527]  dump_stack_lvl+0x16c/0x1f0
[  155.217576][ T7527]  sysfs_warn_dup+0x7f/0xa0
[  155.217596][ T7527]  sysfs_do_create_link_sd+0x124/0x140
[  155.217617][ T7527]  sysfs_create_link+0x61/0xc0
[  155.217635][ T7527]  device_add+0x62c/0x1a70
[  155.217658][ T7527]  ? __pfx_device_add+0x10/0x10
[  155.217675][ T7527]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  155.217697][ T7527]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  155.217729][ T7527]  wiphy_register+0x1c9c/0x2850
[  155.217746][ T7527]  ? netdev_run_todo+0x864/0x1320
[  155.217776][ T7527]  ? __dev_printk+0x270/0x270
[  155.217804][ T7527]  ? __pfx_wiphy_register+0x10/0x10
[  155.217837][ T7527]  ieee80211_register_hw+0x2432/0x4020
[  155.217878][ T7527]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  155.217911][ T7527]  ? find_held_lock+0x2b/0x80
[  155.217936][ T7527]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  155.217956][ T7527]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  155.217981][ T7527]  ? __hrtimer_setup+0x176/0x280
[  155.218002][ T7527]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  155.218036][ T7527]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  155.218056][ T7527]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  155.218076][ T7527]  ? __asan_memcpy+0x3c/0x60
[  155.218105][ T7527]  hwsim_new_radio_nl+0xb51/0x12c0
[  155.218128][ T7527]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  155.218155][ T7527]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  155.218183][ T7527]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  155.218213][ T7527]  genl_family_rcv_msg_doit+0x206/0x2f0
[  155.218242][ T7527]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  155.218276][ T7527]  ? bpf_lsm_capable+0x9/0x10
[  155.218290][ T7527]  ? security_capable+0x7e/0x260
[  155.218312][ T7527]  ? ns_capable+0xd7/0x110
[  155.218336][ T7527]  genl_rcv_msg+0x55c/0x800
[  155.218367][ T7527]  ? __pfx_genl_rcv_msg+0x10/0x10
[  155.218394][ T7527]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  155.218415][ T7527]  ? __lock_acquire+0xaa4/0x1ba0
[  155.218437][ T7527]  netlink_rcv_skb+0x16a/0x440
[  155.218460][ T7527]  ? __pfx_genl_rcv_msg+0x10/0x10
[  155.218488][ T7527]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  155.218521][ T7527]  ? __pfx_down_read+0x10/0x10
[  155.218547][ T7527]  ? netlink_deliver_tap+0x1ae/0xd30
[  155.218570][ T7527]  genl_rcv+0x28/0x40
[  155.218593][ T7527]  netlink_unicast+0x53a/0x7f0
[  155.218619][ T7527]  ? __pfx_netlink_unicast+0x10/0x10
[  155.218649][ T7527]  netlink_sendmsg+0x8d1/0xdd0
[  155.218674][ T7527]  ? __pfx_netlink_sendmsg+0x10/0x10
[  155.218705][ T7527]  ____sys_sendmsg+0xa95/0xc70
[  155.218731][ T7527]  ? copy_msghdr_from_user+0x10a/0x160
[  155.218749][ T7527]  ? __pfx_____sys_sendmsg+0x10/0x10
[  155.218789][ T7527]  ? try_to_wake_up+0xa2f/0x1680
[  155.218817][ T7527]  ___sys_sendmsg+0x134/0x1d0
[  155.218840][ T7527]  ? __pfx____sys_sendmsg+0x10/0x10
[  155.218893][ T7527]  __sys_sendmsg+0x16d/0x220
[  155.218914][ T7527]  ? __pfx___sys_sendmsg+0x10/0x10
[  155.218933][ T7527]  ? __x64_sys_futex+0x1e0/0x4c0
[  155.218964][ T7527]  ? rcu_is_watching+0x12/0xc0
[  155.218992][ T7527]  do_syscall_64+0xcd/0x260
[  155.219018][ T7527]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.219034][ T7527] RIP: 0033:0x7fcaeb98e169
[  155.219050][ T7527] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.219067][ T7527] RSP: 002b:00007fcaec7b0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  155.219084][ T7527] RAX: ffffffffffffffda RBX: 00007fcaebbb5fa0 RCX: 00007fcaeb98e169
[  155.219095][ T7527] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 000000000000000f
[  155.219105][ T7527] RBP: 00007fcaeba10a68 R08: 0000000000000000 R09: 0000000000000000
[  155.219114][ T7527] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  155.219124][ T7527] R13: 0000000000000000 R14: 00007fcaebbb5fa0 R15: 00007ffebe7fee38
[  155.219147][ T7527]  </TASK>
[  155.637023][   T56] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  155.644342][   T56] Bluetooth: hci0: command 0x0c1a tx timeout
[  155.648079][    C0] cdc_wdm 1-1:1.0: nonzero urb status received: -EPIPE
[  155.824723][ T5937] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  155.846731][ T7517] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  155.855586][ T7517] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  155.877436][ T5870] usb 1-1: USB disconnect, device number 6
[  155.987796][ T5937] usb 2-1: config index 0 descriptor too short (expected 23569, got 27)
[  155.996477][ T5937] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  156.009474][ T5937] usb 2-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  156.018580][ T5937] usb 2-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  156.026605][ T5937] usb 2-1: Manufacturer: syz
[  156.034454][ T5937] usb 2-1: config 0 descriptor??
[  156.082127][ T5937] rc_core: IR keymap rc-hauppauge not found
[  156.088082][ T5937] Registered IR keymap rc-empty
[  156.094692][ T5937] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0
[  156.106002][ T5937] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0/input8
[  156.121532][ T5822] udevd[5822]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  156.132014][ T2147] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  156.252561][   T10] usb 2-1: USB disconnect, device number 16
[  156.353714][ T7543] veth0_vlan: entered allmulticast mode
[  156.392286][ T7543] veth0_vlan: left promiscuous mode
[  156.402611][ T7543] veth0_vlan: entered promiscuous mode
[  156.729594][ T5827] gspca_sonixj: reg_w1 err -110
[  156.741066][ T2147] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  156.751715][ T5827] sonixj 5-1:0.0: probe with driver sonixj failed with error -110
[  156.761832][ T2147] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  156.773955][ T5827] usb 5-1: USB disconnect, device number 10
[  156.779909][ T2147] usb 4-1: Product: syz
[  156.786845][ T2147] usb 4-1: Manufacturer: syz
[  156.791563][ T2147] usb 4-1: SerialNumber: syz
[  156.808944][ T2147] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  156.837152][   T24] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  157.249284][ T7554] sysfs: cannot create duplicate filename '/class/ieee80211/!寿$ûÌÌULÙvy¸ÚØ¢
…D£p(@Ož>ÆÀ'
[  157.277067][ T7554] CPU: 0 UID: 0 PID: 7554 Comm: syz.2.354 Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0 PREEMPT(full) 
[  157.277094][ T7554] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  157.277105][ T7554] Call Trace:
[  157.277111][ T7554]  <TASK>
[  157.277119][ T7554]  dump_stack_lvl+0x16c/0x1f0
[  157.277148][ T7554]  sysfs_warn_dup+0x7f/0xa0
[  157.277169][ T7554]  sysfs_do_create_link_sd+0x124/0x140
[  157.277191][ T7554]  sysfs_create_link+0x61/0xc0
[  157.277210][ T7554]  device_add+0x62c/0x1a70
[  157.277231][ T7554]  ? __pfx_device_add+0x10/0x10
[  157.277247][ T7554]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  157.277268][ T7554]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  157.277300][ T7554]  wiphy_register+0x1c9c/0x2850
[  157.277317][ T7554]  ? netdev_run_todo+0x864/0x1320
[  157.277341][ T7554]  ? __dev_printk+0x270/0x270
[  157.277369][ T7554]  ? __pfx_wiphy_register+0x10/0x10
[  157.277400][ T7554]  ieee80211_register_hw+0x2432/0x4020
[  157.277439][ T7554]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  157.277474][ T7554]  ? find_held_lock+0x2b/0x80
[  157.277505][ T7554]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  157.277525][ T7554]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  157.277550][ T7554]  ? __hrtimer_setup+0x176/0x280
[  157.277574][ T7554]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  157.277607][ T7554]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  157.277629][ T7554]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  157.277651][ T7554]  ? __asan_memcpy+0x3c/0x60
[  157.277681][ T7554]  hwsim_new_radio_nl+0xb51/0x12c0
[  157.277704][ T7554]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  157.277733][ T7554]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  157.277762][ T7554]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  157.277796][ T7554]  genl_family_rcv_msg_doit+0x206/0x2f0
[  157.277825][ T7554]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  157.277862][ T7554]  ? bpf_lsm_capable+0x9/0x10
[  157.277878][ T7554]  ? security_capable+0x7e/0x260
[  157.277900][ T7554]  ? ns_capable+0xd7/0x110
[  157.277925][ T7554]  genl_rcv_msg+0x55c/0x800
[  157.277955][ T7554]  ? __pfx_genl_rcv_msg+0x10/0x10
[  157.277983][ T7554]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  157.278005][ T7554]  ? __lock_acquire+0xaa4/0x1ba0
[  157.278027][ T7554]  netlink_rcv_skb+0x16a/0x440
[  157.278051][ T7554]  ? __pfx_genl_rcv_msg+0x10/0x10
[  157.278079][ T7554]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  157.278117][ T7554]  ? __pfx_down_read+0x10/0x10
[  157.278145][ T7554]  ? netlink_deliver_tap+0x1ae/0xd30
[  157.278172][ T7554]  genl_rcv+0x28/0x40
[  157.278196][ T7554]  netlink_unicast+0x53a/0x7f0
[  157.278224][ T7554]  ? __pfx_netlink_unicast+0x10/0x10
[  157.278257][ T7554]  netlink_sendmsg+0x8d1/0xdd0
[  157.278285][ T7554]  ? __pfx_netlink_sendmsg+0x10/0x10
[  157.278321][ T7554]  ____sys_sendmsg+0xa95/0xc70
[  157.278349][ T7554]  ? copy_msghdr_from_user+0x10a/0x160
[  157.278370][ T7554]  ? __pfx_____sys_sendmsg+0x10/0x10
[  157.278409][ T7554]  ___sys_sendmsg+0x134/0x1d0
[  157.278433][ T7554]  ? __pfx____sys_sendmsg+0x10/0x10
[  157.278488][ T7554]  __sys_sendmsg+0x16d/0x220
[  157.278517][ T7554]  ? __pfx___sys_sendmsg+0x10/0x10
[  157.278539][ T7554]  ? __x64_sys_futex+0x1e0/0x4c0
[  157.278573][ T7554]  ? rcu_is_watching+0x12/0xc0
[  157.278604][ T7554]  do_syscall_64+0xcd/0x260
[  157.278631][ T7554]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.278649][ T7554] RIP: 0033:0x7f65a738e169
[  157.278664][ T7554] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  157.278681][ T7554] RSP: 002b:00007f65a8147038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  157.278699][ T7554] RAX: ffffffffffffffda RBX: 00007f65a75b5fa0 RCX: 00007f65a738e169
[  157.278711][ T7554] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  157.278721][ T7554] RBP: 00007f65a7410a68 R08: 0000000000000000 R09: 0000000000000000
[  157.278731][ T7554] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  157.278741][ T7554] R13: 0000000000000000 R14: 00007f65a75b5fa0 R15: 00007ffd20a332f8
[  157.278766][ T7554]  </TASK>
[  157.449932][ T5827] usb 4-1: USB disconnect, device number 12
[  157.716679][   T30] kauditd_printk_skb: 25 callbacks suppressed
[  157.716695][   T30] audit: type=1400 audit(1745278935.850:645): avc:  denied  { mounton } for  pid=7551 comm="syz.0.353" path="/65/file0" dev="tmpfs" ino=356 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  157.748721][   T30] audit: type=1400 audit(1745278935.860:646): avc:  denied  { mount } for  pid=7551 comm="syz.0.353" name="/" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  157.771482][   T30] audit: type=1400 audit(1745278935.860:647): avc:  denied  { create } for  pid=7555 comm="syz.1.355" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  157.861119][ T7564] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  157.872499][ T7564] batadv_slave_1: entered promiscuous mode
[  157.882513][ T7564] netlink: 8 bytes leftover after parsing attributes in process `syz.4.357'.
[  157.902037][   T24] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive
[  157.917455][   T24] ath9k_htc: Failed to initialize the device
[  157.941525][ T5827] usb 4-1: ath9k_htc: USB layer deinitialized
[  158.063593][ T5872] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  158.252189][ T5872] usb 3-1: Using ep0 maxpacket: 32
[  158.267063][ T5872] usb 3-1: config 0 has an invalid interface number: 219 but max is 0
[  158.386605][ T5872] usb 3-1: config 0 has no interface number 0
[  158.394081][ T5835] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  158.402547][ T5835] Bluetooth: hci4: Injecting HCI hardware error event
[  158.410202][   T56] Bluetooth: hci4: hardware error 0x00
[  158.594853][ T5872] usb 3-1: config 0 interface 219 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  158.689268][ T5872] usb 3-1: New USB device found, idVendor=108c, idProduct=0169, bcdDevice=75.b9
[  158.707772][ T5872] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  158.724618][ T5872] usb 3-1: Product: syz
[  158.728946][ T5872] usb 3-1: Manufacturer: syz
[  158.734636][ T5872] usb 3-1: SerialNumber: syz
[  158.742968][ T5872] usb 3-1: config 0 descriptor??
[  158.961788][ T5872] etas_es58x 3-1:0.219: Starting syz syz (Serial Number syz)
[  159.055099][   T30] audit: type=1400 audit(1745278937.340:648): avc:  denied  { create } for  pid=7587 comm="syz.4.364" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  159.467183][ T5872] usb 3-1: USB disconnect, device number 17
[  159.541419][   T30] audit: type=1326 audit(1745278937.830:649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7600 comm="syz.1.367" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f29f938e169 code=0x0
[  159.628475][   T30] audit: type=1400 audit(1745278937.920:650): avc:  denied  { write } for  pid=7605 comm="syz.1.368" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  159.631244][ T7606] IPv4: Oversized IP packet from 172.20.20.24
[  159.655515][    C1] IPv4: Oversized IP packet from 172.20.20.24
[  159.662178][    C1] IPv4: Oversized IP packet from 172.20.20.24
[  160.866007][   T56] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  160.866123][   T30] audit: type=1400 audit(1745278938.850:651): avc:  denied  { write } for  pid=7620 comm="syz.4.374" name="fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  161.955136][ T7644] netlink: 'syz.1.375': attribute type 1 has an invalid length.
[  161.963074][ T7644] netlink: 'syz.1.375': attribute type 1 has an invalid length.
[  161.998324][ T7644] erofs (device nullb0): cannot find valid erofs superblock
[  162.308214][ T7656] netlink: 16 bytes leftover after parsing attributes in process `syz.3.379'.
[  162.319708][ T7654] netlink: 'syz.0.382': attribute type 1 has an invalid length.
[  162.335770][ T7659] block device autoloading is deprecated and will be removed.
[  162.354922][ T7658] netlink: 12 bytes leftover after parsing attributes in process `syz.1.381'.
[  162.457452][ T7664] netlink: 88 bytes leftover after parsing attributes in process `syz.0.384'.
[  162.492491][   T10] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  162.568905][ T7666] netlink: 552 bytes leftover after parsing attributes in process `syz.0.385'.
[  162.583312][ T7666] bridge1: the hash_elasticity option has been deprecated and is always 16
[  162.662046][ T5870] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  162.682095][   T10] usb 3-1: Using ep0 maxpacket: 8
[  162.694703][   T10] usb 3-1: config 168 descriptor has 1 excess byte, ignoring
[  162.704839][   T10] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  162.719059][   T10] usb 3-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  162.732001][   T10] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  162.743947][   T10] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  162.758833][   T10] usb 3-1: config 168 descriptor has 1 excess byte, ignoring
[  162.773658][   T10] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  162.787105][   T10] usb 3-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  162.802303][   T10] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  162.813690][   T10] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  162.825107][ T5870] usb 5-1: Using ep0 maxpacket: 32
[  162.834845][ T5870] usb 5-1: config index 0 descriptor too short (expected 35577, got 27)
[  162.862084][ T5870] usb 5-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  162.870954][ T5870] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  162.881372][   T10] usb 3-1: config 168 descriptor has 1 excess byte, ignoring
[  162.888893][   T10] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  162.901482][ T5870] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 92
[  162.904004][   T24] usb 1-1: new full-speed USB device number 7 using dummy_hcd
[  162.918484][   T10] usb 3-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  162.931065][ T5870] usb 5-1: config 1 has no interface number 0
[  162.940148][ T5870] usb 5-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  162.953462][   T10] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  162.965112][ T5870] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  162.973934][   T10] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  163.023150][ T5870] snd_usb_pod 5-1:1.1: Line 6 Pocket POD found
[  163.033872][   T10] usb 3-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  163.046851][   T10] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  163.055630][   T10] usb 3-1: Product: syz
[  163.060630][   T10] usb 3-1: Manufacturer: syz
[  163.065713][   T10] usb 3-1: SerialNumber: syz
[  163.076126][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  163.088165][   T24] usb 1-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  163.099951][   T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  163.121505][   T24] usb 1-1: config 0 descriptor??
[  163.128215][ T7667] raw-gadget.2 gadget.0: fail, usb_ep_enable returned -22
[  163.172108][ T5827] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  163.336363][   T10] adutux 3-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  163.351231][ T5870] snd_usb_pod 5-1:1.1: set_interface failed
[  163.359099][ T5827] usb 2-1: Using ep0 maxpacket: 16
[  163.365071][ T5870] snd_usb_pod 5-1:1.1: Line 6 Pocket POD now disconnected
[  163.383194][ T5827] usb 2-1: device descriptor read/all, error -61
[  163.386643][   T10] usb 3-1: USB disconnect, device number 18
[  163.399937][ T5870] snd_usb_pod 5-1:1.1: probe with driver snd_usb_pod failed with error -71
[  163.447391][ T5870] usb 5-1: USB disconnect, device number 11
[  163.524357][ T5827] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  163.543439][   T24] usbhid 1-1:0.0: can't add hid device: -71
[  163.555016][   T24] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  163.571904][   T24] usb 1-1: USB disconnect, device number 7
[  163.664224][ T5827] usb 2-1: device descriptor read/64, error -71
[  163.772491][ T5827] usb usb2-port1: attempt power cycle
[  163.936379][ T7679] lo speed is unknown, defaulting to 1000
[  163.947700][ T7681] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  163.964043][   T30] audit: type=1400 audit(1745278942.260:652): avc:  denied  { map } for  pid=7680 comm="syz.4.389" path="socket:[14283]" dev="sockfs" ino=14283 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  164.112120][ T5827] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  164.429883][ T5827] usb 2-1: device descriptor read/8, error -71
[  164.557411][   T30] audit: type=1400 audit(1745278942.850:653): avc:  denied  { setopt } for  pid=7697 comm="syz.3.392" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  164.577864][ T7681] lo speed is unknown, defaulting to 1000
[  164.681979][ T5827] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[  164.721993][ T5827] usb 2-1: device descriptor read/8, error -71
[  164.832672][ T5827] usb usb2-port1: unable to enumerate USB device
[  165.068433][ T7712] netlink: 63503 bytes leftover after parsing attributes in process `syz.0.396'.
[  165.115016][ T7712] netlink: 63503 bytes leftover after parsing attributes in process `syz.0.396'.
[  165.152157][ T7712] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=180 sclass=netlink_route_socket pid=7712 comm=syz.0.396
[  165.185360][ T7712] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=180 sclass=netlink_route_socket pid=7712 comm=syz.0.396
[  165.209883][ T7712] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=180 sclass=netlink_route_socket pid=7712 comm=syz.0.396
[  165.232696][ T7712] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=180 sclass=netlink_route_socket pid=7712 comm=syz.0.396
[  165.262297][ T7712] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=180 sclass=netlink_route_socket pid=7712 comm=syz.0.396
[  165.262410][ T5827] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[  165.282116][ T7712] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=180 sclass=netlink_route_socket pid=7712 comm=syz.0.396
[  165.312951][ T7712] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=180 sclass=netlink_route_socket pid=7712 comm=syz.0.396
[  165.341709][ T7712] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=180 sclass=netlink_route_socket pid=7712 comm=syz.0.396
[  165.382122][ T7712] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=180 sclass=netlink_route_socket pid=7712 comm=syz.0.396
[  165.422215][ T7712] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=180 sclass=netlink_route_socket pid=7712 comm=syz.0.396
[  165.470705][ T7715] netlink: 88 bytes leftover after parsing attributes in process `syz.3.397'.
[  165.575511][ T5827] usb 3-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  165.603116][ T5827] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  165.646767][ T5827] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 66
[  165.657284][ T5827] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  165.764003][ T5827] usb 3-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  165.776419][ T5827] usb 3-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  165.827015][ T7728] misc userio: Invalid payload size
[  165.836497][ T5827] usb 3-1: Product: syz
[  165.841290][ T5827] usb 3-1: Manufacturer: syz
[  165.892035][   T10] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  166.056490][   T30] audit: type=1400 audit(1745278944.350:654): avc:  denied  { unmount } for  pid=5819 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  166.056847][ T5827] cdc_wdm 3-1:1.0: skipping garbage
[  166.076386][    C0] vkms_vblank_simulate: vblank timer overrun
[  166.098884][ T5827] cdc_wdm 3-1:1.0: skipping garbage
[  166.127443][ T5827] cdc_wdm 3-1:1.0: probe with driver cdc_wdm failed with error -22
[  166.166153][ T5872] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  166.202002][   T10] usb 5-1: Using ep0 maxpacket: 8
[  166.208804][   T10] usb 5-1: config index 0 descriptor too short (expected 57362, got 18)
[  166.217437][   T10] usb 5-1: config 0 has an invalid interface number: 249 but max is 0
[  166.234073][   T10] usb 5-1: config 0 has no interface number 0
[  166.270737][   T10] usb 5-1: New USB device found, idVendor=1660, idProduct=ab32, bcdDevice=ff.1c
[  166.318118][   T10] usb 5-1: New USB device strings: Mfr=255, Product=9, SerialNumber=3
[  166.329144][   T10] usb 5-1: Product: syz
[  166.337226][ T7707] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  166.345660][ T5872] usb 1-1: Using ep0 maxpacket: 8
[  166.352597][   T10] usb 5-1: Manufacturer: syz
[  166.357755][   T10] usb 5-1: SerialNumber: syz
[  166.363212][ T7707] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  166.372171][ T5872] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  166.403911][   T10] usb 5-1: config 0 descriptor??
[  166.481520][ T5872] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  166.545814][ T5872] usb 1-1: config 0 interface 0 has no altsetting 0
[  166.585864][   T10] usb 3-1: USB disconnect, device number 19
[  166.689049][ T5872] usb 1-1: New USB device found, idVendor=09da, idProduct=000a, bcdDevice= 0.00
[  166.782985][ T5869] usb 5-1: USB disconnect, device number 12
[  166.799343][ T5872] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  166.819832][ T5872] usb 1-1: config 0 descriptor??
[  167.264351][ T5872] a4tech 0003:09DA:000A.0003: unbalanced collection at end of report description
[  167.686662][ T5872] a4tech 0003:09DA:000A.0003: parse failed
[  167.692655][ T5872] a4tech 0003:09DA:000A.0003: probe with driver a4tech failed with error -22
[  167.707411][ T7746] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  167.721193][ T7746] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  167.732903][ T7747] loop8: detected capacity change from 0 to 1
[  167.749524][ T5937] usb 1-1: USB disconnect, device number 8
[  167.758749][ T7747] Dev loop8: unable to read RDB block 1
[  167.768566][ T7747]  loop8: unable to read partition table
[  167.801607][ T7747] loop8: partition table beyond EOD, truncated
[  167.815357][ T7747] loop_reread_partitions: partition scan of loop8 (þ被xü^>à– �) failed (rc=-5)
[  167.987211][ T7754] loop2: detected capacity change from 0 to 7
[  168.018415][ T5823]  loop2: [POWERTEC] p1
[  168.023221][ T5823] loop2: p1 start 1869770799 is beyond EOD, truncated
[  168.046578][ T7754]  loop2: [POWERTEC] p1
[  168.068363][ T7754] loop2: p1 start 1869770799 is beyond EOD, truncated
[  168.091143][ T5196]  loop2: [POWERTEC] p1
[  168.096257][   T30] audit: type=1400 audit(1745278946.390:655): avc:  denied  { nlmsg_read } for  pid=7761 comm="syz.2.411" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  168.098884][ T5196] loop2: p1 start 1869770799 is beyond EOD, 
[  168.257411][ T7765] veth0_vlan: left promiscuous mode
[  168.272977][ T7765] veth0_vlan: entered promiscuous mode
[  168.301875][ T5196] truncated
[  168.904777][ T7769] misc userio: Invalid payload size
[  170.339066][ T5870] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  170.345563][   T30] audit: type=1400 audit(1745278948.620:656): avc:  denied  { read } for  pid=7786 comm="syz.4.418" name="mice" dev="devtmpfs" ino=916 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  170.781675][   T30] audit: type=1400 audit(1745278948.620:657): avc:  denied  { open } for  pid=7786 comm="syz.4.418" path="/dev/input/mice" dev="devtmpfs" ino=916 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  171.148377][ T5870] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  171.159271][    T9] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  171.169262][ T5870] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  171.177833][ T5870] usb 1-1: Product: syz
[  171.191139][ T5870] usb 1-1: Manufacturer: syz
[  171.196017][ T5870] usb 1-1: SerialNumber: syz
[  171.222857][ T5870] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  171.241162][ T5872] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  171.332044][    T9] usb 5-1: Using ep0 maxpacket: 16
[  171.619851][    T9] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  171.638244][    T9] usb 5-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  171.648652][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  171.660151][    T9] usb 5-1: config 0 descriptor??
[  171.674368][    T9] input: bcm5974 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input9
[  171.868060][ T7806] fuse: Bad value for 'user_id'
[  171.873660][   T30] audit: type=1400 audit(1745278950.160:658): avc:  denied  { write } for  pid=7786 comm="syz.4.418" name="mice" dev="devtmpfs" ino=916 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  172.081003][ T7806] fuse: Bad value for 'user_id'
[  172.090413][ T5181] bcm5974 5-1:0.0: could not read from device
[  172.104917][   T30] audit: type=1400 audit(1745278950.240:659): avc:  denied  { read } for  pid=7802 comm="syz.1.421" name="cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[  172.128562][   T30] audit: type=1400 audit(1745278950.240:660): avc:  denied  { open } for  pid=7802 comm="syz.1.421" path="/dev/cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[  172.160177][ T5181] bcm5974 5-1:0.0: could not read from device
[  172.167863][    T9] bcm5974 5-1:0.0: could not read from device
[  172.177389][ T7810] netlink: 552 bytes leftover after parsing attributes in process `syz.3.423'.
[  172.190483][ T7810] bridge2: the hash_elasticity option has been deprecated and is always 16
[  172.225975][    T9] input: failed to attach handler mousedev to device input9, error: -5
[  172.243377][ T7808] netlink: 8 bytes leftover after parsing attributes in process `syz.2.422'.
[  172.252679][ T7808] netlink: 8 bytes leftover after parsing attributes in process `syz.2.422'.
[  172.269903][    T9] usb 5-1: USB disconnect, device number 13
[  172.276966][ T5181] bcm5974 5-1:0.0: could not read from device
[  172.300831][   T30] audit: type=1400 audit(1745278950.590:661): avc:  denied  { ioctl } for  pid=7770 comm="syz.0.413" path="socket:[15530]" dev="sockfs" ino=15530 ioctlcmd=0x9434 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  172.303326][ T5872] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive
[  172.341276][ T5872] ath9k_htc: Failed to initialize the device
[  172.370491][ T5872] usb 1-1: ath9k_htc: USB layer deinitialized
[  172.389087][ T5870] usb 1-1: USB disconnect, device number 9
[  172.653830][ T5872] usb 4-1: new full-speed USB device number 13 using dummy_hcd
[  172.658923][ T7814] netlink: 8 bytes leftover after parsing attributes in process `syz.1.424'.
[  172.863588][ T5872] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  172.891992][ T5872] usb 4-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  172.901126][ T5872] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  172.927924][ T5872] usb 4-1: config 0 descriptor??
[  172.948377][ T7810] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  173.910307][ T5872] usbhid 4-1:0.0: can't add hid device: -71
[  174.353817][ T5872] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  174.366898][ T5872] usb 4-1: USB disconnect, device number 13
[  174.392526][ T7835] lo speed is unknown, defaulting to 1000
[  174.411990][    T9] usb 3-1: new full-speed USB device number 20 using dummy_hcd
[  174.419660][ T5870] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[  174.562048][    T9] usb 3-1: device descriptor read/64, error -71
[  174.584706][ T5870] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  174.642851][ T5870] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  174.659952][ T5870] usb 2-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00
[  174.683235][   T48] usb 1-1: new full-speed USB device number 10 using dummy_hcd
[  174.685870][ T5870] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  174.797562][ T5870] usb 2-1: config 0 descriptor??
[  174.824558][    T9] usb 3-1: new full-speed USB device number 21 using dummy_hcd
[  174.855271][   T48] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  174.855833][ T7842] misc userio: Invalid payload size
[  174.866489][   T48] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  174.964197][   T48] usb 1-1: New USB device found, idVendor=0404, idProduct=0755, bcdDevice= 0.00
[  175.022003][    T9] usb 3-1: device descriptor read/64, error -71
[  175.030016][   T48] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  175.058722][   T48] usb 1-1: config 0 descriptor??
[  175.189387][    T9] usb usb3-port1: attempt power cycle
[  175.365308][   T48] usbhid 1-1:0.0: can't add hid device: -71
[  175.376976][   T30] audit: type=1400 audit(1745278953.640:662): avc:  denied  { shutdown } for  pid=7834 comm="syz.0.431" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  175.471855][   T48] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  175.548660][   T48] usb 1-1: USB disconnect, device number 10
[  175.651137][ T5870] hid-steam 0003:28DE:1142.0004: item fetching failed at offset 3/5
[  175.661588][ T5870] hid-steam 0003:28DE:1142.0004: steam_probe:parse of hid interface failed
[  175.670427][ T5870] hid-steam 0003:28DE:1142.0004: probe with driver hid-steam failed with error -22
[  175.688680][ T5870] usb 2-1: USB disconnect, device number 21
[  175.940465][    T9] usb 3-1: new full-speed USB device number 22 using dummy_hcd
[  175.962486][    T9] usb 3-1: device descriptor read/8, error -71
[  176.242429][    T9] usb 3-1: new full-speed USB device number 23 using dummy_hcd
[  176.451468][    T9] usb 3-1: device descriptor read/8, error -71
[  176.582367][    T9] usb usb3-port1: unable to enumerate USB device
[  176.772137][ T5870] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[  176.774641][   T30] audit: type=1400 audit(1745278955.070:663): avc:  denied  { bind } for  pid=7865 comm="syz.3.439" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  176.815787][   T30] audit: type=1400 audit(1745278955.090:664): avc:  denied  { write } for  pid=7865 comm="syz.3.439" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  176.836583][   T30] audit: type=1400 audit(1745278955.090:665): avc:  denied  { read } for  pid=7865 comm="syz.3.439" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  176.862991][   T30] audit: type=1400 audit(1745278955.140:666): avc:  denied  { bind } for  pid=7868 comm="syz.2.440" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  176.891204][   T30] audit: type=1400 audit(1745278955.140:667): avc:  denied  { write } for  pid=7868 comm="syz.2.440" name="snapshot" dev="devtmpfs" ino=92 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  177.016220][ T5870] usb 2-1: Using ep0 maxpacket: 32
[  177.028211][ T5870] usb 2-1: config 0 has no interfaces?
[  177.040261][ T5870] usb 2-1: New USB device found, idVendor=1199, idProduct=6851, bcdDevice=e8.51
[  177.052246][ T5870] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  177.064074][ T5870] usb 2-1: Product: syz
[  177.068251][ T5870] usb 2-1: Manufacturer: syz
[  177.492564][   T48] usb 3-1: new high-speed USB device number 24 using dummy_hcd
[  177.515461][ T5870] usb 2-1: SerialNumber: syz
[  177.532222][ T5870] usb 2-1: config 0 descriptor??
[  177.633918][ T7879] netlink: 12 bytes leftover after parsing attributes in process `syz.3.443'.
[  177.644641][   T30] audit: type=1400 audit(1745278955.940:668): avc:  denied  { accept } for  pid=7878 comm="syz.3.443" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[  177.668852][   T48] usb 3-1: device descriptor read/64, error -71
[  177.853979][   T30] audit: type=1400 audit(1745278956.150:669): avc:  denied  { accept } for  pid=7882 comm="syz.0.444" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  177.912228][ T7883] netlink: 8 bytes leftover after parsing attributes in process `syz.0.444'.
[  177.928966][ T7883] bridge0: port 2(bridge_slave_1) entered disabled state
[  177.965949][ T7883] overlayfs: invalid origin (00000079000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000)
[  178.021808][   T48] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[  178.071084][ T7891] netlink: 12 bytes leftover after parsing attributes in process `syz.0.447'.
[  178.476362][   T48] usb 3-1: device descriptor read/64, error -71
[  178.482945][   T30] audit: type=1400 audit(1745278956.780:670): avc:  denied  { setopt } for  pid=7856 comm="syz.1.437" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  178.550920][ T7898] loop2: detected capacity change from 0 to 7
[  178.559972][ T7898]  loop2: [POWERTEC] p1
[  178.564733][ T7898] loop2: p1 start 1869770799 is beyond EOD, truncated
[  178.592288][   T48] usb usb3-port1: attempt power cycle
[  178.620985][   T30] audit: type=1400 audit(1745278956.910:671): avc:  denied  { bind } for  pid=7899 comm="syz.3.450" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  178.712088][ T5827] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  178.727478][ T7906] netlink: 12 bytes leftover after parsing attributes in process `syz.3.451'.
[  178.760280][ T7906] veth1_macvtap: left promiscuous mode
[  178.786513][ T7906] veth0_vlan: left promiscuous mode
[  178.793113][ T7906] veth0_vlan: entered promiscuous mode
[  178.820814][ T7906] lo speed is unknown, defaulting to 1000
[  178.931972][   T48] usb 3-1: new high-speed USB device number 26 using dummy_hcd
[  178.951464][ T5827] usb 1-1: Using ep0 maxpacket: 32
[  179.072505][   T48] usb 3-1: device descriptor read/8, error -71
[  179.098256][ T5827] usb 1-1: config 0 has an invalid interface number: 219 but max is 0
[  179.130260][ T5827] usb 1-1: config 0 has no interface number 0
[  179.154810][ T5827] usb 1-1: config 0 interface 219 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  179.180027][ T5827] usb 1-1: New USB device found, idVendor=108c, idProduct=0169, bcdDevice=75.b9
[  179.190669][ T5827] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  179.199264][ T5827] usb 1-1: Product: syz
[  179.203686][ T5827] usb 1-1: Manufacturer: syz
[  179.208327][ T5827] usb 1-1: SerialNumber: syz
[  179.215599][ T5827] usb 1-1: config 0 descriptor??
[  179.332112][   T48] usb 3-1: new high-speed USB device number 27 using dummy_hcd
[  179.364254][   T48] usb 3-1: device descriptor read/8, error -71
[  179.495384][   T48] usb usb3-port1: unable to enumerate USB device
[  179.799376][ T5827] etas_es58x 1-1:0.219: Starting syz syz (Serial Number syz)
[  179.849399][ T5827] usb 2-1: USB disconnect, device number 22
[  180.182493][ T5870] usb 1-1: USB disconnect, device number 11
[  180.550438][ T7931] netlink: 12 bytes leftover after parsing attributes in process `syz.4.458'.
[  180.561706][ T7925] misc userio: Invalid payload size
[  180.852011][ T5869] usb 3-1: new high-speed USB device number 28 using dummy_hcd
[  180.866668][   T30] kauditd_printk_skb: 1 callbacks suppressed
[  180.866684][   T30] audit: type=1400 audit(1745278959.160:673): avc:  denied  { ioctl } for  pid=7934 comm="syz.4.460" path="socket:[14809]" dev="sockfs" ino=14809 ioctlcmd=0x89e8 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  180.897627][    C0] vkms_vblank_simulate: vblank timer overrun
[  181.071993][ T5869] usb 3-1: Using ep0 maxpacket: 32
[  181.090382][ T5869] usb 3-1: config 0 has an invalid interface number: 151 but max is 0
[  181.098962][ T5869] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  181.121760][ T5869] usb 3-1: config 0 has no interface number 0
[  181.140523][ T5869] usb 3-1: config 0 interface 151 altsetting 0 bulk endpoint 0x8D has invalid maxpacket 528
[  181.171963][ T5869] usb 3-1: config 0 interface 151 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  181.207116][ T5869] usb 3-1: New USB device found, idVendor=0403, idProduct=e548, bcdDevice=ad.d6
[  181.233882][ T5869] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  181.255131][ T5869] usb 3-1: Product: syz
[  181.259396][ T5869] usb 3-1: Manufacturer: syz
[  181.292485][ T5869] usb 3-1: SerialNumber: syz
[  181.317636][ T5869] usb 3-1: config 0 descriptor??
[  181.335679][ T7933] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  181.369970][ T5869] ftdi_sio 3-1:0.151: FTDI USB Serial Device converter detected
[  181.394243][ T5869] ftdi_sio ttyUSB0: unknown device type: 0xadd6
[  181.452725][ T2986] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  181.701730][ T2986] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  181.842310][ T7933] lo: entered allmulticast mode
[  181.849873][ T7933] tunl0: entered allmulticast mode
[  181.863043][ T7933] gre0: entered allmulticast mode
[  181.881129][ T7933] gretap0: entered allmulticast mode
[  181.903037][   T30] audit: type=1400 audit(1745278960.190:674): avc:  denied  { execute } for  pid=7932 comm="syz.2.459" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=15917 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  181.929015][    C0] vkms_vblank_simulate: vblank timer overrun
[  181.946359][ T7933] erspan0: entered allmulticast mode
[  181.970007][ T7933] ip_vti0: entered allmulticast mode
[  181.994328][ T7933] ip6_vti0: entered allmulticast mode
[  182.006139][ T7933] sit0: entered allmulticast mode
[  182.014863][ T7933] ip6tnl0: entered allmulticast mode
[  182.026060][ T7933] ip6gre0: entered allmulticast mode
[  182.043884][ T7933] syz_tun: entered allmulticast mode
[  182.054647][ T7933] ip6gretap0: entered allmulticast mode
[  182.074131][ T7933] bridge0: port 2(bridge_slave_1) entered disabled state
[  182.082586][ T7933] bridge0: port 1(bridge_slave_0) entered disabled state
[  182.095398][ T7933] bridge0: entered allmulticast mode
[  182.105246][ T7933] vcan0: entered allmulticast mode
[  182.112975][ T7933] bond0: entered allmulticast mode
[  182.118170][ T7933] bond_slave_0: entered allmulticast mode
[  182.124276][ T7933] bond_slave_1: entered allmulticast mode
[  182.135478][ T7933] team0: entered allmulticast mode
[  182.140683][ T7933] team_slave_0: entered allmulticast mode
[  182.146792][ T7933] team_slave_1: entered allmulticast mode
[  182.160281][ T7933] dummy0: entered allmulticast mode
[  182.175653][ T7933] nlmon0: entered allmulticast mode
[  182.191377][ T7933] caif0: entered allmulticast mode
[  182.198973][ T7933] batadv0: entered allmulticast mode
[  182.227625][ T7933] vxcan0: entered allmulticast mode
[  182.242951][ T7933] vxcan1: entered allmulticast mode
[  182.259369][ T7933] veth0: entered allmulticast mode
[  182.273952][ T7933] veth1: entered allmulticast mode
[  182.292773][ T7933] wg0: entered allmulticast mode
[  182.309150][ T7933] wg1: entered allmulticast mode
[  182.324599][ T7933] wg2: entered allmulticast mode
[  182.337396][ T5835] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  182.340934][ T7933] veth0_to_bridge: entered allmulticast mode
[  182.351831][ T5835] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  182.361423][ T5835] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  182.369742][ T7933] veth1_to_bridge: entered allmulticast mode
[  182.378590][ T5835] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  182.391208][ T5835] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  182.398242][ T7933] veth0_to_bond: entered allmulticast mode
[  182.408193][   T30] audit: type=1400 audit(1745278960.700:675): avc:  denied  { mounton } for  pid=7985 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  182.416937][ T7933] veth1_to_bond: entered allmulticast mode
[  182.445016][ T7933] veth0_to_team: entered allmulticast mode
[  182.455880][ T7933] veth1_to_team: entered allmulticast mode
[  182.469931][ T7933] veth0_to_batadv: entered allmulticast mode
[  182.478217][ T7933] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  182.490166][ T7933] batadv_slave_0: entered allmulticast mode
[  182.499982][ T7933] veth1_to_batadv: entered allmulticast mode
[  182.514386][ T7933] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  182.522316][ T7933] batadv_slave_1: entered allmulticast mode
[  182.529707][ T7933] xfrm0: entered allmulticast mode
[  182.537133][ T7933] veth0_to_hsr: entered allmulticast mode
[  182.544301][ T7933] hsr_slave_0: entered allmulticast mode
[  182.551160][ T7933] hsr0: entered allmulticast mode
[  182.558714][ T7933] veth1_virt_wifi: entered allmulticast mode
[  182.567070][ T7933] veth0_virt_wifi: entered allmulticast mode
[  182.574675][ T7933] net veth1_virt_wifi virt_wifi0: entered allmulticast mode
[  182.583091][ T7933] veth1_vlan: entered allmulticast mode
[  182.594684][ T7933] vlan0: entered allmulticast mode
[  182.599868][ T7933] vlan1: entered allmulticast mode
[  182.605822][ T7933] macvlan0: entered allmulticast mode
[  182.614206][ T7933] macvlan1: entered allmulticast mode
[  182.620752][ T7933] ipvlan0: entered allmulticast mode
[  182.626750][ T7933] ipvlan1: entered allmulticast mode
[  182.632846][ T7933] veth1_macvtap: entered allmulticast mode
[  182.640083][ T7933] veth0_macvtap: entered allmulticast mode
[  182.647705][ T7933] macvtap0: entered allmulticast mode
[  182.654641][ T7933] macsec0: entered allmulticast mode
[  182.663370][ T7933] geneve0: entered allmulticast mode
[  182.671760][ T7933] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  182.681024][ T7933] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  182.690059][ T7933] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  182.698943][ T7933] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  182.709040][ T7933] geneve1: entered allmulticast mode
[  182.717371][ T7933] netdevsim netdevsim2 netdevsim0: entered allmulticast mode
[  182.727810][ T7933] netdevsim netdevsim2 netdevsim1: entered allmulticast mode
[  182.737994][ T7933] netdevsim netdevsim2 netdevsim2: entered allmulticast mode
[  182.747909][ T7933] netdevsim netdevsim2 netdevsim3: entered allmulticast mode
[  182.757200][ T7933] mac80211_hwsim hwsim2 wlan0: entered allmulticast mode
[  182.764404][ T7933] mac80211_hwsim hwsim4 wlan1: entered allmulticast mode
[  182.781423][ T5870] usb 3-1: USB disconnect, device number 28
[  182.791068][ T5870] ftdi_sio 3-1:0.151: device disconnected
[  182.798643][ T2986] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  182.845157][ T7985] lo speed is unknown, defaulting to 1000
[  182.881276][ T2986] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  183.592732][   T30] audit: type=1400 audit(1745278961.600:676): avc:  denied  { read write } for  pid=7992 comm="syz.1.466" name="autofs" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  183.635883][   T30] audit: type=1400 audit(1745278961.600:677): avc:  denied  { open } for  pid=7992 comm="syz.1.466" path="/dev/autofs" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  183.738195][   T30] audit: type=1400 audit(1745278961.610:678): avc:  denied  { ioctl } for  pid=7992 comm="syz.1.466" path="/dev/autofs" dev="devtmpfs" ino=98 ioctlcmd=0x9377 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  183.849936][ T2986] bridge_slave_1: left promiscuous mode
[  183.868457][ T2986] bridge0: port 2(bridge_slave_1) entered disabled state
[  183.925618][ T2986] bridge_slave_0: left allmulticast mode
[  183.931504][ T2986] bridge_slave_0: left promiscuous mode
[  183.937769][ T2986] bridge0: port 1(bridge_slave_0) entered disabled state
[  183.955786][   T30] audit: type=1400 audit(1745278962.250:679): avc:  denied  { ioctl } for  pid=8003 comm="syz.1.470" path="socket:[16017]" dev="sockfs" ino=16017 ioctlcmd=0x8923 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  183.987477][   T48] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  184.129944][   T30] audit: type=1400 audit(1745278962.320:680): avc:  denied  { map } for  pid=8003 comm="syz.1.470" path="/proc/353/net/vlan/vlan0" dev="proc" ino=4026533767 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  184.191619][   T48] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  184.240346][   T48] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  184.298188][   T48] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  184.363917][   T48] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  184.431112][   T48] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  184.462088][ T5835] Bluetooth: hci4: command tx timeout
[  184.500398][   T48] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  184.553040][   T48] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  184.599399][   T48] usb 5-1: Product: syz
[  184.648146][   T48] usb 5-1: Manufacturer: syz
[  184.704843][   T48] cdc_wdm 5-1:1.0: skipping garbage
[  184.720061][   T48] cdc_wdm 5-1:1.0: skipping garbage
[  184.741681][   T48] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  184.752213][   T48] cdc_wdm 5-1:1.0: Unknown control protocol
[  184.956323][ T2986] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  184.966566][    C1] cdc_wdm 5-1:1.0: unknown notification 115 received: index 20012 len 11043
[  184.979551][ T2986] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  184.989513][ T2986] bond0 (unregistering): Released all slaves
[  184.995954][   T30] audit: type=1400 audit(1745278963.290:681): avc:  denied  { write } for  pid=5178 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  185.022770][   T30] audit: type=1400 audit(1745278963.290:682): avc:  denied  { remove_name } for  pid=5178 comm="syslogd" name="messages" dev="tmpfs" ino=7 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  185.058719][ T8004] @: renamed from vlan0 (while UP)
[  185.119140][ T8006] sysfs: cannot create duplicate filename '/class/ieee80211/!寿$ûÌÌULÙvy¸ÚØ¢
…D£p(@Ož>ÆÀ–PÛç¡RaGùͽ�ÒÜÓ“p'
[  185.131630][ T8006] CPU: 1 UID: 0 PID: 8006 Comm: syz.3.469 Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0 PREEMPT(full) 
[  185.131655][ T8006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  185.131666][ T8006] Call Trace:
[  185.131672][ T8006]  <TASK>
[  185.131679][ T8006]  dump_stack_lvl+0x16c/0x1f0
[  185.131713][ T8006]  sysfs_warn_dup+0x7f/0xa0
[  185.131733][ T8006]  sysfs_do_create_link_sd+0x124/0x140
[  185.131752][ T8006]  sysfs_create_link+0x61/0xc0
[  185.131770][ T8006]  device_add+0x62c/0x1a70
[  185.131791][ T8006]  ? __pfx_device_add+0x10/0x10
[  185.131808][ T8006]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  185.131828][ T8006]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  185.131859][ T8006]  wiphy_register+0x1c9c/0x2850
[  185.131878][ T8006]  ? netdev_run_todo+0x864/0x1320
[  185.131902][ T8006]  ? __dev_printk+0x270/0x270
[  185.131926][ T8006]  ? __pfx_wiphy_register+0x10/0x10
[  185.131956][ T8006]  ieee80211_register_hw+0x2432/0x4020
[  185.131992][ T8006]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  185.132022][ T8006]  ? find_held_lock+0x2b/0x80
[  185.132045][ T8006]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  185.132063][ T8006]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  185.132087][ T8006]  ? __hrtimer_setup+0x176/0x280
[  185.132108][ T8006]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  185.132141][ T8006]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  185.132160][ T8006]  ? __pfx___schedule+0x10/0x10
[  185.132180][ T8006]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  185.132201][ T8006]  ? __asan_memcpy+0x3c/0x60
[  185.132228][ T8006]  hwsim_new_radio_nl+0xb51/0x12c0
[  185.132250][ T8006]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  185.132266][ T8006]  ? lockdep_hardirqs_on+0x7c/0x110
[  185.132308][ T8006]  genl_family_rcv_msg_doit+0x206/0x2f0
[  185.132338][ T8006]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  185.132373][ T8006]  ? bpf_lsm_capable+0x9/0x10
[  185.132387][ T8006]  ? security_capable+0x7e/0x260
[  185.132406][ T8006]  ? ns_capable+0xd7/0x110
[  185.132430][ T8006]  genl_rcv_msg+0x55c/0x800
[  185.132458][ T8006]  ? __pfx_genl_rcv_msg+0x10/0x10
[  185.132492][ T8006]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  185.132515][ T8006]  ? __lock_acquire+0xaa4/0x1ba0
[  185.132536][ T8006]  netlink_rcv_skb+0x16a/0x440
[  185.132559][ T8006]  ? __pfx_genl_rcv_msg+0x10/0x10
[  185.132587][ T8006]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  185.132624][ T8006]  ? __pfx_down_read+0x10/0x10
[  185.132650][ T8006]  ? netlink_deliver_tap+0x1ae/0xd30
[  185.132677][ T8006]  genl_rcv+0x28/0x40
[  185.132699][ T8006]  netlink_unicast+0x53a/0x7f0
[  185.132724][ T8006]  ? __pfx_netlink_unicast+0x10/0x10
[  185.132755][ T8006]  netlink_sendmsg+0x8d1/0xdd0
[  185.132784][ T8006]  ? __pfx_netlink_sendmsg+0x10/0x10
[  185.132817][ T8006]  ____sys_sendmsg+0xa95/0xc70
[  185.132844][ T8006]  ? copy_msghdr_from_user+0x10a/0x160
[  185.132865][ T8006]  ? __pfx_____sys_sendmsg+0x10/0x10
[  185.132892][ T8006]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  185.132918][ T8006]  ___sys_sendmsg+0x134/0x1d0
[  185.132939][ T8006]  ? __pfx____sys_sendmsg+0x10/0x10
[  185.132990][ T8006]  __sys_sendmsg+0x16d/0x220
[  185.133011][ T8006]  ? __pfx___sys_sendmsg+0x10/0x10
[  185.133031][ T8006]  ? __x64_sys_futex+0x1e0/0x4c0
[  185.133061][ T8006]  ? rcu_is_watching+0x12/0xc0
[  185.133088][ T8006]  do_syscall_64+0xcd/0x260
[  185.133113][ T8006]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.133129][ T8006] RIP: 0033:0x7fcaeb98e169
[  185.133143][ T8006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  185.133159][ T8006] RSP: 002b:00007fcaec7b0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  185.133176][ T8006] RAX: ffffffffffffffda RBX: 00007fcaebbb5fa0 RCX: 00007fcaeb98e169
[  185.133186][ T8006] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 000000000000000f
[  185.133197][ T8006] RBP: 00007fcaeba10a68 R08: 0000000000000000 R09: 0000000000000000
[  185.133207][ T8006] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  185.133217][ T8006] R13: 0000000000000000 R14: 00007fcaebbb5fa0 R15: 00007ffebe7fee38
[  185.133239][ T8006]  </TASK>
[  185.769162][ T7985] chnl_net:caif_netlink_parms(): no params data found
[  185.829656][ T8025] block device autoloading is deprecated and will be removed.
[  186.024832][   T24] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  186.153646][ T7985] bridge0: port 1(bridge_slave_0) entered blocking state
[  186.166080][ T7985] bridge0: port 1(bridge_slave_0) entered disabled state
[  186.197678][ T7985] bridge_slave_0: entered allmulticast mode
[  186.211495][ T7985] bridge_slave_0: entered promiscuous mode
[  186.244276][ T2986] hsr_slave_0: left promiscuous mode
[  186.256415][ T2986] hsr_slave_1: left promiscuous mode
[  186.271594][ T2986] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  186.292816][ T2986] batman_adv: batadv0: Removing interface: batadv_slave_0
[  186.312354][ T2986] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  186.331147][ T2986] batman_adv: batadv0: Removing interface: batadv_slave_1
[  186.438800][ T2986] veth1_macvtap: left promiscuous mode
[  186.463532][   T24] usb 4-1: Using ep0 maxpacket: 8
[  186.473936][   T24] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  186.475919][ T2986] veth0_macvtap: left promiscuous mode
[  186.498209][   T24] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  186.511637][   T24] usb 4-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea
[  186.533139][ T2986] veth1_vlan: left promiscuous mode
[  186.540187][   T24] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  186.554452][ T5835] Bluetooth: hci4: command tx timeout
[  186.559949][   T24] usb 4-1: Product: syz
[  186.587350][   T24] usb 4-1: Manufacturer: syz
[  186.602947][   T24] usb 4-1: SerialNumber: syz
[  186.789807][ T5827] usb 5-1: USB disconnect, device number 14
[  186.964161][ T2986] pim6reg (unregistering): left allmulticast mode
[  188.623417][ T5835] Bluetooth: hci4: command tx timeout
[  189.222219][ T8094] netlink: 4 bytes leftover after parsing attributes in process `syz.4.492'.
[  189.342093][   T30] kauditd_printk_skb: 7 callbacks suppressed
[  189.342124][   T30] audit: type=1400 audit(1745278967.500:690): avc:  denied  { bind } for  pid=8091 comm="syz.4.492" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  189.968876][   T30] audit: type=1400 audit(1745278968.260:691): avc:  denied  { mount } for  pid=8100 comm="syz.4.495" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  190.702072][ T5835] Bluetooth: hci4: command tx timeout
[  193.826533][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  203.101654][   T56] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  203.111452][   T56] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  203.119894][   T56] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  203.126213][ T5837] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  203.127530][   T56] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  203.135600][ T5837] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  203.143050][   T56] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  203.151861][ T5837] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  203.155267][   T56] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  203.165217][ T5837] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  203.991219][ T5835] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  203.999943][ T5835] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  204.008298][ T5835] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  204.016034][ T5835] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  204.023869][ T5835] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  205.182147][ T5835] Bluetooth: hci5: command tx timeout
[  205.262165][ T5835] Bluetooth: hci6: command tx timeout
[  205.984171][   T56] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  205.992720][   T56] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  206.001142][   T56] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  206.010516][   T56] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  206.018094][   T56] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  206.062071][   T56] Bluetooth: hci7: command tx timeout
[  207.262101][   T56] Bluetooth: hci5: command tx timeout
[  207.342078][   T56] Bluetooth: hci6: command tx timeout
[  208.062104][   T56] Bluetooth: hci8: command tx timeout
[  208.142056][   T56] Bluetooth: hci7: command tx timeout
[  209.352043][   T56] Bluetooth: hci5: command tx timeout
[  209.432079][   T56] Bluetooth: hci6: command tx timeout
[  210.142028][   T56] Bluetooth: hci8: command tx timeout
[  210.222014][   T56] Bluetooth: hci7: command tx timeout
[  211.422126][   T56] Bluetooth: hci5: command tx timeout
[  211.502144][   T56] Bluetooth: hci6: command tx timeout
[  212.222083][   T56] Bluetooth: hci8: command tx timeout
[  212.302047][   T56] Bluetooth: hci7: command tx timeout
[  214.302006][   T56] Bluetooth: hci8: command tx timeout
[  242.544188][ T5835] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[  242.554558][ T5835] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[  242.562640][ T5835] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[  242.570964][ T5835] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[  242.578848][ T5835] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[  244.622788][   T56] Bluetooth: hci9: command tx timeout
[  246.702037][   T56] Bluetooth: hci9: command tx timeout
[  248.782135][   T56] Bluetooth: hci9: command tx timeout
[  250.862939][   T56] Bluetooth: hci9: command tx timeout
[  255.263878][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  263.666364][ T5835] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[  263.677196][ T5835] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[  263.683911][ T5831] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[  263.687478][ T5835] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[  263.692641][ T5831] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[  263.701560][ T5835] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[  263.706273][ T5831] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[  263.713092][ T5835] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[  263.720969][ T5831] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[  263.735791][ T5835] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[  264.052069][ T5835] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1
[  264.061182][ T5835] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9
[  264.069877][ T5835] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9
[  264.078022][ T5835] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4
[  264.086489][ T5835] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2
[  265.742084][ T5837] Bluetooth: hci10: command tx timeout
[  265.831991][ T5837] Bluetooth: hci11: command tx timeout
[  266.082107][ T5835] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1
[  266.090384][ T5835] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9
[  266.099402][ T5835] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9
[  266.107968][ T5835] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4
[  266.117266][ T5835] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2
[  266.142006][ T5837] Bluetooth: hci12: command tx timeout
[  267.822169][ T5837] Bluetooth: hci10: command tx timeout
[  267.901969][ T5837] Bluetooth: hci11: command tx timeout
[  268.152106][ T5837] Bluetooth: hci13: command tx timeout
[  268.222117][ T5837] Bluetooth: hci12: command tx timeout
[  269.903118][ T5837] Bluetooth: hci10: command tx timeout
[  269.982124][ T5835] Bluetooth: hci11: command tx timeout
[  270.222092][ T5835] Bluetooth: hci13: command tx timeout
[  270.302046][ T5835] Bluetooth: hci12: command tx timeout
[  271.982078][ T5835] Bluetooth: hci10: command tx timeout
[  272.062100][ T5835] Bluetooth: hci11: command tx timeout
[  272.302091][ T5835] Bluetooth: hci13: command tx timeout
[  272.382055][ T5835] Bluetooth: hci12: command tx timeout
[  274.382073][ T5835] Bluetooth: hci13: command tx timeout
[  302.616127][ T5837] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1
[  302.624655][ T5837] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9
[  302.634598][ T5837] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9
[  302.642910][ T5837] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4
[  302.650581][ T5837] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2
[  304.702120][ T5835] Bluetooth: hci14: command tx timeout
[  306.782069][ T5837] Bluetooth: hci14: command tx timeout
[  308.541997][ T5837] Bluetooth: hci4: command 0x0406 tx timeout
[  308.862139][ T5835] Bluetooth: hci14: command tx timeout
[  310.942054][ T5835] Bluetooth: hci14: command tx timeout
[  316.705833][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  323.722240][ T5837] Bluetooth: hci15: unexpected cc 0x0c03 length: 249 > 1
[  323.731132][ T5837] Bluetooth: hci15: unexpected cc 0x1003 length: 249 > 9
[  323.739609][ T5837] Bluetooth: hci15: unexpected cc 0x1001 length: 249 > 9
[  323.749659][ T5837] Bluetooth: hci15: unexpected cc 0x0c23 length: 249 > 4
[  323.758256][ T5837] Bluetooth: hci16: unexpected cc 0x0c03 length: 249 > 1
[  323.759045][ T5831] Bluetooth: hci15: unexpected cc 0x0c38 length: 249 > 2
[  323.770141][ T5837] Bluetooth: hci16: unexpected cc 0x1003 length: 249 > 9
[  323.783332][ T5837] Bluetooth: hci16: unexpected cc 0x1001 length: 249 > 9
[  323.793019][ T5837] Bluetooth: hci16: unexpected cc 0x0c23 length: 249 > 4
[  323.800522][ T5837] Bluetooth: hci16: unexpected cc 0x0c38 length: 249 > 2
[  324.117080][   T56] Bluetooth: hci17: unexpected cc 0x0c03 length: 249 > 1
[  324.125951][   T56] Bluetooth: hci17: unexpected cc 0x1003 length: 249 > 9
[  324.134338][   T56] Bluetooth: hci17: unexpected cc 0x1001 length: 249 > 9
[  324.142438][   T56] Bluetooth: hci17: unexpected cc 0x0c23 length: 249 > 4
[  324.150024][   T56] Bluetooth: hci17: unexpected cc 0x0c38 length: 249 > 2
[  325.821970][ T5837] Bluetooth: hci16: command tx timeout
[  325.822004][   T56] Bluetooth: hci15: command tx timeout
[  326.119703][ T5837] Bluetooth: hci18: unexpected cc 0x0c03 length: 249 > 1
[  326.128546][ T5837] Bluetooth: hci18: unexpected cc 0x1003 length: 249 > 9
[  326.137739][ T5837] Bluetooth: hci18: unexpected cc 0x1001 length: 249 > 9
[  326.145650][ T5837] Bluetooth: hci18: unexpected cc 0x0c23 length: 249 > 4
[  326.155052][ T5837] Bluetooth: hci18: unexpected cc 0x0c38 length: 249 > 2
[  326.222019][   T56] Bluetooth: hci17: command tx timeout
[  327.902079][ T5824] Bluetooth: hci15: command tx timeout
[  327.904898][ T5833] Bluetooth: hci16: command tx timeout
[  328.222068][ T5833] Bluetooth: hci18: command tx timeout
[  328.311970][ T5833] Bluetooth: hci17: command tx timeout
[  329.022017][ T5833] Bluetooth: hci8: command 0x0406 tx timeout
[  329.025006][ T5824] Bluetooth: hci5: command 0x0406 tx timeout
[  329.028777][ T5833] Bluetooth: hci6: command 0x0406 tx timeout
[  329.034128][ T5137] Bluetooth: hci7: command 0x0406 tx timeout
[  329.982048][   T56] Bluetooth: hci16: command tx timeout
[  329.992527][   T56] Bluetooth: hci15: command tx timeout
[  330.301973][   T56] Bluetooth: hci18: command tx timeout
[  330.382193][   T56] Bluetooth: hci17: command tx timeout
[  332.062567][   T56] Bluetooth: hci16: command tx timeout
[  332.073640][   T56] Bluetooth: hci15: command tx timeout
[  332.382020][   T56] Bluetooth: hci18: command tx timeout
[  332.462101][   T56] Bluetooth: hci17: command tx timeout
[  334.462563][   T56] Bluetooth: hci18: command tx timeout
[  338.462078][   T31] INFO: task kworker/0:0:9 blocked for more than 143 seconds.
[  338.469573][   T31]       Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0
[  338.483658][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  338.492536][   T31] task:kworker/0:0     state:D stack:24312 pid:9     tgid:9     ppid:2      task_flags:0x4208060 flags:0x00004000
[  338.504574][   T31] Workqueue: events switchdev_deferred_process_work
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  338.511166][   T31] Call Trace:
[  338.514508][   T30] audit: type=1400 audit(1745279116.810:692): avc:  denied  { write } for  pid=5806 comm="syz-executor" path="pipe:[4652]" dev="pipefs" ino=4652 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[  338.537576][   T31]  <TASK>
[  338.540510][   T31]  __schedule+0x116f/0x5de0
[  338.545053][   T31]  ? do_raw_spin_lock+0x12c/0x2b0
[  338.550094][   T31]  ? __lock_acquire+0xaa4/0x1ba0
[  338.581950][   T31]  ? __pfx___schedule+0x10/0x10
[  338.586857][   T31]  ? find_held_lock+0x2b/0x80
[  338.591538][   T31]  ? schedule+0x2d7/0x3a0
[  338.599814][   T31]  schedule+0xe7/0x3a0
[  338.603965][   T31]  schedule_preempt_disabled+0x13/0x30
[  338.609427][   T31]  __mutex_lock+0x6c7/0xb90
[  338.613960][   T31]  ? switchdev_deferred_process_work+0xe/0x20
[  338.620022][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  338.625182][   T31]  ? debug_object_deactivate+0x1ec/0x3a0
[  338.630821][   T31]  ? switchdev_deferred_process_work+0xe/0x20
[  338.636905][   T31]  ? rtnl_lock+0x9/0x20
[  338.641047][   T31]  switchdev_deferred_process_work+0xe/0x20
[  338.646944][   T31]  process_one_work+0x9cc/0x1b70
[  338.651902][   T31]  ? __pfx_hash_netportnet4_gc+0x10/0x10
[  338.657531][   T31]  ? __pfx_process_one_work+0x10/0x10
[  338.662908][   T31]  ? assign_work+0x1a0/0x250
[  338.667487][   T31]  worker_thread+0x6c8/0xf10
[  338.672093][   T31]  ? __pfx_worker_thread+0x10/0x10
[  338.677197][   T31]  kthread+0x3c2/0x780
[  338.681239][   T31]  ? __pfx_kthread+0x10/0x10
[  338.685857][   T31]  ? __pfx_kthread+0x10/0x10
[  338.690444][   T31]  ? __pfx_kthread+0x10/0x10
[  338.695048][   T31]  ? __pfx_kthread+0x10/0x10
[  338.699627][   T31]  ? rcu_is_watching+0x12/0xc0
[  338.704468][   T31]  ? __pfx_kthread+0x10/0x10
[  338.709150][   T31]  ret_from_fork+0x45/0x80
[  338.713601][   T31]  ? __pfx_kthread+0x10/0x10
[  338.718179][   T31]  ret_from_fork_asm+0x1a/0x30
[  338.722974][   T31]  </TASK>
[  338.725992][   T31] INFO: task kworker/1:0:24 blocked for more than 143 seconds.
[  338.733556][   T31]       Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0
[  338.741182][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  338.749860][   T31] task:kworker/1:0     state:D stack:21544 pid:24    tgid:24    ppid:2      task_flags:0x4208060 flags:0x00004000
[  338.761895][   T31] Workqueue: usb_hub_wq hub_event
[  338.766916][   T31] Call Trace:
[  338.770167][   T31]  <TASK>
[  338.773110][   T31]  __schedule+0x116f/0x5de0
[  338.777608][   T31]  ? number+0x9aa/0xc70
[  338.781741][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  338.786701][   T31]  ? __pfx___schedule+0x10/0x10
[  338.791550][   T31]  ? find_held_lock+0x2b/0x80
[  338.796251][   T31]  ? schedule+0x2d7/0x3a0
[  338.800575][   T31]  schedule+0xe7/0x3a0
[  338.804667][   T31]  schedule_timeout+0x257/0x290
[  338.809511][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[  338.814915][   T31]  ? mark_held_locks+0x49/0x80
[  338.819668][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  338.824895][   T31]  __wait_for_common+0x2fc/0x4e0
[  338.829833][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[  338.835240][   T31]  ? __pfx___wait_for_common+0x10/0x10
[  338.840703][   T31]  ? devtmpfs_submit_req+0x94/0x100
[  338.845949][   T31]  devtmpfs_submit_req+0xa8/0x100
[  338.850972][   T31]  devtmpfs_create_node+0x18a/0x230
[  338.856200][   T31]  ? __pfx_devtmpfs_create_node+0x10/0x10
[  338.861938][   T31]  ? up_write+0x1b2/0x520
[  338.866262][   T31]  ? kernfs_create_link+0x1bd/0x240
[  338.871440][   T31]  ? kernfs_put+0x35/0x60
[  338.875775][   T31]  ? sysfs_do_create_link_sd+0xbb/0x140
[  338.881313][   T31]  device_add+0x10bd/0x1a70
[  338.885823][   T31]  ? __pfx_device_add+0x10/0x10
[  338.890662][   T31]  ? add_device_randomness+0xb7/0xf0
[  338.895967][   T31]  ? __usb_get_extra_descriptor+0x158/0x1c0
[  338.901881][   T31]  usb_new_device+0xd07/0x1a20
[  338.906654][   T31]  ? do_raw_spin_lock+0x12c/0x2b0
[  338.911655][   T31]  ? __pfx_usb_new_device+0x10/0x10
[  338.916887][   T31]  ? mark_held_locks+0x49/0x80
[  338.921638][   T31]  hub_event+0x2eb7/0x4fa0
[  338.926101][   T31]  ? __pfx_hub_event+0x10/0x10
[  338.930853][   T31]  ? debug_object_deactivate+0x1ec/0x3a0
[  338.936501][   T31]  ? rcu_is_watching+0x12/0xc0
[  338.941257][   T31]  process_one_work+0x9cc/0x1b70
[  338.946284][   T31]  ? __pfx_hcd_resume_work+0x10/0x10
[  338.951572][   T31]  ? __pfx_process_one_work+0x10/0x10
[  338.956976][   T31]  ? assign_work+0x1a0/0x250
[  338.961567][   T31]  worker_thread+0x6c8/0xf10
[  338.966194][   T31]  ? __pfx_worker_thread+0x10/0x10
[  338.971309][   T31]  kthread+0x3c2/0x780
[  338.975389][   T31]  ? __pfx_kthread+0x10/0x10
[  338.979976][   T31]  ? __pfx_kthread+0x10/0x10
[  338.984564][   T31]  ? __pfx_kthread+0x10/0x10
[  338.989141][   T31]  ? __pfx_kthread+0x10/0x10
[  338.993750][   T31]  ? rcu_is_watching+0x12/0xc0
[  338.998512][   T31]  ? __pfx_kthread+0x10/0x10
[  339.003108][   T31]  ret_from_fork+0x45/0x80
[  339.007516][   T31]  ? __pfx_kthread+0x10/0x10
[  339.012116][   T31]  ret_from_fork_asm+0x1a/0x30
[  339.016885][   T31]  </TASK>
[  339.019887][   T31] INFO: task kdevtmpfs:26 blocked for more than 143 seconds.
[  339.027322][   T31]       Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0
[  339.034983][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  339.043673][   T31] task:kdevtmpfs       state:D stack:26440 pid:26    tgid:26    ppid:2      task_flags:0x208140 flags:0x00004000
[  339.055617][   T31] Call Trace:
[  339.058873][   T31]  <TASK>
[  339.061780][   T31]  __schedule+0x116f/0x5de0
[  339.066325][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  339.071259][   T31]  ? __pfx___schedule+0x10/0x10
[  339.076136][   T31]  ? find_held_lock+0x2b/0x80
[  339.080811][   T31]  ? schedule+0x2d7/0x3a0
[  339.085167][   T31]  schedule+0xe7/0x3a0
[  339.089236][   T31]  schedule_timeout+0x257/0x290
[  339.094105][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[  339.099470][   T31]  ? mark_held_locks+0x49/0x80
[  339.104251][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  339.109456][   T31]  __wait_for_common+0x2fc/0x4e0
[  339.114415][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[  339.119783][   T31]  ? __pfx___wait_for_common+0x10/0x10
[  339.125256][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  339.130446][   T31]  ? flush_workqueue_prep_pwqs+0x2e9/0x510
[  339.136301][   T31]  ? check_flush_dependency.part.0+0x114/0x340
[  339.142463][   T31]  __flush_workqueue+0x3e2/0x1230
[  339.147466][   T31]  ? rcu_is_watching+0x12/0xc0
[  339.152254][   T31]  ? __pfx___flush_workqueue+0x10/0x10
[  339.157705][   T31]  ? __mutex_lock+0x1ca/0xb90
[  339.162409][   T31]  md_alloc+0x30/0x1080
[  339.166559][   T31]  md_probe+0x6e/0xd0
[  339.170512][   T31]  ? __pfx_md_probe+0x10/0x10
[  339.175202][   T31]  blk_probe_dev+0x116/0x1a0
[  339.179792][   T31]  blk_request_module+0x16/0xb0
[  339.184674][   T31]  blkdev_get_no_open+0x7a/0xe0
[  339.189516][   T31]  bdev_statx+0x98/0x5c0
[  339.193798][   T31]  vfs_getattr_nosec+0x38d/0x430
[  339.198729][   T31]  ? __pfx_shmem_getattr+0x10/0x10
[  339.203898][   T31]  vfs_getattr+0x4a/0x60
[  339.208153][   T31]  handle_remove+0x12e/0x6f0
[  339.212782][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  339.217996][   T31]  ? __pfx_handle_remove+0x10/0x10
[  339.223139][   T31]  ? trace_sched_exit_tp+0xde/0x130
[  339.228337][   T31]  ? __schedule+0x1186/0x5de0
[  339.233038][   T31]  ? __lock_acquire+0xaa4/0x1ba0
[  339.237974][   T31]  ? do_raw_spin_lock+0x12c/0x2b0
[  339.243023][   T31]  ? find_held_lock+0x2b/0x80
[  339.247697][   T31]  ? devtmpfs_work_loop+0xe1/0x900
[  339.252853][   T31]  devtmpfs_work_loop+0x350/0x900
[  339.257878][   T31]  ? __pfx_devtmpfs_work_loop+0x10/0x10
[  339.263540][   T31]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  339.269347][   T31]  ? try_to_wake_up+0x157/0x1680
[  339.274316][   T31]  ? rcu_is_watching+0x12/0xc0
[  339.279079][   T31]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  339.284896][   T31]  ? __pfx_devtmpfsd+0x10/0x10
[  339.289668][   T31]  devtmpfsd+0x4c/0x50
[  339.293744][   T31]  kthread+0x3c2/0x780
[  339.297811][   T31]  ? __pfx_kthread+0x10/0x10
[  339.302442][   T31]  ? __pfx_kthread+0x10/0x10
[  339.307019][   T31]  ? __pfx_kthread+0x10/0x10
[  339.311581][   T31]  ? __pfx_kthread+0x10/0x10
[  339.316201][   T31]  ? rcu_is_watching+0x12/0xc0
[  339.320963][   T31]  ? __pfx_kthread+0x10/0x10
[  339.325570][   T31]  ret_from_fork+0x45/0x80
[  339.329989][   T31]  ? __pfx_kthread+0x10/0x10
[  339.334618][   T31]  ret_from_fork_asm+0x1a/0x30
[  339.339402][   T31]  </TASK>
[  339.342527][   T31] INFO: task kworker/u8:5:1132 blocked for more than 144 seconds.
[  339.350323][   T31]       Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0
[  339.360469][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  339.369187][   T31] task:kworker/u8:5    state:D stack:24008 pid:1132  tgid:1132  ppid:2      task_flags:0x4208060 flags:0x00004000
[  339.381239][   T31] Workqueue: events_unbound linkwatch_event
[  339.387183][   T31] Call Trace:
[  339.390453][   T31]  <TASK>
[  339.393397][   T31]  __schedule+0x116f/0x5de0
[  339.397905][   T31]  ? __lock_acquire+0xaa4/0x1ba0
[  339.402885][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  339.407815][   T31]  ? __pfx___schedule+0x10/0x10
[  339.412703][   T31]  ? find_held_lock+0x2b/0x80
[  339.417396][   T31]  ? schedule+0x2d7/0x3a0
[  339.421716][   T31]  schedule+0xe7/0x3a0
[  339.425897][   T31]  schedule_preempt_disabled+0x13/0x30
[  339.431351][   T31]  __mutex_lock+0x6c7/0xb90
[  339.435871][   T31]  ? linkwatch_event+0x51/0xc0
[  339.440646][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  339.445720][   T31]  ? __lock_acquire+0xaa4/0x1ba0
[  339.450675][   T31]  ? linkwatch_event+0x51/0xc0
[  339.455479][   T31]  ? rtnl_lock+0x9/0x20
[  339.459628][   T31]  linkwatch_event+0x51/0xc0
[  339.464262][   T31]  ? __pfx_linkwatch_event+0x10/0x10
[  339.469567][   T31]  ? rcu_is_watching+0x12/0xc0
[  339.474392][   T31]  process_one_work+0x9cc/0x1b70
[  339.479344][   T31]  ? __pfx_process_one_work+0x10/0x10
[  339.484753][   T31]  ? assign_work+0x1a0/0x250
[  339.489335][   T31]  worker_thread+0x6c8/0xf10
[  339.493966][   T31]  ? __kthread_parkme+0x19e/0x250
[  339.498993][   T31]  ? __pfx_worker_thread+0x10/0x10
[  339.504124][   T31]  kthread+0x3c2/0x780
[  339.508188][   T31]  ? __pfx_kthread+0x10/0x10
[  339.512788][   T31]  ? __pfx_kthread+0x10/0x10
[  339.517382][   T31]  ? __pfx_kthread+0x10/0x10
[  339.521997][   T31]  ? __pfx_kthread+0x10/0x10
[  339.526594][   T31]  ? rcu_is_watching+0x12/0xc0
[  339.531333][   T31]  ? __pfx_kthread+0x10/0x10
[  339.535957][   T31]  ret_from_fork+0x45/0x80
[  339.540362][   T31]  ? __pfx_kthread+0x10/0x10
[  339.544993][   T31]  ret_from_fork_asm+0x1a/0x30
[  339.549763][   T31]  </TASK>
[  339.552835][   T31] INFO: task kworker/u8:6:2986 blocked for more than 144 seconds.
[  339.560623][   T31]       Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0
[  339.568314][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  339.577007][   T31] task:kworker/u8:6    state:D stack:24472 pid:2986  tgid:2986  ppid:2      task_flags:0x4288160 flags:0x00004000
[  339.589062][   T31] Workqueue: netns cleanup_net
[  339.593869][   T31] Call Trace:
[  339.597143][   T31]  <TASK>
[  339.600067][   T31]  __schedule+0x116f/0x5de0
[  339.604637][   T31]  ? find_held_lock+0x2b/0x80
[  339.609308][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  339.614258][   T31]  ? __pfx___schedule+0x10/0x10
[  339.619105][   T31]  ? find_held_lock+0x2b/0x80
[  339.623787][   T31]  ? schedule+0x2d7/0x3a0
[  339.628109][   T31]  schedule+0xe7/0x3a0
[  339.632190][   T31]  schedule_timeout+0x257/0x290
[  339.637029][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[  339.642443][   T31]  ? mark_held_locks+0x49/0x80
[  339.647197][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  339.652419][   T31]  __wait_for_common+0x2fc/0x4e0
[  339.657351][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[  339.662831][   T31]  ? __pfx___wait_for_common+0x10/0x10
[  339.668284][   T31]  ? devtmpfs_submit_req+0x94/0x100
[  339.673507][   T31]  devtmpfs_submit_req+0xa8/0x100
[  339.678528][   T31]  devtmpfs_delete_node+0xf6/0x160
[  339.683666][   T31]  ? __pfx_devtmpfs_delete_node+0x10/0x10
[  339.689389][   T31]  ? kobject_put+0xab/0x5a0
[  339.693927][   T31]  ? __pfx_klist_children_put+0x10/0x10
[  339.699464][   T31]  ? klist_children_put+0x44/0x60
[  339.704500][   T31]  ? klist_put+0xf9/0x1b0
[  339.708824][   T31]  device_del+0x734/0x9f0
[  339.713195][   T31]  ? __pfx_device_del+0x10/0x10
[  339.718052][   T31]  ? find_held_lock+0x2b/0x80
[  339.722774][   T31]  device_unregister+0x1d/0xc0
[  339.727555][   T31]  device_destroy+0x99/0xe0
[  339.732102][   T31]  ? __pfx_device_destroy+0x10/0x10
[  339.737303][   T31]  ? kernfs_remove_by_name_ns+0x9f/0x110
[  339.742985][   T31]  macvtap_device_event+0x288/0x3e0
[  339.748182][   T31]  ? __pfx_macvtap_device_event+0x10/0x10
[  339.753964][   T31]  ? bond_netdev_event+0xe7/0xd30
[  339.759031][   T31]  notifier_call_chain+0xb9/0x410
[  339.764096][   T31]  ? __pfx_macvtap_device_event+0x10/0x10
[  339.769814][   T31]  call_netdevice_notifiers_info+0xbe/0x140
[  339.775718][   T31]  unregister_netdevice_many_notify+0xf9a/0x26f0
[  339.782095][   T31]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  339.788854][   T31]  ? unregister_netdevice_queue+0x22e/0x3f0
[  339.794763][   T31]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  339.801000][   T31]  ? batadv_meshif_destroy_vlan+0xdf/0x160
[  339.806840][   T31]  default_device_exit_batch+0x853/0xaf0
[  339.812499][   T31]  ? __pfx_default_device_exit_batch+0x10/0x10
[  339.818646][   T31]  ? __pfx_rdma_dev_exit_net+0x10/0x10
[  339.824110][   T31]  ? __pfx___might_resched+0x10/0x10
[  339.829392][   T31]  ? __pfx_cfg802154_pernet_exit+0x10/0x10
[  339.835207][   T31]  ? __pfx_default_device_exit_batch+0x10/0x10
[  339.841368][   T31]  ops_exit_list+0x128/0x180
[  339.846011][   T31]  cleanup_net+0x5c1/0xb30
[  339.850438][   T31]  ? __pfx_cleanup_net+0x10/0x10
[  339.855418][   T31]  ? rcu_is_watching+0x12/0xc0
[  339.860190][   T31]  process_one_work+0x9cc/0x1b70
[  339.865168][   T31]  ? __pfx_batadv_nc_worker+0x10/0x10
[  339.870531][   T31]  ? __pfx_process_one_work+0x10/0x10
[  339.875930][   T31]  ? assign_work+0x1a0/0x250
[  339.880511][   T31]  worker_thread+0x6c8/0xf10
[  339.885108][   T31]  ? __kthread_parkme+0x19e/0x250
[  339.890128][   T31]  ? __pfx_worker_thread+0x10/0x10
[  339.895262][   T31]  kthread+0x3c2/0x780
[  339.899320][   T31]  ? __pfx_kthread+0x10/0x10
[  339.903931][   T31]  ? __pfx_kthread+0x10/0x10
[  339.908508][   T31]  ? __pfx_kthread+0x10/0x10
[  339.913133][   T31]  ? __pfx_kthread+0x10/0x10
[  339.917717][   T31]  ? rcu_is_watching+0x12/0xc0
[  339.922525][   T31]  ? __pfx_kthread+0x10/0x10
[  339.927103][   T31]  ret_from_fork+0x45/0x80
[  339.931491][   T31]  ? __pfx_kthread+0x10/0x10
[  339.936083][   T31]  ret_from_fork_asm+0x1a/0x30
[  339.940851][   T31]  </TASK>
[  339.943920][   T31] INFO: task dhcpcd:5490 blocked for more than 144 seconds.
[  339.951188][   T31]       Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0
[  339.958841][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  339.967519][   T31] task:dhcpcd          state:D stack:23144 pid:5490  tgid:5490  ppid:5489   task_flags:0x400140 flags:0x00000002
[  339.979470][   T31] Call Trace:
[  339.982838][   T31]  <TASK>
[  339.985766][   T31]  __schedule+0x116f/0x5de0
[  339.990276][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  339.995254][   T31]  ? __pfx___schedule+0x10/0x10
[  340.000097][   T31]  ? find_held_lock+0x2b/0x80
[  340.004800][   T31]  ? schedule+0x2d7/0x3a0
[  340.009123][   T31]  schedule+0xe7/0x3a0
[  340.013221][   T31]  schedule_preempt_disabled+0x13/0x30
[  340.018685][   T31]  __mutex_lock+0x6c7/0xb90
[  340.023225][   T31]  ? cred_has_capability.isra.0+0x193/0x2f0
[  340.029115][   T31]  ? devinet_ioctl+0x26d/0x1f50
[  340.033996][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  340.039024][   T31]  ? bpf_lsm_capable+0x9/0x10
[  340.043737][   T31]  ? security_capable+0x7e/0x260
[  340.048670][   T31]  ? devinet_ioctl+0x26d/0x1f50
[  340.053531][   T31]  devinet_ioctl+0x26d/0x1f50
[  340.058215][   T31]  ? __pfx_devinet_ioctl+0x10/0x10
[  340.063494][   T31]  ? _copy_from_user+0x59/0xd0
[  340.068317][   T31]  inet_ioctl+0x3a7/0x3f0
[  340.072986][   T31]  ? __pfx_inet_ioctl+0x10/0x10
[  340.077852][   T31]  ? tomoyo_path_number_perm+0x18d/0x580
[  340.083517][   T31]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  340.089399][   T31]  sock_do_ioctl+0x115/0x280
[  340.094013][   T31]  ? __pfx_sock_do_ioctl+0x10/0x10
[  340.099137][   T31]  ? ioctl_has_perm.constprop.0.isra.0+0x2f4/0x450
[  340.105674][   T31]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  340.112204][   T31]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  340.119060][   T31]  sock_ioctl+0x227/0x6b0
[  340.123418][   T31]  ? __pfx_sock_ioctl+0x10/0x10
[  340.128274][   T31]  ? hook_file_ioctl_common+0x145/0x410
[  340.133843][   T31]  ? selinux_file_ioctl+0x180/0x270
[  340.139046][   T31]  ? selinux_file_ioctl+0xb4/0x270
[  340.144198][   T31]  ? __pfx_sock_ioctl+0x10/0x10
[  340.149092][   T31]  __x64_sys_ioctl+0x190/0x200
[  340.153909][   T31]  do_syscall_64+0xcd/0x260
[  340.158420][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  340.164341][   T31] RIP: 0033:0x7efe27d75d49
[  340.168743][   T31] RSP: 002b:00007ffc45a1a228 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  340.177162][   T31] RAX: ffffffffffffffda RBX: 00007efe27ca76c0 RCX: 00007efe27d75d49
[  340.185147][   T31] RDX: 00007ffc45a2a418 RSI: 0000000000008914 RDI: 0000000000000008
[  340.193153][   T31] RBP: 00007ffc45a3a5d8 R08: 00007ffc45a2a3d8 R09: 00007ffc45a2a388
[  340.201123][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  340.209126][   T31] R13: 00007ffc45a2a418 R14: 0000000000000028 R15: 0000000000008914
[  340.217119][   T31]  </TASK>
[  340.220140][   T31] INFO: task kworker/1:3:5827 blocked for more than 145 seconds.
[  340.227937][   T31]       Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0
[  340.235809][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  340.244516][   T31] task:kworker/1:3     state:D stack:23320 pid:5827  tgid:5827  ppid:2      task_flags:0x4288060 flags:0x00004000
[  340.256538][   T31] Workqueue: usb_hub_wq hub_event
[  340.261560][   T31] Call Trace:
[  340.264880][   T31]  <TASK>
[  340.267801][   T31]  __schedule+0x116f/0x5de0
[  340.272319][   T31]  ? find_held_lock+0x2b/0x80
[  340.277003][   T31]  ? __lock_acquire+0xa90/0x1ba0
[  340.281964][   T31]  ? __pfx___schedule+0x10/0x10
[  340.286815][   T31]  ? find_held_lock+0x2b/0x80
[  340.291466][   T31]  ? schedule+0x2d7/0x3a0
[  340.295815][   T31]  schedule+0xe7/0x3a0
[  340.299874][   T31]  schedule_timeout+0x257/0x290
[  340.304746][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[  340.310112][   T31]  ? mark_held_locks+0x49/0x80
[  340.314964][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  340.320164][   T31]  __wait_for_common+0x2fc/0x4e0
[  340.325126][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[  340.330490][   T31]  ? __pfx___wait_for_common+0x10/0x10
[  340.336049][   T31]  ? devtmpfs_submit_req+0x94/0x100
[  340.341268][   T31]  devtmpfs_submit_req+0xa8/0x100
[  340.346352][   T31]  devtmpfs_delete_node+0xf6/0x160
[  340.351464][   T31]  ? __pfx_devtmpfs_delete_node+0x10/0x10
[  340.357239][   T31]  ? kobject_put+0xab/0x5a0
[  340.361739][   T31]  ? __pfx_klist_children_put+0x10/0x10
[  340.367329][   T31]  ? klist_children_put+0x44/0x60
[  340.372398][   T31]  ? klist_put+0xf9/0x1b0
[  340.376738][   T31]  device_del+0x734/0x9f0
[  340.381079][   T31]  ? __pfx_device_del+0x10/0x10
[  340.385966][   T31]  ? find_held_lock+0x2b/0x80
[  340.390652][   T31]  device_unregister+0x1d/0xc0
[  340.395442][   T31]  device_destroy+0x99/0xe0
[  340.399939][   T31]  ? __pfx_device_destroy+0x10/0x10
[  340.405164][   T31]  usb_deregister_dev+0x70/0x1e0
[  340.410096][   T31]  wdm_disconnect+0x25/0x4c0
[  340.414701][   T31]  usb_unbind_interface+0x1da/0x9a0
[  340.419899][   T31]  ? kernfs_remove_by_name_ns+0xbe/0x110
[  340.425560][   T31]  ? __pfx_usb_unbind_interface+0x10/0x10
[  340.431273][   T31]  device_remove+0x122/0x170
[  340.435898][   T31]  device_release_driver_internal+0x44b/0x620
[  340.442003][   T31]  bus_remove_device+0x22f/0x420
[  340.446936][   T31]  device_del+0x396/0x9f0
[  340.451250][   T31]  ? __pfx_device_del+0x10/0x10
[  340.456115][   T31]  ? kobject_put+0x210/0x5a0
[  340.460707][   T31]  usb_disable_device+0x355/0x7d0
[  340.465848][   T31]  usb_disconnect+0x2e1/0x920
[  340.470539][   T31]  hub_event+0x1c57/0x4fa0
[  340.475006][   T31]  ? __lock_acquire+0xaa4/0x1ba0
[  340.479937][   T31]  ? __pfx_hub_event+0x10/0x10
[  340.484722][   T31]  ? debug_object_deactivate+0x1ec/0x3a0
[  340.490357][   T31]  ? rcu_is_watching+0x12/0xc0
[  340.495175][   T31]  process_one_work+0x9cc/0x1b70
[  340.500123][   T31]  ? __pfx_process_one_work+0x10/0x10
[  340.505570][   T31]  ? assign_work+0x1a0/0x250
[  340.510153][   T31]  worker_thread+0x6c8/0xf10
[  340.514774][   T31]  ? __kthread_parkme+0x19e/0x250
[  340.519796][   T31]  ? __pfx_worker_thread+0x10/0x10
[  340.524913][   T31]  kthread+0x3c2/0x780
[  340.528981][   T31]  ? __pfx_kthread+0x10/0x10
[  340.533571][   T31]  ? __pfx_kthread+0x10/0x10
[  340.538158][   T31]  ? __pfx_kthread+0x10/0x10
[  340.542757][   T31]  ? __pfx_kthread+0x10/0x10
[  340.547344][   T31]  ? rcu_is_watching+0x12/0xc0
[  340.552147][   T31]  ? __pfx_kthread+0x10/0x10
[  340.556729][   T31]  ret_from_fork+0x45/0x80
[  340.561120][   T31]  ? __pfx_kthread+0x10/0x10
[  340.565720][   T31]  ret_from_fork_asm+0x1a/0x30
[  340.570493][   T31]  </TASK>
[  340.573535][   T31] INFO: task kworker/0:3:5869 blocked for more than 145 seconds.
[  340.581243][   T31]       Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0
[  340.588881][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  340.597548][   T31] task:kworker/0:3     state:D stack:24608 pid:5869  tgid:5869  ppid:2      task_flags:0x4288060 flags:0x00004000
[  340.609572][   T31] Workqueue: md_misc mddev_delayed_delete
[  340.615304][   T31] Call Trace:
[  340.618570][   T31]  <TASK>
[  340.621492][   T31]  __schedule+0x116f/0x5de0
[  340.626069][   T31]  ? __pfx___schedule+0x10/0x10
[  340.630944][   T31]  ? __pfx___schedule+0x10/0x10
[  340.635840][   T31]  ? preempt_schedule_thunk+0x16/0x30
[  340.641218][   T31]  ? find_held_lock+0x2b/0x80
[  340.645912][   T31]  ? schedule+0x2d7/0x3a0
[  340.650241][   T31]  schedule+0xe7/0x3a0
[  340.654344][   T31]  schedule_timeout+0x257/0x290
[  340.659188][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[  340.664622][   T31]  ? mark_held_locks+0x49/0x80
[  340.669377][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  340.674684][   T31]  __wait_for_common+0x2fc/0x4e0
[  340.679635][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[  340.685039][   T31]  ? __pfx___wait_for_common+0x10/0x10
[  340.690494][   T31]  ? devtmpfs_submit_req+0x94/0x100
[  340.695714][   T31]  devtmpfs_submit_req+0xa8/0x100
[  340.700743][   T31]  devtmpfs_delete_node+0xf6/0x160
[  340.706035][   T31]  ? __pfx_devtmpfs_delete_node+0x10/0x10
[  340.711752][   T31]  ? __call_rcu_common.constprop.0+0x3e5/0x9f0
[  340.718220][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  340.723506][   T31]  ? kernfs_put+0x4e/0x60
[  340.727829][   T31]  ? sysfs_remove_group+0xc6/0x180
[  340.732978][   T31]  device_del+0x734/0x9f0
[  340.737306][   T31]  ? __pfx_device_del+0x10/0x10
[  340.742199][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  340.747402][   T31]  ? _raw_spin_unlock_irq+0x2e/0x50
[  340.752627][   T31]  del_gendisk+0x486/0xc40
[  340.757047][   T31]  ? __pfx_del_gendisk+0x10/0x10
[  340.762010][   T31]  ? kernfs_put.part.0+0x18b/0x630
[  340.767131][   T31]  md_kobj_release+0xb2/0x100
[  340.771799][   T31]  kobject_put+0x1e4/0x5a0
[  340.776260][   T31]  process_one_work+0x9cc/0x1b70
[  340.781196][   T31]  ? __pfx_process_one_work+0x10/0x10
[  340.786591][   T31]  ? assign_work+0x1a0/0x250
[  340.791192][   T31]  worker_thread+0x6c8/0xf10
[  340.795895][   T31]  ? __kthread_parkme+0x19e/0x250
[  340.800926][   T31]  ? __pfx_worker_thread+0x10/0x10
[  340.806151][   T31]  kthread+0x3c2/0x780
[  340.810216][   T31]  ? __pfx_kthread+0x10/0x10
[  340.814810][   T31]  ? __pfx_kthread+0x10/0x10
[  340.819389][   T31]  ? __pfx_kthread+0x10/0x10
[  340.824000][   T31]  ? __pfx_kthread+0x10/0x10
[  340.828579][   T31]  ? rcu_is_watching+0x12/0xc0
[  340.833387][   T31]  ? __pfx_kthread+0x10/0x10
[  340.837981][   T31]  ret_from_fork+0x45/0x80
[  340.842400][   T31]  ? __pfx_kthread+0x10/0x10
[  340.846990][   T31]  ret_from_fork_asm+0x1a/0x30
[  340.851748][   T31]  </TASK>
[  340.854805][   T31] INFO: task kworker/u8:9:7928 blocked for more than 145 seconds.
[  340.862685][   T31]       Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0
[  340.870300][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  340.878976][   T31] task:kworker/u8:9    state:D stack:26888 pid:7928  tgid:7928  ppid:2      task_flags:0x4208060 flags:0x00004000
[  340.891029][   T31] Workqueue: ipv6_addrconf addrconf_verify_work
[  340.897306][   T31] Call Trace:
[  340.900577][   T31]  <TASK>
[  340.903534][   T31]  __schedule+0x116f/0x5de0
[  340.908038][   T31]  ? kasan_save_stack+0x42/0x60
[  340.912918][   T31]  ? kasan_save_stack+0x33/0x60
[  340.917759][   T31]  ? kasan_save_track+0x14/0x30
[  340.922625][   T31]  ? kasan_save_free_info+0x3b/0x60
[  340.927815][   T31]  ? __kasan_slab_free+0x51/0x70
[  340.932757][   T31]  ? kfree+0x2b6/0x4d0
[  340.936831][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  340.941745][   T31]  ? __pfx___schedule+0x10/0x10
[  340.946626][   T31]  ? find_held_lock+0x2b/0x80
[  340.951295][   T31]  ? schedule+0x2d7/0x3a0
[  340.955653][   T31]  schedule+0xe7/0x3a0
[  340.959720][   T31]  schedule_preempt_disabled+0x13/0x30
[  340.965216][   T31]  __mutex_lock+0x6c7/0xb90
[  340.969726][   T31]  ? addrconf_verify_work+0x12/0x30
[  340.974938][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  340.979956][   T31]  ? debug_object_deactivate+0x1ec/0x3a0
[  340.985616][   T31]  ? addrconf_verify_work+0x12/0x30
[  340.990807][   T31]  addrconf_verify_work+0x12/0x30
[  340.995858][   T31]  process_one_work+0x9cc/0x1b70
[  341.000794][   T31]  ? __pfx_batadv_iv_send_outstanding_bat_ogm_packet+0x10/0x10
[  341.008381][   T31]  ? __pfx_process_one_work+0x10/0x10
[  341.013774][   T31]  ? assign_work+0x1a0/0x250
[  341.018340][   T31]  worker_thread+0x6c8/0xf10
[  341.023574][   T31]  ? __kthread_parkme+0x19e/0x250
[  341.028887][   T31]  ? __pfx_worker_thread+0x10/0x10
[  341.034077][   T31]  kthread+0x3c2/0x780
[  341.038137][   T31]  ? __pfx_kthread+0x10/0x10
[  341.042937][   T31]  ? __pfx_kthread+0x10/0x10
[  341.047516][   T31]  ? __pfx_kthread+0x10/0x10
[  341.052124][   T31]  ? __pfx_kthread+0x10/0x10
[  341.056705][   T31]  ? rcu_is_watching+0x12/0xc0
[  341.061457][   T31]  ? __pfx_kthread+0x10/0x10
[  341.066062][   T31]  ret_from_fork+0x45/0x80
[  341.070483][   T31]  ? __pfx_kthread+0x10/0x10
[  341.075112][   T31]  ret_from_fork_asm+0x1a/0x30
[  341.079884][   T31]  </TASK>
[  341.082928][   T31] INFO: task syz-executor:7985 blocked for more than 145 seconds.
[  341.090723][   T31]       Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0
[  341.098354][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  341.107035][   T31] task:syz-executor    state:D stack:24344 pid:7985  tgid:7985  ppid:1      task_flags:0x400140 flags:0x00000004
[  341.118965][   T31] Call Trace:
[  341.122256][   T31]  <TASK>
[  341.125174][   T31]  __schedule+0x116f/0x5de0
[  341.129656][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  341.134602][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  341.139529][   T31]  ? __pfx___schedule+0x10/0x10
[  341.144420][   T31]  ? find_held_lock+0x2b/0x80
[  341.149099][   T31]  ? schedule+0x2d7/0x3a0
[  341.153485][   T31]  schedule+0xe7/0x3a0
[  341.157557][   T31]  schedule_preempt_disabled+0x13/0x30
[  341.163062][   T31]  __mutex_lock+0x6c7/0xb90
[  341.167561][   T31]  ? rtnl_newlink+0x600/0x2000
[  341.172368][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  341.177386][   T31]  ? cap_capable+0xb3/0x250
[  341.181934][   T31]  ? ns_capable+0xd7/0x110
[  341.186348][   T31]  ? rtnl_newlink+0x600/0x2000
[  341.191087][   T31]  rtnl_newlink+0x600/0x2000
[  341.195710][   T31]  ? __pfx_rtnl_newlink+0x10/0x10
[  341.200730][   T31]  ? find_held_lock+0x2b/0x80
[  341.205426][   T31]  ? avc_has_perm_noaudit+0x117/0x3b0
[  341.210788][   T31]  ? avc_has_perm_noaudit+0x149/0x3b0
[  341.216193][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  341.221124][   T31]  ? find_held_lock+0x2b/0x80
[  341.225829][   T31]  ? __pfx_rtnl_newlink+0x10/0x10
[  341.230845][   T31]  ? __pfx_rtnl_newlink+0x10/0x10
[  341.235878][   T31]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  341.240984][   T31]  ? __pfx_rtnl_newlink+0x10/0x10
[  341.246009][   T31]  rtnetlink_rcv_msg+0x95b/0xe90
[  341.250941][   T31]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  341.256424][   T31]  ? __pfx_avc_has_perm+0x10/0x10
[  341.261444][   T31]  netlink_rcv_skb+0x16a/0x440
[  341.266231][   T31]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  341.271695][   T31]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  341.277021][   T31]  ? netlink_deliver_tap+0x1ae/0xd30
[  341.282353][   T31]  netlink_unicast+0x53a/0x7f0
[  341.287129][   T31]  ? __pfx_netlink_unicast+0x10/0x10
[  341.292456][   T31]  netlink_sendmsg+0x8d1/0xdd0
[  341.297226][   T31]  ? __pfx_netlink_sendmsg+0x10/0x10
[  341.302569][   T31]  __sys_sendto+0x495/0x510
[  341.307075][   T31]  ? __pfx___sys_sendto+0x10/0x10
[  341.312134][   T31]  ? __pfx_fput_close_sync+0x10/0x10
[  341.317416][   T31]  __x64_sys_sendto+0xe0/0x1c0
[  341.322185][   T31]  ? do_syscall_64+0x91/0x260
[  341.326855][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  341.332085][   T31]  do_syscall_64+0xcd/0x260
[  341.336585][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  341.342493][   T31] RIP: 0033:0x7f6f1db8fffc
[  341.346893][   T31] RSP: 002b:00007ffd9623a3b0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  341.355384][   T31] RAX: ffffffffffffffda RBX: 00007f6f1e8e4620 RCX: 00007f6f1db8fffc
[  341.363386][   T31] RDX: 0000000000000028 RSI: 00007f6f1e8e4670 RDI: 0000000000000003
[  341.371342][   T31] RBP: 0000000000000000 R08: 00007ffd9623a404 R09: 000000000000000c
[  341.379313][   T31] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  341.387295][   T31] R13: 0000000000000000 R14: 00007f6f1e8e4670 R15: 0000000000000000
[  341.395289][   T31]  </TASK>
[  341.398295][   T31] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[  341.407338][   T31] INFO: task syz.1.485:8076 blocked for more than 146 seconds.
[  341.415126][   T31]       Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0
[  341.422848][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  341.431517][   T31] task:syz.1.485       state:D stack:26456 pid:8076  tgid:8071  ppid:5818   task_flags:0x400140 flags:0x00004004
[  341.443509][   T31] Call Trace:
[  341.446779][   T31]  <TASK>
[  341.449693][   T31]  __schedule+0x116f/0x5de0
[  341.454224][   T31]  ? lock_acquire+0x179/0x350
[  341.458901][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  341.463898][   T31]  ? __pfx___schedule+0x10/0x10
[  341.468755][   T31]  ? find_held_lock+0x2b/0x80
[  341.473456][   T31]  ? schedule+0x2d7/0x3a0
[  341.477783][   T31]  schedule+0xe7/0x3a0
[  341.481841][   T31]  schedule_preempt_disabled+0x13/0x30
[  341.487327][   T31]  __mutex_lock+0x6c7/0xb90
[  341.491814][   T31]  ? do_ip_setsockopt+0xf6/0x3240
[  341.496895][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  341.501952][   T31]  ? rcu_is_watching+0x12/0xc0
[  341.506721][   T31]  ? do_ip_setsockopt+0xf6/0x3240
[  341.511724][   T31]  do_ip_setsockopt+0xf6/0x3240
[  341.516589][   T31]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  341.521978][   T31]  ? __pfx_try_to_wake_up+0x10/0x10
[  341.527161][   T31]  ? sock_has_perm+0x259/0x2f0
[  341.531939][   T31]  ? __pfx_sock_has_perm+0x10/0x10
[  341.537064][   T31]  ip_setsockopt+0x59/0xf0
[  341.541480][   T31]  raw_setsockopt+0xb7/0x2a0
[  341.546112][   T31]  ? __pfx_raw_setsockopt+0x10/0x10
[  341.551297][   T31]  ? __sanitizer_cov_trace_pc+0x5f/0x70
[  341.556906][   T31]  ? sock_common_setsockopt+0x2e/0xf0
[  341.562330][   T31]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  341.568225][   T31]  do_sock_setsockopt+0x221/0x470
[  341.573297][   T31]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  341.578864][   T31]  __sys_setsockopt+0x1a0/0x230
[  341.583761][   T31]  __x64_sys_setsockopt+0xbd/0x160
[  341.588869][   T31]  ? do_syscall_64+0x91/0x260
[  341.593589][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  341.598792][   T31]  do_syscall_64+0xcd/0x260
[  341.603372][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  341.609271][   T31] RIP: 0033:0x7f29f938e169
[  341.613731][   T31] RSP: 002b:00007f29fa1fb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  341.622193][   T31] RAX: ffffffffffffffda RBX: 00007f29f95b6160 RCX: 00007f29f938e169
[  341.630160][   T31] RDX: 0000000000000027 RSI: 0000000000000000 RDI: 0000000000000007
[  341.638151][   T31] RBP: 00007f29f9410a68 R08: 000000000000000c R09: 0000000000000000
[  341.646148][   T31] R10: 0000200000000040 R11: 0000000000000246 R12: 0000000000000000
[  341.654136][   T31] R13: 0000000000000000 R14: 00007f29f95b6160 R15: 00007ffd017ab038
[  341.662145][   T31]  </TASK>
[  341.665156][   T31] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[  341.674352][   T31] INFO: task syz.2.486:8074 blocked for more than 146 seconds.
[  341.681929][   T31]       Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0
[  341.689539][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  341.698207][   T31] task:syz.2.486       state:D stack:28408 pid:8074  tgid:8073  ppid:5823   task_flags:0x400140 flags:0x00000004
[  341.710162][   T31] Call Trace:
[  341.714281][   T31]  <TASK>
[  341.717207][   T31]  __schedule+0x116f/0x5de0
[  341.721691][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  341.726679][   T31]  ? __pfx___schedule+0x10/0x10
[  341.731530][   T31]  ? find_held_lock+0x2b/0x80
[  341.736230][   T31]  ? schedule+0x2d7/0x3a0
[  341.740555][   T31]  schedule+0xe7/0x3a0
[  341.744712][   T31]  schedule_preempt_disabled+0x13/0x30
[  341.750162][   T31]  __mutex_lock+0x6c7/0xb90
[  341.754673][   T31]  ? rtnetlink_rcv_msg+0x371/0xe90
[  341.759784][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  341.764856][   T31]  ? find_held_lock+0x2b/0x80
[  341.769531][   T31]  ? rtnetlink_rcv_msg+0x371/0xe90
[  341.774646][   T31]  rtnetlink_rcv_msg+0x371/0xe90
[  341.779580][   T31]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  341.785048][   T31]  ? __pfx_avc_has_perm+0x10/0x10
[  341.790068][   T31]  netlink_rcv_skb+0x16a/0x440
[  341.794858][   T31]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  341.800321][   T31]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  341.805667][   T31]  ? netlink_deliver_tap+0x1ae/0xd30
[  341.810963][   T31]  netlink_unicast+0x53a/0x7f0
[  341.815764][   T31]  ? __pfx_netlink_unicast+0x10/0x10
[  341.821029][   T31]  netlink_sendmsg+0x8d1/0xdd0
[  341.825898][   T31]  ? __pfx_netlink_sendmsg+0x10/0x10
[  341.831204][   T31]  ____sys_sendmsg+0xa95/0xc70
[  341.836092][   T31]  ? copy_msghdr_from_user+0x10a/0x160
[  341.841601][   T31]  ? __pfx_____sys_sendmsg+0x10/0x10
[  341.846907][   T31]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  341.852746][   T31]  ___sys_sendmsg+0x134/0x1d0
[  341.857417][   T31]  ? __pfx____sys_sendmsg+0x10/0x10
[  341.862662][   T31]  __sys_sendmsg+0x16d/0x220
[  341.867250][   T31]  ? __pfx___sys_sendmsg+0x10/0x10
[  341.872400][   T31]  ? __x64_sys_futex+0x1e0/0x4c0
[  341.877347][   T31]  do_syscall_64+0xcd/0x260
[  341.881832][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  341.887746][   T31] RIP: 0033:0x7f65a738e169
[  341.892170][   T31] RSP: 002b:00007f65a8147038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  341.900573][   T31] RAX: ffffffffffffffda RBX: 00007f65a75b5fa0 RCX: 00007f65a738e169
[  341.908563][   T31] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[  341.916540][   T31] RBP: 00007f65a7410a68 R08: 0000000000000000 R09: 0000000000000000
[  341.924547][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  341.932550][   T31] R13: 0000000000000000 R14: 00007f65a75b5fa0 R15: 00007ffd20a332f8
[  341.940529][   T31]  </TASK>
[  341.943598][   T31] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[  341.952633][   T31] INFO: task syz.3.490:8086 blocked for more than 146 seconds.
[  341.960169][   T31]       Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0
[  341.967821][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  341.976493][   T31] task:syz.3.490       state:D stack:28856 pid:8086  tgid:8085  ppid:5819   task_flags:0x400140 flags:0x00000004
[  341.988424][   T31] Call Trace:
[  341.991693][   T31]  <TASK>
[  341.994671][   T31]  __schedule+0x116f/0x5de0
[  341.999180][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  342.004166][   T31]  ? __pfx___schedule+0x10/0x10
[  342.009014][   T31]  ? find_held_lock+0x2b/0x80
[  342.013703][   T31]  ? schedule+0x2d7/0x3a0
[  342.018027][   T31]  schedule+0xe7/0x3a0
[  342.022108][   T31]  schedule_preempt_disabled+0x13/0x30
[  342.027558][   T31]  __mutex_lock+0x6c7/0xb90
[  342.032081][   T31]  ? ppp_ioctl+0x17cd/0x2660
[  342.036678][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  342.041696][   T31]  ? __kvmalloc_node_noprof+0x296/0x600
[  342.047254][   T31]  ? alloc_netdev_mqs+0xfbe/0x1570
[  342.052396][   T31]  ? alloc_netdev_mqs+0xe7e/0x1570
[  342.057502][   T31]  ? ppp_ioctl+0x17cd/0x2660
[  342.062226][   T31]  ? rtnl_lock+0x9/0x20
[  342.066458][   T31]  ppp_ioctl+0x17cd/0x2660
[  342.070863][   T31]  ? __pfx_ppp_ioctl+0x10/0x10
[  342.075694][   T31]  ? selinux_file_ioctl+0xb4/0x270
[  342.080822][   T31]  ? __pfx_ppp_ioctl+0x10/0x10
[  342.085622][   T31]  __x64_sys_ioctl+0x190/0x200
[  342.090409][   T31]  do_syscall_64+0xcd/0x260
[  342.094951][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.100832][   T31] RIP: 0033:0x7fcaeb98e169
[  342.105283][   T31] RSP: 002b:00007fcaec7b0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  342.113725][   T31] RAX: ffffffffffffffda RBX: 00007fcaebbb5fa0 RCX: 00007fcaeb98e169
[  342.121703][   T31] RDX: 0000200000000100 RSI: 00000000c004743e RDI: 0000000000000003
[  342.129707][   T31] RBP: 00007fcaeba10a68 R08: 0000000000000000 R09: 0000000000000000
[  342.137709][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  342.145788][   T31] R13: 0000000000000000 R14: 00007fcaebbb5fa0 R15: 00007ffebe7fee38
[  342.153775][   T31]  </TASK>
[  342.156776][   T31] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[  342.165797][   T31] INFO: task syz.3.490:8087 blocked for more than 147 seconds.
[  342.173347][   T31]       Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0
[  342.180946][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  342.189647][   T31] task:syz.3.490       state:D stack:29048 pid:8087  tgid:8085  ppid:5819   task_flags:0x400040 flags:0x00000004
[  342.201583][   T31] Call Trace:
[  342.204932][   T31]  <TASK>
[  342.207870][   T31]  __schedule+0x116f/0x5de0
[  342.212416][   T31]  ? save_trace+0x4e/0x380
[  342.216848][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  342.221781][   T31]  ? __pfx___schedule+0x10/0x10
[  342.226681][   T31]  ? find_held_lock+0x2b/0x80
[  342.231357][   T31]  ? schedule+0x2d7/0x3a0
[  342.235716][   T31]  schedule+0xe7/0x3a0
[  342.239780][   T31]  schedule_preempt_disabled+0x13/0x30
[  342.245257][   T31]  __mutex_lock+0x6c7/0xb90
[  342.249760][   T31]  ? ppp_ioctl+0xc2/0x2660
[  342.254212][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  342.259238][   T31]  ? ioctl_has_perm.constprop.0.isra.0+0x2f4/0x450
[  342.265754][   T31]  ? ppp_ioctl+0xc2/0x2660
[  342.270166][   T31]  ppp_ioctl+0xc2/0x2660
[  342.274427][   T31]  ? __pfx_ppp_ioctl+0x10/0x10
[  342.279192][   T31]  ? selinux_file_ioctl+0x180/0x270
[  342.284410][   T31]  ? selinux_file_ioctl+0xb4/0x270
[  342.289519][   T31]  ? __pfx_ppp_ioctl+0x10/0x10
[  342.294293][   T31]  __x64_sys_ioctl+0x190/0x200
[  342.299056][   T31]  do_syscall_64+0xcd/0x260
[  342.303858][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.309729][   T31] RIP: 0033:0x7fcaeb98e169
[  342.314188][   T31] RSP: 002b:00007fcaec78f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  342.322625][   T31] RAX: ffffffffffffffda RBX: 00007fcaebbb6080 RCX: 00007fcaeb98e169
[  342.330584][   T31] RDX: 0000200000000080 RSI: 0000000040107446 RDI: 0000000000000003
[  342.338614][   T31] RBP: 00007fcaeba10a68 R08: 0000000000000000 R09: 0000000000000000
[  342.346608][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  342.354608][   T31] R13: 0000000000000001 R14: 00007fcaebbb6080 R15: 00007ffebe7fee38
[  342.362618][   T31]  </TASK>
[  342.365621][   T31] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[  342.374650][   T31] INFO: task syz.4.496:8104 blocked for more than 147 seconds.
[  342.382201][   T31]       Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0
[  342.389810][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  342.398577][   T31] task:syz.4.496       state:D stack:27704 pid:8104  tgid:8102  ppid:5825   task_flags:0x400140 flags:0x00004004
[  342.410514][   T31] Call Trace:
[  342.413824][   T31]  <TASK>
[  342.416745][   T31]  __schedule+0x116f/0x5de0
[  342.421225][   T31]  ? stack_depot_save_flags+0x28/0xa50
[  342.426723][   T31]  ? __pfx___schedule+0x10/0x10
[  342.431567][   T31]  ? find_held_lock+0x2b/0x80
[  342.436251][   T31]  ? schedule+0x2d7/0x3a0
[  342.440575][   T31]  schedule+0xe7/0x3a0
[  342.444658][   T31]  schedule_preempt_disabled+0x13/0x30
[  342.450110][   T31]  __mutex_lock+0x6c7/0xb90
[  342.454636][   T31]  ? nl80211_pre_doit+0xb4/0xb10
[  342.459577][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  342.464705][   T31]  ? __nla_parse+0x40/0x60
[  342.469123][   T31]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  342.474528][   T31]  ? nl80211_pre_doit+0xb4/0xb10
[  342.479461][   T31]  nl80211_pre_doit+0xb4/0xb10
[  342.484264][   T31]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  342.489639][   T31]  genl_family_rcv_msg_doit+0x1c0/0x2f0
[  342.495262][   T31]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  342.501342][   T31]  ? bpf_lsm_capable+0x9/0x10
[  342.506025][   T31]  ? security_capable+0x7e/0x260
[  342.510955][   T31]  ? ns_capable+0xd7/0x110
[  342.515377][   T31]  genl_rcv_msg+0x55c/0x800
[  342.519881][   T31]  ? __pfx_genl_rcv_msg+0x10/0x10
[  342.524936][   T31]  ? __pfx___dev_queue_xmit+0x10/0x10
[  342.530298][   T31]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  342.535701][   T31]  ? __pfx_nl80211_channel_switch+0x10/0x10
[  342.541671][   T31]  ? __pfx_nl80211_post_doit+0x10/0x10
[  342.547177][   T31]  ? __lock_acquire+0xaa4/0x1ba0
[  342.552135][   T31]  netlink_rcv_skb+0x16a/0x440
[  342.556894][   T31]  ? __pfx_genl_rcv_msg+0x10/0x10
[  342.561957][   T31]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  342.567328][   T31]  ? __pfx_down_read+0x10/0x10
[  342.572132][   T31]  ? netlink_deliver_tap+0x1ae/0xd30
[  342.577412][   T31]  genl_rcv+0x28/0x40
[  342.581384][   T31]  netlink_unicast+0x53a/0x7f0
[  342.586173][   T31]  ? __pfx_netlink_unicast+0x10/0x10
[  342.591454][   T31]  netlink_sendmsg+0x8d1/0xdd0
[  342.596244][   T31]  ? __pfx_netlink_sendmsg+0x10/0x10
[  342.601527][   T31]  ____sys_sendmsg+0xa95/0xc70
[  342.606329][   T31]  ? copy_msghdr_from_user+0x10a/0x160
[  342.611790][   T31]  ? __pfx_____sys_sendmsg+0x10/0x10
[  342.617142][   T31]  ___sys_sendmsg+0x134/0x1d0
[  342.621829][   T31]  ? __pfx____sys_sendmsg+0x10/0x10
[  342.627162][   T31]  __sys_sendmsg+0x16d/0x220
[  342.631765][   T31]  ? __pfx___sys_sendmsg+0x10/0x10
[  342.636905][   T31]  ? __x64_sys_futex+0x1e0/0x4c0
[  342.641850][   T31]  ? rcu_is_watching+0x12/0xc0
[  342.646682][   T31]  do_syscall_64+0xcd/0x260
[  342.651177][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.657110][   T31] RIP: 0033:0x7f4e4138e169
[  342.661519][   T31] RSP: 002b:00007f4e4222c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  342.669961][   T31] RAX: ffffffffffffffda RBX: 00007f4e415b6080 RCX: 00007f4e4138e169
[  342.677970][   T31] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000000000000005
[  342.685974][   T31] RBP: 00007f4e41410a68 R08: 0000000000000000 R09: 0000000000000000
[  342.693960][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  342.701959][   T31] R13: 0000000000000000 R14: 00007f4e415b6080 R15: 00007fffc7113248
[  342.709925][   T31]  </TASK>
[  342.712985][   T31] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[  342.722045][   T31] 
[  342.722045][   T31] Showing all locks held in the system:
[  342.729742][   T31] 3 locks held by kworker/0:0/9:
[  342.734742][   T31]  #0: ffff88801b478d48 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[  342.745222][   T31]  #1: ffffc900000e7d18 (deferred_process_work){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[  342.755626][   T31]  #2: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: switchdev_deferred_process_work+0xe/0x20
[  342.766033][   T31] 3 locks held by kworker/1:0/24:
[  342.771046][   T31]  #0: ffff888144ec6148 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[  342.782008][   T31]  #1: ffffc900001e7d18 ((work_completion)(&hub->events)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[  342.793261][   T31]  #2: ffff8880294c0198 (&dev->mutex){....}-{4:4}, at: hub_event+0x1c0/0x4fa0
[  342.802141][   T31] 2 locks held by kdevtmpfs/26:
[  342.806973][   T31]  #0: ffff88801c6d8950 (&type->i_mutex_dir_key/1){+.+.}-{4:4}, at: __kern_path_locked+0x132/0x2a0
[  342.817695][   T31]  #1: ffffffff8eef4368 (major_names_lock){+.+.}-{4:4}, at: blk_probe_dev+0x25/0x1a0
[  342.827212][   T31] 1 lock held by khungtaskd/31:
[  342.832060][   T31]  #0: ffffffff8e3bf5c0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0
[  342.841953][   T31] 3 locks held by kworker/u8:5/1132:
[  342.847222][   T31]  #0: ffff88801b481148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[  342.858354][   T31]  #1: ffffc9000411fd18 ((linkwatch_work).work){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[  342.868748][   T31]  #2: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: linkwatch_event+0x51/0xc0
[  342.877887][   T31] 4 locks held by kworker/u8:6/2986:
[  342.883202][   T31]  #0: ffff88801c2f3948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[  342.893769][   T31]  #1: ffffc9000c697d18 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[  342.903720][   T31]  #2: ffffffff90114fd0 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xc9/0xb30
[  342.913064][   T31]  #3: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: default_device_exit_batch+0x8b/0xaf0
[  342.923140][   T31] 1 lock held by dhcpcd/5490:
[  342.927797][   T31]  #0: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: devinet_ioctl+0x26d/0x1f50
[  342.936959][   T31] 2 locks held by getty/5581:
[  342.941616][   T31]  #0: ffff8880374aa0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[  342.951466][   T31]  #1: ffffc9000334b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x14f0
[  342.961595][   T31] 5 locks held by kworker/1:3/5827:
[  342.966819][   T31]  #0: ffff888144ec6148 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[  342.977639][   T31]  #1: ffffc90002f97d18 ((work_completion)(&hub->events)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[  342.988872][   T31]  #2: ffff888145b68198 (&dev->mutex){....}-{4:4}, at: hub_event+0x1c0/0x4fa0
[  342.997769][   T31]  #3: ffff88805c8cb198 (&dev->mutex){....}-{4:4}, at: usb_disconnect+0x10a/0x920
[  343.007007][   T31]  #4: ffff88805e1bd160 (&dev->mutex){....}-{4:4}, at: device_release_driver_internal+0xa4/0x620
[  343.017566][   T31] 2 locks held by kworker/0:3/5869:
[  343.022784][   T31]  #0: ffff888144ec6d48 ((wq_completion)md_misc){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[  343.033348][   T31]  #1: ffffc90003757d18 ((work_completion)(&mddev->del_work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[  343.044979][   T31] 5 locks held by kworker/u8:8/5985:
[  343.050255][   T31] 3 locks held by kworker/u8:9/7928:
[  343.055596][   T31]  #0: ffff88814db98948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[  343.066688][   T31]  #1: ffffc90003127d18 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[  343.079770][   T31]  #2: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: addrconf_verify_work+0x12/0x30
[  343.089285][   T31] 1 lock held by syz-executor/7985:
[  343.094479][   T31]  #0: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x600/0x2000
[  343.103891][   T31] 1 lock held by syz.1.485/8076:
[  343.108812][   T31]  #0: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: do_ip_setsockopt+0xf6/0x3240
[  343.118154][   T31] 1 lock held by syz.2.486/8074:
[  343.123108][   T31]  #0: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: rtnetlink_rcv_msg+0x371/0xe90
[  343.132564][   T31] 2 locks held by syz.3.490/8086:
[  343.137601][   T31]  #0: ffffffff8f577068 (ppp_mutex){+.+.}-{4:4}, at: ppp_ioctl+0xc2/0x2660
[  343.146245][   T31]  #1: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: ppp_ioctl+0x17cd/0x2660
[  343.155138][   T31] 1 lock held by syz.3.490/8087:
[  343.160043][   T31]  #0: ffffffff8f577068 (ppp_mutex){+.+.}-{4:4}, at: ppp_ioctl+0xc2/0x2660
[  343.168688][   T31] 2 locks held by syz.4.496/8104:
[  343.173745][   T31]  #0: ffffffff901ccf10 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[  343.181984][   T31]  #1: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: nl80211_pre_doit+0xb4/0xb10
[  343.191226][   T31] 1 lock held by syz-executor/8108:
[  343.196478][   T31]  #0: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540
[  343.205909][   T31] 1 lock held by syz-executor/8109:
[  343.211074][   T31]  #0: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540
[  343.220479][   T31] 1 lock held by syz-executor/8115:
[  343.225704][   T31]  #0: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540
[  343.235140][   T31] 1 lock held by syz-executor/8118:
[  343.240322][   T31]  #0: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540
[  343.249752][   T31] 1 lock held by syz-executor/8121:
[  343.254952][   T31]  #0: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540
[  343.264558][   T31] 1 lock held by syz-executor/8126:
[  343.269804][   T31]  #0: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540
[  343.279531][   T31] 1 lock held by syz-executor/8127:
[  343.284771][   T31]  #0: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540
[  343.294317][   T31] 1 lock held by syz-executor/8133:
[  343.299497][   T31]  #0: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540
[  343.308939][   T31] 1 lock held by syz-executor/8136:
[  343.314161][   T31]  #0: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540
[  343.323614][   T31] 1 lock held by syz-executor/8139:
[  343.328812][   T31]  #0: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540
[  343.338251][   T31] 1 lock held by syz-executor/8145:
[  343.343459][   T31]  #0: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540
[  343.352875][   T31] 1 lock held by syz-executor/8148:
[  343.358057][   T31]  #0: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540
[  343.367471][   T31] 1 lock held by syz-executor/8151:
[  343.372677][   T31]  #0: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540
[  343.382116][   T31] 1 lock held by syz-executor/8154:
[  343.387293][   T31]  #0: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540
[  343.396702][   T31] 
[  343.399013][   T31] =============================================
[  343.399013][   T31] 
[  343.407435][   T31] NMI backtrace for cpu 0
[  343.407447][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0 PREEMPT(full) 
[  343.407465][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  343.407474][   T31] Call Trace:
[  343.407479][   T31]  <TASK>
[  343.407484][   T31]  dump_stack_lvl+0x116/0x1f0
[  343.407508][   T31]  nmi_cpu_backtrace+0x27b/0x390
[  343.407526][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  343.407544][   T31]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[  343.407563][   T31]  watchdog+0xf70/0x12c0
[  343.407584][   T31]  ? __pfx_watchdog+0x10/0x10
[  343.407599][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  343.407621][   T31]  ? __kthread_parkme+0x19e/0x250
[  343.407645][   T31]  ? __pfx_watchdog+0x10/0x10
[  343.407661][   T31]  kthread+0x3c2/0x780
[  343.407683][   T31]  ? __pfx_kthread+0x10/0x10
[  343.407697][   T31]  ? __pfx_kthread+0x10/0x10
[  343.407710][   T31]  ? __pfx_kthread+0x10/0x10
[  343.407724][   T31]  ? __pfx_kthread+0x10/0x10
[  343.407737][   T31]  ? rcu_is_watching+0x12/0xc0
[  343.407757][   T31]  ? __pfx_kthread+0x10/0x10
[  343.407772][   T31]  ret_from_fork+0x45/0x80
[  343.407789][   T31]  ? __pfx_kthread+0x10/0x10
[  343.407804][   T31]  ret_from_fork_asm+0x1a/0x30
[  343.407840][   T31]  </TASK>
[  343.407846][   T31] Sending NMI from CPU 0 to CPUs 1:
[  343.539155][    C1] NMI backtrace for cpu 1
[  343.539167][    C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0 PREEMPT(full) 
[  343.539183][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  343.539190][    C1] RIP: 0010:pv_native_safe_halt+0xf/0x20
[  343.539210][    C1] Code: 35 5d 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d b3 4a 17 00 fb f4 <c3> cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90
[  343.539222][    C1] RSP: 0018:ffffc90000197df8 EFLAGS: 000002c6
[  343.539233][    C1] RAX: 000000000098145b RBX: 0000000000000001 RCX: ffffffff8b72a419
[  343.539241][    C1] RDX: 0000000000000000 RSI: ffffffff8dbef846 RDI: ffffffff8bf46540
[  343.539248][    C1] RBP: ffffed1003b5a488 R08: 0000000000000001 R09: ffffed10170a65bd
[  343.539256][    C1] R10: ffff8880b8532deb R11: 0000000000000000 R12: 0000000000000001
[  343.539263][    C1] R13: ffff88801dad2440 R14: ffffffff90864910 R15: 0000000000000000
[  343.539271][    C1] FS:  0000000000000000(0000) GS:ffff888124ab2000(0000) knlGS:0000000000000000
[  343.539285][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  343.539293][    C1] CR2: 0000563988ac20a8 CR3: 000000000e180000 CR4: 00000000003526f0
[  343.539301][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  343.539308][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  343.539315][    C1] Call Trace:
[  343.539320][    C1]  <TASK>
[  343.539324][    C1]  default_idle+0x13/0x20
[  343.539341][    C1]  default_idle_call+0x6d/0xb0
[  343.539358][    C1]  do_idle+0x391/0x510
[  343.539376][    C1]  ? __pfx_do_idle+0x10/0x10
[  343.539391][    C1]  ? trace_sched_exit_tp+0x31/0x130
[  343.539412][    C1]  cpu_startup_entry+0x4f/0x60
[  343.539427][    C1]  start_secondary+0x21d/0x2b0
[  343.539440][    C1]  ? __pfx_start_secondary+0x10/0x10
[  343.539454][    C1]  common_startup_64+0x13e/0x148
[  343.539475][    C1]  </TASK>
[  343.540223][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[  343.734521][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0 PREEMPT(full) 
[  343.746301][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  343.756326][   T31] Call Trace:
[  343.759590][   T31]  <TASK>
[  343.762494][   T31]  dump_stack_lvl+0x3d/0x1f0
[  343.767151][   T31]  panic+0x71c/0x800
[  343.771018][   T31]  ? __pfx_panic+0x10/0x10
[  343.775404][   T31]  ? preempt_schedule_thunk+0x16/0x30
[  343.780748][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  343.786715][   T31]  ? preempt_schedule_thunk+0x16/0x30
[  343.792083][   T31]  ? watchdog+0xdda/0x12c0
[  343.796480][   T31]  ? watchdog+0xdcd/0x12c0
[  343.800876][   T31]  watchdog+0xdeb/0x12c0
[  343.805099][   T31]  ? __pfx_watchdog+0x10/0x10
[  343.809759][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  343.814937][   T31]  ? __kthread_parkme+0x19e/0x250
[  343.819941][   T31]  ? __pfx_watchdog+0x10/0x10
[  343.824589][   T31]  kthread+0x3c2/0x780
[  343.828633][   T31]  ? __pfx_kthread+0x10/0x10
[  343.833195][   T31]  ? __pfx_kthread+0x10/0x10
[  343.837758][   T31]  ? __pfx_kthread+0x10/0x10
[  343.842318][   T31]  ? __pfx_kthread+0x10/0x10
[  343.846879][   T31]  ? rcu_is_watching+0x12/0xc0
[  343.851628][   T31]  ? __pfx_kthread+0x10/0x10
[  343.856198][   T31]  ret_from_fork+0x45/0x80
[  343.860591][   T31]  ? __pfx_kthread+0x10/0x10
[  343.865160][   T31]  ret_from_fork_asm+0x1a/0x30
[  343.869913][   T31]  </TASK>
[  343.873150][   T31] Kernel Offset: disabled
[  343.877459][   T31] Rebooting in 86400 seconds..