last executing test programs:

15.016393281s ago: executing program 3 (id=2345):
openat$ttyprintk(0xffffffffffffff9c, 0x0, 0x1, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040)='c:::\x00\xfdM\xab\x89\xff\xda\xc7dw2\xa1\xb2\xabuQQ\x14\x97\xc9\xfae\xc7\xa1U\xe2\xbe\"\xb9t\xa0\x0e\xfa\xdb\xf1\xa5.\xd87\xc3p\xa5l\xf8vC\xe2\xe8 \xd5-<#\x186\xe1\xbd\xc0\xc3\xb5N(vj\xa7+<:\xc4\xe00\x01\xdd \x82\x83\xed\x0e\xc4\x1d\xac\xef7\b\xd3Z5\\A\'\x18\xa2\xc3\xab\xc7`\xc3\v\xf3L\x9d[Q\x9e\x11@=\xa1\x9b\xdc\xb1\xef\xc3k<\x97L\xa0\xab\xa6\x1ce\xcd\x99\xb3m\xef\x87\xc5i^N\xbd@\x01\xc0\xb2\x88\xc3\xe2\x96T\xa3\xa5\xeb\x0f\xf2f\xb9$\xd2\x14<L\x19K\xbf\xf7\x9c\xe7 \x12+4.\xa9\xa7\xdc[\xd2\xec\xbe\x1a\xa1\x04\xd3\x9e\x92\x8a\xf7\xdb\xe7f\xdeo\xc1\xa5\xb6T\r)\x1c\xbe\x12\xd1\xef\xc2S\xcci\xc8\x0e\x00]\xe6|\xccK\xc7\r\xfa \x02\xe8\x1b\xc1\x93\xce\x02%\x86\xcb\x94K\v\xe7x\xe3\x06[/\xf9\xa8\x82\x9b\xeeF\x88\xc0f\x82\xb7T\r\x04\xbb\x10\x1d3\xa6', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
setregid(0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r5=>0x0})
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r4)
sendmsg$NL80211_CMD_VENDOR(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000011c0)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="0100000000000000000067000000080001003c00000008000300", @ANYRES32=r5, @ANYBLOB="0c00080000000000000000000800c300741300000800c40001000200adbcce349a69dd218da2a0e4f4d5562f8d70d3b07af7"], 0x40}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[], 0x40}}, 0x0)
r7 = creat(&(0x7f0000000400)='./bus\x00', 0x0)
r8 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
write$binfmt_elf64(r7, &(0x7f00000002c0)=ANY=[], 0x76)
dup3(r8, r7, 0x0)
finit_module(r8, 0x0, 0x100000000000000)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r9 = socket$vsock_stream(0x28, 0x1, 0x0)
getsockopt(r9, 0x28, 0x1, 0x0, &(0x7f0000000080))

15.012931556s ago: executing program 2 (id=2346):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(r1, 0x4038ae7a, &(0x7f0000000240)={0x0, 0xda0, 0x0, 0x0, 0xfffffffffffffff6})
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
sched_setaffinity(0x0, 0x0, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x140, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
io_uring_setup(0x3c92, 0x0)
r3 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r3, 0x7a7, &(0x7f0000000100)=0x80000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r3, 0x7a0, &(0x7f0000000140)={@my=0x1})
r4 = userfaultfd(0x801)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000000100)={0xaa, 0x29a})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r3, 0x7a8, &(0x7f00000001c0)={{@host}, @host, 0x0, 0x0, 0x2449})

13.487047441s ago: executing program 3 (id=2350):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
tgkill(0x0, 0x0, 0x11)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
getsockopt$bt_hci(0xffffffffffffffff, 0x84, 0x81, 0x0, 0x0)
mount(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000400)='ramfs\x00', 0x2000000, 0x0)
chdir(&(0x7f0000000280)='./file0\x00')
creat(&(0x7f0000000300)='./bus\x00', 0x15d)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14103e, 0x0)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x143042, 0xfe)
ftruncate(r2, 0x2008002)
sendfile(r1, r2, 0x0, 0x80000001)

12.911391737s ago: executing program 3 (id=2351):
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0xffffffffffffcfff)
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000003005740ed0b0011c3ec000000010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000010c0)={0x84, &(0x7f0000000080)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, 0x0, 0x0)
r3 = accept4(r2, 0x0, 0x0, 0x80800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{0x0}, {0x0}], 0x2}], 0x1, 0x40800)
socket$inet(0x2, 0x6, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000013c0)={'wlan1\x00'})
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)

12.062178085s ago: executing program 2 (id=2353):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
socket$inet6_sctp(0xa, 0x801, 0x84)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r0 = getpid()
syz_usb_connect(0x0, 0x2d, &(0x7f0000000180)=ANY=[@ANYBLOB="1201fb0009030320d812010079de01ec020109021b0001000003000904000001785ecc00090585020004"], 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$igmp6(0xa, 0x3, 0x2)
r3 = openat$6lowpan_enable(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$6lowpan_enable(r3, &(0x7f0000000100)='0', 0x1)

9.036282776s ago: executing program 3 (id=2362):
socket(0x11, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_connect(0x0, 0x24, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x6, 0xb, &(0x7f0000000040)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x1586}, @ringbuf_query, @jmp={0x5, 0x0, 0x3, 0x2, 0x3, 0x4, 0x8}, @ldst={0x2, 0x0, 0x2, 0x1, 0x3, 0x10, 0x4}, @map_val={0x18, 0xa, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x4}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffff8}], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r1, 0xfffff000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
quotactl$Q_QUOTAOFF(0xffffffff80000301, 0x0, 0x0, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c0000000a000000000000000000000b02000000000000000300000d000000000300000003000000000000000300000004000000030000000000000000000002000000000000"], 0x0, 0x5e, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
unshare(0x44040000)
unshare(0x62040200)

8.966055199s ago: executing program 2 (id=2363):
unshare(0x68040200)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0xfffff000)
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f0000000000)={'filter\x00', 0x2, [{}, {}]}, 0x48)
fcntl$dupfd(r0, 0x0, r0)
r1 = getpid()
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000206a932500000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000100000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
syz_usb_connect$hid(0x4, 0x36, &(0x7f0000000200)=ANY=[], 0x0)
ioctl$SNAPSHOT_ATOMIC_RESTORE(r3, 0x3304)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r2}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000340)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x70, 0x70, 0x2, [@enum64={0x7, 0x1, 0x0, 0x13, 0x1, 0xb, [{0xe, 0x3, 0xb78}]}, @enum={0x3, 0x8, 0x0, 0x6, 0x4, [{0x2, 0x8}, {0x1, 0x8}, {0xd, 0x1}, {0x1, 0x8}, {0x9, 0xd9}, {0x2, 0x212}, {0xd, 0x80000000}, {0x10, 0xc}]}, @type_tag={0xc, 0x0, 0x0, 0x12, 0x3}]}}, 0x0, 0x8a, 0x0, 0x1, 0x2, 0x0, @void, @value}, 0x28)
mincore(&(0x7f0000f0c000/0x3000)=nil, 0x0, &(0x7f0000afaf0a)=""/246)
process_vm_readv(r1, &(0x7f0000008400)=[{0x0}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, 0x0, 0x0, 0x0)

6.353613601s ago: executing program 0 (id=2367):
openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
r0 = open(&(0x7f0000022ff6)='./control\x00', 0x0, 0x0)
getdents64(r0, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB], 0x20}, 0x1, 0x0, 0x0, 0x20040005}, 0x40)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000000c0)={<r3=>0x0}, &(0x7f00000001c0)=0xc)
sched_setaffinity(r3, 0x8, &(0x7f0000000200)=0x7)
r4 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r4, 0xc004500a, &(0x7f0000000000))
ioctl$SNDCTL_DSP_CHANNELS(r4, 0xc0045006, &(0x7f0000000280)=0x6f)
r5 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
read$dsp(r5, &(0x7f00000002c0)=""/4096, 0x1000)
write$dsp(r4, &(0x7f00000012c0)="a52876830a602214f6b4e928d758f38a5a7cb4b31c4c09289e9ebb6286784ca3", 0x4000)
read(r5, &(0x7f0000001500)=""/91, 0x5b)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x19, 0x0, 0x5a)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r6, 0x0, 0x482, &(0x7f0000000040)={0x100000011, @multicast2, 0x0, 0x0, 'wrr\x00', 0x1b, 0x88, 0x4000069}, 0x2c)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)
keyctl$read(0xb, 0x0, 0x0, 0x0)

6.13592427s ago: executing program 1 (id=2369):
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r1, 0x89fd, &(0x7f0000000900)={'bond0\x00', @random="0600002000"})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0f000000040000000800000008"], 0x48)
bpf$TOKEN_CREATE(0x24, &(0x7f00000000c0)={0x0, r2}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESDEC=r0], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

6.056535332s ago: executing program 1 (id=2370):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f00000000c0), 0x82, 0x0)
r1 = openat$selinux_mls(0xffffffffffffff9c, 0x0, 0x0, 0x0)
read$msr(r1, 0x0, 0x0)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$sock_SIOCDELDLCI(r1, 0x8981, &(0x7f0000000140)={'team_slave_1\x00', 0x800})
syz_genetlink_get_family_id$gtp(0x0, 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}}, 0x0)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x42202)
write$sndseq(r5, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)
io_uring_register$IORING_REGISTER_ENABLE_RINGS(0xffffffffffffffff, 0xc, 0x700, 0x0)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x20000090)
ioctl$KDFONTOP_SET(r2, 0x4b72, &(0x7f0000000000)={0x0, 0x2, 0x21, 0x1, 0x200, &(0x7f00000003c0)="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"})
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
setsockopt$TIPC_DEST_DROPPABLE(r6, 0x10f, 0x81, &(0x7f0000000080), 0x4)
sendmmsg$inet(r6, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0}}], 0x40001b6, 0x0)
close(r7)
preadv(r0, &(0x7f0000000040)=[{&(0x7f0000000140)=""/231, 0xe7}], 0x1, 0x100001ff, 0x6)

5.884692178s ago: executing program 3 (id=2371):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r1=>0x0})
sendto$packet(r0, &(0x7f0000000100)="f257a8ea7bc273dfaeab96850806", 0x2a, 0x0, &(0x7f0000000200)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @link_local}, 0x14)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'veth1_to_bridge\x00', <r2=>0x0})
bind$packet(r0, &(0x7f0000000100)={0x11, 0x9, r2, 0x1, 0xf, 0x6, @random="6edbfac22459"}, 0x14)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
timer_settime(0x0, 0x0, 0x0, 0x0)
ioctl$IOMMU_VFIO_IOAS$SET(0xffffffffffffffff, 0x3b88, 0x0)
ioctl$IOMMU_VFIO_IOAS$GET(0xffffffffffffffff, 0x3b88, 0x0)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r4, 0x400455c8, 0x4)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f00000002c0)=0x30)
set_mempolicy(0x4005, &(0x7f0000000080)=0x7e, 0x9)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000001010000ff7f0000cc"], 0x48)

5.1991876s ago: executing program 0 (id=2372):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000bc0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$swradio(&(0x7f0000000100), 0x1, 0x2)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r3 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x3)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x4, &(0x7f00000003c0)={0x0, 0x2, 0x3, 0xffffffffffff0000})
ioctl$DMA_HEAP_IOCTL_ALLOC(r3, 0xc0184800, &(0x7f0000000100)={0x4, <r5=>r2})
mount(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0)
ioctl$DMA_BUF_SET_NAME_A(r5, 0x40086203, 0x0)
ioctl$DMA_BUF_IOCTL_SYNC(r5, 0xc0086202, &(0x7f0000000540)=0x1)
r6 = syz_open_dev$sndpcmp(&(0x7f0000001600), 0x0, 0x0)
mmap$snddsp_control(&(0x7f0000000000/0x3000)=nil, 0x1000, 0x0, 0x14012, r6, 0x83000000)
r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'macvlan0\x00', <r8=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=@newlink={0x4c, 0x10, 0x503, 0x70bd2c, 0x80000, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x14, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MODE={0x8, 0x1, 0x10}, @IFLA_MACVLAN_MACADDR_MODE={0x8, 0x3, 0x3}]}}}, @IFLA_LINK={0x8, 0x5, r8}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4001}, 0x0)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b00)={0x3, 0x8, &(0x7f0000000080)=@framed={{0x18, 0x2}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}, @call={0x85, 0x0, 0x0, 0xa0}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8000, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000400)={r9, 0x0, 0xe, 0x0, &(0x7f0000000000)="0000000000000000009dc9000000", 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

5.148092156s ago: executing program 4 (id=2373):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
socket$inet6_sctp(0xa, 0x801, 0x84)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r0 = getpid()
syz_usb_connect(0x0, 0x2d, &(0x7f0000000180)=ANY=[@ANYBLOB="1201fb0009030320d812010079de01ec020109021b0001000003000904000001785ecc00090585020004"], 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
ioctl$PPPIOCSFLAGS1(0xffffffffffffffff, 0x40047459, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$igmp6(0xa, 0x3, 0x2)
r3 = openat$6lowpan_enable(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$6lowpan_enable(r3, &(0x7f0000000100)='0', 0x1)

4.939011534s ago: executing program 0 (id=2374):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39ddd8)
open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x1)
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r0 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket(0x2a, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
lsm_set_self_attr(0x69, 0x0, 0x82, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000080), 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PBUF_RING(0xffffffffffffffff, 0x17, 0x0, 0x1)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb01001800000000000000180000001800000004000000020000000100000c02000000000000000000000d0000000000005f"], 0x0, 0x34, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000100)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, r1, 0x8, &(0x7f00000000c0)={0x0, 0x1}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_open_dev$video(&(0x7f0000000080), 0x7, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = syz_open_dev$MSR(&(0x7f0000000380), 0x0, 0x0)
read$msr(r2, &(0x7f0000032680)=""/102384, 0x18ff0)
r3 = syz_open_dev$vcsa(&(0x7f0000000040), 0x1, 0x2)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_GET_SURVEY(r6, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000300)={0x1c, r5, 0x321, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x20008000}, 0x800)
writev(r3, &(0x7f0000000c40)=[{0x0}, {&(0x7f00000005c0)="c21cfb", 0x3}, {&(0x7f00000007c0)}, {&(0x7f0000000900), 0x4000}], 0xe)

4.855568655s ago: executing program 2 (id=2375):
r0 = socket$netlink(0x10, 0x3, 0x4)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x8004)
ioctl$F2FS_IOC_PRECACHE_EXTENTS(0xffffffffffffffff, 0xf50f, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000600)={0x0, 0x3, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0) (fail_nth: 2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r2=>0xffffffffffffffff})
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'bond0\x00', <r4=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=@dellink={0x20, 0x11, 0x101, 0x0, 0x0, {0x0, 0x0, 0x0, r4}}, 0x20}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000001f00)=ANY=[@ANYBLOB="200000005e00250e00000000000000000c000080eec47c8e670527ab04000180"], 0x20}], 0x1}, 0x0)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
ioctl$UI_SET_ABSBIT(0xffffffffffffffff, 0x40045567, 0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
get_robust_list(0x0, 0x0, 0x0)
socket$packet(0x11, 0x3, 0x300)
r7 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r7, 0x0, 0x0)
recvmmsg(r7, &(0x7f0000001300)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600}}], 0x300, 0x48, 0x0)
readv(r5, &(0x7f0000001500)=[{&(0x7f0000000200)=""/73, 0x49}], 0x1)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)

4.371505646s ago: executing program 4 (id=2376):
mount_setattr(0xffffffffffffffff, 0x0, 0x8000, &(0x7f0000000300)={0x100023, 0x78}, 0x20)
mount$tmpfs(0x0, &(0x7f0000000540)='./cgroup\x00', &(0x7f0000000580), 0x0, &(0x7f0000000040)={[], [{@measure}]})
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue0\x00'})
bind$rds(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getpid()
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

2.789111183s ago: executing program 4 (id=2377):
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000580)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0)
read$msr(r0, 0x0, 0x0)

2.697763259s ago: executing program 3 (id=2378):
r0 = syz_io_uring_setup(0x16e, &(0x7f0000000000)={0x0, 0x0, 0x10100, 0x0, 0x1a8}, &(0x7f0000000080), &(0x7f0000001340))
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x13, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020786c0000000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000048000000b7030000000000008500000005000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={0x0}, 0x18)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r2 = syz_open_dev$video4linux(&(0x7f0000000980), 0x4, 0x8102)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x220000, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000002700)=""/102392, 0x18ff8)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc0000001900674c0000000000000000e0000001000000000000000000000000e000000200000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000400000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000044000500000000000000000000000000000000000000000033"], 0xfc}}, 0x0)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet6_IPV6_RTHDR(r5, 0x29, 0x39, &(0x7f0000000080)=ANY=[@ANYBLOB="00020201"], 0x18)
sendmmsg$inet6(r5, &(0x7f0000003a00)=[{{&(0x7f0000000240)={0xa, 0x4e22, 0x3, @private1, 0x9}, 0x1c, &(0x7f0000000180)=[{&(0x7f0000000600)="11", 0x1}], 0x1}}], 0x1, 0x4c040)
ioctl$VIDIOC_G_EXT_CTRLS(r2, 0xc0205647, &(0x7f0000000a00)={0x9a0000, 0x5, 0x5, 0xffffffffffffffff, 0x0, &(0x7f00000009c0)={0x9b0961, 0x6, '\x00', @value64=0x100}})
syz_80211_inject_frame(&(0x7f00000000c0)=@broadcast, &(0x7f00000004c0)=@data_frame={@msdu=@type10={{0x0, 0x2, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1}, {0x2a4}, @random="710dc01dafa5", @device_b, @device_b, {0x2, 0x2}, "", @void, @value=@ver_80211n={0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1}}, @a_msdu}, 0x1c)
io_uring_enter(r0, 0x567, 0x0, 0x0, 0x0, 0x0)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0xa, 0x10, 0xffffffffffffffff, 0xe390c000)
syz_usb_connect$uac1(0x5, 0x97, &(0x7f00000000c0)=ANY=[@ANYRESHEX=r0], 0x0)

2.638714351s ago: executing program 4 (id=2379):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS2(0xffffffffffffffff, 0xf, &(0x7f0000000b40)={0x0, 0x1, 0x0, 0x0, 0x0}, 0x20)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
syz_emit_ethernet(0x82, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f00000005c0), r1)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x15, 0xe, &(0x7f0000000640)=ANY=[@ANYBLOB="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"/4140], &(0x7f00000001c0)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xffffffffffffffc2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r2 = creat(&(0x7f0000000240)='./file0\x00', 0x0)
r3 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r3, 0x3b81, &(0x7f0000000200)={0xc, 0x0, <r4=>0x0})
ioctl$IOMMU_VFIO_IOAS$SET(r3, 0x3b88, 0x0)
ioctl$IOMMU_VFIO_SET_IOMMU(r3, 0x3b66, 0x1)
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r3, 0x3ba0, &(0x7f0000000000)={0x48, 0x2, r4, 0x0, 0x0, 0x0, <r5=>0x0})
ioctl$IOMMU_GET_HW_INFO(r3, 0x3b8a, &(0x7f0000000100)={0x28, 0x0, r5, 0x1, &(0x7f00000000c0)=""/1})
r6 = dup(r2)
write$6lowpan_enable(r6, &(0x7f0000000000)='0', 0xfffffd2c)
chmod(&(0x7f0000000140)='./file0\x00', 0x0)
open$dir(&(0x7f0000000140)='./file0\x00', 0x1, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000bdb000/0x3000)=nil, 0x3000, &(0x7f0000000040)='&\x00')

2.636017597s ago: executing program 0 (id=2380):
socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$dri(0x0, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x240)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, 0x0, 0x0, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000000)=0xfe8e, 0x12)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r7, 0x4040aea0, &(0x7f0000000280)=@x86={0x5, 0xb, 0x2, 0x0, 0x7, 0x6, 0x2, 0xd, 0x5, 0x8, 0x5, 0x6, 0x0, 0xf, 0x7, 0x9, 0x7, 0x6, 0x4, '\x00', 0x8, 0x3})
ioctl$KVM_GET_VCPU_EVENTS(r7, 0x8040ae9f, &(0x7f0000000100)=@arm64)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x8, 0x4, &(0x7f00000002c0)=@framed={{}, [@ldst={0x3, 0x0, 0x3, 0x1, 0x0, 0x20}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
sendmsg$nl_generic(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)={0x1c, 0x43, 0x9, 0xffffffff, 0x25dfdbfd, {0x1}, [@nested={0x5, 0x4, 0x0, 0x1, [@generic='3']}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40088c0}, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
open(&(0x7f0000000000)='./bus\x00', 0x60142, 0x0)
r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r9, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})

2.355162605s ago: executing program 4 (id=2381):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'sha512-avx\x00'}, 0x58)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r1, 0x8933, &(0x7f0000000180)={'wg1\x00', <r2=>0x0})
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000240)=<r3=>0x0)
sendmsg$nl_xfrm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=@newae={0x124, 0x1e, 0x210, 0x70bd28, 0x25dfdbfe, {{@in6=@private2, 0x4d5, 0xa, 0x6c}, @in6=@empty, 0x7fffffff, 0x3503}, [@sa={0xe4, 0x6, {{@in6=@empty, @in6=@mcast2, 0x4e21, 0x0, 0x4e20, 0x3, 0x2, 0x120, 0x0, 0xff, r2, r3}, {@in=@rand_addr=0x64010102, 0x4d2, 0x2b}, @in=@remote, {0x4, 0x1, 0x4, 0x5, 0x5, 0x5, 0x81, 0xfffffffffffffffd}, {0x8, 0x62, 0xc04, 0x2}, {0x2, 0x9, 0x7}, 0x70bd27, 0x34ff, 0x2, 0x1, 0x3, 0x90}}]}, 0x124}}, 0x0)
r4 = accept4(r0, 0x0, 0x0, 0x0)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000100)="d744784ca67c0398246d848e6df22054de2bd8ca3da64dfdea7d8eb74ffe057d7469066c6ca034a2677ce0c1c25e2b2a825d677e0fbac312a7da165cd5db94fa38cdf3a3f3f93b912a7515e0b1e441a3be644a296bcc765e7adc9ddb4d14376a69cbfcd2ddd156ba432349e96debeda26ee8914c28f4", 0x76}, {&(0x7f00000003c0)="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", 0x13a}], 0x2}, 0x0)
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x200000b, 0x8c4b815a5465c2b2, 0xffffffffffffffff, 0x4b544000)

1.863835078s ago: executing program 2 (id=2382):
r0 = gettid()
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket(0x400000000010, 0x3, 0x0)
socket$unix(0x1, 0x1, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x60, 0x2c, 0xd27, 0x30bd29, 0x2, {0x0, 0x0, 0x0, 0x0, {0x0, 0xffe0}, {}, {0x7, 0xe}}, [@filter_kind_options=@f_basic={{0xa}, {0xfffffd14, 0x2, [@TCA_BASIC_EMATCHES={0x2c, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x20, 0x2, 0x0, 0x1, [@TCF_EM_U32={0x1c, 0x1, 0x0, 0x0, {{0xff8b, 0x3, 0xa}, {0x9, 0x6, 0x1, 0x800}}}]}, @TCA_EMATCH_TREE_HDR={0x8}]}]}}]}, 0x60}}, 0x0)
ioperm(0x0, 0x2, 0x7e)
quotactl_fd$Q_GETQUOTA(0xffffffffffffffff, 0xffffffff80000700, 0xffffffffffffffff, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r1, 0x89f0, &(0x7f0000000240)={'gretap0\x00', 0x0})
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@func_proto={0x0, 0x0, 0x0, 0x2, 0x2}, @array={0x0, 0x0, 0x0, 0xa, 0x3, {0x0, 0x2000000}}]}}, &(0x7f00000000c0)=""/196, 0x3e, 0xc4, 0x1, 0x0, 0x0, @void, @value}, 0x20)
ioperm(0x7f, 0x5, 0x84)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2c41, 0x0)
flock(r4, 0x5)
r5 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
flock(r5, 0x2)
preadv(r4, &(0x7f0000001500)=[{&(0x7f0000000100)=""/165, 0xa5}, {&(0x7f00000002c0)=""/153, 0x99}, {&(0x7f0000000380)=""/66, 0x42}, {&(0x7f0000000400)=""/218, 0xda}, {&(0x7f0000000200)=""/39, 0x27}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x6, 0xe, 0x8)
r6 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x88, 0x1403, 0xc23, 0x70bd2a, 0x25dfdbff, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'virt_wifi0\x00'}}, {{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'wg2\x00'}}, {{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'wlan0\x00'}}]}, 0x88}, 0x1, 0x0, 0x0, 0x400c080}, 0x0)

1.863300395s ago: executing program 4 (id=2383):
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1})
ioctl$UFFDIO_CONTINUE(r0, 0xc020aa08, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x4)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x2, 0x3d, 0x0, 0x0, @random="48164953c468"}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
pipe(&(0x7f0000000140))
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x3, &(0x7f0000000080)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0xfffffffb)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)

1.807039303s ago: executing program 1 (id=2384):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000bc0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$swradio(&(0x7f0000000100), 0x1, 0x2)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r3 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x3)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x4, &(0x7f00000003c0)={0x0, 0x2, 0x3, 0xffffffffffff0000})
ioctl$DMA_HEAP_IOCTL_ALLOC(r3, 0xc0184800, &(0x7f0000000100)={0x4, <r5=>r2})
mount(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0)
ioctl$DMA_BUF_SET_NAME_A(r5, 0x40086203, 0x0)
ioctl$DMA_BUF_IOCTL_SYNC(r5, 0xc0086202, &(0x7f0000000540)=0x1)
r6 = syz_open_dev$sndpcmp(&(0x7f0000001600), 0x0, 0x0)
mmap$snddsp_control(&(0x7f0000000000/0x3000)=nil, 0x1000, 0x0, 0x14012, r6, 0x83000000)
r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'macvlan0\x00', <r8=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=@newlink={0x4c, 0x10, 0x503, 0x70bd2c, 0x80000, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x14, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MODE={0x8, 0x1, 0x10}, @IFLA_MACVLAN_MACADDR_MODE={0x8, 0x3, 0x3}]}}}, @IFLA_LINK={0x8, 0x5, r8}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4001}, 0x0)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b00)={0x3, 0x8, &(0x7f0000000080)=@framed={{0x18, 0x2}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}, @call={0x85, 0x0, 0x0, 0xa0}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8000, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000400)={r9, 0x0, 0xe, 0x0, &(0x7f0000000000)="0000000000000000009dc9000000", 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.693203139s ago: executing program 1 (id=2385):
r0 = socket$netlink(0x10, 0x3, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000870000/0x3000)=nil, 0x3000, 0x5, 0x1010, 0xffffffffffffffff, 0x0)
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
r1 = userfaultfd(0x801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1})
munmap(&(0x7f00003fe000/0xc00000)=nil, 0xc00000)
mremap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2000, 0x3, &(0x7f00007fe000/0x800000)=nil)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r3, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r4, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newlink={0x44, 0x10, 0xffffff1f, 0x70bd28, 0x25dfdbfe, {0x0, 0x0, 0x0, r4, 0x200}, [@IFLA_EVENT={0x8, 0x2c, 0x266bd934}, @IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x4}}}, @IFLA_EVENT={0x8, 0x2c, 0x7}]}, 0x44}, 0x1, 0x0, 0x0, 0x10}, 0x80)

1.556925068s ago: executing program 1 (id=2386):
open(&(0x7f0000000100)='./file0\x00', 0x80ff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x3)
ioctl$VT_RESIZEX(r0, 0x560a, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB, @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f0000006300)={0x2020, 0x0, <r2=>0x0, <r3=>0x0, <r4=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000000040)={0x50, 0x0, r2, {0x7, 0x1f, 0x0, 0x10408}}, 0x50)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0/file0\x00', &(0x7f0000000200), 0x68000, 0x0)
syz_fuse_handle_req(r1, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r1, &(0x7f0000008340)="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", 0x2000, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={0x78, 0x0, 0x6, {0x0, 0x0, 0x0, {0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3966, 0x3, 0x8000, 0x0, r3, r4, 0xe, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x80101, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
write$tcp_congestion(r5, &(0x7f00000000c0)='lp\x00', 0xfffffdef)
dup2(r5, r1)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000300)=ANY=[@ANYBLOB="a0000000", @ANYRES16=r8, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32, @ANYBLOB="8300330080800000ffffffffffff080211000000ffffffffffff00001e000d81000000000000000000006ac1000602020202020203010404060000041007000504094000b02a01013c040908050c2d1a0200127f00000000000000070000000b00000000080104000007720603030303030371"], 0xa0}}, 0x20040000)

1.058851745s ago: executing program 0 (id=2387):
r0 = syz_open_dev$vim2m(0x0, 0x80, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{}, 0x0, &(0x7f00000002c0)}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000044c0), 0xc0000, 0x0)
read$FUSE(r4, 0x0, 0x0)
mkdir(0x0, 0x29)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000001440), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_RINGS_SET(r5, 0x0, 0x80)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x2c, 0x10, 0x801, 0x7000000, 0x0, {}, [@IFLA_XDP={0x4}, @IFLA_GROUP={0x8}]}, 0x2c}}, 0x0)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000200)={0x49, 0x2, 0x0, "bc3e099e0000f47847596a00523a00008e7d54800000003000", 0x38414262})

209.953411ms ago: executing program 1 (id=2388):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
r1 = socket(0x11, 0x800000003, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
getsockopt(r2, 0x200000000114, 0x2716, 0x0, &(0x7f0000000000))
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000600))
getsockopt$inet_sctp_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f0000000400)=@sack_info={0x0, 0x4, 0x28cb}, &(0x7f0000000640)=0xc)
ioctl$sock_netdev_private(r0, 0x89ff, &(0x7f0000000040)="fc72e0a7aeaaefc5f447cd8ce5e3ec0c3827a2c2d76e4461ab43adb8dbebda825124538370dac6")
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0000885486030000e7332401000006800000", @ANYBLOB, @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000010000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="000000000000000085000000950000009500000000000000cd4ceb1902986642543f219205f15f3e63"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r4, 0xfffff000, 0x0, 0x0, 0x0, 0x0, 0xdc0, 0x7000000, 0x40, 0x0, 0x0, 0x0, 0x7, 0x0, 0x400}, 0x50)
sendmsg$NL80211_CMD_SET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x20044080}, 0x8000000)
r5 = msgget$private(0x0, 0x0)
msgsnd(r5, 0x0, 0x8, 0x0)
getrlimit(0x1, &(0x7f0000000280))
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
syz_open_dev$radio(0x0, 0x2, 0x2)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
r7 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
acct(&(0x7f0000000140)='./file0\x00')
r8 = socket(0x1d, 0x2, 0x6)
setsockopt$ALG_SET_AEAD_AUTHSIZE(r8, 0x6a, 0x5, 0x20000000, 0x48008)
r9 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), r7)
sendmsg$ETHTOOL_MSG_RINGS_SET(r8, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r9, @ANYBLOB="000229bd7000fbdbd9001000000008000900a4010000"], 0x1c}, 0x1, 0x0, 0x0, 0x480c0}, 0x14)

165.389459ms ago: executing program 2 (id=2389):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
r1 = socket(0x11, 0x800000003, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
getsockopt(r2, 0x200000000114, 0x2716, 0x0, &(0x7f0000000000))
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000600))
getsockopt$inet_sctp_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f0000000400)=@sack_info={0x0, 0x4, 0x28cb}, &(0x7f0000000640)=0xc)
ioctl$sock_netdev_private(r0, 0x89ff, &(0x7f0000000040)="fc72e0a7aeaaefc5f447cd8ce5e3ec0c3827a2c2d76e4461ab43adb8dbebda825124538370dac6")
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0000885486030000e7332401000006800000", @ANYBLOB, @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000010000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="000000000000000085000000950000009500000000000000cd4ceb1902986642543f219205f15f3e63"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r4, 0xfffff000, 0x0, 0x0, 0x0, 0x0, 0xdc0, 0x7000000, 0x40, 0x0, 0x0, 0x0, 0x7, 0x0, 0x400}, 0x50)
sendmsg$NL80211_CMD_SET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x20044080}, 0x8000000)
r5 = msgget$private(0x0, 0x0)
msgsnd(r5, 0x0, 0x8, 0x0)
getrlimit(0x1, &(0x7f0000000280))
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
syz_open_dev$radio(0x0, 0x2, 0x2)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
r7 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
acct(&(0x7f0000000140)='./file0\x00')
r8 = socket(0x1d, 0x2, 0x6)
setsockopt$ALG_SET_AEAD_AUTHSIZE(r8, 0x6a, 0x5, 0x20000000, 0x48008)
r9 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), r7)
sendmsg$ETHTOOL_MSG_RINGS_SET(r8, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r9, @ANYBLOB="000229bd7000fbdbd9001000000008000900a4010000"], 0x1c}, 0x1, 0x0, 0x0, 0x480c0}, 0x14)

0s ago: executing program 0 (id=2390):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f00000014c0)={0x0, 0x2}, 0x8)
r1 = timerfd_create(0x0, 0x0)
timerfd_settime(r1, 0x3, &(0x7f00000000c0)={{0x0, 0x989680}, {0x77359400}}, 0x0)
r2 = timerfd_create(0x0, 0x0)
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000000200))
timerfd_settime(r2, 0x3, &(0x7f0000000440)={{0x0, 0x989680}}, 0x0)
clock_adjtime(0x0, &(0x7f0000000480)={0xd54, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000})
sendto$inet6(r0, &(0x7f0000000040)="aa", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev, 0x4}, 0x1c)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f00000006c0)=@newsa={0x138, 0x10, 0x1, 0x0, 0x0, {{@in=@local, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {@in6=@mcast2, 0x0, 0x3c}, @in=@dev, {}, {}, {}, 0x0, 0x0, 0x2}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}}, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000000380), 0x8)

kernel console output (not intermixed with test programs):

1560 would solve the problem.
[  485.118710][T11582] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  485.129206][ T5825] Bluetooth: hci4: unexpected event for opcode 0x200b
[  485.149071][T11582] netlink: 'syz.1.1637': attribute type 10 has an invalid length.
[  485.157330][T11582] netlink: 2 bytes leftover after parsing attributes in process `syz.1.1637'.
[  485.166586][T11582] team0: entered promiscuous mode
[  485.171591][T11582] team_slave_0: entered promiscuous mode
[  485.177386][T11582] team_slave_1: entered promiscuous mode
[  485.183872][T11582] 8021q: adding VLAN 0 to HW filter on device team0
[  485.190528][T11582] batman_adv: batadv0: Interface activated: team0
[  485.196983][T11582] batman_adv: batadv0: Interface deactivated: team0
[  485.203618][T11582] batman_adv: batadv0: Removing interface: team0
[  485.212462][T11582] bridge0: port 3(team0) entered blocking state
[  485.219354][T11582] bridge0: port 3(team0) entered disabled state
[  485.225804][T11582] team0: entered allmulticast mode
[  485.230934][T11582] team_slave_0: entered allmulticast mode
[  485.236703][T11582] team_slave_1: entered allmulticast mode
[  485.245580][T11582] bridge0: port 3(team0) entered blocking state
[  485.251911][T11582] bridge0: port 3(team0) entered forwarding state
[  485.262956][   T29] audit: type=1400 audit(1738728540.275:1201): avc:  denied  { append } for  pid=11581 comm="syz.1.1637" name="fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  486.132912][   T29] audit: type=1400 audit(1738728540.275:1202): avc:  denied  { map } for  pid=11581 comm="syz.1.1637" path="/dev/fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  486.157343][   T29] audit: type=1400 audit(1738728540.275:1203): avc:  denied  { write execute } for  pid=11581 comm="syz.1.1637" path="/dev/fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  486.403043][   T29] audit: type=1400 audit(1738728541.425:1204): avc:  denied  { read write } for  pid=5831 comm="syz-executor" name="loop1" dev="devtmpfs" ino=648 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  486.464978][   T29] audit: type=1400 audit(1738728541.425:1205): avc:  denied  { open } for  pid=5831 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=648 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  486.551653][   T29] audit: type=1400 audit(1738728541.425:1206): avc:  denied  { ioctl } for  pid=5831 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=648 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  486.593337][   T29] audit: type=1400 audit(1738728541.445:1207): avc:  denied  { write } for  pid=11599 comm="syz.2.1642" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  486.617894][   T29] audit: type=1400 audit(1738728541.465:1208): avc:  denied  { create } for  pid=11605 comm="syz.1.1644" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  486.674553][   T29] audit: type=1400 audit(1738728541.465:1209): avc:  denied  { create } for  pid=11605 comm="syz.1.1644" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  486.925137][   T29] audit: type=1400 audit(1738728541.465:1210): avc:  denied  { execmem } for  pid=11605 comm="syz.1.1644" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  487.168180][   T29] audit: type=1400 audit(1738728541.525:1211): avc:  denied  { append } for  pid=5176 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=9 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  487.219704][T11611] netlink: 'syz.2.1645': attribute type 7 has an invalid length.
[  487.245386][T11611] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  487.254791][T11611] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  487.263573][T11611] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  487.272295][T11611] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  487.286385][T11605] ALSA: mixer_oss: invalid OSS volume 'C'
[  488.509326][T11634] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1651'.
[  488.890860][T11638] netlink: 'syz.4.1652': attribute type 64 has an invalid length.
[  488.905046][T11638] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1652'.
[  490.972829][ T5923] usb 3-1: new high-speed USB device number 45 using dummy_hcd
[  491.148846][ T5923] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  491.216757][   T29] kauditd_printk_skb: 71 callbacks suppressed
[  491.216795][   T29] audit: type=1400 audit(1738728546.225:1283): avc:  denied  { read } for  pid=11675 comm="syz.0.1665" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  491.324274][ T5923] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  491.356710][ T5923] usb 3-1: New USB device found, idVendor=18d1, idProduct=503c, bcdDevice= 0.00
[  491.373947][ T5923] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  491.386479][   T29] audit: type=1400 audit(1738728546.225:1284): avc:  denied  { open } for  pid=11675 comm="syz.0.1665" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  491.431137][ T5923] usb 3-1: config 0 descriptor??
[  491.451208][   T29] audit: type=1400 audit(1738728546.285:1285): avc:  denied  { ioctl } for  pid=11675 comm="syz.0.1665" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  491.479302][   T29] audit: type=1400 audit(1738728546.445:1286): avc:  denied  { read } for  pid=11678 comm="syz.3.1667" name="sg0" dev="devtmpfs" ino=735 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  491.661031][   T29] audit: type=1400 audit(1738728546.445:1287): avc:  denied  { open } for  pid=11678 comm="syz.3.1667" path="/dev/sg0" dev="devtmpfs" ino=735 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  491.685913][   T29] audit: type=1400 audit(1738728546.455:1288): avc:  denied  { create } for  pid=11678 comm="syz.3.1667" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  491.705631][   T29] audit: type=1400 audit(1738728546.455:1289): avc:  denied  { accept } for  pid=11678 comm="syz.3.1667" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  491.725886][   T29] audit: type=1400 audit(1738728546.455:1290): avc:  denied  { bind } for  pid=11678 comm="syz.3.1667" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  491.745390][   T29] audit: type=1400 audit(1738728546.455:1291): avc:  denied  { setopt } for  pid=11678 comm="syz.3.1667" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  492.248329][   T29] audit: type=1400 audit(1738728546.455:1292): avc:  denied  { create } for  pid=11678 comm="syz.3.1667" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  494.133341][ T7260] usb 4-1: new high-speed USB device number 33 using dummy_hcd
[  494.292623][ T7260] usb 4-1: Using ep0 maxpacket: 16
[  494.302883][ T7260] usb 4-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  494.320865][ T7260] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  494.343844][ T7260] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  494.369572][ T7260] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  494.384315][ T7260] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  494.404588][ T5923] usb 3-1: string descriptor 0 read error: -71
[  494.414098][ T7260] usb 4-1: Product: syz
[  494.418419][ T7260] usb 4-1: Manufacturer: syz
[  494.425169][ T5923] usbhid 3-1:0.0: can't add hid device: -71
[  494.436888][ T7260] usb 4-1: SerialNumber: syz
[  494.441598][ T5923] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  494.468865][ T5923] usb 3-1: USB disconnect, device number 45
[  494.747747][T11730] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  494.866981][ T7260] usb 4-1: 0:2 : does not exist
[  496.175960][ T7260] usb 4-1: USB disconnect, device number 33
[  496.662678][   T29] kauditd_printk_skb: 16 callbacks suppressed
[  496.662694][   T29] audit: type=1400 audit(1738728551.665:1309): avc:  denied  { unlink } for  pid=11743 comm="syz.2.1691" name="#22" dev="tmpfs" ino=1755 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  497.041569][   T29] audit: type=1400 audit(1738728551.675:1310): avc:  denied  { mount } for  pid=11743 comm="syz.2.1691" name="/" dev="overlay" ino=1751 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  497.543701][   T29] audit: type=1400 audit(1738728552.565:1311): avc:  denied  { unmount } for  pid=5816 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  498.442450][   T29] audit: type=1400 audit(1738728553.435:1312): avc:  denied  { read write } for  pid=11760 comm="syz.1.1698" name="nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  498.571542][   T29] audit: type=1400 audit(1738728553.435:1313): avc:  denied  { open } for  pid=11760 comm="syz.1.1698" path="/dev/nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  499.253512][   T29] audit: type=1400 audit(1738728554.275:1314): avc:  denied  { write } for  pid=11774 comm="syz.2.1697" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  499.616520][   T29] audit: type=1400 audit(1738728554.605:1315): avc:  denied  { ioctl } for  pid=11770 comm="syz.1.1701" path="anon_inode:[userfaultfd]" dev="anon_inodefs" ino=36842 ioctlcmd=0xaa3f scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  499.654182][   T29] audit: type=1400 audit(1738728554.625:1316): avc:  denied  { create } for  pid=11781 comm="syz.0.1704" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  499.679602][   T29] audit: type=1400 audit(1738728554.625:1317): avc:  denied  { write } for  pid=11781 comm="syz.0.1704" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  499.702257][   T29] audit: type=1400 audit(1738728554.625:1318): avc:  denied  { bind } for  pid=11781 comm="syz.0.1704" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  500.044932][T11792] FAULT_INJECTION: forcing a failure.
[  500.044932][T11792] name failslab, interval 1, probability 0, space 0, times 0
[  500.057815][T11792] CPU: 0 UID: 0 PID: 11792 Comm: syz.2.1705 Not tainted 6.14.0-rc1-syzkaller-00026-gd009de7d5428 #0
[  500.057835][T11792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  500.057844][T11792] Call Trace:
[  500.057849][T11792]  <TASK>
[  500.057855][T11792]  dump_stack_lvl+0x16c/0x1f0
[  500.057877][T11792]  should_fail_ex+0x50a/0x650
[  500.057901][T11792]  ? fs_reclaim_acquire+0xae/0x150
[  500.057926][T11792]  ? tomoyo_encode2+0x100/0x3e0
[  500.057947][T11792]  should_failslab+0xc2/0x120
[  500.057965][T11792]  __kmalloc_noprof+0xcb/0x510
[  500.057987][T11792]  tomoyo_encode2+0x100/0x3e0
[  500.058007][T11792]  ? lockdep_hardirqs_on+0x7c/0x110
[  500.058026][T11792]  tomoyo_encode+0x29/0x50
[  500.058047][T11792]  tomoyo_mount_acl+0x145/0x880
[  500.058067][T11792]  ? hlock_class+0x4e/0x130
[  500.058084][T11792]  ? __lock_acquire+0x15a9/0x3c40
[  500.058110][T11792]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  500.058132][T11792]  ? lockdep_hardirqs_on+0x7c/0x110
[  500.058149][T11792]  ? __pfx___lock_acquire+0x10/0x10
[  500.058187][T11792]  ? trace_lock_acquire+0x14e/0x1f0
[  500.058206][T11792]  ? tomoyo_mount_permission+0x149/0x420
[  500.058228][T11792]  ? lock_acquire+0x2f/0xb0
[  500.058248][T11792]  ? tomoyo_mount_permission+0x149/0x420
[  500.058272][T11792]  tomoyo_mount_permission+0x16e/0x420
[  500.058293][T11792]  ? tomoyo_mount_permission+0x149/0x420
[  500.058315][T11792]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  500.058346][T11792]  ? get_current_fs_domain+0x184/0x1f0
[  500.058365][T11792]  security_sb_mount+0x9b/0x260
[  500.058386][T11792]  path_mount+0x129/0x1f10
[  500.058404][T11792]  ? kmem_cache_free+0x2e2/0x4d0
[  500.058419][T11792]  ? __pfx_path_mount+0x10/0x10
[  500.058440][T11792]  ? putname+0x13c/0x180
[  500.058461][T11792]  __x64_sys_mount+0x28f/0x310
[  500.058480][T11792]  ? __pfx___x64_sys_mount+0x10/0x10
[  500.058505][T11792]  do_syscall_64+0xcd/0x250
[  500.058524][T11792]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  500.058546][T11792] RIP: 0033:0x7f5880b8cda9
[  500.058558][T11792] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  500.058573][T11792] RSP: 002b:00007f58819aa038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  500.058588][T11792] RAX: ffffffffffffffda RBX: 00007f5880da6080 RCX: 00007f5880b8cda9
[  500.058598][T11792] RDX: 0000000020000300 RSI: 0000000020000280 RDI: 0000000020000240
[  500.058608][T11792] RBP: 00007f58819aa090 R08: 0000000000000000 R09: 0000000000000000
[  500.058617][T11792] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000001
[  500.058626][T11792] R13: 0000000000000000 R14: 00007f5880da6080 R15: 00007ffe63496438
[  500.058649][T11792]  </TASK>
[  501.043786][T11810] IPVS: sync thread started: state = MASTER, mcast_ifn = lo, syncid = 4229120, id = 0
[  501.170853][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[  501.192753][    T9] usb 2-1: new high-speed USB device number 39 using dummy_hcd
[  501.356735][    T9] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  501.398155][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  501.485625][T11820] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  501.581078][    T9] usb 2-1: config 0 descriptor??
[  501.679655][   T29] kauditd_printk_skb: 9 callbacks suppressed
[  501.679670][   T29] audit: type=1400 audit(1738728556.705:1328): avc:  denied  { create } for  pid=11823 comm="syz.2.1717" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  501.737231][   T29] audit: type=1400 audit(1738728556.735:1329): avc:  denied  { ioctl } for  pid=11823 comm="syz.2.1717" path="socket:[38146]" dev="sockfs" ino=38146 ioctlcmd=0x890b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  501.768236][   T29] audit: type=1400 audit(1738728556.745:1330): avc:  denied  { create } for  pid=11823 comm="syz.2.1717" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  501.816466][   T29] audit: type=1400 audit(1738728556.745:1331): avc:  denied  { open } for  pid=11823 comm="syz.2.1717" path="/dev/ttyq9" dev="devtmpfs" ino=384 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1
[  501.818174][    T9] usb 2-1: string descriptor 0 read error: -71
[  501.900995][   T29] audit: type=1400 audit(1738728556.795:1332): avc:  denied  { getopt } for  pid=11823 comm="syz.2.1717" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  501.903040][    T9] cp210x 2-1:0.0: cp210x converter detected
[  501.950177][   T29] audit: type=1400 audit(1738728556.835:1333): avc:  denied  { create } for  pid=11808 comm="syz.1.1711" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  501.962849][    T9] cp210x 2-1:0.0: failed to get vendor val 0x370b size 1: -71
[  501.992648][    T9] cp210x 2-1:0.0: querying part number failed
[  502.083047][    T9] usb 2-1: cp210x converter now attached to ttyUSB0
[  502.106566][    T9] usb 2-1: USB disconnect, device number 39
[  502.126933][    T9] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  502.133966][   T29] audit: type=1400 audit(1738728556.835:1334): avc:  denied  { bind } for  pid=11808 comm="syz.1.1711" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  502.154729][   T29] audit: type=1400 audit(1738728556.835:1335): avc:  denied  { setopt } for  pid=11808 comm="syz.1.1711" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  502.170199][    T9] cp210x 2-1:0.0: device disconnected
[  502.174186][    C1] vkms_vblank_simulate: vblank timer overrun
[  502.178628][   T29] audit: type=1400 audit(1738728556.835:1336): avc:  denied  { accept } for  pid=11808 comm="syz.1.1711" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  502.205843][   T29] audit: type=1400 audit(1738728556.835:1337): avc:  denied  { write } for  pid=11808 comm="syz.1.1711" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  502.225193][    C1] vkms_vblank_simulate: vblank timer overrun
[  502.755530][ T7260] usb 4-1: new high-speed USB device number 34 using dummy_hcd
[  502.860645][ T5825] Bluetooth: Unexpected continuation frame (len 100)
[  502.928096][ T7260] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  502.949682][ T7260] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  502.970267][ T7260] usb 4-1: New USB device found, idVendor=18d1, idProduct=503c, bcdDevice= 0.00
[  502.980194][ T7260] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  502.990693][ T7260] usb 4-1: config 0 descriptor??
[  503.187707][T11859] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  505.570079][ T7260] usb 4-1: string descriptor 0 read error: -71
[  505.580463][ T7260] usbhid 4-1:0.0: can't add hid device: -71
[  505.595872][ T7260] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  505.619550][ T7260] usb 4-1: USB disconnect, device number 34
[  505.699484][T11890] netlink: 10 bytes leftover after parsing attributes in process `syz.3.1736'.
[  506.042698][ T7260] usb 4-1: new high-speed USB device number 35 using dummy_hcd
[  506.126520][ T5825] Bluetooth: hci4: unexpected event for opcode 0x0c1c
[  506.192665][ T7260] usb 4-1: Using ep0 maxpacket: 16
[  506.199467][ T7260] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  506.210963][ T7260] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  506.221118][ T7260] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  506.234152][ T7260] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  506.243555][ T7260] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  506.259763][ T7260] usb 4-1: config 0 descriptor??
[  506.908857][T11890] netlink: 10 bytes leftover after parsing attributes in process `syz.3.1736'.
[  507.038607][   T29] kauditd_printk_skb: 18 callbacks suppressed
[  507.038686][   T29] audit: type=1400 audit(1738728562.055:1356): avc:  denied  { execute_no_trans } for  pid=11926 comm="syz.2.1750" path="/341/file0" dev="tmpfs" ino=1840 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  507.297927][ T7260] usbhid 4-1:0.0: can't add hid device: -71
[  507.310491][ T7260] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  507.319869][ T7260] usb 4-1: USB disconnect, device number 35
[  507.389296][   T29] audit: type=1400 audit(1738728562.405:1357): avc:  denied  { create } for  pid=11933 comm="syz.0.1751" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  507.483689][T11939] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  507.607657][T11945] devpts: called with bogus options
[  508.189679][T11950] IPVS: sync thread started: state = MASTER, mcast_ifn = lo, syncid = 4194304, id = 0
[  508.361581][   T29] audit: type=1400 audit(1738728563.385:1358): avc:  denied  { watch } for  pid=11954 comm="syz.2.1760" path="/344" dev="tmpfs" ino=1852 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  509.252020][   T29] audit: type=1400 audit(1738728563.385:1359): avc:  denied  { watch_sb watch_reads } for  pid=11954 comm="syz.2.1760" path="/344" dev="tmpfs" ino=1852 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  509.278138][   T29] audit: type=1400 audit(1738728563.805:1360): avc:  denied  { mount } for  pid=11956 comm="syz.3.1759" name="/" dev="configfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  509.358161][   T29] audit: type=1400 audit(1738728563.815:1361): avc:  denied  { accept } for  pid=11956 comm="syz.3.1759" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[  509.445035][   T29] audit: type=1400 audit(1738728563.875:1362): avc:  denied  { listen } for  pid=11954 comm="syz.2.1760" laddr=172.20.20.62 lport=39748 faddr=172.20.20.187 fport=20002 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  509.622661][    T9] usb 2-1: new high-speed USB device number 40 using dummy_hcd
[  509.641110][   T29] audit: type=1400 audit(1738728564.665:1363): avc:  denied  { name_bind } for  pid=11966 comm="syz.4.1762" src=20004 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[  509.772758][   T29] audit: type=1400 audit(1738728564.795:1364): avc:  denied  { accept } for  pid=11968 comm="syz.2.1764" lport=49803 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  509.798086][    T9] usb 2-1: Using ep0 maxpacket: 8
[  509.807095][    T9] usb 2-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c
[  509.818594][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  509.832337][    T9] usb 2-1: Product: syz
[  509.838804][    T9] usb 2-1: Manufacturer: syz
[  509.851928][    T9] usb 2-1: SerialNumber: syz
[  509.956540][    T9] usb 2-1: config 0 descriptor??
[  509.966745][    T9] gspca_main: se401-2.14.0 probing 047d:5003
[  510.278260][   T29] audit: type=1400 audit(1738728565.295:1365): avc:  denied  { ioctl } for  pid=11978 comm="syz.3.1766" path="/dev/sg0" dev="devtmpfs" ino=735 ioctlcmd=0x2285 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  510.446891][    T9] gspca_se401: ExtraFeatures: 110
[  510.609090][    T9] input: se401 as /devices/platform/dummy_hcd.1/usb2/2-1/input/input36
[  510.656806][T11985] netlink: 'syz.4.1768': attribute type 39 has an invalid length.
[  510.795964][T11994] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  510.803565][T11994] batman_adv: batadv0: Removing interface: batadv_slave_0
[  510.815290][    T9] usb 2-1: USB disconnect, device number 40
[  510.816373][T11994] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  510.828748][T11994] batman_adv: batadv0: Removing interface: batadv_slave_1
[  510.858894][T11995] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1770'.
[  513.648015][   T29] kauditd_printk_skb: 1 callbacks suppressed
[  513.648030][   T29] audit: type=1400 audit(1738728568.675:1367): avc:  denied  { setopt } for  pid=12018 comm="syz.1.1780" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  513.783222][T12025] can0: slcan on ptm0.
[  513.833120][   T29] audit: type=1400 audit(1738728568.867:1368): avc:  denied  { create } for  pid=12013 comm="syz.4.1779" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  513.956286][T12019] warn_alloc: 1 callbacks suppressed
[  513.956302][T12019] syz.1.1780: vmalloc error: size 268435456, failed to allocated page array size 524288, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  514.030730][   T29] audit: type=1400 audit(1738728568.907:1369): avc:  denied  { map } for  pid=12013 comm="syz.4.1779" path="socket:[38538]" dev="sockfs" ino=38538 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  514.054568][   T29] audit: type=1400 audit(1738728568.907:1370): avc:  denied  { read } for  pid=12013 comm="syz.4.1779" path="socket:[38538]" dev="sockfs" ino=38538 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  514.077995][    C0] vkms_vblank_simulate: vblank timer overrun
[  514.229866][T12019] CPU: 0 UID: 0 PID: 12019 Comm: syz.1.1780 Not tainted 6.14.0-rc1-syzkaller-00026-gd009de7d5428 #0
[  514.229899][T12019] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  514.229910][T12019] Call Trace:
[  514.229916][T12019]  <TASK>
[  514.229923][T12019]  dump_stack_lvl+0x16c/0x1f0
[  514.229948][T12019]  warn_alloc+0x24d/0x3a0
[  514.229968][T12019]  ? __pfx_warn_alloc+0x10/0x10
[  514.229995][T12019]  ? __get_vm_area_node+0x1b0/0x2f0
[  514.230019][T12019]  ? __get_vm_area_node+0x1dc/0x2f0
[  514.230050][T12019]  __vmalloc_node_range_noprof+0x1102/0x1530
[  514.230085][T12019]  ? xt_counters_alloc+0x4c/0x70
[  514.230111][T12019]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  514.230146][T12019]  ? translate_table+0x8b5/0x1c60
[  514.230174][T12019]  ? xt_counters_alloc+0x4c/0x70
[  514.230195][T12019]  vzalloc_noprof+0x6b/0x90
[  514.230221][T12019]  ? xt_counters_alloc+0x4c/0x70
[  514.230240][T12019]  xt_counters_alloc+0x4c/0x70
[  514.230260][T12019]  __do_replace+0x99/0x9e0
[  514.230285][T12019]  ? __pfx_translate_table+0x10/0x10
[  514.230310][T12019]  ? _copy_from_user+0x59/0xd0
[  514.230339][T12019]  ? copy_from_sockptr_offset+0xee/0x1a0
[  514.230364][T12019]  ? __might_fault+0xe3/0x190
[  514.230385][T12019]  ? __pfx___do_replace+0x10/0x10
[  514.230417][T12019]  do_arpt_set_ctl+0xb67/0xf50
[  514.230444][T12019]  ? find_held_lock+0x2d/0x110
[  514.230466][T12019]  ? __pfx_do_arpt_set_ctl+0x10/0x10
[  514.230496][T12019]  ? __pfx_lock_release+0x10/0x10
[  514.230519][T12019]  ? rcu_is_watching+0x12/0xc0
[  514.230545][T12019]  ? __mutex_unlock_slowpath+0x164/0x6a0
[  514.230566][T12019]  ? sockopt_release_sock+0x52/0x60
[  514.230590][T12019]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  514.230611][T12019]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  514.230642][T12019]  ? nf_sockopt_find.constprop.0+0x221/0x290
[  514.230665][T12019]  nf_setsockopt+0x8a/0xf0
[  514.230686][T12019]  ip_setsockopt+0xcb/0xf0
[  514.230712][T12019]  udp_setsockopt+0x7d/0xd0
[  514.230732][T12019]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  514.230759][T12019]  do_sock_setsockopt+0x222/0x480
[  514.230785][T12019]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  514.230810][T12019]  ? lock_acquire+0x2f/0xb0
[  514.230846][T12019]  __sys_setsockopt+0x1a0/0x230
[  514.230870][T12019]  __x64_sys_setsockopt+0xbd/0x160
[  514.230894][T12019]  ? do_syscall_64+0x91/0x250
[  514.230911][T12019]  ? lockdep_hardirqs_on+0x7c/0x110
[  514.230926][T12019]  do_syscall_64+0xcd/0x250
[  514.230946][T12019]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  514.230970][T12019] RIP: 0033:0x7f43ca98cda9
[  514.230984][T12019] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  514.231001][T12019] RSP: 002b:00007f43cb7b2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  514.231019][T12019] RAX: ffffffffffffffda RBX: 00007f43caba5fa0 RCX: 00007f43ca98cda9
[  514.231030][T12019] RDX: 0000000000000060 RSI: 0000000000000000 RDI: 0000000000000005
[  514.231040][T12019] RBP: 00007f43caa0e2a0 R08: 0000000000000068 R09: 0000000000000000
[  514.231050][T12019] R10: 0000000020000180 R11: 0000000000000246 R12: 0000000000000000
[  514.231060][T12019] R13: 0000000000000000 R14: 00007f43caba5fa0 R15: 00007ffd06afe8b8
[  514.231083][T12019]  </TASK>
[  514.231172][T12019] Mem-Info:
[  514.556061][   T29] audit: type=1400 audit(1738728569.537:1371): avc:  denied  { mounton } for  pid=12037 comm="syz.0.1784" path="/342/file0" dev="tmpfs" ino=1873 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  514.578811][    C0] vkms_vblank_simulate: vblank timer overrun
[  514.616021][T12019] active_anon:10893 inactive_anon:2 isolated_anon:0
[  514.616021][T12019]  active_file:8575 inactive_file:12604 isolated_file:0
[  514.616021][T12019]  unevictable:768 dirty:390 writeback:0
[  514.616021][T12019]  slab_reclaimable:12129 slab_unreclaimable:102432
[  514.616021][T12019]  mapped:36513 shmem:8200 pagetables:872
[  514.616021][T12019]  sec_pagetables:0 bounce:0
[  514.616021][T12019]  kernel_misc_reclaimable:0
[  514.616021][T12019]  free:1334675 free_pcp:1076 free_cma:0
[  514.669504][T12019] Node 0 active_anon:43672kB inactive_anon:8kB active_file:34300kB inactive_file:50412kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:146052kB dirty:1560kB writeback:0kB shmem:31264kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10836kB pagetables:3488kB sec_pagetables:0kB all_unreclaimable? no
[  514.775455][T12031] can0 (unregistered): slcan off ptm0.
[  514.806203][T12046] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  514.935034][T12019] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  514.977981][T12019] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  514.992631][   T29] audit: type=1400 audit(1738728570.007:1372): avc:  denied  { write } for  pid=12047 comm="syz.2.1788" path="socket:[37741]" dev="sockfs" ino=37741 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  515.028871][    C0] vkms_vblank_simulate: vblank timer overrun
[  515.119769][T12019] lowmem_reserve[]: 0 2487 2487 0 0
[  515.133623][T12019] Node 0 DMA32 free:1417068kB boost:0kB min:34152kB low:42688kB high:51224kB reserved_highatomic:0KB active_anon:23568kB inactive_anon:8kB active_file:34300kB inactive_file:57728kB unevictable:1536kB writepending:6860kB present:3129332kB managed:2547440kB mlocked:0kB bounce:0kB free_pcp:10600kB local_pcp:10180kB free_cma:0kB
[  515.164204][    C0] vkms_vblank_simulate: vblank timer overrun
[  515.208579][ T5825] Bluetooth: hci0: unexpected event for opcode 0x2040
[  515.225794][   T29] audit: type=1400 audit(1738728570.257:1373): avc:  denied  { write } for  pid=12053 comm="syz.2.1790" name="001" dev="devtmpfs" ino=727 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  515.248658][    C0] vkms_vblank_simulate: vblank timer overrun
[  515.255042][T12019] lowmem_reserve[]: 0 0 0 0 0
[  515.260374][T12019] Node 0 Normal free:0kB boost:0kB min:0kB low:0kB high:0kB reserved_highatomic:0KB active_anon:4kB inactive_anon:0kB active_file:0kB inactive_file:84kB unevictable:0kB writepending:0kB present:1048580kB managed:108kB mlocked:0kB bounce:0kB free_pcp:20kB local_pcp:12kB free_cma:0kB
[  515.320221][T12019] lowmem_reserve[]: 0 0 0 0 0
[  515.325586][T12019] Node 1 Normal free:3911960kB boost:0kB min:55748kB low:69684kB high:83620kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:32kB local_pcp:32kB free_cma:0kB
[  515.357701][T12019] lowmem_reserve[]: 0 0 0 0 0
[  515.367820][T12019] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  515.418749][   T29] audit: type=1400 audit(1738728570.257:1374): avc:  denied  { map } for  pid=12053 comm="syz.2.1790" path="/dev/bus/usb/003/001" dev="devtmpfs" ino=727 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  515.452714][T12019] Node 0 DMA32: 3*4kB (E) 3*8kB (UME) 524*16kB (ME) 358*32kB (UME) 173*64kB (UME) 275*128kB (UME) 207*256kB (UM) 182*512kB (UME) 98*1024kB (UME) 22*2048kB (UME) 260*4096kB (M) = 1422692kB
[  515.515986][T12019] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  515.589472][   T29] audit: type=1400 audit(1738728570.327:1375): avc:  denied  { read } for  pid=12053 comm="syz.2.1790" name="rtc0" dev="devtmpfs" ino=921 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  515.612546][    C0] vkms_vblank_simulate: vblank timer overrun
[  515.622732][T12019] Node 1 Normal: 176*4kB (UME) 65*8kB (UME) 37*16kB (UME) 196*32kB (UME) 88*64kB (UME) 27*128kB (UME) 10*256kB (UME) 10*512kB (UM) 4*1024kB (UME) 2*2048kB (UE) 947*4096kB (M) = 3911960kB
[  515.642765][   T29] audit: type=1400 audit(1738728570.327:1376): avc:  denied  { open } for  pid=12053 comm="syz.2.1790" path="/dev/rtc0" dev="devtmpfs" ino=921 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  515.662711][ T5924] usb 4-1: new high-speed USB device number 36 using dummy_hcd
[  515.666208][    C0] vkms_vblank_simulate: vblank timer overrun
[  515.680210][T12019] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  515.690154][T12019] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  515.706988][T12019] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  515.748035][T12019] Node 1 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  516.187265][T12019] 30602 total pagecache pages
[  516.202647][T12019] 2 pages in swap cache
[  516.207017][T12019] Free swap  = 124768kB
[  516.211261][T12019] Total swap = 124996kB
[  516.215832][T12019] 2097051 pages RAM
[  516.273515][T12019] 0 pages HighMem/MovableOnly
[  516.288456][T12019] 428533 pages reserved
[  516.379665][T12019] 0 pages cma reserved
[  516.424033][ T5924] usb 4-1: device descriptor read/64, error -71
[  517.402673][ T5924] usb 4-1: new high-speed USB device number 37 using dummy_hcd
[  517.532709][ T5924] usb 4-1: device descriptor read/64, error -71
[  517.739749][ T5924] usb usb4-port1: attempt power cycle
[  518.362642][ T5924] usb 4-1: new high-speed USB device number 38 using dummy_hcd
[  518.393145][ T5924] usb 4-1: device descriptor read/8, error -71
[  519.702169][T12103] FAULT_INJECTION: forcing a failure.
[  519.702169][T12103] name failslab, interval 1, probability 0, space 0, times 0
[  519.715489][T12103] CPU: 0 UID: 0 PID: 12103 Comm: syz.1.1805 Not tainted 6.14.0-rc1-syzkaller-00026-gd009de7d5428 #0
[  519.715509][T12103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  519.715519][T12103] Call Trace:
[  519.715524][T12103]  <TASK>
[  519.715531][T12103]  dump_stack_lvl+0x16c/0x1f0
[  519.715554][T12103]  should_fail_ex+0x50a/0x650
[  519.715578][T12103]  ? fs_reclaim_acquire+0xae/0x150
[  519.715604][T12103]  should_failslab+0xc2/0x120
[  519.715628][T12103]  __kmalloc_node_noprof+0xd1/0x510
[  519.715647][T12103]  ? __pfx___debug_object_init+0x10/0x10
[  519.715664][T12103]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  519.715693][T12103]  __kvmalloc_node_noprof+0xad/0x1a0
[  519.715719][T12103]  bucket_table_alloc.isra.0+0x86/0x460
[  519.715746][T12103]  rhashtable_init_noprof+0x41a/0x7e0
[  519.715768][T12103]  ? __init_waitqueue_head+0xca/0x150
[  519.715790][T12103]  rhltable_init_noprof+0x20/0x60
[  519.715814][T12103]  sta_info_init+0x27/0x160
[  519.715831][T12103]  ieee80211_alloc_hw_nm+0x840/0x2260
[  519.715850][T12103]  ? __local_bh_enable_ip+0xa4/0x120
[  519.715878][T12103]  mac80211_hwsim_new_radio+0x1d6/0x54e0
[  519.715911][T12103]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  519.715940][T12103]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  519.715969][T12103]  hwsim_new_radio_nl+0xb42/0x12b0
[  519.715992][T12103]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  519.716020][T12103]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  519.716044][T12103]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  519.716073][T12103]  genl_family_rcv_msg_doit+0x202/0x2f0
[  519.716097][T12103]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  519.716127][T12103]  ? bpf_lsm_capable+0x9/0x10
[  519.716146][T12103]  ? security_capable+0x7e/0x260
[  519.716166][T12103]  ? ns_capable+0xd7/0x110
[  519.716192][T12103]  genl_rcv_msg+0x565/0x800
[  519.716216][T12103]  ? __pfx_genl_rcv_msg+0x10/0x10
[  519.716239][T12103]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  519.716262][T12103]  ? __pfx___lock_acquire+0x10/0x10
[  519.716290][T12103]  netlink_rcv_skb+0x16b/0x440
[  519.716309][T12103]  ? __pfx_genl_rcv_msg+0x10/0x10
[  519.716333][T12103]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  519.716363][T12103]  ? down_read+0xc9/0x330
[  519.716382][T12103]  ? __pfx_down_read+0x10/0x10
[  519.716402][T12103]  ? netlink_deliver_tap+0x1ae/0xd30
[  519.716425][T12103]  genl_rcv+0x28/0x40
[  519.716444][T12103]  netlink_unicast+0x53c/0x7f0
[  519.716466][T12103]  ? __pfx_netlink_unicast+0x10/0x10
[  519.716493][T12103]  netlink_sendmsg+0x8b8/0xd70
[  519.716516][T12103]  ? __pfx_netlink_sendmsg+0x10/0x10
[  519.716546][T12103]  ____sys_sendmsg+0xaaf/0xc90
[  519.716571][T12103]  ? copy_msghdr_from_user+0x10b/0x160
[  519.716593][T12103]  ? __pfx_____sys_sendmsg+0x10/0x10
[  519.716636][T12103]  ___sys_sendmsg+0x135/0x1e0
[  519.716659][T12103]  ? __pfx____sys_sendmsg+0x10/0x10
[  519.716691][T12103]  ? __pfx_lock_release+0x10/0x10
[  519.716712][T12103]  ? trace_lock_acquire+0x14e/0x1f0
[  519.716740][T12103]  ? __fget_files+0x206/0x3a0
[  519.716762][T12103]  __sys_sendmsg+0x16e/0x220
[  519.716784][T12103]  ? __pfx___sys_sendmsg+0x10/0x10
[  519.716822][T12103]  do_syscall_64+0xcd/0x250
[  519.716843][T12103]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  519.716865][T12103] RIP: 0033:0x7f43ca98cda9
[  519.716878][T12103] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  519.716893][T12103] RSP: 002b:00007f43cb7b2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  519.716909][T12103] RAX: ffffffffffffffda RBX: 00007f43caba5fa0 RCX: 00007f43ca98cda9
[  519.716920][T12103] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000006
[  519.716929][T12103] RBP: 00007f43cb7b2090 R08: 0000000000000000 R09: 0000000000000000
[  519.716938][T12103] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  519.716948][T12103] R13: 0000000000000000 R14: 00007f43caba5fa0 R15: 00007ffd06afe8b8
[  519.716970][T12103]  </TASK>
[  520.578597][   T29] kauditd_printk_skb: 2 callbacks suppressed
[  520.578612][   T29] audit: type=1400 audit(1738728575.587:1379): avc:  denied  { setopt } for  pid=12107 comm="syz.1.1807" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  520.651285][   T29] audit: type=1400 audit(1738728575.677:1380): avc:  denied  { bind } for  pid=12107 comm="syz.1.1807" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  521.347643][   T29] audit: type=1400 audit(1738728576.287:1381): avc:  denied  { bind } for  pid=12111 comm="syz.3.1808" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  521.367116][    C1] vkms_vblank_simulate: vblank timer overrun
[  521.434034][   T29] audit: type=1400 audit(1738728576.377:1382): avc:  denied  { name_bind } for  pid=12111 comm="syz.3.1808" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1
[  521.458216][   T29] audit: type=1400 audit(1738728576.377:1383): avc:  denied  { node_bind } for  pid=12111 comm="syz.3.1808" saddr=100.1.1.0 src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1
[  521.516439][   T29] audit: type=1400 audit(1738728576.377:1384): avc:  denied  { getopt } for  pid=12111 comm="syz.3.1808" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  521.572752][   T29] audit: type=1400 audit(1738728576.377:1385): avc:  denied  { connect } for  pid=12111 comm="syz.3.1808" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  522.430527][   T29] audit: type=1400 audit(1738728577.457:1386): avc:  denied  { ioctl } for  pid=12129 comm="syz.1.1815" path="socket:[38920]" dev="sockfs" ino=38920 ioctlcmd=0x894b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  522.477777][   T29] audit: type=1400 audit(1738728577.507:1387): avc:  denied  { lock } for  pid=12129 comm="syz.1.1815" path="socket:[38920]" dev="sockfs" ino=38920 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  522.540753][   T29] audit: type=1400 audit(1738728577.507:1388): avc:  denied  { read } for  pid=12129 comm="syz.1.1815" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  522.885695][T12150] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=12150 comm=syz.3.1819
[  522.950933][T12150] xt_CT: You must specify a L4 protocol and not use inversions on it
[  523.426073][T12153] devpts: called with bogus options
[  524.361804][T12139] Process accounting resumed
[  526.850606][T12202] devpts: called with bogus options
[  528.514595][   T29] kauditd_printk_skb: 15 callbacks suppressed
[  528.514609][   T29] audit: type=1400 audit(1738728583.547:1404): avc:  denied  { create } for  pid=12219 comm="syz.2.1838" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  528.892973][   T29] audit: type=1400 audit(1738728583.597:1405): avc:  denied  { read } for  pid=12220 comm="syz.3.1839" name="nvram" dev="devtmpfs" ino=623 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  528.916271][   T29] audit: type=1400 audit(1738728583.597:1406): avc:  denied  { open } for  pid=12220 comm="syz.3.1839" path="/dev/nvram" dev="devtmpfs" ino=623 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  528.939817][    C0] vkms_vblank_simulate: vblank timer overrun
[  529.012682][   T29] audit: type=1400 audit(1738728583.597:1407): avc:  denied  { ioctl } for  pid=12220 comm="syz.3.1839" path="/dev/nvram" dev="devtmpfs" ino=623 ioctlcmd=0xaf12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  529.798944][T12234] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  530.555895][T12249] devpts: called with bogus options
[  530.823090][T12236] mmap: syz.4.1843 (12236): VmData 25841664 exceed data ulimit 5. Update limits or use boot option ignore_rlimit_data.
[  533.749078][   T29] audit: type=1400 audit(1738728588.567:1408): avc:  denied  { ioctl } for  pid=12262 comm="syz.1.1851" path="socket:[40148]" dev="sockfs" ino=40148 ioctlcmd=0x89e8 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  534.314369][T12276] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  534.329900][   T29] audit: type=1400 audit(1738728589.357:1409): avc:  denied  { mount } for  pid=12274 comm="syz.3.1855" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  534.918757][   T29] audit: type=1400 audit(1738728589.947:1410): avc:  denied  { unmount } for  pid=5822 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  535.118803][T12282] devpts: called with bogus options
[  535.526245][T12287] nfs: Unknown parameter ''
[  537.128197][T12298] devpts: called with bogus options
[  538.129430][   T29] audit: type=1400 audit(1738728593.157:1411): avc:  denied  { mount } for  pid=12303 comm="syz.3.1864" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  539.090317][   T29] audit: type=1400 audit(1738728594.117:1412): avc:  denied  { create } for  pid=12303 comm="syz.3.1864" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  539.168883][T12313] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1865'.
[  539.882861][ T5924] usb 3-1: new high-speed USB device number 46 using dummy_hcd
[  540.004270][   T29] audit: type=1400 audit(1738728595.027:1413): avc:  denied  { bind } for  pid=12303 comm="syz.3.1864" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  540.182663][ T5924] usb 3-1: Using ep0 maxpacket: 8
[  540.213251][ T5924] usb 3-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  540.227255][ T5924] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  540.227441][ T5924] usb 3-1: Product: syz
[  540.227529][ T5924] usb 3-1: Manufacturer: syz
[  540.227650][ T5924] usb 3-1: SerialNumber: syz
[  540.286201][ T5924] usb 3-1: config 0 descriptor??
[  541.362783][ T5924] dvb_usb_rtl28xxu 3-1:0.0: chip type detection failed -110
[  541.362850][ T5924] dvb_usb_rtl28xxu 3-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -110
[  541.370292][T12311] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  541.370418][T12311] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  542.623865][ T5817] usb 3-1: USB disconnect, device number 46
[  542.902616][T12353] devpts: called with bogus options
[  543.371204][T12358] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=7 sclass=netlink_route_socket pid=12358 comm=syz.0.1877
[  543.586975][   T29] audit: type=1400 audit(1738728598.607:1414): avc:  denied  { write } for  pid=12360 comm="syz.3.1878" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  543.639586][   T29] audit: type=1400 audit(1738728598.667:1415): avc:  denied  { read } for  pid=12364 comm="syz.2.1880" path="socket:[39380]" dev="sockfs" ino=39380 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  543.668208][T12367] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  543.694252][    C1] vkms_vblank_simulate: vblank timer overrun
[  543.701033][T12368] Driver unsupported XDP return value 0 on prog  (id 288) dev N/A, expect packet loss!
[  543.709412][T12367] CIFS: Unable to determine destination address
[  543.725780][T12367] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1879'.
[  543.734964][   T29] audit: type=1400 audit(1738728598.757:1416): avc:  denied  { nlmsg_write } for  pid=12366 comm="syz.4.1879" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  543.755608][    C1] vkms_vblank_simulate: vblank timer overrun
[  543.898628][T12373] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1881'.
[  543.918835][T12373] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1881'.
[  548.863778][ T7260] usb 2-1: new high-speed USB device number 41 using dummy_hcd
[  549.156853][ T7260] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  549.221613][ T7260] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  549.249947][ T7260] usb 2-1: New USB device found, idVendor=18d1, idProduct=503c, bcdDevice= 0.00
[  549.285563][T12411] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1892'.
[  549.298225][ T7260] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  549.325065][ T7260] usb 2-1: config 0 descriptor??
[  549.364011][T12413] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1893'.
[  549.394695][T12414] siw: device registration error -23
[  549.688608][   T29] audit: type=1400 audit(1738728604.717:1417): avc:  denied  { create } for  pid=12418 comm="syz.4.1894" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[  549.709093][    C0] vkms_vblank_simulate: vblank timer overrun
[  549.725595][T12422] netlink: 'syz.4.1894': attribute type 10 has an invalid length.
[  549.736812][ T5825] Bluetooth: hci1: unexpected event for opcode 0x200b
[  549.745526][T12422] netlink: 'syz.4.1894': attribute type 10 has an invalid length.
[  549.753821][T12422] netlink: 2 bytes leftover after parsing attributes in process `syz.4.1894'.
[  549.762809][T12422] team0: entered promiscuous mode
[  549.767810][T12422] team_slave_0: entered promiscuous mode
[  549.773534][T12422] team_slave_1: entered promiscuous mode
[  549.780078][T12422] 8021q: adding VLAN 0 to HW filter on device team0
[  549.787160][T12422] bridge0: port 3(team0) entered blocking state
[  549.793444][T12422] bridge0: port 3(team0) entered disabled state
[  549.799766][T12422] team0: entered allmulticast mode
[  549.804901][T12422] team_slave_0: entered allmulticast mode
[  549.810642][T12422] team_slave_1: entered allmulticast mode
[  549.817714][T12422] bridge0: port 3(team0) entered blocking state
[  549.823996][T12422] bridge0: port 3(team0) entered forwarding state
[  549.886029][   T29] audit: type=1400 audit(1738728604.757:1418): avc:  denied  { create } for  pid=12418 comm="syz.4.1894" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  549.917052][   T29] audit: type=1400 audit(1738728604.827:1419): avc:  denied  { bind } for  pid=12418 comm="syz.4.1894" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  550.034621][T12431] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1897'.
[  550.043968][T12431] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1897'.
[  550.544530][T12425] devpts: called with bogus options
[  552.189054][   T29] audit: type=1400 audit(1738728607.217:1420): avc:  denied  { bind } for  pid=12442 comm="syz.0.1901" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  552.226865][   T29] audit: type=1400 audit(1738728607.237:1421): avc:  denied  { listen } for  pid=12442 comm="syz.0.1901" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  552.769699][   T29] audit: type=1400 audit(1738728607.247:1422): avc:  denied  { accept } for  pid=12442 comm="syz.0.1901" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  552.856013][T12443] tipc: Started in network mode
[  552.860935][T12443] tipc: Node identity ac1414bb, cluster identity 4711
[  552.868691][T12443] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  552.900835][   T29] audit: type=1400 audit(1738728607.767:1423): avc:  denied  { connect } for  pid=12442 comm="syz.0.1901" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  552.944655][ T7260] usb 2-1: string descriptor 0 read error: -71
[  552.959414][ T7260] usbhid 2-1:0.0: can't add hid device: -71
[  552.985701][ T7260] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  553.019876][ T7260] usb 2-1: USB disconnect, device number 41
[  553.102058][   T29] audit: type=1400 audit(1738728607.817:1424): avc:  denied  { write } for  pid=12442 comm="syz.0.1901" path="socket:[39637]" dev="sockfs" ino=39637 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  553.126440][   T29] audit: type=1400 audit(1738728607.957:1425): avc:  denied  { getopt } for  pid=12442 comm="syz.0.1901" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  553.560811][T12459] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1905'.
[  554.009990][   T29] audit: type=1400 audit(1738728608.877:1426): avc:  denied  { bind } for  pid=12464 comm="syz.1.1906" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  556.085537][T12482] netlink: 'syz.2.1909': attribute type 8 has an invalid length.
[  556.095707][T12482] Invalid ELF header magic: != ELF
[  556.104517][   T29] audit: type=1400 audit(1738728611.127:1427): avc:  denied  { module_load } for  pid=12468 comm="syz.2.1909" path="/378/bus" dev="tmpfs" ino=2035 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=system permissive=1
[  556.346127][   T29] audit: type=1400 audit(1738728611.137:1428): avc:  denied  { getopt } for  pid=12468 comm="syz.2.1909" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  556.367301][T12477] ceph: No mds server is up or the cluster is laggy
[  556.375567][ T4844] libceph: connect (1)[c::]:6789 error -22
[  556.381575][ T4844] libceph: mon0 (1)[c::]:6789 connect error
[  556.441857][   T29] audit: type=1400 audit(1738728611.467:1429): avc:  denied  { read } for  pid=12464 comm="syz.1.1906" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  557.467369][T12497] devpts: called with bogus options
[  558.874194][   T29] audit: type=1400 audit(1738728613.907:1430): avc:  denied  { create } for  pid=12521 comm="syz.2.1923" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  558.894282][   T29] audit: type=1400 audit(1738728613.917:1431): avc:  denied  { bind } for  pid=12521 comm="syz.2.1923" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  558.941166][   T29] audit: type=1400 audit(1738728613.967:1432): avc:  denied  { ioctl } for  pid=12521 comm="syz.2.1923" path="socket:[40780]" dev="sockfs" ino=40780 ioctlcmd=0x89e7 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  559.472637][ T5924] usb 4-1: new high-speed USB device number 40 using dummy_hcd
[  559.545003][ T4844] usb 2-1: new high-speed USB device number 42 using dummy_hcd
[  559.626745][ T5924] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  559.639736][ T5924] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  559.654585][ T5924] usb 4-1: config 0 descriptor??
[  559.661235][ T5924] cp210x 4-1:0.0: cp210x converter detected
[  559.703458][ T4844] usb 2-1: Using ep0 maxpacket: 16
[  559.715870][ T4844] usb 2-1: config 0 has an invalid interface number: 8 but max is 0
[  559.724131][ T4844] usb 2-1: config 0 has an invalid descriptor of length 208, skipping remainder of the config
[  559.727508][   T29] audit: type=1400 audit(1738728614.757:1433): avc:  denied  { name_bind } for  pid=12533 comm="syz.4.1928" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[  559.734434][ T4844] usb 2-1: config 0 has no interface number 0
[  559.734470][ T4844] usb 2-1: config 0 interface 8 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  559.735700][ T4844] usb 2-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  559.822689][ T4844] usb 2-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  559.830822][ T4844] usb 2-1: Product: syz
[  559.842592][ T4844] usb 2-1: SerialNumber: syz
[  559.999699][ T5924] cp210x 4-1:0.0: failed to get vendor val 0x370b size 1: -121
[  560.009114][ T4844] usb 2-1: config 0 descriptor??
[  560.015958][ T5924] cp210x 4-1:0.0: querying part number failed
[  560.024130][ T5924] usb 4-1: cp210x converter now attached to ttyUSB0
[  560.430775][T12518] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  560.505309][T12518] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  560.843818][T12550] netlink: 'syz.2.1932': attribute type 1 has an invalid length.
[  561.409938][ T4844] usbhid 2-1:0.8: couldn't find an input interrupt endpoint
[  561.419534][ T4844] usb 2-1: USB disconnect, device number 42
[  561.691017][T12554] devpts: called with bogus options
[  562.762872][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[  562.791228][ T5817] usb 4-1: USB disconnect, device number 40
[  562.805617][ T5817] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  562.822906][ T5817] cp210x 4-1:0.0: device disconnected
[  563.898180][T12577] overlay: filesystem on ./bus not supported as upperdir
[  564.148924][   T29] audit: type=1400 audit(1738728619.167:1434): avc:  denied  { write } for  pid=12568 comm="syz.0.1939" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[  565.051730][ T5924] usb 2-1: new high-speed USB device number 43 using dummy_hcd
[  565.113900][T12589] overlayfs: failed to decode file handle (len=6, type=248, flags=0, err=-61)
[  565.209989][ T5924] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  565.233149][ T5924] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  565.252807][ T5924] usb 2-1: New USB device found, idVendor=18d1, idProduct=503c, bcdDevice= 0.00
[  565.276298][ T5924] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  565.327776][ T5924] usb 2-1: config 0 descriptor??
[  565.603704][T12600] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1948'.
[  565.879956][ T5924] usb 2-1: string descriptor 0 read error: -71
[  565.890176][ T5924] usbhid 2-1:0.0: can't add hid device: -71
[  565.896300][ T5924] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  565.905305][ T5924] usb 2-1: USB disconnect, device number 43
[  565.998525][T12607] devpts: called with bogus options
[  566.318248][T12609] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1950'.
[  567.121531][   T29] audit: type=1400 audit(1738728622.147:1435): avc:  denied  { create } for  pid=12617 comm="syz.2.1953" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  567.127685][T12617] delete_channel: no stack
[  567.141092][    C0] vkms_vblank_simulate: vblank timer overrun
[  567.158793][   T29] audit: type=1400 audit(1738728622.157:1436): avc:  denied  { setopt } for  pid=12617 comm="syz.2.1953" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  569.219334][ T5817] usb 2-1: new high-speed USB device number 44 using dummy_hcd
[  570.308822][ T5817] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  570.320139][ T5817] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  570.441725][ T5817] usb 2-1: New USB device found, idVendor=18d1, idProduct=503c, bcdDevice= 0.00
[  570.541429][ T5817] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  570.563474][ T5817] usb 2-1: config 0 descriptor??
[  571.111660][T12664] devpts: called with bogus options
[  571.175570][ T5817] usb 2-1: string descriptor 0 read error: -71
[  571.198330][ T5817] usbhid 2-1:0.0: can't add hid device: -71
[  571.208821][ T5817] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  571.239847][ T5817] usb 2-1: USB disconnect, device number 44
[  572.077227][T12676] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1968'.
[  572.086317][T12676] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1968'.
[  573.977113][T12699] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1978'.
[  574.058107][T12704] siw: device registration error -23
[  575.672443][   T29] audit: type=1400 audit(1738728630.697:1437): avc:  denied  { setattr } for  pid=12713 comm="syz.1.1981" name="tty1" dev="devtmpfs" ino=20 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tty_device_t tclass=chr_file permissive=1
[  575.695510][    C0] vkms_vblank_simulate: vblank timer overrun
[  575.903085][   T29] audit: type=1800 audit(1738728630.927:1438): pid=12718 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.2.1980" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  576.005886][T12718] wlan0 speed is unknown, defaulting to 1000
[  576.013566][T12718] wlan0 speed is unknown, defaulting to 1000
[  576.601554][T12712] fuse: Unknown parameter 'fd0x0000000000000006'
[  576.616231][   T29] audit: type=1400 audit(1738728631.647:1439): avc:  denied  { write } for  pid=12722 comm="syz.0.1983" name="card1" dev="devtmpfs" ino=628 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  576.863847][   T29] audit: type=1400 audit(1738728631.877:1440): avc:  denied  { write } for  pid=12722 comm="syz.0.1983" name="mcfilter6" dev="proc" ino=4026533498 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  577.622165][T12738] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12738 comm=syz.3.1988
[  577.649966][T12742] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  577.651989][   T29] audit: type=1400 audit(1738728632.677:1441): avc:  denied  { connect } for  pid=12739 comm="syz.1.1989" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  577.679532][    C0] vkms_vblank_simulate: vblank timer overrun
[  577.704043][   T29] audit: type=1400 audit(1738728632.737:1442): avc:  denied  { write } for  pid=12739 comm="syz.1.1989" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  578.375814][   T29] audit: type=1400 audit(1738728633.407:1443): avc:  denied  { create } for  pid=12756 comm="syz.2.1995" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[  579.454516][T12767] fuse: Bad value for 'user_id'
[  579.459409][T12767] fuse: Bad value for 'user_id'
[  579.662628][    T9] usb 4-1: new high-speed USB device number 41 using dummy_hcd
[  579.884340][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  579.895424][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  579.906013][    T9] usb 4-1: New USB device found, idVendor=18d1, idProduct=503c, bcdDevice= 0.00
[  579.923075][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  579.934372][    T9] usb 4-1: config 0 descriptor??
[  581.780152][T12796] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12796 comm=syz.2.2007
[  582.241815][    T9] usb 4-1: string descriptor 0 read error: -71
[  582.578116][T12810] netlink: 'syz.2.2009': attribute type 8 has an invalid length.
[  582.595499][T12810] Invalid ELF header magic: != ELF
[  582.976335][    T9] usbhid 4-1:0.0: can't add hid device: -71
[  582.982905][    T9] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  583.062067][    T9] usb 4-1: USB disconnect, device number 41
[  583.071850][T12809] ceph: No mds server is up or the cluster is laggy
[  583.343323][ T5829] libceph: connect (1)[c::]:6789 error -22
[  583.359573][ T5829] libceph: mon0 (1)[c::]:6789 connect error
[  584.337971][T12827] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2012'.
[  584.347291][T12827] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2012'.
[  585.011765][ T5825] Bluetooth: hci3: unexpected event for opcode 0x1005
[  585.900261][   T29] audit: type=1400 audit(1738728640.367:1444): avc:  denied  { connect } for  pid=12830 comm="syz.0.2015" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  586.191123][   T29] audit: type=1400 audit(1738728640.447:1445): avc:  denied  { setopt } for  pid=12830 comm="syz.0.2015" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  586.252895][   T29] audit: type=1400 audit(1738728640.527:1446): avc:  denied  { write } for  pid=12830 comm="syz.0.2015" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  586.263864][T12848] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12848 comm=syz.2.2019
[  586.326806][   T29] audit: type=1400 audit(1738728641.357:1447): avc:  denied  { write } for  pid=12851 comm="syz.3.2021" name="mice" dev="devtmpfs" ino=916 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  586.357899][   T29] audit: type=1400 audit(1738728641.357:1448): avc:  denied  { open } for  pid=12851 comm="syz.3.2021" path="/dev/input/mice" dev="devtmpfs" ino=916 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  586.381893][    C0] vkms_vblank_simulate: vblank timer overrun
[  586.392357][   T29] audit: type=1400 audit(1738728641.357:1449): avc:  denied  { ioctl } for  pid=12851 comm="syz.3.2021" path="/dev/input/mice" dev="devtmpfs" ino=916 ioctlcmd=0x5411 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  586.417835][    C0] vkms_vblank_simulate: vblank timer overrun
[  586.489937][T12857] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2020'.
[  586.499269][T12857] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2020'.
[  586.930513][T12852] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2021'.
[  587.228258][T12865] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2025'.
[  587.283053][    T9] usb 4-1: new high-speed USB device number 42 using dummy_hcd
[  587.447744][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  587.460200][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  587.470092][    T9] usb 4-1: New USB device found, idVendor=18d1, idProduct=503c, bcdDevice= 0.00
[  587.481768][   T29] audit: type=1400 audit(1738728642.507:1450): avc:  denied  { mount } for  pid=12872 comm="syz.0.2029" name="/" dev="devtmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  587.504545][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  587.654869][T12877] netlink: 'syz.1.2028': attribute type 8 has an invalid length.
[  587.685053][T12877] Invalid ELF header magic: != ELF
[  588.082179][    T9] usb 4-1: config 0 descriptor??
[  588.119608][T12879] overlayfs: failed to clone upperpath
[  588.167228][T12881] netlink: 48 bytes leftover after parsing attributes in process `syz.4.2031'.
[  588.177439][T12874] ceph: No mds server is up or the cluster is laggy
[  588.232699][T12882] siw: device registration error -23
[  588.342612][   T29] audit: type=1400 audit(1738728643.367:1451): avc:  denied  { mount } for  pid=12887 comm="syz.1.2033" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  588.350801][T12888] overlayfs: failed to resolve './file1': -2
[  588.547158][   T29] audit: type=1400 audit(1738728643.577:1452): avc:  denied  { unmount } for  pid=5831 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  588.955038][T12895] vlan2: entered allmulticast mode
[  589.222849][T12902] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2037'.
[  589.232293][T12902] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2037'.
[  589.685075][T12909] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2039'.
[  589.710315][   T29] audit: type=1400 audit(1738728644.737:1453): avc:  denied  { getopt } for  pid=12908 comm="syz.4.2039" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  589.893446][ T5865] usb 3-1: new high-speed USB device number 47 using dummy_hcd
[  590.062683][ T5865] usb 3-1: Using ep0 maxpacket: 16
[  590.068645][    T9] usb 4-1: string descriptor 0 read error: -71
[  590.077037][ T5865] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  590.096106][ T5865] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  590.109675][    T9] usbhid 4-1:0.0: can't add hid device: -71
[  590.118497][    T9] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  590.127288][ T5865] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  590.143773][    T9] usb 4-1: USB disconnect, device number 42
[  590.146838][T12913] overlayfs: failed to decode file handle (len=6, type=248, flags=0, err=-61)
[  590.149806][ T5865] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 23
[  590.180205][ T5865] usb 3-1: New USB device found, idVendor=1781, idProduct=0898, bcdDevice= 0.00
[  590.190731][ T5865] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  590.200605][ T5865] usb 3-1: config 0 descriptor??
[  590.207054][T12905] raw-gadget.2 gadget.2: fail, usb_ep_enable returned -22
[  590.229574][ T5865] input: PXRC Flight Controller Adapter as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input37
[  590.241060][  T969] usb 2-1: new high-speed USB device number 45 using dummy_hcd
[  591.253987][  T969] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  591.271443][  T969] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  591.281186][  T969] usb 2-1: config 0 descriptor??
[  591.283852][ T5829] usb 3-1: USB disconnect, device number 47
[  591.501859][  T969] usb 2-1: string descriptor 0 read error: -71
[  591.509722][  T969] cp210x 2-1:0.0: cp210x converter detected
[  591.523256][  T969] cp210x 2-1:0.0: failed to get vendor val 0x370b size 1: -71
[  591.531995][  T969] cp210x 2-1:0.0: querying part number failed
[  591.540459][  T969] usb 2-1: cp210x converter now attached to ttyUSB0
[  591.548846][  T969] usb 2-1: USB disconnect, device number 45
[  591.556863][  T969] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  591.565877][T12924] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2046'.
[  591.575147][  T969] cp210x 2-1:0.0: device disconnected
[  591.653467][T12926] overlayfs: missing 'lowerdir'
[  591.672952][T12927] siw: device registration error -23
[  592.030126][T12938] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2051'.
[  592.293060][  T969] usb 2-1: new high-speed USB device number 46 using dummy_hcd
[  592.437327][T12943] overlayfs: failed to decode file handle (len=6, type=248, flags=0, err=-61)
[  592.448009][  T969] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  592.471788][  T969] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  592.487755][  T969] usb 2-1: New USB device found, idVendor=18d1, idProduct=503c, bcdDevice= 0.00
[  592.515599][  T969] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  592.530341][  T969] usb 2-1: config 0 descriptor??
[  594.650253][T12964] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2061'.
[  594.663073][ T7260] usb 3-1: new high-speed USB device number 48 using dummy_hcd
[  594.832776][ T7260] usb 3-1: Using ep0 maxpacket: 8
[  594.842292][ T7260] usb 3-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  594.851903][ T7260] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  594.865728][ T7260] usb 3-1: config 0 descriptor??
[  595.188276][T12976] usb usb7: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  595.371319][  T969] usb 2-1: string descriptor 0 read error: -71
[  595.385192][  T969] usbhid 2-1:0.0: can't add hid device: -71
[  595.391244][  T969] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  595.405153][  T969] usb 2-1: USB disconnect, device number 46
[  595.429586][T12978] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2063'.
[  595.476286][T12980] overlayfs: missing 'lowerdir'
[  595.508867][T12983] siw: device registration error -23
[  595.812902][ T5865] usb 4-1: new high-speed USB device number 43 using dummy_hcd
[  595.882687][ T5829] usb 2-1: new high-speed USB device number 47 using dummy_hcd
[  595.972956][ T5865] usb 4-1: Using ep0 maxpacket: 32
[  595.983712][ T5865] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  596.012645][ T5865] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  596.022406][ T5865] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  596.032016][ T5865] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  596.032675][ T5829] usb 2-1: Using ep0 maxpacket: 16
[  596.041768][ T5865] usb 4-1: config 0 descriptor??
[  596.053661][ T5865] hub 4-1:0.0: USB hub found
[  596.066825][ T5829] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 35, using maximum allowed: 30
[  596.077767][ T5829] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 35
[  596.093324][ T5829] usb 2-1: New USB device found, idVendor=1235, idProduct=0010, bcdDevice=29.82
[  596.103805][ T5829] usb 2-1: New USB device strings: Mfr=83, Product=5, SerialNumber=10
[  596.112124][ T5829] usb 2-1: Product: syz
[  596.116833][ T5829] usb 2-1: Manufacturer: syz
[  596.121426][ T5829] usb 2-1: SerialNumber: syz
[  596.130988][ T5829] usb 2-1: config 0 descriptor??
[  596.281193][ T5865] hub 4-1:0.0: config failed, can't read hub descriptor (err -22)
[  596.297573][ T5865] usbhid 4-1:0.0: can't add hid device: -71
[  596.325559][ T5865] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  596.353278][ T5829] usb 2-1: selecting invalid altsetting 1
[  596.375800][ T5865] usb 4-1: USB disconnect, device number 43
[  596.440249][T12998] fuse: Bad value for 'fd'
[  596.579199][ T5829] snd-usb-audio 2-1:0.0: probe with driver snd-usb-audio failed with error -22
[  597.088579][ T5829] usb 2-1: USB disconnect, device number 47
[  597.405425][T13005] fuse: Bad value for 'fd'
[  597.843943][T13018] netlink: 'syz.4.2077': attribute type 6 has an invalid length.
[  598.017459][T13026] siw: device registration error -23
[  598.535606][ T7260] asix 3-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  598.547616][ T7260] asix 3-1:0.0: probe with driver asix failed with error -71
[  598.560082][ T7260] usb 3-1: USB disconnect, device number 48
[  598.572704][ T5829] usb 4-1: new high-speed USB device number 44 using dummy_hcd
[  598.723093][ T5829] usb 4-1: Using ep0 maxpacket: 32
[  598.730974][ T5829] usb 4-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7
[  598.740266][ T5829] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  598.755590][ T5829] usb 4-1: config 0 descriptor??
[  598.764850][ T5829] gspca_main: sunplus-2.14.0 probing 041e:400b
[  598.909638][T13035] overlayfs: failed to clone upperpath
[  599.154079][ T5829] gspca_sunplus: reg_w_riv err -71
[  599.159616][ T5829] sunplus 4-1:0.0: probe with driver sunplus failed with error -71
[  599.168993][ T5829] usb 4-1: USB disconnect, device number 44
[  600.394133][   T29] kauditd_printk_skb: 4 callbacks suppressed
[  600.394148][   T29] audit: type=1400 audit(1738728655.427:1458): avc:  denied  { create } for  pid=13056 comm="syz.3.2088" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  600.533146][   T29] audit: type=1400 audit(1738728655.567:1459): avc:  denied  { connect } for  pid=13060 comm="syz.2.2090" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  600.559305][T13062] overlayfs: failed to resolve './file0': -2
[  600.788002][ T5865] usb 4-1: new full-speed USB device number 45 using dummy_hcd
[  600.926439][T13073] syz.0.2094 (13073): /proc/13072/oom_adj is deprecated, please use /proc/13072/oom_score_adj instead.
[  601.064203][ T5865] usb 4-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  601.084263][ T5865] usb 4-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae
[  601.093762][ T5865] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  601.553857][ T5865] usb 4-1: Product: syz
[  601.589511][ T5865] usb 4-1: Manufacturer: syz
[  601.641202][ T5865] usb 4-1: SerialNumber: syz
[  601.894161][ T5865] usb 4-1: config 0 descriptor??
[  602.422436][   T29] audit: type=1400 audit(1738728657.447:1460): avc:  denied  { getopt } for  pid=13056 comm="syz.3.2088" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  602.702408][T13090] overlayfs: failed to resolve './file1': -2
[  603.667715][T13096] overlayfs: failed to resolve './file1': -2
[  604.004889][ T7260] usb 4-1: USB disconnect, device number 45
[  604.467170][T13108] bridge0: port 2(bridge_slave_1) entered disabled state
[  604.482792][ T7260] usb 4-1: new high-speed USB device number 46 using dummy_hcd
[  604.574773][T13112] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  604.585067][T13112] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  604.661528][T13089] Bluetooth: hci4: command 0x0406 tx timeout
[  604.781170][ T7260] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  604.812486][ T7260] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  604.842893][ T7260] usb 4-1: New USB device found, idVendor=18d1, idProduct=503c, bcdDevice= 0.00
[  604.851950][ T7260] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  604.871910][ T7260] usb 4-1: config 0 descriptor??
[  605.163191][   T29] audit: type=1400 audit(1738728660.187:1461): avc:  denied  { watch_sb watch_reads } for  pid=13123 comm="syz.1.2109" path="/408/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="tmpfs" ino=2165 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  605.380646][T13132] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2111'.
[  606.208336][   T29] audit: type=1400 audit(1738728661.197:1462): avc:  denied  { setopt } for  pid=13134 comm="syz.4.2112" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  606.867654][   T29] audit: type=1400 audit(1738728661.897:1463): avc:  denied  { append } for  pid=13142 comm="syz.1.2114" name="ppp" dev="devtmpfs" ino=709 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  606.905236][T13143] vlan2: entered allmulticast mode
[  606.910234][T13145] Invalid ELF header magic: != ELF
[  607.003749][T13143] bridge0: port 4(vlan2) entered blocking state
[  607.013297][T13143] bridge0: port 4(vlan2) entered disabled state
[  607.025813][T13147] syz.1.2114 (13147) used obsolete PPPIOCDETACH ioctl
[  607.040056][   T29] audit: type=1800 audit(1738728661.937:1464): pid=13140 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=set_data cause=unavailable-hash-algorithm comm="syz.0.2113" name="/newroot/397/bus" dev="tmpfs" ino=2173 res=0 errno=0
[  607.076909][   T29] audit: type=1400 audit(1738728662.037:1465): avc:  denied  { bind } for  pid=13142 comm="syz.1.2114" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  607.097172][   T29] audit: type=1400 audit(1738728662.037:1466): avc:  denied  { name_bind } for  pid=13142 comm="syz.1.2114" src=28196 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=icmp_socket permissive=1
[  607.118553][   T29] audit: type=1400 audit(1738728662.037:1467): avc:  denied  { node_bind } for  pid=13142 comm="syz.1.2114" src=28196 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=icmp_socket permissive=1
[  607.147544][   T29] audit: type=1400 audit(1738728662.047:1468): avc:  denied  { setopt } for  pid=13142 comm="syz.1.2114" lport=28196 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  608.094833][   T29] audit: type=1400 audit(1738728663.087:1469): avc:  denied  { setattr } for  pid=13154 comm="syz.0.2118" name="fuse" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  608.148651][ T7260] usb 4-1: string descriptor 0 read error: -71
[  608.176870][ T7260] usbhid 4-1:0.0: can't add hid device: -71
[  608.217986][   T29] audit: type=1400 audit(1738728663.097:1470): avc:  denied  { getattr } for  pid=13154 comm="syz.0.2118" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=44215 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  608.242608][    C0] vkms_vblank_simulate: vblank timer overrun
[  608.257152][ T7260] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  608.332864][ T7260] usb 4-1: USB disconnect, device number 46
[  609.340480][   T29] audit: type=1400 audit(1738728664.367:1471): avc:  denied  { listen } for  pid=13170 comm="syz.4.2122" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  609.360017][    C0] vkms_vblank_simulate: vblank timer overrun
[  609.552327][T13174] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2121'.
[  609.561631][T13174] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2121'.
[  610.062467][T13124] Process accounting resumed
[  610.076353][T13160] Process accounting resumed
[  610.127172][T13180] siw: device registration error -23
[  610.143957][T13183] overlayfs: missing 'lowerdir'
[  610.673498][ T7260] usb 4-1: new high-speed USB device number 47 using dummy_hcd
[  610.913375][ T7260] usb 4-1: Using ep0 maxpacket: 8
[  611.019293][ T7260] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  611.160342][ T7260] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 2
[  611.180001][ T7260] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[  611.205059][ T7260] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[  611.265680][ T7260] usb 4-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  611.297397][T13196] overlayfs: failed to clone upperpath
[  611.306832][ T7260] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  611.367120][   T29] kauditd_printk_skb: 3 callbacks suppressed
[  611.367134][   T29] audit: type=1400 audit(1738728666.387:1475): avc:  denied  { map } for  pid=13193 comm="syz.1.2130" path="socket:[43612]" dev="sockfs" ino=43612 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1
[  611.373490][ T7260] hub 4-1:1.0: bad descriptor, ignoring hub
[  611.469243][ T7260] hub 4-1:1.0: probe with driver hub failed with error -5
[  611.484555][T13205] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2132'.
[  611.501394][ T7260] cdc_wdm 4-1:1.0: skipping garbage
[  611.538379][ T7260] cdc_wdm 4-1:1.0: skipping garbage
[  611.551140][ T7260] cdc_wdm 4-1:1.0: cdc-wdm0: USB WDM device
[  611.557580][ T7260] cdc_wdm 4-1:1.0: Unknown control protocol
[  611.707092][ T7260] usb 4-1: USB disconnect, device number 47
[  612.361262][T13214] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  612.872764][   T29] audit: type=1400 audit(1738728667.897:1476): avc:  denied  { setopt } for  pid=13223 comm="syz.4.2138" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  612.950722][T13213] Process accounting resumed
[  613.836801][T13235] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2140'.
[  613.845879][T13235] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2140'.
[  613.910776][   T29] audit: type=1400 audit(1738728668.887:1477): avc:  denied  { map } for  pid=13230 comm="syz.2.2140" path="/dev/dri/card0" dev="devtmpfs" ino=627 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  614.093537][   T29] audit: type=1400 audit(1738728668.887:1478): avc:  denied  { execute } for  pid=13230 comm="syz.2.2140" path="/dev/dri/card0" dev="devtmpfs" ino=627 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  614.423593][T13245] overlayfs: failed to decode file handle (len=6, type=248, flags=0, err=-61)
[  614.434699][T13246] siw: device registration error -23
[  615.893147][    T9] usb 3-1: new high-speed USB device number 49 using dummy_hcd
[  616.202381][    T9] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  616.283989][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  616.393468][T13271] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2152'.
[  616.397345][    T9] usb 3-1: config 0 descriptor??
[  616.413142][    T9] cp210x 3-1:0.0: cp210x converter detected
[  616.501546][   T29] audit: type=1326 audit(1738728671.527:1479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13272 comm="syz.4.2153" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fc3f7f8cda9 code=0x0
[  616.558456][   T29] audit: type=1326 audit(1738728671.587:1480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13272 comm="syz.4.2153" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fc3f7f8cda9 code=0x0
[  616.614819][    T9] cp210x 3-1:0.0: failed to get vendor val 0x370b size 1: -121
[  616.648840][    T9] cp210x 3-1:0.0: querying part number failed
[  616.662874][    T9] usb 3-1: cp210x converter now attached to ttyUSB0
[  617.496446][T13283] overlayfs: failed to decode file handle (len=6, type=248, flags=0, err=-61)
[  618.162788][ T5924] libceph: connect (1)[c::]:6789 error -22
[  619.002656][ T5924] libceph: mon0 (1)[c::]:6789 connect error
[  619.029117][ T5924] usb 3-1: USB disconnect, device number 49
[  619.037082][ T5924] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  619.074004][T13300] netlink: 'syz.1.2159': attribute type 8 has an invalid length.
[  619.137950][T13300] Invalid ELF header magic: != ELF
[  619.175454][T13302] netlink: 'syz.3.2158': attribute type 8 has an invalid length.
[  619.193965][T13302] Invalid ELF header magic: != ELF
[  619.429276][T13301] ceph: No mds server is up or the cluster is laggy
[  619.436175][T13297] ceph: No mds server is up or the cluster is laggy
[  619.506771][ T5924] cp210x 3-1:0.0: device disconnected
[  619.513402][ T7260] libceph: connect (1)[c::]:6789 error -22
[  619.519333][ T7260] libceph: mon0 (1)[c::]:6789 connect error
[  620.902042][T13331] overlayfs: failed to decode file handle (len=6, type=248, flags=0, err=-61)
[  622.278276][T13344] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2172'.
[  623.489938][   T29] audit: type=1400 audit(1738728678.517:1481): avc:  denied  { bind } for  pid=13352 comm="syz.4.2175" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  623.664158][   T29] audit: type=1400 audit(1738728678.517:1482): avc:  denied  { name_bind } for  pid=13352 comm="syz.4.2175" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[  623.686111][   T29] audit: type=1400 audit(1738728678.517:1483): avc:  denied  { node_bind } for  pid=13352 comm="syz.4.2175" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=dccp_socket permissive=1
[  623.907263][T13363] netlink: 'syz.1.2176': attribute type 8 has an invalid length.
[  623.936281][T13363] Invalid ELF header magic: != ELF
[  624.053107][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[  624.353114][T13361] ceph: No mds server is up or the cluster is laggy
[  624.443488][T13366] overlayfs: failed to clone upperpath
[  627.412739][T13383] netlink: 'syz.0.2174': attribute type 8 has an invalid length.
[  627.794248][ T5924] libceph: connect (1)[c::]:6789 error -101
[  627.800436][ T5924] libceph: mon0 (1)[c::]:6789 connect error
[  628.512956][T13383] Invalid ELF header magic: != ELF
[  628.820775][ T5924] libceph: connect (1)[c::]:6789 error -101
[  628.835656][ T5924] libceph: mon0 (1)[c::]:6789 connect error
[  629.039994][T13382] ceph: No mds server is up or the cluster is laggy
[  629.374802][T13398] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2187'.
[  629.424349][T13391] overlayfs: missing 'lowerdir'
[  629.447300][T13404] FAULT_INJECTION: forcing a failure.
[  629.447300][T13404] name failslab, interval 1, probability 0, space 0, times 0
[  629.460189][T13404] CPU: 1 UID: 0 PID: 13404 Comm: syz.0.2186 Not tainted 6.14.0-rc1-syzkaller-00026-gd009de7d5428 #0
[  629.460211][T13404] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  629.460221][T13404] Call Trace:
[  629.460226][T13404]  <TASK>
[  629.460232][T13404]  dump_stack_lvl+0x16c/0x1f0
[  629.460255][T13404]  should_fail_ex+0x50a/0x650
[  629.460283][T13404]  should_failslab+0xc2/0x120
[  629.460302][T13404]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  629.460320][T13404]  ? skb_clone+0x190/0x3f0
[  629.460346][T13404]  skb_clone+0x190/0x3f0
[  629.460367][T13404]  netlink_deliver_tap+0xabd/0xd30
[  629.460391][T13404]  netlink_unicast+0x5e1/0x7f0
[  629.460418][T13404]  ? __pfx_netlink_unicast+0x10/0x10
[  629.460444][T13404]  netlink_sendmsg+0x8b8/0xd70
[  629.460467][T13404]  ? __pfx_netlink_sendmsg+0x10/0x10
[  629.460496][T13404]  ____sys_sendmsg+0xaaf/0xc90
[  629.460526][T13404]  ? copy_msghdr_from_user+0x10b/0x160
[  629.460546][T13404]  ? __pfx_____sys_sendmsg+0x10/0x10
[  629.460584][T13404]  ___sys_sendmsg+0x135/0x1e0
[  629.460606][T13404]  ? __pfx____sys_sendmsg+0x10/0x10
[  629.460637][T13404]  ? __pfx_lock_release+0x10/0x10
[  629.460660][T13404]  ? trace_lock_acquire+0x14e/0x1f0
[  629.460687][T13404]  ? __fget_files+0x206/0x3a0
[  629.460710][T13404]  __sys_sendmsg+0x16e/0x220
[  629.460731][T13404]  ? __pfx___sys_sendmsg+0x10/0x10
[  629.460769][T13404]  do_syscall_64+0xcd/0x250
[  629.460789][T13404]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  629.460811][T13404] RIP: 0033:0x7fbcaaf8cda9
[  629.460824][T13404] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  629.460840][T13404] RSP: 002b:00007fbca8df6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  629.460855][T13404] RAX: ffffffffffffffda RBX: 00007fbcab1a6080 RCX: 00007fbcaaf8cda9
[  629.460866][T13404] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003
[  629.460875][T13404] RBP: 00007fbca8df6090 R08: 0000000000000000 R09: 0000000000000000
[  629.460884][T13404] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  629.460894][T13404] R13: 0000000000000000 R14: 00007fbcab1a6080 R15: 00007ffcd80bced8
[  629.460917][T13404]  </TASK>
[  629.722673][T13404] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2186'.
[  631.539492][T13419] overlayfs: failed to decode file handle (len=6, type=248, flags=0, err=-61)
[  631.753453][T13425] overlayfs: failed to resolve './file1': -2
[  632.127983][T13436] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2198'.
[  632.152792][   T29] audit: type=1400 audit(1738728687.157:1484): avc:  denied  { bind } for  pid=13433 comm="syz.4.2198" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  632.935294][T13436] netlink: 68 bytes leftover after parsing attributes in process `syz.4.2198'.
[  633.110853][   T29] audit: type=1400 audit(1738728687.157:1485): avc:  denied  { setopt } for  pid=13433 comm="syz.4.2198" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  633.292986][T13439] netlink: 'syz.0.2197': attribute type 8 has an invalid length.
[  633.302685][T13439] Invalid ELF header magic: != ELF
[  633.524335][T13438] workqueue: Failed to create a rescuer kthread for wq "ceph-completion": -EINTR
[  633.612061][   T29] audit: type=1400 audit(1738728688.637:1486): avc:  denied  { read } for  pid=13443 comm="syz.3.2199" name="mouse0" dev="devtmpfs" ino=1019 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  633.782909][   T29] audit: type=1400 audit(1738728688.687:1487): avc:  denied  { append } for  pid=13443 comm="syz.3.2199" name="mice" dev="devtmpfs" ino=916 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  633.806119][    C0] vkms_vblank_simulate: vblank timer overrun
[  633.909483][T13453] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  633.916798][T13453] IPv6: NLM_F_CREATE should be set when creating new route
[  633.969195][   T29] audit: type=1400 audit(1738728688.977:1488): avc:  denied  { listen } for  pid=13447 comm="syz.4.2200" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  633.989098][   T29] audit: type=1400 audit(1738728689.017:1489): avc:  denied  { bind } for  pid=13450 comm="syz.0.2202" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  634.193933][   T29] audit: type=1400 audit(1738728689.217:1490): avc:  denied  { write } for  pid=13455 comm="syz.2.2204" name="task" dev="proc" ino=44929 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  634.341937][   T29] audit: type=1400 audit(1738728689.217:1491): avc:  denied  { add_name } for  pid=13455 comm="syz.2.2204" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  634.392617][   T29] audit: type=1400 audit(1738728689.217:1492): avc:  denied  { create } for  pid=13455 comm="syz.2.2204" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=file permissive=1
[  634.497391][   T29] audit: type=1400 audit(1738728689.217:1493): avc:  denied  { associate } for  pid=13455 comm="syz.2.2204" name="bus" scontext=root:object_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  634.518251][    C0] vkms_vblank_simulate: vblank timer overrun
[  637.058848][T13484] ubi0: attaching mtd0
[  637.067194][T13484] ubi0: scanning is finished
[  637.071805][T13484] ubi0: empty MTD device detected
[  637.990093][   T29] audit: type=1400 audit(1738728692.957:1494): avc:  denied  { create } for  pid=13485 comm="syz.4.2213" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[  638.047253][T13484] ubi0 error: ubi_attach_mtd_dev: cannot spawn "ubi_bgt0d", error -4
[  638.095049][T13507] overlayfs: missing 'lowerdir'
[  638.273167][T13517] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2218'.
[  638.282384][T13517] netlink: 48 bytes leftover after parsing attributes in process `syz.4.2218'.
[  638.910956][   T29] audit: type=1400 audit(1738728693.937:1495): avc:  denied  { write } for  pid=13518 comm="syz.0.2219" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  639.274823][T13522] vxcan1: tx address claim with different name
[  639.575196][   T29] audit: type=1400 audit(1738728694.597:1496): avc:  denied  { ioctl } for  pid=13527 comm="syz.2.2224" path="/dev/ptyq9" dev="devtmpfs" ino=128 ioctlcmd=0x540b scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1
[  640.104364][T13531] IPVS: set_ctl: invalid protocol: 98 172.20.20.40:20000
[  640.367498][   T29] audit: type=1400 audit(1738728695.397:1497): avc:  denied  { shutdown } for  pid=13527 comm="syz.2.2224" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  640.573866][  T969] usb 2-1: new high-speed USB device number 48 using dummy_hcd
[  640.583602][    T9] usb 4-1: new high-speed USB device number 48 using dummy_hcd
[  641.264626][    T9] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  641.274004][  T969] usb 2-1: Using ep0 maxpacket: 16
[  641.285482][    T9] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  641.287989][T13543] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2226'.
[  641.303241][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  641.314793][  T969] usb 2-1: device descriptor read/all, error -71
[  641.325009][    T9] usb 4-1: config 0 descriptor??
[  641.600623][   T29] audit: type=1400 audit(1738728696.627:1498): avc:  denied  { map } for  pid=13548 comm="syz.0.2229" path="/proc/sys/net/ipv4/vs/sync_qlen_max" dev="proc" ino=46418 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_net_t tclass=file permissive=1
[  641.652652][   T29] audit: type=1400 audit(1738728696.627:1499): avc:  denied  { execute } for  pid=13548 comm="syz.0.2229" path="/proc/sys/net/ipv4/vs/sync_qlen_max" dev="proc" ino=46418 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_net_t tclass=file permissive=1
[  642.105752][T13569] netlink: 'syz.0.2233': attribute type 8 has an invalid length.
[  642.135384][T13569] Invalid ELF header magic: != ELF
[  642.285504][ T4844] libceph: connect (1)[c::]:6789 error -101
[  642.297945][ T4844] libceph: mon0 (1)[c::]:6789 connect error
[  642.626690][T13568] ceph: No mds server is up or the cluster is laggy
[  642.644405][    T9] usb 4-1: USB disconnect, device number 48
[  642.708497][T13574] overlayfs: missing 'lowerdir'
[  642.897288][   T29] audit: type=1400 audit(1738728697.917:1500): avc:  denied  { getopt } for  pid=13577 comm="syz.0.2236" lport=34331 faddr=255.255.255.254 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  642.898027][T13580] 9pnet_fd: Insufficient options for proto=fd
[  642.980848][T13584] Invalid ELF header magic: != ELF
[  643.184775][   T29] audit: type=1400 audit(1738728698.087:1501): avc:  denied  { ioctl } for  pid=13582 comm="syz.2.2237" path="socket:[45439]" dev="sockfs" ino=45439 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  643.694039][T13596] FAULT_INJECTION: forcing a failure.
[  643.694039][T13596] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  643.732673][T13596] CPU: 1 UID: 0 PID: 13596 Comm: syz.1.2241 Not tainted 6.14.0-rc1-syzkaller-00026-gd009de7d5428 #0
[  643.732697][T13596] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  643.732706][T13596] Call Trace:
[  643.732711][T13596]  <TASK>
[  643.732717][T13596]  dump_stack_lvl+0x16c/0x1f0
[  643.732739][T13596]  should_fail_ex+0x50a/0x650
[  643.732766][T13596]  _copy_from_user+0x2e/0xd0
[  643.732792][T13596]  __sys_bpf+0x21c/0x49c0
[  643.732808][T13596]  ? __pfx_lock_release+0x10/0x10
[  643.732832][T13596]  ? __pfx___sys_bpf+0x10/0x10
[  643.732847][T13596]  ? vfs_write+0x306/0x1150
[  643.732875][T13596]  ? __mutex_unlock_slowpath+0x164/0x6a0
[  643.732905][T13596]  ? fput+0x67/0x440
[  643.732923][T13596]  ? ksys_write+0x1ba/0x250
[  643.732946][T13596]  ? __pfx_ksys_write+0x10/0x10
[  643.732975][T13596]  __x64_sys_bpf+0x78/0xc0
[  643.732992][T13596]  ? lockdep_hardirqs_on+0x7c/0x110
[  643.733008][T13596]  do_syscall_64+0xcd/0x250
[  643.733027][T13596]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  643.733050][T13596] RIP: 0033:0x7f43ca98cda9
[  643.733063][T13596] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  643.733078][T13596] RSP: 002b:00007f43cb7b2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  643.733094][T13596] RAX: ffffffffffffffda RBX: 00007f43caba5fa0 RCX: 00007f43ca98cda9
[  643.733104][T13596] RDX: 0000000000000050 RSI: 0000000020000440 RDI: 000000000000000a
[  643.733114][T13596] RBP: 00007f43cb7b2090 R08: 0000000000000000 R09: 0000000000000000
[  643.733123][T13596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  643.733133][T13596] R13: 0000000000000000 R14: 00007f43caba5fa0 R15: 00007ffd06afe8b8
[  643.733154][T13596]  </TASK>
[  643.915491][    C1] vkms_vblank_simulate: vblank timer overrun
[  644.124105][    T9] usb 4-1: new high-speed USB device number 49 using dummy_hcd
[  645.262706][   T29] audit: type=1400 audit(1738728699.667:1502): avc:  denied  { sqpoll } for  pid=13604 comm="syz.0.2243" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  645.343836][    T9] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  645.353212][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  645.363425][    T9] usb 4-1: config 0 descriptor??
[  645.411943][    T9] cp210x 4-1:0.0: cp210x converter detected
[  645.871404][    T9] cp210x 4-1:0.0: failed to get vendor val 0x370b size 1: -121
[  645.882575][    T9] cp210x 4-1:0.0: querying part number failed
[  645.893617][    T9] usb 4-1: cp210x converter now attached to ttyUSB0
[  645.961037][   T29] audit: type=1400 audit(1738728700.987:1503): avc:  denied  { read } for  pid=13622 comm="syz.2.2250" name="vhost-net" dev="devtmpfs" ino=1274 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  645.988262][T13619] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  646.000376][   T29] audit: type=1400 audit(1738728700.987:1504): avc:  denied  { open } for  pid=13622 comm="syz.2.2250" path="/dev/vhost-net" dev="devtmpfs" ino=1274 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  646.010968][T13626] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2251'.
[  646.045541][   T29] audit: type=1400 audit(1738728701.077:1505): avc:  denied  { ioctl } for  pid=13622 comm="syz.2.2250" path="/dev/vhost-net" dev="devtmpfs" ino=1274 ioctlcmd=0xaf30 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  646.412419][   T29] audit: type=1400 audit(1738728701.197:1506): avc:  denied  { mounton } for  pid=13622 comm="syz.2.2250" path="/450/file0" dev="ramfs" ino=45518 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=dir permissive=1
[  646.435622][   T29] audit: type=1400 audit(1738728701.207:1507): avc:  denied  { unmount } for  pid=13622 comm="syz.2.2250" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[  646.471755][   T29] audit: type=1400 audit(1738728701.497:1508): avc:  denied  { unmount } for  pid=5816 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  646.534680][T13633] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2253'.
[  646.999044][T13639] devpts: called with bogus options
[  647.332904][T13641] devpts: called with bogus options
[  648.584689][    T9] usb 4-1: USB disconnect, device number 49
[  648.598911][    T9] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  648.616763][    T9] cp210x 4-1:0.0: device disconnected
[  649.053553][    T9] usb 4-1: new high-speed USB device number 50 using dummy_hcd
[  649.192690][    T9] usb 4-1: device descriptor read/64, error -71
[  649.214026][T13684] siw: device registration error -23
[  649.432616][    T9] usb 4-1: new high-speed USB device number 51 using dummy_hcd
[  649.582743][    T9] usb 4-1: device descriptor read/64, error -71
[  649.692893][    T9] usb usb4-port1: attempt power cycle
[  649.983706][T13690] netlink: 'syz.4.2268': attribute type 8 has an invalid length.
[  650.009185][T13690] Invalid ELF header magic: != ELF
[  650.071192][ T5924] libceph: connect (1)[c::]:6789 error -101
[  650.124179][ T5924] libceph: mon0 (1)[c::]:6789 connect error
[  650.426550][   T29] audit: type=1400 audit(1738728705.457:1509): avc:  denied  { bind } for  pid=13692 comm="syz.1.2269" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  650.447390][ T5924] libceph: connect (1)[c::]:6789 error -101
[  650.450455][   T29] audit: type=1400 audit(1738728705.457:1510): avc:  denied  { listen } for  pid=13692 comm="syz.1.2269" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  650.473458][ T5924] libceph: mon0 (1)[c::]:6789 connect error
[  650.473869][    T9] usb 4-1: new high-speed USB device number 52 using dummy_hcd
[  650.488643][   T29] audit: type=1400 audit(1738728705.457:1511): avc:  denied  { accept } for  pid=13692 comm="syz.1.2269" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  650.523568][    T9] usb 4-1: device descriptor read/8, error -71
[  650.531687][T13688] ceph: No mds server is up or the cluster is laggy
[  650.792727][    T9] usb 4-1: new high-speed USB device number 53 using dummy_hcd
[  650.852163][T13704] devpts: called with bogus options
[  650.883864][    T9] usb 4-1: device descriptor read/8, error -71
[  651.003844][    T9] usb usb4-port1: unable to enumerate USB device
[  651.758239][T13714] fuse: Bad value for 'group_id'
[  651.766849][T13714] fuse: Bad value for 'group_id'
[  652.515599][   T29] audit: type=1400 audit(1738728707.507:1512): avc:  denied  { read write } for  pid=13709 comm="syz.2.2275" name="uinput" dev="devtmpfs" ino=920 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  652.664667][   T29] audit: type=1400 audit(1738728707.507:1513): avc:  denied  { open } for  pid=13709 comm="syz.2.2275" path="/dev/uinput" dev="devtmpfs" ino=920 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  652.852606][   T29] audit: type=1400 audit(1738728707.517:1514): avc:  denied  { ioctl } for  pid=13709 comm="syz.2.2275" path="/dev/uinput" dev="devtmpfs" ino=920 ioctlcmd=0x9439 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  652.992644][    T9] usb 4-1: new high-speed USB device number 54 using dummy_hcd
[  653.141646][T13733] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2281'.
[  653.181919][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  653.215414][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  653.248787][    T9] usb 4-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00
[  653.273858][   T29] audit: type=1326 audit(1738728708.307:1515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13734 comm="syz.4.2282" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc3f7f8cda9 code=0x0
[  653.276575][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  653.314350][    T9] usb 4-1: config 0 descriptor??
[  653.737311][    T9] cm6533_jd 0003:0D8C:0022.0010: unknown main item tag 0x0
[  653.757978][    T9] cm6533_jd 0003:0D8C:0022.0010: item fetching failed at offset 4/5
[  653.773236][    T9] cm6533_jd 0003:0D8C:0022.0010: parse failed
[  653.779452][    T9] cm6533_jd 0003:0D8C:0022.0010: probe with driver cm6533_jd failed with error -22
[  654.024601][T13724] Process accounting resumed
[  654.046779][T13720] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  654.055417][T13720] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  654.089987][T13720] wlan0 speed is unknown, defaulting to 1000
[  654.156371][T13720] wlan0 speed is unknown, defaulting to 1000
[  654.199948][T13753] devpts: called with bogus options
[  655.114577][ T5862] usb 4-1: USB disconnect, device number 54
[  655.481425][T13765] fuse: Bad value for 'fd'
[  655.984970][   T29] audit: type=1400 audit(1738728710.517:1516): avc:  denied  { watch } for  pid=13760 comm="syz.2.2288" path="/459/file0" dev="tmpfs" ino=2487 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  656.437973][   T29] audit: type=1400 audit(1738728711.467:1517): avc:  denied  { read } for  pid=13768 comm="syz.3.2290" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  656.498392][   T29] audit: type=1400 audit(1738728711.527:1518): avc:  denied  { setattr } for  pid=13772 comm="syz.1.2291" name="NETLINK" dev="sockfs" ino=47114 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  656.516954][T13773] SELinux:  policydb string length 0 does not match expected length 8
[  656.523071][   T29] audit: type=1400 audit(1738728711.547:1519): avc:  denied  { load_policy } for  pid=13772 comm="syz.1.2291" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  656.558228][T13773] SELinux: failed to load policy
[  656.706050][ T5862] usb 4-1: new high-speed USB device number 55 using dummy_hcd
[  656.926508][   T29] audit: type=1400 audit(1738728711.957:1520): avc:  denied  { ioctl } for  pid=13772 comm="syz.1.2291" path="socket:[46903]" dev="sockfs" ino=46903 ioctlcmd=0xb100 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  657.092854][ T5862] usb 4-1: Using ep0 maxpacket: 8
[  657.123368][ T5862] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  657.355837][ T5862] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  657.366078][ T5862] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  657.376287][ T5862] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  657.389353][ T5862] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  657.399533][ T5862] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  657.670478][ T5862] usb 4-1: usb_control_msg returned -32
[  657.715253][ T5862] usbtmc 4-1:16.0: can't read capabilities
[  657.791633][T13791] wlan0 speed is unknown, defaulting to 1000
[  657.818112][T13791] wlan0 speed is unknown, defaulting to 1000
[  658.217063][T13801] siw: device registration error -23
[  658.607213][T13798] Process accounting resumed
[  658.762915][T13807] devpts: called with bogus options
[  658.982676][ T5862] usb 3-1: new high-speed USB device number 50 using dummy_hcd
[  659.019954][T13811] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2301'.
[  659.142727][ T5862] usb 3-1: Using ep0 maxpacket: 16
[  659.152889][ T5862] usb 3-1: config 0 has an invalid interface number: 8 but max is 0
[  659.161181][ T5862] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  659.316755][ T5862] usb 3-1: config 0 has no interface number 0
[  659.325088][T13814] Invalid source name
[  659.328538][ T5862] usb 3-1: config 0 interface 8 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  659.329096][T13814] UBIFS error (pid: 13814): cannot open "/dev/sg0", error -22
[  659.351437][ T5862] usb 3-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  659.371119][ T5862] usb 3-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  659.382067][ T5862] usb 3-1: Product: syz
[  659.390217][ T5862] usb 3-1: SerialNumber: syz
[  659.398750][ T5862] usb 3-1: config 0 descriptor??
[  659.413107][ T5924] usb 4-1: USB disconnect, device number 55
[  659.712727][ T5862] usbhid 3-1:0.8: couldn't find an input interrupt endpoint
[  659.721324][ T5862] usb 3-1: USB disconnect, device number 50
[  661.562445][   T29] audit: type=1400 audit(1738728716.587:1521): avc:  denied  { setopt } for  pid=13829 comm="syz.1.2305" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  662.834229][   T29] audit: type=1400 audit(1738728717.867:1522): avc:  denied  { write } for  pid=13851 comm="syz.3.2311" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  663.044572][T13857] 9pnet_fd: Insufficient options for proto=fd
[  663.081673][T13861] siw: device registration error -23
[  663.103008][  T969] usb 4-1: new full-speed USB device number 56 using dummy_hcd
[  663.276284][  T969] usb 4-1: unable to get BOS descriptor or descriptor too short
[  663.290581][  T969] usb 4-1: not running at top speed; connect to a high speed hub
[  663.310090][  T969] usb 4-1: config 129 has an invalid interface number: 28 but max is 0
[  663.329951][  T969] usb 4-1: config 129 has an invalid descriptor of length 0, skipping remainder of the config
[  663.354803][  T969] usb 4-1: config 129 has no interface number 0
[  663.361077][  T969] usb 4-1: config 129 interface 28 altsetting 250 has an endpoint descriptor with address 0xFD, changing to 0x8D
[  663.373332][  T969] usb 4-1: config 129 interface 28 altsetting 250 endpoint 0x8D has invalid maxpacket 70, setting to 64
[  663.385111][  T969] usb 4-1: config 129 interface 28 has no altsetting 0
[  663.404200][  T969] usb 4-1: New USB device found, idVendor=108c, idProduct=0159, bcdDevice=db.57
[  663.413546][  T969] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  663.421522][  T969] usb 4-1: Product: syz
[  663.428602][  T969] usb 4-1: Manufacturer: syz
[  663.433876][  T969] usb 4-1: SerialNumber: syz
[  663.443545][T13852] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  663.655751][  T969] etas_es58x 4-1:129.28: Starting syz syz (Serial Number syz)
[  663.677294][  T969] etas_es58x 4-1:129.28: could not retrieve the product info string
[  663.708607][  T969] usb 4-1: USB disconnect, device number 56
[  663.715479][  T969] etas_es58x 4-1:129.28: Disconnecting syz syz
[  663.777299][T13872] pim6reg: entered allmulticast mode
[  663.794152][T13872] pim6reg: left allmulticast mode
[  663.858558][T13879] overlayfs: failed to clone upperpath
[  664.708091][   T29] audit: type=1400 audit(1738728719.737:1523): avc:  denied  { create } for  pid=13894 comm="syz.0.2326" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  665.177159][ T5924] usb 2-1: new high-speed USB device number 50 using dummy_hcd
[  665.381080][   T29] audit: type=1400 audit(1738728720.407:1524): avc:  denied  { unlink } for  pid=5828 comm="syz-executor" name="file0" dev="tmpfs" ino=2433 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  665.533241][ T5924] usb 2-1: Using ep0 maxpacket: 32
[  665.541391][ T5924] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  665.553358][ T5924] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  665.563340][ T5924] usb 2-1: New USB device found, idVendor=0e8f, idProduct=0012, bcdDevice= 0.00
[  665.574538][ T5924] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  665.584439][ T5924] usb 2-1: config 0 descriptor??
[  665.687129][ T5829] usb 4-1: new high-speed USB device number 57 using dummy_hcd
[  665.843021][ T5829] usb 4-1: Using ep0 maxpacket: 8
[  665.908125][ T5829] usb 4-1: New USB device found, idVendor=2770, idProduct=9120, bcdDevice=6c.77
[  665.918037][ T5829] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  665.933384][ T5829] usb 4-1: Product: syz
[  665.937643][ T5829] usb 4-1: Manufacturer: syz
[  665.944649][ T5829] usb 4-1: SerialNumber: syz
[  665.965187][ T5829] usb 4-1: config 0 descriptor??
[  666.031986][ T5829] gspca_main: sq905-2.14.0 probing 2770:9120
[  666.116049][ T5924] greenasia 0003:0E8F:0012.0011: item fetching failed at offset 1/3
[  666.145153][ T5924] greenasia 0003:0E8F:0012.0011: parse failed
[  666.151345][ T5924] greenasia 0003:0E8F:0012.0011: probe with driver greenasia failed with error -22
[  666.188123][T13920] overlayfs: failed to clone upperpath
[  666.359399][    T9] usb 2-1: USB disconnect, device number 50
[  666.439238][T13905] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  667.114546][ T5829] gspca_sq905: sq905_command: usb_control_msg failed 2 (-110)
[  667.157849][T13905] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  667.311044][ T5829] sq905 4-1:0.0: probe with driver sq905 failed with error -110
[  668.124255][ T5829] usb 4-1: USB disconnect, device number 57
[  671.552738][    T9] usb 2-1: new high-speed USB device number 51 using dummy_hcd
[  671.724494][T13965] netlink: 'syz.3.2345': attribute type 8 has an invalid length.
[  671.754905][T13965] Invalid ELF header magic: != ELF
[  672.094952][ T5862] libceph: connect (1)[c::]:6789 error -22
[  672.100941][ T5862] libceph: mon0 (1)[c::]:6789 connect error
[  672.271290][T13964] ceph: No mds server is up or the cluster is laggy
[  672.808999][ T5862] libceph: connect (1)[c::]:6789 error -22
[  672.815659][ T5862] libceph: mon0 (1)[c::]:6789 connect error
[  672.901495][    T9] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x92, changing to 0x82
[  672.973022][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  673.011610][    T9] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.4b
[  673.353233][    T9] usb 2-1: New USB device strings: Mfr=0, Product=64, SerialNumber=0
[  673.394920][    T9] usb 2-1: Product: syz
[  673.421215][    T9] usb 2-1: config 0 descriptor??
[  673.882614][ T5862] usb 4-1: new high-speed USB device number 58 using dummy_hcd
[  674.263364][ T5862] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  674.272430][ T5862] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  674.281493][ T5862] usb 4-1: config 0 descriptor??
[  674.287935][ T5862] cp210x 4-1:0.0: cp210x converter detected
[  674.485667][    T9] ath6kl: Failed to submit usb control message: -71
[  674.492362][    T9] ath6kl: unable to send the bmi data to the device: -71
[  674.507101][    T9] ath6kl: Unable to send get target info: -71
[  674.514163][ T5862] cp210x 4-1:0.0: failed to get vendor val 0x370b size 1: -121
[  674.521706][ T5862] cp210x 4-1:0.0: querying part number failed
[  674.532374][    T9] ath6kl: Failed to init ath6kl core: -71
[  674.548497][    T9] ath6kl_usb 2-1:0.0: probe with driver ath6kl_usb failed with error -71
[  674.565982][ T5862] usb 4-1: cp210x converter now attached to ttyUSB0
[  674.582792][    T9] usb 2-1: USB disconnect, device number 51
[  674.592662][ T5865] usb 3-1: new high-speed USB device number 51 using dummy_hcd
[  674.763334][ T5865] usb 3-1: Using ep0 maxpacket: 32
[  674.770200][ T5865] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  674.787047][ T5865] usb 3-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  674.796734][ T5865] usb 3-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  674.808672][ T5865] usb 3-1: Product: syz
[  674.813356][ T5865] usb 3-1: Manufacturer: syz
[  674.817952][ T5865] usb 3-1: SerialNumber: syz
[  674.827776][ T5865] usb 3-1: config 0 descriptor??
[  674.833921][T13990] raw-gadget.2 gadget.2: fail, usb_ep_enable returned -22
[  674.841727][ T5865] hub 3-1:0.0: bad descriptor, ignoring hub
[  674.851557][ T5865] hub 3-1:0.0: probe with driver hub failed with error -5
[  674.892811][    T9] usb 2-1: new high-speed USB device number 52 using dummy_hcd
[  675.308266][T14001] overlayfs: failed to clone upperpath
[  676.002605][    T9] usb 2-1: Using ep0 maxpacket: 32
[  676.009065][    T9] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  676.020362][    T9] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  676.031390][    T9] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  676.040563][    T9] usb 2-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  676.050598][    T9] usb 2-1: Product: syz
[  676.055037][    T9] usb 2-1: Manufacturer: syz
[  676.425763][    T9] hub 2-1:4.0: USB hub found
[  677.306296][    T9] hub 2-1:4.0: config failed, hub has too many ports! (err -19)
[  677.338210][ T4844] usb 4-1: USB disconnect, device number 58
[  677.527536][T14020] wlan0 speed is unknown, defaulting to 1000
[  677.555623][ T5829] usb 3-1: USB disconnect, device number 51
[  677.562643][ T4844] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  677.570586][ T4844] cp210x 4-1:0.0: device disconnected
[  677.585434][T14020] wlan0 speed is unknown, defaulting to 1000
[  678.553054][    T9] usb 2-1: USB disconnect, device number 52
[  678.767906][T14029] wlan0 speed is unknown, defaulting to 1000
[  678.774480][T14029] wlan0 speed is unknown, defaulting to 1000
[  678.881576][T14026] wlan0 speed is unknown, defaulting to 1000
[  678.888366][T14026] wlan0 speed is unknown, defaulting to 1000
[  679.868868][   T29] audit: type=1400 audit(1738728734.887:1525): avc:  denied  { connect } for  pid=14034 comm="syz.4.2365" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  679.932738][   T29] audit: type=1400 audit(1738728734.887:1526): avc:  denied  { name_connect } for  pid=14034 comm="syz.4.2365" dest=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[  679.986771][T14020] random: crng reseeded on system resumption
[  680.004562][   T29] audit: type=1400 audit(1738728735.017:1527): avc:  denied  { write } for  pid=14019 comm="syz.2.2363" name="snapshot" dev="devtmpfs" ino=92 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  680.181206][   T29] audit: type=1400 audit(1738728735.017:1528): avc:  denied  { open } for  pid=14019 comm="syz.2.2363" path="/dev/snapshot" dev="devtmpfs" ino=92 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  680.941033][ T7901] Bluetooth: hci5: Frame reassembly failed (-84)
[  681.110504][   T12] Bluetooth: hci5: received HCILL_GO_TO_SLEEP_ACK in state 0
[  682.353590][T14074] FAULT_INJECTION: forcing a failure.
[  682.353590][T14074] name failslab, interval 1, probability 0, space 0, times 0
[  682.453555][T14074] CPU: 0 UID: 0 PID: 14074 Comm: syz.2.2375 Not tainted 6.14.0-rc1-syzkaller-00026-gd009de7d5428 #0
[  682.453582][T14074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  682.453592][T14074] Call Trace:
[  682.453597][T14074]  <TASK>
[  682.453603][T14074]  dump_stack_lvl+0x16c/0x1f0
[  682.453626][T14074]  should_fail_ex+0x50a/0x650
[  682.453652][T14074]  ? fs_reclaim_acquire+0xae/0x150
[  682.453677][T14074]  should_failslab+0xc2/0x120
[  682.453697][T14074]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[  682.453714][T14074]  ? __alloc_skb+0x2b1/0x380
[  682.453737][T14074]  __alloc_skb+0x2b1/0x380
[  682.453756][T14074]  ? __pfx___alloc_skb+0x10/0x10
[  682.453778][T14074]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  682.453801][T14074]  netlink_alloc_large_skb+0x69/0x130
[  682.453821][T14074]  netlink_sendmsg+0x689/0xd70
[  682.453845][T14074]  ? __pfx_netlink_sendmsg+0x10/0x10
[  682.453872][T14074]  ____sys_sendmsg+0xaaf/0xc90
[  682.453899][T14074]  ? copy_msghdr_from_user+0x10b/0x160
[  682.453919][T14074]  ? __pfx_____sys_sendmsg+0x10/0x10
[  682.453954][T14074]  ___sys_sendmsg+0x135/0x1e0
[  682.453976][T14074]  ? __pfx____sys_sendmsg+0x10/0x10
[  682.454007][T14074]  ? __pfx_lock_release+0x10/0x10
[  682.454030][T14074]  ? trace_lock_acquire+0x14e/0x1f0
[  682.454057][T14074]  ? __fget_files+0x206/0x3a0
[  682.454079][T14074]  __sys_sendmsg+0x16e/0x220
[  682.454100][T14074]  ? __pfx___sys_sendmsg+0x10/0x10
[  682.454136][T14074]  do_syscall_64+0xcd/0x250
[  682.454156][T14074]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  682.454178][T14074] RIP: 0033:0x7f5880b8cda9
[  682.454197][T14074] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  682.454213][T14074] RSP: 002b:00007f58819cb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  682.454228][T14074] RAX: ffffffffffffffda RBX: 00007f5880da5fa0 RCX: 00007f5880b8cda9
[  682.454238][T14074] RDX: 0000000000000000 RSI: 0000000020000600 RDI: 0000000000000004
[  682.454248][T14074] RBP: 00007f58819cb090 R08: 0000000000000000 R09: 0000000000000000
[  682.454258][T14074] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  682.454267][T14074] R13: 0000000000000000 R14: 00007f5880da5fa0 R15: 00007ffe63496438
[  682.454289][T14074]  </TASK>
[  683.448508][ T5825] Bluetooth: hci5: command 0x1003 tx timeout
[  683.455173][T13089] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  684.459168][T14087] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  684.712699][ T5924] usb 4-1: new high-speed USB device number 59 using dummy_hcd
[  684.739666][T14104] netlink: 'syz.1.2385': attribute type 1 has an invalid length.
[  684.768290][T14104] 8021q: adding VLAN 0 to HW filter on device bond2
[  684.852620][ T5924] usb 4-1: device descriptor read/64, error -71
[  685.387626][ T5924] usb 4-1: new high-speed USB device number 60 using dummy_hcd
[  685.445566][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[  685.759419][ T5924] usb 4-1: device descriptor read/64, error -71
[  686.347331][ T5924] usb usb4-port1: attempt power cycle
[  725.804785][T11810] sched: DL replenish lagged too much
[  791.452478][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  791.459455][    C0] rcu: 	1-...!: (1 GPs behind) idle=8e8c/1/0x4000000000000000 softirq=53197/53212 fqs=444
[  791.470562][    C0] rcu: 	(detected by 0, t=10506 jiffies, g=54517, q=269 ncpus=2)
[  791.478277][    C0] Sending NMI from CPU 0 to CPUs 1:
[  791.478301][    C1] NMI backtrace for cpu 1
[  791.478311][    C1] CPU: 1 UID: 0 PID: 1167 Comm: kworker/u8:6 Not tainted 6.14.0-rc1-syzkaller-00026-gd009de7d5428 #0
[  791.478326][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  791.478335][    C1] Workqueue: bat_events batadv_nc_worker
[  791.478355][    C1] RIP: 0010:kasan_check_range+0x111/0x1a0
[  791.478373][    C1] Code: 44 89 c2 e8 c1 ec ff ff 83 f0 01 5b 5d 41 5c c3 cc cc cc cc 48 85 d2 74 4f 48 01 ea eb 09 48 83 c0 01 48 39 d0 74 41 80 38 00 <74> f2 eb b2 41 bc 08 00 00 00 45 29 dc 49 8d 14 2c eb 0c 48 83 c0
[  791.478384][    C1] RSP: 0018:ffffc90000a18b08 EFLAGS: 00000046
[  791.478394][    C1] RAX: fffffbfff2dd75cd RBX: fffffbfff2dd75ce RCX: ffffffff8195b23e
[  791.478403][    C1] RDX: fffffbfff2dd75ce RSI: 0000000000000008 RDI: ffffffff96ebae68
[  791.478412][    C1] RBP: fffffbfff2dd75cd R08: 0000000000000000 R09: fffffbfff2dd75cd
[  791.478420][    C1] R10: ffffffff96ebae6f R11: 0000000000000004 R12: 0000000000000002
[  791.478428][    C1] R13: ffff88802823a440 R14: 0000000000000d75 R15: ffff88802823afa8
[  791.478437][    C1] FS:  0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  791.478450][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  791.478459][    C1] CR2: 00007fe1b0127440 CR3: 000000000df80000 CR4: 00000000003526f0
[  791.478467][    C1] DR0: 0000000000000000 DR1: 0000000000000280 DR2: 0000000000000000
[  791.478475][    C1] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  791.478483][    C1] Call Trace:
[  791.478488][    C1]  <NMI>
[  791.478493][    C1]  ? nmi_cpu_backtrace+0x1d8/0x390
[  791.478511][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  791.478528][    C1]  ? nmi_handle+0x1ac/0x5d0
[  791.478546][    C1]  ? kasan_check_range+0x111/0x1a0
[  791.478561][    C1]  ? default_do_nmi+0x6a/0x160
[  791.478578][    C1]  ? exc_nmi+0x170/0x1e0
[  791.478593][    C1]  ? end_repeat_nmi+0xf/0x53
[  791.478612][    C1]  ? hlock_class+0x4e/0x130
[  791.478626][    C1]  ? kasan_check_range+0x111/0x1a0
[  791.478642][    C1]  ? kasan_check_range+0x111/0x1a0
[  791.478658][    C1]  ? kasan_check_range+0x111/0x1a0
[  791.478674][    C1]  </NMI>
[  791.478678][    C1]  <IRQ>
[  791.478682][    C1]  hlock_class+0x4e/0x130
[  791.478695][    C1]  __lock_acquire+0x44d/0x3c40
[  791.478718][    C1]  ? __pfx___lock_acquire+0x10/0x10
[  791.478735][    C1]  ? __pfx___lock_acquire+0x10/0x10
[  791.478753][    C1]  ? lock_acquire.part.0+0x11b/0x380
[  791.478771][    C1]  lock_acquire.part.0+0x11b/0x380
[  791.478787][    C1]  ? advance_sched+0xd8/0xc60
[  791.478804][    C1]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  791.478821][    C1]  ? rcu_is_watching+0x12/0xc0
[  791.478834][    C1]  ? trace_lock_acquire+0x14e/0x1f0
[  791.478848][    C1]  ? advance_sched+0xd8/0xc60
[  791.478864][    C1]  ? lock_acquire+0x2f/0xb0
[  791.478879][    C1]  ? advance_sched+0xd8/0xc60
[  791.478895][    C1]  ? __pfx_advance_sched+0x10/0x10
[  791.478910][    C1]  _raw_spin_lock+0x2e/0x40
[  791.478927][    C1]  ? advance_sched+0xd8/0xc60
[  791.478942][    C1]  advance_sched+0xd8/0xc60
[  791.478960][    C1]  ? timerqueue_del+0x83/0x150
[  791.478976][    C1]  ? do_raw_spin_unlock+0x172/0x230
[  791.478989][    C1]  ? __pfx_advance_sched+0x10/0x10
[  791.479004][    C1]  __hrtimer_run_queues+0x20a/0xae0
[  791.479020][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  791.479032][    C1]  ? read_tsc+0x9/0x20
[  791.479048][    C1]  hrtimer_interrupt+0x392/0x8e0
[  791.479065][    C1]  __sysvec_apic_timer_interrupt+0x10f/0x400
[  791.479084][    C1]  sysvec_apic_timer_interrupt+0x9f/0xc0
[  791.479103][    C1]  </IRQ>
[  791.479107][    C1]  <TASK>
[  791.479111][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  791.479129][    C1] RIP: 0010:lock_acquire.part.0+0x155/0x380
[  791.479146][    C1] Code: b8 ff ff ff ff 65 0f c1 05 80 de 6b 7e 83 f8 01 0f 85 d0 01 00 00 9c 58 f6 c4 02 0f 85 e5 01 00 00 48 85 ed 0f 85 b6 01 00 00 <48> b8 00 00 00 00 00 fc ff df 48 01 c3 48 c7 03 00 00 00 00 48 c7
[  791.479157][    C1] RSP: 0018:ffffc9000431f9d0 EFLAGS: 00000206
[  791.479167][    C1] RAX: 0000000000000046 RBX: 1ffff92000863f3b RCX: 0000000040e1fbc0
[  791.479176][    C1] RDX: 0000000000000001 RSI: ffffffff8b6cf020 RDI: ffffffff8bd34c80
[  791.479184][    C1] RBP: 0000000000000200 R08: 0000000000000000 R09: fffffbfff2dd7598
[  791.479191][    C1] R10: ffffffff96ebacc7 R11: 0000000000000002 R12: 0000000000000000
[  791.479199][    C1] R13: ffffffff8e1bcc80 R14: 0000000000000000 R15: 0000000000000000
[  791.479213][    C1]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  791.479230][    C1]  ? rcu_is_watching+0x12/0xc0
[  791.479242][    C1]  ? trace_lock_acquire+0x14e/0x1f0
[  791.479255][    C1]  ? mark_held_locks+0x9f/0xe0
[  791.479270][    C1]  ? batadv_nc_process_nc_paths.part.0+0xde/0x3e0
[  791.479286][    C1]  ? lock_acquire+0x2f/0xb0
[  791.479301][    C1]  ? batadv_nc_process_nc_paths.part.0+0xde/0x3e0
[  791.479318][    C1]  ? __pfx_batadv_nc_fwd_flush+0x10/0x10
[  791.479332][    C1]  batadv_nc_process_nc_paths.part.0+0xe4/0x3e0
[  791.479347][    C1]  ? batadv_nc_process_nc_paths.part.0+0xde/0x3e0
[  791.479365][    C1]  batadv_nc_worker+0xcc8/0x1060
[  791.479382][    C1]  ? __pfx_batadv_nc_worker+0x10/0x10
[  791.479396][    C1]  ? rcu_is_watching+0x12/0xc0
[  791.479409][    C1]  ? trace_lock_acquire+0x14e/0x1f0
[  791.479423][    C1]  ? process_one_work+0x921/0x1ba0
[  791.479439][    C1]  ? lock_acquire+0x2f/0xb0
[  791.479454][    C1]  ? process_one_work+0x921/0x1ba0
[  791.479471][    C1]  process_one_work+0x9c5/0x1ba0
[  791.479490][    C1]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  791.479506][    C1]  ? __pfx_process_one_work+0x10/0x10
[  791.479525][    C1]  ? assign_work+0x1a0/0x250
[  791.479540][    C1]  worker_thread+0x6c8/0xf00
[  791.479558][    C1]  ? __kthread_parkme+0x148/0x220
[  791.479571][    C1]  ? __pfx_worker_thread+0x10/0x10
[  791.479587][    C1]  kthread+0x3af/0x750
[  791.479602][    C1]  ? __pfx_kthread+0x10/0x10
[  791.479615][    C1]  ? lock_acquire+0x2f/0xb0
[  791.479632][    C1]  ? __pfx_kthread+0x10/0x10
[  791.479645][    C1]  ret_from_fork+0x45/0x80
[  791.479660][    C1]  ? __pfx_kthread+0x10/0x10
[  791.479674][    C1]  ret_from_fork_asm+0x1a/0x30
[  791.479691][    C1]  </TASK>
[  791.480297][    C0] rcu: rcu_preempt kthread starved for 6565 jiffies! g54517 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[  792.074734][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  792.084695][    C0] rcu: RCU grace-period kthread stack dump:
[  792.090570][    C0] task:rcu_preempt     state:R  running task     stack:28048 pid:17    tgid:17    ppid:2      task_flags:0x208040 flags:0x00004000
[  792.104056][    C0] Call Trace:
[  792.107328][    C0]  <TASK>
[  792.110256][    C0]  __schedule+0xf43/0x5890
[  792.114680][    C0]  ? __pfx___lock_acquire+0x10/0x10
[  792.119887][    C0]  ? __pfx___schedule+0x10/0x10
[  792.124740][    C0]  ? schedule+0x298/0x350
[  792.129071][    C0]  ? __pfx_lock_release+0x10/0x10
[  792.134101][    C0]  ? lock_acquire+0x2f/0xb0
[  792.138605][    C0]  ? schedule+0x1fd/0x350
[  792.142939][    C0]  schedule+0xe7/0x350
[  792.147009][    C0]  schedule_timeout+0x124/0x280
[  792.151859][    C0]  ? __pfx_schedule_timeout+0x10/0x10
[  792.157248][    C0]  ? __pfx_process_timeout+0x10/0x10
[  792.162555][    C0]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  792.168370][    C0]  ? prepare_to_swait_event+0xf3/0x470
[  792.173833][    C0]  rcu_gp_fqs_loop+0x1eb/0xb00
[  792.178605][    C0]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[  792.183893][    C0]  ? rcu_gp_init+0xc82/0x1630
[  792.188578][    C0]  ? _raw_spin_unlock_irq+0x2e/0x50
[  792.193787][    C0]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  792.199604][    C0]  rcu_gp_kthread+0x271/0x380
[  792.204289][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  792.209498][    C0]  ? lockdep_hardirqs_on+0x7c/0x110
[  792.214699][    C0]  ? __kthread_parkme+0x148/0x220
[  792.219725][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  792.224927][    C0]  kthread+0x3af/0x750
[  792.228996][    C0]  ? __pfx_kthread+0x10/0x10
[  792.233591][    C0]  ? __pfx_kthread+0x10/0x10
[  792.238178][    C0]  ret_from_fork+0x45/0x80
[  792.242595][    C0]  ? __pfx_kthread+0x10/0x10
[  792.247183][    C0]  ret_from_fork_asm+0x1a/0x30
[  792.251954][    C0]  </TASK>
[  792.254968][    C0] rcu: Stack dump where RCU GP kthread last ran:
[  792.261280][    C0] CPU: 0 UID: 0 PID: 14097 Comm: syz.4.2383 Not tainted 6.14.0-rc1-syzkaller-00026-gd009de7d5428 #0
[  792.272031][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  792.282084][    C0] RIP: 0010:smp_call_function_many_cond+0x4ea/0x12c0
[  792.288758][    C0] Code: fc 04 0c 00 f3 90 41 0f b6 04 24 40 38 c5 7c 08 84 c0 0f 85 e8 0b 00 00 8b 43 08 31 ff 83 e0 01 41 89 c5 89 c6 e8 d6 ff 0b 00 <45> 85 ed 75 d0 e8 cc 04 0c 00 e8 c7 04 0c 00 44 8b 6c 24 04 bf 07
[  792.308362][    C0] RSP: 0018:ffffc9001c4df4f0 EFLAGS: 00000293
[  792.314424][    C0] RAX: 0000000000000000 RBX: ffff8880b8744a80 RCX: ffffffff81adcd3a
[  792.322388][    C0] RDX: ffff88807beac880 RSI: 0000000000000000 RDI: 0000000000000005
[  792.330350][    C0] RBP: 0000000000000003 R08: 0000000000000005 R09: 0000000000000000
[  792.338322][    C0] R10: 0000000000000001 R11: 0000000000000003 R12: ffffed10170e8951
[  792.346290][    C0] R13: 0000000000000001 R14: ffff8880b863fe80 R15: ffff8880b8744a88
[  792.354254][    C0] FS:  0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[  792.363177][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  792.369753][    C0] CR2: 00007f058be81261 CR3: 0000000045954000 CR4: 00000000003526f0
[  792.377719][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  792.385681][    C0] DR3: 000000000000000c DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  792.393646][    C0] Call Trace:
[  792.396916][    C0]  <IRQ>
[  792.399753][    C0]  ? rcu_check_gp_kthread_starvation+0x31b/0x450
[  792.406076][    C0]  ? do_raw_spin_unlock+0x172/0x230
[  792.411269][    C0]  ? rcu_sched_clock_irq+0x247a/0x3310
[  792.416729][    C0]  ? timekeeping_advance+0x72e/0xa90
[  792.422010][    C0]  ? __pfx_rcu_sched_clock_irq+0x10/0x10
[  792.427637][    C0]  ? __asan_memcpy+0x3c/0x60
[  792.432229][    C0]  ? cgroup_rstat_updated+0x2a/0xb20
[  792.437515][    C0]  ? rcu_is_watching+0x12/0xc0
[  792.442277][    C0]  ? update_process_times+0x178/0x2d0
[  792.447651][    C0]  ? __pfx_update_process_times+0x10/0x10
[  792.453371][    C0]  ? update_wall_time+0x1c/0x40
[  792.458221][    C0]  ? tick_nohz_handler+0x376/0x530
[  792.463329][    C0]  ? __pfx_tick_nohz_handler+0x10/0x10
[  792.468780][    C0]  ? __hrtimer_run_queues+0x5fb/0xae0
[  792.474152][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  792.479866][    C0]  ? read_tsc+0x9/0x20
[  792.483938][    C0]  ? hrtimer_interrupt+0x392/0x8e0
[  792.489054][    C0]  ? __sysvec_apic_timer_interrupt+0x10f/0x400
[  792.495210][    C0]  ? sysvec_apic_timer_interrupt+0x9f/0xc0
[  792.501017][    C0]  </IRQ>
[  792.503942][    C0]  <TASK>
[  792.506866][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  792.513025][    C0]  ? smp_call_function_many_cond+0x4ea/0x12c0
[  792.519085][    C0]  ? smp_call_function_many_cond+0x4ea/0x12c0
[  792.525148][    C0]  ? __pfx_should_flush_tlb+0x10/0x10
[  792.530520][    C0]  ? __pfx_flush_tlb_func+0x10/0x10
[  792.535713][    C0]  ? __pfx_should_flush_tlb+0x10/0x10
[  792.541077][    C0]  on_each_cpu_cond_mask+0x40/0x90
[  792.546185][    C0]  flush_tlb_mm_range+0x271/0x4a0
[  792.551204][    C0]  ? __pfx_flush_tlb_mm_range+0x10/0x10
[  792.556748][    C0]  ? rcu_is_watching+0x12/0xc0
[  792.561511][    C0]  unmap_page_range+0x1f83/0x43a0
[  792.566553][    C0]  ? __pfx_unmap_page_range+0x10/0x10
[  792.571925][    C0]  ? mas_next_slot+0x12d3/0x21b0
[  792.576860][    C0]  ? uprobe_munmap+0x20/0x5c0
[  792.581542][    C0]  unmap_single_vma+0x194/0x2b0
[  792.586395][    C0]  unmap_vmas+0x22f/0x490
[  792.590727][    C0]  ? __pfx_unmap_vmas+0x10/0x10
[  792.595582][    C0]  ? mas_next_slot+0x12d3/0x21b0
[  792.600528][    C0]  exit_mmap+0x1c1/0xba0
[  792.604780][    C0]  ? __pfx_exit_mmap+0x10/0x10
[  792.609549][    C0]  ? __pfx_mark_lock+0x10/0x10
[  792.614329][    C0]  __mmput+0x12a/0x410
[  792.618400][    C0]  mmput+0x62/0x70
[  792.622123][    C0]  do_exit+0x9ba/0x2d70
[  792.626275][    C0]  ? get_signal+0x8f7/0x26c0
[  792.630867][    C0]  ? __pfx_do_exit+0x10/0x10
[  792.635451][    C0]  ? do_raw_spin_lock+0x12d/0x2c0
[  792.640472][    C0]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  792.645845][    C0]  do_group_exit+0xd3/0x2a0
[  792.650347][    C0]  get_signal+0x24ed/0x26c0
[  792.654858][    C0]  ? __pfx_get_signal+0x10/0x10
[  792.659715][    C0]  arch_do_signal_or_restart+0x90/0x7e0
[  792.665256][    C0]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  792.671413][    C0]  ? do_user_addr_fault+0x6dc/0x13f0
[  792.676703][    C0]  irqentry_exit_to_user_mode+0x13f/0x280
[  792.682425][    C0]  asm_exc_page_fault+0x26/0x30
[  792.687275][    C0] RIP: 0033:0x7fc3f7e53b33
[  792.691686][    C0] Code: Unable to access opcode bytes at 0x7fc3f7e53b09.
[  792.698692][    C0] RSP: 002b:00007fff9d7d4640 EFLAGS: 00010246
[  792.704755][    C0] RAX: 000000002057eff8 RBX: 0000000000000002 RCX: 0000000000000000
[  792.712719][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000055557180c3c8
[  792.720680][    C0] RBP: 00007fff9d7d4758 R08: 0000000000000000 R09: 0000000000000000
[  792.728647][    C0] R10: 0000000000000000 R11: 0000000000000000 R12: 00000000000a7220
[  792.736612][    C0] R13: 00007fc3f81a5fa0 R14: 0000000000000032 R15: fffffffffffffffe
[  792.744589][    C0]  </TASK>