last executing test programs:

17m56.764435491s ago: executing program 3 (id=381):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x6, 0x10, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000002000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000060000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008f10000b704000000000000850000003300000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000b80)={r2, 0x2000012, 0xd, 0x0, &(0x7f0000000c40)="63eced8e46dc3f2ddf33c9e9b9", 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xb}, 0x50)

17m56.552362078s ago: executing program 3 (id=382):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x14, 0x16, 0xa, 0x1, 0x0, 0x0, {0x1}}, @NFT_MSG_DELFLOWTABLE={0x38, 0x18, 0xa, 0x101, 0xb00, 0x0, {0x1}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0xc, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}]}]}], {0x14, 0x10}}, 0x94}}, 0x0)

17m56.42683122s ago: executing program 3 (id=384):
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x4, 0x0, &(0x7f0000000100)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41100, 0x43, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7fff}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x40001e0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_init_net_socket$ax25(0x3, 0x5, 0xc4)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)={0x30, r4, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_FWMARK={0x8, 0x7, 0x1ff}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}]}, 0x30}, 0x1, 0x0, 0x0, 0x24000855}, 0x0)

17m55.361062986s ago: executing program 3 (id=386):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='devpts\x00', 0x0, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005848, 0x0)
mount$fuse(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x84000, 0x0)
move_mount(r0, &(0x7f0000000240)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x100)

17m54.568087907s ago: executing program 3 (id=391):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000ac0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f00000017c0)={0x0, 0x0, &(0x7f0000001780)={&(0x7f0000000cc0)={0x58, 0x0, 0x1, 0x70bd25, 0x25dfdbff, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_FRAME={0x2e, 0x33, @mgmt_frame=@action={{{0x0, 0x0, 0xd, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1}, {0xd}, @device_b, @broadcast, @from_mac, {0x0, 0x4}, @value=@ver_80211n={0x0, 0x3, 0x1, 0x3, 0x0, 0x3, 0x0, 0x0, 0x1, 0x1}}, @delba={0x3, 0x2, {{0x0, 0x0, 0xe}, 0x8, {0xbd, 0x6, @broadcast}}}}}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x58}, 0x1, 0x0, 0x0, 0x4040}, 0x4000000)

17m54.18827043s ago: executing program 3 (id=397):
socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$evdev(&(0x7f0000000640), 0x0, 0x8840)
r0 = syz_io_uring_setup(0x66e, &(0x7f0000000940)={0x0, 0x0, 0x10100, 0x0, 0x2e9}, &(0x7f0000000380)=<r1=>0x0, &(0x7f0000000200)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000140)=[{0x0}], 0x1})
io_uring_enter(r0, 0x567, 0xfffffffd, 0x28, 0x0, 0x0)

17m53.927546153s ago: executing program 32 (id=397):
socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$evdev(&(0x7f0000000640), 0x0, 0x8840)
r0 = syz_io_uring_setup(0x66e, &(0x7f0000000940)={0x0, 0x0, 0x10100, 0x0, 0x2e9}, &(0x7f0000000380)=<r1=>0x0, &(0x7f0000000200)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000140)=[{0x0}], 0x1})
io_uring_enter(r0, 0x567, 0xfffffffd, 0x28, 0x0, 0x0)

17m37.56588399s ago: executing program 4 (id=501):
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1400000015000103000000001c0000000a"], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x0)

17m37.328822141s ago: executing program 4 (id=505):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={0x0, 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @link_local={0x17, 0x80, 0xc2, 0x6, 0x5}, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "182325", 0x18, 0x2c, 0x0, @remote, @local, {[@routing={0x8, 0x2, 0x2, 0x21, 0x0, [@empty]}]}}}}}, 0x0)
syz_emit_ethernet(0x6e, &(0x7f00000001c0)=ANY=[@ANYBLOB="aaaaaaaaaaaa1780c206050086dd6018232500382c00fe8000000000000000000000000000bbfe8000000000000000000000000000aa2b0002"], 0x0)

17m37.194911787s ago: executing program 4 (id=507):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @link_local={0x17, 0x80, 0xc2, 0x6, 0x5}, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "182325", 0x18, 0x2c, 0x0, @remote, @local, {[@routing={0x8, 0x2, 0x2, 0x21, 0x0, [@empty]}]}}}}}, 0x0)

17m37.030832045s ago: executing program 4 (id=511):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='devpts\x00', 0x0, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005848, 0x0)
mount$fuse(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x100000, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x84000, 0x0)
move_mount(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x100)

17m36.818833383s ago: executing program 4 (id=513):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
setreuid(0xee00, 0x0)
writev(r0, &(0x7f0000000000)=[{0x0}], 0x1)

17m36.01283224s ago: executing program 4 (id=518):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @link_local={0x17, 0x80, 0xc2, 0x6, 0x5}, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "182325", 0x18, 0x2c, 0x0, @remote, @local, {[@routing={0x8, 0x2, 0x2, 0x21, 0x0, [@empty]}]}}}}}, 0x0)
syz_emit_ethernet(0x6e, &(0x7f00000001c0)=ANY=[@ANYBLOB="aaaaaaaaaaaa1780c206050086dd6018232500382c00fe8000000000000000000000000000bbfe8000000000000000000000000000aa2b0002"], 0x0)

17m35.489294946s ago: executing program 33 (id=518):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @link_local={0x17, 0x80, 0xc2, 0x6, 0x5}, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "182325", 0x18, 0x2c, 0x0, @remote, @local, {[@routing={0x8, 0x2, 0x2, 0x21, 0x0, [@empty]}]}}}}}, 0x0)
syz_emit_ethernet(0x6e, &(0x7f00000001c0)=ANY=[@ANYBLOB="aaaaaaaaaaaa1780c206050086dd6018232500382c00fe8000000000000000000000000000bbfe8000000000000000000000000000aa2b0002"], 0x0)

1m36.361906143s ago: executing program 6 (id=3063):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e20, @empty}], 0x10)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000000c0)={<r1=>0x0, 0x10, &(0x7f0000000040)=[@in={0x2, 0x4e20, @local}]}, &(0x7f0000000100)=0x14)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f0000000900)={r1, 0x6de, "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"}, &(0x7f0000000400)=0x6e6)

1m34.037930894s ago: executing program 6 (id=3067):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)

1m33.601038292s ago: executing program 6 (id=3069):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socket$can_j1939(0x1d, 0x2, 0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000300)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$inet6_udplite(0xa, 0x2, 0x88)
sigaltstack(&(0x7f0000001000)={&(0x7f0000000000)=""/4088, 0x0, 0xff54}, 0x0)
sigaltstack(0x0, &(0x7f0000001280)={0x0})
ioctl$sock_inet6_SIOCDELRT(r4, 0x890c, &(0x7f0000000640)={@remote, @dev={0xfe, 0x80, '\x00', 0x10}, @empty, 0x9, 0x40, 0x8000, 0x100, 0x0, 0x110227})
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x20040768, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='cubic', 0x5)
sendto(r0, &(0x7f0000000780)="7057dacba22e", 0x6, 0x24000011, 0x0, 0x0)
sendto$inet(r0, &(0x7f0000000700)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba1e9bb7ec30de54e3d82d4e023f9a336ec7e55fefd0d3c8f30eea40e40a6e32d6873837bb90f2fafc91", 0xffffffffffffff29, 0x80, 0x0, 0x0)

1m31.168880616s ago: executing program 6 (id=3074):
socket(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000c40)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2901090, 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
mount(0x0, &(0x7f0000000d40)='./file0/../file0/../file0\x00', &(0x7f00000002c0)='sysfs\x00', 0x0, 0x0)
pivot_root(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f00000001c0)='./file0/../file0/../file0\x00')

1m30.300736402s ago: executing program 6 (id=3075):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000120000002400000008000000850000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000005c0)='sched_switch\x00', r0}, 0x18)
ioctl$VHOST_VDPA_SET_CONFIG(0xffffffffffffffff, 0x4008af74, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x90e7d000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000340)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x80383, 0x0)
r5 = syz_open_dev$admmidi(&(0x7f0000000140), 0x20, 0x0)
read$midi(r5, 0x0, 0x14)
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_open_dev$video(0x0, 0x3ff, 0x208301)
close_range(r4, 0xffffffffffffffff, 0x0)

1m28.492725397s ago: executing program 6 (id=3079):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x14, 0x2, 0x6, 0x5}, 0x14}}, 0x0)

1m26.918790304s ago: executing program 34 (id=3079):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x14, 0x2, 0x6, 0x5}, 0x14}}, 0x0)

1m23.706065151s ago: executing program 1 (id=3088):
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(0xffffffffffffffff, 0x400455c8, 0x4)
mount$afs(0x0, 0x0, &(0x7f0000000200), 0x4080, &(0x7f0000000340)={[{@dyn}, {@flock_openafs}]})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$NFC_CMD_LLC_SDREQ(0xffffffffffffffff, 0x0, 0x480c0)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/stat\x00', 0x0, 0x0)
pread64(r4, &(0x7f00000024c0)=""/209, 0xfd36, 0x698)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000240), 0x4)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000006800e97800000000000000000a0000000000000008000500", @ANYRES8=r5], 0x20}}, 0x0)
sendmsg$nl_route(r6, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="240000001800090400000000000000000a000000000000030000000008001e0001"], 0x24}}, 0x0)

1m22.401153862s ago: executing program 1 (id=3090):
socket(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000c40)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2901090, 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
mount(0x0, &(0x7f0000000d40)='./file0/../file0/../file0\x00', &(0x7f00000002c0)='sysfs\x00', 0x0, 0x0)
pivot_root(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f00000001c0)='./file0/../file0/../file0\x00')
ioctl$DRM_IOCTL_MODE_GET_LEASE(0xffffffffffffffff, 0xc01064c8, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={0x0, 0xfc}}, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)

1m21.890528277s ago: executing program 1 (id=3093):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socket$can_j1939(0x1d, 0x2, 0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000300)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$inet6_udplite(0xa, 0x2, 0x88)
sigaltstack(&(0x7f0000001000)={&(0x7f0000000000)=""/4088, 0x0, 0xff54}, 0x0)
sigaltstack(0x0, &(0x7f0000001280)={0x0})
ioctl$sock_inet6_SIOCDELRT(r4, 0x890c, &(0x7f0000000640)={@remote, @dev={0xfe, 0x80, '\x00', 0x10}, @empty, 0x9, 0x40, 0x8000, 0x100, 0x0, 0x110227})
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto(r0, &(0x7f0000000780)="7057dacba22e", 0x6, 0x24000011, 0x0, 0x0)
sendto$inet(r0, &(0x7f0000000700)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba1e9bb7ec30de54e3d82d4e023f9a336ec7e55fefd0d3c8f30eea40e40a6e32d6873837bb90f2fafc91", 0xffffffffffffff29, 0x80, 0x0, 0x0)

1m20.891603597s ago: executing program 1 (id=3096):
r0 = socket(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000c40)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2901090, 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
mount(0x0, &(0x7f0000000d40)='./file0/../file0/../file0\x00', &(0x7f00000002c0)='sysfs\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GET_LEASE(0xffffffffffffffff, 0xc01064c8, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={0x0, 0xfc}}, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0xfffffc}, 0x10)
write(r0, &(0x7f0000000000)="240000001a005f0214f9f407000901000000000000000005000000000800040001000000", 0x24)

1m18.451269435s ago: executing program 1 (id=3100):
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5)
close(0x4)
syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/cgroup\x00')
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f05ebbee1, 0x8031, 0xffffffffffffffff, 0x0)
r0 = socket(0x14, 0x2, 0x4)
ioctl$SIOCGETMIFCNT_IN6(r0, 0x89e0, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x61d0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x100, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000001380)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x24040004}, 0x40c1)

1m17.423240185s ago: executing program 1 (id=3103):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x6, 0x0, 0x1}}, 0x40)
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0)
r3 = eventfd(0xffffffff)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000080000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf09000000000000550901000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$VHOST_SET_LOG_FD(r2, 0x4004af07, &(0x7f0000000240)=r3)
ioctl$VHOST_SET_VRING_KICK(r2, 0x4008af20, &(0x7f0000000040)={0x1, r3})
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), r5)
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r2, 0x4004af61, &(0x7f0000000000)=0x1)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="070000000400c4ebbc788b59f94145c0b4dc96cd", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0xf, 0x9, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7030000000000eb850000001b000000b700000000000000850000002b00000095bf275275b0e416c84f402f982d22949feaeaa6a21d8ad579c485385f688944e1510c27e4d560b4010000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @cgroup_device, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DESTROY(r7, &(0x7f00000002c0)={&(0x7f0000000300), 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x14, 0x3, 0x6, 0x201, 0x0, 0x0, {0xd, 0x0, 0x9}}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x8000)
r8 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24, 0x24, 0x0, 0x3}, 0x24}}, 0x0)
getsockname$packet(r8, &(0x7f0000000200)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14)
sendmsg$nl_route_sched(r8, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=@newtfilter={0x48, 0x2c, 0xd27, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r9, {0x0, 0x9}, {}, {0x1c, 0xfff1}}, [@filter_kind_options=@f_flower={{0xb}, {0x18, 0x2, [@TCA_FLOWER_INDEV={0x14, 0x2, 'pim6reg1\x00'}]}}]}, 0x48}}, 0x8c000)

1m16.774581982s ago: executing program 35 (id=3103):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x6, 0x0, 0x1}}, 0x40)
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0)
r3 = eventfd(0xffffffff)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000080000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf09000000000000550901000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$VHOST_SET_LOG_FD(r2, 0x4004af07, &(0x7f0000000240)=r3)
ioctl$VHOST_SET_VRING_KICK(r2, 0x4008af20, &(0x7f0000000040)={0x1, r3})
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), r5)
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r2, 0x4004af61, &(0x7f0000000000)=0x1)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="070000000400c4ebbc788b59f94145c0b4dc96cd", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0xf, 0x9, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7030000000000eb850000001b000000b700000000000000850000002b00000095bf275275b0e416c84f402f982d22949feaeaa6a21d8ad579c485385f688944e1510c27e4d560b4010000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @cgroup_device, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DESTROY(r7, &(0x7f00000002c0)={&(0x7f0000000300), 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x14, 0x3, 0x6, 0x201, 0x0, 0x0, {0xd, 0x0, 0x9}}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x8000)
r8 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24, 0x24, 0x0, 0x3}, 0x24}}, 0x0)
getsockname$packet(r8, &(0x7f0000000200)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14)
sendmsg$nl_route_sched(r8, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=@newtfilter={0x48, 0x2c, 0xd27, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r9, {0x0, 0x9}, {}, {0x1c, 0xfff1}}, [@filter_kind_options=@f_flower={{0xb}, {0x18, 0x2, [@TCA_FLOWER_INDEV={0x14, 0x2, 'pim6reg1\x00'}]}}]}, 0x48}}, 0x8c000)

51.742651998s ago: executing program 0 (id=3152):
bind$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(0xffffffffffffffff, 0x3)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10)
syz_emit_ethernet(0x42, &(0x7f00000002c0)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x34, 0x65, 0x0, 0xf, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x8, 0x2, 0xffff, 0x0, 0x0, {[@timestamp={0x8, 0xa, 0x10009, 0x52}]}}}}}}}, 0x0)
syz_emit_ethernet(0x42, &(0x7f0000000140)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x34, 0xffff, 0x0, 0x81, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x8, 0x4, 0xca, 0x0, 0x1000, {[@timestamp={0x8, 0xa, 0x81, 0x20000009}]}}}}}}}, 0x0)

51.493109611s ago: executing program 0 (id=3153):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x15, 0x5, 0x0)
bind$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @broadcast}}, 0x1c)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'dummy0\x00', <r2=>0x0})
r3 = gettid()
r4 = socket(0x10, 0x803, 0x0)
r5 = socket$inet6_sctp(0xa, 0x801, 0x84)
getsockopt$bt_hci(r5, 0x84, 0x74, 0x0, &(0x7f0000000000)=0x43)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newlink={0x3c, 0x10, 0x403, 0xfffffff9, 0x25dfdbfe, {0x0, 0x0, 0x74, r2, 0x19c04, 0x55007}, [@IFLA_NET_NS_PID={0x8, 0x13, r3}, @IFLA_IFNAME={0x14, 0x3, 'veth0_virt_wifi\x00'}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4802}, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/12, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)

51.207052347s ago: executing program 0 (id=3154):
r0 = socket(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
mount(0x0, &(0x7f0000000d40)='./file0/../file0/../file0\x00', &(0x7f00000002c0)='sysfs\x00', 0x0, 0x0)
pivot_root(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f00000001c0)='./file0/../file0/../file0\x00')
ioctl$DRM_IOCTL_MODE_GET_LEASE(0xffffffffffffffff, 0xc01064c8, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={0x0, 0xfc}}, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0xfffffc}, 0x10)
write(r0, &(0x7f0000000000)="240000001a005f0214f9f407000901000000000000000005000000000800040001000000", 0x24)

49.921276095s ago: executing program 0 (id=3156):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000300)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x3)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioprio_set$pid(0x0, 0x0, 0x2004)
bind$l2tp6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x20)
r4 = socket$l2tp6(0xa, 0x2, 0x73)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r4, &(0x7f00000000c0)={0xa0000005})
bind$l2tp6(r4, &(0x7f0000000100)={0xa, 0x0, 0x0, @empty}, 0x4a)
getpid()
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x8)

48.445070116s ago: executing program 0 (id=3160):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000002100), 0x280449c, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r0, &(0x7f00000093c0)={0x2020}, 0x2020)
write$FUSE_NOTIFY_DELETE(r0, &(0x7f0000000280)=ANY=[@ANYBLOB="2a0000000600000000000000000000000100000000000000000000000000000001000000020000000008f3a93a8692207b034b0a3e32"], 0x2a)

47.582449658s ago: executing program 0 (id=3163):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffff}, 0x0)
syz_open_dev$sndmidi(0x0, 0x5, 0x141101)
r2 = getpid()
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000001c0)={'\x00', 0xa1, 0x1, 0xfffffff7, 0x0, 0xfe, r2})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_DETACH(0x8, 0x0, 0x10)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
r4 = syz_init_net_socket$ax25(0x3, 0x2, 0x6)
setsockopt$ax25_int(r4, 0x101, 0x3, &(0x7f0000000240)=0x1ff, 0x4)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x400, 0x0, 0x30}, 0x9c)
bind$inet6(r3, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r3, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
shutdown(r3, 0x2)
close(r3)
syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000180)=ANY=[@ANYBLOB="1201010200000010f3b1000000000102030109"], 0x0)
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000640)=ANY=[@ANYBLOB="280000002e000100000000000000000008000000", @ANYRES32, @ANYBLOB="08000014dd0d10cbab8b84dc474f", @ANYRES32=0xee00, @ANYBLOB="0800008004000100"], 0x28}], 0x1}, 0x0)
r6 = syz_open_dev$ttys(0xc, 0x2, 0x1)
read$snapshot(0xffffffffffffffff, &(0x7f00000008c0)=""/4096, 0x1000)
syz_usb_connect(0x2, 0x2d, &(0x7f0000000000)=ANY=[@ANYRES32=r6], 0x0)
r7 = syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x800)
syz_io_uring_setup(0xeeb, &(0x7f0000000480)={0x0, 0x8002, 0x10100, 0x0, 0x3c8}, &(0x7f00000001c0)=<r8=>0x0, &(0x7f0000000140)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x40, 0x0, @fd=r7, 0x73b, &(0x7f0000000500)=[{&(0x7f0000000240)=""/157, 0x9d}], 0x1, 0x0, 0x1})

30.587085469s ago: executing program 5 (id=3199):
openat$dsp1(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r3, &(0x7f0000000440), 0x10)
listen(r3, 0x0)
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
writev(r4, &(0x7f00000003c0)=[{&(0x7f0000000640)="98", 0x1}], 0x1)
r5 = accept4$unix(r3, 0x0, 0x0, 0x0)
recvmmsg(r5, &(0x7f0000001680)=[{{0x0, 0x0, &(0x7f0000003380)=[{&(0x7f0000000140)=""/120, 0x78}, {&(0x7f0000000040)=""/40, 0x28}, {&(0x7f0000003300)=""/107, 0x6b}], 0x3}}], 0x4000000000000a1, 0x2, 0x0)
recvfrom$unix(r5, &(0x7f00000002c0)=""/236, 0xec, 0x10120, 0x0, 0x0)

29.542865803s ago: executing program 5 (id=3203):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x6, 0x0, 0x1}}, 0x40)
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0)
r3 = eventfd(0xffffffff)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000080000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf09000000000000550901000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$VHOST_SET_LOG_FD(r2, 0x4004af07, &(0x7f0000000240)=r3)
ioctl$VHOST_SET_VRING_KICK(r2, 0x4008af20, &(0x7f0000000040)={0x1, r3})
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), r5)
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0xf, 0x9, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7030000000000eb850000001b000000b700000000000000850000002b00000095bf275275b0e416c84f402f982d22949feaeaa6a21d8ad579c485385f688944e1510c27e4d560b4010000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @cgroup_device, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r6, 0x0, 0x4000000000000000}, 0x18)
r7 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24, 0x24, 0x0, 0x3}, 0x24}}, 0x0)
getsockname$packet(r7, &(0x7f0000000200)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14)
sendmsg$nl_route_sched(r7, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=@newtfilter={0x48, 0x2c, 0xd27, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r8, {0x0, 0x9}, {}, {0x1c, 0xfff1}}, [@filter_kind_options=@f_flower={{0xb}, {0x18, 0x2, [@TCA_FLOWER_INDEV={0x14, 0x2, 'pim6reg1\x00'}]}}]}, 0x48}}, 0x8c000)

26.38705112s ago: executing program 5 (id=3211):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000100)=@newlink={0x34, 0x10, 0x403, 0x70bd25, 0x25dfdbfc, {0x0, 0x0, 0x4, 0x0, 0x300}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @lowpan={{0xb}, {0x4}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x8004081}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
syz_emit_ethernet(0x52, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb08004c000078", @ANYRES32=0x41424344], 0x0)
r0 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850", 0x4, 0xfffffffffffffffe)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="4800000010000504"], 0x48}, 0x1, 0x0, 0x0, 0x4000011}, 0x0)
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r1, r0}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = dup(r3)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r3, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

24.062997825s ago: executing program 7 (id=3215):
syz_open_dev$tty1(0xc, 0x4, 0x3)
syz_80211_join_ibss(&(0x7f0000000340)='wlan1\x00', 0x0, 0x0, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ptrace$ARCH_SHSTK_DISABLE(0x1e, 0x0, 0x1, 0x5002)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
syz_open_dev$dri(&(0x7f0000000240), 0xd21, 0x4000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, 0x0, 0x0, 0x4}, 0x94)
sendmsg(0xffffffffffffffff, &(0x7f0000001500)={0x0, 0x0, 0x0}, 0x4000042)
syz_open_dev$sndctrl(0x0, 0x0, 0x0)
openat$audio(0xffffffffffffff9c, 0x0, 0x40000000040201, 0x0)
r2 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f0000000100)={@empty}, 0x14)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x1, 0x8e)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000140)={0x0, 0x10, &(0x7f0000000100)=[@in={0x2, 0x4e20, @private=0xa010100}]}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r4, 0x84, 0x73, 0x0, &(0x7f00000003c0))
r5 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_GUEST_MEMFD(r5, 0xc040aed4, &(0x7f00000001c0)={0x40000001fe0000})
fallocate(r6, 0x1, 0x100000000, 0x80000000)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000002080)={0xf, {"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", 0x1000}}, 0x1006)

23.906039606s ago: executing program 5 (id=3216):
r0 = socket(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000c40)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2901090, 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
mount(0x0, &(0x7f0000000d40)='./file0/../file0/../file0\x00', &(0x7f00000002c0)='sysfs\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GET_LEASE(0xffffffffffffffff, 0xc01064c8, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={0x0, 0xfc}}, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
write(r0, &(0x7f0000000000)="240000001a005f0214f9f407000901000000000000000005000000000800040001000000", 0x24)

21.613697229s ago: executing program 5 (id=3220):
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe6, 0x0)

21.371076792s ago: executing program 7 (id=3222):
syz_open_dev$tty1(0xc, 0x4, 0x3)
syz_80211_join_ibss(&(0x7f0000000340)='wlan1\x00', 0x0, 0x0, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ptrace$ARCH_SHSTK_DISABLE(0x1e, 0x0, 0x1, 0x5002)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
syz_open_dev$dri(&(0x7f0000000240), 0xd21, 0x4000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, 0x0, 0x0, 0x4}, 0x94)
sendmsg(0xffffffffffffffff, &(0x7f0000001500)={0x0, 0x0, 0x0}, 0x4000042)
syz_open_dev$sndctrl(0x0, 0x0, 0x0)
openat$audio(0xffffffffffffff9c, 0x0, 0x40000000040201, 0x0)
r2 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f0000000100)={@empty}, 0x14)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x1, 0x8e)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000140)={0x0, 0x10, &(0x7f0000000100)=[@in={0x2, 0x4e20, @private=0xa010100}]}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r4, 0x84, 0x73, 0x0, &(0x7f00000003c0))
r5 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_GUEST_MEMFD(r5, 0xc040aed4, &(0x7f00000001c0)={0x40000001fe0000})
fallocate(r6, 0x1, 0x100000000, 0x80000000)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000002080)={0xf, {"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", 0x1000}}, 0x1006)

21.128829271s ago: executing program 5 (id=3223):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000300))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1, 0x11, r2, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f0000000040))
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f00000001c0)={0x44, 0x0, &(0x7f0000002580)=[@transaction={0x40406300, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000500)={0x4c, 0x0, &(0x7f0000000580)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})
r3 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
read$FUSE(r3, &(0x7f0000000480)={0x2020}, 0x2020)

20.032083339s ago: executing program 36 (id=3223):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000300))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1, 0x11, r2, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f0000000040))
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f00000001c0)={0x44, 0x0, &(0x7f0000002580)=[@transaction={0x40406300, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000500)={0x4c, 0x0, &(0x7f0000000580)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})
r3 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
read$FUSE(r3, &(0x7f0000000480)={0x2020}, 0x2020)

18.264698565s ago: executing program 7 (id=3229):
r0 = socket$nl_route(0x10, 0x3, 0x0)
bind$netlink(r0, &(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100}, 0xc)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
bind$netlink(r2, &(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc)
r3 = socket$nl_route(0x10, 0x3, 0x0)
bind$netlink(r3, &(0x7f0000000240)={0x10, 0x0, 0x0, 0x8000}, 0xc)
r4 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r4, &(0x7f00000002c0)={0x10, 0x0, 0x25dfdbfb, 0x400000}, 0xc)
r5 = socket$nl_route(0x10, 0x3, 0x0)
bind$netlink(r5, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc)
r6 = socket$nl_route(0x10, 0x3, 0x0)
bind$netlink(r6, &(0x7f00000000c0)={0x10, 0x0, 0xfffffffd, 0x2000000}, 0xc)
r7 = socket$netlink(0x10, 0x3, 0x9)
bind$netlink(r7, &(0x7f0000000340)={0x10, 0x0, 0x0, 0x22ffffffff}, 0xc)
r8 = socket$netlink(0x10, 0x3, 0x12)
bind$netlink(r8, 0x0, 0x0)
r9 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r9, &(0x7f0000000340)={0x10, 0x0, 0x0, 0x1000}, 0xc)
r10 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r10, &(0x7f0000000340)={0x10, 0x0, 0x0, 0x22ffffffff}, 0xc)
r11 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r11, &(0x7f0000000340)={0x10, 0x0, 0x0, 0x1}, 0xc)
r12 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r12, &(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000000}, 0xc)
r13 = socket$nl_route(0x10, 0x3, 0x0)
bind$netlink(r13, &(0x7f0000000280)={0x10, 0x0, 0x0, 0x200000}, 0xc)
bind$netlink(r1, &(0x7f0000000340)={0x10, 0x0, 0x0, 0x80020000}, 0x48)
r14 = socket$netlink(0x10, 0x3, 0x4)
writev(r14, &(0x7f0000000100)=[{&(0x7f0000000000)="580000001400192340834b80043f679a10ff3d425f9cc3f4ff7f4e32f61bcdf1e422000000000100804824cabecc4b381eaadc28f23457e792945f64009400050028925aaa000000c600000000000000feff2c707f8f00ff", 0x58}], 0x1)

18.146526473s ago: executing program 7 (id=3230):
r0 = socket(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000c40)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2901090, 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
mount(0x0, &(0x7f0000000d40)='./file0/../file0/../file0\x00', &(0x7f00000002c0)='sysfs\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GET_LEASE(0xffffffffffffffff, 0xc01064c8, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={0x0, 0xfc}}, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
write(r0, &(0x7f0000000000)="240000001a005f0214f9f407000901000000000000000005000000000800040001000000", 0x24)

15.920306731s ago: executing program 7 (id=3236):
r0 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$IEEE802154_LLSEC_SETPARAMS(0xffffffffffffffff, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000040)={0x3c, r0, 0x1, 0x70bd27, 0x25dfdbfc, {}, [@IEEE802154_ATTR_LLSEC_KEY_ID={0x5, 0x2e, 0x97}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_LLSEC_SECLEVEL={0x5, 0x2a, 0x7}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_EXTENDED={0xc, 0x2d, {0x100}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x4c0d0)

15.313279296s ago: executing program 7 (id=3239):
socket$nl_audit(0x10, 0x3, 0x9)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0))
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x6, 0x0, 0x0, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$inet(0x2, 0x1, 0x0)
r3 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e20, @loopback}, 0x10)
bind$inet(r3, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)=[{0x0}, {&(0x7f0000000040)="a3d7f3e8a9cf9e3887a6f6eca30e90d85fcfa281378973ab916b0e1d03bd28bca55c552da8cfecb0fbccbfb18ef20fe9541e0e1e8fa214cb6bb0455c2386f5ebb4730be449beb72f481c1429d6eb835b76fd1fdcacd50b884c98caa871ec4e225b6036b6ad2638ab5b06828c10fc355b170075f37b748b8f466fe29f40ec981d1431132bca9884654780b3205ed61f49c3b3b6229593e61d13a8505de19a8a0f502d4f3148f9450ed35ef5950bb7fefcf299beed14", 0xb5}], 0x2}, 0x0)
recvmmsg(r3, &(0x7f0000005680)=[{{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000001940)=""/4096, 0x1000}, {&(0x7f00000002c0)=""/120, 0x78}], 0x24}}], 0x1, 0x0, 0x0)

14.909428987s ago: executing program 37 (id=3239):
socket$nl_audit(0x10, 0x3, 0x9)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0))
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x6, 0x0, 0x0, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$inet(0x2, 0x1, 0x0)
r3 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e20, @loopback}, 0x10)
bind$inet(r3, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)=[{0x0}, {&(0x7f0000000040)="a3d7f3e8a9cf9e3887a6f6eca30e90d85fcfa281378973ab916b0e1d03bd28bca55c552da8cfecb0fbccbfb18ef20fe9541e0e1e8fa214cb6bb0455c2386f5ebb4730be449beb72f481c1429d6eb835b76fd1fdcacd50b884c98caa871ec4e225b6036b6ad2638ab5b06828c10fc355b170075f37b748b8f466fe29f40ec981d1431132bca9884654780b3205ed61f49c3b3b6229593e61d13a8505de19a8a0f502d4f3148f9450ed35ef5950bb7fefcf299beed14", 0xb5}], 0x2}, 0x0)
recvmmsg(r3, &(0x7f0000005680)=[{{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000001940)=""/4096, 0x1000}, {&(0x7f00000002c0)=""/120, 0x78}], 0x24}}], 0x1, 0x0, 0x0)

7.340407305s ago: executing program 8 (id=3259):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000300)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sigaltstack(&(0x7f0000001000)={&(0x7f0000000000)=""/4088, 0x0, 0xff54}, 0x0)
sigaltstack(0x0, &(0x7f0000001280)={0x0})
ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000640)={@remote, @dev={0xfe, 0x80, '\x00', 0x10}, @empty, 0x9, 0x40, 0x8000, 0x100, 0x0, 0x110227})
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x20040768, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='cubic', 0x5)
sendto(r0, &(0x7f0000000780)="7057dacba22e", 0x6, 0x24000011, 0x0, 0x0)
sendto$inet(r0, &(0x7f0000000700)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba1e9bb7ec30de54e3d82d4e023f9a336ec7e55fefd0d3c8f30eea40e40a6e32d6873837bb90f2fafc91", 0xffffffffffffff29, 0x80, 0x0, 0x0)

6.276711626s ago: executing program 8 (id=3261):
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xe, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x71, 0x11, 0x84}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x5}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x6}, 0x70)

5.008785428s ago: executing program 2 (id=3263):
ioctl$PPPIOCNEWUNIT(0xffffffffffffffff, 0xc004743e, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
listen(0xffffffffffffffff, 0x3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x1e)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2e, 0x0, 0x0)
write(r1, &(0x7f0000000080)="0b000300", 0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, 0x0, 0x0)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r5 = accept4(r4, 0x0, 0x0, 0x800)
sendmmsg$alg(r5, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
r6 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r7 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x48202, 0x0)
r8 = dup(r7)
write$6lowpan_enable(r8, &(0x7f0000000000)='0', 0xfffffd2c)
fadvise64(r6, 0x18, 0x1800, 0x4)

4.404563558s ago: executing program 8 (id=3264):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x6, 0x0, 0x1}}, 0x40)
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0)
r3 = eventfd(0xffffffff)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000080000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf09000000000000550901000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$VHOST_SET_LOG_FD(r2, 0x4004af07, &(0x7f0000000240)=r3)
ioctl$VHOST_SET_VRING_KICK(r2, 0x4008af20, &(0x7f0000000040)={0x1, r3})
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), r5)
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0xf, 0x9, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7030000000000eb850000001b000000b700000000000000850000002b00000095bf275275b0e416c84f402f982d22949feaeaa6a21d8ad579c485385f688944e1510c27e4d560b4010000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @cgroup_device, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r6, 0x0, 0x4000000000000000}, 0x18)
r7 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24, 0x24, 0x0, 0x3}, 0x24}}, 0x0)
getsockname$packet(r7, &(0x7f0000000200)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14)
sendmsg$nl_route_sched(r7, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=@newtfilter={0x48, 0x2c, 0xd27, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r8, {0x0, 0x9}, {}, {0x1c, 0xfff1}}, [@filter_kind_options=@f_flower={{0xb}, {0x18, 0x2, [@TCA_FLOWER_INDEV={0x14, 0x2, 'pim6reg1\x00'}]}}]}, 0x48}}, 0x8c000)

3.846796684s ago: executing program 2 (id=3265):
openat$vicodec0(0xffffffffffffff9c, 0x0, 0x2, 0x0)
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2e, 0x0, 0x0)
close(r2)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r6=>0x0})
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000003c0)={'wlan0\x00'})
sendmsg$NL80211_CMD_FRAME(r3, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)=ANY=[@ANYBLOB="98030000", @ANYRES16=r4, @ANYBLOB="010028057000fcdbdf253b00000008000300", @ANYRES32=r6, @ANYBLOB="04008e00080057001b0a000004006c000500190107000000080026006c090000560333"], 0x398}}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe6, 0x0)

3.210291756s ago: executing program 8 (id=3266):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000340)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cast6-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d49100dc6626c892b6bc436a", 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000001c0), r2)
sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01000000000100000000037400062c00070073797352656d5f753a6f626a6563745f723a756465765f68656c7065725f657865635f743a733000080002000000000008000700263a090914000600626f6e64300000000000000080000000080003"], 0x78}, 0x1, 0xffffffff00000003, 0x0, 0x40}, 0x4008)
r4 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x0, 0x2, 0xbfdffffc}, &(0x7f0000000000)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000400)={{0x1, 0x1, 0x18, <r7=>r0}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r7, 0xc0189378, &(0x7f0000000440)={{0x1, 0x1, 0x18, r4, {r1}}, './file0\x00'})
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_TIMEOUT={0xb, 0x5, 0x0, 0x0, 0x5, &(0x7f0000000200)={0x77359400}, 0x1, 0x8})
r8 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240))
sendmsg$nl_route_sched(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000300)=@newqdisc={0x78, 0x24, 0xd0f, 0x70bd2b, 0x0, {0x60, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0xd9, 0x0, 0x1}, 0x80, 0x0, 0x0, 0x0, 0x0, 0xf, 0x2, 0x0, 0x0, 0x0, {0x0, 0x0, 0xd6}}}}]}, 0x78}}, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r9, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x60, 0x1, 0x1, 0x201, 0x0, 0x0, {0x0, 0x0, 0x3}, [@CTA_NAT_SRC={0x18, 0x6, 0x0, 0x1, [@CTA_NAT_PROTO={0x4}, @CTA_NAT_V4_MINIP={0x8, 0x1, @remote}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @multicast1}]}, @CTA_ID={0x8, 0xc, 0x1, 0x0, 0x1}, @CTA_MARK={0x8, 0x8, 0x1, 0x0, 0x40}, @CTA_HELP={0x14, 0x5, 0x0, 0x1, {0xe, 0x1, 'irc-20000\x00'}}, @CTA_LABELS={0x8, 0x16, 0x1, 0x0, [0x3]}, @CTA_STATUS_MASK={0x8, 0x1a, 0x1, 0x0, 0xea9b}]}, 0x60}, 0x1, 0x0, 0x0, 0x1}, 0x4880)

2.174911732s ago: executing program 2 (id=3267):
openat$kvm(0xffffffffffffff9c, &(0x7f0000004300), 0x1, 0x0)
close(0x3)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mlock2(&(0x7f0000627000/0x3000)=nil, 0x3000, 0x0)
mremap(&(0x7f0000286000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000b26000/0x1000)=nil)
mlock(&(0x7f0000626000/0x5000)=nil, 0x5000)
r3 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/run\x00', 0x1, 0x0)
r4 = gettid()
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$netlink(r5, &(0x7f0000001f80)={0x0, 0x0, &(0x7f0000001f00)=[{&(0x7f0000002840)={0x10, 0x27, 0x1, 0x0, 0x0, "", [@generic]}, 0x10}], 0x1}, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
prctl$PR_GET_TSC(0x43, &(0x7f0000000040))
write$sysctl(r3, &(0x7f0000000000)='2\x00', 0x2)

2.004272314s ago: executing program 8 (id=3268):
syz_usb_connect(0x1, 0x2d, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000009980708b5192100c7980000000109021b00012000ac000904000001070000090905"], 0x0)

1.19787325s ago: executing program 2 (id=3269):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xe, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x71, 0x11, 0x84}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x5}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x6}, 0x70)

280.139926ms ago: executing program 2 (id=3270):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0xb}}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sched_setaffinity(r1, 0x0, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x2c, r3, 0x1, 0x80, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x994}], @NL80211_ATTR_CH_SWITCH_COUNT={0x8, 0xb7, 0x87}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)

258.612813ms ago: executing program 8 (id=3271):
r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x20000000)
r1 = syz_open_dev$MSR(&(0x7f0000000080), 0x2, 0x0)
read$msr(r1, &(0x7f0000000380)=""/4096, 0x1000)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040)='c:::\x00', 0x0)
r2 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@newqdisc={0x48, 0x24, 0xf0b, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0xe, 0x5}}, [@qdisc_kind_options=@q_etf={{0x8}, {0x14, 0x2, @TCA_ETF_PARMS={0x3e, 0x1, {0x0, 0xb, 0x5}}}}, @TCA_RATE={0x6, 0x5, {0x9, 0x6}}]}, 0x48}}, 0x4000010)
getsockopt$bt_BT_FLUSHABLE(r2, 0x112, 0x8, &(0x7f00000000c0)=0x2000, &(0x7f0000000100)=0x4)
r4 = gettid()
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r5 = syz_open_dev$MSR(&(0x7f0000000340), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, 0x0, 0x0, 0x0)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_TCP_CONGESTION(r6, 0x6, 0xd, &(0x7f0000000080)='reno', 0x4)
bind$inet6(r6, &(0x7f0000000000)={0xa, 0x3, 0x0, @loopback}, 0x1c)
connect$inet6(r6, &(0x7f0000000040)={0xa, 0x3, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r6, &(0x7f0000003d00)=[{{0x0, 0x0, &(0x7f0000000ac0)=[{&(0x7f0000000b40)="8b", 0x1}], 0x1}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000dc0)=[{&(0x7f0000000bc0)='q', 0x1}], 0x1}}], 0x3, 0x48800)
shutdown(r6, 0x1)
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r7, 0x0, 0x10)
tkill(r4, 0xb)
getgroups(0xfffffffffffffdb2, 0xfffffffffffffffe)

0s ago: executing program 2 (id=3272):
ioctl$PPPIOCNEWUNIT(0xffffffffffffffff, 0xc004743e, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
listen(0xffffffffffffffff, 0x3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x1e)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2e, 0x0, 0x0)
write(r1, &(0x7f0000000080)="0b000300", 0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, 0x0, 0x0)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r5 = accept4(r4, 0x0, 0x0, 0x800)
sendmmsg$alg(r5, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
r6 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r7 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x48202, 0x0)
r8 = dup(r7)
write$6lowpan_enable(r8, &(0x7f0000000000)='0', 0xfffffd2c)
fadvise64(r6, 0x18, 0x1800, 0x4)

kernel console output (not intermixed with test programs):

onnect, device number 98
[  885.534863][   T51] Bluetooth: hci2: ACL packet too small
[  885.562147][ T1205] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  885.578524][ T1205] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  885.718200][ T1205] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  885.728523][ T1205] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  885.769674][T16432] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22
[  885.900955][ T1205] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  887.665491][ T1205] usb 7-1: USB disconnect, device number 109
[  887.736490][   T51] Bluetooth: hci3: ACL packet too small
[  888.266204][T16474] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2592'.
[  890.530762][ T1205] usb 6-1: new high-speed USB device number 114 using dummy_hcd
[  890.625483][   T10] usb 7-1: new low-speed USB device number 110 using dummy_hcd
[  890.819596][   T10] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[  890.827050][   T10] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  890.858092][ T1205] usb 6-1: Using ep0 maxpacket: 16
[  890.888730][   T10] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  891.054077][T16502] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2595'.
[  891.066406][   T10] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  891.070864][T16502] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  891.102175][T14026] usb 2-1: new high-speed USB device number 99 using dummy_hcd
[  891.120768][T16502] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  891.280972][T14026] usb 2-1: Using ep0 maxpacket: 16
[  891.326912][T16499] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2597'.
[  891.417519][   T30] kauditd_printk_skb: 43 callbacks suppressed
[  891.417551][   T30] audit: type=1326 audit(1758670063.905:742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16505 comm="syz.2.2599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f649c18eec9 code=0x7ffc0000
[  891.526355][   T10] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  891.600754][   T10] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[  891.608247][   T10] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  891.619581][   T10] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  891.631679][   T10] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  891.642987][   T10] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  891.659604][   T30] audit: type=1326 audit(1758670063.905:743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16505 comm="syz.2.2599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f649c18eec9 code=0x7ffc0000
[  891.718650][   T10] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[  891.756537][   T30] audit: type=1326 audit(1758670063.915:744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16505 comm="syz.2.2599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f649c18eec9 code=0x7ffc0000
[  891.810414][   T10] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  891.861660][   T30] audit: type=1326 audit(1758670063.915:745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16505 comm="syz.2.2599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f649c18eec9 code=0x7ffc0000
[  891.928703][   T10] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  891.977806][   T30] audit: type=1326 audit(1758670063.915:746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16505 comm="syz.2.2599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f649c18eec9 code=0x7ffc0000
[  892.041944][   T30] audit: type=1326 audit(1758670063.915:747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16505 comm="syz.2.2599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f649c18eec9 code=0x7ffc0000
[  892.164328][   T10] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  892.249427][   T10] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  893.256149][   T30] audit: type=1326 audit(1758670063.915:748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16505 comm="syz.2.2599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f649c18eec9 code=0x7ffc0000
[  893.368384][ T1205] usb 6-1: unable to get BOS descriptor or descriptor too short
[  893.394416][ T1205] usb 6-1: unable to read config index 0 descriptor/start: -71
[  893.423264][ T1205] usb 6-1: can't read configurations, error -71
[  893.439744][   T30] audit: type=1326 audit(1758670063.915:749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16505 comm="syz.2.2599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f649c18eec9 code=0x7ffc0000
[  893.445579][   T10] usb 7-1: string descriptor 0 read error: -71
[  893.510825][   T10] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  893.554454][   T10] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  893.681317][   T10] usb 7-1: can't set config #168, error -71
[  893.690363][   T10] usb 7-1: USB disconnect, device number 110
[  893.730933][   T30] audit: type=1326 audit(1758670063.915:750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16505 comm="syz.2.2599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f649c18eec9 code=0x7ffc0000
[  894.462631][   T30] audit: type=1326 audit(1758670063.915:751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16505 comm="syz.2.2599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f649c18eec9 code=0x7ffc0000
[  894.592963][T14026] usb 2-1: unable to get BOS descriptor or descriptor too short
[  894.687432][T14026] usb 2-1: unable to read config index 0 descriptor/start: -71
[  894.717230][T14026] usb 2-1: can't read configurations, error -71
[  894.724044][   T43] usb 7-1: new high-speed USB device number 111 using dummy_hcd
[  895.543076][   T43] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  895.605487][   T43] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  895.992113][   T43] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  896.128327][   T43] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  896.166158][T16527] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  896.176870][   T43] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  896.670936][T16550] overlayfs: failed to decode file handle (len=2, type=0, flags=0, err=-22)
[  897.398465][T16561] fuse: Bad value for 'fd'
[  897.412912][   T30] kauditd_printk_skb: 4 callbacks suppressed
[  897.412927][   T30] audit: type=1800 audit(1758670069.905:756): pid=16561 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.1.2611" name="/" dev="9p" ino=65538 res=0 errno=0
[  899.119606][T16578] overlayfs: failed to decode file handle (len=2, type=0, flags=0, err=-22)
[  899.544909][ T5919] usb 7-1: USB disconnect, device number 111
[  899.842188][   T10] usb 6-1: new high-speed USB device number 116 using dummy_hcd
[  900.002182][   T10] usb 6-1: Using ep0 maxpacket: 16
[  900.078491][T16587] siw: device registration error -23
[  900.175093][T16577] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2614'.
[  900.335236][T16579] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  900.344824][T16579] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  902.397005][   T10] usb 6-1: unable to get BOS descriptor or descriptor too short
[  902.407497][   T10] usb 6-1: unable to read config index 0 descriptor/start: -71
[  902.421750][   T10] usb 6-1: can't read configurations, error -71
[  903.151176][T16619] afs: Unknown parameter ''
[  903.927591][   T10] usb 6-1: new high-speed USB device number 117 using dummy_hcd
[  904.350050][   T10] usb 6-1: config 0 has an invalid interface number: 109 but max is 0
[  904.368909][   T10] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  904.572280][   T10] usb 6-1: config 0 has no interface number 0
[  904.582107][   T10] usb 6-1: config 0 interface 109 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  904.758253][   T10] usb 6-1: New USB device found, idVendor=100d, idProduct=cb01, bcdDevice=84.d1
[  904.767639][   T10] usb 6-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[  904.776133][   T10] usb 6-1: Manufacturer: syz
[  904.782547][   T10] usb 6-1: config 0 descriptor??
[  904.832862][   T10] cxacru 6-1:0.109: usbatm_usb_probe: bind failed: -19!
[  906.464236][T16663] overlayfs: failed to clone upperpath
[  907.439944][T14026] usb 7-1: new high-speed USB device number 112 using dummy_hcd
[  907.655778][T14026] usb 7-1: Using ep0 maxpacket: 16
[  907.673167][T16667] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2632'.
[  907.694722][T16667] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  907.713873][T16667] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  907.739856][T14147] usb 6-1: USB disconnect, device number 117
[  907.939850][   T30] audit: type=1326 audit(1758670080.405:757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16672 comm="syz.1.2636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[  908.550839][   T30] audit: type=1326 audit(1758670080.405:758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16672 comm="syz.1.2636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[  908.717419][   T30] audit: type=1326 audit(1758670080.405:759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16672 comm="syz.1.2636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[  908.874568][T16687] overlayfs: failed to decode file handle (len=2, type=0, flags=0, err=-22)
[  909.314719][   T30] audit: type=1326 audit(1758670080.405:760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16672 comm="syz.1.2636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[  909.433083][   T30] audit: type=1326 audit(1758670080.405:761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16672 comm="syz.1.2636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[  909.583226][   T30] audit: type=1326 audit(1758670080.415:762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16672 comm="syz.1.2636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[  909.620354][   T51] Bluetooth: hci2: ACL packet too small
[  909.625883][   T30] audit: type=1326 audit(1758670080.415:763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16672 comm="syz.1.2636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[  909.853416][   T30] audit: type=1326 audit(1758670080.415:764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16672 comm="syz.1.2636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[  910.000709][   T30] audit: type=1326 audit(1758670080.415:765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16672 comm="syz.1.2636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[  910.042531][T14026] usb 7-1: unable to get BOS descriptor or descriptor too short
[  910.058716][T14026] usb 7-1: unable to read config index 0 descriptor/start: -71
[  910.063678][   T30] audit: type=1326 audit(1758670080.415:766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16672 comm="syz.1.2636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[  910.108248][T14026] usb 7-1: can't read configurations, error -71
[  910.229630][T16707] afs: Unknown parameter ''
[  910.389662][T16711] siw: device registration error -23
[  911.828835][T16720] overlayfs: failed to decode file handle (len=2, type=0, flags=0, err=-22)
[  913.076919][T14147] usb 7-1: new high-speed USB device number 114 using dummy_hcd
[  914.492655][T16739] siw: device registration error -23
[  915.217162][T14147] usb 7-1: Using ep0 maxpacket: 16
[  915.356180][T16724] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2646'.
[  915.376300][T16724] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  915.385907][T16724] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  915.539247][T16750] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2648'.
[  916.203943][   T30] kauditd_printk_skb: 41 callbacks suppressed
[  916.203961][   T30] audit: type=1326 audit(1758670088.625:808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16744 comm="syz.1.2652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[  916.233402][    C1] vkms_vblank_simulate: vblank timer overrun
[  916.252747][   T30] audit: type=1326 audit(1758670088.625:809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16744 comm="syz.1.2652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[  916.278697][   T30] audit: type=1326 audit(1758670088.625:810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16744 comm="syz.1.2652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[  916.401138][   T30] audit: type=1326 audit(1758670088.625:811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16744 comm="syz.1.2652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[  916.427617][   T30] audit: type=1326 audit(1758670088.625:812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16744 comm="syz.1.2652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[  916.452395][   T30] audit: type=1326 audit(1758670088.625:813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16744 comm="syz.1.2652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[  916.520067][   T30] audit: type=1326 audit(1758670088.625:814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16744 comm="syz.1.2652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[  916.552267][   T30] audit: type=1326 audit(1758670088.625:815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16744 comm="syz.1.2652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[  916.577010][   T30] audit: type=1326 audit(1758670088.625:816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16744 comm="syz.1.2652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[  916.600248][    C1] vkms_vblank_simulate: vblank timer overrun
[  916.607734][   T30] audit: type=1326 audit(1758670088.625:817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16744 comm="syz.1.2652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[  916.631059][    C1] vkms_vblank_simulate: vblank timer overrun
[  916.893733][T14147] usb 7-1: unable to get BOS descriptor or descriptor too short
[  916.902003][T14147] usb 7-1: unable to read config index 0 descriptor/start: -71
[  916.911819][T14147] usb 7-1: can't read configurations, error -71
[  920.202212][   T10] usb 2-1: new high-speed USB device number 101 using dummy_hcd
[  920.422387][   T10] usb 2-1: Using ep0 maxpacket: 16
[  920.884339][T16791] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2660'.
[  921.311165][T16792] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  921.443449][T16792] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  923.263903][   T10] usb 2-1: unable to get BOS descriptor or descriptor too short
[  923.294278][   T10] usb 2-1: unable to read config index 0 descriptor/start: -71
[  923.315997][   T10] usb 2-1: can't read configurations, error -71
[  924.172246][   T10] usb 2-1: new high-speed USB device number 102 using dummy_hcd
[  924.692601][   T10] usb 2-1: Using ep0 maxpacket: 16
[  924.737415][T16822] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2666'.
[  924.751610][T16822] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  924.761930][T16822] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  925.662248][ T5919] usb 6-1: new high-speed USB device number 118 using dummy_hcd
[  925.922446][ T5919] usb 6-1: Using ep0 maxpacket: 16
[  925.988119][T16841] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2670'.
[  926.015205][T16841] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  926.030471][T16841] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  926.390236][   T30] kauditd_printk_skb: 18 callbacks suppressed
[  926.390252][   T30] audit: type=1326 audit(1758670098.875:836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16850 comm="syz.0.2673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[  926.589295][   T30] audit: type=1326 audit(1758670098.875:837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16850 comm="syz.0.2673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[  926.933141][   T30] audit: type=1326 audit(1758670098.875:838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16850 comm="syz.0.2673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[  927.410568][   T30] audit: type=1326 audit(1758670098.885:839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16850 comm="syz.0.2673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[  927.468262][   T30] audit: type=1326 audit(1758670098.885:840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16850 comm="syz.0.2673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[  927.496616][   T10] usb 2-1: unable to get BOS descriptor or descriptor too short
[  927.538062][   T10] usb 2-1: unable to read config index 0 descriptor/start: -71
[  927.557582][   T10] usb 2-1: can't read configurations, error -71
[  927.580439][   T10] usb usb2-port1: attempt power cycle
[  927.616194][   T30] audit: type=1326 audit(1758670098.885:841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16850 comm="syz.0.2673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[  927.730797][   T30] audit: type=1326 audit(1758670098.885:842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16850 comm="syz.0.2673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[  927.905744][   T30] audit: type=1326 audit(1758670098.885:843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16850 comm="syz.0.2673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[  927.999087][   T30] audit: type=1326 audit(1758670098.885:844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16850 comm="syz.0.2673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[  928.032494][   T30] audit: type=1326 audit(1758670098.885:845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16850 comm="syz.0.2673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[  928.266386][ T5919] usb 6-1: unable to get BOS descriptor or descriptor too short
[  928.289041][ T5919] usb 6-1: unable to read config index 0 descriptor/start: -71
[  928.314261][ T5919] usb 6-1: can't read configurations, error -71
[  931.028635][T16906] siw: device registration error -23
[  931.111687][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  931.111776][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  931.813307][ T5919] usb 6-1: new high-speed USB device number 120 using dummy_hcd
[  932.012119][ T5919] usb 6-1: Using ep0 maxpacket: 16
[  932.653613][T16902] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2682'.
[  932.674452][T16902] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  932.683932][T16902] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  935.061854][ T5919] usb 6-1: unable to get BOS descriptor or descriptor too short
[  935.072115][ T5919] usb 6-1: unable to read config index 0 descriptor/start: -71
[  935.099890][ T5919] usb 6-1: can't read configurations, error -71
[  936.642175][ T5919] usb 6-1: new high-speed USB device number 122 using dummy_hcd
[  936.832177][ T5919] usb 6-1: Using ep0 maxpacket: 16
[  937.047047][T16936] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2689'.
[  937.082876][T16936] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  937.097805][T16936] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  940.600198][   T30] kauditd_printk_skb: 29 callbacks suppressed
[  940.610151][ T5919] usb 6-1: unable to get BOS descriptor or descriptor too short
[  940.617864][   T30] audit: type=1326 audit(1758670113.095:875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16974 comm="syz.0.2697" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[  940.733367][ T5919] usb 6-1: unable to read config index 0 descriptor/start: -71
[  940.742971][ T5919] usb 6-1: can't read configurations, error -71
[  940.854136][   T30] audit: type=1326 audit(1758670113.095:876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16974 comm="syz.0.2697" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[  941.278738][   T30] audit: type=1326 audit(1758670113.095:877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16974 comm="syz.0.2697" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[  941.654882][   T30] audit: type=1326 audit(1758670113.095:878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16974 comm="syz.0.2697" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[  942.312644][   T30] audit: type=1326 audit(1758670113.095:879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16974 comm="syz.0.2697" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[  942.341565][   T30] audit: type=1326 audit(1758670113.095:880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16974 comm="syz.0.2697" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[  942.664152][   T30] audit: type=1326 audit(1758670113.095:881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16974 comm="syz.0.2697" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[  942.692244][   T30] audit: type=1326 audit(1758670113.095:882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16974 comm="syz.0.2697" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[  942.807103][   T30] audit: type=1326 audit(1758670113.095:883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16974 comm="syz.0.2697" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[  943.065152][   T30] audit: type=1326 audit(1758670113.095:884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16974 comm="syz.0.2697" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[  945.006205][T17029] overlayfs: missing 'lowerdir'
[  947.431217][T17044] siw: device registration error -23
[  948.714110][T17057] siw: device registration error -23
[  951.314553][T17079] siw: device registration error -23
[  952.176506][   T51] Bluetooth: hci2: ACL packet too small
[  953.082599][   T30] kauditd_printk_skb: 46 callbacks suppressed
[  953.082911][   T30] audit: type=1326 audit(1758670125.575:931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17084 comm="syz.5.2719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa36c58eec9 code=0x7ffc0000
[  953.113375][    C0] vkms_vblank_simulate: vblank timer overrun
[  953.121956][   T30] audit: type=1326 audit(1758670125.585:932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17084 comm="syz.5.2719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7fa36c58eec9 code=0x7ffc0000
[  953.204551][   T30] audit: type=1326 audit(1758670125.585:933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17084 comm="syz.5.2719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa36c58eec9 code=0x7ffc0000
[  953.229037][   T30] audit: type=1326 audit(1758670125.585:934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17084 comm="syz.5.2719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fa36c58eec9 code=0x7ffc0000
[  953.252297][    C0] vkms_vblank_simulate: vblank timer overrun
[  953.565797][   T30] audit: type=1326 audit(1758670125.585:935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17084 comm="syz.5.2719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa36c58eec9 code=0x7ffc0000
[  953.595219][   T30] audit: type=1326 audit(1758670125.585:936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17084 comm="syz.5.2719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa36c58eec9 code=0x7ffc0000
[  953.618587][    C0] vkms_vblank_simulate: vblank timer overrun
[  954.048717][T17102] siw: device registration error -23
[  954.632200][   T30] audit: type=1326 audit(1758670125.585:937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17084 comm="syz.5.2719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa36c58eec9 code=0x7ffc0000
[  954.672090][   T30] audit: type=1326 audit(1758670125.585:938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17084 comm="syz.5.2719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa36c58eec9 code=0x7ffc0000
[  954.802716][   T30] audit: type=1326 audit(1758670125.585:939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17084 comm="syz.5.2719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7fa36c58eec9 code=0x7ffc0000
[  954.872211][   T30] audit: type=1326 audit(1758670125.585:940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17084 comm="syz.5.2719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa36c58eec9 code=0x7ffc0000
[  955.331260][T17110] siw: device registration error -23
[  956.662663][T17125] siw: device registration error -23
[  964.612830][T17202] siw: device registration error -23
[  966.696951][T17236] fuse: Unknown parameter 'user_i00000000000000000000'
[  966.977280][   T30] kauditd_printk_skb: 1 callbacks suppressed
[  966.977293][   T30] audit: type=1800 audit(1758670139.245:942): pid=17237 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.5.2748" name="/" dev="9p" ino=65538 res=0 errno=0
[  967.942252][  T974] usb 2-1: new high-speed USB device number 104 using dummy_hcd
[  968.442987][  T974] usb 2-1: Using ep0 maxpacket: 16
[  968.648008][T17254] siw: device registration error -23
[  969.854071][T17260] siw: device registration error -23
[  970.644482][  T974] usb 2-1: device descriptor read/all, error -71
[  970.667672][   T51] Bluetooth: hci3: ACL packet too small
[  970.886976][   T30] audit: type=1326 audit(1758670143.385:943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17262 comm="syz.6.2754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8bd98eec9 code=0x7ffc0000
[  970.887088][   T30] audit: type=1326 audit(1758670143.385:944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17262 comm="syz.6.2754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8bd98eec9 code=0x7ffc0000
[  970.887214][   T30] audit: type=1326 audit(1758670143.385:945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17262 comm="syz.6.2754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7fb8bd98eec9 code=0x7ffc0000
[  970.887364][   T30] audit: type=1326 audit(1758670143.385:946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17262 comm="syz.6.2754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8bd98eec9 code=0x7ffc0000
[  970.887494][   T30] audit: type=1326 audit(1758670143.385:947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17262 comm="syz.6.2754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8bd98eec9 code=0x7ffc0000
[  970.887620][   T30] audit: type=1326 audit(1758670143.385:948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17262 comm="syz.6.2754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb8bd98eec9 code=0x7ffc0000
[  970.887750][   T30] audit: type=1326 audit(1758670143.385:949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17262 comm="syz.6.2754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8bd98eec9 code=0x7ffc0000
[  970.889805][   T30] audit: type=1326 audit(1758670143.385:950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17262 comm="syz.6.2754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8bd98eec9 code=0x7ffc0000
[  970.889962][   T30] audit: type=1326 audit(1758670143.385:951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17262 comm="syz.6.2754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb8bd98eec9 code=0x7ffc0000
[  971.072694][T17275] siw: device registration error -23
[  974.527464][T17312] overlayfs: failed to resolve './file1': -2
[  975.155893][   T30] kauditd_printk_skb: 4 callbacks suppressed
[  975.155909][   T30] audit: type=1326 audit(1758670147.655:956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17318 comm="syz.2.2768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f649c18eec9 code=0x7ffc0000
[  975.392276][   T30] audit: type=1326 audit(1758670147.655:957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17318 comm="syz.2.2768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f649c18eec9 code=0x7ffc0000
[  975.415679][    C1] vkms_vblank_simulate: vblank timer overrun
[  975.427539][   T30] audit: type=1326 audit(1758670147.685:958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17318 comm="syz.2.2768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f649c18eec9 code=0x7ffc0000
[  975.996102][   T30] audit: type=1326 audit(1758670147.685:959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17318 comm="syz.2.2768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f649c18eec9 code=0x7ffc0000
[  976.139610][   T30] audit: type=1326 audit(1758670147.685:960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17318 comm="syz.2.2768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f649c18eec9 code=0x7ffc0000
[  976.414546][   T30] audit: type=1326 audit(1758670147.685:961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17318 comm="syz.2.2768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f649c18eec9 code=0x7ffc0000
[  976.534810][   T30] audit: type=1326 audit(1758670147.685:962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17318 comm="syz.2.2768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f649c18eec9 code=0x7ffc0000
[  976.652407][   T30] audit: type=1326 audit(1758670147.685:963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17318 comm="syz.2.2768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f649c18eec9 code=0x7ffc0000
[  976.902145][   T30] audit: type=1326 audit(1758670147.695:964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17318 comm="syz.2.2768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f649c18eec9 code=0x7ffc0000
[  977.007210][   T30] audit: type=1326 audit(1758670147.695:965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17318 comm="syz.2.2768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f649c18eec9 code=0x7ffc0000
[  978.309542][T17362] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2776'.
[  981.004753][   T30] kauditd_printk_skb: 30 callbacks suppressed
[  981.004771][   T30] audit: type=1326 audit(1758670153.445:996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17383 comm="syz.0.2782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[  981.112296][T17390] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2783'.
[  981.298033][   T30] audit: type=1326 audit(1758670153.445:997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17383 comm="syz.0.2782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[  981.418275][   T30] audit: type=1326 audit(1758670153.445:998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17383 comm="syz.0.2782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[  981.633505][   T30] audit: type=1326 audit(1758670153.445:999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17383 comm="syz.0.2782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[  981.829662][   T30] audit: type=1326 audit(1758670153.445:1000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17383 comm="syz.0.2782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[  981.952191][   T30] audit: type=1326 audit(1758670153.445:1001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17383 comm="syz.0.2782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[  982.118483][   T30] audit: type=1326 audit(1758670153.445:1002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17383 comm="syz.0.2782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[  982.147114][   T30] audit: type=1326 audit(1758670153.455:1003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17383 comm="syz.0.2782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[  982.173495][   T30] audit: type=1326 audit(1758670153.465:1004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17383 comm="syz.0.2782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[  982.200026][   T30] audit: type=1326 audit(1758670153.465:1005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17383 comm="syz.0.2782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[  982.470239][   T51] Bluetooth: hci2: ACL packet too small
[  988.609690][T17485] 9pnet_fd: Insufficient options for proto=fd
[  989.813692][   T30] kauditd_printk_skb: 27 callbacks suppressed
[  989.813710][   T30] audit: type=1400 audit(1758670162.315:1033): avc:  denied  { read } for  pid=17493 comm="syz.2.2806" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  990.808668][   T30] audit: type=1326 audit(1758670163.285:1034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17501 comm="syz.2.2809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f649c18eec9 code=0x7ffc0000
[  990.987288][   T30] audit: type=1326 audit(1758670163.285:1035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17501 comm="syz.2.2809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f649c18eec9 code=0x7ffc0000
[  991.012927][   T30] audit: type=1326 audit(1758670163.285:1036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17501 comm="syz.2.2809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f649c18eec9 code=0x7ffc0000
[  991.036607][   T30] audit: type=1326 audit(1758670163.285:1037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17501 comm="syz.2.2809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f649c18eec9 code=0x7ffc0000
[  991.069363][   T30] audit: type=1326 audit(1758670163.305:1038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17501 comm="syz.2.2809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f649c18eec9 code=0x7ffc0000
[  991.307149][   T30] audit: type=1326 audit(1758670163.305:1039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17501 comm="syz.2.2809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f649c18eec9 code=0x7ffc0000
[  991.631815][T17513] siw: device registration error -23
[  992.252383][   T30] audit: type=1326 audit(1758670163.305:1040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17501 comm="syz.2.2809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f649c18eec9 code=0x7ffc0000
[  992.275933][   T30] audit: type=1326 audit(1758670163.305:1041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17501 comm="syz.2.2809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f649c18eec9 code=0x7ffc0000
[  992.302139][   T30] audit: type=1326 audit(1758670163.305:1042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17501 comm="syz.2.2809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f649c18eec9 code=0x7ffc0000
[  992.552376][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  992.558686][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  992.636927][   T51] Bluetooth: hci3: ACL packet too small
[  994.868381][T17541] 9pnet_fd: Insufficient options for proto=fd
[  994.894111][T17541] BTRFS info: 'norecovery' is for compatibility only, recommended to use 'rescue=nologreplay'
[  995.987094][T17558] siw: device registration error -23
[  997.027153][T17569] siw: device registration error -23
[  999.089889][T17590] siw: device registration error -23
[ 1001.922102][T14147] usb 7-1: new high-speed USB device number 116 using dummy_hcd
[ 1002.074237][T14147] usb 7-1: Using ep0 maxpacket: 8
[ 1002.086049][T14147] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[ 1002.095765][T14147] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1002.105796][T14147] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1002.130373][T14147] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[ 1002.187396][T14147] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 0
[ 1002.213340][T14147] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1002.297362][   T30] kauditd_printk_skb: 5 callbacks suppressed
[ 1002.297378][   T30] audit: type=1326 audit(1758670174.745:1048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17616 comm="syz.1.2831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[ 1002.365536][T14147] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1002.477697][T14147] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1002.538184][   T51] Bluetooth: hci2: ACL packet too small
[ 1002.580769][   T30] audit: type=1326 audit(1758670174.745:1049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17616 comm="syz.1.2831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[ 1002.604229][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1002.820187][   T30] audit: type=1326 audit(1758670174.755:1050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17616 comm="syz.1.2831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[ 1003.094866][T14147] usbtmc 7-1:16.0: probe with driver usbtmc failed with error -22
[ 1003.102156][   T30] audit: type=1326 audit(1758670174.755:1051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17616 comm="syz.1.2831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[ 1003.134545][   T30] audit: type=1326 audit(1758670174.755:1052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17616 comm="syz.1.2831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[ 1003.255928][   T30] audit: type=1326 audit(1758670174.755:1053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17616 comm="syz.1.2831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[ 1003.321371][   T30] audit: type=1326 audit(1758670174.755:1054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17616 comm="syz.1.2831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[ 1003.808480][   T30] audit: type=1326 audit(1758670174.755:1055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17616 comm="syz.1.2831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[ 1003.859444][   T30] audit: type=1326 audit(1758670174.755:1056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17616 comm="syz.1.2831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[ 1003.882990][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1003.921230][   T30] audit: type=1326 audit(1758670174.755:1057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17616 comm="syz.1.2831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[ 1004.192070][T17644] 9pnet_fd: Insufficient options for proto=fd
[ 1004.216959][T17644] BTRFS info: 'norecovery' is for compatibility only, recommended to use 'rescue=nologreplay'
[ 1005.328215][T12927] usb 7-1: USB disconnect, device number 116
[ 1005.516012][T17655] siw: device registration error -23
[ 1010.362200][   T30] kauditd_printk_skb: 31 callbacks suppressed
[ 1010.362216][   T30] audit: type=1326 audit(1758670182.845:1089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17701 comm="syz.0.2847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[ 1010.551603][T17715] netlink: 60 bytes leftover after parsing attributes in process `syz.6.2849'.
[ 1010.573496][   T30] audit: type=1326 audit(1758670182.845:1090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17701 comm="syz.0.2847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[ 1010.596947][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1010.766714][   T30] audit: type=1326 audit(1758670182.845:1091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17701 comm="syz.0.2847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[ 1010.799115][   T30] audit: type=1326 audit(1758670182.845:1092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17701 comm="syz.0.2847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[ 1011.677091][   T30] audit: type=1326 audit(1758670182.845:1093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17701 comm="syz.0.2847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[ 1011.700905][   T30] audit: type=1326 audit(1758670182.845:1094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17701 comm="syz.0.2847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[ 1011.734451][   T30] audit: type=1326 audit(1758670182.845:1095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17701 comm="syz.0.2847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[ 1012.263686][   T30] audit: type=1326 audit(1758670182.845:1096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17701 comm="syz.0.2847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[ 1012.448408][   T30] audit: type=1326 audit(1758670182.845:1097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17701 comm="syz.0.2847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[ 1012.940214][   T30] audit: type=1326 audit(1758670182.845:1098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17701 comm="syz.0.2847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[ 1013.334485][T17740] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2854'.
[ 1014.818550][   T51] Bluetooth: hci2: ACL packet too small
[ 1015.017638][T17761] netlink: 36 bytes leftover after parsing attributes in process `syz.6.2858'.
[ 1015.026733][T17761] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2858'.
[ 1015.035976][T17761] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2858'.
[ 1015.661846][T17766] overlayfs: failed to clone upperpath
[ 1016.233604][   T51] Bluetooth: hci3: ACL packet too small
[ 1016.315852][   T30] kauditd_printk_skb: 6 callbacks suppressed
[ 1016.315867][   T30] audit: type=1326 audit(1758670188.795:1105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17754 comm="syz.5.2859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa36c58eec9 code=0x7ffc0000
[ 1016.927434][T17776] siw: device registration error -23
[ 1017.612105][   T30] audit: type=1326 audit(1758670188.795:1106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17754 comm="syz.5.2859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa36c58eec9 code=0x7ffc0000
[ 1017.642126][   T30] audit: type=1326 audit(1758670188.795:1107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17754 comm="syz.5.2859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7fa36c58eec9 code=0x7ffc0000
[ 1017.665556][   T30] audit: type=1326 audit(1758670188.805:1108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17754 comm="syz.5.2859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa36c58eec9 code=0x7ffc0000
[ 1017.689036][   T30] audit: type=1326 audit(1758670188.805:1109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17754 comm="syz.5.2859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa36c58eec9 code=0x7ffc0000
[ 1017.773537][   T30] audit: type=1326 audit(1758670188.805:1110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17754 comm="syz.5.2859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fa36c58eec9 code=0x7ffc0000
[ 1017.949007][T17780] fuse: Unknown parameter '0x0000000000000006'
[ 1018.276375][T17783] siw: device registration error -23
[ 1018.930093][   T30] audit: type=1326 audit(1758670188.805:1111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17754 comm="syz.5.2859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa36c58eec9 code=0x7ffc0000
[ 1018.953576][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1018.968848][   T30] audit: type=1326 audit(1758670188.805:1112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17754 comm="syz.5.2859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa36c58eec9 code=0x7ffc0000
[ 1019.002730][   T30] audit: type=1326 audit(1758670188.805:1113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17754 comm="syz.5.2859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa36c58eec9 code=0x7ffc0000
[ 1019.026136][   T30] audit: type=1326 audit(1758670188.805:1114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17754 comm="syz.5.2859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa36c58eec9 code=0x7ffc0000
[ 1021.413396][   T51] Bluetooth: hci3: ACL packet too small
[ 1021.805004][   T51] Bluetooth: hci2: ACL packet too small
[ 1021.972270][   T30] kauditd_printk_skb: 46 callbacks suppressed
[ 1021.972289][   T30] audit: type=1326 audit(1758670194.425:1161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17815 comm="syz.6.2872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8bd98eec9 code=0x7ffc0000
[ 1022.001880][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1023.215076][   T30] audit: type=1326 audit(1758670194.425:1162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17815 comm="syz.6.2872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8bd98eec9 code=0x7ffc0000
[ 1023.235597][   T51] Bluetooth: hci3: ACL packet too small
[ 1023.289780][   T30] audit: type=1326 audit(1758670194.425:1163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17815 comm="syz.6.2872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7fb8bd98eec9 code=0x7ffc0000
[ 1023.563743][   T30] audit: type=1326 audit(1758670194.425:1164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17815 comm="syz.6.2872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8bd98eec9 code=0x7ffc0000
[ 1023.637666][   T30] audit: type=1326 audit(1758670194.425:1165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17815 comm="syz.6.2872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8bd98eec9 code=0x7ffc0000
[ 1023.814602][   T30] audit: type=1326 audit(1758670194.425:1166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17815 comm="syz.6.2872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb8bd98eec9 code=0x7ffc0000
[ 1023.889875][   T30] audit: type=1326 audit(1758670194.425:1167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17815 comm="syz.6.2872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8bd98eec9 code=0x7ffc0000
[ 1024.160106][   T30] audit: type=1326 audit(1758670194.425:1168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17815 comm="syz.6.2872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8bd98eec9 code=0x7ffc0000
[ 1024.497986][   T30] audit: type=1326 audit(1758670194.425:1169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17815 comm="syz.6.2872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb8bd98eec9 code=0x7ffc0000
[ 1024.526053][   T30] audit: type=1326 audit(1758670194.425:1170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17815 comm="syz.6.2872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8bd98eec9 code=0x7ffc0000
[ 1026.155848][T17869] siw: device registration error -23
[ 1026.491072][T17872] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2882'.
[ 1028.158805][T17890] siw: device registration error -23
[ 1028.894571][   T51] Bluetooth: hci2: ACL packet too small
[ 1029.631062][   T30] kauditd_printk_skb: 55 callbacks suppressed
[ 1029.631074][   T30] audit: type=1326 audit(1758670202.095:1226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17884 comm="syz.1.2886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[ 1029.854796][   T30] audit: type=1326 audit(1758670202.095:1227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17884 comm="syz.1.2886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[ 1029.881317][   T30] audit: type=1326 audit(1758670202.095:1228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17884 comm="syz.1.2886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[ 1029.932730][   T30] audit: type=1326 audit(1758670202.095:1229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17884 comm="syz.1.2886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[ 1029.956233][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1030.602942][   T30] audit: type=1326 audit(1758670202.095:1230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17884 comm="syz.1.2886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[ 1030.824266][   T30] audit: type=1326 audit(1758670202.095:1231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17884 comm="syz.1.2886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[ 1030.869144][   T30] audit: type=1326 audit(1758670202.095:1232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17884 comm="syz.1.2886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[ 1031.314067][   T30] audit: type=1326 audit(1758670202.095:1233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17884 comm="syz.1.2886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[ 1031.337725][   T30] audit: type=1326 audit(1758670202.095:1234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17884 comm="syz.1.2886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[ 1031.873295][T17920] siw: device registration error -23
[ 1032.021972][   T30] audit: type=1326 audit(1758670202.095:1235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17884 comm="syz.1.2886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb59e58eec9 code=0x7ffc0000
[ 1033.515799][T17943] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2898'.
[ 1034.247485][T17947] overlayfs: failed to resolve './file1': -2
[ 1035.602645][   T30] kauditd_printk_skb: 30 callbacks suppressed
[ 1035.602659][   T30] audit: type=1326 audit(1758670208.005:1266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17958 comm="syz.5.2902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa36c58eec9 code=0x7ffc0000
[ 1035.657875][   T30] audit: type=1326 audit(1758670208.005:1267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17958 comm="syz.5.2902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa36c58eec9 code=0x7ffc0000
[ 1035.710825][   T30] audit: type=1326 audit(1758670208.005:1268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17958 comm="syz.5.2902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=314 compat=0 ip=0x7fa36c58eec9 code=0x7ffc0000
[ 1035.735480][   T30] audit: type=1326 audit(1758670208.005:1269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17958 comm="syz.5.2902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa36c58eec9 code=0x7ffc0000
[ 1035.761301][   T30] audit: type=1326 audit(1758670208.005:1270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17958 comm="syz.5.2902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa36c58eec9 code=0x7ffc0000
[ 1035.993273][T17974] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2905'.
[ 1036.002434][T17974] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2905'.
[ 1036.011437][T17974] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2905'.
[ 1036.325672][   T30] audit: type=1326 audit(1758670208.005:1271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17958 comm="syz.5.2902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa36c58eec9 code=0x7ffc0000
[ 1036.996219][   T30] audit: type=1326 audit(1758670208.005:1272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17958 comm="syz.5.2902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa36c58eec9 code=0x7ffc0000
[ 1037.145137][   T30] audit: type=1326 audit(1758670208.005:1273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17958 comm="syz.5.2902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa36c58eec9 code=0x7ffc0000
[ 1037.629968][   T30] audit: type=1326 audit(1758670208.005:1274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17958 comm="syz.5.2902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fa36c58eec9 code=0x7ffc0000
[ 1038.021599][   T30] audit: type=1326 audit(1758670208.055:1275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17958 comm="syz.5.2902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa36c58eec9 code=0x7ffc0000
[ 1040.877240][T18024] siw: device registration error -23
[ 1041.722183][   T30] kauditd_printk_skb: 10 callbacks suppressed
[ 1041.722201][   T30] audit: type=1400 audit(1758670214.155:1286): avc:  denied  { connect } for  pid=18026 comm="syz.1.2915" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[ 1041.754877][   T30] audit: type=1400 audit(1758670214.175:1287): avc:  denied  { write } for  pid=18026 comm="syz.1.2915" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[ 1043.065985][T18041] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2919'.
[ 1043.221317][T18044] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1043.241061][T18047] overlayfs: missing 'lowerdir'
[ 1043.642067][   T43] usb 6-1: new full-speed USB device number 124 using dummy_hcd
[ 1043.902782][   T43] usb 6-1: too many endpoints for config 1 interface 0 altsetting 0: 255, using maximum allowed: 30
[ 1043.926046][   T43] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1043.953048][   T43] usb 6-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 255
[ 1043.989093][   T43] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1043.998557][   T43] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 1043.998579][   T43] usb 6-1: SerialNumber: syz
[ 1044.009405][   T43] cdc_acm 6-1:1.0: Control and data interfaces are not separated!
[ 1044.175936][   T30] audit: type=1326 audit(1758670216.665:1288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18063 comm="syz.0.2929" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[ 1044.340459][   T30] audit: type=1326 audit(1758670216.665:1289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18063 comm="syz.0.2929" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[ 1044.372838][   T30] audit: type=1326 audit(1758670216.865:1290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18063 comm="syz.0.2929" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[ 1044.376121][   T43] cdc_acm 6-1:1.0: ttyACM0: USB ACM device
[ 1044.836309][   T30] audit: type=1326 audit(1758670216.865:1291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18063 comm="syz.0.2929" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[ 1044.902239][   T30] audit: type=1326 audit(1758670216.865:1292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18063 comm="syz.0.2929" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7a618eec9 code=0x7ffc0000
[ 1045.050345][   T43] usb 6-1: USB disconnect, device number 124
[ 1046.843719][T18107] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1046.853173][T18107] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1046.860905][T18107] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1046.869869][T18107] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1046.877369][T18107] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1047.973928][T17546] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1048.932431][T18107] Bluetooth: hci1: command tx timeout
[ 1048.952450][T17546] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1049.215182][T17546] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1049.919017][T17546] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1050.081412][T18132] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1050.591025][T18106] lo speed is unknown, defaulting to 1000
[ 1051.020280][T18107] Bluetooth: hci1: command tx timeout
[ 1051.224347][T17546] bridge_slave_1: left allmulticast mode
[ 1051.231483][T18164] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2959'.
[ 1051.250952][   T30] audit: type=1400 audit(1758670223.745:1293): avc:  denied  { listen } for  pid=18162 comm="syz.6.2958" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[ 1051.260983][T17546] bridge_slave_1: left promiscuous mode
[ 1051.276830][T17546] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1051.322877][T17546] bridge_slave_0: left allmulticast mode
[ 1051.328531][T17546] bridge_slave_0: left promiscuous mode
[ 1051.784169][T17546] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1053.092270][T18107] Bluetooth: hci1: command tx timeout
[ 1053.975639][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[ 1053.982308][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[ 1054.567220][T17546] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1054.605333][T17546] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1054.935792][T17546] bond0 (unregistering): Released all slaves
[ 1054.957241][T18200] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[ 1055.311202][T18107] Bluetooth: hci1: command tx timeout
[ 1055.921600][   T30] audit: type=1400 audit(1758670228.075:1294): avc:  denied  { node_bind } for  pid=18227 comm="syz.2.2970" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1
[ 1055.956358][   T30] audit: type=1400 audit(1758670228.075:1295): avc:  denied  { block_suspend } for  pid=18227 comm="syz.2.2970" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[ 1055.958644][T18228] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2969'.
[ 1056.188708][T17546] tipc: Disabling bearer <udp:syz0>
[ 1056.216038][T17546] tipc: Left network mode
[ 1056.912542][T18106] chnl_net:caif_netlink_parms(): no params data found
[ 1058.195881][   T30] audit: type=1400 audit(1758670230.555:1296): avc:  denied  { create } for  pid=18259 comm="syz.0.2977" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[ 1058.257493][   T30] audit: type=1400 audit(1758670230.575:1297): avc:  denied  { write } for  pid=18259 comm="syz.0.2977" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[ 1059.233467][T18106] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1059.251114][T18106] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1059.265537][T18106] bridge_slave_0: entered allmulticast mode
[ 1059.292944][T18106] bridge_slave_0: entered promiscuous mode
[ 1059.513580][T18106] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1059.520786][T18106] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1059.528071][T18106] bridge_slave_1: entered allmulticast mode
[ 1059.601171][T18106] bridge_slave_1: entered promiscuous mode
[ 1059.913489][T18106] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1060.416181][T18106] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1060.528803][T17546] hsr_slave_0: left promiscuous mode
[ 1060.536792][T17546] hsr_slave_1: left promiscuous mode
[ 1060.655377][T17546] veth1_macvtap: left promiscuous mode
[ 1060.660905][T17546] veth0_macvtap: left promiscuous mode
[ 1060.667954][T17546] veth0_vlan: left promiscuous mode
[ 1061.813734][   T30] audit: type=1400 audit(1758670234.315:1298): avc:  denied  { connect } for  pid=18299 comm="syz.0.2985" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[ 1062.044466][   T30] audit: type=1400 audit(1758670234.535:1299): avc:  denied  { listen } for  pid=18317 comm="syz.6.2987" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 1062.804962][T12927] usb 6-1: new high-speed USB device number 125 using dummy_hcd
[ 1063.026587][T12927] usb 6-1: Using ep0 maxpacket: 32
[ 1063.037724][T12927] usb 6-1: New USB device found, idVendor=0ac8, idProduct=0321, bcdDevice=6f.be
[ 1063.046869][T12927] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1063.083964][T12927] usb 6-1: config 0 descriptor??
[ 1063.111404][T12927] gspca_main: vc032x-2.14.0 probing 0ac8:0321
[ 1063.666085][T17546] team0 (unregistering): Port device team_slave_1 removed
[ 1063.719767][T17546] team0 (unregistering): Port device team_slave_0 removed
[ 1064.196213][T12927] gspca_vc032x: reg_w err -71
[ 1064.200970][T12927] gspca_vc032x: I2c Bus Busy Wait 00
[ 1064.208248][T12927] gspca_vc032x: I2c Bus Busy Wait 00
[ 1064.214730][T12927] gspca_vc032x: I2c Bus Busy Wait 00
[ 1064.228958][T12927] gspca_vc032x: I2c Bus Busy Wait 00
[ 1064.234846][T12927] gspca_vc032x: I2c Bus Busy Wait 00
[ 1064.249235][T12927] gspca_vc032x: I2c Bus Busy Wait 00
[ 1064.263659][T12927] gspca_vc032x: I2c Bus Busy Wait 00
[ 1064.279142][T12927] gspca_vc032x: I2c Bus Busy Wait 00
[ 1064.297321][T12927] gspca_vc032x: I2c Bus Busy Wait 00
[ 1064.305317][T12927] gspca_vc032x: I2c Bus Busy Wait 00
[ 1064.398133][T12927] gspca_vc032x: I2c Bus Busy Wait 00
[ 1064.404423][T12927] gspca_vc032x: I2c Bus Busy Wait 00
[ 1064.409712][T12927] gspca_vc032x: I2c Bus Busy Wait 00
[ 1064.417588][T12927] gspca_vc032x: I2c Bus Busy Wait 00
[ 1064.425305][T12927] gspca_vc032x: I2c Bus Busy Wait 00
[ 1064.431076][T12927] gspca_vc032x: I2c Bus Busy Wait 00
[ 1064.437179][T12927] gspca_vc032x: I2c Bus Busy Wait 00
[ 1064.448542][T12927] gspca_vc032x: I2c Bus Busy Wait 00
[ 1064.459227][T12927] gspca_vc032x: Unknown sensor...
[ 1065.020718][T12927] vc032x 6-1:0.0: probe with driver vc032x failed with error -22
[ 1065.056683][T12927] usb 6-1: USB disconnect, device number 125
[ 1065.968538][T18106] team0: Port device team_slave_0 added
[ 1066.013369][T18106] team0: Port device team_slave_1 added
[ 1066.142210][T18106] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1066.149299][T18106] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1066.592205][T18106] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1066.635547][T18106] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1066.676490][T18106] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1066.703798][T18106] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1068.003549][T18106] hsr_slave_0: entered promiscuous mode
[ 1068.059004][T18106] hsr_slave_1: entered promiscuous mode
[ 1068.091344][T17546] IPVS: stop unused estimator thread 0...
[ 1070.351068][T18419] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3006'.
[ 1072.057815][   T30] audit: type=1400 audit(1758670244.425:1300): avc:  denied  { mount } for  pid=18434 comm="syz.6.3009" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[ 1072.436936][   T30] audit: type=1400 audit(1758670244.935:1301): avc:  denied  { unmount } for  pid=7560 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[ 1072.622636][   T30] audit: type=1400 audit(1758670245.065:1302): avc:  denied  { mount } for  pid=18429 comm="syz.5.3008" name="/" dev="devtmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[ 1073.084527][   T30] audit: type=1400 audit(1758670245.065:1303): avc:  denied  { mounton } for  pid=18429 comm="syz.5.3008" path="/489/file0" dev="devtmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=dir permissive=1
[ 1073.195686][T18106] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1073.206769][T18106] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1073.218205][T18106] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1073.296080][T18106] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1073.340902][   T30] audit: type=1400 audit(1758670245.835:1304): avc:  denied  { unmount } for  pid=7128 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[ 1074.707743][T18106] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1074.888379][T18481] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1074.899962][T18481] tipc: Resetting bearer <eth:syzkaller0>
[ 1074.919088][T18478] tipc: Disabling bearer <eth:syzkaller0>
[ 1076.633827][T18106] 8021q: adding VLAN 0 to HW filter on device team0
[ 1076.661371][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1076.668515][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1076.877323][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1076.884486][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1079.547693][T18106] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1079.636714][T18565] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3032'.
[ 1079.748909][T18106] veth0_vlan: entered promiscuous mode
[ 1079.795529][T18106] veth1_vlan: entered promiscuous mode
[ 1080.037264][T18570] loop9: detected capacity change from 0 to 7
[ 1080.047138][T18570] buffer_io_error: 9 callbacks suppressed
[ 1080.047164][T18570] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1080.061453][T18570] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1080.069900][T18570] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1080.078309][T18570] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1080.086811][T18570] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1080.095273][T18570] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1080.103623][T18570] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1080.111737][T18570] ldm_validate_partition_table(): Disk read failed.
[ 1080.118601][T18570] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1080.126952][T18570] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1080.135384][T18570] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1080.143992][T18570] Dev loop9: unable to read RDB block 0
[ 1080.150825][T18570]  loop9: unable to read partition table
[ 1080.157477][T18570] loop9: partition table beyond EOD, truncated
[ 1080.163779][T18570] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[ 1080.163779][T18570] 
) failed (rc=-5)
[ 1080.311614][T18106] veth0_macvtap: entered promiscuous mode
[ 1080.371328][T18106] veth1_macvtap: entered promiscuous mode
[ 1080.936815][T18106] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1081.033592][T18106] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1081.057782][ T2956] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1081.097984][ T2956] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1081.483193][ T2956] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1081.939063][   T30] audit: type=1800 audit(1758670254.075:1305): pid=18586 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.0.3035" name="bus" dev="overlay" ino=3287 res=0 errno=0
[ 1082.067867][   T49] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1082.627193][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1082.635075][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1083.164396][T17545] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1083.184155][T17545] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1083.858279][   T30] audit: type=1400 audit(1758670256.235:1306): avc:  denied  { read } for  pid=18609 comm="syz.6.3043" name="rtc0" dev="devtmpfs" ino=921 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[ 1084.836325][   T30] audit: type=1400 audit(1758670256.235:1307): avc:  denied  { open } for  pid=18609 comm="syz.6.3043" path="/dev/rtc0" dev="devtmpfs" ino=921 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[ 1084.860243][   T30] audit: type=1400 audit(1758670256.245:1308): avc:  denied  { ioctl } for  pid=18609 comm="syz.6.3043" path="/dev/rtc0" dev="devtmpfs" ino=921 ioctlcmd=0x700a scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[ 1085.791259][T18632] loop9: detected capacity change from 0 to 7
[ 1085.797961][T18632] buffer_io_error: 9 callbacks suppressed
[ 1085.797974][T18632] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1085.811645][T18632] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1085.819717][T18632] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1085.827566][T18632] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1085.835433][T18632] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1085.843284][T18632] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1085.851110][T18632] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1085.858942][T18632] ldm_validate_partition_table(): Disk read failed.
[ 1085.865542][T18632] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1085.873392][T18632] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1085.881398][T18632] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1085.889294][T18632] Dev loop9: unable to read RDB block 0
[ 1085.894938][T18632]  loop9: unable to read partition table
[ 1085.900639][T18632] loop9: partition table beyond EOD, truncated
[ 1085.906799][T18632] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[ 1085.906799][T18632] 
) failed (rc=-5)
[ 1085.992885][   T51] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1086.003757][   T51] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1086.011898][   T51] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1086.020282][   T51] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1086.031587][   T51] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1087.599662][T18641] lo speed is unknown, defaulting to 1000
[ 1087.735944][ T1205] usb 6-1: new high-speed USB device number 126 using dummy_hcd
[ 1088.074628][T18107] Bluetooth: hci5: command tx timeout
[ 1088.346827][   T69] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1088.405325][ T1205] usb 6-1: Using ep0 maxpacket: 16
[ 1088.429963][ T1205] usb 6-1: config 0 has no interfaces?
[ 1088.449927][ T1205] usb 6-1: New USB device found, idVendor=0e20, idProduct=0101, bcdDevice= 0.5a
[ 1088.479909][ T1205] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1088.491589][ T1205] usb 6-1: config 0 descriptor??
[ 1088.508208][   T69] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1088.720076][   T69] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1088.977128][ T1205] usb 6-1: USB disconnect, device number 126
[ 1089.042733][   T69] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1089.714445][T18641] chnl_net:caif_netlink_parms(): no params data found
[ 1090.132830][T18107] Bluetooth: hci5: command tx timeout
[ 1090.516382][T18641] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1090.542352][T18641] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1090.586049][T18641] bridge_slave_0: entered allmulticast mode
[ 1090.633586][T18641] bridge_slave_0: entered promiscuous mode
[ 1090.654317][T18641] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1090.699099][T18641] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1090.722383][T18641] bridge_slave_1: entered allmulticast mode
[ 1090.755953][T18641] bridge_slave_1: entered promiscuous mode
[ 1090.811129][   T69] bridge_slave_1: left allmulticast mode
[ 1090.827518][   T69] bridge_slave_1: left promiscuous mode
[ 1090.846053][   T69] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1090.890986][   T69] bridge_slave_0: left allmulticast mode
[ 1090.929008][   T69] bridge_slave_0: left promiscuous mode
[ 1091.027043][   T69] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1092.222328][T18107] Bluetooth: hci5: command tx timeout
[ 1093.963618][T18737] loop9: detected capacity change from 0 to 7
[ 1093.970402][T18737] buffer_io_error: 4 callbacks suppressed
[ 1093.970415][T18737] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1093.984191][T18737] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1093.992157][T18737] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1094.000071][T18737] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1094.008524][T18737] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1094.016808][T18737] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1094.025019][T18737] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1094.032921][T18737] ldm_validate_partition_table(): Disk read failed.
[ 1094.039529][T18737] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1094.047460][T18737] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1094.055435][T18737] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1094.063420][T18737] Dev loop9: unable to read RDB block 0
[ 1094.069407][T18737]  loop9: unable to read partition table
[ 1094.075218][T18737] loop9: partition table beyond EOD, truncated
[ 1094.081366][T18737] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[ 1094.081366][T18737] 
) failed (rc=-5)
[ 1094.292805][T18107] Bluetooth: hci5: command tx timeout
[ 1094.320224][T18744] fuse: Unknown parameter '0x0000000000000006'
[ 1094.347805][T18744] netfs: Couldn't get user pages (rc=-14)
[ 1094.414931][   T30] audit: type=1800 audit(1758670266.845:1309): pid=18744 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.6.3061" name="/" dev="9p" ino=65538 res=0 errno=0
[ 1095.455066][ T2933] smc: removing ib device syz0
[ 1095.460310][   T69] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1095.488139][   T69] bond_slave_0: left allmulticast mode
[ 1095.499772][   T69] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1095.509208][   T69] bond_slave_1: left allmulticast mode
[ 1095.516352][   T69] bond0 (unregistering): Released all slaves
[ 1095.633137][T18641] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1095.644871][T18641] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1096.987146][   T43] libceph: connect (1)[c::]:6789 error -22
[ 1096.999946][T18759] ceph: No mds server is up or the cluster is laggy
[ 1097.007279][   T43] libceph: mon0 (1)[c::]:6789 connect error
[ 1097.101455][T18641] team0: Port device team_slave_0 added
[ 1097.124595][T18641] team0: Port device team_slave_1 added
[ 1099.413233][T18641] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1099.436843][T18641] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1099.582078][T18641] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1100.016508][T18641] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1100.031492][T18641] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1100.057439][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1100.541995][T18641] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1101.073654][T18807] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3076'.
[ 1102.168629][T18641] hsr_slave_0: entered promiscuous mode
[ 1102.185569][T18641] hsr_slave_1: entered promiscuous mode
[ 1102.202855][T18641] debugfs: 'hsr0' already exists in 'hsr'
[ 1102.231562][T18641] Cannot create hsr debugfs directory
[ 1102.240452][   T69] tipc: Disabling bearer <udp:syz0>
[ 1102.246526][   T69] tipc: Left network mode
[ 1104.476618][   T69] hsr_slave_0: left promiscuous mode
[ 1104.490710][   T69] hsr_slave_1: left promiscuous mode
[ 1104.497534][   T69] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1104.505037][   T69] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1104.654817][   T69] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1104.672680][   T69] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1104.704237][   T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1104.735668][   T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1105.667127][   T69] veth1_macvtap: left promiscuous mode
[ 1105.684674][   T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1105.693623][   T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1105.697412][   T69] veth0_macvtap: left promiscuous mode
[ 1105.701938][   T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1106.525962][   T69] veth0_vlan: left promiscuous mode
[ 1106.993023][T18107] Bluetooth: hci2: unexpected event for opcode 0x1003
[ 1107.883272][   T69] team_slave_1 (unregistering): left allmulticast mode
[ 1107.891073][   T69] team0 (unregistering): Port device team_slave_1 removed
[ 1107.924948][   T69] team_slave_0 (unregistering): left allmulticast mode
[ 1107.932455][   T69] team0 (unregistering): Port device team_slave_0 removed
[ 1108.242167][T14147] lo speed is unknown, defaulting to 1000
[ 1108.248084][T14147] infiniband syz2: ib_query_port failed (-19)
[ 1108.267598][   T30] audit: type=1400 audit(1758670280.765:1310): avc:  denied  { accept } for  pid=18876 comm="syz.0.3089" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[ 1108.532093][T18107] Bluetooth: hci0: command tx timeout
[ 1108.954416][T18854] chnl_net:caif_netlink_parms(): no params data found
[ 1109.073856][   T69] IPVS: stop unused estimator thread 0...
[ 1109.738647][T18854] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1109.756415][T18854] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1109.902195][T18854] bridge_slave_0: entered allmulticast mode
[ 1109.914871][T18854] bridge_slave_0: entered promiscuous mode
[ 1110.830260][T18107] Bluetooth: hci0: command tx timeout
[ 1110.880584][   T69] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1111.012274][T18107] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[ 1111.020708][T18107] Bluetooth: hci2: Injecting HCI hardware error event
[ 1111.028960][T18107] Bluetooth: hci2: hardware error 0x00
[ 1111.223342][T18854] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1111.776279][T18854] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1111.819597][T18854] bridge_slave_1: entered allmulticast mode
[ 1112.084505][T18854] bridge_slave_1: entered promiscuous mode
[ 1112.137753][T18641] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1112.746945][   T69] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1112.831443][T18854] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1112.841221][T18641] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1112.852499][   T51] Bluetooth: hci0: command tx timeout
[ 1113.084872][T18641] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1113.260751][T18854] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1113.270192][T18107] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[ 1113.774684][   T69] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1113.811842][T18641] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1113.883103][T18854] team0: Port device team_slave_0 added
[ 1113.897164][T18854] team0: Port device team_slave_1 added
[ 1113.945690][   T69] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1114.061488][T18854] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1114.075487][T18854] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1114.115902][T18854] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1114.140879][T18854] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1114.154820][T18854] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1114.226625][T18854] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1114.492577][T18942] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1114.502178][T18942] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1114.510558][T18942] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1114.520145][T18942] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1114.527512][T18942] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1114.558205][T18854] hsr_slave_0: entered promiscuous mode
[ 1114.605204][T18854] hsr_slave_1: entered promiscuous mode
[ 1114.631213][T18854] debugfs: 'hsr0' already exists in 'hsr'
[ 1114.647401][T18854] Cannot create hsr debugfs directory
[ 1114.957954][T18107] Bluetooth: hci0: command tx timeout
[ 1115.416529][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[ 1115.423969][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[ 1115.553503][   T69] bridge_slave_1: left allmulticast mode
[ 1115.559177][   T69] bridge_slave_1: left promiscuous mode
[ 1115.643297][   T69] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1115.665642][   T69] bridge_slave_0: left allmulticast mode
[ 1115.671302][   T69] bridge_slave_0: left promiscuous mode
[ 1115.682260][   T69] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1115.952106][T19001] loop9: detected capacity change from 0 to 7
[ 1115.961103][T19001] buffer_io_error: 4 callbacks suppressed
[ 1115.961129][T19001] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1115.975312][T19001] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1115.983805][T19001] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1115.992268][T19001] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1116.000652][T19001] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1116.009192][T19001] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1116.017553][T19001] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1116.025809][T19001] ldm_validate_partition_table(): Disk read failed.
[ 1116.032700][T19001] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1116.041122][T19001] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1116.049797][T19001] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1116.058550][T19001] Dev loop9: unable to read RDB block 0
[ 1116.065376][T19001]  loop9: unable to read partition table
[ 1116.071905][T19001] loop9: partition table beyond EOD, truncated
[ 1116.078149][T19001] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[ 1116.078149][T19001] 
) failed (rc=-5)
[ 1116.529956][   T69] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1116.548725][   T69] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1116.573903][   T69] bond0 (unregistering): Released all slaves
[ 1116.612214][T18107] Bluetooth: hci1: command tx timeout
[ 1116.777276][   T69] tipc: Disabling bearer <udp:syz0>
[ 1116.792383][   T69] tipc: Left network mode
[ 1117.036068][T18641] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1117.052470][T18641] 8021q: adding VLAN 0 to HW filter on device team0
[ 1117.088609][T18641] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1117.137882][T18641] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1117.658330][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1117.665484][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1117.685717][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1117.692845][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1118.032178][   T69] hsr_slave_0: left promiscuous mode
[ 1118.077357][   T69] hsr_slave_1: left promiscuous mode
[ 1118.085734][   T69] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1118.104300][   T69] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1118.112260][   T69] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1118.122035][   T69] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1118.242865][   T69] veth1_macvtap: left promiscuous mode
[ 1118.248408][   T69] veth0_macvtap: left promiscuous mode
[ 1118.254054][   T69] veth1_vlan: left promiscuous mode
[ 1118.259486][   T69] veth0_vlan: left promiscuous mode
[ 1118.692325][T18107] Bluetooth: hci1: command tx timeout
[ 1120.276841][T19031] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3113'.
[ 1120.821093][T18107] Bluetooth: hci1: command tx timeout
[ 1122.389868][   T69] team0 (unregistering): Port device team_slave_1 removed
[ 1122.429995][   T69] team0 (unregistering): Port device team_slave_0 removed
[ 1122.863008][T18107] Bluetooth: hci1: command tx timeout
[ 1123.120322][T18854] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1123.130799][T18854] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1123.176746][T18854] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1123.223279][T18854] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1123.426161][T18641] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1123.528961][T18641] veth0_vlan: entered promiscuous mode
[ 1123.564237][T18854] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1124.536013][T18641] veth1_vlan: entered promiscuous mode
[ 1124.569898][T18854] 8021q: adding VLAN 0 to HW filter on device team0
[ 1125.134363][ T2956] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1125.141492][ T2956] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1125.157739][T18641] veth0_macvtap: entered promiscuous mode
[ 1125.164897][T18973] chnl_net:caif_netlink_parms(): no params data found
[ 1125.226974][   T69] IPVS: stop unused estimator thread 0...
[ 1125.228148][T18641] veth1_macvtap: entered promiscuous mode
[ 1125.415096][T19035] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1125.422251][T19035] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1125.910728][T19094] input: syz0 as /devices/virtual/input/input7
[ 1125.931664][   T30] audit: type=1400 audit(1758670298.425:1311): avc:  denied  { read } for  pid=5207 comm="acpid" name="event4" dev="devtmpfs" ino=3468 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 1125.957106][   T30] audit: type=1400 audit(1758670298.425:1312): avc:  denied  { open } for  pid=5207 comm="acpid" path="/dev/input/event4" dev="devtmpfs" ino=3468 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 1125.997087][   T30] audit: type=1400 audit(1758670298.425:1313): avc:  denied  { ioctl } for  pid=5207 comm="acpid" path="/dev/input/event4" dev="devtmpfs" ino=3468 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 1126.169193][   T69] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1126.236260][T18641] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1126.393394][T18854] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1127.005477][   T69] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1127.053485][T18973] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1127.069604][T18973] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1127.077108][T18973] bridge_slave_0: entered allmulticast mode
[ 1127.084504][T18973] bridge_slave_0: entered promiscuous mode
[ 1127.099813][T18973] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1127.107093][T18973] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1127.118197][T18973] bridge_slave_1: entered allmulticast mode
[ 1127.131550][T18973] bridge_slave_1: entered promiscuous mode
[ 1127.170834][T18641] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1127.290450][   T30] audit: type=1400 audit(1758670299.785:1314): avc:  denied  { write } for  pid=19115 comm="syz.5.3129" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[ 1127.309846][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1127.404117][   T69] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1127.579398][   T69] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1127.599840][T18973] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1127.634025][T18973] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1127.731832][ T2968] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1127.763823][T18854] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1127.785796][ T2968] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1127.797272][ T2968] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1127.808577][ T2968] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1128.056613][T18973] team0: Port device team_slave_0 added
[ 1128.076301][T18973] team0: Port device team_slave_1 added
[ 1128.338259][T18973] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1128.345334][T18973] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1128.394053][T18973] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1128.426205][   T69] bridge_slave_1: left allmulticast mode
[ 1128.445448][   T69] bridge_slave_1: left promiscuous mode
[ 1128.497713][   T69] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1128.579956][   T69] bridge_slave_0: left allmulticast mode
[ 1128.636686][   T69] bridge_slave_0: left promiscuous mode
[ 1128.693933][   T69] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1130.914520][   T30] audit: type=1800 audit(1758670303.415:1315): pid=19156 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.5.3133" name="/" dev="9p" ino=65538 res=0 errno=0
[ 1131.743529][   T69] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1131.757433][   T69] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1131.773067][   T69] bond0 (unregistering): Released all slaves
[ 1131.790907][T18973] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1131.798708][T18973] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1131.841826][T18973] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1131.889508][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1131.905409][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1132.745025][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1132.753382][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1132.769501][T18973] hsr_slave_0: entered promiscuous mode
[ 1132.776413][T18973] hsr_slave_1: entered promiscuous mode
[ 1132.782681][T18973] debugfs: 'hsr0' already exists in 'hsr'
[ 1132.788466][T18973] Cannot create hsr debugfs directory
[ 1133.065447][   T69] hsr_slave_0: left promiscuous mode
[ 1133.087485][   T69] hsr_slave_1: left promiscuous mode
[ 1133.115478][   T69] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1133.127512][   T69] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1133.152772][   T69] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1133.198897][   T69] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1133.708255][   T69] veth1_macvtap: left promiscuous mode
[ 1133.721274][   T69] veth0_macvtap: left promiscuous mode
[ 1133.750705][   T69] veth1_vlan: left promiscuous mode
[ 1133.760996][   T69] veth0_vlan: left promiscuous mode
[ 1134.645050][   T30] audit: type=1800 audit(1758670307.145:1316): pid=19198 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.0.3141" name="/" dev="9p" ino=65538 res=0 errno=0
[ 1134.981236][   T69] team0 (unregistering): Port device team_slave_1 removed
[ 1135.086659][T19002] usb 6-1: new high-speed USB device number 127 using dummy_hcd
[ 1135.142743][   T69] team0 (unregistering): Port device team_slave_0 removed
[ 1135.325709][T19002] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[ 1135.427852][T19002] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1135.439387][T19002] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1135.449771][T19002] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[ 1135.464673][T19002] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[ 1135.473801][T19002] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[ 1135.481904][T19002] usb 6-1: Manufacturer: syz
[ 1135.489126][T19002] usb 6-1: config 0 descriptor??
[ 1135.781840][T18854] veth0_vlan: entered promiscuous mode
[ 1135.825199][T18854] veth1_vlan: entered promiscuous mode
[ 1135.934966][T19002] usbhid 6-1:0.0: can't add hid device: -71
[ 1135.942832][T19002] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[ 1135.953430][T19002] usb 6-1: USB disconnect, device number 127
[ 1136.558233][T18854] veth0_macvtap: entered promiscuous mode
[ 1136.719711][T18854] veth1_macvtap: entered promiscuous mode
[ 1136.742081][   T43] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[ 1136.773610][T18854] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1136.875877][T18854] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1137.186634][   T43] usb 3-1: Using ep0 maxpacket: 16
[ 1137.267388][T19213] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3145'.
[ 1137.504543][T19214] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1137.540870][T18973] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1137.602715][T19214] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1137.630289][   T49] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1137.651883][T18973] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1137.751436][   T49] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1137.769438][   T49] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1138.239794][T18973] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1138.255750][T18973] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1138.872640][   T49] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1139.239594][ T2956] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1139.282884][ T2956] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1139.406734][T18757] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1139.430539][T18757] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1139.539259][T18973] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1139.598874][T18973] 8021q: adding VLAN 0 to HW filter on device team0
[ 1139.618861][   T43] usb 3-1: unable to get BOS descriptor or descriptor too short
[ 1139.659245][   T43] usb 3-1: unable to read config index 0 descriptor/start: -71
[ 1139.734860][   T43] usb 3-1: can't read configurations, error -71
[ 1139.809273][T19035] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1139.816435][T19035] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1140.157158][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1140.164305][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1140.648428][   T30] audit: type=1326 audit(1758670313.125:1317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19271 comm="syz.7.3081" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb40598eec9 code=0x0
[ 1142.967160][T18973] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1144.645514][T18973] veth0_vlan: entered promiscuous mode
[ 1144.721786][   T30] audit: type=1400 audit(1758670317.215:1318): avc:  denied  { listen } for  pid=19336 comm="syz.5.3166" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[ 1144.746263][T18973] veth1_vlan: entered promiscuous mode
[ 1144.800774][   T30] audit: type=1400 audit(1758670317.215:1319): avc:  denied  { accept } for  pid=19336 comm="syz.5.3166" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[ 1144.889146][T18973] veth0_macvtap: entered promiscuous mode
[ 1144.900717][T18973] veth1_macvtap: entered promiscuous mode
[ 1144.937545][T18973] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1144.974066][T18973] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1145.007592][T19035] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1145.038429][T19035] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1145.118414][   T30] audit: type=1400 audit(1758670317.615:1320): avc:  denied  { map } for  pid=19344 comm="syz.7.3167" path="socket:[62626]" dev="sockfs" ino=62626 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[ 1145.214160][   T30] audit: type=1400 audit(1758670317.645:1321): avc:  denied  { read } for  pid=19344 comm="syz.7.3167" path="socket:[62626]" dev="sockfs" ino=62626 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[ 1145.247494][T19035] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1145.387910][T19035] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1146.647533][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1146.658500][   T69] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1146.713090][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1146.730027][   T69] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1151.006254][   T30] audit: type=1400 audit(1758670323.505:1322): avc:  denied  { audit_read } for  pid=19398 comm="syz.8.3176" capability=37  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[ 1151.140545][   T30] audit: type=1400 audit(1758670323.505:1323): avc:  denied  { create } for  pid=19398 comm="syz.8.3176" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_scsitransport_socket permissive=1
[ 1151.292052][   T30] audit: type=1400 audit(1758670323.525:1324): avc:  denied  { bind } for  pid=19398 comm="syz.8.3176" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_scsitransport_socket permissive=1
[ 1152.002508][T18942] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1152.016817][T18942] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1152.054659][T18942] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1152.063745][T18942] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1152.071589][T18942] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1153.012591][ T5977] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[ 1153.742702][ T5977] usb 6-1: Using ep0 maxpacket: 8
[ 1153.756483][ T5977] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[ 1153.764453][T19035] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1154.117269][ T5977] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1154.135367][ T5977] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1154.136732][T18942] Bluetooth: hci3: command tx timeout
[ 1154.145362][ T5977] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[ 1154.160574][ T5977] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 0
[ 1154.170411][ T5977] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1154.228645][ T5977] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1154.314928][ T5977] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1154.315634][T19035] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1154.513141][ T5977] usbtmc 6-1:16.0: probe with driver usbtmc failed with error -22
[ 1154.922817][ T1205] usb 6-1: USB disconnect, device number 2
[ 1155.320353][T19035] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1156.368671][T18942] Bluetooth: hci3: command tx timeout
[ 1158.604621][T18107] Bluetooth: hci3: command tx timeout
[ 1159.031888][ T5977] libceph: connect (1)[c::]:6789 error -101
[ 1159.194005][T19468] ceph: No mds server is up or the cluster is laggy
[ 1159.202294][ T5977] libceph: mon0 (1)[c::]:6789 connect error
[ 1159.227262][T19035] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1159.509646][T19419] chnl_net:caif_netlink_parms(): no params data found
[ 1160.102199][   T30] audit: type=1400 audit(1758670332.585:1325): avc:  denied  { setopt } for  pid=19488 comm="syz.7.3197" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[ 1160.643877][T18942] Bluetooth: hci3: command tx timeout
[ 1161.465055][T19419] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1161.480741][T19419] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1161.508716][T19419] bridge_slave_0: entered allmulticast mode
[ 1161.608718][T19419] bridge_slave_0: entered promiscuous mode
[ 1161.965439][T19419] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1162.002251][T19419] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1162.098068][T19419] bridge_slave_1: entered allmulticast mode
[ 1162.150494][T19419] bridge_slave_1: entered promiscuous mode
[ 1162.348372][T19532] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3205'.
[ 1163.421447][T19419] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1163.704324][T19419] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1163.937137][T19035] bridge_slave_1: left allmulticast mode
[ 1163.972317][T19035] bridge_slave_1: left promiscuous mode
[ 1164.045746][T19035] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1164.260102][T19035] bridge_slave_0: left allmulticast mode
[ 1164.281339][T19035] bridge_slave_0: left promiscuous mode
[ 1164.296646][T19035] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1168.393041][T19035] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1168.662223][T19035] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1168.764886][T19035] bond0 (unregistering): Released all slaves
[ 1168.923542][T19419] team0: Port device team_slave_0 added
[ 1168.931602][T19419] team0: Port device team_slave_1 added
[ 1169.108885][T19035] tipc: Disabling bearer <udp:syz0>
[ 1169.115890][T19035] tipc: Left network mode
[ 1169.242561][T19419] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1169.261970][T19419] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1169.350940][T19419] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1169.480722][T19419] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1169.488964][T19419] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1169.626623][T19419] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1170.604558][T19419] hsr_slave_0: entered promiscuous mode
[ 1170.626730][T19419] hsr_slave_1: entered promiscuous mode
[ 1171.703309][T19035] hsr_slave_0: left promiscuous mode
[ 1171.775019][T19035] hsr_slave_1: left promiscuous mode
[ 1171.820835][T19035] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1171.882046][T19035] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1171.948713][T19035] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1171.985347][T19035] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1172.078170][T19035] veth1_macvtap: left promiscuous mode
[ 1172.084253][T18107] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1172.108893][T19035] veth0_macvtap: left promiscuous mode
[ 1172.114616][T19035] veth0_vlan: left promiscuous mode
[ 1172.122213][T18107] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1172.132124][T18107] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1172.175371][T18107] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1172.212442][T18107] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1173.191776][T19649] fuse: Bad value for 'fd'
[ 1174.034219][T19035] team0 (unregistering): Port device team_slave_1 removed
[ 1174.076861][T19035] team0 (unregistering): Port device team_slave_0 removed
[ 1174.303655][T18107] Bluetooth: hci2: command tx timeout
[ 1174.508867][T19662] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3235'.
[ 1174.745398][T19658] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3234'.
[ 1174.950287][T19670] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3237'.
[ 1175.400918][T19676] input: syz0 as /devices/virtual/input/input8
[ 1175.579653][T19682] netlink: 12 bytes leftover after parsing attributes in process `syz.8.3241'.
[ 1175.588953][T19683] fuse: Bad value for 'fd'
[ 1175.912787][T19035] IPVS: stop unused estimator thread 0...
[ 1176.034565][T19629] chnl_net:caif_netlink_parms(): no params data found
[ 1176.412156][T18107] Bluetooth: hci2: command tx timeout
[ 1176.746173][T19419] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1176.896894][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[ 1176.903256][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[ 1176.970710][T19419] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1177.540522][T19419] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1177.550557][T18942] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1177.561811][T18942] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1177.570546][T18942] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1177.583048][T18942] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1177.583207][T19419] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1177.590696][T18942] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1177.784412][T19035] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1177.885915][T19629] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1178.374816][T19629] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1178.391713][T19629] bridge_slave_0: entered allmulticast mode
[ 1178.415058][T19629] bridge_slave_0: entered promiscuous mode
[ 1178.452438][T18942] Bluetooth: hci2: command tx timeout
[ 1178.482361][T19035] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1178.511708][T19629] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1178.611792][T19629] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1178.633249][T19629] bridge_slave_1: entered allmulticast mode
[ 1178.665190][T19629] bridge_slave_1: entered promiscuous mode
[ 1178.777433][T19035] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1178.778421][T19737] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3250'.
[ 1178.988934][T19035] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1179.020968][T19629] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1179.060212][T19629] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1179.256192][T19629] team0: Port device team_slave_0 added
[ 1179.282825][T19419] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1179.296839][T19629] team0: Port device team_slave_1 added
[ 1179.646446][T19629] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1179.662141][T18942] Bluetooth: hci0: command tx timeout
[ 1179.668884][T19629] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1179.929438][T19629] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1180.002951][T19419] 8021q: adding VLAN 0 to HW filter on device team0
[ 1180.044924][T19629] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1180.075055][T19629] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1180.235423][T19629] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1180.532731][T18942] Bluetooth: hci2: command tx timeout
[ 1180.560443][   T69] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1180.567582][   T69] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1181.732489][T18942] Bluetooth: hci0: command tx timeout
[ 1181.768332][T19629] hsr_slave_0: entered promiscuous mode
[ 1181.797101][T19629] hsr_slave_1: entered promiscuous mode
[ 1181.854947][T19629] debugfs: 'hsr0' already exists in 'hsr'
[ 1181.860697][T19629] Cannot create hsr debugfs directory
[ 1182.023166][T19035] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1182.138269][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1182.145348][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1182.357098][T19035] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1182.629082][T19035] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1182.707076][T19709] chnl_net:caif_netlink_parms(): no params data found
[ 1182.876692][T19035] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1182.910731][T19419] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1183.026172][T19800] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3258'.
[ 1183.453066][T19709] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1183.460231][T19709] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1183.515837][T19709] bridge_slave_0: entered allmulticast mode
[ 1183.527153][T19709] bridge_slave_0: entered promiscuous mode
[ 1183.541547][T19709] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1183.718600][T19817] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3260'.
[ 1184.053757][T18942] Bluetooth: hci0: command tx timeout
[ 1184.358294][T19709] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1184.366891][T19709] bridge_slave_1: entered allmulticast mode
[ 1184.475986][T19709] bridge_slave_1: entered promiscuous mode
[ 1184.859164][T19709] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1185.027077][T19035] bridge_slave_1: left allmulticast mode
[ 1185.269207][T19035] bridge_slave_1: left promiscuous mode
[ 1185.286196][T19035] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1185.315673][T19035] bridge_slave_0: left allmulticast mode
[ 1185.331355][T19035] bridge_slave_0: left promiscuous mode
[ 1185.340134][T19035] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1185.361764][T19035] bridge_slave_1: left allmulticast mode
[ 1185.374634][T19035] bridge_slave_1: left promiscuous mode
[ 1185.393549][T19035] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1185.425044][T19035] bridge_slave_0: left allmulticast mode
[ 1185.452806][T19035] bridge_slave_0: left promiscuous mode
[ 1185.476684][T19035] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1186.132016][T18942] Bluetooth: hci0: command tx timeout
[ 1186.422776][T19035] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1186.437897][T19035] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1186.448784][T19035] bond0 (unregistering): Released all slaves
[ 1187.116556][T19867] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3265'.
[ 1187.244359][T19869] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3265'.
[ 1187.635416][T19879] netlink: 12 bytes leftover after parsing attributes in process `syz.8.3266'.
[ 1188.467366][T19035] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1188.484483][T19035] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1188.498156][T19035] bond0 (unregistering): Released all slaves
[ 1188.516761][T19709] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1188.699188][T19419] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1189.078756][T19709] team0: Port device team_slave_0 added
[ 1189.090164][T19709] team0: Port device team_slave_1 added
[ 1189.130765][T19035] tipc: Disabling bearer <udp:syz0>
[ 1189.141004][T19035] tipc: Left network mode
[ 1189.194146][   T43] usb 9-1: new low-speed USB device number 2 using dummy_hcd
[ 1189.246614][T19709] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1189.257213][T19709] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1189.283846][T19709] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1189.320145][T19629] netdevsim netdevsim9 netdevsim0: renamed from eth0
[ 1189.337982][T19709] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1189.351059][T19709] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1189.384222][T19709] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1189.401562][T19629] netdevsim netdevsim9 netdevsim1: renamed from eth1
[ 1189.531160][   T43] usb 9-1: config 32 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1189.550473][   T43] usb 9-1: New USB device found, idVendor=19b5, idProduct=0021, bcdDevice=98.c7
[ 1189.560268][   T43] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1189.628985][T19629] netdevsim netdevsim9 netdevsim2: renamed from eth2
[ 1189.676718][T19629] netdevsim netdevsim9 netdevsim3: renamed from eth3
[ 1189.807122][   T43] usb 9-1: string descriptor 0 read error: -71
[ 1189.838253][   T43] hub 9-1:32.0: bad descriptor, ignoring hub
[ 1189.851598][   T43] hub 9-1:32.0: probe with driver hub failed with error -5
[ 1189.861066][T19709] hsr_slave_0: entered promiscuous mode
[ 1189.870345][T19709] hsr_slave_1: entered promiscuous mode
[ 1189.884505][T19709] debugfs: 'hsr0' already exists in 'hsr'
[ 1189.918105][T19709] Cannot create hsr debugfs directory
[ 1189.968426][   T43] usb 9-1: USB disconnect, device number 2
[ 1190.247373][T19419] veth0_vlan: entered promiscuous mode
[ 1190.423823][T19419] veth1_vlan: entered promiscuous mode
[ 1190.630979][T19923] netlink: 16 bytes leftover after parsing attributes in process `syz.8.3271'.
[ 1190.822754][ T2968] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1190.887828][ T2968] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1191.061769][   T69] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1191.143586][   T69] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1191.394398][T19035] hsr_slave_0: left promiscuous mode
[ 1191.400451][T17546] ------------[ cut here ]------------
[ 1191.406167][T17546] WARNING: CPU: 1 PID: 17546 at net/wireless/ibss.c:37 __cfg80211_ibss_joined+0x4d5/0x580
[ 1191.416358][T17546] Modules linked in:
[ 1191.420368][T17546] CPU: 1 UID: 0 PID: 17546 Comm: kworker/u8:8 Not tainted syzkaller #0 PREEMPT(full) 
[ 1191.429959][T17546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1191.440319][T17546] Workqueue: cfg80211 cfg80211_event_work
[ 1191.446092][T17546] RIP: 0010:__cfg80211_ibss_joined+0x4d5/0x580
[ 1191.452591][T17546] Code: ff ff e8 ce db c9 f6 90 0f 0b 90 e9 58 fe ff ff e8 a0 43 30 f7 e9 22 fc ff ff e8 36 43 30 f7 e9 66 fc ff ff e8 ac db c9 f6 90 <0f> 0b 90 e9 6f fc ff ff e8 9e db c9 f6 90 0f 0b e8 a6 43 30 f7 e9
[ 1191.472815][T17546] RSP: 0018:ffffc9000ff27ae0 EFLAGS: 00010293
[ 1191.478859][T17546] RAX: 0000000000000000 RBX: ffff88806695cd90 RCX: 0000000000000006
[ 1191.486967][T17546] RDX: ffff888034f5c880 RSI: ffffffff8af1c1d4 RDI: ffffffff8c163400
[ 1191.495413][T17546] RBP: ffffc9000ff27b90 R08: 0000000000000001 R09: 0000000000000001
[ 1191.503603][T17546] R10: ffffffff90ab7697 R11: 0000000000000000 R12: ffff88806695c000
[ 1191.511768][T17546] R13: 1ffff92001fe4f60 R14: 0000000000000000 R15: ffffc9000ff27b20
[ 1191.519885][T17546] FS:  0000000000000000(0000) GS:ffff8881247b2000(0000) knlGS:0000000000000000
[ 1191.528830][T17546] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1191.535471][T17546] CR2: 00007fb2cae4c4e8 CR3: 000000000e380000 CR4: 00000000003526f0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1191.543467][T17546] Call Trace:
[ 1191.546737][T17546]  <TASK>
[ 1191.549661][T17546]  ? __pfx___cfg80211_ibss_joined+0x10/0x10
[ 1191.555695][T17546]  ? mark_held_locks+0x49/0x80
[ 1191.560471][T17546]  ? cfg80211_process_wdev_events+0x3dd/0x5c0
[ 1191.566565][T17546]  cfg80211_process_wdev_events+0x3dd/0x5c0
[ 1191.573293][T17546]  cfg80211_process_rdev_events+0x9f/0x130
[ 1191.579110][T17546]  cfg80211_event_work+0x37/0x70
[ 1191.584627][T17546]  process_one_work+0x9cc/0x1b70
[ 1191.589581][T17546]  ? __pfx_process_one_work+0x10/0x10
[ 1191.595019][T17546]  ? assign_work+0x1a0/0x250
[ 1191.599612][T17546]  worker_thread+0x6c8/0xf10
[ 1191.604249][T17546]  ? __pfx_worker_thread+0x10/0x10
[ 1191.609358][T17546]  kthread+0x3c2/0x780
[ 1191.613452][T17546]  ? __pfx_kthread+0x10/0x10
[ 1191.618042][T17546]  ? rcu_is_watching+0x12/0xc0
[ 1191.622833][T17546]  ? __pfx_kthread+0x10/0x10
[ 1191.627419][T17546]  ret_from_fork+0x56a/0x730
[ 1191.632028][T17546]  ? __pfx_kthread+0x10/0x10
[ 1191.636616][T17546]  ret_from_fork_asm+0x1a/0x30
[ 1191.641391][T17546]  </TASK>
[ 1191.644419][T17546] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1191.651686][T17546] CPU: 1 UID: 0 PID: 17546 Comm: kworker/u8:8 Not tainted syzkaller #0 PREEMPT(full) 
[ 1191.661212][T17546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1191.671250][T17546] Workqueue: cfg80211 cfg80211_event_work
[ 1191.676976][T17546] Call Trace:
[ 1191.680234][T17546]  <TASK>
[ 1191.683147][T17546]  dump_stack_lvl+0x3d/0x1f0
[ 1191.687724][T17546]  vpanic+0x6e8/0x7a0
[ 1191.691694][T17546]  ? __pfx_vpanic+0x10/0x10
[ 1191.696187][T17546]  ? __cfg80211_ibss_joined+0x4d5/0x580
[ 1191.701720][T17546]  panic+0xca/0xd0
[ 1191.705417][T17546]  ? __pfx_panic+0x10/0x10
[ 1191.709828][T17546]  ? check_panic_on_warn+0x1f/0xb0
[ 1191.714919][T17546]  check_panic_on_warn+0xab/0xb0
[ 1191.719836][T17546]  __warn+0xf6/0x3c0
[ 1191.723709][T17546]  ? __cfg80211_ibss_joined+0x4d5/0x580
[ 1191.729242][T17546]  report_bug+0x3c3/0x580
[ 1191.733552][T17546]  ? __cfg80211_ibss_joined+0x4d5/0x580
[ 1191.739087][T17546]  handle_bug+0x184/0x210
[ 1191.743405][T17546]  exc_invalid_op+0x17/0x50
[ 1191.747894][T17546]  asm_exc_invalid_op+0x1a/0x20
[ 1191.752723][T17546] RIP: 0010:__cfg80211_ibss_joined+0x4d5/0x580
[ 1191.758863][T17546] Code: ff ff e8 ce db c9 f6 90 0f 0b 90 e9 58 fe ff ff e8 a0 43 30 f7 e9 22 fc ff ff e8 36 43 30 f7 e9 66 fc ff ff e8 ac db c9 f6 90 <0f> 0b 90 e9 6f fc ff ff e8 9e db c9 f6 90 0f 0b e8 a6 43 30 f7 e9
[ 1191.778449][T17546] RSP: 0018:ffffc9000ff27ae0 EFLAGS: 00010293
[ 1191.784505][T17546] RAX: 0000000000000000 RBX: ffff88806695cd90 RCX: 0000000000000006
[ 1191.792465][T17546] RDX: ffff888034f5c880 RSI: ffffffff8af1c1d4 RDI: ffffffff8c163400
[ 1191.800427][T17546] RBP: ffffc9000ff27b90 R08: 0000000000000001 R09: 0000000000000001
[ 1191.808385][T17546] R10: ffffffff90ab7697 R11: 0000000000000000 R12: ffff88806695c000
[ 1191.816338][T17546] R13: 1ffff92001fe4f60 R14: 0000000000000000 R15: ffffc9000ff27b20
[ 1191.824295][T17546]  ? __cfg80211_ibss_joined+0x4d4/0x580
[ 1191.829841][T17546]  ? __pfx___cfg80211_ibss_joined+0x10/0x10
[ 1191.835724][T17546]  ? mark_held_locks+0x49/0x80
[ 1191.840479][T17546]  ? cfg80211_process_wdev_events+0x3dd/0x5c0
[ 1191.846528][T17546]  cfg80211_process_wdev_events+0x3dd/0x5c0
[ 1191.852410][T17546]  cfg80211_process_rdev_events+0x9f/0x130
[ 1191.858200][T17546]  cfg80211_event_work+0x37/0x70
[ 1191.863122][T17546]  process_one_work+0x9cc/0x1b70
[ 1191.868051][T17546]  ? __pfx_process_one_work+0x10/0x10
[ 1191.873411][T17546]  ? assign_work+0x1a0/0x250
[ 1191.877984][T17546]  worker_thread+0x6c8/0xf10
[ 1191.882564][T17546]  ? __pfx_worker_thread+0x10/0x10
[ 1191.887656][T17546]  kthread+0x3c2/0x780
[ 1191.891705][T17546]  ? __pfx_kthread+0x10/0x10
[ 1191.896276][T17546]  ? rcu_is_watching+0x12/0xc0
[ 1191.901022][T17546]  ? __pfx_kthread+0x10/0x10
[ 1191.905592][T17546]  ret_from_fork+0x56a/0x730
[ 1191.910160][T17546]  ? __pfx_kthread+0x10/0x10
[ 1191.914731][T17546]  ret_from_fork_asm+0x1a/0x30
[ 1191.919495][T17546]  </TASK>
[ 1191.922682][T17546] Kernel Offset: disabled
[ 1191.926982][T17546] Rebooting in 86400 seconds..