last executing test programs:

8m42.946702628s ago: executing program 1 (id=192):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
getsockopt$inet_int(r0, 0x0, 0xe, 0x0, &(0x7f0000000040))

8m42.915483926s ago: executing program 1 (id=194):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000032500000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000850000000f000000bf91000000000000b7020000002000008500000084000000b70000000000000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
clock_getres(0xc1f7663ffa812601, 0x0)

8m42.702231012s ago: executing program 1 (id=196):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000580)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000001db685000000230000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb70200000a000000b703000000000000850000007500000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='percpu_free_percpu\x00', r0}, 0x10)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
close(r1)

8m42.599421452s ago: executing program 1 (id=198):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f0000000080)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0xb101e, 0x0)
umount2(&(0x7f0000000180)='./file0/../file0\x00', 0x4)

8m42.39168397s ago: executing program 1 (id=201):
r0 = syz_usb_connect(0x0, 0x4a, &(0x7f0000000040)=ANY=[@ANYBLOB="120100005520f010402038b1420104000001090238000100000000090400000371055900090582eb1000000001020009050276"], 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000001040)={0x24, 0x0, &(0x7f0000000f00)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0}, 0x0)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(0xffffffffffffffff, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0xffffffffffffffca, &(0x7f00000014c0)=ANY=[@ANYBLOB="ddf963efbeb08a", @ANYRESOCT, @ANYBLOB="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"])

8m41.792165643s ago: executing program 1 (id=205):
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000040), 0x8502, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'sha384\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
recvmmsg$unix(r3, &(0x7f0000003700)=[{{0x0, 0x700, 0x0, 0x0, 0x0, 0x500}}], 0x600, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x8000002000000, 0x0)
read$msr(r4, &(0x7f0000000440)=""/102400, 0x19000)
sched_setscheduler(0x0, 0x2, 0x0)
migrate_pages(0x0, 0x1, 0x0, 0x0)
setsockopt$SO_TIMESTAMP(0xffffffffffffffff, 0x1, 0x40, &(0x7f0000000000)=0xfffffff8, 0x4)
mkdirat(0xffffffffffffff9c, 0x0, 0x108)
socket$inet6(0xa, 0x80002, 0x3a)
write$sndseq(r0, &(0x7f0000001380)=[{0x6, 0x0, 0x0, 0x0, @tick, {0x4}, {}, @ext={0x0, 0x0}}, {0x0, 0x0, 0x0, 0x0, @time={0xffff, 0xa5}, {}, {0x2}, @connect={{0x2, 0x3}, {0x1}}}, {0x0, 0x0, 0x0, 0x0, @time={0x2, 0x2}, {0x0, 0x8}, {}, @control}, {0x0, 0x0, 0x1, 0x0, @time={0x1}, {}, {}, @connect={{}, {0x0, 0x5}}}], 0x70)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f00000001c0)={'wg1\x00', 0x4000})
getsockopt$PNPIPE_IFINDEX(r0, 0x113, 0x2, &(0x7f0000000080), &(0x7f0000000140)=0x4)
fsmount(r0, 0x0, 0x84)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x18, 0xd, &(0x7f0000000300)=ANY=[@ANYRESOCT=r1, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000500), 0xffffffffffffffff)

8m41.261263835s ago: executing program 32 (id=205):
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000040), 0x8502, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'sha384\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
recvmmsg$unix(r3, &(0x7f0000003700)=[{{0x0, 0x700, 0x0, 0x0, 0x0, 0x500}}], 0x600, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x8000002000000, 0x0)
read$msr(r4, &(0x7f0000000440)=""/102400, 0x19000)
sched_setscheduler(0x0, 0x2, 0x0)
migrate_pages(0x0, 0x1, 0x0, 0x0)
setsockopt$SO_TIMESTAMP(0xffffffffffffffff, 0x1, 0x40, &(0x7f0000000000)=0xfffffff8, 0x4)
mkdirat(0xffffffffffffff9c, 0x0, 0x108)
socket$inet6(0xa, 0x80002, 0x3a)
write$sndseq(r0, &(0x7f0000001380)=[{0x6, 0x0, 0x0, 0x0, @tick, {0x4}, {}, @ext={0x0, 0x0}}, {0x0, 0x0, 0x0, 0x0, @time={0xffff, 0xa5}, {}, {0x2}, @connect={{0x2, 0x3}, {0x1}}}, {0x0, 0x0, 0x0, 0x0, @time={0x2, 0x2}, {0x0, 0x8}, {}, @control}, {0x0, 0x0, 0x1, 0x0, @time={0x1}, {}, {}, @connect={{}, {0x0, 0x5}}}], 0x70)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f00000001c0)={'wg1\x00', 0x4000})
getsockopt$PNPIPE_IFINDEX(r0, 0x113, 0x2, &(0x7f0000000080), &(0x7f0000000140)=0x4)
fsmount(r0, 0x0, 0x84)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x18, 0xd, &(0x7f0000000300)=ANY=[@ANYRESOCT=r1, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000500), 0xffffffffffffffff)

2m55.110794284s ago: executing program 0 (id=1419):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$can_j1939(0x1d, 0x2, 0x7)
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
shmget(0x1, 0x3000, 0x200, &(0x7f0000ffd000/0x3000)=nil)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f00000008c0)={0x84, @rand_addr=0x64010102, 0x4e22, 0x1, 'lblcr\x00', 0x0, 0x10001, 0x6f}, 0x2c)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0), 0x2010042, &(0x7f0000000000)={[{@subsystem='hugetlb'}, {@subsystem='memory'}, {@subsystem='cpuacct'}]})
syz_genetlink_get_family_id$nfc(&(0x7f0000000040), r0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000005c0)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0x5}, {0xfff1, 0xffff}, {0x4}}}, 0x24}}, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x80)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_DSTOPTS(r5, 0x29, 0x3b, &(0x7f0000000340), 0x8)
getsockopt$inet6_opts(r5, 0x29, 0x3b, 0x0, &(0x7f00000002c0)=0xa4)
syz_genetlink_get_family_id$nfc(0x0, r4)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000740)=ANY=[@ANYRES32], 0x1c}}, 0x0)

2m54.693795862s ago: executing program 0 (id=1420):
syz_genetlink_get_family_id$ethtool(&(0x7f0000000440), 0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', 0xffffffffffffffff, 0x0, 0xd}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8d}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000540)=0x4)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r2 = openat$selinux_policy(0xffffff9c, &(0x7f0000000180), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r2, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002480)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000002280)=[@ip_retopts={{0x14, 0x0, 0x7, {[@timestamp={0x44, 0x4, 0x62, 0x0, 0x7}]}}}], 0x18}}], 0x1, 0x1)
write$selinux_load(r1, &(0x7f0000000000)=ANY=[], 0xfd44)
socket$inet6_sctp(0xa, 0x1, 0x84)
r3 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$UI_SET_LEDBIT(r3, 0x40045569, 0x7)
ioctl$UI_SET_EVBIT(r3, 0x40045564, 0x11)
ioctl$UI_DEV_SETUP(r3, 0x405c5503, &(0x7f0000000100)={{0x100}, 'syz1\x00'})
ioctl$UI_SET_LEDBIT(r3, 0x40045569, 0xf)
ioctl$UI_DEV_CREATE(r3, 0x5501)
openat$sequencer(0xffffffffffffff9c, 0x0, 0x80200, 0x0)
fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f0000000180))
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x1fffffffffe, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x9}, 0x0, &(0x7f00000002c0)={0x3fb, 0x8000, 0x400000000001, 0x9, 0x40000000000000, 0xf, 0x80000002, 0x2}, 0x0, 0x0)

2m52.777514133s ago: executing program 0 (id=1425):
open(&(0x7f0000000400)='./bus\x00', 0x42b42, 0x1c0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x1d, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x4, 0x40, 0x7fff0000}]})
r0 = fsopen(&(0x7f0000000300)='tracefs\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = open$dir(&(0x7f0000000000)='./file0\x00', 0xe34c2, 0x74)
open_tree(r1, 0x0, 0x80000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000340)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000280)='gid', &(0x7f0000000580)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00$\xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xeaEb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$\xc4\xbcF\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80Y\xc2\xeb\n\xb8_\xe8\x96YY\xe3\xc7\xe6\xf28\x19\xa6\xa7\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\xf8\xc9@h\x01\xf5\xcb\x88\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x85N\x1c\xc1\xcb\xfc\x85\xd2\n\x02\"\xf2\x81g\x90\x01n%\x7f_\xe1.f>>\xa5\xfb\"\xab\xdb\x06\x12e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9a\x84\'\xa3\xf1\xd9<\xb9k\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$ax25(0x3, 0x2, 0x7)
ioctl$BLKSECDISCARD(0xffffffffffffffff, 0x127d, 0x0)
r4 = fsopen(&(0x7f0000000000)='securityfs\x00', 0x1)
r5 = fsmount(r4, 0x0, 0x5)
fchdir(r5)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r6, &(0x7f0000000180)=""/169, 0xbb)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f000048b000/0x800000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)

2m49.59686999s ago: executing program 0 (id=1432):
syz_usb_connect$uac1(0x0, 0xb1, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000006c0)={0x14, 0x0, 0x1}, 0x14}}, 0x800)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000002c0)="2e00000011008b88040f80ee59acbc04130800480f0000005e2900421803001825800000000000000280000c0012", 0x2e}], 0x1}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
read$msr(0xffffffffffffffff, &(0x7f0000002700)=""/102392, 0x18ff8)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r2], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r2}, &(0x7f0000000800), &(0x7f0000000840)=r3}, 0x17)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x16, 0xc, 0x0, &(0x7f0000000080)='syzkaller\x00', 0xfffffffd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r4, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
waitid(0x0, 0x0, &(0x7f0000002ff9), 0x0, 0x0)
mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x0, 0x0)
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x4004050)
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0)
r5 = openat$tun(0xffffffffffffff9c, 0x0, 0x1c1341, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f00000001c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
close(r6)

2m46.964475073s ago: executing program 0 (id=1439):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
read$msr(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x402, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x2, 0x7}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000140)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000005580)=""/102392, 0x18ff8)
mount(&(0x7f0000000480)=@sg0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000080)='ubifs\x00', 0x8000, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000007, 0x38011, r0, 0x0)
r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000180), 0x80c42, 0x0)
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, 0x0)
get_robust_list(r4, &(0x7f0000000400)=&(0x7f00000003c0), &(0x7f0000000440)=0x18)
read(r3, &(0x7f0000000040)=""/148, 0xffffff96)
chdir(&(0x7f00000001c0)='./bus\x00')
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000001080)={0x0, 0x0, 0x0}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='net_prio.prioidx\x00', 0x275a, 0x0)

2m45.46455735s ago: executing program 0 (id=1444):
openat$comedi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/comedi4\x00', 0x2, 0x0)
connect$netlink(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffd000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0xc)
r4 = memfd_create(0x0, 0x4)
execveat(r4, 0x0, 0x0, 0x0, 0x1000)
r5 = socket$unix(0x1, 0x5, 0x0)
bind$unix(r5, &(0x7f0000000140)=@abs={0x1}, 0x6e)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mkdir(0x0, 0x0)
mount$overlay(0x0, 0x0, 0x0, 0x20a0000, &(0x7f00000003c0)={[{@workdir={'workdir', 0x3d, './bus/file0'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@redirect_dir_follow}]})
mount(&(0x7f0000000040)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000100)='.\x00', &(0x7f0000000000)='vxfs\x00', 0x1000080, 0x0)

2m29.816783761s ago: executing program 33 (id=1444):
openat$comedi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/comedi4\x00', 0x2, 0x0)
connect$netlink(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffd000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0xc)
r4 = memfd_create(0x0, 0x4)
execveat(r4, 0x0, 0x0, 0x0, 0x1000)
r5 = socket$unix(0x1, 0x5, 0x0)
bind$unix(r5, &(0x7f0000000140)=@abs={0x1}, 0x6e)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mkdir(0x0, 0x0)
mount$overlay(0x0, 0x0, 0x0, 0x20a0000, &(0x7f00000003c0)={[{@workdir={'workdir', 0x3d, './bus/file0'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@redirect_dir_follow}]})
mount(&(0x7f0000000040)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000100)='.\x00', &(0x7f0000000000)='vxfs\x00', 0x1000080, 0x0)

2m3.234493266s ago: executing program 5 (id=1525):
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fcffff09058b1e20"], 0x0)
syz_usb_control_io$printer(r0, 0x0, &(0x7f0000000480)={0x34, &(0x7f0000000100)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0})
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
pselect6(0x40, &(0x7f0000000100)={0x0, 0x8f5b}, &(0x7f0000000000)={0x1f}, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={0x0, 0xffffffffffffffff, 0x0, 0x80000000000000}, 0x18)
r2 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
sendmsg$AUDIT_TTY_GET(r2, &(0x7f0000000540)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x3f8, 0x300, 0x70bd2c, 0x25dfdbff, "", ["", "", "", "", "", "", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x4000000}, 0x48000)
socket$key(0xf, 0x3, 0x2)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000120000002400000008000000850000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000005c0)='sched_switch\x00', r3, 0x0, 0xfffffffffffffffc}, 0x18)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000b00)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
syz_genetlink_get_family_id$nbd(0x0, 0xffffffffffffffff)
socket(0x10, 0x3, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="0000000004000000040000000200000000000000a4de30974f578c1d2b2195ffb174eb83c34cbf1de2d80690c576d685757a1a478d06de825da151e49421c45997d6f8c01877f77de5ba2caf5f425218b2b2fa73bc0823fcd46bf21b014f1ead26d1f323483dd0550bf94f4fdfea6b9c4a386e9da77d5b5ce53cfe5478a375d7d0", @ANYRES32=0x1, @ANYBLOB="fcffffff00"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x14, &(0x7f0000000600)=ANY=[@ANYRESHEX=r1, @ANYRESHEX=r4, @ANYBLOB="0000000000000000b7080000fcffffff7b8af8ff00000000bca2000000000000a6020000f8ffffffb703000018000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000ac0)={{r5}, &(0x7f0000000a40), &(0x7f0000000a80)=r6}, 0x20)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000780)={r2, 0x2000012, 0x18b, 0x0, &(0x7f0000000800)="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", 0x0, 0xd52a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xb}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$packet(0x11, 0x2, 0x300)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r7, 0x6, 0x13, 0x0, 0x0)
connect$inet6(r7, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r7, 0x6, 0x1f, 0x0, 0x0)
setsockopt$inet6_tcp_TLS_TX(r7, 0x11a, 0x1, 0x0, 0x0)
sendto$inet6(r7, 0x0, 0x0, 0x8000, 0x0, 0x0)

1m59.313101866s ago: executing program 5 (id=1536):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x4f, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
fsetxattr$security_capability(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1)
ioctl$KVM_SET_PIT2(0xffffffffffffffff, 0x4070aea0, 0x0)
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r3 = dup2(r2, r2)
socket$inet6(0xa, 0x2, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x101302, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000100)={0x4, <r6=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f00000001c0)=@attr_other={0x0, 0x1, 0x2, &(0x7f0000000180)=0x6})
write$vhost_msg_v2(r3, &(0x7f0000000280)={0x2, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2}}, 0x48)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000001e000100000000000200000002100000"], 0x24}, 0x1, 0x0, 0x0, 0x2}, 0x2810)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)
io_setup(0x20000000001005, &(0x7f0000000880)=<r8=>0x0)
io_submit(r8, 0x0, &(0x7f0000000580))
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)

1m55.826436243s ago: executing program 5 (id=1542):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000380), 0x10, &(0x7f0000000080)=ANY=[@ANYBLOB='huge=always'])
chdir(&(0x7f0000000140)='./file0\x00')
connect$unix(0xffffffffffffffff, &(0x7f0000000300)=@abs, 0x6e)
getsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2c, 0x0, &(0x7f00000001c0))
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x64000091)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, 0x0)
connect$llc(r0, &(0x7f0000000180)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @remote}, 0x10)
sendmmsg(r0, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x3, &(0x7f00000000c0)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000f80)=ANY=[@ANYBLOB="f00000001e0001000000000800000000ac1e0001000000000000000000000000ac1e00010000000000000000000000000002008000000000000020003300", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ff0100000000000000000000000000010000000033000000a81414aa0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffffff3f000000000000000000000000000000000000ffffffffffffffff00000080560000000000000000000000ff0000000000000000000000000000001000000009000000020000"], 0xf0}}, 0x0)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000880), 0x88000, 0x0)
preadv(r3, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0xffff0000, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a58000000060a0b040000000000000000020000002c0004802800018011000100666c6f775f6f66666c6f616400000000100002800900010073797a30000000000900010073797a30000000000900020073"], 0x250}, 0x1, 0x0, 0x0, 0x204000c}, 0x4004800)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)

1m52.457827003s ago: executing program 5 (id=1549):
r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000240)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1e7d, 0x3138, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x40, 0x3, [{{0x9, 0x4, 0x0, 0x8, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x4, 0x0, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x3ff, 0x2}}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000004c00)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0xb, 0xc, &(0x7f0000000180)=ANY=[@ANYRESDEC, @ANYRES32, @ANYBLOB="0000000000000000b7080000001e00007b8af8ff00000000"], 0x0, 0xe, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'bridge0\x00'})
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x44}, 0x1, 0x0, 0x0, 0x40800}, 0x0)
chdir(&(0x7f00000001c0)='./bus\x00')
syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x8000, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000fd7000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_NESTED_STATE(r5, 0x4080aebf, &(0x7f0000003680)={{0x0, 0x0, 0x80, {0x4000, 0x6000}}, "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", "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"})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f0000000180)="660f388084000072baf80c66b860b4498c66efbafc0c66b80e00000066ef64f30fc7b000100f850100f30fc7b1030066b9800000c00f326635000400000f30d2bc0a000f23c80f21f86635040040000f23f8b8f4008ee0", 0x57}], 0x1, 0x48, 0x0, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x4000890}, 0x4000)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x8)

1m47.985835639s ago: executing program 5 (id=1556):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x21401, 0x0)
r2 = socket(0x1d, 0x2, 0x6)
openat$dsp(0xffffffffffffff9c, 0x0, 0x42, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0xfffffffc}, 0x0)
ioctl$VIDIOC_S_SELECTION(0xffffffffffffffff, 0xc040565f, &(0x7f0000000040)={0x9, 0x100, 0x0, {0xffffffff, 0xbde, 0xb, 0x10000}})
r3 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x389b0d52417bb201)
pwritev2(r3, &(0x7f0000000240), 0x0, 0x7000, 0x0, 0x3)
r4 = socket$qrtr(0x2a, 0x2, 0x0)
r5 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000080), 0x2)
write$binfmt_aout(r5, &(0x7f0000000200)=ANY=[@ANYBLOB="03040000b50000000100fefffeefffff"], 0xc8)
sendmsg$sock(r4, &(0x7f0000001540)={&(0x7f0000000140)=@pppoe={0x2a, 0x0, {0x0, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3c}, 'lo\x00'}}, 0x80, 0x0}, 0x0)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r6, 0xffffffffffffffff, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
io_uring_setup(0x598, &(0x7f0000000300)={0x0, 0x77ae, 0x2, 0x8200002, 0x131})
r7 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r7, 0xc100565c, &(0x7f00000013c0)={0x200, 0x2, 0x2, {0x5, @vbi={0xb5, 0x0, 0x3, 0x20363159, [0x0, 0x8000000], [0x8200, 0x1]}}, 0x4})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x20004000)
ioctl$VIDIOC_QBUF(r7, 0xc058565d, &(0x7f0000000200)=@fd={0x0, 0x5, 0x4, 0x10, 0x0, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "230700dd"}, 0x0, 0x2, {}, 0x58603})

1m46.950701708s ago: executing program 5 (id=1557):
syz_open_dev$sndctrl(&(0x7f0000000280), 0x20000, 0x800)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = epoll_create(0x40209)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000040)={0xf6c447fee59241f0})
close(r1)
syz_open_dev$vim2m(&(0x7f00000000c0), 0x10077ff, 0x2)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x6, 0x50, 0xffffffffffffffff, 0x0)
socket(0x21, 0x3, 0x3a)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
socket(0x25, 0x3, 0x2)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x1}, 0x2)
r4 = syz_open_dev$dri(&(0x7f0000000340), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r4, 0x4010640d, &(0x7f0000000040)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r4, 0xc01064b5, &(0x7f0000000140)={&(0x7f00000003c0)=[<r5=>0x0], 0x400000000000005e})
r6 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r6, 0xc02064b9, &(0x7f0000000dc0)={&(0x7f0000000280)=[0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x3, r5})
ioctl$DRM_IOCTL_MODE_OBJ_SETPROPERTY(r4, 0xc01864ba, 0x0)
madvise(&(0x7f000072a000/0x4000)=nil, 0x4000, 0x4)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
ioctl$DRM_IOCTL_MODE_GETPLANE(r4, 0xc02064b6, &(0x7f00000001c0)={r5, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)})
ioctl$DRM_IOCTL_MODE_GETGAMMA(r6, 0xc02064a4, 0x0)
r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x10)
recvfrom(0xffffffffffffffff, 0x0, 0x0, 0x40000060, 0x0, 0x0)
write$cgroup_int(r7, &(0x7f0000000000)=0x2b00, 0x12)

1m31.601351108s ago: executing program 34 (id=1557):
syz_open_dev$sndctrl(&(0x7f0000000280), 0x20000, 0x800)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = epoll_create(0x40209)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000040)={0xf6c447fee59241f0})
close(r1)
syz_open_dev$vim2m(&(0x7f00000000c0), 0x10077ff, 0x2)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x6, 0x50, 0xffffffffffffffff, 0x0)
socket(0x21, 0x3, 0x3a)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
socket(0x25, 0x3, 0x2)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x1}, 0x2)
r4 = syz_open_dev$dri(&(0x7f0000000340), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r4, 0x4010640d, &(0x7f0000000040)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r4, 0xc01064b5, &(0x7f0000000140)={&(0x7f00000003c0)=[<r5=>0x0], 0x400000000000005e})
r6 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r6, 0xc02064b9, &(0x7f0000000dc0)={&(0x7f0000000280)=[0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x3, r5})
ioctl$DRM_IOCTL_MODE_OBJ_SETPROPERTY(r4, 0xc01864ba, 0x0)
madvise(&(0x7f000072a000/0x4000)=nil, 0x4000, 0x4)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
ioctl$DRM_IOCTL_MODE_GETPLANE(r4, 0xc02064b6, &(0x7f00000001c0)={r5, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)})
ioctl$DRM_IOCTL_MODE_GETGAMMA(r6, 0xc02064a4, 0x0)
r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x10)
recvfrom(0xffffffffffffffff, 0x0, 0x0, 0x40000060, 0x0, 0x0)
write$cgroup_int(r7, &(0x7f0000000000)=0x2b00, 0x12)

15.378150451s ago: executing program 2 (id=1749):
syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0), 0xffffffffffffffff)
ioctl$SIOCSIFMTU(0xffffffffffffffff, 0x541b, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0x7)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='clear_refs\x00')
writev(r3, &(0x7f0000000400)=[{&(0x7f0000000280)='3', 0x1}, {0x0}], 0x2)
ioctl$BLKROGET(r3, 0x125e, &(0x7f0000000040))
munmap(&(0x7f0000fff000/0x1000)=nil, 0x1000)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f00000000c0), 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x3, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
sendmsg$NLBL_MGMT_C_ADD(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000100)={'batadv0\x00', <r5=>0x0})
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000440)={0x1c, r6, 0x303, 0x70bd28, 0xfffff000, {0xa}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}]}, 0x1c}}, 0x0)

12.418025432s ago: executing program 7 (id=1753):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x80042, 0x50)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x180)
socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000040)="000e020032000b07d25a806f8c6394f90424fc602f0000000a740200053582c1371d3e370248018000f01700", 0x2c}], 0x1}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
r4 = syz_io_uring_setup(0x117, 0x0, &(0x7f0000000240)=<r5=>0x0, &(0x7f0000000380)=<r6=>0x0)
capset(&(0x7f0000000440)={0x20080522}, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, 0x0, 0x0, 0x4)
syz_io_uring_submit(r5, r6, 0x0)
io_uring_enter(r4, 0x47f6, 0x80ffff, 0x0, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fsetxattr$security_evm(r0, &(0x7f00000000c0), &(0x7f0000000240)=ANY=[@ANYBLOB="03"], 0x9, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
open(&(0x7f0000000000)='./file0/file1\x00', 0x101002, 0x4)

12.386421582s ago: executing program 2 (id=1754):
syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
r0 = socket$tipc(0x1e, 0x5, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x50, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=@bloom_filter={0x1e, 0x7, 0xffffa391, 0x2, 0x84, 0x1, 0xfae, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x9, 0x1, 0x2}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x4, 0x8, &(0x7f0000000400)=ANY=[@ANYBLOB, @ANYRES32=r3, @ANYBLOB="0000000000000000b7020000010000008500000086000000850000005000"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mremap(&(0x7f000054e000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f000022c000/0x3000)=nil)
openat$sequencer2(0xffffff9c, &(0x7f0000000080), 0x143240, 0x0)
r4 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000040)=0x5)
bind$tipc(r0, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000480)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x44, 0x44, 0x2, [@func_proto={0x0, 0x1, 0x0, 0xd, 0x0, [{0x4, 0x5}]}, @type_tag={0x7, 0x0, 0x0, 0x12, 0x5}, @func_proto, @func_proto, @fwd={0x8}]}}, 0x0, 0x5e, 0x0, 0x1, 0x7}, 0x28)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x2c}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001440)={r5, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r7, 0x4018620d, 0x0)
r8 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r8, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r9 = dup3(r8, r7, 0x0)
r10 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r10, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r10, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
ioctl$BINDER_WRITE_READ(r9, 0xc0306201, &(0x7f0000010000)={0x4c, 0x0, &(0x7f0000010140)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x60, 0x18, &(0x7f0000010080)={@ptr={0x70742a85, 0x1, &(0x7f0000010040)=""/22, 0x16, 0x1, 0x40}, @fda={0x66646185, 0x9, 0x0, 0x2e}, @flat=@weak_handle={0x77682a85, 0x0, 0x1}}, &(0x7f0000010100)={0x0, 0x28, 0x48}}}], 0x0, 0x0, 0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x6, 0x3, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}}, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', r6}, 0x94)

10.025202984s ago: executing program 4 (id=1759):
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000340)={0x569, 0x1000, 0x49c35, 0x2, 0x6d})
connect$llc(r0, &(0x7f0000000180)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @remote}, 0x10)
sendmmsg(r0, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000f80)=ANY=[], 0xf0}}, 0x0)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000880), 0x88000, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0xffff0000, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a58000000060a0b040000000000000000020000002c0004802800018011000100666c6f775f6f66666c6f616400000000100002800900010073797a30000000000900010073797a30000000000900020073"], 0x250}, 0x1, 0x0, 0x0, 0x204000c}, 0x4004800)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
socket(0x2, 0x80805, 0x0)
openat$sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)

8.995756533s ago: executing program 7 (id=1760):
syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0), 0xffffffffffffffff)
ioctl$SIOCSIFMTU(0xffffffffffffffff, 0x541b, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0x7)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='clear_refs\x00')
writev(r3, &(0x7f0000000400)=[{&(0x7f0000000280)='3', 0x1}, {0x0}], 0x2)
ioctl$BLKROGET(r3, 0x125e, &(0x7f0000000040))
munmap(&(0x7f0000fff000/0x1000)=nil, 0x1000)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f00000000c0), 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x3, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
sendmsg$NLBL_MGMT_C_ADD(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000440)={0x1c, r5, 0x303, 0x70bd28, 0xfffff000, {0xa}, [@BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x1c}}, 0x0)

8.942314409s ago: executing program 6 (id=1761):
syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0), 0xffffffffffffffff)
ioctl$SIOCSIFMTU(0xffffffffffffffff, 0x541b, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0x7)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='clear_refs\x00')
writev(r3, &(0x7f0000000400)=[{&(0x7f0000000280)='3', 0x1}, {0x0}], 0x2)
ioctl$BLKROGET(r3, 0x125e, &(0x7f0000000040))
munmap(&(0x7f0000fff000/0x1000)=nil, 0x1000)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f00000000c0), 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x3, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000100)={'batadv0\x00', <r5=>0x0})
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000440)={0x1c, r6, 0x303, 0x70bd28, 0xfffff000, {0xa}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}]}, 0x1c}}, 0x0)

8.784681413s ago: executing program 2 (id=1762):
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000340)={0x569, 0x1000, 0x49c35, 0x2, 0x6d})
connect$llc(r0, &(0x7f0000000180)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @remote}, 0x10)
sendmmsg(r0, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000f80)=ANY=[], 0xf0}}, 0x0)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000880), 0x88000, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0xffff0000, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a58000000060a0b040000000000000000020000002c0004802800018011000100666c6f775f6f66666c6f616400000000100002800900010073797a30000000000900010073797a30000000000900020073"], 0x250}, 0x1, 0x0, 0x0, 0x204000c}, 0x4004800)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
socket(0x2, 0x80805, 0x0)
openat$sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)

8.780623184s ago: executing program 3 (id=1763):
syz_open_dev$hidraw(0x0, 0x1, 0x14a042)
openat(0xffffffffffffff9c, &(0x7f0000000640)='.\x00', 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
socket$netlink(0x10, 0x3, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x50, 0xffffffffffffffff, 0x0)
r0 = socket(0xa, 0x3, 0x3a)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, r0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
personality(0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x4, &(0x7f00000001c0), 0x13f, 0x1}}, 0x20)
r3 = socket(0x10, 0x80002, 0x0)
bind$netlink(r3, &(0x7f0000000840)={0x10, 0x0, 0x25dfdbfe, 0x8}, 0xc)
r4 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socket$unix(0x1, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0x0, 0x1}, {0xffff, 0xffff}, {0xffff, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}, 0x1, 0x0, 0x0, 0xc040}, 0x4000)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000002340)=@newtfilter={0x8b0, 0x2c, 0xd27, 0x70bd2d, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x0, 0x2}, {}, {0x10, 0x8}}, [@filter_kind_options=@f_flower={{0xb}, {0xc, 0x2, [@TCA_FLOWER_KEY_ICMPV4_CODE_MASK={0x5}]}}, @TCA_CHAIN={0x8, 0xb, 0x7}, @TCA_RATE={0x6, 0x5, {0x4, 0x6}}, @TCA_CHAIN={0x8, 0xb, 0x7}, @TCA_CHAIN={0x8, 0xb, 0x779f0574}, @TCA_RATE={0x6, 0x5, {0x4, 0x7}}, @TCA_RATE={0x6, 0x5, {0x1, 0xa8}}, @TCA_RATE={0x6, 0x5, {0xab, 0xb}}, @filter_kind_options=@f_u32={{0x8}, {0x82c, 0x2, [@TCA_U32_POLICE={0x80c, 0x6, [@TCA_POLICE_RATE={0x404, 0x2, [0x2, 0x368, 0x6, 0x5, 0x5f, 0x80081, 0xe6, 0x5, 0x10, 0x4, 0x4, 0x4, 0x84, 0x9, 0x7, 0x17ee, 0x8001, 0x2, 0x6, 0x1, 0x0, 0xb, 0x1, 0xffffffff, 0x35ab, 0x4, 0xddc, 0x1, 0xa, 0x0, 0x2, 0x1, 0xffffffff, 0x3, 0x72820263, 0x9, 0x7, 0x0, 0x5, 0x7, 0x0, 0xfffffff9, 0x4, 0x7, 0x6, 0xc, 0xfff, 0x5, 0x5a9, 0x7fff, 0x49d2, 0xa, 0x100, 0x1b, 0x0, 0x3, 0x9, 0x28000000, 0x0, 0x8, 0x6, 0xf, 0x2735, 0x7ff, 0x0, 0x80, 0x101, 0x7f, 0x8, 0x1, 0x8, 0x9d, 0x391, 0x7, 0x6, 0x7, 0x6, 0xc4, 0xb, 0xec0, 0x40, 0x8, 0x8001, 0x2, 0x40, 0x7, 0x8, 0x7566, 0xb, 0x1, 0x4, 0x6, 0x10, 0x9, 0xc054, 0x6, 0xfffffff9, 0x4, 0x4, 0x8, 0x4, 0xea, 0x3, 0x3, 0x0, 0x9843, 0xb9a, 0x40, 0x2, 0x3, 0x0, 0x4, 0x2, 0xa94, 0x7, 0x0, 0x6, 0x0, 0x8000c, 0x1, 0x3, 0x0, 0xfffffff8, 0xd7, 0x80000001, 0x40, 0xfff, 0x4, 0x9, 0x9, 0xaa, 0x7fffffff, 0x9, 0x0, 0x80, 0x3ff, 0x6, 0x3, 0x800, 0xc9, 0x1, 0x2, 0xe, 0x1, 0x8001, 0x7ff, 0x40, 0x4, 0x100, 0x8, 0x1, 0x1, 0xae0c, 0x1df, 0x6, 0x7, 0x1, 0x6, 0x0, 0x200, 0x7, 0x200, 0x9, 0xffff, 0x2f, 0x0, 0xffffffff, 0x7ff, 0x6, 0xb029, 0x8, 0x2, 0x2, 0x80, 0x100000, 0x2, 0x6, 0x20000, 0x10001, 0x5, 0x4, 0x400, 0x58a0, 0x1ff, 0xff, 0x8, 0x8, 0x7f, 0x8, 0x1, 0x6, 0x4, 0x9, 0x0, 0x3, 0x81, 0xff, 0x6, 0x6, 0x5, 0xfffffff8, 0x1, 0x10000, 0xd, 0x2, 0x0, 0x8, 0x5c8d, 0x5, 0x1385, 0x800, 0x9, 0x8, 0x80, 0x836, 0x8c66, 0x8, 0x1, 0x8, 0x3, 0xe8c, 0x47c4, 0x9f, 0x4, 0x2, 0x8, 0x7, 0xa6f, 0x9, 0x1, 0x2000000c, 0x5, 0x7, 0x40, 0x5, 0x4a5e, 0xd32c, 0x1000, 0x4c, 0xfffffffc, 0x1, 0x442, 0x1000, 0x1, 0x7, 0x8, 0x8, 0x9, 0x8000, 0x51c, 0x7, 0x3, 0x5, 0x3, 0x5]}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0xff, 0x101, 0x1, 0x9, 0x800, 0x8, 0x80000001, 0x9, 0x0, 0x0, 0x2, 0xfffffffe, 0x6, 0x4, 0x7ea, 0x8, 0x80, 0x72, 0x3, 0x9, 0xc9, 0xa66, 0x7177, 0x0, 0x7, 0x4, 0x1, 0x5215, 0x9, 0x40, 0x1, 0x0, 0x0, 0xf11, 0x2e77, 0x9, 0x800, 0x0, 0x2, 0x9, 0x9, 0xd9, 0x4, 0x100, 0x3, 0x5, 0xab1, 0x1, 0x0, 0x5, 0xfffffffe, 0x0, 0x1, 0x4, 0x1, 0x7473, 0x7, 0x6, 0x3, 0x101, 0x3, 0x3, 0x7, 0x7ff, 0x6, 0x7, 0x2, 0x9, 0x0, 0x8, 0x81, 0x5, 0x4, 0x9, 0xf4c7, 0x6, 0xd7, 0x100, 0xa00000, 0xe, 0x6, 0x1c2, 0x0, 0x10, 0xd, 0x8000, 0x1, 0x0, 0x3, 0x2, 0x5, 0x2, 0x9, 0x1c, 0x8, 0x9, 0x401, 0x5b4, 0x6, 0x3, 0x5, 0x10000, 0x4, 0x6, 0x9, 0x80, 0x5, 0x0, 0x0, 0xffffffff, 0x5, 0x2, 0x5f707ca1, 0x1, 0x3ad1, 0x7fff, 0x5, 0x10001000, 0x86e, 0x5, 0x93, 0x0, 0x7, 0x5, 0xfffffffe, 0xa451, 0x4, 0x0, 0x3, 0x2, 0x1, 0x7, 0x5, 0x81, 0x1, 0xa00, 0x173a, 0x931, 0x2, 0x4, 0xffffff20, 0x0, 0xd912, 0x4, 0x5, 0x3, 0x1d9c, 0xa, 0xfffffff8, 0x1000, 0x1, 0x7f, 0x7, 0x1, 0x0, 0x88, 0x7, 0x7fffffff, 0x6ce3, 0x4, 0xfffffffa, 0x1, 0xe9, 0x7, 0x5, 0x1, 0x4, 0x8001, 0x53ff, 0x8, 0x7ff, 0x9, 0x1, 0xe8b, 0x3, 0x21, 0x3, 0x1, 0x7, 0xbf5d, 0xa, 0x6, 0x800, 0x4543de6c, 0x5, 0x6, 0x7fff, 0xffffff25, 0x9, 0x3, 0x9, 0x7, 0x5, 0xc90e, 0xb65, 0x3, 0x1000, 0x40, 0x7f, 0x3ff, 0x0, 0x7fffffff, 0x2, 0x9, 0xffff525f, 0x3, 0xfff, 0x8, 0x59, 0x59d6, 0xf4da, 0x8, 0x3, 0x6, 0x4a0, 0x6, 0xffff8000, 0x5, 0x2, 0x800, 0x9, 0x0, 0x81, 0x6d5e, 0x3, 0xa876, 0x8a9e, 0x0, 0x7, 0xe, 0x9, 0x8000, 0x401, 0x7, 0xfffffff7, 0xb, 0x8, 0x3, 0x0, 0x9, 0x2, 0x6, 0x7, 0x80000000, 0x6, 0x4, 0x67eb, 0x4, 0x1, 0xfffffffb, 0x3, 0xd56, 0x7e, 0x3, 0x5, 0x5]}]}, @TCA_U32_INDEV={0x14, 0x8, 'geneve1\x00'}, @TCA_U32_CLASSID={0x8, 0x1, {0xfff3, 0xfff1}}]}}, @TCA_CHAIN={0x8, 0xb, 0x7f}]}, 0x8b0}, 0x1, 0x0, 0x0, 0x24000014}, 0x20084084)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1f00"/12, @ANYRES32=0x1, @ANYRES32=0x0, @ANYRES32, @ANYBLOB, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00'], 0x50)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/partitions\x00', 0x0, 0x0)
r6 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/compact_memory\x00', 0x1, 0x0)
sendfile(r6, r5, &(0x7f00000000c0)=0x58, 0xa)

7.513733985s ago: executing program 4 (id=1764):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x50, 0xffffffffffffffff, 0x0)
socket(0xa, 0x3, 0x3a)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, 0x0, 0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty, 0x2}, 0x1c)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r3, &(0x7f0000000100)=@pppol2tpv3={0x18, 0x1, {0x0, r2, {0x2, 0x0, @multicast2}, 0x4, 0x0, 0x3}}, 0x2e)
syz_emit_ethernet(0x46, &(0x7f0000000140)={@random="99177fa54f29", @random="ece65fbcee55", @void, {@ipv6={0x86dd, @udp={0x0, 0x6, '\x00', 0x10, 0x11, 0xff, @remote, @local, {[], {0x0, 0xe22, 0x10, 0x0, @gue={{0x2, 0x0, 0x0, 0x3}}}}}}}}, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x4, &(0x7f00000001c0), 0x13f, 0x1}}, 0x20)
r4 = add_key$user(&(0x7f0000000040), &(0x7f0000000180)={'syz', 0x1}, &(0x7f0000000080)='\x00', 0x1, 0xfffffffffffffffb)
pipe2$watch_queue(&(0x7f0000000140)={0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x80)
ioctl$IOC_WATCH_QUEUE_SET_SIZE(r5, 0x5760, 0x14)
keyctl$KEYCTL_WATCH_KEY(0x20, r4, r5, 0x100000000000f7)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000080)=0xf)
ioctl$TCFLSH(r6, 0x400455c8, 0x4)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x8004)
rseq(&(0x7f0000000240)={0x0, 0x0, 0x0, 0x4}, 0x20, 0x0, 0x0)
io_destroy(0x0)
syslog(0x2, &(0x7f00000004c0)=""/164, 0xa4)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}]}, @NFT_MSG_NEWSETELEM={0x3c, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}]}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0xa0}, 0x1, 0x0, 0x0, 0x4000850}, 0x4040)

6.952059952s ago: executing program 3 (id=1765):
socket(0x2, 0x80805, 0x0)
setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, &(0x7f0000000040)={0x0, 0x8}, 0x8)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000080"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r3)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="b4050000fdff7f006110580000000000c60000000000000095000000000000009f33ef60916e6e713f1eeb0b725ad99b817fd98cd8073a46b08b94214d816f770600dcca55f21f3ca9e822d182054d54d53cd2b6db714e4beb4147000001000000008f2b9000f22425e4097ed62cbc891061017cfa6f6148a1c1e43f00001bde60beac671e8e8fdecb03588aa623fa71f31bf0f871ab5c2ff88afc60027f4e5b5271ed58e835cf0d0000000098b51fe68db8d9dbe87dcff414ed000000000000000000000000000000000000000000000000000000b347abe6352a080f8140e5fd10747b6ecdb3542646bf636e3d6e700e5b0500000000000000eb9e1403e6c8f7a187eaf60f3a17f0f046a307a403c19d9829c90bd2114252581567acae715cbe1b57d5cda432c5b910400623d24195405f2e76ccb7b37b41215c184e731fb1"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000002c0)=ANY=[@ANYRES32=r6, @ANYRES32=r5, @ANYBLOB='&'], 0x10)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r6}, &(0x7f0000000000), &(0x7f0000000080)=r3}, 0x20)
sendmsg$inet(r4, &(0x7f0000000500)={0x0, 0x4003e80, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x20000281}], 0x1}, 0x0)
r7 = socket$inet_sctp(0x2, 0x5, 0x84)
recvmmsg(r7, &(0x7f0000007480)=[{{&(0x7f0000000080)=@nfc_llcp, 0x80, &(0x7f00000012c0)=[{&(0x7f0000000100)=""/107, 0x6b}, {&(0x7f0000000180)=""/4096, 0x1000}, {&(0x7f0000001180)=""/86, 0x56}, {&(0x7f0000001200)=""/60, 0x3c}, {&(0x7f0000001240)=""/70, 0x46}], 0x5}, 0x7}, {{&(0x7f00000013c0)=@generic, 0x80, &(0x7f0000001540)=[{0x0}], 0x1, &(0x7f0000001580)=""/50, 0x32}, 0x3ff}, {{0x0, 0x0, &(0x7f0000004700)=[{&(0x7f00000015c0)=""/4096, 0x1000}, {&(0x7f00000025c0)=""/45, 0x2d}, {&(0x7f0000002600)=""/45, 0x2d}, {&(0x7f0000002640)=""/21, 0x15}, {&(0x7f0000002680)=""/4096, 0x1000}, {0x0}, {0x0}, {&(0x7f00000046c0)=""/32, 0x20}], 0x8, &(0x7f0000004780)=""/191, 0xbf}, 0xfff}, {{0x0, 0x0, &(0x7f0000004a80)=[{&(0x7f00000048c0)=""/239, 0xef}], 0x1, &(0x7f0000004ac0)=""/192, 0xc0}, 0xfffffffe}, {{0x0, 0x0, &(0x7f0000006e80)}, 0x7fff}, {{&(0x7f0000006f40)=@ax25={{0x3, @rose}, [@default, @null, @bcast, @null, @null, @default, @remote, @netrom]}, 0x80, &(0x7f00000073c0)=[{0x0}, {&(0x7f0000007080)=""/99, 0x63}, {0x0}, {&(0x7f0000007180)=""/206, 0xce}, {&(0x7f0000007280)=""/59, 0x3b}, {&(0x7f00000072c0)=""/247, 0xf7}], 0x6, &(0x7f0000007440)=""/53, 0x35}, 0x3}], 0x6, 0x40000040, 0x0)

6.9108139s ago: executing program 7 (id=1766):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x80042, 0x50)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x180)
socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000040)="000e020032000b07d25a806f8c6394f90424fc602f0000000a740200053582c1371d3e370248018000f01700", 0x2c}], 0x1}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
r4 = syz_io_uring_setup(0x117, 0x0, &(0x7f0000000240)=<r5=>0x0, &(0x7f0000000380)=<r6=>0x0)
fcntl$getownex(r4, 0x10, &(0x7f0000000340)={0x0, <r7=>0x0})
capset(&(0x7f0000000440)={0x20080522, r7}, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, 0x0, 0x0, 0x4)
syz_io_uring_submit(r5, r6, 0x0)
io_uring_enter(r4, 0x47f6, 0x80ffff, 0x0, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fsetxattr$security_evm(r0, &(0x7f00000000c0), &(0x7f0000000240)=ANY=[@ANYBLOB="03"], 0x9, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
open(&(0x7f0000000000)='./file0/file1\x00', 0x101002, 0x4)

6.64324751s ago: executing program 6 (id=1767):
syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0), 0xffffffffffffffff)
ioctl$SIOCSIFMTU(0xffffffffffffffff, 0x541b, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0x7)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='clear_refs\x00')
writev(r3, &(0x7f0000000400)=[{&(0x7f0000000280)='3', 0x1}, {0x0}], 0x2)
ioctl$BLKROGET(r3, 0x125e, &(0x7f0000000040))
munmap(&(0x7f0000fff000/0x1000)=nil, 0x1000)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f00000000c0), 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x3, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NLBL_MGMT_C_ADD(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000100)={'batadv0\x00', <r5=>0x0})
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000440)={0x1c, r6, 0x303, 0x70bd28, 0xfffff000, {0xa}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}]}, 0x1c}}, 0x0)

6.597370549s ago: executing program 2 (id=1768):
syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0), 0xffffffffffffffff)
ioctl$SIOCSIFMTU(0xffffffffffffffff, 0x541b, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0x7)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='clear_refs\x00')
writev(r3, &(0x7f0000000400)=[{&(0x7f0000000280)='3', 0x1}, {0x0}], 0x2)
ioctl$BLKROGET(r3, 0x125e, &(0x7f0000000040))
munmap(&(0x7f0000fff000/0x1000)=nil, 0x1000)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f00000000c0), 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x3, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
sendmsg$NLBL_MGMT_C_ADD(0xffffffffffffffff, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'batadv0\x00', <r4=>0x0})
r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000440)={0x1c, r5, 0x303, 0x70bd28, 0xfffff000, {0xa}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r4}]}, 0x1c}}, 0x0)

5.957952315s ago: executing program 7 (id=1769):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x6, 0x3, &(0x7f00000006c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2000}}, &(0x7f00000001c0)='GPL\x00', 0x1, 0x0, 0x0, 0x41100}, 0x94)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newlink={0x34, 0x10, 0x801, 0x0, 0x25dfdbfd, {}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8, 0x1, r2}]}, @IFLA_GROUP={0x8}]}, 0x34}}, 0x0)
close(0x4)
syz_open_dev$vcsn(&(0x7f00000000c0), 0x6c90, 0x40000)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = socket$inet6(0xa, 0x3, 0x6)
connect$inet6(r6, &(0x7f0000000080)={0xa, 0x4e20, 0x74df82a6, @private1={0xfc, 0x1, '\x00', 0xa}, 0xae3e}, 0x1c)
sendmmsg$inet6(r6, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, &(0x7f0000000040)={0x0, 0x714000, 0x1000, 0x0, 0x3}, 0x20)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
r7 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_DEVICE_ATTR(r7, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000100)=0x4})
bpf$MAP_CREATE(0x11c, &(0x7f0000000000)=ANY=[@ANYBLOB="050000000a0000004200000040"], 0x50)

5.34561167s ago: executing program 3 (id=1770):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, 0x0, 0x0)
r2 = getpgid(0xffffffffffffffff)
sched_setattr(r2, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x2, 0xb, 0xfffffffffffffffe, 0xfffffffc}, 0x0)
r3 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x2, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000900000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70300098c000010850000001b000000b7000000000000009500000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00')
pread64(r4, &(0x7f0000000080)=""/102356, 0x18fd4, 0x200)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, 0xffffffffffffffff, &(0x7f0000019080)={0xc0000000})

4.963758696s ago: executing program 4 (id=1771):
syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0), 0xffffffffffffffff)
ioctl$SIOCSIFMTU(0xffffffffffffffff, 0x541b, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0x7)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='clear_refs\x00')
writev(r3, &(0x7f0000000400)=[{&(0x7f0000000280)='3', 0x1}, {0x0}], 0x2)
ioctl$BLKROGET(r3, 0x125e, &(0x7f0000000040))
munmap(&(0x7f0000fff000/0x1000)=nil, 0x1000)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f00000000c0), 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x3, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000100)={'batadv0\x00', <r5=>0x0})
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000440)={0x1c, r6, 0x303, 0x70bd28, 0xfffff000, {0xa}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}]}, 0x1c}}, 0x0)

4.861152963s ago: executing program 6 (id=1772):
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000340)={0x569, 0x1000, 0x49c35, 0x2, 0x6d})
connect$llc(r0, &(0x7f0000000180)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @remote}, 0x10)
sendmmsg(r0, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000f80)=ANY=[], 0xf0}}, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000880), 0x88000, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a58000000060a0b040000000000000000020000002c0004802800018011000100666c6f775f6f66666c6f616400000000100002800900010073797a30000000000900010073797a30000000000900020073"], 0x250}, 0x1, 0x0, 0x0, 0x204000c}, 0x4004800)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
socket(0x2, 0x80805, 0x0)
openat$sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)

4.788909214s ago: executing program 2 (id=1773):
syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
r0 = socket$tipc(0x1e, 0x5, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x50, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=@bloom_filter={0x1e, 0x7, 0xffffa391, 0x2, 0x84, 0x1, 0xfae, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x9, 0x1, 0x2}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x4, 0x8, &(0x7f0000000400)=ANY=[@ANYBLOB, @ANYRES32=r3, @ANYBLOB="0000000000000000b7020000010000008500000086000000850000005000"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mremap(&(0x7f000054e000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f000022c000/0x3000)=nil)
openat$sequencer2(0xffffff9c, &(0x7f0000000080), 0x143240, 0x0)
r4 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000040)=0x5)
bind$tipc(r0, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000480)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x44, 0x44, 0x2, [@func_proto={0x0, 0x1, 0x0, 0xd, 0x0, [{0x4, 0x5}]}, @type_tag={0x7, 0x0, 0x0, 0x12, 0x5}, @func_proto, @func_proto, @fwd={0x8}]}}, 0x0, 0x5e, 0x0, 0x1, 0x7}, 0x28)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x2c}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001440)={r5, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r6, 0x4018620d, 0x0)
r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r8 = dup3(r7, r6, 0x0)
r9 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r9, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r9, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
ioctl$BINDER_WRITE_READ(r8, 0xc0306201, &(0x7f0000010000)={0x54, 0x0, &(0x7f0000010140)=[@acquire, @transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x60, 0x18, &(0x7f0000010080)={@ptr={0x70742a85, 0x1, &(0x7f0000010040)=""/22, 0x16, 0x1, 0x40}, @fda={0x66646185, 0x9, 0x0, 0x2e}, @flat=@weak_handle={0x77682a85, 0x0, 0x1}}, &(0x7f0000010100)={0x0, 0x28, 0x48}}}], 0x0, 0x0, 0x0})
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)

3.563899637s ago: executing program 3 (id=1774):
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = fsopen(0x0, 0x1)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000240)='uid', &(0x7f00000008c0)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00$\xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$\xc4\xbcF\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80=\x8a\xeb\n\xb8_\xe8\x96YY\xe3\xc7\xe6\xf28\x19\xa6\xa7\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\x1f\x03\x00\x00\x00\x00\x00\x00\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x85N\x1c\xc1\xcb\xfc\x85\xd2\n\x02\"\xf2\x81g\x90\x01n%\x7f_\xe1.f>>\xa5\xfb\"\xab\xdb\x06\x12e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9ak\x00\x00\x00\x00\x00\x00\x00\n\xa72\xa3\xef^\xe7\x8f', 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r1 = getpid()
setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x14, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f00000003c0)='./file0\x00', 0x21)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x4400, 0x0)
mkdir(&(0x7f0000000200)='./bus\x00', 0x10)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chroot(&(0x7f0000000000)='./bus\x00')
syz_open_dev$tty1(0xc, 0x4, 0x1)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSKBENT(r4, 0x4b47, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)

3.412457654s ago: executing program 6 (id=1775):
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000340)={0x569, 0x1000, 0x49c35, 0x2, 0x6d})
connect$llc(r0, &(0x7f0000000180)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @remote}, 0x10)
sendmmsg(r0, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000f80)=ANY=[], 0xf0}}, 0x0)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000880), 0x88000, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0xffff0000, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a58000000060a0b040000000000000000020000002c0004802800018011000100666c6f775f6f66666c6f616400000000100002800900010073797a30000000000900010073797a30000000000900020073"], 0x250}, 0x1, 0x0, 0x0, 0x204000c}, 0x4004800)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
socket(0x2, 0x80805, 0x0)
openat$sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)

2.852094509s ago: executing program 7 (id=1776):
syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0), 0xffffffffffffffff)
ioctl$SIOCSIFMTU(0xffffffffffffffff, 0x541b, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0x7)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='clear_refs\x00')
writev(r3, &(0x7f0000000400)=[{&(0x7f0000000280)='3', 0x1}, {0x0}], 0x2)
ioctl$BLKROGET(r3, 0x125e, &(0x7f0000000040))
munmap(&(0x7f0000fff000/0x1000)=nil, 0x1000)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f00000000c0), 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x3, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NLBL_MGMT_C_ADD(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000100)={'batadv0\x00', <r5=>0x0})
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000440)={0x1c, r6, 0x303, 0x70bd28, 0xfffff000, {0xa}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}]}, 0x1c}}, 0x0)

2.375579988s ago: executing program 4 (id=1777):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x80042, 0x50)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x180)
socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000040)="000e020032000b07d25a806f8c6394f90424fc602f0000000a740200053582c1371d3e370248018000f01700", 0x2c}], 0x1}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_io_uring_setup(0x117, 0x0, &(0x7f0000000240)=<r5=>0x0, &(0x7f0000000380)=<r6=>0x0)
fcntl$getownex(r4, 0x10, &(0x7f0000000340)={0x0, <r7=>0x0})
capset(&(0x7f0000000440)={0x20080522, r7}, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, 0x0, 0x0, 0x4)
syz_io_uring_submit(r5, r6, 0x0)
io_uring_enter(r4, 0x47f6, 0x80ffff, 0x0, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fsetxattr$security_evm(r0, &(0x7f00000000c0), &(0x7f0000000240)=ANY=[@ANYBLOB="03"], 0x9, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
open(&(0x7f0000000000)='./file0/file1\x00', 0x101002, 0x4)

1.649474676s ago: executing program 6 (id=1778):
syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0), 0xffffffffffffffff)
ioctl$SIOCSIFMTU(0xffffffffffffffff, 0x541b, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0x7)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='clear_refs\x00')
writev(r3, &(0x7f0000000400)=[{&(0x7f0000000280)='3', 0x1}, {0x0}], 0x2)
ioctl$BLKROGET(r3, 0x125e, &(0x7f0000000040))
munmap(&(0x7f0000fff000/0x1000)=nil, 0x1000)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f00000000c0), 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x3, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NLBL_MGMT_C_ADD(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000100)={'batadv0\x00', <r5=>0x0})
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000440)={0x1c, r6, 0x303, 0x70bd28, 0xfffff000, {0xa}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}]}, 0x1c}}, 0x0)

1.578645308s ago: executing program 2 (id=1779):
syz_usb_connect$uac1(0x0, 0xb1, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000006c0)={0x14, 0x0, 0x1}, 0x14}}, 0x800)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000002c0)="2e00000011008b88040f80ee59acbc04130800480f0000005e29004218030018258000000000000002", 0x29}], 0x1}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
r2 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
read$msr(r2, &(0x7f0000002700)=""/102392, 0x18ff8)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r3], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r3}, &(0x7f0000000800), &(0x7f0000000840)=r4}, 0x17)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x16, 0xc, 0x0, &(0x7f0000000080)='syzkaller\x00', 0xfffffffd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r5, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
waitid(0x0, 0x0, &(0x7f0000002ff9), 0x0, 0x0)
mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x0, 0x0)
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x4004050)
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0)
r6 = openat$tun(0xffffffffffffff9c, 0x0, 0x1c1341, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f00000001c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
close(r7)

1.332498298s ago: executing program 4 (id=1780):
syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0), 0xffffffffffffffff)
ioctl$SIOCSIFMTU(0xffffffffffffffff, 0x541b, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0x7)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='clear_refs\x00')
writev(r3, &(0x7f0000000400)=[{&(0x7f0000000280)='3', 0x1}, {0x0}], 0x2)
ioctl$BLKROGET(r3, 0x125e, &(0x7f0000000040))
munmap(&(0x7f0000fff000/0x1000)=nil, 0x1000)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f00000000c0), 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x3, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NLBL_MGMT_C_ADD(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000100)={'batadv0\x00', <r5=>0x0})
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000440)={0x1c, r6, 0x303, 0x70bd28, 0xfffff000, {0xa}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}]}, 0x1c}}, 0x0)

1.148423428s ago: executing program 3 (id=1781):
syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0), 0xffffffffffffffff)
ioctl$SIOCSIFMTU(0xffffffffffffffff, 0x541b, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0x7)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='clear_refs\x00')
writev(r3, &(0x7f0000000400)=[{&(0x7f0000000280)='3', 0x1}, {0x0}], 0x2)
ioctl$BLKROGET(r3, 0x125e, &(0x7f0000000040))
munmap(&(0x7f0000fff000/0x1000)=nil, 0x1000)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f00000000c0), 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x3, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NLBL_MGMT_C_ADD(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000100)={'batadv0\x00', <r5=>0x0})
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000440)={0x1c, r6, 0x303, 0x70bd28, 0xfffff000, {0xa}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}]}, 0x1c}}, 0x0)

207.147534ms ago: executing program 6 (id=1782):
syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0), 0xffffffffffffffff)
ioctl$SIOCSIFMTU(0xffffffffffffffff, 0x541b, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0x7)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='clear_refs\x00')
writev(r3, &(0x7f0000000400)=[{&(0x7f0000000280)='3', 0x1}, {0x0}], 0x2)
ioctl$BLKROGET(r3, 0x125e, &(0x7f0000000040))
munmap(&(0x7f0000fff000/0x1000)=nil, 0x1000)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f00000000c0), 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x3, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
sendmsg$NLBL_MGMT_C_ADD(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000100)={'batadv0\x00', <r5=>0x0})
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000440)={0x1c, r6, 0x303, 0x70bd28, 0xfffff000, {0xa}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}]}, 0x1c}}, 0x0)

185.588335ms ago: executing program 4 (id=1783):
syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0), 0xffffffffffffffff)
ioctl$SIOCSIFMTU(0xffffffffffffffff, 0x541b, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0x7)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='clear_refs\x00')
writev(r3, &(0x7f0000000400)=[{&(0x7f0000000280)='3', 0x1}, {0x0}], 0x2)
ioctl$BLKROGET(r3, 0x125e, &(0x7f0000000040))
munmap(&(0x7f0000fff000/0x1000)=nil, 0x1000)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f00000000c0), 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x3, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NLBL_MGMT_C_ADD(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000100)={'batadv0\x00', <r5=>0x0})
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000440)={0x1c, r6, 0x303, 0x70bd28, 0xfffff000, {0xa}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}]}, 0x1c}}, 0x0)

156.05491ms ago: executing program 3 (id=1784):
socket(0x2, 0x80805, 0x0)
setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, &(0x7f0000000040)={0x0, 0x8}, 0x8)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000080"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r3)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="b4050000fdff7f006110580000000000c60000000000000095000000000000009f33ef60916e6e713f1eeb0b725ad99b817fd98cd8073a46b08b94214d816f770600dcca55f21f3ca9e822d182054d54d53cd2b6db714e4beb4147000001000000008f2b9000f22425e4097ed62cbc891061017cfa6f6148a1c1e43f00001bde60beac671e8e8fdecb03588aa623fa71f31bf0f871ab5c2ff88afc60027f4e5b5271ed58e835cf0d0000000098b51fe68db8d9dbe87dcff414ed000000000000000000000000000000000000000000000000000000b347abe6352a080f8140e5fd10747b6ecdb3542646bf636e3d6e700e5b0500000000000000eb9e1403e6c8f7a187eaf60f3a17f0f046a307a403c19d9829c90bd2114252581567acae715cbe1b57d5cda432c5b910400623d24195405f2e76ccb7b37b41215c184e731fb1"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000002c0)=ANY=[@ANYRES32=r6, @ANYRES32=r5, @ANYBLOB='&'], 0x10)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r6}, &(0x7f0000000000), &(0x7f0000000080)=r3}, 0x20)
sendmsg$inet(r4, &(0x7f0000000500)={0x0, 0x4003e80, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x20000281}], 0x1}, 0x0)
r7 = socket$inet_sctp(0x2, 0x5, 0x84)
recvmmsg(r7, &(0x7f0000007480)=[{{&(0x7f0000000080)=@nfc_llcp, 0x80, &(0x7f00000012c0)=[{&(0x7f0000000100)=""/107, 0x6b}, {&(0x7f0000000180)=""/4096, 0x1000}, {&(0x7f0000001180)=""/86, 0x56}, {&(0x7f0000001200)=""/60, 0x3c}, {&(0x7f0000001240)=""/70, 0x46}], 0x5}, 0x7}, {{&(0x7f00000013c0)=@generic, 0x80, &(0x7f0000001540)=[{0x0}], 0x1, &(0x7f0000001580)=""/50, 0x32}, 0x3ff}, {{0x0, 0x0, &(0x7f0000004700)=[{&(0x7f00000015c0)=""/4096, 0x1000}, {&(0x7f00000025c0)=""/45, 0x2d}, {&(0x7f0000002600)=""/45, 0x2d}, {&(0x7f0000002640)=""/21, 0x15}, {&(0x7f0000002680)=""/4096, 0x1000}, {0x0}, {0x0}, {&(0x7f00000046c0)=""/32, 0x20}], 0x8, &(0x7f0000004780)=""/191, 0xbf}, 0xfff}, {{0x0, 0x0, &(0x7f0000004a80)=[{&(0x7f00000048c0)=""/239, 0xef}], 0x1, &(0x7f0000004ac0)=""/192, 0xc0}, 0xfffffffe}, {{0x0, 0x0, &(0x7f0000006e80)}, 0x7fff}, {{&(0x7f0000006f40)=@ax25={{0x3, @rose}, [@default, @null, @bcast, @null, @null, @default, @remote, @netrom]}, 0x80, &(0x7f00000073c0)=[{0x0}, {&(0x7f0000007080)=""/99, 0x63}, {0x0}, {&(0x7f0000007180)=""/206, 0xce}, {&(0x7f0000007280)=""/59, 0x3b}, {&(0x7f00000072c0)=""/247, 0xf7}], 0x6, &(0x7f0000007440)=""/53, 0x35}, 0x3}], 0x6, 0x40000040, 0x0)

0s ago: executing program 7 (id=1785):
r0 = socket$inet(0x2, 0x2, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$COMEDI_INSN(0xffffffffffffffff, 0x8028640c, &(0x7f0000000000)={0x4000000, 0x0, 0x0, 0x0, 0x7})
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2e, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r2 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
read$msr(r2, &(0x7f0000002700)=""/102392, 0x18ff8)
r3 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r3, 0xc04064a0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)=[<r4=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r3, 0xc05064a7, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r4})
r5 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000100)={0x0, 0x0, 0x32, 0x0, 0x0, 0x5}, 0x28)
close_range(r5, r1, 0x2)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
openat$vsock(0xffffffffffffff9c, &(0x7f0000000140), 0xe0000, 0x0)
io_uring_enter(0xffffffffffffffff, 0x100000, 0x2, 0xf, &(0x7f0000000000), 0x18)
sendmmsg$unix(0xffffffffffffffff, &(0x7f000001c940), 0x0, 0x0)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
r6 = socket$netlink(0x10, 0x3, 0x0)
writev(r6, &(0x7f00000003c0)=[{0x0}], 0x1)
writev(r6, &(0x7f0000000300)=[{&(0x7f00000001c0)}], 0x1)

kernel console output (not intermixed with test programs):

sb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  372.288944][  T976] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  372.316979][  T976] usb 5-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00
[  372.336517][  T976] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  372.355746][   T30] audit: type=1400 audit(1762662345.743:1419): avc:  denied  { mount } for  pid=10195 comm="syz.5.1149" name="/" dev="autofs" ino=26638 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1
[  372.395660][  T976] usb 5-1: config 0 descriptor??
[  372.409776][   T30] audit: type=1400 audit(1762662345.743:1420): avc:  denied  { read } for  pid=10195 comm="syz.5.1149" name="autofs" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  372.433054][    C0] vkms_vblank_simulate: vblank timer overrun
[  372.523877][ T5930] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  372.685753][ T5930] usb 1-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[  372.706332][ T5930] usb 1-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18
[  372.726575][ T5930] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  372.742461][ T5930] gspca_main: stv0680-2.14.0 probing 041e:4007
[  372.766896][T10210] kvm: kvm [10209]: vcpu0, guest rIP: 0x9114 Unhandled WRMSR(0xc2) = 0x9d00
[  372.775971][T10210] kvm: kvm [10209]: vcpu0, guest rIP: 0x9114 Unhandled WRMSR(0xc1) = 0x9d00
[  372.813588][   T10] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  372.821670][T10210] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3685176170 (7370352340 ns) > initial count (2473863852 ns). Using initial count to start timer.
[  372.824119][  T976] hid_parser_main: 4 callbacks suppressed
[  372.824134][  T976] cp2112 0003:10C4:EA90.0004: unknown main item tag 0x0
[  372.854513][  T976] cp2112 0003:10C4:EA90.0004: unknown main item tag 0x0
[  372.862090][  T976] cp2112 0003:10C4:EA90.0004: unknown main item tag 0x0
[  372.869452][  T976] cp2112 0003:10C4:EA90.0004: unknown main item tag 0x0
[  372.876670][  T976] cp2112 0003:10C4:EA90.0004: unknown main item tag 0x0
[  372.883881][  T976] cp2112 0003:10C4:EA90.0004: unknown main item tag 0x0
[  372.890854][  T976] cp2112 0003:10C4:EA90.0004: unknown main item tag 0x0
[  372.899530][  T976] cp2112 0003:10C4:EA90.0004: hidraw0: USB HID v0.00 Device [HID 10c4:ea90] on usb-dummy_hcd.4-1/input0
[  373.040049][T10214] netlink: 'syz.5.1156': attribute type 4 has an invalid length.
[  373.048899][   T10] usb 3-1: Using ep0 maxpacket: 32
[  373.055557][   T10] usb 3-1: config 0 has an invalid interface number: 172 but max is 0
[  373.064544][  T976] cp2112 0003:10C4:EA90.0004: Part Number: 0x00 Device Version: 0x00
[  373.072881][   T10] usb 3-1: config 0 has no interface number 0
[  373.079245][   T10] usb 3-1: config 0 interface 172 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  373.112094][   T10] usb 3-1: New USB device found, idVendor=06f8, idProduct=301b, bcdDevice=bb.39
[  373.121840][   T10] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  373.130060][   T10] usb 3-1: Product: syz
[  373.136507][   T10] usb 3-1: Manufacturer: syz
[  373.141217][   T10] usb 3-1: SerialNumber: syz
[  373.154388][   T10] usb 3-1: config 0 descriptor??
[  373.163055][   T10] gspca_main: gspca_pac7302-2.14.0 probing 06f8:301b
[  373.488883][T10224] netlink: 14 bytes leftover after parsing attributes in process `syz.3.1161'.
[  373.678155][  T976] cp2112 0003:10C4:EA90.0004: error reading lock byte: -71
[  373.722360][  T976] usb 5-1: USB disconnect, device number 8
[  373.766211][   T30] kauditd_printk_skb: 3 callbacks suppressed
[  373.766225][   T30] audit: type=1400 audit(1762662347.163:1424): avc:  denied  { read } for  pid=10227 comm="syz.5.1162" name="btrfs-control" dev="devtmpfs" ino=1316 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  373.812384][   T30] audit: type=1400 audit(1762662347.193:1425): avc:  denied  { open } for  pid=10227 comm="syz.5.1162" path="/dev/btrfs-control" dev="devtmpfs" ino=1316 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  373.836665][    C0] vkms_vblank_simulate: vblank timer overrun
[  373.845588][ T5930] gspca_stv0680: usb_control_msg error 0, request = 0x88, error = -32
[  373.856467][ T5930] stv0680 1-1:4.0: STV(e): camera ping failed!!
[  373.905623][ T5930] gspca_stv0680: usb_control_msg error 0, request = 0x80, error = -71
[  373.915396][ T5930] stv0680 1-1:4.0: last error: 0,  command = 0x0
[  373.928011][ T5930] usb 1-1: USB disconnect, device number 13
[  374.015023][   T10] input: gspca_pac7302 as /devices/platform/dummy_hcd.2/usb3/3-1/input/input16
[  374.043582][ T5927] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  374.193974][ T5927] usb 6-1: Using ep0 maxpacket: 16
[  374.214283][ T5927] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  374.274813][ T5927] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  374.306025][ T6206] block nbd0: Possible stuck request ffff88802622e000: control (read@0,1024B). Runtime 240 seconds
[  374.312823][ T5927] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  374.316849][ T6206] block nbd0: Possible stuck request ffff88802622e1c0: control (read@1024,1024B). Runtime 240 seconds
[  374.316903][ T6206] block nbd0: Possible stuck request ffff88802622e380: control (read@2048,1024B). Runtime 240 seconds
[  374.328151][ T5927] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  374.358924][ T5927] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  374.366331][ T5857] usb 3-1: USB disconnect, device number 12
[  374.372186][    C0] gspca_pac7302 3-1:0.172: URB error -71, resubmitting
[  374.384663][    C0] gspca_main: Resubmit URB failed with error -19
[  374.457712][ T5927] usb 6-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  374.467525][ T5927] usb 6-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  374.481486][T10232] sd 0:0:1:0: PR command failed: 1026
[  374.487896][T10232] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  374.506147][T10232] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  374.514233][ T5927] usb 6-1: Manufacturer: syz
[  374.554122][ T5927] usb 6-1: config 0 descriptor??
[  374.642969][   T30] audit: type=1400 audit(1762662348.033:1426): avc:  denied  { write } for  pid=10236 comm="syz.4.1165" name="card1" dev="devtmpfs" ino=628 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  374.816730][ T5927] rc_core: IR keymap rc-hauppauge not found
[  374.825548][ T5927] Registered IR keymap rc-empty
[  374.830538][ T5927] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  374.864204][ T5927] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  374.884977][ T5927] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/rc/rc0
[  374.898985][ T5927] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/rc/rc0/input17
[  374.919930][ T5927] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  374.958027][ T5927] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  374.994391][ T5927] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  375.013984][ T5927] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  375.033573][ T5927] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  375.063742][ T5927] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  375.084104][ T5927] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  375.103974][ T5927] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  375.115797][ T6206] block nbd0: Possible stuck request ffff88802622e540: control (read@3072,1024B). Runtime 240 seconds
[  375.128294][ T5927] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  375.153604][ T5927] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  375.178110][ T5927] mceusb 6-1:0.0: Registered 424242424242 with mce emulator interface version 1
[  375.187452][ T5927] mceusb 6-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  375.328573][   T30] audit: type=1400 audit(1762662348.723:1427): avc:  denied  { bind } for  pid=10258 comm="syz.2.1171" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  375.362451][   T10] usb 6-1: USB disconnect, device number 15
[  375.432963][   T30] audit: type=1400 audit(1762662348.823:1428): avc:  denied  { bind } for  pid=10266 comm="syz.2.1173" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  375.489913][   T30] audit: type=1400 audit(1762662348.853:1429): avc:  denied  { listen } for  pid=10266 comm="syz.2.1173" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  375.538541][   T30] audit: type=1400 audit(1762662348.853:1430): avc:  denied  { connect } for  pid=10266 comm="syz.2.1173" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  375.567281][   T30] audit: type=1400 audit(1762662348.863:1431): avc:  denied  { accept } for  pid=10266 comm="syz.2.1173" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  375.591040][   T30] audit: type=1400 audit(1762662348.863:1432): avc:  denied  { write } for  pid=10266 comm="syz.2.1173" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  375.659860][T10272] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3070988179 (3070988179 ns) > initial count (1876204212 ns). Using initial count to start timer.
[  375.711817][T10277] syzkaller0: entered promiscuous mode
[  375.721953][T10277] syzkaller0: entered allmulticast mode
[  375.824996][   T30] audit: type=1400 audit(1762662349.223:1433): avc:  denied  { read } for  pid=10279 comm="syz.0.1178" name="file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[  375.972538][T10290] binder: 10287:10290 ioctl c0306201 200000000640 returned -22
[  376.273621][   T10] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  376.350484][ T5857] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  376.446320][   T10] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  376.481766][   T10] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  376.515199][ T5857] usb 1-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  376.524849][   T10] usb 6-1: New USB device found, idVendor=27b8, idProduct=01ed, bcdDevice= 0.00
[  376.524878][   T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  376.546483][   T10] usb 6-1: config 0 descriptor??
[  376.549872][ T5857] usb 1-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  376.566457][ T5857] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 66
[  376.575823][ T5857] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  376.587225][ T5857] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  376.587349][T10316] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  376.600155][ T5857] usb 1-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  376.614695][ T5857] usb 1-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  376.622768][ T5857] usb 1-1: Product: syz
[  376.628509][ T5857] usb 1-1: Manufacturer: syz
[  376.640451][T10316] syzkaller0: entered promiscuous mode
[  376.644222][ T5857] cdc_wdm 1-1:1.0: skipping garbage
[  376.646252][T10316] syzkaller0: entered allmulticast mode
[  376.652203][ T5857] cdc_wdm 1-1:1.0: skipping garbage
[  376.664795][ T5857] cdc_wdm 1-1:1.0: cdc-wdm0: USB WDM device
[  376.665333][T10316] tipc: Resetting bearer <eth:syzkaller0>
[  376.670693][ T5857] cdc_wdm 1-1:1.0: Unknown control protocol
[  376.698228][T10314] tipc: Resetting bearer <eth:syzkaller0>
[  376.986666][   T10] hid-led 0003:27B8:01ED.0005: unknown main item tag 0x0
[  376.994041][   T10] hid-led 0003:27B8:01ED.0005: unknown main item tag 0x0
[  377.045215][ T5857] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  377.188408][   T10] hid-led 0003:27B8:01ED.0005: probe with driver hid-led failed with error -71
[  377.208872][   T10] usb 6-1: USB disconnect, device number 16
[  377.228437][ T5857] usb 5-1: Using ep0 maxpacket: 16
[  377.249848][ T5857] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  377.258097][ T5857] usb 5-1: config 0 has no interface number 0
[  377.266283][ T5857] usb 5-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d
[  377.275703][ T5857] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  377.284237][ T5857] usb 5-1: Product: syz
[  377.288440][ T5857] usb 5-1: Manufacturer: syz
[  377.293081][ T5857] usb 5-1: SerialNumber: syz
[  377.314129][ T5857] usb 5-1: config 0 descriptor??
[  377.322426][ T5857] gspca_main: spca1528-2.14.0 probing 04fc:1528
[  377.586963][   T43] usb 1-1: USB disconnect, device number 14
[  377.687389][   T24] tipc: Node number set to 66179243
[  378.152730][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  378.165504][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  378.689070][T10314] tipc: Disabling bearer <eth:syzkaller0>
[  378.725246][T10332] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  378.815574][ T5857] gspca_spca1528: reg_w err -71
[  378.844776][ T5857] spca1528 5-1:0.1: probe with driver spca1528 failed with error -71
[  378.880269][ T5857] usb 5-1: USB disconnect, device number 9
[  378.897906][   T30] kauditd_printk_skb: 5 callbacks suppressed
[  378.897920][   T30] audit: type=1400 audit(1762662352.293:1439): avc:  denied  { create } for  pid=10340 comm="syz.0.1201" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=atmpvc_socket permissive=1
[  379.602804][T10366] binder: BINDER_SET_CONTEXT_MGR already set
[  379.609089][T10366] binder: 10365:10366 ioctl 4018620d 200000000040 returned -16
[  379.767417][ T5857] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  379.983575][ T5857] usb 1-1: Using ep0 maxpacket: 32
[  379.993537][ T5857] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  380.008928][ T5857] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  380.022149][ T5857] usb 1-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  380.047083][ T5857] usb 1-1: New USB device strings: Mfr=32, Product=0, SerialNumber=0
[  380.111856][ T5857] usb 1-1: Manufacturer: syz
[  380.207831][ T5857] usb 1-1: config 0 descriptor??
[  380.463610][   T30] audit: type=1400 audit(1762662353.853:1440): avc:  denied  { write } for  pid=10385 comm="syz.3.1215" name="sg0" dev="devtmpfs" ino=747 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  380.650741][T10392] mkiss: ax0: crc mode is auto.
[  380.694536][ T5857] ft260 0003:0403:6030.0006: unknown main item tag 0x7
[  380.873925][ T5857] ft260 0003:0403:6030.0006: chip code: 0000 0000
[  381.079916][ T5857] ft260 0003:0403:6030.0006: USB HID v0.00 Device [syz] on usb-dummy_hcd.0-1/input0
[  381.327258][ T5857] ft260 0003:0403:6030.0006: failed to retrieve status: -32, no wakeup
[  381.389521][ T5857] ft260 0003:0403:6030.0006: failed to retrieve status: -32
[  381.471175][T10396] netlink: 'syz.3.1218': attribute type 4 has an invalid length.
[  381.775550][ T5857] usb 1-1: USB disconnect, device number 15
[  382.304545][   T30] audit: type=1400 audit(1762662355.703:1441): avc:  denied  { nlmsg_write } for  pid=10405 comm="syz.4.1222" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  382.383798][ T5927] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  382.393543][   T10] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  382.533669][   T10] usb 4-1: device descriptor read/64, error -71
[  382.564968][ T5927] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  382.633593][ T5927] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  382.643411][ T5927] usb 3-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00
[  382.652946][ T5927] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  382.670683][ T5927] usb 3-1: config 0 descriptor??
[  383.091780][ T5927] cp2112 0003:10C4:EA90.0007: unknown main item tag 0x0
[  383.165628][ T5927] cp2112 0003:10C4:EA90.0007: hidraw0: USB HID v0.00 Device [HID 10c4:ea90] on usb-dummy_hcd.2-1/input0
[  383.285301][ T5927] cp2112 0003:10C4:EA90.0007: Part Number: 0x82 Device Version: 0xFE
[  383.615350][T10434] netlink: 14 bytes leftover after parsing attributes in process `syz.0.1230'.
[  383.915481][T10402] cp2112 0003:10C4:EA90.0007: Error starting transaction: -38
[  383.927835][ T5927] cp2112 0003:10C4:EA90.0007: error reading lock byte: -71
[  383.953171][ T5927] usb 3-1: USB disconnect, device number 13
[  384.381990][   T30] audit: type=1326 audit(1762662357.763:1442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10440 comm="syz.5.1233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa01c18f6c9 code=0x7ffc0000
[  384.429835][   T30] audit: type=1326 audit(1762662357.763:1443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10440 comm="syz.5.1233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa01c18f6c9 code=0x7ffc0000
[  384.454029][   T30] audit: type=1326 audit(1762662357.763:1444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10440 comm="syz.5.1233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa01c18f6c9 code=0x7ffc0000
[  384.736836][   T30] audit: type=1326 audit(1762662357.763:1445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10440 comm="syz.5.1233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fa01c18f6c9 code=0x7ffc0000
[  384.811825][   T30] audit: type=1326 audit(1762662357.763:1446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10440 comm="syz.5.1233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa01c18f6c9 code=0x7ffc0000
[  384.942440][   T30] audit: type=1326 audit(1762662357.773:1447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10440 comm="syz.5.1233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa01c18f6c9 code=0x7ffc0000
[  385.385377][   T30] audit: type=1326 audit(1762662357.773:1448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10440 comm="syz.5.1233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa01c18f6c9 code=0x7ffc0000
[  385.677376][   T30] audit: type=1326 audit(1762662357.773:1449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10440 comm="syz.5.1233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fa01c18f6c9 code=0x7ffc0000
[  385.942650][   T30] audit: type=1326 audit(1762662357.773:1450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10440 comm="syz.5.1233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa01c18f6c9 code=0x7ffc0000
[  386.454964][   T30] audit: type=1326 audit(1762662357.773:1451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10440 comm="syz.5.1233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fa01c18e17f code=0x7ffc0000
[  386.633255][ T7616] Bluetooth: hci5: Frame reassembly failed (-84)
[  388.703597][ T5815] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  389.576850][T10497] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer.
[  389.829472][T10509] netlink: 14 bytes leftover after parsing attributes in process `syz.5.1255'.
[  390.732510][T10526] syzkaller0: entered promiscuous mode
[  390.738425][T10526] syzkaller0: entered allmulticast mode
[  392.583506][ T5927] usb 3-1: new low-speed USB device number 14 using dummy_hcd
[  392.675498][T10556] netlink: 14 bytes leftover after parsing attributes in process `syz.5.1270'.
[  392.752868][ T5927] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[  392.762349][ T5927] usb 3-1: config 0 has no interface number 0
[  392.912626][ T5927] usb 3-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  393.404145][ T5927] usb 3-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  393.416602][ T5927] usb 3-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  393.431614][ T5927] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  393.450552][ T5927] usb 3-1: config 0 descriptor??
[  393.468706][T10554] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  393.486951][ T5927] iowarrior 3-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  393.738003][ T5878] usb 3-1: USB disconnect, device number 14
[  393.738044][    C0] iowarrior 3-1:0.1: iowarrior_callback - usb_submit_urb failed with result -19
[  394.862605][   T30] kauditd_printk_skb: 72 callbacks suppressed
[  394.862618][   T30] audit: type=1400 audit(1762662367.983:1524): avc:  denied  { firmware_load } for  pid=10573 comm="syz.4.1275" path="/lib/firmware/regulatory.db" dev="sda1" ino=448 scontext=system_u:system_r:kernel_t tcontext=system_u:object_r:lib_t tclass=system permissive=1
[  394.952370][T10575] syz.4.1275 (10575) used greatest stack depth: 18592 bytes left
[  394.990468][T10578] sch_tbf: burst 14 is lower than device lo mtu (1550) !
[  396.071838][T10591] netlink: 14 bytes leftover after parsing attributes in process `syz.3.1282'.
[  396.119705][T10589] netlink: 'syz.4.1280': attribute type 4 has an invalid length.
[  397.106739][T10611] netlink: 14 bytes leftover after parsing attributes in process `syz.2.1287'.
[  397.617221][T10617] syzkaller1: entered promiscuous mode
[  397.622734][T10617] syzkaller1: entered allmulticast mode
[  398.336124][T10620] syzkaller1: entered promiscuous mode
[  398.390074][T10620] syzkaller1: entered allmulticast mode
[  398.447763][T10620] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1290'.
[  398.553576][   T10] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  398.713565][   T10] usb 6-1: Using ep0 maxpacket: 16
[  398.724947][   T10] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  399.203928][   T10] usb 6-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  399.213115][   T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  399.230772][   T10] usb 6-1: config 0 descriptor??
[  399.240932][   T10] input: bcm5974 as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/input/input18
[  399.447168][T10623] input: syz0 as /devices/virtual/input/input19
[  400.872274][T10641] workqueue: name exceeds WQ_NAME_LEN. Truncating to: 4π!F���Vl�uc'f`�ކ�;��1�
[  400.921222][T10645] netlink: 14 bytes leftover after parsing attributes in process `syz.0.1298'.
[  401.327687][T10647] svc: failed to register nfsdv3 RPC service (errno 111).
[  401.375093][T10647] svc: failed to register nfsaclv3 RPC service (errno 111).
[  401.396513][ T5168] bcm5974 6-1:0.0: could not read from device
[  401.448481][ T5168] bcm5974 6-1:0.0: could not read from device
[  401.448614][   T10] usb 6-1: USB disconnect, device number 17
[  401.871496][   T30] audit: type=1400 audit(1762662375.263:1525): avc:  denied  { setopt } for  pid=10664 comm="syz.5.1302" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  401.896624][ T5168] bcm5974 6-1:0.0: could not read from device
[  401.928585][ T7006] bcm5974 6-1:0.0: could not read from device
[  402.022119][ T5168] bcm5974 6-1:0.0: could not read from device
[  402.314678][T10676] syz_tun: entered allmulticast mode
[  402.373696][   T43] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  402.610640][T10684] netlink: 'syz.4.1305': attribute type 4 has an invalid length.
[  402.663848][   T43] usb 3-1: config 0 has an invalid interface number: 69 but max is 0
[  402.668395][T10676] dvmrp8: entered allmulticast mode
[  402.693569][   T43] usb 3-1: config 0 has no interface number 0
[  402.700109][   T43] usb 3-1: config 0 interface 69 altsetting 0 bulk endpoint 0x8 has invalid maxpacket 1023
[  402.764061][   T43] usb 3-1: config 0 interface 69 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  402.795620][   T43] usb 3-1: New USB device found, idVendor=0c4b, idProduct=0100, bcdDevice=d7.ca
[  402.812821][T10675] syz_tun: left allmulticast mode
[  402.813501][   T43] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  402.893563][   T43] usb 3-1: Product: syz
[  402.897758][   T43] usb 3-1: Manufacturer: syz
[  402.922176][   T43] usb 3-1: SerialNumber: syz
[  402.929831][   T43] usb 3-1: config 0 descriptor??
[  402.951579][T10674] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  402.966962][   T43] cyberjack 3-1:0.69: Reiner SCT Cyberjack USB card reader converter detected
[  403.003802][   T43] usb 3-1: Reiner SCT Cyberjack USB card reader converter now attached to ttyUSB0
[  404.479120][ T6206] block nbd0: Possible stuck request ffff88802622e000: control (read@0,1024B). Runtime 270 seconds
[  404.490103][ T6206] block nbd0: Possible stuck request ffff88802622e1c0: control (read@1024,1024B). Runtime 270 seconds
[  404.501361][ T6206] block nbd0: Possible stuck request ffff88802622e380: control (read@2048,1024B). Runtime 270 seconds
[  404.821962][    C1] cyberjack ttyUSB0: cyberjack_read_int_callback - failed resubmitting read urb, error -22
[  405.299093][ T6206] block nbd0: Possible stuck request ffff88802622e540: control (read@3072,1024B). Runtime 270 seconds
[  405.357519][ T5930] usb 3-1: USB disconnect, device number 15
[  405.386997][T10714] netlink: 14 bytes leftover after parsing attributes in process `syz.3.1311'.
[  405.439928][ T5930] cyberjack ttyUSB0: Reiner SCT Cyberjack USB card reader converter now disconnected from ttyUSB0
[  405.535712][ T5930] cyberjack 3-1:0.69: device disconnected
[  405.590190][T10717] syzkaller0: entered promiscuous mode
[  405.597064][T10717] syzkaller0: entered allmulticast mode
[  406.333831][   T30] audit: type=1400 audit(1762662379.613:1526): avc:  denied  { ioctl } for  pid=10748 comm="syz.2.1314" path="/dev/sg0" dev="devtmpfs" ino=747 ioctlcmd=0x2285 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  407.329208][T10767] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  407.338103][T10767] syzkaller0: entered promiscuous mode
[  407.344096][T10767] syzkaller0: entered allmulticast mode
[  407.419930][T10770] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1316'.
[  407.480466][T10767] tipc: Resetting bearer <eth:syzkaller0>
[  407.567776][T10766] tipc: Resetting bearer <eth:syzkaller0>
[  407.615734][T10766] tipc: Disabling bearer <eth:syzkaller0>
[  407.941500][T10782] netlink: 14 bytes leftover after parsing attributes in process `syz.4.1320'.
[  408.377622][T10782] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  408.393219][T10782] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  408.407592][T10782] bond0 (unregistering): Released all slaves
[  410.137889][   T30] audit: type=1400 audit(1762662383.213:1527): avc:  denied  { ioctl } for  pid=10794 comm="syz.0.1323" path="/dev/rtc0" dev="devtmpfs" ino=921 ioctlcmd=0x7005 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  410.863292][T10805] trusted_key: encrypted_key: insufficient parameters specified
[  411.260555][   T30] audit: type=1400 audit(1762662384.653:1528): avc:  denied  { create } for  pid=10808 comm="syz.5.1327" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  411.359916][T10809] futex_wake_op: syz.5.1327 tries to shift op by -1; fix this program
[  411.623677][   T10] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  411.834746][   T10] usb 1-1: Using ep0 maxpacket: 16
[  411.891868][   T10] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  412.012247][   T10] usb 1-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  412.125499][   T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  412.446107][   T10] usb 1-1: Product: syz
[  412.767566][   T10] usb 1-1: Manufacturer: syz
[  412.772241][   T30] audit: type=1400 audit(1762662386.133:1529): avc:  denied  { kexec_image_load } for  pid=10815 comm="syz.2.1331" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[  412.793696][   T10] usb 1-1: SerialNumber: syz
[  412.826421][   T10] usb 1-1: config 0 descriptor??
[  412.838069][   T10] em28xx 1-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  412.853595][   T10] em28xx 1-1:0.0: DVB interface 0 found: bulk
[  413.166202][T10826] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  413.389040][T10829] syzkaller0: entered promiscuous mode
[  413.394675][T10829] syzkaller0: entered allmulticast mode
[  413.461239][T10826] tipc: Resetting bearer <eth:syzkaller0>
[  413.488334][T10824] tipc: Resetting bearer <eth:syzkaller0>
[  413.628717][   T10] em28xx 1-1:0.0: unknown em28xx chip ID (0)
[  413.644268][T10824] tipc: Disabling bearer <eth:syzkaller0>
[  414.864861][   T30] audit: type=1400 audit(1762662387.803:1530): avc:  denied  { bind } for  pid=10840 comm="syz.5.1336" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  414.887301][   T24] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  414.969991][   T10] em28xx 1-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  414.998021][   T10] em28xx 1-1:0.0: board has no eeprom
[  415.105084][   T24] usb 4-1: Using ep0 maxpacket: 8
[  415.111654][   T24] usb 4-1: config 0 has no interfaces?
[  415.123477][   T24] usb 4-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[  415.182200][   T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  415.716740][   T24] usb 4-1: config 0 descriptor??
[  416.435093][   T10] em28xx 1-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  416.443009][   T10] em28xx 1-1:0.0: dvb set to bulk mode.
[  416.755421][T10856] fuse: Unknown parameter 'group_id00000000000000000000'
[  417.967153][T10864] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  418.178572][  T976] em28xx 1-1:0.0: Binding DVB extension
[  418.335262][T10870] lo speed is unknown, defaulting to 1000
[  418.341573][T10870] lo speed is unknown, defaulting to 1000
[  418.353118][T10870] lo speed is unknown, defaulting to 1000
[  418.437282][T10870] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  418.578623][T10870] lo speed is unknown, defaulting to 1000
[  418.600473][T10870] lo speed is unknown, defaulting to 1000
[  418.665692][T10870] lo speed is unknown, defaulting to 1000
[  418.685536][   T10] usb 1-1: USB disconnect, device number 16
[  418.691711][  T976] em28xx 1-1:0.0: Registering input extension
[  418.712679][T10870] lo speed is unknown, defaulting to 1000
[  418.761346][T10870] lo speed is unknown, defaulting to 1000
[  418.776838][   T10] em28xx 1-1:0.0: Disconnecting em28xx
[  418.824341][   T43] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  418.861293][   T10] em28xx 1-1:0.0: Closing input extension
[  418.902095][ T5931] usb 4-1: USB disconnect, device number 16
[  418.980104][   T10] em28xx 1-1:0.0: Freeing device
[  419.026017][   T43] usb 6-1: Using ep0 maxpacket: 16
[  419.058474][   T43] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  419.199023][   T43] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  419.209130][   T43] usb 6-1: New USB device found, idVendor=046d, idProduct=c50c, bcdDevice= 0.00
[  419.218322][   T43] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  419.236573][   T43] usb 6-1: config 0 descriptor??
[  419.748097][   T43] usbhid 6-1:0.0: can't add hid device: -71
[  419.778501][   T43] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  419.845865][   T43] usb 6-1: USB disconnect, device number 18
[  420.332164][   T30] audit: type=1326 audit(1762662393.603:1531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10891 comm="syz.2.1347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fade7f8f6c9 code=0x7ffc0000
[  420.524010][ T5943] Bluetooth: hci5: Frame reassembly failed (-84)
[  420.632138][   T30] audit: type=1326 audit(1762662393.613:1532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10891 comm="syz.2.1347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fade7f8f6c9 code=0x7ffc0000
[  420.884101][   T30] audit: type=1326 audit(1762662393.613:1533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10891 comm="syz.2.1347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fade7f8f6c9 code=0x7ffc0000
[  422.591191][ T5815] Bluetooth: hci5: command 0x1003 tx timeout
[  422.609085][ T5134] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  423.054618][   T30] audit: type=1326 audit(1762662393.613:1534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10891 comm="syz.2.1347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fade7f8f6c9 code=0x7ffc0000
[  423.083527][   T30] audit: type=1326 audit(1762662393.613:1535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10891 comm="syz.2.1347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fade7f8f6c9 code=0x7ffc0000
[  423.173560][   T30] audit: type=1326 audit(1762662393.613:1536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10891 comm="syz.2.1347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fade7f8f6c9 code=0x7ffc0000
[  423.266125][   T30] audit: type=1326 audit(1762662393.613:1537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10891 comm="syz.2.1347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fade7f8f6c9 code=0x7ffc0000
[  423.347985][   T30] audit: type=1326 audit(1762662393.613:1538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10891 comm="syz.2.1347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fade7f8f6c9 code=0x7ffc0000
[  423.513677][   T30] audit: type=1326 audit(1762662393.613:1539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10891 comm="syz.2.1347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fade7f8f6c9 code=0x7ffc0000
[  423.537202][    C0] vkms_vblank_simulate: vblank timer overrun
[  423.547061][   T30] audit: type=1326 audit(1762662393.613:1540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10891 comm="syz.2.1347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fade7f8f6c9 code=0x7ffc0000
[  423.570452][    C0] vkms_vblank_simulate: vblank timer overrun
[  428.732161][   T30] kauditd_printk_skb: 23 callbacks suppressed
[  428.732175][   T30] audit: type=1400 audit(1762662402.123:1564): avc:  denied  { connect } for  pid=10969 comm="syz.5.1366" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  428.764387][T10966] netlink: 'syz.4.1363': attribute type 4 has an invalid length.
[  429.179331][T10965] Process accounting resumed
[  430.518557][T10984] sp0: Synchronizing with TNC
[  430.607569][   T30] audit: type=1400 audit(1762662404.003:1565): avc:  denied  { read write } for  pid=10969 comm="syz.5.1366" name="cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[  430.649807][   T30] audit: type=1400 audit(1762662404.003:1566): avc:  denied  { open } for  pid=10969 comm="syz.5.1366" path="/dev/cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[  431.074887][   T30] audit: type=1400 audit(1762662404.393:1567): avc:  denied  { ioctl } for  pid=10986 comm="syz.3.1369" path="/dev/ptyqb" dev="devtmpfs" ino=130 ioctlcmd=0x5436 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1
[  432.057452][T11004] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1372'.
[  432.071423][T11004] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1372'.
[  433.242369][T11016] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1376'.
[  433.247967][   T30] audit: type=1400 audit(1762662406.603:1568): avc:  denied  { create } for  pid=11010 comm="syz.5.1375" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  433.272050][   T30] audit: type=1400 audit(1762662406.623:1569): avc:  denied  { ioctl } for  pid=11010 comm="syz.5.1375" path="socket:[30534]" dev="sockfs" ino=30534 ioctlcmd=0x89e2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  433.281825][T11016] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1376'.
[  433.298741][   T30] audit: type=1400 audit(1762662406.633:1570): avc:  denied  { read } for  pid=11010 comm="syz.5.1375" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=socket permissive=1
[  433.328573][   T30] audit: type=1400 audit(1762662406.633:1571): avc:  denied  { mount } for  pid=11015 comm="syz.3.1376" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  433.764027][   T30] audit: type=1400 audit(1762662406.883:1572): avc:  denied  { write } for  pid=11010 comm="syz.5.1375" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=socket permissive=1
[  433.922410][   T30] audit: type=1400 audit(1762662407.313:1573): avc:  denied  { read write } for  pid=11030 comm="syz.5.1381" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  434.483918][   T30] audit: type=1400 audit(1762662407.313:1574): avc:  denied  { open } for  pid=11030 comm="syz.5.1381" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  435.140828][ T6206] block nbd0: Possible stuck request ffff88802622e000: control (read@0,1024B). Runtime 300 seconds
[  435.154657][ T6206] block nbd0: Possible stuck request ffff88802622e1c0: control (read@1024,1024B). Runtime 300 seconds
[  435.165675][ T6206] block nbd0: Possible stuck request ffff88802622e380: control (read@2048,1024B). Runtime 300 seconds
[  435.297423][T11042] mkiss: ax0: crc mode is auto.
[  435.313649][ T6206] block nbd0: Possible stuck request ffff88802622e540: control (read@3072,1024B). Runtime 300 seconds
[  435.791352][ T5134] Bluetooth: hci3: connection err: -111
[  435.934207][   T30] audit: type=1400 audit(1762662409.063:1575): avc:  denied  { setopt } for  pid=11044 comm="syz.4.1383" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  439.168088][T11067] lo speed is unknown, defaulting to 1000
[  439.433526][ T5878] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  439.625580][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  439.633357][   T30] audit: type=1400 audit(1762662412.973:1576): avc:  denied  { setattr } for  pid=11071 comm="syz.0.1390" name="" dev="pipefs" ino=30646 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[  439.656590][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  440.054648][ T5878] usb 3-1: config 0 has no interfaces?
[  440.237486][ T5878] usb 3-1: New USB device found, idVendor=056a, idProduct=0063, bcdDevice= 0.00
[  440.254365][ T5878] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  440.265366][ T5878] usb 3-1: config 0 descriptor??
[  440.783531][   T30] audit: type=1326 audit(1762662413.983:1577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11083 comm="syz.4.1392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  440.810592][   T30] audit: type=1326 audit(1762662413.993:1578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11083 comm="syz.4.1392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=245 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  441.053441][   T30] audit: type=1326 audit(1762662413.993:1579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11083 comm="syz.4.1392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  441.077184][   T30] audit: type=1326 audit(1762662413.993:1580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11083 comm="syz.4.1392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  441.103747][   T30] audit: type=1326 audit(1762662413.993:1581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11083 comm="syz.4.1392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  441.690524][   T30] audit: type=1326 audit(1762662413.993:1582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11083 comm="syz.4.1392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=315 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  441.715623][   T30] audit: type=1326 audit(1762662413.993:1583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11083 comm="syz.4.1392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  441.773891][   T30] audit: type=1326 audit(1762662413.993:1584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11083 comm="syz.4.1392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb80df8df10 code=0x7ffc0000
[  441.800041][   T30] audit: type=1326 audit(1762662413.993:1585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11083 comm="syz.4.1392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb80df8df10 code=0x7ffc0000
[  442.644670][ T5878] usb 3-1: USB disconnect, device number 16
[  443.583670][   T13] Bluetooth: hci5: Frame reassembly failed (-84)
[  445.171114][T11136] BFS-fs: bfs_fill_super(): No BFS filesystem on nullb0 (magic=00000000)
[  445.583501][ T5815] Bluetooth: hci5: command 0x1003 tx timeout
[  446.018184][ T5134] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  446.048025][T11136] orangefs_mount: mount request failed with -4
[  447.529527][   T30] kauditd_printk_skb: 17 callbacks suppressed
[  447.529589][   T30] audit: type=1400 audit(1762662420.903:1603): avc:  denied  { mount } for  pid=11145 comm="syz.2.1406" name="/" dev="ramfs" ino=30764 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  447.705762][   T30] audit: type=1400 audit(1762662420.953:1604): avc:  denied  { getopt } for  pid=11148 comm="syz.4.1405" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  448.715650][   T30] audit: type=1400 audit(1762662421.993:1605): avc:  denied  { getopt } for  pid=11156 comm="syz.3.1407" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  448.740206][   T30] audit: type=1326 audit(1762662422.033:1606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11162 comm="syz.4.1408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  448.787740][   T30] audit: type=1326 audit(1762662422.033:1607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11162 comm="syz.4.1408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  448.794967][   T13] Bluetooth: hci5: Frame reassembly failed (-84)
[  448.867009][   T30] audit: type=1326 audit(1762662422.033:1608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11162 comm="syz.4.1408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  449.058899][   T30] audit: type=1326 audit(1762662422.033:1609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11162 comm="syz.4.1408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  449.115503][   T30] audit: type=1326 audit(1762662422.033:1610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11162 comm="syz.4.1408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  449.140764][   T30] audit: type=1326 audit(1762662422.033:1611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11162 comm="syz.4.1408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  449.166595][   T30] audit: type=1326 audit(1762662422.033:1612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11162 comm="syz.4.1408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  449.867148][T11177] i2c i2c-0: Invalid block write size 252
[  449.877978][ T2958] Bluetooth: hci6: Frame reassembly failed (-84)
[  450.783516][T11176] Bluetooth: hci5: command 0x1003 tx timeout
[  450.786662][ T5134] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  451.903767][ T5815] Bluetooth: hci6: Opcode 0x1003 failed: -110
[  451.946683][  T976] libceph: connect (1)[c::]:6789 error -101
[  451.952788][  T976] libceph: mon0 (1)[c::]:6789 connect error
[  452.253105][  T976] libceph: connect (1)[c::]:6789 error -101
[  452.550810][  T976] libceph: mon0 (1)[c::]:6789 connect error
[  452.637671][T11198] ceph: No mds server is up or the cluster is laggy
[  452.994465][T11210] netlink: 14 bytes leftover after parsing attributes in process `syz.4.1418'.
[  453.622838][   T30] kauditd_printk_skb: 86 callbacks suppressed
[  453.622848][   T30] audit: type=1400 audit(1762662427.013:1699): avc:  denied  { unmount } for  pid=5806 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  454.160655][T11218] SELinux: failed to load policy
[  454.331379][T11218] input: syz1 as /devices/virtual/input/input21
[  454.983532][   T30] audit: type=1400 audit(1762662427.433:1700): avc:  denied  { load_policy } for  pid=11216 comm="syz.0.1420" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  455.920009][T11238] bridge0: entered promiscuous mode
[  455.925343][T11238] bridge0: entered allmulticast mode
[  456.628011][   T30] audit: type=1400 audit(1762662429.983:1701): avc:  denied  { mount } for  pid=11235 comm="syz.0.1425" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[  456.738051][   T30] audit: type=1400 audit(1762662429.983:1702): avc:  denied  { create } for  pid=11235 comm="syz.0.1425" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  456.746114][T11246] usb usb9: usbfs: process 11246 (syz.4.1427) did not claim interface 0 before use
[  457.234505][T11252] EXT4-fs (nullb0): VFS: Can't find ext4 filesystem
[  458.776381][T11263] netlink: 14 bytes leftover after parsing attributes in process `syz.0.1432'.
[  458.989588][T11266] netlink: 'syz.5.1433': attribute type 4 has an invalid length.
[  461.632992][   T30] audit: type=1400 audit(1762662435.023:1703): avc:  denied  { map } for  pid=11289 comm="syz.0.1439" path="/dev/fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  461.760213][T11295] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1440'.
[  462.075714][   T30] audit: type=1400 audit(1762662435.023:1704): avc:  denied  { execute } for  pid=11289 comm="syz.0.1439" path="/dev/fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  462.323534][   T30] audit: type=1400 audit(1762662435.153:1705): avc:  denied  { ioctl } for  pid=11293 comm="syz.2.1440" path="socket:[31073]" dev="sockfs" ino=31073 ioctlcmd=0x89f1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  462.348209][    C0] vkms_vblank_simulate: vblank timer overrun
[  465.573534][ T6206] block nbd0: Possible stuck request ffff88802622e000: control (read@0,1024B). Runtime 330 seconds
[  465.586557][ T6206] block nbd0: Possible stuck request ffff88802622e1c0: control (read@1024,1024B). Runtime 330 seconds
[  465.597634][ T6206] block nbd0: Possible stuck request ffff88802622e380: control (read@2048,1024B). Runtime 330 seconds
[  465.899269][ T6206] block nbd0: Possible stuck request ffff88802622e540: control (read@3072,1024B). Runtime 330 seconds
[  466.207619][   T30] audit: type=1400 audit(1762662439.603:1706): avc:  denied  { ioctl } for  pid=11350 comm="syz.2.1448" path="socket:[31203]" dev="sockfs" ino=31203 ioctlcmd=0x5411 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  466.376732][T11357] binder: 11344:11357 ioctl 4018620d 0 returned -22
[  466.384075][   T30] audit: type=1326 audit(1762662439.733:1707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11354 comm="syz.3.1449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  466.419768][   T55] Bluetooth: hci5: Frame reassembly failed (-84)
[  466.436194][   T30] audit: type=1326 audit(1762662439.733:1708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11354 comm="syz.3.1449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  466.460739][T11352] mkiss: ax0: crc mode is auto.
[  466.473558][ T5931] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[  466.493464][  T976] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  466.632681][   T30] audit: type=1326 audit(1762662439.733:1709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11354 comm="syz.3.1449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  466.653468][  T976] usb 3-1: Using ep0 maxpacket: 8
[  466.685965][  T976] usb 3-1: config 128 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  466.697581][   T30] audit: type=1326 audit(1762662439.733:1710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11354 comm="syz.3.1449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  466.721239][  T976] usb 3-1: config 128 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  466.762308][  T976] usb 3-1: config 128 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  466.775969][   T30] audit: type=1326 audit(1762662439.733:1711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11354 comm="syz.3.1449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  466.795595][  T976] usb 3-1: New USB device found, idVendor=1e71, idProduct=170e, bcdDevice= c.00
[  466.893525][   T30] audit: type=1326 audit(1762662439.733:1712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11354 comm="syz.3.1449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  466.936334][ T5931] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  466.965676][   T30] audit: type=1326 audit(1762662439.733:1713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11354 comm="syz.3.1449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  466.989242][ T5931] usb 6-1: config 27 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  467.022954][  T976] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  467.031765][ T5931] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  467.054922][ T5931] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  467.063140][   T30] audit: type=1326 audit(1762662439.743:1714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11354 comm="syz.3.1449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  467.161027][ T5931] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  467.179209][ T5931] usb 6-1: invalid MIDI out EP 0
[  467.210100][   T30] audit: type=1326 audit(1762662439.743:1715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11354 comm="syz.3.1449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  467.332610][  T976] usbhid 3-1:128.0: can't add hid device: -71
[  467.339022][  T976] usbhid 3-1:128.0: probe with driver usbhid failed with error -71
[  467.366083][  T976] usb 3-1: USB disconnect, device number 17
[  467.419095][   T30] audit: type=1326 audit(1762662439.743:1716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11354 comm="syz.3.1449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  467.478573][ T9507] udevd[9507]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  467.479122][   T30] audit: type=1326 audit(1762662439.743:1717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11354 comm="syz.3.1449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  467.588831][ T5931] snd-usb-audio 6-1:27.0: probe with driver snd-usb-audio failed with error -22
[  467.611820][   T30] audit: type=1326 audit(1762662439.743:1718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11354 comm="syz.3.1449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fa86438e17f code=0x7ffc0000
[  467.635857][   T30] audit: type=1326 audit(1762662439.743:1719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11354 comm="syz.3.1449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  467.841482][T11362] netlink: 72 bytes leftover after parsing attributes in process `syz.4.1450'.
[  468.383773][ T5134] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  469.171445][ T5931] usb 6-1: USB disconnect, device number 19
[  469.245749][T11383] loop5: detected capacity change from 0 to 7
[  469.253574][    C0] blk_print_req_error: 5 callbacks suppressed
[  469.253583][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  469.268784][    C0] buffer_io_error: 5 callbacks suppressed
[  469.268792][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  469.614185][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  469.623400][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  469.698271][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  469.707522][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  469.724207][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  469.733525][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  469.741517][T11383] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  469.789278][T11383] Buffer I/O error on dev loop5, logical block 0, async page read
[  469.809892][T11383] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  469.819540][T11383] Buffer I/O error on dev loop5, logical block 0, async page read
[  469.953640][T11383] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  470.001379][T11383] Buffer I/O error on dev loop5, logical block 0, async page read
[  470.011704][T11383] ldm_validate_partition_table(): Disk read failed.
[  470.094005][T11383] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  470.159855][T11383] Buffer I/O error on dev loop5, logical block 0, async page read
[  470.258360][T11383] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  470.268277][T11383] Buffer I/O error on dev loop5, logical block 0, async page read
[  470.277040][T11383] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  470.286297][T11383] Buffer I/O error on dev loop5, logical block 0, async page read
[  470.295291][T11383] Dev loop5: unable to read RDB block 0
[  470.304543][T11383]  loop5: unable to read partition table
[  470.311054][T11383] loop5: partition table beyond EOD, truncated
[  470.320149][T11383] loop_reread_partitions: partition scan of loop5 (���������C�j̖�P=ý?�}X���	���%��`��ր���{��֐�ȵ4FLQk݊) failed (rc=-5)
[  471.845475][   T30] kauditd_printk_skb: 47 callbacks suppressed
[  471.845490][   T30] audit: type=1400 audit(1762662445.243:1767): avc:  denied  { getattr } for  pid=11402 comm="syz.3.1459" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=32155 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  471.876128][    C1] vkms_vblank_simulate: vblank timer overrun
[  472.073514][T11412] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1460'.
[  472.155120][   T30] audit: type=1400 audit(1762662445.523:1768): avc:  denied  { write } for  pid=11409 comm="syz.3.1461" name="rtc0" dev="devtmpfs" ino=921 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  472.185673][T11412] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1460'.
[  472.318448][T11415] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1462'.
[  472.337402][T11415] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1462'.
[  473.222027][T11412] netlink: 'syz.5.1460': attribute type 21 has an invalid length.
[  473.254428][T11412] netlink: 128 bytes leftover after parsing attributes in process `syz.5.1460'.
[  473.337212][T11423] netlink: 165 bytes leftover after parsing attributes in process `syz.4.1463'.
[  473.654988][T11412] netlink: 'syz.5.1460': attribute type 5 has an invalid length.
[  473.693484][T11412] netlink: 'syz.5.1460': attribute type 6 has an invalid length.
[  473.701350][T11412] netlink: 3 bytes leftover after parsing attributes in process `syz.5.1460'.
[  475.840132][T11445] netlink: 320 bytes leftover after parsing attributes in process `syz.2.1467'.
[  477.488362][   T30] audit: type=1400 audit(1762662450.563:1769): avc:  denied  { bind } for  pid=11457 comm="syz.3.1471" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  477.716708][   T30] audit: type=1400 audit(1762662451.003:1770): avc:  denied  { remount } for  pid=11461 comm="syz.4.1472" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  478.614724][T11473] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1475'.
[  479.724458][T11487] xt_addrtype: both incoming and outgoing interface limitation cannot be selected
[  479.807236][T11491] binder: 11478:11491 ioctl 4018620d 0 returned -22
[  479.834027][T11488] mkiss: ax0: crc mode is auto.
[  479.853208][   T30] audit: type=1400 audit(1762662453.243:1771): avc:  denied  { ioctl } for  pid=11493 comm="syz.2.1480" path="socket:[32280]" dev="sockfs" ino=32280 ioctlcmd=0x581f scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  479.931222][ T5815] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  479.970226][ T5815] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  479.996990][ T5815] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  480.101966][ T5815] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  480.326048][ T5815] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  480.381684][   T30] audit: type=1400 audit(1762662453.773:1772): avc:  denied  { mounton } for  pid=11492 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  480.556783][T11492] lo speed is unknown, defaulting to 1000
[  481.506750][T11535] tipc: Enabled bearer <udp:syz2>, priority 10
[  481.758484][T11492] chnl_net:caif_netlink_parms(): no params data found
[  481.977821][T11499] syz.2.1480 (11499): drop_caches: 2
[  482.383592][ T5134] Bluetooth: hci5: command tx timeout
[  482.636215][   T10] tipc: Node number set to 3617270363
[  482.933815][T11492] bridge0: port 1(bridge_slave_0) entered blocking state
[  482.953523][T11492] bridge0: port 1(bridge_slave_0) entered disabled state
[  482.961439][T11492] bridge_slave_0: entered allmulticast mode
[  482.968902][T11492] bridge_slave_0: entered promiscuous mode
[  484.473472][ T5134] Bluetooth: hci5: command tx timeout
[  484.622579][T11492] bridge0: port 2(bridge_slave_1) entered blocking state
[  484.667559][T11492] bridge0: port 2(bridge_slave_1) entered disabled state
[  484.726664][T11492] bridge_slave_1: entered allmulticast mode
[  484.914950][T11492] bridge_slave_1: entered promiscuous mode
[  485.455646][T11492] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  485.501392][T11492] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  485.673035][   T30] audit: type=1326 audit(1762662459.063:1773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11558 comm="syz.2.1487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fade7f8f6c9 code=0x7ffc0000
[  485.696524][    C1] vkms_vblank_simulate: vblank timer overrun
[  486.161598][T11492] team0: Port device team_slave_0 added
[  486.169948][T11492] team0: Port device team_slave_1 added
[  486.574858][   T30] audit: type=1326 audit(1762662459.063:1774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11558 comm="syz.2.1487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fade7f8f6c9 code=0x7ffc0000
[  486.598349][    C1] vkms_vblank_simulate: vblank timer overrun
[  486.605744][   T30] audit: type=1326 audit(1762662459.063:1775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11558 comm="syz.2.1487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fade7f8f6c9 code=0x7ffc0000
[  486.629139][    C1] vkms_vblank_simulate: vblank timer overrun
[  487.165359][ T5134] Bluetooth: hci5: command tx timeout
[  487.182156][T11573] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -12
[  487.191742][T11573] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -12
[  487.201545][T11573] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  487.256310][   T30] audit: type=1326 audit(1762662459.063:1776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11558 comm="syz.2.1487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fade7f8f6c9 code=0x7ffc0000
[  487.279778][    C1] vkms_vblank_simulate: vblank timer overrun
[  487.292571][   T30] audit: type=1326 audit(1762662459.063:1777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11558 comm="syz.2.1487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fade7f8f6c9 code=0x7ffc0000
[  487.316063][    C1] vkms_vblank_simulate: vblank timer overrun
[  487.323018][   T30] audit: type=1326 audit(1762662459.063:1778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11558 comm="syz.2.1487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fade7f8f6c9 code=0x7ffc0000
[  487.346414][    C1] vkms_vblank_simulate: vblank timer overrun
[  487.643574][   T30] audit: type=1326 audit(1762662459.063:1779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11558 comm="syz.2.1487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fade7f8f6c9 code=0x7ffc0000
[  487.667301][   T30] audit: type=1326 audit(1762662459.063:1780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11558 comm="syz.2.1487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fade7f8f6c9 code=0x7ffc0000
[  488.114927][   T30] audit: type=1326 audit(1762662459.103:1781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11558 comm="syz.2.1487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fade7f8f6c9 code=0x7ffc0000
[  488.142128][T11585] A link change request failed with some changes committed already. Interface tunl0 may have been left with an inconsistent configuration, please check.
[  488.163830][T11492] batman_adv: batadv0: Adding interface: batadv_slave_0
[  488.173412][T11492] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  488.200246][T11492] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  488.213947][   T30] audit: type=1326 audit(1762662459.103:1782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11558 comm="syz.2.1487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fade7f8f6c9 code=0x7ffc0000
[  488.362406][T11492] batman_adv: batadv0: Adding interface: batadv_slave_1
[  488.369477][T11492] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  488.396575][T11492] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  488.436511][T11593] mkiss: ax0: crc mode is auto.
[  488.451034][T11593] binder: 11589:11593 ioctl 4018620d 0 returned -22
[  488.661219][T11492] hsr_slave_0: entered promiscuous mode
[  488.667568][T11492] hsr_slave_1: entered promiscuous mode
[  488.674396][T11492] debugfs: 'hsr0' already exists in 'hsr'
[  488.680185][T11492] Cannot create hsr debugfs directory
[  489.223544][ T5134] Bluetooth: hci5: command tx timeout
[  490.170975][T11492] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  490.199801][T11492] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  490.341869][T11492] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  490.375341][T11492] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  491.269252][T11492] 8021q: adding VLAN 0 to HW filter on device bond0
[  491.372094][T11492] 8021q: adding VLAN 0 to HW filter on device team0
[  491.382397][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[  491.389596][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[  491.425127][ T4555] bridge0: port 2(bridge_slave_1) entered blocking state
[  491.432299][ T4555] bridge0: port 2(bridge_slave_1) entered forwarding state
[  491.858570][   T30] kauditd_printk_skb: 24 callbacks suppressed
[  491.858585][   T30] audit: type=1326 audit(1762662465.233:1807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11623 comm="syz.2.1499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fade7f8f6c9 code=0x7ffc0000
[  492.045544][T11633] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=none:owns=io+mem
[  492.288203][T11634] netlink: 'syz.4.1500': attribute type 2 has an invalid length.
[  492.302650][   T30] audit: type=1326 audit(1762662465.243:1808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11623 comm="syz.2.1499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fade7f8f6c9 code=0x7ffc0000
[  492.333865][T11634] : entered promiscuous mode
[  492.366950][   T30] audit: type=1326 audit(1762662465.243:1809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11623 comm="syz.2.1499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7fade7f8f6c9 code=0x7ffc0000
[  492.445131][   T30] audit: type=1326 audit(1762662465.243:1810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11623 comm="syz.2.1499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fade7f8f6c9 code=0x7ffc0000
[  492.562716][T11492] 8021q: adding VLAN 0 to HW filter on device batadv0
[  492.647656][   T30] audit: type=1326 audit(1762662465.243:1811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11623 comm="syz.2.1499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fade7f8f6c9 code=0x7ffc0000
[  492.672305][   T30] audit: type=1326 audit(1762662465.243:1812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11623 comm="syz.2.1499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=314 compat=0 ip=0x7fade7f8f6c9 code=0x7ffc0000
[  492.695789][    C1] vkms_vblank_simulate: vblank timer overrun
[  492.974187][   T30] audit: type=1326 audit(1762662465.243:1813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11623 comm="syz.2.1499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fade7f8f6c9 code=0x7ffc0000
[  493.210727][   T30] audit: type=1326 audit(1762662465.243:1814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11623 comm="syz.2.1499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fade7f8f6c9 code=0x7ffc0000
[  493.244063][   T30] audit: type=1326 audit(1762662465.243:1815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11623 comm="syz.2.1499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fade7f8f6c9 code=0x7ffc0000
[  493.317581][   T43] libceph: connect (1)[c::]:6789 error -101
[  493.329976][   T43] libceph: mon0 (1)[c::]:6789 connect error
[  493.365662][   T43] libceph: connect (1)[c::]:6789 error -101
[  493.387749][   T43] libceph: mon0 (1)[c::]:6789 connect error
[  493.664492][   T43] libceph: connect (1)[c::]:6789 error -101
[  493.684807][   T43] libceph: mon0 (1)[c::]:6789 connect error
[  493.692160][   T30] audit: type=1326 audit(1762662465.243:1816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11623 comm="syz.2.1499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fade7f8f6c9 code=0x7ffc0000
[  493.696117][   T43] libceph: connect (1)[b::]:6789 error -101
[  493.733697][   T43] libceph: mon0 (1)[b::]:6789 connect error
[  493.795917][T11639] ceph: No mds server is up or the cluster is laggy
[  493.795929][T11646] ceph: No mds server is up or the cluster is laggy
[  493.931679][T11648] nvme_fabrics: missing parameter 'transport=%s'
[  493.953469][T11648] nvme_fabrics: missing parameter 'nqn=%s'
[  494.212054][T11661] openvswitch: netlink: Duplicate key (type 1).
[  494.989346][T11492] veth0_vlan: entered promiscuous mode
[  495.014830][T11492] veth1_vlan: entered promiscuous mode
[  495.073462][ T5878] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  495.092445][T11492] veth0_macvtap: entered promiscuous mode
[  495.237063][T11492] veth1_macvtap: entered promiscuous mode
[  495.256815][T11675] fuse: Unknown parameter 'fd0x0000000000000005'
[  495.279470][   T10] libceph: connect (1)[c::]:6789 error -101
[  495.285903][   T10] libceph: mon0 (1)[c::]:6789 connect error
[  495.326979][ T5878] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  495.696744][  T976] libceph: connect (1)[c::]:6789 error -101
[  496.143838][ T5878] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  496.157847][ T5878] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  496.167677][ T5878] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  496.173607][  T976] libceph: mon0 (1)[c::]:6789 connect error
[  496.181685][ T5878] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  496.195682][ T5878] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  496.203822][ T5878] usb 5-1: Manufacturer: syz
[  496.209640][ T5878] usb 5-1: config 0 descriptor??
[  496.247769][  T122] block nbd0: Possible stuck request ffff88802622e000: control (read@0,1024B). Runtime 360 seconds
[  496.258518][  T122] block nbd0: Possible stuck request ffff88802622e1c0: control (read@1024,1024B). Runtime 360 seconds
[  496.269571][  T122] block nbd0: Possible stuck request ffff88802622e380: control (read@2048,1024B). Runtime 360 seconds
[  496.280570][  T122] block nbd0: Possible stuck request ffff88802622e540: control (read@3072,1024B). Runtime 360 seconds
[  496.352735][T11675] ceph: No mds server is up or the cluster is laggy
[  496.603924][T11688] fuse: Bad value for 'fd'
[  496.850429][ T5878] appleir 0003:05AC:8243.0008: unknown main item tag 0x0
[  496.869118][ T5878] appleir 0003:05AC:8243.0008: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.4-1/input0
[  496.957396][T11492] batman_adv: batadv0: Interface activated: batadv_slave_0
[  497.035503][T11492] batman_adv: batadv0: Interface activated: batadv_slave_1
[  497.190569][T10751] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  497.229255][T10751] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  497.454569][T11665] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  497.529100][T11665] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  497.577719][T11653] usb 5-1: USB disconnect, device number 10
[  497.692125][T10751] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  497.721522][T10751] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  497.919891][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  497.953550][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  498.019024][T10749] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  498.035441][T10749] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  498.156481][   T30] kauditd_printk_skb: 18 callbacks suppressed
[  498.156495][   T30] audit: type=1400 audit(1762662471.553:1835): avc:  denied  { mounton } for  pid=11492 comm="syz-executor" path="/root/syzkaller.qmICce/syz-tmp" dev="sda1" ino=2049 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[  498.190714][   T30] audit: type=1400 audit(1762662471.553:1836): avc:  denied  { mounton } for  pid=11492 comm="syz-executor" path="/root/syzkaller.qmICce/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[  498.223571][   T30] audit: type=1400 audit(1762662471.553:1837): avc:  denied  { mounton } for  pid=11492 comm="syz-executor" path="/root/syzkaller.qmICce/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=33208 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[  498.670159][   T30] audit: type=1400 audit(1762662471.593:1838): avc:  denied  { mounton } for  pid=11492 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=2784 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[  498.706860][   T30] audit: type=1400 audit(1762662471.593:1839): avc:  denied  { mount } for  pid=11492 comm="syz-executor" name="/" dev="gadgetfs" ino=8260 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  498.941278][   T30] audit: type=1400 audit(1762662471.593:1840): avc:  denied  { mount } for  pid=11492 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  499.667247][T11719] syz.2.1513(11719): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[  499.772181][   T30] audit: type=1400 audit(1762662471.593:1841): avc:  denied  { mounton } for  pid=11492 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[  500.384254][T11722] fuse: Bad value for 'fd'
[  500.423894][   T30] audit: type=1400 audit(1762662472.213:1842): avc:  denied  { mounton } for  pid=11692 comm="syz.3.1510" path="/307/file0" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=file permissive=1
[  500.754349][T11726] can0: slcan on ttyS3.
[  501.058748][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  501.065131][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  501.145836][T11726] can0 (unregistered): slcan off ttyS3.
[  502.370959][   T30] audit: type=1400 audit(1762662475.763:1843): avc:  denied  { accept } for  pid=11739 comm="syz.3.1518" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  502.819345][   T30] audit: type=1400 audit(1762662476.213:1844): avc:  denied  { unmount } for  pid=5816 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  505.644227][T11775] tmpfs: Unknown parameter 'usrquota_inode_hardli'
[  505.943471][   T10] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[  506.221267][T11781] overlayfs: failed to resolve './file1': -2
[  506.229943][   T10] usb 6-1: Using ep0 maxpacket: 8
[  506.246092][   T10] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  506.665295][   T10] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  506.715602][   T10] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  506.725872][   T10] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  506.748650][   T10] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  506.764309][   T10] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  506.776609][   T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  507.020680][   T10] usb 6-1: GET_CAPABILITIES returned 0
[  507.036927][   T10] usbtmc 6-1:16.0: can't read capabilities
[  507.693406][   T30] audit: type=1400 audit(1762662480.653:1845): avc:  denied  { connect } for  pid=11786 comm="syz.3.1529" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  507.738719][T11795] netlink: 'syz.4.1531': attribute type 4 has an invalid length.
[  507.803985][T11797] ptrace attach of "./syz-executor exec"[5807] was attempted by "./syz-executor exec"[11797]
[  507.980954][ T5931] usb 6-1: USB disconnect, device number 20
[  508.511517][   T30] audit: type=1400 audit(1762662481.903:1846): avc:  denied  { connect } for  pid=11788 comm="syz.2.1530" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  508.532003][   T30] audit: type=1400 audit(1762662481.903:1847): avc:  denied  { shutdown } for  pid=11788 comm="syz.2.1530" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  508.873474][T11814] netlink: 'syz.3.1533': attribute type 4 has an invalid length.
[  508.954608][T11816] netlink: 'syz.3.1533': attribute type 4 has an invalid length.
[  509.089062][T11815] mkiss: ax0: crc mode is auto.
[  511.563434][ T5815] Bluetooth: hci5: command 0x0405 tx timeout
[  512.695546][   T30] audit: type=1400 audit(1762662486.083:1848): avc:  denied  { setopt } for  pid=11844 comm="syz.6.1541" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  512.990230][   T30] audit: type=1326 audit(1762662486.383:1849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11844 comm="syz.6.1541" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f0c9458f6c9 code=0x0
[  513.823046][T11871] netlink: 'syz.6.1544': attribute type 4 has an invalid length.
[  514.166714][   T30] audit: type=1400 audit(1762662487.193:1850): avc:  denied  { create } for  pid=11866 comm="syz.6.1544" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[  514.392805][T11874] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  514.799832][T11878] ntfs3(nullb0): Primary boot signature is not NTFS.
[  514.810428][T11878] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  515.826723][T11887] binder: 11881:11887 ioctl 4018620d 0 returned -22
[  515.949998][T11887] binder: 11881:11887 ioctl c0306201 200000000080 returned -14
[  516.377317][   T43] usb 6-1: new full-speed USB device number 21 using dummy_hcd
[  516.604704][   T43] usb 6-1: config 0 interface 0 altsetting 8 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  516.643291][T11895] netlink: 14 bytes leftover after parsing attributes in process `syz.3.1551'.
[  516.712573][   T43] usb 6-1: config 0 interface 0 has no altsetting 0
[  516.809974][T11893] syzkaller0: entered promiscuous mode
[  516.832962][   T43] usb 6-1: New USB device found, idVendor=1e7d, idProduct=3138, bcdDevice= 0.00
[  516.862136][T11893] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1550'.
[  516.887658][   T43] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  516.962405][   T43] usb 6-1: config 0 descriptor??
[  516.972371][T11891] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  517.185152][T11900] netlink: 14 bytes leftover after parsing attributes in process `syz.6.1552'.
[  518.915663][   T30] audit: type=1400 audit(1762662491.093:1851): avc:  denied  { rename } for  pid=11901 comm="syz.4.1553" name="file0" dev="tmpfs" ino=1865 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  519.700302][   T43] usbhid 6-1:0.0: can't add hid device: -71
[  519.714842][   T43] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  519.767157][   T43] usb 6-1: USB disconnect, device number 21
[  520.589402][T11917] netlink: 'syz.4.1554': attribute type 1 has an invalid length.
[  521.500723][   T30] audit: type=1400 audit(1762662494.878:1852): avc:  denied  { block_suspend } for  pid=11927 comm="syz.5.1557" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  522.909169][T11900] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  522.923806][T11900] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  523.035222][T11900] bond0 (unregistering): Released all slaves
[  523.076176][T11921] macvlan2: entered promiscuous mode
[  523.081470][T11921] macvlan2: entered allmulticast mode
[  523.544877][T11921] bond0: entered promiscuous mode
[  523.568381][T11921] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  523.601495][T11921] bond0: left promiscuous mode
[  523.814185][   T10] usb 3-1: new low-speed USB device number 18 using dummy_hcd
[  524.198788][   T10] usb 3-1: device descriptor read/64, error -71
[  524.416231][T11950] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  524.558845][   T10] usb 3-1: new low-speed USB device number 19 using dummy_hcd
[  524.576606][  T976] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  524.734136][   T10] usb 3-1: device descriptor read/64, error -71
[  524.767714][  T976] usb 4-1: Using ep0 maxpacket: 16
[  524.802022][  T976] usb 4-1: config 0 has an invalid descriptor of length 100, skipping remainder of the config
[  524.828331][  T976] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  524.839025][  T976] usb 4-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  524.849105][  T976] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  524.858540][   T10] usb usb3-port1: attempt power cycle
[  524.899363][  T976] usb 4-1: config 0 descriptor??
[  525.192559][T11942] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  525.201231][T11942] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  525.213735][   T10] usb 3-1: new low-speed USB device number 20 using dummy_hcd
[  525.625055][   T10] usb 3-1: device descriptor read/8, error -71
[  525.863472][   T10] usb 3-1: new low-speed USB device number 21 using dummy_hcd
[  526.010210][   T10] usb 3-1: device descriptor read/8, error -71
[  526.054375][T11961] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1564'.
[  526.555793][   T10] usb usb3-port1: unable to enumerate USB device
[  526.556850][T11961] overlayfs: failed to resolve './bus': -2
[  526.626304][  T122] block nbd0: Possible stuck request ffff88802622e000: control (read@0,1024B). Runtime 390 seconds
[  526.631351][   T30] audit: type=1400 audit(1762662500.018:1853): avc:  denied  { read } for  pid=11965 comm="syz.2.1565" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  526.656673][    C0] vkms_vblank_simulate: vblank timer overrun
[  526.664700][  T122] block nbd0: Possible stuck request ffff88802622e1c0: control (read@1024,1024B). Runtime 390 seconds
[  526.677453][  T122] block nbd0: Possible stuck request ffff88802622e380: control (read@2048,1024B). Runtime 390 seconds
[  526.678059][  T122] block nbd0: Possible stuck request ffff88802622e540: control (read@3072,1024B). Runtime 390 seconds
[  526.775033][T11653] usb 4-1: USB disconnect, device number 17
[  527.540326][   T30] audit: type=1400 audit(1762662500.928:1854): avc:  denied  { mount } for  pid=11965 comm="syz.2.1565" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[  527.648210][T11977] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  527.692421][T10751] Bluetooth: hci6: Frame reassembly failed (-84)
[  527.706014][   T30] audit: type=1326 audit(1762662501.058:1855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11972 comm="syz.3.1567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  527.769489][T11980] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  527.789392][   T30] audit: type=1326 audit(1762662501.058:1856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11972 comm="syz.3.1567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  527.870295][   T30] audit: type=1326 audit(1762662501.058:1857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11972 comm="syz.3.1567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  528.045714][   T30] audit: type=1326 audit(1762662501.058:1858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11972 comm="syz.3.1567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  528.153988][   T30] audit: type=1326 audit(1762662501.058:1859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11972 comm="syz.3.1567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  528.238844][   T30] audit: type=1326 audit(1762662501.058:1860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11972 comm="syz.3.1567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  528.308655][   T30] audit: type=1326 audit(1762662501.058:1861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11972 comm="syz.3.1567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  528.334647][   T30] audit: type=1326 audit(1762662501.058:1862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11972 comm="syz.3.1567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  528.536807][T11986] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  529.744747][ T5815] Bluetooth: hci6: Opcode 0x1003 failed: -110
[  530.772591][T12010] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  532.327448][T12022] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  532.537977][T12023] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  533.019747][T12030] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  533.339147][T12035] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  534.355678][T12047] xt_connbytes: Forcing CT accounting to be enabled
[  534.379548][   T30] kauditd_printk_skb: 48 callbacks suppressed
[  534.379563][   T30] audit: type=1400 audit(1762662507.758:1911): avc:  denied  { accept } for  pid=12043 comm="syz.3.1582" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  534.678336][T12052] ALSA: mixer_oss: invalid OSS volume 'PHONEX�0�IN'
[  534.913535][   T30] audit: type=1400 audit(1762662508.088:1912): avc:  denied  { accept } for  pid=12045 comm="syz.2.1583" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  535.663650][T12062] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  535.874703][T12063] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  538.446331][T12083] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  538.860858][ T5815] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  538.870572][ T5815] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  538.878719][ T5815] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  538.886274][ T5815] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  538.894833][ T5815] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  539.435965][T12089] lo speed is unknown, defaulting to 1000
[  539.474244][T12101] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  539.833578][T12102] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  540.943884][ T5134] Bluetooth: hci6: command tx timeout
[  540.957624][T12089] chnl_net:caif_netlink_parms(): no params data found
[  541.222993][   T30] audit: type=1400 audit(1762662514.608:1913): avc:  denied  { name_connect } for  pid=12120 comm="syz.4.1597" dest=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=sctp_socket permissive=1
[  541.544065][T12132] ubi0: attaching mtd0
[  541.549647][T12132] ubi0: scanning is finished
[  541.554353][T12132] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  541.728713][T12089] bridge0: port 1(bridge_slave_0) entered blocking state
[  541.893592][T12089] bridge0: port 1(bridge_slave_0) entered disabled state
[  541.902466][T12089] bridge_slave_0: entered allmulticast mode
[  541.993468][T12089] bridge_slave_0: entered promiscuous mode
[  542.102906][T12132] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  542.233130][T12131] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  542.371414][T12137] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  542.730922][T12089] bridge0: port 2(bridge_slave_1) entered blocking state
[  542.748843][T12089] bridge0: port 2(bridge_slave_1) entered disabled state
[  542.770727][T12089] bridge_slave_1: entered allmulticast mode
[  542.834391][T12089] bridge_slave_1: entered promiscuous mode
[  542.882031][T12140] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  543.047025][ T5134] Bluetooth: hci6: command tx timeout
[  543.288549][T12145] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  543.506975][T12089] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  543.529325][T12152] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  543.675735][T12089] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  543.926346][T12089] team0: Port device team_slave_0 added
[  543.932688][T12158] netlink: 'syz.4.1603': attribute type 1 has an invalid length.
[  544.046097][T12158] 8021q: adding VLAN 0 to HW filter on device bond1
[  544.107343][T12089] team0: Port device team_slave_1 added
[  544.919013][T12160] bond1: (slave veth7): Enslaving as an active interface with a down link
[  544.963481][T12162] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  544.994855][T12158] vlan2: entered allmulticast mode
[  545.000082][T12158] veth1: entered allmulticast mode
[  545.005777][T12158] veth1: entered promiscuous mode
[  545.011231][T12158] veth1: left promiscuous mode
[  545.017146][T12158] bond1: (slave vlan2): making interface the new active one
[  545.025279][T12158] veth1: entered promiscuous mode
[  545.031021][T12158] vlan2: entered promiscuous mode
[  545.036442][T12158] bond1: (slave vlan2): Enslaving as an active interface with an up link
[  545.089340][T12169] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  545.143474][ T5134] Bluetooth: hci6: command tx timeout
[  545.177619][T12089] batman_adv: batadv0: Adding interface: batadv_slave_0
[  545.193471][T12089] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  545.292679][T12089] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  545.342170][T12175] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  545.393150][T12089] batman_adv: batadv0: Adding interface: batadv_slave_1
[  545.443729][T12089] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  545.591317][T12089] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  545.852130][T12089] hsr_slave_0: entered promiscuous mode
[  545.860238][T12089] hsr_slave_1: entered promiscuous mode
[  545.868720][T12089] debugfs: 'hsr0' already exists in 'hsr'
[  545.878059][T12089] Cannot create hsr debugfs directory
[  546.346295][T12184] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  546.366779][T12185] can0: slcan on ttyS3.
[  546.724365][T12186] can0 (unregistered): slcan off ttyS3.
[  547.148315][T12193] overlayfs: missing 'lowerdir'
[  547.153597][   T30] audit: type=1400 audit(1762662520.538:1914): avc:  denied  { mounton } for  pid=12190 comm="syz.2.1608" path="/319/file0" dev="devtmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=dir permissive=1
[  547.197592][ T5134] Bluetooth: hci6: command tx timeout
[  547.645273][T12089] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  547.872891][   T30] audit: type=1400 audit(1762662521.258:1915): avc:  denied  { read write } for  pid=12201 comm="syz.3.1611" name="uhid" dev="devtmpfs" ino=1273 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  547.963623][T12089] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  548.041477][T12089] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  548.235601][T12089] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  548.438852][   T30] audit: type=1400 audit(1762662521.288:1916): avc:  denied  { open } for  pid=12201 comm="syz.3.1611" path="/dev/uhid" dev="devtmpfs" ino=1273 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  548.644528][T12208] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  549.352204][T12089] 8021q: adding VLAN 0 to HW filter on device bond0
[  549.403125][   T30] audit: type=1400 audit(1762662522.788:1917): avc:  denied  { unmount } for  pid=5807 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  549.706152][T12222] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  549.724593][T12089] 8021q: adding VLAN 0 to HW filter on device team0
[  549.807629][ T4555] bridge0: port 1(bridge_slave_0) entered blocking state
[  549.814720][ T4555] bridge0: port 1(bridge_slave_0) entered forwarding state
[  549.887318][ T4555] bridge0: port 2(bridge_slave_1) entered blocking state
[  549.894413][ T4555] bridge0: port 2(bridge_slave_1) entered forwarding state
[  550.222423][T12230] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  551.064655][T12089] 8021q: adding VLAN 0 to HW filter on device batadv0
[  551.948428][T12260] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  552.632949][T12265] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  553.423271][T12089] veth0_vlan: entered promiscuous mode
[  553.475285][T12277] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  553.501853][   T30] audit: type=1400 audit(1762662526.858:1918): avc:  denied  { mount } for  pid=12276 comm="syz.3.1620" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  553.532174][T12089] veth1_vlan: entered promiscuous mode
[  553.538499][   T30] audit: type=1400 audit(1762662526.918:1919): avc:  denied  { unmount } for  pid=5820 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  553.731617][T12089] veth0_macvtap: entered promiscuous mode
[  553.782368][T12089] veth1_macvtap: entered promiscuous mode
[  554.118130][T12282] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  554.298618][T12287] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  554.359070][T12089] batman_adv: batadv0: Interface activated: batadv_slave_0
[  554.546408][T12089] batman_adv: batadv0: Interface activated: batadv_slave_1
[  554.763782][ T2958] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  554.785466][ T2958] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  554.785941][T10749] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  554.843599][T10749] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  554.872039][T12293] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  554.963257][ T4555] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  554.972041][ T4555] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  555.167701][ T4555] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  555.390326][T12299] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  555.462291][ T4555] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  555.558448][T12308] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  556.073680][T12311] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  556.903190][  T122] block nbd0: Possible stuck request ffff88802622e000: control (read@0,1024B). Runtime 420 seconds
[  556.915648][  T122] block nbd0: Possible stuck request ffff88802622e1c0: control (read@1024,1024B). Runtime 420 seconds
[  556.926726][  T122] block nbd0: Possible stuck request ffff88802622e380: control (read@2048,1024B). Runtime 420 seconds
[  556.937748][  T122] block nbd0: Possible stuck request ffff88802622e540: control (read@3072,1024B). Runtime 420 seconds
[  556.954623][T12312] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  557.592119][T12327] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  559.654905][T12348] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  561.409260][ T5927] IPVS: starting estimator thread 0...
[  561.543544][T12360] IPVS: using max 42 ests per chain, 100800 per kthread
[  561.714516][   T55] vlan2: left promiscuous mode
[  562.013848][T12375] vimc link validate: Sensor B:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 1:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  562.468278][T12372] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  562.487941][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  562.494740][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  562.887637][T12369] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  562.900586][T12369] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  563.430058][T12390] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  563.842078][T12361] binder: 12354:12361 ioctl c0306201 200000000540 returned -22
[  564.427466][T12398] netlink: 'syz.3.1642': attribute type 4 has an invalid length.
[  566.091365][T12409] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  566.347200][   T30] audit: type=1400 audit(1762662539.728:1920): avc:  denied  { read } for  pid=12410 comm="syz.6.1645" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  566.447646][   T30] audit: type=1400 audit(1762662539.818:1921): avc:  denied  { setopt } for  pid=12410 comm="syz.6.1645" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  566.512985][   T30] audit: type=1400 audit(1762662539.818:1922): avc:  denied  { append } for  pid=12410 comm="syz.6.1645" name="sg0" dev="devtmpfs" ino=747 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  566.688812][T12419] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  573.962286][T12479] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  574.100045][T12483] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  574.269887][   T30] audit: type=1326 audit(1762662547.658:1923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12480 comm="syz.3.1660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  574.422732][   T30] audit: type=1326 audit(1762662547.678:1924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12480 comm="syz.3.1660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  574.568101][   T30] audit: type=1326 audit(1762662547.678:1925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12480 comm="syz.3.1660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  574.630895][   T12] Bluetooth: hci7: Frame reassembly failed (-84)
[  574.729577][   T30] audit: type=1326 audit(1762662547.678:1926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12480 comm="syz.3.1660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  574.753397][   T30] audit: type=1326 audit(1762662547.678:1927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12480 comm="syz.3.1660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  574.777508][   T30] audit: type=1326 audit(1762662547.678:1928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12480 comm="syz.3.1660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  574.804769][   T30] audit: type=1326 audit(1762662547.678:1929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12480 comm="syz.3.1660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  574.841447][   T30] audit: type=1326 audit(1762662547.678:1930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12480 comm="syz.3.1660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  574.963474][   T30] audit: type=1326 audit(1762662547.678:1931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12480 comm="syz.3.1660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  575.083651][   T30] audit: type=1326 audit(1762662547.678:1932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12480 comm="syz.3.1660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fa86438e17f code=0x7ffc0000
[  575.114911][T12493] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  575.317569][T12496] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  575.894841][T12500] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  576.823511][ T5134] Bluetooth: hci7: Opcode 0x1003 failed: -110
[  577.718628][T12520] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  577.874678][T12526] sp0: Synchronizing with TNC
[  578.719407][T12536] sp1: Synchronizing with TNC
[  579.362200][T12546] binder: 12541:12546 ioctl 4018620d 0 returned -22
[  579.371968][T12545] mkiss: ax0: crc mode is auto.
[  579.651474][T12551] sp0: Synchronizing with TNC
[  581.256689][T12564] sp0: Synchronizing with TNC
[  581.858836][T12577] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  583.214607][T12578] sp1: Synchronizing with TNC
[  584.139765][T12594] mkiss: ax0: crc mode is auto.
[  584.166918][T12594] binder: 12591:12594 ioctl 4018620d 0 returned -22
[  584.724272][T12601] tipc: Started in network mode
[  584.729203][T12601] tipc: Node identity ac14140f, cluster identity 4711
[  584.736569][T12601] tipc: New replicast peer: 255.255.255.255
[  584.746083][T12601] tipc: Enabled bearer <udp:syz2>, priority 10
[  584.894648][T12603] netlink: 'syz.3.1684': attribute type 4 has an invalid length.
[  585.720454][T12614] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  585.974598][ T5927] tipc: Node number set to 2886997007
[  587.551920][  T122] block nbd0: Possible stuck request ffff88802622e000: control (read@0,1024B). Runtime 450 seconds
[  587.564217][  T122] block nbd0: Possible stuck request ffff88802622e1c0: control (read@1024,1024B). Runtime 450 seconds
[  587.587621][  T122] block nbd0: Possible stuck request ffff88802622e380: control (read@2048,1024B). Runtime 450 seconds
[  587.598761][  T122] block nbd0: Possible stuck request ffff88802622e540: control (read@3072,1024B). Runtime 450 seconds
[  588.144623][   T30] kauditd_printk_skb: 27 callbacks suppressed
[  588.144638][   T30] audit: type=1326 audit(1762662561.538:1960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12625 comm="syz.4.1689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  588.174120][    C0] vkms_vblank_simulate: vblank timer overrun
[  588.643455][   T30] audit: type=1326 audit(1762662561.538:1961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12625 comm="syz.4.1689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  588.673159][T12636] sp0: Synchronizing with TNC
[  588.738445][ T4555] Bluetooth: hci7: Frame reassembly failed (-84)
[  588.761558][   T30] audit: type=1326 audit(1762662561.538:1962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12625 comm="syz.4.1689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  588.935858][   T30] audit: type=1326 audit(1762662561.538:1963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12625 comm="syz.4.1689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  588.971270][   T30] audit: type=1326 audit(1762662561.538:1964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12625 comm="syz.4.1689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  589.123800][   T30] audit: type=1326 audit(1762662561.538:1965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12625 comm="syz.4.1689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  589.734794][   T30] audit: type=1326 audit(1762662561.538:1966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12625 comm="syz.4.1689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  590.326067][   T30] audit: type=1326 audit(1762662561.538:1967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12625 comm="syz.4.1689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  590.350990][   T30] audit: type=1326 audit(1762662561.538:1968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12625 comm="syz.4.1689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  590.443855][   T30] audit: type=1326 audit(1762662561.538:1969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12625 comm="syz.4.1689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fb80df8e17f code=0x7ffc0000
[  590.797655][ T5134] Bluetooth: hci7: command 0x1003 tx timeout
[  590.827010][ T5815] Bluetooth: hci7: Opcode 0x1003 failed: -110
[  592.121684][T12663] sp0: Synchronizing with TNC
[  592.240935][T12665] sp1: Synchronizing with TNC
[  592.628856][T12678] sp2: Synchronizing with TNC
[  592.675900][T12680] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  592.765755][T12679] sp3: Synchronizing with TNC
[  594.302898][T12692] sp0: Synchronizing with TNC
[  595.609319][T12707] sp0: Synchronizing with TNC
[  596.436818][   T30] kauditd_printk_skb: 29 callbacks suppressed
[  596.436836][   T30] audit: type=1326 audit(1762662569.808:1999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12711 comm="syz.4.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  596.659172][   T30] audit: type=1326 audit(1762662569.808:2000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12711 comm="syz.4.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  596.689432][ T4555] Bluetooth: hci7: Frame reassembly failed (-84)
[  596.719643][   T30] audit: type=1326 audit(1762662569.928:2001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12711 comm="syz.4.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  596.745383][   T30] audit: type=1326 audit(1762662569.928:2002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12711 comm="syz.4.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  596.770453][   T30] audit: type=1326 audit(1762662569.928:2003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12711 comm="syz.4.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  596.795654][   T30] audit: type=1326 audit(1762662569.928:2004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12711 comm="syz.4.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  596.819745][   T30] audit: type=1326 audit(1762662569.928:2005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12711 comm="syz.4.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  596.843783][   T30] audit: type=1326 audit(1762662569.928:2006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12711 comm="syz.4.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  596.872507][   T30] audit: type=1326 audit(1762662569.948:2007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12711 comm="syz.4.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  596.913588][   T30] audit: type=1326 audit(1762662569.948:2008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12711 comm="syz.4.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  597.061963][T12720] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  598.589461][T12731] sp0: Synchronizing with TNC
[  598.623506][ T5815] Bluetooth: hci7: Opcode 0x1003 failed: -110
[  598.775102][T12735] sp1: Synchronizing with TNC
[  599.294760][T12748] sp2: Synchronizing with TNC
[  601.127507][T12765] sp0: Synchronizing with TNC
[  601.412638][T12768] sp1: Synchronizing with TNC
[  601.990935][   T30] kauditd_printk_skb: 32 callbacks suppressed
[  601.990948][   T30] audit: type=1326 audit(1762662575.308:2041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12776 comm="syz.4.1723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  602.461557][   T30] audit: type=1326 audit(1762662575.308:2042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12776 comm="syz.4.1723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  602.538042][   T30] audit: type=1326 audit(1762662575.308:2043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12776 comm="syz.4.1723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  602.605035][T12781] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  602.632156][   T30] audit: type=1326 audit(1762662575.308:2044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12776 comm="syz.4.1723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=314 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  602.977674][   T30] audit: type=1326 audit(1762662575.308:2045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12776 comm="syz.4.1723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  603.088688][   T36] Bluetooth: hci7: Frame reassembly failed (-84)
[  603.108756][   T30] audit: type=1326 audit(1762662575.328:2046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12776 comm="syz.4.1723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  603.210335][   T30] audit: type=1326 audit(1762662575.328:2047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12776 comm="syz.4.1723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  603.393926][   T30] audit: type=1326 audit(1762662575.348:2048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12776 comm="syz.4.1723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  603.442779][   T30] audit: type=1326 audit(1762662575.348:2049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12776 comm="syz.4.1723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  603.479012][T12800] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  603.496923][   T30] audit: type=1326 audit(1762662575.408:2050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12776 comm="syz.4.1723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fb80df8f6c9 code=0x7ffc0000
[  603.563675][T12803] sp0: Synchronizing with TNC
[  603.682918][T12804] sp1: Synchronizing with TNC
[  605.382333][ T5134] Bluetooth: hci7: command 0x1003 tx timeout
[  605.413316][ T5815] Bluetooth: hci7: Opcode 0x1003 failed: -110
[  605.428785][T12815] sp0: Synchronizing with TNC
[  609.123936][T12845] sp0: Synchronizing with TNC
[  609.500988][T12863] sp1: Synchronizing with TNC
[  609.636706][T12865] sp2: Synchronizing with TNC
[  613.486263][T12900] sp0: Synchronizing with TNC
[  614.038534][T12906] sp1: Synchronizing with TNC
[  616.214818][T12934] sp0: Synchronizing with TNC
[  616.993859][T12940] binder: 12924:12940 ioctl 4018620d 0 returned -22
[  617.028496][T12933] mkiss: ax0: crc mode is auto.
[  618.162537][  T122] block nbd0: Possible stuck request ffff88802622e000: control (read@0,1024B). Runtime 480 seconds
[  618.193890][  T122] block nbd0: Possible stuck request ffff88802622e1c0: control (read@1024,1024B). Runtime 480 seconds
[  618.213381][  T122] block nbd0: Possible stuck request ffff88802622e380: control (read@2048,1024B). Runtime 480 seconds
[  618.253245][  T122] block nbd0: Possible stuck request ffff88802622e540: control (read@3072,1024B). Runtime 480 seconds
[  619.614582][T12961] sp0: Synchronizing with TNC
[  619.751255][T12964] sp1: Synchronizing with TNC
[  620.050862][   T30] kauditd_printk_skb: 43 callbacks suppressed
[  620.059410][   T30] audit: type=1326 audit(1762662593.438:2094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12965 comm="syz.3.1763" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  620.114105][   T30] audit: type=1326 audit(1762662593.438:2095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12965 comm="syz.3.1763" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  620.773440][   T30] audit: type=1326 audit(1762662593.468:2096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12965 comm="syz.3.1763" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  620.813571][   T30] audit: type=1326 audit(1762662593.478:2097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12965 comm="syz.3.1763" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  620.837270][   T30] audit: type=1326 audit(1762662593.478:2098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12965 comm="syz.3.1763" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  620.862241][   T30] audit: type=1326 audit(1762662593.478:2099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12965 comm="syz.3.1763" exe="/root/syz-executor" sig=0 arch=c000003e syscall=314 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  620.886656][   T30] audit: type=1326 audit(1762662593.478:2100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12965 comm="syz.3.1763" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  621.193627][   T30] audit: type=1326 audit(1762662593.478:2101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12965 comm="syz.3.1763" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  621.243456][   T30] audit: type=1326 audit(1762662593.478:2102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12965 comm="syz.3.1763" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  621.271639][T10749] Bluetooth: hci7: Frame reassembly failed (-84)
[  621.378251][   T30] audit: type=1326 audit(1762662593.478:2103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12965 comm="syz.3.1763" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa86438f6c9 code=0x7ffc0000
[  621.927258][T12993] sp1: Synchronizing with TNC
[  621.951283][T12992] sp0: Synchronizing with TNC
[  622.845413][T13001] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  623.265551][ T5815] Bluetooth: hci7: Opcode 0x1003 failed: -110
[  623.576342][T13012] sp0: Synchronizing with TNC
[  624.031984][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  624.049884][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  624.140520][T13022] mkiss: ax0: crc mode is auto.
[  624.151163][T13022] binder: 13016:13022 ioctl 4018620d 0 returned -22
[  626.055508][T13036] sp0: Synchronizing with TNC
[  626.840654][T13047] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  627.004214][T13049] sp1: Synchronizing with TNC
[  627.384070][T13058] sp2: Synchronizing with TNC
[  627.443721][T13059] sp3: Synchronizing with TNC
[  628.387001][   T31] INFO: task syz.0.1444:11335 blocked for more than 143 seconds.
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  628.736665][   T30] kauditd_printk_skb: 68 callbacks suppressed
[  628.736683][   T30] audit: type=1400 audit(1762662601.848:2172): avc:  denied  { write } for  pid=5796 comm="syz-executor" path="pipe:[4674]" dev="pipefs" ino=4674 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[  628.782316][   T31]       Not tainted syzkaller #0
[  628.801654][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  628.831092][T13073] sp0: Synchronizing with TNC
[  628.873547][   T31] task:syz.0.1444      state:D stack:24864 pid:11335 tgid:11313 ppid:5806   task_flags:0x400140 flags:0x00080002
[  628.965472][   T31] Call Trace:
[  628.968775][   T31]  <TASK>
[  628.971705][   T31]  __schedule+0x1190/0x5de0
[  629.124156][   T31]  ? __lock_acquire+0x622/0x1c90
[  629.129275][   T31]  ? __pfx___schedule+0x10/0x10
[  629.144632][   T31]  ? find_held_lock+0x2b/0x80
[  629.173324][   T31]  ? schedule+0x2d7/0x3a0
[  629.177815][   T31]  ? bdev_open+0xa2/0xe40
[  629.182153][   T31]  schedule+0xe7/0x3a0
[  629.222660][   T31]  schedule_preempt_disabled+0x13/0x30
[  629.243488][   T31]  __mutex_lock+0x818/0x1060
[  629.253313][   T31]  ? bdev_open+0xa2/0xe40
[  629.257683][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  629.262861][   T31]  ? irqentry_exit+0x3b/0x90
[  629.313419][   T31]  ? bdev_open+0xa2/0xe40
[  629.328099][   T31]  bdev_open+0xa2/0xe40
[  629.332291][   T31]  ? iput+0x35/0x40
[  629.383824][   T31]  bdev_file_open_by_dev+0x182/0x210
[  629.389124][   T31]  setup_bdev_super+0x39b/0x730
[  629.423402][   T31]  get_tree_bdev_flags+0x363/0x620
[  629.428548][   T31]  ? __pfx_vxfs_fill_super+0x10/0x10
[  629.443611][   T31]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  629.461300][   T31]  ? bpf_lsm_capable+0x9/0x10
[  629.493893][   T31]  ? security_capable+0x7e/0x260
[  629.498842][   T31]  vfs_get_tree+0x8e/0x340
[  629.523480][   T31]  path_mount+0x7b9/0x23a0
[  629.527914][   T31]  ? trace_irq_enable.constprop.0+0x2f/0x120
[  629.564518][   T31]  ? __pfx_path_mount+0x10/0x10
[  629.569404][   T31]  ? putname+0x154/0x1a0
[  629.603380][   T31]  ? putname+0x154/0x1a0
[  629.613746][   T31]  ? putname+0x154/0x1a0
[  629.617983][   T31]  ? __x64_sys_mount+0x293/0x310
[  629.622901][   T31]  __x64_sys_mount+0x293/0x310
[  629.633401][   T31]  ? __pfx___x64_sys_mount+0x10/0x10
[  629.643338][   T31]  do_syscall_64+0xcd/0xfa0
[  629.647836][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  629.657050][   T31] RIP: 0033:0x7f6039f8f6c9
[  629.661478][   T31] RSP: 002b:00007f603ad7e038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  629.670115][   T31] RAX: ffffffffffffffda RBX: 00007f603a1e6180 RCX: 00007f6039f8f6c9
[  629.681239][   T31] RDX: 0000200000000000 RSI: 0000200000000100 RDI: 0000200000000040
[  629.689320][   T31] RBP: 00007f603a011f91 R08: 0000000000000000 R09: 0000000000000000
[  629.703763][   T31] R10: 0000000001000080 R11: 0000000000000246 R12: 0000000000000000
[  629.711729][   T31] R13: 00007f603a1e6218 R14: 00007f603a1e6180 R15: 00007fff3e240ec8
[  629.719766][   T31]  </TASK>
[  629.733817][   T31] 
[  629.733817][   T31] Showing all locks held in the system:
[  629.741561][   T31] 1 lock held by khungtaskd/31:
[  629.749799][   T31]  #0: ffffffff8e3c4720 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0
[  629.763514][   T31] 2 locks held by kworker/u8:7/4555:
[  629.768786][   T31]  #0: ffff88813ff29148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[  629.779933][   T31]  #1: ffffc9000e147d00 ((work_completion)(&(&kfence_timer)->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[  629.813821][   T31] 2 locks held by getty/5579:
[  629.818504][   T31]  #0: ffff88814d06c0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[  629.828305][   T31]  #1: ffffc900036bb2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x14f0
[  629.841243][   T31] 3 locks held by kworker/u9:4/5815:
[  629.846828][   T31]  #0: ffff888058984148 ((wq_completion)hci5){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[  629.857362][   T31]  #1: ffffc9000417fd00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[  629.869576][   T31]  #2: ffff8880553c4dc8 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x175/0x430
[  629.879661][   T31] 1 lock held by udevd/5934:
[  629.884312][   T31]  #0: ffff888143787358 (&disk->open_mutex){+.+.}-{4:4}, at: bdev_open+0x41a/0xe40
[  629.893771][   T31] 3 locks held by kworker/u8:12/10746:
[  629.899229][   T31]  #0: ffff88813ff29948 ((wq_completion)events_unbound#2){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[  629.911729][   T31]  #1: ffffc9000413fd00 ((work_completion)(&map->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[  629.925553][   T31]  #2: ffffffff8e3cfb80 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x48/0x6e0
[  629.935587][   T31] 2 locks held by syz.0.1444/11335:
[  629.940810][   T31]  #0: ffff8880317520e0 (&type->s_umount_key#69/1){+.+.}-{4:4}, at: alloc_super+0x1e3/0xb60
[  629.951052][   T31]  #1: ffff888143787358 (&disk->open_mutex){+.+.}-{4:4}, at: bdev_open+0xa2/0xe40
[  629.960401][   T31] 5 locks held by syz.5.1557/11931:
[  629.966794][   T31]  #0: ffff888068383278 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x2a2/0x370
[  629.975930][   T31]  #1: ffff888024632420 (sb_writers#8){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  629.984985][   T31]  #2: ffff8880783c0c88 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570
[  629.994778][   T31]  #3: ffff88801e6bf878 (kn->active#67){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570
[  630.004919][   T31]  #4: ffffffff8e287a28 (system_transition_mutex){+.+.}-{4:4}, at: software_resume+0x65/0x4e0
[  630.015274][   T31] 1 lock held by syz.2.1779/13050:
[  630.020375][   T31]  #0: ffffffff8e3cfcb8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x1a3/0x3c0
[  630.030519][   T31] 1 lock held by syz.4.1783/13070:
[  630.035728][   T31]  #0: ffffffff8e3cfcb8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x1a3/0x3c0
[  630.087337][   T31] 
[  630.089695][   T31] =============================================
[  630.089695][   T31] 
[  630.163350][   T31] NMI backtrace for cpu 1
[  630.163368][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT(full) 
[  630.163389][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  630.163399][   T31] Call Trace:
[  630.163405][   T31]  <TASK>
[  630.163412][   T31]  dump_stack_lvl+0x116/0x1f0
[  630.163442][   T31]  nmi_cpu_backtrace+0x27b/0x390
[  630.163460][   T31]  ? _raw_spin_unlock_irqrestore+0x61/0x80
[  630.163483][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  630.163507][   T31]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[  630.163527][   T31]  watchdog+0xf3f/0x1170
[  630.163551][   T31]  ? rcu_is_watching+0x12/0xc0
[  630.163571][   T31]  ? __pfx_watchdog+0x10/0x10
[  630.163590][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  630.163617][   T31]  ? __kthread_parkme+0x19e/0x250
[  630.163643][   T31]  ? __pfx_watchdog+0x10/0x10
[  630.163663][   T31]  kthread+0x3c5/0x780
[  630.163680][   T31]  ? __pfx_kthread+0x10/0x10
[  630.163697][   T31]  ? rcu_is_watching+0x12/0xc0
[  630.163718][   T31]  ? __pfx_kthread+0x10/0x10
[  630.163734][   T31]  ret_from_fork+0x675/0x7d0
[  630.163748][   T31]  ? __pfx_kthread+0x10/0x10
[  630.163764][   T31]  ret_from_fork_asm+0x1a/0x30
[  630.163800][   T31]  </TASK>
[  630.163808][   T31] Sending NMI from CPU 1 to CPUs 0:
[  630.291928][    C0] NMI backtrace for cpu 0
[  630.291942][    C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted syzkaller #0 PREEMPT(full) 
[  630.291958][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  630.291966][    C0] RIP: 0010:pv_native_safe_halt+0xf/0x20
[  630.291989][    C0] Code: d7 6c 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 23 86 29 00 fb f4 <e9> 3c 0a 03 00 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90
[  630.292001][    C0] RSP: 0018:ffffffff8e007df8 EFLAGS: 000002c6
[  630.292013][    C0] RAX: 000000000292ff91 RBX: 0000000000000000 RCX: ffffffff8b60a2a9
[  630.292022][    C0] RDX: 0000000000000000 RSI: ffffffff8da2b6a1 RDI: ffffffff8bf070c0
[  630.292031][    C0] RBP: fffffbfff1c12f40 R08: 0000000000000001 R09: ffffed1017086655
[  630.292040][    C0] R10: ffff8880b84332ab R11: 0000000000000001 R12: 0000000000000000
[  630.292048][    C0] R13: ffffffff8e097a00 R14: ffffffff90820cd0 R15: 0000000000000000
[  630.292057][    C0] FS:  0000000000000000(0000) GS:ffff888124a08000(0000) knlGS:0000000000000000
[  630.292070][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  630.292079][    C0] CR2: 0000200000404030 CR3: 000000000e182000 CR4: 00000000003526f0
[  630.292087][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  630.292095][    C0] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  630.292103][    C0] Call Trace:
[  630.292108][    C0]  <TASK>
[  630.292113][    C0]  default_idle+0x13/0x20
[  630.292128][    C0]  default_idle_call+0x6c/0xb0
[  630.292141][    C0]  do_idle+0x38d/0x500
[  630.292159][    C0]  ? __pfx_do_idle+0x10/0x10
[  630.292175][    C0]  ? do_idle+0x2e2/0x500
[  630.292191][    C0]  cpu_startup_entry+0x4f/0x60
[  630.292207][    C0]  rest_init+0x16b/0x2b0
[  630.292220][    C0]  ? acpi_subsystem_init+0x133/0x180
[  630.292237][    C0]  ? __pfx_x86_late_time_init+0x10/0x10
[  630.292256][    C0]  start_kernel+0x3f6/0x4e0
[  630.292272][    C0]  x86_64_start_reservations+0x18/0x30
[  630.292289][    C0]  x86_64_start_kernel+0x130/0x190
[  630.292305][    C0]  common_startup_64+0x13e/0x148
[  630.292325][    C0]  </TASK>
[  630.497673][    C0] vkms_vblank_simulate: vblank timer overrun
[  631.106994][ T5134] Bluetooth: hci5: command 0x0405 tx timeout
[  631.675020][ T7616] team0: left allmulticast mode
[  631.679998][ T7616] team_slave_0: left allmulticast mode
[  631.687091][ T7616] team_slave_1: left allmulticast mode
[  631.692570][ T7616] bridge1: left allmulticast mode
[  631.697809][ T7616] team0: left promiscuous mode
[  631.702585][ T7616] team_slave_0: left promiscuous mode
[  631.710156][ T7616] team_slave_1: left promiscuous mode
[  631.720373][ T7616] bridge1: left promiscuous mode
[  631.725765][ T7616] bridge0: port 3(team0) entered disabled state
[  631.733792][ T7616] bridge_slave_1: left allmulticast mode
[  631.739444][ T7616] bridge_slave_1: left promiscuous mode
[  631.746267][ T7616] bridge0: port 2(bridge_slave_1) entered disabled state
[  631.758790][ T7616] bridge_slave_0: left allmulticast mode
[  631.765040][ T7616] bridge_slave_0: left promiscuous mode
[  631.770737][ T7616] bridge0: port 1(bridge_slave_0) entered disabled state
[  632.035530][ T7616] team0: Port device bridge1 removed
[  632.166351][ T7616] bond1 (unregistering): Released all slaves
[  632.232555][ T7616] tipc: Disabling bearer <ib:wg1>
[  632.247086][ T7616] tipc: Left network mode
[  632.433465][ T7616] hsr_slave_0: left promiscuous mode
[  632.441857][ T7616] hsr_slave_1: left promiscuous mode
[  632.448092][ T7616] batman_adv: batadv0: Removing interface: batadv_slave_0
[  632.456780][ T7616] batman_adv: batadv0: Removing interface: batadv_slave_1
[  632.760667][ T7616] team0 (unregistering): Port device team_slave_1 removed
[  632.794970][ T7616] team0 (unregistering): Port device team_slave_0 removed
[  633.312158][ T7616] IPVS: stop unused estimator thread 0...
[  633.480384][ T7616] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  633.570028][ T7616] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  633.673397][ T7616] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  633.742593][ T7616] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  633.907115][ T7616] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  634.009150][ T7616] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  634.080715][ T7616] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  634.134836][ T7616] team0: Port device netdevsim0 removed
[  634.142072][ T7616] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  634.337016][ T7616] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  634.411123][ T7616] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  634.489318][ T7616] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  634.554201][ T7616] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  634.708037][ T7616] bridge_slave_1: left allmulticast mode
[  634.713826][ T7616] bridge_slave_1: left promiscuous mode
[  634.719538][ T7616] bridge0: port 2(bridge_slave_1) entered disabled state
[  634.730426][ T7616] bridge_slave_0: left allmulticast mode
[  634.736150][ T7616] bridge_slave_0: left promiscuous mode
[  634.741821][ T7616] bridge0: port 1(bridge_slave_0) entered disabled state
[  634.753960][ T7616] bridge_slave_1: left allmulticast mode
[  634.759618][ T7616] bridge_slave_1: left promiscuous mode
[  634.765358][ T7616] bridge0: port 2(bridge_slave_1) entered disabled state
[  634.774626][ T7616] bridge_slave_0: left allmulticast mode
[  634.781531][ T7616] bridge_slave_0: left promiscuous mode
[  634.788705][ T7616] bridge0: port 1(bridge_slave_0) entered disabled state
[  635.179126][ T7616] bond0 (unregistering): Released all slaves
[  635.270917][ T7616] bond1 (unregistering): (slave veth7): Releasing active interface
[  635.279052][ T7616] vlan2: entered promiscuous mode
[  635.286896][ T7616] bond1 (unregistering): (slave vlan2): Releasing active interface
[  635.296816][ T7616] bond1 (unregistering): Released all slaves
[  635.511057][ T7616] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  635.521089][ T7616] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  635.531022][ T7616] bond0 (unregistering): Released all slaves
[  635.625297][ T7616] : left promiscuous mode
[  635.696170][ T7616] tipc: Disabling bearer <udp:syz2>
[  635.714147][ T7616] tipc: Disabling bearer <udp:syz0>
[  635.728255][ T7616] tipc: Left network mode
[  635.746348][ T7616] tipc: Disabling bearer <udp:syz2>
[  635.758517][ T7616] tipc: Left network mode
[  636.280276][ T7616] hsr_slave_0: left promiscuous mode
[  636.286370][ T7616] hsr_slave_1: left promiscuous mode
[  636.292302][ T7616] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  636.300606][ T7616] batman_adv: batadv0: Removing interface: batadv_slave_0
[  636.308909][ T7616] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  636.321668][ T7616] batman_adv: batadv0: Removing interface: batadv_slave_1
[  636.332154][ T7616] hsr_slave_0: left promiscuous mode
[  636.337942][ T7616] hsr_slave_1: left promiscuous mode
[  636.346730][ T7616] hsr_slave_0: left promiscuous mode
[  636.352408][ T7616] hsr_slave_1: left promiscuous mode
[  636.358299][ T7616] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  636.365684][ T7616] batman_adv: batadv0: Removing interface: batadv_slave_0
[  636.373960][ T7616] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  636.381327][ T7616] batman_adv: batadv0: Removing interface: batadv_slave_1
[  636.415715][ T7616] veth1_macvtap: left promiscuous mode
[  636.421241][ T7616] veth0_macvtap: left promiscuous mode
[  636.427622][ T7616] veth1_vlan: left promiscuous mode
[  636.432894][ T7616] veth0_vlan: left promiscuous mode
[  636.439472][ T7616] veth1_macvtap: left promiscuous mode
[  636.445161][ T7616] veth0_macvtap: left promiscuous mode
[  636.450687][ T7616] veth1_vlan: left promiscuous mode
[  636.456077][ T7616] veth0_vlan: left promiscuous mode
[  636.465430][ T7616] veth1_macvtap: left promiscuous mode
[  636.470938][ T7616] veth0_macvtap: left promiscuous mode
[  636.476660][ T7616] veth1_vlan: left promiscuous mode
[  636.481901][ T7616] veth0_vlan: left promiscuous mode
[  636.900241][ T7616] team0 (unregistering): Port device team_slave_1 removed
[  636.933676][ T7616] team0 (unregistering): Port device team_slave_0 removed
[  637.291331][ T7616] team0 (unregistering): Port device batadv1 removed
[  637.559560][ T7616] team0 (unregistering): Port device team_slave_1 removed
[  637.593985][ T7616] team0 (unregistering): Port device team_slave_0 removed
[  638.145206][ T7616] team0 (unregistering): Port device team_slave_1 removed
[  638.177373][ T7616] team0 (unregistering): Port device team_slave_0 removed