last executing test programs:

3m59.677353535s ago: executing program 1 (id=530):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x200000000000039e, &(0x7f0000000100)=ANY=[@ANYRESDEC], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000007, 0x4008031, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
ftruncate(0xffffffffffffffff, 0xff)
timer_create(0x2, 0x0, &(0x7f0000000080))
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_NAME_TYPE_CMD(r1, 0x8982, &(0x7f0000000340)={0x6, 'dummy0\x00', {0x171}, 0x4})
timer_settime(0x0, 0x0, &(0x7f0000000300)={{0x0, 0x1}, {0x0, 0xe4c}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000440)={{0x0, 0x3938700}, {0x77359400}}, 0x0)
r2 = accept$netrom(0xffffffffffffffff, &(0x7f0000000680)={{0x3, @null}, [@rose, @remote, @netrom, @null, @null, @bcast, @remote, @netrom]}, &(0x7f0000000700)=0x48)
setsockopt$sock_int(r2, 0x1, 0xf, &(0x7f0000000740)=0x73, 0x4)
timer_delete(0x0)
r3 = syz_io_uring_complete(0x0)
ioctl$DRM_IOCTL_AGP_INFO(r3, 0x80386433, &(0x7f0000000240)=""/217)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000400)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_WIPHY_NETNS(r4, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='\x00\x00\x00\'', @ANYRES16=r5, @ANYBLOB="ed4d00000000000000003100000008000300", @ANYRES32=r6, @ANYBLOB="0800db00", @ANYRES32, @ANYBLOB], 0x24}}, 0x84)
sendmsg$NL80211_CMD_START_NAN(r3, &(0x7f0000000880)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000840)={&(0x7f00000007c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000127bd7000fedbdf25730000000c00990005000000340000000800ef000700000500e5eedfb3c27183ee00020000000500ee00060000000500ee00060000000800ef00050000000800ef00080000000800ef00000000000500ee003b0000000000"], 0x68}, 0x1, 0x0, 0x0, 0x2000000}, 0x805)
r7 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f00000003c0), 0x48200, 0x0)
mq_notify(r7, &(0x7f0000000540)={0x0, 0x1c, 0x4, @thr={&(0x7f0000000480)="108bcdf127655fd537893a3f21a9a9e05875217755ac11b8a5381828e6cf36af2e039292db4585945978e9ec89a8871bfae670c8d889e220b76cc85d82be024db6c680210c2231e81693b459ddecb5f42683ec198f16346222394a0cd0dd48d5dd9181a414ebe042af83ecf6b938f2f300543144651c9090009ccd5821b7adeb4f4c", &(0x7f0000000400)="0e82d1651158ccbfca53aa95c79f7c093b12"}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='mmap_lock_acquire_returned\x00', r0}, 0x10)
r8 = memfd_create(&(0x7f00000001c0)='\xa3\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xcc\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\xf5\x00\x00\x00\x00\x00\x00\x00\x05L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xacz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xaaw\xbe\xd0\xd0\xc8d\x96G\xcf\x066\x84\x82-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8ck\xc6S\xc3g\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\xc9\xff \xd8\x9d\xad\x11\xf8m\xd3\xbc\x9e\x10\x04\x7f!\xca\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\xd00\x88y\xebX\x92\xd5\xbb\xa1h7\xf3\xe0\x0f\xbd\x02\xe4%\xf9\xb1\x87\x8aM\xfeG\xb2L\xbd\x92-\xcd\x1f\xf4\xe1,\xb7G|\xec\"\xa2\xab\xf6\x84\xe0\xcf1\x9a', 0x0)
execveat(r8, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
mbind(&(0x7f000086e000/0x2000)=nil, 0x2000, 0x8000, &(0x7f0000000580)=0xffffffffffffff81, 0x17, 0x4)
r9 = openat$autofs(0xffffffffffffff9c, &(0x7f00000000c0), 0x200, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r9, 0xc0189372, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r10=>r8, {0x9}}, './file0\x00'})
accept4$unix(r10, &(0x7f00000005c0), &(0x7f0000000640)=0x6e, 0x80800)

3m59.048764844s ago: executing program 1 (id=533):
r0 = add_key$user(&(0x7f0000000040), &(0x7f0000000000)={'syz', 0x0}, &(0x7f0000000700)="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", 0x182, 0xfffffffffffffffe)
r1 = add_key$user(&(0x7f00000004c0), &(0x7f0000000080)={'syz', 0x0}, &(0x7f0000000200)="cc", 0x1, 0xffffffffffffffff)
r2 = add_key$user(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x2}, &(0x7f0000000500)="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", 0x101, 0xfffffffffffffffd)
r3 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_linger(r3, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0xfffffffd, @local, 0x2}, 0x1c)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x9b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_DEL_STATION(r5, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x6055}, 0x0)
syz_clone3(&(0x7f0000000380)={0x1c00280, &(0x7f0000000040), &(0x7f0000000080), &(0x7f0000000100), {0x20}, &(0x7f0000000180)=""/1, 0x1, &(0x7f0000000240)=""/124, 0x0}, 0x58)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$packet(0x11, 0x3, 0x300)
sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a6c000000060a8b04000000000000000002000000400004803c0001800b00010065787468647200002c00028008000340000000ff0800014000130013050002000000000008000640000000ff08000440000000000900010073797a30000000000900020073797a32"], 0x94}, 0x1, 0x0, 0x0, 0x90}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='kmem_cache_free\x00', r4}, 0x10)
sendmmsg$inet6(r3, &(0x7f0000003cc0)=[{{0x0, 0x300, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4001c00)
keyctl$dh_compute(0x17, &(0x7f0000000400)={r1, r0, r2}, 0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000440)={'wp384\x00'}})

3m58.543969808s ago: executing program 1 (id=534):
r0 = socket(0x200000000000011, 0x2, 0x1)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'syz_tun\x00', <r1=>0x0})
bind$packet(r0, &(0x7f0000000080)={0x11, 0x800, r1, 0x1, 0x0, 0x6, @multicast}, 0x14)
syz_emit_ethernet(0x32, &(0x7f00000003c0)=ANY=[@ANYBLOB="aaa2aaaaaaaabbbbbbbb"], 0x0)

3m58.4803007s ago: executing program 1 (id=535):
r0 = syz_open_dev$cec(&(0x7f0000000080), 0x0, 0x0)
r1 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x8)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000100))
r3 = syz_io_uring_setup(0xd1, &(0x7f0000000480)={0x0, 0x0, 0x400, 0x0, 0x338}, &(0x7f0000000080)=<r4=>0x0, &(0x7f00000001c0)=<r5=>0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000240)={0x3, @raw_data="245dfa8d9165e31fd5d5dfa49fb2b10e5a44649f719af99681accd919e7c856c01eff56a0fb5658e553d3c145833534a17ce73c9ad8e6dd3c7bfd4263e735262a8c5bb333c7f5779697617202bbafa208d0ca420173b4d94ac0b1e0e94df63a8af65a68ac55f859361669889135dad52162344c9aaf69bac62c3a0f3fb754726fbad2af1309a9e1f5074492fb131d4c2b5908f11321f7ddaff8cab76747f5e4822886544b6508e2762e0e8529974064f08e5d3f79e5c5bfb3301fc2c4c449dcdd0ec7e8ba9d6d37d"})
ioctl$SNDCTL_SEQ_NRSYNTHS(0xffffffffffffffff, 0x8004510a, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r6, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$sysctl(0xffffffffffffffff, &(0x7f0000000000)='1\x00', 0x2)
write$binfmt_misc(r6, &(0x7f0000000000), 0xd)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000040)='./file0/../file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x201081, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
r7 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r7, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x262)
syz_io_uring_submit(r4, r5, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r3, 0x47ba, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x29c, &(0x7f0000000340)={0x0, 0xaf35, 0x2000, 0x1, 0x134, 0x0, r1}, &(0x7f0000000000), &(0x7f00000000c0))
epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r0, &(0x7f0000000040)={0x20000013})

3m58.340770672s ago: executing program 1 (id=536):
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xdef0, 0x8000000000000000}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000500)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000300)='writeback_bdi_register\x00', r3}, 0x18)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000008000000000000005000100070000000900020073797a30000000001400078008001240000000000500150020000000050005000000000005000400000000000d000300686173683a6d6163"], 0x5c}}, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(0x0, r5)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$SEG6_CMD_SET_TUNSRC(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="0100000037ece16726f4170cce86"], 0x14}, 0x1, 0x0, 0x0, 0x8081}, 0x0)
write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000000), 0x12)
mknod$loop(&(0x7f0000000000)='./file0\x00', 0x0, 0x1)
write$FUSE_ATTR(0xffffffffffffffff, &(0x7f0000005a40)={0x30, 0x0, 0x0, {0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}}}, 0x78)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
close(r7)
ioctl$SIOCSIFHWADDR(r7, 0x8b05, &(0x7f0000000040)={'wlan1\x00'})
writev(0xffffffffffffffff, &(0x7f0000000180)=[{&(0x7f00000001c0)="580000001400add427323b472545b45602117fffffff81000e220e227f000008925aa80013007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee000000deff0000000200000000", 0x58}], 0x1)
socket$packet(0x11, 0x3, 0x300)
socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_connect(0x0, 0x34, &(0x7f0000000280)={{0x12, 0x1, 0x0, 0xe4, 0x40, 0x98, 0x8, 0xc2e, 0x720, 0x9bf7, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x22, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x83, 0x4b, 0x3c, 0x0, [], [{{0x9, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [@generic={0x7, 0x5, "976362d424"}]}}]}}]}}]}}, 0x0)

3m58.143801341s ago: executing program 1 (id=538):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
gettid()
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)
accept$alg(r1, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
r5 = msgget$private(0x0, 0x102)
msgsnd(r5, 0x0, 0x8, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mknod$loop(&(0x7f00000000c0)='./file0\x00', 0x200, 0x1)
mount(&(0x7f0000000100)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='adfs\x00', 0x0, &(0x7f0000000340))
open(0x0, 0x1298c2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="a97024b70400000008f647a46f000040000000", @ANYRES32, @ANYBLOB="00000000000000000000000cb22e9106ad300361b1000000000000008700ff78fcbae9d553384bf45f739cbda76aa4a5fcc3f27e5ca3d465f029cbff8f419123610cc5b857e5c396e838a2dff196b772d1b8cf372bd7f7f122ca4b7c1f7de52706a95b46e8cd3b655f97797f0962963ac0db16c375cf9009445731ce50074576790aeef4f11f18715acc2b1bbbd3a59dc178000596afb2d4e03b57d9e3d4000000fd264c75", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
io_uring_enter(0xffffffffffffffff, 0xc5ea, 0x1, 0xc, 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x0)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

3m58.012483118s ago: executing program 32 (id=538):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
gettid()
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)
accept$alg(r1, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
r5 = msgget$private(0x0, 0x102)
msgsnd(r5, 0x0, 0x8, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mknod$loop(&(0x7f00000000c0)='./file0\x00', 0x200, 0x1)
mount(&(0x7f0000000100)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='adfs\x00', 0x0, &(0x7f0000000340))
open(0x0, 0x1298c2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="a97024b70400000008f647a46f000040000000", @ANYRES32, @ANYBLOB="00000000000000000000000cb22e9106ad300361b1000000000000008700ff78fcbae9d553384bf45f739cbda76aa4a5fcc3f27e5ca3d465f029cbff8f419123610cc5b857e5c396e838a2dff196b772d1b8cf372bd7f7f122ca4b7c1f7de52706a95b46e8cd3b655f97797f0962963ac0db16c375cf9009445731ce50074576790aeef4f11f18715acc2b1bbbd3a59dc178000596afb2d4e03b57d9e3d4000000fd264c75", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
io_uring_enter(0xffffffffffffffff, 0xc5ea, 0x1, 0xc, 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x0)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

31.994847162s ago: executing program 2 (id=1278):
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'vcan0\x00'})
socket$unix(0x1, 0x5, 0x0)
openat$cuse(0xffffffffffffff9c, &(0x7f0000002340), 0x2, 0x0)
r1 = syz_io_uring_setup(0x416f, &(0x7f0000000240)={0x0, 0xf1aa, 0x10100, 0x0, 0x56}, &(0x7f0000001240)=<r2=>0x0, &(0x7f0000000100)=<r3=>0x0)
clock_gettime(0x0, &(0x7f00000005c0))
syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000000)=""/4, 0x4}], 0x27})
io_uring_enter(r1, 0x567, 0x0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r7, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_sha512\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r7, 0x117, 0x1, 0x0, 0x0)
r8 = accept4(r7, 0x0, 0x0, 0x0)
recvmsg(r8, &(0x7f0000001400)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000180)=""/74, 0x4a}], 0x3a}, 0x2043)
r9 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
capset(&(0x7f0000000080)={0x20080522}, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r9, 0x3b81, &(0x7f0000000140)={0xc})

30.290304145s ago: executing program 2 (id=1283):
r0 = socket(0x2b, 0x80801, 0x1)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty, 0xc4e}, 0x1c)
setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000080)=0x5, 0x4) (fail_nth: 2)

29.124627251s ago: executing program 2 (id=1285):
r0 = epoll_create1(0x80000)
ioctl$VFAT_IOCTL_READDIR_BOTH(r0, 0x82307201, &(0x7f0000000000)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) (async)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, &(0x7f0000000240)={0x4, 0x5, 0x8, 0x8}, 0x10) (async, rerun: 32)
r1 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000280), 0x2, 0x0) (rerun: 32)
ioctl$VIDIOC_TRY_FMT(r1, 0xc0d05640, &(0x7f00000002c0)={0x3, @pix={0x7, 0xfdd, 0x371011e, 0x8, 0xffffffff, 0x5, 0x3, 0x7, 0x0, 0x6, 0x2, 0x1}}) (async)
r2 = syz_open_dev$video(&(0x7f00000003c0), 0x3c2, 0x8b2170fbd14c83b5) (async)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r1, 0xc0189374, &(0x7f0000000400)={{0x1, 0x1, 0x18, <r3=>r0, {0x9}}, '\x00'})
connect$unix(r3, &(0x7f0000000440)=@file={0x1, './file0\x00'}, 0x6e)
setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f0000000540)={0x9, &(0x7f00000004c0)=[{0x1000, 0x4, 0x2, 0x6ae3}, {0x7, 0x80, 0x5, 0x300000}, {0x4, 0x22, 0x1, 0x1}, {0x5, 0x33, 0x3}, {0x6, 0x3, 0x2}, {0x8, 0x0, 0x2, 0x6}, {0x3ff, 0x5, 0x8, 0x316}, {0xfff8, 0x8, 0xd9, 0x2}, {0x6, 0x7, 0x3, 0x1}]}, 0x10)
ioctl$FS_IOC_ENABLE_VERITY(r2, 0x40806685, &(0x7f0000000740)={0x1, 0x1, 0x1000, 0xbf, &(0x7f0000000580)="fd6fadff9230ceeceb473142e8258e1aaa8c950ad318974e18f97691d130e2044b499a5aed5563fa0096b7f3264678f9ce6156874c023c91185f03b2aae20b26d00ca093e5524af3f965833e979c7401e0432997a656a8fc3554b77ebe9b0eb44086c34beac548cacbe9853f1c3734741155591d50f9c17ad3e4b90485b1866d83b54f20d80be36ee88099f7987e628f0ed9585c06a1afc8a87ef7f84c88f7dc4dbb5f377b3d89eadeeba1128936c16d295e3477e697edf5dcd5de25dbcc9d", 0xd5, 0x0, &(0x7f0000000640)="fb4af3a5b2a9fc56ebfe494c74fc17e4231e890d8349eccfe728ee46c417718f9fd0a1e0565f18b5187866dfdec3285e87bf487bda58f854758686a97fab5d872f0059e7b4e49a75d593c6525f493bfa02bc270d280d996d1e0aef46acaf45cd4c06ddd0b27078ecadf2d2314b59f89e4f9b5e333522911f55b20d1dcc96448599d6edbfeff84185136c28f5b4ea8baeeb86da551fd598b5861da80acdb0fd987ee18da34de715803da77a4d8f0ce94e2311512c277b60eba8c401f717da50dd6678659f0f36b2500990c79775d1deeb3656accadf"}) (async, rerun: 32)
setsockopt$inet_int(r3, 0x0, 0x5, &(0x7f00000007c0)=0xffff, 0x4) (rerun: 32)
ioctl$FS_IOC_GETFSLABEL(r0, 0x81009431, &(0x7f0000000800))
ioctl$EXT4_IOC_PRECACHE_EXTENTS(r1, 0x6612) (async)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r3, &(0x7f0000000900)={0x140000000}) (async)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000980)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000940)={<r4=>0xffffffffffffffff}, 0x2, 0x3}}, 0x20)
write$RDMA_USER_CM_CMD_ACCEPT(r3, &(0x7f00000009c0)={0x8, 0x120, 0xfa00, {0x1, {0xffff42ea, 0x3, "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", 0x6, 0x7f, 0x1, 0x10, 0x9, 0x27, 0x0, 0x1}, r4}}, 0x128) (async)
setsockopt$IP_VS_SO_SET_DEL(r3, 0x0, 0x484, &(0x7f0000000b00)={0x88, @private=0xa010102, 0x4e23, 0x4, 'sed\x00', 0x23, 0x36, 0x40}, 0x2c)
ioctl$TIOCGPGRP(r3, 0x540f, &(0x7f0000000b40)=<r5=>0x0)
sched_setaffinity(r5, 0x8, &(0x7f0000000b80)=0x800000) (async)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000bc0), &(0x7f0000000c00)=0xc) (async)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a) (async, rerun: 64)
ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8936, &(0x7f0000000c40)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x49}) (rerun: 64)
ioctl$EVIOCSFF(r3, 0x40304580, &(0x7f0000000c80)={0x55, 0x2, 0x0, {0x436, 0x6}, {0x7, 0x1}, @rumble={0xeec, 0x7f}})
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000e40)={0x1b, 0x0, 0x0, 0x7, 0x0, r3, 0xfffffffe, '\x00', 0x0, r3, 0x1, 0x4, 0x1, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000f80)={0x6, 0x12, &(0x7f0000000cc0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xfe000000}, {{0x18, 0x1, 0x1, 0x0, 0x1}}, {}, [@kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @map_val={0x18, 0x3, 0x2, 0x0, r3, 0x0, 0x0, 0x0, 0x83}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000d80)='syzkaller\x00', 0x5, 0x2, &(0x7f0000000dc0)=""/2, 0x40f00, 0x41, '\x00', 0x0, 0x25, r3, 0x8, &(0x7f0000000e00)={0x4, 0x5}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f0000000ec0)=[r6], &(0x7f0000000f00)=[{0x5, 0x4, 0x9, 0x5}, {0x0, 0x2, 0x9, 0x8}, {0x5, 0x3, 0x5, 0x9}, {0x2, 0x2, 0x8, 0x5}, {0x4, 0x2, 0x5, 0xc}, {0x3, 0x2, 0x10, 0x5}], 0x10, 0x2, @void, @value}, 0x94)
ioctl$KVM_CAP_SYNC_REGS(r3, 0x4068aea3, &(0x7f0000001040)) (async)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f00000010c0)={{0x1, 0x1, 0x18, <r7=>r0, {0x7fffffff}}, './file0\x00'})
ioctl$KVM_CAP_HYPERV_SYNIC(r7, 0x4068aea3, &(0x7f0000001100)) (async)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1000006, 0x810, r1, 0x5a59f000)
write$RDMA_USER_CM_CMD_ACCEPT(r7, &(0x7f0000001200)={0x8, 0x120, 0xfa00, {0x2, {0x5ac6, 0xf, "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", 0x2, 0x6, 0x0, 0x6, 0x5b, 0x5, 0x80}}}, 0x128)

28.568172494s ago: executing program 2 (id=1289):
r0 = add_key$user(&(0x7f0000000040), &(0x7f0000000000)={'syz', 0x0}, &(0x7f0000000700), 0x0, 0xfffffffffffffffe)
r1 = add_key$user(&(0x7f00000004c0), &(0x7f0000000080)={'syz', 0x0}, &(0x7f0000000200)="cc", 0x1, 0xffffffffffffffff)
r2 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_linger(r2, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0xfffffffd, @local, 0x2}, 0x1c)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x9b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
syz_clone3(&(0x7f0000000380)={0x1c00280, &(0x7f0000000040), &(0x7f0000000080), &(0x7f0000000100)=<r4=>0x0, {0x20}, &(0x7f0000000180)=""/1, 0x1, &(0x7f0000000240)=""/124, 0x0}, 0x58)
prctl$PR_SCHED_CORE(0x3e, 0x1, r4, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$packet(0x11, 0x3, 0x300)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a6c000000060a8b04000000000000000002000000400004803c0001800b00010065787468647200002c00028008000340000000ff0800014000130013050002000000000008000640000000ff08000440000000000900010073797a30000000000900020073797a32"], 0x94}, 0x1, 0x0, 0x0, 0x90}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='kmem_cache_free\x00', r3}, 0x10)
sendmmsg$inet6(r2, &(0x7f0000003cc0)=[{{0x0, 0x300, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4001c00)
keyctl$dh_compute(0x17, &(0x7f0000000400)={r1, r0}, 0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000440)={'wp384\x00'}})

27.217430501s ago: executing program 2 (id=1293):
r0 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000240)={0x43, 0x4, 0x1}, 0x10)
bind$tipc(r0, &(0x7f00000001c0)=@name={0x1e, 0x2, 0x0, {{0x42, 0x2}}}, 0x10) (fail_nth: 2)

27.127693275s ago: executing program 2 (id=1295):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
get_mempolicy(&(0x7f0000005a40), 0x0, 0x3, &(0x7f0000ffc000/0x4000)=nil, 0x4)
write$nci(r0, &(0x7f0000000140)=ANY=[@ANYBLOB="a00c870c"], 0x4)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan1\x00'})
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x2, 0x4, 0x5, 0x1, 0x46480, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = syz_usb_connect(0x0, 0x24, &(0x7f0000000440)={{0x12, 0x1, 0x0, 0x5f, 0x2a, 0xb4, 0x20, 0xc72, 0xd, 0x279b, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xdb, 0xa2, 0x92}}]}}]}}, 0x0)
syz_usb_control_io$cdc_ecm(r1, 0x0, &(0x7f0000000240)={0x1c, &(0x7f0000000040)=ANY=[], 0x0, 0x0})
socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_control_io(r1, 0x0, &(0x7f0000000000)={0x84, &(0x7f0000000280)={0x0, 0x18}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

23.238757285s ago: executing program 4 (id=1319):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000400), r1)
syz_open_dev$dmmidi(0x0, 0xba, 0x4000c0)
socket$can_j1939(0x1d, 0x2, 0x7)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x9b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = syz_open_procfs(0x0, &(0x7f00000014c0)='smaps_rollup\x00')
pread64(r4, &(0x7f0000002180)=""/4105, 0x1009, 0x0)
r5 = openat$selinux_access(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
pwritev(r5, &(0x7f0000000540)=[{&(0x7f0000000080)='\t', 0x1}], 0x1, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000080)={'wpan1\x00', <r6=>0x0})
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_LLSEC_ADD_SECLEVEL(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)={0x2c, r2, 0x60b, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0x3}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r6}]}, 0x2c}}, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r8, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x3c, r9, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES_LOW={0x8, 0x11, 0xffffffff}, @ETHTOOL_A_COALESCE_USE_CQE_MODE_RX={0x5}]}, 0x3c}, 0x1, 0x0, 0x0, 0x24004000}, 0x0)

21.092740885s ago: executing program 4 (id=1323):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
syz_usb_connect(0x0, 0x24, &(0x7f0000000380)=ANY=[@ANYBLOB="1201000094037b40fd080200fdca010203010902120001000000000904"], 0x0)
connect$can_bcm(r0, &(0x7f0000000540), 0x10)
sendmsg$can_bcm(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="0500"/16, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x2710, @ANYBLOB="0000000001"], 0x48}}, 0x0)
sendmsg$can_bcm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="0500"/16, @ANYRES64=0x0, @ANYRES64=0x2710, @ANYRES64=0x0, @ANYRES64=0xea60, @ANYBLOB="0000000001"], 0x38}, 0x2}, 0x0)

21.073721505s ago: executing program 3 (id=1324):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x1)
syz_open_dev$MSR(&(0x7f0000000380), 0x0, 0x0)
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000280), 0x26108d4b05e4fa33, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000100)=0x80000)
r1 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$MRT6_ADD_MFC_PROXY(r1, 0x29, 0xd2, &(0x7f00000001c0)={{0xa, 0x4e21, 0x80000001, @private2={0xfc, 0x2, '\x00', 0x1}, 0x7}, {0xa, 0x4e22, 0x1, @loopback, 0x67b8dd65}, 0x1, {[0xf924, 0x9, 0x2, 0x5, 0x1000000, 0x3, 0x0, 0x200]}}, 0x5c)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000140)={@my=0x1})
ioctl$IOCTL_VMCI_CTX_GET_CPT_STATE(r0, 0x7b1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000000c0), 0x4, 0x0)
r3 = socket$inet6(0xa, 0x2, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x3000003, 0x200000006c832, r1, 0x0)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600a00, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil)
r4 = openat$fb0(0xffffffffffffff9c, 0x0, 0x41081, 0x0)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
mmap(&(0x7f0000f7d000/0x4000)=nil, 0x4000, 0x0, 0x4010, r5, 0x11d7000)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{0x1}, &(0x7f0000000040), &(0x7f0000000100)}, 0x20)
r6 = dup2(r2, r3)
bind$bt_l2cap(r6, &(0x7f0000000240)={0x1f, 0x5, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x0, 0x1}, 0xe)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r0)
sendmsg$NL80211_CMD_GET_MPP(r6, &(0x7f0000000700)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000680)={0x68, r7, 0x200, 0x70bd2c, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x401, 0x71}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}]}, 0x68}, 0x1, 0x0, 0x0, 0x1}, 0x20040880)
ioctl$FBIOPAN_DISPLAY(r4, 0x4606, 0x0)

20.957990989s ago: executing program 3 (id=1326):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x300000a, 0x4031, 0xffffffffffffffff, 0x0)
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000080)={&(0x7f0000000000)=""/74, 0x328000, 0x800}, 0x20)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)

20.916785501s ago: executing program 5 (id=1327):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001000012000000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000058000000090a010400000000000000000100000008000a40000000000900020073797a3200000000090001007379"], 0xa0}}, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="2400000070000100000000000000000007000000", @ANYRES32=r2, @ANYBLOB="0c000280060012"], 0x24}}, 0x0) (fail_nth: 2)

20.225769658s ago: executing program 3 (id=1329):
r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
fchdir(r0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x50, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="8fcacb7907051175f37538e486dd6300800701082c00db5b686158bbcfe8875a060300000023000000000000000000000000ac1414aa"], 0xfdef)
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff}, 0x13f, 0x5}}, 0x20)
write$RDMA_USER_CM_CMD_BIND(r3, &(0x7f00000000c0)={0x14, 0x88, 0xfa00, {r4, 0x30, 0x0, @ib={0x1b, 0x4, 0xffff, {"00000000f30000000000000000000001"}, 0xfffffffffffffffd, 0x7ff}}}, 0x90)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f0000000280)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(cipher_null)\x00'}, 0x58)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bc6)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
r7 = syz_io_uring_setup(0x10d, &(0x7f00000003c0)={0x0, 0x5885}, &(0x7f0000000340)=<r8=>0x0, &(0x7f0000000000)=<r9=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r8, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r8, r9, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x4004, @fd_index=0x3, 0x0, 0x0})
io_uring_enter(r7, 0x3516, 0x0, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000200)={0x3, 0x1, 0x207, 0x0, 0x0, 0x1, 0x7, 0x8000}, 0x20)
setsockopt$inet_sctp6_SCTP_INITMSG(r2, 0x84, 0x2, &(0x7f0000000040)={0x80b, 0x3, 0xfff9, 0x8}, 0x8)
r10 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r10, 0x1, 0xa, &(0x7f0000000080)=0x8, 0x4)
bind$inet6(r10, &(0x7f00000000c0)={0xa, 0xe22}, 0x1c)
socket$inet6(0xa, 0x2, 0x0)
ioctl$F2FS_IOC_WRITE_CHECKPOINT(r5, 0xf507, 0x0)

20.172712296s ago: executing program 5 (id=1331):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000400), r1)
syz_open_dev$dmmidi(0x0, 0xba, 0x4000c0)
socket$can_j1939(0x1d, 0x2, 0x7)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x9b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = syz_open_procfs(0x0, &(0x7f00000014c0)='smaps_rollup\x00')
pread64(r4, &(0x7f0000002180)=""/4105, 0x1009, 0x0)
r5 = openat$selinux_access(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
pwritev(r5, &(0x7f0000000540)=[{&(0x7f0000000080)='\t', 0x1}], 0x1, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000080)={'wpan1\x00', <r6=>0x0})
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_LLSEC_ADD_SECLEVEL(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)={0x2c, r2, 0x60b, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0x3}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r6}]}, 0x2c}}, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r8, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x3c, r9, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES_LOW={0x8, 0x11, 0xffffffff}, @ETHTOOL_A_COALESCE_USE_CQE_MODE_RX={0x5}]}, 0x3c}, 0x1, 0x0, 0x0, 0x24004000}, 0x0)

19.721374852s ago: executing program 3 (id=1332):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000002d80), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000002dc0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_DEL_TX_TS(r0, &(0x7f0000002ec0)={0x0, 0x0, &(0x7f0000002e80)={&(0x7f0000000240)={0x30, r1, 0x1, 0x70bd27, 0x25dfdbf9, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_TSID={0x5, 0xd2, 0x3}]}, 0x30}, 0x1, 0x0, 0x0, 0x80}, 0xc0) (fail_nth: 2)

19.400364253s ago: executing program 4 (id=1334):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000400), r1)
syz_open_dev$dmmidi(0x0, 0xba, 0x4000c0)
socket$can_j1939(0x1d, 0x2, 0x7)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x9b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = syz_open_procfs(0x0, &(0x7f00000014c0)='smaps_rollup\x00')
pread64(r4, &(0x7f0000002180)=""/4105, 0x1009, 0x0)
r5 = openat$selinux_access(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
pwritev(r5, &(0x7f0000000540)=[{&(0x7f0000000080)='\t', 0x1}], 0x1, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000080)={'wpan1\x00', <r6=>0x0})
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_LLSEC_ADD_SECLEVEL(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)={0x2c, r2, 0x60b, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0x3}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r6}]}, 0x2c}}, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r8, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x3c, r9, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES_LOW={0x8, 0x11, 0xffffffff}, @ETHTOOL_A_COALESCE_USE_CQE_MODE_RX={0x5}]}, 0x3c}, 0x1, 0x0, 0x0, 0x24004000}, 0x0)

19.313324262s ago: executing program 5 (id=1335):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000380)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000400)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002bbd7000000000004400000008000300", @ANYRES32=r3, @ANYBLOB="1c00238008001c000900000008001a000300000008000b"], 0x38}}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffebe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='8'], 0x38}}, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r6, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r6, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(0xffffffffffffffff, 0x2d3e, 0x0, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="140000001000009006000000000000000000000a44000000090a0000000000fa82a3fa211411fa0008000a40000000000900020073797a31000000000900010073797a3000000000080005400000000008000840000000001400000011"], 0x6c}}, 0x0)
r7 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYRESDEC, @ANYRESHEX=r4, @ANYRES16=r5], 0xec}}, 0x40c0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)

18.156758709s ago: executing program 3 (id=1337):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x1)
syz_open_dev$MSR(&(0x7f0000000380), 0x0, 0x0)
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000280), 0x26108d4b05e4fa33, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000100)=0x80000)
r1 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$MRT6_ADD_MFC_PROXY(r1, 0x29, 0xd2, &(0x7f00000001c0)={{0xa, 0x4e21, 0x80000001, @private2={0xfc, 0x2, '\x00', 0x1}, 0x7}, {0xa, 0x4e22, 0x1, @loopback, 0x67b8dd65}, 0x1, {[0xf924, 0x9, 0x2, 0x5, 0x1000000, 0x3, 0x0, 0x200]}}, 0x5c)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000140)={@my=0x1})
ioctl$IOCTL_VMCI_CTX_GET_CPT_STATE(r0, 0x7b1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000000c0), 0x4, 0x0)
r3 = socket$inet6(0xa, 0x2, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x3000003, 0x200000006c832, r1, 0x0)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600a00, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil)
r4 = openat$fb0(0xffffffffffffff9c, 0x0, 0x41081, 0x0)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
mmap(&(0x7f0000f7d000/0x4000)=nil, 0x4000, 0x0, 0x4010, r5, 0x11d7000)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{0x1}, &(0x7f0000000040), &(0x7f0000000100)}, 0x20)
r6 = dup2(r2, r3)
bind$bt_l2cap(r6, &(0x7f0000000240)={0x1f, 0x5, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x0, 0x1}, 0xe)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r0)
sendmsg$NL80211_CMD_GET_MPP(r6, &(0x7f0000000700)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000680)={0x68, r7, 0x200, 0x70bd2c, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x401, 0x71}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}]}, 0x68}, 0x1, 0x0, 0x0, 0x1}, 0x20040880)
ioctl$FBIOPAN_DISPLAY(r4, 0x4606, 0x0)

17.956218885s ago: executing program 3 (id=1339):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = syz_genetlink_get_family_id$nfc(&(0x7f00000000c0), 0xffffffffffffffff)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000500)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mount$overlay(0x0, 0x0, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x101042, 0x0)
io_submit(0x0, 0x0, 0x0)
syz_genetlink_get_family_id$mptcp(0x0, r1)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000004080eff95"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f00000004c0)='contention_end\x00', r3}, 0x10)
r4 = syz_open_dev$cec(&(0x7f0000000000), 0xffffffffffffffff, 0x0)
syz_usb_connect(0x6, 0x0, 0x0, 0x0)
ioctl$CEC_TRANSMIT(r4, 0xc0386105, &(0x7f0000000140)={0xa4a, 0x4e3bf1d1, 0x2, 0x11, 0x8000, 0x81, "4f1b50acd047e59fcef5394a909a25bb", 0x4, 0x0, 0x6, 0x0, 0x6, 0x3, 0x4})
r5 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
r6 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000018c0)={'team0\x00', <r8=>0x0})
r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r9, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
write$bt_hci(r9, &(0x7f00000005c0)=ANY=[@ANYBLOB="0e00000002"], 0x8)
r10 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_INITMSG(r10, 0x84, 0x2, &(0x7f0000000040)={0x8, 0x6, 0xab3, 0x9}, 0x8)
ioctl$IOCTL_GET_NCIDEV_IDX(r6, 0x0, &(0x7f00000000c0)=<r11=>0x0)
bind$nfc_llcp(r5, &(0x7f0000000300)={0x27, r11, 0xfffffffc, 0x5, 0x4, 0xfe, "d9298498abdba7f061bd5797c8ef0301000000000000000008000000f4000000000000000000ffe000", 0x10000000000002}, 0xcf)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000180)=<r12=>0x0)
sendmsg$NFC_CMD_START_POLL(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)={0x4c, r0, 0x2, 0x70bd2b, 0x25dfdbfe, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r11}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r12}, @NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x48}, @NFC_ATTR_IM_PROTOCOLS={0x8, 0xd, 0x80}, @NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x50}, @NFC_ATTR_TM_PROTOCOLS={0x8, 0xe, 0x40}, @NFC_ATTR_DEVICE_INDEX={0x8}]}, 0x4c}}, 0x20008005)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="15000000100000000200"/20, @ANYRES32, @ANYRES16=r8, @ANYRES32=0x0, @ANYRES32, @ANYRES8=r10], 0x48)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='fdinfo/3\x00')

17.955692719s ago: executing program 4 (id=1340):
socket$nl_generic(0x10, 0x3, 0x10)
openat$nullb(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

17.88496696s ago: executing program 5 (id=1341):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000940)={0x26, 'hash\x00', 0x0, 0x0, 'vmac64(aes-generic)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000440)='\x00'/16, 0x10)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg$unix(r1, &(0x7f00000032c0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000100)='_', 0x1}], 0x1, 0x0, 0x0, 0x40000}}], 0x2, 0x0) (fail_nth: 1)

17.629219643s ago: executing program 5 (id=1342):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000040)="9c", 0x1}], 0x1)
r1 = socket$inet(0x2, 0x2, 0x1)
socket$packet(0x11, 0x3, 0x300)
sendmsg$inet(r1, &(0x7f0000000380)={&(0x7f0000000000)={0x2, 0x0, @broadcast}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000400)='\b\x00', 0x2}, {&(0x7f0000000180)="96bc1480bb58", 0x6}], 0x2, &(0x7f0000000240)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @rand_addr, @multicast2}}}], 0x20}, 0x0)
r2 = io_uring_setup(0x177f, &(0x7f00000002c0)={0x0, 0x0, 0x100, 0x0, 0x389})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000380)=ANY=[@ANYRESOCT=r2, @ANYRES16=r0, @ANYRES8=r0, @ANYRESHEX=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYRES64=r2, @ANYRESOCT=r0, @ANYRES16=r3], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f0000000a40)='GPL\x00', 0x1000, 0x0, 0x0, 0x0, 0xe, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$inet6(0xa, 0x5, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=@base={0x7, 0x4, 0x18, 0xa042, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x18, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0xe, 0x4008)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_io_uring_setup(0x6908, &(0x7f0000000440)={0x0, 0xfffffffc, 0x4, 0x3, 0x51, 0x0, r4}, &(0x7f0000000000), &(0x7f00000000c0))
r8 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x10, &(0x7f0000000000)=@framed={{0x18, 0x6}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r8}, {}, {}, {0x7, 0x0, 0xb, 0x7}}, @printk]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000640)={{r8, <r10=>0xffffffffffffffff}, &(0x7f00000005c0), &(0x7f0000000600)=r9}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000080)={0x18, 0x8, &(0x7f0000000500)=@framed={{0x18, 0x8}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r10}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xa00}}]}, &(0x7f0000000540)='GPL\x00', 0x5, 0xde, &(0x7f0000000340)=""/222, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)

17.260633359s ago: executing program 0 (id=1343):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x800, &(0x7f0000e68000)={0x2, 0x4e23, @multicast2}, 0xfffffffffffffe4e)
clock_adjtime(0x0, &(0x7f0000000640)={0x7, 0x9, 0x380000, 0x8, 0xfffffffffffffff9, 0xfffffffffffffff7, 0x9, 0x0, 0xae, 0x6, 0x7, 0x4, 0xfffffffffffff04f, 0x7, 0x80000000, 0xfffffffffffffff8, 0xffffffffffffffff, 0x6, 0x0, 0x100, 0x4, 0x2, 0x5, 0x3, 0x8, 0x8})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$KDGKBLED(r1, 0x4b64, &(0x7f0000000080))
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r2)
sendmsg$IEEE802154_LLSEC_ADD_DEV(r2, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
r3 = socket(0x10, 0x80002, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="9000000010000305000000000000000000000700", @ANYRES32=0x0, @ANYBLOB="996e06004d4c0700540012800800010068737200480002800500030008000000050003000500000005000300fd00000008", @ANYRES32, @ANYBLOB="08000100", @ANYRES32=r4], 0x90}}, 0x0)
sendmmsg$alg(r3, &(0x7f00000000c0), 0x492492492492627, 0x0)
sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x0, 0x0, 0x21)
recvmmsg(r0, &(0x7f0000002640)=[{{0x0, 0x0, 0x0}, 0x7}, {{0x0, 0x0, 0x0}, 0x6}], 0x2, 0x40010000, 0x0)

16.90389958s ago: executing program 0 (id=1344):
r0 = socket$packet(0x11, 0x2, 0x300)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
getpeername$packet(r1, &(0x7f0000000000)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
sendmmsg(r0, &(0x7f0000000440)=[{{&(0x7f0000000700)=@xdp={0x2c, 0xdd86, r2}, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2f00}}], 0x1, 0x0)

16.835414916s ago: executing program 4 (id=1345):
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mkdir(&(0x7f0000005800)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cgroup.events\x00', 0x275a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
mlock(&(0x7f0000c00000/0x400000)=nil, 0x400000)
mremap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2000, 0x7, &(0x7f0000fff000/0x1000)=nil)
madvise(&(0x7f0000f0f000/0x2000)=nil, 0x2000, 0x15)
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r4, &(0x7f00000002c0)=@pppol2tpin6={0x18, 0x1, {0x0, r5, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x32)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_GET(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r7, 0x325, 0x0, 0x0, {0x8}}, 0x14}}, 0x0)
dup2(r5, r0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x200000b, 0x12, r0, 0x0)
mbind(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000300)=0x2, 0x1ff, 0x3)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
creat(&(0x7f0000000340)='./file0/file0\x00', 0x0)

16.713602208s ago: executing program 0 (id=1346):
r0 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c643c, &(0x7f0000000300)={0x0, 0x0, r0})

16.452074621s ago: executing program 0 (id=1347):
mkdir(&(0x7f0000000000)='./file0\x00', 0x10)
mount(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)={0x40, 0x24, 0x3}, 0x18)

15.760776238s ago: executing program 5 (id=1348):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x4a081, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=@newlink={0x38, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @ip6gretap={{0xe}, {0x4}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000500)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}})
write$tun(r0, &(0x7f0000000000)=ANY=[], 0xfdef)

15.700897917s ago: executing program 4 (id=1349):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x1)
syz_open_dev$MSR(&(0x7f0000000380), 0x0, 0x0)
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000280), 0x26108d4b05e4fa33, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000100)=0x80000)
r1 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$MRT6_ADD_MFC_PROXY(r1, 0x29, 0xd2, &(0x7f00000001c0)={{0xa, 0x4e21, 0x80000001, @private2={0xfc, 0x2, '\x00', 0x1}, 0x7}, {0xa, 0x4e22, 0x1, @loopback, 0x67b8dd65}, 0x1, {[0xf924, 0x9, 0x2, 0x5, 0x1000000, 0x3, 0x0, 0x200]}}, 0x5c)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000140)={@my=0x1})
ioctl$IOCTL_VMCI_CTX_GET_CPT_STATE(r0, 0x7b1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000000c0), 0x4, 0x0)
r3 = socket$inet6(0xa, 0x2, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x3000003, 0x200000006c832, r1, 0x0)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600a00, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil)
r4 = openat$fb0(0xffffffffffffff9c, 0x0, 0x41081, 0x0)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
mmap(&(0x7f0000f7d000/0x4000)=nil, 0x4000, 0x0, 0x4010, r5, 0x11d7000)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{0x1}, &(0x7f0000000040), &(0x7f0000000100)}, 0x20)
r6 = dup2(r2, r3)
bind$bt_l2cap(r6, &(0x7f0000000240)={0x1f, 0x5, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x0, 0x1}, 0xe)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r0)
sendmsg$NL80211_CMD_GET_MPP(r6, &(0x7f0000000700)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000680)={0x68, r7, 0x200, 0x70bd2c, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x401, 0x71}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}]}, 0x68}, 0x1, 0x0, 0x0, 0x1}, 0x20040880)
ioctl$FBIOPAN_DISPLAY(r4, 0x4606, 0x0)

15.695377123s ago: executing program 0 (id=1350):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000400), r1)
syz_open_dev$dmmidi(0x0, 0xba, 0x4000c0)
socket$can_j1939(0x1d, 0x2, 0x7)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x9b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = syz_open_procfs(0x0, &(0x7f00000014c0)='smaps_rollup\x00')
pread64(r4, &(0x7f0000002180)=""/4105, 0x1009, 0x0)
r5 = openat$selinux_access(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
pwritev(r5, &(0x7f0000000540)=[{&(0x7f0000000080)='\t', 0x1}], 0x1, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000080)={'wpan1\x00', <r6=>0x0})
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_LLSEC_ADD_SECLEVEL(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)={0x2c, r2, 0x60b, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0x3}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r6}]}, 0x2c}}, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r8, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x3c, r9, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES_LOW={0x8, 0x11, 0xffffffff}, @ETHTOOL_A_COALESCE_USE_CQE_MODE_RX={0x5}]}, 0x3c}, 0x1, 0x0, 0x0, 0x24004000}, 0x0)

15.252696737s ago: executing program 0 (id=1351):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x4e7, 0x30, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) (async)
syz_usb_connect$uac1(0x2, 0xdc, &(0x7f0000000080)={{0x12, 0x1, 0x300, 0x0, 0x0, 0x0, 0x40, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xca, 0x3, 0x1, 0x1, 0xe0, 0xc, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x9}, [@extension_unit={0x8, 0x24, 0x8, 0x4, 0x5957, 0x4, "bb"}, @output_terminal={0x9, 0x24, 0x3, 0x4, 0x1ff, 0x5, 0x3}, @mixer_unit={0x7, 0x24, 0x4, 0x3, 0x2, "8bb0"}, @mixer_unit={0x8, 0x24, 0x4, 0x3, 0x2, "3ea2cf"}, @mixer_unit={0x5, 0x24, 0x4, 0x2, 0x5c}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_i_continuous={0xc, 0x24, 0x2, 0x1, 0xf7, 0x1, 0x6, 0xc, "048900", 'A'}, @format_type_ii_discrete={0x12, 0x24, 0x2, 0x2, 0x5, 0x80, 0x6, "f0590378638714c60b"}]}, {{0x9, 0x5, 0x1, 0x9, 0x8, 0x22, 0x3, 0x8, {0x7, 0x25, 0x1, 0x2, 0x14, 0x58e}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_ii_discrete={0xd, 0x24, 0x2, 0x2, 0x5, 0x8f, 0x1, "cc89db4e"}, @as_header={0x7, 0x24, 0x1, 0x3, 0x5}, @as_header={0x7, 0x24, 0x1, 0x1, 0x2, 0x4}, @format_type_i_discrete={0xd, 0x24, 0x2, 0x1, 0x9a, 0x1, 0x9, 0x0, "929028a1c1"}]}, {{0x9, 0x5, 0x82, 0x9, 0x10, 0x8, 0x4, 0x8, {0x7, 0x25, 0x1, 0xc0, 0x8}}}}}}}]}}, &(0x7f00000005c0)={0xa, &(0x7f0000000180)={0xa, 0x6, 0x250, 0x7, 0x1, 0x3, 0x40, 0x3}, 0x144, &(0x7f0000000380)={0x5, 0xf, 0x144, 0x5, [@generic={0xf5, 0x10, 0x4, "00f15c36a61961e407d7d53c5e171e52b01aba10ed42d90cbfcfa6893dc33c47e78b6480afd2eeeb995760b5aaf083d2242c35ae6e8dd50e90b61be634adbfb7c85985296820c95716aa234e0f2f835b8e5efd23328d95b75095fc4d94992ebdddccdcfd0e67090bbfba474e2764d4958d9dc0559ca11ac8a84aea7d1895b0378addf7f071cded4fc1a5ad0e89d5c7412643c883d3c026da2a45aff2122a1d9e8291fa0ba909e8f1891823e4fb2b2e8880f5f5809a8ce583178aff5c52071cef993ab6c3c46d757a8a51e69c7a2543c83d183370c8b525bbca92f4aecb275f01bcabd9decf1be85dc046320640f415c856e8"}, @ss_container_id={0x14, 0x10, 0x4, 0x9, "96583532d9a16bd968d771b8dc45ecb9"}, @ssp_cap={0x18, 0x10, 0xa, 0x6, 0x3, 0x2, 0xf00, 0x237, [0x0, 0xc0, 0xa000]}, @ss_container_id={0x14, 0x10, 0x4, 0x6, "c02c149251ffe6c5b752a914e9b73919"}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0xc, 0x7, 0x7, 0x7}]}, 0x4, [{0x4, &(0x7f0000000200)=@lang_id={0x4, 0x3, 0x810}}, {0xce, &(0x7f0000000240)=@string={0xce, 0x3, "841ea1fb6f8928a80a3c6c10956063d33abc73b32343e4aea0908e565b778594f96c68ed2fdf48a8f49623994b2052624ec8c5866b1b820878b47cd10f1ed4ecf24677615fa83b1a6c2f6a119dded1d421b1d34d6fa9fba46712e61d420f2790742f57dac2ebd27de3ae6fcfdf43c16561b3d8965bd42dc6a944a57aa79bdd29f728f8604ac92bf74c100224d292ce707c2e1d0967c633eac65b7b62860d8bf153c3375b97dc4a969e0dffb6134a41cb4ddfe112738977a24774ca4d6f6a263578cba77ab879d8449353b1f9"}}, {0x7e, &(0x7f0000000500)=@string={0x7e, 0x3, "a90befd204006bf341e2192e63583b8217871b2a1c238aeaa8965090fc437ac6e27208c5b1fc93750d2531803f2df171adc8f1553cb5adca3ea0546529f18301dc7f56a65f0dfbcd36711b7e23357264f1d859e7d0039c76f916b7be7b41ddaba490b6fc5f62a337529447ccd9b60ab3e3c4121a05493fe544907adf"}}, {0x4, &(0x7f0000000580)=@lang_id={0x4, 0x3, 0x3c0a}}]}) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0]) (async)
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00') (async)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000200)={{0x1, 0x1, 0x18, r2}, './file0\x00'}) (async)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0) (async)
syz_usb_control_io$hid(r0, 0x0, 0x0) (async)
syz_usb_connect(0x0, 0x2d, &(0x7f00000001c0)=ANY=[@ANYBLOB="12010000fdc06340f30c74934bbc0040000109021b0001000000000904000001a7a00f000905", @ANYBLOB="92ab21"], 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000340)={0x24, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="002207000001a98941efc0ad3f"], 0x0}, 0x0)

12.011860098s ago: executing program 33 (id=1295):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
get_mempolicy(&(0x7f0000005a40), 0x0, 0x3, &(0x7f0000ffc000/0x4000)=nil, 0x4)
write$nci(r0, &(0x7f0000000140)=ANY=[@ANYBLOB="a00c870c"], 0x4)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan1\x00'})
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x2, 0x4, 0x5, 0x1, 0x46480, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = syz_usb_connect(0x0, 0x24, &(0x7f0000000440)={{0x12, 0x1, 0x0, 0x5f, 0x2a, 0xb4, 0x20, 0xc72, 0xd, 0x279b, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xdb, 0xa2, 0x92}}]}}]}}, 0x0)
syz_usb_control_io$cdc_ecm(r1, 0x0, &(0x7f0000000240)={0x1c, &(0x7f0000000040)=ANY=[], 0x0, 0x0})
socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_control_io(r1, 0x0, &(0x7f0000000000)={0x84, &(0x7f0000000280)={0x0, 0x18}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

2.498496142s ago: executing program 34 (id=1339):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = syz_genetlink_get_family_id$nfc(&(0x7f00000000c0), 0xffffffffffffffff)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000500)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mount$overlay(0x0, 0x0, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x101042, 0x0)
io_submit(0x0, 0x0, 0x0)
syz_genetlink_get_family_id$mptcp(0x0, r1)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000004080eff95"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f00000004c0)='contention_end\x00', r3}, 0x10)
r4 = syz_open_dev$cec(&(0x7f0000000000), 0xffffffffffffffff, 0x0)
syz_usb_connect(0x6, 0x0, 0x0, 0x0)
ioctl$CEC_TRANSMIT(r4, 0xc0386105, &(0x7f0000000140)={0xa4a, 0x4e3bf1d1, 0x2, 0x11, 0x8000, 0x81, "4f1b50acd047e59fcef5394a909a25bb", 0x4, 0x0, 0x6, 0x0, 0x6, 0x3, 0x4})
r5 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
r6 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000018c0)={'team0\x00', <r8=>0x0})
r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r9, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
write$bt_hci(r9, &(0x7f00000005c0)=ANY=[@ANYBLOB="0e00000002"], 0x8)
r10 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_INITMSG(r10, 0x84, 0x2, &(0x7f0000000040)={0x8, 0x6, 0xab3, 0x9}, 0x8)
ioctl$IOCTL_GET_NCIDEV_IDX(r6, 0x0, &(0x7f00000000c0)=<r11=>0x0)
bind$nfc_llcp(r5, &(0x7f0000000300)={0x27, r11, 0xfffffffc, 0x5, 0x4, 0xfe, "d9298498abdba7f061bd5797c8ef0301000000000000000008000000f4000000000000000000ffe000", 0x10000000000002}, 0xcf)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000180)=<r12=>0x0)
sendmsg$NFC_CMD_START_POLL(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)={0x4c, r0, 0x2, 0x70bd2b, 0x25dfdbfe, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r11}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r12}, @NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x48}, @NFC_ATTR_IM_PROTOCOLS={0x8, 0xd, 0x80}, @NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x50}, @NFC_ATTR_TM_PROTOCOLS={0x8, 0xe, 0x40}, @NFC_ATTR_DEVICE_INDEX={0x8}]}, 0x4c}}, 0x20008005)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="15000000100000000200"/20, @ANYRES32, @ANYRES16=r8, @ANYRES32=0x0, @ANYRES32, @ANYRES8=r10], 0x48)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='fdinfo/3\x00')

498.795798ms ago: executing program 35 (id=1348):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x4a081, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=@newlink={0x38, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @ip6gretap={{0xe}, {0x4}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000500)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}})
write$tun(r0, &(0x7f0000000000)=ANY=[], 0xfdef)

456.757201ms ago: executing program 36 (id=1349):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x1)
syz_open_dev$MSR(&(0x7f0000000380), 0x0, 0x0)
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000280), 0x26108d4b05e4fa33, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000100)=0x80000)
r1 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$MRT6_ADD_MFC_PROXY(r1, 0x29, 0xd2, &(0x7f00000001c0)={{0xa, 0x4e21, 0x80000001, @private2={0xfc, 0x2, '\x00', 0x1}, 0x7}, {0xa, 0x4e22, 0x1, @loopback, 0x67b8dd65}, 0x1, {[0xf924, 0x9, 0x2, 0x5, 0x1000000, 0x3, 0x0, 0x200]}}, 0x5c)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000140)={@my=0x1})
ioctl$IOCTL_VMCI_CTX_GET_CPT_STATE(r0, 0x7b1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000000c0), 0x4, 0x0)
r3 = socket$inet6(0xa, 0x2, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x3000003, 0x200000006c832, r1, 0x0)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600a00, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil)
r4 = openat$fb0(0xffffffffffffff9c, 0x0, 0x41081, 0x0)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
mmap(&(0x7f0000f7d000/0x4000)=nil, 0x4000, 0x0, 0x4010, r5, 0x11d7000)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{0x1}, &(0x7f0000000040), &(0x7f0000000100)}, 0x20)
r6 = dup2(r2, r3)
bind$bt_l2cap(r6, &(0x7f0000000240)={0x1f, 0x5, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x0, 0x1}, 0xe)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r0)
sendmsg$NL80211_CMD_GET_MPP(r6, &(0x7f0000000700)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000680)={0x68, r7, 0x200, 0x70bd2c, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x401, 0x71}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}]}, 0x68}, 0x1, 0x0, 0x0, 0x1}, 0x20040880)
ioctl$FBIOPAN_DISPLAY(r4, 0x4606, 0x0)

0s ago: executing program 37 (id=1351):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x4e7, 0x30, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) (async)
syz_usb_connect$uac1(0x2, 0xdc, &(0x7f0000000080)={{0x12, 0x1, 0x300, 0x0, 0x0, 0x0, 0x40, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xca, 0x3, 0x1, 0x1, 0xe0, 0xc, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x9}, [@extension_unit={0x8, 0x24, 0x8, 0x4, 0x5957, 0x4, "bb"}, @output_terminal={0x9, 0x24, 0x3, 0x4, 0x1ff, 0x5, 0x3}, @mixer_unit={0x7, 0x24, 0x4, 0x3, 0x2, "8bb0"}, @mixer_unit={0x8, 0x24, 0x4, 0x3, 0x2, "3ea2cf"}, @mixer_unit={0x5, 0x24, 0x4, 0x2, 0x5c}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_i_continuous={0xc, 0x24, 0x2, 0x1, 0xf7, 0x1, 0x6, 0xc, "048900", 'A'}, @format_type_ii_discrete={0x12, 0x24, 0x2, 0x2, 0x5, 0x80, 0x6, "f0590378638714c60b"}]}, {{0x9, 0x5, 0x1, 0x9, 0x8, 0x22, 0x3, 0x8, {0x7, 0x25, 0x1, 0x2, 0x14, 0x58e}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_ii_discrete={0xd, 0x24, 0x2, 0x2, 0x5, 0x8f, 0x1, "cc89db4e"}, @as_header={0x7, 0x24, 0x1, 0x3, 0x5}, @as_header={0x7, 0x24, 0x1, 0x1, 0x2, 0x4}, @format_type_i_discrete={0xd, 0x24, 0x2, 0x1, 0x9a, 0x1, 0x9, 0x0, "929028a1c1"}]}, {{0x9, 0x5, 0x82, 0x9, 0x10, 0x8, 0x4, 0x8, {0x7, 0x25, 0x1, 0xc0, 0x8}}}}}}}]}}, &(0x7f00000005c0)={0xa, &(0x7f0000000180)={0xa, 0x6, 0x250, 0x7, 0x1, 0x3, 0x40, 0x3}, 0x144, &(0x7f0000000380)={0x5, 0xf, 0x144, 0x5, [@generic={0xf5, 0x10, 0x4, "00f15c36a61961e407d7d53c5e171e52b01aba10ed42d90cbfcfa6893dc33c47e78b6480afd2eeeb995760b5aaf083d2242c35ae6e8dd50e90b61be634adbfb7c85985296820c95716aa234e0f2f835b8e5efd23328d95b75095fc4d94992ebdddccdcfd0e67090bbfba474e2764d4958d9dc0559ca11ac8a84aea7d1895b0378addf7f071cded4fc1a5ad0e89d5c7412643c883d3c026da2a45aff2122a1d9e8291fa0ba909e8f1891823e4fb2b2e8880f5f5809a8ce583178aff5c52071cef993ab6c3c46d757a8a51e69c7a2543c83d183370c8b525bbca92f4aecb275f01bcabd9decf1be85dc046320640f415c856e8"}, @ss_container_id={0x14, 0x10, 0x4, 0x9, "96583532d9a16bd968d771b8dc45ecb9"}, @ssp_cap={0x18, 0x10, 0xa, 0x6, 0x3, 0x2, 0xf00, 0x237, [0x0, 0xc0, 0xa000]}, @ss_container_id={0x14, 0x10, 0x4, 0x6, "c02c149251ffe6c5b752a914e9b73919"}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0xc, 0x7, 0x7, 0x7}]}, 0x4, [{0x4, &(0x7f0000000200)=@lang_id={0x4, 0x3, 0x810}}, {0xce, &(0x7f0000000240)=@string={0xce, 0x3, "841ea1fb6f8928a80a3c6c10956063d33abc73b32343e4aea0908e565b778594f96c68ed2fdf48a8f49623994b2052624ec8c5866b1b820878b47cd10f1ed4ecf24677615fa83b1a6c2f6a119dded1d421b1d34d6fa9fba46712e61d420f2790742f57dac2ebd27de3ae6fcfdf43c16561b3d8965bd42dc6a944a57aa79bdd29f728f8604ac92bf74c100224d292ce707c2e1d0967c633eac65b7b62860d8bf153c3375b97dc4a969e0dffb6134a41cb4ddfe112738977a24774ca4d6f6a263578cba77ab879d8449353b1f9"}}, {0x7e, &(0x7f0000000500)=@string={0x7e, 0x3, "a90befd204006bf341e2192e63583b8217871b2a1c238aeaa8965090fc437ac6e27208c5b1fc93750d2531803f2df171adc8f1553cb5adca3ea0546529f18301dc7f56a65f0dfbcd36711b7e23357264f1d859e7d0039c76f916b7be7b41ddaba490b6fc5f62a337529447ccd9b60ab3e3c4121a05493fe544907adf"}}, {0x4, &(0x7f0000000580)=@lang_id={0x4, 0x3, 0x3c0a}}]}) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0]) (async)
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00') (async)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000200)={{0x1, 0x1, 0x18, r2}, './file0\x00'}) (async)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0) (async)
syz_usb_control_io$hid(r0, 0x0, 0x0) (async)
syz_usb_connect(0x0, 0x2d, &(0x7f00000001c0)=ANY=[@ANYBLOB="12010000fdc06340f30c74934bbc0040000109021b0001000000000904000001a7a00f000905", @ANYBLOB="92ab21"], 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000340)={0x24, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="002207000001a98941efc0ad3f"], 0x0}, 0x0)

kernel console output (not intermixed with test programs):

 attached to major 180 minor 0
[  342.312631][ T9806] usb usb8: usbfs: process 9806 (syz.3.1013) did not claim interface 0 before use
[  342.450544][   T29] audit: type=1400 audit(1732855045.269:1423): avc:  denied  { create } for  pid=9817 comm="syz.0.1016" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  342.664855][ T5884] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[  342.882184][   T29] audit: type=1400 audit(1732855045.699:1424): avc:  denied  { execute } for  pid=9801 comm="syz.5.1012" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=23731 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  342.941681][ T5884] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  343.034777][ T5884] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  343.043403][ T5884] usb 3-1: Product: syz
[  343.097036][ T5884] usb 3-1: Manufacturer: syz
[  343.101719][ T5884] usb 3-1: SerialNumber: syz
[  343.163035][ T5884] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  343.373071][  T967] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  343.443224][   T29] audit: type=1400 audit(1732855046.269:1425): avc:  denied  { create } for  pid=9801 comm="syz.5.1012" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  343.729747][   T29] audit: type=1400 audit(1732855046.539:1426): avc:  denied  { create } for  pid=9812 comm="syz.2.1015" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  343.754747][ T9816] random: crng reseeded on system resumption
[  343.887073][ T9833] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  344.344707][   T29] audit: type=1400 audit(1732855046.549:1427): avc:  denied  { accept } for  pid=9812 comm="syz.2.1015" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  344.439756][  T967] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive
[  344.447054][  T967] ath9k_htc: Failed to initialize the device
[  344.461261][   T29] audit: type=1400 audit(1732855046.559:1428): avc:  denied  { write } for  pid=9812 comm="syz.2.1015" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  344.477035][  T967] usb 3-1: ath9k_htc: USB layer deinitialized
[  344.560162][   T29] audit: type=1400 audit(1732855046.579:1429): avc:  denied  { append } for  pid=9812 comm="syz.2.1015" name="snapshot" dev="devtmpfs" ino=92 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  344.598985][   T80] usb 5-1: USB disconnect, device number 18
[  344.608810][   T80] ldusb 5-1:0.55: LD USB Device #0 now disconnected
[  344.623165][ T9835] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1019'.
[  344.807858][ T9838] syz.4.1020: attempt to access beyond end of device
[  344.807858][ T9838] nbd4: rw=0, sector=6, nr_sectors = 2 limit=0
[  344.820698][ T9838] ADFS-fs (nbd4): error: unable to read block 3, try 0
[  345.268121][ T1112] usb 3-1: USB disconnect, device number 20
[  345.367126][   T29] audit: type=1400 audit(1732855048.199:1430): avc:  denied  { write } for  pid=9841 comm="syz.3.1021" name="ppp" dev="devtmpfs" ino=709 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  345.809164][   T29] audit: type=1400 audit(1732855048.629:1431): avc:  denied  { write } for  pid=9842 comm="syz.0.1022" path="socket:[22434]" dev="sockfs" ino=22434 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  345.918862][   T29] audit: type=1400 audit(1732855048.749:1432): avc:  denied  { read } for  pid=9851 comm="syz.0.1025" name="usbmon0" dev="devtmpfs" ino=716 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  345.981796][   T29] audit: type=1400 audit(1732855048.749:1433): avc:  denied  { open } for  pid=9851 comm="syz.0.1025" path="/dev/usbmon0" dev="devtmpfs" ino=716 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  346.152262][ T9850] kvm: kvm [9848]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0xc100000800
[  347.941074][   T29] kauditd_printk_skb: 5 callbacks suppressed
[  347.941137][   T29] audit: type=1400 audit(1732855050.770:1439): avc:  denied  { mounton } for  pid=9856 comm="syz.5.1026" path="/83/file0" dev="tmpfs" ino=478 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=sock_file permissive=1
[  347.974738][ T9870] ./file0: Can't lookup blockdev
[  347.993463][  T967] IPVS: starting estimator thread 0...
[  348.071961][   T29] audit: type=1400 audit(1732855050.880:1440): avc:  denied  { read } for  pid=9875 comm="syz.2.1030" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[  348.112688][   T29] audit: type=1400 audit(1732855050.880:1441): avc:  denied  { read } for  pid=9875 comm="syz.2.1030" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[  348.149419][ T9878] IPVS: using max 25 ests per chain, 60000 per kthread
[  348.202869][ T9887] FAULT_INJECTION: forcing a failure.
[  348.202869][ T9887] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  348.409073][   T29] audit: type=1400 audit(1732855050.880:1442): avc:  denied  { open } for  pid=9875 comm="syz.2.1030" path="/222/file0" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[  348.498546][ T9887] CPU: 0 UID: 0 PID: 9887 Comm: syz.2.1032 Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  348.506697][   T29] audit: type=1400 audit(1732855050.980:1443): avc:  denied  { mount } for  pid=9881 comm="syz.0.1031" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  348.508897][ T9887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  348.541070][ T9887] Call Trace:
[  348.544326][ T9887]  <TASK>
[  348.547246][ T9887]  dump_stack_lvl+0x16c/0x1f0
[  348.551905][ T9887]  should_fail_ex+0x497/0x5b0
[  348.556561][ T9887]  _copy_from_iter+0x2a1/0x1560
[  348.561398][ T9887]  ? find_held_lock+0x2d/0x110
[  348.566149][ T9887]  ? __pfx__copy_from_iter+0x10/0x10
[  348.571408][ T9887]  ? rawv6_sendmsg+0xa25/0x4440
[  348.576250][ T9887]  ? __pfx_lock_release+0x10/0x10
[  348.581276][ T9887]  ? trace_lock_acquire+0x14e/0x1f0
[  348.586467][ T9887]  rawv6_sendmsg+0x2362/0x4440
[  348.591217][ T9887]  ? avc_has_perm_noaudit+0x119/0x3a0
[  348.596623][ T9887]  ? __pfx_rawv6_sendmsg+0x10/0x10
[  348.601737][ T9887]  ? avc_has_perm_noaudit+0x143/0x3a0
[  348.607103][ T9887]  ? avc_has_perm+0x11b/0x1c0
[  348.611758][ T9887]  ? __pfx_avc_has_perm+0x10/0x10
[  348.616773][ T9887]  ? __pfx_rawv6_sendmsg+0x10/0x10
[  348.621954][ T9887]  ? inet_sendmsg+0x119/0x140
[  348.626618][ T9887]  inet_sendmsg+0x119/0x140
[  348.631111][ T9887]  __sys_sendto+0x42a/0x4f0
[  348.635619][ T9887]  ? __pfx___sys_sendto+0x10/0x10
[  348.640662][ T9887]  ? ksys_write+0x1ba/0x250
[  348.645140][ T9887]  ? __pfx_ksys_write+0x10/0x10
[  348.649963][ T9887]  __x64_sys_sendto+0xe0/0x1c0
[  348.654788][ T9887]  ? do_syscall_64+0x91/0x250
[  348.659445][ T9887]  ? lockdep_hardirqs_on+0x7c/0x110
[  348.664620][ T9887]  do_syscall_64+0xcd/0x250
[  348.669116][ T9887]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  348.674989][ T9887] RIP: 0033:0x7f44aa580809
[  348.679378][ T9887] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  348.698960][ T9887] RSP: 002b:00007f44ab2da058 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  348.707358][ T9887] RAX: ffffffffffffffda RBX: 00007f44aa745fa0 RCX: 00007f44aa580809
[  348.715304][ T9887] RDX: 0000000000000002 RSI: 0000000020000080 RDI: 0000000000000003
[  348.723258][ T9887] RBP: 00007f44ab2da0a0 R08: 0000000020000000 R09: 000000000000001c
[  348.731212][ T9887] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  348.739169][ T9887] R13: 0000000000000000 R14: 00007f44aa745fa0 R15: 00007ffd45bb1738
[  348.747122][ T9887]  </TASK>
[  348.844850][ T9894] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1034'.
[  348.889826][ T9894] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1034'.
[  348.990030][ T9869] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  349.188451][  T967] usb 3-1: new high-speed USB device number 21 using dummy_hcd
[  349.594413][  T967] usb 3-1: Using ep0 maxpacket: 32
[  349.690378][  T967] usb 3-1: config 0 interface 0 altsetting 3 endpoint 0x81 has an invalid bInterval 32, changing to 9
[  349.707838][  T967] usb 3-1: config 0 interface 0 altsetting 3 endpoint 0x81 has invalid wMaxPacketSize 0
[  349.726948][   T29] audit: type=1400 audit(1732855052.560:1444): avc:  denied  { map } for  pid=9904 comm="syz.3.1036" path="/dev/nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  349.756383][  T967] usb 3-1: config 0 interface 0 has no altsetting 0
[  349.763691][   T29] audit: type=1400 audit(1732855052.560:1445): avc:  denied  { execute } for  pid=9904 comm="syz.3.1036" path="/dev/nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  349.789724][  T967] usb 3-1: New USB device found, idVendor=056a, idProduct=00c4, bcdDevice= 0.00
[  349.800318][  T967] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  349.915997][  T967] usb 3-1: config 0 descriptor??
[  350.054659][   T80] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  350.143279][ T9897] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  350.254721][ T9897] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  350.268473][   T80] usb 6-1: New USB device found, idVendor=8086, idProduct=0110, bcdDevice=bf.ad
[  350.294299][   T80] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  350.304037][ T9897] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  350.317101][ T9897] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  350.331770][   T80] usb 6-1: config 0 descriptor??
[  350.337592][   T29] audit: type=1400 audit(1732855053.150:1446): avc:  denied  { mount } for  pid=9914 comm="syz.0.1039" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  350.368778][   T80] gspca_main: spca508-2.14.0 probing 8086:0110
[  350.386167][ T9897] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  350.424662][ T9897] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  350.433136][ T9897] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  350.444534][ T9897] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  350.454973][ T9897] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  350.465638][ T9897] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  350.703609][  T967] wacom 0003:056A:00C4.0015: unknown main item tag 0x0
[  350.716955][  T967] wacom 0003:056A:00C4.0015: hidraw0: USB HID v0.00 Device [HID 056a:00c4] on usb-dummy_hcd.2-1/input0
[  351.237002][   T80] gspca_spca508: reg_read err -110
[  351.253671][   T80] gspca_spca508: reg_read err -32
[  351.261604][   T80] gspca_spca508: reg_read err -32
[  351.270441][   T80] gspca_spca508: reg_read err -32
[  351.275848][   T80] gspca_spca508: reg_read err -32
[  352.134475][   T80] gspca_spca508: reg write: error -110
[  352.146348][   T80] spca508 6-1:0.0: probe with driver spca508 failed with error -110
[  352.261252][   T29] audit: type=1400 audit(1732855055.090:1447): avc:  denied  { bind } for  pid=9944 comm="syz.0.1045" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  352.513444][ T9900] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  352.537132][ T9954] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1049'.
[  352.570737][   T29] audit: type=1400 audit(1732855055.400:1448): avc:  denied  { setopt } for  pid=9953 comm="syz.4.1049" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  352.597100][ T9900] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  352.621438][   T80] usb 3-1: USB disconnect, device number 21
[  352.755948][ T9952] FAULT_INJECTION: forcing a failure.
[  352.755948][ T9952] name failslab, interval 1, probability 0, space 0, times 0
[  352.775967][ T9952] CPU: 0 UID: 0 PID: 9952 Comm: syz.3.1047 Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  352.786337][ T9952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  352.796393][ T9952] Call Trace:
[  352.799652][ T9952]  <TASK>
[  352.802672][ T9952]  dump_stack_lvl+0x16c/0x1f0
[  352.807346][ T9952]  should_fail_ex+0x497/0x5b0
[  352.812005][ T9952]  ? fs_reclaim_acquire+0xae/0x150
[  352.817098][ T9952]  should_failslab+0xc2/0x120
[  352.821754][ T9952]  __kmalloc_noprof+0xcb/0x510
[  352.827962][ T9952]  ? rcu_is_watching+0x12/0xc0
[  352.827999][ T9952]  tomoyo_encode2+0x100/0x3e0
[  352.828029][ T9952]  tomoyo_encode+0x29/0x50
[  352.828051][ T9952]  tomoyo_realpath_from_path+0x19d/0x720
[  352.828076][ T9952]  ? tomoyo_path_number_perm+0x235/0x590
[  352.828099][ T9952]  tomoyo_path_number_perm+0x248/0x590
[  352.828117][ T9952]  ? tomoyo_path_number_perm+0x235/0x590
[  352.828138][ T9952]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  352.828179][ T9952]  ? __pfx_lock_release+0x10/0x10
[  352.828197][ T9952]  ? trace_lock_acquire+0x14e/0x1f0
[  352.828226][ T9952]  ? lock_acquire+0x2f/0xb0
[  352.828242][ T9952]  ? __fget_files+0x40/0x3a0
[  352.828263][ T9952]  ? __fget_files+0x206/0x3a0
[  352.828283][ T9952]  security_file_ioctl+0x9b/0x240
[  352.828305][ T9952]  __x64_sys_ioctl+0xb7/0x200
[  352.828329][ T9952]  do_syscall_64+0xcd/0x250
[  352.828356][ T9952]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  352.828381][ T9952] RIP: 0033:0x7f07ea980809
[  352.828396][ T9952] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  352.828411][ T9952] RSP: 002b:00007f07eb740058 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  352.828429][ T9952] RAX: ffffffffffffffda RBX: 00007f07eab45fa0 RCX: 00007f07ea980809
[  352.828441][ T9952] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  352.828452][ T9952] RBP: 00007f07eb7400a0 R08: 0000000000000000 R09: 0000000000000000
[  352.828462][ T9952] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  352.828473][ T9952] R13: 0000000000000000 R14: 00007f07eab45fa0 R15: 00007ffe8aaac208
[  352.828494][ T9952]  </TASK>
[  352.843025][ T9960] binder: BINDER_SET_CONTEXT_MGR already set
[  352.843038][ T9960] binder: 9959:9960 ioctl 4018620d 200001c0 returned -16
[  352.914846][ T9952] ERROR: Out of memory at tomoyo_realpath_from_path.
[  353.213627][ T9966] FAULT_INJECTION: forcing a failure.
[  353.213627][ T9966] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  353.330980][ T9966] CPU: 1 UID: 0 PID: 9966 Comm: syz.2.1053 Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  353.341684][ T9966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  353.351825][ T9966] Call Trace:
[  353.355085][ T9966]  <TASK>
[  353.357992][ T9966]  dump_stack_lvl+0x16c/0x1f0
[  353.362669][ T9966]  should_fail_ex+0x497/0x5b0
[  353.367334][ T9966]  _copy_from_user+0x2e/0xd0
[  353.371900][ T9966]  memdup_user+0x71/0xd0
[  353.376119][ T9966]  strndup_user+0x78/0xe0
[  353.380424][ T9966]  __x64_sys_mount+0x138/0x320
[  353.385167][ T9966]  ? __pfx___x64_sys_mount+0x10/0x10
[  353.390433][ T9966]  do_syscall_64+0xcd/0x250
[  353.394923][ T9966]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  353.400795][ T9966] RIP: 0033:0x7f44aa580809
[  353.405188][ T9966] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  353.424772][ T9966] RSP: 002b:00007f44ab2da058 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  353.433158][ T9966] RAX: ffffffffffffffda RBX: 00007f44aa745fa0 RCX: 00007f44aa580809
[  353.441105][ T9966] RDX: 0000000020000b80 RSI: 00000000200003c0 RDI: 0000000000000000
[  353.449051][ T9966] RBP: 00007f44ab2da0a0 R08: 0000000020000500 R09: 0000000000000000
[  353.456996][ T9966] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  353.464940][ T9966] R13: 0000000000000000 R14: 00007f44aa745fa0 R15: 00007ffd45bb1738
[  353.472891][ T9966]  </TASK>
[  354.260989][ T5834] usb 6-1: USB disconnect, device number 13
[  354.281469][ T9972] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1055'.
[  354.301977][ T9972] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1055'.
[  354.677850][   T29] kauditd_printk_skb: 2 callbacks suppressed
[  354.677864][   T29] audit: type=1400 audit(1732855057.510:1451): avc:  denied  { read } for  pid=9973 comm="syz.5.1056" name="rtc0" dev="devtmpfs" ino=921 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  354.794537][  T967] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[  354.945449][ T9960] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  355.258000][   T29] audit: type=1400 audit(1732855057.540:1452): avc:  denied  { open } for  pid=9973 comm="syz.5.1056" path="/dev/rtc0" dev="devtmpfs" ino=921 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  355.260312][ T9987] ceph: No mds server is up or the cluster is laggy
[  355.311993][   T29] audit: type=1400 audit(1732855057.540:1453): avc:  denied  { ioctl } for  pid=9973 comm="syz.5.1056" path="/dev/rtc0" dev="devtmpfs" ino=921 ioctlcmd=0x7014 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  355.465613][  T967] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 16
[  355.498232][  T967] usb 3-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  355.526370][  T967] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  355.534836][  T967] usb 3-1: Product: syz
[  355.544130][  T967] usb 3-1: Manufacturer: syz
[  355.557245][  T967] usb 3-1: SerialNumber: syz
[  355.587049][  T967] usb 3-1: config 0 descriptor??
[  355.683590][   T29] audit: type=1400 audit(1732855058.510:1454): avc:  denied  { ioctl } for  pid=9994 comm="syz.0.1061" path="anon_inode:[userfaultfd]" dev="anon_inodefs" ino=24267 ioctlcmd=0xaa3f scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  355.735223][   T80] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  355.894064][   T80] usb 4-1: Using ep0 maxpacket: 32
[  356.199467][   T80] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  356.220665][   T80] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  356.246927][   T80] usb 4-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  356.287519][   T80] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  356.311910][   T80] usb 4-1: config 0 descriptor??
[  356.454242][  T967] usb 3-1: Firmware version (0.0) predates our first public release.
[  356.462382][  T967] usb 3-1: Please update to version 0.2 or newer
[  357.288888][T10020] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  357.720518][T10022] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  357.954473][  T967] usb 3-1: Firmware: build 
[  358.227463][   T80] ft260 0003:0403:6030.0016: unknown main item tag 0x0
[  358.412222][   T80] ft260 0003:0403:6030.0016: chip code: 0000 0000
[  358.541424][  T967] usb 3-1: USB disconnect, device number 22
[  358.624389][   T80] ft260 0003:0403:6030.0016: failed to retrieve system status
[  358.641200][   T80] ft260 0003:0403:6030.0016: probe with driver ft260 failed with error -71
[  358.715307][   T80] usb 4-1: USB disconnect, device number 17
[  358.733450][   T29] audit: type=1400 audit(1732855061.560:1455): avc:  denied  { create } for  pid=10036 comm="syz.4.1070" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  358.783132][T10034] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1071'.
[  358.788739][   T29] audit: type=1400 audit(1732855061.560:1456): avc:  denied  { getopt } for  pid=10036 comm="syz.4.1070" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  358.803330][T10034] netlink: 'syz.5.1071': attribute type 7 has an invalid length.
[  358.826439][T10034] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1071'.
[  358.920624][   T29] audit: type=1400 audit(1732855061.590:1457): avc:  denied  { create } for  pid=10036 comm="syz.4.1070" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  358.943020][   T29] audit: type=1400 audit(1732855061.590:1458): avc:  denied  { ioctl } for  pid=10036 comm="syz.4.1070" path="socket:[24322]" dev="sockfs" ino=24322 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  359.008604][T10043] binder: BINDER_SET_CONTEXT_MGR already set
[  359.014844][T10043] binder: 10042:10043 ioctl 4018620d 200001c0 returned -16
[  359.022944][   T29] audit: type=1400 audit(1732855061.750:1459): avc:  denied  { create } for  pid=10039 comm="syz.4.1073" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  359.063418][   T29] audit: type=1400 audit(1732855061.750:1460): avc:  denied  { name_bind } for  pid=10039 comm="syz.4.1073" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[  359.292883][  T967] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[  359.353785][T10053] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  359.601628][T10056] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  359.793857][  T967] usb 3-1: Using ep0 maxpacket: 32
[  359.800202][  T967] usb 3-1: config 0 has an invalid interface number: 51 but max is 0
[  359.808482][  T967] usb 3-1: config 0 has no interface number 0
[  359.816569][  T967] usb 3-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  359.825874][  T967] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  359.834105][  T967] usb 3-1: Product: syz
[  359.838450][  T967] usb 3-1: Manufacturer: syz
[  359.843070][  T967] usb 3-1: SerialNumber: syz
[  359.850527][  T967] usb 3-1: config 0 descriptor??
[  359.857353][  T967] quatech2 3-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  360.015415][T10060] evm: overlay not supported
[  360.031557][ T5916] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  360.039203][   T29] audit: type=1400 audit(1732855062.840:1461): avc:  denied  { mount } for  pid=10059 comm="syz.0.1079" name="/" dev="overlay" ino=1231 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  360.063309][  T967] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  360.101182][T10063] fuse: Bad value for 'rootmode'
[  360.103513][  T967] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  360.120663][   T29] audit: type=1400 audit(1732855062.950:1462): avc:  denied  { read } for  pid=5503 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=1
[  360.187724][   T29] audit: type=1400 audit(1732855062.950:1463): avc:  denied  { unmount } for  pid=5847 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  360.197954][T10066] FAULT_INJECTION: forcing a failure.
[  360.197954][T10066] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  360.223296][T10066] CPU: 1 UID: 0 PID: 10066 Comm: syz.0.1081 Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  360.223735][ T5916] usb 4-1: Using ep0 maxpacket: 8
[  360.233719][T10066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  360.233739][T10066] Call Trace:
[  360.233746][T10066]  <TASK>
[  360.233754][T10066]  dump_stack_lvl+0x16c/0x1f0
[  360.233784][T10066]  should_fail_ex+0x497/0x5b0
[  360.233812][T10066]  _copy_from_user+0x2e/0xd0
[  360.233830][T10066]  ucma_create_id+0xcb/0x380
[  360.233856][T10066]  ? __pfx_ucma_create_id+0x10/0x10
[  360.233881][T10066]  ? lock_acquire+0x2f/0xb0
[  360.233907][T10066]  ? __pfx_ucma_create_id+0x10/0x10
[  360.249978][ T5916] usb 4-1: config index 0 descriptor too short (expected 301, got 45)
[  360.252217][T10066]  ucma_write+0x1f9/0x330
[  360.263687][ T5916] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  360.264447][T10066]  ? __pfx_ucma_write+0x10/0x10
[  360.269032][ T5916] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  360.273603][T10066]  ? bpf_lsm_file_permission+0x9/0x10
[  360.273637][T10066]  ? security_file_permission+0x71/0x210
[  360.273663][T10066]  ? __pfx_ucma_write+0x10/0x10
[  360.273684][T10066]  vfs_writev+0x6da/0xdd0
[  360.273700][T10066]  ? find_held_lock+0x2d/0x110
[  360.273730][T10066]  ? __pfx_vfs_writev+0x10/0x10
[  360.273750][T10066]  ? find_held_lock+0x2d/0x110
[  360.273778][T10066]  ? __pfx_lock_release+0x10/0x10
[  360.303671][   T29] audit: type=1400 audit(1732855063.110:1464): avc:  denied  { read } for  pid=10062 comm="syz.4.1080" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  360.310754][T10066]  ? trace_lock_acquire+0x14e/0x1f0
[  360.320747][ T5916] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  360.325273][T10066]  ? __fget_files+0x206/0x3a0
[  360.325306][T10066]  ? do_writev+0x297/0x340
[  360.325322][T10066]  do_writev+0x297/0x340
[  360.325339][T10066]  ? __pfx_do_writev+0x10/0x10
[  360.325362][T10066]  do_syscall_64+0xcd/0x250
[  360.325390][T10066]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  360.427621][T10066] RIP: 0033:0x7f4be5180809
[  360.432027][T10066] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  360.451636][T10066] RSP: 002b:00007f4be5eb9058 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  360.460035][T10066] RAX: ffffffffffffffda RBX: 00007f4be5345fa0 RCX: 00007f4be5180809
[  360.467990][T10066] RDX: 0000000000000003 RSI: 0000000020000000 RDI: 0000000000000003
[  360.475961][T10066] RBP: 00007f4be5eb90a0 R08: 0000000000000000 R09: 0000000000000000
[  360.483932][T10066] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  360.491888][T10066] R13: 0000000000000000 R14: 00007f4be5345fa0 R15: 00007ffdb5490578
[  360.499855][T10066]  </TASK>
[  360.514685][ T5916] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  360.529270][ T5916] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  360.540519][ T5916] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  360.722944][T10037] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  360.730892][T10072] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1084'.
[  360.734805][T10037] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  360.747770][T10072] netlink: 'syz.0.1084': attribute type 7 has an invalid length.
[  360.753077][   T29] audit: type=1400 audit(1732855063.580:1465): avc:  denied  { create } for  pid=10035 comm="syz.2.1072" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  360.756788][T10072] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1084'.
[  360.789442][ T5916] usb 4-1: usb_control_msg returned -32
[  360.794256][T10058] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  360.795422][ T5916] usbtmc 4-1:16.0: can't read capabilities
[  360.813991][T10058] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  360.826955][    C1] usb 3-1: qt2_read_bulk_callback - non-zero urb status: -71
[  360.841837][ T5916] usb 3-1: USB disconnect, device number 23
[  360.849947][ T5916] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  360.892891][ T5916] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  360.904904][ T5916] quatech2 3-1:0.51: device disconnected
[  361.467189][T10043] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  361.788203][T10087] FAULT_INJECTION: forcing a failure.
[  361.788203][T10087] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  361.821744][T10087] CPU: 0 UID: 0 PID: 10087 Comm: syz.4.1088 Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  361.832195][T10087] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  361.842263][T10087] Call Trace:
[  361.845542][T10087]  <TASK>
[  361.848451][T10087]  dump_stack_lvl+0x16c/0x1f0
[  361.853126][T10087]  should_fail_ex+0x497/0x5b0
[  361.857914][T10087]  _copy_from_user+0x2e/0xd0
[  361.862533][T10087]  ucma_create_id+0xcb/0x380
[  361.867135][T10087]  ? __pfx_ucma_create_id+0x10/0x10
[  361.872349][T10087]  ? lock_acquire+0x2f/0xb0
[  361.876872][T10087]  ? __pfx_ucma_create_id+0x10/0x10
[  361.882260][T10087]  ucma_write+0x1f9/0x330
[  361.886604][T10087]  ? __pfx_ucma_write+0x10/0x10
[  361.891469][T10087]  ? bpf_lsm_file_permission+0x9/0x10
[  361.896855][T10087]  ? security_file_permission+0x71/0x210
[  361.902501][T10087]  ? __pfx_ucma_write+0x10/0x10
[  361.907363][T10087]  vfs_writev+0x6da/0xdd0
[  361.911694][T10087]  ? find_held_lock+0x2d/0x110
[  361.916465][T10087]  ? __pfx_vfs_writev+0x10/0x10
[  361.921307][T10087]  ? find_held_lock+0x2d/0x110
[  361.926068][T10087]  ? __pfx_lock_release+0x10/0x10
[  361.931078][T10087]  ? trace_lock_acquire+0x14e/0x1f0
[  361.936278][T10087]  ? __fget_files+0x206/0x3a0
[  361.940955][T10087]  ? do_writev+0x297/0x340
[  361.945381][T10087]  do_writev+0x297/0x340
[  361.949609][T10087]  ? __pfx_do_writev+0x10/0x10
[  361.954362][T10087]  do_syscall_64+0xcd/0x250
[  361.958857][T10087]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  361.964742][T10087] RIP: 0033:0x7fa501580809
[  361.969141][T10087] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  361.988735][T10087] RSP: 002b:00007fa4ff3f6058 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  361.997133][T10087] RAX: ffffffffffffffda RBX: 00007fa501745fa0 RCX: 00007fa501580809
[  362.005090][T10087] RDX: 0000000000000003 RSI: 0000000020000000 RDI: 0000000000000003
[  362.013043][T10087] RBP: 00007fa4ff3f60a0 R08: 0000000000000000 R09: 0000000000000000
[  362.021011][T10087] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  362.028964][T10087] R13: 0000000000000000 R14: 00007fa501745fa0 R15: 00007ffc97230e48
[  362.036929][T10087]  </TASK>
[  362.111886][T10095] FAULT_INJECTION: forcing a failure.
[  362.111886][T10095] name failslab, interval 1, probability 0, space 0, times 0
[  362.125094][T10095] CPU: 1 UID: 0 PID: 10095 Comm: syz.0.1090 Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  362.135536][T10095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  362.145672][T10095] Call Trace:
[  362.148930][T10095]  <TASK>
[  362.151838][T10095]  dump_stack_lvl+0x16c/0x1f0
[  362.156503][T10095]  should_fail_ex+0x497/0x5b0
[  362.161175][T10095]  ? fs_reclaim_acquire+0xae/0x150
[  362.166283][T10095]  should_failslab+0xc2/0x120
[  362.170953][T10095]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  362.176317][T10095]  ? vm_area_dup+0x53/0x2f0
[  362.180815][T10095]  vm_area_dup+0x53/0x2f0
[  362.185137][T10095]  __split_vma+0x181/0x1160
[  362.189632][T10095]  ? irqentry_exit+0x3b/0x90
[  362.194229][T10095]  ? __pfx___split_vma+0x10/0x10
[  362.199181][T10095]  vms_gather_munmap_vmas+0x1c3/0x1730
[  362.204644][T10095]  ? mark_held_locks+0x9f/0xe0
[  362.209405][T10095]  ? finish_task_switch.isra.0+0x217/0xcc0
[  362.215202][T10095]  ? lockdep_hardirqs_on+0x7c/0x110
[  362.220393][T10095]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  362.226276][T10095]  ? __switch_to+0x749/0x1190
[  362.230949][T10095]  ? hlock_class+0x4e/0x130
[  362.235445][T10095]  ? mark_lock+0xb5/0xc60
[  362.239761][T10095]  ? __pfx_mark_lock+0x10/0x10
[  362.244514][T10095]  do_vmi_align_munmap+0x27f/0x890
[  362.249616][T10095]  ? __pfx___schedule+0x10/0x10
[  362.254461][T10095]  ? __pfx_do_vmi_align_munmap+0x10/0x10
[  362.260111][T10095]  do_vmi_munmap+0x20b/0x3e0
[  362.264693][T10095]  __do_sys_mremap+0x388/0x15e0
[  362.269539][T10095]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  362.275513][T10095]  ? __pfx___do_sys_mremap+0x10/0x10
[  362.280788][T10095]  ? __fget_files+0x206/0x3a0
[  362.285470][T10095]  do_syscall_64+0xcd/0x250
[  362.289967][T10095]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.295851][T10095] RIP: 0033:0x7f4be5180809
[  362.300272][T10095] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  362.319884][T10095] RSP: 002b:00007f4be2ff6058 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[  362.328303][T10095] RAX: ffffffffffffffda RBX: 00007f4be5346080 RCX: 00007f4be5180809
[  362.336264][T10095] RDX: 0000000000001000 RSI: 0000000000c00000 RDI: 0000000020400000
[  362.344226][T10095] RBP: 00007f4be2ff60a0 R08: 00000000208b5000 R09: 0000000000000000
[  362.352186][T10095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  362.360144][T10095] R13: 0000000000000000 R14: 00007f4be5346080 R15: 00007ffdb5490578
[  362.368113][T10095]  </TASK>
[  362.783710][   T80] usb 1-1: new high-speed USB device number 22 using dummy_hcd
[  362.951967][   T80] usb 1-1: device descriptor read/64, error -71
[  363.316348][ T5884] usb 4-1: USB disconnect, device number 18
[  363.363586][   T80] usb 1-1: new high-speed USB device number 23 using dummy_hcd
[  363.387218][   T29] audit: type=1400 audit(1732855066.210:1466): avc:  denied  { listen } for  pid=10106 comm="syz.3.1095" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  363.494450][T10110] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1097'.
[  363.504305][T10110] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1097'.
[  363.583609][ T5916] usb 3-1: new high-speed USB device number 24 using dummy_hcd
[  363.625762][   T80] usb 1-1: device descriptor read/64, error -71
[  364.136070][ T5916] usb 3-1: Using ep0 maxpacket: 8
[  364.157162][   T80] usb usb1-port1: attempt power cycle
[  364.158185][ T5916] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  364.175744][ T5916] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  364.591931][ T5916] usb 3-1: New USB device found, idVendor=056a, idProduct=0309, bcdDevice= 0.00
[  364.628687][ T5916] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  364.659066][ T5916] usb 3-1: config 0 descriptor??
[  365.915639][   T29] audit: type=1400 audit(1732855068.751:1467): avc:  denied  { ioctl } for  pid=10131 comm="syz.3.1104" path="socket:[25062]" dev="sockfs" ino=25062 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  366.000169][ T5916] usbhid 3-1:0.0: can't add hid device: -71
[  366.019850][ T5916] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  366.034981][   T29] audit: type=1400 audit(1732855068.751:1468): avc:  denied  { bind } for  pid=10131 comm="syz.3.1104" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  366.071951][ T5916] usb 3-1: USB disconnect, device number 24
[  366.217768][   T29] audit: type=1400 audit(1732855068.751:1469): avc:  denied  { connect } for  pid=10131 comm="syz.3.1104" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  368.129309][   T29] audit: type=1400 audit(1732855070.491:1470): avc:  denied  { write } for  pid=10156 comm="syz.4.1109" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  369.313213][   T29] audit: type=1400 audit(1732855072.051:1471): avc:  denied  { mount } for  pid=10169 comm="syz.2.1112" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  369.383431][   T29] audit: type=1400 audit(1732855072.211:1472): avc:  denied  { read } for  pid=10172 comm="syz.0.1113" name="card1" dev="devtmpfs" ino=628 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  369.411874][   T29] audit: type=1400 audit(1732855072.211:1473): avc:  denied  { open } for  pid=10172 comm="syz.0.1113" path="/dev/dri/card1" dev="devtmpfs" ino=628 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  369.451475][T10177] FAULT_INJECTION: forcing a failure.
[  369.451475][T10177] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  369.468342][   T29] audit: type=1400 audit(1732855072.241:1474): avc:  denied  { ioctl } for  pid=10172 comm="syz.0.1113" path="/dev/dri/card1" dev="devtmpfs" ino=628 ioctlcmd=0x64af scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  369.483661][T10177] CPU: 1 UID: 0 PID: 10177 Comm: syz.3.1114 Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  369.504128][T10177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  369.514224][T10177] Call Trace:
[  369.517498][T10177]  <TASK>
[  369.520416][T10177]  dump_stack_lvl+0x16c/0x1f0
[  369.525095][T10177]  should_fail_ex+0x497/0x5b0
[  369.529769][T10177]  _copy_from_iter+0x2a1/0x1560
[  369.534607][T10177]  ? __pfx__copy_from_iter+0x10/0x10
[  369.539876][T10177]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  369.545865][T10177]  ? tun_build_skb.constprop.0+0x1b8/0x1120
[  369.551749][T10177]  ? __pfx_lock_release+0x10/0x10
[  369.556757][T10177]  ? trace_lock_acquire+0x14e/0x1f0
[  369.561950][T10177]  copy_page_from_iter+0xa5/0x120
[  369.566960][T10177]  tun_build_skb.constprop.0+0x294/0x1120
[  369.572677][T10177]  ? __pfx_tun_build_skb.constprop.0+0x10/0x10
[  369.578823][T10177]  ? avc_has_perm_noaudit+0x119/0x3a0
[  369.584188][T10177]  ? __pfx_lock_release+0x10/0x10
[  369.589196][T10177]  ? trace_lock_acquire+0x14e/0x1f0
[  369.594383][T10177]  ? __pfx___lock_acquire+0x10/0x10
[  369.599565][T10177]  ? register_lock_class+0xb1/0x1240
[  369.604841][T10177]  ? __lock_acquire+0xcc5/0x3c40
[  369.609769][T10177]  tun_get_user+0x870/0x3e40
[  369.614355][T10177]  ? __pfx_tun_get_user+0x10/0x10
[  369.619370][T10177]  ? find_held_lock+0x2d/0x110
[  369.624129][T10177]  ? __pfx_lock_release+0x10/0x10
[  369.629148][T10177]  tun_chr_write_iter+0xdc/0x210
[  369.634077][T10177]  vfs_write+0x5ae/0x1150
[  369.638392][T10177]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  369.643929][T10177]  ? __pfx_vfs_write+0x10/0x10
[  369.648677][T10177]  ? __fget_files+0x40/0x3a0
[  369.653262][T10177]  ksys_write+0x12b/0x250
[  369.657593][T10177]  ? __pfx_ksys_write+0x10/0x10
[  369.662432][T10177]  do_syscall_64+0xcd/0x250
[  369.666931][T10177]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  369.672817][T10177] RIP: 0033:0x7f07ea97f2bf
[  369.677216][T10177] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 8e 02 00 48
[  369.696807][T10177] RSP: 002b:00007f07eb740020 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  369.705206][T10177] RAX: ffffffffffffffda RBX: 00007f07eab45fa0 RCX: 00007f07ea97f2bf
[  369.713338][T10177] RDX: 000000000000003e RSI: 0000000020000000 RDI: 00000000000000c8
[  369.721293][T10177] RBP: 00007f07eb7400a0 R08: 0000000000000000 R09: 0000000000000000
[  369.729267][T10177] R10: 000000000000003e R11: 0000000000000293 R12: 0000000000000001
[  369.737237][T10177] R13: 0000000000000001 R14: 00007f07eab45fa0 R15: 00007ffe8aaac208
[  369.745215][T10177]  </TASK>
[  369.748228][    C1] vkms_vblank_simulate: vblank timer overrun
[  370.050840][T10185] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  370.239701][T10188] fuse: Bad value for 'fd'
[  370.519683][T10193] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1118'.
[  370.561596][   T29] audit: type=1400 audit(1732855073.391:1475): avc:  denied  { listen } for  pid=10189 comm="syz.0.1118" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[  370.798384][T10203] No control pipe specified
[  370.803880][T10203] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1122'.
[  371.371906][   T29] audit: type=1400 audit(1732855073.721:1476): avc:  denied  { name_connect } for  pid=10198 comm="syz.4.1123" dest=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[  371.394149][    C1] vkms_vblank_simulate: vblank timer overrun
[  372.133953][T10214] overlayfs: missing 'lowerdir'
[  372.383054][   T29] audit: type=1400 audit(1732855075.211:1477): avc:  denied  { sys_module } for  pid=10212 comm="syz.4.1127" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  372.443442][  T967] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  372.545653][   T29] audit: type=1400 audit(1732855075.381:1478): avc:  denied  { write } for  pid=10222 comm="syz.0.1129" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  372.943006][  T967] usb 6-1: device descriptor read/64, error -71
[  372.973731][ T5916] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  373.115682][T10241] sd 0:0:1:0: device reset
[  373.120256][   T29] audit: type=1400 audit(1732855075.951:1479): avc:  denied  { read } for  pid=10240 comm="syz.2.1133" name="sg0" dev="devtmpfs" ino=735 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  373.143808][    C1] vkms_vblank_simulate: vblank timer overrun
[  373.150593][ T5916] usb 5-1: Using ep0 maxpacket: 32
[  373.151302][   T29] audit: type=1400 audit(1732855075.951:1480): avc:  denied  { open } for  pid=10240 comm="syz.2.1133" path="/dev/sg0" dev="devtmpfs" ino=735 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  373.179728][    C1] vkms_vblank_simulate: vblank timer overrun
[  373.239825][   T29] audit: type=1400 audit(1732855075.951:1481): avc:  denied  { ioctl } for  pid=10240 comm="syz.2.1133" path="/dev/sg0" dev="devtmpfs" ino=735 ioctlcmd=0x2284 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  373.265294][    C1] vkms_vblank_simulate: vblank timer overrun
[  373.301057][ T5916] usb 5-1: config 0 interface 0 altsetting 3 endpoint 0x81 has an invalid bInterval 32, changing to 9
[  373.321637][ T5916] usb 5-1: config 0 interface 0 altsetting 3 endpoint 0x81 has invalid wMaxPacketSize 0
[  373.331853][ T5916] usb 5-1: config 0 interface 0 has no altsetting 0
[  373.430584][  T967] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  373.459209][ T5916] usb 5-1: New USB device found, idVendor=056a, idProduct=00c4, bcdDevice= 0.00
[  373.484640][ T5916] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  373.590925][  T967] usb 6-1: device descriptor read/64, error -71
[  373.705943][  T967] usb usb6-port1: attempt power cycle
[  374.016379][ T5916] usb 5-1: config 0 descriptor??
[  374.062948][  T967] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  374.097212][  T967] usb 6-1: device descriptor read/8, error -71
[  374.476328][ T5916] wacom 0003:056A:00C4.0017: unknown main item tag 0x0
[  374.552654][ T5916] wacom 0003:056A:00C4.0017: hidraw0: USB HID v0.00 Device [HID 056a:00c4] on usb-dummy_hcd.4-1/input0
[  374.949785][  T967] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  374.984693][  T967] usb 6-1: device descriptor read/8, error -71
[  375.191857][    T8] usb 5-1: USB disconnect, device number 19
[  375.213626][  T967] usb usb6-port1: unable to enumerate USB device
[  375.862755][   T29] audit: type=1400 audit(1732855078.651:1482): avc:  denied  { create } for  pid=10278 comm="syz.0.1143" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[  375.884004][   T29] audit: type=1400 audit(1732855078.651:1483): avc:  denied  { write } for  pid=10278 comm="syz.0.1143" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[  375.904782][   T29] audit: type=1400 audit(1732855078.651:1484): avc:  denied  { read } for  pid=10278 comm="syz.0.1143" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[  375.925477][   T29] audit: type=1400 audit(1732855078.721:1485): avc:  denied  { setopt } for  pid=10278 comm="syz.0.1143" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[  378.227098][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  378.233472][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  378.419807][   T29] kauditd_printk_skb: 2 callbacks suppressed
[  378.419823][   T29] audit: type=1400 audit(1732855081.251:1488): avc:  denied  { create } for  pid=10310 comm="syz.4.1153" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[  378.504769][T10312] netlink: 25 bytes leftover after parsing attributes in process `syz.4.1153'.
[  378.948561][T10319] FAULT_INJECTION: forcing a failure.
[  378.948561][T10319] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  378.964170][T10319] CPU: 0 UID: 0 PID: 10319 Comm: syz.3.1155 Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  378.974615][T10319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  378.984684][T10319] Call Trace:
[  378.987973][T10319]  <TASK>
[  378.990907][T10319]  dump_stack_lvl+0x16c/0x1f0
[  378.995606][T10319]  should_fail_ex+0x497/0x5b0
[  379.000311][T10319]  _copy_to_iter+0x469/0x1560
[  379.005004][T10319]  ? __pfx__copy_to_iter+0x10/0x10
[  379.010125][T10319]  ? __virt_addr_valid+0x1a4/0x590
[  379.015258][T10319]  ? __virt_addr_valid+0x5e/0x590
[  379.020306][T10319]  ? __phys_addr_symbol+0x30/0x80
[  379.025356][T10319]  ? __check_object_size+0x488/0x710
[  379.030665][T10319]  seq_read_iter+0xd00/0x12b0
[  379.035377][T10319]  seq_read+0x39f/0x4e0
[  379.039558][T10319]  ? __pfx_seq_read+0x10/0x10
[  379.044265][T10319]  ? avc_policy_seqno+0x9/0x20
[  379.049072][T10319]  full_proxy_read+0xfb/0x1b0
[  379.053765][T10319]  ? __pfx_full_proxy_read+0x10/0x10
[  379.059062][T10319]  vfs_read+0x1df/0xbe0
[  379.063233][T10319]  ? __fget_files+0x1fc/0x3a0
[  379.067925][T10319]  ? __pfx___mutex_lock+0x10/0x10
[  379.074439][T10319]  ? __pfx_vfs_read+0x10/0x10
[  379.074488][T10319]  ? __fget_files+0x206/0x3a0
[  379.074518][T10319]  ksys_read+0x12b/0x250
[  379.074537][T10319]  ? __pfx_ksys_read+0x10/0x10
[  379.074564][T10319]  do_syscall_64+0xcd/0x250
[  379.074595][T10319]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  379.074623][T10319] RIP: 0033:0x7f07ea980809
[  379.074639][T10319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  379.074657][T10319] RSP: 002b:00007f07eb740058 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  379.074677][T10319] RAX: ffffffffffffffda RBX: 00007f07eab45fa0 RCX: 00007f07ea980809
[  379.074690][T10319] RDX: 0000000000002020 RSI: 00000000200048c0 RDI: 0000000000000003
[  379.074703][T10319] RBP: 00007f07eb7400a0 R08: 0000000000000000 R09: 0000000000000000
[  379.074715][T10319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  379.074727][T10319] R13: 0000000000000000 R14: 00007f07eab45fa0 R15: 00007ffe8aaac208
[  379.074753][T10319]  </TASK>
[  379.262593][  T967] usb 1-1: new high-speed USB device number 25 using dummy_hcd
[  379.282623][   T80] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  380.005125][  T967] usb 1-1: Using ep0 maxpacket: 8
[  380.011700][  T967] usb 1-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  380.022584][   T80] usb 6-1: Using ep0 maxpacket: 8
[  380.028580][  T967] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x97, changing to 0x87
[  380.040489][   T80] usb 6-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  380.049689][   T80] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  380.058418][  T967] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 36, changing to 9
[  380.070608][  T967] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x87 has invalid maxpacket 50274, setting to 1024
[  380.082253][  T967] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  380.095275][  T967] usb 1-1: New USB device found, idVendor=0c2e, idProduct=0720, bcdDevice= 0.00
[  380.104381][  T967] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  380.114733][  T967] usb 1-1: config 0 descriptor??
[  380.120289][T10308] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  380.128769][  T967] metro_usb 1-1:0.0: Metrologic USB to Serial converter detected
[  380.148113][   T80] usb 6-1: config 0 descriptor??
[  380.168219][  T967] usb 1-1: Metrologic USB to Serial converter now attached to ttyUSB0
[  380.387242][  T967] usb 1-1: USB disconnect, device number 25
[  380.390224][T10343] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1164'.
[  380.407718][T10343] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1164'.
[  380.411258][  T967] metro-usb ttyUSB0: Metrologic USB to Serial converter now disconnected from ttyUSB0
[  380.526579][ T5916] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  380.749391][ T5916] usb 5-1: Using ep0 maxpacket: 32
[  380.770654][ T5916] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  380.898608][ T5916] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  380.938287][  T967] metro_usb 1-1:0.0: device disconnected
[  380.962561][ T5916] usb 5-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  380.974852][ T5916] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  380.986407][ T5916] usb 5-1: config 0 descriptor??
[  381.072489][   T29] audit: type=1400 audit(1732855083.901:1489): avc:  denied  { mounton } for  pid=10351 comm="syz.2.1167" path="/proc/829/task" dev="proc" ino=25393 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  381.178771][   T29] audit: type=1400 audit(1732855084.011:1490): avc:  denied  { setopt } for  pid=10359 comm="syz.2.1169" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  381.201796][   T29] audit: type=1400 audit(1732855084.011:1491): avc:  denied  { write } for  pid=10359 comm="syz.2.1169" name="rtc0" dev="devtmpfs" ino=921 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  381.224962][    C1] vkms_vblank_simulate: vblank timer overrun
[  381.442304][ T5916] ft260 0003:0403:6030.0018: unknown main item tag 0x0
[  381.453382][   T29] audit: type=1400 audit(1732855084.081:1492): avc:  denied  { write } for  pid=10359 comm="syz.2.1169" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  381.453523][   T29] audit: type=1400 audit(1732855084.081:1493): avc:  denied  { nlmsg_read } for  pid=10359 comm="syz.2.1169" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  381.453654][   T29] audit: type=1400 audit(1732855084.221:1494): avc:  denied  { ioctl } for  pid=10357 comm="syz.3.1168" path="/dev/nullb0" dev="devtmpfs" ino=696 ioctlcmd=0x1271 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  381.640650][ T5916] ft260 0003:0403:6030.0018: chip code: 0000 0000
[  381.767811][  T967] usb 1-1: new high-speed USB device number 26 using dummy_hcd
[  381.856848][ T5916] ft260 0003:0403:6030.0018: failed to retrieve system status
[  381.856934][ T5916] ft260 0003:0403:6030.0018: probe with driver ft260 failed with error -71
[  381.865126][ T5916] usb 5-1: USB disconnect, device number 20
[  382.090902][  T967] usb 1-1: config index 0 descriptor too short (expected 1051, got 27)
[  382.099377][  T967] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  382.111105][  T967] usb 1-1: config 0 has no interfaces?
[  382.118358][  T967] usb 1-1: New USB device found, idVendor=06cd, idProduct=010a, bcdDevice=d9.c3
[  382.127852][  T967] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  382.136250][  T967] usb 1-1: Product: syz
[  382.140504][  T967] usb 1-1: Manufacturer: syz
[  382.145694][  T967] usb 1-1: SerialNumber: syz
[  382.316772][T10371] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  383.099701][  T967] usb 1-1: config 0 descriptor??
[  383.315717][   T29] audit: type=1326 audit(1732855086.152:1495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10345 comm="syz.0.1165" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4be5180809 code=0x0
[  383.315944][   T80] asix 6-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  383.391240][   T80] asix 6-1:0.0 (unnamed net_device) (uninitialized): Failed to write RX_CTL mode to 0x0088: ffffffb9
[  383.470332][T10381] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  383.698704][   T80] asix 6-1:0.0: probe with driver asix failed with error -71
[  383.894023][   T80] usb 6-1: USB disconnect, device number 18
[  384.406048][T10390] netlink: 104 bytes leftover after parsing attributes in process `syz.5.1177'.
[  384.417514][   T29] audit: type=1400 audit(1732855087.252:1496): avc:  denied  { setopt } for  pid=10374 comm="syz.2.1173" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  384.454057][   T29] audit: type=1400 audit(1732855087.282:1497): avc:  denied  { connect } for  pid=10374 comm="syz.2.1173" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  384.698171][  T967] usb 1-1: USB disconnect, device number 26
[  387.790095][T10407] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1182'.
[  387.799257][T10407] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1182'.
[  387.858788][   T29] audit: type=1400 audit(1732855090.692:1498): avc:  denied  { connect } for  pid=10414 comm="syz.2.1185" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  388.975586][  T967] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[  390.031028][ T5882] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  390.942045][ T5882] usb 5-1: Using ep0 maxpacket: 16
[  391.071630][  T967] usb 6-1: device descriptor read/all, error -71
[  391.087934][ T5882] usb 5-1: unable to read config index 0 descriptor/start: -71
[  391.096609][ T5882] usb 5-1: can't read configurations, error -71
[  392.131069][T10458] blktrace: Concurrent blktraces are not allowed on loop0
[  392.368780][T10451] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1195'.
[  392.415973][T10451] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1195'.
[  392.571573][   T29] audit: type=1400 audit(1732855095.402:1499): avc:  denied  { read } for  pid=10469 comm="syz.4.1199" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  392.640070][T10474] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1201'.
[  392.753571][T10474] kvm: emulating exchange as write
[  392.783051][  T967] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[  393.276247][   T29] audit: type=1400 audit(1732855096.112:1500): avc:  denied  { read } for  pid=10473 comm="syz.4.1201" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  393.401803][  T967] usb 6-1: Using ep0 maxpacket: 16
[  393.408180][  T967] usb 6-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  393.420722][  T967] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  393.430882][  T967] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  393.486744][  T967] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  393.501815][  T967] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  393.503917][   T29] audit: type=1400 audit(1732855096.342:1501): avc:  denied  { append } for  pid=10479 comm="syz.3.1202" name="001" dev="devtmpfs" ino=743 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  393.509812][  T967] usb 6-1: Product: syz
[  393.509830][  T967] usb 6-1: Manufacturer: syz
[  393.509844][  T967] usb 6-1: SerialNumber: syz
[  394.265922][  T967] usb 6-1: 0:2 : does not exist
[  394.276125][   T29] audit: type=1400 audit(1732855097.102:1502): avc:  denied  { create } for  pid=10479 comm="syz.3.1202" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  394.532242][T10499] netlink: 'syz.0.1209': attribute type 1 has an invalid length.
[  394.548721][    T8] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[  394.553237][T10502] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1208'.
[  394.701710][    T8] usb 4-1: Using ep0 maxpacket: 32
[  395.341775][    T8] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  395.510570][    T8] usb 4-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  395.519898][    T8] usb 4-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  395.778088][    T8] usb 4-1: Product: syz
[  395.784723][    T8] usb 4-1: Manufacturer: syz
[  395.924001][    T8] usb 4-1: SerialNumber: syz
[  396.500446][T10519] sd 0:0:1:0: device reset
[  396.652563][    T8] usb 4-1: config 0 descriptor??
[  396.658140][T10482] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  396.761664][ T5834] usb 1-1: new high-speed USB device number 27 using dummy_hcd
[  396.966792][  T967] usb 6-1: USB disconnect, device number 20
[  397.491710][ T5834] usb 1-1: Using ep0 maxpacket: 8
[  397.499123][ T5834] usb 1-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  397.510330][ T5834] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x97, changing to 0x87
[  397.536311][ T5917] usb 4-1: USB disconnect, device number 19
[  397.547686][ T5834] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 36, changing to 9
[  398.053869][ T5834] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x87 has invalid maxpacket 50274, setting to 1024
[  398.065240][ T5834] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  398.078162][ T5834] usb 1-1: New USB device found, idVendor=0c2e, idProduct=0720, bcdDevice=9b.f7
[  398.087477][ T5834] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  398.097841][ T5849] udevd[5849]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  398.150792][ T5834] usb 1-1: config 0 descriptor??
[  398.156587][T10517] raw-gadget.2 gadget.0: fail, usb_ep_enable returned -22
[  398.172606][ T5834] metro_usb 1-1:0.0: Metrologic USB to Serial converter detected
[  398.180044][T10535] FAULT_INJECTION: forcing a failure.
[  398.180044][T10535] name failslab, interval 1, probability 0, space 0, times 0
[  398.184938][ T5834] usb 1-1: Metrologic USB to Serial converter now attached to ttyUSB0
[  398.205540][T10535] CPU: 0 UID: 0 PID: 10535 Comm: syz.5.1218 Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  398.215983][T10535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  398.226051][T10535] Call Trace:
[  398.229339][T10535]  <TASK>
[  398.232269][T10535]  dump_stack_lvl+0x16c/0x1f0
[  398.236952][T10535]  should_fail_ex+0x497/0x5b0
[  398.241629][T10535]  ? fs_reclaim_acquire+0xae/0x150
[  398.246739][T10535]  should_failslab+0xc2/0x120
[  398.251408][T10535]  __kmalloc_noprof+0xcb/0x510
[  398.256167][T10535]  ? rcu_is_watching+0x12/0xc0
[  398.260925][T10535]  tomoyo_encode2+0x100/0x3e0
[  398.265597][T10535]  tomoyo_encode+0x29/0x50
[  398.271827][T10535]  tomoyo_realpath_from_path+0x19d/0x720
[  398.277457][T10535]  ? tomoyo_path_number_perm+0x235/0x590
[  398.283091][T10535]  tomoyo_path_number_perm+0x248/0x590
[  398.288550][T10535]  ? tomoyo_path_number_perm+0x235/0x590
[  398.294186][T10535]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  398.300177][T10535]  ? __pfx_lock_release+0x10/0x10
[  398.305195][T10535]  ? trace_lock_acquire+0x14e/0x1f0
[  398.310390][T10535]  ? lock_acquire+0x2f/0xb0
[  398.314879][T10535]  ? __fget_files+0x40/0x3a0
[  398.319459][T10535]  ? __fget_files+0x206/0x3a0
[  398.324123][T10535]  security_file_ioctl+0x9b/0x240
[  398.329138][T10535]  __x64_sys_ioctl+0xb7/0x200
[  398.333809][T10535]  do_syscall_64+0xcd/0x250
[  398.338305][T10535]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  398.344192][T10535] RIP: 0033:0x7fe158f80809
[  398.348593][T10535] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  398.368185][T10535] RSP: 002b:00007fe159d88058 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  398.376584][T10535] RAX: ffffffffffffffda RBX: 00007fe159145fa0 RCX: 00007fe158f80809
[  398.384541][T10535] RDX: 0000000020000300 RSI: 00000000000089f3 RDI: 0000000000000003
[  398.392496][T10535] RBP: 00007fe159d880a0 R08: 0000000000000000 R09: 0000000000000000
[  398.400452][T10535] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  398.408407][T10535] R13: 0000000000000000 R14: 00007fe159145fa0 R15: 00007ffdd536fd28
[  398.416376][T10535]  </TASK>
[  398.445859][T10535] ERROR: Out of memory at tomoyo_realpath_from_path.
[  398.560797][T10542] mmap: syz.5.1219 (10542) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  398.592261][   T29] audit: type=1400 audit(1732855101.392:1503): avc:  denied  { remount } for  pid=10541 comm="syz.5.1219" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  398.635253][T10546] netlink: 'syz.4.1221': attribute type 21 has an invalid length.
[  398.653766][T10546] netlink: 14548 bytes leftover after parsing attributes in process `syz.4.1221'.
[  398.676085][   T29] audit: type=1400 audit(1732855101.512:1504): avc:  denied  { write } for  pid=10543 comm="syz.5.1222" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  398.720087][   T29] audit: type=1400 audit(1732855101.532:1505): avc:  denied  { nlmsg_write } for  pid=10543 comm="syz.5.1222" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  398.776842][ T5917] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[  398.974133][ T5917] usb 4-1: Using ep0 maxpacket: 16
[  399.374552][ T5917] usb 4-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  399.384719][ T5917] usb 4-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  399.395664][ T5917] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  399.407010][ T5917] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  399.417027][ T5917] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  399.429822][ T5917] usb 4-1: Product: 趽ﮎ焪쥅姝继ꪆꉽ戾浬ᬑ痎कꀟ磑⚳罏Ỿ房뢙䷩쓏⪧⠽デ暭፫괹ޚ曱ߋキɭ痪삶䕜Ď⠕汼ꟸ䤉罾൘쁫
[  399.451234][ T5917] usb 4-1: Manufacturer: 嶙ʢ⏄৚デ琌쿖뽨칶⾷痚捖ₙ槥័㼦仸㎛ﱶ㘲ꤴ襲⦊몶⌝ꍼ率Ჾ䨦ꀋⒽ冀০鸩뾓恁锲禫つ糾腺ꩍ鹡ࢠ篁ᙈ쑕託葝븴䖰格篤쁘먑퀔咵疡腚簿賫耫瘞⑱꼡맓▴辭✜⒆팮䨪籽㶝ᅨ㲛븷˘Ȯ遞봦돴澭٩풄क़
[  399.484824][ T5917] usb 4-1: SerialNumber: ࠄ
[  399.540131][  T967] usb 1-1: USB disconnect, device number 27
[  399.548021][  T967] metro-usb ttyUSB0: Metrologic USB to Serial converter now disconnected from ttyUSB0
[  399.575535][  T967] metro_usb 1-1:0.0: device disconnected
[  399.738278][   T29] audit: type=1400 audit(1732855102.572:1506): avc:  denied  { search } for  pid=5503 comm="dhcpcd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  399.801941][ T5917] usb 4-1: 0:2 : does not exist
[  399.838062][   T29] audit: type=1400 audit(1732855102.572:1507): avc:  denied  { read } for  pid=5503 comm="dhcpcd" name="n120" dev="tmpfs" ino=6624 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  399.923168][   T29] audit: type=1400 audit(1732855102.572:1508): avc:  denied  { open } for  pid=5503 comm="dhcpcd" path="/run/udev/data/n120" dev="tmpfs" ino=6624 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  399.951286][   T29] audit: type=1400 audit(1732855102.572:1509): avc:  denied  { getattr } for  pid=5503 comm="dhcpcd" path="/run/udev/data/n120" dev="tmpfs" ino=6624 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  399.971519][ T5917] usb 4-1: USB disconnect, device number 20
[  400.996615][   T29] audit: type=1400 audit(1732855102.612:1510): avc:  denied  { read write } for  pid=10564 comm="syz.5.1228" name="fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  401.348718][   T29] audit: type=1400 audit(1732855102.612:1511): avc:  denied  { open } for  pid=10564 comm="syz.5.1228" path="/dev/fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  401.471318][T10579] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  401.584892][   T29] audit: type=1400 audit(1732855102.632:1512): avc:  denied  { mount } for  pid=10560 comm="syz.0.1226" name="/" dev="hugetlbfs" ino=26453 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  401.770780][T10584] FAULT_INJECTION: forcing a failure.
[  401.770780][T10584] name failslab, interval 1, probability 0, space 0, times 0
[  401.816625][T10584] CPU: 1 UID: 0 PID: 10584 Comm: syz.2.1231 Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  401.827074][T10584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  401.837143][T10584] Call Trace:
[  401.840432][T10584]  <TASK>
[  401.843371][T10584]  dump_stack_lvl+0x16c/0x1f0
[  401.848065][T10584]  should_fail_ex+0x497/0x5b0
[  401.852752][T10584]  ? fs_reclaim_acquire+0xae/0x150
[  401.857878][T10584]  should_failslab+0xc2/0x120
[  401.862563][T10584]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[  401.868378][T10584]  ? __alloc_skb+0x2b1/0x380
[  401.872961][T10584]  __alloc_skb+0x2b1/0x380
[  401.877378][T10584]  ? __pfx___alloc_skb+0x10/0x10
[  401.882318][T10584]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  401.888308][T10584]  netlink_alloc_large_skb+0x69/0x130
[  401.893690][T10584]  netlink_sendmsg+0x689/0xd70
[  401.898468][T10584]  ? __pfx_netlink_sendmsg+0x10/0x10
[  401.903768][T10584]  ____sys_sendmsg+0xaaf/0xc90
[  401.908533][T10584]  ? copy_msghdr_from_user+0x10b/0x160
[  401.913998][T10584]  ? __pfx_____sys_sendmsg+0x10/0x10
[  401.919298][T10584]  ___sys_sendmsg+0x135/0x1e0
[  401.923978][T10584]  ? __pfx____sys_sendmsg+0x10/0x10
[  401.929202][T10584]  ? __pfx_lock_release+0x10/0x10
[  401.934219][T10584]  ? trace_lock_acquire+0x14e/0x1f0
[  401.939418][T10584]  ? __fget_files+0x206/0x3a0
[  401.944088][T10584]  __sys_sendmsg+0x16e/0x220
[  401.948668][T10584]  ? __pfx___sys_sendmsg+0x10/0x10
[  401.953780][T10584]  do_syscall_64+0xcd/0x250
[  401.958278][T10584]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  401.964166][T10584] RIP: 0033:0x7f44aa580809
[  401.968569][T10584] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  401.988166][T10584] RSP: 002b:00007f44ab2da058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  401.996570][T10584] RAX: ffffffffffffffda RBX: 00007f44aa745fa0 RCX: 00007f44aa580809
[  402.004540][T10584] RDX: 000000000000c000 RSI: 0000000020000000 RDI: 0000000000000003
[  402.012512][T10584] RBP: 00007f44ab2da0a0 R08: 0000000000000000 R09: 0000000000000000
[  402.020467][T10584] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  402.028427][T10584] R13: 0000000000000000 R14: 00007f44aa745fa0 R15: 00007ffd45bb1738
[  402.036395][T10584]  </TASK>
[  402.039486][    C1] vkms_vblank_simulate: vblank timer overrun
[  402.128052][T10586] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  403.337069][ T5917] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  404.303907][T10634] dns_resolver: Unsupported server list version (0)
[  404.318308][   T29] kauditd_printk_skb: 14 callbacks suppressed
[  404.318322][   T29] audit: type=1400 audit(1732855107.153:1527): avc:  denied  { remove_name } for  pid=10633 comm="rm" name="resolv.conf.sl0.link" dev="tmpfs" ino=6663 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  404.324894][ T5917] usb 4-1: Using ep0 maxpacket: 8
[  404.395046][   T29] audit: type=1400 audit(1732855107.203:1528): avc:  denied  { unlink } for  pid=10633 comm="rm" name="resolv.conf.sl0.link" dev="tmpfs" ino=6663 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  404.418078][    C1] vkms_vblank_simulate: vblank timer overrun
[  404.613934][T10634] kvm: kvm [10632]: vcpu0, guest rIP: 0x28e Unhandled WRMSR(0x11e) = 0xffff69f600000003
[  405.258406][ T5917] usb 4-1: config 150 has an invalid interface number: 204 but max is 1
[  405.267495][ T5917] usb 4-1: config 150 has no interface number 0
[  405.273855][ T5917] usb 4-1: config 150 interface 204 has no altsetting 0
[  405.280817][ T5917] usb 4-1: config 150 interface 1 has no altsetting 0
[  405.313059][T10647] pim6reg1: entered promiscuous mode
[  405.318413][T10647] pim6reg1: entered allmulticast mode
[  405.373005][T10651] FAULT_INJECTION: forcing a failure.
[  405.373005][T10651] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  405.388272][T10651] CPU: 0 UID: 0 PID: 10651 Comm: syz.0.1247 Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  405.398714][T10651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  405.408779][T10651] Call Trace:
[  405.412065][T10651]  <TASK>
[  405.415000][T10651]  dump_stack_lvl+0x16c/0x1f0
[  405.419696][T10651]  should_fail_ex+0x497/0x5b0
[  405.424396][T10651]  strncpy_from_user+0x3b/0x2d0
[  405.429264][T10651]  bpf_raw_tp_link_attach+0x115/0x5f0
[  405.434646][T10651]  ? __pfx_lock_release+0x10/0x10
[  405.439660][T10651]  ? __pfx_bpf_raw_tp_link_attach+0x10/0x10
[  405.445555][T10651]  ? lock_acquire+0x2f/0xb0
[  405.450043][T10651]  ? __fget_files+0x40/0x3a0
[  405.454627][T10651]  ? fput+0x67/0x440
[  405.458514][T10651]  ? __bpf_prog_get+0xa0/0x290
[  405.463274][T10651]  __sys_bpf+0x3a4/0x49c0
[  405.467605][T10651]  ? __pfx_lock_release+0x10/0x10
[  405.472640][T10651]  ? __pfx___sys_bpf+0x10/0x10
[  405.477395][T10651]  ? vfs_write+0x306/0x1150
[  405.481887][T10651]  ? __mutex_unlock_slowpath+0x164/0x690
[  405.487524][T10651]  ? fput+0x67/0x440
[  405.491424][T10651]  ? ksys_write+0x1ba/0x250
[  405.495928][T10651]  ? __pfx_ksys_write+0x10/0x10
[  405.500778][T10651]  __x64_sys_bpf+0x78/0xc0
[  405.505197][T10651]  ? lockdep_hardirqs_on+0x7c/0x110
[  405.510397][T10651]  do_syscall_64+0xcd/0x250
[  405.514917][T10651]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  405.520804][T10651] RIP: 0033:0x7f4be5180809
[  405.525207][T10651] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  405.544821][T10651] RSP: 002b:00007f4be5eb9058 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  405.553245][T10651] RAX: ffffffffffffffda RBX: 00007f4be5345fa0 RCX: 00007f4be5180809
[  405.561214][T10651] RDX: 0000000000000010 RSI: 0000000020000980 RDI: 0000000000000011
[  405.569196][T10651] RBP: 00007f4be5eb90a0 R08: 0000000000000000 R09: 0000000000000000
[  405.577158][T10651] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  405.585116][T10651] R13: 0000000000000000 R14: 00007f4be5345fa0 R15: 00007ffdb5490578
[  405.593092][T10651]  </TASK>
[  405.640421][ T5917] usb 4-1: string descriptor 0 read error: -71
[  405.646835][ T5917] usb 4-1: New USB device found, idVendor=04e2, idProduct=1424, bcdDevice=c7.eb
[  405.655997][ T5917] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  405.690782][ T5917] usb 4-1: can't set config #150, error -71
[  405.715372][ T5917] usb 4-1: USB disconnect, device number 21
[  405.754415][T10662] FAULT_INJECTION: forcing a failure.
[  405.754415][T10662] name failslab, interval 1, probability 0, space 0, times 0
[  405.768348][T10662] CPU: 0 UID: 0 PID: 10662 Comm: syz.3.1250 Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  405.778769][T10662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  405.788818][T10662] Call Trace:
[  405.792077][T10662]  <TASK>
[  405.794986][T10662]  dump_stack_lvl+0x16c/0x1f0
[  405.799648][T10662]  should_fail_ex+0x497/0x5b0
[  405.804305][T10662]  ? fs_reclaim_acquire+0xae/0x150
[  405.809410][T10662]  should_failslab+0xc2/0x120
[  405.814076][T10662]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[  405.819870][T10662]  ? __alloc_skb+0x2b1/0x380
[  405.824447][T10662]  __alloc_skb+0x2b1/0x380
[  405.828842][T10662]  ? __pfx___alloc_skb+0x10/0x10
[  405.833757][T10662]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  405.839718][T10662]  netlink_alloc_large_skb+0x69/0x130
[  405.845101][T10662]  netlink_sendmsg+0x689/0xd70
[  405.849856][T10662]  ? __pfx_netlink_sendmsg+0x10/0x10
[  405.855127][T10662]  ____sys_sendmsg+0xaaf/0xc90
[  405.859891][T10662]  ? copy_msghdr_from_user+0x10b/0x160
[  405.865347][T10662]  ? __pfx_____sys_sendmsg+0x10/0x10
[  405.870617][T10662]  ___sys_sendmsg+0x135/0x1e0
[  405.875272][T10662]  ? __pfx____sys_sendmsg+0x10/0x10
[  405.880452][T10662]  ? __pfx_lock_release+0x10/0x10
[  405.885454][T10662]  ? trace_lock_acquire+0x14e/0x1f0
[  405.890635][T10662]  ? __fget_files+0x206/0x3a0
[  405.895305][T10662]  __sys_sendmsg+0x16e/0x220
[  405.900013][T10662]  ? __pfx___sys_sendmsg+0x10/0x10
[  405.905109][T10662]  do_syscall_64+0xcd/0x250
[  405.909595][T10662]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  405.915481][T10662] RIP: 0033:0x7f07ea980809
[  405.919873][T10662] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  405.939455][T10662] RSP: 002b:00007f07eb740058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  405.947869][T10662] RAX: ffffffffffffffda RBX: 00007f07eab45fa0 RCX: 00007f07ea980809
[  405.955825][T10662] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000004
[  405.963782][T10662] RBP: 00007f07eb7400a0 R08: 0000000000000000 R09: 0000000000000000
[  405.971756][T10662] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  405.979723][T10662] R13: 0000000000000000 R14: 00007f07eab45fa0 R15: 00007ffe8aaac208
[  405.987686][T10662]  </TASK>
[  406.001835][   T29] audit: type=1400 audit(1732855108.843:1529): avc:  denied  { sqpoll } for  pid=10656 comm="syz.0.1248" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  406.173656][T10671] FAULT_INJECTION: forcing a failure.
[  406.173656][T10671] name failslab, interval 1, probability 0, space 0, times 0
[  406.247398][T10671] CPU: 1 UID: 0 PID: 10671 Comm: syz.2.1252 Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  406.257945][T10671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  406.268014][T10671] Call Trace:
[  406.271299][T10671]  <TASK>
[  406.274236][T10671]  dump_stack_lvl+0x16c/0x1f0
[  406.278935][T10671]  should_fail_ex+0x497/0x5b0
[  406.283660][T10671]  ? fs_reclaim_acquire+0xae/0x150
[  406.288795][T10671]  should_failslab+0xc2/0x120
[  406.293490][T10671]  __kmalloc_noprof+0xcb/0x510
[  406.298268][T10671]  ? find_held_lock+0x2d/0x110
[  406.303052][T10671]  bpf_test_init.isra.0+0xa5/0x150
[  406.308181][T10671]  bpf_prog_test_run_skb+0x246/0x2270
[  406.313571][T10671]  ? lock_acquire+0x2f/0xb0
[  406.318178][T10671]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  406.324003][T10671]  ? fput+0x67/0x440
[  406.327914][T10671]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  406.333736][T10671]  __sys_bpf+0xfc6/0x49c0
[  406.338079][T10671]  ? __pfx_lock_release+0x10/0x10
[  406.343114][T10671]  ? __pfx___sys_bpf+0x10/0x10
[  406.347890][T10671]  ? vfs_write+0x306/0x1150
[  406.352402][T10671]  ? __mutex_unlock_slowpath+0x164/0x690
[  406.358061][T10671]  ? fput+0x67/0x440
[  406.361969][T10671]  ? ksys_write+0x1ba/0x250
[  406.366480][T10671]  ? __pfx_ksys_write+0x10/0x10
[  406.367353][T10682] netlink: 'syz.0.1255': attribute type 1 has an invalid length.
[  406.371324][T10671]  __x64_sys_bpf+0x78/0xc0
[  406.371356][T10671]  ? lockdep_hardirqs_on+0x7c/0x110
[  406.388892][T10671]  do_syscall_64+0xcd/0x250
[  406.393422][T10671]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  406.399336][T10671] RIP: 0033:0x7f44aa580809
[  406.403761][T10671] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  406.423379][T10671] RSP: 002b:00007f44ab2da058 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  406.431808][T10671] RAX: ffffffffffffffda RBX: 00007f44aa745fa0 RCX: 00007f44aa580809
[  406.439786][T10671] RDX: 0000000000000050 RSI: 00000000200002c0 RDI: 000000000000000a
[  406.447848][T10671] RBP: 00007f44ab2da0a0 R08: 0000000000000000 R09: 0000000000000000
[  406.455814][T10671] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  406.463855][T10671] R13: 0000000000000000 R14: 00007f44aa745fa0 R15: 00007ffd45bb1738
[  406.471894][T10671]  </TASK>
[  406.474910][    C1] vkms_vblank_simulate: vblank timer overrun
[  406.611126][ T5840] usb 4-1: new full-speed USB device number 22 using dummy_hcd
[  406.795223][ T5840] usb 4-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[  406.817744][ T5840] usb 4-1: config 0 interface 0 altsetting 16 has 2 endpoint descriptors, different from the interface descriptor's value: 5
[  406.908389][ T5840] usb 4-1: config 0 interface 0 has no altsetting 0
[  406.918495][ T5840] usb 4-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[  406.946842][ T5840] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  407.108997][T10690] FAULT_INJECTION: forcing a failure.
[  407.108997][T10690] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  407.114595][   T29] audit: type=1400 audit(1732855109.943:1530): avc:  denied  { ioctl } for  pid=10688 comm="syz.4.1258" path="socket:[27842]" dev="sockfs" ino=27842 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  407.139973][T10690] CPU: 0 UID: 0 PID: 10690 Comm: syz.4.1258 Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  407.148266][ T5840] usb 4-1: config 0 descriptor??
[  407.157398][T10690] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  407.157413][T10690] Call Trace:
[  407.157420][T10690]  <TASK>
[  407.157428][T10690]  dump_stack_lvl+0x16c/0x1f0
[  407.157459][T10690]  should_fail_ex+0x497/0x5b0
[  407.157489][T10690]  _copy_from_iter+0x2a1/0x1560
[  407.192773][T10690]  ? dev_get_by_index+0x17c/0x380
[  407.197798][T10690]  ? __pfx__copy_from_iter+0x10/0x10
[  407.203084][T10690]  ? lock_acquire+0x2f/0xb0
[  407.207575][T10690]  ? dev_get_by_index+0x37/0x380
[  407.212537][T10690]  packet_sendmsg+0x1c0b/0x5660
[  407.217477][T10690]  ? sock_has_perm+0x25a/0x2f0
[  407.222232][T10690]  ? __pfx_sock_has_perm+0x10/0x10
[  407.227331][T10690]  ? __pfx_packet_sendmsg+0x10/0x10
[  407.232530][T10690]  __sys_sendto+0x488/0x4f0
[  407.237034][T10690]  ? __pfx___sys_sendto+0x10/0x10
[  407.242070][T10690]  ? ksys_write+0x1ba/0x250
[  407.246580][T10690]  ? __pfx_ksys_write+0x10/0x10
[  407.251434][T10690]  __x64_sys_sendto+0xe0/0x1c0
[  407.256211][T10690]  ? do_syscall_64+0x91/0x250
[  407.260881][T10690]  ? lockdep_hardirqs_on+0x7c/0x110
[  407.266075][T10690]  do_syscall_64+0xcd/0x250
[  407.270580][T10690]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  407.276472][T10690] RIP: 0033:0x7fa501580809
[  407.280889][T10690] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  407.300485][T10690] RSP: 002b:00007fa4ff3f6058 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  407.308885][T10690] RAX: ffffffffffffffda RBX: 00007fa501745fa0 RCX: 00007fa501580809
[  407.316841][T10690] RDX: 000000000000ff4b RSI: 0000000020000040 RDI: 0000000000000004
[  407.324795][T10690] RBP: 00007fa4ff3f60a0 R08: 0000000020000000 R09: 0000000000000014
[  407.332750][T10690] R10: 0000000004000050 R11: 0000000000000246 R12: 0000000000000001
[  407.340703][T10690] R13: 0000000000000000 R14: 00007fa501745fa0 R15: 00007ffc97230e48
[  407.348668][T10690]  </TASK>
[  407.357051][ T5917] usb 6-1: new high-speed USB device number 21 using dummy_hcd
[  407.751140][ T5882] usb 1-1: new high-speed USB device number 28 using dummy_hcd
[  407.851877][T10675] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  407.860451][T10675] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  407.913589][ T5840] hid-thrustmaster 0003:044F:B65D.0019: unknown main item tag 0x0
[  407.944726][T10698] FAULT_INJECTION: forcing a failure.
[  407.944726][T10698] name failslab, interval 1, probability 0, space 0, times 0
[  407.951040][ T5840] hid-thrustmaster 0003:044F:B65D.0019: unknown main item tag 0x0
[  407.957464][T10698] CPU: 0 UID: 0 PID: 10698 Comm: syz.4.1260 Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  407.969974][ T5840] hid-thrustmaster 0003:044F:B65D.0019: unknown main item tag 0x0
[  407.975489][T10698] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  407.975503][T10698] Call Trace:
[  407.975508][T10698]  <TASK>
[  407.975516][T10698]  dump_stack_lvl+0x16c/0x1f0
[  407.975545][T10698]  should_fail_ex+0x497/0x5b0
[  407.975570][T10698]  ? fs_reclaim_acquire+0xae/0x150
[  407.983437][ T5840] hid-thrustmaster 0003:044F:B65D.0019: unknown main item tag 0x0
[  407.993374][T10698]  should_failslab+0xc2/0x120
[  407.993401][T10698]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[  407.996675][ T5840] hid-thrustmaster 0003:044F:B65D.0019: unknown main item tag 0x0
[  407.999572][T10698]  ? __alloc_skb+0x2b1/0x380
[  407.999597][T10698]  __alloc_skb+0x2b1/0x380
[  408.048962][T10698]  ? __pfx___alloc_skb+0x10/0x10
[  408.053893][T10698]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  408.059865][T10698]  netlink_alloc_large_skb+0x69/0x130
[  408.065228][T10698]  netlink_sendmsg+0x689/0xd70
[  408.069977][T10698]  ? __pfx_netlink_sendmsg+0x10/0x10
[  408.075278][T10698]  ____sys_sendmsg+0xaaf/0xc90
[  408.080068][T10698]  ? copy_msghdr_from_user+0x10b/0x160
[  408.085529][T10698]  ? __pfx_____sys_sendmsg+0x10/0x10
[  408.090818][T10698]  ___sys_sendmsg+0x135/0x1e0
[  408.095485][T10698]  ? __pfx____sys_sendmsg+0x10/0x10
[  408.100676][T10698]  ? __pfx_lock_release+0x10/0x10
[  408.105688][T10698]  ? trace_lock_acquire+0x14e/0x1f0
[  408.110888][T10698]  ? __fget_files+0x206/0x3a0
[  408.115565][T10698]  __sys_sendmsg+0x16e/0x220
[  408.120142][T10698]  ? __pfx___sys_sendmsg+0x10/0x10
[  408.125254][T10698]  do_syscall_64+0xcd/0x250
[  408.129755][T10698]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  408.135638][T10698] RIP: 0033:0x7fa501580809
[  408.140036][T10698] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  408.159626][T10698] RSP: 002b:00007fa4ff3f6058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  408.168024][T10698] RAX: ffffffffffffffda RBX: 00007fa501745fa0 RCX: 00007fa501580809
[  408.175980][T10698] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003
[  408.183935][T10698] RBP: 00007fa4ff3f60a0 R08: 0000000000000000 R09: 0000000000000000
[  408.191916][T10698] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  408.199869][T10698] R13: 0000000000000000 R14: 00007fa501745fa0 R15: 00007ffc97230e48
[  408.207832][T10698]  </TASK>
[  408.217857][ T5840] hid-thrustmaster 0003:044F:B65D.0019: hidraw0: USB HID v0.00 Device [HID 044f:b65d] on usb-dummy_hcd.3-1/input0
[  408.241831][ T5840] hid-thrustmaster 0003:044F:B65D.0019: setup data couldn't be sent
[  408.250073][    C1] hid-thrustmaster 0003:044F:B65D.0019: URB to get model id failed with error -71
[  408.261095][ T5917] usb 6-1: Using ep0 maxpacket: 16
[  408.277883][ T5840] usb 4-1: USB disconnect, device number 22
[  408.282356][ T5917] usb 6-1: config 0 has an invalid interface number: 69 but max is 0
[  408.295356][ T5917] usb 6-1: config 0 has no interface number 0
[  408.434141][ T5917] usb 6-1: New USB device found, idVendor=2c42, idProduct=1632, bcdDevice=94.64
[  408.444858][ T5917] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  408.528063][ T5917] usb 6-1: Product: syz
[  408.553990][ T5917] usb 6-1: Manufacturer: syz
[  408.598667][ T5917] usb 6-1: SerialNumber: syz
[  408.680598][ T5917] usb 6-1: config 0 descriptor??
[  408.700790][ T5917] f81232 6-1:0.69: f81534a converter detected
[  408.778088][   T29] audit: type=1400 audit(1732855111.613:1531): avc:  denied  { read } for  pid=10706 comm="syz.4.1264" laddr=::1 lport=34717 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  408.799405][    C1] vkms_vblank_simulate: vblank timer overrun
[  408.802122][T10709] FAULT_INJECTION: forcing a failure.
[  408.802122][T10709] name failslab, interval 1, probability 0, space 0, times 0
[  408.822184][T10709] CPU: 0 UID: 0 PID: 10709 Comm: syz.0.1265 Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  408.832614][T10709] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  408.842663][T10709] Call Trace:
[  408.844517][T10711] FAULT_INJECTION: forcing a failure.
[  408.844517][T10711] name failslab, interval 1, probability 0, space 0, times 0
[  408.845928][T10709]  <TASK>
[  408.861412][T10709]  dump_stack_lvl+0x16c/0x1f0
[  408.866095][T10709]  should_fail_ex+0x497/0x5b0
[  408.870766][T10709]  ? fs_reclaim_acquire+0xae/0x150
[  408.875873][T10709]  should_failslab+0xc2/0x120
[  408.880542][T10709]  __kmalloc_noprof+0xcb/0x510
[  408.885314][T10709]  bpf_test_init.isra.0+0xa5/0x150
[  408.890426][T10709]  bpf_prog_test_run_xdp+0x4f0/0x1580
[  408.895795][T10709]  ? lock_acquire+0x2f/0xb0
[  408.900287][T10709]  ? __fget_files+0x40/0x3a0
[  408.904872][T10709]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  408.910681][T10709]  ? __fget_files+0x206/0x3a0
[  408.915350][T10709]  ? fput+0x67/0x440
[  408.919236][T10709]  ? __bpf_prog_get+0xa0/0x290
[  408.923986][T10709]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  408.929783][T10709]  __sys_bpf+0xfc6/0x49c0
[  408.934100][T10709]  ? __pfx_lock_release+0x10/0x10
[  408.939112][T10709]  ? __pfx___sys_bpf+0x10/0x10
[  408.943866][T10709]  ? vfs_write+0x306/0x1150
[  408.948356][T10709]  ? __mutex_unlock_slowpath+0x164/0x690
[  408.953989][T10709]  ? fput+0x67/0x440
[  408.957870][T10709]  ? ksys_write+0x1ba/0x250
[  408.962356][T10709]  ? __pfx_ksys_write+0x10/0x10
[  408.967194][T10709]  __x64_sys_bpf+0x78/0xc0
[  408.971601][T10709]  ? lockdep_hardirqs_on+0x7c/0x110
[  408.976788][T10709]  do_syscall_64+0xcd/0x250
[  408.981298][T10709]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  408.987531][T10709] RIP: 0033:0x7f4be5180809
[  408.991942][T10709] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  409.011544][T10709] RSP: 002b:00007f4be5eb9058 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  409.019943][T10709] RAX: ffffffffffffffda RBX: 00007f4be5345fa0 RCX: 00007f4be5180809
[  409.027897][T10709] RDX: 0000000000000050 RSI: 00000000200000c0 RDI: 000000000000000a
[  409.035867][T10709] RBP: 00007f4be5eb90a0 R08: 0000000000000000 R09: 0000000000000000
[  409.043834][T10709] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  409.052233][T10709] R13: 0000000000000000 R14: 00007f4be5345fa0 R15: 00007ffdb5490578
[  409.060204][T10709]  </TASK>
[  409.066289][T10711] CPU: 0 UID: 0 PID: 10711 Comm: syz.2.1266 Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  409.076749][T10711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  409.086800][T10711] Call Trace:
[  409.090078][T10711]  <TASK>
[  409.093014][T10711]  dump_stack_lvl+0x16c/0x1f0
[  409.097711][T10711]  should_fail_ex+0x497/0x5b0
[  409.102405][T10711]  ? fs_reclaim_acquire+0xae/0x150
[  409.107538][T10711]  should_failslab+0xc2/0x120
[  409.112225][T10711]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[  409.118042][T10711]  ? __alloc_skb+0x2b1/0x380
[  409.122644][T10711]  __alloc_skb+0x2b1/0x380
[  409.127055][T10711]  ? __pfx___alloc_skb+0x10/0x10
[  409.131980][T10711]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  409.137955][T10711]  netlink_alloc_large_skb+0x69/0x130
[  409.143321][T10711]  netlink_sendmsg+0x689/0xd70
[  409.148073][T10711]  ? __pfx_netlink_sendmsg+0x10/0x10
[  409.153365][T10711]  ____sys_sendmsg+0xaaf/0xc90
[  409.158121][T10711]  ? copy_msghdr_from_user+0x10b/0x160
[  409.163573][T10711]  ? __pfx_____sys_sendmsg+0x10/0x10
[  409.168862][T10711]  ___sys_sendmsg+0x135/0x1e0
[  409.173524][T10711]  ? __pfx____sys_sendmsg+0x10/0x10
[  409.178718][T10711]  ? __pfx_lock_release+0x10/0x10
[  409.183730][T10711]  ? trace_lock_acquire+0x14e/0x1f0
[  409.189099][T10711]  ? __fget_files+0x206/0x3a0
[  409.193766][T10711]  __sys_sendmsg+0x16e/0x220
[  409.198340][T10711]  ? __pfx___sys_sendmsg+0x10/0x10
[  409.203449][T10711]  do_syscall_64+0xcd/0x250
[  409.207945][T10711]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  409.213830][T10711] RIP: 0033:0x7f44aa580809
[  409.218232][T10711] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  409.237828][T10711] RSP: 002b:00007f44ab2da058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  409.246225][T10711] RAX: ffffffffffffffda RBX: 00007f44aa745fa0 RCX: 00007f44aa580809
[  409.254192][T10711] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000003
[  409.262155][T10711] RBP: 00007f44ab2da0a0 R08: 0000000000000000 R09: 0000000000000000
[  409.270122][T10711] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  409.278080][T10711] R13: 0000000000000000 R14: 00007f44aa745fa0 R15: 00007ffd45bb1738
[  409.286224][T10711]  </TASK>
[  409.337915][ T5917] usb 6-1: f81534a converter now attached to ttyUSB0
[  409.372017][T10716] usb usb8: usbfs: process 10716 (syz.2.1268) did not claim interface 0 before use
[  409.504829][   T29] audit: type=1400 audit(1732855112.343:1532): avc:  denied  { bind } for  pid=10717 comm="syz.3.1269" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  409.527368][ T5840] usb 6-1: USB disconnect, device number 21
[  409.535697][ T5840] f81534a ttyUSB0: f81534a converter now disconnected from ttyUSB0
[  409.554000][ T5840] f81232 6-1:0.69: device disconnected
[  409.640073][ T5882] usb 1-1: new high-speed USB device number 29 using dummy_hcd
[  409.802148][ T5882] usb 1-1: config 0 interface 0 altsetting 15 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  409.840005][ T5882] usb 1-1: config 0 interface 0 altsetting 15 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  409.927691][   T29] audit: type=1400 audit(1732855112.743:1533): avc:  denied  { write } for  pid=5191 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  410.277302][T10729] ptm ptm1: ldisc open failed (-12), clearing slot 1
[  410.427982][ T5882] usb 1-1: config 0 interface 0 has no altsetting 0
[  410.434901][ T5882] usb 1-1: New USB device found, idVendor=046d, idProduct=c70a, bcdDevice= 0.00
[  410.440144][   T29] audit: type=1400 audit(1732855112.743:1534): avc:  denied  { remove_name } for  pid=5191 comm="syslogd" name="messages" dev="tmpfs" ino=9 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  410.443970][ T5882] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  410.445363][ T5882] usb 1-1: config 0 descriptor??
[  410.466704][    C1] vkms_vblank_simulate: vblank timer overrun
[  410.500607][   T29] audit: type=1400 audit(1732855112.743:1535): avc:  denied  { rename } for  pid=5191 comm="syslogd" name="messages" dev="tmpfs" ino=9 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  410.630925][   T29] audit: type=1400 audit(1732855112.743:1536): avc:  denied  { add_name } for  pid=5191 comm="syslogd" name="messages.0" dev="tmpfs" ino=8 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  410.653606][   T29] audit: type=1400 audit(1732855112.743:1537): avc:  denied  { unlink } for  pid=5191 comm="syslogd" name="messages.0" dev="tmpfs" ino=8 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  410.676283][   T29] audit: type=1400 audit(1732855112.743:1538): avc:  denied  { create } for  pid=5191 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  410.785794][T10714] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  411.285472][T10714] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  411.532382][ T5882] usb 1-1: string descriptor 0 read error: -71
[  411.542006][ T5882] usbhid 1-1:0.0: can't add hid device: -71
[  411.784950][T10749] xt_CT: You must specify a L4 protocol and not use inversions on it
[  412.124928][T10751] FAULT_INJECTION: forcing a failure.
[  412.124928][T10751] name failslab, interval 1, probability 0, space 0, times 0
[  412.133420][ T5882] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  412.137708][T10751] CPU: 0 UID: 0 PID: 10751 Comm: syz.4.1277 Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  412.148060][ T5882] usb 1-1: USB disconnect, device number 29
[  412.155642][T10751] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  412.155656][T10751] Call Trace:
[  412.155662][T10751]  <TASK>
[  412.155669][T10751]  dump_stack_lvl+0x16c/0x1f0
[  412.155700][T10751]  should_fail_ex+0x497/0x5b0
[  412.184142][   T29] audit: type=1400 audit(1732855114.963:1539): avc:  denied  { write } for  pid=10750 comm="syz.4.1277" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  412.187121][T10751]  ? fs_reclaim_acquire+0xae/0x150
[  412.211939][T10751]  should_failslab+0xc2/0x120
[  412.216632][T10751]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[  412.222446][T10751]  ? __alloc_skb+0x2b1/0x380
[  412.227042][T10751]  __alloc_skb+0x2b1/0x380
[  412.231458][T10751]  ? __pfx___alloc_skb+0x10/0x10
[  412.236397][T10751]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  412.242396][T10751]  netlink_alloc_large_skb+0x69/0x130
[  412.247784][T10751]  netlink_sendmsg+0x689/0xd70
[  412.252556][T10751]  ? __pfx_netlink_sendmsg+0x10/0x10
[  412.257859][T10751]  ____sys_sendmsg+0xaaf/0xc90
[  412.262632][T10751]  ? copy_msghdr_from_user+0x10b/0x160
[  412.268101][T10751]  ? __pfx_____sys_sendmsg+0x10/0x10
[  412.273403][T10751]  ? __lock_acquire+0xcc5/0x3c40
[  412.278357][T10751]  ___sys_sendmsg+0x135/0x1e0
[  412.283042][T10751]  ? __pfx____sys_sendmsg+0x10/0x10
[  412.288262][T10751]  ? trace_lock_acquire+0x14e/0x1f0
[  412.293499][T10751]  __sys_sendmmsg+0x201/0x420
[  412.298191][T10751]  ? __pfx___sys_sendmmsg+0x10/0x10
[  412.303407][T10751]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  412.309407][T10751]  ? fput+0x67/0x440
[  412.313311][T10751]  ? ksys_write+0x1ba/0x250
[  412.317819][T10751]  ? __pfx_ksys_write+0x10/0x10
[  412.322679][T10751]  __x64_sys_sendmmsg+0x9c/0x100
[  412.327626][T10751]  ? lockdep_hardirqs_on+0x7c/0x110
[  412.332841][T10751]  do_syscall_64+0xcd/0x250
[  412.337360][T10751]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  412.343271][T10751] RIP: 0033:0x7fa501580809
[  412.347687][T10751] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  412.367306][T10751] RSP: 002b:00007fa4ff3f6058 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  412.375731][T10751] RAX: ffffffffffffffda RBX: 00007fa501745fa0 RCX: 00007fa501580809
[  412.383712][T10751] RDX: 040000000000009f RSI: 00000000200002c0 RDI: 0000000000000004
[  412.391691][T10751] RBP: 00007fa4ff3f60a0 R08: 0000000000000000 R09: 0000000000000000
[  412.399670][T10751] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  412.407649][T10751] R13: 0000000000000000 R14: 00007fa501745fa0 R15: 00007ffc97230e48
[  412.415643][T10751]  </TASK>
[  412.915881][   T29] audit: type=1400 audit(1732855115.723:1540): avc:  denied  { accept } for  pid=10767 comm="syz.4.1279" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  414.440806][ T5882] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[  414.731182][T10785] FAULT_INJECTION: forcing a failure.
[  414.731182][T10785] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  414.760186][T10785] CPU: 0 UID: 0 PID: 10785 Comm: syz.2.1283 Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  414.770641][T10785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  414.780702][T10785] Call Trace:
[  414.783981][T10785]  <TASK>
[  414.786907][T10785]  dump_stack_lvl+0x16c/0x1f0
[  414.791593][T10785]  should_fail_ex+0x497/0x5b0
[  414.796277][T10785]  _copy_from_user+0x2e/0xd0
[  414.800863][T10785]  copy_from_sockptr_offset.constprop.0+0x123/0x140
[  414.807451][T10785]  ? __pfx_copy_from_sockptr_offset.constprop.0+0x10/0x10
[  414.814561][T10785]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  414.820464][T10785]  smc_setsockopt+0x29a/0xa00
[  414.825135][T10785]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  414.831036][T10785]  ? __pfx_smc_setsockopt+0x10/0x10
[  414.836235][T10785]  ? selinux_socket_setsockopt+0x6a/0x80
[  414.841874][T10785]  ? __pfx_smc_setsockopt+0x10/0x10
[  414.847070][T10785]  do_sock_setsockopt+0x222/0x480
[  414.852103][T10785]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  414.857652][T10785]  ? lock_acquire+0x2f/0xb0
[  414.862165][T10785]  __sys_setsockopt+0x1a0/0x230
[  414.867017][T10785]  __x64_sys_setsockopt+0xbd/0x160
[  414.872123][T10785]  ? do_syscall_64+0x91/0x250
[  414.876810][T10785]  ? lockdep_hardirqs_on+0x7c/0x110
[  414.882015][T10785]  do_syscall_64+0xcd/0x250
[  414.886523][T10785]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  414.892424][T10785] RIP: 0033:0x7f44aa580809
[  414.896836][T10785] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  414.916465][T10785] RSP: 002b:00007f44ab2da058 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  414.924880][T10785] RAX: ffffffffffffffda RBX: 00007f44aa745fa0 RCX: 00007f44aa580809
[  414.932846][T10785] RDX: 0000000000000017 RSI: 0000000000000029 RDI: 0000000000000003
[  414.940815][T10785] RBP: 00007f44ab2da0a0 R08: 0000000000000004 R09: 0000000000000000
[  414.948781][T10785] R10: 0000000020000080 R11: 0000000000000246 R12: 0000000000000001
[  414.956747][T10785] R13: 0000000000000000 R14: 00007f44aa745fa0 R15: 00007ffd45bb1738
[  414.964728][T10785]  </TASK>
[  415.240558][ T5882] usb 5-1: Using ep0 maxpacket: 8
[  415.307908][ T5882] usb 5-1: New USB device found, idVendor=0c45, idProduct=613a, bcdDevice=c4.6d
[  415.335343][ T5882] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  415.426133][ T5882] usb 5-1: Product: syz
[  415.430426][ T5882] usb 5-1: Manufacturer: syz
[  415.435093][ T5882] usb 5-1: SerialNumber: syz
[  415.519304][   T29] audit: type=1326 audit(1732855118.343:1541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10801 comm="syz.3.1287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07ea980809 code=0x7ffc0000
[  415.554365][   T29] audit: type=1326 audit(1732855118.343:1542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10801 comm="syz.3.1287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07ea980809 code=0x7ffc0000
[  415.578857][ T5882] usb 5-1: config 0 descriptor??
[  415.595978][ T5882] gspca_main: sonixj-2.14.0 probing 0c45:613a
[  415.622980][   T29] audit: type=1326 audit(1732855118.343:1543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10801 comm="syz.3.1287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f07ea97f170 code=0x7ffc0000
[  415.649302][T10782] syz.0.1281 (10782): drop_caches: 2
[  415.710196][   T29] audit: type=1326 audit(1732855118.343:1544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10801 comm="syz.3.1287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f07ea97f170 code=0x7ffc0000
[  415.762068][   T29] audit: type=1326 audit(1732855118.343:1545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10801 comm="syz.3.1287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07ea980809 code=0x7ffc0000
[  415.785702][   T29] audit: type=1326 audit(1732855118.343:1546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10801 comm="syz.3.1287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07ea980809 code=0x7ffc0000
[  415.809794][   T29] audit: type=1326 audit(1732855118.343:1547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10801 comm="syz.3.1287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=327 compat=0 ip=0x7f07ea980809 code=0x7ffc0000
[  415.833982][   T29] audit: type=1326 audit(1732855118.343:1548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10801 comm="syz.3.1287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07ea980809 code=0x7ffc0000
[  415.857953][   T29] audit: type=1326 audit(1732855118.343:1549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10801 comm="syz.3.1287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f07ea97f170 code=0x7ffc0000
[  415.881941][   T29] audit: type=1326 audit(1732855118.343:1550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10801 comm="syz.3.1287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07ea980809 code=0x7ffc0000
[  417.103230][ T5882] gspca_sonixj: reg_r err -110
[  417.132410][ T5882] sonixj 5-1:0.0: probe with driver sonixj failed with error -110
[  417.304799][T10842] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1294'.
[  417.343966][T10850] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1294'.
[  417.635524][T10865] sctp: [Deprecated]: syz.4.1282 (pid 10865) Use of struct sctp_assoc_value in delayed_ack socket option.
[  417.635524][T10865] Use struct sctp_sack_info instead
[  418.681187][ T5917] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[  418.914139][ T5916] usb 5-1: USB disconnect, device number 23
[  418.923604][ T5917] usb 3-1: Using ep0 maxpacket: 32
[  418.978699][T10884] FAULT_INJECTION: forcing a failure.
[  418.978699][T10884] name failslab, interval 1, probability 0, space 0, times 0
[  418.991679][T10884] CPU: 1 UID: 0 PID: 10884 Comm: syz.4.1302 Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  419.002109][T10884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  419.012174][T10884] Call Trace:
[  419.015458][T10884]  <TASK>
[  419.018392][T10884]  dump_stack_lvl+0x16c/0x1f0
[  419.023087][T10884]  should_fail_ex+0x497/0x5b0
[  419.027711][ T5917] usb 3-1: New USB device found, idVendor=0c72, idProduct=000d, bcdDevice=27.9b
[  419.027768][T10884]  ? fs_reclaim_acquire+0xae/0x150
[  419.036871][ T5917] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  419.041848][T10884]  should_failslab+0xc2/0x120
[  419.041878][T10884]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[  419.060337][T10884]  ? __alloc_skb+0x2b1/0x380
[  419.064942][T10884]  __alloc_skb+0x2b1/0x380
[  419.069369][T10884]  ? __pfx___alloc_skb+0x10/0x10
[  419.070184][ T5917] usb 3-1: Product: syz
[  419.074304][T10884]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  419.074340][T10884]  netlink_alloc_large_skb+0x69/0x130
[  419.074367][T10884]  netlink_sendmsg+0x689/0xd70
[  419.074386][T10884]  ? __pfx_netlink_sendmsg+0x10/0x10
[  419.074421][T10884]  ____sys_sendmsg+0xaaf/0xc90
[  419.074446][T10884]  ? copy_msghdr_from_user+0x10b/0x160
[  419.074467][T10884]  ? __pfx_____sys_sendmsg+0x10/0x10
[  419.074496][T10884]  ? __lock_acquire+0xcc5/0x3c40
[  419.074527][T10884]  ___sys_sendmsg+0x135/0x1e0
[  419.074549][T10884]  ? __pfx____sys_sendmsg+0x10/0x10
[  419.084004][ T5917] usb 3-1: Manufacturer: syz
[  419.084646][T10884]  ? trace_lock_acquire+0x14e/0x1f0
[  419.089992][ T5917] usb 3-1: SerialNumber: syz
[  419.094753][T10884]  __sys_sendmmsg+0x201/0x420
[  419.094786][T10884]  ? __pfx___sys_sendmmsg+0x10/0x10
[  419.094814][T10884]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  419.094847][T10884]  ? fput+0x67/0x440
[  419.164266][T10884]  ? ksys_write+0x1ba/0x250
[  419.168782][T10884]  ? __pfx_ksys_write+0x10/0x10
[  419.173638][T10884]  __x64_sys_sendmmsg+0x9c/0x100
[  419.178580][T10884]  ? lockdep_hardirqs_on+0x7c/0x110
[  419.183796][T10884]  do_syscall_64+0xcd/0x250
[  419.188305][T10884]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  419.194285][T10884] RIP: 0033:0x7fa501580809
[  419.198690][T10884] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  419.218284][T10884] RSP: 002b:00007fa4ff3f6058 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  419.226769][T10884] RAX: ffffffffffffffda RBX: 00007fa501745fa0 RCX: 00007fa501580809
[  419.234744][T10884] RDX: 040000000000009f RSI: 00000000200002c0 RDI: 0000000000000004
[  419.242713][T10884] RBP: 00007fa4ff3f60a0 R08: 0000000000000000 R09: 0000000000000000
[  419.250670][T10884] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  419.258625][T10884] R13: 0000000000000000 R14: 00007fa501745fa0 R15: 00007ffc97230e48
[  419.266617][T10884]  </TASK>
[  419.287112][T10890] usb usb8: usbfs: process 10890 (syz.5.1301) did not claim interface 0 before use
[  419.414665][T10893] SELinux: security_context_str_to_sid (ramfs) failed with errno=-22
[  419.435403][ T5917] usb 3-1: config 0 descriptor??
[  419.438294][T10893] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1305'.
[  419.528269][T10894] input: syz0 as /devices/virtual/input/input32
[  419.569886][ T6718] udevd[6718]: setting owner of /dev/input/event4 to uid=0, gid=104 failed: No such file or directory
[  419.858741][T10915] FAULT_INJECTION: forcing a failure.
[  419.858741][T10915] name failslab, interval 1, probability 0, space 0, times 0
[  419.877589][T10915] CPU: 1 UID: 0 PID: 10915 Comm: syz.5.1309 Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  419.888034][T10915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  419.898102][T10915] Call Trace:
[  419.901387][T10915]  <TASK>
[  419.904325][T10915]  dump_stack_lvl+0x16c/0x1f0
[  419.909021][T10915]  should_fail_ex+0x497/0x5b0
[  419.913715][T10915]  ? fs_reclaim_acquire+0xae/0x150
[  419.918849][T10915]  should_failslab+0xc2/0x120
[  419.923533][T10915]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[  419.929353][T10915]  ? __alloc_skb+0x2b1/0x380
[  419.933949][T10915]  __alloc_skb+0x2b1/0x380
[  419.938355][T10915]  ? __pfx___alloc_skb+0x10/0x10
[  419.943284][T10915]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  419.949265][T10915]  netlink_alloc_large_skb+0x69/0x130
[  419.954632][T10915]  netlink_sendmsg+0x689/0xd70
[  419.959382][T10915]  ? __pfx_netlink_sendmsg+0x10/0x10
[  419.964666][T10915]  ____sys_sendmsg+0xaaf/0xc90
[  419.969422][T10915]  ? copy_msghdr_from_user+0x10b/0x160
[  419.974871][T10915]  ? __pfx_____sys_sendmsg+0x10/0x10
[  419.980158][T10915]  ___sys_sendmsg+0x135/0x1e0
[  419.984828][T10915]  ? __pfx____sys_sendmsg+0x10/0x10
[  419.990021][T10915]  ? __pfx_lock_release+0x10/0x10
[  419.995033][T10915]  ? trace_lock_acquire+0x14e/0x1f0
[  420.000237][T10915]  ? __fget_files+0x206/0x3a0
[  420.004914][T10915]  __sys_sendmsg+0x16e/0x220
[  420.009581][T10915]  ? __pfx___sys_sendmsg+0x10/0x10
[  420.014694][T10915]  do_syscall_64+0xcd/0x250
[  420.019193][T10915]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  420.025079][T10915] RIP: 0033:0x7fe158f80809
[  420.029478][T10915] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  420.049076][T10915] RSP: 002b:00007fe159d88058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  420.057473][T10915] RAX: ffffffffffffffda RBX: 00007fe159145fa0 RCX: 00007fe158f80809
[  420.065428][T10915] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[  420.073381][T10915] RBP: 00007fe159d880a0 R08: 0000000000000000 R09: 0000000000000000
[  420.081339][T10915] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  420.089290][T10915] R13: 0000000000000000 R14: 00007fe159145fa0 R15: 00007ffdd536fd28
[  420.097254][T10915]  </TASK>
[  420.101296][ T5917] peak_usb 3-1:0.0 can0: unable to request usb[type=2 value=5] err=-71
[  420.111835][T10917] FAULT_INJECTION: forcing a failure.
[  420.111835][T10917] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  420.160527][T10917] CPU: 0 UID: 0 PID: 10917 Comm: syz.3.1310 Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  420.170981][T10917] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  420.181044][T10917] Call Trace:
[  420.184335][T10917]  <TASK>
[  420.187276][T10917]  dump_stack_lvl+0x16c/0x1f0
[  420.191976][T10917]  should_fail_ex+0x497/0x5b0
[  420.196662][T10917]  _copy_from_iter+0x469/0x1560
[  420.201516][T10917]  ? __pfx__copy_from_iter+0x10/0x10
[  420.206806][T10917]  ? avc_has_perm+0x11b/0x1c0
[  420.211499][T10917]  ? __pfx_avc_has_perm+0x10/0x10
[  420.216542][T10917]  ? __pfx___lock_acquire+0x10/0x10
[  420.221751][T10917]  bcm_sendmsg+0x18d/0x43f0
[  420.226268][T10917]  ? sock_has_perm+0x25a/0x2f0
[  420.231051][T10917]  ? __pfx_sock_has_perm+0x10/0x10
[  420.236258][T10917]  ? __pfx_bcm_sendmsg+0x10/0x10
[  420.241205][T10917]  ? iovec_from_user.part.0+0x7e/0x130
[  420.246686][T10917]  ____sys_sendmsg+0xaaf/0xc90
[  420.251450][T10917]  ? copy_msghdr_from_user+0x10b/0x160
[  420.256897][T10917]  ? __pfx_____sys_sendmsg+0x10/0x10
[  420.262182][T10917]  ___sys_sendmsg+0x135/0x1e0
[  420.266846][T10917]  ? __pfx____sys_sendmsg+0x10/0x10
[  420.272038][T10917]  ? __pfx_lock_release+0x10/0x10
[  420.277046][T10917]  ? trace_lock_acquire+0x14e/0x1f0
[  420.282243][T10917]  ? __fget_files+0x206/0x3a0
[  420.286911][T10917]  __sys_sendmsg+0x16e/0x220
[  420.291487][T10917]  ? __pfx___sys_sendmsg+0x10/0x10
[  420.296595][T10917]  do_syscall_64+0xcd/0x250
[  420.301093][T10917]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  420.306976][T10917] RIP: 0033:0x7f07ea980809
[  420.311380][T10917] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  420.330972][T10917] RSP: 002b:00007f07eb740058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  420.339367][T10917] RAX: ffffffffffffffda RBX: 00007f07eab45fa0 RCX: 00007f07ea980809
[  420.347324][T10917] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003
[  420.355281][T10917] RBP: 00007f07eb7400a0 R08: 0000000000000000 R09: 0000000000000000
[  420.363236][T10917] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  420.371189][T10917] R13: 0000000000000000 R14: 00007f07eab45fa0 R15: 00007ffe8aaac208
[  420.379153][T10917]  </TASK>
[  420.538038][T10930] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1314'.
[  420.830366][T10939] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1314'.
[  420.901381][T10945] FAULT_INJECTION: forcing a failure.
[  420.901381][T10945] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  420.928516][T10945] CPU: 1 UID: 0 PID: 10945 Comm: syz.4.1318 Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  420.938528][ T5917] peak_usb 3-1:0.0: probe with driver peak_usb failed with error -71
[  420.938944][T10945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  420.957049][T10945] Call Trace:
[  420.957390][ T5917] usb 3-1: USB disconnect, device number 25
[  420.960316][T10945]  <TASK>
[  420.960327][T10945]  dump_stack_lvl+0x16c/0x1f0
[  420.960358][T10945]  should_fail_ex+0x497/0x5b0
[  420.978477][T10945]  _copy_from_user+0x2e/0xd0
[  420.983077][T10945]  sctp_setsockopt+0x204a/0xb810
[  420.988027][T10945]  ? __pfx_selinux_netlbl_socket_setsockopt+0x10/0x10
[  420.994804][T10945]  ? __pfx_sctp_setsockopt+0x10/0x10
[  421.000117][T10945]  ? selinux_socket_setsockopt+0x6a/0x80
[  421.005759][T10945]  ? sock_common_setsockopt+0x2e/0xf0
[  421.011147][T10945]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  421.017053][T10945]  do_sock_setsockopt+0x222/0x480
[  421.022092][T10945]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  421.027647][T10945]  ? lock_acquire+0x2f/0xb0
[  421.032170][T10945]  __sys_setsockopt+0x1a0/0x230
[  421.037035][T10945]  __x64_sys_setsockopt+0xbd/0x160
[  421.042146][T10945]  ? do_syscall_64+0x91/0x250
[  421.046832][T10945]  ? lockdep_hardirqs_on+0x7c/0x110
[  421.052037][T10945]  do_syscall_64+0xcd/0x250
[  421.056552][T10945]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  421.062453][T10945] RIP: 0033:0x7fa501580809
[  421.066867][T10945] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  421.086489][T10945] RSP: 002b:00007fa4ff3f6058 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  421.094916][T10945] RAX: ffffffffffffffda RBX: 00007fa501745fa0 RCX: 00007fa501580809
[  421.102891][T10945] RDX: 0000000000000083 RSI: 0000000000000084 RDI: 0000000000000003
[  421.110867][T10945] RBP: 00007fa4ff3f60a0 R08: 0000000000000008 R09: 0000000000000000
[  421.118840][T10945] R10: 0000000020000080 R11: 0000000000000246 R12: 0000000000000001
[  421.126814][T10945] R13: 0000000000000000 R14: 00007fa501745fa0 R15: 00007ffc97230e48
[  421.134808][T10945]  </TASK>
[  422.404724][T10968] syz.3.1321: attempt to access beyond end of device
[  422.404724][T10968] nbd3: rw=0, sector=6, nr_sectors = 2 limit=0
[  422.417646][T10968] ADFS-fs (nbd3): error: unable to read block 3, try 0
[  422.942893][ T5884] Bluetooth: hci1: Opcode 0x0c1a failed: -110
[  422.949418][ T5884] Bluetooth: hci1: Error when powering off device on rfkill (-110)
[  423.010282][ T5160] Bluetooth: hci1: command 0x0406 tx timeout
[  423.532626][T10984] FAULT_INJECTION: forcing a failure.
[  423.532626][T10984] name failslab, interval 1, probability 0, space 0, times 0
[  423.545497][T10984] CPU: 0 UID: 0 PID: 10984 Comm: syz.5.1327 Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  423.555923][T10984] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  423.565989][T10984] Call Trace:
[  423.569275][T10984]  <TASK>
[  423.572210][T10984]  dump_stack_lvl+0x16c/0x1f0
[  423.576904][T10984]  should_fail_ex+0x497/0x5b0
[  423.579824][   T29] kauditd_printk_skb: 58 callbacks suppressed
[  423.579836][   T29] audit: type=1400 audit(1732855126.414:1609): avc:  denied  { setopt } for  pid=10982 comm="syz.3.1326" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  423.581578][T10984]  ? fs_reclaim_acquire+0xae/0x150
[  423.581612][T10984]  should_failslab+0xc2/0x120
[  423.581635][T10984]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[  423.581656][T10984]  ? __alloc_skb+0x2b1/0x380
[  423.581679][T10984]  __alloc_skb+0x2b1/0x380
[  423.631696][T10984]  ? __pfx___alloc_skb+0x10/0x10
[  423.636653][T10984]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  423.642668][T10984]  netlink_alloc_large_skb+0x69/0x130
[  423.648066][T10984]  netlink_sendmsg+0x689/0xd70
[  423.652846][T10984]  ? __pfx_netlink_sendmsg+0x10/0x10
[  423.658158][T10984]  ____sys_sendmsg+0xaaf/0xc90
[  423.660127][  T967] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[  423.662923][T10984]  ? copy_msghdr_from_user+0x10b/0x160
[  423.675900][T10984]  ? __pfx_____sys_sendmsg+0x10/0x10
[  423.681228][T10984]  ___sys_sendmsg+0x135/0x1e0
[  423.685922][T10984]  ? __pfx____sys_sendmsg+0x10/0x10
[  423.691142][T10984]  ? __pfx_lock_release+0x10/0x10
[  423.696163][T10984]  ? trace_lock_acquire+0x14e/0x1f0
[  423.701346][T10984]  ? __fget_files+0x206/0x3a0
[  423.706001][T10984]  __sys_sendmsg+0x16e/0x220
[  423.710580][T10984]  ? __pfx___sys_sendmsg+0x10/0x10
[  423.715689][T10984]  do_syscall_64+0xcd/0x250
[  423.720180][T10984]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  423.726096][T10984] RIP: 0033:0x7fe158f80809
[  423.730513][T10984] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  423.750127][T10984] RSP: 002b:00007fe159d88058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  423.758551][T10984] RAX: ffffffffffffffda RBX: 00007fe159145fa0 RCX: 00007fe158f80809
[  423.766535][T10984] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000003
[  423.774514][T10984] RBP: 00007fe159d880a0 R08: 0000000000000000 R09: 0000000000000000
[  423.782495][T10984] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  423.790478][T10984] R13: 0000000000000000 R14: 00007fe159145fa0 R15: 00007ffdd536fd28
[  423.798474][T10984]  </TASK>
[  423.843778][  T967] usb 5-1: New USB device found, idVendor=08fd, idProduct=0002, bcdDevice=ca.fd
[  423.884757][  T967] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  423.971696][  T967] usb 5-1: Product: syz
[  424.007089][  T967] usb 5-1: Manufacturer: syz
[  424.049094][  T967] usb 5-1: SerialNumber: syz
[  424.158306][  T967] usb 5-1: config 0 descriptor??
[  424.610131][   T29] audit: type=1400 audit(1732855127.314:1610): avc:  denied  { ioctl } for  pid=10994 comm="syz.3.1329" path="socket:[28453]" dev="sockfs" ino=28453 ioctlcmd=0xf507 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  425.084014][T11008] FAULT_INJECTION: forcing a failure.
[  425.084014][T11008] name failslab, interval 1, probability 0, space 0, times 0
[  425.123296][T11008] CPU: 0 UID: 0 PID: 11008 Comm: syz.3.1332 Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  425.133743][T11008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  425.143797][T11008] Call Trace:
[  425.147078][T11008]  <TASK>
[  425.150010][T11008]  dump_stack_lvl+0x16c/0x1f0
[  425.154699][T11008]  should_fail_ex+0x497/0x5b0
[  425.159391][T11008]  ? fs_reclaim_acquire+0xae/0x150
[  425.164534][T11008]  should_failslab+0xc2/0x120
[  425.169232][T11008]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[  425.175056][T11008]  ? __alloc_skb+0x2b1/0x380
[  425.179662][T11008]  __alloc_skb+0x2b1/0x380
[  425.184085][T11008]  ? __pfx___alloc_skb+0x10/0x10
[  425.189022][T11008]  ? selinux_socket_getpeersec_dgram+0x1a5/0x370
[  425.195361][T11008]  ? __pfx_selinux_socket_getpeersec_dgram+0x10/0x10
[  425.202058][T11008]  netlink_alloc_large_skb+0x69/0x130
[  425.207454][T11008]  netlink_sendmsg+0x689/0xd70
[  425.212233][T11008]  ? __pfx_netlink_sendmsg+0x10/0x10
[  425.217545][T11008]  ____sys_sendmsg+0xaaf/0xc90
[  425.222321][T11008]  ? copy_msghdr_from_user+0x10b/0x160
[  425.227783][T11008]  ? __pfx_____sys_sendmsg+0x10/0x10
[  425.233062][T11008]  ___sys_sendmsg+0x135/0x1e0
[  425.237717][T11008]  ? __pfx____sys_sendmsg+0x10/0x10
[  425.242900][T11008]  ? __pfx_lock_release+0x10/0x10
[  425.247906][T11008]  ? trace_lock_acquire+0x14e/0x1f0
[  425.253093][T11008]  ? __fget_files+0x206/0x3a0
[  425.257752][T11008]  __sys_sendmsg+0x16e/0x220
[  425.262334][T11008]  ? __pfx___sys_sendmsg+0x10/0x10
[  425.267430][T11008]  do_syscall_64+0xcd/0x250
[  425.271921][T11008]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  425.277792][T11008] RIP: 0033:0x7f07ea980809
[  425.282180][T11008] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  425.301775][T11008] RSP: 002b:00007f07eb740058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  425.310181][T11008] RAX: ffffffffffffffda RBX: 00007f07eab45fa0 RCX: 00007f07ea980809
[  425.318143][T11008] RDX: 00000000000000c0 RSI: 0000000020002ec0 RDI: 0000000000000003
[  425.326108][T11008] RBP: 00007f07eb7400a0 R08: 0000000000000000 R09: 0000000000000000
[  425.334069][T11008] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  425.342026][T11008] R13: 0000000000000000 R14: 00007f07eab45fa0 R15: 00007ffe8aaac208
[  425.349983][T11008]  </TASK>
[  426.531237][T11036] FAULT_INJECTION: forcing a failure.
[  426.531237][T11036] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  426.552597][T11036] CPU: 0 UID: 0 PID: 11036 Comm: syz.5.1341 Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  426.563045][T11036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  426.573105][T11036] Call Trace:
[  426.576375][T11036]  <TASK>
[  426.579296][T11036]  dump_stack_lvl+0x16c/0x1f0
[  426.583967][T11036]  should_fail_ex+0x497/0x5b0
[  426.588640][T11036]  _copy_from_user+0x2e/0xd0
[  426.593217][T11036]  copy_msghdr_from_user+0x99/0x160
[  426.598404][T11036]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  426.604281][T11036]  ? __lock_acquire+0xcc5/0x3c40
[  426.609212][T11036]  ___sys_sendmsg+0xff/0x1e0
[  426.613793][T11036]  ? __pfx____sys_sendmsg+0x10/0x10
[  426.618984][T11036]  ? trace_lock_acquire+0x14e/0x1f0
[  426.624188][T11036]  __sys_sendmmsg+0x201/0x420
[  426.628852][T11036]  ? __pfx___sys_sendmmsg+0x10/0x10
[  426.634041][T11036]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  426.640025][T11036]  ? fput+0x67/0x440
[  426.643910][T11036]  ? ksys_write+0x1ba/0x250
[  426.648396][T11036]  ? __pfx_ksys_write+0x10/0x10
[  426.653237][T11036]  __x64_sys_sendmmsg+0x9c/0x100
[  426.658162][T11036]  ? lockdep_hardirqs_on+0x7c/0x110
[  426.663350][T11036]  do_syscall_64+0xcd/0x250
[  426.667846][T11036]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  426.673732][T11036] RIP: 0033:0x7fe158f80809
[  426.678130][T11036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  426.697720][T11036] RSP: 002b:00007fe159d88058 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  426.706115][T11036] RAX: ffffffffffffffda RBX: 00007fe159145fa0 RCX: 00007fe158f80809
[  426.714069][T11036] RDX: 0000000000000002 RSI: 00000000200032c0 RDI: 0000000000000004
[  426.722021][T11036] RBP: 00007fe159d880a0 R08: 0000000000000000 R09: 0000000000000000
[  426.729972][T11036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  426.737928][T11036] R13: 0000000000000000 R14: 00007fe159145fa0 R15: 00007ffdd536fd28
[  426.745891][T11036]  </TASK>
[  427.085015][   T29] audit: type=1400 audit(1732855129.924:1611): avc:  denied  { write } for  pid=11048 comm="syz.5.1342" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  427.259681][T11056] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1343'.
[  427.283110][T11056] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1343'.
[  428.380040][   T29] audit: type=1400 audit(1732855131.154:1612): avc:  denied  { map } for  pid=11063 comm="syz.4.1345" path="socket:[28636]" dev="sockfs" ino=28636 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=udp_socket permissive=1
[  439.629255][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  439.635563][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  486.282513][ T5209] udevd[5209]: worker [5849] /devices/platform/dummy_hcd.4/usb5/5-1 is taking a long time
[  501.057377][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  501.063694][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  562.493503][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  562.499881][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  581.052205][   T30] INFO: task kworker/1:2:967 blocked for more than 143 seconds.
[  581.059865][   T30]       Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  581.067220][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  581.075927][   T30] task:kworker/1:2     state:D stack:20528 pid:967   tgid:967   ppid:2      flags:0x00004000
[  581.086151][   T30] Workqueue: usb_hub_wq hub_event
[  581.091278][   T30] Call Trace:
[  581.094550][   T30]  <TASK>
[  581.097459][   T30]  __schedule+0xe58/0x5ad0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  581.101890][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  581.104603][   T29] audit: type=1400 audit(1732855283.953:1613): avc:  denied  { write } for  pid=5821 comm="syz-executor" path="pipe:[4540]" dev="pipefs" ino=4540 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[  581.107084][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  581.136718][   T30]  ? __pfx___schedule+0x10/0x10
[  581.141667][   T30]  ? schedule+0x298/0x350
[  581.161566][ T5821] syz-executor (5821) used greatest stack depth: 21216 bytes left
[  581.191169][   T30]  ? __pfx_lock_release+0x10/0x10
[  581.196255][   T30]  ? __mutex_trylock_common+0x78/0x250
[  581.204039][   T30]  ? lock_acquire+0x2f/0xb0
[  581.208588][   T30]  ? schedule+0x1fd/0x350
[  581.213339][   T30]  schedule+0xe7/0x350
[  581.217426][   T30]  schedule_preempt_disabled+0x13/0x30
[  581.222939][   T30]  __mutex_lock+0x62b/0xa60
[  581.227459][   T30]  ? __pfx___debug_object_init+0x10/0x10
[  581.233165][   T30]  ? rfkill_register+0x3a/0xb40
[  581.238027][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  581.243127][   T30]  ? __init_waitqueue_head+0xca/0x150
[  581.248598][   T30]  ? rfkill_register+0x3a/0xb40
[  581.253559][   T30]  ? rfkill_alloc+0x25b/0x330
[  581.258250][   T30]  rfkill_register+0x3a/0xb40
[  581.262988][   T30]  hci_register_dev+0x3cc/0xc60
[  581.267863][   T30]  bpa10x_probe+0x415/0x590
[  581.272488][   T30]  usb_probe_interface+0x309/0x9d0
[  581.277627][   T30]  ? __pfx_usb_probe_interface+0x10/0x10
[  581.283373][   T30]  really_probe+0x23e/0xa90
[  581.287936][   T30]  __driver_probe_device+0x1de/0x440
[  581.293284][   T30]  driver_probe_device+0x4c/0x1b0
[  581.298314][   T30]  __device_attach_driver+0x1df/0x310
[  581.303768][   T30]  ? __pfx___device_attach_driver+0x10/0x10
[  581.309684][   T30]  bus_for_each_drv+0x157/0x1e0
[  581.314583][   T30]  ? __pfx_bus_for_each_drv+0x10/0x10
[  581.319973][   T30]  ? lockdep_hardirqs_on+0x7c/0x110
[  581.325234][   T30]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  581.331046][   T30]  __device_attach+0x1e8/0x4b0
[  581.335825][   T30]  ? __pfx___device_attach+0x10/0x10
[  581.341108][   T30]  ? do_raw_spin_unlock+0x172/0x230
[  581.346371][   T30]  bus_probe_device+0x17f/0x1c0
[  581.351263][   T30]  device_add+0x114b/0x1a70
[  581.355787][   T30]  ? __pfx_device_add+0x10/0x10
[  581.360629][   T30]  ? mark_held_locks+0x9f/0xe0
[  581.365457][   T30]  usb_set_configuration+0x10cb/0x1c50
[  581.370938][   T30]  ? __pfx_usb_generic_driver_probe+0x10/0x10
[  581.377131][   T30]  usb_generic_driver_probe+0xb1/0x110
[  581.382661][   T30]  usb_probe_device+0xec/0x3e0
[  581.387418][   T30]  ? __pfx_usb_probe_device+0x10/0x10
[  581.392808][   T30]  really_probe+0x23e/0xa90
[  581.397321][   T30]  __driver_probe_device+0x1de/0x440
[  581.402676][   T30]  ? usb_driver_applicable+0x1c7/0x220
[  581.408131][   T30]  driver_probe_device+0x4c/0x1b0
[  581.413203][   T30]  __device_attach_driver+0x1df/0x310
[  581.418573][   T30]  ? __pfx___device_attach_driver+0x10/0x10
[  581.424482][   T30]  bus_for_each_drv+0x157/0x1e0
[  581.429325][   T30]  ? __pfx_bus_for_each_drv+0x10/0x10
[  581.434725][   T30]  ? lockdep_hardirqs_on+0x7c/0x110
[  581.439926][   T30]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  581.445807][   T30]  __device_attach+0x1e8/0x4b0
[  581.450570][   T30]  ? __pfx___device_attach+0x10/0x10
[  581.456104][   T30]  ? do_raw_spin_unlock+0x172/0x230
[  581.461367][   T30]  bus_probe_device+0x17f/0x1c0
[  581.466199][   T30]  device_add+0x114b/0x1a70
[  581.470680][   T30]  ? __pfx_device_add+0x10/0x10
[  581.475555][   T30]  usb_new_device+0xd90/0x1a10
[  581.480316][   T30]  ? __pfx_usb_new_device+0x10/0x10
[  581.485590][   T30]  hub_event+0x2d9a/0x4e10
[  581.490013][   T30]  ? __pfx_hub_event+0x10/0x10
[  581.494788][   T30]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  581.500416][   T30]  ? rcu_is_watching+0x12/0xc0
[  581.505206][   T30]  ? trace_lock_acquire+0x14e/0x1f0
[  581.510420][   T30]  ? process_one_work+0x921/0x1ba0
[  581.515580][   T30]  ? lock_acquire+0x2f/0xb0
[  581.520084][   T30]  ? process_one_work+0x921/0x1ba0
[  581.525255][   T30]  process_one_work+0x9c5/0x1ba0
[  581.530197][   T30]  ? __pfx_nsim_dev_hwstats_traffic_work+0x10/0x10
[  581.536744][   T30]  ? __pfx_process_one_work+0x10/0x10
[  581.542125][   T30]  ? rcu_is_watching+0x12/0xc0
[  581.546872][   T30]  ? assign_work+0x1a0/0x250
[  581.551482][   T30]  worker_thread+0x6c8/0xf00
[  581.556092][   T30]  ? __pfx_worker_thread+0x10/0x10
[  581.561274][   T30]  kthread+0x2c1/0x3a0
[  581.565340][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  581.570516][   T30]  ? __pfx_kthread+0x10/0x10
[  581.575134][   T30]  ret_from_fork+0x45/0x80
[  581.579541][   T30]  ? __pfx_kthread+0x10/0x10
[  581.584149][   T30]  ret_from_fork_asm+0x1a/0x30
[  581.588921][   T30]  </TASK>
[  581.592042][   T30] INFO: task kworker/1:5:5882 blocked for more than 143 seconds.
[  581.599750][   T30]       Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  581.607115][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  581.615898][   T30] task:kworker/1:5     state:D stack:20128 pid:5882  tgid:5882  ppid:2      flags:0x00004000
[  581.626105][   T30] Workqueue: events rfkill_global_led_trigger_worker
[  581.632851][   T30] Call Trace:
[  581.636127][   T30]  <TASK>
[  581.639058][   T30]  __schedule+0xe58/0x5ad0
[  581.643546][   T30]  ? __pfx_mark_lock+0x10/0x10
[  581.648315][   T30]  ? lock_acquire.part.0+0x11b/0x380
[  581.653643][   T30]  ? find_held_lock+0x2d/0x110
[  581.658408][   T30]  ? __pfx___schedule+0x10/0x10
[  581.663268][   T30]  ? schedule+0x298/0x350
[  581.667605][   T30]  ? __pfx_lock_release+0x10/0x10
[  581.672658][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  581.677869][   T30]  ? lockdep_hardirqs_on+0x7c/0x110
[  581.683143][   T30]  schedule+0xe7/0x350
[  581.687213][   T30]  schedule_preempt_disabled+0x13/0x30
[  581.693086][   T30]  __mutex_lock+0x62b/0xa60
[  581.697597][   T30]  ? lock_acquire+0x2f/0xb0
[  581.702116][   T30]  ? rfkill_global_led_trigger_worker+0x1b/0x160
[  581.708456][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  581.713524][   T30]  ? rcu_is_watching+0x12/0xc0
[  581.718303][   T30]  ? trace_lock_acquire+0x14e/0x1f0
[  581.723551][   T30]  ? process_one_work+0x921/0x1ba0
[  581.728660][   T30]  ? rfkill_global_led_trigger_worker+0x1b/0x160
[  581.735014][   T30]  rfkill_global_led_trigger_worker+0x1b/0x160
[  581.741220][   T30]  process_one_work+0x9c5/0x1ba0
[  581.746156][   T30]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  581.751834][   T30]  ? __pfx_process_one_work+0x10/0x10
[  581.757206][   T30]  ? rcu_is_watching+0x12/0xc0
[  581.762031][   T30]  ? assign_work+0x1a0/0x250
[  581.766616][   T30]  worker_thread+0x6c8/0xf00
[  581.771242][   T30]  ? __kthread_parkme+0x148/0x220
[  581.776265][   T30]  ? __pfx_worker_thread+0x10/0x10
[  581.781408][   T30]  kthread+0x2c1/0x3a0
[  581.785474][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  581.790653][   T30]  ? __pfx_kthread+0x10/0x10
[  581.795257][   T30]  ret_from_fork+0x45/0x80
[  581.799665][   T30]  ? __pfx_kthread+0x10/0x10
[  581.804318][   T30]  ret_from_fork_asm+0x1a/0x30
[  581.809087][   T30]  </TASK>
[  581.812131][   T30] INFO: task kworker/1:7:5884 blocked for more than 144 seconds.
[  581.819843][   T30]       Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  581.827237][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  581.835916][   T30] task:kworker/1:7     state:D stack:20224 pid:5884  tgid:5884  ppid:2      flags:0x00004000
[  581.846131][   T30] Workqueue: events rfkill_op_handler
[  581.851752][   T30] Call Trace:
[  581.855038][   T30]  <TASK>
[  581.857959][   T30]  __schedule+0xe58/0x5ad0
[  581.862789][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  581.868078][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  581.873463][   T30]  ? __pfx___schedule+0x10/0x10
[  581.878325][   T30]  ? schedule+0x298/0x350
[  581.883008][   T30]  ? __pfx_lock_release+0x10/0x10
[  581.888055][   T30]  ? __mutex_trylock_common+0x78/0x250
[  581.893636][   T30]  ? lock_acquire+0x2f/0xb0
[  581.898130][   T30]  ? schedule+0x1fd/0x350
[  581.902497][   T30]  schedule+0xe7/0x350
[  581.906566][   T30]  schedule_preempt_disabled+0x13/0x30
[  581.912050][   T30]  __mutex_lock+0x62b/0xa60
[  581.916553][   T30]  ? mark_held_locks+0x9f/0xe0
[  581.921381][   T30]  ? nfc_dev_down+0x2d/0x2e0
[  581.925972][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  581.930978][   T30]  ? lock_acquire.part.0+0x11b/0x380
[  581.936284][   T30]  ? rfkill_set_block+0x198/0x560
[  581.941347][   T30]  ? __pfx_lock_release+0x10/0x10
[  581.946369][   T30]  ? nfc_dev_down+0x2d/0x2e0
[  581.950938][   T30]  nfc_dev_down+0x2d/0x2e0
[  581.955370][   T30]  nfc_rfkill_set_block+0x39/0xe0
[  581.960397][   T30]  ? __pfx_nfc_rfkill_set_block+0x10/0x10
[  581.966211][   T30]  rfkill_set_block+0x203/0x560
[  581.971074][   T30]  rfkill_epo+0x8e/0x1d0
[  581.975382][   T30]  rfkill_op_handler+0x262/0x280
[  581.980321][   T30]  process_one_work+0x9c5/0x1ba0
[  581.985298][   T30]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  581.990928][   T30]  ? __pfx_process_one_work+0x10/0x10
[  581.996349][   T30]  ? rcu_is_watching+0x12/0xc0
[  582.001196][   T30]  ? assign_work+0x1a0/0x250
[  582.005791][   T30]  worker_thread+0x6c8/0xf00
[  582.010393][   T30]  ? __pfx_worker_thread+0x10/0x10
[  582.015588][   T30]  kthread+0x2c1/0x3a0
[  582.019658][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  582.024892][   T30]  ? __pfx_kthread+0x10/0x10
[  582.029518][   T30]  ret_from_fork+0x45/0x80
[  582.033972][   T30]  ? __pfx_kthread+0x10/0x10
[  582.038579][   T30]  ret_from_fork_asm+0x1a/0x30
[  582.043438][   T30]  </TASK>
[  582.046472][   T30] INFO: task syz.2.1295:10845 blocked for more than 144 seconds.
[  582.054509][   T30]       Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  582.061807][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  582.070474][   T30] task:syz.2.1295      state:D stack:28000 pid:10845 tgid:10845 ppid:5837   flags:0x00004004
[  582.080685][   T30] Call Trace:
[  582.083996][   T30]  <TASK>
[  582.086922][   T30]  __schedule+0xe58/0x5ad0
[  582.091400][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  582.096598][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  582.101841][   T30]  ? __pfx___schedule+0x10/0x10
[  582.106692][   T30]  ? schedule+0x298/0x350
[  582.110998][   T30]  ? __pfx_lock_release+0x10/0x10
[  582.116097][   T30]  ? __mutex_trylock_common+0x78/0x250
[  582.121609][   T30]  ? lock_acquire+0x2f/0xb0
[  582.126109][   T30]  ? schedule+0x1fd/0x350
[  582.130416][   T30]  schedule+0xe7/0x350
[  582.134517][   T30]  schedule_preempt_disabled+0x13/0x30
[  582.139983][   T30]  __mutex_lock+0x62b/0xa60
[  582.144515][   T30]  ? do_raw_spin_unlock+0x172/0x230
[  582.149711][   T30]  ? rfkill_unregister+0xde/0x2c0
[  582.154770][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  582.159796][   T30]  ? device_del+0x6b6/0x9f0
[  582.164341][   T30]  ? __pfx_device_del+0x10/0x10
[  582.169210][   T30]  ? rfkill_unregister+0xde/0x2c0
[  582.174303][   T30]  rfkill_unregister+0xde/0x2c0
[  582.179217][   T30]  nfc_unregister_device+0x94/0x330
[  582.184478][   T30]  ? __pfx_virtual_ncidev_close+0x10/0x10
[  582.190198][   T30]  virtual_ncidev_close+0x4b/0xa0
[  582.195280][   T30]  __fput+0x3f8/0xb60
[  582.199264][   T30]  task_work_run+0x14e/0x250
[  582.203882][   T30]  ? __pfx_task_work_run+0x10/0x10
[  582.208988][   T30]  ? __pfx___do_sys_close_range+0x10/0x10
[  582.214736][   T30]  syscall_exit_to_user_mode+0x27b/0x2a0
[  582.220379][   T30]  do_syscall_64+0xda/0x250
[  582.224917][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  582.230821][   T30] RIP: 0033:0x7f44aa580809
[  582.235252][   T30] RSP: 002b:00007ffd45bb1898 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  582.243702][   T30] RAX: 0000000000000000 RBX: 0000000000065e23 RCX: 00007f44aa580809
[  582.251711][   T30] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  582.259698][   T30] RBP: 00007f44aa747ba0 R08: 0000000000000001 R09: 00007ffd45bb1b7f
[  582.267715][   T30] R10: 00007f44aa400000 R11: 0000000000000246 R12: 000000000006695c
[  582.275748][   T30] R13: 00007f44aa745fa0 R14: 000000000000015e R15: ffffffffffffffff
[  582.283781][   T30]  </TASK>
[  582.286806][   T30] INFO: task syz.3.1339:11034 blocked for more than 144 seconds.
[  582.294569][   T30]       Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  582.301889][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  582.310545][   T30] task:syz.3.1339      state:D stack:26336 pid:11034 tgid:11033 ppid:5841   flags:0x00004004
[  582.320738][   T30] Call Trace:
[  582.324032][   T30]  <TASK>
[  582.326940][   T30]  __schedule+0xe58/0x5ad0
[  582.331420][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  582.336620][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  582.341841][   T30]  ? __pfx___schedule+0x10/0x10
[  582.346691][   T30]  ? schedule+0x298/0x350
[  582.350997][   T30]  ? __pfx_lock_release+0x10/0x10
[  582.356041][   T30]  ? __mutex_trylock_common+0x78/0x250
[  582.361529][   T30]  ? lock_acquire+0x2f/0xb0
[  582.366025][   T30]  ? schedule+0x1fd/0x350
[  582.370334][   T30]  schedule+0xe7/0x350
[  582.374417][   T30]  schedule_preempt_disabled+0x13/0x30
[  582.379877][   T30]  __mutex_lock+0x62b/0xa60
[  582.384420][   T30]  ? __pfx___debug_object_init+0x10/0x10
[  582.390058][   T30]  ? rfkill_register+0x3a/0xb40
[  582.395328][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  582.400368][   T30]  ? __init_waitqueue_head+0xca/0x150
[  582.405971][   T30]  ? rfkill_register+0x3a/0xb40
[  582.410817][   T30]  rfkill_register+0x3a/0xb40
[  582.416299][   T30]  nfc_register_device+0x11f/0x3c0
[  582.421965][   T30]  nci_register_device+0x7f4/0xb80
[  582.427076][   T30]  ? __pfx_nci_register_device+0x10/0x10
[  582.432780][   T30]  virtual_ncidev_open+0x141/0x220
[  582.437891][   T30]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  582.443584][   T30]  misc_open+0x35a/0x420
[  582.447827][   T30]  ? __pfx_misc_open+0x10/0x10
[  582.452681][   T30]  chrdev_open+0x237/0x6a0
[  582.457094][   T30]  ? __pfx_chrdev_open+0x10/0x10
[  582.462113][   T30]  do_dentry_open+0xf59/0x1ea0
[  582.466875][   T30]  ? __pfx_chrdev_open+0x10/0x10
[  582.472842][   T30]  ? inode_permission+0xdd/0x5f0
[  582.477770][   T30]  vfs_open+0x82/0x3f0
[  582.482409][   T30]  ? may_open+0x1f2/0x400
[  582.486745][   T30]  path_openat+0x1e6a/0x2d60
[  582.491911][   T30]  ? __pfx_path_openat+0x10/0x10
[  582.496939][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  582.502239][   T30]  ? lock_acquire.part.0+0x11b/0x380
[  582.507530][   T30]  ? find_held_lock+0x2d/0x110
[  582.512505][   T30]  do_filp_open+0x20c/0x470
[  582.517018][   T30]  ? __pfx_do_filp_open+0x10/0x10
[  582.522154][   T30]  ? find_held_lock+0x2d/0x110
[  582.526929][   T30]  ? alloc_fd+0x41f/0x760
[  582.531335][   T30]  do_sys_openat2+0x17a/0x1e0
[  582.536015][   T30]  ? __pfx_do_sys_openat2+0x10/0x10
[  582.541304][   T30]  __x64_sys_openat+0x175/0x210
[  582.546156][   T30]  ? __pfx___x64_sys_openat+0x10/0x10
[  582.551592][   T30]  do_syscall_64+0xcd/0x250
[  582.556098][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  582.562103][   T30] RIP: 0033:0x7f07ea980809
[  582.566511][   T30] RSP: 002b:00007f07eb740058 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  582.574951][   T30] RAX: ffffffffffffffda RBX: 00007f07eab45fa0 RCX: 00007f07ea980809
[  582.583008][   T30] RDX: 0000000000000002 RSI: 0000000020000080 RDI: ffffffffffffff9c
[  582.590974][   T30] RBP: 00007f07ea9f393e R08: 0000000000000000 R09: 0000000000000000
[  582.598994][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  582.607052][   T30] R13: 0000000000000000 R14: 00007f07eab45fa0 R15: 00007ffe8aaac208
[  582.615067][   T30]  </TASK>
[  582.618085][   T30] INFO: task syz.5.1348:11080 blocked for more than 144 seconds.
[  582.626237][   T30]       Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  582.633547][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  582.642307][   T30] task:syz.5.1348      state:D stack:28416 pid:11080 tgid:11079 ppid:7809   flags:0x00000004
[  582.652550][   T30] Call Trace:
[  582.655831][   T30]  <TASK>
[  582.658767][   T30]  __schedule+0xe58/0x5ad0
[  582.663279][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  582.668496][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  582.673715][   T30]  ? __pfx___schedule+0x10/0x10
[  582.678565][   T30]  ? schedule+0x298/0x350
[  582.682985][   T30]  ? __pfx_lock_release+0x10/0x10
[  582.688009][   T30]  ? __mutex_trylock_common+0x78/0x250
[  582.693498][   T30]  ? lock_acquire+0x2f/0xb0
[  582.698012][   T30]  ? schedule+0x1fd/0x350
[  582.702460][   T30]  schedule+0xe7/0x350
[  582.706527][   T30]  schedule_preempt_disabled+0x13/0x30
[  582.712045][   T30]  __mutex_lock+0x62b/0xa60
[  582.716550][   T30]  ? misc_open+0x63/0x420
[  582.720861][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  582.725983][   T30]  ? lock_acquire.part.0+0x11b/0x380
[  582.731440][   T30]  ? chrdev_open+0x10e/0x6a0
[  582.736047][   T30]  ? __pfx_lock_release+0x10/0x10
[  582.741136][   T30]  ? kobject_get_unless_zero+0x157/0x1e0
[  582.746772][   T30]  ? __pfx_misc_open+0x10/0x10
[  582.751555][   T30]  ? misc_open+0x63/0x420
[  582.755885][   T30]  misc_open+0x63/0x420
[  582.760018][   T30]  ? __pfx_misc_open+0x10/0x10
[  582.764874][   T30]  chrdev_open+0x237/0x6a0
[  582.769288][   T30]  ? __pfx_chrdev_open+0x10/0x10
[  582.774276][   T30]  do_dentry_open+0xf59/0x1ea0
[  582.779048][   T30]  ? __pfx_chrdev_open+0x10/0x10
[  582.784116][   T30]  vfs_open+0x82/0x3f0
[  582.788202][   T30]  ? may_open+0x1f2/0x400
[  582.792571][   T30]  path_openat+0x1e6a/0x2d60
[  582.797161][   T30]  ? __pfx_path_openat+0x10/0x10
[  582.802188][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  582.807384][   T30]  ? lock_acquire.part.0+0x11b/0x380
[  582.812754][   T30]  ? find_held_lock+0x2d/0x110
[  582.817522][   T30]  do_filp_open+0x20c/0x470
[  582.822113][   T30]  ? __pfx_do_filp_open+0x10/0x10
[  582.827132][   T30]  ? find_held_lock+0x2d/0x110
[  582.831947][   T30]  ? alloc_fd+0x41f/0x760
[  582.836277][   T30]  do_sys_openat2+0x17a/0x1e0
[  582.840930][   T30]  ? __pfx_do_sys_openat2+0x10/0x10
[  582.846323][   T30]  ? do_user_addr_fault+0xe50/0x13f0
[  582.851640][   T30]  ? __pfx_lock_release+0x10/0x10
[  582.856660][   T30]  __x64_sys_openat+0x175/0x210
[  582.861587][   T30]  ? __pfx___x64_sys_openat+0x10/0x10
[  582.866960][   T30]  ? do_user_addr_fault+0x83d/0x13f0
[  582.872279][   T30]  do_syscall_64+0xcd/0x250
[  582.876790][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  582.882794][   T30] RIP: 0033:0x7fe158f80809
[  582.887204][   T30] RSP: 002b:00007fe159d88058 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  582.895647][   T30] RAX: ffffffffffffffda RBX: 00007fe159145fa0 RCX: 00007fe158f80809
[  582.903729][   T30] RDX: 000000000004a081 RSI: 0000000020000140 RDI: ffffffffffffff9c
[  582.911752][   T30] RBP: 00007fe158ff393e R08: 0000000000000000 R09: 0000000000000000
[  582.919724][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  582.927788][   T30] R13: 0000000000000001 R14: 00007fe159145fa0 R15: 00007ffdd536fd28
[  582.935781][   T30]  </TASK>
[  582.938791][   T30] INFO: task syz.4.1349:11089 blocked for more than 145 seconds.
[  582.946630][   T30]       Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  582.953998][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  582.962742][   T30] task:syz.4.1349      state:D stack:27776 pid:11089 tgid:11088 ppid:5831   flags:0x00000004
[  582.974097][   T30] Call Trace:
[  582.977361][   T30]  <TASK>
[  582.980270][   T30]  __schedule+0xe58/0x5ad0
[  582.984794][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  582.990022][   T30]  ? __pfx___schedule+0x10/0x10
[  582.994919][   T30]  ? schedule+0x298/0x350
[  582.999250][   T30]  ? __pfx_lock_release+0x10/0x10
[  583.004353][   T30]  ? __mutex_trylock_common+0x78/0x250
[  583.009810][   T30]  ? lock_acquire+0x2f/0xb0
[  583.014348][   T30]  ? schedule+0x1fd/0x350
[  583.018679][   T30]  schedule+0xe7/0x350
[  583.022814][   T30]  schedule_preempt_disabled+0x13/0x30
[  583.028272][   T30]  __mutex_lock+0x62b/0xa60
[  583.032835][   T30]  ? misc_open+0x63/0x420
[  583.037166][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  583.042299][   T30]  ? lock_acquire.part.0+0x11b/0x380
[  583.047597][   T30]  ? chrdev_open+0x10e/0x6a0
[  583.052543][   T30]  ? __pfx_lock_release+0x10/0x10
[  583.057573][   T30]  ? kobject_get_unless_zero+0x157/0x1e0
[  583.063397][   T30]  ? __pfx_misc_open+0x10/0x10
[  583.068161][   T30]  ? misc_open+0x63/0x420
[  583.072803][   T30]  misc_open+0x63/0x420
[  583.076962][   T30]  ? __pfx_misc_open+0x10/0x10
[  583.081777][   T30]  chrdev_open+0x237/0x6a0
[  583.086189][   T30]  ? __pfx_chrdev_open+0x10/0x10
[  583.091174][   T30]  do_dentry_open+0xf59/0x1ea0
[  583.096024][   T30]  ? __pfx_chrdev_open+0x10/0x10
[  583.100939][   T30]  ? inode_permission+0xdd/0x5f0
[  583.105920][   T30]  vfs_open+0x82/0x3f0
[  583.109988][   T30]  ? may_open+0x1f2/0x400
[  583.114430][   T30]  path_openat+0x1e6a/0x2d60
[  583.119038][   T30]  ? __pfx_path_openat+0x10/0x10
[  583.124091][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  583.129303][   T30]  ? lock_acquire.part.0+0x11b/0x380
[  583.134673][   T30]  ? find_held_lock+0x2d/0x110
[  583.139452][   T30]  do_filp_open+0x20c/0x470
[  583.143989][   T30]  ? __pfx_do_filp_open+0x10/0x10
[  583.149013][   T30]  ? find_held_lock+0x2d/0x110
[  583.153901][   T30]  ? alloc_fd+0x41f/0x760
[  583.158236][   T30]  do_sys_openat2+0x17a/0x1e0
[  583.162983][   T30]  ? __pfx_do_sys_openat2+0x10/0x10
[  583.168189][   T30]  __x64_sys_openat+0x175/0x210
[  583.173244][   T30]  ? __pfx___x64_sys_openat+0x10/0x10
[  583.178656][   T30]  do_syscall_64+0xcd/0x250
[  583.183230][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  583.189151][   T30] RIP: 0033:0x7fa501580809
[  583.193663][   T30] RSP: 002b:00007fa4ff3f6058 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  583.202133][   T30] RAX: ffffffffffffffda RBX: 00007fa501745fa0 RCX: 00007fa501580809
[  583.210082][   T30] RDX: 0000000000000002 RSI: 0000000020000740 RDI: ffffffffffffff9c
[  583.218349][   T30] RBP: 00007fa5015f393e R08: 0000000000000000 R09: 0000000000000000
[  583.226372][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  583.234399][   T30] R13: 0000000000000000 R14: 00007fa501745fa0 R15: 00007ffc97230e48
[  583.242426][   T30]  </TASK>
[  583.245464][   T30] INFO: task syz.0.1351:11097 blocked for more than 145 seconds.
[  583.253276][   T30]       Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  583.260551][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  583.269268][   T30] task:syz.0.1351      state:D stack:28416 pid:11097 tgid:11095 ppid:5847   flags:0x00000004
[  583.279516][   T30] Call Trace:
[  583.282971][   T30]  <TASK>
[  583.285899][   T30]  __schedule+0xe58/0x5ad0
[  583.290296][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  583.295704][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  583.300906][   T30]  ? __pfx___schedule+0x10/0x10
[  583.305840][   T30]  ? schedule+0x298/0x350
[  583.310185][   T30]  ? __pfx_lock_release+0x10/0x10
[  583.315330][   T30]  ? __mutex_trylock_common+0x78/0x250
[  583.320811][   T30]  ? lock_acquire+0x2f/0xb0
[  583.325376][   T30]  ? schedule+0x1fd/0x350
[  583.329705][   T30]  schedule+0xe7/0x350
[  583.333848][   T30]  schedule_preempt_disabled+0x13/0x30
[  583.339309][   T30]  __mutex_lock+0x62b/0xa60
[  583.343857][   T30]  ? misc_open+0x63/0x420
[  583.348192][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  583.353297][   T30]  ? lock_acquire.part.0+0x11b/0x380
[  583.358581][   T30]  ? chrdev_open+0x10e/0x6a0
[  583.363206][   T30]  ? __pfx_lock_release+0x10/0x10
[  583.368227][   T30]  ? kobject_get_unless_zero+0x157/0x1e0
[  583.373971][   T30]  ? __pfx_misc_open+0x10/0x10
[  583.378738][   T30]  ? misc_open+0x63/0x420
[  583.383121][   T30]  misc_open+0x63/0x420
[  583.387279][   T30]  ? __pfx_misc_open+0x10/0x10
[  583.392222][   T30]  chrdev_open+0x237/0x6a0
[  583.396658][   T30]  ? __pfx_chrdev_open+0x10/0x10
[  583.401667][   T30]  do_dentry_open+0xf59/0x1ea0
[  583.406435][   T30]  ? __pfx_chrdev_open+0x10/0x10
[  583.411470][   T30]  ? inode_permission+0xdd/0x5f0
[  583.416414][   T30]  vfs_open+0x82/0x3f0
[  583.420461][   T30]  ? may_open+0x1f2/0x400
[  583.424823][   T30]  path_openat+0x1e6a/0x2d60
[  583.429411][   T30]  ? __pfx_path_openat+0x10/0x10
[  583.434441][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  583.439651][   T30]  ? lock_acquire.part.0+0x11b/0x380
[  583.445009][   T30]  ? find_held_lock+0x2d/0x110
[  583.449776][   T30]  do_filp_open+0x20c/0x470
[  583.454428][   T30]  ? __pfx_do_filp_open+0x10/0x10
[  583.459450][   T30]  ? find_held_lock+0x2d/0x110
[  583.464296][   T30]  ? alloc_fd+0x41f/0x760
[  583.468628][   T30]  do_sys_openat2+0x17a/0x1e0
[  583.473371][   T30]  ? __pfx_do_sys_openat2+0x10/0x10
[  583.478569][   T30]  ? do_user_addr_fault+0xe50/0x13f0
[  583.483907][   T30]  ? __pfx_lock_release+0x10/0x10
[  583.488934][   T30]  __x64_sys_openat+0x175/0x210
[  583.493849][   T30]  ? __pfx___x64_sys_openat+0x10/0x10
[  583.499223][   T30]  ? do_user_addr_fault+0x83d/0x13f0
[  583.504704][   T30]  do_syscall_64+0xcd/0x250
[  583.509203][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  583.515396][   T30] RIP: 0033:0x7f4be517f170
[  583.519808][   T30] RSP: 002b:00007f4be5eb6f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  583.528248][   T30] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f4be517f170
[  583.536455][   T30] RDX: 0000000000000002 RSI: 00007f4be51f36d4 RDI: 00000000ffffff9c
[  583.544975][   T30] RBP: 00007f4be51f36d4 R08: 0000000000000000 R09: 0000000000000000
[  583.552986][   T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  583.560934][   T30] R13: 0000000000000036 R14: 0000000020000040 R15: 00007ffdb5490578
[  583.569008][   T30]  </TASK>
[  583.572057][   T30] INFO: task syz.0.1351:11098 blocked for more than 145 seconds.
[  583.579770][   T30]       Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  583.587171][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  583.595861][   T30] task:syz.0.1351      state:D stack:27712 pid:11098 tgid:11095 ppid:5847   flags:0x00000004
[  583.606121][   T30] Call Trace:
[  583.609390][   T30]  <TASK>
[  583.612558][   T30]  __schedule+0xe58/0x5ad0
[  583.616974][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  583.622313][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  583.627555][   T30]  ? __pfx___schedule+0x10/0x10
[  583.632422][   T30]  ? schedule+0x298/0x350
[  583.636752][   T30]  ? __pfx_lock_release+0x10/0x10
[  583.641853][   T30]  ? __mutex_trylock_common+0x78/0x250
[  583.647311][   T30]  ? lock_acquire+0x2f/0xb0
[  583.651846][   T30]  ? schedule+0x1fd/0x350
[  583.656183][   T30]  schedule+0xe7/0x350
[  583.660231][   T30]  schedule_preempt_disabled+0x13/0x30
[  583.665785][   T30]  __mutex_lock+0x62b/0xa60
[  583.670292][   T30]  ? misc_open+0x63/0x420
[  583.674672][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  583.679698][   T30]  ? lock_acquire.part.0+0x11b/0x380
[  583.685060][   T30]  ? chrdev_open+0x10e/0x6a0
[  583.689680][   T30]  ? __pfx_lock_release+0x10/0x10
[  583.694786][   T30]  ? kobject_get_unless_zero+0x157/0x1e0
[  583.700443][   T30]  ? __pfx_misc_open+0x10/0x10
[  583.705307][   T30]  ? misc_open+0x63/0x420
[  583.709670][   T30]  misc_open+0x63/0x420
[  583.713882][   T30]  ? __pfx_misc_open+0x10/0x10
[  583.718656][   T30]  chrdev_open+0x237/0x6a0
[  583.723275][   T30]  ? __pfx_chrdev_open+0x10/0x10
[  583.728214][   T30]  do_dentry_open+0xf59/0x1ea0
[  583.733274][   T30]  ? __pfx_chrdev_open+0x10/0x10
[  583.738212][   T30]  ? inode_permission+0xdd/0x5f0
[  583.743217][   T30]  vfs_open+0x82/0x3f0
[  583.747283][   T30]  ? may_open+0x1f2/0x400
[  583.751678][   T30]  path_openat+0x1e6a/0x2d60
[  583.756270][   T30]  ? __pfx_path_openat+0x10/0x10
[  583.761280][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  583.766474][   T30]  ? lock_acquire.part.0+0x11b/0x380
[  583.771823][   T30]  ? find_held_lock+0x2d/0x110
[  583.776590][   T30]  do_filp_open+0x20c/0x470
[  583.781134][   T30]  ? __pfx_do_filp_open+0x10/0x10
[  583.786151][   T30]  ? find_held_lock+0x2d/0x110
[  583.790902][   T30]  ? alloc_fd+0x41f/0x760
[  583.795313][   T30]  do_sys_openat2+0x17a/0x1e0
[  583.800006][   T30]  ? __pfx_do_sys_openat2+0x10/0x10
[  583.805247][   T30]  ? do_user_addr_fault+0xe50/0x13f0
[  583.810527][   T30]  ? __pfx_lock_release+0x10/0x10
[  583.815617][   T30]  __x64_sys_openat+0x175/0x210
[  583.820511][   T30]  ? __pfx___x64_sys_openat+0x10/0x10
[  583.825927][   T30]  ? do_user_addr_fault+0x83d/0x13f0
[  583.831425][   T30]  do_syscall_64+0xcd/0x250
[  583.835947][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  583.841898][   T30] RIP: 0033:0x7f4be517f170
[  583.846320][   T30] RSP: 002b:00007f4be2ff3f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  583.854859][   T30] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f4be517f170
[  583.862880][   T30] RDX: 0000000000000002 RSI: 00007f4be51f36d4 RDI: 00000000ffffff9c
[  583.870843][   T30] RBP: 00007f4be51f36d4 R08: 0000000000000000 R09: 0000000000000000
[  583.878891][   T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  583.886909][   T30] R13: 00000000000000dc R14: 0000000020000080 R15: 00007ffdb5490578
[  583.894948][   T30]  </TASK>
[  583.897966][   T30] INFO: task syz-executor:11135 blocked for more than 146 seconds.
[  583.906042][   T30]       Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  583.913385][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  583.922094][   T30] task:syz-executor    state:D stack:28264 pid:11135 tgid:11135 ppid:1      flags:0x00000000
[  583.932374][   T30] Call Trace:
[  583.935649][   T30]  <TASK>
[  583.938569][   T30]  __schedule+0xe58/0x5ad0
[  583.943231][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  583.948496][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  583.953788][   T30]  ? __pfx___schedule+0x10/0x10
[  583.958641][   T30]  ? schedule+0x298/0x350
[  583.963023][   T30]  ? __pfx_lock_release+0x10/0x10
[  583.968045][   T30]  ? __mutex_trylock_common+0x78/0x250
[  583.973648][   T30]  ? lock_acquire+0x2f/0xb0
[  583.978181][   T30]  ? schedule+0x1fd/0x350
[  583.982574][   T30]  schedule+0xe7/0x350
[  583.986652][   T30]  schedule_preempt_disabled+0x13/0x30
[  583.992229][   T30]  __mutex_lock+0x62b/0xa60
[  583.996755][   T30]  ? misc_open+0x63/0x420
[  584.001125][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  584.006153][   T30]  ? lock_acquire.part.0+0x11b/0x380
[  584.011521][   T30]  ? chrdev_open+0x10e/0x6a0
[  584.016108][   T30]  ? __pfx_lock_release+0x10/0x10
[  584.021165][   T30]  ? kobject_get_unless_zero+0x157/0x1e0
[  584.026803][   T30]  ? __pfx_misc_open+0x10/0x10
[  584.031663][   T30]  ? misc_open+0x63/0x420
[  584.035994][   T30]  misc_open+0x63/0x420
[  584.040129][   T30]  ? __pfx_misc_open+0x10/0x10
[  584.044930][   T30]  chrdev_open+0x237/0x6a0
[  584.049342][   T30]  ? __pfx_chrdev_open+0x10/0x10
[  584.054461][   T30]  do_dentry_open+0xf59/0x1ea0
[  584.059227][   T30]  ? __pfx_chrdev_open+0x10/0x10
[  584.064442][   T30]  ? inode_permission+0xdd/0x5f0
[  584.069428][   T30]  vfs_open+0x82/0x3f0
[  584.073610][   T30]  ? may_open+0x1f2/0x400
[  584.077956][   T30]  path_openat+0x1e6a/0x2d60
[  584.082607][   T30]  ? __pfx_path_openat+0x10/0x10
[  584.087540][   T30]  ? handle_mm_fault+0x497/0xaa0
[  584.092573][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  584.097806][   T30]  do_filp_open+0x20c/0x470
[  584.102373][   T30]  ? __pfx_do_filp_open+0x10/0x10
[  584.107402][   T30]  ? find_held_lock+0x2d/0x110
[  584.112275][   T30]  ? alloc_fd+0x41f/0x760
[  584.116606][   T30]  do_sys_openat2+0x17a/0x1e0
[  584.121335][   T30]  ? __pfx_do_sys_openat2+0x10/0x10
[  584.126638][   T30]  ? fd_install+0x242/0x750
[  584.131341][   T30]  __x64_sys_openat+0x175/0x210
[  584.136225][   T30]  ? __pfx___x64_sys_openat+0x10/0x10
[  584.141914][   T30]  do_syscall_64+0xcd/0x250
[  584.146481][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  584.152553][   T30] RIP: 0033:0x7efd5917f0f1
[  584.156964][   T30] RSP: 002b:00007fffbb4f7530 EFLAGS: 00000202 ORIG_RAX: 0000000000000101
[  584.165635][   T30] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007efd5917f0f1
[  584.173867][   T30] RDX: 0000000000000002 RSI: 00007efd591f41fb RDI: 00000000ffffff9c
[  584.182040][   T30] RBP: 00007efd591f41fb R08: 0000000000000000 R09: 00007efd59e7d6c0
[  584.190070][   T30] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000008
[  584.198314][   T30] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
[  584.206614][   T30]  </TASK>
[  584.209653][   T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[  584.218946][   T30] 
[  584.218946][   T30] Showing all locks held in the system:
[  584.226895][   T30] 4 locks held by kworker/u8:0/11:
[  584.232105][   T30] 1 lock held by khungtaskd/30:
[  584.237342][   T30]  #0: ffffffff8e1bbb40 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x7f/0x390
[  584.247434][   T30] 6 locks held by kworker/1:2/967:
[  584.252642][   T30]  #0: ffff888144ec9d48 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_one_work+0x1293/0x1ba0
[  584.263694][   T30]  #1: ffffc90003e4fd80 ((work_completion)(&hub->events)){+.+.}-{0:0}, at: process_one_work+0x921/0x1ba0
[  584.275160][   T30]  #2: ffff88814536c190 (&dev->mutex){....}-{4:4}, at: hub_event+0x1c1/0x4e10
[  584.284165][   T30]  #3: ffff88805f7fd190 (&dev->mutex){....}-{4:4}, at: __device_attach+0x7f/0x4b0
[  584.293445][   T30]  #4: ffff88802a394160 (&dev->mutex){....}-{4:4}, at: __device_attach+0x7f/0x4b0
[  584.302760][   T30]  #5: ffffffff903829c8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x3a/0xb40
[  584.312715][   T30] 2 locks held by getty/5592:
[  584.317375][   T30]  #0: ffff888031e350a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[  584.327217][   T30]  #1: ffffc90002fde2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0xfba/0x1480
[  584.337435][   T30] 4 locks held by udevd/5849:
[  584.342178][   T30]  #0: ffff88803038ad58 (&p->lock){+.+.}-{4:4}, at: seq_read_iter+0xd8/0x12b0
[  584.351130][   T30]  #1: ffff888078fe9088 (&of->mutex#2){+.+.}-{4:4}, at: kernfs_seq_start+0x4d/0x240
[  584.360557][   T30]  #2: ffff888035db55a8 (kn->active#21){++++}-{0:0}, at: kernfs_seq_start+0x71/0x240
[  584.370134][   T30]  #3: ffff88805f7fd190 (&dev->mutex){....}-{4:4}, at: serial_show+0x26/0xa0
[  584.378969][   T30] 3 locks held by kworker/1:5/5882:
[  584.384351][   T30]  #0: ffff88801b078948 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x1293/0x1ba0
[  584.394829][   T30]  #1: ffffc90003297d80 ((work_completion)(&rfkill_global_led_trigger_work)){+.+.}-{0:0}, at: process_one_work+0x921/0x1ba0
[  584.407788][   T30]  #2: ffffffff903829c8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_global_led_trigger_worker+0x1b/0x160
[  584.419280][   T30] 4 locks held by kworker/1:7/5884:
[  584.424550][   T30]  #0: ffff88801b078948 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x1293/0x1ba0
[  584.435051][   T30]  #1: ffffc90003277d80 ((rfkill_op_work).work){+.+.}-{0:0}, at: process_one_work+0x921/0x1ba0
[  584.445463][   T30]  #2: ffffffff903829c8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_epo+0x55/0x1d0
[  584.455018][   T30]  #3: ffff88805f795100 (&dev->mutex){....}-{4:4}, at: nfc_dev_down+0x2d/0x2e0
[  584.464075][   T30] 2 locks held by syz.2.1295/10845:
[  584.469259][   T30]  #0: ffff88805f795100 (&dev->mutex){....}-{4:4}, at: nfc_unregister_device+0x60/0x330
[  584.479042][   T30]  #1: ffffffff903829c8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_unregister+0xde/0x2c0
[  584.489208][   T30] 3 locks held by syz.3.1339/11034:
[  584.494531][   T30]  #0: ffffffff8eeab5a8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  584.503117][   T30]  #1: ffff888021732100 (&dev->mutex){....}-{4:4}, at: nfc_register_device+0x9a/0x3c0
[  584.512759][   T30]  #2: ffffffff903829c8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x3a/0xb40
[  584.522795][   T30] 1 lock held by syz.5.1348/11080:
[  584.527902][   T30]  #0: ffffffff8eeab5a8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  584.536400][   T30] 1 lock held by syz.4.1349/11089:
[  584.541586][   T30]  #0: ffffffff8eeab5a8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  584.550050][   T30] 1 lock held by syz.0.1351/11097:
[  584.555185][   T30]  #0: ffffffff8eeab5a8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  584.563727][   T30] 1 lock held by syz.0.1351/11098:
[  584.568833][   T30]  #0: ffffffff8eeab5a8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  584.577799][   T30] 1 lock held by syz-executor/11135:
[  584.583189][   T30]  #0: ffffffff8eeab5a8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  584.591704][   T30] 1 lock held by syz-executor/11137:
[  584.596976][   T30]  #0: ffffffff8eeab5a8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  584.605610][   T30] 1 lock held by syz-executor/11140:
[  584.610887][   T30]  #0: ffffffff8eeab5a8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  584.619379][   T30] 1 lock held by syz-executor/11141:
[  584.624750][   T30]  #0: ffffffff8eeab5a8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  584.633264][   T30] 1 lock held by syz-executor/11143:
[  584.638521][   T30]  #0: ffffffff8eeab5a8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  584.647067][   T30] 1 lock held by syz-executor/11149:
[  584.652395][   T30]  #0: ffffffff8eeab5a8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  584.660864][   T30] 1 lock held by syz-executor/11151:
[  584.666244][   T30]  #0: ffffffff8eeab5a8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  584.674805][   T30] 1 lock held by syz-executor/11155:
[  584.680060][   T30]  #0: ffffffff8eeab5a8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  584.688569][   T30] 1 lock held by syz-executor/11156:
[  584.693871][   T30]  #0: ffffffff8eeab5a8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  584.702385][   T30] 1 lock held by syz-executor/11157:
[  584.707665][   T30]  #0: ffffffff8eeab5a8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  584.716266][   T30] 1 lock held by syz-executor/11159:
[  584.721627][   T30]  #0: ffffffff8eeab5a8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  584.730088][   T30] 1 lock held by syz-executor/11165:
[  584.735378][   T30]  #0: ffffffff8eeab5a8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  584.743949][   T30] 1 lock held by syz-executor/11169:
[  584.749219][   T30]  #0: ffffffff8eeab5a8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  584.757692][   T30] 1 lock held by syz-executor/11170:
[  584.763021][   T30]  #0: ffffffff8eeab5a8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  584.771492][   T30] 1 lock held by syz-executor/11171:
[  584.776864][   T30]  #0: ffffffff8eeab5a8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  584.785458][   T30] 
[  584.787783][   T30] =============================================
[  584.787783][   T30] 
[  584.796623][   T30] NMI backtrace for cpu 1
[  584.800949][   T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  584.811091][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  584.821134][   T30] Call Trace:
[  584.824402][   T30]  <TASK>
[  584.827311][   T30]  dump_stack_lvl+0x116/0x1f0
[  584.831982][   T30]  nmi_cpu_backtrace+0x27b/0x390
[  584.836897][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  584.842852][   T30]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[  584.848818][   T30]  watchdog+0xf14/0x1240
[  584.853056][   T30]  ? __pfx_watchdog+0x10/0x10
[  584.857733][   T30]  ? lockdep_hardirqs_on+0x7c/0x110
[  584.862929][   T30]  ? __kthread_parkme+0x148/0x220
[  584.867942][   T30]  ? __pfx_watchdog+0x10/0x10
[  584.872610][   T30]  kthread+0x2c1/0x3a0
[  584.876671][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  584.881870][   T30]  ? __pfx_kthread+0x10/0x10
[  584.886446][   T30]  ret_from_fork+0x45/0x80
[  584.890857][   T30]  ? __pfx_kthread+0x10/0x10
[  584.895428][   T30]  ret_from_fork_asm+0x1a/0x30
[  584.900178][   T30]  </TASK>
[  584.903441][   T30] Sending NMI from CPU 1 to CPUs 0:
[  584.908683][    C0] NMI backtrace for cpu 0 skipped: idling at acpi_safe_halt+0x1a/0x20
[  584.909741][   T30] Kernel panic - not syncing: hung_task: blocked tasks
[  584.924705][   T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.12.0-syzkaller-10689-g7af08b57bcb9 #0
[  584.934841][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  584.944879][   T30] Call Trace:
[  584.948143][   T30]  <TASK>
[  584.951058][   T30]  dump_stack_lvl+0x3d/0x1f0
[  584.955648][   T30]  panic+0x71d/0x800
[  584.959533][   T30]  ? __pfx_panic+0x10/0x10
[  584.963939][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[  584.969300][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  584.975278][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[  584.980633][   T30]  ? watchdog+0xd7e/0x1240
[  584.985040][   T30]  ? watchdog+0xd71/0x1240
[  584.989446][   T30]  watchdog+0xd8f/0x1240
[  584.993679][   T30]  ? __pfx_watchdog+0x10/0x10
[  584.998342][   T30]  ? lockdep_hardirqs_on+0x7c/0x110
[  585.003532][   T30]  ? __kthread_parkme+0x148/0x220
[  585.008721][   T30]  ? __pfx_watchdog+0x10/0x10
[  585.013386][   T30]  kthread+0x2c1/0x3a0
[  585.017446][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  585.022654][   T30]  ? __pfx_kthread+0x10/0x10
[  585.027234][   T30]  ret_from_fork+0x45/0x80
[  585.031635][   T30]  ? __pfx_kthread+0x10/0x10
[  585.036234][   T30]  ret_from_fork_asm+0x1a/0x30
[  585.041030][   T30]  </TASK>
[  585.044223][   T30] Kernel Offset: disabled
[  585.048543][   T30] Rebooting in 86400 seconds..