last executing test programs:

1m39.584974374s ago: executing program 1 (id=2364):
write$6lowpan_enable(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="14e7e100158b010000000000000000000001fd00"], 0x14}}, 0x0)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$6lowpan_control(r3, &(0x7f0000000180)='connect aa:aa:aa:aa:aa:11 0', 0x1b)

1m29.238674296s ago: executing program 3 (id=2575):
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0xf3988a9aec2c1a0e, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
openat$sequencer2(0xffffffffffffff9c, 0x0, 0x180, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="96f8220a00000000", @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',\x00'])
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB="9feb0100180000000000000024000000240000000a000000080000000200000fffffffff0e9a470bf5429ac9037056d35472000000000000000380000007000000030000ca"], &(0x7f0000000240)=""/255, 0x46, 0xff, 0xa, 0x0, 0x0, @void, @value}, 0x28)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f00000001c0)={r4})
openat$sw_sync(0xffffffffffffff9c, 0x0, 0x0, 0x0)
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f00000000c0))
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
pidfd_send_signal(r1, 0x1c, &(0x7f0000000340)={0x35, 0x7ff, 0x6}, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=ANY=[], 0x14}}, 0x44014)
syz_emit_ethernet(0x56, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000086dd60a24b9f00202b0020010000000000000000000000000001fe8000000000000000000000000000aa330001880000ffff00000000001890780400"/86], 0x0)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)

1m28.173622165s ago: executing program 3 (id=2577):
socket$inet6_tcp(0xa, 0x1, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x19, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="180000000000000000000000000000008500000019000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000006000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x64, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
setresgid(0xee01, 0x0, 0xee01)
setresgid(0x0, 0xee00, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
socket$inet_tcp(0x2, 0x1, 0x0)
r3 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000100), 0x483, 0x0)
ioctl$PTP_SYS_OFFSET(r3, 0x43403d05, &(0x7f00000003c0)={0x18})

1m26.632481483s ago: executing program 3 (id=2580):
r0 = socket$alg(0x26, 0x5, 0x0)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, &(0x7f0000000180))
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-camellia-asm\x00'}, 0x58)
syz_emit_ethernet(0x8e, &(0x7f0000000700)={@link_local, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "010120", 0x58, 0x3a, 0xff, @remote, @mcast2, {[], @time_exceed={0x3, 0x1, 0x0, 0x4e, '\x00', {0x7, 0x6, "5aea08", 0xfff, 0x2b, 0xff, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x29}}, @private1={0xfc, 0x1, '\x00', 0x1}, [@hopopts={0x11, 0x2, '\x00', [@calipso={0x7, 0x8, {0x3, 0x0, 0x4}}, @calipso={0x7, 0x8, {0x1, 0x0, 0x64, 0xc}}]}, @fragment={0x3b, 0x0, 0x19, 0x0, 0x0, 0x0, 0x64}]}}}}}}}, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r2 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r2, &(0x7f0000000400)=[{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000140)="f78d9ca38fff48f3be52163448412ba8", 0x10}], 0x1, &(0x7f0000000a40)=ANY=[], 0x18}], 0x1, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f00000001c0))
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045542, &(0x7f00000003c0)=0xfffffffb)
setsockopt$inet6_tcp_TCP_QUEUE_SEQ(0xffffffffffffffff, 0x6, 0x15, &(0x7f0000000000)=0x2, 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000004, 0x8031, 0xffffffffffffffff, 0x36554000)
get_mempolicy(&(0x7f0000000000), 0x0, 0x3, &(0x7f000000d000/0x3000)=nil, 0x2)

1m24.948194488s ago: executing program 3 (id=2584):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
ioctl$PPPOEIOCSFWD(0xffffffffffffffff, 0x4008b100, &(0x7f0000000040)={0x18, 0x0, {0x4, @local, 'geneve0\x00'}})
r0 = syz_io_uring_setup(0x1b51, 0x0, &(0x7f0000000400), 0x0)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000100)=0x3915, 0x4)
bind$inet(r5, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
setsockopt$sock_int(r5, 0x1, 0x29, &(0x7f00000000c0)=0x100, 0x4)
connect$inet(r5, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r5, &(0x7f0000007fc0), 0x2d, 0x0)
recvmmsg(r5, &(0x7f0000000040), 0x291962b, 0x45833af92e4b39ff, 0x0)
r6 = getpid()
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x7)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000008d80)=[{{&(0x7f0000000280)=@abs={0x0, 0x0, 0x4e23}, 0x6e, &(0x7f00000007c0)=[{&(0x7f0000000300)="44ba6fc5af160af11999146d81b7f2653994f2a42774e9492347a5efaebee8550125fcdbb494d6c41ac9e08d1c7c359e0c2d9675d0a046768fb3d84e82dfffb0f56e5f54094967a6de490ab86c559702b3a849066b9966face1f3b5839339f49bfe1239fd34c4a990178985c4791ceafdc3f66c4837c3111abff8704a964def80e1a4c5256415f3857575c96cc26", 0x8e}, {&(0x7f00000004c0)="684a09bf56345f93a449aa2866867d0c13b17ce6d1f6eaf6afe05eb74b6fe5dd132bc7d1379006267fd88e35baa0176f15509396c0df404a0d123bc4c4ee83e76661d857f11c33b500bb81b15f39062a30a765343d3e8e8874f3fb61fb92ca67854221f7e996d5bca4cb777014105f4cc755c60311ab45865d8496b24e05c702e05362fe9678ef8f7a744569", 0x8c}, {&(0x7f0000000580)="b20c1f794f70762c7fc05667776f1d6830672f45033d075b8c497eb2fa32797e21bbbb28697275bae9cc79a1a69014edef79a8bdcb3a3dc3c4ea3e794ebde96a5a1acccbb9400b839aed62b84d5bf4656a3b68c715ddd16470273418b7b8156c70d062fa7b621538f9815bba5a2567cb90c59d9b6a4736cf80780ed9d1ef67f3a460be48d02d6891fdb2d8767c952ed1e105e574d2cc586e", 0x98}, {&(0x7f0000000640)="34532d40a053cc6f7a6797d95c60763367b04a11fbed3e3f2d8f46d1ba5f0952a812fc2cb82b947d278957934ec145d860e56349e2aeffc92164d34b5a74c1e81e88e87bd29ec4a0b494d130c4f5cea46090d51c846a76fb273b88e580db5d352f3276d7da2a6489400b4d0e37", 0x6d}, {&(0x7f00000006c0)="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", 0xfc}], 0x5, &(0x7f0000002a00)=[@cred={{0x1c, 0x1, 0x2, {r6}}}, @rights={{0x34, 0x1, 0x1, [r0, r1, 0xffffffffffffffff, 0xffffffffffffffff, r4, r0, 0xffffffffffffffff, r4, r3]}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {r2}}}, @rights={{0x20, 0x1, 0x1, [r4, r1, r4, 0xffffffffffffffff]}}], 0xb8, 0x20000000}}, {{&(0x7f0000002ac0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000002f80)=[{&(0x7f0000002b40)="a591a8a04174d7ef48e2bda8a592f7679d1814b3d0a688fd19c42b28f7a5aaa3312bfd38be9a7bc1884049ba64bb42ac93041f77d9abcecdcda9f5b667d9baa4cabfda3e01a8b24746f0bbec4d5c70d49396acf5b5e722e60f45c783e5991399ab9e6f94c2db190bce69cd7560e05763e08b8ac9d81ce0755cfad396a4b89b99721746679842a28209a09c3273a9ce83bb32d9f54226d5237c5d278e53d0df30681be26516099e3eb551b0781447696f13317a22b9830dc964ea9552da91683ad726154f31a7f360bb7a045e0893b66ab3462d106c096ee61b89cc90f82db233478f9148971d69b5447ee76d91e432e18a", 0xf1}, {&(0x7f0000002c40)="00b06b34587c298225545f9e29c74b9b8aefe0a5feb4de25cb48f9e8eed7aac0676fa61821cdcbded9bdc8d0cd1c2d2108071bb94c74c581107460fc10622545f0d5f5b01d8b14e521122a23ed06d5773527d7aca4dd1dd21a7979743a1b440cda62", 0x62}, {&(0x7f0000002cc0)="2eeaa4983fa284d3f93b5a0c3774be2d3eb8f6310333827ac0eb21ef8f579fae6f883c3269a5d70b40a018bce0501250025ec6373bedc0c7c1b0d30ab850b55e75819f839e0c760bdf0d9e772680cf09c43822a6261a77a45aa89828bf4da873a8b5a85b5bfadafdeb64040dc451f8c6ac50e6e63fae1351cd6f673e9c484c3a0fe2e0732b4b38d3d06c10", 0x8b}, {&(0x7f0000002d80)="598dbac9e417f353e09a06c96b4ab3a42dbc70ebb2370b78a29d05ff9991170fedd0b2224980f6cd112d78d75b56b90cadcaa7d06579b7d6b469c6a77e09668c662337838c7989da2a44b047e313425cb9f311410a0e1d50043d79921ac1651d3d936481b63943137377df3a4d5e2825d8ef25972299aa6b1e05e2bc8581b152e05048d690368fa6409de8ac0c0094348e825966b09cdca764ae77f8a9bc6a51dfe0f729edf7741639dc2bb77ac48bae1dbb45b9c5a0f2dfb87fa1ffb17cbc0096a61a61cffbf4739f0cb8d4c2859a0d9014d047", 0xd4}, {&(0x7f0000002f40)="26b04dff5f745cca09b5131b4e810347db7724fdd9b8c7d3bce97e", 0x1b}], 0x5, &(0x7f0000000900)=ANY=[@ANYBLOB="2c000000000000000100000001000000", @ANYRESDEC=r6, @ANYRES32=r1, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=r4, @ANYRES32=r1, @ANYBLOB="00000000280000000000000001364a6f35d5a3405f1798e100000001000000", @ANYRES32, @ANYRES32=r5, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32, @ANYRES32=r5, @ANYBLOB="2ce035518c0000000100000001000000", @ANYRES32=r5, @ANYRES32=r3, @ANYRES32=r1, @ANYRES32, @ANYRES32, @ANYRES32=r4, @ANYRES32=r4, @ANYBLOB, @ANYRES32=r5, @ANYRES32=r4, @ANYRES32, @ANYRES32=r4, @ANYRES32], 0xb0, 0x894}}, {{0x0, 0x0, &(0x7f0000003380)=[{&(0x7f0000000180)="a324a4ae1df86fd541924452ea957401163159ee7e4e9befaed2ebab168e13960fe37aff0116c67427", 0x29}, {&(0x7f00000031c0)="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", 0xfb}, {&(0x7f00000032c0)="b992b6af704fd1d15e3f3c41e4ea02f6c4f6664411042d1c9fb33d5856dba398fa4c6ff4e8293ae139fb682ec4b08c2270aca2602f81", 0x36}, {&(0x7f0000003340)="160910d62d83e43c1d8511e30a55b7e2693d2571cacb82e6eae8a19e", 0x1c}], 0x4, &(0x7f0000003480)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, r5, r3, 0xffffffffffffffff, r1, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xb0, 0x40400d0}}, {{&(0x7f0000003540)=@file={0x0, './file0\x00'}, 0x6e, 0x0, 0x0, &(0x7f0000003940)=[@cred={{0x1c}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r5]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [r1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [r0, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r1]}}], 0x138, 0x80}}, {{0x0, 0x0, &(0x7f0000003f40)=[{0x0}, {&(0x7f0000003ac0)="a58ec2e50fc2de7715bbcbfcf7e518e08e7284aca8fc36457c3ab6170bdcdc37bab6b9d6bd78998bec21729df8b450a62ab25d8ca7cedd7a1458d71f8b4a57d2d107814b4a212e059eb059fcfb43ac6875311cd8b9e89ff77a3412e7b687986977ad18b8e17e640bb2c5901173f59d3eae68b266dd34e06d02f556d94bd707b379195d0e172e220ffcc417fc320b6fc9322f5c012cbc81a0f7b2749bee1db535a24f3dd1395aa8a72a3d6833827c222368f0b536f7ad", 0xb6}, {&(0x7f0000003b80)="aafa244ab0ece04bea5ffa7300c10baeaddd9dd14027da942283a88bc23ef44e7f14fb74f9cd758f", 0x28}, {&(0x7f0000003bc0)="5c51ef8832acfca7dc06dd23935f7919f57906bc93fef8ea7acd0ed350166ee54db7e2e5e95cb004b65602a4e5e15206977ce77b29069062838517f02792b466272e2e5c14e5f50a698d2a41bc419522317fda2dd62157dffb013937510f929724f5c13859732c5fcddba2e7cfb06c5f7ca8be86668461f95d0478e6ed316afc58465535c024773dae", 0x89}, {&(0x7f0000003c80)="fd22a0be7c408decd967402e5bf2f332d45d669e5ae50ea62634aeb2624045dae211c8135c9f53a58ea2a1b7cc9506722d4677631a872ae9427005d796d28fc63f1f194c88758b195d76c73b50796d420110f82c41efaff504922e8581f6c9b689955d050154f2fc39359256e6031d83b3958ed77a233b43f01b94349211bdb11a5e385b48376b541dc4252d08d1ccb824515d9cf9f3283d5c863a9b8f0cac5e69420bf181", 0xa5}, {&(0x7f0000003d40)="79688826980442a2dbf6362c44189edeed673b5f09ddea1655df1991f73a1d005c1785b1a3027bd9cca6de80c294422c6c9b9cbec7924e6d6f861ee79f150f3dc19de688611f92477592957c215a20d341328158df75e5075872de13f98e8bd16f763b83198ae2965bb7f85d3616cb7a0d4c04", 0x73}, {&(0x7f0000003dc0)="981de431e90e6d385f23fffe5439fdba1217e1635c13348aa4f155e79f9dfa78fe7ca34a1e304cba7ea41e5457bc5e2f3c067457d7fbcbed813edfee883a31eeb71baab476d561215db2ea5b6c795c88a942d0e6a475332463eec15132c46255cd50b31096bb93fbc432f664b7825148466001583072b6f1df969286f8a7aa2bf435a8d9875449802151e857aa844b7cecf848c83c7ff1426b222057065a66bfdfd7c45e9fc1ee820cec5e", 0xab}, {&(0x7f0000003e80)="59d6537963006976e2e7c24fac58be61b780260e3945c0d3f9c850d62b6486178cd5669f84de6c6b9f81faf99972a29dde63c47728c8982df909d54adad29504def6650c990cd9054127eba0b66580a51044cc9ed7f0d92adc1143a29b652bff3a1be3ea2d76c80e032e71b8962b5d21159fa2e2c74ec2d9bcf2100b76b6e1fca2735eecae0e477677a1f03ec9969205673ad43a291416533b59da5aa5201ce42c24208b791053d1bb6fc884e6990dcf", 0xb0}], 0x8, &(0x7f0000003fc0)=[@cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [r0]}}], 0x38, 0x8800}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000008c00)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [r5, r5]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, r3, r4]}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, r1, 0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff, r0]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r0, r5, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r0]}}], 0x138, 0x94}}], 0x6, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)

1m23.66164535s ago: executing program 3 (id=2588):
r0 = socket(0x400000000010, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
write$6lowpan_enable(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
connect$unix(r2, &(0x7f00000002c0)=@abs={0x1, 0x0, 0x4e21}, 0x6e)
preadv2(0xffffffffffffffff, 0x0, 0x0, 0x2b, 0x0, 0x0)
syz_open_dev$sg(&(0x7f00000000c0), 0x0, 0x40001)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
r3 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$6lowpan_control(r3, &(0x7f0000000180)='connect aa:aa:aa:aa:aa:11 0', 0x1b)
ioctl$SIOCSIFMTU(r0, 0x8922, &(0x7f0000000180)={'veth1_vlan\x00', 0x8a})
r4 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'sit0\x00'})
sendmsg$nl_route_sched(r4, 0x0, 0x40)
r5 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$UHID_INPUT(r5, &(0x7f0000000140)={0x8, {"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", 0x1000}}, 0x1006)
r6 = socket$inet6(0xa, 0x1, 0x0)
ioctl$sock_SIOCETHTOOL(r6, 0x89f0, &(0x7f0000001440)={'bridge0\x00', &(0x7f0000000100)=@ethtool_ringparam={0x4, 0x0, 0x10, 0x8001, 0x3, 0x0, 0x3, 0xb}})

1m20.845265484s ago: executing program 3 (id=2592):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xd, 0x3, &(0x7f0000000400)=ANY=[@ANYBLOB="b40000000000000061114800000000089500000000000000"], &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x3c, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000)={0x0, 0x0, 0x800000}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
setsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@dev={0xfe, 0x80, '\x00', 0x7}, @in6=@mcast2, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x79e5a327e49487d3, 0x0, 0xee01}, {0x0, 0x0, 0xfffffffffffffffe, 0xffffffffffffffff, 0x2, 0x4c817065, 0x0, 0x101}, {0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0, 0x0, 0x2, 0x0, 0x2}, {{@in6=@ipv4={'\x00', '\xff\xff', @remote}, 0x10000000, 0x32}, 0x0, @in6=@mcast1, 0x0, 0x0, 0x2, 0xb7, 0xffffffff, 0x4d, 0x4}}, 0xe8)
r2 = syz_open_dev$usbfs(&(0x7f0000000340), 0x800000001f7, 0x82)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x161281, 0x0)
ioctl$TCSETS(r4, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x8001, 0x0, 0x0, "a05c7b5d3cd1b0f200002000fdf700071400"})
r5 = syz_open_pts(r4, 0x0)
r6 = dup3(r5, r4, 0x0)
ioctl$sock_inet6_tcp_SIOCINQ(r6, 0x541b, 0x0)
sendmsg$netlink(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000300)=ANY=[@ANYBLOB="140100001f0001000000000000000000010100800c0001000f"], 0x114}], 0x1}, 0x0)
r7 = dup(r2)
ioctl$USBDEVFS_CONTROL(r7, 0xc0185500, &(0x7f0000000380)={0x23, 0x1, 0x80, 0xf, 0x0, 0x2000002, 0x0})
sched_setscheduler(r1, 0x0, &(0x7f0000000200)=0x1ff)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
connect$unix(r8, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r9, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
connect$rose(r7, &(0x7f0000000600)=@full={0xb, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @null, 0x0, [@bcast, @bcast, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x40)
unshare(0x22020600)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000833d26cacfc08caf42a016a80e868f0d7716ff40b136d954a00f53de36cdf509f87ee03ba118cc2e0d9e1c2f2bc574a3ad43a04e132459b761e748265aa7b66f44d1bfa7f4c29dbd19d63277", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$inet_smc(0x2b, 0x1, 0x0)

1m15.089098742s ago: executing program 1 (id=2364):
write$6lowpan_enable(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="14e7e100158b010000000000000000000001fd00"], 0x14}}, 0x0)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$6lowpan_control(r3, &(0x7f0000000180)='connect aa:aa:aa:aa:aa:11 0', 0x1b)

1m5.277810837s ago: executing program 32 (id=2592):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xd, 0x3, &(0x7f0000000400)=ANY=[@ANYBLOB="b40000000000000061114800000000089500000000000000"], &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x3c, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000)={0x0, 0x0, 0x800000}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
setsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@dev={0xfe, 0x80, '\x00', 0x7}, @in6=@mcast2, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x79e5a327e49487d3, 0x0, 0xee01}, {0x0, 0x0, 0xfffffffffffffffe, 0xffffffffffffffff, 0x2, 0x4c817065, 0x0, 0x101}, {0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0, 0x0, 0x2, 0x0, 0x2}, {{@in6=@ipv4={'\x00', '\xff\xff', @remote}, 0x10000000, 0x32}, 0x0, @in6=@mcast1, 0x0, 0x0, 0x2, 0xb7, 0xffffffff, 0x4d, 0x4}}, 0xe8)
r2 = syz_open_dev$usbfs(&(0x7f0000000340), 0x800000001f7, 0x82)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x161281, 0x0)
ioctl$TCSETS(r4, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x8001, 0x0, 0x0, "a05c7b5d3cd1b0f200002000fdf700071400"})
r5 = syz_open_pts(r4, 0x0)
r6 = dup3(r5, r4, 0x0)
ioctl$sock_inet6_tcp_SIOCINQ(r6, 0x541b, 0x0)
sendmsg$netlink(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000300)=ANY=[@ANYBLOB="140100001f0001000000000000000000010100800c0001000f"], 0x114}], 0x1}, 0x0)
r7 = dup(r2)
ioctl$USBDEVFS_CONTROL(r7, 0xc0185500, &(0x7f0000000380)={0x23, 0x1, 0x80, 0xf, 0x0, 0x2000002, 0x0})
sched_setscheduler(r1, 0x0, &(0x7f0000000200)=0x1ff)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
connect$unix(r8, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r9, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
connect$rose(r7, &(0x7f0000000600)=@full={0xb, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @null, 0x0, [@bcast, @bcast, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x40)
unshare(0x22020600)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000833d26cacfc08caf42a016a80e868f0d7716ff40b136d954a00f53de36cdf509f87ee03ba118cc2e0d9e1c2f2bc574a3ad43a04e132459b761e748265aa7b66f44d1bfa7f4c29dbd19d63277", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$inet_smc(0x2b, 0x1, 0x0)

1m3.202810759s ago: executing program 1 (id=2364):
write$6lowpan_enable(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="14e7e100158b010000000000000000000001fd00"], 0x14}}, 0x0)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$6lowpan_control(r3, &(0x7f0000000180)='connect aa:aa:aa:aa:aa:11 0', 0x1b)

38.766039609s ago: executing program 1 (id=2364):
write$6lowpan_enable(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="14e7e100158b010000000000000000000001fd00"], 0x14}}, 0x0)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$6lowpan_control(r3, &(0x7f0000000180)='connect aa:aa:aa:aa:aa:11 0', 0x1b)

28.562195358s ago: executing program 1 (id=2364):
write$6lowpan_enable(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="14e7e100158b010000000000000000000001fd00"], 0x14}}, 0x0)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$6lowpan_control(r3, &(0x7f0000000180)='connect aa:aa:aa:aa:aa:11 0', 0x1b)

14.976333889s ago: executing program 1 (id=2364):
write$6lowpan_enable(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="14e7e100158b010000000000000000000001fd00"], 0x14}}, 0x0)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$6lowpan_control(r3, &(0x7f0000000180)='connect aa:aa:aa:aa:aa:11 0', 0x1b)

7.384710909s ago: executing program 2 (id=3015):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={<r1=>0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000440)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x7a, &(0x7f0000000040)={r1, @in6={{0xa, 0x4e23, 0x2, @dev={0xfe, 0x80, '\x00', 0x1e}, 0xffffff00}}}, &(0x7f0000000240)=0x84)

7.109880475s ago: executing program 2 (id=3019):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000200)=[{0x200000000006, 0x0, 0x20, 0x7ffc0001}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000009900000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
io_pgetevents(0x0, 0xf, 0x0, 0x0, 0x0, 0x0)

7.032086442s ago: executing program 2 (id=3021):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000001880)=ANY=[@ANYBLOB="38000000490001002abd7000fbdbdf250a"], 0x38}}, 0x0)

6.832863902s ago: executing program 2 (id=3024):
r0 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r0, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r1, &(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10)
sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000140)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x4, 0x4}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4000884}, 0x4)

6.713357936s ago: executing program 2 (id=3027):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='mm_page_alloc\x00'}, 0x10)
socket$kcm(0x10, 0x2, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="09000000070000000080000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000180), &(0x7f0000000280)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000d0039000000000000b4a518110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r2}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0)

6.529835983s ago: executing program 5 (id=3030):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d00)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x2}, 0x18)
r1 = socket$nl_route(0x10, 0x3, 0x0)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={<r2=>0xffffffffffffffff})
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14)
sendmsg$nl_route_sched(r1, &(0x7f0000006280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000540)=@newtaction={0x98, 0x30, 0x1, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x6a00}, [{0x84, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0xfffffffd, 0x0, 0x8, 0x5, 0x4}, 0x1, r3}}]}, {0x4, 0xa}, {0xc}, {0xc}}}, @m_mpls={0x30, 0x2, 0x0, 0x0, {{0x9}, {0x4}, {0x4}, {0xc}, {0xc}}}]}]}, 0x98}}, 0x0)

6.419369205s ago: executing program 5 (id=3033):
syz_io_uring_setup(0x111, &(0x7f0000000340)={0x0, 0x0, 0x2, 0x4}, 0x0, 0x0)

6.357710867s ago: executing program 4 (id=3035):
syslog(0x2, &(0x7f0000000040)=""/36, 0x24)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[], 0x50)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x40241, 0x0)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x2000cffd, &(0x7f0000e68000)={0x2, 0x4e23, @broadcast}, 0x10)
setsockopt$inet_tcp_int(r1, 0x6, 0x17, 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, 0x0, 0x80d0)
getpid()
r3 = socket$inet6(0xa, 0x1, 0x0)
getsockopt$inet6_int(r3, 0x29, 0x46, 0x0, &(0x7f0000000140))
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=ANY=[@ANYBLOB="fc00000019000100000000000000000020010000000000000000000000000000ac1414aa00000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000a900000000000000000000000000000000000000000000000000000000000000ffffffffffffffff000000000000000000000000000000000000000000000000000a000000000000000000000080400000000000000000080000000000000000000000000000000044000500ac1414aa000200000000000000000000000000003c00000000000000ffffffff0000000000001a000000000000000000000300"/180], 0xfc}}, 0x0)
open(&(0x7f0000000040)='.\x00', 0x418601, 0x8)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r5}, &(0x7f0000000000), &(0x7f00000005c0)=r6}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000080000000100000000000000", @ANYRES32, @ANYBLOB="00008eb14bae47"], 0x48)
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r7, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000005c0)=@migrate={0xbc, 0x21, 0x1, 0x0, 0x0, {{@in6=@private2, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0xa}}, [@migrate={0x50, 0x11, [{@in=@loopback, @in=@private=0xa010100, @in=@private=0xa010100, @in=@rand_addr=0x64010100, 0x3c, 0x0, 0x0, 0x0, 0xa, 0x2}]}, @encap={0x1c, 0x4, {0xfffffffffffffffe, 0x4e24, 0x4e23, @in6=@private1}}]}, 0xbc}}, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000026c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000003880)=ANY=[@ANYBLOB="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"/4545], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000001680)={@cgroup=r9, r8, 0x2f, 0x0, 0x0, @void, @value}, 0x20)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
splice(r9, &(0x7f00000001c0), r2, &(0x7f0000000240), 0x1, 0x6)

6.277671087s ago: executing program 5 (id=3036):
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, 0xffffffffffffffff, 0x0)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x17, 0x3, &(0x7f0000000440)=@framed={{0x18, 0x2, 0x0, 0x0, 0xffffffff}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
write$selinux_load(r0, &(0x7f0000000000)=ANY=[], 0x6000)

6.160695707s ago: executing program 0 (id=3037):
r0 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r0, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10)
socket$tipc(0x1e, 0x5, 0x0)
r1 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r1, &(0x7f0000000380)={&(0x7f0000000140)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x4, 0x4}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4000884}, 0x4)

6.109475222s ago: executing program 4 (id=3038):
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_emit_ethernet(0xbe, &(0x7f0000000080)={@broadcast, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0xfe, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x1, 0x0, 0x3, 0x24, 0x0, {0x25, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x7, @local, @rand_addr=0x64010102, {[@cipso={0x86, 0x77, 0xffffffffffffffff, [{0x0, 0xc, "e256b28c59881681fb52"}, {0x0, 0x9, "020007651442eb"}, {0x0, 0xe, "7434954373561de584b703c8"}, {0x0, 0x9, "e706d30bd224f8"}, {0x2, 0x7, "cfa11cab1a"}, {0x0, 0x10, "8475be675de6a70a05a0dc91e5c6"}, {0x0, 0xa, "6580a5e97612fe86"}, {0x0, 0x12, "73bc23f9ffffffa30900a301c8460000"}, {0x0, 0x12, "c8f46976e79ea788f03d9d3205927e3d"}]}, @cipso={0x86, 0x6, 0x20}]}}}}}}}, 0x0)

6.10877611s ago: executing program 5 (id=3039):
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'syz_tun\x00', <r1=>0x0})
bind$packet(r0, &(0x7f0000000300)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @remote}, 0x14)
socket$packet(0x11, 0x3, 0x300)
syz_emit_ethernet(0x3a, &(0x7f0000000440)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x3, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x4, 0x0, @empty, @multicast1}, {0x0, 0x0, 0x18, 0x0, @wg=@data}}}}}, 0x0)

6.034580277s ago: executing program 0 (id=3040):
r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$binfmt_script(r0, &(0x7f0000000400)={'#! ', './file0'}, 0xb)
close(r0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1, 0x0, 0x7}, 0x18)
execve(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)

6.009410093s ago: executing program 5 (id=3041):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x18)
mount$9p_tcp(&(0x7f00000002c0), &(0x7f0000000300)='./cgroup.cpu/cgroup.procs\x00', &(0x7f00000004c0), 0x8, 0x0)
ustat(0x3, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, 0x0, 0x0)
shmget$private(0x0, 0x4000, 0x1000, &(0x7f0000ffb000/0x4000)=nil)
sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x200}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x4000000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x149a82, 0x1a1)
writev(r1, 0x0, 0x0)
r2 = syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='sys_enter\x00', r3}, 0x10)
inotify_init()
sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000002540)={0x0, 0x0, &(0x7f0000002500)={&(0x7f0000000dc0)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000000c0000001800018014000200626f6e645f736c6176655f310000000018000380"], 0x44}}, 0x4000)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000300)='/proc/keys\x00', 0x0, 0x0)
read$hiddev(r4, &(0x7f00000014c0)=""/4093, 0xffd)
pread64(r4, &(0x7f00000013c0)=""/208, 0x31, 0x401)

5.965857458s ago: executing program 4 (id=3042):
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001cc0)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x100, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
write$sndseq(r0, &(0x7f0000000180)=[{0x0, 0x0, 0x0, 0xfd, @tick=0xffffffd, {}, {0xfe}, @raw32={[0x0, 0x1e6, 0x8]}}, {0x0, 0x0, 0x0, 0x80, @tick, {}, {}, @time}], 0x38)

5.899639632s ago: executing program 0 (id=3043):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000300)={0x0, 0x63, &(0x7f0000000000)={&(0x7f00000020c0)=@newtaction={0x488, 0x30, 0xffff, 0x4, 0x0, {}, [{0x474, 0x1, [@m_police={0x470, 0x1, 0x0, 0x0, {{0xb}, {0x444, 0x2, 0x0, 0x1, [[@TCA_POLICE_RATE={0x404, 0x2, [0x1, 0xe4, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x54, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x8, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x5, 0x0, 0x0, 0x22, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4, 0x8, 0x3, 0x0, 0x27ffdbfc, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x6, 0xfffffffe, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x3, 0x0, 0x0, 0x9, 0x0, 0x0, 0x1, 0x7, 0x0, 0x0, 0x0, 0x0, 0x400, 0x8, 0x0, 0x0, 0x0, 0x81b, 0x0, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0xfffffffc, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0xffffffff, 0x1fe, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x1, 0x0, 0x7, 0x0, 0x0, 0x0, 0x3, 0x5, 0xffffffff, 0x40, 0x40, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2, 0x0, 0x8001, 0x0, 0x0, 0x0, 0xa, 0x0, 0xfffffffe, 0xfffffffd, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x100, 0xfffffffc, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x55, 0xfff, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x1, 0x0, 0x0, 0x2, 0x0, 0x20000000, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xfffffffe, 0x2, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0xffffffff, 0x0, 0x100000]}], [@TCA_POLICE_TBF={0x3c, 0x1, {0x1, 0x7, 0xfffeffff, 0x100, 0x8, {0x4, 0x0, 0x400, 0x3200, 0x7fff, 0x7}, {0x7, 0x2, 0x5, 0x8, 0xd6, 0x766}, 0xfeea, 0x4, 0x2}}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa}}}]}]}, 0x488}}, 0x0)

5.81454547s ago: executing program 0 (id=3044):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x2, 0x0, 0x7fff0000}]})
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r1 = inotify_init1(0x0)
inotify_add_watch(r1, &(0x7f0000000040)='./file0\x00', 0x6)
close_range(r0, 0xffffffffffffffff, 0x0)

5.814356545s ago: executing program 4 (id=3045):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000700000000000000000000850000002300000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, @void, @value}, 0x94)
sendmsg$nl_xfrm(r0, &(0x7f0000001680)={0x0, 0x0, &(0x7f0000001640)={&(0x7f0000001700)=ANY=[@ANYBLOB="540200001600010000000000fedbdf25ff0100000000000000000000000000010a0101010000000000000000000000004e2200004e2300000a00200021000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fc0000000000000000000000000000000000000033000000e0000002000000000000000000000000060000000000000019d000000000000009000000000000000000000000000000000000000000000008000000000000000000000000000000ff030000100000000300000000000000ffffffff00000000ffffff7f000000000900000000000000000000007f000000070000002bbd7000000000000200013f000000000000000001000000060000002c001300200100000000000000000000000000010000000000000000000000020000001c00040003004e204e210000fe"], 0x254}}, 0x0)

5.765576288s ago: executing program 5 (id=3046):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB='\v\x00\x00'], 0x48)
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_EPOCH_READ(r1, 0x8008700d, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), 0x0, 0x5, r0}, 0x38)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r2, 0x0, 0x3}, 0x18)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB='\v\x00\x00\x00\b\x00\x00\x00\f'], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x1, r3}, 0x38)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x2}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r4, 0x0, &(0x7f00000000c0))
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000480)={&(0x7f0000000400)=ANY=[@ANYRES32, @ANYRES8=r0], &(0x7f0000000580)=""/182, 0xab, 0xb6, 0x0, 0x10001, 0x10000, @value}, 0x28)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r5}, 0x10)
syz_open_procfs(0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r6}, 0x10)
mount$9p_rdma(&(0x7f0000000000), &(0x7f0000000180)='.\x00', &(0x7f0000000200), 0x800, &(0x7f0000000b80)=ANY=[@ANYBLOB='trans=rdma'])
mlockall(0x3)
syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_SETSEL(0xffffffffffffffff, 0x541c, &(0x7f0000001900)={0x2, {0xc, 0xa00, 0x0, 0x80, 0x100}})

5.717571247s ago: executing program 2 (id=3047):
r0 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bond0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@newqdisc={0xa4, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, r1, {}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], 0x0, [0x5, 0x4, 0x2, 0x0, 0x8, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x0, 0x8, 0x0, 0x0, 0x2]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x400}]}]}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8, 0x5, 0x7}]}}]}, 0xa4}, 0x1, 0x0, 0x0, 0x20000040}, 0x0)

5.69197796s ago: executing program 0 (id=3048):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000006c0)='kfree\x00', r1}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000000080), 0x72, 0x101301)
ioctl$USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect)

5.034516478s ago: executing program 4 (id=3049):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r1}, 0x18)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000140)={0x28, 0x0, 0x0, @host}, 0x10)

876.324µs ago: executing program 0 (id=3050):
r0 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r0, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10)
socket$tipc(0x1e, 0x5, 0x0)
r1 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r1, &(0x7f0000000380)={&(0x7f0000000140)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x4, 0x4}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4000884}, 0x4)

0s ago: executing program 4 (id=3051):
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'syz_tun\x00', <r1=>0x0})
bind$packet(r0, &(0x7f0000000300)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @remote}, 0x14)
socket$packet(0x11, 0x3, 0x300)
syz_emit_ethernet(0x3a, &(0x7f0000000440)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x3, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x4, 0x0, @empty, @multicast1}, {0x0, 0x0, 0x18, 0x0, @wg=@data}}}}}, 0x0)

kernel console output (not intermixed with test programs):

 00007ff7a2db6080 R15: 00007ffe8a128378
[  952.150890][T15567]  </TASK>
[  953.059246][T15574] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  953.990432][T15579] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  954.393287][   T30] audit: type=1400 audit(2000000776.350:721): avc:  denied  { connect } for  pid=15580 comm="syz.4.2483" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  954.432888][T10106] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  954.453481][   T30] audit: type=1400 audit(2000000776.350:722): avc:  denied  { bind } for  pid=15580 comm="syz.4.2483" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  954.517459][   T30] audit: type=1400 audit(2000000776.460:723): avc:  denied  { getopt } for  pid=15580 comm="syz.4.2483" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  954.540225][   T30] audit: type=1400 audit(2000000776.470:724): avc:  denied  { read } for  pid=15580 comm="syz.4.2483" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  954.966770][ T5140] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  955.019951][ T5140] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  955.028362][ T5140] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  955.037296][ T5140] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  955.051330][ T5140] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  955.099210][T15594] lo speed is unknown, defaulting to 1000
[  955.367231][T15594] chnl_net:caif_netlink_parms(): no params data found
[  955.458559][T15594] bridge0: port 1(bridge_slave_0) entered blocking state
[  955.483170][T15594] bridge0: port 1(bridge_slave_0) entered disabled state
[  955.490536][T15594] bridge_slave_0: entered allmulticast mode
[  955.497849][T15594] bridge_slave_0: entered promiscuous mode
[  955.512405][T15594] bridge0: port 2(bridge_slave_1) entered blocking state
[  955.525269][T15594] bridge0: port 2(bridge_slave_1) entered disabled state
[  955.613575][T15594] bridge_slave_1: entered allmulticast mode
[  955.642599][T15594] bridge_slave_1: entered promiscuous mode
[  955.761571][T15594] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  955.774470][T15594] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  955.825487][T15594] team0: Port device team_slave_0 added
[  955.837170][T15594] team0: Port device team_slave_1 added
[  955.881096][T15594] batman_adv: batadv0: Adding interface: batadv_slave_0
[  955.888268][T15594] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  955.920785][T15594] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  955.942662][T15594] batman_adv: batadv0: Adding interface: batadv_slave_1
[  955.956639][T15594] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  955.991773][T15594] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  956.092490][T10106] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  956.115380][T15594] hsr_slave_0: entered promiscuous mode
[  956.125679][T15594] hsr_slave_1: entered promiscuous mode
[  956.138267][T15594] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  956.149124][T15594] Cannot create hsr debugfs directory
[  956.172506][T10106] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  956.236851][T10106] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  957.139131][ T5140] Bluetooth: hci1: command tx timeout
[  957.143239][T15618] loop2: detected capacity change from 0 to 7
[  957.183485][T15618] Dev loop2: unable to read RDB block 7
[  957.190598][T15618]  loop2: unable to read partition table
[  957.210820][T15618] loop2: partition table beyond EOD, truncated
[  957.268617][T10106] bridge_slave_1: left allmulticast mode
[  957.275423][T10106] bridge_slave_1: left promiscuous mode
[  957.282180][T10106] bridge0: port 2(bridge_slave_1) entered disabled state
[  957.284496][T15618] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  957.381962][T10106] bridge_slave_0: left allmulticast mode
[  957.387606][T10106] bridge_slave_0: left promiscuous mode
[  957.394142][T10106] bridge0: port 1(bridge_slave_0) entered disabled state
[  957.705074][T10106] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  957.715388][T10106] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  957.735446][T10106] bond0 (unregistering): Released all slaves
[  959.193565][ T5140] Bluetooth: hci1: command tx timeout
[  959.367823][T15648] netlink: 141 bytes leftover after parsing attributes in process `syz.0.2498'.
[  959.675691][T10106] hsr_slave_0: left promiscuous mode
[  959.683999][T10106] hsr_slave_1: left promiscuous mode
[  959.689950][T10106] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  959.697386][T10106] batman_adv: batadv0: Removing interface: batadv_slave_0
[  959.706416][T10106] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  959.715997][T10106] batman_adv: batadv0: Removing interface: batadv_slave_1
[  959.774824][   T30] audit: type=1400 audit(2000000781.740:725): avc:  denied  { create } for  pid=15634 comm="syz.2.2496" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=atmpvc_socket permissive=1
[  959.804025][T10106] veth1_macvtap: left promiscuous mode
[  959.809628][T10106] veth0_macvtap: left promiscuous mode
[  959.819530][T10106] veth1_vlan: left promiscuous mode
[  959.829229][T10106] veth0_vlan: left promiscuous mode
[  960.387858][T10106] team0 (unregistering): Port device team_slave_1 removed
[  960.417645][T10106] team0 (unregistering): Port device team_slave_0 removed
[  960.677276][T15640] lo speed is unknown, defaulting to 1000
[  960.822277][T15594] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  960.837017][T15594] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  960.867609][T15594] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  960.884987][T15594] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  961.064477][T15594] 8021q: adding VLAN 0 to HW filter on device bond0
[  961.106805][T15594] 8021q: adding VLAN 0 to HW filter on device team0
[  961.125786][T10116] bridge0: port 1(bridge_slave_0) entered blocking state
[  961.132957][T10116] bridge0: port 1(bridge_slave_0) entered forwarding state
[  961.260197][ T5140] Bluetooth: hci1: command tx timeout
[  961.938446][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  961.945764][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  962.287213][T15679] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  962.452499][T15683] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2506'.
[  962.487376][T15683] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2506'.
[  962.655021][   T30] audit: type=1400 audit(2000000784.610:726): avc:  denied  { append } for  pid=15692 comm="syz.0.2509" name="001" dev="devtmpfs" ino=722 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  962.689945][T13880] usb 3-1: new high-speed USB device number 38 using dummy_hcd
[  962.722628][T15594] 8021q: adding VLAN 0 to HW filter on device batadv0
[  962.769557][T15594] veth0_vlan: entered promiscuous mode
[  962.778419][T15700] fuse: Bad value for 'fd'
[  962.793861][T15594] veth1_vlan: entered promiscuous mode
[  962.834522][T15594] veth0_macvtap: entered promiscuous mode
[  962.861986][T13880] usb 3-1: Using ep0 maxpacket: 32
[  962.869023][T15594] veth1_macvtap: entered promiscuous mode
[  962.876575][T13880] usb 3-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  962.889522][T15594] batman_adv: batadv0: Interface activated: batadv_slave_0
[  963.313747][T15594] batman_adv: batadv0: Interface activated: batadv_slave_1
[  963.407528][T15594] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  963.432068][T15594] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  963.454424][T15594] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  963.464051][ T5140] Bluetooth: hci1: command tx timeout
[  963.469523][T15594] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  963.469525][T13880] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  963.489014][T13880] usb 3-1: config 0 descriptor??
[  963.553434][T10106] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  963.571566][T10106] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  963.612077][T10106] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  963.626966][T10106] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  963.698892][T13880] dvb-usb: found a 'Elgato EyeTV Sat' in cold state, will try to load a firmware
[  964.005966][T15713] netlink: 277 bytes leftover after parsing attributes in process `syz.3.2514'.
[  964.615819][T15716] IPVS: set_ctl: invalid protocol: 92 0.0.0.0:20004
[  965.282920][T15728] netlink: 277 bytes leftover after parsing attributes in process `syz.4.2518'.
[  965.692643][ T6110] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  966.695628][ T5819] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  966.718106][ T5819] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  966.729188][ T5819] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  966.744742][ T5819] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  966.756619][ T5819] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  967.375428][ T6110] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  967.521723][T15745] netdevsim netdevsim4: Direct firmware load for ¼JÈöníñÆgkNšÄq>ä*x(Oˆ@Ä“Æ™¬aîWóÿfV!�Œˆ«_—)µAD‘I†µw•C7�;¹gB›|hÂV`f”?:VmÐUWX:SZ;žË©6h?AeÙÿ³iÛámç/Øî‘ÆS–Á6­Ò_C?ÚF failed with error -2
[  967.541256][    C0] vkms_vblank_simulate: vblank timer overrun
[  967.547908][T15745] netdevsim netdevsim4: Falling back to sysfs fallback for: ¼JÈöníñÆgkNšÄq>ä*x(Oˆ@Ä“Æ™¬aîWóÿfV!�Œˆ«_—)µAD‘I†µw•C7�;¹gB›|hÂV`f”?:VmÐUWX:SZ;žË©6h?AeÙÿ³iÛámç/Øî‘ÆS–Á6­Ò_C?ÚF
[  967.857256][ T6110] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  967.921369][T15738] lo speed is unknown, defaulting to 1000
[  968.795789][ T5819] Bluetooth: hci1: command tx timeout
[  968.889335][T15756] FAULT_INJECTION: forcing a failure.
[  968.889335][T15756] name failslab, interval 1, probability 0, space 0, times 0
[  968.935454][T15756] CPU: 1 UID: 0 PID: 15756 Comm: syz.4.2523 Not tainted 6.15.0-syzkaller-11220-gf5164456c604 #0 PREEMPT(full) 
[  968.935479][T15756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  968.935488][T15756] Call Trace:
[  968.935494][T15756]  <TASK>
[  968.935501][T15756]  dump_stack_lvl+0x16c/0x1f0
[  968.935531][T15756]  should_fail_ex+0x512/0x640
[  968.935549][T15756]  ? fs_reclaim_acquire+0xae/0x150
[  968.935568][T15756]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  968.935588][T15756]  should_failslab+0xc2/0x120
[  968.935613][T15756]  __kmalloc_noprof+0xd2/0x510
[  968.935641][T15756]  tomoyo_realpath_from_path+0xc2/0x6e0
[  968.935662][T15756]  ? tomoyo_profile+0x47/0x60
[  968.935685][T15756]  tomoyo_path_number_perm+0x245/0x580
[  968.935709][T15756]  ? tomoyo_path_number_perm+0x237/0x580
[  968.935735][T15756]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  968.935762][T15756]  ? find_held_lock+0x2b/0x80
[  968.935805][T15756]  ? find_held_lock+0x2b/0x80
[  968.935825][T15756]  ? hook_file_ioctl_common+0x145/0x410
[  968.935863][T15756]  ? __fget_files+0x20e/0x3c0
[  968.935893][T15756]  security_file_ioctl+0x9b/0x240
[  968.935915][T15756]  __x64_sys_ioctl+0xb7/0x210
[  968.935938][T15756]  do_syscall_64+0xcd/0x4c0
[  968.935957][T15756]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  968.935974][T15756] RIP: 0033:0x7f472758e969
[  968.935989][T15756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  968.936006][T15756] RSP: 002b:00007f4728377038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  968.936023][T15756] RAX: ffffffffffffffda RBX: 00007f47277b5fa0 RCX: 00007f472758e969
[  968.936034][T15756] RDX: 0000200000000240 RSI: 0000000000004601 RDI: 0000000000000003
[  968.936045][T15756] RBP: 00007f4728377090 R08: 0000000000000000 R09: 0000000000000000
[  968.936055][T15756] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  968.936064][T15756] R13: 0000000000000000 R14: 00007f47277b5fa0 R15: 00007ffe14a87bd8
[  968.936087][T15756]  </TASK>
[  968.936093][T15756] ERROR: Out of memory at tomoyo_realpath_from_path.
[  969.147961][ T6110] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  969.385246][ T6110] bridge_slave_1: left allmulticast mode
[  969.395223][ T6110] bridge_slave_1: left promiscuous mode
[  969.409937][ T6110] bridge0: port 2(bridge_slave_1) entered disabled state
[  969.429468][ T6110] bridge_slave_0: left allmulticast mode
[  969.435265][ T6110] bridge_slave_0: left promiscuous mode
[  969.442667][ T6110] bridge0: port 1(bridge_slave_0) entered disabled state
[  969.947974][T15771] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2527'.
[  970.042600][ T6110] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  970.055687][ T6110] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  970.067569][ T6110] bond0 (unregistering): Released all slaves
[  970.083577][T15738] chnl_net:caif_netlink_parms(): no params data found
[  970.183568][T15781] IPVS: set_ctl: invalid protocol: 92 0.0.0.0:20004
[  970.294814][T15738] bridge0: port 1(bridge_slave_0) entered blocking state
[  970.313869][T15738] bridge0: port 1(bridge_slave_0) entered disabled state
[  970.331102][T15738] bridge_slave_0: entered allmulticast mode
[  970.346728][T15738] bridge_slave_0: entered promiscuous mode
[  970.371056][T15738] bridge0: port 2(bridge_slave_1) entered blocking state
[  970.387671][T15738] bridge0: port 2(bridge_slave_1) entered disabled state
[  970.413216][T15738] bridge_slave_1: entered allmulticast mode
[  970.472474][T15738] bridge_slave_1: entered promiscuous mode
[  970.695760][T15738] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  970.707699][T15738] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  970.755985][T15738] team0: Port device team_slave_0 added
[  970.773824][T15738] team0: Port device team_slave_1 added
[  970.827143][T15738] batman_adv: batadv0: Adding interface: batadv_slave_0
[  970.939837][ T5819] Bluetooth: hci1: command tx timeout
[  970.996188][T15738] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  971.023483][T15738] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  971.053669][ T6110] hsr_slave_0: left promiscuous mode
[  971.061612][ T6110] hsr_slave_1: left promiscuous mode
[  971.068899][ T6110] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  971.177501][T15789] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  971.521875][ T6110] batman_adv: batadv0: Removing interface: batadv_slave_0
[  971.542204][ T6110] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  971.549727][ T6110] batman_adv: batadv0: Removing interface: batadv_slave_1
[  971.574518][ T6110] veth1_macvtap: left promiscuous mode
[  971.580253][ T6110] veth0_macvtap: left promiscuous mode
[  971.585948][ T6110] veth1_vlan: left promiscuous mode
[  971.592110][ T6110] veth0_vlan: left promiscuous mode
[  971.765386][   T30] audit: type=1400 audit(2000000793.730:727): avc:  denied  { create } for  pid=15790 comm="syz.4.2532" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  971.788026][   T30] audit: type=1400 audit(2000000793.730:728): avc:  denied  { write } for  pid=15790 comm="syz.4.2532" path="socket:[43386]" dev="sockfs" ino=43386 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  971.958052][ T6110] team0 (unregistering): Port device team_slave_1 removed
[  971.994111][ T6110] team0 (unregistering): Port device team_slave_0 removed
[  972.263523][   T30] audit: type=1400 audit(2000000794.230:729): avc:  denied  { setopt } for  pid=15797 comm="syz.2.2534" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  972.300127][   T30] audit: type=1400 audit(2000000794.230:730): avc:  denied  { write } for  pid=15797 comm="syz.2.2534" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  973.111441][ T5819] Bluetooth: hci1: command tx timeout
[  974.260046][T15738] batman_adv: batadv0: Adding interface: batadv_slave_1
[  974.267012][T15738] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  974.293338][T15738] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  974.464228][T15738] hsr_slave_0: entered promiscuous mode
[  974.471073][T15738] hsr_slave_1: entered promiscuous mode
[  974.477198][T15738] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  974.485360][T15738] Cannot create hsr debugfs directory
[  975.209806][ T5819] Bluetooth: hci1: command tx timeout
[  975.543568][T15738] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  975.560254][T15738] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  975.575100][T15738] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  975.588693][T15738] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  975.691828][T15738] 8021q: adding VLAN 0 to HW filter on device bond0
[  975.711265][T15738] 8021q: adding VLAN 0 to HW filter on device team0
[  975.721632][T15828] IPVS: set_ctl: invalid protocol: 92 0.0.0.0:20004
[  975.723829][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  975.735380][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  975.753869][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  975.761035][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  976.002608][T15738] 8021q: adding VLAN 0 to HW filter on device batadv0
[  976.054016][T15738] veth0_vlan: entered promiscuous mode
[  976.067057][T15738] veth1_vlan: entered promiscuous mode
[  976.095224][T15738] veth0_macvtap: entered promiscuous mode
[  976.105044][T15738] veth1_macvtap: entered promiscuous mode
[  976.125629][T15738] batman_adv: batadv0: Interface activated: batadv_slave_0
[  976.139201][T15738] batman_adv: batadv0: Interface activated: batadv_slave_1
[  976.154604][T15738] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  976.165634][T15738] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  976.174470][T15738] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  976.184246][T15738] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  976.248332][T10113] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  976.256833][T10113] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  976.342062][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  976.352982][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  976.644609][   T30] audit: type=1400 audit(2000000798.610:731): avc:  denied  { map } for  pid=15838 comm="syz.4.2544" path="socket:[44537]" dev="sockfs" ino=44537 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_stream_socket permissive=1
[  977.100230][   T10] dvb-usb: did not find the firmware file 'dvb-usb-az6027-03.fw' (status -2). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[  977.100769][ T5908] dvb-usb: did not find the firmware file 'dvb-usb-az6027-03.fw' (status -110). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[  977.115354][ T5882] dvb-usb: did not find the firmware file 'dvb-usb-az6027-03.fw' (status -2). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[  977.145669][T13880] dvb-usb: did not find the firmware file 'dvb-usb-az6027-03.fw' (status -2). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[  977.154006][ T5908] dvb_usb_az6027 1-1:0.0: probe with driver dvb_usb_az6027 failed with error -110
[  977.161689][   T10] dvb_usb_az6027 5-1:0.0: probe with driver dvb_usb_az6027 failed with error -2
[  977.180913][T13880] dvb_usb_az6027 3-1:0.0: probe with driver dvb_usb_az6027 failed with error -2
[  977.191663][   T10] usb 5-1: USB disconnect, device number 39
[  977.193771][ T5908] usb 1-1: USB disconnect, device number 32
[  977.202224][T13880] usb 3-1: USB disconnect, device number 38
[  977.209500][ T5882] dvb_usb_az6027 4-1:0.0: probe with driver dvb_usb_az6027 failed with error -2
[  977.227671][ T5882] usb 4-1: USB disconnect, device number 33
[  977.468255][T15846] IPVS: set_ctl: invalid protocol: 255 127.0.0.1:20003
[  977.552583][ T5882] usb 4-1: new high-speed USB device number 34 using dummy_hcd
[  977.691389][   T10] IPVS: starting estimator thread 0...
[  977.799702][ T5882] usb 4-1: Using ep0 maxpacket: 32
[  977.829763][T15850] IPVS: using max 46 ests per chain, 110400 per kthread
[  977.863230][ T5882] usb 4-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  977.873253][ T5882] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  977.882907][    T9] usb 1-1: new high-speed USB device number 33 using dummy_hcd
[  977.983612][ T5882] usb 4-1: config 0 descriptor??
[  978.448660][    T9] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  978.469041][ T5882] dvb-usb: found a 'Elgato EyeTV Sat' in cold state, will try to load a firmware
[  978.495426][    T9] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  978.505730][ T5882] usb 4-1: Direct firmware load for dvb-usb-az6027-03.fw failed with error -2
[  978.532880][ T5882] usb 4-1: Falling back to sysfs fallback for: dvb-usb-az6027-03.fw
[  978.546211][    T9] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  978.563617][   T13] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  978.577012][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  978.604038][T15847] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  978.621295][    T9] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[  978.825265][ T5908] usb 1-1: USB disconnect, device number 33
[  980.595934][ T5140] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  980.604808][ T5140] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  980.613265][ T5140] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  980.621568][ T5140] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  980.629731][ T5140] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  981.174779][T15871] lo speed is unknown, defaulting to 1000
[  981.478271][   T13] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  982.036366][   T13] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  982.318246][   T13] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  982.542288][T15890] Bluetooth: MGMT ver 1.23
[  982.942707][ T5140] Bluetooth: hci1: command tx timeout
[  983.430302][T15871] chnl_net:caif_netlink_parms(): no params data found
[  983.580807][T15902] fuse: Bad value for 'fd'
[  984.039915][   T30] audit: type=1400 audit(2000000805.570:732): avc:  denied  { connect } for  pid=15895 comm="syz.2.2556" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  984.668440][T15915] loop6: detected capacity change from 0 to 524287999
[  984.688868][T15915] buffer_io_error: 6 callbacks suppressed
[  984.688908][T15915] Buffer I/O error on dev loop6, logical block 0, async page read
[  984.704204][T15915] Buffer I/O error on dev loop6, logical block 0, async page read
[  984.704227][   T13] bridge_slave_1: left allmulticast mode
[  984.718074][   T13] bridge_slave_1: left promiscuous mode
[  984.724370][T15915] Buffer I/O error on dev loop6, logical block 0, async page read
[  984.724825][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  984.732767][T15915] Buffer I/O error on dev loop6, logical block 0, async page read
[  984.771209][T15915] Buffer I/O error on dev loop6, logical block 0, async page read
[  984.779824][   T24] usb 1-1: new high-speed USB device number 34 using dummy_hcd
[  984.788465][T15915] Buffer I/O error on dev loop6, logical block 0, async page read
[  984.796463][  T973] usb 3-1: new high-speed USB device number 40 using dummy_hcd
[  984.806141][T15915] Buffer I/O error on dev loop6, logical block 0, async page read
[  984.815202][   T13] bridge_slave_0: left allmulticast mode
[  984.822585][T15915] Buffer I/O error on dev loop6, logical block 0, async page read
[  984.831434][T15915] ldm_validate_partition_table(): Disk read failed.
[  984.840862][T15915] Buffer I/O error on dev loop6, logical block 0, async page read
[  984.849534][T15915] Buffer I/O error on dev loop6, logical block 0, async page read
[  984.859713][T15915] Dev loop6: unable to read RDB block 0
[  984.868498][T15915]  loop6: unable to read partition table
[  984.876182][T15915] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x³˜CÖ

) failed (rc=-5)
[  984.897150][   T13] bridge_slave_0: left promiscuous mode
[  984.924306][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  984.980035][   T24] usb 1-1: Using ep0 maxpacket: 32
[  984.999842][   T24] usb 1-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  985.024153][ T5140] Bluetooth: hci1: command tx timeout
[  985.025756][   T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  985.079399][  T973] usb 3-1: Using ep0 maxpacket: 16
[  985.095710][   T24] usb 1-1: config 0 descriptor??
[  985.096257][  T973] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  985.113857][  T973] usb 3-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  985.123223][  T973] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  985.131509][  T973] usb 3-1: Product: syz
[  985.135726][  T973] usb 3-1: Manufacturer: syz
[  985.141129][  T973] usb 3-1: SerialNumber: syz
[  985.147423][  T973] usb 3-1: config 0 descriptor??
[  985.155698][  T973] hub 3-1:0.0: bad descriptor, ignoring hub
[  985.162123][  T973] hub 3-1:0.0: probe with driver hub failed with error -5
[  985.172613][  T973] input: syz syz as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input35
[  985.315753][   T24] dvb-usb: found a 'Elgato EyeTV Sat' in cold state, will try to load a firmware
[  985.369018][   T30] audit: type=1400 audit(2000000807.330:733): avc:  denied  { write } for  pid=15906 comm="syz.2.2558" name="mice" dev="devtmpfs" ino=917 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  985.449615][T15921] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  985.474507][T15921] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  985.554465][   T30] audit: type=1400 audit(2000000807.520:734): avc:  denied  { wake_alarm } for  pid=15906 comm="syz.2.2558" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  985.642129][T15923] fuse: Bad value for 'fd'
[  985.850891][ T5906] usb 3-1: USB disconnect, device number 40
[  985.875060][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  985.982724][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  985.992937][   T13] bond0 (unregistering): Released all slaves
[  986.022999][T15871] bridge0: port 1(bridge_slave_0) entered blocking state
[  986.030663][T15871] bridge0: port 1(bridge_slave_0) entered disabled state
[  986.038041][T15871] bridge_slave_0: entered allmulticast mode
[  986.045546][T15871] bridge_slave_0: entered promiscuous mode
[  986.054227][T15871] bridge0: port 2(bridge_slave_1) entered blocking state
[  986.063409][T15871] bridge0: port 2(bridge_slave_1) entered disabled state
[  986.084880][T15871] bridge_slave_1: entered allmulticast mode
[  986.097781][T15871] bridge_slave_1: entered promiscuous mode
[  986.182849][T15871] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  986.199077][T15871] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  986.269383][T15871] team0: Port device team_slave_0 added
[  986.835570][T15871] team0: Port device team_slave_1 added
[  987.105432][ T5140] Bluetooth: hci1: command tx timeout
[  987.902930][   T13] hsr_slave_0: left promiscuous mode
[  987.919316][   T13] hsr_slave_1: left promiscuous mode
[  987.932392][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  987.942877][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  987.951924][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  987.959472][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  987.999513][   T30] audit: type=1400 audit(2000000809.960:735): avc:  denied  { module_load } for  pid=15941 comm="syz.2.2570" path="/sys/power/wakeup_count" dev="sysfs" ino=1409 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=system permissive=1
[  988.027968][   T13] veth1_macvtap: left promiscuous mode
[  988.034973][   T13] veth0_macvtap: left promiscuous mode
[  988.041332][   T13] veth1_vlan: left promiscuous mode
[  988.047156][   T13] veth0_vlan: left promiscuous mode
[  988.199335][T15951] netlink: 277 bytes leftover after parsing attributes in process `syz.4.2571'.
[  988.698286][   T30] audit: type=1400 audit(2000000810.660:736): avc:  granted  { setsecparam } for  pid=15952 comm="syz.0.2572" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[  988.719907][ T5906] usb 3-1: new high-speed USB device number 41 using dummy_hcd
[  988.989783][ T5906] usb 3-1: Using ep0 maxpacket: 32
[  989.004606][ T5906] usb 3-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  989.013903][ T5906] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  989.027292][ T5906] usb 3-1: config 0 descriptor??
[  989.179720][ T5819] Bluetooth: hci1: command tx timeout
[  989.446094][ T5906] dvb-usb: found a 'Elgato EyeTV Sat' in cold state, will try to load a firmware
[  989.450729][   T13] team0 (unregistering): Port device team_slave_1 removed
[  989.619997][   T13] team0 (unregistering): Port device team_slave_0 removed
[  989.852212][ T5908] libceph: connect (1)[c::]:6789 error -101
[  989.858342][ T5908] libceph: mon0 (1)[c::]:6789 connect error
[  990.133734][ T5904] libceph: connect (1)[c::]:6789 error -101
[  990.170908][ T5904] libceph: mon0 (1)[c::]:6789 connect error
[  990.393763][T15969] ceph: No mds server is up or the cluster is laggy
[  990.955032][T15871] batman_adv: batadv0: Adding interface: batadv_slave_0
[  990.962665][T15871] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  990.998912][T15871] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  991.021460][T15871] batman_adv: batadv0: Adding interface: batadv_slave_1
[  991.028406][T15871] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  991.085124][T15871] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  991.210294][T15871] hsr_slave_0: entered promiscuous mode
[  991.238700][T15871] hsr_slave_1: entered promiscuous mode
[  991.264159][ T5819] Bluetooth: hci1: command 0x0405 tx timeout
[  991.292273][T15871] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  991.301772][T15871] Cannot create hsr debugfs directory
[  992.473039][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  993.339793][ T5819] Bluetooth: hci1: command 0x0405 tx timeout
[  993.421164][T16011] fuse: Bad value for 'fd'
[  993.956585][T16012] FAULT_INJECTION: forcing a failure.
[  993.956585][T16012] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  994.049863][T16012] CPU: 0 UID: 0 PID: 16012 Comm: syz.0.2585 Not tainted 6.15.0-syzkaller-11220-gf5164456c604 #0 PREEMPT(full) 
[  994.049881][T16012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  994.049887][T16012] Call Trace:
[  994.049891][T16012]  <TASK>
[  994.049895][T16012]  dump_stack_lvl+0x16c/0x1f0
[  994.049916][T16012]  should_fail_ex+0x512/0x640
[  994.049932][T16012]  _copy_from_user+0x2e/0xd0
[  994.049946][T16012]  quota_setquota+0x26a/0x5e0
[  994.049960][T16012]  ? __pfx_quota_setquota+0x10/0x10
[  994.049977][T16012]  ? avc_has_perm+0x11a/0x1c0
[  994.049998][T16012]  ? selinux_quotactl+0x171/0x300
[  994.050016][T16012]  do_quotactl+0xaf6/0x13d0
[  994.050030][T16012]  ? __pfx_do_quotactl+0x10/0x10
[  994.050046][T16012]  ? __pfx___might_resched+0x10/0x10
[  994.050061][T16012]  ? find_held_lock+0x2b/0x80
[  994.050077][T16012]  ? down_read+0x13d/0x480
[  994.050088][T16012]  ? mnt_get_write_access+0x54/0x300
[  994.050100][T16012]  ? __pfx_down_read+0x10/0x10
[  994.050114][T16012]  ? mnt_get_write_access+0x20c/0x300
[  994.050128][T16012]  __x64_sys_quotactl_fd+0x309/0x540
[  994.050145][T16012]  do_syscall_64+0xcd/0x4c0
[  994.050156][T16012]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  994.050167][T16012] RIP: 0033:0x7f0bd598e969
[  994.050176][T16012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  994.050186][T16012] RSP: 002b:00007f0bd675c038 EFLAGS: 00000246 ORIG_RAX: 00000000000001bb
[  994.050197][T16012] RAX: ffffffffffffffda RBX: 00007f0bd5bb5fa0 RCX: 00007f0bd598e969
[  994.050204][T16012] RDX: 000000000000ee01 RSI: ffffffff80000800 RDI: 0000000000000003
[  994.050210][T16012] RBP: 00007f0bd675c090 R08: 0000000000000000 R09: 0000000000000000
[  994.050216][T16012] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000001
[  994.050222][T16012] R13: 0000000000000000 R14: 00007f0bd5bb5fa0 R15: 00007fff20a930e8
[  994.050236][T16012]  </TASK>
[  994.361625][T16004] fuse: Unknown parameter '0xffffffffffffffff017777777777777777777770000000000000000000000000000000000000000'
[  995.088344][T16004] fuse: Bad value for 'fd'
[  995.178329][T15871] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  995.218177][T15871] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  995.480049][T15871] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  995.534563][   T30] audit: type=1400 audit(2000000817.490:737): avc:  granted  { setsecparam } for  pid=16019 comm="syz.3.2588" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[  995.659475][T15871] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  995.750598][T16031] fuse: Bad value for 'fd'
[  996.220625][T15871] 8021q: adding VLAN 0 to HW filter on device bond0
[  996.271242][T15871] 8021q: adding VLAN 0 to HW filter on device team0
[  996.311238][ T6110] bridge0: port 1(bridge_slave_0) entered blocking state
[  996.318352][ T6110] bridge0: port 1(bridge_slave_0) entered forwarding state
[  996.450994][ T6110] bridge0: port 2(bridge_slave_1) entered blocking state
[  996.458093][ T6110] bridge0: port 2(bridge_slave_1) entered forwarding state
[  997.332205][T16046] netlink: 'syz.3.2592': attribute type 1 has an invalid length.
[  997.340441][T16046] netlink: 244 bytes leftover after parsing attributes in process `syz.3.2592'.
[  997.350271][T15871] 8021q: adding VLAN 0 to HW filter on device batadv0
[  997.407219][T15871] veth0_vlan: entered promiscuous mode
[  997.424395][T15871] veth1_vlan: entered promiscuous mode
[  997.457424][T15871] veth0_macvtap: entered promiscuous mode
[  997.531443][T15871] veth1_macvtap: entered promiscuous mode
[  997.563157][T15871] batman_adv: batadv0: Interface activated: batadv_slave_0
[  997.635696][T15871] batman_adv: batadv0: Interface activated: batadv_slave_1
[  997.676672][T15871] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  997.739851][T15871] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  997.819899][ T5908] usb 5-1: new high-speed USB device number 40 using dummy_hcd
[  997.842723][T15871] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  997.894097][T15871] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  997.981184][ T5908] usb 5-1: Using ep0 maxpacket: 32
[  997.989930][ T5908] usb 5-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  998.001197][ T5908] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  998.028107][ T5908] usb 5-1: config 0 descriptor??
[  998.127515][T10113] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  998.243981][T10113] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  998.255347][ T5908] dvb-usb: found a 'Elgato EyeTV Sat' in cold state, will try to load a firmware
[  998.863401][T10117] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  998.894844][T10117] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  999.369101][T16068] loop6: detected capacity change from 0 to 524287999
[  999.855929][T16068] buffer_io_error: 6 callbacks suppressed
[  999.855941][T16068] Buffer I/O error on dev loop6, logical block 0, async page read
[  999.872054][T16068] Buffer I/O error on dev loop6, logical block 0, async page read
[  999.879996][T16068] Buffer I/O error on dev loop6, logical block 0, async page read
[  999.888063][T16068] Buffer I/O error on dev loop6, logical block 0, async page read
[  999.896240][T16068] Buffer I/O error on dev loop6, logical block 0, async page read
[  999.904320][T16068] Buffer I/O error on dev loop6, logical block 0, async page read
[  999.912193][T16068] Buffer I/O error on dev loop6, logical block 0, async page read
[  999.920059][T16068] Buffer I/O error on dev loop6, logical block 0, async page read
[  999.927878][T16068] ldm_validate_partition_table(): Disk read failed.
[  999.934490][T16068] Buffer I/O error on dev loop6, logical block 0, async page read
[  999.942336][T16068] Buffer I/O error on dev loop6, logical block 0, async page read
[  999.950317][T16068] Dev loop6: unable to read RDB block 0
[  999.956044][T16068]  loop6: unable to read partition table
[  999.961858][T16068] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x³˜CÖ

) failed (rc=-5)
[ 1000.688361][T16079] fuse: Bad value for 'fd'
[ 1000.722589][T16080] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[ 1001.518234][   T30] audit: type=1400 audit(2000000823.480:738): avc:  granted  { setsecparam } for  pid=16084 comm="syz.0.2602" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[ 1002.324950][ T5826] libceph: connect (1)[c::]:6789 error -101
[ 1002.331154][ T5826] libceph: mon0 (1)[c::]:6789 connect error
[ 1002.420118][T16098] netlink: 68 bytes leftover after parsing attributes in process `syz.4.2604'.
[ 1002.622872][ T5826] libceph: connect (1)[c::]:6789 error -101
[ 1002.646868][ T5826] libceph: mon0 (1)[c::]:6789 connect error
[ 1003.171707][ T5826] libceph: connect (1)[c::]:6789 error -101
[ 1003.470638][T16094] ceph: No mds server is up or the cluster is laggy
[ 1003.500481][ T5826] libceph: mon0 (1)[c::]:6789 connect error
[ 1003.589806][ T5819] Bluetooth: hci4: command 0x041b tx timeout
[ 1003.758376][ T2898] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1003.983314][ T2898] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1004.055306][ T2898] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1004.110034][ T2898] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1004.191367][ T2898] bridge_slave_1: left allmulticast mode
[ 1004.197010][ T2898] bridge_slave_1: left promiscuous mode
[ 1004.204653][ T2898] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1004.212979][ T2898] bridge_slave_0: left allmulticast mode
[ 1004.218599][ T2898] bridge_slave_0: left promiscuous mode
[ 1004.224401][ T2898] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1004.650408][ T2898] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1004.675254][ T2898] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1004.703485][T16117] fuse: Unknown parameter '0xffffffffffffffff017777777777777777777770000000000000000000000000000000000000000'
[ 1004.724350][T16117] fuse: Bad value for 'fd'
[ 1004.741712][ T2898] bond0 (unregistering): Released all slaves
[ 1004.977926][T11358] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1004.987278][T11358] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1004.998046][T11358] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1005.014925][T11358] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1005.022869][T11358] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1005.087225][T16118] lo speed is unknown, defaulting to 1000
[ 1005.217858][ T2898] hsr_slave_0: left promiscuous mode
[ 1005.247340][ T2898] hsr_slave_1: left promiscuous mode
[ 1005.253336][ T2898] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1005.806772][T11358] Bluetooth: hci4: command 0x041b tx timeout
[ 1005.813335][ T2898] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1005.830690][ T2898] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1005.838153][ T2898] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1005.908811][ T2898] veth1_macvtap: left promiscuous mode
[ 1005.914580][ T2898] veth0_macvtap: left promiscuous mode
[ 1005.985039][ T2898] veth1_vlan: left promiscuous mode
[ 1005.990565][ T2898] veth0_vlan: left promiscuous mode
[ 1006.222559][T16129] loop2: detected capacity change from 0 to 7
[ 1006.242747][T16129] Dev loop2: unable to read RDB block 7
[ 1006.249678][T16129]  loop2: unable to read partition table
[ 1006.262986][T16129] loop2: partition table beyond EOD, truncated
[ 1006.269336][T16129] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[ 1006.789006][ T2898] team0 (unregistering): Port device team_slave_1 removed
[ 1006.909467][T16134] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1007.077934][ T2898] team0 (unregistering): Port device team_slave_0 removed
[ 1007.101049][ T5140] Bluetooth: hci1: command tx timeout
[ 1007.699422][T16118] chnl_net:caif_netlink_parms(): no params data found
[ 1008.404025][T16118] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1008.411361][T16118] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1008.418723][T16118] bridge_slave_0: entered allmulticast mode
[ 1008.427501][T16118] bridge_slave_0: entered promiscuous mode
[ 1008.440806][T16118] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1008.448037][T16118] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1008.456114][T16118] bridge_slave_1: entered allmulticast mode
[ 1008.463018][T16118] bridge_slave_1: entered promiscuous mode
[ 1008.569530][T16118] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1008.581366][T16118] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1008.612550][T16118] team0: Port device team_slave_0 added
[ 1008.619515][T16118] team0: Port device team_slave_1 added
[ 1008.668828][T16118] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1008.675884][T16118] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1008.727459][T16118] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1008.745916][T16118] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1008.759812][T16118] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1008.760837][   T30] audit: type=1400 audit(2000000830.730:739): avc:  granted  { setsecparam } for  pid=16150 comm="syz.4.2616" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[ 1008.808221][T16118] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1008.885976][T16118] hsr_slave_0: entered promiscuous mode
[ 1008.892772][T16118] hsr_slave_1: entered promiscuous mode
[ 1008.909298][T16118] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1008.917183][T16118] Cannot create hsr debugfs directory
[ 1009.180358][ T5140] Bluetooth: hci1: command 0x041b tx timeout
[ 1010.018320][T16118] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1010.028064][T16118] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1010.037077][T16118] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1010.045743][T16118] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1010.100448][T16118] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1010.115742][T16118] 8021q: adding VLAN 0 to HW filter on device team0
[ 1010.127075][ T2898] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1010.134184][ T2898] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1010.146932][T10117] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1010.154020][T10117] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1010.308476][T16118] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1010.364805][T16118] veth0_vlan: entered promiscuous mode
[ 1010.385169][T16118] veth1_vlan: entered promiscuous mode
[ 1010.415732][T16118] veth0_macvtap: entered promiscuous mode
[ 1010.426237][T16118] veth1_macvtap: entered promiscuous mode
[ 1010.446241][T16118] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1010.458080][T16169] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1010.469367][T16169] mapping of prio or/and queue is allowed only from OUTPUT/FORWARD/POSTROUTING chains
[ 1010.471578][T16118] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1010.493509][T16118] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1010.506431][T16118] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1010.515743][T16118] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1010.524645][T16118] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1010.665621][T10111] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1010.690588][T10111] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1010.828234][T16177] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1010.848245][T10111] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1010.856165][T10111] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1011.295402][ T5140] Bluetooth: hci1: command 0x041b tx timeout
[ 1013.639900][   T30] audit: type=1400 audit(2000000835.600:740): avc:  granted  { setsecparam } for  pid=16192 comm="syz.2.2627" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[ 1013.855128][ T5819] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1013.867718][ T5819] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1013.876156][ T5819] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1013.884708][ T5819] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1013.892646][ T5819] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1014.012261][T16212] sd 0:0:1:0: device reset
[ 1014.250668][T16210] lo speed is unknown, defaulting to 1000
[ 1014.504801][T16210] chnl_net:caif_netlink_parms(): no params data found
[ 1014.642445][T16219] fuse: Bad value for 'fd'
[ 1015.104730][T10111] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1015.210184][T16210] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1015.285490][T16210] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1015.292830][T16210] bridge_slave_0: entered allmulticast mode
[ 1015.301623][T16210] bridge_slave_0: entered promiscuous mode
[ 1015.308634][T16210] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1015.316386][T16210] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1015.323865][T16210] bridge_slave_1: entered allmulticast mode
[ 1015.331360][T16210] bridge_slave_1: entered promiscuous mode
[ 1015.353274][T16210] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1015.364397][T16210] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1015.392350][T16210] team0: Port device team_slave_0 added
[ 1015.401587][T16210] team0: Port device team_slave_1 added
[ 1015.422400][T16210] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1015.429346][T16210] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1015.455955][T16210] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1015.468408][T16210] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1015.475463][T16210] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1015.504013][T16210] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1015.541213][T16210] hsr_slave_0: entered promiscuous mode
[ 1015.547182][T16210] hsr_slave_1: entered promiscuous mode
[ 1015.553983][T16210] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1015.561588][T16210] Cannot create hsr debugfs directory
[ 1015.661921][T16210] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1015.672807][T16210] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1015.682649][T16210] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1015.692219][T16210] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1015.745681][T16210] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1015.766270][T16210] 8021q: adding VLAN 0 to HW filter on device team0
[ 1015.776737][ T6110] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1015.783880][ T6110] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1015.797330][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1015.804455][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1015.934279][T16210] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1015.980541][ T5140] Bluetooth: hci1: command tx timeout
[ 1016.958280][ T5819] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1016.967814][ T5819] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1016.978068][ T5819] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1016.989990][ T5819] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1016.997586][ T5819] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1017.077811][T16210] veth0_vlan: entered promiscuous mode
[ 1017.110463][T16210] veth1_vlan: entered promiscuous mode
[ 1017.194756][T16243] lo speed is unknown, defaulting to 1000
[ 1017.207136][T16210] veth0_macvtap: entered promiscuous mode
[ 1017.228930][   T30] audit: type=1400 audit(2000000839.190:741): avc:  denied  { append } for  pid=16245 comm="syz.0.2636" name="event0" dev="devtmpfs" ino=919 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[ 1017.625602][T10111] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1017.751036][T16210] veth1_macvtap: entered promiscuous mode
[ 1018.207075][ T5819] Bluetooth: hci1: command tx timeout
[ 1018.424468][T10111] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1018.770719][T10111] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1019.020285][ T5819] Bluetooth: hci5: command tx timeout
[ 1019.173239][T16210] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1019.467347][T16210] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1019.568464][T16276] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1019.637372][T16210] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1019.745491][T16210] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1019.923995][T16210] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1019.942566][T16281] netlink: 348 bytes leftover after parsing attributes in process `syz.2.2644'.
[ 1019.953999][T16210] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1020.207315][   T30] audit: type=1400 audit(2000000842.140:742): avc:  granted  { setsecparam } for  pid=16277 comm="syz.0.2643" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[ 1020.252383][ T5819] Bluetooth: hci1: command tx timeout
[ 1020.724838][T16243] chnl_net:caif_netlink_parms(): no params data found
[ 1020.761181][T10111] bridge_slave_1: left allmulticast mode
[ 1020.776169][T10111] bridge_slave_1: left promiscuous mode
[ 1020.786707][T10111] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1020.799320][T10111] bridge_slave_0: left allmulticast mode
[ 1020.807802][T10111] bridge_slave_0: left promiscuous mode
[ 1020.821040][T10111] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1021.109993][ T5819] Bluetooth: hci5: command 0x041b tx timeout
[ 1021.175836][T16299] netlink: 277 bytes leftover after parsing attributes in process `syz.2.2648'.
[ 1021.439068][T10111] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1021.450168][T10111] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1021.460434][T10111] bond0 (unregistering): Released all slaves
[ 1021.596530][T16243] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1021.604464][T16243] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1021.646352][T16243] bridge_slave_0: entered allmulticast mode
[ 1021.738669][T16243] bridge_slave_0: entered promiscuous mode
[ 1021.822928][ T2898] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1022.065010][ T2898] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1022.104859][T16243] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1022.128184][T16243] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1022.139148][T16243] bridge_slave_1: entered allmulticast mode
[ 1022.149364][T16243] bridge_slave_1: entered promiscuous mode
[ 1022.300630][ T5819] Bluetooth: hci1: command tx timeout
[ 1022.884143][T10111] hsr_slave_0: left promiscuous mode
[ 1022.902978][T10111] hsr_slave_1: left promiscuous mode
[ 1022.911923][T10111] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1022.919430][T10111] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1022.930779][T10111] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1022.938256][T10111] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1022.961437][T10111] veth1_macvtap: left promiscuous mode
[ 1022.967097][T10111] veth0_macvtap: left promiscuous mode
[ 1022.975756][T10111] veth1_vlan: left promiscuous mode
[ 1022.981599][T10111] veth0_vlan: left promiscuous mode
[ 1023.201254][ T5819] Bluetooth: hci5: command 0x041b tx timeout
[ 1023.660830][T16329] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1024.316348][   T30] audit: type=1400 audit(2000000846.280:743): avc:  granted  { setsecparam } for  pid=16327 comm="syz.2.2655" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[ 1024.682891][T12890] libceph: connect (1)[c::]:6789 error -101
[ 1024.694625][T12890] libceph: mon0 (1)[c::]:6789 connect error
[ 1024.907043][T16338] ceph: No mds server is up or the cluster is laggy
[ 1024.970091][ T5904] libceph: connect (1)[c::]:6789 error -101
[ 1024.976208][ T5904] libceph: mon0 (1)[c::]:6789 connect error
[ 1025.260084][ T5819] Bluetooth: hci5: command 0x041b tx timeout
[ 1025.449255][T10111] team0 (unregistering): Port device team_slave_1 removed
[ 1025.533900][T10111] team0 (unregistering): Port device team_slave_0 removed
[ 1026.127288][T16243] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1026.148463][T10117] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1026.179491][T16243] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1026.188782][T10117] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1026.270753][T16243] team0: Port device team_slave_0 added
[ 1026.346187][T16243] team0: Port device team_slave_1 added
[ 1026.523758][T16243] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1027.011249][T16243] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1027.140938][T16243] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1027.164346][T16243] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1027.172363][T16243] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1027.198289][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1027.957956][ T5819] Bluetooth: hci5: command 0x041b tx timeout
[ 1028.190295][T16243] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1028.545952][T16376] netlink: 'syz.0.2662': attribute type 1 has an invalid length.
[ 1028.885205][T16243] hsr_slave_0: entered promiscuous mode
[ 1029.187232][T16390] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1029.223243][T16389] fuse: Bad value for 'fd'
[ 1029.811818][T16243] hsr_slave_1: entered promiscuous mode
[ 1029.817907][T16243] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1029.850110][T16243] Cannot create hsr debugfs directory
[ 1030.055481][T16394] loop2: detected capacity change from 0 to 7
[ 1030.065221][T16394] Dev loop2: unable to read RDB block 7
[ 1030.070962][T16394]  loop2: unable to read partition table
[ 1030.077394][T16394] loop2: partition table beyond EOD, truncated
[ 1030.148276][T16394] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[ 1032.750313][T16243] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1032.761459][T16243] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1032.775416][T16243] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1032.788014][T16243] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1032.941862][   T30] audit: type=1804 audit(2000000854.910:744): pid=16408 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.0.2671" name="/newroot/552/file0" dev="tmpfs" ino=2911 res=1 errno=0
[ 1032.946480][T16243] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1032.964295][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1033.037871][T16243] 8021q: adding VLAN 0 to HW filter on device team0
[ 1033.054390][T10117] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1033.060232][   T30] audit: type=1400 audit(2000000855.000:745): avc:  denied  { map } for  pid=16418 comm="syz.4.2673" path="socket:[48474]" dev="sockfs" ino=48474 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1
[ 1033.061503][T10117] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1033.084398][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1033.121426][T10117] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1033.128596][T10117] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1033.435307][T16243] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1033.476577][T16243] veth0_vlan: entered promiscuous mode
[ 1033.489315][T16243] veth1_vlan: entered promiscuous mode
[ 1033.525127][T16243] veth0_macvtap: entered promiscuous mode
[ 1033.548992][T16243] veth1_macvtap: entered promiscuous mode
[ 1033.585456][T16243] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1033.620719][T16243] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1033.635225][T16243] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1033.644531][T16243] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1033.653622][T16243] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1033.662866][T16243] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1033.844145][T10106] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1033.859497][T10106] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1034.014494][T10106] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1034.023902][T10106] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1034.116253][T16440] fuse: Bad value for 'fd'
[ 1034.636859][T16441] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[ 1034.667243][T16438] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[ 1035.410996][T16455] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1035.765661][T16456] loop6: detected capacity change from 0 to 524287999
[ 1035.793982][T16456] buffer_io_error: 6 callbacks suppressed
[ 1035.794015][T16456] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1035.898310][T16456] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1035.908525][T16456] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1035.919405][T16456] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1035.933224][T16456] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1036.320096][T16456] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1036.340185][T16456] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1036.380768][T16456] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1036.612850][T16466] netlink: 277 bytes leftover after parsing attributes in process `syz.2.2683'.
[ 1036.679770][T16467] capability: warning: `syz.2.2683' uses deprecated v2 capabilities in a way that may be insecure
[ 1036.736369][   T30] audit: type=1400 audit(2000000858.670:746): avc:  denied  { watch watch_reads } for  pid=16459 comm="syz.2.2683" path="/585" dev="tmpfs" ino=3061 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[ 1036.898159][T16456] ldm_validate_partition_table(): Disk read failed.
[ 1036.921912][T16470] fuse: Unknown parameter '0xffffffffffffffff017777777777777777777770000000000000000000000000000000000000000'
[ 1036.935647][T16470] fuse: Bad value for 'fd'
[ 1036.946137][T16456] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1036.954497][T16456] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1036.989296][T16456] Dev loop6: unable to read RDB block 0
[ 1037.179157][T16456]  loop6: unable to read partition table
[ 1037.321696][T16456] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x³˜CÖ

) failed (rc=-5)
[ 1038.421053][T16498] random: crng reseeded on system resumption
[ 1038.421576][   T30] audit: type=1400 audit(2000000860.390:747): avc:  denied  { append } for  pid=16496 comm="syz.2.2696" name="snapshot" dev="devtmpfs" ino=92 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[ 1038.458765][   T30] audit: type=1400 audit(2000000860.390:748): avc:  denied  { open } for  pid=16496 comm="syz.2.2696" path="/dev/snapshot" dev="devtmpfs" ino=92 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[ 1038.567970][T16507] binfmt_misc: register: failed to install interpreter file ./file1
[ 1038.785011][   T30] audit: type=1400 audit(2000000860.750:749): avc:  denied  { mount } for  pid=16522 comm="syz.4.2709" name="/" dev="configfs" ino=129 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[ 1038.839182][   T30] audit: type=1400 audit(2000000860.750:750): avc:  denied  { search } for  pid=16522 comm="syz.4.2709" name="/" dev="configfs" ino=129 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[ 1038.915343][   T30] audit: type=1400 audit(2000000860.750:751): avc:  denied  { search } for  pid=16522 comm="syz.4.2709" name="/" dev="configfs" ino=129 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[ 1038.934409][T16533] kernel read not supported for file /file1 (pid: 16533 comm: syz.4.2713)
[ 1038.969951][   T30] audit: type=1400 audit(2000000860.750:752): avc:  denied  { search } for  pid=16522 comm="syz.4.2709" name="/" dev="configfs" ino=129 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[ 1039.018010][   T30] audit: type=1400 audit(2000000860.750:753): avc:  denied  { add_name } for  pid=16522 comm="syz.4.2709" name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scontext=root:sysadm_r:sysadm_t
[ 1039.018104][   T30] audit: type=1400 audit(2000000860.750:754): avc:  denied  { create } for  pid=16522 comm="syz.4.2709" name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scontext=root:sysadm_r:sysadm_t t
[ 1039.160031][   T30] audit: type=1800 audit(2000000860.970:755): pid=16533 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.4.2713" name="file1" dev="mqueue" ino=48853 res=0 errno=0
[ 1039.403868][T10106] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1039.614962][T10106] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1039.674685][T10106] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1039.733831][T10106] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1039.822587][T10106] bridge_slave_1: left allmulticast mode
[ 1039.828251][T10106] bridge_slave_1: left promiscuous mode
[ 1039.834027][T10106] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1039.844910][T10106] bridge_slave_0: left allmulticast mode
[ 1039.850683][T10106] bridge_slave_0: left promiscuous mode
[ 1039.856346][T10106] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1040.062880][T10106] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1040.073725][T10106] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1040.083643][T10106] bond0 (unregistering): Released all slaves
[ 1040.330020][T16556] IPv6: Can't replace route, no match found
[ 1040.393952][T10106] hsr_slave_0: left promiscuous mode
[ 1040.449089][T10106] hsr_slave_1: left promiscuous mode
[ 1040.456333][T10106] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1040.467974][T10106] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1040.511224][T10106] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1040.530808][T10106] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1040.556081][   T30] audit: type=1400 audit(2000000862.520:756): avc:  denied  { read write } for  pid=16210 comm="syz-executor" name="loop5" dev="devtmpfs" ino=652 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[ 1040.596323][T10106] veth1_macvtap: left promiscuous mode
[ 1040.625676][T10106] veth0_macvtap: left promiscuous mode
[ 1040.633435][T10106] veth1_vlan: left promiscuous mode
[ 1040.638722][T10106] veth0_vlan: left promiscuous mode
[ 1040.737880][ T5140] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1040.747689][ T5140] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1040.757240][ T5140] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1040.766825][ T5140] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1040.774931][ T5140] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1041.581826][T16595] SELinux: syz.2.2740 (16595) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[ 1041.584913][T10106] team0 (unregistering): Port device team_slave_1 removed
[ 1041.649551][T10106] team0 (unregistering): Port device team_slave_0 removed
[ 1041.843381][T16608] futex_wake_op: syz.2.2745 tries to shift op by -1; fix this program
[ 1041.984354][T16613] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 1041.991631][T16613] IPv6: NLM_F_CREATE should be set when creating new route
[ 1042.308635][T16572] lo speed is unknown, defaulting to 1000
[ 1042.372375][T16569] lo speed is unknown, defaulting to 1000
[ 1042.392985][T16627] SELinux:  Context system_u:object_r:dhcp_state_t:s0 is not valid (left unmapped).
[ 1042.708546][T16629] futex_wake_op: syz.5.2755 tries to shift op by -1; fix this program
[ 1042.741610][T16635] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2756'.
[ 1043.169914][ T5140] Bluetooth: hci5: command tx timeout
[ 1043.229611][T16593] infiniband syz!: set active
[ 1043.237357][T16593] infiniband syz!: added team_slave_0
[ 1043.246600][T16593] syz!: rxe_create_cq: returned err = -12
[ 1043.258758][T16593] infiniband syz!: Couldn't create ib_mad CQ
[ 1043.265868][T16593] infiniband syz!: Couldn't open port 1
[ 1043.343100][T16593] RDS/IB: syz!: added
[ 1043.356864][T16593] smc: adding ib device syz! with port count 1
[ 1043.367453][T16593] smc:    ib device syz! port 1 has pnetid 
[ 1043.422963][T16569] chnl_net:caif_netlink_parms(): no params data found
[ 1043.495238][   T30] kauditd_printk_skb: 54 callbacks suppressed
[ 1043.495254][   T30] audit: type=1400 audit(2000000865.460:811): avc:  denied  { write } for  pid=16639 comm="syz.2.2757" name="vlan0" dev="proc" ino=4026533794 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[ 1043.603141][   T30] audit: type=1400 audit(2000000865.570:812): avc:  denied  { create } for  pid=16639 comm="syz.2.2757" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[ 1043.628713][T16646] netlink: 'syz.4.2758': attribute type 4 has an invalid length.
[ 1043.639062][T16569] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1043.651655][T16569] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1043.658822][T16569] bridge_slave_0: entered allmulticast mode
[ 1043.661170][ T5882] dvb-usb: did not find the firmware file 'dvb-usb-az6027-03.fw' (status -110). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[ 1043.667268][   T24] dvb-usb: did not find the firmware file 'dvb-usb-az6027-03.fw' (status -2). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[ 1043.696342][ T5906] dvb-usb: did not find the firmware file 'dvb-usb-az6027-03.fw' (status -2). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[ 1043.699897][ T5882] dvb_usb_az6027 4-1:0.0: probe with driver dvb_usb_az6027 failed with error -110
[ 1043.715128][ T5908] dvb-usb: did not find the firmware file 'dvb-usb-az6027-03.fw' (status -2). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[ 1043.737718][T16648] netlink: 'syz.4.2758': attribute type 4 has an invalid length.
[ 1043.747046][T16569] bridge_slave_0: entered promiscuous mode
[ 1043.759714][ T5906] dvb_usb_az6027 3-1:0.0: probe with driver dvb_usb_az6027 failed with error -2
[ 1043.770786][T16569] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1043.791666][T16569] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1043.798851][T16569] bridge_slave_1: entered allmulticast mode
[ 1043.804917][ T5908] dvb_usb_az6027 5-1:0.0: probe with driver dvb_usb_az6027 failed with error -2
[ 1043.814191][   T24] dvb_usb_az6027 1-1:0.0: probe with driver dvb_usb_az6027 failed with error -2
[ 1043.818123][ T5882] usb 4-1: USB disconnect, device number 34
[ 1043.825738][ T5906] usb 3-1: USB disconnect, device number 41
[ 1043.841171][ T5908] usb 5-1: USB disconnect, device number 40
[ 1043.856035][   T24] usb 1-1: USB disconnect, device number 34
[ 1043.877070][T16569] bridge_slave_1: entered promiscuous mode
[ 1044.112470][T16659] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2761'.
[ 1044.147948][   T30] audit: type=1400 audit(2000000866.110:813): avc:  denied  { create } for  pid=16661 comm="syz.4.2762" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[ 1044.188231][T16659] IPVS: Error joining to the multicast group
[ 1044.193324][   T30] audit: type=1400 audit(2000000866.110:814): avc:  denied  { setopt } for  pid=16661 comm="syz.4.2762" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[ 1044.221424][T16569] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1044.258876][T16569] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1044.281539][   T30] audit: type=1400 audit(2000000866.110:815): avc:  denied  { read } for  pid=16660 comm="syz.2.2763" name="rtc0" dev="devtmpfs" ino=922 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[ 1044.330199][   T30] audit: type=1400 audit(2000000866.110:816): avc:  denied  { open } for  pid=16660 comm="syz.2.2763" path="/dev/rtc0" dev="devtmpfs" ino=922 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[ 1044.354229][   T30] audit: type=1326 audit(2000000866.190:817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16661 comm="syz.4.2762" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f472758e969 code=0x0
[ 1044.377279][   T30] audit: type=1400 audit(2000000866.320:818): avc:  denied  { load_policy } for  pid=16661 comm="syz.4.2762" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[ 1044.425267][   T30] audit: type=1400 audit(2000000866.390:819): avc:  denied  { allowed } for  pid=16666 comm="syz.5.2764" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[ 1044.438514][T16569] team0: Port device team_slave_0 added
[ 1044.486977][   T30] audit: type=1400 audit(2000000866.440:820): avc:  denied  { create } for  pid=16666 comm="syz.5.2764" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[ 1044.498062][T16569] team0: Port device team_slave_1 added
[ 1044.576275][T16665] SELinux: failed to load policy
[ 1044.606946][T16569] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1044.616183][T16569] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1044.651487][T16569] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1044.669176][T16569] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1044.684849][T16569] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1044.751928][T16569] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1044.850714][T16569] hsr_slave_0: entered promiscuous mode
[ 1044.857040][T16569] hsr_slave_1: entered promiscuous mode
[ 1044.880298][T16569] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1044.899939][T16569] Cannot create hsr debugfs directory
[ 1045.192695][ T5140] Bluetooth: hci5: command tx timeout
[ 1045.199738][T16683] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2771'.
[ 1045.254383][T16683] veth2: entered promiscuous mode
[ 1045.270375][T16683] veth3: entered promiscuous mode
[ 1045.275556][T16683] veth3: entered allmulticast mode
[ 1045.649353][T16569] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1045.717587][T16569] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1045.738247][T16569] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1045.766184][T16569] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1045.991236][T16569] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1046.002138][T16712] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1046.009117][T16569] 8021q: adding VLAN 0 to HW filter on device team0
[ 1046.009522][T16712] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1046.044674][T16714] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2782'.
[ 1046.057620][T10106] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1046.064781][T10106] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1046.102318][T16714] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1046.118681][T16714] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1046.127841][T16714] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1046.225848][T10106] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1046.232993][T10106] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1046.275740][T16722] SELinux: syz.0.2786 (16722) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[ 1046.317476][T16569] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1046.527910][T16730] netlink: 'syz.2.2790': attribute type 10 has an invalid length.
[ 1046.577212][T16730] team0: Port device dummy0 added
[ 1046.716644][T16569] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1046.748974][T16747] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1046.781191][T16747] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1046.804184][T16569] veth0_vlan: entered promiscuous mode
[ 1046.835547][T16569] veth1_vlan: entered promiscuous mode
[ 1046.915478][T16569] veth0_macvtap: entered promiscuous mode
[ 1046.941777][T16569] veth1_macvtap: entered promiscuous mode
[ 1046.964414][T16757] sg_write: data in/out 268435417/14 bytes for SCSI command 0x0-- guessing data in;
[ 1046.964414][T16757]    program syz.0.2800 not setting count and/or reply_len properly
[ 1046.987700][T16569] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1046.998415][T16569] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1047.008409][T16759] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2802'.
[ 1047.033499][T16569] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1047.052718][T16569] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1047.076203][T16756] SELinux: failed to load policy
[ 1047.088575][T16569] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1047.117801][T16569] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1047.146627][T16759] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1047.165393][T16759] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1047.173954][T16759] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1047.262878][ T5140] Bluetooth: hci5: command tx timeout
[ 1047.345306][ T2898] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1047.387512][ T2898] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1047.437807][T16779] hub 1-0:1.0: USB hub found
[ 1047.447766][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1047.453951][T16779] hub 1-0:1.0: 1 port detected
[ 1047.457467][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1048.151134][T16802] lo speed is unknown, defaulting to 1000
[ 1048.520083][T16803] netlink: 256 bytes leftover after parsing attributes in process `syz.4.2818'.
[ 1048.530069][T16803] ksmbd: Unknown IPC event: 3, ignore.
[ 1048.563569][T16797] set match dimension is over the limit!
[ 1048.592174][   T30] kauditd_printk_skb: 123 callbacks suppressed
[ 1048.592191][   T30] audit: type=1400 audit(2000000870.530:944): avc:  denied  { setopt } for  pid=16795 comm="syz.4.2818" lport=58 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[ 1048.749594][   T30] audit: type=1400 audit(2000000870.710:945): avc:  denied  { read } for  pid=16807 comm="syz.5.2821" name="msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[ 1049.123581][   T30] audit: type=1400 audit(2000000870.710:946): avc:  denied  { open } for  pid=16807 comm="syz.5.2821" path="/dev/cpu/0/msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[ 1049.170121][   T30] audit: type=1400 audit(2000000870.900:947): avc:  denied  { read write } for  pid=16810 comm="syz.0.2822" name="virtual_nci" dev="devtmpfs" ino=698 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 1049.197328][   T30] audit: type=1400 audit(2000000870.900:948): avc:  denied  { open } for  pid=16810 comm="syz.0.2822" path="/dev/virtual_nci" dev="devtmpfs" ino=698 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 1049.223954][   T30] audit: type=1400 audit(2000000870.960:949): avc:  denied  { ioctl } for  pid=16810 comm="syz.0.2822" path="/dev/virtual_nci" dev="devtmpfs" ino=698 ioctlcmd=0x0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 1049.315597][   T30] audit: type=1400 audit(2000000871.250:950): avc:  denied  { allowed } for  pid=16818 comm="syz.2.2824" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[ 1049.338631][   T30] audit: type=1400 audit(2000000871.260:951): avc:  denied  { create } for  pid=16818 comm="syz.2.2824" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[ 1049.367116][   T30] audit: type=1400 audit(2000000871.260:952): avc:  denied  { map } for  pid=16818 comm="syz.2.2824" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=51412 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[ 1049.400332][   T30] audit: type=1400 audit(2000000871.260:953): avc:  denied  { read write } for  pid=16818 comm="syz.2.2824" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=51412 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[ 1050.205130][ T2898] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1050.224924][ T5819] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1050.243767][ T5819] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1050.252932][ T5819] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1050.263018][ T5819] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1050.272277][ T5819] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1050.313444][T16838] lo speed is unknown, defaulting to 1000
[ 1050.667060][T16838] chnl_net:caif_netlink_parms(): no params data found
[ 1050.774380][T16838] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1050.783647][T16838] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1050.795458][T16838] bridge_slave_0: entered allmulticast mode
[ 1050.803491][T16838] bridge_slave_0: entered promiscuous mode
[ 1050.815998][T16838] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1050.825033][T16838] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1050.835148][T16838] bridge_slave_1: entered allmulticast mode
[ 1050.843073][T16838] bridge_slave_1: entered promiscuous mode
[ 1050.877875][T16838] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1050.894899][T16838] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1050.935159][T16838] team0: Port device team_slave_0 added
[ 1050.946159][T16838] team0: Port device team_slave_1 added
[ 1050.987430][T16838] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1050.994439][T16838] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1051.020896][T16838] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1051.047021][T16838] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1051.065167][T16838] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1051.128906][T16838] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1052.211105][ T2898] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1052.245818][   T24] hid-generic 0000:0004:0000.001D: unknown main item tag 0x0
[ 1052.258777][   T24] hid-generic 0000:0004:0000.001D: unknown main item tag 0x0
[ 1052.276695][   T24] hid-generic 0000:0004:0000.001D: unknown main item tag 0x0
[ 1052.321253][ T5140] Bluetooth: hci4: command tx timeout
[ 1052.339273][   T24] hid-generic 0000:0004:0000.001D: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1052.476759][ T2898] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1052.539432][T16838] hsr_slave_0: entered promiscuous mode
[ 1052.553595][T16891] hub 6-0:1.0: USB hub found
[ 1052.559455][T16838] hsr_slave_1: entered promiscuous mode
[ 1052.567573][T16891] hub 6-0:1.0: 1 port detected
[ 1052.574308][T16838] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1052.595484][T16838] Cannot create hsr debugfs directory
[ 1052.741314][T16894] netlink: 'syz.5.2835': attribute type 10 has an invalid length.
[ 1052.759195][ T2898] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1052.810630][T16894] veth1_vlan: entered allmulticast mode
[ 1052.828689][T16894] team0: Device veth1_vlan failed to register rx_handler
[ 1053.025124][ T5819] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1053.038603][ T5819] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1053.049169][ T5819] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1053.058709][ T5819] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1053.066726][ T5819] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1053.081049][T16905] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2838'.
[ 1053.178893][T16838] netdevsim netdevsim2 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1053.178945][T16838] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1053.227829][T16901] lo speed is unknown, defaulting to 1000
[ 1053.228882][ T2898] bridge_slave_1: left allmulticast mode
[ 1053.228902][ T2898] bridge_slave_1: left promiscuous mode
[ 1053.229473][ T2898] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1053.239449][ T2898] bridge_slave_0: left allmulticast mode
[ 1053.239467][ T2898] bridge_slave_0: left promiscuous mode
[ 1053.239662][ T2898] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1053.547035][ T2898] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1053.557240][ T2898] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1053.567028][ T2898] bond0 (unregistering): Released all slaves
[ 1053.702081][T16838] netdevsim netdevsim2 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1053.719695][T16838] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1053.758851][T16907] batman_adv: batadv0: Adding interface: dummy0
[ 1053.771527][T16907] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1053.807442][T16907] batman_adv: batadv0: Interface activated: dummy0
[ 1053.837618][T16909] batadv0: mtu less than device minimum
[ 1053.846513][   T30] kauditd_printk_skb: 49 callbacks suppressed
[ 1053.846527][   T30] audit: type=1400 audit(2000000875.810:1003): avc:  denied  { mounton } for  pid=16922 comm="syz.4.2845" path="/593/bus" dev="tmpfs" ino=3145 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[ 1053.882082][T16909] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1053.893981][T16909] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1053.905450][T16909] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1053.916830][T16909] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1053.928270][T16909] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1053.939698][T16909] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1053.951243][T16909] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1053.962648][T16909] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1053.973488][T16909] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1053.997959][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[ 1054.003094][T16923] overlayfs: failed to resolve './bus': -2
[ 1054.069534][T16838] netdevsim netdevsim2 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1054.080863][T16838] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1054.230960][T16838] netdevsim netdevsim2 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1054.241798][T16838] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1054.379867][ T5819] Bluetooth: hci4: command tx timeout
[ 1054.528791][ T2898] hsr_slave_0: left promiscuous mode
[ 1054.541104][ T2898] hsr_slave_1: left promiscuous mode
[ 1054.559771][ T2898] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1054.567183][ T2898] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1054.580633][ T2898] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1054.588064][ T2898] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1054.588885][   T30] audit: type=1400 audit(2000000876.550:1004): avc:  denied  { create } for  pid=16953 comm="syz.0.2856" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 1054.620292][   T30] audit: type=1400 audit(2000000876.590:1005): avc:  denied  { ioctl } for  pid=16953 comm="syz.0.2856" path="socket:[51198]" dev="sockfs" ino=51198 ioctlcmd=0x89e1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 1054.667045][   T30] audit: type=1400 audit(2000000876.630:1006): avc:  denied  { name_bind } for  pid=16955 comm="syz.5.2857" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[ 1054.667207][ T2898] veth1_macvtap: left promiscuous mode
[ 1054.720810][   T30] audit: type=1400 audit(2000000876.630:1007): avc:  denied  { node_bind } for  pid=16955 comm="syz.5.2857" saddr=172.20.20.170 src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[ 1054.731908][ T2898] veth0_macvtap: left promiscuous mode
[ 1054.760101][ T2898] veth1_vlan: left promiscuous mode
[ 1054.765837][ T2898] veth0_vlan: left promiscuous mode
[ 1054.772119][   T30] audit: type=1400 audit(2000000876.740:1008): avc:  denied  { create } for  pid=16959 comm="syz.5.2859" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[ 1054.795011][   T30] audit: type=1400 audit(2000000876.740:1009): avc:  denied  { ioctl } for  pid=16959 comm="syz.5.2859" path="socket:[52240]" dev="sockfs" ino=52240 ioctlcmd=0x8906 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[ 1054.954459][T16964] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2860'.
[ 1055.028738][T16966] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 1055.036013][T16966] IPv6: NLM_F_CREATE should be set when creating new route
[ 1055.102755][ T5819] Bluetooth: hci0: command tx timeout
[ 1055.131477][   T30] audit: type=1400 audit(2000000877.100:1010): avc:  denied  { create } for  pid=16967 comm="syz.5.2862" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[ 1055.193645][   T30] audit: type=1400 audit(2000000877.100:1011): avc:  denied  { write } for  pid=16967 comm="syz.5.2862" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[ 1055.390635][T16979] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2866'.
[ 1055.399611][T16979] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2866'.
[ 1055.423836][T16979] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2866'.
[ 1055.434968][T16979] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2866'.
[ 1055.435367][ T2898] team0 (unregistering): Port device team_slave_1 removed
[ 1055.477875][ T2898] team0 (unregistering): Port device team_slave_0 removed
[ 1055.494912][   T30] audit: type=1400 audit(2000001133.468:1012): avc:  denied  { sys_module } for  pid=16980 comm="syz.0.2868" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[ 1055.840577][T16901] chnl_net:caif_netlink_parms(): no params data found
[ 1055.970917][T16838] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1055.995242][T16838] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1056.076698][T16838] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1056.141356][T16838] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1056.155527][T16901] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1056.163384][T16901] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1056.171251][T16901] bridge_slave_0: entered allmulticast mode
[ 1056.178396][T16901] bridge_slave_0: entered promiscuous mode
[ 1056.185530][T16901] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1056.192638][T16901] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1056.199902][T16901] bridge_slave_1: entered allmulticast mode
[ 1056.208164][T16901] bridge_slave_1: entered promiscuous mode
[ 1056.248555][T16901] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1056.260646][T16901] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1056.308417][T16901] team0: Port device team_slave_0 added
[ 1056.318829][T16901] team0: Port device team_slave_1 added
[ 1056.353939][T16901] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1056.361206][T16901] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1056.387998][T16901] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1056.402334][T16901] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1056.409283][T16901] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1056.437236][T16901] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1056.459834][ T5819] Bluetooth: hci4: command tx timeout
[ 1056.499437][T16901] hsr_slave_0: entered promiscuous mode
[ 1056.506525][T16901] hsr_slave_1: entered promiscuous mode
[ 1056.512920][T16901] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1056.521973][T16901] Cannot create hsr debugfs directory
[ 1056.755700][T17024] futex_wake_op: syz.4.2881 tries to shift op by -1; fix this program
[ 1056.884959][T17029] 9pnet_fd: Insufficient options for proto=fd
[ 1057.075448][T16838] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1057.135119][T16838] 8021q: adding VLAN 0 to HW filter on device team0
[ 1057.153230][T10113] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1057.160388][T10113] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1057.183480][ T5819] Bluetooth: hci0: command tx timeout
[ 1057.217974][T10119] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1057.225106][T10119] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1057.401950][T16838] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1057.435596][T16838] veth0_vlan: entered promiscuous mode
[ 1057.446316][T16838] veth1_vlan: entered promiscuous mode
[ 1057.468898][T16838] veth0_macvtap: entered promiscuous mode
[ 1057.478034][T16838] veth1_macvtap: entered promiscuous mode
[ 1057.495145][T16838] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1057.507939][T16838] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1057.518866][T16838] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1057.527685][T16838] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1057.536732][T16838] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1057.546741][T16838] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1058.026615][T16901] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1058.054102][T16901] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1058.071283][T17060] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2894'.
[ 1058.090414][T17060] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2894'.
[ 1058.101994][T17060] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2894'.
[ 1058.113080][T17060] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2894'.
[ 1058.124991][T17060] netlink: 'syz.0.2894': attribute type 6 has an invalid length.
[ 1058.133196][T16901] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1058.133732][T17063] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=17063 comm=syz.0.2894
[ 1058.158239][T16901] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1058.233467][T10113] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1058.253857][T10113] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1058.320460][ T2898] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1058.339738][ T2898] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1058.444615][T16901] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1058.491305][T16901] 8021q: adding VLAN 0 to HW filter on device team0
[ 1058.512803][ T2898] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1058.519970][ T2898] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1058.542697][ T5819] Bluetooth: hci4: command tx timeout
[ 1058.577315][T10113] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1058.584403][T10113] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1058.621301][T17081] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2902'.
[ 1058.885629][   T30] kauditd_printk_skb: 351 callbacks suppressed
[ 1058.885646][   T30] audit: type=1400 audit(2000001136.848:1364): avc:  denied  { setopt } for  pid=17094 comm="syz.5.2909" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[ 1059.149747][   T30] audit: type=1400 audit(2000001137.108:1365): avc:  denied  { sqpoll } for  pid=17089 comm="syz.0.2906" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[ 1059.259821][ T5819] Bluetooth: hci0: command tx timeout
[ 1059.275670][T16901] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1059.575991][T16901] veth0_vlan: entered promiscuous mode
[ 1059.597123][T16901] veth1_vlan: entered promiscuous mode
[ 1059.735242][T16901] veth0_macvtap: entered promiscuous mode
[ 1059.757379][T16901] veth1_macvtap: entered promiscuous mode
[ 1059.812686][T16901] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1059.849534][T16901] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1059.896448][T16901] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1059.925733][T16901] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1059.957890][T16901] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1059.980268][T16901] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1060.098532][T17141] __nla_validate_parse: 1 callbacks suppressed
[ 1060.098550][T17141] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2912'.
[ 1060.185103][T17102] syz.2.2911: vmalloc error: size 1075838976, failed to allocated page array size 2101248, mode:0x400dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 1060.223609][   T30] audit: type=1400 audit(2000001138.188:1366): avc:  denied  { firmware_load } for  pid=17140 comm="syz.0.2912" path="/lib/firmware/regulatory.db" dev="sda1" ino=448 scontext=system_u:system_r:kernel_t tcontext=system_u:object_r:lib_t tclass=system permissive=1
[ 1060.224940][T17108] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1060.263427][T17108] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1060.275486][T17102] CPU: 1 UID: 0 PID: 17102 Comm: syz.2.2911 Not tainted 6.15.0-syzkaller-11220-gf5164456c604 #0 PREEMPT(full) 
[ 1060.275512][T17102] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1060.275523][T17102] Call Trace:
[ 1060.275529][T17102]  <TASK>
[ 1060.275536][T17102]  dump_stack_lvl+0x16c/0x1f0
[ 1060.275577][T17102]  warn_alloc+0x248/0x3a0
[ 1060.275607][T17102]  ? __pfx_warn_alloc+0x10/0x10
[ 1060.275647][T17102]  ? hash_netiface_create+0x3ec/0x1250
[ 1060.275676][T17102]  ? __vmalloc_node_noprof+0xad/0xf0
[ 1060.275704][T17102]  __vmalloc_node_range_noprof+0x101b/0x14b0
[ 1060.275725][T17102]  ? nfnetlink_rcv_msg+0x9f9/0x1200
[ 1060.275759][T17102]  ? hash_netiface_create+0x3ec/0x1250
[ 1060.275796][T17102]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1060.275819][T17102]  ? __alloc_pages_noprof+0xb/0x1b0
[ 1060.275844][T17102]  ? ___kmalloc_large_node+0x84/0x1e0
[ 1060.275872][T17102]  __kvmalloc_node_noprof+0x308/0x620
[ 1060.275896][T17102]  ? hash_netiface_create+0x3ec/0x1250
[ 1060.275926][T17102]  ? hash_netiface_create+0x3ec/0x1250
[ 1060.275961][T17102]  ? hash_netiface_create+0x3ec/0x1250
[ 1060.275987][T17102]  hash_netiface_create+0x3ec/0x1250
[ 1060.276018][T17102]  ? __pfx___nla_validate+0xb/0x10
[ 1060.276045][T17102]  ? __pfx_hash_netiface_create+0x10/0x10
[ 1060.276077][T17102]  ip_set_create+0x7e1/0x14d0
[ 1060.276112][T17102]  ? __pfx_ip_set_create+0x10/0x10
[ 1060.276161][T17102]  ? find_held_lock+0x2b/0x80
[ 1060.276193][T17102]  nfnetlink_rcv_msg+0x9f9/0x1200
[ 1060.276228][T17102]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[ 1060.276258][T17102]  ? __lock_acquire+0x622/0x1c90
[ 1060.276312][T17102]  ? avc_has_perm_noaudit+0x149/0x3b0
[ 1060.276345][T17102]  netlink_rcv_skb+0x158/0x420
[ 1060.276368][T17102]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[ 1060.276396][T17102]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1060.276432][T17102]  ? ns_capable+0xd7/0x110
[ 1060.276458][T17102]  nfnetlink_rcv+0x1b3/0x430
[ 1060.276483][T17102]  ? __pfx_nfnetlink_rcv+0x10/0x10
[ 1060.276506][T17102]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1060.276533][T17102]  netlink_unicast+0x53a/0x7f0
[ 1060.276558][T17102]  ? __pfx_netlink_unicast+0x10/0x10
[ 1060.276595][T17102]  netlink_sendmsg+0x8d1/0xdd0
[ 1060.276622][T17102]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1060.276658][T17102]  ____sys_sendmsg+0xa95/0xc70
[ 1060.276683][T17102]  ? copy_msghdr_from_user+0x10a/0x160
[ 1060.276712][T17102]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1060.276743][T17102]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1060.276769][T17102]  ___sys_sendmsg+0x134/0x1d0
[ 1060.276800][T17102]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1060.276826][T17102]  ? __lock_acquire+0x622/0x1c90
[ 1060.276895][T17102]  __sys_sendmsg+0x16d/0x220
[ 1060.276925][T17102]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1060.276953][T17102]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1060.276999][T17102]  do_syscall_64+0xcd/0x4c0
[ 1060.277019][T17102]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1060.277039][T17102] RIP: 0033:0x7f82b238e969
[ 1060.277054][T17102] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1060.277072][T17102] RSP: 002b:00007f82b3201038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1060.277091][T17102] RAX: ffffffffffffffda RBX: 00007f82b25b5fa0 RCX: 00007f82b238e969
[ 1060.277103][T17102] RDX: 0000000004000000 RSI: 0000200000000040 RDI: 0000000000000003
[ 1060.277115][T17102] RBP: 00007f82b2410ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1060.277127][T17102] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1060.277138][T17102] R13: 0000000000000000 R14: 00007f82b25b5fa0 R15: 00007ffe497f3a48
[ 1060.277165][T17102]  </TASK>
[ 1060.277172][T17102] Mem-Info:
[ 1060.321552][T17135] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1060.336671][T17102] active_anon:4462 inactive_anon:0 isolated_anon:0
[ 1060.336671][T17102]  active_file:18291 inactive_file:41329 isolated_file:0
[ 1060.336671][T17102]  unevictable:768 dirty:87 writeback:0
[ 1060.336671][T17102]  slab_reclaimable:12234 slab_unreclaimable:107357
[ 1060.336671][T17102]  mapped:30080 shmem:1380 pagetables:1176
[ 1060.336671][T17102]  sec_pagetables:0 bounce:0
[ 1060.336671][T17102]  kernel_misc_reclaimable:0
[ 1060.336671][T17102]  free:1246668 free_pcp:30296 free_cma:0
[ 1060.427187][T17135] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1060.430983][T17102] Node 0 active_anon:17764kB inactive_anon:0kB active_file:72996kB inactive_file:165052kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:120112kB dirty:376kB writeback:0kB shmem:3932kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12172kB pagetables:4688kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1060.536912][   T30] audit: type=1400 audit(2000001138.498:1367): avc:  denied  { create } for  pid=17146 comm="syz.4.2915" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[ 1060.553287][T17102] Node 1 active_anon:0kB inactive_anon:0kB active_file:168kB inactive_file:264kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:180kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:144kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1060.687691][   T30] audit: type=1400 audit(2000001138.648:1368): avc:  denied  { read } for  pid=17146 comm="syz.4.2915" name="ptp0" dev="devtmpfs" ino=1266 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[ 1060.829893][T17102] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1060.873912][T17102] lowmem_reserve[]: 0 2481 2482 2482 2482
[ 1060.879798][T17102] Node 0 DMA32 free:1052880kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:31332kB inactive_anon:0kB active_file:72996kB inactive_file:163740kB unevictable:1536kB writepending:376kB present:3129332kB managed:2540812kB mlocked:0kB bounce:0kB free_pcp:105960kB local_pcp:31684kB free_cma:0kB
[ 1060.922421][T17102] lowmem_reserve[]: 0 0 1 1 1
[ 1060.927228][T17102] Node 0 Normal free:8kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:32kB inactive_anon:0kB active_file:0kB inactive_file:1312kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:36kB local_pcp:8kB free_cma:0kB
[ 1060.972301][   T30] audit: type=1400 audit(2000001138.678:1369): avc:  denied  { open } for  pid=17146 comm="syz.4.2915" path="/dev/ptp0" dev="devtmpfs" ino=1266 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[ 1061.007156][T17102] lowmem_reserve[]: 0 0 0 0 0
[ 1061.026208][T17102] Node 1 Normal free:3917656kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:168kB inactive_file:264kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:500kB local_pcp:0kB free_cma:0kB
[ 1061.057388][   T30] audit: type=1400 audit(2000001138.678:1370): avc:  denied  { ioctl } for  pid=17146 comm="syz.4.2915" path="/dev/ptp0" dev="devtmpfs" ino=1266 ioctlcmd=0x3d05 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[ 1061.104143][T17102] lowmem_reserve[]: 0 0 0 0 0
[ 1061.105681][   T30] audit: type=1400 audit(2000001138.678:1371): avc:  denied  { read } for  pid=17146 comm="syz.4.2915" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[ 1061.108887][T17102] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1061.244106][   T30] audit: type=1400 audit(2000001138.728:1372): avc:  denied  { create } for  pid=17150 comm="syz.0.2916" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[ 1061.263981][T17102] Node 0 DMA32: 0*4kB 2*8kB (UE) 736*16kB (M) 418*32kB (M) 190*64kB (ME) 118*128kB (UM) 46*256kB (M) 13*512kB (ME) 21*1024kB (UM) 9*2048kB (ME) 230*4096kB (M) = 1052880kB
[ 1061.311829][   T30] audit: type=1400 audit(2000001138.728:1373): avc:  denied  { write } for  pid=17146 comm="syz.4.2915" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[ 1061.353141][T17102] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 
[ 1061.522254][T17102] 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB
[ 1061.549288][T17102] Node 1 Normal: 11*4kB (UME) 5*8kB (UME) 18*16kB (UME) 191*32kB (UME) 92*64kB (UME) 30*128kB (UME) 11*256kB (UME) 7*512kB (UME) 4*1024kB (ME) 2*2048kB (UM) 949*4096kB (M) = 3917908kB
[ 1061.748503][T17102] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1062.041016][T17102] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1062.079836][T17102] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1062.103344][T17102] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1062.167563][T17102] 63854 total pagecache pages
[ 1062.191178][T17102] 0 pages in swap cache
[ 1062.195362][T17102] Free swap  = 124996kB
[ 1062.199508][T17102] Total swap = 124996kB
[ 1062.263076][T17102] 2097051 pages RAM
[ 1062.272638][T17102] 0 pages HighMem/MovableOnly
[ 1062.277695][T17102] 429870 pages reserved
[ 1062.287837][T17102] 0 pages cma reserved
[ 1062.381945][T17184] SELinux: failed to load policy
[ 1062.894665][T17201] binfmt_misc: register: failed to install interpreter file ./file0
[ 1062.965311][T17203] syzkaller1: entered promiscuous mode
[ 1062.984685][T17203] syzkaller1: entered allmulticast mode
[ 1063.215863][T17129] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1063.719461][T17129] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1063.809227][T17129] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1063.895254][T17129] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1064.056688][T17129] bridge_slave_1: left allmulticast mode
[ 1064.062746][T17129] bridge_slave_1: left promiscuous mode
[ 1064.068554][T17129] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1064.081551][T17129] bridge_slave_0: left allmulticast mode
[ 1064.087205][T17129] bridge_slave_0: left promiscuous mode
[ 1064.097877][T17129] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1064.546899][   T30] kauditd_printk_skb: 31 callbacks suppressed
[ 1064.546915][   T30] audit: type=1400 audit(2000001142.508:1405): avc:  denied  { execmem } for  pid=17208 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 1064.642329][   T30] audit: type=1400 audit(2000001142.558:1406): avc:  denied  { create } for  pid=17209 comm="syz.4.2936" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[ 1064.725695][   T30] audit: type=1400 audit(2000001142.558:1407): avc:  denied  { setopt } for  pid=17209 comm="syz.4.2936" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[ 1064.773557][T17129] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1064.797819][   T30] audit: type=1400 audit(2000001142.578:1408): avc:  denied  { create } for  pid=17211 comm="syz.5.2935" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[ 1064.837379][T17129] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1064.864044][   T30] audit: type=1400 audit(2000001142.588:1409): avc:  denied  { write } for  pid=17211 comm="syz.5.2935" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[ 1064.898424][T17129] bond0 (unregistering): Released all slaves
[ 1064.918250][   T30] audit: type=1400 audit(2000001142.588:1410): avc:  denied  { create } for  pid=17213 comm="syz.0.2933" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[ 1064.956692][   T30] audit: type=1400 audit(2000001142.588:1411): avc:  denied  { write } for  pid=17213 comm="syz.0.2933" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[ 1064.989678][   T30] audit: type=1400 audit(2000001142.588:1412): avc:  denied  { nlmsg_write } for  pid=17213 comm="syz.0.2933" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[ 1065.091088][   T30] audit: type=1400 audit(2000001142.588:1413): avc:  denied  { allowed } for  pid=17212 comm="syz.2.2934" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[ 1065.196418][   T30] audit: type=1400 audit(2000001142.588:1414): avc:  denied  { create } for  pid=17212 comm="syz.2.2934" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[ 1065.233062][ T5140] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1065.247771][ T5140] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1065.263925][ T5140] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1065.275133][ T5140] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1065.285558][ T5140] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1065.440593][T17249] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[ 1065.486194][T17246] lo speed is unknown, defaulting to 1000
[ 1065.613863][T17238] lo speed is unknown, defaulting to 1000
[ 1065.940753][T17272] SELinux: failed to load policy
[ 1066.254036][T17292] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2968'.
[ 1066.645251][T17129] hsr_slave_0: left promiscuous mode
[ 1066.655587][T17129] hsr_slave_1: left promiscuous mode
[ 1066.665314][T17129] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1066.672867][T17129] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1066.690407][T17129] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1066.720276][T17129] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1066.763586][T17129] veth1_macvtap: left promiscuous mode
[ 1066.769134][T17129] veth0_macvtap: left promiscuous mode
[ 1066.791535][T17129] veth1_vlan: left promiscuous mode
[ 1066.799769][T17129] veth0_vlan: left promiscuous mode
[ 1067.351041][ T5140] Bluetooth: hci0: command tx timeout
[ 1067.824857][T17129] team0 (unregistering): Port device team_slave_1 removed
[ 1067.956785][T17352] netlink: 256 bytes leftover after parsing attributes in process `syz.2.2993'.
[ 1067.965947][T17352] ksmbd: Unknown IPC event: 3, ignore.
[ 1068.266787][T17129] team0 (unregistering): Port device team_slave_0 removed
[ 1068.619219][T17351] lo speed is unknown, defaulting to 1000
[ 1068.917274][T17364] lo speed is unknown, defaulting to 1000
[ 1069.018970][T17238] chnl_net:caif_netlink_parms(): no params data found
[ 1069.419802][ T5140] Bluetooth: hci0: command tx timeout
[ 1069.473201][T17238] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1069.480474][T17238] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1069.487655][T17238] bridge_slave_0: entered allmulticast mode
[ 1069.495662][T17238] bridge_slave_0: entered promiscuous mode
[ 1069.545996][T17238] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1069.554509][T17238] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1069.562012][T17238] bridge_slave_1: entered allmulticast mode
[ 1069.569340][T17238] bridge_slave_1: entered promiscuous mode
[ 1069.662942][   T30] kauditd_printk_skb: 154 callbacks suppressed
[ 1069.662959][   T30] audit: type=1326 audit(2000001147.628:1569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17377 comm="syz.0.3004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0bd598e969 code=0x7ffc0000
[ 1069.672192][T17378] sd 0:0:1:0: device reset
[ 1070.184002][   T30] audit: type=1326 audit(2000001147.628:1570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17377 comm="syz.0.3004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0bd598e969 code=0x7ffc0000
[ 1070.249796][   T30] audit: type=1326 audit(2000001147.628:1571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17377 comm="syz.0.3004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0bd598d2d0 code=0x7ffc0000
[ 1070.376224][T17238] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1070.387904][   T30] audit: type=1326 audit(2000001147.628:1572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17377 comm="syz.0.3004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0bd598e969 code=0x7ffc0000
[ 1070.417938][T17238] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1070.443555][   T30] audit: type=1326 audit(2000001147.628:1573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17377 comm="syz.0.3004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0bd598e969 code=0x7ffc0000
[ 1070.532286][   T30] audit: type=1326 audit(2000001147.628:1574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17377 comm="syz.0.3004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f0bd598e969 code=0x7ffc0000
[ 1070.606570][   T30] audit: type=1400 audit(2000001147.628:1575): avc:  denied  { ioctl } for  pid=17377 comm="syz.0.3004" path="/dev/sg0" dev="devtmpfs" ino=772 ioctlcmd=0x2284 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[ 1070.690605][   T30] audit: type=1326 audit(2000001147.898:1576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17377 comm="syz.0.3004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0bd598e969 code=0x7ffc0000
[ 1070.757987][   T30] audit: type=1326 audit(2000001147.998:1577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17377 comm="syz.0.3004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0bd598e969 code=0x7ffc0000
[ 1070.819740][   T30] audit: type=1400 audit(2000001148.688:1578): avc:  denied  { execute } for  pid=17411 comm="syz.0.3014" name="file0" dev="tmpfs" ino=3256 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[ 1070.873166][T17238] team0: Port device team_slave_0 added
[ 1070.900944][T17238] team0: Port device team_slave_1 added
[ 1070.903991][T17418] netlink: 'syz.0.3017': attribute type 21 has an invalid length.
[ 1071.019911][T17418] netlink: 132 bytes leftover after parsing attributes in process `syz.0.3017'.
[ 1071.071732][T17238] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1071.078695][T17238] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1071.122338][T17238] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1071.140953][T17427] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3021'.
[ 1071.154682][T17238] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1071.183630][T17238] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1071.243796][T17433] SELinux:  policydb magic number 0x7665642f does not match expected magic number 0xf97cff8c
[ 1071.256313][T17238] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1071.269160][T17433] SELinux: failed to load policy
[ 1071.467631][T17238] hsr_slave_0: entered promiscuous mode
[ 1071.488161][T17238] hsr_slave_1: entered promiscuous mode
[ 1071.499950][ T5140] Bluetooth: hci0: command tx timeout
[ 1071.512855][T17238] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1071.522945][T17238] Cannot create hsr debugfs directory
[ 1071.749813][T17456] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.3034'.
[ 1071.777291][T17456] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3034'.
[ 1071.870695][T17461] SELinux:  policydb magic number 0x7665642f does not match expected magic number 0xf97cff8c
[ 1071.900714][T17461] SELinux: failed to load policy
[ 1072.068031][T17470] 9pnet_virtio: no channels available for device 127.0.0.1
[ 1072.371176][T17483] netlink: 268 bytes leftover after parsing attributes in process `syz.4.3045'.
[ 1072.413117][T17483] unsupported nla_type 65024
[ 1078.001157][ T5140] Bluetooth: hci0: command tx timeout
[ 1183.019558][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[ 1183.026536][    C0] rcu: 	1-...!: (3 ticks this GP) idle=9d1c/1/0x4000000000000000 softirq=87180/87180 fqs=3
[ 1183.037383][    C0] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P5821/1:b.el
[ 1183.045294][    C0] rcu: 	(detected by 0, t=10502 jiffies, g=65997, q=628 ncpus=2)
[ 1183.053008][    C0] Sending NMI from CPU 0 to CPUs 1:
[ 1183.053032][    C1] NMI backtrace for cpu 1
[ 1183.053044][    C1] CPU: 1 UID: 0 PID: 17129 Comm: kworker/u8:35 Not tainted 6.15.0-syzkaller-11220-gf5164456c604 #0 PREEMPT(full) 
[ 1183.053062][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1183.053072][    C1] Workqueue: events_unbound cfg80211_wiphy_work
[ 1183.053092][    C1] RIP: 0010:kasan_check_range+0x146/0x1b0
[ 1183.053108][    C1] Code: 83 c0 01 49 89 d3 48 39 d0 74 11 80 38 00 74 ef 4d 8d 1c 2c 48 89 c2 48 85 c0 75 ad 48 89 da 4c 89 d8 4c 29 da e9 46 ff ff ff <48> 85 d2 74 18 48 01 ea eb 09 48 83 c0 01 48 39 d0 74 0a 80 38 00
[ 1183.053122][    C1] RSP: 0018:ffffc90000a08e08 EFLAGS: 00000083
[ 1183.053132][    C1] RAX: fffffbfff214f9ea RBX: fffffbfff214f9eb RCX: ffffffff81a8c532
[ 1183.053142][    C1] RDX: 0000000000000001 RSI: 0000000000000008 RDI: ffffffff90a7cf50
[ 1183.053150][    C1] RBP: fffffbfff214f9ea R08: 0000000000000000 R09: fffffbfff214f9ea
[ 1183.053159][    C1] R10: ffffffff90a7cf57 R11: 0000000000000001 R12: ffff8880b8527c80
[ 1183.053167][    C1] R13: 0000010acbc57000 R14: ffff8880789a4340 R15: 0000000000000001
[ 1183.053176][    C1] FS:  0000000000000000(0000) GS:ffff888124863000(0000) knlGS:0000000000000000
[ 1183.053191][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1183.053200][    C1] CR2: 00007f47282e56c0 CR3: 000000000e382000 CR4: 00000000003526f0
[ 1183.053209][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1183.053217][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1183.053225][    C1] Call Trace:
[ 1183.053231][    C1]  <IRQ>
[ 1183.053239][    C1]  trace_hrtimer_cancel+0x52/0x200
[ 1183.053255][    C1]  __hrtimer_run_queues+0x477/0xad0
[ 1183.053273][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[ 1183.053287][    C1]  ? read_tsc+0x9/0x20
[ 1183.053305][    C1]  hrtimer_interrupt+0x397/0x8e0
[ 1183.053324][    C1]  __sysvec_apic_timer_interrupt+0x108/0x3f0
[ 1183.053346][    C1]  sysvec_apic_timer_interrupt+0x9f/0xc0
[ 1183.053365][    C1]  </IRQ>
[ 1183.053370][    C1]  <TASK>
[ 1183.053375][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1183.053390][    C1] RIP: 0010:unwind_next_frame+0x3cf/0x20a0
[ 1183.053403][    C1] Code: 69 16 00 00 41 c6 45 34 01 48 b8 00 00 00 00 00 fc ff df 4c 89 ea 48 c1 ea 03 0f b6 04 02 84 c0 74 08 3c 03 0f 8e 10 15 00 00 <41> c7 45 00 00 00 00 00 31 ed e8 02 86 12 0a 85 c0 0f 85 a7 06 00
[ 1183.053415][    C1] RSP: 0018:ffffc900046deb28 EFLAGS: 00000246
[ 1183.053426][    C1] RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffffff9136bdca
[ 1183.053434][    C1] RDX: 1ffff920008dbd73 RSI: 0000000000000000 RDI: ffffffff90b503e0
[ 1183.053443][    C1] RBP: ffffc900046debe0 R08: ffffffff9136bdf4 R09: 0000000000000000
[ 1183.053452][    C1] R10: 0000000000000000 R11: 0000000000002c00 R12: ffffc900046debe8
[ 1183.053461][    C1] R13: ffffc900046deb98 R14: ffffc900046debcd R15: ffffffff9136bdcf
[ 1183.053476][    C1]  ? unwind_next_frame+0x2ec/0x20a0
[ 1183.053488][    C1]  ? ret_from_fork_asm+0x1a/0x30
[ 1183.053504][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 1183.053523][    C1]  arch_stack_walk+0x94/0x100
[ 1183.053537][    C1]  ? ret_from_fork_asm+0x1a/0x30
[ 1183.053552][    C1]  ? ieee802_11_parse_elems_full+0x1d7/0x3780
[ 1183.053571][    C1]  stack_trace_save+0x8e/0xc0
[ 1183.053587][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[ 1183.053607][    C1]  kasan_save_stack+0x33/0x60
[ 1183.053624][    C1]  ? kasan_save_stack+0x33/0x60
[ 1183.053640][    C1]  ? kasan_save_track+0x14/0x30
[ 1183.053656][    C1]  ? __kasan_kmalloc+0xaa/0xb0
[ 1183.053673][    C1]  ? __kmalloc_noprof+0x223/0x510
[ 1183.053696][    C1]  ? ieee802_11_parse_elems_full+0x1d7/0x3780
[ 1183.053714][    C1]  ? ieee80211_inform_bss+0x10b/0x1140
[ 1183.053731][    C1]  ? cfg80211_inform_single_bss_data+0x8ea/0x1df0
[ 1183.053745][    C1]  ? cfg80211_inform_bss_data+0x224/0x3bc0
[ 1183.053757][    C1]  ? cfg80211_inform_bss_frame_data+0x26e/0x7a0
[ 1183.053770][    C1]  ? ieee80211_bss_info_update+0x310/0xab0
[ 1183.053787][    C1]  ? ieee80211_ibss_rx_queued_mgmt+0x1905/0x2fd0
[ 1183.053804][    C1]  ? ieee80211_iface_work+0xbf4/0x1020
[ 1183.053821][    C1]  ? cfg80211_wiphy_work+0x3df/0x550
[ 1183.053835][    C1]  ? process_one_work+0x9cf/0x1b70
[ 1183.053848][    C1]  ? worker_thread+0x6c8/0xf10
[ 1183.053861][    C1]  ? kthread+0x3c5/0x780
[ 1183.053872][    C1]  ? ret_from_fork+0x5d4/0x6f0
[ 1183.053889][    C1]  ? ret_from_fork_asm+0x1a/0x30
[ 1183.053918][    C1]  kasan_save_track+0x14/0x30
[ 1183.053935][    C1]  __kasan_kmalloc+0xaa/0xb0
[ 1183.053953][    C1]  __kmalloc_noprof+0x223/0x510
[ 1183.053969][    C1]  ? __cfg80211_bss_update+0x1b7/0x23c0
[ 1183.053989][    C1]  ? cfg80211_inform_single_bss_data+0x7ba/0x1df0
[ 1183.054002][    C1]  ? cfg80211_inform_bss_data+0x224/0x3bc0
[ 1183.054015][    C1]  ? cfg80211_inform_bss_frame_data+0x1d1/0x7a0
[ 1183.054029][    C1]  ? ieee80211_iface_work+0xbf4/0x1020
[ 1183.054048][    C1]  ieee802_11_parse_elems_full+0x1d7/0x3780
[ 1183.054068][    C1]  ? __lock_acquire+0xb8a/0x1c90
[ 1183.054093][    C1]  ? __pfx_ieee802_11_parse_elems_full+0x10/0x10
[ 1183.054111][    C1]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1183.054127][    C1]  ? find_held_lock+0x2b/0x80
[ 1183.054143][    C1]  ? mark_held_locks+0x49/0x80
[ 1183.054164][    C1]  ieee80211_inform_bss+0x10b/0x1140
[ 1183.054183][    C1]  ? __pfx_ieee80211_inform_bss+0x10/0x10
[ 1183.054202][    C1]  ? __kmalloc_noprof+0x242/0x510
[ 1183.054221][    C1]  ? __pfx_ieee80211_inform_bss+0x10/0x10
[ 1183.054239][    C1]  cfg80211_inform_single_bss_data+0x8ea/0x1df0
[ 1183.054253][    C1]  ? unwind_next_frame+0x3f4/0x20a0
[ 1183.054268][    C1]  ? __pfx_cfg80211_inform_single_bss_data+0x10/0x10
[ 1183.054288][    C1]  ? ieee802_11_parse_elems_full+0x1d7/0x3780
[ 1183.054306][    C1]  ? stack_trace_save+0x8e/0xc0
[ 1183.054322][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[ 1183.054339][    C1]  ? stack_depot_save_flags+0x28/0xa40
[ 1183.054356][    C1]  ? cfg80211_inform_bss_data+0x224/0x3bc0
[ 1183.054369][    C1]  cfg80211_inform_bss_data+0x224/0x3bc0
[ 1183.054382][    C1]  ? __kasan_kmalloc+0xaa/0xb0
[ 1183.054398][    C1]  ? __kmalloc_noprof+0x223/0x510
[ 1183.054414][    C1]  ? ieee802_11_parse_elems_full+0x1d7/0x3780
[ 1183.054431][    C1]  ? ieee80211_ibss_rx_queued_mgmt+0xc69/0x2fd0
[ 1183.054449][    C1]  ? cfg80211_wiphy_work+0x3df/0x550
[ 1183.054463][    C1]  ? kthread+0x3c5/0x780
[ 1183.054474][    C1]  ? ret_from_fork+0x5d4/0x6f0
[ 1183.054490][    C1]  ? ret_from_fork_asm+0x1a/0x30
[ 1183.054506][    C1]  ? __pfx_cfg80211_inform_bss_data+0x10/0x10
[ 1183.054522][    C1]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1183.054538][    C1]  ? _ieee802_11_parse_elems_full+0x626/0x44e0
[ 1183.054563][    C1]  ? __lock_acquire+0x622/0x1c90
[ 1183.054584][    C1]  ? ieee802_11_parse_elems_full+0x145/0x3780
[ 1183.054605][    C1]  cfg80211_inform_bss_frame_data+0x26e/0x7a0
[ 1183.054622][    C1]  ieee80211_bss_info_update+0x310/0xab0
[ 1183.054641][    C1]  ? __pfx_ieee80211_bss_info_update+0x10/0x10
[ 1183.054661][    C1]  ? find_held_lock+0x2b/0x80
[ 1183.054676][    C1]  ? ieee80211_ibss_rx_queued_mgmt+0x18cb/0x2fd0
[ 1183.054700][    C1]  ieee80211_ibss_rx_queued_mgmt+0x1905/0x2fd0
[ 1183.054725][    C1]  ? __pfx_ieee80211_ibss_rx_queued_mgmt+0x10/0x10
[ 1183.054753][    C1]  ? kcov_remote_start+0x3c9/0x6d0
[ 1183.054772][    C1]  ieee80211_iface_work+0xbf4/0x1020
[ 1183.054791][    C1]  ? rcu_is_watching+0x12/0xc0
[ 1183.054808][    C1]  cfg80211_wiphy_work+0x3df/0x550
[ 1183.054825][    C1]  process_one_work+0x9cf/0x1b70
[ 1183.054843][    C1]  ? __pfx_cfg80211_wiphy_work+0x10/0x10
[ 1183.054858][    C1]  ? __pfx_process_one_work+0x10/0x10
[ 1183.054877][    C1]  ? assign_work+0x1a0/0x250
[ 1183.054890][    C1]  worker_thread+0x6c8/0xf10
[ 1183.054910][    C1]  ? __pfx_worker_thread+0x10/0x10
[ 1183.054924][    C1]  kthread+0x3c5/0x780
[ 1183.054936][    C1]  ? __pfx_kthread+0x10/0x10
[ 1183.054949][    C1]  ? rcu_is_watching+0x12/0xc0
[ 1183.054964][    C1]  ? __pfx_kthread+0x10/0x10
[ 1183.054977][    C1]  ret_from_fork+0x5d4/0x6f0
[ 1183.054994][    C1]  ? __pfx_kthread+0x10/0x10
[ 1183.055006][    C1]  ret_from_fork_asm+0x1a/0x30
[ 1183.055024][    C1]  </TASK>
[ 1183.056028][    C0] task:syz-executor    state:R  running task     stack:23144 pid:5821  tgid:5821  ppid:5811   task_flags:0x400140 flags:0x00004002
[ 1183.829441][    C0] Call Trace:
[ 1183.832720][    C0]  <TASK>
[ 1183.835653][    C0]  __schedule+0x116a/0x5de0
[ 1183.840168][    C0]  ? __lock_acquire+0x622/0x1c90
[ 1183.845131][    C0]  ? __pfx___schedule+0x10/0x10
[ 1183.849986][    C0]  ? page_table_check_set+0x627/0x750
[ 1183.855370][    C0]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1183.860397][    C0]  ? preempt_schedule_thunk+0x16/0x30
[ 1183.865773][    C0]  preempt_schedule_common+0x44/0xc0
[ 1183.871063][    C0]  preempt_schedule_thunk+0x16/0x30
[ 1183.876267][    C0]  _raw_spin_unlock+0x3e/0x50
[ 1183.880947][    C0]  copy_page_range+0x2113/0x5d90
[ 1183.885921][    C0]  ? __pfx_copy_page_range+0x10/0x10
[ 1183.891212][    C0]  ? __pfx___might_resched+0x10/0x10
[ 1183.896497][    C0]  ? __pfx_mas_store+0x10/0x10
[ 1183.901258][    C0]  ? __vma_enter_locked+0x163/0x3f0
[ 1183.906460][    C0]  ? dup_mmap+0xe38/0x21d0
[ 1183.910877][    C0]  ? down_write+0x14d/0x200
[ 1183.915382][    C0]  ? up_write+0x1b2/0x520
[ 1183.919712][    C0]  dup_mmap+0xe88/0x21d0
[ 1183.923967][    C0]  ? __pfx_dup_mmap+0x10/0x10
[ 1183.928666][    C0]  copy_process+0x4081/0x76a0
[ 1183.933346][    C0]  ? do_wp_page+0x1aa7/0x4f20
[ 1183.938032][    C0]  ? __pfx_copy_process+0x10/0x10
[ 1183.943074][    C0]  kernel_clone+0xfc/0x960
[ 1183.947499][    C0]  ? __pfx_kernel_clone+0x10/0x10
[ 1183.952538][    C0]  ? css_rstat_updated+0x9d/0xd30
[ 1183.957569][    C0]  __do_sys_clone+0xce/0x120
[ 1183.962171][    C0]  ? __pfx___do_sys_clone+0x10/0x10
[ 1183.967371][    C0]  ? handle_mm_fault+0x2ab/0xd10
[ 1183.972324][    C0]  ? do_user_addr_fault+0x843/0x1370
[ 1183.977629][    C0]  do_syscall_64+0xcd/0x4c0
[ 1183.982132][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1183.988020][    C0] RIP: 0033:0x7f47275851d3
[ 1183.992433][    C0] RSP: 002b:00007ffe14a87e58 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 1184.000847][    C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f47275851d3
[ 1184.008815][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 1184.016953][    C0] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000001
[ 1184.024917][    C0] R10: 0000555593fb97d0 R11: 0000000000000246 R12: 0000000000000000
[ 1184.032882][    C0] R13: 00000000000927c0 R14: 0000000000105f69 R15: 00007ffe14a87ff0
[ 1184.040869][    C0]  </TASK>
[ 1184.043882][    C0] rcu: rcu_preempt kthread starved for 6900 jiffies! g65997 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[ 1184.054981][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[ 1184.064941][    C0] rcu: RCU grace-period kthread stack dump:
[ 1184.070817][    C0] task:rcu_preempt     state:R  running task     stack:27592 pid:16    tgid:16    ppid:2      task_flags:0x208040 flags:0x00004000
[ 1184.084306][    C0] Call Trace:
[ 1184.087578][    C0]  <TASK>
[ 1184.090509][    C0]  __schedule+0x116a/0x5de0
[ 1184.095024][    C0]  ? __lock_acquire+0x622/0x1c90
[ 1184.099969][    C0]  ? __pfx___schedule+0x10/0x10
[ 1184.104831][    C0]  ? find_held_lock+0x2b/0x80
[ 1184.109506][    C0]  ? schedule+0x2d7/0x3a0
[ 1184.113845][    C0]  schedule+0xe7/0x3a0
[ 1184.117920][    C0]  schedule_timeout+0x123/0x290
[ 1184.122770][    C0]  ? __pfx_schedule_timeout+0x10/0x10
[ 1184.128142][    C0]  ? __pfx_process_timeout+0x10/0x10
[ 1184.133431][    C0]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1184.139239][    C0]  ? prepare_to_swait_event+0xf5/0x480
[ 1184.144709][    C0]  rcu_gp_fqs_loop+0x1ea/0xb00
[ 1184.149469][    C0]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[ 1184.154750][    C0]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1184.159954][    C0]  ? __pfx_rcu_gp_init+0x10/0x10
[ 1184.164884][    C0]  ? rcu_gp_cleanup+0x7c1/0xd90
[ 1184.169732][    C0]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1184.175542][    C0]  rcu_gp_kthread+0x270/0x380
[ 1184.180214][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1184.185403][    C0]  ? rcu_is_watching+0x12/0xc0
[ 1184.190170][    C0]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1184.195372][    C0]  ? __kthread_parkme+0x19e/0x250
[ 1184.200400][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1184.205597][    C0]  kthread+0x3c5/0x780
[ 1184.209662][    C0]  ? __pfx_kthread+0x10/0x10
[ 1184.214250][    C0]  ? rcu_is_watching+0x12/0xc0
[ 1184.219011][    C0]  ? __pfx_kthread+0x10/0x10
[ 1184.223603][    C0]  ret_from_fork+0x5d4/0x6f0
[ 1184.228194][    C0]  ? __pfx_kthread+0x10/0x10
[ 1184.232781][    C0]  ret_from_fork_asm+0x1a/0x30
[ 1184.237558][    C0]  </TASK>
[ 1184.240577][    C0] rcu: Stack dump where RCU GP kthread last ran:
[ 1184.246899][    C0] CPU: 0 UID: 0 PID: 17107 Comm: kworker/u8:0 Not tainted 6.15.0-syzkaller-11220-gf5164456c604 #0 PREEMPT(full) 
[ 1184.258780][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1184.268828][    C0] Workqueue: writeback wb_workfn (flush-8:0)
[ 1184.274818][    C0] RIP: 0010:pv_native_safe_halt+0xf/0x20
[ 1184.280452][    C0] Code: 9b 74 02 e9 03 fb 02 00 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 23 b0 2c 00 fb f4 <c3> cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90
[ 1184.300056][    C0] RSP: 0018:ffffc90000007360 EFLAGS: 00000246
[ 1184.306115][    C0] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 0000000000000002
[ 1184.314079][    C0] RDX: ffff888035fa0000 RSI: ffffffff816a23e1 RDI: ffffffff8c154e20
[ 1184.322045][    C0] RBP: ffff88807a730150 R08: 0000000000000001 R09: 0000000000000001
[ 1184.330007][    C0] R10: ffffffff90a7cf57 R11: 0000000000000001 R12: 0000000000000003
[ 1184.337973][    C0] R13: 0000000000000003 R14: ffff8880b843cc00 R15: ffffed100f4e602a
[ 1184.345939][    C0] FS:  0000000000000000(0000) GS:ffff888124763000(0000) knlGS:0000000000000000
[ 1184.354863][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1184.361444][    C0] CR2: 00007fa6fc65d5b1 CR3: 0000000049db6000 CR4: 00000000003526f0
[ 1184.369411][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1184.377373][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1184.385339][    C0] Call Trace:
[ 1184.388612][    C0]  <IRQ>
[ 1184.391450][    C0]  kvm_wait+0x186/0x1f0
[ 1184.395610][    C0]  __pv_queued_spin_lock_slowpath+0x4e1/0xcf0
[ 1184.401689][    C0]  ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10
[ 1184.408293][    C0]  do_raw_spin_lock+0x20e/0x2b0
[ 1184.413140][    C0]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1184.418507][    C0]  ? __kmalloc_noprof+0x242/0x510
[ 1184.423539][    C0]  cfg80211_inform_single_bss_data+0x79c/0x1df0
[ 1184.429793][    C0]  ? __pfx_cfg80211_inform_single_bss_data+0x10/0x10
[ 1184.436464][    C0]  ? find_held_lock+0x2b/0x80
[ 1184.441159][    C0]  ? find_held_lock+0x2b/0x80
[ 1184.445833][    C0]  ? find_held_lock+0x2b/0x80
[ 1184.450512][    C0]  ? cfg80211_inform_bss_data+0x224/0x3bc0
[ 1184.456312][    C0]  cfg80211_inform_bss_data+0x224/0x3bc0
[ 1184.461956][    C0]  ? mark_held_locks+0x49/0x80
[ 1184.466721][    C0]  ? __local_bh_enable_ip+0xa4/0x120
[ 1184.472002][    C0]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1184.477203][    C0]  ? ieee80211_rx_handlers+0xe7f/0x9c80
[ 1184.482749][    C0]  ? __local_bh_enable_ip+0xa4/0x120
[ 1184.488030][    C0]  ? ieee80211_rx_handlers+0xe7f/0x9c80
[ 1184.493598][    C0]  ? __pfx_cfg80211_inform_bss_data+0x10/0x10
[ 1184.499686][    C0]  ? __pfx_ieee80211_rx_handlers+0x10/0x10
[ 1184.505499][    C0]  ? __lock_acquire+0xb8a/0x1c90
[ 1184.510460][    C0]  ? __lock_acquire+0x622/0x1c90
[ 1184.515428][    C0]  cfg80211_inform_bss_frame_data+0x26e/0x7a0
[ 1184.521511][    C0]  ieee80211_bss_info_update+0x310/0xab0
[ 1184.527151][    C0]  ? __pfx_ieee80211_bss_info_update+0x10/0x10
[ 1184.533312][    C0]  ? find_held_lock+0x2b/0x80
[ 1184.537993][    C0]  ? ieee80211_get_channel_khz+0x14a/0x1e0
[ 1184.543809][    C0]  ieee80211_scan_rx+0x475/0xae0
[ 1184.548755][    C0]  ? ieee80211_clean_skb+0x1a6/0x740
[ 1184.554054][    C0]  ieee80211_rx_list+0x1bdb/0x2980
[ 1184.559183][    C0]  ? __pfx_ieee80211_rx_list+0x10/0x10
[ 1184.564651][    C0]  ? __lock_acquire+0xb8a/0x1c90
[ 1184.569614][    C0]  ieee80211_rx_napi+0xdc/0x410
[ 1184.574477][    C0]  ? __pfx_ieee80211_rx_napi+0x10/0x10
[ 1184.579939][    C0]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1184.585142][    C0]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1184.590956][    C0]  ieee80211_handle_queued_frames+0xd5/0x130
[ 1184.596938][    C0]  tasklet_action_common+0x281/0x400
[ 1184.602233][    C0]  handle_softirqs+0x219/0x8e0
[ 1184.606999][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[ 1184.612287][    C0]  __irq_exit_rcu+0x109/0x170
[ 1184.616962][    C0]  irq_exit_rcu+0x9/0x30
[ 1184.621202][    C0]  sysvec_apic_timer_interrupt+0xa4/0xc0
[ 1184.626840][    C0]  </IRQ>
[ 1184.629767][    C0]  <TASK>
[ 1184.632699][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1184.638674][    C0] RIP: 0010:smp_call_function_many_cond+0xd7b/0x1510
[ 1184.645348][    C0] Code: e8 1a 17 0c 00 45 85 ed 74 46 48 8b 14 24 49 89 d6 49 89 d5 49 c1 ee 03 41 83 e5 07 4d 01 e6 41 83 c5 03 e8 b7 1b 0c 00 f3 90 <41> 0f b6 06 41 38 c5 7c 08 84 c0 0f 85 6f 05 00 00 8b 43 08 31 ff
[ 1184.664951][    C0] RSP: 0018:ffffc900044ce880 EFLAGS: 00000293
[ 1184.671016][    C0] RAX: 0000000000000000 RBX: ffff8880b85417e0 RCX: ffffffff81affbcd
[ 1184.678978][    C0] RDX: ffff888035fa0000 RSI: ffffffff81affba9 RDI: 0000000000000005
[ 1184.686943][    C0] RBP: 0000000000000001 R08: 0000000000000005 R09: 0000000000000000
[ 1184.694908][    C0] R10: 0000000000000001 R11: 0000000000000001 R12: dffffc0000000000
[ 1184.702872][    C0] R13: 0000000000000003 R14: ffffed10170a82fd R15: ffff8880b843cf40
[ 1184.710844][    C0]  ? smp_call_function_many_cond+0xd9d/0x1510
[ 1184.716910][    C0]  ? smp_call_function_many_cond+0xd79/0x1510
[ 1184.722984][    C0]  ? __pfx_flush_tlb_func+0x10/0x10
[ 1184.728194][    C0]  ? __pfx_smp_call_function_many_cond+0x10/0x10
[ 1184.734526][    C0]  ? lock_acquire+0x179/0x350
[ 1184.739208][    C0]  ? __pfx_flush_tlb_func+0x10/0x10
[ 1184.744404][    C0]  ? __pfx_should_flush_tlb+0x10/0x10
[ 1184.749775][    C0]  on_each_cpu_cond_mask+0x40/0x90
[ 1184.754886][    C0]  flush_tlb_mm_range+0x4a0/0x1790
[ 1184.759995][    C0]  ? page_table_check_clear+0x362/0x740
[ 1184.765546][    C0]  ? __page_table_check_pte_clear+0xa9/0x100
[ 1184.771526][    C0]  ? __pfx_flush_tlb_mm_range+0x10/0x10
[ 1184.777072][    C0]  ? find_held_lock+0x2b/0x80
[ 1184.781748][    C0]  ptep_clear_flush+0x136/0x180
[ 1184.786607][    C0]  page_vma_mkclean_one.constprop.0+0x3b4/0x7e0
[ 1184.792856][    C0]  ? __pfx_page_vma_mkclean_one.constprop.0+0x10/0x10
[ 1184.799631][    C0]  page_mkclean_one+0x196/0x260
[ 1184.804483][    C0]  ? __pfx_page_mkclean_one+0x10/0x10
[ 1184.809859][    C0]  ? __pfx___might_resched+0x10/0x10
[ 1184.815147][    C0]  ? __pfx_page_mkclean_one+0x10/0x10
[ 1184.820516][    C0]  __rmap_walk_file+0x356/0x620
[ 1184.825373][    C0]  rmap_walk_file+0x174/0x1f0
[ 1184.830053][    C0]  folio_mkclean+0x251/0x3f0
[ 1184.834644][    C0]  ? __pfx_folio_mkclean+0x10/0x10
[ 1184.839758][    C0]  ? __pfx_page_mkclean_one+0x10/0x10
[ 1184.845125][    C0]  ? __pfx_invalid_mkclean_vma+0x10/0x10
[ 1184.850762][    C0]  folio_clear_dirty_for_io+0x153/0x810
[ 1184.856311][    C0]  mpage_submit_folio+0x80/0x3f0
[ 1184.861253][    C0]  mpage_process_page_bufs+0x47c/0x9a0
[ 1184.866718][    C0]  mpage_prepare_extent_to_map+0x756/0x1520
[ 1184.872642][    C0]  ? __pfx_mpage_prepare_extent_to_map+0x10/0x10
[ 1184.878999][    C0]  ? trace_kmem_cache_alloc+0x28/0xc0
[ 1184.884365][    C0]  ? kmem_cache_alloc_noprof+0x21e/0x3b0
[ 1184.889997][    C0]  ? ext4_init_io_end+0x24/0x170
[ 1184.894939][    C0]  ext4_do_writepages+0x9af/0x3490
[ 1184.900045][    C0]  ? find_held_lock+0x2b/0x80
[ 1184.904744][    C0]  ? __pfx_ext4_do_writepages+0x10/0x10
[ 1184.910302][    C0]  ? ext4_writepages+0x37a/0x7d0
[ 1184.915235][    C0]  ext4_writepages+0x37a/0x7d0
[ 1184.919990][    C0]  ? blk_finish_plug+0x16/0xa0
[ 1184.924757][    C0]  ? __pfx_ext4_writepages+0x10/0x10
[ 1184.930038][    C0]  ? __pfx_blkdev_writepages+0x10/0x10
[ 1184.935502][    C0]  ? __lock_acquire+0xb8a/0x1c90
[ 1184.940448][    C0]  ? __pfx_ext4_writepages+0x10/0x10
[ 1184.945737][    C0]  do_writepages+0x27a/0x600
[ 1184.950328][    C0]  ? __pfx_do_writepages+0x10/0x10
[ 1184.955434][    C0]  ? reacquire_held_locks+0xcd/0x1f0
[ 1184.960721][    C0]  ? writeback_sb_inodes+0x3a4/0xf90
[ 1184.966009][    C0]  __writeback_single_inode+0x160/0xfb0
[ 1184.971552][    C0]  ? __pfx___writeback_single_inode+0x10/0x10
[ 1184.977629][    C0]  ? do_raw_spin_unlock+0x172/0x230
[ 1184.982836][    C0]  writeback_sb_inodes+0x601/0xf90
[ 1184.987958][    C0]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 1184.993626][    C0]  ? __pfx___up_read+0x10/0x10
[ 1184.998387][    C0]  ? __writeback_inodes_wb+0x104/0x2d0
[ 1185.003852][    C0]  __writeback_inodes_wb+0xf8/0x2d0
[ 1185.009052][    C0]  ? __pfx___writeback_inodes_wb+0x10/0x10
[ 1185.014853][    C0]  ? queue_io+0x3f6/0x520
[ 1185.019180][    C0]  wb_writeback+0x7f3/0xb70
[ 1185.023689][    C0]  ? __pfx_wb_writeback+0x10/0x10
[ 1185.028718][    C0]  ? get_nr_dirty_inodes+0x170/0x1e0
[ 1185.034005][    C0]  wb_workfn+0x8ca/0xbe0
[ 1185.038250][    C0]  ? try_to_wake_up+0x157/0x1680
[ 1185.043184][    C0]  ? __pfx_wb_workfn+0x10/0x10
[ 1185.047955][    C0]  ? rcu_is_watching+0x12/0xc0
[ 1185.052723][    C0]  process_one_work+0x9cf/0x1b70
[ 1185.057666][    C0]  ? __pfx_kfree_rcu_monitor+0x10/0x10
[ 1185.063123][    C0]  ? __pfx_process_one_work+0x10/0x10
[ 1185.068502][    C0]  ? assign_work+0x1a0/0x250
[ 1185.073088][    C0]  worker_thread+0x6c8/0xf10
[ 1185.077689][    C0]  ? __pfx_worker_thread+0x10/0x10
[ 1185.082794][    C0]  kthread+0x3c5/0x780
[ 1185.086862][    C0]  ? __pfx_kthread+0x10/0x10
[ 1185.091448][    C0]  ? rcu_is_watching+0x12/0xc0
[ 1185.096208][    C0]  ? __pfx_kthread+0x10/0x10
[ 1185.100796][    C0]  ret_from_fork+0x5d4/0x6f0
[ 1185.105388][    C0]  ? __pfx_kthread+0x10/0x10
[ 1185.109973][    C0]  ret_from_fork_asm+0x1a/0x30
[ 1185.114748][    C0]  </TASK>
[ 1185.118066][    C0] sched: DL replenish lagged too much