last executing test programs:

15.578562611s ago: executing program 0 (id=54):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r0}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x4)
writev(r3, &(0x7f0000000300)=[{&(0x7f0000000340)="580000001400192340834b80040d8c560a117436c379000000000000000058000b4824ca945f6400940f6a0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100090c100000000000224e0000", 0x58}], 0x1)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
setsockopt$sock_int(r4, 0x1, 0x10, &(0x7f0000000240)=0x7, 0x4)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2)
ioctl$KVM_SET_MSRS(r7, 0x4008ae89, &(0x7f0000000300)=ANY=[@ANYBLOB="0100000000000000014d564b"])
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000080)=[{{0x0, 0x0, 0x0}}], 0x40000000000012d, 0x2, 0x0)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000340), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind', '=static'}}}]})
mount$tmpfs(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000), 0x0, 0x0)

13.397876546s ago: executing program 0 (id=62):
mkdir(0x0, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$binfmt_aout(r0, 0x0, 0xff2e)
ioctl$TCXONC(r0, 0x540a, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x3, &(0x7f0000000480)=ANY=[@ANYRESOCT=r0], 0x0, 0x4, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='contention_end\x00'}, 0x10)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0x17)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', 0x0, 0x0, &(0x7f0000000140)={[], [{@smackfshat={'smackfshat', 0x3d, ':&'}}]})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000040), r1)
sendmsg$NFC_CMD_FW_DOWNLOAD(r1, 0x0, 0x0)
r2 = open(0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$AUDIT_MAKE_EQUIV(r2, 0x0, 0x8004)
ioctl$BTRFS_IOC_BALANCE_CTL(r2, 0x40049421, 0x0)
prctl$PR_GET_TSC(0x43, &(0x7f0000000040))
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, 0x0, 0x0}, 0x90)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000300)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000240)={@cgroup=r5, r4, 0x2, 0x0, 0x4000}, 0x10)
prctl$PR_MCE_KILL(0x43, 0x0, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c000000030800000000000000000000000000000900010073797a31000000001c00048008000340000000000800054008000000150008"], 0x3c}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[], 0x78}}, 0x20040091)

12.128548024s ago: executing program 2 (id=67):
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000280)=[{{&(0x7f0000000340)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000240)=[{&(0x7f0000000040)="637d4e8ddda2dcee6b48f854459bdc928307fa42ab35f9f373970f3825721912389d1d2733b7e9", 0x27}], 0x1, &(0x7f00000002c0)=[@cred={{0x1c, 0x1, 0x2, {r0}}}, @rights={{0x24, 0x1, 0x1, [r1, r2, 0xffffffffffffffff, r2, r1]}}], 0x48, 0x48410}}], 0x1, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
rt_sigqueueinfo(r3, 0x2, &(0x7f00000001c0)={0x0, 0xff, 0xffffff09})
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x19, 0xf, &(0x7f00000000c0)=ANY=[@ANYRES32=0x0], &(0x7f0000001dc0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffcc4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
connect$inet(r5, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r5, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window={0x3, 0x0, 0x2}, @window], 0x4)
setsockopt$inet_tcp_TCP_REPAIR(r5, 0x6, 0x13, 0x0, 0x0)
recvfrom$inet(r5, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x0, 0x0, 0xfffffffffffffd25)
socket$inet6(0xa, 0x3, 0x4)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.bfq.io_service_time_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x1000007, 0x10, 0xffffffffffffffff, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
r6 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x17ef, 0x6009, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r6, 0x0, 0x0)
syz_usb_control_io$hid(r6, &(0x7f0000001440)={0x24, 0x0, 0x0, &(0x7f00000013c0)={0x0, 0x22, 0x5, {[@local=@item_4={0x3, 0x2, 0x0, "741cb976"}]}}, 0x0}, 0x0)
syz_open_dev$hidraw(&(0x7f0000002300), 0x0, 0x0)
syz_open_dev$hidraw(&(0x7f0000002300), 0x0, 0x0)

11.270712597s ago: executing program 4 (id=69):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x3, @fixed}, 0xe)
getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={0x0, 0x0, 0x66}, 0x20)
socket$nl_generic(0x10, 0x3, 0x10)
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
fcntl$notify(r1, 0x402, 0x29)
fcntl$setsig(r1, 0xa, 0x21)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r2, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000006c0)=ANY=[@ANYBLOB="3800000001010101000000000000000002000000180001801400018008220100ac1414aa080002914e63d89511bec780080001008101000040830b95d5e759b59c7f681c1935ca2b5c091dbe3a2caba9b3831e1e7053e21fd1257ee7141e54db54354aec974d1aaf9f77ed2e7761ec421d7f249f3f926248f470329bcb511a6c6e125bbd6d88d13fdbce580c611559b82a281ec1a8fc0bfed1dd7180d6e1d15fddd334ba43a788a685a7e7ea43bcd738ed8ed83d5ba0f9ea9be2a1fc612c96ce02413d7b498c68"], 0x38}}, 0x0)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="600000000206050000000000000000feff00000014000300686173683a69702c706f72742c6970000900020073797a32000000000500040000000000050005000a0000000500010006000000140007800800064000000000080008"], 0x60}}, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000040)={<r4=>0xffffffffffffffff}, 0x106, 0x3}}, 0x20)
write$RDMA_USER_CM_CMD_BIND(0xffffffffffffffff, &(0x7f0000000100)={0x14, 0x88, 0xfa00, {r4, 0x0, 0x0, @ib={0x1b, 0x103, 0x6400, {"44f209cb5695b8cc9bed2fb1e1dcf7fd"}, 0x80, 0xfffa, 0x7ff}}}, 0x90)
r5 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
socket$inet_sctp(0x2, 0x5, 0x84)
ioctl$USBDEVFS_FREE_STREAMS(r5, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="02002303100007"])
openat(0xffffffffffffffff, 0x0, 0x0, 0x5)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000240))
fcntl$lock(r1, 0x26, &(0x7f0000000080))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x1a, &(0x7f0000000040)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0x7fc000ff}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r6, 0xc0502100, &(0x7f0000000340)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r6, 0xc0182101, &(0x7f00000003c0)={r7})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r6, 0xc0502100, &(0x7f0000000480)={<r8=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000080)={r8, 0x3, r6, 0x5})
r9 = openat$iommufd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r9, 0x3b81, &(0x7f0000000080)={0x19})

10.59447791s ago: executing program 0 (id=70):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$media(&(0x7f00000001c0), 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(0xffffffffffffffff, 0x84, 0xc, &(0x7f00000001c0), 0x4)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000080)={0x0, 0x10, "3ab4f94441619fa9b4441e07129d18d5"}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x40081)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x210000000013, &(0x7f00000000c0), 0x4)
connect$inet(r1, &(0x7f0000000140)={0x2, 0x0, @remote}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000000)=[@timestamp, @timestamp, @timestamp, @timestamp], 0x4)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='io.stat\x00', 0x275a, 0x0)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
writev(r2, &(0x7f0000000000), 0x0)
r3 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000080)}], 0x1}, 0x0)

10.59375725s ago: executing program 4 (id=71):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.events\x00', 0x275a, 0x0)
socket$rds(0x15, 0x5, 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000100)=0xfffffffffffffffe)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$NL80211_CMD_SET_POWER_SAVE(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000540)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000000000006007400003d00000008000300555a0b974dc7fd421ff3e72af102625290a18ae19d4c52272255536fa0357e3319e47744f01cc2767d0f6e85366cf2b887003b53c64e526ddd51af1b8d1e1b", @ANYRES32=0x0, @ANYBLOB='\b\x00]\x00\x00\x00\x00\x00'], 0x24}}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r3)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r3, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r4, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r5, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r6 = accept(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000a80)={&(0x7f0000000080)=ANY=[], 0xfffffdef}}, 0x0)
setsockopt$inet6_tcp_int(r6, 0x6, 0x12, &(0x7f00000000c0), 0x3f)
r7 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r7, 0x0, 0x482, &(0x7f0000000000)={0x6, @local, 0x0, 0x3, 'lblc\x00'}, 0x2c)
sendmsg$TIPC_CMD_RESET_LINK_STATS(0xffffffffffffffff, 0x0, 0x0)
r8 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r8, 0x0, 0x483, &(0x7f0000000000)={0x6, @private, 0x0, 0x3, 'dh\x00'}, 0x2c)
listxattr(0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)

9.785620417s ago: executing program 4 (id=74):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
r1 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_syncookies\x00', 0x1, 0x0)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000005580)='/sys/kernel/vmcoreinfo', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x1335f0a6)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)={0x68, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2=0xe0000001}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0x4}]}, 0x68}}, 0x0)

9.540949888s ago: executing program 4 (id=76):
sched_setaffinity(0x0, 0x0, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0)
r0 = socket$inet(0xa, 0x801, 0x84)
sendmmsg$inet_sctp(r0, &(0x7f0000001780)=[{&(0x7f0000000100)=@in6={0xa, 0x0, 0x0, @private2}, 0x1c, &(0x7f0000000440)=[{&(0x7f0000000140)="86", 0x1}], 0x1}], 0x1, 0x0) (fail_nth: 8)

9.161643176s ago: executing program 4 (id=77):
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000140)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}})
mq_open(0x0, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x80000040001})
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2000006, 0x46032, 0xffffffffffffffff, 0x0)
socket$inet6(0xa, 0x0, 0x0)
r0 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1})
ioctl$UFFDIO_CONTINUE(r0, 0xc020aa08, &(0x7f0000000240)={{&(0x7f0000fd5000/0x4000)=nil, 0x4000}, 0x1})
syz_io_uring_setup(0x0, &(0x7f0000000400)={0x0, 0xfffffffd, 0x0, 0xfffffffe, 0xb7}, 0x0, 0x0)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r1, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000080)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, &(0x7f0000000280)={0x0, 0x1, 0x0, &(0x7f0000000340)=""/185, &(0x7f00000002c0)=""/101})
pwritev2(0xffffffffffffffff, &(0x7f00000012c0)=[{&(0x7f0000000100)="7270aa3f0c63ef31716980d71af481e691d156e5c690c37493c965008b713ed133a85027d43b49d05b8ec0e538f674752205f76fb42632a5233a7d64e1cea692029b6a", 0x43}], 0x1, 0x0, 0x0, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000ac0))
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f00000000c0)=0x1)
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000500)=""/253, 0x0, &(0x7f0000000600)=""/91})
ioctl$VHOST_VSOCK_SET_GUEST_CID(r1, 0x4008af60, &(0x7f0000000040)={@my=0x1})
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f00000001c0)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
r3 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000040)={r3, r3, r3}, 0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={'wp512\x00'}})
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x103)
getpid()
sched_setscheduler(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x10, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$unix(r4, 0x0, 0x0, 0x0)

8.852378988s ago: executing program 2 (id=78):
socket$inet_udp(0x2, 0x2, 0x0)
syz_emit_ethernet(0xfffffffffffffd4d, 0x0, 0x0)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000180)=0xffffffffffffffff, 0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, 0x0}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x0, 0xc, &(0x7f0000000140)=ANY=[], &(0x7f0000000080)='GPL\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000400)=ANY=[@ANYBLOB="1400"], 0x58}}, 0x0)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r0, &(0x7f0000000240), 0x0, 0x0, 0x0)
open(0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000020000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000004000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='ext4_fc_track_range\x00', r3}, 0x10)
openat$cgroup_ro(r4, 0x0, 0x0, 0x0)
r5 = bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x8002, 0x0, 0x1, 0x0, '\x00', 0x0, r5, 0x0, 0x100000}, 0x48)

8.548964747s ago: executing program 1 (id=79):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f00000004c0)=@raw={'raw\x00', 0x41, 0x3, 0x208, 0x0, 0x0, 0x0, 0xc8, 0x0, 0x1a0, 0x1f0, 0x1f0, 0x1a0, 0x1f0, 0x3, 0x0, {[{{@ip={@dev, @broadcast, 0x0, 0x0, 'wlan1\x00', 'wg1\x00'}, 0x0, 0x70, 0x98, 0x0, {0x0, 0xffffffffa0028000}}, @common=@inet=@TCPMSS={0x28}}, {{@uncond, 0x0, 0x70, 0xd8}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'snmp_trap\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x268)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0xe53dba84a4af1b85)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r2, 0x0, 0x0)
socket(0x10, 0x803, 0x0)
r3 = openat$iommufd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r3, 0x3b81, &(0x7f0000000040)={0xc, 0x0, <r4=>0x0})
ioctl$IOMMU_IOAS_MAP(r3, 0x3b85, &(0x7f0000000100)={0x28, 0x0, r4, 0x0, 0x0, 0x0, 0x6})
ioctl$IOMMU_IOAS_MAP$PAGES(r3, 0x3b85, &(0x7f0000000140)={0x28, 0x0, r4, 0x0, &(0x7f0000ffe000/0x1000)=nil, 0x1000})
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYRES32, @ANYBLOB="0000000000000004280012000c0001007665"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=@newqdisc={0x58, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28}}}]}, 0x58}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@setneightbl={0x24, 0x43, 0x0, 0x0, 0x0, {}, [@NDTA_NAME={0xe, 0x1, '!+-#.&-%*\x00'}]}, 0x24}}, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3b071, 0xffffffffffffffff, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r5, 0x29, 0x33, &(0x7f0000000000)=0x7, 0x4)
setsockopt$inet6_int(r5, 0x29, 0x42, &(0x7f0000000040)=0xf2b, 0x4)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x10010, 0xffffffffffffffff, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="600000000206050000000000000000000000000012000300686173683a6e65742c706f72740000000900020073797a32000000000500040000000000050005000a000000050001000600000014000780080006400000000008000840"], 0x60}}, 0x0)

8.315765028s ago: executing program 3 (id=80):
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$kcm(0xa, 0x3, 0x87)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f00000004c0)=ANY=[@ANYBLOB='\x00h'], 0x9)
socket$nl_generic(0x10, 0x3, 0x10)
iopl(0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x88, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1f0000001300290a000000000000000007"], 0x34}}, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
rt_sigaction(0x1a, 0x0, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x0, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000001afc180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b70300000000000085000000040000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
syz_open_dev$dmmidi(&(0x7f0000000080), 0x200, 0x2)

8.120992292s ago: executing program 1 (id=81):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x3, @fixed}, 0xe)
getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={0x0, 0x0, 0x66}, 0x20)
socket$nl_generic(0x10, 0x3, 0x10)
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
fcntl$notify(r1, 0x402, 0x29)
fcntl$setsig(r1, 0xa, 0x21)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r2, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000006c0)=ANY=[@ANYBLOB="3800000001010101000000000000000002000000180001801400018008220100ac1414aa080002914e63d89511bec780080001008101000040830b95d5e759b59c7f681c1935ca2b5c091dbe3a2caba9b3831e1e7053e21fd1257ee7141e54db54354aec974d1aaf9f77ed2e7761ec421d7f249f3f926248f470329bcb511a6c6e125bbd6d88d13fdbce580c611559b82a281ec1a8fc0bfed1dd7180d6e1d15fddd334ba43a788a685a7e7ea43bcd738ed8ed83d5ba0f9ea9be2a1fc612c96ce02413d7b498c68"], 0x38}}, 0x0)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="600000000206050000000000000000feff00000014000300686173683a69702c706f72742c6970000900020073797a32000000000500040000000000050005000a0000000500010006000000140007800800064000000000080008"], 0x60}}, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000040)={<r4=>0xffffffffffffffff}, 0x106, 0x3}}, 0x20)
write$RDMA_USER_CM_CMD_BIND(0xffffffffffffffff, &(0x7f0000000100)={0x14, 0x88, 0xfa00, {r4, 0x0, 0x0, @ib={0x1b, 0x103, 0x6400, {"44f209cb5695b8cc9bed2fb1e1dcf7fd"}, 0x80, 0xfffa, 0x7ff}}}, 0x90)
r5 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
socket$inet_sctp(0x2, 0x5, 0x84)
ioctl$USBDEVFS_FREE_STREAMS(r5, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="02002303100007"])
openat(0xffffffffffffffff, 0x0, 0x0, 0x5)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000240))
fcntl$lock(r1, 0x26, &(0x7f0000000080))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x1a, &(0x7f0000000040)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0x7fc000ff}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r6, 0xc0502100, &(0x7f0000000340)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r6, 0xc0182101, &(0x7f00000003c0)={r7})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r6, 0xc0502100, &(0x7f0000000480)={<r8=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000080)={r8, 0x3, r6, 0x5})
r9 = openat$iommufd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r9, 0x3b81, &(0x7f0000000080)={0x19})

8.120247722s ago: executing program 2 (id=82):
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000140)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}})
mq_open(0x0, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x80000040001})
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2000006, 0x46032, 0xffffffffffffffff, 0x0)
socket$inet6(0xa, 0x0, 0x0)
r0 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1})
ioctl$UFFDIO_CONTINUE(r0, 0xc020aa08, &(0x7f0000000240)={{&(0x7f0000fd5000/0x4000)=nil, 0x4000}, 0x1})
syz_io_uring_setup(0x0, &(0x7f0000000400)={0x0, 0xfffffffd, 0x0, 0xfffffffe, 0xb7}, 0x0, 0x0)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r1, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000080)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, &(0x7f0000000280)={0x0, 0x1, 0x0, &(0x7f0000000340)=""/185, &(0x7f00000002c0)=""/101})
pwritev2(0xffffffffffffffff, &(0x7f00000012c0)=[{&(0x7f0000000100)="7270aa3f0c63ef31716980d71af481e691d156e5c690c37493c965008b713ed133a85027d43b49d05b8ec0e538f674752205f76fb42632a5233a7d64e1cea692029b6a", 0x43}], 0x1, 0x0, 0x0, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000ac0))
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f00000000c0)=0x1)
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000500)=""/253, 0x0, &(0x7f0000000600)=""/91})
ioctl$VHOST_VSOCK_SET_GUEST_CID(r1, 0x4008af60, &(0x7f0000000040)={@my=0x1})
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f00000001c0)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
r3 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000040)={r3, r3, r3}, 0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={'wp512\x00'}})
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x103)
getpid()
sched_setscheduler(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x10, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$unix(r4, 0x0, 0x0, 0x0)

7.088492191s ago: executing program 3 (id=83):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
r0 = inotify_init1(0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0/file0\x00', 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x9007}, 0x4)
r3 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003d000b08d25a80648c7494f90224fc60580002400c000400030082c137153e3719ac018000f01700d1bd", 0x33fe0}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000057c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
sendmsg$DEVLINK_CMD_RELOAD(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)={0x14}, 0x14}}, 0x0)
inotify_add_watch(r0, &(0x7f0000000000)='./file0\x00', 0x14000211)
umount2(&(0x7f00000002c0)='./file0\x00', 0x0)
socket$packet(0x11, 0x3, 0x300)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x4000004)
socket$inet6(0xa, 0x2, 0x3a)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000000c00)={0x8, {"e79cd78912daa5e99e489b4776e2eafa76bf0c204091120bad604fec8de7677c85cc9c1de867fc188a1bb4f1219f5de371a6f8444882bc310cec8e124aa38d6118dc8c644d02a2a22240127d1ca4b1ddc19d2f3b8ef31a7366e3aa989c2206712ceba5850577839728bad0884bbbe8123e7ee8cbdddc019663f97bb12841b68178a12a6446ea0a632156894f519c05721dde5c3af9f15ccf9c6d2cd06d048d940c65dffb34663e5982ad0a6acb9162c76ed24c384f1bc079dd4fd2b2a207d911db73418713d815622dd34507aac27f99ea3765514624ad3409d6c2654d64f71296bfa3b8f26a90b18e52617bbce3068b6946053e90a8b5be4fbdcb131b98d78af1eb7f984551bc25299dda0dc108ddfdb33dd260505c068b4560256f659dfa3fffdeb1d645fc5a1144d76bef13dd9ae67ad1f4e7c61abea89268789689cad540f2ca25e021d310a145fdcf3a605e84f0364671f9ac3cea6504229e6ca9cd7a93bf3e1b0c51806e4df5382825f76780cf99ae8cf19c945eaa1b4dd05c3e7018d51ec4ff3e7cfb43b5b60adcb5b064bb45496ddfb6710e13e4bd76c878aea5c20e1fab4c6832f1947b982eed2916b59127bd6530e696b4393ab74dcad24365a6eee5c1156d7d335a9752de608d5a3028e984b4ca9b7bb7279d9adf7ead7ec3cc2c98cbfde74fa926d77f2afa239b44c5ccc9a20df79dec86bfff805ef423b3487d82b9f2678f6c3f677630ebfab844b7384526b22d12e794ec424949e9812275a6d8c857cff32e657c2cdb68c0fa8e5925d0e039f8167fb9a5d805772eef6f23c6f82eba26b363c5d2ade70a63e15c5eafab5e1ce53cbbdc5b92bb0e75c27c556c8c0dd083d3512588ad9f6a144f93c8f052cc5e5b9e638c1bae4425b50c5fe3059c35cc755898ace8c6d03ff1fb9b53897c160848c0382d4fa2451c27593ec5d321d5d22cb813b13524cff3e51d5f8283ac4fe7db5b4d65fb5f42c7894c1d26bd1363ea365d194c62f487d6158d2b78e56ccd8cf24a7ecabe90cd8f88ce11b1a18aaf181185861a48f4232fd0498335ea0af405f6d9ac78c245abfa672829d8d131a99e415ddc45086d09eb2a85867ab64fcef1418250e51cb649e38e02915693ab86aec6062849c2bf8750f4ab00bb5fde3d1a9ef4a1626f53ef40b524f1a1efe473982c62a73048f73a803412f6fb8d0cfe6d4bce6922159078fa26fbb9e74f9b2af66136f9e005f96dc8d07ea07a09aa5f6e21dfdadc6be9d30fcfb249d3c7cf04a2a457f875d0f319333993a7465dd7901d938f17413e503e66c8bcd1dc4654a1f62a1bd0d9724c71807c86de2efc1a93ce7f68a379b558c23c9db397f242c2c75b385bca9a5a348768bef0ccecc06b9f5487cabcc467afc5e41586a50196a96c0c08ed8d3481c86c8340ec8956fb0f6965891f986ad8bfbd9bde750b925595575d38e76d2811f132d5111db9509636618f34f69616fd5637db2f8f2c745f77653c6e75dde738fb16d63ebf2a7adb477622297d2dc5e3a23e34cfb7772c532adb256a481a78e2994d12dcfaeabe6a92f26b3618e96630c9562ea4e75a747d46fe65fcb80dd098467b72b36ab3f12c764e580949cbe5224e425649f2f34752d1012f614f445709465193095e0b6fa4a708fcb823119d4dd66b4723a8b66d3e8c92b6d0f654e9ee255ba147251a8087a5708633e6f72c6c2d5be742f9db4bbb0aeb16a2d08e2c2755c2d78b317b88450e2123fa9ce8e6489f593d741ed4d288f53814ad1f77a48a38eeb6dfb0da2f7dadb2b4cc401addd6c6e494dd7fb25d78d1e1961e9dd1ce8fa7b3a2b93df88f3ea47c32b9854d698753b8bb212e447664f92198ed4e42f90b852d4d695b0711e12c045787ec409b78058b9fa44f71cb058a5f87a7af9875ba07d10f7d53ed62374830d1fe17c0ddbe8e93b53a05d2bbef133033c9125ef2d439b580b42a6110c44c3740e74d9e2987e1290a7544c1469db324145e31938da5a99f37014aad532590eca02403b1b4aaf88707b8fb00fb541840345f5f545a9587579f5a19a344793df9de843a186a796620819d000c6a1cb29bd2bd2cc6fd25d9f52b65e373e5f51b780cf67dadfa16fa649289d504425749b0c67af212b9d962d293d01c6432aa1913cba3c460b6f5c89fb772b18d20831ea3dcd09d1a8d2a4847611abbadaf780ca060ffc116862751e4505551303a520500b58e8320a79d0ebb77acee1b04e2034da862a912aaa8d06942d40e5c9dbb4e380d451521c163e489cb8b2ea66cda6fefe9a7401a703477a2af8589e542f88ea668b96c3fd1cef063a4d2f35668f251a3652a60295b480c15e40fe19fc1882989a6b6c435d6249db767c99fbf9c8d13d54e928bf7772fe3de6fee7977017d00b656e83e7b934df70b6301a2b96a8d4683774d48c68423ebb6fb86b48d218b78a2f696920bb1b0f5d9d3ec50f239e16a0ba51c8812e94c682f3f1d592ac6b6f74ada5c3bd4b641688e6ef19445a9ea604669e98c90608f45a9f53c8789a3be3cd0e3c2f8ae4fdc506ae6dc8c3215c5f4a5d7c2c8ca86ba8530895bf60769b9632342318ded3ddcea297081d1d975487429fa5276696946f74b309580c1a4fa1a18fac8da4e9de3978648f3ae3eda4a6d03054d60f2f7884879664a3e8b1f3dbc050d86780ea918e81a5ced7d1924e675c05fee06d5c62586ac85d3166aba6114e990b46d5934e176597e3f16f280ed8c811093f65faddcaf3d5cb73a6bc426ec9b7dfe2b01b17e01f35cc2dcdcae4aaed2b56da91c3922e1ac4569d45ea97ebe7a4c89ab3b9abed86b6b25e8c5526dc3b98a4434bc9293d9004e18ad968fec057f69d6af15b793eb9f318acbac4f57a3976edd0def7fafc86f4769f18f99c12b94a5c93de625e8e6e4040fdfcc02e0b81b551eda6328b5fdd107e7e8f64ec761c6630489c5ef5fb0b1966dcfdbfc84327019c0de880438407cb246861430bff93aa3ec653043cb198a1c4cf9b26bbd0de6bcbf29904366824ef9f980cfc1f8ee4ad3a368ee1d3fcfa99322f8ed042bdd1d05cf9dff36fbfd3870ad1db76b2ae72b4ee20eae73d4e1fe5874ee1a4cbeafbd4c3ac71801044ab82e8d9cb4aecf2699c725b4b7c392657bc98a5da6463416d543bd189c362921b078e5a81ed43df0168b22ac7bea2a85867f39bf3c51fa2124a4acb20783a6d3bd7b4cc5a94d7bf6696f4e790ae0304b41c9eed74924a3c25412f5cd27449b715a8eab01cd2a500ef97fad59a13c77ba2c71e9235c1ddf44a2e2ee8fc209119fe26bb89d00577b83afb1e7298c131e8fd0bd58da21d7b9d206e2eb167211588ff0ceef979691f3cf0ccc559595c96cc6af6e478b2fff90056223307cc5bf88750fc6a3d69d71a88ef1a8b56d786c94d1692b852b9595b59ec60d9c6deea8a2705904892962a7674f204f93bddbdb20246eb941869300e053e17dc54b78f56a201293d935931467d7aa85268864fb988b93abdccb76ff1bd22ce72718ab3f0c0bccc607167de4033a245cbcccc1b51e437d9ef5ffcc0549fd4f0592f773a071d60b5995a47a9e65e4b2d81205e7e8fa0051fc913f4697dafc06fc65ae27e7906da7f8045a9c70113f3f523df67fa5458ecd1d6a87af17d822c36729c993c41e2300954548cddadc59912c8d292a80e27d0b08537eef6e1a340df3e5a3bc1fed1edee86bef690edd383cdd9201cd06fdf7c07a9a9ce7ed358b3de9da44144492dc0d195fd724f02a25ab2b6116a2ada66d791fa66fd97d2ac3e30f8318952e6965d951137c7a5df67c01ca96615d4e595306c6d46425e6d9d868e02e1bc1131c9dd6b44055b752f91af7cee3f58f430ef53d5e8d8ca150214d9469aeb7cccb7ee7848d2cab8c6fee66a6cf4f1535eb0fb59eeebef51aa9c1213ff3fabc02bdb256b32abbad6bf6ec744c3113406a47826f2f8048b0f1384e2231ec9f2a07eb33b22ede9946ee15be73c32cb11d72ba4d0b363256aba1d087e682fc6ad92da8c6f606b3c5885bec08efade514a4b4bd49a4a239558299c8fc00fe3ddf95add0549ff858cdfdcb6b6483a35c6df084ec6a2ee7ccc0b5130cd1324a31abb946697758856c7b67c637fc2e0beb427c818bfebe4df73cbbf50435cd079aba2420b44d89d832bca7c65401d975ca390f2bb3bd3a23312b35543330fd5fede00973b5dd4a22f55d6af619b6e5a5be76c3e42edacb0b1e406f5448585b3e274ba8b517b91ebbe0352afd4adf12f649d72624609ce7120ab9c240420eb473423d3ebed85b68ba2817209d82f8e170d2b1d59722e12010f5b14eae4b49cdf2127d8b35d568940308b6dbc45810f9a857750425a077c65e0baa104509e7ea5beb455d5d7ec519d13e48d38fa40bab433fc92c8e4bec4494fcb3918ea5ea57f43fdd8745269455fd38decf21ffacaed81043c67ea7d1a59c8a971394a5686b80090a94d814591227eb275c25244c108488282a5f8bf74575f0f32b7f9e59c09634b5d5409faffe5493400a95d15ec6fa95c3e4a4033258912cb0ac15e1890ecc5b6ef52f19d19b238f209444326c6ddaf2eeae0f70ac9ec5bd9144582ba4f4ce7f038a08770ae8e56af5655f7f6d03879f3eee565c84323d62500ea8270ec22279616c558ec675382686331f37bf0f7f0aa49a8c182c622e8e8c3d07765a61c29eed73e9b4c0b8d5504b68a0a765409cd5080ccf44caa5f39095572ce6a6a462560f42cfa388fb538ab6367f34708ebaab017b496c3464089033637c50c54b9f3dfbcbe941a29f6f50a91e877a193789088048cfc795c3d545e8cf086f22dd9b783a4bb2b15a008435d0852852192b9732277d4e252090457e96c82dad0bcf0def6255d22582fef93a794f18878e06a5aad869938a435238aa15dad292d15c03d92b71b5f8a22bb05f297b1779652d6a3a4cf2e19a48b968e34433a11564b79e85ab341787c9320a4024577b545ab0df11fc8416073558e02226eb69954d759d42c35fa2a3e65d65fa091762a901848c5b888d2012c9eaa6635cdb6750351efd5f14174f6a634f578cf98257be5cff1f3862d2a1c480cbd615c09fb0f903a368e77ebe248862868629ba92a20bf89ced397d33a26c8b9a050d4cf7798de8e4d0f7e9c054a5d4ef8c20b1d0e67532361d501393eecb62b395209e576ad1480b490794b51d375c98cc8b20ad281868ca35117c60eb2978b80b2e45168f103d7417dc8f84fb143ff2ce8e51266c38584e0ed61bf0a1be6a17faadcb07f402df824683321d9027df418a177937da7e40aa6d47a0aa19879e3eb54772bd217fe4e63675ce24073bac6fa58f3f6a57ed26e840c7b00ac00ecd3e23fe6ca4f6d414f0e495e63c24c6068aeb212cbcbcc85b470b61276862d5fb778915a61ef8ebb7cddffb50b8a7f2adec79c7f8a10dd4bd0f10eb0e2488fc09280ce9d051adfbb22a7f22c36b49abad6536cc7a1f1f1efc8b43a6d5d51aa8bba0e8d73763bab0cd1a154fa6d2c269e2c3c18c416c2f399d67ef749176d98007037d195eb94741d6f5d50bc4fc47ae833703e0883fffd011e5e1521463fae8dd502961e34c93cebccb2144534c047325cc43c265c54a009ef81f1958d9f03079478202f1ce763284f88c09a20532435ed967a4cb53820d3a698ac6cc01e525eab58673e681a7fc5cdc22a892535c7387237486cd9b103aab7c185df31d4a27cbf1ed3b576c1763bc33d7a21c8330430dc7789c4d842c84dbba9bbcff7ac768183f3401fbfe4e8e245e2136d2dc610400acd7b291be985e18", 0x1042}}, 0x1006)
bpf$BPF_GET_BTF_INFO(0xf, 0x0, 0x0)
pipe2$9p(&(0x7f0000002180), 0x0)
mkdir(0x0, 0x0)
pipe2$9p(0x0, 0x0)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000080)=ANY=[], 0x15)
fanotify_init(0x0, 0x800)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))

6.714073992s ago: executing program 1 (id=84):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.events\x00', 0x275a, 0x0)
socket$rds(0x15, 0x5, 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000100)=0xfffffffffffffffe)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$NL80211_CMD_SET_POWER_SAVE(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000540)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000000000006007400003d00000008000300555a0b974dc7fd421ff3e72af102625290a18ae19d4c52272255536fa0357e3319e47744f01cc2767d0f6e85366cf2b887003b53c64e526ddd51af1b8d1e1b", @ANYRES32=0x0, @ANYBLOB='\b\x00]\x00\x00\x00\x00\x00'], 0x24}}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r3)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r3, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r4, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r5, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r6 = accept(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000a80)={&(0x7f0000000080)=ANY=[], 0xfffffdef}}, 0x0)
setsockopt$inet6_tcp_int(r6, 0x6, 0x12, &(0x7f00000000c0), 0x3f)
r7 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r7, 0x0, 0x482, &(0x7f0000000000)={0x6, @local, 0x0, 0x3, 'lblc\x00'}, 0x2c)
sendmsg$TIPC_CMD_RESET_LINK_STATS(0xffffffffffffffff, 0x0, 0x0)
r8 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r8, 0x0, 0x483, &(0x7f0000000000)={0x6, @private, 0x0, 0x3, 'dh\x00'}, 0x2c)
listxattr(0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)

6.62534336s ago: executing program 4 (id=85):
syz_open_dev$vim2m(&(0x7f0000000040), 0x0, 0x2)
socket$nl_xfrm(0x10, 0x3, 0x6)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000001040)={0x9b, {"a2e3ad09ed0d09f91a5e070987f70e06d038e7ff7fc6e5539b0d3e0e8b089b3f363063030890e0879b0af8c6e70a9b334a959b669a240d0a0af3988f7ef319520100ffe8d178708c526db51b1b5b31070d0773090acd3b78130daa61d8e8040001000000b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f6709000000a141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce7cd9f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d4ac01b75d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4350aeae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7af1d0e54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c01008e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40427db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e1a63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afa2d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02daee67918e5d6787463183b4b87c1050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7340002000000000000f288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4108b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb784ed7148b6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b8081c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0d8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c6b00000000000000f96f06817fb903729a7db6ff957697c9ede7885d94ffb0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f9000", 0xfffffffffffffebd}}, 0x1006)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x42, 0x0)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
mount$fuse(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000002100), 0x33832, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="2c67726f75705f69643d941373fc0900c5de4e8ed05380a32aee9fec3f54e6a4c47edfc5f81b8877a87f3cbb30a7af5491a2996daf5d42b10e26efeec957d974c180a1c26a3892e411340d9788cea0bb79adbaa8b7b82beb6e7bfe7997135b66258b888a08e4386cc06dd5208d098e1b9175e68494be2413b770cfcf4673cf9c4d4d50a7af97a5", @ANYRESDEC=0x0])
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r3, 0x29, 0x33, &(0x7f0000000000)=0x7, 0x4)
getsockopt$inet6_buf(r3, 0x29, 0x6, &(0x7f0000000380)=""/25, &(0x7f0000000040)=0x19)
syz_emit_vhci(&(0x7f0000000640)=ANY=[], 0x22)
syz_emit_vhci(&(0x7f0000000240)=@HCI_EVENT_PKT={0x4, @hci_ev_le_meta={{0x3e, 0x1f}, @hci_ev_le_enh_conn_complete={{}, {0x0, 0xc9, 0x0, 0x1, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, @none, @any, 0x0, 0x0, 0x1ff}}}}, 0x22)
syz_emit_vhci(0x0, 0x0)
r4 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r4, 0xc02064b2, &(0x7f0000000040)={0x7ff, 0xef9, 0x1})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r4, 0xc02064b2, &(0x7f00000000c0)={0x5, 0x8, 0x7fff})
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x11, r4, 0x1000f0000)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2c, &(0x7f0000000000)='/proc/sys/\x00et/\x00\x00v4\x00\x00s/\x92ync_\x00le\xf44\x8cm\xa0\x8dN\xd4\xa2\x88\x00\xd1l,'}, 0x30)
socket$inet6_mptcp(0xa, 0x1, 0x106)
socket$netlink(0x10, 0x3, 0x1)
socket$unix(0x1, 0x5, 0x0)
socket(0x10, 0x3, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r5 = syz_open_dev$dri(&(0x7f0000000100), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB(r5, 0xc01c64ae, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x4, 0x4})

6.269933762s ago: executing program 3 (id=86):
ioctl$int_in(0xffffffffffffffff, 0x0, &(0x7f0000000780)=0x2)
socket$netlink(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
ioctl$VHOST_SET_FEATURES(0xffffffffffffffff, 0x4008af00, 0x0)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
creat(&(0x7f0000000180)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x8240, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x8, &(0x7f00000000c0), 0x4)
r1 = socket$l2tp6(0xa, 0x2, 0x73)
openat$nvram(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r2)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r3 = inotify_init1(0x0)
fcntl$setown(r3, 0x8, 0xffffffffffffffff)
fcntl$getownex(r3, 0x10, &(0x7f0000000140)={0x0, <r4=>0x0})
r5 = syz_open_procfs(r4, &(0x7f0000000600)='fd/4\x00')
ioctl$FS_IOC_SETFLAGS(r5, 0x400448dd, &(0x7f0000000380))
fsync(r5)
bind$l2tp6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x20)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r6, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={0x0, 0x12c}}, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, 0x0, 0x0)
getdents64(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_setup(0x7385, &(0x7f00000001c0)={0x0, 0x5ea, 0x0, 0x3, 0x1c6}, &(0x7f0000000280), 0x0)

5.81261241s ago: executing program 0 (id=87):
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x16, 0x4, &(0x7f0000000080)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x0, 0x6a, 0xa, 0xff00}, [@call={0x3c}, @exit, @map_fd, @jmp]}, &(0x7f0000000140)='GPL\x00', 0x2, 0xffa0, &(0x7f0000000180)=""/149, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x1e, 0x10, 0x0, 0x1e}, 0x2d) (fail_nth: 2)

4.996323328s ago: executing program 3 (id=88):
r0 = socket(0x2000000000000021, 0x2, 0x10000000000002)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r1 = getpid()
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0xfffd)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000200)=0x8, 0x4)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
bind$bt_l2cap(r4, 0x0, 0x0)
connect$bt_l2cap(r4, &(0x7f0000000100)={0x1f, 0x0, @none}, 0xe)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
bind$bt_l2cap(r5, &(0x7f00000000c0)={0x1f, 0x0, @none}, 0xe)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)
r8 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r9 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @thr={0x0, &(0x7f00000003c0)}}, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TCSETSF(r8, 0x5409, 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
r10 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f0000006ac0)=[{{&(0x7f0000000280)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f0000001580)=[{&(0x7f0000000080)="d963d0622ec77b2d17ad2de01f108727fd9d238aa254d55ab0a6d430b8cff10efaf5beb8f2712bad386e612f9635e6b8a82fb43006aabfbbb3a7cc", 0x3b}, {0x0}, {&(0x7f0000000340)="6b02d9f3e78b21dfdd8e3388f1304c7a73c12e521a1a3a5c6100a00244c66946e695787b0366e7d42e0d584d91aff18a905d52a9e2e46df31793d86455351405e78a1521923e9afc360ee26971e6b82528853986efaf1caac7", 0x59}, {0x0}, {&(0x7f00000003c0)="e8534742c5abcc3861d72d443ef560367e4720f129b09b14d5cbefaeb14550fd47bd52fec0d47e6cfb29bc1c01367696efef2bcfb841e5fe9262e2535dc47a46e0fc2e42e70006231a86888ff2508fcc06d48c381d68b4ba51a6d294e97e3fa45f7689f1c19da8a806bf21d43ccf52b4e716122d0ff5b2021dbe2d48cdeaa6c617b00b2804edb7cf11dfc28aa4c829b3cd2ed3391fa1dadb362120ab8ba7ce4682d0347be000d2de93868a8c884e4bd6e90abdd64bef4ee8", 0xb8}, {&(0x7f0000000480)="fa93e009be6dd6a7bc33f1d51148dc0fc8974d965d9bfadcf51e95cedb151f18dbf5364266a194ae06e3c9ffc3d7edf005ffb49fa29006650b3ce69c3eebdf246d0ba097c5a692185fea7bc33b498df8974e730bb08b784bd38f0a5bdffd433180f10458162a3a535f46c30cba0c39a6be53a962f48d16c4dd0355fa22", 0x7d}], 0x6, &(0x7f00000016c0)=ANY=[@ANYBLOB="1c000000328200000100000002000000", @ANYRES32=r9, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=r10, @ANYRES32=r2, @ANYRES32=r4, @ANYRES32=r6, @ANYRES32=r7, @ANYRES32=r5, @ANYRES32=r6, @ANYRES32=r6, @ANYRES32=r2, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r1, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=r1, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x90, 0x40000}}, {{&(0x7f0000001780)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f0000003a80)=[{&(0x7f00000038c0)="ba90037e22f27176aa094a1fc0e36a2eac9f2fdc83c1f9933dc3fafe7248500000e299de9524943e8f99976dad565c7e2c1ccd3633f172bb3588882fd352a41ca57cc87db6b02f41a3536f7379a36206b0fab123a1a09b311ae2ba3c2683dceda2d1c89b9103fe25beb736861a2bb8200ab7ccef1ffffc4afac7580ce513675f67fdd24fbdff96b17c0c2058a8030ef6bae91ff6812a256f55fd9cbee747f71f9ab7bceab539ef696bcc75162fb8e7ac36b10b772ce72a88d3b5008f6eb8498ae5d8d078100992e9c45e395c3485066fd20f3545243073242ac50993e7", 0xdd}, {&(0x7f00000039c0)="08ea967a9319055a502b6d348fefa0eeecda55f63b7c2f", 0x17}], 0x2, &(0x7f0000005f00)=[@cred={{0x1c, 0x1, 0x2, {r9}}}, @rights={{0x18, 0x1, 0x1, [r10, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r1}}}, @cred={{0x1c, 0x1, 0x2, {r1, 0x0, 0xffffffffffffffff}}}, @rights={{0x28, 0x1, 0x1, [r3, r4, r10, r7, r4, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [r4, 0xffffffffffffffff]}}], 0xb8}}, {{&(0x7f0000005fc0)=@abs={0x0, 0x0, 0x4e24}, 0x6e, &(0x7f0000006400)=[{0x0}, {&(0x7f0000006200)="022e8519cbc5857c4a84647a100ef630e5b7f65495f8e0a6135690669b1b77760e356e87cfea98c3e2968d7fbb8bf30fdafad2d3880230d78d63911549af6f7a74117e7f4fe59b847d7cb2d11bd6da8c6b9c1afe5969eaf7818909848d2b5caa41af1a3d30ef9950ac492498081028a727e5facd6f8d2e31d4426508bdaf167d1459e7e3c8267fac2e3e80689e5962a4e43a52c595eb3c6ec5b4", 0x9a}, {&(0x7f0000006300)="636a7d677590275b2cdf859bf5afb0c2f9df431f3d02c943e74ce86ca1e2dcb59e83e3eabdd290c86de01070d7c5c7174e78e13c9f7526597b7e20a8a6dbe56bcdf8f866c130660b010e728135f0374768766c7347a5b156495918ba13fc623fbf56a90344544aabd3ec55edde776647c071bd862e5362fd9a9e67ef5acf96ff99ca4a48c8a7062dd9bb8f6c201cad00c620bd23c508d8958c42753a4b1af66cc47d7667b9b8d8c542eb077b5ce29cc9014af222d13b2b6e96d0cedd0711e04b20f5dd9e173f4ed7c5e5", 0xca}], 0x3, &(0x7f0000006640)=[@cred={{0x1c, 0x1, 0x2, {r9}}}, @cred={{0x1c, 0x1, 0x2, {r1, 0x0, 0xee01}}}], 0x40, 0x20000000}}, {{&(0x7f0000006680)=@abs={0x0, 0x0, 0x4e22}, 0x6e, &(0x7f0000006780), 0x0, 0x0, 0x0, 0x804}}, {{&(0x7f0000006900)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000006a80)=[{&(0x7f0000006980)="d5e8cc3dd0c4c2f1f385c5fc635d28f3924df5b43da1d30200d272e87ad875df85ac1f546cd7", 0x26}, {&(0x7f00000069c0)="256af639f68852e9c90150ba2cebca682e682f2e41109fe23e99166f7ad5ddc14b7b6a4775d94b25a6eb5e", 0x2b}], 0x2}}], 0x5, 0x0)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000040)={0x802}, 0x10)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0)

4.019561576s ago: executing program 1 (id=89):
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r0)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r1 = inotify_init1(0x0)
fcntl$setown(r1, 0x8, 0xffffffffffffffff)
fcntl$getownex(r1, 0x10, &(0x7f0000000140)={0x0, <r2=>0x0})
r3 = syz_open_procfs(r2, &(0x7f0000000600)='fd/4\x00')
ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(r3, 0x40286608, &(0x7f0000000180)={@desc={0x31, 0x2000000, @desc3}}) (fail_nth: 1)

3.920429771s ago: executing program 0 (id=90):
gettid()
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
read(r0, &(0x7f0000000200)=""/209, 0xd1)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r1)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
listen(r2, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000900)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "ff00f5", 0x14, 0x6, 0x0, @local, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r3}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = getpid()
process_vm_readv(r4, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = mq_open(&(0x7f0000000340)='*,-[+[H+]\x00\xb1\xb6\xa3\xf2\xb7\x90\x14\xca\xef\x1fkd\xa6\xf72\xcb\xb86\xc6\xaaw\xe7\xfc\xcd\xa2\xad\x00|\x9bW\x7f\xe4\xd5\xd8\xfe\xb9\xecu6P\x04C\a\xf8l\xe5\r\t%\xbc\x1a\x98\x16\x91\vF\xa6#\xdahP\x87b\xb9B\xda\xa7\xfc\xdc\xe2\x85\xc2\xdc\x10\x89{~&v.\xbc:jNx\xaak\x94\x8b\xe5}^\xb2\xfc\x99\x10\xd7*J\xb9\xe1rM\xde\xc1\xab<eH.o\xf9#Y\xbf6\xfd9\x0f\xc8H\xe9al\x9e\xde\x02\xb3\xb8\x06(5r\x89\x84k\x8at!\x10\xb4\'\xa3\x96u\xf7\x96\xa4\xd4\x0f\x14\x1a\xf6\xcb\xb2\x97|\xb9;\xee\x18\xd6\x02\xa6\xc2\x0f\xa0\xc0\f5\x9c\x06\x16NSC\xab\xfd\xe4\xd8~e,\x1dn:\xf8\xac|\x0f2\xad\xa9f\x1f\xad>\xa9I\xe2p\xdfHls\xfek\xfcDs\x05\xe4\x19.\xbd\x0f\xb5\xbb\\\xd7\xa6\xed\x86Fl\xdf\xd6\xb8.\xb8(\xc8)3\xad\x80y(\xb3\xe5\xba\xcb\x02\xc3\x8dK\xc2\x9b\x17\\\x04^\xf2*\x92k\xb5\xc4\x8c\xf8G\xf0\x89%\x91\xbf\x1c\t\v\xc3\x0f]\xfb\xea\xb8\xdb\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00{\b\x9cX!\x1c4\x83\vF\r\xedht\x14h\xe4\xa1\xd37\xf5\x10\x84t\xc8\x87D\xd7\xe9\xe8', 0x40, 0x0, 0x0)
mq_getsetattr(r5, &(0x7f0000000000), 0x0)

3.870788433s ago: executing program 2 (id=91):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0xa14)
mkdir(0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000001380))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8}, 0x0)
getgroups(0x3, &(0x7f0000000000)=[0xee00, 0xffffffffffffffff, <r4=>0xee00])
getgroups(0x2, &(0x7f0000000040)=[0xee00, <r5=>0xee00])
setresgid(0x0, 0xee00, 0x0)
setresgid(r5, r4, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r6, r7, 0x2}, 0x10)

3.749930403s ago: executing program 3 (id=92):
syz_emit_ethernet(0x4a, &(0x7f0000000740)={@random="5b37182347bc", @random="553a1cedcc04", @val, {@arp={0x806, @ether_ipv6={0x1, 0x86dd, 0x6, 0x10, 0x0, @empty, @remote, @local, @empty}}}}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
pipe2$watch_queue(&(0x7f00000002c0), 0x80)
add_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffc)
r0 = syz_io_uring_setup(0x24fb, &(0x7f0000000000)={0x0, 0x0, 0x10100}, &(0x7f0000000080)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
r4 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r4)
sendto$inet6(r3, &(0x7f0000000200)="07c9dbc3ef49858631e4d5a90c11518a3c2f8ed1110e0d5c69d8f99de03b1929dd894050353d76a6caabe2b60503c6b0d088db7f232da5ea3c3333b3629cd556e20880efa0cb512d3f85d2579ebe0632a4dab9b141b9f7d66357b01f6f5113194c96fc063349e4f6ed6b867cbbbbc32be873b68ed6a1cdf824e8d15fddb49dc4faf83533cda316fb72eada246f2b66cb819ba7c0be2fdcdc1a603d050dfd1c76ff312e4db74eab2623d50eb7d7c834fe2a7ce5affc08faa32adae9b14bc6f69140e0440de4580940c6e9114c77dda31dffb6e677a88bbe88ec7793156a26789bcb9d14f501531d44d164c62a41b4bc597a2f3e19dacec2", 0xf7, 0x4001, &(0x7f00000000c0)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}, 0x1c)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, r3, 0x0})
listen(r3, 0x100)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

3.581831884s ago: executing program 1 (id=93):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socket$packet(0x11, 0x0, 0x300)
r2 = socket$alg(0x26, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x40000000008b}, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
tee(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
fsetxattr$security_capability(0xffffffffffffffff, 0x0, &(0x7f0000000280)=@v2, 0x14, 0x0)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
bind$alg(r2, &(0x7f0000001000)={0x26, 'hash\x00', 0x0, 0x0, 'sha384-generic\x00'}, 0x58)
r6 = accept$alg(r2, 0x0, 0x0)
r7 = syz_open_dev$sg(&(0x7f00000000c0), 0x0, 0x0)
ioctl$SG_IO(r7, 0x2285, &(0x7f00000005c0)={0x53, 0x0, 0x0, 0x0, @scatter={0x0, 0x3, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
sendmmsg(r6, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0x7ffff000}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x5c, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r8, &(0x7f0000000380), 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r8, 0x0)
r9 = dup(r1)
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_NMI(r10, 0xae9a)

2.742961606s ago: executing program 2 (id=94):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x3, @fixed}, 0xe)
getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={0x0, 0x0, 0x66}, 0x20)
socket$nl_generic(0x10, 0x3, 0x10)
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
fcntl$notify(r1, 0x402, 0x29)
fcntl$setsig(r1, 0xa, 0x21)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r2, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000006c0)=ANY=[@ANYBLOB="3800000001010101000000000000000002000000180001801400018008220100ac1414aa080002914e63d89511bec780080001008101000040830b95d5e759b59c7f681c1935ca2b5c091dbe3a2caba9b3831e1e7053e21fd1257ee7141e54db54354aec974d1aaf9f77ed2e7761ec421d7f249f3f926248f470329bcb511a6c6e125bbd6d88d13fdbce580c611559b82a281ec1a8fc0bfed1dd7180d6e1d15fddd334ba43a788a685a7e7ea43bcd738ed8ed83d5ba0f9ea9be2a1fc612c96ce02413d7b498c68"], 0x38}}, 0x0)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="600000000206050000000000000000feff00000014000300686173683a69702c706f72742c6970000900020073797a32000000000500040000000000050005000a0000000500010006000000140007800800064000000000080008"], 0x60}}, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000040)={<r4=>0xffffffffffffffff}, 0x106, 0x3}}, 0x20)
write$RDMA_USER_CM_CMD_BIND(0xffffffffffffffff, &(0x7f0000000100)={0x14, 0x88, 0xfa00, {r4, 0x0, 0x0, @ib={0x1b, 0x103, 0x6400, {"44f209cb5695b8cc9bed2fb1e1dcf7fd"}, 0x80, 0xfffa, 0x7ff}}}, 0x90)
r5 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
socket$inet_sctp(0x2, 0x5, 0x84)
ioctl$USBDEVFS_FREE_STREAMS(r5, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="02002303100007"])
openat(0xffffffffffffffff, 0x0, 0x0, 0x5)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000240))
fcntl$lock(r1, 0x26, &(0x7f0000000080))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x1a, &(0x7f0000000040)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0x7fc000ff}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r6, 0xc0502100, &(0x7f0000000340)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r6, 0xc0182101, &(0x7f00000003c0)={r7})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r6, 0xc0502100, &(0x7f0000000480)={<r8=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000080)={r8, 0x3, r6, 0x5})
r9 = openat$iommufd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r9, 0x3b81, &(0x7f0000000080)={0x19})

160.726445ms ago: executing program 3 (id=95):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x4, 0x8, 0x0, 0x4, 0xc80, 0xffffffffffffffff, 0x80000001, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x5, 0x2}, 0xffffffffffffff7d)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
ioctl$FS_IOC_RESVSP(r2, 0x40305839, 0x0)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r4 = dup(r3)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
ioctl$TCSETSW2(r3, 0x402c542c, &(0x7f00000000c0)={0x8, 0x7f, 0x0, 0x0, 0x3, "f06fc539471398450104663ea5b3e92dad434f"})
r5 = socket$inet_udp(0x2, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r6 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r6, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000380)={&(0x7f00000001c0), 0xc, &(0x7f0000000340)={&(0x7f0000000280)=@ipv4_getnetconf={0x3c, 0x52, 0x10, 0x70bd29, 0x25dfdbfe, {}, [@NETCONFA_RP_FILTER={0x8, 0x3, 0x10001}, @NETCONFA_PROXY_NEIGH={0x8, 0x5, 0x4}, @IGNORE_ROUTES_WITH_LINKDOWN={0x8, 0x6, 0xfffffffd}, @NETCONFA_PROXY_NEIGH={0x8, 0x5, 0x3ab}, @IGNORE_ROUTES_WITH_LINKDOWN={0x8, 0x6, 0x7f}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000015}, 0x4004)
setsockopt$SO_BINDTODEVICE(r5, 0x1, 0x19, &(0x7f0000000440)='wlan0\x00', 0x10)
sendto$inet(r5, 0x0, 0x0, 0x400c8c6, &(0x7f0000000180)={0x2, 0x4e21, @multicast2}, 0x10)
sendto$inet(r5, &(0x7f0000000100)='J', 0xfdbe, 0x4004084, 0x0, 0x11000a00)
write$UHID_INPUT(r4, &(0x7f0000001980)={0x765, {"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", 0x1000}}, 0x1006)
open(0x0, 0x0, 0x0)
creat(&(0x7f0000000300)='./bus\x00', 0x0)
open(&(0x7f0000000440)='./bus\x00', 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socket$inet6(0xa, 0x800, 0x7)

117.631536ms ago: executing program 0 (id=96):
gettid()
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
read(r0, &(0x7f0000000200)=""/209, 0xd1)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r1)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
listen(r2, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000900)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "ff00f5", 0x14, 0x6, 0x0, @local, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r3}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = getpid()
process_vm_readv(r4, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
r5 = mq_open(&(0x7f0000000340)='*,-[+[H+]\x00\xb1\xb6\xa3\xf2\xb7\x90\x14\xca\xef\x1fkd\xa6\xf72\xcb\xb86\xc6\xaaw\xe7\xfc\xcd\xa2\xad\x00|\x9bW\x7f\xe4\xd5\xd8\xfe\xb9\xecu6P\x04C\a\xf8l\xe5\r\t%\xbc\x1a\x98\x16\x91\vF\xa6#\xdahP\x87b\xb9B\xda\xa7\xfc\xdc\xe2\x85\xc2\xdc\x10\x89{~&v.\xbc:jNx\xaak\x94\x8b\xe5}^\xb2\xfc\x99\x10\xd7*J\xb9\xe1rM\xde\xc1\xab<eH.o\xf9#Y\xbf6\xfd9\x0f\xc8H\xe9al\x9e\xde\x02\xb3\xb8\x06(5r\x89\x84k\x8at!\x10\xb4\'\xa3\x96u\xf7\x96\xa4\xd4\x0f\x14\x1a\xf6\xcb\xb2\x97|\xb9;\xee\x18\xd6\x02\xa6\xc2\x0f\xa0\xc0\f5\x9c\x06\x16NSC\xab\xfd\xe4\xd8~e,\x1dn:\xf8\xac|\x0f2\xad\xa9f\x1f\xad>\xa9I\xe2p\xdfHls\xfek\xfcDs\x05\xe4\x19.\xbd\x0f\xb5\xbb\\\xd7\xa6\xed\x86Fl\xdf\xd6\xb8.\xb8(\xc8)3\xad\x80y(\xb3\xe5\xba\xcb\x02\xc3\x8dK\xc2\x9b\x17\\\x04^\xf2*\x92k\xb5\xc4\x8c\xf8G\xf0\x89%\x91\xbf\x1c\t\v\xc3\x0f]\xfb\xea\xb8\xdb\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00{\b\x9cX!\x1c4\x83\vF\r\xedht\x14h\xe4\xa1\xd37\xf5\x10\x84t\xc8\x87D\xd7\xe9\xe8', 0x40, 0x0, 0x0)
mq_getsetattr(r5, &(0x7f0000000000), 0x0)

831.365µs ago: executing program 1 (id=97):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f00000000c0)=[@in6={0xa, 0x0, 0x0, @private2}]}, &(0x7f0000000180)=0x10)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x29, 0x85, &(0x7f0000000000)={0x0, @in6={{0xa, 0x0, 0x0, @private2}}}, 0x90)

0s ago: executing program 2 (id=98):
ioctl$int_in(0xffffffffffffffff, 0x0, &(0x7f0000000780)=0x2)
socket$netlink(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
ioctl$VHOST_SET_FEATURES(0xffffffffffffffff, 0x4008af00, 0x0)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
creat(&(0x7f0000000180)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x8240, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x8, &(0x7f00000000c0), 0x4)
r1 = socket$l2tp6(0xa, 0x2, 0x73)
openat$nvram(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r2)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r3 = inotify_init1(0x0)
fcntl$setown(r3, 0x8, 0xffffffffffffffff)
fcntl$getownex(r3, 0x10, &(0x7f0000000140)={0x0, <r4=>0x0})
r5 = syz_open_procfs(r4, &(0x7f0000000600)='fd/4\x00')
ioctl$FS_IOC_SETFLAGS(r5, 0x400448dd, &(0x7f0000000380))
fsync(r5)
bind$l2tp6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x20)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r6, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={0x0, 0x12c}}, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, 0x0, 0x0)
getdents64(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_setup(0x7385, &(0x7f00000001c0)={0x0, 0x5ea, 0x0, 0x3, 0x1c6}, &(0x7f0000000280), 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.50' (ED25519) to the list of known hosts.
[   68.601856][   T30] audit: type=1400 audit(1720350443.028:87): avc:  denied  { mounton } for  pid=5076 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=1925 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   68.609574][ T5076] cgroup: Unknown subsys name 'net'
[   68.624633][   T30] audit: type=1400 audit(1720350443.028:88): avc:  denied  { mount } for  pid=5076 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   68.652086][   T30] audit: type=1400 audit(1720350443.068:89): avc:  denied  { unmount } for  pid=5076 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   68.828577][ T5076] cgroup: Unknown subsys name 'rlimit'
[   68.986164][   T30] audit: type=1400 audit(1720350443.408:90): avc:  denied  { setattr } for  pid=5076 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=733 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   69.009531][   T30] audit: type=1400 audit(1720350443.418:91): avc:  denied  { create } for  pid=5076 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   69.050862][   T30] audit: type=1400 audit(1720350443.418:92): avc:  denied  { write } for  pid=5076 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   69.071423][   T30] audit: type=1400 audit(1720350443.418:93): avc:  denied  { read } for  pid=5076 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   69.091866][   T30] audit: type=1400 audit(1720350443.438:94): avc:  denied  { mounton } for  pid=5076 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[   69.117106][   T30] audit: type=1400 audit(1720350443.438:95): avc:  denied  { mount } for  pid=5076 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[   69.130492][ T5077] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
Setting up swapspace version 1, size = 127995904 bytes
[   69.140816][   T30] audit: type=1400 audit(1720350443.458:96): avc:  denied  { read } for  pid=4752 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=1
[   70.500106][ T5076] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   71.880528][ T1241] ieee802154 phy0 wpan0: encryption failed: -22
[   71.887205][ T1241] ieee802154 phy1 wpan1: encryption failed: -22
[   74.026823][   T30] kauditd_printk_skb: 6 callbacks suppressed
[   74.026841][   T30] audit: type=1400 audit(1720350448.448:103): avc:  denied  { mounton } for  pid=5085 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[   74.075234][   T30] audit: type=1400 audit(1720350448.458:104): avc:  denied  { mount } for  pid=5086 comm="syz-executor" name="/" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[   74.107430][   T30] audit: type=1400 audit(1720350448.458:105): avc:  denied  { create } for  pid=5086 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   74.127689][   T30] audit: type=1400 audit(1720350448.458:106): avc:  denied  { read write } for  pid=5086 comm="syz-executor" name="vhci" dev="devtmpfs" ino=1077 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[   74.159467][   T30] audit: type=1400 audit(1720350448.458:107): avc:  denied  { open } for  pid=5086 comm="syz-executor" path="/dev/vhci" dev="devtmpfs" ino=1077 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[   74.175055][ T5100] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   74.183638][   T30] audit: type=1400 audit(1720350448.518:108): avc:  denied  { ioctl } for  pid=5085 comm="syz-executor" path="socket:[4438]" dev="sockfs" ino=4438 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   74.205269][ T5101] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   74.223806][ T5100] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   74.229743][ T5102] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   74.232110][ T5100] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   74.239404][ T5102] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   74.247319][ T5100] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   74.259364][ T5102] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   74.260331][ T5101] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   74.266973][ T5102] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   74.275114][ T5100] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   74.281679][ T5102] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   74.287845][ T5101] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   74.294496][ T5102] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   74.302412][ T5100] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   74.309432][ T5102] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   74.315950][ T5100] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   74.322495][ T5102] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   74.331155][ T5101] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   74.336637][ T5102] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   74.344551][ T5100] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   74.352992][ T4482] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   74.358361][ T5101] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   74.372804][ T5100] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   74.377455][ T5102] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   74.387113][ T5100] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   74.387200][ T5103] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   74.395835][ T5100] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   74.409946][ T5100] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   74.413359][ T5096] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   74.431278][   T30] audit: type=1400 audit(1720350448.838:109): avc:  denied  { read } for  pid=5087 comm="syz-executor" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   74.460951][   T30] audit: type=1400 audit(1720350448.848:110): avc:  denied  { open } for  pid=5085 comm="syz-executor" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   74.517538][   T30] audit: type=1400 audit(1720350448.848:111): avc:  denied  { mounton } for  pid=5085 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[   75.037536][   T30] audit: type=1400 audit(1720350449.458:112): avc:  denied  { module_request } for  pid=5085 comm="syz-executor" kmod="rtnl-link-nicvf" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[   75.162481][ T5085] chnl_net:caif_netlink_parms(): no params data found
[   75.351656][ T5087] chnl_net:caif_netlink_parms(): no params data found
[   75.412308][ T5086] chnl_net:caif_netlink_parms(): no params data found
[   75.502545][ T5088] chnl_net:caif_netlink_parms(): no params data found
[   75.568810][ T5092] chnl_net:caif_netlink_parms(): no params data found
[   75.600943][ T5085] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.608690][ T5085] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.616082][ T5085] bridge_slave_0: entered allmulticast mode
[   75.624332][ T5085] bridge_slave_0: entered promiscuous mode
[   75.669898][ T5085] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.678995][ T5085] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.686104][ T5085] bridge_slave_1: entered allmulticast mode
[   75.694515][ T5085] bridge_slave_1: entered promiscuous mode
[   75.744509][ T5087] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.754025][ T5087] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.762290][ T5087] bridge_slave_0: entered allmulticast mode
[   75.770321][ T5087] bridge_slave_0: entered promiscuous mode
[   75.829484][ T5087] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.836901][ T5087] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.844571][ T5087] bridge_slave_1: entered allmulticast mode
[   75.851941][ T5087] bridge_slave_1: entered promiscuous mode
[   75.899453][ T5086] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.906644][ T5086] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.913920][ T5086] bridge_slave_0: entered allmulticast mode
[   75.920987][ T5086] bridge_slave_0: entered promiscuous mode
[   75.930912][ T5086] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.938201][ T5086] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.945425][ T5086] bridge_slave_1: entered allmulticast mode
[   75.953485][ T5086] bridge_slave_1: entered promiscuous mode
[   75.978702][ T5085] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   75.991965][ T5085] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   76.044226][ T5087] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   76.057730][ T5087] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   76.148170][ T5086] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   76.161700][ T5086] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   76.189228][ T5085] team0: Port device team_slave_0 added
[   76.195552][ T5088] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.203377][ T5088] bridge0: port 1(bridge_slave_0) entered disabled state
[   76.211050][ T5088] bridge_slave_0: entered allmulticast mode
[   76.218831][ T5088] bridge_slave_0: entered promiscuous mode
[   76.241786][ T5092] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.249024][ T5092] bridge0: port 1(bridge_slave_0) entered disabled state
[   76.256209][ T5092] bridge_slave_0: entered allmulticast mode
[   76.263569][ T5092] bridge_slave_0: entered promiscuous mode
[   76.302620][ T5085] team0: Port device team_slave_1 added
[   76.310042][ T5088] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.317318][ T5088] bridge0: port 2(bridge_slave_1) entered disabled state
[   76.324443][ T5088] bridge_slave_1: entered allmulticast mode
[   76.332916][ T5088] bridge_slave_1: entered promiscuous mode
[   76.339576][ T5092] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.347470][ T5092] bridge0: port 2(bridge_slave_1) entered disabled state
[   76.354600][ T5092] bridge_slave_1: entered allmulticast mode
[   76.361862][ T5092] bridge_slave_1: entered promiscuous mode
[   76.387486][ T5087] team0: Port device team_slave_0 added
[   76.437780][ T5093] Bluetooth: hci1: command tx timeout
[   76.443847][ T5093] Bluetooth: hci3: command tx timeout
[   76.489471][ T5086] team0: Port device team_slave_0 added
[   76.497802][ T5087] team0: Port device team_slave_1 added
[   76.504787][ T5085] batman_adv: batadv0: Adding interface: batadv_slave_0
[   76.512577][ T5085] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   76.539180][ T5093] Bluetooth: hci4: command tx timeout
[   76.539208][ T5102] Bluetooth: hci0: command tx timeout
[   76.539585][   T53] Bluetooth: hci2: command tx timeout
[   76.544994][ T5085] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   76.571744][ T5088] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   76.585250][ T5088] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   76.609707][ T5086] team0: Port device team_slave_1 added
[   76.619071][ T5092] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   76.644448][ T5085] batman_adv: batadv0: Adding interface: batadv_slave_1
[   76.651940][ T5085] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   76.681573][ T5085] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   76.738315][ T5092] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   76.771193][ T5087] batman_adv: batadv0: Adding interface: batadv_slave_0
[   76.780950][ T5087] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   76.807146][ T5087] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   76.831754][ T5086] batman_adv: batadv0: Adding interface: batadv_slave_0
[   76.839230][ T5086] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   76.865708][ T5086] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   76.879825][ T5086] batman_adv: batadv0: Adding interface: batadv_slave_1
[   76.887328][ T5086] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   76.913709][ T5086] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   76.961488][ T5092] team0: Port device team_slave_0 added
[   76.968473][ T5087] batman_adv: batadv0: Adding interface: batadv_slave_1
[   76.975438][ T5087] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   77.002233][ T5087] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   77.018034][ T5088] team0: Port device team_slave_0 added
[   77.033339][ T5088] team0: Port device team_slave_1 added
[   77.043046][ T5092] team0: Port device team_slave_1 added
[   77.087497][ T5092] batman_adv: batadv0: Adding interface: batadv_slave_0
[   77.094470][ T5092] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   77.120759][ T5092] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   77.134722][ T5092] batman_adv: batadv0: Adding interface: batadv_slave_1
[   77.142629][ T5092] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   77.168712][ T5092] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   77.278393][ T5085] hsr_slave_0: entered promiscuous mode
[   77.285069][ T5085] hsr_slave_1: entered promiscuous mode
[   77.333541][ T5086] hsr_slave_0: entered promiscuous mode
[   77.340546][ T5086] hsr_slave_1: entered promiscuous mode
[   77.347559][ T5086] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   77.355623][ T5086] Cannot create hsr debugfs directory
[   77.362549][ T5088] batman_adv: batadv0: Adding interface: batadv_slave_0
[   77.369554][ T5088] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   77.395462][ T5088] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   77.408742][ T5088] batman_adv: batadv0: Adding interface: batadv_slave_1
[   77.415748][ T5088] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   77.442082][ T5088] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   77.510611][ T5087] hsr_slave_0: entered promiscuous mode
[   77.517896][ T5087] hsr_slave_1: entered promiscuous mode
[   77.524035][ T5087] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   77.531817][ T5087] Cannot create hsr debugfs directory
[   77.624329][ T5092] hsr_slave_0: entered promiscuous mode
[   77.631774][ T5092] hsr_slave_1: entered promiscuous mode
[   77.686015][ T5092] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   77.693832][ T5092] Cannot create hsr debugfs directory
[   77.796293][ T5088] hsr_slave_0: entered promiscuous mode
[   77.804503][ T5088] hsr_slave_1: entered promiscuous mode
[   77.815783][ T5088] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   77.824474][ T5088] Cannot create hsr debugfs directory
[   78.360134][ T5085] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   78.402841][ T5085] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   78.420776][ T5085] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   78.433748][ T5085] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   78.493318][ T5086] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   78.517526][   T53] Bluetooth: hci1: command tx timeout
[   78.517934][ T5086] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   78.522944][   T53] Bluetooth: hci3: command tx timeout
[   78.558976][ T5086] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   78.595836][ T5086] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   78.602800][   T53] Bluetooth: hci4: command tx timeout
[   78.602820][ T5093] Bluetooth: hci2: command tx timeout
[   78.608409][ T5102] Bluetooth: hci0: command tx timeout
[   78.672510][ T5087] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   78.691485][ T5087] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   78.706353][ T5087] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   78.744948][ T5087] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   78.821731][ T5088] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   78.884756][ T5088] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   78.912273][ T5088] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   78.925910][ T5088] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   79.032218][ T5092] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   79.057766][ T5092] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   79.071086][ T5092] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   79.086123][ T5092] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   79.149109][ T5085] 8021q: adding VLAN 0 to HW filter on device bond0
[   79.230062][ T5086] 8021q: adding VLAN 0 to HW filter on device bond0
[   79.300573][ T5085] 8021q: adding VLAN 0 to HW filter on device team0
[   79.338027][ T5086] 8021q: adding VLAN 0 to HW filter on device team0
[   79.366223][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.373610][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[   79.393522][ T5087] 8021q: adding VLAN 0 to HW filter on device bond0
[   79.431808][  T784] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.439035][  T784] bridge0: port 2(bridge_slave_1) entered forwarding state
[   79.450106][  T784] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.457298][  T784] bridge0: port 1(bridge_slave_0) entered forwarding state
[   79.483932][ T5087] 8021q: adding VLAN 0 to HW filter on device team0
[   79.515535][   T25] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.522767][   T25] bridge0: port 2(bridge_slave_1) entered forwarding state
[   79.582534][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.589678][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[   79.663625][ T5142] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.670773][ T5142] bridge0: port 2(bridge_slave_1) entered forwarding state
[   79.749407][ T5088] 8021q: adding VLAN 0 to HW filter on device bond0
[   79.841057][ T5088] 8021q: adding VLAN 0 to HW filter on device team0
[   79.861497][   T30] audit: type=1400 audit(1720350454.288:113): avc:  denied  { sys_module } for  pid=5086 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   79.959798][ T5092] 8021q: adding VLAN 0 to HW filter on device bond0
[   79.989658][ T5145] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.996893][ T5145] bridge0: port 1(bridge_slave_0) entered forwarding state
[   80.014311][ T5145] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.021560][ T5145] bridge0: port 2(bridge_slave_1) entered forwarding state
[   80.195280][ T5092] 8021q: adding VLAN 0 to HW filter on device team0
[   80.291993][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.299223][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[   80.356193][   T25] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.363432][   T25] bridge0: port 2(bridge_slave_1) entered forwarding state
[   80.426217][ T5086] 8021q: adding VLAN 0 to HW filter on device batadv0
[   80.485879][ T5087] 8021q: adding VLAN 0 to HW filter on device batadv0
[   80.553552][ T5085] 8021q: adding VLAN 0 to HW filter on device batadv0
[   80.606086][ T5093] Bluetooth: hci1: command tx timeout
[   80.610107][   T53] Bluetooth: hci3: command tx timeout
[   80.677553][   T53] Bluetooth: hci4: command tx timeout
[   80.677573][ T5093] Bluetooth: hci0: command tx timeout
[   80.677612][ T5093] Bluetooth: hci2: command tx timeout
[   80.716418][ T5088] 8021q: adding VLAN 0 to HW filter on device batadv0
[   80.814999][ T5086] veth0_vlan: entered promiscuous mode
[   80.844192][ T5087] veth0_vlan: entered promiscuous mode
[   80.920135][ T5086] veth1_vlan: entered promiscuous mode
[   80.960441][ T5085] veth0_vlan: entered promiscuous mode
[   80.993473][ T5087] veth1_vlan: entered promiscuous mode
[   81.061505][ T5085] veth1_vlan: entered promiscuous mode
[   81.200408][ T5092] 8021q: adding VLAN 0 to HW filter on device batadv0
[   81.212160][ T5087] veth0_macvtap: entered promiscuous mode
[   81.225966][ T5086] veth0_macvtap: entered promiscuous mode
[   81.251010][ T5087] veth1_macvtap: entered promiscuous mode
[   81.261140][ T5086] veth1_macvtap: entered promiscuous mode
[   81.281870][ T5085] veth0_macvtap: entered promiscuous mode
[   81.295384][ T5085] veth1_macvtap: entered promiscuous mode
[   81.376362][ T5087] batman_adv: batadv0: Interface activated: batadv_slave_0
[   81.414570][ T5087] batman_adv: batadv0: Interface activated: batadv_slave_1
[   81.435453][ T5088] veth0_vlan: entered promiscuous mode
[   81.444143][ T5086] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   81.456030][ T5086] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.470473][ T5086] batman_adv: batadv0: Interface activated: batadv_slave_0
[   81.479942][ T5085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   81.492719][ T5085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.503076][ T5085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   81.513653][ T5085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.526131][ T5085] batman_adv: batadv0: Interface activated: batadv_slave_0
[   81.563097][ T5087] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   81.575543][ T5087] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   81.585494][ T5087] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   81.594336][ T5087] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   81.610670][ T5085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   81.621815][ T5085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.645710][ T5085] batman_adv: batadv0: Interface activated: batadv_slave_1
[   81.658260][ T5085] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   81.667356][ T5085] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   81.676087][ T5085] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   81.684960][ T5085] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   81.696302][ T5086] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   81.708830][ T5086] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.718782][ T5086] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   81.729685][ T5086] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.741969][ T5086] batman_adv: batadv0: Interface activated: batadv_slave_1
[   81.771558][ T5086] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   81.780606][ T5086] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   81.789566][ T5086] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   81.799534][ T5086] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   81.811906][ T5092] veth0_vlan: entered promiscuous mode
[   81.828867][ T5088] veth1_vlan: entered promiscuous mode
[   81.980588][ T2872] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   81.991988][ T2872] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   82.017986][ T5092] veth1_vlan: entered promiscuous mode
[   82.104187][ T2853] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   82.113324][ T5088] veth0_macvtap: entered promiscuous mode
[   82.117399][ T2853] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   82.215490][   T30] audit: type=1400 audit(1720350456.638:114): avc:  denied  { mounton } for  pid=5087 comm="syz-executor" path="/root/syzkaller.wHG6xI/syz-tmp" dev="sda1" ino=1944 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[   82.243771][ T5088] veth1_macvtap: entered promiscuous mode
[   82.266151][   T30] audit: type=1400 audit(1720350456.688:115): avc:  denied  { mount } for  pid=5087 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   82.307630][   T30] audit: type=1400 audit(1720350456.688:116): avc:  denied  { mounton } for  pid=5087 comm="syz-executor" path="/root/syzkaller.wHG6xI/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   82.346072][   T30] audit: type=1400 audit(1720350456.688:117): avc:  denied  { mount } for  pid=5087 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[   82.373944][ T2476] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   82.403397][ T2476] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   82.417230][   T30] audit: type=1400 audit(1720350456.688:118): avc:  denied  { unmount } for  pid=5087 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   82.443713][   T30] audit: type=1400 audit(1720350456.728:119): avc:  denied  { mounton } for  pid=5087 comm="syz-executor" path="/dev/binderfs" dev="devtmpfs" ino=2323 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[   82.469248][ T5088] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   82.477597][   T30] audit: type=1400 audit(1720350456.728:120): avc:  denied  { mount } for  pid=5087 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[   82.494639][ T5088] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.515801][ T5088] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   82.526906][ T5088] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.543047][ T5088] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   82.553827][ T5088] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.567343][ T5088] batman_adv: batadv0: Interface activated: batadv_slave_0
[   82.634525][ T5092] veth0_macvtap: entered promiscuous mode
[   82.653328][   T30] audit: type=1400 audit(1720350457.078:121): avc:  denied  { read write } for  pid=5087 comm="syz-executor" name="loop0" dev="devtmpfs" ino=648 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   82.712965][ T5093] Bluetooth: hci1: command tx timeout
[   82.718766][ T5093] Bluetooth: hci3: command tx timeout
[   82.734307][ T5088] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   82.757231][   T53] Bluetooth: hci2: command tx timeout
[   82.766922][ T5093] Bluetooth: hci4: command tx timeout
[   82.768887][   T53] Bluetooth: hci0: command tx timeout
[   82.778838][   T30] audit: type=1400 audit(1720350457.118:122): avc:  denied  { open } for  pid=5087 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=648 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   82.815138][ T5088] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.828442][ T5088] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   82.866866][ T5088] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.887479][ T5088] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   82.911694][ T5088] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.926468][ T5088] batman_adv: batadv0: Interface activated: batadv_slave_1
[   82.984849][ T5092] veth1_macvtap: entered promiscuous mode
[   83.001663][ T2853] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   83.013673][ T2476] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   83.017087][ T5088] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   83.035688][ T2476] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   83.042510][ T5088] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   83.046747][ T2853] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   83.056862][ T5088] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   83.070261][ T5088] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   83.260365][ T5092] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   83.294703][ T5092] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.307095][ T5092] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   83.325293][ T5092] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.342943][ T5092] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   83.368200][ T5092] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.388245][ T5092] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   83.402335][ T5092] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.433433][ T5092] batman_adv: batadv0: Interface activated: batadv_slave_0
[   83.496253][ T1043] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   83.513775][ T1043] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   83.580029][ T5092] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   83.617267][ T5092] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.645034][ T5092] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   83.672024][ T5092] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.682334][ T5092] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   83.698570][ T5092] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.712243][ T5092] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   83.746010][ T5092] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.768556][ T5092] batman_adv: batadv0: Interface activated: batadv_slave_1
[   83.780926][ T5092] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   83.796523][ T5092] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   83.806642][ T5092] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   83.823680][ T5092] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   83.953442][ T2872] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   83.966675][ T2872] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   86.486600][ T1054] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   86.512778][ T1054] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   86.568029][   T30] kauditd_printk_skb: 24 callbacks suppressed
[   86.568046][   T30] audit: type=1400 audit(1720350460.998:147): avc:  denied  { create } for  pid=5206 comm="syz.3.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   86.622933][ T5207] bridge_slave_0: default FDB implementation only supports local addresses
[   86.642536][   T30] audit: type=1400 audit(1720350460.998:148): avc:  denied  { ioctl } for  pid=5206 comm="syz.3.4" path="socket:[7194]" dev="sockfs" ino=7194 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   86.708034][   T30] audit: type=1400 audit(1720350461.118:149): avc:  denied  { read write } for  pid=5209 comm="syz.1.10" name="fuse" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[   86.854460][ T2872] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   86.877211][   T30] audit: type=1400 audit(1720350461.118:150): avc:  denied  { open } for  pid=5209 comm="syz.1.10" path="/dev/fuse" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[   86.957682][ T5215] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   86.991448][ T2872] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   87.005882][   T30] audit: type=1400 audit(1720350461.118:151): avc:  denied  { read } for  pid=5209 comm="syz.1.10" name="binder0" dev="binder" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   87.036109][   T30] audit: type=1400 audit(1720350461.118:152): avc:  denied  { open } for  pid=5209 comm="syz.1.10" path="/dev/binderfs/binder0" dev="binder" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   87.188530][ T5218] hub 9-0:1.0: USB hub found
[   87.194725][ T5218] hub 9-0:1.0: 8 ports detected
[   87.307169][    T0] NOHZ tick-stop error: local softirq work is pending, handler #142!!!
[   87.316318][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   87.327462][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   87.377448][   T45] cfg80211: failed to load regulatory.db
[   87.703611][   T30] audit: type=1400 audit(1720350461.158:153): avc:  denied  { create } for  pid=5206 comm="syz.3.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   87.791193][   T30] audit: type=1400 audit(1720350461.158:154): avc:  denied  { write } for  pid=5206 comm="syz.3.4" name="hwrng" dev="devtmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1
[   87.877319][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   88.331810][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   88.452311][ T5228] Zero length message leads to an empty skb
[   88.466648][   T30] audit: type=1400 audit(1720350461.348:155): avc:  denied  { read } for  pid=5206 comm="syz.3.4" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   88.491883][ T2476] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   88.517782][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   88.569208][   T30] audit: type=1400 audit(1720350461.348:156): avc:  denied  { open } for  pid=5206 comm="syz.3.4" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   88.594541][ T2476] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   88.612250][ T5234] FAULT_INJECTION: forcing a failure.
[   88.612250][ T5234] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   88.631537][ T5234] CPU: 1 PID: 5234 Comm: syz.0.14 Not tainted 6.10.0-rc6-syzkaller-00215-g22f902dfc51e #0
[   88.641464][ T5234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   88.651543][ T5234] Call Trace:
[   88.654838][ T5234]  <TASK>
[   88.657783][ T5234]  dump_stack_lvl+0x16c/0x1f0
[   88.662495][ T5234]  should_fail_ex+0x497/0x5b0
[   88.667205][ T5234]  strncpy_from_user+0x38/0x300
[   88.672084][ T5234]  getname_flags.part.0+0x93/0x4f0
[   88.677233][ T5234]  getname_flags+0x9b/0xf0
[   88.681684][ T5234]  __x64_sys_mknodat+0xa1/0xe0
[   88.686482][ T5234]  do_syscall_64+0xcd/0x250
[   88.691023][ T5234]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.696961][ T5234] RIP: 0033:0x7f4b06975bd9
[   88.701397][ T5234] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   88.722159][ T5234] RSP: 002b:00007f4b076bb048 EFLAGS: 00000246 ORIG_RAX: 0000000000000103
[   88.730592][ T5234] RAX: ffffffffffffffda RBX: 00007f4b06b03f60 RCX: 00007f4b06975bd9
[   88.738565][ T5234] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000004
[   88.746536][ T5234] RBP: 00007f4b076bb0a0 R08: 0000000000000000 R09: 0000000000000000
[   88.754508][ T5234] R10: 0000000000000701 R11: 0000000000000246 R12: 0000000000000001
[   88.762477][ T5234] R13: 000000000000000b R14: 00007f4b06b03f60 R15: 00007ffe45fddbd8
[   88.770450][ T5234]  </TASK>
[   88.864767][   T53] Bluetooth: hci1: unexpected event 0x01 length: 17 > 1
[   90.292336][   T53] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201'
[   90.292473][   T53] CPU: 1 PID: 53 Comm: kworker/u9:0 Not tainted 6.10.0-rc6-syzkaller-00215-g22f902dfc51e #0
[   90.292507][   T53] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   90.292525][   T53] Workqueue: hci3 hci_rx_work
[   90.292565][   T53] Call Trace:
[   90.292576][   T53]  <TASK>
[   90.292585][   T53]  dump_stack_lvl+0x16c/0x1f0
[   90.292623][   T53]  sysfs_warn_dup+0x7f/0xa0
[   90.292664][   T53]  sysfs_create_dir_ns+0x24d/0x2b0
[   90.292707][   T53]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[   90.292755][   T53]  ? __pfx_do_raw_spin_lock+0x10/0x10
[   90.292789][   T53]  ? do_raw_spin_unlock+0x172/0x230
[   90.292827][   T53]  kobject_add_internal+0x2c8/0x990
[   90.292868][   T53]  kobject_add+0x16f/0x240
[   90.292903][   T53]  ? __pfx_kobject_add+0x10/0x10
[   90.292939][   T53]  ? do_raw_spin_unlock+0x172/0x230
[   90.292970][   T53]  ? kobject_put+0xbe/0x5b0
[   90.293004][   T53]  device_add+0x289/0x1a70
[   90.293048][   T53]  ? __pfx_dev_set_name+0x10/0x10
[   90.293076][   T53]  ? __pfx_device_add+0x10/0x10
[   90.293118][   T53]  ? mgmt_send_event_skb+0x2f0/0x460
[   90.293154][   T53]  hci_conn_add_sysfs+0x17e/0x230
[   90.293188][   T53]  le_conn_complete_evt+0x1078/0x1d80
[   90.293222][   T53]  ? __pfx_le_conn_complete_evt+0x10/0x10
[   90.293252][   T53]  ? trace_contention_end+0xea/0x140
[   90.293279][   T53]  ? __mutex_lock+0x1a6/0x9c0
[   90.293324][   T53]  hci_le_enh_conn_complete_evt+0x23d/0x380
[   90.293358][   T53]  ? skb_pull_data+0x166/0x210
[   90.293392][   T53]  hci_le_meta_evt+0x2e2/0x5d0
[   90.293428][   T53]  ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10
[   90.293463][   T53]  hci_event_packet+0x664/0x1170
[   90.293494][   T53]  ? __pfx_hci_le_meta_evt+0x10/0x10
[   90.293531][   T53]  ? __pfx_hci_event_packet+0x10/0x10
[   90.293562][   T53]  ? mark_held_locks+0x9f/0xe0
[   90.293603][   T53]  ? kcov_remote_start+0x3d1/0x6e0
[   90.293631][   T53]  ? lockdep_hardirqs_on+0x7c/0x110
[   90.293667][   T53]  hci_rx_work+0x2c4/0x1610
[   90.293700][   T53]  process_one_work+0x9c5/0x1b40
[   90.293731][   T53]  ? __pfx_lock_acquire+0x10/0x10
[   90.293773][   T53]  ? __pfx_process_one_work+0x10/0x10
[   90.293801][   T53]  ? assign_work+0x1a0/0x250
[   90.293854][   T53]  worker_thread+0x6c8/0xf30
[   90.293888][   T53]  ? __pfx_worker_thread+0x10/0x10
[   90.293918][   T53]  kthread+0x2c1/0x3a0
[   90.293953][   T53]  ? _raw_spin_unlock_irq+0x23/0x50
[   90.293984][   T53]  ? __pfx_kthread+0x10/0x10
[   90.294019][   T53]  ret_from_fork+0x45/0x80
[   90.294061][   T53]  ? __pfx_kthread+0x10/0x10
[   90.294095][   T53]  ret_from_fork_asm+0x1a/0x30
[   90.294141][   T53]  </TASK>
[   90.294862][   T53] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory.
[   90.294920][   T53] Bluetooth: hci3: failed to register connection device
[   90.385606][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   90.387243][    T0] NOHZ tick-stop error: local softirq work is pending, handler #282!!!
[   90.387379][    T0] NOHZ tick-stop error: local softirq work is pending, handler #282!!!
[   90.447034][ T5147] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   90.789621][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   91.145737][ T5147] usb 2-1: New USB device found, idVendor=0ac8, idProduct=0321, bcdDevice=a1.c9
[   91.176982][ T5147] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   91.212554][ T5147] usb 2-1: Product: syz
[   91.222573][ T5271] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   91.237165][ T5147] usb 2-1: Manufacturer: syz
[   91.248162][ T5147] usb 2-1: SerialNumber: syz
[   91.288861][ T5147] usb 2-1: config 0 descriptor??
[   91.725780][ T5282] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   91.754508][ T5282] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   91.761880][ T5280] netlink: 'syz.0.25': attribute type 5 has an invalid length.
[   91.820004][   T30] kauditd_printk_skb: 55 callbacks suppressed
[   91.820022][   T30] audit: type=1400 audit(1720350466.248:212): avc:  denied  { name_bind } for  pid=5274 comm="syz.0.25" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[   91.861412][   T30] audit: type=1400 audit(1720350466.258:213): avc:  denied  { node_bind } for  pid=5274 comm="syz.0.25" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[   91.871014][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:2. Sending cookies.
[   92.117078][   T53] Bluetooth: hci1: command tx timeout
[   92.267180][   T30] audit: type=1326 audit(1720350466.688:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5243 comm="syz.1.17" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fea09975bd9 code=0x0
[   92.374549][   T30] audit: type=1400 audit(1720350466.728:215): avc:  denied  { create } for  pid=5289 comm="syz.3.28" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   92.374576][   T53] Bluetooth: hci3: command tx timeout
[   92.576902][   T30] audit: type=1400 audit(1720350466.728:216): avc:  denied  { bind } for  pid=5289 comm="syz.3.28" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   93.367423][ T5296] hub 9-0:1.0: USB hub found
[   93.380261][ T5296] hub 9-0:1.0: 8 ports detected
[   94.746233][   T30] audit: type=1400 audit(1720350466.728:217): avc:  denied  { accept } for  pid=5289 comm="syz.3.28" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   94.959757][   T30] audit: type=1400 audit(1720350466.728:218): avc:  denied  { write } for  pid=5289 comm="syz.3.28" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   95.087612][   T30] audit: type=1400 audit(1720350469.388:219): avc:  denied  { bind } for  pid=5243 comm="syz.1.17" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   95.110446][ T5301] FAULT_INJECTION: forcing a failure.
[   95.110446][ T5301] name failslab, interval 1, probability 0, space 0, times 1
[   95.218375][ T5147] gspca_main: vc032x-2.14.0 probing 0ac8:0321
[   95.269118][ T5147] gspca_vc032x: reg_r err -71
[   95.273853][ T5147] gspca_vc032x: I2c Bus Busy Wait 00
[   95.336936][ T5301] CPU: 0 PID: 5301 Comm: syz.3.31 Not tainted 6.10.0-rc6-syzkaller-00215-g22f902dfc51e #0
[   95.346841][ T5301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   95.356885][ T5301] Call Trace:
[   95.360169][ T5301]  <TASK>
[   95.363093][ T5301]  dump_stack_lvl+0x16c/0x1f0
[   95.367771][ T5301]  should_fail_ex+0x497/0x5b0
[   95.372442][ T5301]  should_failslab+0x9/0x20
[   95.376942][ T5301]  kmalloc_trace_noprof+0x6b/0x300
[   95.382053][ T5301]  ? do_eventfd+0x67/0x2f0
[   95.386466][ T5301]  do_eventfd+0x67/0x2f0
[   95.390704][ T5301]  __x64_sys_eventfd2+0x53/0x80
[   95.395548][ T5301]  do_syscall_64+0xcd/0x250
[   95.400046][ T5301]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.405934][ T5301] RIP: 0033:0x7f6c8b775bd9
[   95.410335][ T5301] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   95.429951][ T5301] RSP: 002b:00007f6c8c489048 EFLAGS: 00000246 ORIG_RAX: 0000000000000122
[   95.438364][ T5301] RAX: ffffffffffffffda RBX: 00007f6c8b903f60 RCX: 00007f6c8b775bd9
[   95.446352][ T5301] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   95.454322][ T5301] RBP: 00007f6c8c4890a0 R08: 0000000000000000 R09: 0000000000000000
[   95.462283][ T5301] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   95.470238][ T5301] R13: 000000000000000b R14: 00007f6c8b903f60 R15: 00007ffdb54350c8
[   95.478205][ T5301]  </TASK>
[   95.481317][    C0] vkms_vblank_simulate: vblank timer overrun
[   95.513513][ T5147] gspca_vc032x: I2c Bus Busy Wait 00
[   95.527567][ T5147] gspca_vc032x: I2c Bus Busy Wait 00
[   95.532959][ T5147] gspca_vc032x: I2c Bus Busy Wait 00
[   95.551500][ T5147] gspca_vc032x: I2c Bus Busy Wait 00
[   95.597208][ T5147] gspca_vc032x: I2c Bus Busy Wait 00
[   95.633740][ T5147] gspca_vc032x: I2c Bus Busy Wait 00
[   95.656941][ T5147] gspca_vc032x: I2c Bus Busy Wait 00
[   95.662474][ T5147] gspca_vc032x: I2c Bus Busy Wait 00
[   95.697809][ T5147] gspca_vc032x: I2c Bus Busy Wait 00
[   95.718759][ T5147] gspca_vc032x: I2c Bus Busy Wait 00
[   95.724078][ T5147] gspca_vc032x: I2c Bus Busy Wait 00
[   95.769749][ T5147] gspca_vc032x: I2c Bus Busy Wait 00
[   95.780172][ T5147] gspca_vc032x: I2c Bus Busy Wait 00
[   95.785489][ T5147] gspca_vc032x: I2c Bus Busy Wait 00
[   95.830769][ T5147] gspca_vc032x: I2c Bus Busy Wait 00
[   95.836095][ T5147] gspca_vc032x: I2c Bus Busy Wait 00
[   95.863253][ T5313] netlink: 28 bytes leftover after parsing attributes in process `syz.2.35'.
[   95.878066][ T5147] gspca_vc032x: I2c Bus Busy Wait 00
[   95.902489][ T5147] gspca_vc032x: Unknown sensor...
[   95.927489][ T5147] vc032x 2-1:0.0: probe with driver vc032x failed with error -22
[   96.003716][ T5147] usb 2-1: USB disconnect, device number 2
[   96.083630][   T53] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci0/hci0:201'
[   96.083698][   T53] CPU: 1 PID: 53 Comm: kworker/u9:0 Not tainted 6.10.0-rc6-syzkaller-00215-g22f902dfc51e #0
[   96.083731][   T53] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   96.083750][   T53] Workqueue: hci0 hci_rx_work
[   96.083790][   T53] Call Trace:
[   96.083802][   T53]  <TASK>
[   96.083814][   T53]  dump_stack_lvl+0x16c/0x1f0
[   96.083852][   T53]  sysfs_warn_dup+0x7f/0xa0
[   96.083895][   T53]  sysfs_create_dir_ns+0x24d/0x2b0
[   96.083938][   T53]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[   96.083979][   T53]  ? __pfx_do_raw_spin_lock+0x10/0x10
[   96.084013][   T53]  ? do_raw_spin_unlock+0x172/0x230
[   96.084045][   T53]  kobject_add_internal+0x2c8/0x990
[   96.084084][   T53]  kobject_add+0x16f/0x240
[   96.084120][   T53]  ? __pfx_kobject_add+0x10/0x10
[   96.084156][   T53]  ? do_raw_spin_unlock+0x172/0x230
[   96.084186][   T53]  ? kobject_put+0xbe/0x5b0
[   96.084223][   T53]  device_add+0x289/0x1a70
[   96.084267][   T53]  ? __pfx_dev_set_name+0x10/0x10
[   96.084296][   T53]  ? __pfx_device_add+0x10/0x10
[   96.084339][   T53]  ? mgmt_send_event_skb+0x2f0/0x460
[   96.084377][   T53]  hci_conn_add_sysfs+0x17e/0x230
[   96.084414][   T53]  le_conn_complete_evt+0x1078/0x1d80
[   96.084450][   T53]  ? __pfx_le_conn_complete_evt+0x10/0x10
[   96.084481][   T53]  ? trace_contention_end+0xea/0x140
[   96.084511][   T53]  ? __mutex_lock+0x1a6/0x9c0
[   96.084555][   T53]  hci_le_enh_conn_complete_evt+0x23d/0x380
[   96.084589][   T53]  ? skb_pull_data+0x166/0x210
[   96.084625][   T53]  hci_le_meta_evt+0x2e2/0x5d0
[   96.084661][   T53]  ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10
[   96.084697][   T53]  hci_event_packet+0x664/0x1170
[   96.084729][   T53]  ? __pfx_hci_le_meta_evt+0x10/0x10
[   96.084766][   T53]  ? __pfx_hci_event_packet+0x10/0x10
[   96.084797][   T53]  ? mark_held_locks+0x9f/0xe0
[   96.084838][   T53]  ? kcov_remote_start+0x3d1/0x6e0
[   96.084867][   T53]  ? lockdep_hardirqs_on+0x7c/0x110
[   96.084904][   T53]  hci_rx_work+0x2c4/0x1610
[   96.084942][   T53]  process_one_work+0x9c5/0x1b40
[   96.084976][   T53]  ? __pfx_lock_acquire+0x10/0x10
[   96.085019][   T53]  ? __pfx_process_one_work+0x10/0x10
[   96.085050][   T53]  ? assign_work+0x1a0/0x250
[   96.085094][   T53]  worker_thread+0x6c8/0xf30
[   96.085127][   T53]  ? __pfx_worker_thread+0x10/0x10
[   96.085157][   T53]  kthread+0x2c1/0x3a0
[   96.085191][   T53]  ? _raw_spin_unlock_irq+0x23/0x50
[   96.085221][   T53]  ? __pfx_kthread+0x10/0x10
[   96.085256][   T53]  ret_from_fork+0x45/0x80
[   96.085296][   T53]  ? __pfx_kthread+0x10/0x10
[   96.085331][   T53]  ret_from_fork_asm+0x1a/0x30
[   96.085377][   T53]  </TASK>
[   96.085420][   T53] kobject: kobject_add_internal failed for hci0:201 with -EEXIST, don't try to register things with the same name in the same directory.
[   96.085472][   T53] Bluetooth: hci0: failed to register connection device
[   96.144810][   T30] audit: type=1400 audit(1720350470.568:220): avc:  denied  { connect } for  pid=5317 comm="syz.2.37" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   96.156893][   T30] audit: type=1400 audit(1720350470.568:221): avc:  denied  { write } for  pid=5317 comm="syz.2.37" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   96.263074][ T5324] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[   96.973938][   T30] kauditd_printk_skb: 3 callbacks suppressed
[   96.973956][   T30] audit: type=1400 audit(1720350471.398:225): avc:  denied  { create } for  pid=5314 comm="syz.1.36" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   97.059945][ T5343] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   97.163217][   T30] audit: type=1400 audit(1720350471.588:226): avc:  denied  { create } for  pid=5342 comm="syz.2.44" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   97.180538][   T30] audit: type=1400 audit(1720350471.608:227): avc:  denied  { name_connect } for  pid=5347 comm="syz.4.45" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[   97.192126][   T30] audit: type=1400 audit(1720350471.618:228): avc:  denied  { read } for  pid=5342 comm="syz.2.44" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   97.232144][   T30] audit: type=1400 audit(1720350471.658:229): avc:  denied  { ioctl } for  pid=5342 comm="syz.2.44" path="socket:[7512]" dev="sockfs" ino=7512 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   97.233505][   T30] audit: type=1400 audit(1720350471.658:230): avc:  denied  { listen } for  pid=5347 comm="syz.4.45" lport=44836 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   97.248810][   T30] audit: type=1400 audit(1720350471.678:231): avc:  denied  { create } for  pid=5342 comm="syz.2.44" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   97.273326][   T30] audit: type=1400 audit(1720350471.698:232): avc:  denied  { accept } for  pid=5347 comm="syz.4.45" lport=44836 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   97.282745][   T30] audit: type=1400 audit(1720350471.708:233): avc:  denied  { connect } for  pid=5342 comm="syz.2.44" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   97.353560][   T30] audit: type=1400 audit(1720350471.778:234): avc:  denied  { write } for  pid=5342 comm="syz.2.44" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   98.128628][   T53] Bluetooth: hci0: command tx timeout
[   98.464460][ T5371] FAULT_INJECTION: forcing a failure.
[   98.464460][ T5371] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   98.526022][ T5371] CPU: 1 PID: 5371 Comm: syz.2.51 Not tainted 6.10.0-rc6-syzkaller-00215-g22f902dfc51e #0
[   98.535948][ T5371] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   98.546013][ T5371] Call Trace:
[   98.549282][ T5371]  <TASK>
[   98.552207][ T5371]  dump_stack_lvl+0x16c/0x1f0
[   98.556888][ T5371]  should_fail_ex+0x497/0x5b0
[   98.561578][ T5371]  _copy_to_user+0x30/0xc0
[   98.566004][ T5371]  sctp_getsockopt_sctp_status+0x5e8/0x7d0
[   98.571823][ T5371]  ? __pfx_mark_lock+0x10/0x10
[   98.576589][ T5371]  ? __pfx_sctp_getsockopt_sctp_status+0x10/0x10
[   98.582909][ T5371]  ? lock_acquire+0x1b1/0x560
[   98.587600][ T5371]  ? mark_held_locks+0x9f/0xe0
[   98.592372][ T5371]  ? sctp_getsockopt+0x2e4/0x74a0
[   98.597402][ T5371]  ? __local_bh_enable_ip+0xa4/0x120
[   98.602771][ T5371]  sctp_getsockopt+0x42ba/0x74a0
[   98.607703][ T5371]  ? avc_has_perm_noaudit+0x119/0x3a0
[   98.613068][ T5371]  ? __pfx_lock_release+0x10/0x10
[   98.618085][ T5371]  ? __pfx_mark_lock+0x10/0x10
[   98.622840][ T5371]  ? __lock_acquire+0xc5d/0x3b30
[   98.627772][ T5371]  ? __pfx_sctp_getsockopt+0x10/0x10
[   98.633045][ T5371]  ? avc_has_perm_noaudit+0x143/0x3a0
[   98.638407][ T5371]  ? avc_has_perm+0x11b/0x1c0
[   98.643075][ T5371]  ? __pfx_avc_has_perm+0x10/0x10
[   98.648098][ T5371]  ? __lock_acquire+0xc5d/0x3b30
[   98.653043][ T5371]  ? sock_has_perm+0x25a/0x2f0
[   98.657800][ T5371]  ? __pfx_sock_has_perm+0x10/0x10
[   98.662902][ T5371]  ? find_held_lock+0x2d/0x110
[   98.667656][ T5371]  ? __pfx_sock_common_getsockopt+0x10/0x10
[   98.673551][ T5371]  ? do_sock_getsockopt+0x2e5/0x760
[   98.678770][ T5371]  do_sock_getsockopt+0x2e5/0x760
[   98.683790][ T5371]  ? __pfx_do_sock_getsockopt+0x10/0x10
[   98.689334][ T5371]  ? __fget_files+0x256/0x400
[   98.694023][ T5371]  ? __fget_light+0x173/0x210
[   98.698704][ T5371]  __sys_getsockopt+0x1a1/0x270
[   98.703551][ T5371]  ? __pfx___sys_getsockopt+0x10/0x10
[   98.708916][ T5371]  ? fput+0x32/0x390
[   98.712806][ T5371]  ? ksys_write+0x1ab/0x260
[   98.717311][ T5371]  ? __pfx_ksys_write+0x10/0x10
[   98.722152][ T5371]  __x64_sys_getsockopt+0xbd/0x160
[   98.727255][ T5371]  ? do_syscall_64+0x91/0x250
[   98.731938][ T5371]  ? lockdep_hardirqs_on+0x7c/0x110
[   98.737125][ T5371]  do_syscall_64+0xcd/0x250
[   98.741621][ T5371]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.747509][ T5371] RIP: 0033:0x7f3ce0175bd9
[   98.751907][ T5371] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   98.771513][ T5371] RSP: 002b:00007f3ce0f68048 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[   98.779949][ T5371] RAX: ffffffffffffffda RBX: 00007f3ce0303f60 RCX: 00007f3ce0175bd9
[   98.787909][ T5371] RDX: 000000000000000e RSI: 0000000000000084 RDI: 0000000000000004
[   98.795865][ T5371] RBP: 00007f3ce0f680a0 R08: 00000000200003c0 R09: 0000000000000000
[   98.803870][ T5371] R10: 0000000020000400 R11: 0000000000000246 R12: 0000000000000001
[   98.811828][ T5371] R13: 000000000000000b R14: 00007f3ce0303f60 R15: 00007ffece228568
[   98.819791][ T5371]  </TASK>
[   98.822915][    C1] vkms_vblank_simulate: vblank timer overrun
[   98.900330][ T5374] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  100.714895][ T5388] tmpfs: Bad value for 'mpol'
[  101.016991][ T5396] netlink: 'syz.3.59': attribute type 21 has an invalid length.
[  101.033078][ T5395] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  101.064842][ T5396] netlink: 'syz.3.59': attribute type 6 has an invalid length.
[  101.092379][ T5396] netlink: 156 bytes leftover after parsing attributes in process `syz.3.59'.
[  101.146365][ T5395] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  101.200824][ T5401] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  101.237158][ T5395] ALSA: mixer_oss: invalid index 80000
[  101.268099][   T53] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:201'
[  101.268169][   T53] CPU: 1 PID: 53 Comm: kworker/u9:0 Not tainted 6.10.0-rc6-syzkaller-00215-g22f902dfc51e #0
[  101.268203][   T53] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  101.268223][   T53] Workqueue: hci1 hci_rx_work
[  101.268263][   T53] Call Trace:
[  101.268275][   T53]  <TASK>
[  101.268287][   T53]  dump_stack_lvl+0x16c/0x1f0
[  101.268323][   T53]  sysfs_warn_dup+0x7f/0xa0
[  101.268365][   T53]  sysfs_create_dir_ns+0x24d/0x2b0
[  101.268408][   T53]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  101.268450][   T53]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  101.268484][   T53]  ? do_raw_spin_unlock+0x172/0x230
[  101.268515][   T53]  kobject_add_internal+0x2c8/0x990
[  101.268554][   T53]  kobject_add+0x16f/0x240
[  101.268591][   T53]  ? __pfx_kobject_add+0x10/0x10
[  101.268629][   T53]  ? do_raw_spin_unlock+0x172/0x230
[  101.268660][   T53]  ? kobject_put+0xbe/0x5b0
[  101.268697][   T53]  device_add+0x289/0x1a70
[  101.268750][   T53]  ? __pfx_dev_set_name+0x10/0x10
[  101.268781][   T53]  ? __pfx_device_add+0x10/0x10
[  101.268822][   T53]  ? mgmt_send_event_skb+0x2f0/0x460
[  101.268858][   T53]  hci_conn_add_sysfs+0x17e/0x230
[  101.268895][   T53]  le_conn_complete_evt+0x1078/0x1d80
[  101.268929][   T53]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  101.268961][   T53]  ? trace_contention_end+0xea/0x140
[  101.268989][   T53]  ? __mutex_lock+0x1a6/0x9c0
[  101.269025][   T53]  hci_le_enh_conn_complete_evt+0x23d/0x380
[  101.269059][   T53]  ? skb_pull_data+0x166/0x210
[  101.269092][   T53]  hci_le_meta_evt+0x2e2/0x5d0
[  101.269128][   T53]  ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10
[  101.269163][   T53]  hci_event_packet+0x664/0x1170
[  101.269195][   T53]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  101.269231][   T53]  ? __pfx_hci_event_packet+0x10/0x10
[  101.269262][   T53]  ? mark_held_locks+0x9f/0xe0
[  101.269304][   T53]  ? kcov_remote_start+0x3d1/0x6e0
[  101.269333][   T53]  ? lockdep_hardirqs_on+0x7c/0x110
[  101.269371][   T53]  hci_rx_work+0x2c4/0x1610
[  101.269410][   T53]  process_one_work+0x9c5/0x1b40
[  101.269443][   T53]  ? __pfx_lock_acquire+0x10/0x10
[  101.269485][   T53]  ? __pfx_process_one_work+0x10/0x10
[  101.269517][   T53]  ? assign_work+0x1a0/0x250
[  101.269561][   T53]  worker_thread+0x6c8/0xf30
[  101.269594][   T53]  ? __pfx_worker_thread+0x10/0x10
[  101.269623][   T53]  kthread+0x2c1/0x3a0
[  101.269657][   T53]  ? _raw_spin_unlock_irq+0x23/0x50
[  101.269687][   T53]  ? __pfx_kthread+0x10/0x10
[  101.269722][   T53]  ret_from_fork+0x45/0x80
[  101.269769][   T53]  ? __pfx_kthread+0x10/0x10
[  101.269804][   T53]  ret_from_fork_asm+0x1a/0x30
[  101.269851][   T53]  </TASK>
[  101.269893][   T53] kobject: kobject_add_internal failed for hci1:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  101.269945][   T53] Bluetooth: hci1: failed to register connection device
[  101.419583][ T5403] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  102.180998][ T5419] FAULT_INJECTION: forcing a failure.
[  102.180998][ T5419] name failslab, interval 1, probability 0, space 0, times 0
[  102.181047][ T5419] CPU: 1 PID: 5419 Comm: syz.3.64 Not tainted 6.10.0-rc6-syzkaller-00215-g22f902dfc51e #0
[  102.181073][ T5419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  102.181086][ T5419] Call Trace:
[  102.181096][ T5419]  <TASK>
[  102.181106][ T5419]  dump_stack_lvl+0x16c/0x1f0
[  102.181138][ T5419]  should_fail_ex+0x497/0x5b0
[  102.181167][ T5419]  should_failslab+0x9/0x20
[  102.181202][ T5419]  __kmalloc_noprof+0xcf/0x410
[  102.181225][ T5419]  ? d_absolute_path+0x137/0x1b0
[  102.181258][ T5419]  tomoyo_encode2+0x100/0x3e0
[  102.181287][ T5419]  tomoyo_encode+0x29/0x50
[  102.181312][ T5419]  tomoyo_realpath_from_path+0x19d/0x720
[  102.181341][ T5419]  tomoyo_path_number_perm+0x245/0x590
[  102.181376][ T5419]  ? tomoyo_path_number_perm+0x232/0x590
[  102.181408][ T5419]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  102.181447][ T5419]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  102.181479][ T5419]  ? __fget_files+0x256/0x400
[  102.181509][ T5419]  security_file_ioctl+0x75/0xc0
[  102.181535][ T5419]  __x64_sys_ioctl+0xbb/0x220
[  102.181561][ T5419]  do_syscall_64+0xcd/0x250
[  102.181593][ T5419]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.181630][ T5419] RIP: 0033:0x7f6c8b775bd9
[  102.181656][ T5419] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  102.181678][ T5419] RSP: 002b:00007f6c8c489048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  102.181704][ T5419] RAX: ffffffffffffffda RBX: 00007f6c8b903f60 RCX: 00007f6c8b775bd9
[  102.181720][ T5419] RDX: 0000000000000000 RSI: 0000000080045500 RDI: 0000000000000003
[  102.181735][ T5419] RBP: 00007f6c8c4890a0 R08: 0000000000000000 R09: 0000000000000000
[  102.181751][ T5419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  102.181767][ T5419] R13: 000000000000000b R14: 00007f6c8b903f60 R15: 00007ffdb54350c8
[  102.181786][ T5419]  </TASK>
[  102.181811][ T5419] ERROR: Out of memory at tomoyo_realpath_from_path.
[  102.491391][   T30] kauditd_printk_skb: 16 callbacks suppressed
[  102.491411][   T30] audit: type=1400 audit(1720350476.918:251): avc:  denied  { write } for  pid=5422 comm="syz.4.66" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  102.588843][   T30] audit: type=1400 audit(1720350477.008:252): avc:  denied  { write } for  pid=5422 comm="syz.4.66" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  102.759387][ T5430] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  102.926541][ T5431] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  103.198673][    T8] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  103.327332][   T53] Bluetooth: hci1: command tx timeout
[  103.417814][    T8] usb 3-1: Using ep0 maxpacket: 16
[  103.426407][    T8] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  103.426453][    T8] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  103.426511][    T8] usb 3-1: New USB device found, idVendor=17ef, idProduct=6009, bcdDevice= 0.00
[  103.426547][    T8] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  103.438147][   T30] audit: type=1400 audit(1720350477.868:253): avc:  denied  { getopt } for  pid=5434 comm="syz.4.69" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  103.441435][   T30] audit: type=1400 audit(1720350477.868:254): avc:  denied  { watch watch_reads } for  pid=5434 comm="syz.4.69" path="/proc/56" dev="proc" ino=8503 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  103.445000][ T5435] netlink: 12 bytes leftover after parsing attributes in process `syz.4.69'.
[  103.674186][    T8] usb 3-1: config 0 descriptor??
[  103.718632][   T53] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  103.718899][   T53] Bluetooth: hci4: Injecting HCI hardware error event
[  103.720630][ T5102] Bluetooth: hci4: hardware error 0x00
[  103.984480][   T30] audit: type=1326 audit(1720350478.378:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5434 comm="syz.4.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed47d75bd9 code=0x7fc00000
[  103.984543][   T30] audit: type=1326 audit(1720350478.378:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5434 comm="syz.4.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fed47d75bd9 code=0x7fc00000
[  103.984579][   T30] audit: type=1326 audit(1720350478.378:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5434 comm="syz.4.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed47d75bd9 code=0x7fc00000
[  103.984620][   T30] audit: type=1326 audit(1720350478.378:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5434 comm="syz.4.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed47d75bd9 code=0x7fc00000
[  103.984669][   T30] audit: type=1326 audit(1720350478.378:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5434 comm="syz.4.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed47d75bd9 code=0x7fc00000
[  103.984705][   T30] audit: type=1326 audit(1720350478.378:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5434 comm="syz.4.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed47d75bd9 code=0x7fc00000
[  104.143323][    T8] lenovo 0003:17EF:6009.0001: hidraw0: USB HID v0.00 Device [HID 17ef:6009] on usb-dummy_hcd.2-1/input0
[  104.206088][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  104.235741][ T5142] IPVS: starting estimator thread 0...
[  104.273480][    C1] vkms_vblank_simulate: vblank timer overrun
[  104.338417][ T5445] netlink: 'syz.3.72': attribute type 1 has an invalid length.
[  104.338562][ T5445] netlink: 168864 bytes leftover after parsing attributes in process `syz.3.72'.
[  104.360994][ T5442] IPVS: using max 19 ests per chain, 45600 per kthread
[  105.592123][    T9] usb 3-1: reset high-speed USB device number 2 using dummy_hcd
[  105.807505][ T5102] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  106.541411][ T5474] netlink: 12 bytes leftover after parsing attributes in process `syz.1.81'.
[  106.901854][    T8] usb 3-1: USB disconnect, device number 2
[  107.762003][   T30] kauditd_printk_skb: 33 callbacks suppressed
[  107.762022][   T30] audit: type=1326 audit(1720350482.188:294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5472 comm="syz.1.81" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea09975bd9 code=0x7fc00000
[  107.807702][ T5487] netlink: 'syz.3.83': attribute type 1 has an invalid length.
[  107.824074][   T30] audit: type=1326 audit(1720350482.228:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5472 comm="syz.1.81" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fea09975bd9 code=0x7fc00000
[  107.853836][ T5487] netlink: 168864 bytes leftover after parsing attributes in process `syz.3.83'.
[  107.854503][   T30] audit: type=1326 audit(1720350482.248:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5472 comm="syz.1.81" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea09975bd9 code=0x7fc00000
[  108.383941][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  108.474880][ T5102] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201'
[  108.474934][ T5102] CPU: 1 PID: 5102 Comm: kworker/u9:7 Not tainted 6.10.0-rc6-syzkaller-00215-g22f902dfc51e #0
[  108.474953][ T5102] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  108.474963][ T5102] Workqueue: hci2 hci_rx_work
[  108.474987][ T5102] Call Trace:
[  108.474993][ T5102]  <TASK>
[  108.475000][ T5102]  dump_stack_lvl+0x16c/0x1f0
[  108.475019][ T5102]  sysfs_warn_dup+0x7f/0xa0
[  108.475042][ T5102]  sysfs_create_dir_ns+0x24d/0x2b0
[  108.475065][ T5102]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  108.475087][ T5102]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  108.475104][ T5102]  ? do_raw_spin_unlock+0x172/0x230
[  108.475121][ T5102]  kobject_add_internal+0x2c8/0x990
[  108.475142][ T5102]  kobject_add+0x16f/0x240
[  108.475164][ T5102]  ? __pfx_kobject_add+0x10/0x10
[  108.475183][ T5102]  ? do_raw_spin_unlock+0x172/0x230
[  108.475200][ T5102]  ? kobject_put+0xbe/0x5b0
[  108.475219][ T5102]  device_add+0x289/0x1a70
[  108.475242][ T5102]  ? __pfx_dev_set_name+0x10/0x10
[  108.475258][ T5102]  ? __pfx_device_add+0x10/0x10
[  108.475280][ T5102]  ? mgmt_send_event_skb+0x2f0/0x460
[  108.475300][ T5102]  hci_conn_add_sysfs+0x17e/0x230
[  108.475319][ T5102]  le_conn_complete_evt+0x1078/0x1d80
[  108.475338][ T5102]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  108.475355][ T5102]  ? trace_contention_end+0xea/0x140
[  108.475370][ T5102]  ? __mutex_lock+0x1a6/0x9c0
[  108.475390][ T5102]  hci_le_enh_conn_complete_evt+0x23d/0x380
[  108.475408][ T5102]  ? skb_pull_data+0x166/0x210
[  108.475425][ T5102]  hci_le_meta_evt+0x2e2/0x5d0
[  108.475444][ T5102]  ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10
[  108.475462][ T5102]  hci_event_packet+0x664/0x1170
[  108.475479][ T5102]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  108.475501][ T5102]  ? __pfx_hci_event_packet+0x10/0x10
[  108.475517][ T5102]  ? mark_held_locks+0x9f/0xe0
[  108.475540][ T5102]  ? kcov_remote_start+0x3d1/0x6e0
[  108.475556][ T5102]  ? lockdep_hardirqs_on+0x7c/0x110
[  108.475577][ T5102]  hci_rx_work+0x2c4/0x1610
[  108.475597][ T5102]  process_one_work+0x9c5/0x1b40
[  108.475614][ T5102]  ? __pfx_lock_acquire+0x10/0x10
[  108.475636][ T5102]  ? __pfx_process_one_work+0x10/0x10
[  108.475653][ T5102]  ? assign_work+0x1a0/0x250
[  108.475675][ T5102]  worker_thread+0x6c8/0xf30
[  108.475692][ T5102]  ? __pfx_worker_thread+0x10/0x10
[  108.475707][ T5102]  kthread+0x2c1/0x3a0
[  108.475725][ T5102]  ? _raw_spin_unlock_irq+0x23/0x50
[  108.475741][ T5102]  ? __pfx_kthread+0x10/0x10
[  108.475759][ T5102]  ret_from_fork+0x45/0x80
[  108.475780][ T5102]  ? __pfx_kthread+0x10/0x10
[  108.475798][ T5102]  ret_from_fork_asm+0x1a/0x30
[  108.475822][ T5102]  </TASK>
[  108.475879][ T5102] kobject: kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  108.475915][ T5102] Bluetooth: hci2: failed to register connection device
[  108.562270][ T5142] IPVS: starting estimator thread 0...
[  108.608381][   T30] audit: type=1400 audit(1720350482.968:297): avc:  denied  { mounton } for  pid=5495 comm="syz.3.86" path="/proc/66/task" dev="proc" ino=8668 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  108.662255][ T5498] IPVS: using max 31 ests per chain, 74400 per kthread
[  108.744207][   T30] audit: type=1400 audit(1720350483.168:298): avc:  denied  { bind } for  pid=5495 comm="syz.3.86" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  108.744276][   T30] audit: type=1400 audit(1720350483.168:299): avc:  denied  { node_bind } for  pid=5495 comm="syz.3.86" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1
[  108.886894][ T5503] FAULT_INJECTION: forcing a failure.
[  108.886894][ T5503] name failslab, interval 1, probability 0, space 0, times 0
[  108.886922][ T5503] CPU: 1 PID: 5503 Comm: syz.0.87 Not tainted 6.10.0-rc6-syzkaller-00215-g22f902dfc51e #0
[  108.886938][ T5503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  108.886947][ T5503] Call Trace:
[  108.886953][ T5503]  <TASK>
[  108.886959][ T5503]  dump_stack_lvl+0x16c/0x1f0
[  108.886980][ T5503]  should_fail_ex+0x497/0x5b0
[  108.886999][ T5503]  should_failslab+0x9/0x20
[  108.887022][ T5503]  kmalloc_node_trace_noprof+0x6e/0x350
[  108.887056][ T5503]  ? __get_vm_area_node+0xe1/0x2d0
[  108.887086][ T5503]  __get_vm_area_node+0xe1/0x2d0
[  108.887116][ T5503]  __vmalloc_node_range_noprof+0x276/0x1520
[  108.887158][ T5503]  ? bpf_prog_alloc_no_stats+0x58/0x440
[  108.887194][ T5503]  ? bpf_prog_alloc_no_stats+0x58/0x440
[  108.887229][ T5503]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  109.285983][ T5503]  ? __pfx___lock_acquire+0x10/0x10
[  109.291206][ T5503]  ? bpf_prog_alloc_no_stats+0x58/0x440
[  109.296760][ T5503]  __vmalloc_noprof+0x6d/0x90
[  109.301445][ T5503]  ? bpf_prog_alloc_no_stats+0x58/0x440
[  109.306995][ T5503]  bpf_prog_alloc_no_stats+0x58/0x440
[  109.312459][ T5503]  bpf_prog_alloc+0x3b/0x240
[  109.317056][ T5503]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  109.322968][ T5503]  bpf_prog_load+0x1b32/0x2660
[  109.327752][ T5503]  ? __pfx_bpf_prog_load+0x10/0x10
[  109.332878][ T5503]  ? avc_has_perm+0x11b/0x1c0
[  109.337563][ T5503]  ? selinux_bpf+0xde/0x130
[  109.342070][ T5503]  ? security_bpf+0x8c/0xc0
[  109.346594][ T5503]  __sys_bpf+0x8e9/0x49a0
[  109.350929][ T5503]  ? ksys_write+0x21c/0x260
[  109.355440][ T5503]  ? reacquire_held_locks+0x4c0/0x4c0
[  109.360818][ T5503]  ? __pfx___sys_bpf+0x10/0x10
[  109.365578][ T5503]  ? vfs_write+0x14d/0x1140
[  109.370091][ T5503]  ? __mutex_unlock_slowpath+0x164/0x650
[  109.375745][ T5503]  ? fput+0x32/0x390
[  109.379653][ T5503]  ? ksys_write+0x1ab/0x260
[  109.384161][ T5503]  ? __pfx_ksys_write+0x10/0x10
[  109.389022][ T5503]  __x64_sys_bpf+0x78/0xc0
[  109.393443][ T5503]  ? lockdep_hardirqs_on+0x7c/0x110
[  109.398655][ T5503]  do_syscall_64+0xcd/0x250
[  109.403256][ T5503]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.409165][ T5503] RIP: 0033:0x7f4b06975bd9
[  109.413580][ T5503] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.433196][ T5503] RSP: 002b:00007f4b076bb048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  109.441614][ T5503] RAX: ffffffffffffffda RBX: 00007f4b06b03f60 RCX: 00007f4b06975bd9
[  109.449587][ T5503] RDX: 000000000000002d RSI: 00000000202a0fb8 RDI: 0000000000000005
[  109.457554][ T5503] RBP: 00007f4b076bb0a0 R08: 0000000000000000 R09: 0000000000000000
[  109.465520][ T5503] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  109.473485][ T5503] R13: 000000000000000b R14: 00007f4b06b03f60 R15: 00007ffe45fddbd8
[  109.481543][ T5503]  </TASK>
[  109.860281][   T30] audit: type=1400 audit(1720350484.138:300): avc:  denied  { setopt } for  pid=5508 comm="syz.3.88" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  109.860351][   T30] audit: type=1400 audit(1720350484.218:301): avc:  denied  { connect } for  pid=5508 comm="syz.3.88" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  109.889444][ T5503] syz.0.87: vmalloc error: size 4096, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=syz0,mems_allowed=0-1
[  109.889770][ T5503] CPU: 0 PID: 5503 Comm: syz.0.87 Not tainted 6.10.0-rc6-syzkaller-00215-g22f902dfc51e #0
[  109.889798][ T5503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  109.889812][ T5503] Call Trace:
[  109.889822][ T5503]  <TASK>
[  109.889832][ T5503]  dump_stack_lvl+0x16c/0x1f0
[  109.889866][ T5503]  warn_alloc+0x24d/0x3a0
[  109.889899][ T5503]  ? __pfx_warn_alloc+0x10/0x10
[  109.889932][ T5503]  ? __kasan_kmalloc+0x8a/0xb0
[  109.889966][ T5503]  ? __get_vm_area_node+0x1bc/0x2d0
[  109.889998][ T5503]  __vmalloc_node_range_noprof+0xc1e/0x1520
[  109.890035][ T5503]  ? bpf_prog_alloc_no_stats+0x58/0x440
[  109.890073][ T5503]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  109.890108][ T5503]  ? __pfx___lock_acquire+0x10/0x10
[  109.890146][ T5503]  ? bpf_prog_alloc_no_stats+0x58/0x440
[  109.890181][ T5503]  __vmalloc_noprof+0x6d/0x90
[  109.890214][ T5503]  ? bpf_prog_alloc_no_stats+0x58/0x440
[  109.890249][ T5503]  bpf_prog_alloc_no_stats+0x58/0x440
[  109.890286][ T5503]  bpf_prog_alloc+0x3b/0x240
[  109.890320][ T5503]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  109.890347][ T5503]  bpf_prog_load+0x1b32/0x2660
[  109.890374][ T5503]  ? __pfx_bpf_prog_load+0x10/0x10
[  109.890400][ T5503]  ? avc_has_perm+0x11b/0x1c0
[  109.890434][ T5503]  ? selinux_bpf+0xde/0x130
[  109.890463][ T5503]  ? security_bpf+0x8c/0xc0
[  109.890499][ T5503]  __sys_bpf+0x8e9/0x49a0
[  109.890524][ T5503]  ? ksys_write+0x21c/0x260
[  109.890557][ T5503]  ? reacquire_held_locks+0x4c0/0x4c0
[  109.890593][ T5503]  ? __pfx___sys_bpf+0x10/0x10
[  109.890617][ T5503]  ? vfs_write+0x14d/0x1140
[  109.890651][ T5503]  ? __mutex_unlock_slowpath+0x164/0x650
[  109.890687][ T5503]  ? fput+0x32/0x390
[  109.890710][ T5503]  ? ksys_write+0x1ab/0x260
[  109.890746][ T5503]  ? __pfx_ksys_write+0x10/0x10
[  109.890781][ T5503]  __x64_sys_bpf+0x78/0xc0
[  109.890807][ T5503]  ? lockdep_hardirqs_on+0x7c/0x110
[  109.890837][ T5503]  do_syscall_64+0xcd/0x250
[  109.890869][ T5503]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.890908][ T5503] RIP: 0033:0x7f4b06975bd9
[  109.890928][ T5503] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.890952][ T5503] RSP: 002b:00007f4b076bb048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  109.890977][ T5503] RAX: ffffffffffffffda RBX: 00007f4b06b03f60 RCX: 00007f4b06975bd9
[  109.890995][ T5503] RDX: 000000000000002d RSI: 00000000202a0fb8 RDI: 0000000000000005
[  109.891012][ T5503] RBP: 00007f4b076bb0a0 R08: 0000000000000000 R09: 0000000000000000
[  109.891030][ T5503] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  109.891046][ T5503] R13: 000000000000000b R14: 00007f4b06b03f60 R15: 00007ffe45fddbd8
[  109.891068][ T5503]  </TASK>
[  109.891089][ T5503] Mem-Info:
[  109.891099][ T5503] active_anon:4560 inactive_anon:0 isolated_anon:0
[  109.891099][ T5503]  active_file:1977 inactive_file:38392 isolated_file:0
[  109.891099][ T5503]  unevictable:799 dirty:478 writeback:0
[  109.891099][ T5503]  slab_reclaimable:9551 slab_unreclaimable:96071
[  109.891099][ T5503]  mapped:15057 shmem:1300 pagetables:811
[  109.891099][ T5503]  sec_pagetables:0 bounce:0
[  109.891099][ T5503]  kernel_misc_reclaimable:0
[  109.891099][ T5503]  free:1404740 free_pcp:820 free_cma:0
[  109.891169][ T5503] Node 0 active_anon:18240kB inactive_anon:0kB active_file:7908kB inactive_file:153492kB unevictable:1660kB isolated(anon):0kB isolated(file):0kB mapped:60228kB dirty:1908kB writeback:0kB shmem:3664kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10572kB pagetables:3244kB sec_pagetables:0kB all_unreclaimable? no
[  109.891237][ T5503] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  109.891300][ T5503] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  109.891371][ T5503] lowmem_reserve[]: 0 2565 2567 0 0
[  109.891420][ T5503] Node 0 DMA32 free:1656032kB boost:0kB min:35052kB low:43812kB high:52572kB reserved_highatomic:0KB active_anon:18212kB inactive_anon:0kB active_file:7908kB inactive_file:151676kB unevictable:1660kB writepending:1908kB present:3129332kB managed:2654748kB mlocked:0kB bounce:0kB free_pcp:4kB local_pcp:0kB free_cma:0kB
[  109.891494][ T5503] lowmem_reserve[]: 0 0 1 0 0
[  109.891541][ T5503] Node 0 Normal free:24kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB active_anon:28kB inactive_anon:0kB active_file:0kB inactive_file:1816kB unevictable:0kB writepending:0kB present:1048576kB managed:1896kB mlocked:0kB bounce:0kB free_pcp:28kB local_pcp:0kB free_cma:0kB
[  109.891613][ T5503] lowmem_reserve[]: 0 0 0 0 0
[  109.891660][ T5503] Node 1 Normal free:3947544kB boost:0kB min:54828kB low:68532kB high:82236kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB writepending:4kB present:4194304kB managed:4109120kB mlocked:0kB bounce:0kB free_pcp:3248kB local_pcp:3248kB free_cma:0kB
[  109.891737][ T5503] lowmem_reserve[]: 0 0 0 0 0
[  109.891784][ T5503] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  109.891946][ T5503] Node 0 DMA32: 550*4kB (UME) 731*8kB (UME) 371*16kB (UME) 91*32kB (UME) 94*64kB (UME) 42*128kB (UME) 15*256kB (UME) 18*512kB (UM) 7*1024kB (UME) 3*2048kB (U) 391*4096kB (M) = 1656192kB
[  109.892169][ T5503] Node 0 Normal: 0*4kB 1*8kB (M) 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 24kB
[  109.892323][ T5503] Node 1 Normal: 4*4kB (UM) 3*8kB (UM) 3*16kB (UM) 8*32kB (UM) 3*64kB (U) 4*128kB (U) 6*256kB (UM) 1*512kB (M) 4*1024kB (U) 2*2048kB (U) 961*4096kB (M) = 3947544kB
[  109.892544][ T5503] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  109.892566][ T5503] Node 0 hugepages_total=4 hugepages_free=0 hugepages_surp=2 hugepages_size=2048kB
[  109.892588][ T5503] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  109.892609][ T5503] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  109.892630][ T5503] 41669 total pagecache pages
[  109.892639][ T5503] 0 pages in swap cache
[  109.892648][ T5503] Free swap  = 124984kB
[  109.892658][ T5503] Total swap = 124996kB
[  109.892667][ T5503] 2097051 pages RAM
[  109.892676][ T5503] 0 pages HighMem/MovableOnly
[  109.892685][ T5503] 401770 pages reserved
[  109.892694][ T5503] 0 pages cma reserved
[  110.523725][ T5102] Bluetooth: hci2: command tx timeout
[  110.791165][ T5515] FAULT_INJECTION: forcing a failure.
[  110.791165][ T5515] name failslab, interval 1, probability 0, space 0, times 0
[  110.791200][ T5515] CPU: 0 PID: 5515 Comm: syz.1.89 Not tainted 6.10.0-rc6-syzkaller-00215-g22f902dfc51e #0
[  110.791228][ T5515] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  110.791243][ T5515] Call Trace:
[  110.791253][ T5515]  <TASK>
[  110.791263][ T5515]  dump_stack_lvl+0x16c/0x1f0
[  110.791296][ T5515]  should_fail_ex+0x497/0x5b0
[  110.791327][ T5515]  should_failslab+0x9/0x20
[  110.791363][ T5515]  __kmalloc_noprof+0xcf/0x410
[  110.791387][ T5515]  ? __pfx_lock_acquire+0x10/0x10
[  110.791424][ T5515]  tomoyo_realpath_from_path+0xb9/0x720
[  110.791454][ T5515]  ? tomoyo_profile+0x47/0x60
[  110.791483][ T5515]  tomoyo_path_number_perm+0x245/0x590
[  110.791519][ T5515]  ? tomoyo_path_number_perm+0x232/0x590
[  110.791554][ T5515]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  110.791597][ T5515]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  110.791631][ T5515]  ? __fget_files+0x256/0x400
[  110.791663][ T5515]  security_file_ioctl+0x75/0xc0
[  110.791690][ T5515]  __x64_sys_ioctl+0xbb/0x220
[  110.791726][ T5515]  do_syscall_64+0xcd/0x250
[  110.791759][ T5515]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.791797][ T5515] RIP: 0033:0x7fea09975bd9
[  110.791817][ T5515] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  110.791841][ T5515] RSP: 002b:00007fea0a675048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  110.791867][ T5515] RAX: ffffffffffffffda RBX: 00007fea09b03f60 RCX: 00007fea09975bd9
[  110.791886][ T5515] RDX: 0000000020000180 RSI: 0000000040286608 RDI: 0000000000000005
[  110.791903][ T5515] RBP: 00007fea0a6750a0 R08: 0000000000000000 R09: 0000000000000000
[  110.791920][ T5515] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  110.791936][ T5515] R13: 000000000000000b R14: 00007fea09b03f60 R15: 00007ffdfb7b7548
[  110.791957][ T5515]  </TASK>
[  110.791969][ T5515] ERROR: Out of memory at tomoyo_realpath_from_path.
[  110.792680][ T5515] EXT4-fs warning (device sda1): verify_group_input:136: Cannot add at group 49 (only 8 groups)
[  111.494339][ T5529] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  114.539174][    C1] vkms_vblank_simulate: vblank timer overrun
[  114.668315][ T5544] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  114.935246][ T2872] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  115.179189][ T2872] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  115.333908][ T2872] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  116.686742][    C1] sched: RT throttling activated
[  133.688038][ T1241] ieee802154 phy0 wpan0: encryption failed: -22
[  133.688157][ T1241] ieee802154 phy1 wpan1: encryption failed: -22
[  168.691123][ T2872] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  195.691573][ T1241] ieee802154 phy0 wpan0: encryption failed: -22
[  195.691653][ T1241] ieee802154 phy1 wpan1: encryption failed: -22
[  199.698009][ T5098] Bluetooth: hci2: command 0x0406 tx timeout
[  199.698148][ T5098] Bluetooth: hci1: command 0x0406 tx timeout
[  199.698195][ T5098] Bluetooth: hci0: command 0x0406 tx timeout
[  199.698307][ T5096] Bluetooth: hci3: command 0x0406 tx timeout
[  256.697511][ T1241] ieee802154 phy0 wpan0: encryption failed: -22
[  256.697592][ T1241] ieee802154 phy1 wpan1: encryption failed: -22
[  283.692660][   T53] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  284.696955][   T53] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  284.698599][   T53] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  284.700646][   T53] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  284.701657][   T53] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  284.702171][   T53] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  288.686859][ T5569] Bluetooth: hci3: Opcode 0x0c1a failed: -110
[  316.696647][ T5102] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  317.687563][ T1241] ieee802154 phy0 wpan0: encryption failed: -22
[  317.687642][ T1241] ieee802154 phy1 wpan1: encryption failed: -22
[  317.700266][ T5102] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  321.706861][   T53] Bluetooth: hci3: Opcode 0x1001 failed: -110
[  321.707240][ T5102] Bluetooth: hci3: command 0x1001 tx timeout
[  321.707825][ T5102] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  325.706862][   T53] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  326.706946][   T53] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  332.699198][ T5572] Bluetooth: hci3: Opcode 0x1001 failed: -110
[  332.704184][ T5103] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  343.706881][   T53] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  347.697491][   T53] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  348.706637][ T5575] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  361.687009][   T31] INFO: task kworker/u8:10:2872 blocked for more than 147 seconds.
[  361.687048][   T31]       Not tainted 6.10.0-rc6-syzkaller-00215-g22f902dfc51e #0
[  361.687065][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  361.687076][   T31] task:kworker/u8:10   state:D stack:24096 pid:2872  tgid:2872  ppid:2      flags:0x00004000
[  361.687124][   T31] Workqueue: netns cleanup_net
[  361.687168][   T31] Call Trace:
[  361.687177][   T31]  <TASK>
[  361.687189][   T31]  __schedule+0xf15/0x5d00
[  361.687220][   T31]  ? __pfx___lock_acquire+0x10/0x10
[  361.687258][   T31]  ? __pfx___lock_acquire+0x10/0x10
[  361.687297][   T31]  ? __pfx___schedule+0x10/0x10
[  361.687325][   T31]  ? schedule+0x298/0x350
[  361.687351][   T31]  ? __pfx_lock_release+0x10/0x10
[  361.687387][   T31]  ? __mutex_lock+0x5b3/0x9c0
[  361.687417][   T31]  ? __mutex_trylock_common+0x78/0x250
[  361.687458][   T31]  schedule+0xe7/0x350
[  361.687485][   T31]  schedule_preempt_disabled+0x13/0x30
[  361.687515][   T31]  __mutex_lock+0x5b8/0x9c0
[  361.687547][   T31]  ? unregister_netdevice_notifier_net+0x1c/0xf0
[  361.687589][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  361.687619][   T31]  ? mntput_no_expire+0x158/0xaf0
[  361.687649][   T31]  ? __pfx_mntput_no_expire+0x10/0x10
[  361.687689][   T31]  ? _raw_spin_unlock+0x28/0x50
[  361.687718][   T31]  ? unregister_netdevice_notifier_net+0x1c/0xf0
[  361.687755][   T31]  ? rtnl_lock+0x9/0x20
[  361.687789][   T31]  unregister_netdevice_notifier_net+0x1c/0xf0
[  361.687831][   T31]  nsim_dev_hwstats_exit+0x76/0x2d0
[  361.687870][   T31]  nsim_dev_reload_destroy+0x133/0x4d0
[  361.687901][   T31]  nsim_dev_reload_down+0x6e/0xd0
[  361.687930][   T31]  devlink_reload+0x19a/0x7c0
[  361.687964][   T31]  ? __pfx_devlink_reload+0x10/0x10
[  361.687998][   T31]  devlink_pernet_pre_exit+0x1a1/0x2b0
[  361.688027][   T31]  ? __pfx_devlink_pernet_pre_exit+0x10/0x10
[  361.688055][   T31]  ? up_write+0x1b2/0x520
[  361.688080][   T31]  ? kobject_put+0xbe/0x5b0
[  361.688111][   T31]  ? __pfx_devlink_pernet_pre_exit+0x10/0x10
[  361.688139][   T31]  cleanup_net+0x488/0xbf0
[  361.688171][   T31]  ? __pfx_cleanup_net+0x10/0x10
[  361.688206][   T31]  process_one_work+0x9c5/0x1b40
[  361.688232][   T31]  ? __pfx_lock_acquire+0x10/0x10
[  361.688267][   T31]  ? __pfx_process_one_work+0x10/0x10
[  361.688295][   T31]  ? assign_work+0x1a0/0x250
[  361.688330][   T31]  worker_thread+0x6c8/0xf30
[  361.688359][   T31]  ? __pfx_worker_thread+0x10/0x10
[  361.688384][   T31]  kthread+0x2c1/0x3a0
[  361.688414][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  361.688441][   T31]  ? __pfx_kthread+0x10/0x10
[  361.688472][   T31]  ret_from_fork+0x45/0x80
[  361.688508][   T31]  ? __pfx_kthread+0x10/0x10
[  361.688538][   T31]  ret_from_fork_asm+0x1a/0x30
[  361.688578][   T31]  </TASK>
[  361.688616][   T31] INFO: task kworker/1:4:5142 blocked for more than 147 seconds.
[  361.688634][   T31]       Not tainted 6.10.0-rc6-syzkaller-00215-g22f902dfc51e #0
[  361.688650][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  361.688665][   T31] task:kworker/1:4     state:D stack:25648 pid:5142  tgid:5142  ppid:2      flags:0x00004000
[  361.688764][   T31] Workqueue: events_power_efficient crda_timeout_work
[  361.688796][   T31] Call Trace:
[  361.688806][   T31]  <TASK>
[  361.688817][   T31]  __schedule+0xf15/0x5d00
[  361.688845][   T31]  ? __pfx___schedule+0x10/0x10
[  361.688871][   T31]  ? __pfx_mark_lock+0x10/0x10
[  361.688910][   T31]  ? __pfx___schedule+0x10/0x10
[  361.688937][   T31]  ? schedule+0x298/0x350
[  361.688963][   T31]  ? __pfx_lock_release+0x10/0x10
[  361.689002][   T31]  schedule+0xe7/0x350
[  361.689029][   T31]  schedule_preempt_disabled+0x13/0x30
[  361.689059][   T31]  __mutex_lock+0x5b8/0x9c0
[  361.689091][   T31]  ? crda_timeout_work+0x15/0x50
[  361.689121][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  361.689152][   T31]  ? __pfx_lock_acquire+0x10/0x10
[  361.689191][   T31]  ? crda_timeout_work+0x15/0x50
[  361.689217][   T31]  ? rtnl_lock+0x9/0x20
[  361.689249][   T31]  crda_timeout_work+0x15/0x50
[  361.689278][   T31]  process_one_work+0x9c5/0x1b40
[  361.689307][   T31]  ? __pfx_psi_avgs_work+0x10/0x10
[  361.689337][   T31]  ? __pfx_process_one_work+0x10/0x10
[  361.689366][   T31]  ? assign_work+0x1a0/0x250
[  361.689403][   T31]  worker_thread+0x6c8/0xf30
[  361.689431][   T31]  ? __kthread_parkme+0x148/0x220
[  361.689463][   T31]  ? __pfx_worker_thread+0x10/0x10
[  361.689490][   T31]  kthread+0x2c1/0x3a0
[  361.689520][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  361.689547][   T31]  ? __pfx_kthread+0x10/0x10
[  361.689577][   T31]  ret_from_fork+0x45/0x80
[  361.689610][   T31]  ? __pfx_kthread+0x10/0x10
[  361.689640][   T31]  ret_from_fork_asm+0x1a/0x30
[  361.689684][   T31]  </TASK>
[  361.689697][   T31] INFO: task kworker/1:5:5147 blocked for more than 147 seconds.
[  361.689714][   T31]       Not tainted 6.10.0-rc6-syzkaller-00215-g22f902dfc51e #0
[  361.689730][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  361.689740][   T31] task:kworker/1:5     state:D stack:23568 pid:5147  tgid:5147  ppid:2      flags:0x00004000
[  361.689785][   T31] Workqueue: events reg_todo
[  361.689810][   T31] Call Trace:
[  361.689820][   T31]  <TASK>
[  361.689831][   T31]  __schedule+0xf15/0x5d00
[  361.689859][   T31]  ? __pfx_mark_lock+0x10/0x10
[  361.689897][   T31]  ? __pfx___schedule+0x10/0x10
[  361.689924][   T31]  ? schedule+0x298/0x350
[  361.689950][   T31]  ? __pfx_lock_release+0x10/0x10
[  361.689987][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  361.690014][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  361.690047][   T31]  schedule+0xe7/0x350
[  361.690074][   T31]  schedule_preempt_disabled+0x13/0x30
[  361.690104][   T31]  __mutex_lock+0x5b8/0x9c0
[  361.690136][   T31]  ? reg_process_self_managed_hints+0x95/0x1e0
[  361.690167][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  361.690200][   T31]  ? mark_held_locks+0x9f/0xe0
[  361.690236][   T31]  ? reg_process_self_managed_hints+0x95/0x1e0
[  361.690265][   T31]  reg_process_self_managed_hints+0x95/0x1e0
[  361.690293][   T31]  reg_todo+0x684/0x910
[  361.690323][   T31]  process_one_work+0x9c5/0x1b40
[  361.690352][   T31]  ? __pfx_crda_timeout_work+0x10/0x10
[  361.690382][   T31]  ? __pfx_process_one_work+0x10/0x10
[  361.690410][   T31]  ? assign_work+0x1a0/0x250
[  361.690447][   T31]  worker_thread+0x6c8/0xf30
[  361.690477][   T31]  ? __pfx_worker_thread+0x10/0x10
[  361.690503][   T31]  kthread+0x2c1/0x3a0
[  361.690534][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  361.690561][   T31]  ? __pfx_kthread+0x10/0x10
[  361.690591][   T31]  ret_from_fork+0x45/0x80
[  361.690626][   T31]  ? __pfx_kthread+0x10/0x10
[  361.690657][   T31]  ret_from_fork_asm+0x1a/0x30
[  361.690701][   T31]  </TASK>
[  361.690713][   T31] INFO: task kworker/1:8:5189 blocked for more than 147 seconds.
[  361.690730][   T31]       Not tainted 6.10.0-rc6-syzkaller-00215-g22f902dfc51e #0
[  361.690745][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  361.690755][   T31] task:kworker/1:8     state:D stack:26432 pid:5189  tgid:5189  ppid:2      flags:0x00004000
[  361.690849][   T31] Workqueue: events_power_efficient reg_check_chans_work
[  361.690876][   T31] Call Trace:
[  361.690885][   T31]  <TASK>
[  361.690897][   T31]  __schedule+0xf15/0x5d00
[  361.690925][   T31]  ? __pfx___schedule+0x10/0x10
[  361.690951][   T31]  ? __pfx_mark_lock+0x10/0x10
[  361.690988][   T31]  ? __pfx___schedule+0x10/0x10
[  361.691015][   T31]  ? schedule+0x298/0x350
[  361.691041][   T31]  ? __pfx_lock_release+0x10/0x10
[  361.691080][   T31]  schedule+0xe7/0x350
[  361.691107][   T31]  schedule_preempt_disabled+0x13/0x30
[  361.691137][   T31]  __mutex_lock+0x5b8/0x9c0
[  361.691169][   T31]  ? reg_check_chans_work+0x7d/0x10e0
[  361.691195][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  361.691228][   T31]  ? find_held_lock+0x2d/0x110
[  361.691259][   T31]  ? reg_check_chans_work+0x7d/0x10e0
[  361.691285][   T31]  reg_check_chans_work+0x7d/0x10e0
[  361.691312][   T31]  ? __pfx_lock_acquire+0x10/0x10
[  361.691349][   T31]  ? __pfx_reg_check_chans_work+0x10/0x10
[  361.691379][   T31]  process_one_work+0x9c5/0x1b40
[  361.691408][   T31]  ? __pfx_lock_acquire+0x10/0x10
[  361.691444][   T31]  ? __pfx_process_one_work+0x10/0x10
[  361.691474][   T31]  ? assign_work+0x1a0/0x250
[  361.691510][   T31]  worker_thread+0x6c8/0xf30
[  361.691539][   T31]  ? __kthread_parkme+0x148/0x220
[  361.691571][   T31]  ? __pfx_worker_thread+0x10/0x10
[  361.691598][   T31]  kthread+0x2c1/0x3a0
[  361.691628][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  361.691655][   T31]  ? __pfx_kthread+0x10/0x10
[  361.691691][   T31]  ret_from_fork+0x45/0x80
[  361.691726][   T31]  ? __pfx_kthread+0x10/0x10
[  361.691756][   T31]  ret_from_fork_asm+0x1a/0x30
[  361.691795][   T31]  </TASK>
[  361.691811][   T31] INFO: task kworker/u8:15:5557 blocked for more than 147 seconds.
[  361.691828][   T31]       Not tainted 6.10.0-rc6-syzkaller-00215-g22f902dfc51e #0
[  361.691843][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  361.691853][   T31] task:kworker/u8:15   state:D stack:27952 pid:5557  tgid:5557  ppid:2      flags:0x00004000
[  361.691899][   T31] Workqueue: ipv6_addrconf addrconf_verify_work
[  361.691927][   T31] Call Trace:
[  361.691937][   T31]  <TASK>
[  361.691948][   T31]  __schedule+0xf15/0x5d00
[  361.691975][   T31]  ? __pfx___lock_acquire+0x10/0x10
[  361.692011][   T31]  ? __pfx___lock_acquire+0x10/0x10
[  361.692050][   T31]  ? __pfx___schedule+0x10/0x10
[  361.692077][   T31]  ? schedule+0x298/0x350
[  361.692104][   T31]  ? __pfx_lock_release+0x10/0x10
[  361.692139][   T31]  ? __mutex_lock+0x5b3/0x9c0
[  361.692170][   T31]  ? __mutex_trylock_common+0x78/0x250
[  361.692209][   T31]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  361.692238][   T31]  schedule+0xe7/0x350
[  361.692265][   T31]  schedule_preempt_disabled+0x13/0x30
[  361.692296][   T31]  __mutex_lock+0x5b8/0x9c0
[  361.692328][   T31]  ? addrconf_verify_work+0x12/0x30
[  361.692355][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  361.692384][   T31]  ? __pfx_lock_acquire+0x10/0x10
[  361.692423][   T31]  ? addrconf_verify_work+0x12/0x30
[  361.692450][   T31]  addrconf_verify_work+0x12/0x30
[  361.692477][   T31]  process_one_work+0x9c5/0x1b40
[  361.692506][   T31]  ? __pfx_lock_acquire+0x10/0x10
[  361.692543][   T31]  ? __pfx_process_one_work+0x10/0x10
[  361.692572][   T31]  ? assign_work+0x1a0/0x250
[  361.692609][   T31]  worker_thread+0x6c8/0xf30
[  361.692638][   T31]  ? __kthread_parkme+0x148/0x220
[  361.692674][   T31]  ? __pfx_worker_thread+0x10/0x10
[  361.692701][   T31]  kthread+0x2c1/0x3a0
[  361.692730][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  361.692757][   T31]  ? __pfx_kthread+0x10/0x10
[  361.692788][   T31]  ret_from_fork+0x45/0x80
[  361.692822][   T31]  ? __pfx_kthread+0x10/0x10
[  361.692853][   T31]  ret_from_fork_asm+0x1a/0x30
[  361.692892][   T31]  </TASK>
[  361.692905][   T31] 
[  361.692905][   T31] Showing all locks held in the system:
[  361.692917][   T31] 2 locks held by kworker/0:0/8:
[  361.692934][   T31] 3 locks held by kworker/u8:0/11:
[  361.692953][   T31] 1 lock held by khungtaskd/31:
[  361.692969][   T31]  #0: ffffffff8dbb1620 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x75/0x340
[  361.693052][   T31] 3 locks held by kworker/u8:3/51:
[  361.693070][   T31] 3 locks held by kworker/u8:4/61:
[  361.693096][   T31] 3 locks held by kworker/u8:6/1043:
[  361.693113][   T31] 3 locks held by kworker/u8:7/1054:
[  361.693141][   T31] 3 locks held by kworker/u8:8/2476:
[  361.693159][   T31] 4 locks held by kworker/u8:9/2853:
[  361.693176][   T31] 6 locks held by kworker/u8:10/2872:
[  361.693192][   T31]  #0: ffff8880162d3148 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x1277/0x1b40
[  361.693258][   T31]  #1: ffffc90009f3fd80 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x921/0x1b40
[  361.693324][   T31]  #2: ffffffff8f732fd0 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0xbb/0xbf0
[  361.693398][   T31]  #3: ffff88802e4180e8 (&dev->mutex){....}-{3:3}, at: devlink_pernet_pre_exit+0x12d/0x2b0
[  361.693465][   T31]  #4: ffff88802e419250 (&devlink->lock_key#5){+.+.}-{3:3}, at: devlink_pernet_pre_exit+0x137/0x2b0
[  361.693540][   T31]  #5: ffffffff8f748268 (rtnl_mutex){+.+.}-{3:3}, at: unregister_netdevice_notifier_net+0x1c/0xf0
[  361.693621][   T31] 3 locks held by kworker/u8:11/2901:
[  361.693637][   T31] 3 locks held by kworker/u8:12/2927:
[  361.693656][   T31] 2 locks held by getty/4843:
[  361.693677][   T31]  #0: ffff88802b4a30a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[  361.693756][   T31]  #1: ffffc90002efe2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xfc8/0x1490
[  361.693830][   T31] 3 locks held by syz-executor/5085:
[  361.693846][   T31]  #0: ffff88806954cd88 (&hdev->req_lock){+.+.}-{3:3}, at: hci_dev_do_close+0x26/0x90
[  361.693920][   T31]  #1: ffff88806954c078 (&hdev->lock){+.+.}-{3:3}, at: hci_dev_close_sync+0x339/0x1100
[  361.693995][   T31]  #2: ffffffff8dbbcdb8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: exp_funnel_lock+0x282/0x3b0
[  361.694070][   T31] 3 locks held by kworker/1:4/5142:
[  361.694086][   T31]  #0: ffff888015481948 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_one_work+0x1277/0x1b40
[  361.694153][   T31]  #1: ffffc900034b7d80 ((crda_timeout).work){+.+.}-{0:0}, at: process_one_work+0x921/0x1b40
[  361.694220][   T31]  #2: ffffffff8f748268 (rtnl_mutex){+.+.}-{3:3}, at: crda_timeout_work+0x15/0x50
[  361.694289][   T31] 4 locks held by kworker/1:5/5147:
[  361.694305][   T31]  #0: ffff888015480948 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x1277/0x1b40
[  361.694372][   T31]  #1: ffffc90003727d80 (reg_work){+.+.}-{0:0}, at: process_one_work+0x921/0x1b40
[  361.694437][   T31]  #2: ffffffff8f748268 (rtnl_mutex){+.+.}-{3:3}, at: reg_todo+0x1c/0x910
[  361.694503][   T31]  #3: ffff888020768768 (&rdev->wiphy.mtx){+.+.}-{3:3}, at: reg_process_self_managed_hints+0x95/0x1e0
[  361.694573][   T31] 3 locks held by kworker/1:8/5189:
[  361.694589][   T31]  #0: ffff888015481948 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_one_work+0x1277/0x1b40
[  361.694656][   T31]  #1: ffffc900037e7d80 ((reg_check_chans).work){+.+.}-{0:0}, at: process_one_work+0x921/0x1b40
[  361.694728][   T31]  #2: ffffffff8f748268 (rtnl_mutex){+.+.}-{3:3}, at: reg_check_chans_work+0x7d/0x10e0
[  361.694794][   T31] 6 locks held by syz.4.85/5493:
[  361.694810][   T31] 2 locks held by syz.3.95/5541:
[  361.694826][   T31] 1 lock held by syz.0.96/5544:
[  361.694842][   T31]  #0: ffffffff8f748268 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3e/0x250
[  361.694916][   T31] 1 lock held by syz-executor/5552:
[  361.694932][   T31] 1 lock held by syz-executor/5554:
[  361.694948][   T31] 3 locks held by kworker/u8:13/5555:
[  361.694965][   T31] 3 locks held by kworker/u8:15/5557:
[  361.694980][   T31]  #0: ffff88802a963148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x1277/0x1b40
[  361.695049][   T31]  #1: ffffc900035ffd80 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_one_work+0x921/0x1b40
[  361.695117][   T31]  #2: ffffffff8f748268 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x12/0x30
[  361.695184][   T31] 2 locks held by syz-executor/5558:
[  361.695200][   T31] 
[  361.695207][   T31] =============================================
[  361.695207][   T31] 
[  361.695226][   T31] NMI backtrace for cpu 0
[  361.695237][   T31] CPU: 0 PID: 31 Comm: khungtaskd Not tainted 6.10.0-rc6-syzkaller-00215-g22f902dfc51e #0
[  361.695264][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  361.695278][   T31] Call Trace:
[  361.695288][   T31]  <TASK>
[  361.695298][   T31]  dump_stack_lvl+0x116/0x1f0
[  361.695327][   T31]  nmi_cpu_backtrace+0x27b/0x390
[  361.695363][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  361.695397][   T31]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[  361.695434][   T31]  watchdog+0xf86/0x1240
[  361.695462][   T31]  ? __pfx_watchdog+0x10/0x10
[  361.695487][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  361.695518][   T31]  ? __kthread_parkme+0x148/0x220
[  361.695547][   T31]  ? __pfx_watchdog+0x10/0x10
[  361.695572][   T31]  kthread+0x2c1/0x3a0
[  361.695601][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  361.695627][   T31]  ? __pfx_kthread+0x10/0x10
[  361.695657][   T31]  ret_from_fork+0x45/0x80
[  361.695695][   T31]  ? __pfx_kthread+0x10/0x10
[  361.695724][   T31]  ret_from_fork_asm+0x1a/0x30
[  361.695761][   T31]  </TASK>
[  361.695771][   T31] Sending NMI from CPU 0 to CPUs 1:
[  361.695798][    C1] NMI backtrace for cpu 1
[  361.695812][    C1] CPU: 1 PID: 2853 Comm: kworker/u8:9 Not tainted 6.10.0-rc6-syzkaller-00215-g22f902dfc51e #0
[  361.695834][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  361.695846][    C1] Workqueue: events_unbound cfg80211_wiphy_work
[  361.695877][    C1] RIP: 0010:__orc_find+0xa1/0x130
[  361.695906][    C1] Code: 18 51 00 48 89 e8 48 29 d8 48 89 c2 48 c1 e8 3f 48 c1 fa 02 48 01 d0 48 d1 f8 4c 8d 3c 83 4c 89 fa 48 c1 ea 03 42 0f b6 0c 32 <4c> 89 fa 83 e2 07 83 c2 03 38 ca 7c 04 84 c9 75 73 49 63 17 4c 89
[  361.695925][    C1] RSP: 0018:ffffc90009e2eb78 EFLAGS: 00000a03
[  361.695940][    C1] RAX: 0000000000000000 RBX: ffffffff905f9d5c RCX: 0000000000000000
[  361.695954][    C1] RDX: 1ffffffff20bf3ab RSI: ffffffff813ccbda RDI: 0000000000000005
[  361.695968][    C1] RBP: ffffffff905f9d5c R08: 0000000000000005 R09: 0000000000000000
[  361.695981][    C1] R10: 0000000000000001 R11: ffff8880b93293d8 R12: ffffffff8a352f6c
[  361.695994][    C1] R13: ffffffff91134ab4 R14: dffffc0000000000 R15: ffffffff905f9d5c
[  361.696008][    C1] FS:  0000000000000000(0000) GS:ffff8880b9300000(0000) knlGS:0000000000000000
[  361.696028][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  361.696043][    C1] CR2: 000055d03343c060 CR3: 000000005fd84000 CR4: 00000000003506f0
[  361.696056][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  361.696068][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  361.696081][    C1] Call Trace:
[  361.696087][    C1]  <NMI>
[  361.696094][    C1]  ? show_regs+0x8c/0xa0
[  361.696122][    C1]  ? nmi_cpu_backtrace+0x1d8/0x390
[  361.696149][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  361.696175][    C1]  ? nmi_handle+0x1a9/0x5c0
[  361.696202][    C1]  ? __orc_find+0xa1/0x130
[  361.696229][    C1]  ? default_do_nmi+0x6a/0x160
[  361.696247][    C1]  ? exc_nmi+0x170/0x1e0
[  361.696265][    C1]  ? end_repeat_nmi+0xf/0x53
[  361.696284][    C1]  ? cfg80211_inform_single_bss_data+0x87c/0x2080
[  361.696313][    C1]  ? __orc_find+0x7a/0x130
[  361.696340][    C1]  ? __orc_find+0xa1/0x130
[  361.696366][    C1]  ? __orc_find+0xa1/0x130
[  361.696393][    C1]  ? __orc_find+0xa1/0x130
[  361.696424][    C1]  </NMI>
[  361.696430][    C1]  <TASK>
[  361.696437][    C1]  ? cfg80211_inform_single_bss_data+0x87c/0x2080
[  361.696465][    C1]  unwind_next_frame+0x335/0x23a0
[  361.696494][    C1]  ? cfg80211_inform_single_bss_data+0x87d/0x2080
[  361.696523][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  361.696549][    C1]  arch_stack_walk+0x100/0x170
[  361.696571][    C1]  ? cfg80211_inform_single_bss_data+0x87d/0x2080
[  361.696599][    C1]  ? ieee802_11_parse_elems_full+0xea/0x15d0
[  361.696629][    C1]  stack_trace_save+0x95/0xd0
[  361.696654][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[  361.696679][    C1]  ? __orc_find+0x104/0x130
[  361.696711][    C1]  ? stack_access_ok+0xf9/0x270
[  361.696741][    C1]  kasan_save_stack+0x33/0x60
[  361.696765][    C1]  ? kasan_save_stack+0x33/0x60
[  361.696790][    C1]  ? kasan_save_track+0x14/0x30
[  361.696816][    C1]  ? __kasan_kmalloc+0xaa/0xb0
[  361.696842][    C1]  ? __kmalloc_noprof+0x1ec/0x410
[  361.696860][    C1]  ? ieee802_11_parse_elems_full+0xea/0x15d0
[  361.696889][    C1]  ? ieee80211_inform_bss+0xfd/0x1140
[  361.696916][    C1]  ? cfg80211_inform_single_bss_data+0x87d/0x2080
[  361.696952][    C1]  kasan_save_track+0x14/0x30
[  361.696979][    C1]  __kasan_kmalloc+0xaa/0xb0
[  361.697006][    C1]  __kmalloc_noprof+0x1ec/0x410
[  361.697025][    C1]  ? kthread+0x2c1/0x3a0
[  361.697048][    C1]  ieee802_11_parse_elems_full+0xea/0x15d0
[  361.697077][    C1]  ? hlock_class+0x4e/0x130
[  361.697099][    C1]  ? mark_lock+0xb5/0xc60
[  361.697125][    C1]  ? lock_acquire+0x1b1/0x560
[  361.697153][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  361.697181][    C1]  ? __pfx_ieee802_11_parse_elems_full+0x10/0x10
[  361.697211][    C1]  ? cfg80211_update_known_bss+0x39f/0x1150
[  361.697235][    C1]  ? __pfx_lock_release+0x10/0x10
[  361.697264][    C1]  ? mark_held_locks+0x9f/0xe0
[  361.697307][    C1]  ieee80211_inform_bss+0xfd/0x1140
[  361.697335][    C1]  ? __pfx_ieee80211_inform_bss+0x10/0x10
[  361.697364][    C1]  ? trace_kmalloc+0x2d/0xe0
[  361.697388][    C1]  ? __kmalloc_noprof+0x20b/0x410
[  361.697407][    C1]  ? __pfx_ieee80211_inform_bss+0x10/0x10
[  361.697440][    C1]  cfg80211_inform_single_bss_data+0x87d/0x2080
[  361.697467][    C1]  ? __orc_find+0x104/0x130
[  361.697495][    C1]  ? __pfx_cfg80211_inform_single_bss_data+0x10/0x10
[  361.697524][    C1]  ? ret_from_fork_asm+0x1a/0x30
[  361.697555][    C1]  ? ieee802_11_parse_elems_full+0xea/0x15d0
[  361.697583][    C1]  ? stack_trace_save+0x95/0xd0
[  361.697607][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[  361.697632][    C1]  ? stack_depot_save_flags+0x28/0x8f0
[  361.697655][    C1]  ? __read_once_word_nocheck+0x9/0x20
[  361.697684][    C1]  ? cfg80211_inform_bss_data+0x205/0x39d0
[  361.697711][    C1]  cfg80211_inform_bss_data+0x205/0x39d0
[  361.697738][    C1]  ? __kasan_kmalloc+0xaa/0xb0
[  361.697763][    C1]  ? __kmalloc_noprof+0x1ec/0x410
[  361.697781][    C1]  ? ieee802_11_parse_elems_full+0xea/0x15d0
[  361.697810][    C1]  ? __pfx_mark_lock+0x10/0x10
[  361.697837][    C1]  ? kthread+0x2c1/0x3a0
[  361.697859][    C1]  ? ret_from_fork+0x45/0x80
[  361.697884][    C1]  ? ret_from_fork_asm+0x1a/0x30
[  361.697913][    C1]  ? __pfx_cfg80211_inform_bss_data+0x10/0x10
[  361.697939][    C1]  ? hlock_class+0x4e/0x130
[  361.697961][    C1]  ? mark_lock+0xb5/0xc60
[  361.697989][    C1]  ? hlock_class+0x4e/0x130
[  361.698010][    C1]  ? __lock_acquire+0xc5d/0x3b30
[  361.698041][    C1]  ? hlock_class+0x4e/0x130
[  361.698064][    C1]  ? find_held_lock+0x2d/0x110
[  361.698087][    C1]  ? ieee80211_bss_info_update+0x2cb/0xab0
[  361.698116][    C1]  cfg80211_inform_bss_frame_data+0x271/0x7c0
[  361.698146][    C1]  ieee80211_bss_info_update+0x311/0xab0
[  361.698175][    C1]  ? __pfx_ieee80211_bss_info_update+0x10/0x10
[  361.698203][    C1]  ? ieee80211_ibss_rx_queued_mgmt+0x185e/0x2f40
[  361.698233][    C1]  ? ieee80211_mandatory_rates+0x1ab/0x220
[  361.698260][    C1]  ieee80211_ibss_rx_queued_mgmt+0x1898/0x2f40
[  361.698289][    C1]  ? hlock_class+0x4e/0x130
[  361.698313][    C1]  ? __pfx_ieee80211_ibss_rx_queued_mgmt+0x10/0x10
[  361.698341][    C1]  ? lock_acquire+0x1b1/0x560
[  361.698368][    C1]  ? find_held_lock+0x2d/0x110
[  361.698390][    C1]  ? find_held_lock+0x2d/0x110
[  361.698417][    C1]  ? kcov_remote_start+0x372/0x6e0
[  361.698438][    C1]  ? mark_held_locks+0x9f/0xe0
[  361.698465][    C1]  ? kcov_remote_start+0x3d1/0x6e0
[  361.698486][    C1]  ieee80211_iface_work+0xc07/0xf00
[  361.698515][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  361.698536][    C1]  cfg80211_wiphy_work+0x255/0x330
[  361.698567][    C1]  process_one_work+0x9c5/0x1b40
[  361.698589][    C1]  ? __pfx_cfg80211_wiphy_work+0x10/0x10
[  361.698619][    C1]  ? __pfx_process_one_work+0x10/0x10
[  361.698641][    C1]  ? assign_work+0x1a0/0x250
[  361.698669][    C1]  worker_thread+0x6c8/0xf30
[  361.698691][    C1]  ? __pfx_worker_thread+0x10/0x10
[  361.698711][    C1]  kthread+0x2c1/0x3a0
[  361.698733][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  361.698753][    C1]  ? __pfx_kthread+0x10/0x10
[  361.698776][    C1]  ret_from_fork+0x45/0x80
[  361.698802][    C1]  ? __pfx_kthread+0x10/0x10
[  361.698825][    C1]  ret_from_fork_asm+0x1a/0x30
[  361.698855][    C1]  </TASK>
[  367.681573][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[  367.681591][   T31] CPU: 1 PID: 31 Comm: khungtaskd Not tainted 6.10.0-rc6-syzkaller-00215-g22f902dfc51e #0
[  367.681616][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  367.681628][   T31] Call Trace:
[  367.681636][   T31]  <TASK>
[  367.681644][   T31]  dump_stack_lvl+0x3d/0x1f0
[  367.681674][   T31]  panic+0x6f5/0x7a0
[  367.681706][   T31]  ? __pfx_panic+0x10/0x10
[  367.681736][   T31]  ? preempt_schedule_thunk+0x1a/0x30
[  367.681768][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  367.681797][   T31]  ? preempt_schedule_thunk+0x1a/0x30
[  367.681819][   T31]  ? watchdog+0xd3d/0x1240
[  367.681843][   T31]  ? watchdog+0xd30/0x1240
[  367.681866][   T31]  watchdog+0xd4e/0x1240
[  367.681891][   T31]  ? __pfx_watchdog+0x10/0x10
[  367.681912][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  367.681941][   T31]  ? __kthread_parkme+0x148/0x220
[  367.681970][   T31]  ? __pfx_watchdog+0x10/0x10
[  367.681992][   T31]  kthread+0x2c1/0x3a0
[  367.682019][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  367.682045][   T31]  ? __pfx_kthread+0x10/0x10
[  367.682073][   T31]  ret_from_fork+0x45/0x80
[  367.682104][   T31]  ? __pfx_kthread+0x10/0x10
[  367.682129][   T31]  ret_from_fork_asm+0x1a/0x30
[  367.682163][   T31]  </TASK>
[  367.682382][   T31] Kernel Offset: disabled