last executing test programs:

4m3.414524958s ago: executing program 4 (id=479):
syz_open_dev$I2C(&(0x7f0000000000), 0x0, 0x80000)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
setresuid(0x0, 0xffffffffffffffff, 0xee00)
getresuid(&(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140)=<r3=>0x0)
setreuid(0x0, r3)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, 0x0}], 0x1, 0x56, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(0xffffffffffffffff, 0x84, 0x23, &(0x7f00000001c0)={0x0, 0xfff}, 0x8)

4m3.191250837s ago: executing program 4 (id=483):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
ioctl$VIDIOC_SUBDEV_S_FMT(0xffffffffffffffff, 0xc0585605, &(0x7f0000000040)={0x142cfbe9aef9b3, 0x0, {0x7ac, 0x7, 0x300d, 0x9, 0x7, 0x1, 0x2}})
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_int(r3, 0x29, 0x13, 0x0, 0x2a)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="01000000000000000000010000001c000180060001000200000008000300ac1414aa0800060001000000"], 0x30}}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
fsmount(0xffffffffffffffff, 0x1, 0x0)
ioprio_set$pid(0x3, 0x0, 0x0)
r6 = mq_open(&(0x7f00000000c0)='${$\x00', 0x840, 0x0, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r7, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x10)
sendmsg$nl_route(r7, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=@ipv4_newroute={0x24, 0x1a, 0x1, 0x0, 0x0, {}, [@RTA_DPORT={0x6, 0x1d, 0xfffe}]}, 0x24}}, 0x0) (fail_nth: 1)
r8 = syz_io_uring_setup(0x9e, &(0x7f0000000640)={0x0, 0xec25, 0x0, 0x0, 0x40000333}, &(0x7f00000006c0)=<r9=>0x0, &(0x7f00000001c0)=<r10=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r9, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r9, r10, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r6, 0x6, &(0x7f0000000380)=[{0x0}, {&(0x7f0000000280)=""/194, 0xc2}], 0x2})
r11 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
r12 = syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r12, 0xc04064a0, &(0x7f0000000140)={0x0, &(0x7f0000000040)=[<r13=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_SETCRTC(r11, 0xc06864a2, &(0x7f00000005c0)={&(0x7f0000000440), 0x0, r13, 0x0, 0x2, 0x4, 0x0, 0x0, {0x9, 0x80, 0x72cf, 0x2, 0x8000, 0x9, 0x1, 0x81, 0x8009, 0xc0, 0x3, 0x1, 0x1, 0x9, "e6c7e9544424fe6f3360113482862f194ba52fb6f777f6eb94fd080e5a7296d7"}})
io_uring_enter(r8, 0x847ba, 0x0, 0xe, 0x0, 0x0)

4m2.086483204s ago: executing program 4 (id=489):
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x20202, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="b70000001f000000bca300002100000024030000c0feffff620af0fff8ffffff71a4f2ff000000001f03000000000000e5000500000000002604fdffff02000014010000033800001d13f8ff000000007a0af0ff0000001f0f14000000000000b503f7fff80000009500000000000000033bc065b78111c6dfa041b63af4a3912435f1a864a7aad58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168e5181554a090f300020000fe275daf51efd601b6bf01c8e8b1b526375ee4dd6fcd82e4fee5bef7af9aa0d7d600c095199fe3ff3128e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646cb7798b3e6440c2fbdb00a3e35208b0bb0d2cd829e65440000000000000000028610643a98d9ec21ead2ed51b104d4d91af25b845b9f7d08d123deda88c658d42ecbf28bf7076c15b463bebc72f526dd70252e79166d858fcd0e06dd31af9612fa402d0b11008e59a5923906f88b53987ad1714e72ba7a54f0c33d39000d06a59ff61623604000000000000006a89adaf17b0a6041bdeebdfd1f5089048ddff6da40f9411fe7226a40409d6e37c4f46756d31cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564163427afea62d84f3a10076443d643649393bf52d2105bd901128c7e0ec82701c8204a1deeed4155617572652d950ad31928b0b036dc2869f478341d02d0f5ad94b081fcd507acb4b9c67382f13d000000225d85ae49cee383dc5049076b98fb6853ab39a21514da60d2ae20cfb91d6a49964757cdf538f9ce2bdbb9893a5de817101a3062cd54f9ff51d355d84ce97bb0c6b6a595e487a2cc47c0efbb2d71cde2c10f0bc6980fe78683ac5c0c31032599dd273863be9261eee52216d009f4c52048ef8c126aeef5f510a8f1aded94a129e4aec6e8d9ab06faffc3a15d91c2ea3e2e04cfe031b287539d0540059fe6c7fe7cd8697502c7596566d674e425da5e7f009602a9f61d3804b3e0a1053abdc31282dfb15eb6841bb64a1b3045024a982f3c48153baae244e7bf573eac34b781337ad5905c6bbf1137548c7f1a4cad2422ee965a38f7defbd2960242b104e20dc2d9b0c35608d402ccdd9069bd50b994fda7a90144022a579dfc0229cc0dc98816106dec28eaeb883418f562ae00003ea96d10f172c0374d6eed826416050000000bfe9b4a9c5a90ff59d54d1f92ecc48899b212c55318294270a1ad10c80fef7c24d47afcc829ba0f85da6d888f18ea40ab959f6074ab2a40d85d1501783a7ab540b8d7b4ead35a385e0b4a26b702396df7e0c1e02b88c114f244a9bf93f04bf072f0861f5c0b000000000000eedcf2ba1a9508f9d6aba582a896a9f1ffa968eacea75caf822a7a63ba3401e6a52acb11883ad2a3b1832371fe5bc621426d1ed01b389708165b9cdbae2ed9dc7358f0ebadde0b727f27feeb7464dcd857ab15e355713767c536cbae2f5c7d951680f6f2f9a6a8346962a350845ffa0d82884f79adc287906943408e6df3c391e97ba48db0a5adbfd03aac93df8866fb010ae20e92bed1fe39af169d2a466f0db6f3d9436a7d55fc30511d00000000c95265b2bd83d64a532869d701723fedcbada1ee7baa19faf67256b56a41fd355b6a686b50f0937f778af083e055f6138a757ebd0ed91124a6b244f9acf41ac5d73a008364e0606a594817031fc2f52c8785fe0721719b3d654026c6ea08b83b123145ab5703dad844ced301efeb6dc5f6a9037d2283c42efc54fa84323afc4c10eff462c8843187f1dd48ef0981000000000000ff0f40b1888e1cdba94a6ea80c33ead5722c3293a493f1479531dd88261458f40d31fe8df15efaaeea831555877f9538c6ee6ba65893ff1f908ba7554ba583ec7932f5954f31a878e2fae6691d1aee1da02ba516467df3e7d1daac43738612e4fee18a22da19fc08001011e32f80fb60e14b9eee094277bbc170882c8890205f3a6da2819d2f9e77c7c64affa54fec0136cbafa5f62e3f753b639a924599c1f69219927ea5301fff0a6063d427180d61542c2571f983e96635600000554f327a3535e7c7542799493c31ac05a7b57f03ca91a01ba2a30ca99e969d6fd09dc28ebc15edb4d91675767999d146aef7799738b292fd64bb25b2969e2b15f36b788bce5ccdbaf75c94cb93499f6947a967a794963342aece449a0d80010f5c653d22d49030a8c2a4ab595bf4238f18ca428dafc7ac96d404607a0000000051a2104f22e6db5a62b5089c1b45282d38864daa3ae81d6b0968d1d2867b6ef9d12096833d6864da40b54783a17aaeb6737c323f9f98e354cc98dcfe23ad01bd1c61563e69ffe1c2c73e1661261173f359e93d2c5e424c17998809ec8f0232b3955e052a4cecd89008f70314a0bdd491ec035d232f89fe0120f64c62e8e3ed8bcb45202c204bbec8d722824c0ebca8db1ea4a05e41f6016ab5bbe4fe7ff5d785d0128171c90d9900ca2532b0f9d01c4b45294fbba468df3e1b393cb4e62e753b4172ba7ac1f2b51c94bc5d047899fd219f448bf9189c65c9d91eda6b52a373803a9efe44f86909bc90addb7b9aee813df534aac4b3093c91b8068cd849904568916694d461b76a58d88cf0f520310a1e9fdc18cde98d662eee077515d0a881192292ffff5392ab3d1311b82432662806add87047f601fa888400000000000000000000000000006acc19808d7cf29bc974b0ea92499a41b9b9a7c2bca311a28ee4952f2d325a56397c78f12205db653a536f9f3322405d1efd78e578dc6b3fb84f3738a4b6caa800000087efa51c5d95ecba4e50e529d1e8c89600e809dc3d0a2f65579e23457949a50f2d0455cf79a43746979f99f6a1527f004f1e37a3926937e84fb478199dc1020f4beb98b8074bf7df8b5e783637da740800000000000000c55a4385e9a617aa6c8e10d4202c5afeb06e2f9115558ea12f92d7ae633d44086b3f03b20d546fa66a72e38207c9d20035abc46271a30f1240de52536941242d23896ab74a3c6670fdc49c14f34fc4eadd6db8d80eba439772bf60a1db18c472dafc5569adc282928d2a1ffe29f1a57d3f18f4edaeb5d37918e6fddcd821da67a0785585a4443440dc65600e64a6a2740000000000000000000000000000000000000000000a0009dd14b38f2f4426d7cf5075047c31f6ce6adddfe3ac649c0643c8bfbeb14ba1fd7a485aa893915cf81e29aaf375e904bbe52691a4100260ffcd8f1d04166d291ebcef893e1b9ccb6797d0646fe0e7274434f28efb43e06e64f0698caca42f4e6018a455736c482a017e2b13dac4a90faa109f0e87cc94e3efb649692456463ca74aa6ad4bf50c1acb0000000000000005375e528285544d0064b98646f3109e9a4942ce42c6e7ec84b664f6c2770803f10baa804a707f0a1fcbfc309381aeba191950bae71f37f1eb7ceeffb3c0547ac6571603adbfde4c8b5f8d7f4b854441613633b48865b65bdc415e1e0dcf672d68cf4cebf04f4bc1eebf560a26d34d3757b1450fdb0a9a69f432e277f3a0386eb2bd3305c821c64757f786b79fef54dbe64c67d73934bc80b2133fb3c04cc7ea48bf97a6243c9f95dcbddecf45f008f1822c7868e1ff5a3cff5d6b6898335792749df7b1f51e91f8c1c3b1b93b33aaa3fab69cef08a9f6f6cf39dea3d878b2ed42545421970cc426e644332bc956d1c6adefdf0ede2c5c94aa632646ae225accdf031f611d01622921f1b922a5ac887cca3136133dce8d9f5f4da7bed2ea5d94362200000000000000000000f296b0c1484e5f781ad26bff696b05ff0a5e2270e07618b04273bd4075ea38ab463bfa6a38e7c537498ba3e4df8dfc9e040000003c3ffad44d2a376def42e41e9fc31678257e040fa7cf32c221aaac08000000000000001a00000000000000000000173570f0c11ae694b0f7a4f9c2f6790044a357e785af6e153d5f1ea460af92c7cbbd6295afe740f5e154346d483e0d641ef02e4d5295d756e110522a7a945b93fb705b95b6aae27a8fb33732ce1da1c0b1af8eb9222a06e984ab1e6984c8bdc12360627137ab67b6b68ab08acb29a74dc36b51209cfbc87f61182bbeb2772e9d5a1ffc477179be481efe46a4ce86be0b1d8eee42a611a3d44ca450b14586ed63dd92005c79e4a8ab8a94f0c6cb4bed8594a39bd76d3ef8a7ab014e787596db796bd93a36c2880423291e3bccc86f66ba792ff4d87b3f80e5908779e51c5e9055fc5b23605cd000c723187ef09dcf4b07b06a9342f3f62ee7acddff292082c1f4d8eb9561f80873a09a1ae0c9af1121175e5600f43a1179484502009759264a5729f07c2b218fa36ba2316a99aaad0130df83d0bda1e711290f78c143ea143967b00adcd77e6ad5e48d839ea61aadb83e4d071c54691924a3830d3e7b5c198bb0ed623153590000000000000000004b985ea1702f34f2f85b168c083e810ed567e3f1979b9ed1a4bf6a10dac825c96a0828b335de445a4880bb6474157efd1a72ca46ae4cbe3ab648c9bc4867a5a4cb87d7d6d55475b34b3cb6aa9e2337d4e04a37e35109752522ac9b186ddd80c47da6a2f4ef7bb909c975520000000000000000000000219cf5c1376ab33786f6b856d354e90a2733f78f2d188057cead3480eade49d55b770fad7fa000d23da6275768810b6b2df91d3a991ea98d929d271696c258d5b735d5db11df434e7dd1b7c1ca05cea3977df564115f4ec6ffab1d2ff8a642ca50934b3fbe44b0abeba9df209566984a29dfc0466e439a94e177b3c4d5f6e92b8176b9d6ddeeeb196fa964217f88e1acc180aaa4"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xfffffffffffffd27, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

4m0.558170397s ago: executing program 4 (id=491):
socket(0x11, 0x80001, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
io_setup(0xa, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0)
symlink(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', &(0x7f0000000000)='./file0\x00')
rename(&(0x7f0000000580)='./file0\x00', &(0x7f0000000780)='./file2\x00')
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00')
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000330001002bbd7000fedbdb25040009cc00000800040002000000"], 0x1c}, 0x1, 0x0, 0x0, 0x50}, 0x4000000)
r4 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x28af, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
r5 = syz_open_dev$vim2m(0x0, 0x200000001003, 0x2)
ioctl$vim2m_VIDIOC_STREAMON(r5, 0x40045612, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000000)={'veth0_vlan\x00', @remote})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000000000)={'veth0_vlan\x00', @random="0106002010ff"})

3m58.992338784s ago: executing program 4 (id=494):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f0000000000)=ANY=[@ANYBLOB="180000002c00010026bd70f7fbdbdf250400002804001d00"], 0x18}, 0x1, 0x0, 0x0, 0x404000c}, 0x40000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={0x0}, 0x1, 0x0, 0x0, 0x20008855}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
syz_open_dev$vim2m(&(0x7f0000000040), 0x7f, 0x2)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d00000085"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = syz_io_uring_setup(0x2140, &(0x7f0000000580)={0x0, 0xb800, 0x200, 0x3, 0x9}, &(0x7f0000000300), &(0x7f0000000600))
io_uring_register$IORING_REGISTER_BUFFERS2(r4, 0xf, &(0x7f00000007c0)={0x1, 0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000640)=""/244, 0xf4}], &(0x7f0000000780)=[0x401, 0xffffffffffffffff]}, 0x20)
r5 = openat$fb0(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r6 = socket$l2tp6(0xa, 0x2, 0x73)
bind$inet6(r6, &(0x7f0000000000)={0xa, 0x4e20, 0x80000000, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0xf}, 0x1c)
ioctl$FBIOPUT_VSCREENINFO(r5, 0x4601, &(0x7f0000000380)={0x3c0, 0x78, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, 0x8, 0x3, 0x1ff, 0x3d, 0x5, 0x3, 0x53, 0x202, 0x1, 0xc})
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="b700000081000000bfa30000000000000703000000feffff720af0fff8ffffff71a4f0ff0000000071100000000000001d400500000000004704000001ed4c000f030000000000001d44000000000000620a00fe000000007203000000000000b5000000000000009500000000000000023bc065b58111c6dfa041b63af4a3912435f1a864a710aad58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168c50000000190f32050e436fe275daf51efd601b6bf01c8e8b1b526375ec4dd6fcd82e4fe51bef7af9aa0d7d600c095199fe3ff3128e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646cb7798b3e6440c2fbdb00a3e35208b0bb0d2cd829e654400e2438ec649dc74a28610643a98d9ec21ead2ed51b104d4d91af25b845d8a7925c3109b151b8b9f75dd08d123deda88c658d42ecbf28bf7076c15b463bebc72f526d8e8afcb913466aaa7f6df70252e79166d858fcd0e06dd31af9612f2460d0b11008e59a5923906f88b53987ad1714e72ba7a54f0c33d39000d06a59ff616236fd9aa58f2477184b6a89adaf17b0a6041bdef728d236619074d6ebdfd1f5089048ddff6da40f9411fe722631cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564162a27afea62d84f3a10746443d6438e959532e0617d419c6bc6ea9f2bca4464f56e24e6d2105bd901204a1deeed4155617572652d950ad31928b0b0c3dc2869f478341d02d0f5ad94b081fcd507acb4b9c65fee9d5a17f48a7382f13d000000225d85ae49cee383dc5049076b989b40000000000000da60d2ae20cfb91d6a49964757cdf538f9ce2bdb1ab062cd54e67011d355d84ce97bb0c6b4a595e487efbb2d71cde2c140952f9a0f0bc6980fe78683ac5c0c31032599ddd71063be9261b2e1aab1675b34a22048ef8c126aeef5f510a8f1aded94a129e4aec6f8d9ab06faffc3a15d96c2ea3e2e04cfe031b2875353193f82ade69d0540059fe6c7fe7cd8697502c7596566d674e425da5e87e59602a9f6590521d31d3804b3e0a1053abdc31282dfb15eb6841bb64a1b304502dda787343ce3c953992e4a982f3c48153baae244e7bf37548c7f1a4cad2422ee965a38f7defbd2160242b104e20dc2d9b0c35608d402ccdd9069bd50b994fda7a9de44028d6112a0c2d21b2dc98816106dec28eaeb883418f562ae00003ea96d10f172c0374d6eed826416050000000bfe9b4a9c5a90ff59d54d1f92ecc4e95dd2d18383117c039862198899b212c55318294270a1ad10c80fef7c24d47afce829ba0f85da6d888f18ea40ab959f6074ab2a40d85d15017ab513cdc6c0e57fb1c1ca571380d7b4ead35a385e0b4a26b702396df7e0c1e02b6e4114f244a9bf93f04bf072f0861f7580e69db384ac7eeedcf2ba1a9508f9d6aba582a896a9f1ffa968eacea75caf822a7a63ba34015ea5aacb1188883ad2a3b1832371fe5bc621426d1ed0a4a99702cc1b6912a1e717d29135753208165b9cdbae2ed9dc7358f0ebadde0b727f27feeb744ddcc536cbae315c7d1fe1399562ba6824840bd2951680f6f2f9a6a8346962a350845ffa0d829e4f79adc287906943408e6df3c391e97ba48db0a5adbfd03aac93df8866fb010aec0e92bed1fe39af169d2a466f0db6f3d9436a7d55fc30511d00e10000c95265b2bd83d64a532869d701723fedcbada1ee7baa5b6a686b50f0937f778af083e055f6138a757ebd0ed91124a6b244f9acf41ac5d73a008364e0606a594817031fc2f52c8785fe0721719b3d654026c6ea08b83b123145ab5703dad844ceb201ddeb6dc5f6a903792283c42efc54fa84323afc4c10eff462c8843187f1dd48ef3fa293774d582956ff0f40b10ca94f6feeb2893c17888e1cdba94a6ea80c33ead5722c3293a493f1479531dd88261458f40d31fe8df15efaaeea831555877f9538d6ee6ba65893ff1f908ba7554ba583fef3ec7932f5954f31a878e2fae6691d1aee1da02ba516467df3e7d1daac43738012e4fee18a22da19fcdb4c2890cda1f96b952511e3a69d694d625e0b2f808890205f3a6da2819d2f9e77c7c64affa54fec0136cbafa5f6f096753b639a924599c1f69219927ea5301fff0a6063d427f0688430754c02180d61542c2571f983e9673560000000000000000005a7b57f03ca91a01ba2e30ca99e8ebc15ecb4d91675767999d146aef7799738b292fd640dfef6b04d086f737a159d7e0c6e4d81ad64a8bbca48568325b2969e2b15f36b788bce5ccdbaf75c94cb93499f6947a967a7bce14c6de4e7c0660d80010f5c653d22d490cba8c2a4ab595bf4238f18ca428dafc7ac96d404607a0000000051a2104f22e6db5a62b5089c1b45282d38864daa3ae81d6b0968d1d2867b91b7d120617d12d91db2633d6864da40b54783a17aaeb6737c323f9f98e354cc98dcfe23ad01bd1c61563e69ffe1c2c73e16e1461173f359e93d2c5e424c17998809ec8f0232b3955e052a4cecd89008f70314a0bdd491ec86a4555d89fe0120f64c62e8e3ed8bcb45202c3d4bbec8d722824c0ebca8db1ea4a003d2fbdc1f9be78537756ab5bbe4fe9af5d785d0128171c90d9900ce2532b0f9d01c4b45294fbba468df3e1b583cb4e62e754598e47df6bd06431c94bc5d047899fd219f448bf9189c65c9d91eda6b52a373803a9efe44f86909bc90addb7b9aee813df534aac4b3093c91b8068cd84990453f006694d461b76a58d88cf0f520310a1e80dc18cde98d662eee077515d0a8811922929e085392ab3d1311b8243266d87047f601fa88a0da36b9f302e8262395174328f2482d14008de83070744f143fdec90ba5a82668d5fac114c13955ad6dca5db2231d8ba14c54c47ed04a4b4ace17e357e1d6432399f87a7a14245bbd796a09313b247b95d37ff40a404bdad74bd20000000000000000000099fef7cd7af3ce64a92f95d89d125b1e641240d7e5e27a3d1f7684448c3e3822d617e205061298b939a191be4b48e169bde2cae3accc5bd40a2968b59c93d35f8e42366fdef9a2abae1cf01ce68abff28861aac8302d268569dd42e194e330c7aaa54ebbcefd23f21ce8153b9926e12e925cb56119df72c7533a48d028ad0c74e2a9478fa3be18a1a2b65079cc1c00000000000000f59dd19e8d525206c0a728cfd42193abe8130bc01a2d69841f3d7799ac04bdc590bb1c89b9c695f163e57343c9bfb59909433c9001c5f8b23e38534a538fc933cac6c2a92d038df638a0f226df9fb857bd414c2cd69985e8053e3dfa41614d7c74d04d8c2471041d17c730fad28395f8d4688898cd58b9d600c851626529bb58aa364b55e73f053450665e7b94ed1012fd7a8139166fd5e59c84f4ab279b1b99c028db4cb9680c8035f967db18de738844da7e260a830c1ffa49f5af3c15423a0e315acb82a3e89218cb314e68fda4d94aa1d815babc13b9fd336d205c5913ef67cf0216e2d81e6127bd9d7fab28800eaab2355992f8ce4cd38add4b272c0bee4076ca4847ffa691cf78fb7ec212bad3bef29f577ea7159b7f3025b3d977ff7c91024cf71126233cb8791c3c"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r9=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r8, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r9}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_START_AP(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000800)={0x9c, r8, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r9}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x6c, 0xe, {{{}, {}, @broadcast, @device_a, @from_mac, {0x0, 0x9}}, 0x0, @default, 0x1882, @void, @val={0x1, 0x4, [{0x79, 0x1}, {0x17, 0x1}, {0x2}, {0x4}]}, @void, @val={0x4, 0x6, {0x7, 0x4, 0x1, 0x4}}, @void, @val={0x5, 0x26, {0x6, 0xac, 0x26, "4535a7d15d92ed3883177b0403cbc09fa3dbf799bd588a59887355f0766d272c4f077e"}}, @val={0x25, 0x3, {0x0, 0x38, 0x6b}}, @void, @void, @void, @void, @val={0x71, 0x7, {0x1, 0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x25}}, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}, @NL80211_ATTR_HE_BSS_COLOR={0x4}]}, 0x9c}}, 0x0)
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r0, &(0x7f0000000480)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000440)={&(0x7f0000000340)={0x28, 0x0, 0x0, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @void}}, [@NL80211_ATTR_CH_SWITCH_BLOCK_TX={0x4}, @NL80211_ATTR_CH_SWITCH_COUNT={0x8, 0xb7, 0x15}]}, 0x28}, 0x1, 0x0, 0x0, 0x8000}, 0x5)
getsockopt$MRT6(0xffffffffffffffff, 0x29, 0xd0, 0x0, 0x0)

3m54.945173839s ago: executing program 4 (id=509):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1, 0x0, 0x0, 0x4000}, 0x3500000000000000)
openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000240)='/proc/asound/card0/oss_mixer\x00', 0x298f3cc22e12b39a, 0x0)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='task_newtask\x00'}, 0x10)
r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8)
r4 = socket$inet6(0xa, 0x6, 0x0)
shutdown(r4, 0x0)
ioctl$SNDCTL_SYNTH_ID(r3, 0xc08c5114, &(0x7f0000000300)={"06814e20b3923cfc9a38273057df2128e65576c469d46cb051c94ab6fb74", 0x7, 0x2, 0x0, 0x3, 0x2, 0x200, 0x1, 0x6, [0x1, 0x1, 0x1, 0xa, 0xd, 0x7f, 0x4, 0x40d, 0x1, 0x7, 0xfa, 0x40, 0x80000001, 0x2, 0x0, 0xbeb, 0xd7b, 0x6, 0x2]})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
syz_open_dev$usbfs(&(0x7f0000000100), 0x75, 0x101b01)
r5 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_EVENTS(r5, 0x84, 0xb, &(0x7f0000000280), &(0x7f00000002c0)=0xe)

3m39.828341935s ago: executing program 32 (id=509):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1, 0x0, 0x0, 0x4000}, 0x3500000000000000)
openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000240)='/proc/asound/card0/oss_mixer\x00', 0x298f3cc22e12b39a, 0x0)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='task_newtask\x00'}, 0x10)
r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8)
r4 = socket$inet6(0xa, 0x6, 0x0)
shutdown(r4, 0x0)
ioctl$SNDCTL_SYNTH_ID(r3, 0xc08c5114, &(0x7f0000000300)={"06814e20b3923cfc9a38273057df2128e65576c469d46cb051c94ab6fb74", 0x7, 0x2, 0x0, 0x3, 0x2, 0x200, 0x1, 0x6, [0x1, 0x1, 0x1, 0xa, 0xd, 0x7f, 0x4, 0x40d, 0x1, 0x7, 0xfa, 0x40, 0x80000001, 0x2, 0x0, 0xbeb, 0xd7b, 0x6, 0x2]})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
syz_open_dev$usbfs(&(0x7f0000000100), 0x75, 0x101b01)
r5 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_EVENTS(r5, 0x84, 0xb, &(0x7f0000000280), &(0x7f00000002c0)=0xe)

39.761550363s ago: executing program 1 (id=1384):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-camellia-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9c412ba8", 0x6}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c19efd7e0054a863f3d5cfe6cb55b5bb9fa693584de6098ed884e7cb51726b360fbb37b4fe035bbb09587", 0x48}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3", 0x22}], 0x3, &(0x7f00000002c0)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18, 0x44003}], 0x1, 0x40010)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000001c40)=[{&(0x7f0000000bc0)=""/4096, 0x1000}], 0x1}, 0x1)

39.513258598s ago: executing program 1 (id=1390):
semtimedop(0x0, 0x0, 0x0, 0x0)
semop(0x0, &(0x7f00000002c0)=[{0x0, 0x4, 0x800}, {}], 0x2)
semop(0x0, &(0x7f0000001240)=[{}, {0x0, 0x0, 0x2000}], 0x2)
semctl$GETZCNT(0x0, 0x4, 0xf, 0x0)

39.342772264s ago: executing program 1 (id=1395):
syz_emit_ethernet(0x0, 0x0, 0x0)

39.26528733s ago: executing program 1 (id=1397):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r0, 0x0, 0xfffffffffffffffd}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000780), 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000180), 0xa6001, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f00000001c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = socket$inet6_dccp(0xa, 0x6, 0x0)
setsockopt$inet6_buf(r5, 0x29, 0xd2, &(0x7f0000000300)="76cec9287b1b20179f6c6e53f170e39a2d3dccb9fcc7ac9240d17ffbfeff6684a11f8346fff5fbdfdf0b78fbb2c863cbb211591040ea4fa58cd63e083662463c4607f0d78f2116023a8e07f5e1a153e770836e2af19bb298369dbfea40ec97eb16fc081a86684104f6fef680062fa9ccbe65dce350aea5c09c9762", 0x7b)
ioctl$VIDIOC_S_INPUT(0xffffffffffffffff, 0xc0045627, 0x0)
delete_module(&(0x7f0000000380)='\x00', 0x0)
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2d, &(0x7f00000000c0), 0x4)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x560})
syz_emit_ethernet(0x5a, &(0x7f0000000240)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x24, 0x6, 0x0, @local, @local, {[], {{0x0, 0x4001, 0x41424344, 0x41424344, 0x0, 0x0, 0x9, 0x2, 0x100, 0x0, 0x0, {[@sack_perm={0x4, 0x2}, @timestamp={0x8, 0xa, 0x0, 0x8}, @window={0x3, 0x3, 0x8}]}}}}}}}}, 0x0)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000100)='proc\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000002c0)={0x14, r7, 0x301, 0x0, 0x0, {0x1c}}, 0x14}, 0x1, 0x0, 0x0, 0x20040005}, 0x0)
syz_open_procfs(0x0, 0x0)

37.965576405s ago: executing program 1 (id=1402):
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff})
r1 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0xe1002)
writev(0xffffffffffffffff, &(0x7f0000000040)=[{&(0x7f0000000740)="5802009400140091d491321dcea4acd70729723b478925450db4564df63e79dbf050a10004226c1aac9889b37b938ddad014c28895564873a8fd7c5761d326628d8dcbdf6fa8277d7892566c87e85a30bc", 0x51}], 0x1)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000040)=ANY=[@ANYRES64=r0])

37.61847658s ago: executing program 1 (id=1405):
arch_prctl$ARCH_GET_XCOMP_PERM(0x1022, &(0x7f0000000180))
r0 = getpid()
prlimit64(r0, 0xe, &(0x7f0000000140)={0x6a, 0xe8}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
unshare(0x62040200)
capset(&(0x7f0000000300)={0x20071026, r0}, &(0x7f00000000c0)={0x200000, 0x200004, 0x7})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
syz_open_dev$sg(&(0x7f00000003c0), 0xfffffffffffffffd, 0x8101)
writev(r1, &(0x7f0000000400)=[{&(0x7f00000004c0)="ce55e148a1abd2d3b06f7b54955802009400140091d491323b478925458db45602117fffefd7ff81000e226c1add824bf772e31ad096339c6c74a48d52a42b3ecbad9c50ff11025395f49d6b51602f4da57b8c63e2610900000043ea57172fbb32e02ec508bc27331dbdf0d4fc11740bddaff71c8ab69d66cd51ffe03b3168110922b344eb43bbe6bdbd6b51ef8ac42cd5", 0x91}], 0x1)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000580)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
msgctl$IPC_SET(0x0, 0x1, &(0x7f0000001080)={{0x1, 0xee01, 0x0, 0x0, 0x0, 0x148, 0x3}, 0x0, 0x0, 0xffffffffffffff0e, 0x9, 0xffffffff80000000, 0x4, 0x0, 0xffff, 0xfff7, 0x7})

24.199984007s ago: executing program 2 (id=1484):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
mount$9p_fd(0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB])
r1 = getpid()
socket$netlink(0x10, 0x3, 0x8)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = syz_genetlink_get_family_id$ieee802154(0x0, 0xffffffffffffffff)
sendmsg$IEEE802154_LLSEC_LIST_SECLEVEL(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000980)={&(0x7f00000001c0)={0x14, r4, 0x31f, 0xffffffff}, 0x14}, 0x1, 0x0, 0x0, 0x40c0}, 0x0)
r5 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000002800000028000000020000000100000000000001e5ff0000400000000000000001000084080000000000000001"], 0x0, 0x42, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r6 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r6, 0x1, &(0x7f0000000040)='source', &(0x7f0000000080)='//', 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000980)={0x6, 0x4, 0x8, 0x1, 0x80, 0x1, 0x0, '\x00', 0x0, r5, 0x0, 0x2, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

23.196007213s ago: executing program 2 (id=1497):
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xca}, 0x8)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

22.906286946s ago: executing program 2 (id=1500):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
r2 = openat$tcp_congestion(0xffffffffffffff9c, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008f}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
semctl$IPC_SET(0x0, 0x0, 0x13, 0x0)
write$tcp_congestion(r2, &(0x7f0000000100)='reno\x00', 0x5)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x17, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000950000dd00000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sysctl=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0xa0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup\x00', 0x0, 0x0)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000002c0)={@cgroup=r5, r4, 0x12, 0x0, 0x0, @void, @value=0x0}, 0x20)
write$tcp_congestion(r2, &(0x7f0000000300)='reno\x00', 0x5)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000a80)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2c, &(0x7f0000000000)='/proc/sys/net/\x00\x00v4\x00\x00s/\x92ync_\x00le\xf44.\xab%nN\xd4\xa2\x88\x00\xd1l,'}, 0xffffffffffffff2b)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000001fc0)=""/184, 0xb8)
write$tcp_congestion(r2, 0x0, 0x0)
setsockopt$inet_buf(r1, 0x0, 0x10, &(0x7f0000000080)="170000000200020000ffbe8c5ee17688a2002b000303000afdff02a257fc5ad90200bb6a880000d6c9db0000db00000200df01800a0000ebfc0607bdff59100ac45761547a681f009cee4a5acba400001fb700674f00c88ebbf9315033bf79ac2dfc061f15003901dee2ffffffffe9000000000000000062068f5ee50ce5af9b1c568302ffff02ff0331dd3bab0840024f0298e9e90539062a80e605007f71174ab498a30b3e5a1b47b63a6323ded2aa084cd36276a3afff", 0xb8)
r6 = fsopen(&(0x7f00000000c0)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r6, 0x6, 0x0, 0x0, 0x0)
r7 = fsmount(r6, 0x0, 0x0)
r8 = openat$cgroup_subtree(r7, &(0x7f0000000100), 0x2, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r9, 0x8b29, &(0x7f0000000040)={'wlan1\x00'})
write$cgroup_subtree(r8, &(0x7f0000000540)=ANY=[@ANYBLOB="2b6370757365742052f00d3691074fa3fd344c60a550454c2b858bcd5ea8951e3832e09ae3ac0a89abc16747c0d5b6b9f5246e4671df41bde5c8be407aea27605f"], 0x8)
newfstatat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, <r10=>0x0}, 0x2000)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000340)={'ip6gre0\x00', &(0x7f00000002c0)={'syztnl2\x00', <r11=>0x0, 0x29, 0x8, 0x9, 0x10, 0x4, @private1, @rand_addr=' \x01\x00', 0x8088, 0x700, 0x6}})
sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="a80100002100000329bd7000ffdbdf2500000000000000000000000000000001fc0100000000000000000000000000004e2000044e2400010a0080802e000000", @ANYRES32=0x0, @ANYRES32=r10, @ANYBLOB="b86b6e0002000000ac00070000000000000000000000000000000000ac1414bb0000000000000000000000004e2300004e22", @ANYRES32=r11, @ANYRES32=0xee01, @ANYBLOB="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"], 0x1a8}}, 0x20024050)

22.795334839s ago: executing program 0 (id=1502):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="180000001e000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000340)='blkio.bfq.io_wait_time\x00', 0x26e1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f0000000140), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
mkdir(0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4)
ioctl$sock_bt_bnep_BNEPCONNADD(r3, 0x400442c8, 0x0)
syz_usb_connect(0x5, 0x0, 0x0, 0x0)
r4 = socket(0x1d, 0x2, 0x6)
bind$can_j1939(r4, &(0x7f0000000040)={0x1d, 0x0, 0x8000000000000003}, 0x18)
sendmsg$nl_route_sched(r4, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)={0x0}, 0x1, 0x0, 0x0, 0x4c804}, 0x4091)
close(r0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
r5 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r6, 0x84, 0x80, &(0x7f00000002c0)="1a00000002000100", 0x8)
setsockopt(r6, 0x84, 0x81, &(0x7f00000003c0)="1a00000002000100", 0x8)
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(0xffffffffffffffff, 0x0, 0x24)
sendmsg$802154_dgram(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x7}, 0x0)
ioctl$sock_SIOCINQ(r5, 0x541b, &(0x7f0000000340))
socket$inet6_sctp(0xa, 0x801, 0x84)

21.770392177s ago: executing program 33 (id=1405):
arch_prctl$ARCH_GET_XCOMP_PERM(0x1022, &(0x7f0000000180))
r0 = getpid()
prlimit64(r0, 0xe, &(0x7f0000000140)={0x6a, 0xe8}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
unshare(0x62040200)
capset(&(0x7f0000000300)={0x20071026, r0}, &(0x7f00000000c0)={0x200000, 0x200004, 0x7})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
syz_open_dev$sg(&(0x7f00000003c0), 0xfffffffffffffffd, 0x8101)
writev(r1, &(0x7f0000000400)=[{&(0x7f00000004c0)="ce55e148a1abd2d3b06f7b54955802009400140091d491323b478925458db45602117fffefd7ff81000e226c1add824bf772e31ad096339c6c74a48d52a42b3ecbad9c50ff11025395f49d6b51602f4da57b8c63e2610900000043ea57172fbb32e02ec508bc27331dbdf0d4fc11740bddaff71c8ab69d66cd51ffe03b3168110922b344eb43bbe6bdbd6b51ef8ac42cd5", 0x91}], 0x1)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000580)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
msgctl$IPC_SET(0x0, 0x1, &(0x7f0000001080)={{0x1, 0xee01, 0x0, 0x0, 0x0, 0x148, 0x3}, 0x0, 0x0, 0xffffffffffffff0e, 0x9, 0xffffffff80000000, 0x4, 0x0, 0xffff, 0xfff7, 0x7})

21.570535847s ago: executing program 2 (id=1504):
socket$inet6_tcp(0xa, 0x1, 0x0)
pipe2$watch_queue(0x0, 0x80)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)=ANY=[@ANYBLOB="84020000100001042cbd7000fedbdf2500000000", @ANYRES32=0x0, @ANYBLOB="7b130000018000003c0012800b00010062726964676500002c00028008001b00e709000008001b00ff03001005002c0005000000050016000000000008001a"], 0x284}}, 0x20000844)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
read$fb(r1, 0x0, 0x0)
r2 = socket$kcm(0x29, 0x5, 0x0)
sendmmsg(r2, &(0x7f0000005dc0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20000000)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x19, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x5d031, 0xffffffffffffffff, 0x0)
r3 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000100))
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x5})
r4 = syz_usb_connect$hid(0x2, 0x0, 0x0, 0x0)
syz_usb_control_io(r4, &(0x7f0000000340)={0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="000608000002fe62af91a8db178c"], 0x0, 0x0, 0x0, 0x0}, 0x0)
ioctl$UFFDIO_CONTINUE(r3, 0xc020aa08, &(0x7f00000000c0)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})

20.833030758s ago: executing program 0 (id=1507):
syz_open_dev$I2C(&(0x7f0000000000), 0x0, 0x80000)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffefffff6, 0x20031, 0xffffffffffffffff, 0x0)
r3 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000000))
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000140)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x4})
ioctl$UFFDIO_COPY(r3, 0xc028aa03, &(0x7f0000000040)={&(0x7f00006c6000/0x400000)=nil, &(0x7f0000685000/0x4000)=nil, 0x400000, 0x0, 0x18100})
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x6, &(0x7f0000000080)={<r5=>0x0, @in6={{0xa, 0xce21, 0x5, @mcast2, 0x16c2}}}, &(0x7f0000000180)=0x84)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = dup(r7)
setresuid(0x0, 0xffffffffffffffff, 0xee00)
getresuid(&(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140)=<r9=>0x0)
setreuid(0x0, r9)
ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x0, 0x10000, 0x1000, &(0x7f0000ac2000/0x1000)=nil})
r10 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r10, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, 0x0}], 0x1, 0x56, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r7, r10, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r10, 0xae80, 0x0)
setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r4, 0x84, 0x23, &(0x7f00000001c0)={r5, 0xfff}, 0x8)

20.512038219s ago: executing program 3 (id=1509):
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
pselect6(0x40, &(0x7f0000000180)={0x1f}, 0x0, 0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="4400000010000d0400"/19, @ANYRES32=r2, @ANYBLOB="60c000000800000024001280110001006272696467655f736c617665000000000c000580080022"], 0x44}, 0x1, 0x0, 0x0, 0x95}, 0x4)

20.295924636s ago: executing program 3 (id=1510):
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fsopen(&(0x7f0000000280)='ceph\x00', 0x1)
write$dsp(0xffffffffffffffff, &(0x7f0000000000)="81", 0x1)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20080, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = eventfd2(0x0, 0x80000)
ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f0000001340)={0x0, 0x0, 0x2, r5, 0x3})
ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f0000000080)={0x203, 0x0, 0x2, r5, 0x6})

19.335520727s ago: executing program 3 (id=1512):
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/vlan/vlan0\x00')
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r1, 0x8923, &(0x7f0000000040)={'vlan0\x00', 0x40})
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x20010, r0, 0x0)
recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x100, &(0x7f0000002c40))
read$FUSE(r0, 0x0, 0x0)

19.045889643s ago: executing program 2 (id=1513):
getsockopt(0xffffffffffffffff, 0x1000029b, 0xa71f, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000040)={'syztnl1\x00', 0x0})
ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, &(0x7f0000000180)={0x8, <r0=>0xffffffffffffffff, 0x80000})
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x1, @ANYBLOB="ffffffff00"/20, @ANYRES32=0x0, @ANYRES32=r0, @ANYBLOB="0000000003000000a18eeef007fd2f27040000000000000000cac3efb444dff5f61c74f3a632e22e5456eb4a39f19622d3be6e42bbf9a3adc966784949f92f3b61ed6ec4fee762d7c01d9e610368100631776e5fddb7b3e916a81246abb67ab2ba9dc77d57c87d97432e36beb37ab0d40c"], 0x50)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'})
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0xfffffffffffffe1d)
ioctl$sock_netdev_private(r2, 0x8914, &(0x7f0000000000))
r3 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r4 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_rose_SIOCADDRT(r4, 0x890b, &(0x7f0000000380)={@dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x6, @bcast, @bpq0, 0x0, [@bcast, @bcast, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default]})
r5 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_rose_SIOCADDRT(r5, 0x890b, &(0x7f00000007c0)={@dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x6, @bcast, @bpq0, 0x5, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default]})
ioctl$sock_ifreq(r3, 0x8990, &(0x7f0000000180)={'bond0\x00', @ifru_names='rose0\x00'})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x60adc36e3b36269e, 0x8031, 0xffffffffffffffff, 0x0)
socket$netlink(0x10, 0x3, 0x1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r6, &(0x7f00000000c0)=[{{&(0x7f0000000300)=@nfc_llcp, 0xfffffffffffffd62, &(0x7f00000009c0), 0x0, &(0x7f0000000a40)=""/96, 0x60}, 0xb}], 0x1, 0x2, 0x0)
sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0x44008)
ioctl$sock_SIOCETHTOOL(r6, 0x8946, &(0x7f0000000100)={'netdevsim0\x00', &(0x7f0000000040)=@ethtool_ringparam={0x33, 0x7f, 0x20000a2e, 0x0, 0x0, 0x3, 0x2000000, 0x0, 0x3000000}})

18.999955844s ago: executing program 5 (id=1514):
socket$inet6_tcp(0xa, 0x1, 0x0)
pipe2$watch_queue(0x0, 0x80)
syz_io_uring_setup(0x8007c49, 0x0, 0x0, 0x0)
prlimit64(0x0, 0x4, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)=ANY=[@ANYBLOB="84020000100001042cbd7000fedbdf2500000000", @ANYRES32=0x0, @ANYBLOB="7b130000018000003c0012800b00010062726964676500002c00028008001b00e709000008001b00ff03001005002c0005000000050016"], 0x284}}, 0x20000844)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
read$fb(r1, 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000300), 0x0, 0x0)
r2 = socket$kcm(0x29, 0x5, 0x0)
sendmmsg(r2, &(0x7f0000005dc0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20000000)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x19, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x5d031, 0xffffffffffffffff, 0x0)
r5 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r5, 0xc018aa3f, &(0x7f0000000100))
ioctl$UFFDIO_REGISTER(r5, 0xc020aa00, &(0x7f0000000040)={{&(0x7f000092d000/0x1000)=nil, 0x1000}, 0x1})
r6 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000440)=ANY=[@ANYBLOB="1201000000000040f30455070000000000010902240001127c1dc006a2000040b10904c22c1d84db2ee4b4fba7a7f00f210101000122050000000000"], 0x0)
syz_usb_control_io(r6, 0x0, 0x0)
syz_usb_control_io(r6, &(0x7f0000000340)={0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="000608000002fe62af91a8db178c"], 0x0, 0x0, 0x0, 0x0}, 0x0)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x20, &(0x7f0000000200)={@remote, @initdev, <r7=>0x0}, &(0x7f0000000280)=0xc)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000400)={'syztnl0\x00', &(0x7f0000000380)={'ip6_vti0\x00', r7, 0x2f, 0x8, 0x3, 0xe0c4, 0x41, @local, @private0, 0x8, 0x80, 0xfc, 0x40}})
ioctl$UFFDIO_CONTINUE(r5, 0xc020aa08, &(0x7f00000000c0)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})

18.852894508s ago: executing program 3 (id=1515):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$media(&(0x7f00000006c0), 0x4007, 0x0)
ioctl$MEDIA_IOC_REQUEST_ALLOC(r2, 0x80047c05, &(0x7f0000000940)=<r3=>0xffffffffffffffff)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r3, 0x7c81, 0x0)
sendmsg$NL80211_CMD_VENDOR(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x4040000}, 0x40)
r4 = dup(r1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r5 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f00000000c0)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_control_io(r5, &(0x7f0000000340)={0x2c, &(0x7f0000000180)={0x20, 0x9, 0x58, {0x58, 0x5, "c4e6b1c5fd4b8a1b0220b3a0edfd7138885d6b1a2334109654322872e342d793337213f70192ec37ef48f84651413a2d7dacdd5a37f4105517f4d169cfd9a88d8a26b678e4d6d9742b13adf36207d0766b64915af824"}}, &(0x7f00000007c0)=ANY=[@ANYBLOB="2a1c467b460054f61cc7cc5cdcd9c8d9788cf88d714d764e4e89859e01609fb4"], &(0x7f0000000280)={0x0, 0xf, 0x10, {0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0xc, 0x141, 0x1, 0x8, 0x200, 0xc}]}}, &(0x7f00000002c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x3, 0x0, 0x3, 0x2e, "b19621b7", "30db9333"}}, &(0x7f0000000300)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x0, 0x10, 0xb, 0x2, 0x5, 0xaa9, 0xff31}}}, &(0x7f0000000880)={0x84, &(0x7f0000000380)={0x40, 0x11, 0x2d, "b09b44a6dc3a0016de172fb78d87bf655863c6b4cb65e032818b046e5da4274c8f6544520a4fa9f9f10a0c0550"}, &(0x7f00000003c0)={0x0, 0xa, 0x1, 0x12}, &(0x7f0000000400)={0x0, 0x8, 0x1, 0xa1}, &(0x7f0000000440)={0x20, 0x0, 0x4}, &(0x7f0000000480)={0x20, 0x0, 0x4, {0x910, 0x10}}, &(0x7f00000004c0)={0x40, 0x7, 0x2, 0x3}, &(0x7f0000000500)={0x40, 0x9, 0x1, 0x64}, &(0x7f0000000540)={0x40, 0xb, 0x2, "211f"}, &(0x7f00000005c0)={0x40, 0xf, 0x2, 0x81}, &(0x7f0000000600)={0x40, 0x13, 0x6, @local}, &(0x7f0000000640)={0x40, 0x17, 0x6, @multicast}, &(0x7f0000000680)={0x40, 0x19, 0x2, "864f"}, &(0x7f00000006c0)={0x40, 0x1a, 0x2}, &(0x7f0000000700)={0x40, 0x1c, 0x1, 0xfa}, &(0x7f0000000740)={0x40, 0x1e, 0x1, 0x8}, &(0x7f0000000780)={0x40, 0x21, 0x1, 0x3}})
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_open_procfs$pagemap(0x0, &(0x7f0000000200))
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r8 = socket(0x400000000010, 0x3, 0x0)
r9 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r10, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001300)=@newtfilter={0x48, 0x2c, 0xd27, 0x70bd27, 0x8000, {0x0, 0x0, 0x0, r10, {0x8, 0x7}, {}, {0xa, 0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0x14, 0x2, [@TCA_MATCHALL_CLASSID={0x8, 0x1, {0x5, 0xffff}}, @TCA_MATCHALL_FLAGS={0x8, 0x3, 0x2}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x22044028}, 0x0)
r11 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000580)={0x1, &(0x7f0000000140)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r11, 0xffffffffffffffff, 0xff0f000000000000)
syz_kvm_setup_cpu$x86(r1, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

18.084153896s ago: executing program 5 (id=1516):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x48b, 0x0, 0x0)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x48c, &(0x7f00000002c0)={0x2, 'veth1_virt_wifi\x00', 0x600}, 0x18)

17.99939876s ago: executing program 3 (id=1517):
r0 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f00000008c0), 0x2, 0x0)
readv(r0, &(0x7f00000004c0)=[{&(0x7f0000000180)=""/195, 0xc3}], 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x18)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000002000)=""/102400, 0x19000)
syz_open_dev$dmmidi(0x0, 0x2, 0x8901)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, &(0x7f0000000000)={0x4, 0x1, 0x4}, 0xc)
setsockopt$MRT6_FLUSH(0xffffffffffffffff, 0x29, 0xd4, &(0x7f0000000080)=0xa, 0x4)
getsockopt$IP_VS_SO_GET_VERSION(r3, 0x0, 0x480, &(0x7f00000000c0), &(0x7f0000000180)=0x40)
r4 = socket(0x400000000010, 0x3, 0x0)
unshare(0x54000040)
ioctl$sock_SIOCETHTOOL(r4, 0x89f0, &(0x7f0000001440)={'veth0\x00', &(0x7f0000000100)=@ethtool_wolinfo={0x6, 0x7, 0x1, "1f3add3b6c2e"}})
sendmsg$IEEE802154_LLSEC_SETPARAMS(r1, 0x0, 0x4000000)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$SEG6(&(0x7f00000000c0), 0xffffffffffffffff)
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000100)='proc\x00', 0x0, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000000000)={0x2020}, 0xfffffc7a)
sendmsg$SEG6_CMD_GET_TUNSRC(r5, &(0x7f0000000380)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000340)={&(0x7f0000002040)=ANY=[@ANYBLOB="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", @ANYRES16=r6, @ANYBLOB], 0x3c}, 0x1, 0x0, 0x0, 0x810}, 0x4040810)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)

17.933534627s ago: executing program 3 (id=1518):
socket(0x11, 0x80001, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0)
rename(&(0x7f0000000580)='./file0\x00', &(0x7f0000000780)='./file2\x00')
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00')
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, 0x0, 0x4000000)
r4 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x28af, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = syz_open_dev$vim2m(0x0, 0x200000001003, 0x2)
ioctl$vim2m_VIDIOC_STREAMON(r6, 0x40045612, 0x0)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000000)={'veth0_vlan\x00', @remote})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000000000)={'veth0_vlan\x00', @random="0106002010ff"})
process_madvise(0xffffffffffffffff, &(0x7f0000000340)=[{0xffffffffffffffff}, {0x0}], 0x2, 0x0, 0x0)

17.911607599s ago: executing program 2 (id=1519):
socket(0x11, 0x80001, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0)
rename(&(0x7f0000000580)='./file0\x00', &(0x7f0000000780)='./file2\x00')
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00')
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, 0x0, 0x4000000)
r4 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x28af, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = syz_open_dev$vim2m(0x0, 0x200000001003, 0x2)
ioctl$vim2m_VIDIOC_STREAMON(r6, 0x40045612, 0x0)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000000)={'veth0_vlan\x00', @remote})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000000000)={'veth0_vlan\x00', @random="0106002010ff"})
process_madvise(0xffffffffffffffff, &(0x7f0000000340)=[{0xffffffffffffffff}, {0x0}], 0x2, 0x0, 0x0)

17.909519292s ago: executing program 5 (id=1520):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
recvmmsg(r0, &(0x7f0000008140)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000940)=""/143, 0x8f}, 0x401}], 0x1, 0x0, 0x0)
setsockopt$inet_int(r0, 0x0, 0x7, &(0x7f0000000140)=0x30, 0x4)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0x36, &(0x7f00000002c0)={@broadcast, @link_local, @void, {@ipv4={0x800, @udp={{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty, {[@timestamp={0x44, 0x4, 0xc6}]}}, {0x0, 0x4e20, 0x10, 0x0, @gue={{0x2}}}}}}}, 0x0)

16.458615914s ago: executing program 5 (id=1521):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x4008032, 0xffffffffffffffff, 0x2000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={0xffffffffffffffff, 0xf3, &(0x7f0000000bc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000001680)=[0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)

16.11043143s ago: executing program 5 (id=1522):
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280))
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000ac0)=ANY=[@ANYBLOB="b700000001000000bfa30000000000000703000000feffff720af0fff8ffffff71a4f0ff000000003f040000000000002d400300000000006504000001ed00007b130000005000006c440000000000007b0a00fe000000007b13000000000000b5000000000000009500000000000000023bc865b7a379d17cf9333379fc9e94af69912435f1a864a710aad58db6a621a464a3778433e6e393002e7f3be361957adef6ee1c8a2a4f8ef1e50bec919bc461e91a7168c5181554a090f32050e436fe275daf51efd601b6bf01c8e8b1b526375ec5dd6fcd82e4fee5bef7af9aa0d7d600c095090000100000000031eaebbdbd732c9cc00eec363e4a8f645679c294392cf538b07ce2646cb7798b3e6440c2fbdb00a3e35208b0bb0d2cd829e654400e2438ec649dc74a28610643a98d9ec21ead2ed51b104d4d91af25b845d8a7925c3109b151b8b9f75d80000000eda88c658d42ecbf28bf7005005b463bebc72f526d8e8afcb913466aaa7f6df70252e79166d858fc152b7b9da074e1320060d0b11008e59a5923906f88b53987ad1714e72ba7a5b74f0c33290933896a59ff61622cfd9aa58fe8d485f062ae2c0cc65c2a36aaec2477584b6a89adaf17b0a6041bdef728d236619074d6ebdf098bc908f523d228a40f9411fe7226a40409d6e37c4f46756d31cb467600ade70063e5291569b33d21dae356e1c51f03fb8a63e089679216da18ec0ae564162a27afea62d84f3a10746443d64364f56e24e6d2105bd901204a1deeed415561c459565b1cd17572652d950ad31928b0b0c3dc2869f478341d02d0f5ad94b081fcd507acb4b9c65fee9d5a17f48a7382f98928d5e9b94ff9ae49cee383dc5049076b98fb6853ab39a21514da60d2ae20cfb91d6a49964757cff538f9ce2bdb1ab062cd54e67011d355d84ce97bb0c6b4a595e487efbb2d710b651f898ba749e40bc6980fe78683ac5c0c31030699ddd71063be9261b2e1aab1675b34a220488c126aeef5f510a8f1aded94a129e4aec6f8c3a13596c2ea3e2e04cfe0e669e51731b2875353193f82ade69d0540059fe6c7fe7c00007502c7596566d674e425da5e87e59602a9f6590521d31d381eb3e0a1053abdc31282dfb15eb6841bb64a1b304502dda787343ce3c95300000000010000003baae244e7bf37548c7f1a4cad2422ee965a38f7defbd2e454da0c052427d14c37960242b104e20dc2d9b0c3567aea26454a47b0f0797a7308d402ccdd9069bd50b994fda7a9de54022a579dfc0229cc0dc98816106dec28eaeb883418f562ae00003ea96d10f172c0374d6eed82641687f3b3a70bfe9b4a9c5a90ff59d54d1f92ecc4e95dd2d18383117c03987d198899b212c53c18294270a1ad10c80fef7c24b78b4ad83238273f4fc87afce829ba0f85da6d888f18ea40ab959f6074ab2a4009b9e5f07ab513cdc6c0e57fb1c1ca57138000b4ead35a385e0b4a26b702396df7e0cbe02b6e4114f244a9bf93f04beb72f0861f7580e69db384ac7eeedcf2ba1a9508f9d6aba582a896a9f1ffa968eacea75caf822a7a63ba34015ea5aacb1188883ad2a3b1832371fe5bc621426d1ed0a4a9b702cc1b6912a1e717d29135753208165b9cdbae037f27feeb744ddcc536cbae315c7d951680f6f2f9a6a8346962a350845ffa0d829e4f79adc287906943408e6df3adbfd03aac93df8866fb010aec0e92bed1fe39af169d2a466f0db6f3d9436a7d55fc30511d00000000c95265b2bd83d64a532869d701723fedcbada1ee7baa5b6a686b50f0937f778af083e055f6138a757ebd0ed91114a6b244f9acf41ac5d73a008364e0602a594817031fc2f52c8785fe0721719b3d654026c6ea08b83b123145ab5703dad844cea001ddeb6dc5f6a9037d2283c42efc54fa84323a3c3e6e4fd2e078b796a825b3dad9ce7b37507e0b83c3ecd01549bca6a016b3e18a00c748894dc3bfe5efda8b0a477d6a6562fdee45eb16e276dee992094ba9830f6c164179e7d532d86060bea930118d3cae1bb5916b9671b7000000000040f4bee5ad2dea2d070095265504c05bba38b095e1679f96ddef65ba5de9c8cfb6465ae4165c0689a314a6eb6b36aa705b957edef3035e14b879c8e7dc00624726042e00bf9a7f7ae5f308744770759558e4fcb99c0dc957521ef255362bf2f3966f3754e81fb9bdef22c19f5a49147b25393f7536bcda9f64b7c5640bf89d4a74d51dc233dee628c1dfbb55669f84784174b34eb234481547e484c6af101396b6977dd668b401391c1d2e242edccf1cabe6be9868d383ebf1db5aee9b73e92bb82c164ab14bb25189817742e054886ed6d7abbacf6319f3c050e7d53df64633eafcb64291b81188fab69b5a06fe029ce46c5cac1bb1ea8ea98aee207fa4c9618a9ce80bd8b530f4b9ba8860bf1e887ec670312ef0502e3d0a0e30dbaf38c042b7fd207c61e6b73d3b61d194acb4bf4d3e0187d62ee27cbee175eb2312209f68747eeeea30c1634d54799f42753df8e7462c6f5331ea8e56b5c4a373dfe9f111d0206f4e90f71c03bc24960dd84345e59e1289d47a929158babfb331f27370928198d2cd367e928e98c54c67b6382cb958fec947d2ece3695755bc71d55a84bb0a0da43cb9f526a20566e9d00cf9fe6be3adf3e0a05771d66664239d199ce84aa7f684c0ce4c342a85d654624736a3b9b067e2bd298ae8a2527ce59fba9448b13655281431335496da08ac626fe0b57ebb4ad0b9495a183587108b4308bc68eeca9062873703ed0ee726a7867436e01dcd6edf1583e7e17043afda8f46fdd688d461125d724404a310"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000080), 0xfffffffffffffdbb, 0x0, 0xffffffffffffffff, 0xffb9, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

16.110008068s ago: executing program 5 (id=1523):
socket$inet6_tcp(0xa, 0x1, 0x0)
pipe2$watch_queue(0x0, 0x80)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)=ANY=[@ANYBLOB="84020000100001042cbd7000fedbdf2500000000", @ANYRES32=0x0, @ANYBLOB="7b130000018000003c0012800b00010062726964676500002c00028008001b00e709000008001b00ff03001005002c0005000000050016000000000008001a"], 0x284}}, 0x20000844)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
read$fb(r1, 0x0, 0x0)
r2 = socket$kcm(0x29, 0x5, 0x0)
sendmmsg(r2, &(0x7f0000005dc0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20000000)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x19, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x5d031, 0xffffffffffffffff, 0x0)
r3 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000100))
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x5})
r4 = syz_usb_connect$hid(0x2, 0x0, 0x0, 0x0)
syz_usb_control_io(r4, &(0x7f0000000340)={0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="000608000002fe62af91a8db178c"], 0x0, 0x0, 0x0, 0x0}, 0x0)
ioctl$UFFDIO_CONTINUE(r3, 0xc020aa08, &(0x7f00000000c0)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})

16.075489922s ago: executing program 0 (id=1524):
syz_emit_ethernet(0x66, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa88a800008100000086dd6076cd8a0028000020010000000000000000000000000000fe80000000000003000000000000071800000000040000d6040000"], 0x0)

16.051158038s ago: executing program 0 (id=1525):
openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/asound/seq/clients\x00', 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f00006f1000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4276ef66ba420266b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x0, 0x0, 0x0)
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_misc(r1, &(0x7f0000000040), 0xe09)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x4, 0x0, 0x0, 0x0, 0x7, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac000000000000000000000e54635dd99f830f", "f4bd0000008019001200", [0x500000001, 0x2000000000001]}})

15.946535204s ago: executing program 0 (id=1526):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r4)
socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
bind$inet6(r4, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
r5 = inotify_init1(0x0)
inotify_add_watch(r5, 0x0, 0x20000000)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
fsopen(&(0x7f00000001c0)='cgroup\x00', 0x0)
socket(0x2, 0x3, 0xff)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x2, 0x0)
getdents64(0xffffffffffffffff, &(0x7f00000041c0)=""/4111, 0x100f)

15.070611628s ago: executing program 0 (id=1527):
r0 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f00000008c0), 0x2, 0x0)
readv(r0, &(0x7f00000004c0)=[{&(0x7f0000000180)=""/195, 0xc3}], 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x18)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000002000)=""/102400, 0x19000)
syz_open_dev$dmmidi(0x0, 0x2, 0x8901)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, &(0x7f0000000000)={0x4, 0x1, 0x4}, 0xc)
setsockopt$MRT6_FLUSH(0xffffffffffffffff, 0x29, 0xd4, &(0x7f0000000080)=0xa, 0x4)
getsockopt$IP_VS_SO_GET_VERSION(r3, 0x0, 0x480, &(0x7f00000000c0), &(0x7f0000000180)=0x40)
r4 = socket(0x400000000010, 0x3, 0x0)
unshare(0x54000040)
ioctl$sock_SIOCETHTOOL(r4, 0x89f0, &(0x7f0000001440)={'veth0\x00', &(0x7f0000000100)=@ethtool_wolinfo={0x6, 0x7, 0x1, "1f3add3b6c2e"}})
sendmsg$IEEE802154_LLSEC_SETPARAMS(r1, 0x0, 0x4000000)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$SEG6(&(0x7f00000000c0), 0xffffffffffffffff)
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000100)='proc\x00', 0x0, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000000000)={0x2020}, 0xfffffc7a)
sendmsg$SEG6_CMD_GET_TUNSRC(r5, &(0x7f0000000380)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000340)={&(0x7f0000002040)=ANY=[@ANYBLOB="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", @ANYRES16=r6, @ANYBLOB], 0x3c}, 0x1, 0x0, 0x0, 0x810}, 0x4040810)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)

1.999509323s ago: executing program 34 (id=1519):
socket(0x11, 0x80001, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0)
rename(&(0x7f0000000580)='./file0\x00', &(0x7f0000000780)='./file2\x00')
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00')
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, 0x0, 0x4000000)
r4 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x28af, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = syz_open_dev$vim2m(0x0, 0x200000001003, 0x2)
ioctl$vim2m_VIDIOC_STREAMON(r6, 0x40045612, 0x0)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000000)={'veth0_vlan\x00', @remote})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000000000)={'veth0_vlan\x00', @random="0106002010ff"})
process_madvise(0xffffffffffffffff, &(0x7f0000000340)=[{0xffffffffffffffff}, {0x0}], 0x2, 0x0, 0x0)

1.969183418s ago: executing program 35 (id=1518):
socket(0x11, 0x80001, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0)
rename(&(0x7f0000000580)='./file0\x00', &(0x7f0000000780)='./file2\x00')
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00')
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, 0x0, 0x4000000)
r4 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x28af, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = syz_open_dev$vim2m(0x0, 0x200000001003, 0x2)
ioctl$vim2m_VIDIOC_STREAMON(r6, 0x40045612, 0x0)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000000)={'veth0_vlan\x00', @remote})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000000000)={'veth0_vlan\x00', @random="0106002010ff"})
process_madvise(0xffffffffffffffff, &(0x7f0000000340)=[{0xffffffffffffffff}, {0x0}], 0x2, 0x0, 0x0)

1.005249138s ago: executing program 36 (id=1523):
socket$inet6_tcp(0xa, 0x1, 0x0)
pipe2$watch_queue(0x0, 0x80)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)=ANY=[@ANYBLOB="84020000100001042cbd7000fedbdf2500000000", @ANYRES32=0x0, @ANYBLOB="7b130000018000003c0012800b00010062726964676500002c00028008001b00e709000008001b00ff03001005002c0005000000050016000000000008001a"], 0x284}}, 0x20000844)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
read$fb(r1, 0x0, 0x0)
r2 = socket$kcm(0x29, 0x5, 0x0)
sendmmsg(r2, &(0x7f0000005dc0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20000000)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x19, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x5d031, 0xffffffffffffffff, 0x0)
r3 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000100))
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x5})
r4 = syz_usb_connect$hid(0x2, 0x0, 0x0, 0x0)
syz_usb_control_io(r4, &(0x7f0000000340)={0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="000608000002fe62af91a8db178c"], 0x0, 0x0, 0x0, 0x0}, 0x0)
ioctl$UFFDIO_CONTINUE(r3, 0xc020aa08, &(0x7f00000000c0)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})

0s ago: executing program 37 (id=1527):
r0 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f00000008c0), 0x2, 0x0)
readv(r0, &(0x7f00000004c0)=[{&(0x7f0000000180)=""/195, 0xc3}], 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x18)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000002000)=""/102400, 0x19000)
syz_open_dev$dmmidi(0x0, 0x2, 0x8901)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, &(0x7f0000000000)={0x4, 0x1, 0x4}, 0xc)
setsockopt$MRT6_FLUSH(0xffffffffffffffff, 0x29, 0xd4, &(0x7f0000000080)=0xa, 0x4)
getsockopt$IP_VS_SO_GET_VERSION(r3, 0x0, 0x480, &(0x7f00000000c0), &(0x7f0000000180)=0x40)
r4 = socket(0x400000000010, 0x3, 0x0)
unshare(0x54000040)
ioctl$sock_SIOCETHTOOL(r4, 0x89f0, &(0x7f0000001440)={'veth0\x00', &(0x7f0000000100)=@ethtool_wolinfo={0x6, 0x7, 0x1, "1f3add3b6c2e"}})
sendmsg$IEEE802154_LLSEC_SETPARAMS(r1, 0x0, 0x4000000)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$SEG6(&(0x7f00000000c0), 0xffffffffffffffff)
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000100)='proc\x00', 0x0, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000000000)={0x2020}, 0xfffffc7a)
sendmsg$SEG6_CMD_GET_TUNSRC(r5, &(0x7f0000000380)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000340)={&(0x7f0000002040)=ANY=[@ANYBLOB="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", @ANYRES16=r6, @ANYBLOB], 0x3c}, 0x1, 0x0, 0x0, 0x810}, 0x4040810)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)

kernel console output (not intermixed with test programs):

z-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f6f5938e169 code=0x7ffc0000
[  273.962345][   T30] audit: type=1326 audit(1745278855.313:446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9394 comm="syz.0.745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f5938e169 code=0x7ffc0000
[  274.002736][   T30] audit: type=1326 audit(1745278855.313:447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9394 comm="syz.0.745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=268 compat=0 ip=0x7f6f5938e169 code=0x7ffc0000
[  274.029082][ T9412] netlink: 16178 bytes leftover after parsing attributes in process `syz.1.750'.
[  274.042542][   T30] audit: type=1326 audit(1745278855.313:448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9394 comm="syz.0.745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f5938e169 code=0x7ffc0000
[  274.082251][   T30] audit: type=1326 audit(1745278855.313:449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9394 comm="syz.0.745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f5938e169 code=0x7ffc0000
[  274.133381][   T30] audit: type=1326 audit(1745278855.343:450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9394 comm="syz.0.745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f6f5938e169 code=0x7ffc0000
[  274.234681][ T9423] program syz.2.749 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  274.247398][ T9423] netlink: 12 bytes leftover after parsing attributes in process `syz.2.749'.
[  274.272333][ T9423] netlink: 36 bytes leftover after parsing attributes in process `syz.2.749'.
[  274.291775][   T30] audit: type=1326 audit(1745278855.343:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9394 comm="syz.0.745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f5938e169 code=0x7ffc0000
[  274.317265][   T30] audit: type=1326 audit(1745278855.343:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9394 comm="syz.0.745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f5938e169 code=0x7ffc0000
[  274.385879][   T30] audit: type=1326 audit(1745278855.343:453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9394 comm="syz.0.745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f6f5938e169 code=0x7ffc0000
[  274.419729][   T30] audit: type=1326 audit(1745278855.343:454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9394 comm="syz.0.745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f5938e169 code=0x7ffc0000
[  274.585941][ T9426] syz.1.753: attempt to access beyond end of device
[  274.585941][ T9426] nbd1: rw=0, sector=0, nr_sectors = 1 limit=0
[  274.658807][ T9427] input: syz1 as /devices/virtual/input/input7
[  274.753746][ T9429] netlink: 612 bytes leftover after parsing attributes in process `syz.5.754'.
[  274.878882][ T9410] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  276.768712][ T9447] sysfs: cannot create duplicate filename '/class/ieee80211/!寿$ûÌÌULÙvy¸ÚØ¢
…D£p(@Ož>ÆÀ–PÛç¡RaGùͽ�ÒÜÓ“p'
[  276.891944][ T9447] CPU: 0 UID: 0 PID: 9447 Comm: syz.0.760 Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0 PREEMPT(full) 
[  276.891964][ T9447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  276.891971][ T9447] Call Trace:
[  276.891975][ T9447]  <TASK>
[  276.891980][ T9447]  dump_stack_lvl+0x16c/0x1f0
[  276.891999][ T9447]  sysfs_warn_dup+0x7f/0xa0
[  276.892013][ T9447]  sysfs_do_create_link_sd+0x124/0x140
[  276.892026][ T9447]  sysfs_create_link+0x61/0xc0
[  276.892038][ T9447]  device_add+0x62c/0x1a70
[  276.892052][ T9447]  ? __pfx_device_add+0x10/0x10
[  276.892061][ T9447]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  276.892075][ T9447]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  276.892095][ T9447]  wiphy_register+0x1c9c/0x2850
[  276.892107][ T9447]  ? netdev_run_todo+0x864/0x1320
[  276.892122][ T9447]  ? __dev_printk+0x270/0x270
[  276.892148][ T9447]  ? __pfx_wiphy_register+0x10/0x10
[  276.892175][ T9447]  ieee80211_register_hw+0x2432/0x4020
[  276.892205][ T9447]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  276.892223][ T9447]  ? find_held_lock+0x2b/0x80
[  276.892238][ T9447]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  276.892249][ T9447]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  276.892265][ T9447]  ? __hrtimer_setup+0x176/0x280
[  276.892278][ T9447]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  276.892299][ T9447]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  276.892312][ T9447]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  276.892326][ T9447]  ? __asan_memcpy+0x3c/0x60
[  276.892345][ T9447]  hwsim_new_radio_nl+0xb51/0x12c0
[  276.892358][ T9447]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  276.892375][ T9447]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  276.892393][ T9447]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  276.892413][ T9447]  genl_family_rcv_msg_doit+0x206/0x2f0
[  276.892431][ T9447]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  276.892453][ T9447]  ? bpf_lsm_capable+0x9/0x10
[  276.892462][ T9447]  ? security_capable+0x7e/0x260
[  276.892476][ T9447]  ? ns_capable+0xd7/0x110
[  276.892491][ T9447]  genl_rcv_msg+0x55c/0x800
[  276.892509][ T9447]  ? __pfx_genl_rcv_msg+0x10/0x10
[  276.892525][ T9447]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  276.892538][ T9447]  ? __lock_acquire+0xaa4/0x1ba0
[  276.892550][ T9447]  netlink_rcv_skb+0x16a/0x440
[  276.892565][ T9447]  ? __pfx_genl_rcv_msg+0x10/0x10
[  276.892588][ T9447]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  276.892610][ T9447]  ? __pfx_down_read+0x10/0x10
[  276.892630][ T9447]  ? netlink_deliver_tap+0x1ae/0xd30
[  276.892647][ T9447]  genl_rcv+0x28/0x40
[  276.892662][ T9447]  netlink_unicast+0x53a/0x7f0
[  276.892680][ T9447]  ? __pfx_netlink_unicast+0x10/0x10
[  276.892699][ T9447]  netlink_sendmsg+0x8d1/0xdd0
[  276.892716][ T9447]  ? __pfx_netlink_sendmsg+0x10/0x10
[  276.892736][ T9447]  ____sys_sendmsg+0xa95/0xc70
[  276.892753][ T9447]  ? copy_msghdr_from_user+0x10a/0x160
[  276.892765][ T9447]  ? __pfx_____sys_sendmsg+0x10/0x10
[  276.892787][ T9447]  ___sys_sendmsg+0x134/0x1d0
[  276.892801][ T9447]  ? __pfx____sys_sendmsg+0x10/0x10
[  276.892832][ T9447]  __sys_sendmsg+0x16d/0x220
[  276.892846][ T9447]  ? __pfx___sys_sendmsg+0x10/0x10
[  276.892858][ T9447]  ? __x64_sys_futex+0x1e0/0x4c0
[  276.892877][ T9447]  ? rcu_is_watching+0x12/0xc0
[  276.892895][ T9447]  do_syscall_64+0xcd/0x260
[  276.892911][ T9447]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  276.892922][ T9447] RIP: 0033:0x7f6f5938e169
[  276.892932][ T9447] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  276.892942][ T9447] RSP: 002b:00007f6f5a22c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  276.892952][ T9447] RAX: ffffffffffffffda RBX: 00007f6f595b5fa0 RCX: 00007f6f5938e169
[  276.892959][ T9447] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 000000000000000f
[  276.892965][ T9447] RBP: 00007f6f59410a68 R08: 0000000000000000 R09: 0000000000000000
[  276.892971][ T9447] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  276.892977][ T9447] R13: 0000000000000000 R14: 00007f6f595b5fa0 R15: 00007ffddc0c3278
[  276.892991][ T9447]  </TASK>
[  278.946607][ T9468] netlink: 552 bytes leftover after parsing attributes in process `syz.3.766'.
[  278.955698][ T9468] netlink: 8 bytes leftover after parsing attributes in process `syz.3.766'.
[  279.184776][ T9475] netlink: 8 bytes leftover after parsing attributes in process `syz.1.767'.
[  279.590185][ T9484] lo speed is unknown, defaulting to 1000
[  279.597665][ T9484] lo speed is unknown, defaulting to 1000
[  279.601591][ T9484] lo speed is unknown, defaulting to 1000
[  280.033809][ T9484] infiniband syz0: set active
[  280.033837][ T9484] infiniband syz0: added lo
[  280.156410][ T9484] RDS/IB: syz0: added
[  280.156450][ T9484] smc: adding ib device syz0 with port count 1
[  280.156461][ T9484] smc:    ib device syz0 port 1 has pnetid 
[  280.156886][ T9484] lo speed is unknown, defaulting to 1000
[  280.242242][ T5870] lo speed is unknown, defaulting to 1000
[  280.242695][ T5870] lo speed is unknown, defaulting to 1000
[  280.332621][ T9484] lo speed is unknown, defaulting to 1000
[  280.496787][ T9484] lo speed is unknown, defaulting to 1000
[  281.006915][ T9484] lo speed is unknown, defaulting to 1000
[  281.084823][ T9484] lo speed is unknown, defaulting to 1000
[  282.877022][   T30] kauditd_printk_skb: 6 callbacks suppressed
[  282.877038][   T30] audit: type=1400 audit(1745278864.733:461): avc:  denied  { write } for  pid=9505 comm="syz.0.774" name="autofs" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  283.033183][ T9512] netlink: 'syz.1.777': attribute type 1 has an invalid length.
[  283.033202][ T9512] netlink: 224 bytes leftover after parsing attributes in process `syz.1.777'.
[  283.037837][   T30] audit: type=1400 audit(1745278864.883:462): avc:  denied  { create } for  pid=9509 comm="syz.1.777" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  283.037886][   T30] audit: type=1400 audit(1745278864.893:463): avc:  denied  { write } for  pid=9509 comm="syz.1.777" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  283.037920][   T30] audit: type=1400 audit(1745278864.893:464): avc:  denied  { nlmsg_read } for  pid=9509 comm="syz.1.777" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  283.155333][    C1] vkms_vblank_simulate: vblank timer overrun
[  283.201136][    C1] vkms_vblank_simulate: vblank timer overrun
[  283.463118][ T9528] overlayfs: failed to clone upperpath
[  284.023179][ T9533] netlink: 552 bytes leftover after parsing attributes in process `syz.1.783'.
[  284.023216][ T9533] netlink: 8 bytes leftover after parsing attributes in process `syz.1.783'.
[  284.542226][ T5933] usb 2-1: new full-speed USB device number 32 using dummy_hcd
[  284.941888][ T5933] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  284.982683][ T5933] usb 2-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  285.016695][ T5933] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  285.186960][ T5933] usb 2-1: config 0 descriptor??
[  285.201087][ T9533] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  285.322960][ T9551] ptrace attach of "./syz-executor exec"[5834] was attempted by "./syz-executor exec"[9551]
[  285.951609][ T9561] netlink: 16 bytes leftover after parsing attributes in process `syz.2.790'.
[  286.314637][ T5933] usbhid 2-1:0.0: can't add hid device: -71
[  286.342433][ T5933] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  286.348877][   T30] audit: type=1400 audit(1745278868.203:465): avc:  denied  { allowed } for  pid=9568 comm="syz.3.792" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  286.364350][ T5933] usb 2-1: USB disconnect, device number 32
[  289.562826][ T9608] ptrace attach of "./syz-executor exec"[8346] was attempted by "./syz-executor exec"[9608]
[  289.619176][   T30] audit: type=1400 audit(1745278871.473:466): avc:  denied  { map } for  pid=9607 comm="syz.1.802" path="/dev/cuse" dev="devtmpfs" ino=100 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tty_device_t tclass=chr_file permissive=1
[  289.739499][   T30] audit: type=1400 audit(1745278871.473:467): avc:  denied  { execute } for  pid=9607 comm="syz.1.802" path="/dev/cuse" dev="devtmpfs" ino=100 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tty_device_t tclass=chr_file permissive=1
[  290.208338][ T9629] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  291.342210][ T5899] usb 1-1: new full-speed USB device number 27 using dummy_hcd
[  291.497461][ T5899] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  291.520270][ T5899] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  291.543385][ T5899] usb 1-1: New USB device found, idVendor=146b, idProduct=0902, bcdDevice= 0.00
[  291.570334][ T5899] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  291.668779][ T5899] usb 1-1: config 0 descriptor??
[  292.425256][ T5899] bigben 0003:146B:0902.000A: unexpected rdesc, please submit for review
[  292.449944][ T5899] bigben 0003:146B:0902.000A: hidraw0: USB HID v0.01 Device [HID 146b:0902] on usb-dummy_hcd.0-1/input0
[  292.481132][ T5899] bigben 0003:146B:0902.000A: missing HID_OUTPUT_REPORT 0
[  292.507719][ T5899] bigben 0003:146B:0902.000A: no output report found
[  292.929467][ T9657] ptrace attach of "./syz-executor exec"[5829] was attempted by "./syz-executor exec"[9657]
[  292.972821][ T5899] usb 1-1: USB disconnect, device number 27
[  293.300435][ T9665] netlink: 64 bytes leftover after parsing attributes in process `syz.5.818'.
[  293.312976][ T9665] netlink: 16 bytes leftover after parsing attributes in process `syz.5.818'.
[  293.321877][ T9665] openvswitch: netlink: Missing key (keys=40, expected=80)
[  293.333974][ T5933] usb 3-1: new high-speed USB device number 26 using dummy_hcd
[  293.619675][ T9671] veth0_vlan: left promiscuous mode
[  293.629694][ T9671] veth0_vlan: entered promiscuous mode
[  293.958678][ T5933] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  293.969027][ T5933] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  293.979085][ T5933] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  293.988985][ T5933] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  293.997169][ T5933] usb 3-1: SerialNumber: syz
[  294.085009][ T9673] 9pnet_fd: Insufficient options for proto=fd
[  294.225725][ T5933] usb 3-1: 0:2 : does not exist
[  294.230736][ T5933] usb 3-1: unit 5: unexpected type 0x0b
[  294.279665][ T5933] usb 3-1: USB disconnect, device number 26
[  294.923548][   T10] usb 1-1: new high-speed USB device number 28 using dummy_hcd
[  295.015186][ T5811] udevd[5811]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  295.114798][   T10] usb 1-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config
[  295.138854][   T10] usb 1-1: New USB device found, idVendor=7a69, idProduct=0001, bcdDevice=a8.6b
[  295.182368][   T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  295.200581][   T10] usb 1-1: Product: syz
[  295.209374][   T10] usb 1-1: Manufacturer: syz
[  295.217925][   T10] usb 1-1: SerialNumber: syz
[  295.325108][ T9705] fuse: Bad value for 'fd'
[  295.345862][   T10] usb 1-1: dvb_usb_v2: found a '774 Friio White ISDB-T USB2.0' in warm state
[  295.370932][ T9707] loop8: detected capacity change from 0 to 1
[  295.388487][ T5979] Dev loop8: unable to read RDB block 1
[  295.396465][ T5979]  loop8: unable to read partition table
[  295.408943][ T5979] loop8: partition table beyond EOD, truncated
[  295.416825][ T9707] Dev loop8: unable to read RDB block 1
[  295.425915][ T9707]  loop8: unable to read partition table
[  295.431866][ T9707] loop8: partition table beyond EOD, truncated
[  295.442357][ T9707] loop_reread_partitions: partition scan of loop8 (þ被xü^>à– �) failed (rc=-5)
[  295.459652][   T30] audit: type=1400 audit(1745278877.313:468): avc:  denied  { ioctl } for  pid=9708 comm="syz.3.832" path="socket:[20995]" dev="sockfs" ino=20995 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  295.485077][ T9710] netlink: 4 bytes leftover after parsing attributes in process `syz.3.832'.
[  295.537308][   T10] usb 1-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  295.681322][   T10] dvbdev: DVB: registering new adapter (774 Friio White ISDB-T USB2.0)
[  295.709003][   T10] usb 1-1: media controller created
[  295.769010][   T10] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  296.005505][   T10] usb 1-1: USB disconnect, device number 28
[  296.524719][ T9724] veth0_vlan: left promiscuous mode
[  296.531466][ T9724] veth0_vlan: entered promiscuous mode
[  297.259829][ T9742] netlink: 552 bytes leftover after parsing attributes in process `syz.5.841'.
[  297.269538][ T9742] netlink: 8 bytes leftover after parsing attributes in process `syz.5.841'.
[  297.512311][ T5868] usb 1-1: new high-speed USB device number 29 using dummy_hcd
[  297.532255][ T5870] usb 3-1: new high-speed USB device number 27 using dummy_hcd
[  297.717422][ T5868] usb 1-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  297.726136][ T5868] usb 1-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  297.736393][ T5868] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 66
[  297.746172][ T5868] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  297.758824][ T5868] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  297.772181][ T5868] usb 1-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  297.781591][ T5870] usb 3-1: device descriptor read/64, error -71
[  297.790559][ T5868] usb 1-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  297.798735][ T5868] usb 1-1: Product: syz
[  297.802969][ T5868] usb 1-1: Manufacturer: syz
[  297.810761][ T5868] cdc_wdm 1-1:1.0: skipping garbage
[  297.816070][ T5868] cdc_wdm 1-1:1.0: skipping garbage
[  297.823681][ T5868] cdc_wdm 1-1:1.0: cdc-wdm0: USB WDM device
[  297.829665][ T5868] cdc_wdm 1-1:1.0: Unknown control protocol
[  298.012286][ T5870] usb 3-1: new high-speed USB device number 28 using dummy_hcd
[  298.142333][ T5870] usb 3-1: device descriptor read/64, error -71
[  298.151368][ T9764] netlink: 1 bytes leftover after parsing attributes in process `syz.3.849'.
[  298.237770][ T9739] mkiss: ax0: crc mode is auto.
[  298.301060][ T5870] usb usb3-port1: attempt power cycle
[  298.844654][ T5836] Bluetooth: hci5: command 0x0405 tx timeout
[  299.102979][ T5899] usb 1-1: USB disconnect, device number 29
[  299.452325][ T5868] usb 2-1: new high-speed USB device number 33 using dummy_hcd
[  299.571672][ T5870] usb 3-1: new high-speed USB device number 29 using dummy_hcd
[  299.613321][ T5870] usb 3-1: device descriptor read/8, error -71
[  299.772233][ T5868] usb 2-1: Using ep0 maxpacket: 16
[  299.790834][ T5868] usb 2-1: config 1 interface 0 altsetting 8 bulk endpoint 0x82 has invalid maxpacket 1023
[  299.841666][ T5868] usb 2-1: config 1 interface 0 altsetting 8 bulk endpoint 0x3 has invalid maxpacket 16
[  299.877246][ T5868] usb 2-1: config 1 interface 0 has no altsetting 0
[  300.042669][ T5870] usb 3-1: new high-speed USB device number 30 using dummy_hcd
[  300.076934][ T5870] usb 3-1: device descriptor read/8, error -71
[  300.117689][   T30] audit: type=1400 audit(1745278881.773:469): avc:  denied  { read write } for  pid=9785 comm="syz.0.858" name="nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  300.213120][ T5870] usb usb3-port1: unable to enumerate USB device
[  300.281657][   T30] audit: type=1400 audit(1745278881.773:470): avc:  denied  { open } for  pid=9785 comm="syz.0.858" path="/dev/nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  300.714535][   T30] audit: type=1400 audit(1745278881.783:471): avc:  denied  { map } for  pid=9785 comm="syz.0.858" path="/dev/nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  300.737831][   T30] audit: type=1400 audit(1745278881.783:472): avc:  denied  { execute } for  pid=9785 comm="syz.0.858" path="/dev/nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  300.763580][ T5868] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  300.782594][ T5868] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  300.790717][ T5868] usb 2-1: Product: �
[  300.794938][ T5868] usb 2-1: Manufacturer: 슾㒒魯㷶殉螮�
[  300.801622][ T5868] usb 2-1: SerialNumber: 颭ꤤ訇猻ㇵﱇ㨧ᥘ裧⿙乑㠩
[  300.812992][ T9777] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  300.814029][ T9794] loop8: detected capacity change from 0 to 1
[  300.820259][ T9777] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  301.021606][ T9800] veth0_vlan: left promiscuous mode
[  301.029595][ T9800] veth0_vlan: entered promiscuous mode
[  301.485444][ T5979] Dev loop8: unable to read RDB block 1
[  301.565283][ T5979]  loop8: unable to read partition table
[  301.596300][ T5979] loop8: partition table beyond EOD, truncated
[  301.650967][ T9794] Dev loop8: unable to read RDB block 1
[  301.659180][ T9794]  loop8: unable to read partition table
[  301.666251][ T9794] loop8: partition table beyond EOD, truncated
[  301.678793][ T9794] loop_reread_partitions: partition scan of loop8 (þ被xü^>à– �) failed (rc=-5)
[  302.707061][ T5868] cdc_ether 2-1:1.0: probe with driver cdc_ether failed with error -71
[  302.833159][ T5868] usb 2-1: USB disconnect, device number 33
[  302.928488][ T9832] ptrace attach of "./syz-executor exec"[5821] was attempted by "./syz-executor exec"[9832]
[  303.198182][ T9831] netlink: 220 bytes leftover after parsing attributes in process `syz.5.870'.
[  303.244088][ T9831] netlink: 24 bytes leftover after parsing attributes in process `syz.5.870'.
[  303.253150][   T30] audit: type=1400 audit(1745278885.093:473): avc:  denied  { connect } for  pid=9835 comm="syz.0.869" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  303.297879][   T30] audit: type=1400 audit(1745278885.133:474): avc:  denied  { read } for  pid=9835 comm="syz.0.869" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  303.348023][ T9845] IPVS: sync thread started: state = BACKUP, mcast_ifn = bridge_slave_0, syncid = 0, id = 0
[  303.625884][   T30] audit: type=1400 audit(1745278885.443:475): avc:  denied  { map } for  pid=9839 comm="syz.1.872" path="socket:[21277]" dev="sockfs" ino=21277 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_stream_socket permissive=1
[  303.994974][ T9859] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  304.797428][ T9881] sysfs: cannot create duplicate filename '/class/ieee80211/!寿$ûÌÌULÙvy¸ÚØ¢
…D£p(@Ož>ÆÀ–PÛç¡RaGùͽ�ÒÜÓ“p'
[  304.842691][ T5868] usb 3-1: new high-speed USB device number 31 using dummy_hcd
[  304.857067][ T9881] CPU: 0 UID: 0 PID: 9881 Comm: syz.1.882 Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0 PREEMPT(full) 
[  304.857098][ T9881] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  304.857108][ T9881] Call Trace:
[  304.857115][ T9881]  <TASK>
[  304.857122][ T9881]  dump_stack_lvl+0x16c/0x1f0
[  304.857150][ T9881]  sysfs_warn_dup+0x7f/0xa0
[  304.857171][ T9881]  sysfs_do_create_link_sd+0x124/0x140
[  304.857193][ T9881]  sysfs_create_link+0x61/0xc0
[  304.857213][ T9881]  device_add+0x62c/0x1a70
[  304.857234][ T9881]  ? __pfx_device_add+0x10/0x10
[  304.857250][ T9881]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  304.857271][ T9881]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  304.857303][ T9881]  wiphy_register+0x1c9c/0x2850
[  304.857320][ T9881]  ? netdev_run_todo+0x864/0x1320
[  304.857342][ T9881]  ? __dev_printk+0x270/0x270
[  304.857370][ T9881]  ? __pfx_wiphy_register+0x10/0x10
[  304.857409][ T9881]  ieee80211_register_hw+0x2432/0x4020
[  304.857448][ T9881]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  304.857481][ T9881]  ? find_held_lock+0x2b/0x80
[  304.857502][ T9881]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  304.857517][ T9881]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  304.857536][ T9881]  ? __hrtimer_setup+0x176/0x280
[  304.857553][ T9881]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  304.857579][ T9881]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  304.857596][ T9881]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  304.857612][ T9881]  ? __asan_memcpy+0x3c/0x60
[  304.857635][ T9881]  hwsim_new_radio_nl+0xb51/0x12c0
[  304.857652][ T9881]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  304.857674][ T9881]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  304.857696][ T9881]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  304.857721][ T9881]  genl_family_rcv_msg_doit+0x206/0x2f0
[  304.857743][ T9881]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  304.857771][ T9881]  ? bpf_lsm_capable+0x9/0x10
[  304.857783][ T9881]  ? security_capable+0x7e/0x260
[  304.857799][ T9881]  ? ns_capable+0xd7/0x110
[  304.857818][ T9881]  genl_rcv_msg+0x55c/0x800
[  304.857840][ T9881]  ? __pfx_genl_rcv_msg+0x10/0x10
[  304.857861][ T9881]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  304.857877][ T9881]  ? __lock_acquire+0xaa4/0x1ba0
[  304.857894][ T9881]  netlink_rcv_skb+0x16a/0x440
[  304.857912][ T9881]  ? __pfx_genl_rcv_msg+0x10/0x10
[  304.857933][ T9881]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  304.857962][ T9881]  ? __pfx_down_read+0x10/0x10
[  304.857982][ T9881]  ? netlink_deliver_tap+0x1ae/0xd30
[  304.858003][ T9881]  genl_rcv+0x28/0x40
[  304.858021][ T9881]  netlink_unicast+0x53a/0x7f0
[  304.858041][ T9881]  ? __pfx_netlink_unicast+0x10/0x10
[  304.858065][ T9881]  netlink_sendmsg+0x8d1/0xdd0
[  304.858091][ T9881]  ? __pfx_netlink_sendmsg+0x10/0x10
[  304.858119][ T9881]  ____sys_sendmsg+0xa95/0xc70
[  304.858140][ T9881]  ? copy_msghdr_from_user+0x10a/0x160
[  304.858157][ T9881]  ? __pfx_____sys_sendmsg+0x10/0x10
[  304.858187][ T9881]  ___sys_sendmsg+0x134/0x1d0
[  304.858204][ T9881]  ? __pfx____sys_sendmsg+0x10/0x10
[  304.858247][ T9881]  __sys_sendmsg+0x16d/0x220
[  304.858263][ T9881]  ? __pfx___sys_sendmsg+0x10/0x10
[  304.858279][ T9881]  ? __x64_sys_futex+0x1e0/0x4c0
[  304.858303][ T9881]  ? rcu_is_watching+0x12/0xc0
[  304.858326][ T9881]  do_syscall_64+0xcd/0x260
[  304.858346][ T9881]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  304.858360][ T9881] RIP: 0033:0x7f42c6d8e169
[  304.858372][ T9881] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  304.858386][ T9881] RSP: 002b:00007f42c7bc7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  304.858405][ T9881] RAX: ffffffffffffffda RBX: 00007f42c6fb5fa0 RCX: 00007f42c6d8e169
[  304.858415][ T9881] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 000000000000000f
[  304.858424][ T9881] RBP: 00007f42c6e10a68 R08: 0000000000000000 R09: 0000000000000000
[  304.858434][ T9881] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  304.858442][ T9881] R13: 0000000000000000 R14: 00007f42c6fb5fa0 R15: 00007ffd16873bb8
[  304.858463][ T9881]  </TASK>
[  305.654045][   T30] audit: type=1326 audit(1745278887.513:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9889 comm="syz.3.884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f549538e169 code=0x7ffc0000
[  305.752309][   T30] audit: type=1326 audit(1745278887.513:477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9889 comm="syz.3.884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f549538e169 code=0x7ffc0000
[  305.790079][   T30] audit: type=1326 audit(1745278887.533:478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9889 comm="syz.3.884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f549538e169 code=0x7ffc0000
[  305.820105][ T5868] usb 3-1: Using ep0 maxpacket: 32
[  305.820135][   T30] audit: type=1326 audit(1745278887.533:479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9889 comm="syz.3.884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f549538e169 code=0x7ffc0000
[  305.830963][ T5868] usb 3-1: New USB device found, idVendor=0b89, idProduct=0007, bcdDevice=ef.64
[  305.848924][   T30] audit: type=1326 audit(1745278887.533:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9889 comm="syz.3.884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f549538e169 code=0x7ffc0000
[  305.895460][ T5868] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  305.904040][ T9899] netlink: 'syz.0.886': attribute type 5 has an invalid length.
[  305.911865][ T9899] netlink: 4 bytes leftover after parsing attributes in process `syz.0.886'.
[  305.932580][   T30] audit: type=1326 audit(1745278887.533:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9889 comm="syz.3.884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f549538e169 code=0x7ffc0000
[  305.958100][   T30] audit: type=1326 audit(1745278887.533:482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9889 comm="syz.3.884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f549538e169 code=0x7ffc0000
[  305.990978][ T5868] usb 3-1: config 0 descriptor??
[  306.011507][ T5868] as10x_usb: device has been detected
[  306.018067][ T5868] dvbdev: DVB: registering new adapter (nBox DVB-T Dongle)
[  306.043284][ T5868] usb 3-1: DVB: registering adapter 1 frontend 0 (nBox DVB-T Dongle)...
[  306.097004][   T30] audit: type=1326 audit(1745278887.533:483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9889 comm="syz.3.884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f549538e169 code=0x7ffc0000
[  306.120891][   T30] audit: type=1326 audit(1745278887.543:484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9889 comm="syz.3.884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f549538e169 code=0x7ffc0000
[  306.154658][   T30] audit: type=1326 audit(1745278887.543:485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9889 comm="syz.3.884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f549538e169 code=0x7ffc0000
[  306.203209][   T30] audit: type=1326 audit(1745278887.543:486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9889 comm="syz.3.884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=122 compat=0 ip=0x7f549538e169 code=0x7ffc0000
[  306.317263][ T5868] as10x_usb: error during firmware upload part1
[  306.323963][ T5868] Registered device nBox DVB-T Dongle
[  306.336482][ T5868] usb 3-1: USB disconnect, device number 31
[  306.392364][ T5976] usb 1-1: new high-speed USB device number 30 using dummy_hcd
[  306.400380][ T5868] Unregistered device nBox DVB-T Dongle
[  306.407522][ T5868] as10x_usb: device has been disconnected
[  306.562542][ T5976] usb 1-1: Using ep0 maxpacket: 16
[  306.570005][ T5976] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  306.734668][ T9918] overlayfs: missing 'lowerdir'
[  306.808037][ T5976] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  306.818213][ T5976] usb 1-1: config 0 interface 0 has no altsetting 0
[  306.825175][ T5976] usb 1-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  306.834655][ T5976] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  306.853145][ T5976] usb 1-1: config 0 descriptor??
[  308.138532][ T9905] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  308.172744][ T9905] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  308.668539][ T9941] fuse: root generation should be zero
[  308.676226][ T5868] usb 1-1: USB disconnect, device number 30
[  309.892085][ T9959] veth1_to_team: entered allmulticast mode
[  311.814832][   T30] kauditd_printk_skb: 6 callbacks suppressed
[  311.814853][   T30] audit: type=1400 audit(1745278893.653:493): avc:  denied  { sqpoll } for  pid=9975 comm="syz.2.908" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  314.185917][T10013] netlink: 4 bytes leftover after parsing attributes in process `syz.1.919'.
[  314.413059][   T30] audit: type=1400 audit(1745278896.113:494): avc:  denied  { unmount } for  pid=5834 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  314.749164][   T30] audit: type=1400 audit(1745278896.523:495): avc:  denied  { kexec_image_load } for  pid=10032 comm="syz.0.924" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[  315.857893][T10046] program syz.0.928 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  315.916617][   T30] audit: type=1400 audit(1745278897.773:496): avc:  denied  { map } for  pid=10044 comm="syz.0.928" path="/dev/sg0" dev="devtmpfs" ino=749 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  315.948633][T10046] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  316.334716][   T30] audit: type=1400 audit(1745278898.033:497): avc:  denied  { connect } for  pid=10049 comm="syz.5.929" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  316.802246][   T30] audit: type=1400 audit(1745278898.033:498): avc:  denied  { name_connect } for  pid=10049 comm="syz.5.929" dest=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[  316.841336][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  316.848760][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  317.105365][T10071] netlink: 68 bytes leftover after parsing attributes in process `syz.5.935'.
[  317.211443][   T30] audit: type=1400 audit(1745278899.063:499): avc:  denied  { getopt } for  pid=10065 comm="syz.1.933" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  317.454101][T10082] sp0: Synchronizing with TNC
[  318.309246][T10077] [U] è
[  318.863598][ T5868] usb 2-1: new high-speed USB device number 34 using dummy_hcd
[  319.104219][ T5868] usb 2-1: Using ep0 maxpacket: 32
[  319.112720][ T5868] usb 2-1: config 0 has an invalid interface number: 67 but max is 0
[  319.121159][ T5868] usb 2-1: config 0 has no interface number 0
[  319.141333][ T5868] usb 2-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  319.155915][ T5868] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  319.172221][ T5868] usb 2-1: Product: syz
[  319.177318][ T5868] usb 2-1: Manufacturer: syz
[  319.182082][ T5868] usb 2-1: SerialNumber: syz
[  319.189815][ T5868] usb 2-1: config 0 descriptor??
[  319.197629][ T5868] smsc95xx v2.0.0
[  319.886377][T10109] ptrace attach of "./syz-executor exec"[5834] was attempted by "./syz-executor exec"[10109]
[  320.168576][T10092] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  320.239336][T10092] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  320.477979][T10092] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  320.554489][T10092] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  321.296853][   T30] audit: type=1400 audit(1745278903.153:500): avc:  denied  { append } for  pid=10127 comm="syz.2.954" name="mice" dev="devtmpfs" ino=916 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  321.522231][ T5933] usb 1-1: new high-speed USB device number 31 using dummy_hcd
[  321.684268][ T5933] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x5 has an invalid bInterval 0, changing to 7
[  321.711536][ T5933] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  322.215186][   T30] audit: type=1400 audit(1745278903.693:501): avc:  denied  { bind } for  pid=10134 comm="syz.2.955" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  322.656086][ T5868] smsc95xx 2-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -71
[  322.673733][ T5868] smsc95xx 2-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  322.690119][ T5933] usb 1-1: New USB device found, idVendor=133e, idProduct=0815, bcdDevice=7e.66
[  322.711741][ T5868] smsc95xx 2-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71
[  323.092205][ T5933] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  323.124658][ T5933] usb 1-1: Product: syz
[  323.128857][ T5933] usb 1-1: Manufacturer: syz
[  323.133733][ T5868] smsc95xx 2-1:0.67: probe with driver smsc95xx failed with error -71
[  323.157459][ T5933] usb 1-1: SerialNumber: syz
[  323.175214][ T5868] usb 2-1: USB disconnect, device number 34
[  323.188429][ T5933] usb 1-1: config 0 descriptor??
[  323.228616][   T30] audit: type=1400 audit(1745278905.083:502): avc:  denied  { accept } for  pid=10154 comm="syz.3.962" lport=20003 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  323.264957][ T5933] snd-usb-audio 1-1:0.0: probe with driver snd-usb-audio failed with error -90
[  323.510193][   T30] audit: type=1400 audit(1745278905.113:503): avc:  denied  { read } for  pid=10154 comm="syz.3.962" laddr=127.0.0.1 lport=50742 faddr=127.0.0.1 fport=20003 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  323.549137][ T5933] usb 1-1: USB disconnect, device number 31
[  324.020983][T10154] dccp_close: ABORT with 28 bytes unread
[  324.115265][ T5836] Bluetooth: hci4: command 0x0406 tx timeout
[  324.316265][   T30] audit: type=1400 audit(1745278906.173:504): avc:  denied  { map } for  pid=10167 comm="syz.1.966" path="/dev/bus/usb/006/001" dev="devtmpfs" ino=736 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  325.010585][T10195] sysfs: cannot create duplicate filename '/class/ieee80211/!寿$ûÌÌULÙvy¸ÚØ¢
…D£p(@Ož>ÆÀ'
[  325.032369][T10195] CPU: 0 UID: 0 PID: 10195 Comm: syz.0.971 Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0 PREEMPT(full) 
[  325.032400][T10195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  325.032411][T10195] Call Trace:
[  325.032418][T10195]  <TASK>
[  325.032425][T10195]  dump_stack_lvl+0x16c/0x1f0
[  325.032455][T10195]  sysfs_warn_dup+0x7f/0xa0
[  325.032474][T10195]  sysfs_do_create_link_sd+0x124/0x140
[  325.032495][T10195]  sysfs_create_link+0x61/0xc0
[  325.032513][T10195]  device_add+0x62c/0x1a70
[  325.032535][T10195]  ? __pfx_device_add+0x10/0x10
[  325.032552][T10195]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  325.032574][T10195]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  325.032606][T10195]  wiphy_register+0x1c9c/0x2850
[  325.032623][T10195]  ? netdev_run_todo+0x864/0x1320
[  325.032646][T10195]  ? __dev_printk+0x270/0x270
[  325.032674][T10195]  ? __pfx_wiphy_register+0x10/0x10
[  325.032706][T10195]  ieee80211_register_hw+0x2432/0x4020
[  325.032745][T10195]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  325.032777][T10195]  ? find_held_lock+0x2b/0x80
[  325.032800][T10195]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  325.032820][T10195]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  325.032844][T10195]  ? __hrtimer_setup+0x176/0x280
[  325.032866][T10195]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  325.032901][T10195]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  325.032923][T10195]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  325.032945][T10195]  ? __asan_memcpy+0x3c/0x60
[  325.032976][T10195]  hwsim_new_radio_nl+0xb51/0x12c0
[  325.032999][T10195]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  325.033028][T10195]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  325.033057][T10195]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  325.033088][T10195]  genl_family_rcv_msg_doit+0x206/0x2f0
[  325.033117][T10195]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  325.033155][T10195]  ? bpf_lsm_capable+0x9/0x10
[  325.033170][T10195]  ? security_capable+0x7e/0x260
[  325.033192][T10195]  ? ns_capable+0xd7/0x110
[  325.033216][T10195]  genl_rcv_msg+0x55c/0x800
[  325.033247][T10195]  ? __pfx_genl_rcv_msg+0x10/0x10
[  325.033275][T10195]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  325.033296][T10195]  ? __lock_acquire+0xaa4/0x1ba0
[  325.033334][T10195]  netlink_rcv_skb+0x16a/0x440
[  325.033363][T10195]  ? __pfx_genl_rcv_msg+0x10/0x10
[  325.033391][T10195]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  325.033428][T10195]  ? __pfx_down_read+0x10/0x10
[  325.033455][T10195]  ? netlink_deliver_tap+0x1ae/0xd30
[  325.033481][T10195]  genl_rcv+0x28/0x40
[  325.033504][T10195]  netlink_unicast+0x53a/0x7f0
[  325.033532][T10195]  ? __pfx_netlink_unicast+0x10/0x10
[  325.033564][T10195]  netlink_sendmsg+0x8d1/0xdd0
[  325.033592][T10195]  ? __pfx_netlink_sendmsg+0x10/0x10
[  325.033625][T10195]  ____sys_sendmsg+0xa95/0xc70
[  325.033651][T10195]  ? copy_msghdr_from_user+0x10a/0x160
[  325.033672][T10195]  ? __pfx_____sys_sendmsg+0x10/0x10
[  325.033702][T10195]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  325.033730][T10195]  ___sys_sendmsg+0x134/0x1d0
[  325.033754][T10195]  ? __pfx____sys_sendmsg+0x10/0x10
[  325.033808][T10195]  __sys_sendmsg+0x16d/0x220
[  325.033830][T10195]  ? __pfx___sys_sendmsg+0x10/0x10
[  325.033851][T10195]  ? __x64_sys_futex+0x1e0/0x4c0
[  325.033882][T10195]  ? rcu_is_watching+0x12/0xc0
[  325.033910][T10195]  do_syscall_64+0xcd/0x260
[  325.033936][T10195]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  325.033953][T10195] RIP: 0033:0x7f6f5938e169
[  325.033968][T10195] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  325.033984][T10195] RSP: 002b:00007f6f5a22c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  325.034001][T10195] RAX: ffffffffffffffda RBX: 00007f6f595b5fa0 RCX: 00007f6f5938e169
[  325.034014][T10195] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  325.034025][T10195] RBP: 00007f6f59410a68 R08: 0000000000000000 R09: 0000000000000000
[  325.034036][T10195] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  325.034047][T10195] R13: 0000000000000000 R14: 00007f6f595b5fa0 R15: 00007ffddc0c3278
[  325.034071][T10195]  </TASK>
[  326.030569][T10227] fuse: Bad value for 'fd'
[  326.164912][   T30] audit: type=1400 audit(1745278908.013:505): avc:  denied  { bind } for  pid=10236 comm="syz.2.984" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  326.207060][   T30] audit: type=1400 audit(1745278908.053:506): avc:  denied  { read } for  pid=10232 comm="syz.0.983" name="usbmon0" dev="devtmpfs" ino=716 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  326.253111][   T30] audit: type=1400 audit(1745278908.053:507): avc:  denied  { open } for  pid=10232 comm="syz.0.983" path="/dev/usbmon0" dev="devtmpfs" ino=716 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  326.328820][T10239] netlink: 552 bytes leftover after parsing attributes in process `syz.2.985'.
[  326.338176][T10239] netlink: 8 bytes leftover after parsing attributes in process `syz.2.985'.
[  326.362643][   T30] audit: type=1400 audit(1745278908.223:508): avc:  denied  { getopt } for  pid=10240 comm="syz.0.986" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  327.392211][ T5870] usb 3-1: new full-speed USB device number 32 using dummy_hcd
[  327.560981][ T5870] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  327.582664][   T30] audit: type=1400 audit(1745278909.433:509): avc:  denied  { setopt } for  pid=10249 comm="syz.1.991" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  327.591587][ T5870] usb 3-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  327.616376][T10241] kexec: Could not allocate control_code_buffer
[  327.694908][ T5870] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  327.739172][ T5870] usb 3-1: config 0 descriptor??
[  327.760711][T10239] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  328.000267][T10277] overlayfs: invalid origin (0000)
[  328.169836][ T5976] usb 2-1: new full-speed USB device number 35 using dummy_hcd
[  328.538500][ T5870] usbhid 3-1:0.0: can't add hid device: -71
[  328.546961][T10286] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1002'.
[  328.556552][T10286] BTRFS info: 'norecovery' is for compatibility only, recommended to use 'rescue=nologreplay'
[  328.578013][ T5870] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  328.598444][ T5976] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  328.598472][ T5976] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  328.598485][ T5976] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  328.600118][ T5976] usb 2-1: config 0 descriptor??
[  328.691180][ T5870] usb 3-1: USB disconnect, device number 32
[  328.777398][T10290] overlayfs: failed to clone upperpath
[  329.017552][ T5976] ath6kl: Failed to read usb control message: -32
[  329.069312][ T5976] ath6kl: Unable to read the bmi data from the device: -32
[  329.079638][ T5976] ath6kl: Unable to recv target info: -32
[  329.117971][ T5976] ath6kl: Failed to init ath6kl core: -32
[  329.138198][ T5976] ath6kl_usb 2-1:0.0: probe with driver ath6kl_usb failed with error -32
[  329.175533][ T5976] usb 2-1: USB disconnect, device number 35
[  329.330181][T10299] block device autoloading is deprecated and will be removed.
[  329.340295][T10301] sysfs: cannot create duplicate filename '/class/ieee80211/!寿$ûÌÌULÙvy¸ÚØ¢
…D£p(@Ož>ÆÀ–PÛç¡RaGùͽ�ÒÜÓ“p'
[  329.361321][T10301] CPU: 1 UID: 0 PID: 10301 Comm: syz.2.1007 Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0 PREEMPT(full) 
[  329.361344][T10301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  329.361351][T10301] Call Trace:
[  329.361356][T10301]  <TASK>
[  329.361360][T10301]  dump_stack_lvl+0x16c/0x1f0
[  329.361381][T10301]  sysfs_warn_dup+0x7f/0xa0
[  329.361395][T10301]  sysfs_do_create_link_sd+0x124/0x140
[  329.361408][T10301]  sysfs_create_link+0x61/0xc0
[  329.361419][T10301]  device_add+0x62c/0x1a70
[  329.361433][T10301]  ? __pfx_device_add+0x10/0x10
[  329.361443][T10301]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  329.361456][T10301]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  329.361477][T10301]  wiphy_register+0x1c9c/0x2850
[  329.361488][T10301]  ? netdev_run_todo+0x864/0x1320
[  329.361502][T10301]  ? __dev_printk+0x270/0x270
[  329.361518][T10301]  ? __pfx_wiphy_register+0x10/0x10
[  329.361536][T10301]  ieee80211_register_hw+0x2432/0x4020
[  329.361559][T10301]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  329.361577][T10301]  ? find_held_lock+0x2b/0x80
[  329.361592][T10301]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  329.361603][T10301]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  329.361618][T10301]  ? __hrtimer_setup+0x176/0x280
[  329.361631][T10301]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  329.361650][T10301]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  329.361664][T10301]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  329.361677][T10301]  ? __asan_memcpy+0x3c/0x60
[  329.361694][T10301]  hwsim_new_radio_nl+0xb51/0x12c0
[  329.361708][T10301]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  329.361724][T10301]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  329.361742][T10301]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  329.361763][T10301]  genl_family_rcv_msg_doit+0x206/0x2f0
[  329.361780][T10301]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  329.361801][T10301]  ? bpf_lsm_capable+0x9/0x10
[  329.361812][T10301]  ? security_capable+0x7e/0x260
[  329.361825][T10301]  ? ns_capable+0xd7/0x110
[  329.361839][T10301]  genl_rcv_msg+0x55c/0x800
[  329.361858][T10301]  ? __pfx_genl_rcv_msg+0x10/0x10
[  329.361874][T10301]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  329.361887][T10301]  ? __lock_acquire+0xaa4/0x1ba0
[  329.361899][T10301]  netlink_rcv_skb+0x16a/0x440
[  329.361913][T10301]  ? __pfx_genl_rcv_msg+0x10/0x10
[  329.361931][T10301]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  329.361952][T10301]  ? __pfx_down_read+0x10/0x10
[  329.361970][T10301]  ? netlink_deliver_tap+0x1ae/0xd30
[  329.361986][T10301]  genl_rcv+0x28/0x40
[  329.362001][T10301]  netlink_unicast+0x53a/0x7f0
[  329.362017][T10301]  ? __pfx_netlink_unicast+0x10/0x10
[  329.362046][T10301]  netlink_sendmsg+0x8d1/0xdd0
[  329.362064][T10301]  ? __pfx_netlink_sendmsg+0x10/0x10
[  329.362086][T10301]  ____sys_sendmsg+0xa95/0xc70
[  329.362104][T10301]  ? copy_msghdr_from_user+0x10a/0x160
[  329.362123][T10301]  ? __pfx_____sys_sendmsg+0x10/0x10
[  329.362152][T10301]  ? try_to_wake_up+0xa2f/0x1680
[  329.362176][T10301]  ___sys_sendmsg+0x134/0x1d0
[  329.362197][T10301]  ? __pfx____sys_sendmsg+0x10/0x10
[  329.362243][T10301]  __sys_sendmsg+0x16d/0x220
[  329.362266][T10301]  ? __pfx___sys_sendmsg+0x10/0x10
[  329.362285][T10301]  ? __x64_sys_futex+0x1e0/0x4c0
[  329.362319][T10301]  ? rcu_is_watching+0x12/0xc0
[  329.362348][T10301]  do_syscall_64+0xcd/0x260
[  329.362376][T10301]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  329.362394][T10301] RIP: 0033:0x7f10ca78e169
[  329.362410][T10301] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  329.362427][T10301] RSP: 002b:00007f10cb636038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  329.362445][T10301] RAX: ffffffffffffffda RBX: 00007f10ca9b5fa0 RCX: 00007f10ca78e169
[  329.362456][T10301] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 000000000000000f
[  329.362467][T10301] RBP: 00007f10ca810a68 R08: 0000000000000000 R09: 0000000000000000
[  329.362477][T10301] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  329.362486][T10301] R13: 0000000000000000 R14: 00007f10ca9b5fa0 R15: 00007fff950356a8
[  329.362511][T10301]  </TASK>
[  329.383501][T10299] syz.0.1006: attempt to access beyond end of device
[  329.383501][T10299] md2: rw=2048, sector=0, nr_sectors = 8 limit=0
[  329.842215][ T5976] usb 1-1: new high-speed USB device number 32 using dummy_hcd
[  330.039177][   T30] audit: type=1400 audit(1745278911.893:510): avc:  denied  { write } for  pid=10310 comm="syz.2.1011" name="usbmon3" dev="devtmpfs" ino=725 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  330.497773][ T5976] usb 1-1: Using ep0 maxpacket: 32
[  330.504424][ T5976] usb 1-1: config 0 has an invalid interface number: 12 but max is 0
[  330.512485][T10311] SELinux: ebitmap: truncated map
[  330.517717][ T5976] usb 1-1: config 0 has no interface number 0
[  330.531699][ T5976] usb 1-1: config 0 interface 12 has no altsetting 0
[  330.552365][ T5976] usb 1-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  330.570924][ T5976] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  330.590142][ T5976] usb 1-1: Product: syz
[  330.591794][T10311] SELinux: failed to load policy
[  330.602060][ T5976] usb 1-1: Manufacturer: syz
[  330.614446][ T5976] usb 1-1: SerialNumber: syz
[  330.626753][ T5976] usb 1-1: config 0 descriptor??
[  331.511282][T10325] netlink: 'syz.1.1014': attribute type 21 has an invalid length.
[  331.528858][T10325] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1014'.
[  331.541038][ T5976] f81534 1-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  331.552291][ T5976] f81534 1-1:0.12: f81534_find_config_idx: read failed: -71
[  331.570290][ T5976] f81534 1-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  331.585933][ T5976] f81534 1-1:0.12: probe with driver f81534 failed with error -71
[  331.921898][ T5976] usb 1-1: USB disconnect, device number 32
[  332.205173][ T5933] usb 3-1: new full-speed USB device number 33 using dummy_hcd
[  332.387372][ T5933] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  332.406913][ T5933] usb 3-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  332.426404][ T5933] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  332.436524][   T30] audit: type=1400 audit(1745278914.293:511): avc:  denied  { execute } for  pid=10347 comm="syz.0.1021" path=2F6D656D66643A01FDAE2E2BA68CB63F32193994532C7C783F55655BBDE1210333BC2723FF179B25F35B642006202864656C6574656429 dev="hugetlbfs" ino=24129 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  332.497251][ T5933] usb 3-1: config 0 descriptor??
[  332.592645][T10334] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  332.664536][T10357] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1023'.
[  333.538387][   T30] audit: type=1326 audit(1745278915.393:512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10369 comm="syz.3.1026" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f549538e169 code=0x0
[  333.824728][ T5933] usbhid 3-1:0.0: can't add hid device: -71
[  333.831157][ T5933] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  334.176661][ T5933] usb 3-1: USB disconnect, device number 33
[  334.726362][   T30] audit: type=1400 audit(1745278916.503:513): avc:  denied  { read write } for  pid=10400 comm="syz.1.1034" name="nvram" dev="devtmpfs" ino=623 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  334.812355][   T30] audit: type=1400 audit(1745278916.503:514): avc:  denied  { open } for  pid=10400 comm="syz.1.1034" path="/dev/nvram" dev="devtmpfs" ino=623 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  334.913514][   T30] audit: type=1400 audit(1745278916.763:515): avc:  denied  { validate_trans } for  pid=10410 comm="syz.2.1035" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  335.250656][T10430] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1040'.
[  335.290012][T10430] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1040'.
[  335.343462][T10430] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1040'.
[  335.579269][T10430] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1040'.
[  335.602648][T10430] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1040'.
[  335.638781][T10430] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1040'.
[  335.903988][T10430] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1040'.
[  336.038815][T10430] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1040'.
[  336.834386][T10454] __nla_validate_parse: 66 callbacks suppressed
[  336.834397][T10454] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1047'.
[  337.224890][T10458] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1048'.
[  337.283383][T10461] netlink: 88 bytes leftover after parsing attributes in process `syz.2.1049'.
[  337.405209][T10468] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=53 sclass=netlink_route_socket pid=10468 comm=syz.3.1050
[  337.677250][T10463] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  337.707994][T10463] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  338.235554][T10463] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  338.255182][T10463] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  338.282203][T10463] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  338.302354][T10463] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  338.355309][T10467] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1052'.
[  339.249228][T10493] netlink: 'syz.3.1058': attribute type 21 has an invalid length.
[  339.257406][T10493] netlink: 156 bytes leftover after parsing attributes in process `syz.3.1058'.
[  339.579312][T10494] netlink: 52 bytes leftover after parsing attributes in process `syz.5.1057'.
[  339.783058][   T30] audit: type=1400 audit(1745278921.643:516): avc:  denied  { accept } for  pid=10495 comm="syz.1.1059" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  341.515146][   T53] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  341.523868][   T53] Bluetooth: hci3: Injecting HCI hardware error event
[  341.603692][   T53] Bluetooth: hci3: hardware error 0x00
[  342.606199][T10510] netlink: 88 bytes leftover after parsing attributes in process `syz.5.1062'.
[  344.026542][T10523] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  344.144107][T10523] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  344.202987][   T30] audit: type=1400 audit(1745278926.053:517): avc:  denied  { bind } for  pid=10514 comm="syz.1.1064" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  344.227707][   T30] audit: type=1400 audit(1745278926.083:518): avc:  denied  { map } for  pid=10514 comm="syz.1.1064" path="socket:[24554]" dev="sockfs" ino=24554 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  344.254293][T10534] netlink: 68 bytes leftover after parsing attributes in process `syz.5.1071'.
[  344.266760][   T30] audit: type=1400 audit(1745278926.083:519): avc:  denied  { read } for  pid=10514 comm="syz.1.1064" path="socket:[24554]" dev="sockfs" ino=24554 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  344.272986][ T5933] usb 2-1: new high-speed USB device number 36 using dummy_hcd
[  344.583328][   T53] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  344.870850][T10555] netlink: 'syz.3.1078': attribute type 2 has an invalid length.
[  345.032223][ T5976] usb 3-1: new high-speed USB device number 34 using dummy_hcd
[  345.192226][ T5976] usb 3-1: Using ep0 maxpacket: 16
[  345.214511][ T5976] usb 3-1: New USB device found, idVendor=0644, idProduct=8021, bcdDevice=38.b7
[  345.232425][ T5976] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  345.266887][ T5976] usb 3-1: Product: syz
[  345.280636][ T5976] usb 3-1: Manufacturer: syz
[  345.297486][ T5976] usb 3-1: SerialNumber: syz
[  345.319882][ T5976] usb 3-1: config 0 descriptor??
[  345.341158][ T5976] hub 3-1:0.0: bad descriptor, ignoring hub
[  345.358015][ T5976] hub 3-1:0.0: probe with driver hub failed with error -5
[  345.663187][ T5976] usb 3-1: USB disconnect, device number 34
[  345.960338][T10572] xt_hashlimit: overflow, try lower: 3/0
[  346.205700][   T30] audit: type=1400 audit(1745278927.933:520): avc:  denied  { write } for  pid=10569 comm="syz.1.1083" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  346.904468][   T30] audit: type=1400 audit(1745278928.683:521): avc:  denied  { ioctl } for  pid=10584 comm="syz.0.1088" path="/dev/input/mice" dev="devtmpfs" ino=916 ioctlcmd=0x5332 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  347.014553][   T30] audit: type=1400 audit(1745278928.863:522): avc:  denied  { ioctl } for  pid=10589 comm="syz.2.1090" path="socket:[23509]" dev="sockfs" ino=23509 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  347.211267][T10599] veth0_vlan: left promiscuous mode
[  347.221853][T10599] veth0_vlan: entered promiscuous mode
[  347.841924][ T5976] usb 2-1: new high-speed USB device number 37 using dummy_hcd
[  347.863787][   T81] usb 3-1: new high-speed USB device number 35 using dummy_hcd
[  347.905115][T10614] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1096'.
[  347.914122][T10613] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1096'.
[  348.061586][   T81] usb 3-1: device descriptor read/64, error -71
[  348.082263][ T5976] usb 2-1: Using ep0 maxpacket: 16
[  348.088725][ T5976] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  348.099921][ T5976] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  348.109815][ T5976] usb 2-1: New USB device found, idVendor=1b1c, idProduct=1b02, bcdDevice= 0.00
[  348.119030][ T5976] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  348.213361][ T5976] usb 2-1: config 0 descriptor??
[  348.368672][   T81] usb 3-1: new high-speed USB device number 36 using dummy_hcd
[  348.552605][   T81] usb 3-1: device descriptor read/64, error -71
[  348.664704][   T81] usb usb3-port1: attempt power cycle
[  348.680792][ T5976] corsair 0003:1B1C:1B02.000C: item fetching failed at offset 3/5
[  348.695118][ T5976] corsair 0003:1B1C:1B02.000C: parse failed
[  348.701747][ T5976] corsair 0003:1B1C:1B02.000C: probe with driver corsair failed with error -22
[  348.933803][T10626] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1100'.
[  349.029110][T10627] veth0_to_team: entered promiscuous mode
[  349.036350][T10627] veth0_to_team: entered allmulticast mode
[  349.388083][   T81] usb 3-1: new high-speed USB device number 37 using dummy_hcd
[  349.422820][   T81] usb 3-1: device descriptor read/8, error -71
[  349.457637][T10630] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1101'.
[  349.596802][   T30] audit: type=1400 audit(1745278931.453:523): avc:  denied  { getopt } for  pid=10633 comm="syz.3.1103" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  349.682198][   T81] usb 3-1: new high-speed USB device number 38 using dummy_hcd
[  349.754256][   T81] usb 3-1: device descriptor read/8, error -71
[  349.875562][   T81] usb usb3-port1: unable to enumerate USB device
[  350.421019][T10644] netlink: 88 bytes leftover after parsing attributes in process `syz.0.1106'.
[  350.965152][   T81] usb 2-1: USB disconnect, device number 37
[  351.087709][   T30] audit: type=1804 audit(1745278932.943:524): pid=10665 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.1111" name="file0" dev="tmpfs" ino=1559 res=1 errno=0
[  351.119604][T10665] ref_ctr_offset mismatch. inode: 0x617 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0xc
[  351.140599][T10666] sp0: Synchronizing with TNC
[  351.149384][T10665] ref_ctr going negative. vaddr: 0x200000ffc002, curr val: 0, delta: -1
[  351.160478][T10665] ref_ctr decrement failed for inode: 0x617 offset: 0x7 ref_ctr_offset: 0x2 of mm: 0xffff88807a5a6e00
[  351.174209][T10665] uprobe: syz.3.1111:10665 failed to unregister, leaking uprobe
[  351.680774][   T30] audit: type=1400 audit(1745278933.533:525): avc:  denied  { lock } for  pid=10663 comm="syz.1.1110" path="socket:[24880]" dev="sockfs" ino=24880 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  351.909809][T10684] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1115'.
[  351.956351][T10663] [U] è
[  352.070572][   T30] audit: type=1400 audit(1745278933.923:526): avc:  denied  { read } for  pid=10689 comm="syz.3.1118" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  352.212768][T10696] capability: warning: `syz.2.1120' uses deprecated v2 capabilities in a way that may be insecure
[  352.286843][T10701] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  352.320308][T10701] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  352.560177][   T81] usb 2-1: new high-speed USB device number 38 using dummy_hcd
[  352.762806][   T81] usb 2-1: Using ep0 maxpacket: 8
[  352.781781][   T81] usb 2-1: New USB device found, idVendor=0763, idProduct=2080, bcdDevice=d0.ab
[  353.006914][T10718] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  353.019388][   T81] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  353.050700][   T81] usb 2-1: Product: syz
[  353.089718][   T81] usb 2-1: Manufacturer: syz
[  353.106609][   T81] usb 2-1: SerialNumber: syz
[  353.130160][   T81] usb 2-1: config 0 descriptor??
[  354.068725][   T81] usb 2-1: USB disconnect, device number 38
[  354.867990][T10739] Process accounting resumed
[  355.293629][T10752] netlink: 552 bytes leftover after parsing attributes in process `syz.5.1138'.
[  355.315631][T10752] bridge1: the hash_elasticity option has been deprecated and is always 16
[  355.435307][ T5811] udevd[5811]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  355.538449][T10757] sysfs: cannot create duplicate filename '/class/ieee80211/!寿$ûÌÌULÙvy¸ÚØ¢
…D£p(@Ož>ÆÀ'
[  355.580823][T10757] CPU: 0 UID: 0 PID: 10757 Comm: syz.1.1140 Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0 PREEMPT(full) 
[  355.580843][T10757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  355.580849][T10757] Call Trace:
[  355.580854][T10757]  <TASK>
[  355.580858][T10757]  dump_stack_lvl+0x16c/0x1f0
[  355.580879][T10757]  sysfs_warn_dup+0x7f/0xa0
[  355.580890][T10757]  sysfs_do_create_link_sd+0x124/0x140
[  355.580903][T10757]  sysfs_create_link+0x61/0xc0
[  355.580915][T10757]  device_add+0x62c/0x1a70
[  355.580932][T10757]  ? __pfx_device_add+0x10/0x10
[  355.580942][T10757]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  355.580955][T10757]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  355.580975][T10757]  wiphy_register+0x1c9c/0x2850
[  355.580986][T10757]  ? netdev_run_todo+0x864/0x1320
[  355.581002][T10757]  ? __dev_printk+0x270/0x270
[  355.581018][T10757]  ? __pfx_wiphy_register+0x10/0x10
[  355.581036][T10757]  ieee80211_register_hw+0x2432/0x4020
[  355.581060][T10757]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  355.581079][T10757]  ? find_held_lock+0x2b/0x80
[  355.581093][T10757]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  355.581104][T10757]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  355.581120][T10757]  ? __hrtimer_setup+0x176/0x280
[  355.581133][T10757]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  355.581152][T10757]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  355.581165][T10757]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  355.581178][T10757]  ? __asan_memcpy+0x3c/0x60
[  355.581198][T10757]  hwsim_new_radio_nl+0xb51/0x12c0
[  355.581211][T10757]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  355.581229][T10757]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  355.581247][T10757]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  355.581269][T10757]  genl_family_rcv_msg_doit+0x206/0x2f0
[  355.581288][T10757]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  355.581310][T10757]  ? bpf_lsm_capable+0x9/0x10
[  355.581320][T10757]  ? security_capable+0x7e/0x260
[  355.581333][T10757]  ? ns_capable+0xd7/0x110
[  355.581347][T10757]  genl_rcv_msg+0x55c/0x800
[  355.581365][T10757]  ? __pfx_genl_rcv_msg+0x10/0x10
[  355.581381][T10757]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  355.581394][T10757]  ? __lock_acquire+0xaa4/0x1ba0
[  355.581406][T10757]  netlink_rcv_skb+0x16a/0x440
[  355.581421][T10757]  ? __pfx_genl_rcv_msg+0x10/0x10
[  355.581437][T10757]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  355.581459][T10757]  ? __pfx_down_read+0x10/0x10
[  355.581475][T10757]  ? netlink_deliver_tap+0x1ae/0xd30
[  355.581491][T10757]  genl_rcv+0x28/0x40
[  355.581506][T10757]  netlink_unicast+0x53a/0x7f0
[  355.581523][T10757]  ? __pfx_netlink_unicast+0x10/0x10
[  355.581541][T10757]  netlink_sendmsg+0x8d1/0xdd0
[  355.581558][T10757]  ? __pfx_netlink_sendmsg+0x10/0x10
[  355.581578][T10757]  ____sys_sendmsg+0xa95/0xc70
[  355.581595][T10757]  ? copy_msghdr_from_user+0x10a/0x160
[  355.581608][T10757]  ? __pfx_____sys_sendmsg+0x10/0x10
[  355.581625][T10757]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  355.581642][T10757]  ___sys_sendmsg+0x134/0x1d0
[  355.581656][T10757]  ? __pfx____sys_sendmsg+0x10/0x10
[  355.581686][T10757]  __sys_sendmsg+0x16d/0x220
[  355.581700][T10757]  ? __pfx___sys_sendmsg+0x10/0x10
[  355.581712][T10757]  ? __x64_sys_futex+0x1e0/0x4c0
[  355.581731][T10757]  ? rcu_is_watching+0x12/0xc0
[  355.581753][T10757]  do_syscall_64+0xcd/0x260
[  355.581770][T10757]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  355.581782][T10757] RIP: 0033:0x7f42c6d8e169
[  355.581792][T10757] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  355.581803][T10757] RSP: 002b:00007f42c7bc7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  355.581814][T10757] RAX: ffffffffffffffda RBX: 00007f42c6fb5fa0 RCX: 00007f42c6d8e169
[  355.581821][T10757] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  355.581826][T10757] RBP: 00007f42c6e10a68 R08: 0000000000000000 R09: 0000000000000000
[  355.581832][T10757] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  355.581838][T10757] R13: 0000000000000000 R14: 00007f42c6fb5fa0 R15: 00007ffd16873bb8
[  355.581852][T10757]  </TASK>
[  356.847453][T10779] veth0_vlan: left promiscuous mode
[  356.852342][T10779] veth0_vlan: entered promiscuous mode
[  357.193411][   T30] audit: type=1400 audit(1745278939.053:527): avc:  denied  { read write } for  pid=10773 comm="syz.0.1144" name="uhid" dev="devtmpfs" ino=1273 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  357.193754][   T30] audit: type=1400 audit(1745278939.053:528): avc:  denied  { open } for  pid=10773 comm="syz.0.1144" path="/dev/uhid" dev="devtmpfs" ino=1273 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  357.201694][ T5868] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  357.231140][ T5868] hid-generic 0000:0000:0000.000D: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  359.311673][T10815] sysfs: cannot create duplicate filename '/class/ieee80211/!寿$ûÌÌULÙvy¸ÚØ¢
…D£p(@Ož>ÆÀ'
[  359.311720][T10815] CPU: 1 UID: 0 PID: 10815 Comm: syz.1.1152 Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0 PREEMPT(full) 
[  359.311744][T10815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  359.311755][T10815] Call Trace:
[  359.311762][T10815]  <TASK>
[  359.311770][T10815]  dump_stack_lvl+0x16c/0x1f0
[  359.311800][T10815]  sysfs_warn_dup+0x7f/0xa0
[  359.311821][T10815]  sysfs_do_create_link_sd+0x124/0x140
[  359.311843][T10815]  sysfs_create_link+0x61/0xc0
[  359.311862][T10815]  device_add+0x62c/0x1a70
[  359.311884][T10815]  ? __pfx_device_add+0x10/0x10
[  359.311900][T10815]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  359.311923][T10815]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  359.311966][T10815]  wiphy_register+0x1c9c/0x2850
[  359.311985][T10815]  ? netdev_run_todo+0x864/0x1320
[  359.312011][T10815]  ? __dev_printk+0x270/0x270
[  359.312040][T10815]  ? __pfx_wiphy_register+0x10/0x10
[  359.312071][T10815]  ieee80211_register_hw+0x2432/0x4020
[  359.312108][T10815]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  359.312137][T10815]  ? find_held_lock+0x2b/0x80
[  359.312159][T10815]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  359.312176][T10815]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  359.312200][T10815]  ? __hrtimer_setup+0x176/0x280
[  359.312222][T10815]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  359.312258][T10815]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  359.312279][T10815]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  359.312299][T10815]  ? __asan_memcpy+0x3c/0x60
[  359.312328][T10815]  hwsim_new_radio_nl+0xb51/0x12c0
[  359.312350][T10815]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  359.312376][T10815]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  359.312402][T10815]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  359.312437][T10815]  genl_family_rcv_msg_doit+0x206/0x2f0
[  359.312466][T10815]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  359.312502][T10815]  ? bpf_lsm_capable+0x9/0x10
[  359.312518][T10815]  ? security_capable+0x7e/0x260
[  359.312539][T10815]  ? ns_capable+0xd7/0x110
[  359.312562][T10815]  genl_rcv_msg+0x55c/0x800
[  359.312591][T10815]  ? __pfx_genl_rcv_msg+0x10/0x10
[  359.312618][T10815]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  359.312644][T10815]  ? __lock_acquire+0xaa4/0x1ba0
[  359.312667][T10815]  netlink_rcv_skb+0x16a/0x440
[  359.312691][T10815]  ? __pfx_genl_rcv_msg+0x10/0x10
[  359.312719][T10815]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  359.312755][T10815]  ? __pfx_down_read+0x10/0x10
[  359.312781][T10815]  ? netlink_deliver_tap+0x1ae/0xd30
[  359.312809][T10815]  genl_rcv+0x28/0x40
[  359.312832][T10815]  netlink_unicast+0x53a/0x7f0
[  359.312858][T10815]  ? __pfx_netlink_unicast+0x10/0x10
[  359.312887][T10815]  netlink_sendmsg+0x8d1/0xdd0
[  359.312915][T10815]  ? __pfx_netlink_sendmsg+0x10/0x10
[  359.312977][T10815]  ____sys_sendmsg+0xa95/0xc70
[  359.313006][T10815]  ? copy_msghdr_from_user+0x10a/0x160
[  359.313025][T10815]  ? __pfx_____sys_sendmsg+0x10/0x10
[  359.313061][T10815]  ___sys_sendmsg+0x134/0x1d0
[  359.313083][T10815]  ? __pfx____sys_sendmsg+0x10/0x10
[  359.313137][T10815]  __sys_sendmsg+0x16d/0x220
[  359.313156][T10815]  ? __pfx___sys_sendmsg+0x10/0x10
[  359.313175][T10815]  ? __x64_sys_futex+0x1e0/0x4c0
[  359.313205][T10815]  ? rcu_is_watching+0x12/0xc0
[  359.313231][T10815]  do_syscall_64+0xcd/0x260
[  359.313257][T10815]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.313276][T10815] RIP: 0033:0x7f42c6d8e169
[  359.313292][T10815] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  359.313308][T10815] RSP: 002b:00007f42c7bc7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  359.313327][T10815] RAX: ffffffffffffffda RBX: 00007f42c6fb5fa0 RCX: 00007f42c6d8e169
[  359.313339][T10815] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  359.313349][T10815] RBP: 00007f42c6e10a68 R08: 0000000000000000 R09: 0000000000000000
[  359.313359][T10815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  359.313370][T10815] R13: 0000000000000000 R14: 00007f42c6fb5fa0 R15: 00007ffd16873bb8
[  359.313394][T10815]  </TASK>
[  359.342053][T10816] input: syz1 as /devices/virtual/input/input8
[  359.468819][T10818] overlayfs: missing 'lowerdir'
[  359.722383][ T5899] usb 3-1: new full-speed USB device number 39 using dummy_hcd
[  359.822366][T10827] misc userio: Invalid payload size
[  359.875605][ T5899] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  360.363084][ T5899] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  360.372941][ T5899] usb 3-1: New USB device found, idVendor=146b, idProduct=0902, bcdDevice= 0.00
[  360.382016][ T5899] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  360.393278][ T5899] usb 3-1: config 0 descriptor??
[  360.544186][T10837] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1159'.
[  361.325526][   T30] audit: type=1400 audit(1745278942.343:529): avc:  denied  { create } for  pid=10833 comm="syz.1.1159" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  361.355580][ T5899] usbhid 3-1:0.0: can't add hid device: -71
[  361.397451][ T5899] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  361.462258][ T5899] usb 3-1: USB disconnect, device number 39
[  362.229243][T10848] netlink: 'syz.3.1163': attribute type 21 has an invalid length.
[  362.229243][T10845] netlink: 'syz.3.1163': attribute type 21 has an invalid length.
[  362.229306][T10848] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1163'.
[  362.255381][T10845] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1163'.
[  363.631910][T10869] dummy0: entered allmulticast mode
[  363.638399][   T30] audit: type=1400 audit(1745278945.483:530): avc:  denied  { ioctl } for  pid=10866 comm="syz.1.1169" path="socket:[25187]" dev="sockfs" ino=25187 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  364.202074][T10865] pim6reg: entered allmulticast mode
[  364.295087][   T30] audit: type=1400 audit(1745278946.133:531): avc:  denied  { create } for  pid=10871 comm="syz.2.1170" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  364.341599][   T30] audit: type=1400 audit(1745278946.133:532): avc:  denied  { getopt } for  pid=10871 comm="syz.2.1170" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  364.404773][   T30] audit: type=1400 audit(1745278946.133:533): avc:  denied  { setopt } for  pid=10871 comm="syz.2.1170" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  364.525201][T10874] lo speed is unknown, defaulting to 1000
[  364.623907][   T30] audit: type=1400 audit(1745278946.143:534): avc:  denied  { sys_module } for  pid=10862 comm="syz.3.1168" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  364.712228][   T30] audit: type=1400 audit(1745278946.143:535): avc:  denied  { module_request } for  pid=10862 comm="syz.3.1168" kmod="bridge0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  364.799564][   T30] audit: type=1400 audit(1745278946.263:536): avc:  denied  { append } for  pid=5178 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=9 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  364.823997][T10890] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1172'.
[  364.881257][   T30] audit: type=1400 audit(1745278946.513:537): avc:  denied  { read write } for  pid=5824 comm="syz-executor" name="loop2" dev="devtmpfs" ino=649 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  364.917771][    C1] vcan0: j1939_tp_rxtimer: 0xffff88802e9f7000: rx timeout, send abort
[  365.156858][T10897] veth0_vlan: left promiscuous mode
[  365.165299][T10897] veth0_vlan: entered promiscuous mode
[  365.426876][    C1] vcan0: j1939_tp_rxtimer: 0xffff88802e9f7000: abort rx timeout. Force session deactivation
[  365.522780][   T30] audit: type=1400 audit(1745278946.513:538): avc:  denied  { open } for  pid=5824 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=649 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  365.561388][   T30] audit: type=1400 audit(1745278946.513:539): avc:  denied  { ioctl } for  pid=5824 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=649 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  367.814762][ T5868] usb 2-1: new high-speed USB device number 40 using dummy_hcd
[  368.168494][ T5868] usb 2-1: Using ep0 maxpacket: 16
[  368.176189][ T5868] usb 2-1: config 1 interface 0 altsetting 3 endpoint 0x81 has an invalid bInterval 222, changing to 11
[  368.188728][ T5868] usb 2-1: config 1 interface 0 altsetting 3 endpoint 0x81 has invalid wMaxPacketSize 0
[  368.198760][ T5868] usb 2-1: config 1 interface 0 altsetting 3 bulk endpoint 0x82 has invalid maxpacket 8
[  368.208753][ T5868] usb 2-1: config 1 interface 0 altsetting 3 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  368.225524][ T5868] usb 2-1: config 1 interface 0 has no altsetting 0
[  368.234319][ T5868] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  368.248383][ T5868] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  368.266672][ T5868] usb 2-1: Product: syz
[  368.279228][ T5868] usb 2-1: Manufacturer: �
[  368.291878][ T5868] usb 2-1: SerialNumber: syz
[  368.306894][T10926] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  368.322041][T10926] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  368.657053][   T30] kauditd_printk_skb: 58 callbacks suppressed
[  368.657081][   T30] audit: type=1400 audit(1745278950.513:598): avc:  denied  { setopt } for  pid=10956 comm="syz.5.1194" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  368.971401][   T30] audit: type=1400 audit(1745278950.663:599): avc:  denied  { read append } for  pid=10925 comm="syz.1.1184" name="fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  369.134999][ T5868] cdc_ether 2-1:1.0: probe with driver cdc_ether failed with error -22
[  369.182454][ T5868] usb 2-1: USB disconnect, device number 40
[  369.183290][   T30] audit: type=1400 audit(1745278950.663:600): avc:  denied  { open } for  pid=10925 comm="syz.1.1184" path="/dev/fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  369.293612][T10978] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1198'.
[  369.360100][T10979] veth0_vlan: left promiscuous mode
[  369.367199][T10979] veth0_vlan: entered promiscuous mode
[  369.506428][   T30] audit: type=1400 audit(1745278950.733:601): avc:  denied  { ioctl } for  pid=10970 comm="syz.2.1197" path="/dev/video2" dev="devtmpfs" ino=932 ioctlcmd=0x5638 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  369.619748][T10978] veth1_macvtap: left promiscuous mode
[  369.637618][   T30] audit: type=1400 audit(1745278950.763:602): avc:  denied  { getopt } for  pid=10970 comm="syz.2.1197" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  369.674579][T10979] lo speed is unknown, defaulting to 1000
[  369.727944][   T30] audit: type=1400 audit(1745278950.863:603): avc:  denied  { write } for  pid=10970 comm="syz.2.1197" name="anycast6" dev="proc" ino=4026533182 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  369.850007][   T30] audit: type=1400 audit(1745278951.523:604): avc:  denied  { mounton } for  pid=10981 comm="syz.1.1200" path="/212/file0" dev="tmpfs" ino=1136 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  369.910031][   T30] audit: type=1400 audit(1745278951.533:605): avc:  denied  { mount } for  pid=10981 comm="syz.1.1200" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  369.932354][   T30] audit: type=1400 audit(1745278951.543:606): avc:  denied  { create } for  pid=10985 comm="syz.2.1199" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  369.952361][   T30] audit: type=1400 audit(1745278951.553:607): avc:  denied  { setopt } for  pid=10985 comm="syz.2.1199" lport=4 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  371.523945][T11029] netdevsim netdevsim5 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  371.533020][T11029] netdevsim netdevsim5 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  371.541761][T11029] netdevsim netdevsim5 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  371.550567][T11029] netdevsim netdevsim5 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  371.561374][T11029] batman_adv: batadv0: Adding interface: geneve2
[  371.567780][T11029] batman_adv: batadv0: Interface activated: geneve2
[  371.865863][T11040] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=49 sclass=netlink_xfrm_socket pid=11040 comm=syz.2.1212
[  372.292393][  T971] usb 2-1: new full-speed USB device number 41 using dummy_hcd
[  372.494701][  T971] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  372.521987][  T971] usb 2-1: config 0 has no interfaces?
[  372.544742][T11047] netlink: 552 bytes leftover after parsing attributes in process `syz.5.1215'.
[  372.553958][T11047] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1215'.
[  372.578951][  T971] usb 2-1: New USB device found, idVendor=6993, idProduct=b001, bcdDevice=3d.29
[  372.594855][  T971] usb 2-1: New USB device strings: Mfr=244, Product=0, SerialNumber=16
[  372.604450][  T971] usb 2-1: Manufacturer: syz
[  372.609278][  T971] usb 2-1: SerialNumber: syz
[  372.623567][  T971] usb 2-1: config 0 descriptor??
[  372.705511][T11050] ip6gre1: entered allmulticast mode
[  372.839477][  T971] usb 2-1: USB disconnect, device number 41
[  373.309299][ T5868] usb 3-1: new high-speed USB device number 40 using dummy_hcd
[  373.366895][T11070] netlink: 552 bytes leftover after parsing attributes in process `syz.5.1221'.
[  373.383030][T11070] bridge1: the hash_elasticity option has been deprecated and is always 16
[  373.476129][ T5868] usb 3-1: config 0 has an invalid interface number: 64 but max is 0
[  373.600822][ T5868] usb 3-1: config 0 has no interface number 0
[  374.612184][   T30] kauditd_printk_skb: 30 callbacks suppressed
[  374.612201][   T30] audit: type=1400 audit(1745278956.123:638): avc:  denied  { setattr } for  pid=11072 comm="syz.1.1222" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1
[  374.804427][ T5868] usb 3-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice= 0.07
[  374.813591][ T5868] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  374.821554][ T5868] usb 3-1: Product: syz
[  374.827292][ T5868] usb 3-1: Manufacturer: syz
[  374.831983][ T5868] usb 3-1: SerialNumber: syz
[  374.842672][ T5868] usb 3-1: config 0 descriptor??
[  374.854845][   T30] audit: type=1400 audit(1745278956.663:639): avc:  denied  { unmount } for  pid=5821 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[  375.470684][   T30] audit: type=1400 audit(1745278957.233:640): avc:  denied  { append } for  pid=11084 comm="syz.1.1226" name="001" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  375.734616][   T30] audit: type=1326 audit(1745278957.593:641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11082 comm="syz.0.1224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f5938e169 code=0x7fc00000
[  375.908631][   T30] audit: type=1400 audit(1745278957.763:642): avc:  denied  { nlmsg_write } for  pid=11095 comm="syz.1.1228" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  375.962249][   T30] audit: type=1400 audit(1745278957.803:643): avc:  denied  { read } for  pid=11095 comm="syz.1.1228" name="nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  375.996240][T11101] netlink: 552 bytes leftover after parsing attributes in process `syz.0.1231'.
[  376.007977][T11101] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1231'.
[  376.017114][   T30] audit: type=1400 audit(1745278957.803:644): avc:  denied  { open } for  pid=11095 comm="syz.1.1228" path="/dev/nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  376.202347][ T5976] usb 2-1: new high-speed USB device number 42 using dummy_hcd
[  376.222300][ T5868] usb 3-1: Found UVC 0.08 device syz (046d:0823)
[  376.260270][ T5868] usb 3-1: No valid video chain found.
[  376.314258][ T5868] usb 3-1: USB disconnect, device number 40
[  376.335808][   T30] audit: type=1326 audit(1745278958.193:645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11106 comm="syz.3.1232" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f549538e169 code=0x0
[  376.383307][ T5976] usb 2-1: Using ep0 maxpacket: 32
[  376.395479][ T5976] usb 2-1: config 0 has an invalid interface number: 219 but max is 0
[  376.422245][ T5976] usb 2-1: config 0 has no interface number 0
[  376.433577][ T5976] usb 2-1: config 0 interface 219 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  376.466703][   T30] audit: type=1400 audit(1745278958.323:646): avc:  denied  { ioctl } for  pid=11108 comm="syz.2.1233" path="/dev/fb0" dev="devtmpfs" ino=629 ioctlcmd=0x4602 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  376.510087][   T91] usb 1-1: new full-speed USB device number 33 using dummy_hcd
[  376.512923][ T5976] usb 2-1: New USB device found, idVendor=108c, idProduct=0169, bcdDevice=75.b9
[  376.538023][ T5976] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  376.552604][ T5976] usb 2-1: Product: syz
[  376.557917][ T5976] usb 2-1: Manufacturer: syz
[  376.570489][ T5976] usb 2-1: SerialNumber: syz
[  376.631917][ T5976] usb 2-1: config 0 descriptor??
[  376.678516][   T91] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  376.691160][   T91] usb 1-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  376.700370][   T91] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  376.713431][   T91] usb 1-1: config 0 descriptor??
[  376.725613][T11105] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  376.879342][ T5976] etas_es58x 2-1:0.219: Starting syz syz (Serial Number syz)
[  377.577079][ T5976] usb 2-1: USB disconnect, device number 42
[  377.587027][   T30] audit: type=1400 audit(1745278959.443:647): avc:  denied  { create } for  pid=11116 comm="syz.3.1235" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  377.683318][   T91] usbhid 1-1:0.0: can't add hid device: -71
[  377.696786][   T91] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  377.717224][   T91] usb 1-1: USB disconnect, device number 33
[  377.740683][T11123] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1236'.
[  377.750030][T11123] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  377.779087][T11123] batman_adv: batadv0: Removing interface: batadv_slave_1
[  377.855388][T11126] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1237'.
[  378.131570][T11131] 9pnet_fd: Insufficient options for proto=fd
[  378.133727][T11132] 9pnet_fd: Insufficient options for proto=fd
[  378.152324][ T5868] usb 3-1: new high-speed USB device number 41 using dummy_hcd
[  378.266740][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  378.273174][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  378.322218][ T5868] usb 3-1: Using ep0 maxpacket: 32
[  378.365884][ T5868] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  378.383216][ T5868] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  378.475165][ T5868] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  378.484703][ T5868] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  378.497278][ T5868] usb 3-1: config 0 descriptor??
[  378.504884][ T5868] hub 3-1:0.0: USB hub found
[  378.819772][ T5868] hub 3-1:0.0: config failed, hub doesn't have any ports! (err -19)
[  379.216355][T11174] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1255'.
[  379.368811][ T5868] hid-generic 0003:046D:C31C.000E: hidraw0: USB HID v8.00 Device [HID 046d:c31c] on usb-dummy_hcd.2-1/input0
[  379.604001][ T5868] usb 3-1: USB disconnect, device number 41
[  379.705528][   T30] kauditd_printk_skb: 9 callbacks suppressed
[  379.705544][   T30] audit: type=1400 audit(1745278961.563:657): avc:  denied  { read } for  pid=11187 comm="syz.1.1260" path="socket:[26580]" dev="sockfs" ino=26580 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  380.615918][ T5976] usb 1-1: new high-speed USB device number 34 using dummy_hcd
[  380.838872][   T30] audit: type=1400 audit(1745278962.383:658): avc:  denied  { watch watch_reads } for  pid=11215 comm="syz.2.1269" path="/223" dev="tmpfs" ino=1207 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  381.063746][ T5976] usb 1-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  381.151813][ T5976] usb 1-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  381.166263][ T5976] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 66
[  381.168922][   T30] audit: type=1400 audit(1745278963.003:659): avc:  denied  { read write } for  pid=11223 comm="syz.2.1271" name="ppp" dev="devtmpfs" ino=709 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  381.175842][ T5976] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  381.376505][   T30] audit: type=1400 audit(1745278963.003:660): avc:  denied  { open } for  pid=11223 comm="syz.2.1271" path="/dev/ppp" dev="devtmpfs" ino=709 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  381.507644][   T30] audit: type=1400 audit(1745278963.183:661): avc:  denied  { shutdown } for  pid=11227 comm="syz.1.1273" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  382.119983][ T5976] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  382.139397][ T5976] usb 1-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  382.149272][   T30] audit: type=1400 audit(1745278963.993:662): avc:  denied  { write } for  pid=11227 comm="syz.1.1273" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  382.149357][ T5976] usb 1-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  382.298804][ T5976] usb 1-1: Product: syz
[  382.372659][ T5976] usb 1-1: Manufacturer: syz
[  382.455347][T11234] netlink: 492 bytes leftover after parsing attributes in process `syz.3.1274'.
[  382.456302][   T30] audit: type=1400 audit(1745278964.043:663): avc:  denied  { shutdown } for  pid=11227 comm="syz.1.1273" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  382.470880][ T5976] cdc_wdm 1-1:1.0: skipping garbage
[  382.517907][ T5976] cdc_wdm 1-1:1.0: skipping garbage
[  382.534927][ T5976] cdc_wdm 1-1:1.0: cdc-wdm0: USB WDM device
[  382.544011][ T5976] cdc_wdm 1-1:1.0: Unknown control protocol
[  382.731716][ T5933] usb 1-1: USB disconnect, device number 34
[  383.401435][T11256] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1283'.
[  383.574365][   T30] audit: type=1400 audit(1745278965.423:664): avc:  denied  { create } for  pid=11261 comm="syz.1.1286" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  383.904276][   T30] audit: type=1400 audit(1745278965.753:665): avc:  denied  { bind } for  pid=11261 comm="syz.1.1286" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  383.943759][   T30] audit: type=1400 audit(1745278965.803:666): avc:  denied  { unlink } for  pid=11266 comm="syz.0.1287" name="#b" dev="tmpfs" ino=1153 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  384.171818][ T5933] usb 3-1: new high-speed USB device number 42 using dummy_hcd
[  384.382941][T11276] syzkaller1: entered promiscuous mode
[  384.398787][T11276] syzkaller1: entered allmulticast mode
[  384.585164][ T5933] usb 3-1: Using ep0 maxpacket: 8
[  384.610730][ T5933] usb 3-1: config 0 has no interfaces?
[  384.616496][ T5933] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  384.637638][ T5933] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  384.670048][ T5933] usb 3-1: config 0 descriptor??
[  384.820974][   T30] kauditd_printk_skb: 4 callbacks suppressed
[  384.820988][   T30] audit: type=1400 audit(1745278966.673:671): avc:  denied  { unmount } for  pid=5834 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  384.911004][ T5933] usb 3-1: USB disconnect, device number 42
[  384.941820][   T30] audit: type=1400 audit(1745278966.793:672): avc:  denied  { read } for  pid=11281 comm="syz.0.1292" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  384.998315][   T30] audit: type=1400 audit(1745278966.853:673): avc:  denied  { connect } for  pid=11281 comm="syz.0.1292" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  385.019786][   T30] audit: type=1400 audit(1745278966.873:674): avc:  denied  { write } for  pid=11281 comm="syz.0.1292" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  385.055931][T11287] kvm: kvm [11283]: vcpu0, guest rIP: 0x1a3 Unhandled WRMSR(0xc2) = 0x8000
[  385.255125][   T30] audit: type=1400 audit(1745278967.023:675): avc:  denied  { ioctl } for  pid=11294 comm="syz.0.1297" path="socket:[27787]" dev="sockfs" ino=27787 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  385.433523][T11295] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1297'.
[  386.542160][   T30] audit: type=1400 audit(1745278968.393:676): avc:  denied  { create } for  pid=11310 comm="syz.1.1301" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  386.570212][   T30] audit: type=1400 audit(1745278968.393:677): avc:  denied  { write } for  pid=11310 comm="syz.1.1301" path="socket:[27803]" dev="sockfs" ino=27803 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  386.664691][   T30] audit: type=1400 audit(1745278968.513:678): avc:  denied  { map } for  pid=11314 comm="syz.1.1303" path="socket:[26956]" dev="sockfs" ino=26956 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1
[  386.860035][T11321] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1305'.
[  386.888131][   T30] audit: type=1400 audit(1745278968.743:679): avc:  denied  { read write } for  pid=11323 comm="syz.2.1307" name="fuse" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  386.993098][T11321] syz_tun: entered promiscuous mode
[  387.022225][   T30] audit: type=1400 audit(1745278968.743:680): avc:  denied  { open } for  pid=11323 comm="syz.2.1307" path="/dev/fuse" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  387.754249][T11341] ntfs3(nullb0): Primary boot signature is not NTFS.
[  387.761080][T11341] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  390.329083][   T30] kauditd_printk_skb: 10 callbacks suppressed
[  390.329115][   T30] audit: type=1804 audit(1745278972.183:691): pid=11380 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=ToMToU comm="syz.1.1321" name="/newroot/244/file1" dev="fuse" ino=1 res=1 errno=0
[  391.002191][   T30] audit: type=1800 audit(1745278972.253:692): pid=11380 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.1.1321" name="/" dev="fuse" ino=1 res=0 errno=0
[  391.023265][    C1] vkms_vblank_simulate: vblank timer overrun
[  391.118237][   T30] audit: type=1400 audit(1745278972.383:693): avc:  denied  { read } for  pid=11374 comm="syz.2.1323" name="card1" dev="devtmpfs" ino=628 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  391.141221][    C1] vkms_vblank_simulate: vblank timer overrun
[  391.196164][   T30] audit: type=1400 audit(1745278972.383:694): avc:  denied  { open } for  pid=11374 comm="syz.2.1323" path="/dev/dri/card1" dev="devtmpfs" ino=628 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  391.297669][   T30] audit: type=1400 audit(1745278972.383:695): avc:  denied  { ioctl } for  pid=11374 comm="syz.2.1323" path="/dev/dri/card1" dev="devtmpfs" ino=628 ioctlcmd=0x64a0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  393.470554][T11413] overlayfs: failed to clone upperpath
[  393.595582][   T30] audit: type=1400 audit(1745278975.453:696): avc:  denied  { bind } for  pid=11406 comm="syz.0.1332" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  393.618334][T11423] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1332'.
[  393.911422][   T30] audit: type=1804 audit(1745278975.743:697): pid=11433 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=ToMToU comm="syz.1.1338" name="/newroot/247/file1" dev="fuse" ino=1 res=1 errno=0
[  393.978130][T11439] hugetlbfs: syz.3.1341 (11439): Using mlock ulimits for SHM_HUGETLB is obsolete
[  393.987755][   T30] audit: type=1800 audit(1745278975.743:698): pid=11433 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.1.1338" name="/" dev="fuse" ino=1 res=0 errno=0
[  394.044639][   T30] audit: type=1800 audit(1745278975.743:699): pid=11431 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.1.1338" name="/" dev="fuse" ino=1 res=0 errno=0
[  394.200483][   T30] audit: type=1400 audit(1745278976.003:700): avc:  denied  { read } for  pid=11440 comm="syz.1.1342" name="file0" dev="fuse" ino=64 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  395.445807][   T30] kauditd_printk_skb: 12 callbacks suppressed
[  395.445824][   T30] audit: type=1400 audit(1745278977.303:713): avc:  denied  { bind } for  pid=11464 comm="syz.1.1351" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  395.517753][   T30] audit: type=1400 audit(1745278977.303:714): avc:  denied  { listen } for  pid=11464 comm="syz.1.1351" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  395.550937][   T30] audit: type=1400 audit(1745278977.303:715): avc:  denied  { accept } for  pid=11464 comm="syz.1.1351" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  395.570862][    C1] vkms_vblank_simulate: vblank timer overrun
[  396.149664][   T30] audit: type=1400 audit(1745278977.443:716): avc:  denied  { connect } for  pid=11469 comm="syz.0.1353" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  396.177279][   T30] audit: type=1400 audit(1745278977.443:717): avc:  denied  { write } for  pid=11469 comm="syz.0.1353" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  396.340187][   T30] audit: type=1400 audit(1745278978.183:718): avc:  denied  { name_bind } for  pid=11476 comm="syz.5.1355" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[  396.618665][T11494] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1364'.
[  397.499599][T11502] xt_policy: output policy not valid in PREROUTING and INPUT
[  397.541471][   T30] audit: type=1400 audit(1745278979.353:719): avc:  denied  { read } for  pid=11489 comm="syz.3.1361" path="socket:[28183]" dev="sockfs" ino=28183 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  397.943069][   T30] audit: type=1400 audit(1745278979.803:720): avc:  denied  { create } for  pid=11505 comm="syz.1.1367" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  398.039332][T11512] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1369'.
[  398.089119][   T30] audit: type=1400 audit(1745278979.933:721): avc:  denied  { bind } for  pid=11506 comm="syz.0.1368" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  398.220009][   T30] audit: type=1400 audit(1745278979.933:722): avc:  denied  { node_bind } for  pid=11506 comm="syz.0.1368" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1
[  398.804795][T11521] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1372'.
[  399.092678][T11521] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1372'.
[  399.402969][T11533] IPVS: stopping backup sync thread 9845 ...
[  399.408799][T11537] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1378'.
[  399.419281][T11537] netlink: 376 bytes leftover after parsing attributes in process `syz.3.1378'.
[  399.441957][T11537] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1378'.
[  399.632067][T11550] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1381'.
[  399.696291][T11555] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2
[  400.029391][T11572] o2cb: This node has not been configured.
[  400.050283][T11572] o2cb: Cluster check failed. Fix errors before retrying.
[  400.079367][T11572] (syz.2.1393,11572,1):user_dlm_register:674 ERROR: status = -22
[  400.104400][T11572] (syz.2.1393,11572,1):dlmfs_mkdir:437 ERROR: Error -22 could not register domain "file0"
[  400.866030][   T30] kauditd_printk_skb: 11 callbacks suppressed
[  400.866045][   T30] audit: type=1400 audit(1745278982.723:734): avc:  denied  { unmount } for  pid=5824 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  400.930028][T11594] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1400'.
[  400.940280][T11594] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1400'.
[  401.034251][   T30] audit: type=1400 audit(1745278982.893:735): avc:  denied  { write } for  pid=11595 comm="syz.2.1401" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  401.586071][T11600] program syz.1.1402 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  401.612355][   T30] audit: type=1400 audit(1745278982.893:736): avc:  denied  { unmount } for  pid=5821 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  401.633416][   T30] audit: type=1400 audit(1745278983.443:737): avc:  denied  { read write } for  pid=11599 comm="syz.1.1402" name="sg0" dev="devtmpfs" ino=749 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  401.658083][   T30] audit: type=1400 audit(1745278983.443:738): avc:  denied  { open } for  pid=11599 comm="syz.1.1402" path="/dev/sg0" dev="devtmpfs" ino=749 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  401.729629][T11604] tipc: Started in network mode
[  401.734536][T11604] tipc: Node identity 1a003e7f9292, cluster identity 4711
[  401.741925][T11604] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  401.809410][T11604] syzkaller0: entered promiscuous mode
[  401.832041][T11604] syzkaller0: entered allmulticast mode
[  401.843162][   T30] audit: type=1326 audit(1745278983.703:739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11609 comm="syz.2.1407" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f10ca78e169 code=0x0
[  401.844161][T11604] tipc: Resetting bearer <eth:syzkaller0>
[  402.079924][T11608] lo speed is unknown, defaulting to 1000
[  402.196580][T11603] tipc: Resetting bearer <eth:syzkaller0>
[  402.762312][  T971] tipc: Node number set to 2291285631
[  402.845297][T11630] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  403.389543][T11638] trusted_key: syz.3.1416 sent an empty control message without MSG_MORE.
[  404.035487][T11603] tipc: Disabling bearer <eth:syzkaller0>
[  404.050617][T11634] IPv6: Can't replace route, no match found
[  404.912596][   T30] audit: type=1400 audit(1745278986.623:740): avc:  denied  { connect } for  pid=11650 comm="syz.5.1422" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  405.044871][    C0] vkms_vblank_simulate: vblank timer overrun
[  405.265204][   T30] audit: type=1400 audit(1745278987.063:741): avc:  denied  { bind } for  pid=11655 comm="syz.0.1423" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  405.442029][   T30] audit: type=1400 audit(1745278987.063:742): avc:  denied  { name_bind } for  pid=11655 comm="syz.0.1423" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[  405.844274][   T30] audit: type=1400 audit(1745278987.063:743): avc:  denied  { node_bind } for  pid=11655 comm="syz.0.1423" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=sctp_socket permissive=1
[  406.117037][   T30] audit: type=1400 audit(1745278987.063:744): avc:  denied  { write } for  pid=11655 comm="syz.0.1423" lport=20003 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  406.137878][   T30] audit: type=1400 audit(1745278987.063:745): avc:  denied  { connect } for  pid=11655 comm="syz.0.1423" lport=20003 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  406.158624][   T30] audit: type=1400 audit(1745278987.063:746): avc:  denied  { name_connect } for  pid=11655 comm="syz.0.1423" dest=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[  406.181107][    C0] vkms_vblank_simulate: vblank timer overrun
[  406.299827][   T30] audit: type=1400 audit(1745278988.153:747): avc:  denied  { connect } for  pid=11666 comm="syz.2.1426" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  406.382306][   T30] audit: type=1400 audit(1745278988.153:748): avc:  denied  { name_connect } for  pid=11666 comm="syz.2.1426" dest=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[  406.681934][   T30] audit: type=1400 audit(1745278988.533:749): avc:  denied  { nlmsg_read } for  pid=11676 comm="syz.0.1431" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  407.923921][   T30] audit: type=1400 audit(1745278989.643:750): avc:  denied  { write } for  pid=11700 comm="syz.0.1437" name="nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  407.953381][   T30] audit: type=1400 audit(1745278989.763:751): avc:  denied  { map } for  pid=11700 comm="syz.0.1437" path="/dev/nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  408.250126][   T30] audit: type=1400 audit(1745278989.773:752): avc:  denied  { execute } for  pid=11700 comm="syz.0.1437" path="/dev/nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  408.540202][   T30] audit: type=1400 audit(1745278990.363:753): avc:  denied  { append } for  pid=11700 comm="syz.0.1437" name="loop6" dev="devtmpfs" ino=653 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  410.549890][T11747] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1448'.
[  410.580290][T11738] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1448'.
[  411.708584][   T30] kauditd_printk_skb: 4 callbacks suppressed
[  411.708600][   T30] audit: type=1400 audit(1745278993.563:758): avc:  denied  { create } for  pid=11775 comm="syz.5.1462" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  411.745841][   T30] audit: type=1400 audit(1745278993.593:759): avc:  denied  { write } for  pid=11775 comm="syz.5.1462" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  411.922343][ T5933] usb 3-1: new high-speed USB device number 43 using dummy_hcd
[  412.137656][ T5933] usb 3-1: config 0 has no interfaces?
[  412.174031][ T5933] usb 3-1: New USB device found, idVendor=13ec, idProduct=0006, bcdDevice= 0.00
[  412.289037][ T5933] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  412.531775][   T30] audit: type=1804 audit(1745278994.383:760): pid=11792 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=ToMToU comm="syz.0.1468" name="/newroot/243/file1" dev="fuse" ino=1 res=1 errno=0
[  412.575554][   T30] audit: type=1400 audit(1745278994.433:761): avc:  denied  { sqpoll } for  pid=11785 comm="syz.5.1467" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  412.892718][   T30] audit: type=1400 audit(1745278994.753:762): avc:  denied  { kexec_image_load } for  pid=11800 comm="syz.3.1471" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[  412.920252][   T30] audit: type=1400 audit(1745278994.773:763): avc:  denied  { bind } for  pid=11800 comm="syz.3.1471" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  412.943285][T11801] overlayfs: failed to clone upperpath
[  413.456735][   T30] audit: type=1800 audit(1745278995.303:764): pid=11792 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.0.1468" name="/" dev="fuse" ino=1 res=0 errno=0
[  414.180898][   T30] audit: type=1400 audit(1745278996.033:765): avc:  denied  { getopt } for  pid=11813 comm="syz.0.1475" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  415.024705][   T30] audit: type=1400 audit(1745278996.473:766): avc:  denied  { audit_write } for  pid=11823 comm="syz.3.1479" capability=29  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  415.065445][   T30] audit: type=1400 audit(1745278996.473:767): avc:  denied  { watch } for  pid=11823 comm="syz.3.1479" path="/381" dev="tmpfs" ino=2034 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  415.090763][T11829] overlayfs: failed to clone upperpath
[  418.596359][   T30] kauditd_printk_skb: 19 callbacks suppressed
[  418.596374][   T30] audit: type=1400 audit(1745279000.453:787): avc:  denied  { getopt } for  pid=11894 comm="syz.5.1506" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  418.911236][   T30] audit: type=1400 audit(1745279000.763:788): avc:  denied  { read write } for  pid=11899 comm="syz-executor" name="vhci" dev="devtmpfs" ino=1268 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  418.962267][ T5836] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  418.971435][ T5836] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  418.976136][T11903] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1509'.
[  418.983898][   T30] audit: type=1400 audit(1745279000.793:789): avc:  denied  { open } for  pid=11899 comm="syz-executor" path="/dev/vhci" dev="devtmpfs" ino=1268 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  419.011614][ T5836] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  419.024007][ T5836] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  419.031931][ T5836] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  419.067240][   T30] audit: type=1400 audit(1745279000.903:790): avc:  denied  { mounton } for  pid=11899 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  419.251875][T11899] lo speed is unknown, defaulting to 1000
[  419.344789][T11908] netlink: 552 bytes leftover after parsing attributes in process `syz.2.1504'.
[  419.360197][T11908] bridge0: the hash_elasticity option has been deprecated and is always 16
[  419.797088][T11899] chnl_net:caif_netlink_parms(): no params data found
[  420.126064][T11899] bridge0: port 1(bridge_slave_0) entered blocking state
[  420.159828][T11899] bridge0: port 1(bridge_slave_0) entered disabled state
[  420.173644][T11899] bridge_slave_0: entered allmulticast mode
[  420.198168][T11899] bridge_slave_0: entered promiscuous mode
[  420.221729][T11899] bridge0: port 2(bridge_slave_1) entered blocking state
[  420.369497][T11899] bridge0: port 2(bridge_slave_1) entered disabled state
[  420.404516][T11899] bridge_slave_1: entered allmulticast mode
[  420.412048][T11899] bridge_slave_1: entered promiscuous mode
[  420.413463][T11932] netlink: 552 bytes leftover after parsing attributes in process `syz.5.1514'.
[  420.440481][T11932] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1514'.
[  420.471588][   T30] audit: type=1400 audit(1745279002.323:791): avc:  denied  { create } for  pid=11933 comm="syz.2.1513" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  420.561155][   T30] audit: type=1400 audit(1745279002.353:792): avc:  denied  { ioctl } for  pid=11933 comm="syz.2.1513" path="socket:[29828]" dev="sockfs" ino=29828 ioctlcmd=0x890b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  420.648490][T11934] bond0: (slave rose0): Enslaving as an active interface with an up link
[  420.759107][   T30] audit: type=1400 audit(1745279002.353:793): avc:  denied  { ioctl } for  pid=11933 comm="syz.2.1513" path="socket:[29827]" dev="sockfs" ino=29827 ioctlcmd=0x8990 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  420.806581][T11899] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  420.826479][T11899] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  420.898544][T11899] team0: Port device team_slave_0 added
[  420.924902][T11899] team0: Port device team_slave_1 added
[  420.983961][T11899] batman_adv: batadv0: Adding interface: batadv_slave_0
[  421.021550][T11899] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  421.055623][T11899] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  421.069267][T11899] batman_adv: batadv0: Adding interface: batadv_slave_1
[  421.083343][T11899] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  421.113295][T11899] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  421.128313][T11937] netdevsim netdevsim2: Direct firmware load for .
[  421.128313][T11937]  failed with error -2
[  421.141513][T11937] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[  421.141513][T11937] 
[  421.152517][ T5836] Bluetooth: hci0: command tx timeout
[  421.159546][   T30] audit: type=1400 audit(1745279002.993:794): avc:  denied  { firmware_load } for  pid=11933 comm="syz.2.1513" scontext=system_u:system_r:kernel_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  421.227930][T11899] hsr_slave_0: entered promiscuous mode
[  421.238056][T11899] hsr_slave_1: entered promiscuous mode
[  423.222195][ T5836] Bluetooth: hci0: command tx timeout
[  423.261539][T11974] netlink: 552 bytes leftover after parsing attributes in process `syz.5.1523'.
[  423.325471][T11978] loop2: detected capacity change from 0 to 7
[  423.334510][T11978]  loop2: [POWERTEC] p1
[  423.339023][T11978] loop2: p1 start 1869770799 is beyond EOD, truncated
[  425.302260][ T5836] Bluetooth: hci0: command tx timeout
[  427.383705][ T5836] Bluetooth: hci0: command tx timeout
[  437.615580][   T53] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  437.627199][   T53] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  437.628491][ T5832] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  437.642543][   T53] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  437.646824][ T5832] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  437.652979][   T53] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  437.660496][ T5832] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  437.665092][   T53] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  437.671891][ T5832] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  437.680325][   T53] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  438.484817][ T5820] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  438.496080][ T5820] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  438.506917][ T5820] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  438.515300][ T5820] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  438.524461][ T5820] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  439.491134][ T5820] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[  439.500467][ T5820] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[  439.508713][ T5820] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[  439.519288][ T5820] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[  439.527903][ T5820] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[  439.706149][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  439.712550][ T5832] Bluetooth: hci6: command tx timeout
[  439.712699][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  439.782230][ T5832] Bluetooth: hci7: command tx timeout
[  440.583225][ T5832] Bluetooth: hci8: command tx timeout
[  441.552314][ T5832] Bluetooth: hci9: command tx timeout
[  441.783160][ T5832] Bluetooth: hci6: command tx timeout
[  441.862244][ T5832] Bluetooth: hci7: command tx timeout
[  442.662246][ T5832] Bluetooth: hci8: command tx timeout
[  443.622233][ T5832] Bluetooth: hci9: command tx timeout
[  443.862382][ T5832] Bluetooth: hci6: command tx timeout
[  443.942266][ T5832] Bluetooth: hci7: command tx timeout
[  444.742313][ T5832] Bluetooth: hci8: command tx timeout
[  445.702259][ T5832] Bluetooth: hci9: command tx timeout
[  445.942223][ T5832] Bluetooth: hci6: command tx timeout
[  446.022250][ T5832] Bluetooth: hci7: command tx timeout
[  446.822335][ T5832] Bluetooth: hci8: command tx timeout
[  447.782186][ T5832] Bluetooth: hci9: command tx timeout
[  478.548826][ T5820] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[  478.558233][ T5820] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[  478.568349][ T5820] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[  478.578218][ T5820] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[  478.585898][ T5820] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[  480.663115][ T5820] Bluetooth: hci10: command tx timeout
[  482.752180][ T5820] Bluetooth: hci10: command tx timeout
[  484.822327][ T5820] Bluetooth: hci10: command tx timeout
[  486.902221][ T5820] Bluetooth: hci10: command tx timeout
[  492.982215][ T5832] Bluetooth: hci5: command 0x0405 tx timeout
[  497.641250][ T5832] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[  497.651077][ T5832] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[  497.661752][ T5832] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[  497.670601][ T5832] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[  497.681593][   T53] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1
[  497.694197][ T5836] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[  497.694255][   T53] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9
[  497.719804][ T5836] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9
[  497.729214][ T5836] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4
[  497.738094][ T5836] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2
[  498.581169][ T5836] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1
[  498.591029][ T5836] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9
[  498.601609][ T5836] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9
[  498.610497][ T5836] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4
[  498.618228][ T5836] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2
[  499.702178][ T5836] Bluetooth: hci11: command tx timeout
[  499.782349][ T5836] Bluetooth: hci12: command tx timeout
[  500.051234][ T5832] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1
[  500.061207][ T5832] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9
[  500.069455][ T5832] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9
[  500.078225][ T5832] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4
[  500.088369][ T5832] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2
[  500.663257][ T5836] Bluetooth: hci13: command tx timeout
[  501.146076][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  501.152424][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  501.782311][ T5836] Bluetooth: hci11: command tx timeout
[  501.862232][ T5836] Bluetooth: hci12: command tx timeout
[  502.182251][ T5836] Bluetooth: hci14: command tx timeout
[  502.742425][ T5836] Bluetooth: hci13: command tx timeout
[  503.862330][ T5836] Bluetooth: hci11: command tx timeout
[  503.942237][ T5836] Bluetooth: hci12: command tx timeout
[  504.262264][ T5836] Bluetooth: hci14: command tx timeout
[  504.822185][ T5836] Bluetooth: hci13: command tx timeout
[  505.942191][ T5836] Bluetooth: hci11: command tx timeout
[  506.022342][ T5836] Bluetooth: hci12: command tx timeout
[  506.342162][ T5836] Bluetooth: hci14: command tx timeout
[  506.902884][ T5836] Bluetooth: hci13: command tx timeout
[  508.422208][ T5836] Bluetooth: hci14: command tx timeout
[  539.096412][ T5832] Bluetooth: hci15: unexpected cc 0x0c03 length: 249 > 1
[  539.109148][ T5832] Bluetooth: hci15: unexpected cc 0x1003 length: 249 > 9
[  539.118551][ T5832] Bluetooth: hci15: unexpected cc 0x1001 length: 249 > 9
[  539.127869][ T5832] Bluetooth: hci15: unexpected cc 0x0c23 length: 249 > 4
[  539.137535][ T5832] Bluetooth: hci15: unexpected cc 0x0c38 length: 249 > 2
[  541.222277][ T5836] Bluetooth: hci15: command tx timeout
[  543.302181][ T5836] Bluetooth: hci15: command tx timeout
[  544.182450][ T5836] Bluetooth: hci0: command 0x0406 tx timeout
[  545.382229][ T5832] Bluetooth: hci15: command tx timeout
[  547.462185][ T5832] Bluetooth: hci15: command tx timeout
[  549.782276][   T31] INFO: task kworker/1:7:5899 blocked for more than 143 seconds.
[  549.790003][   T31]       Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0
[  549.798015][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  549.806761][   T31] task:kworker/1:7     state:D stack:22232 pid:5899  tgid:5899  ppid:2      task_flags:0x4288060 flags:0x00004000
[  549.818805][   T31] Workqueue: md_misc mddev_delayed_delete
[  549.824550][   T31] Call Trace:
[  549.827816][   T31]  <TASK>
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  549.830727][   T31]  __schedule+0x116f/0x5de0
[  549.834842][   T30] audit: type=1400 audit(1745279131.683:795): avc:  denied  { write } for  pid=5808 comm="syz-executor" path="pipe:[4543]" dev="pipefs" ino=4543 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[  549.835515][   T31]  ? __pfx___schedule+0x10/0x10
[  549.864745][   T31]  ? preempt_schedule_thunk+0x16/0x30
[  549.870150][   T31]  ? find_held_lock+0x2b/0x80
[  549.875080][   T31]  ? schedule+0x2d7/0x3a0
[  549.879601][   T31]  schedule+0xe7/0x3a0
[  549.884622][   T31]  schedule_timeout+0x257/0x290
[  549.922095][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[  549.927570][   T31]  ? mark_held_locks+0x49/0x80
[  549.938537][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  549.943915][   T31]  __wait_for_common+0x2fc/0x4e0
[  549.948867][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[  549.954410][   T31]  ? __pfx___wait_for_common+0x10/0x10
[  549.959896][   T31]  ? devtmpfs_submit_req+0x94/0x100
[  549.965170][   T31]  devtmpfs_submit_req+0xa8/0x100
[  549.970471][   T31]  devtmpfs_delete_node+0xf6/0x160
[  549.976627][   T31]  ? __pfx_devtmpfs_delete_node+0x10/0x10
[  549.982484][   T31]  ? __call_rcu_common.constprop.0+0x3e5/0x9f0
[  549.989000][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  549.994307][   T31]  ? kernfs_put+0x4e/0x60
[  549.998638][   T31]  ? sysfs_remove_group+0xc6/0x180
[  550.003812][   T31]  device_del+0x734/0x9f0
[  550.008155][   T31]  ? __pfx_device_del+0x10/0x10
[  550.013053][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  550.018263][   T31]  ? _raw_spin_unlock_irq+0x2e/0x50
[  550.023592][   T31]  del_gendisk+0x486/0xc40
[  550.028038][   T31]  ? __pfx_del_gendisk+0x10/0x10
[  550.033215][   T31]  ? kernfs_put.part.0+0x18b/0x630
[  550.038344][   T31]  md_kobj_release+0xb2/0x100
[  550.043105][   T31]  kobject_put+0x1e4/0x5a0
[  550.047531][   T31]  process_one_work+0x9cc/0x1b70
[  550.052500][   T31]  ? __pfx_disk_events_workfn+0x10/0x10
[  550.058046][   T31]  ? __pfx_process_one_work+0x10/0x10
[  550.063595][   T31]  ? assign_work+0x1a0/0x250
[  550.068181][   T31]  worker_thread+0x6c8/0xf10
[  550.072833][   T31]  ? __kthread_parkme+0x19e/0x250
[  550.077862][   T31]  ? __pfx_worker_thread+0x10/0x10
[  550.083832][   T31]  kthread+0x3c2/0x780
[  550.088249][   T31]  ? __pfx_kthread+0x10/0x10
[  550.092870][   T31]  ? __pfx_kthread+0x10/0x10
[  550.097456][   T31]  ? __pfx_kthread+0x10/0x10
[  550.102021][   T31]  ? __pfx_kthread+0x10/0x10
[  550.106700][   T31]  ? rcu_is_watching+0x12/0xc0
[  550.111461][   T31]  ? __pfx_kthread+0x10/0x10
[  550.116143][   T31]  ret_from_fork+0x45/0x80
[  550.120562][   T31]  ? __pfx_kthread+0x10/0x10
[  550.125216][   T31]  ret_from_fork_asm+0x1a/0x30
[  550.129987][   T31]  </TASK>
[  550.133087][   T31] INFO: task syz.1.1405:11612 blocked for more than 143 seconds.
[  550.140792][   T31]       Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0
[  550.148890][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  550.160225][   T31] task:syz.1.1405      state:D stack:28984 pid:11612 tgid:11607 ppid:5821   task_flags:0x400040 flags:0x00000004
[  550.172176][   T31] Call Trace:
[  550.175446][   T31]  <TASK>
[  550.178357][   T31]  __schedule+0x116f/0x5de0
[  550.182959][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  550.187896][   T31]  ? __pfx___schedule+0x10/0x10
[  550.193283][   T31]  ? find_held_lock+0x2b/0x80
[  550.197974][   T31]  ? schedule+0x2d7/0x3a0
[  550.202343][   T31]  schedule+0xe7/0x3a0
[  550.206422][   T31]  schedule_preempt_disabled+0x13/0x30
[  550.211860][   T31]  rwsem_down_read_slowpath+0x62f/0xb60
[  550.217429][   T31]  ? __pfx_rwsem_down_read_slowpath+0x10/0x10
[  550.223576][   T31]  ? __pfx___might_resched+0x10/0x10
[  550.228886][   T31]  ? find_held_lock+0x2b/0x80
[  550.233600][   T31]  down_read+0xef/0x480
[  550.237762][   T31]  ? mnt_get_write_access+0x54/0x300
[  550.243091][   T31]  ? __pfx_down_read+0x10/0x10
[  550.247871][   T31]  ? mnt_get_write_access+0x20c/0x300
[  550.253506][   T31]  path_openat+0x88a/0x2d40
[  550.258018][   T31]  ? __pfx_path_openat+0x10/0x10
[  550.263128][   T31]  do_filp_open+0x20b/0x470
[  550.267626][   T31]  ? __pfx_do_filp_open+0x10/0x10
[  550.272687][   T31]  ? alloc_fd+0x471/0x7d0
[  550.277047][   T31]  do_sys_openat2+0x11b/0x1d0
[  550.281725][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[  550.286973][   T31]  __x64_sys_openat+0x174/0x210
[  550.291823][   T31]  ? __pfx___x64_sys_openat+0x10/0x10
[  550.297584][   T31]  ? do_user_addr_fault+0x843/0x1370
[  550.302931][   T31]  do_syscall_64+0xcd/0x260
[  550.307447][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  550.313381][   T31] RIP: 0033:0x7f42c6d8cad0
[  550.317794][   T31] RSP: 002b:00007f42c7ba5b70 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  550.326477][   T31] RAX: ffffffffffffffda RBX: 0000000000008101 RCX: 00007f42c6d8cad0
[  550.334611][   T31] RDX: 0000000000008101 RSI: 00007f42c7ba5c10 RDI: 00000000ffffff9c
[  550.342661][   T31] RBP: 00007f42c7ba5c10 R08: 0000000000000000 R09: 002367732f766564
[  550.350634][   T31] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  550.358793][   T31] R13: 0000000000000000 R14: 00007f42c6fb6080 R15: 00007ffd16873bb8
[  550.366805][   T31]  </TASK>
[  550.369833][   T31] 
[  550.369833][   T31] Showing all locks held in the system:
[  550.379788][   T31] 2 locks held by kdevtmpfs/26:
[  550.384694][   T31]  #0: ffff88801c6d8950 (&type->i_mutex_dir_key/1){+.+.}-{4:4}, at: __kern_path_locked+0x132/0x2a0
[  550.395781][   T31]  #1: ffffffff8eef4368 (major_names_lock){+.+.}-{4:4}, at: blk_probe_dev+0x25/0x1a0
[  550.405391][   T31] 1 lock held by khungtaskd/31:
[  550.410235][   T31]  #0: ffffffff8e3bf5c0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0
[  550.420164][   T31] 3 locks held by kworker/u8:4/61:
[  550.425533][   T31]  #0: ffff88801b481148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[  550.437081][   T31]  #1: ffffc9000213fd18 ((linkwatch_work).work){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[  550.447489][   T31]  #2: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: linkwatch_event+0x51/0xc0
[  550.456718][   T31] 3 locks held by kworker/1:2/971:
[  550.461814][   T31]  #0: ffff88801b478d48 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[  550.472298][   T31]  #1: ffffc90003bd7d18 (deferred_process_work){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[  550.482696][   T31]  #2: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: switchdev_deferred_process_work+0xe/0x20
[  550.493138][   T31] 2 locks held by getty/5582:
[  550.498102][   T31]  #0: ffff888031ae30a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[  550.508022][   T31]  #1: ffffc9000330b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x14f0
[  550.518205][   T31] 2 locks held by kworker/1:7/5899:
[  550.523421][   T31]  #0: ffff8880222e2548 ((wq_completion)md_misc){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[  550.533996][   T31]  #1: ffffc900045cfd18 ((work_completion)(&mddev->del_work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[  550.545634][   T31] 3 locks held by kworker/0:7/5933:
[  550.550821][   T31]  #0: ffff8880222e1948 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[  550.561653][   T31]  #1: ffffc90002f87d18 ((work_completion)(&hub->events)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[  550.572929][   T31]  #2: ffff888029038198 (&dev->mutex){....}-{4:4}, at: hub_event+0x1c0/0x4fa0
[  550.581819][   T31] 3 locks held by kworker/u8:12/5997:
[  550.587266][   T31]  #0: ffff88814cfb6148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[  550.598356][   T31]  #1: ffffc90002fc7d18 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[  550.611829][   T31]  #2: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: addrconf_verify_work+0x12/0x30
[  550.621390][   T31] 2 locks held by syz.1.1405/11612:
[  550.626600][   T31]  #0: ffff88814128e420 (sb_writers){.+.+}-{0:0}, at: path_openat+0x1f3e/0x2d40
[  550.635675][   T31]  #1: ffff88801c6d8950 (&type->i_mutex_dir_key#2){++++}-{4:4}, at: path_openat+0x88a/0x2d40
[  550.645883][   T31] 2 locks held by syz-executor/11899:
[  550.651321][   T31]  #0: ffffffff90868640 (&ops->srcu#2){.+.+}-{0:0}, at: rtnl_link_ops_get+0x113/0x2c0
[  550.660920][   T31]  #1: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x600/0x2000
[  550.670054][   T31] 1 lock held by syz.2.1519/11956:
[  550.675187][   T31]  #0: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: dev_ioctl+0x212/0x10e0
[  550.684013][   T31] 1 lock held by syz.2.1519/11964:
[  550.689112][   T31]  #0: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: dev_ioctl+0x212/0x10e0
[  550.697931][   T31] 1 lock held by syz.3.1518/11958:
[  550.703508][   T31]  #0: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: dev_ioctl+0x212/0x10e0
[  550.712350][   T31] 1 lock held by syz.3.1518/11962:
[  550.717472][   T31]  #0: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: dev_ioctl+0x212/0x10e0
[  550.726317][   T31] 2 locks held by syz.5.1523/11974:
[  550.731497][   T31]  #0: ffffffff90883ca0 (&ops->srcu#2){.+.+}-{0:0}, at: rtnl_link_ops_get+0x113/0x2c0
[  550.741109][   T31]  #1: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x600/0x2000
[  550.750197][   T31] 1 lock held by syz.0.1527/11986:
[  550.755358][   T31]  #0: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: dev_ioctl+0x1a1/0x10e0
[  550.764212][   T31] 1 lock held by syz-executor/11991:
[  550.769487][   T31]  #0: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540
[  550.778997][   T31] 1 lock held by syz-executor/11993:
[  550.784295][   T31]  #0: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540
[  550.793719][   T31] 1 lock held by syz-executor/11999:
[  550.798984][   T31]  #0: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540
[  550.808778][   T31] 1 lock held by syz-executor/12002:
[  550.814108][   T31]  #0: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540
[  550.823546][   T31] 1 lock held by syz-executor/12007:
[  550.828802][   T31]  #0: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540
[  550.838328][   T31] 1 lock held by syz-executor/12019:
[  550.843644][   T31]  #0: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540
[  550.853238][   T31] 1 lock held by syz-executor/12022:
[  550.858518][   T31]  #0: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540
[  550.868250][   T31] 1 lock held by syz-executor/12027:
[  550.873754][   T31]  #0: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540
[  550.883204][   T31] 1 lock held by syz-executor/12031:
[  550.888460][   T31]  #0: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540
[  550.897900][   T31] 1 lock held by syz-executor/12037:
[  550.903217][   T31]  #0: ffffffff9012ae68 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540
[  550.913568][   T31] 
[  550.915904][   T31] =============================================
[  550.915904][   T31] 
[  550.924392][   T31] NMI backtrace for cpu 0
[  550.924404][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0 PREEMPT(full) 
[  550.924423][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  550.924432][   T31] Call Trace:
[  550.924438][   T31]  <TASK>
[  550.924443][   T31]  dump_stack_lvl+0x116/0x1f0
[  550.924469][   T31]  nmi_cpu_backtrace+0x27b/0x390
[  550.924486][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  550.924503][   T31]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[  550.924522][   T31]  watchdog+0xf70/0x12c0
[  550.924543][   T31]  ? __pfx_watchdog+0x10/0x10
[  550.924558][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  550.924581][   T31]  ? __kthread_parkme+0x19e/0x250
[  550.924607][   T31]  ? __pfx_watchdog+0x10/0x10
[  550.924623][   T31]  kthread+0x3c2/0x780
[  550.924640][   T31]  ? __pfx_kthread+0x10/0x10
[  550.924656][   T31]  ? __pfx_kthread+0x10/0x10
[  550.924672][   T31]  ? __pfx_kthread+0x10/0x10
[  550.924688][   T31]  ? __pfx_kthread+0x10/0x10
[  550.924704][   T31]  ? rcu_is_watching+0x12/0xc0
[  550.924727][   T31]  ? __pfx_kthread+0x10/0x10
[  550.924744][   T31]  ret_from_fork+0x45/0x80
[  550.924762][   T31]  ? __pfx_kthread+0x10/0x10
[  550.924778][   T31]  ret_from_fork_asm+0x1a/0x30
[  550.924813][   T31]  </TASK>
[  550.924819][   T31] Sending NMI from CPU 0 to CPUs 1:
[  551.057164][    C1] NMI backtrace for cpu 1
[  551.057176][    C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0 PREEMPT(full) 
[  551.057193][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  551.057200][    C1] RIP: 0010:pv_native_safe_halt+0xf/0x20
[  551.057220][    C1] Code: 35 5d 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d b3 4a 17 00 fb f4 <c3> cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90
[  551.057232][    C1] RSP: 0018:ffffc90000197df8 EFLAGS: 000002c6
[  551.057244][    C1] RAX: 000000000178652b RBX: 0000000000000001 RCX: ffffffff8b72a419
[  551.057252][    C1] RDX: 0000000000000000 RSI: ffffffff8dbef846 RDI: ffffffff8bf46540
[  551.057260][    C1] RBP: ffffed1003b5a488 R08: 0000000000000001 R09: ffffed10170a65bd
[  551.057267][    C1] R10: ffff8880b8532deb R11: 0000000000000000 R12: 0000000000000001
[  551.057275][    C1] R13: ffff88801dad2440 R14: ffffffff90864910 R15: 0000000000000000
[  551.057288][    C1] FS:  0000000000000000(0000) GS:ffff888124ab2000(0000) knlGS:0000000000000000
[  551.057301][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  551.057309][    C1] CR2: 00007f4cfd2e7d60 CR3: 000000000e180000 CR4: 00000000003526f0
[  551.057317][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  551.057325][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  551.057332][    C1] Call Trace:
[  551.057337][    C1]  <TASK>
[  551.057341][    C1]  default_idle+0x13/0x20
[  551.057359][    C1]  default_idle_call+0x6d/0xb0
[  551.057376][    C1]  do_idle+0x391/0x510
[  551.057394][    C1]  ? __pfx_do_idle+0x10/0x10
[  551.057409][    C1]  ? trace_sched_exit_tp+0x31/0x130
[  551.057429][    C1]  cpu_startup_entry+0x4f/0x60
[  551.057445][    C1]  start_secondary+0x21d/0x2b0
[  551.057457][    C1]  ? __pfx_start_secondary+0x10/0x10
[  551.057471][    C1]  common_startup_64+0x13e/0x148
[  551.057492][    C1]  </TASK>
[  551.058155][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[  551.252998][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0 PREEMPT(full) 
[  551.264800][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  551.274848][   T31] Call Trace:
[  551.278114][   T31]  <TASK>
[  551.281043][   T31]  dump_stack_lvl+0x3d/0x1f0
[  551.285632][   T31]  panic+0x71c/0x800
[  551.289520][   T31]  ? __pfx_panic+0x10/0x10
[  551.293916][   T31]  ? preempt_schedule_thunk+0x16/0x30
[  551.299274][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  551.305244][   T31]  ? preempt_schedule_thunk+0x16/0x30
[  551.310597][   T31]  ? watchdog+0xdda/0x12c0
[  551.315342][   T31]  ? watchdog+0xdcd/0x12c0
[  551.319747][   T31]  watchdog+0xdeb/0x12c0
[  551.323978][   T31]  ? __pfx_watchdog+0x10/0x10
[  551.328635][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  551.333821][   T31]  ? __kthread_parkme+0x19e/0x250
[  551.338851][   T31]  ? __pfx_watchdog+0x10/0x10
[  551.343518][   T31]  kthread+0x3c2/0x780
[  551.347570][   T31]  ? __pfx_kthread+0x10/0x10
[  551.352156][   T31]  ? __pfx_kthread+0x10/0x10
[  551.356727][   T31]  ? __pfx_kthread+0x10/0x10
[  551.361296][   T31]  ? __pfx_kthread+0x10/0x10
[  551.365870][   T31]  ? rcu_is_watching+0x12/0xc0
[  551.370618][   T31]  ? __pfx_kthread+0x10/0x10
[  551.375195][   T31]  ret_from_fork+0x45/0x80
[  551.379592][   T31]  ? __pfx_kthread+0x10/0x10
[  551.384164][   T31]  ret_from_fork_asm+0x1a/0x30
[  551.388925][   T31]  </TASK>
[  551.392033][   T31] Kernel Offset: disabled
[  551.396341][   T31] Rebooting in 86400 seconds..