last executing test programs:

6m17.406004969s ago: executing program 0 (id=4448):
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="4c000000020603000000000000000000000000001400078008001240000000000500150002000000050001000600000005000500020000000500040000000000090002"], 0x4c}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x6, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200e19}, 0x94)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x7, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffff7fff}, 0x94)
syz_emit_ethernet(0x3c, &(0x7f0000000000)=ANY=[], 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000050000080900010073797a30000000005c000000030a03000000000000000000050000000900010073797a30000000000900030073797a300000000008000c40000000032800048008000240000000120800014000000000140004"], 0xa4}}, 0x0)

6m17.024226859s ago: executing program 0 (id=4451):
sendmsg$IPCTNL_MSG_EXP_DELETE(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xd1}, 0x50)
sendmsg$ETHTOOL_MSG_DEBUG_GET(0xffffffffffffffff, &(0x7f0000000d40)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x10010002}, 0xc, &(0x7f0000000c80)={&(0x7f00000008c0)=ANY=[@ANYRES16, @ANYRES32, @ANYRESDEC, @ANYRES8, @ANYRES32, @ANYBLOB="400001801400020070696d367265673000000000000000001400020073797a5f74756e", @ANYRES8, @ANYRES32, @ANYBLOB="b39487ce57695430d927980302b4cc2b384450befffac2d74e7f09b6eab8c401b0270bb64370f5fc9f059290abcd02c1860493cba1de7bc6ecd12ca51b7f564258f5bc71ac337e17056a4d604089fe4d62de21aa1ee9fefcdcea14be7cde39bb656366e22a822683b1bb74b6fbb7f2dcb69c2b50c1334eeecfa3d0a988a5895abed7957094d895633afad1c60579108c2b4412"], 0x17c}, 0x1, 0x0, 0x0, 0x4008004}, 0x20000080)
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="2c385a7af3be", 0x6)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {0x0}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x0)

6m16.817138694s ago: executing program 0 (id=4452):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x0, &(0x7f0000000100)})
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x2a05404, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x262)

6m16.248497083s ago: executing program 0 (id=4453):
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x4000)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc1}, 0xc0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0xf, 0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x20a02, 0x0)
syz_init_net_socket$x25(0x9, 0x5, 0x0) (fail_nth: 1)
capset(0x0, 0x0)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
listen(r2, 0x3e)
r3 = fsopen(0x0, 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x1, 0x0)
fchdir(r4)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000002280)=[{{&(0x7f0000000ac0)={0xa, 0x4e20, 0x6, @local, 0x2}, 0x1c, 0x0}}], 0x1, 0x28010015)

6m15.995629162s ago: executing program 0 (id=4454):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000040)={'batadv0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000740)=ANY=[@ANYBLOB="3c00000013000100"/20, @ANYRES32=0x0, @ANYBLOB="00000000822a000008000a009dd54ceb579074b371c45107d8f9195d94fbb41500d0d4d50449689959f9623fa6b4bb93d239d8aa1d1f6ff9e9168b9acda139d01a40b5a3fc00dd1af5b4bd23f29a47ce270445c15800f09058fedbd4dc4b42", @ANYRES32=r2, @ANYBLOB="140035006272696467655f736c6176655f300000"], 0x3c}}, 0x0)
syz_open_dev$sndctrl(0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_role_change={{0x12, 0x8}, {0xcb, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x8}}}, 0xb)
sched_setaffinity(0x0, 0x8, &(0x7f0000000580)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000001a40)=""/102392, 0x18ff8)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
r4 = syz_io_uring_setup(0x6cf2, &(0x7f0000000280)={0x0, 0x10008cc8, 0x10100, 0x6, 0x10b}, &(0x7f0000000080), &(0x7f0000000100), 0x0)
io_uring_enter(r4, 0x7a98, 0x0, 0x0, 0x0, 0xfffffffffffffc76)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, &(0x7f0000000180)='rootcontext', &(0x7f0000000440)='5\xfd\x04\xc6\xc9]\v\xd6S9q\x0f#\x93\x9d\xeb\x00\xcf\xb2~9*\xa9\x1d:\x06u46N\xd93\xe1\xa2\x05\x83Z\xbc\xbeT\x16\xab\xfb=4\xa6\x10,\"\xee\xf8o+\x02\xd8\xaft_\r\x1d\"\xc8\\k\xcc4\x96\xdbA\x02[\x16\xb4\xca\xa5n\x87\xdb\xb3\x1f\xbb\xc0\x9f\xc2\x9e\t[\xba\x9e\xfd\xc76#\x8f\xc6\xe7\x11\x8fL\xd97<cAZR\n w\xe6\x1c\xf0(\x96H\x88\x00\xd3\x1c\x16cj\x10\xd8\x92\xc9ad\xc0aR\x12\xd3\xc2J\xcb\x9a\xa5\xce#{e\xd3\x11\xc5]\xb4F1\xfb\xe6\xd4T\v\x87\x04\xcf\b.\xcaO\x04\x0f\x062\xcaL\x81\xa6\xbbp\xd3\xc6$4t (W\x92nr\xbe,\b\xdb\x7f[', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
getpgid(0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = add_key$keyring(&(0x7f0000000540), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r6, &(0x7f0000000200)='asymmetric\x00', &(0x7f0000000140)=@secondary)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="2c0000004000a5012bbd700000000000047c00000400c2800c0001800600060008"], 0x2c}, 0x1, 0x0, 0x0, 0x4048011}, 0x44000)
clock_adjtime(0x3, &(0x7f0000004dc0)={0xb, 0x400000000045, 0xffffffff80000000, 0x80006, 0x80000000, 0x7cca, 0x6, 0x5, 0xffffffffffffffc0, 0x4, 0xd, 0x7, 0xf, 0x8c, 0xd01, 0x0, 0x4, 0x40000080008, 0x7, 0x8000, 0x2, 0x7, 0x1, 0x9016, 0x11, 0x8000008})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)

6m15.72609398s ago: executing program 32 (id=4454):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000040)={'batadv0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000740)=ANY=[@ANYBLOB="3c00000013000100"/20, @ANYRES32=0x0, @ANYBLOB="00000000822a000008000a009dd54ceb579074b371c45107d8f9195d94fbb41500d0d4d50449689959f9623fa6b4bb93d239d8aa1d1f6ff9e9168b9acda139d01a40b5a3fc00dd1af5b4bd23f29a47ce270445c15800f09058fedbd4dc4b42", @ANYRES32=r2, @ANYBLOB="140035006272696467655f736c6176655f300000"], 0x3c}}, 0x0)
syz_open_dev$sndctrl(0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_role_change={{0x12, 0x8}, {0xcb, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x8}}}, 0xb)
sched_setaffinity(0x0, 0x8, &(0x7f0000000580)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000001a40)=""/102392, 0x18ff8)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
r4 = syz_io_uring_setup(0x6cf2, &(0x7f0000000280)={0x0, 0x10008cc8, 0x10100, 0x6, 0x10b}, &(0x7f0000000080), &(0x7f0000000100), 0x0)
io_uring_enter(r4, 0x7a98, 0x0, 0x0, 0x0, 0xfffffffffffffc76)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, &(0x7f0000000180)='rootcontext', &(0x7f0000000440)='5\xfd\x04\xc6\xc9]\v\xd6S9q\x0f#\x93\x9d\xeb\x00\xcf\xb2~9*\xa9\x1d:\x06u46N\xd93\xe1\xa2\x05\x83Z\xbc\xbeT\x16\xab\xfb=4\xa6\x10,\"\xee\xf8o+\x02\xd8\xaft_\r\x1d\"\xc8\\k\xcc4\x96\xdbA\x02[\x16\xb4\xca\xa5n\x87\xdb\xb3\x1f\xbb\xc0\x9f\xc2\x9e\t[\xba\x9e\xfd\xc76#\x8f\xc6\xe7\x11\x8fL\xd97<cAZR\n w\xe6\x1c\xf0(\x96H\x88\x00\xd3\x1c\x16cj\x10\xd8\x92\xc9ad\xc0aR\x12\xd3\xc2J\xcb\x9a\xa5\xce#{e\xd3\x11\xc5]\xb4F1\xfb\xe6\xd4T\v\x87\x04\xcf\b.\xcaO\x04\x0f\x062\xcaL\x81\xa6\xbbp\xd3\xc6$4t (W\x92nr\xbe,\b\xdb\x7f[', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
getpgid(0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = add_key$keyring(&(0x7f0000000540), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r6, &(0x7f0000000200)='asymmetric\x00', &(0x7f0000000140)=@secondary)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="2c0000004000a5012bbd700000000000047c00000400c2800c0001800600060008"], 0x2c}, 0x1, 0x0, 0x0, 0x4048011}, 0x44000)
clock_adjtime(0x3, &(0x7f0000004dc0)={0xb, 0x400000000045, 0xffffffff80000000, 0x80006, 0x80000000, 0x7cca, 0x6, 0x5, 0xffffffffffffffc0, 0x4, 0xd, 0x7, 0xf, 0x8c, 0xd01, 0x0, 0x4, 0x40000080008, 0x7, 0x8000, 0x2, 0x7, 0x1, 0x9016, 0x11, 0x8000008})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)

1m1.335414253s ago: executing program 5 (id=5735):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2, 0x4)
r0 = openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x2000010, &(0x7f0000002140)=ANY=[])
read$FUSE(r0, &(0x7f000000c3c0)={0x2020}, 0x2020)
r1 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_SUBMITURB(r1, 0x802c550a, &(0x7f0000000280)=@urb_type_control={0x2, {0x2, 0x1}, 0x8, 0x20, 0x0, 0x0, 0x8, 0x3, 0x0, 0x7fff, 0x7, 0x0})
sendmsg$RDMA_NLDEV_CMD_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000002240)=ANY=[@ANYBLOB="10000000141401000200800007dbdf25110daf4a09e65fce293fda598019ad9b276b376cf847714a6c844bfb"], 0x10}, 0x1, 0x0, 0x0, 0x4000081}, 0x0)
r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x400, 0x0)
ioctl$RTC_SET_TIME(r2, 0x4024700a, 0x0)
creat(&(0x7f0000000080)='./file0\x00', 0x106)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_ADDRFORM(r3, 0x29, 0x1, &(0x7f0000000000), 0x4)
setsockopt$inet6_IPV6_HOPOPTS(r3, 0x29, 0x36, &(0x7f0000000180)=ANY=[], 0x8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f00000001c0)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1c0000005e00679a3601ffc4910700004f78d4c1a0731cccff"], 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
recvmmsg$unix(r7, &(0x7f0000002fc0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x42, 0x0)

50.892441711s ago: executing program 4 (id=5761):
r0 = socket$rds(0x15, 0x5, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000003a0001032dbd7010fadbdf2503"], 0x14}, 0x1, 0x0, 0x0, 0x448d3}, 0x0) (async)
sendmsg$nl_generic(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000003a0001032dbd7010fadbdf2503"], 0x14}, 0x1, 0x0, 0x0, 0x448d3}, 0x0)
setsockopt$RDS_CONG_MONITOR(r0, 0x114, 0xa, 0x0, 0x0) (async)
setsockopt$RDS_CONG_MONITOR(r0, 0x114, 0xa, 0x0, 0x0)
r2 = syz_open_dev$loop(&(0x7f0000000280), 0xffff, 0x14f600)
ioctl$LOOP_CONFIGURE(r2, 0xc0c0128e, 0x0)

50.652254378s ago: executing program 4 (id=5762):
sendmsg$IPCTNL_MSG_EXP_DELETE(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xd1}, 0x50)
sendmsg$ETHTOOL_MSG_DEBUG_GET(0xffffffffffffffff, &(0x7f0000000d40)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x10010002}, 0xc, &(0x7f0000000c80)={&(0x7f00000008c0)=ANY=[@ANYRES16, @ANYRES32, @ANYRESDEC, @ANYRES8, @ANYRES32, @ANYBLOB="400001801400020070696d367265673000000000000000001400020073797a5f74756e", @ANYRES8, @ANYRES32, @ANYBLOB="b39487ce57695430d927980302b4cc2b384450befffac2d74e7f09b6eab8c401b0270bb64370f5fc9f059290abcd02c1860493cba1de7bc6ecd12ca51b7f564258f5bc71ac337e17056a4d604089fe4d62de21aa1ee9fefcdcea14be7cde39bb656366e22a822683b1bb74b6fbb7f2"], 0x17c}, 0x1, 0x0, 0x0, 0x4008004}, 0x20000080)
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="2c385a7af3be", 0x6)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a", 0x27}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x0)

50.517980536s ago: executing program 5 (id=5763):
kexec_load(0x5, 0x4, &(0x7f00000005c0)=[{&(0x7f0000000100)="047715ac7141c111fab2fcda5de4dc8b278029bcb1bd17524f177856cac105f463c77e2d2ab44d875217dc82baa911f236f959fb9227524d4fe6b621a19823457d04c399283edbac755852623c82f7206d26e918a2981c8f68476969bf8c4bcd37ba24e4ba1683339879a11b854a7478f898805f327af12eaab8ac918c201b7f932e124796f1aba03e031312bd7e67403651abac282b310f420dbcdea31d52854783d6952a2a7b10f3e45715203107f8ce516d99c8c7db918e0989ef123cc524fa8ae0af5c952de542a268179439f62e20fb410df0a4c2e54ec355436d7cf9989fa7b13df2f67b414330e5cff90a", 0xee, 0x5, 0xffffffff}, {&(0x7f0000000200)="d8f3aabb28de3faf55566e010b6ef42f8002b91bf54d78caa3135bc4a5d30a8fd06d1e70130a8d2b505e9abe3aef1de2219df6f5f6c59d998200794f89eea832f53f0f9aa4c91322544bc7f07e8cdf4598c9879e4af2de4daca6cf629d11f9c6ebdccfeca156899a89ed0e619add00"/125, 0x7d, 0x5, 0x4}, {&(0x7f0000000340), 0x0, 0x100, 0x9}, {&(0x7f00000004c0), 0x0, 0x5, 0x6}], 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000100)={0x400, 0x33e, 0x30, 0x7ffffcff, 0x0, 0x4db, 0xf, 0x0, {0x4, 0x40}, {0x0, 0x1}, {0x0, 0x2}, {0x0, 0xffffffff, 0x1}, 0x0, 0x100, 0x1, 0x0, 0x0, 0x1, 0x0, 0xfffffc00, 0x0, 0x400, 0x0, 0x0, 0x21, 0x0, 0x0, 0x7})
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r0, 0xc400941d, &(0x7f00000001c0)={<r1=>0x0, 0x6, 0x5})
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b40)=ANY=[@ANYBLOB="0c0000000f510000000400000000da0600fe0f0000"], 0xfffffffffffffffe, 0x1000)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r0, 0xc400941d, &(0x7f00000005c0)={r1, 0x8, 0x284})
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000540), 0x82, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000016c0)={0x0, 0x0, &(0x7f00000000c0)=[{0x0}, {&(0x7f0000001700)="0c74c75350f4a590e15c61c7942348092734fe1863473bbce6798a60e9", 0x1d}], 0x2, 0x0, 0x0, 0x10}, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
syz_open_dev$dri(&(0x7f0000000180), 0x1, 0xc0400)
bind$alg(r4, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
syz_emit_vhci(&(0x7f0000000340)=ANY=[@ANYBLOB="040e33"], 0xd)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f00000004c0)=',8', 0x2)
r5 = accept4(r4, 0x0, 0x0, 0x800)
sendmmsg$alg(r5, &(0x7f0000000040), 0x0, 0x40800)
recvmsg(r5, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r6, &(0x7f0000000000)={0x0, 0x4, &(0x7f0000000080)=[{&(0x7f0000000200)="2e0400001c008102e00f80ecdb4cb9f207c804a00d00000088081afb0a0002000a0ada1b40d80800c500c50083b8", 0xfec9}], 0x1, 0x0, 0x0, 0x5865}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000840)={0x1, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r7 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
ioctl$sock_netdev_private(r6, 0x89fb, &(0x7f0000002840)="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")
r8 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000facb7d3252e4762d406c4636", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="01000000050000000100"/28], 0x50)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000ac0)={{r8}, &(0x7f0000000a40), &(0x7f0000000a80)='%ps    \x00'}, 0x20)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)

50.481053321s ago: executing program 4 (id=5765):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x2, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000)
syz_open_dev$evdev(&(0x7f0000000000), 0x3, 0x100)
r0 = fsopen(&(0x7f0000000080)='qnx4\x00', 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
ioprio_get$pid(0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x28383, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
r2 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/comedi4\x00', 0x20080, 0x0)
ioctl$COMEDI_UNLOCK(r2, 0x6406)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x0)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = socket(0x40000000015, 0x5, 0x0)
socket$qrtr(0x2a, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0))
connect$inet(r3, &(0x7f0000000040)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10)
bind$inet(r3, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
epoll_create1(0x0)
socket$inet6(0xa, 0x80003, 0x6)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x2, 0x3, 0xfffffffffffffffd, 0x400000, 0x0, 0xffffffffffffff1b, 0x7b}, 0x0, &(0x7f0000000280)={0x3fc, 0x0, 0x0, 0x1, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[], 0xc4}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
pselect6(0x40, &(0x7f0000000240)={0x0, 0x0, 0x7, 0x20000000080, 0x0, 0x4, 0x4, 0x7}, 0x0, &(0x7f00000002c0)={0x3ff, 0x400, 0xffffffffffffffff, 0x6, 0x4, 0xf, 0x4000000007d5}, 0x0, 0x0)
ioctl$XFS_IOC_FSGEOMETRY(r4, 0x8100587e, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)

47.890553338s ago: executing program 3 (id=5767):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@textreal={0x8, 0x0}], 0x1, 0x41, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b42b805000000b90f0000000f01d9e2e20f01c40f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07c74424000e000000c7442402b9000000c7442406000000000f011c240f01d90f20d835080000000f22d8", 0x49}], 0xaaaac2f, 0x47, 0x0, 0x0) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)
r3 = socket$igmp6(0xa, 0x3, 0x2) (async)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f0000000300)={0x0, 0x5, 0x0, 'queue1\x00', 0xe}) (async)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000700)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c"], 0x64}}, 0x0)
write$sndseq(r4, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r4, 0x4040534e, &(0x7f0000000040)={0x32b, @tick=0x440, 0xff, {}, 0x0, 0x0, 0x4b}) (async)
socket(0x6, 0x5, 0x9)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r5, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8) (async)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) (async)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r5, 0x84, 0x15, &(0x7f0000000080), 0x1) (async)
sendto$inet6(r5, &(0x7f0000000040)='l', 0x1, 0x0, &(0x7f0000000100)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendmmsg$sock(r5, &(0x7f0000004bc0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000180)="b8", 0x1}], 0x1}}], 0x1, 0x4000080)
setsockopt$MRT6_PIM(r3, 0x29, 0xcf, &(0x7f0000000080)=0x3, 0x4) (async)
sendmsg$DEVLINK_CMD_TRAP_SET(r1, &(0x7f0000000380)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0x9c, 0x0, 0x2, 0x70bd29, 0x25dfdbff, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}, {0x5, 0x83, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}, {0x5, 0x83, 0x1}}]}, 0x9c}, 0x1, 0x0, 0x0, 0x20008000}, 0x50c0)

47.556832832s ago: executing program 1 (id=5769):
socket$nl_route(0x10, 0x3, 0x0)
socket$inet(0x2, 0x1, 0x100)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
sendto(r0, &(0x7f0000000840), 0x0, 0x44145, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
fsopen(&(0x7f0000000bc0)='binder\x00', 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r5, 0x6, 0x8, &(0x7f0000000000)=0x6, 0x4)
getsockopt$inet6_tcp_buf(r5, 0x6, 0x8, 0x0, &(0x7f0000001040))
gettid()
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)

47.3699564s ago: executing program 4 (id=5770):
syz_usb_connect(0xe7af3cf0599a7105, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000d1d7a440041601801f44010203010902120001000000000904"], 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="440000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0d5975bc000000001c0012800c0001006d6163766c616e000c000280080004"], 0x44}}, 0x0)
r1 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x8dc3, 0x900)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000080)=0xffffbf7f)
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
ioctl$SNDCTL_TMR_TIMEBASE(0xffffffffffffffff, 0xc0045401, 0x0)
sendmsg$RDMA_NLDEV_CMD_SET(r2, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000001c0)={&(0x7f0000000280)={0x50, 0x1402, 0x20, 0x70bd2a, 0x25dbdbfe, "", [@RDMA_NLDEV_ATTR_DEV_DIM={0x5, 0x54, 0x1}, @RDMA_NLDEV_ATTR_DEV_DIM={0x5, 0x54, 0x1}, @RDMA_NLDEV_NET_NS_FD={0x8}, @RDMA_NLDEV_ATTR_DEV_NAME={0x9, 0x2, 'syz1\x00'}, @RDMA_NLDEV_ATTR_DEV_NAME={0x9, 0x2, 'syz1\x00'}, @RDMA_NLDEV_NET_NS_FD={0x8}, @RDMA_NLDEV_ATTR_DEV_DIM={0x5, 0x54, 0x1}]}, 0x50}, 0x1, 0x0, 0x0, 0x8840}, 0x4880)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000001ec0), 0xffffffffffffffff)
sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)={0x44, r4, 0xf03, 0x0, 0x0, {}, [@TIPC_NLA_SOCK={0x30, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0xfffffffffffffff6}, @TIPC_NLA_SOCK_CON={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8}, @TIPC_NLA_CON_FLAG, @TIPC_NLA_CON_FLAG={0x8}]}]}]}, 0x44}}, 0x0)
syz_usb_connect(0x5, 0x24, &(0x7f0000000c80)={{0x12, 0x1, 0x250, 0xe9, 0x97, 0x3f, 0x40, 0xc45, 0x800a, 0x5a9d, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x3, 0x81, 0x90, 0x98, "", [{{0x9, 0x4, 0xf9, 0x7, 0x0, 0x6, 0xc2, 0x45, 0xe}}]}}]}}, &(0x7f0000000d80)={0x0, 0x0, 0x0, 0x0})

47.35288213s ago: executing program 5 (id=5771):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0300002e00090027bd70000000000004000000480311802e"], 0x35c}, 0x1, 0x0, 0x0, 0x42804}, 0x4000010) (fail_nth: 2)

46.775351798s ago: executing program 5 (id=5772):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000240)={0x73622a85, 0x110a, 0x1})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000bc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0xf0, 0x0, 0x0, 0x0, 0x3000, 0x0, &(0x7f0000000200)={0x30, 0x30, 0x30}}}], 0x0, 0x0, 0x0})
r4 = syz_open_dev$video(&(0x7f0000000040), 0x8, 0x101840)
ioctl$VIDIOC_S_SELECTION(r4, 0xc040565f, &(0x7f0000000080)={0xa, 0x0, 0x1, {0xe7ff, 0x1, 0x406, 0x870}})

46.712893538s ago: executing program 3 (id=5774):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
mount$9p_virtio(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000), 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB='trans=virtio,debug=0x00000000000024a7,debug=0x000000000000000f,directio,mmap,cache=none,posixacl'])
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
syz_clone(0x0, 0x0, 0x3b, 0x0, 0x0, 0xffffffffffffffff)
lsm_list_modules(0x0, &(0x7f0000000080), 0x0)

46.363366549s ago: executing program 1 (id=5775):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
syz_clone(0x0, 0x0, 0x3b, 0x0, 0x0, 0xffffffffffffffff)
lsm_list_modules(0x0, &(0x7f0000000080), 0x0)

45.223409988s ago: executing program 3 (id=5776):
pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x800)
write$P9_RWRITE(r0, &(0x7f0000000100)={0xb, 0x77, 0x1, 0xc711}, 0xb)
r1 = syz_usb_connect(0x0, 0x1cb, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000122f0d4071040403dfe4000000010902b901010000003f0904"], 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r2, 0x8931, &(0x7f00000000c0)={'syz_tun\x00', @random="049578312ce6"})
r3 = socket$nl_route(0x10, 0x3, 0x0)
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000140)=<r4=>0x0, &(0x7f0000000180)=0x4)
sendmsg$nl_route_sched(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000001c0)=@newtaction={0xe8, 0x30, 0x1, 0x0, 0xffffffff, {0x0, 0x0, 0x1300}, [{0xd4, 0x1, [@m_mirred={0xd0, 0x1, 0x0, 0x0, {{0xb}, {0xa4, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x4, {{0x0, 0x6, 0x5, 0xffffff00, 0x7}, 0x2}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x2, 0x2, 0x6, 0x5, 0x4}, 0x3, r4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x6, 0x0, 0x1, 0x10, 0xf}, 0x2, r4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x81, 0x4, 0x2, 0xfffffff0, 0x2}, 0x1, r4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0xf, 0x5, 0xffffffffffffffff, 0x8, 0xf5}, 0x4, r4}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}]}]}, 0xe8}, 0x1, 0x0, 0x0, 0x2004c0c4}, 0x0)
syz_usb_control_io(r1, 0x0, 0x0)
syz_usb_control_io(r1, 0x0, 0x0)
syz_usb_control_io$printer(r1, 0x0, 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r1, 0x0, &(0x7f0000000080)={0x10, &(0x7f00000000c0)=ANY=[], 0x0, 0x0})
syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/ip6_mr_vif\x00')

44.994112187s ago: executing program 1 (id=5777):
syz_usb_connect$uac2(0x5, 0xa8, &(0x7f0000000000)=ANY=[@ANYBLOB="120110030000004082054c00400001020301090296000301053009080b03010107208c0904000000010120041d000708240a0001ff23000c24030207030004000700810904010000010220090501090002030b040825010000400400090402000001022000090402010101023000092402020400cc1c051024010201000400000008b8000000030905820908"], &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0})
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010008020000001800006600000008000300", @ANYRES32=r2], 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
syz_open_dev$sndmidi(0x0, 0x2, 0x141102)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioprio_set$uid(0x3, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x100)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
syz_io_uring_setup(0x2737, &(0x7f0000000240)={0x0, 0x1e84, 0x14021, 0x0, 0x2e5}, &(0x7f00000002c0), &(0x7f0000000300), &(0x7f00000003c0))
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r5 = open(&(0x7f0000000040)='./file0\x00', 0x84242, 0x1df2a23c5997fad6)
write$FUSE_CREATE_OPEN(r5, &(0x7f0000000180)={0xa0, 0x0, 0x0, {{0x4, 0x0, 0x5, 0x7, 0x3, 0xfffffffd, {0x400000080001, 0xfd, 0x20ff, 0x8, 0xe, 0xd615, 0x9, 0x3, 0xfffffffc, 0x6000, 0x0, 0x0, 0x0, 0x5, 0x7}}, {0x0, 0x13}}}, 0xa0)
sendfile(r5, r5, &(0x7f0000000080), 0x7f03)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0))

44.01228605s ago: executing program 4 (id=5778):
rename(0x0, &(0x7f00000000c0)='./file0/../file0/file0\x00')
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r0=>0x0})
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000540)={&(0x7f0000000680)={0x50, 0x0, 0x200, 0x70bd2d, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfff, 0x54}}}}, [@NL80211_ATTR_STA_TX_POWER_SETTING={0x5, 0x113, 0x1}, @NL80211_ATTR_VLAN_ID={0x6, 0x11a, 0x2}, @NL80211_ATTR_LOCAL_MESH_POWER_MODE={0x8, 0xa4, 0x1}, @NL80211_ATTR_STA_SUPPORTED_RATES={0x15, 0x13, [{0x6c, 0x1}, {0x2, 0x1}, {0x48, 0x1}, {0x1}, {0x1b, 0x1}, {0x16}, {0x16, 0x1}, {0x24, 0x1}, {0x12, 0x1}, {0x3, 0x1}, {0x1}, {0x30}, {0xf}, {0x24, 0x1}, {0xb, 0x1}, {0xc}, {0x12}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x20000000}, 0x20004080)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)={0x30, 0x0, 0x1, 0x70bd25, 0x0, {{0x2}, {@val={0x8, 0x3, r0}, @val={0xc, 0x99, {0x1, 0x51}}}}, [@chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x6}]]}, 0x30}, 0x1, 0x0, 0x0, 0x4c854}, 0x20040880)
r1 = socket$alg(0x26, 0x5, 0x0)
getsockopt$IPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000640)=ANY=[@ANYBLOB="736563757216ae2c69747900000000000000000000000000000000000000000000000004"], 0x0)
bind$alg(r1, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="2c235aa9c5", 0x5)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x51}], 0x1}, 0x0)
r3 = syz_usb_connect(0x0, 0x4a, &(0x7f0000000040)=ANY=[@ANYBLOB="120100005520f010402038b1420104000001090238000100000000090400000371055900090582eb1000000001020009050276"], 0x0)
syz_usb_control_io$cdc_ecm(r3, &(0x7f0000000140)={0x14, 0x0, &(0x7f0000000100)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)
syz_usb_ep_write$ath9k_ep1(r3, 0x82, 0xc38, &(0x7f0000000dc0)=ANY=[])

43.886672673s ago: executing program 2 (id=5779):
setresuid(0xee01, 0xee00, 0x0)
iopl(0x3)
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r0)
r1 = socket(0x28, 0x5, 0x0)
r2 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r2, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r2, 0x4)
connect$vsock_stream(r1, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYRES64=r1, @ANYRES8=r1], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r3}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)
shutdown(r1, 0x0)
recvfrom$unix(r1, 0x0, 0x0, 0x10120, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
setreuid(0xee01, 0xee00)

43.758140642s ago: executing program 2 (id=5780):
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad1", 0xab}], 0x2, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000440)=ANY=[@ANYBLOB="b4000000", @ANYRES16=r1, @ANYBLOB="01002dbd4e00fcdbdf252100000008000300", @ANYRES32=r2, @ANYBLOB="24002c80080000000700000004"], 0xb4}, 0x1, 0x0, 0x0, 0x4004}, 0x8800)

43.482356484s ago: executing program 2 (id=5781):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$VIDIOC_QUERYBUF(0xffffffffffffffff, 0xc0585609, &(0x7f00000000c0)=@userptr={0x5ada, 0xa, 0x4, 0x800, 0x2, {0x0, 0xea60}, {0x3, 0x2, 0x0, 0x1, 0x9, 0x52, "8ea1d51a"}, 0xffff0000, 0x2, {0x0}, 0x5})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="4400000010004b0400000000000000007a000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b0001006272696467650000140002800800080081000000060027"], 0x44}, 0x1, 0x0, 0x0, 0x24048004}, 0x4000)

43.315482993s ago: executing program 2 (id=5782):
copy_file_range(0xffffffffffffffff, &(0x7f0000000180)=0x1, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0xda9, &(0x7f0000000140)={0x0, 0x0, 0x13291, 0x0, 0x42c}, &(0x7f0000000100), &(0x7f0000000040), &(0x7f0000000000))
io_uring_enter(r0, 0x3, 0xffffffff, 0x7, 0x0, 0x0) (fail_nth: 1)

43.236340418s ago: executing program 2 (id=5783):
copy_file_range(0xffffffffffffffff, &(0x7f0000000180)=0x1, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0xda9, &(0x7f0000000140)={0x0, 0x0, 0x13291, 0x0, 0x42c}, &(0x7f0000000100), &(0x7f0000000040), &(0x7f0000000000))
r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000080), 0x80000, 0x0)
write$cgroup_devices(r1, &(0x7f00000001c0)={'c', ' *:* ', 'wm\x00'}, 0x9)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x41, &(0x7f0000000200)=0x632a, 0x4)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)={0x64, 0x0, 0x1, 0x401, 0x0, 0x1a14, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x1}]}, 0x64}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000006c0)={0x7c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @private=0xa010101}, {0x8, 0x2, @loopback}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_LABELS_MASK={0xc, 0x17, [0x7fff, 0x2]}, @CTA_SEQ_ADJ_REPLY={0x14, 0x4, 0x0, 0x1, [@CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x100}, @CTA_SEQADJ_OFFSET_BEFORE={0x8}]}]}, 0x7c}}, 0x0)
io_uring_enter(r0, 0x3, 0xffffffff, 0x7, 0x0, 0x0)

43.007212371s ago: executing program 2 (id=5784):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_connect$hid(0x5, 0x0, 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x10200, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
openat$cuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2e, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$netlink(0x10, 0x3, 0x0)
writev(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000040)="704bf5ddec082d38277cd599f3e5441a687947fd7c78c8861e08e5daf58a258cee52c82a6ad6668ef01187bb25c994504e8abaee6931b5bfc7b3e78d7e1323b0a754c830889d8148bfe33c6814205fee39a06aebd717b487c522743bea193b694a7e4e6d615efb7a8de7", 0x6a}, {0x0}, {&(0x7f0000000340)="a6c88dd6650a2a8f33642893043f799944e368913e91805e65f91cc6eae92034a6db3df004b6d35033298e15d7f6bd1c7dd17aff885f84790ac6c2dbc8199383ebb5dbb03c9a13c5bddc51df5796378d20f011229bbcbeddf437ea1b", 0x5c}], 0x3)
openat$vnet(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
r5 = socket$inet6(0xa, 0x1, 0x100)
ioctl$ifreq_SIOCGIFINDEX_team(r5, 0x8933, &(0x7f0000000140))
r6 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r6, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r6, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r6, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@dev={0xfe, 0x80, '\x00', 0x4}, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffa}, {}, 0x0, 0x0, 0x1}, {{@in6=@dev, 0x0, 0x32}, 0x0, @in=@private=0xa010100, 0x0, 0x0, 0x0, 0xb7, 0x2, 0xfffffffe}}, 0xe8)
sendmmsg(r6, &(0x7f0000007fc0), 0x800001d, 0x1c)
mount$afs(&(0x7f00000004c0)=ANY=[@ANYBLOB='#syz1.b'], &(0x7f0000000140)='./cgroup\x00', &(0x7f0000000240), 0x800040, &(0x7f0000000300)=ANY=[@ANYBLOB])

41.238526234s ago: executing program 3 (id=5785):
socket$nl_route(0x10, 0x3, 0x0)
socket$inet(0x2, 0x1, 0x100)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
sendto(r0, &(0x7f0000000840), 0x0, 0x44145, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
fsopen(&(0x7f0000000bc0)='binder\x00', 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r5, 0x6, 0x8, &(0x7f0000000000)=0x6, 0x4)
getsockopt$inet6_tcp_buf(r5, 0x6, 0x8, 0x0, &(0x7f0000001040))
gettid()
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)

41.197293571s ago: executing program 1 (id=5786):
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000300), 0x802, 0x0)
ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000480)={{0xfffc, 0x9, 0x0, 0x6}, 'syz0\x00', 0x3})
ioctl$UI_DEV_CREATE(r0, 0x5501)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ff4000/0xa000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f000068c000/0xc000)=nil, &(0x7f0000817000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r1 = io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0xc8a1, 0xc000, 0x8, 0x2bb})
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x12, 0x3, 0x0, &(0x7f0000000240)='syzkaller\x00', 0x80000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="16"], 0x50)
io_uring_enter(r1, 0x2219, 0x7721, 0x16, 0x0, 0x0)
r4 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000000)={'vxcan1\x00', <r5=>0x0})
bind$can_j1939(r4, &(0x7f00000000c0)={0x1d, r5}, 0x18)
connect$can_j1939(r4, &(0x7f0000000140)={0x1d, r5, 0x0, {0x1, 0xff, 0x4}}, 0x18)
r6 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000740), 0x4)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000800)=@bpf_tracing={0x1a, 0x2c, &(0x7f0000000500)=@raw=[@map_fd={0x18, 0x9, 0x1, 0x0, 0x1}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r3}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffff9}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @btf_id={0x18, 0x9, 0x3, 0x0, 0x4}, @map_val={0x18, 0xb, 0x2, 0x0, r3, 0x0, 0x0, 0x0, 0x3ca14650}, @alu={0x4, 0x0, 0xb, 0x8, 0x8, 0xfffffffffffffff4, 0x10}, @map_idx={0x18, 0x6, 0x5, 0x0, 0x8}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x3}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r3}}], &(0x7f0000000680)='GPL\x00', 0x6, 0x48, &(0x7f00000006c0)=""/72, 0x41000, 0x5, '\x00', r5, 0x18, r6, 0x8, &(0x7f0000000780)={0x9, 0x1}, 0x8, 0x10, &(0x7f00000007c0)={0x4, 0xe, 0x4, 0x2}, 0x10, 0x4e4d, r2, 0x0, 0x0, 0x0, 0x10, 0xfffffff8}, 0x94)
write$uinput_user_dev(r0, &(0x7f00000011c0)={'syz1\x00', {0x4, 0x8f6, 0x5, 0x22c1}, 0x20, [0x7ffffdff, 0x0, 0x7b, 0xf9c, 0x12, 0x4, 0x401, 0x6, 0x3, 0x2, 0x84, 0xd, 0x3, 0xe, 0x8, 0x5, 0x6, 0x5, 0x100000, 0xffffff01, 0x5, 0x3, 0x4, 0xfffffff8, 0x7, 0x4, 0x1, 0xc32, 0x4, 0x9a, 0xfffffff9, 0x1, 0x0, 0x100, 0xffff, 0xf, 0x0, 0xffff, 0x0, 0xfffffffe, 0x22741f72, 0xffff1d10, 0x10, 0x0, 0x7, 0x8, 0x4, 0x4, 0x4, 0xfe07, 0x8, 0x80000001, 0x4, 0x10000, 0x4, 0x4, 0x6, 0x4, 0x7, 0x5, 0x2, 0x5, 0x1, 0x9], [0x0, 0x5f264973, 0x4, 0x6, 0xfffffffa, 0x1000, 0x0, 0x9, 0x0, 0xa, 0x8e000, 0x6, 0x8, 0x4, 0x7fff, 0x3, 0xa, 0xa5c4, 0xf9c, 0x1, 0x4, 0x9, 0xfffff000, 0x76fd, 0x32f, 0xfffffff9, 0x400, 0xd4, 0x7, 0x6, 0x0, 0x88, 0x8, 0xd, 0x3, 0x3, 0x5, 0x1837, 0x7, 0x7, 0x1001, 0x8, 0x26, 0x2, 0x6, 0x7, 0x535bc285, 0x7, 0xb, 0x1, 0x9, 0x0, 0x4, 0x1, 0x800, 0x80000001, 0x5, 0x7, 0x2, 0x1, 0x1800, 0x1, 0x8, 0x7], [0x5, 0x7, 0x7, 0x2, 0x4af, 0x1, 0x9, 0x8, 0xfe, 0x6, 0x6beb, 0x5, 0x5, 0x8, 0x6, 0x5, 0x5, 0x10001, 0x3, 0x8f1d, 0x8, 0xc, 0x2, 0x8001, 0x9, 0x3, 0xa, 0x10001, 0xffffffff, 0x7, 0x9, 0x5, 0x4, 0x4, 0x1, 0x4, 0xb9, 0x8911, 0x2, 0x3ff, 0x10000, 0x154e, 0x8001, 0x3, 0xc7e8, 0x9, 0x4, 0x7, 0xb, 0x7, 0x1, 0x7, 0xc2df, 0x7fffffff, 0xffffff7f, 0x8001, 0x2, 0xc, 0x5, 0x4, 0x7fff, 0x1ff, 0x6, 0xa5], [0x0, 0x7fff, 0x9, 0x0, 0x3ff, 0xfffffff9, 0x4004, 0x2, 0x0, 0x7ff, 0x80000001, 0xff, 0x9, 0x9f51, 0xc52b, 0x6, 0x8c, 0xffffffff, 0x1ff, 0x3, 0x3, 0x8, 0x5, 0x2a2d778d, 0x7ff, 0x8, 0x8, 0x5, 0xff, 0x6, 0x6, 0x8, 0x2, 0xffffb50b, 0x2, 0x4, 0x5bf, 0xf19, 0x5, 0x6, 0xd8c6, 0x3b, 0x0, 0xffffff83, 0x30ab, 0x0, 0x94, 0x10000, 0x400, 0x4b4c8ba4, 0x6, 0x2, 0x7, 0x3e8a, 0x7, 0xd6e1, 0x5, 0x80000001, 0x0, 0x8, 0x1, 0x10801, 0x5, 0x9]}, 0x45c)

41.0260412s ago: executing program 5 (id=5787):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_open_dev$char_usb(0xc, 0xb4, 0x4)
r1 = syz_usb_connect(0x3, 0x2d, &(0x7f0000000080)=ANY=[@ANYBLOB="120100004898b610c2154500201f0102030109021b0001000500ea09040002018c78fd00090582f3c6"], 0x0)
syz_usb_disconnect(r1)
r2 = syz_usb_connect$printer(0x2, 0x2d, &(0x7f00000000c0)={{0x12, 0x1, 0x110, 0x7, 0x1, 0x3, 0x40, 0x4b8, 0x202, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x1, 0xfb, 0xb0, 0xc, "", [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, "", {{{0x9, 0x5, 0x1, 0x2, 0x20}}}}}]}}]}}, 0x0)
syz_usb_control_io$printer(r2, &(0x7f0000001100)={0x14, 0x0, &(0x7f0000000300)={0x0, 0x3, 0x2, @string={0x2}}}, 0x0)
syz_usb_control_io$sierra_net(r1, &(0x7f00000003c0)={0x14, &(0x7f0000000140)={0x20, 0xe, 0xc4, {0xc4, 0x1c, "ed601fa56107164060f4b514be667c2bf58957b5c6e6ed286e8ac8285741d9777b216bf10dc1ddbfe40dbf033542a6805f46918ad815cf46ad890c58867f1fe6577dcd3e4afe6821b59af2b9e56ab7ad8c7d20c52a5c517c2182abfe1e52ea1964e50edf1ab0c153efe756b5dbe4552ca585bbd6ab31cd282cc88f885240c9d4d5d58aa91aa5028c5bac978db4b676fcb57ade646ae318ea419460aaab34f73c4063782a38a2d9a0d3e094b4bff16009fc125ec73394539a4359def93031167c4c5d"}}, &(0x7f0000000340)={0x0, 0x3, 0x79, @string={0x79, 0x3, "622f3c053419214d27c49bd720473bebd0ea7042ae449365edd9d1a0c140b61da8c3d818a5335f2a73c3b4aba841815afa87d882722422f2f94559fb5695d26c67b4cd08a4c002f133e1ddcd0627637be600e3f3159e52da9f66fc7b46285728c9f6a21e9aaec7f020e4b1b3b4d38b08d97836e0c7c407"}}}, &(0x7f0000000c80)={0x1c, &(0x7f0000000400)={0x0, 0x8, 0x70, "1f52e7a498aded52cfc20d3ae940f862f351bcde72fb39bfe523eeeb5b6e08cff66a7a5d6d73dfd2df685f1dee13d7b8eb8d828b7eaa95d4fd681adb628ce674b489f18fd34759583ca56705759548968c107fcd7c1c98b6616a44957508279224da505936cbc360bf1eda74334fb687"}, &(0x7f0000000800)={0xa1, 0x1, 0x400, "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"}, &(0x7f0000000c40)={0x21, 0x0, 0x2, 'Z\t'}})
syz_usb_control_io(r2, 0x0, 0x0)
syz_usb_control_io(r2, 0x0, 0x0)
r3 = syz_open_dev$char_usb(0xc, 0xb4, 0x80000000)
write$char_usb(r3, &(0x7f00000007c0)="0bcde56ca9a62cbf", 0x8)
syz_usb_control_io$lan78xx(r1, 0x0, 0x0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x58, 0x2, 0x6, 0x5, 0x0, 0x0, {0x1}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_MAXELEM={0x8, 0x13, 0x1, 0x0, 0xfffffffb}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}]}, 0x58}}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000040), 0x800200, 0x0)
preadv(r5, &(0x7f0000002600)=[{&(0x7f0000002240)=""/163, 0xa3}], 0x1, 0xfffff800, 0xfff)
ioctl$VIDIOC_QUERYBUF(0xffffffffffffffff, 0xc0585609, &(0x7f00000000c0)=@userptr={0x5ada, 0xa, 0x4, 0x800, 0x2, {0x0, 0xea60}, {0x3, 0x2, 0x0, 0x1, 0x9, 0x52, "8ea1d51a"}, 0xffff0000, 0x2, {0x0}, 0x5})
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="4400000010004b0400000000000000007a000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b0001006272696467650000140002800800080081000000060027"], 0x44}, 0x1, 0x0, 0x0, 0x24048004}, 0x4000)

40.242908543s ago: executing program 3 (id=5788):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
ioctl$TUNSETLINK(r0, 0x400454cd, 0x18)
close(r1)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000080)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x2000d}}, './file0\x00'})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = socket$kcm(0x2b, 0x1, 0x0)
r3 = socket$kcm(0x11, 0x2, 0x300)
r4 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x2, 0x400)
r5 = memfd_secret(0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x13, r5, 0x8000000)
mlock2(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r4, 0xc1105517, 0x0)
sendmsg$key(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r4, 0xc1105518, 0x0)
setsockopt$sock_attach_bpf(r3, 0x1, 0x28, &(0x7f0000000000), 0x4)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000540)=ANY=[], 0x3c}}, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
sendmsg$inet(r2, 0x0, 0x2000480d)
r7 = openat$kvm(0xffffffffffffff9c, 0x0, 0x20040, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
setsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, 0x0, 0x8, 0x2)

39.956425531s ago: executing program 4 (id=5789):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x4)
syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = syz_clone(0x80008000, 0x0, 0x0, 0x0, 0x0, 0x0)
process_vm_readv(r5, &(0x7f00000000c0)=[{&(0x7f0000000040)=""/65, 0x41}], 0x1, &(0x7f0000000200)=[{&(0x7f0000000100)=""/193, 0xc1}], 0x1, 0x0)
getrlimit(0x0, &(0x7f0000001840))
r6 = socket(0x2, 0x5, 0x0)
ioctl$sock_SIOCETHTOOL(r6, 0x8946, &(0x7f0000000280)={'xfrm0\x00', &(0x7f0000000040)=@ethtool_cmd={0x1c, 0x2, 0x10, 0x3, 0xe8, 0x3, 0x0, 0x6, 0x1, 0x4, 0xfffffffd, 0xfffffffd, 0x200, 0xb, 0x9f, 0x5b0, [0x100, 0xfffffffa]}})
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x400, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x42, 0x85)
ioctl$KVM_IRQFD(r8, 0x4020ae76, &(0x7f00000002c0)={r9, 0x0, 0x1})
recvmsg$kcm(r6, &(0x7f0000001940)={0x0, 0x0, &(0x7f0000001780)=[{&(0x7f0000000180)=""/164, 0xa4}, {&(0x7f0000000300)=""/132, 0x84}, {&(0x7f00000003c0)=""/4096, 0x1000}, {&(0x7f00000013c0)=""/37, 0x25}, {&(0x7f0000001400)=""/119, 0x77}, {&(0x7f0000001480)=""/31, 0x1f}, {&(0x7f00000014c0)=""/172, 0xac}, {&(0x7f0000001580)=""/204, 0xcc}, {&(0x7f0000001680)=""/18, 0x12}, {&(0x7f00000016c0)=""/155, 0x9b}], 0xa}, 0x120)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0xb)
r10 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f00000002c0)='.\x00', &(0x7f0000000040), 0x8000, &(0x7f0000001880)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r10, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="ddfe5fc54f05fd00c8076f8929246298b6f62f51af0970f0d4f217d4"])
writev(r1, &(0x7f0000002980)=[{&(0x7f0000000000)="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", 0x167}], 0x1)
sendto$inet(r0, &(0x7f0000000300)="ab", 0x1, 0x0, &(0x7f0000000380)={0x2, 0x4e22, @local}, 0x10)
sendmsg$inet_sctp(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f00000000c0)="f6", 0x1}], 0x1, &(0x7f00000003c0)=ANY=[@ANYBLOB="200000000000000084000000020000000800480002000000feffffff", @ANYRES32=0x0, @ANYBLOB="30000000000000008400000001"], 0x50, 0x40488c2}, 0x0)

39.901892217s ago: executing program 1 (id=5790):
openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0x22242, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0, 0xffffffffffffff2c}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r0 = io_uring_setup(0x64a, &(0x7f0000000040)={0x0, 0x8835c, 0xc000, 0x2, 0x33c})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x8, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x1}, {0x3, 0x3}, {0xe, 0xe}}}, 0x24}, 0x1, 0x0, 0x0, 0x40005}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000000000)=0x6, 0x4)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0) (fail_nth: 2)

39.67829025s ago: executing program 1 (id=5791):
syz_emit_ethernet(0x76, &(0x7f0000000040)=ANY=[@ANYBLOB="0180c2000001aaaaaaaaaabb86dd60f53a0400403a"], 0x0)
r0 = syz_open_dev$evdev(&(0x7f00000001c0), 0x3214, 0x20200)
syz_usb_disconnect(r0)
ioctl$EVIOCRMFF(r0, 0x4004550a, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f05ebbee7, 0x8031, r1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r3, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0xffffffffffffffff, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004880}, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, &(0x7f0000000d40)=ANY=[@ANYBLOB], 0x210)
mount(&(0x7f0000000300)=@loop={'/dev/loop', 0x0}, &(0x7f0000000000)='./cgroup\x00', &(0x7f00000002c0)='adfs\x00', 0x800a, 0x0)
poll(&(0x7f0000000000)=[{r0, 0x1040}, {0xffffffffffffffff, 0x8}], 0x2, 0x2)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = syz_io_uring_complete(0x0, 0x0)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000600)={r6, 0x20, &(0x7f00000005c0)={&(0x7f00000004c0)=""/133, 0x85, 0x0, &(0x7f0000000580)=""/58, 0x3a}}, 0x10)
ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, &(0x7f0000000040)={'wlan0\x00', 0x1})
ioctl(r5, 0x8b22, &(0x7f0000000040))
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a3c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc380000000c0a010100000000000000000a0000060900020073797a31000000000900020073c9f3e73a0000000900010073797a3100000000140000001100010000000000000000000100000a311518f53631a60cd7b939f03bb8df62e041e67aeaa695ca3ae7121c0556c23b2db666a290811040e27c3b32d8e23e0a985c83679439540fff296205ded71a8400fc2220a5b54520725005c3d8f53e7d947b9c3e4f5b561fd4d016a015694be9f4a1593dd8849dbe4c3acd9f6560b6f9839665064635e70be6a3fbc1bcfde0b5b826e1caeb4890982fda79b258192edd764d357f4db7bac6568a765a4002391cde7d7d757574b56358809714911e48842e27b1debba6b1b38b"], 0x9c}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)

38.629949036s ago: executing program 3 (id=5792):
r0 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2000c020)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$inet6(0xffffffffffffffff, &(0x7f00000005c0)={0xa, 0x4e22, 0x8, @empty, 0x9}, 0x1c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r5, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x2f)
bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000700)=ANY=[@ANYBLOB="090000001600000000010000840a000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000000000000000000000b4b9cb04507997686a93cc12be1cfc0638309b1594abd60d353dbbd7e90ce01c5b26b09090c18a804b94bc2464e89708815302e5f05f013b1fc9f8a7566bae84dc912fb210705df7f562556c68b31b6f81500291b5e5162e7cb00adc79b8e5b429029753462c3899c41e351e19ee61957c212a923717a0623e3271fef20038d6fbe722ae0b4ad4cb495cd0c6289c761b5f222e570389249a0e902a3964053c97fa21f7da7d579de2dd43675ba87ea8d805"], 0x50)
setsockopt$inet_tcp_TCP_CONGESTION(r5, 0x6, 0xd, 0x0, 0x0)
connect$inet(r5, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(r5, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r5, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
fstat(r1, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
setreuid(0x0, r6)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00'}, 0x48)
connect$bt_rfcomm(r0, &(0x7f0000000080)={0x1f, @any, 0x1}, 0xa)
connect$bt_rfcomm(r0, &(0x7f00000006c0)={0x1f, @any, 0x1}, 0xa)
socket$netlink(0x10, 0x3, 0x0)

38.360406959s ago: executing program 5 (id=5793):
r0 = socket$inet6(0xa, 0x80002, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
io_uring_setup(0x4685, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0xf9}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r4, 0x0, 0x0, 0x20000841, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @empty}, 0x1c)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/resume', 0x149a82, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000180)={@mcast2, 0xd402, 0x1, 0x0, 0x4d55ba80e15bd3d8, 0xb5a, 0x8}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0x0, 0x0, &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100))
r6 = socket(0x10, 0x3, 0x0)
r7 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r7, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x80008000, 0x6, 0x8000}, 0x1c)
sendmsg$nl_route(r6, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB="2000000072009fb3000000000000000007000000", @ANYRES32=0x0, @ANYBLOB="0800010001002000a58886a954d661c4e85c3bd409af9b77444610960f86577adec70a7a1ce19ff1bf805a3dd0b5f2765f7f86398a766ff07c62f3a45e98473718993877bb0b0b55af14"], 0x20}, 0x1, 0x0, 0x0, 0x4008085}, 0x0)
write$cgroup_int(r5, &(0x7f0000000040)=0x1c9, 0x12)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r5, 0xc01864c6, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg$inet6(r0, &(0x7f0000000800)=[{{&(0x7f0000000000)={0xa, 0x4e22, 0x7f, @mcast2, 0x7f}, 0x1c, 0x0}}], 0x1, 0x4041400)

27.359595265s ago: executing program 33 (id=5784):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_connect$hid(0x5, 0x0, 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x10200, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
openat$cuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2e, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$netlink(0x10, 0x3, 0x0)
writev(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000040)="704bf5ddec082d38277cd599f3e5441a687947fd7c78c8861e08e5daf58a258cee52c82a6ad6668ef01187bb25c994504e8abaee6931b5bfc7b3e78d7e1323b0a754c830889d8148bfe33c6814205fee39a06aebd717b487c522743bea193b694a7e4e6d615efb7a8de7", 0x6a}, {0x0}, {&(0x7f0000000340)="a6c88dd6650a2a8f33642893043f799944e368913e91805e65f91cc6eae92034a6db3df004b6d35033298e15d7f6bd1c7dd17aff885f84790ac6c2dbc8199383ebb5dbb03c9a13c5bddc51df5796378d20f011229bbcbeddf437ea1b", 0x5c}], 0x3)
openat$vnet(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
r5 = socket$inet6(0xa, 0x1, 0x100)
ioctl$ifreq_SIOCGIFINDEX_team(r5, 0x8933, &(0x7f0000000140))
r6 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r6, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r6, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r6, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@dev={0xfe, 0x80, '\x00', 0x4}, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffa}, {}, 0x0, 0x0, 0x1}, {{@in6=@dev, 0x0, 0x32}, 0x0, @in=@private=0xa010100, 0x0, 0x0, 0x0, 0xb7, 0x2, 0xfffffffe}}, 0xe8)
sendmmsg(r6, &(0x7f0000007fc0), 0x800001d, 0x1c)
mount$afs(&(0x7f00000004c0)=ANY=[@ANYBLOB='#syz1.b'], &(0x7f0000000140)='./cgroup\x00', &(0x7f0000000240), 0x800040, &(0x7f0000000300)=ANY=[@ANYBLOB])

24.830086512s ago: executing program 34 (id=5789):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x4)
syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = syz_clone(0x80008000, 0x0, 0x0, 0x0, 0x0, 0x0)
process_vm_readv(r5, &(0x7f00000000c0)=[{&(0x7f0000000040)=""/65, 0x41}], 0x1, &(0x7f0000000200)=[{&(0x7f0000000100)=""/193, 0xc1}], 0x1, 0x0)
getrlimit(0x0, &(0x7f0000001840))
r6 = socket(0x2, 0x5, 0x0)
ioctl$sock_SIOCETHTOOL(r6, 0x8946, &(0x7f0000000280)={'xfrm0\x00', &(0x7f0000000040)=@ethtool_cmd={0x1c, 0x2, 0x10, 0x3, 0xe8, 0x3, 0x0, 0x6, 0x1, 0x4, 0xfffffffd, 0xfffffffd, 0x200, 0xb, 0x9f, 0x5b0, [0x100, 0xfffffffa]}})
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x400, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x42, 0x85)
ioctl$KVM_IRQFD(r8, 0x4020ae76, &(0x7f00000002c0)={r9, 0x0, 0x1})
recvmsg$kcm(r6, &(0x7f0000001940)={0x0, 0x0, &(0x7f0000001780)=[{&(0x7f0000000180)=""/164, 0xa4}, {&(0x7f0000000300)=""/132, 0x84}, {&(0x7f00000003c0)=""/4096, 0x1000}, {&(0x7f00000013c0)=""/37, 0x25}, {&(0x7f0000001400)=""/119, 0x77}, {&(0x7f0000001480)=""/31, 0x1f}, {&(0x7f00000014c0)=""/172, 0xac}, {&(0x7f0000001580)=""/204, 0xcc}, {&(0x7f0000001680)=""/18, 0x12}, {&(0x7f00000016c0)=""/155, 0x9b}], 0xa}, 0x120)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0xb)
r10 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f00000002c0)='.\x00', &(0x7f0000000040), 0x8000, &(0x7f0000001880)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r10, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="ddfe5fc54f05fd00c8076f8929246298b6f62f51af0970f0d4f217d4"])
writev(r1, &(0x7f0000002980)=[{&(0x7f0000000000)="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", 0x167}], 0x1)
sendto$inet(r0, &(0x7f0000000300)="ab", 0x1, 0x0, &(0x7f0000000380)={0x2, 0x4e22, @local}, 0x10)
sendmsg$inet_sctp(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f00000000c0)="f6", 0x1}], 0x1, &(0x7f00000003c0)=ANY=[@ANYBLOB="200000000000000084000000020000000800480002000000feffffff", @ANYRES32=0x0, @ANYBLOB="30000000000000008400000001"], 0x50, 0x40488c2}, 0x0)

19.131604119s ago: executing program 35 (id=5793):
r0 = socket$inet6(0xa, 0x80002, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
io_uring_setup(0x4685, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0xf9}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r4, 0x0, 0x0, 0x20000841, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @empty}, 0x1c)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/resume', 0x149a82, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000180)={@mcast2, 0xd402, 0x1, 0x0, 0x4d55ba80e15bd3d8, 0xb5a, 0x8}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0x0, 0x0, &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100))
r6 = socket(0x10, 0x3, 0x0)
r7 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r7, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x80008000, 0x6, 0x8000}, 0x1c)
sendmsg$nl_route(r6, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB="2000000072009fb3000000000000000007000000", @ANYRES32=0x0, @ANYBLOB="0800010001002000a58886a954d661c4e85c3bd409af9b77444610960f86577adec70a7a1ce19ff1bf805a3dd0b5f2765f7f86398a766ff07c62f3a45e98473718993877bb0b0b55af14"], 0x20}, 0x1, 0x0, 0x0, 0x4008085}, 0x0)
write$cgroup_int(r5, &(0x7f0000000040)=0x1c9, 0x12)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r5, 0xc01864c6, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg$inet6(r0, &(0x7f0000000800)=[{{&(0x7f0000000000)={0xa, 0x4e22, 0x7f, @mcast2, 0x7f}, 0x1c, 0x0}}], 0x1, 0x4041400)

18.782986276s ago: executing program 36 (id=5791):
syz_emit_ethernet(0x76, &(0x7f0000000040)=ANY=[@ANYBLOB="0180c2000001aaaaaaaaaabb86dd60f53a0400403a"], 0x0)
r0 = syz_open_dev$evdev(&(0x7f00000001c0), 0x3214, 0x20200)
syz_usb_disconnect(r0)
ioctl$EVIOCRMFF(r0, 0x4004550a, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f05ebbee7, 0x8031, r1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r3, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0xffffffffffffffff, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004880}, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, &(0x7f0000000d40)=ANY=[@ANYBLOB], 0x210)
mount(&(0x7f0000000300)=@loop={'/dev/loop', 0x0}, &(0x7f0000000000)='./cgroup\x00', &(0x7f00000002c0)='adfs\x00', 0x800a, 0x0)
poll(&(0x7f0000000000)=[{r0, 0x1040}, {0xffffffffffffffff, 0x8}], 0x2, 0x2)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = syz_io_uring_complete(0x0, 0x0)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000600)={r6, 0x20, &(0x7f00000005c0)={&(0x7f00000004c0)=""/133, 0x85, 0x0, &(0x7f0000000580)=""/58, 0x3a}}, 0x10)
ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, &(0x7f0000000040)={'wlan0\x00', 0x1})
ioctl(r5, 0x8b22, &(0x7f0000000040))
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x9c}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)

18.378833489s ago: executing program 37 (id=5792):
r0 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2000c020)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$inet6(0xffffffffffffffff, &(0x7f00000005c0)={0xa, 0x4e22, 0x8, @empty, 0x9}, 0x1c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r5, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x2f)
bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000700)=ANY=[@ANYBLOB="090000001600000000010000840a000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000000000000000000000b4b9cb04507997686a93cc12be1cfc0638309b1594abd60d353dbbd7e90ce01c5b26b09090c18a804b94bc2464e89708815302e5f05f013b1fc9f8a7566bae84dc912fb210705df7f562556c68b31b6f81500291b5e5162e7cb00adc79b8e5b429029753462c3899c41e351e19ee61957c212a923717a0623e3271fef20038d6fbe722ae0b4ad4cb495cd0c6289c761b5f222e570389249a0e902a3964053c97fa21f7da7d579de2dd43675ba87ea8d805"], 0x50)
setsockopt$inet_tcp_TCP_CONGESTION(r5, 0x6, 0xd, 0x0, 0x0)
connect$inet(r5, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(r5, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r5, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
fstat(r1, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
setreuid(0x0, r6)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="b700000012edfffebfa30000000000000703000028feffff620af0fff8ffffff61a4f0ff000000003e040000000000003f00000000000000b604000001ede0ff2500000017ffff17cc040000000000007b0a00fe000000006e04000000000000c6000000000000009500000000000000023bc065b7a379d17cf9333379fc9e84af69912435f1b6a693002e7f3be3619184e50b91f32050e436fe275daf51efd601b6482a0800000098efd2a102ee010400006e7a1de4a21f379dbf01de00b1b564fef3bef70548aed0d600c095199fe3ff3128e599b0eaebbdbd7359a48f5b0afc532ef58de3c1b7646cb7798b3e6440c2fbdb00a3e35208b0bbf12cd8dff095edc710e4000000000000009fbe4b61a615c6c57a2b649dc74a1a610643b08d9e104d4d91af25b8123deda8a3658d42ecbf28bf6d8e8afcb913466aaa7f6df70252e79166d8582755a314d31a76e42f2460d0b11008e59a5923906f88b53987ad1714e72ba7a54f0800000000000000d5f728d236619074d6ebdf098bc908f50ae728a40f9411fe7226a4040b96e37c4f46010400000000c3da29faf75ddd1aa96960bca97af133824b881cc1f62c0f8f8f0e8d76b86f9c45636614786f5a2cb77230a874640dcbe0b20bb77c022d4cab080078fce8c5c81b7037181fc2f18f781aaa6e2957d7e39cc1baddcb7ec6667e699f24e41697ee7ea23e4b29a8b6cc9a1f5a7b3caae05f1300010000949b3aab06b1e042ff2164d80c8ab1c156b97e5889685a96949e4cb40df77b8bb84b0e733a63784ccc214d930cbb7e090df9a2867b3acec439c163fc8706869ada11390d4dbcf840fa68e7d7071b53ac29df826f8ae6d6e18c1e0600bf870768d5217e9bb5a05d9e224e67f1231bd236ed200073824d93c4e1a0f50a74bb4850486727d970acc546087acbf30f2f8165b47ba56dfadd14b306e98931485747292c6fe6e188750cf4f87cce2aa7d67c7133a9f05954cde298a35ea6d715ba80aee6330000000000000000000000000000000000004000000000000000038600008fb854adb4f8080064e8407c6bdb37114c80fbaa4a0ec5aaf4b0ac6f2128668279eb6fc144344e2d461c9a1be8fa0061ea9d55ee4716bea8e1cebf9ed39325ab4c5530dd6ee9fffc00000000000000d7c5af73c683625aaad5eda5004a76c9f8975ed4c5e4eb3e77e9885f69754932609f19e2f615a01cb6d17fbf5cb539403cb0572534f054d5514ad8264f7b029b2bdf2ca4958a62a6e744f9a4c1e646e1dd2ca19583f0f8b0dc53debd7d44f334e6ed7445a9580f970e483b307c4b3c018bc194b23d37e6a2e52d8265e5aab6fec586d52386e8c07a88c88e8faec5f1b16b2014f6952ce7d6be12c6bdb9651ca6fc907061be311d1354e6295698594a73136237bee068d3819400e43544830a3f74b7942f22336953978a5b2032da4238cc61162c04c1297395b73e18c9387615a2bc87d9e2445f3d323d3fac347926a4bac694c55fe9d145906d410f58f1951405d10504efe402cae085afef5dbd617e87ddbd239e4a50d7eb8e327fb5db12cbd6a9efe8e671c4f251cafffe3400a670d14b9b3cd8d86e492997a0168c022ef3536bd1dc731f4f9f8cb66701f4578ba4cb9b706e605a88c3857fb8aaaa95024f8da775f72950212b84fc6133ae14d1429cd4905dabb52e43af7e65acf97b4951fa1e967d16a5ed642efc855a4a46b85cd079934ad3188276efae9387eaa232697526e24b5d4fded86c3811ccd00520150b16000080122965558074956da5e4c3bbefcb64aa8be4456ed2caf0f467b6bbf3aa4371f5e76ab3f6a20278a3c779e03afd9a6af6fd518e5dce030f88ec5a5cb7601a161da0f80893220800c523040d13e1f1300c2c6555bce60d95dd3288e53435713f03add23f14c8db5555c62de4f626483632a2ab547f88dd6efec73a0271a19ca3aa860aa4dcaeeb9bd91a0cb429efae2a5fcc08b3a572969bbe917d1767e38ba49e3e57fafea83e495a6a1d1a4ebf83434986091dd66ffe3ffed0c39552a312e2db596d9c827e02f6fc13c8ddbb50bfd7dd8aa2f35f259fc83e007fe79d2d25e30830b92fca00a292dd3b856faa4b7e66e1b64505f65900839df71a97d4d07d37f7ecf8ed9a22da26ae674bba16c204f6b2f8f74fc56b7126d7c11ece6e88ec41192aaee75415c58d264a2b6adae02c821b62428902aad499825ab85a348638384cd12e61dbde5c47056f0a20b4e2a2328d5db5cf026657a129e6be231acf5f57995c60d9fca5f63a0dfd18054717120bda466d04774b53208ad8b022719ca77a4e0a66b4708f791d849a5e2aaa0074a9560ede2600df5a5c41392fe9460080fcb1e65233fb8dbeec4c86dbcf6a0673e38d2d3615e5bfbde44afe0fa7564231fff7e7f1f3ad68492dd2cccb15b5d7d3e37e8b7d28921c4b9280979521173f322df408d9818b6cc400090300000021911480a876fbba698801937e8b4264eb6f5137bdaa075f1488d22230592a79000000000000000000000000000000000000000000110000000000000000000000000000000000000000000000000000000000000000002f316aa0886c174b73decb46c1c85edf50d8fcbac5ff76b365611666da86a8e65b308706bd7c000000000000003f7cd4d5cb9076b81b7741ec03877afb5237ea1694addebc14c3ae49f88c462ea2050acf2d9a97d3be29a5614d1eba2c98cf0236401e02d7c445e50f76419ab4f78f67a09e63dd4faa2e7b59399f055f2fa278783f26d0a52aefb0a5ef0b41e14a6fe6ba306206670b84894e901a523fcbadfeff535f2514bc834e876810d9a6a78e70a9e22860c36a724770b4185de44db6bf21fef32a8d5b36d9014f38fee012365f963b2a85e7d8075c333475b9f0284405e3127dde7e41285fbe0bdd370c06c6a41744c3d24eab511317f97b7b4a1c2ec33fedc46e9bf0fa640eebd3d58f0ebdb7cb8ccffd6d6ab7e0e843591d2618e2d2cdc7081c8fafffe9c3500800000087de4ee7aac6478d99de7dd82bef044a6d33c789d566c90c46ad581aa22f910547a77d55e26bf19f1d4661550b177ef53933a305e69b8a95119dcf5bda599d625054776151b2cd1fcde238bdc527594a6c17aa9728af24e2bb7a3830e7092b01b119ea4e7e7f0e21527d622cc29c9f0c8720195368f8374337ab4d130619d93c5ef37e7ddd0b2da147e6e513455b88753452de959a6cbfa1ffbc7ad5d8c3b48017fd31dcf72f337b639253f44cb27a12174bc4c191e21015d0c431a71906eb9c6a14c8a060459ef26787ce3d1cbfd5cc459f0048b5d06f6cbd3e9b34c89f3fb2f951ae81d7fcc8bc0000000000000000000000000000000000000000009231feef3117197c796369f776c8b2ea3970f358107945d9e74e9bdfa58e68b65a8f01bc4b73cc31df5aa29f363917f90e3fa1eaf553db1c761dd9b634a9c4d7c21c24fe6d953ed9438cad0f8dfe03e5e2f73019352f1fb682a5a6ebbf24ebc49e3d7058e696eb3f4b642f36c9006c0067e24a64aa8c53dd824a3c08bfda74a143c855030ae004ac797c575c202d8091eb77565212548ead770d68000000000099347593f67da85d1c962bfb320d1553a74ec3bf003ba62b1784dbf0168a7e85f28b77bdebce96bf386a6dd5df162a16f2b7e8a4de0ffc464a87f91f81866d2ef0af71ebb07a739c3cb1b7000000000000"], &(0x7f00000001c0)='GPL\x00'}, 0x48)
connect$bt_rfcomm(r0, &(0x7f0000000080)={0x1f, @any, 0x1}, 0xa)
connect$bt_rfcomm(r0, &(0x7f00000006c0)={0x1f, @any, 0x1}, 0xa)
socket$netlink(0x10, 0x3, 0x0)

1.611029968s ago: executing program 8 (id=5796):
syz_usb_connect$uac2(0x5, 0xa8, &(0x7f0000000000)=ANY=[@ANYBLOB="120110030000004082054c00400001020301090296000301053009080b03010107208c0904000000010120041d000708240a0001ff23000c24030207030004000700810904010000010220090501090002030b040825010000400400090402000001022000090402010101023000092402020400cc1c051024010201000400000008b8000000030905820908"], &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0})
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010008020000001800006600000008000300", @ANYRES32=r2], 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
syz_open_dev$sndmidi(0x0, 0x2, 0x141102)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioprio_set$uid(0x3, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x100)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
syz_io_uring_setup(0x2737, &(0x7f0000000240)={0x0, 0x1e84, 0x14021, 0x0, 0x2e5}, &(0x7f00000002c0), &(0x7f0000000300), &(0x7f00000003c0))
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r5 = open(&(0x7f0000000040)='./file0\x00', 0x84242, 0x1df2a23c5997fad6)
write$FUSE_CREATE_OPEN(r5, &(0x7f0000000180)={0xa0, 0x0, 0x0, {{0x4, 0x0, 0x5, 0x7, 0x3, 0xfffffffd, {0x400000080001, 0xfd, 0x20ff, 0x8, 0xe, 0xd615, 0x9, 0x3, 0xfffffffc, 0x6000, 0x0, 0x0, 0x0, 0x5, 0x7}}, {0x0, 0x13}}}, 0xa0)
sendfile(r5, r5, &(0x7f0000000080), 0x7f03)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0))

31.890677ms ago: executing program 7 (id=5795):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000140)=ANY=[@ANYBLOB="1c0000001200210300000000"], 0x1c}], 0x1, 0x0, 0x0, 0x44800}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2400000001040102000000c9fd0000000000000008000340000104000500010001"], 0x24}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)
sendmsg$NFULNL_MSG_CONFIG(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c000000010405"], 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x26088888)
recvmmsg(r1, &(0x7f0000004300), 0x4000000000000e9, 0x60, 0x0)
setsockopt$inet_sctp_SCTP_HMAC_IDENT(0xffffffffffffffff, 0x84, 0x16, 0x0, 0x0)
r3 = syz_open_dev$amidi(&(0x7f0000000000), 0x2, 0xc02)
ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(r3, 0xc0305710, &(0x7f0000000080)={0x0, 0xfff, 0x9})
r4 = socket$qrtr(0x2a, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000002000000000000000000082295"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x1e00, 0x2c}, 0x94)
r5 = socket$inet6(0xa, 0x3, 0x3)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000200)={'bond_slave_1\x00'})
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, 0x0, 0x0)
r7 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
io_setup(0x3, &(0x7f00000001c0)=<r9=>0x0)
io_submit(r9, 0x1, &(0x7f0000000380)=[&(0x7f0000000340)={0x1000000, 0x0, 0x0, 0x5, 0xe, r8, 0x0}])
r10 = memfd_create(&(0x7f0000000080)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea\x7f\x8cZ7`_4t\xcda\x9b\x11\x11\x0e\xa1\xcf\x00'/51, 0x2)
ftruncate(r10, 0x1000006)
fcntl$addseals(r10, 0x409, 0x7)
r11 = ioctl$UDMABUF_CREATE(r7, 0x40187542, &(0x7f0000000000)={r10, 0x0, 0x0, 0x1000000})
syz_usb_connect(0x5, 0x36, &(0x7f0000000140)=ANY=[@ANYBLOB="120100004106cd40cd060f011bd5000000010902"], 0x0)
writev(r10, &(0x7f0000000680)=[{&(0x7f0000000240)="d91622af56b86624898a3e887113b4909afa0d27afdaa0e203056ac2129383f0ae3f9ce5e12613990a1504831b8e11e48b827aa4f08ff82b69d7d1717e32544c5edd4b35229d2eb95b51d064d58949bb74048f918fb7d0ca954664513d023da16cde15c4ed8531ee794e861123e438f80326add89b4e8d634cd28b50aa34047354519102ed32fbe267b5dd658e88eede4e2bc45972ba2c38786d8669d546d48945061537e25cd498d7a8b596bb8a4c1eb35bc0718185079a2039829cdd1355ea69488205bc15a7426e10ffdfa15911250dcd3882", 0xd4}, {&(0x7f00000003c0)="7c974279c56f6787006a5ed54ed4560fdccfb2457f8a73aa97e7c6363f6b386ef79bd24aa9281df305c13fecdf38de4d", 0x30}, {&(0x7f0000000400)="65f813aae898eb4321c19d8ac48b7ca2ba6d73bf334855e15f827fa71a72e5775bf56cecb353bea4222719013e89d5f0157c91809ed99c1ad17eaccd767ee3e24345e6", 0x43}, {&(0x7f00000005c0)="4f59afdfad6075f5daa94382e83669fe6e864cf5e733bfaf03f6a6d3418577f53386a8f3f9995925da72fbb1034a8f61510b33c3dbc7ec90994e8f45116e8682dba81673bfcbd810316522378a505d5af90562f5e964bef309727e224f93e342905594075ad9f41811de499f4e2d0c5ea28316d7b5dcf121c4cc10079e2a5332f5200317eb5cc4b13622978a71912766e840f0e6f160ee49e33478ba2b6b72e6ae03f48e753b2481b9a3dee3b3981f18f4a5dd0c6746233e3937", 0xba}], 0x4)
ioctl$DMA_BUF_IOCTL_SYNC(r11, 0x40086200, &(0x7f0000000580)=0x1)
close_range(r4, 0xffffffffffffffff, 0x100000000000000)
mount$binderfs(0x0, &(0x7f0000000e80)='./binderfs\x00', 0x0, 0xa3090, 0x0)

0s ago: executing program 0 (id=5798):
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="4c000000020603000000000000000000000000001400078008001240000000000500150002000000050001000600000005000500020000000500040000000000090002"], 0x4c}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x6, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200e19}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x7, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffff7fff}, 0x94)
syz_emit_ethernet(0x3c, &(0x7f0000000000)=ANY=[@ANYBLOB="bbbbbbbbbbbbaaaaaaaaaaaa0800"], 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000050000080900010073797a30000000005c000000030a03000000000000000000050000000900010073797a30000000000900030073797a300000000008000c40000000032800048008000240000000120800014000000000140004"], 0xa4}}, 0x0)

kernel console output (not intermixed with test programs):

warding state
[ 1436.035959][ T5833] bridge2: port 1(veth7) entered blocking state
[ 1436.042247][ T5833] bridge2: port 1(veth7) entered forwarding state
[ 1436.169122][ T5833] bridge2: port 2(veth9) entered blocking state
[ 1436.175522][ T5833] bridge2: port 2(veth9) entered forwarding state
[ 1436.233508][ T5833] bridge6: port 1(veth15) entered blocking state
[ 1436.240116][ T5833] bridge6: port 1(veth15) entered forwarding state
[ 1436.289839][ T5833] bridge6: port 3(veth17) entered blocking state
[ 1436.296327][ T5833] bridge6: port 3(veth17) entered forwarding state
[ 1436.368296][ T5833] bridge7: port 1(veth19) entered blocking state
[ 1436.374732][ T5833] bridge7: port 1(veth19) entered forwarding state
[ 1436.403851][ T5833] bridge7: port 3(veth21) entered blocking state
[ 1436.410289][ T5833] bridge7: port 3(veth21) entered forwarding state
[ 1436.437728][ T5833] bridge8: port 1(veth23) entered blocking state
[ 1436.444170][ T5833] bridge8: port 1(veth23) entered forwarding state
[ 1436.584848][T23510] FAULT_INJECTION: forcing a failure.
[ 1436.584848][T23510] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1436.585662][ T5833] bridge8: port 3(veth25) entered blocking state
[ 1436.598384][T23510] CPU: 0 UID: 0 PID: 23510 Comm: syz.4.5037 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1436.598409][T23510] Tainted: [L]=SOFTLOCKUP
[ 1436.598414][T23510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1436.598424][T23510] Call Trace:
[ 1436.598429][T23510]  <TASK>
[ 1436.598436][T23510]  dump_stack_lvl+0x100/0x190
[ 1436.598459][T23510]  should_fail_ex.cold+0x5/0xa
[ 1436.598481][T23510]  _copy_from_user+0x2e/0xd0
[ 1436.598502][T23510]  copy_msghdr_from_user+0x9f/0x4f0
[ 1436.598522][T23510]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1436.598545][T23510]  ? __pfx__kstrtoull+0x10/0x10
[ 1436.598574][T23510]  ___sys_sendmsg+0x106/0x1e0
[ 1436.598593][T23510]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1436.598622][T23510]  ? find_held_lock+0x2b/0x80
[ 1436.598650][T23510]  __sys_sendmmsg+0x205/0x430
[ 1436.598676][T23510]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1436.598706][T23510]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1436.598737][T23510]  ? fput+0x79/0x100
[ 1436.598758][T23510]  ? ksys_write+0x1ac/0x250
[ 1436.598774][T23510]  ? __pfx_ksys_write+0x10/0x10
[ 1436.598795][T23510]  __x64_sys_sendmmsg+0x9c/0x100
[ 1436.598817][T23510]  ? lockdep_hardirqs_on+0x78/0x100
[ 1436.598837][T23510]  do_syscall_64+0x115/0x870
[ 1436.598855][T23510]  ? clear_bhb_loop+0x40/0x90
[ 1436.598874][T23510]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1436.598891][T23510] RIP: 0033:0x7f30c4b9ce59
[ 1436.598910][T23510] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1436.598925][T23510] RSP: 002b:00007f30c5a3b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1436.598940][T23510] RAX: ffffffffffffffda RBX: 00007f30c4e16090 RCX: 00007f30c4b9ce59
[ 1436.598950][T23510] RDX: 0400000000000172 RSI: 0000200000003cc0 RDI: 0000000000000004
[ 1436.598960][T23510] RBP: 00007f30c5a3b090 R08: 0000000000000000 R09: 0000000000000000
[ 1436.598969][T23510] R10: 0000000004001c00 R11: 0000000000000246 R12: 0000000000000001
[ 1436.598978][T23510] R13: 00007f30c4e16128 R14: 00007f30c4e16090 R15: 00007ffd34ac00b8
[ 1436.598999][T23510]  </TASK>
[ 1436.811334][ T5833] bridge8: port 3(veth25) entered forwarding state
[ 1436.898600][ T5833] bridge9: port 1(veth27) entered blocking state
[ 1436.905121][ T5833] bridge9: port 1(veth27) entered forwarding state
[ 1436.925845][ T5833] bridge9: port 2(veth29) entered blocking state
[ 1436.932338][ T5833] bridge9: port 2(veth29) entered forwarding state
[ 1437.562113][T23517] overlayfs: failed to clone upperpath
[ 1439.338065][T23526] lo speed is unknown, defaulting to 1000
[ 1439.950191][T23529] netlink: 28 bytes leftover after parsing attributes in process `syz.5.5041'.
[ 1440.135834][T23529] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5041'.
[ 1440.145150][T23529] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1440.159482][T23534] netlink: 20 bytes leftover after parsing attributes in process `syz.1.5042'.
[ 1440.522146][T23534] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5042'.
[ 1440.531473][T23534] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1442.180117][T23565] netlink: 44 bytes leftover after parsing attributes in process `syz.1.5052'.
[ 1442.244228][T23565] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5052'.
[ 1442.758617][T23572] fuse: fd is not a fuse device
[ 1443.167182][T23576] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5058'.
[ 1443.229843][T16099] usb 5-1: new high-speed USB device number 117 using dummy_hcd
[ 1443.436204][T23584] overlayfs: failed to clone upperpath
[ 1443.538467][T23577] ceph: No mds server is up or the cluster is laggy
[ 1443.607620][ T5819] libceph: connect (1)[c::]:6789 error -101
[ 1443.613648][ T5819] libceph: mon0 (1)[c::]:6789 connect error
[ 1443.838513][   T30] audit: type=1400 audit(1779899914.303:900): avc:  denied  { create } for  pid=23585 comm="syz.1.5060" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[ 1443.932105][T23591] netlink: 52 bytes leftover after parsing attributes in process `syz.1.5060'.
[ 1444.465971][T23600] netlink: 'syz.3.5063': attribute type 23 has an invalid length.
[ 1444.843214][   T30] audit: type=1400 audit(1779899915.283:901): avc:  denied  { write } for  pid=16029 comm="syz-executor" name="498" dev="tmpfs" ino=2596 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:"
[ 1444.881030][   T30] audit: type=1400 audit(1779899915.343:902): avc:  denied  { write } for  pid=16029 comm="syz-executor" name="498" dev="tmpfs" ino=2596 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:"
[ 1444.909367][   T30] audit: type=1400 audit(1779899915.343:903): avc:  denied  { write } for  pid=16029 comm="syz-executor" name="498" dev="tmpfs" ino=2596 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:"
[ 1444.936564][   T30] audit: type=1400 audit(1779899915.343:904): avc:  denied  { write } for  pid=16029 comm="syz-executor" name="498" dev="tmpfs" ino=2596 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:"
[ 1445.623137][T16099] usb 5-1: unable to get BOS descriptor or descriptor too short
[ 1446.290333][T23615] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5068'.
[ 1446.308395][T23615] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5068'.
[ 1446.470435][T23618] lo speed is unknown, defaulting to 1000
[ 1447.061573][T16099] usb 5-1: unable to read config index 0 descriptor/start: -71
[ 1447.069144][T16099] usb 5-1: can't read configurations, error -71
[ 1447.137631][T23615] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1447.325299][T23625] fuse: fd is not a fuse device
[ 1447.331626][T23625] netlink: 'syz.2.5070': attribute type 1 has an invalid length.
[ 1447.472397][T23625] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1447.619725][T23625] bond1: (slave geneve3): making interface the new active one
[ 1447.628491][T23625] bond1: (slave geneve3): Enslaving as an active interface with an up link
[ 1447.678940][T23630] netlink: 52 bytes leftover after parsing attributes in process `syz.5.5072'.
[ 1447.968889][T23631] ceph: No mds server is up or the cluster is laggy
[ 1447.976442][ T5819] libceph: connect (1)[c::]:6789 error -101
[ 1447.982444][ T5819] libceph: mon0 (1)[c::]:6789 connect error
[ 1448.179813][T23645] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5075'.
[ 1448.788696][T23648] overlayfs: failed to clone upperpath
[ 1449.224428][T23668] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5081'.
[ 1449.388148][T23670] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5081'.
[ 1449.397225][T23670] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1450.084236][T23676] netlink: 44 bytes leftover after parsing attributes in process `syz.2.5082'.
[ 1450.094840][T23676] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5082'.
[ 1450.376158][T23676] siw: device registration error -23
[ 1450.579391][T23684] lo speed is unknown, defaulting to 1000
[ 1451.571031][T23698] lo speed is unknown, defaulting to 1000
[ 1453.344162][   T30] audit: type=1400 audit(1779899923.773:905): avc:  denied  { accept } for  pid=23706 comm="syz.2.5090" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[ 1453.781751][T23713] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5093'.
[ 1453.794850][T23715] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[ 1454.045928][T23717] lo speed is unknown, defaulting to 1000
[ 1454.673460][T23721] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5094'.
[ 1455.069272][T23734] ipt_REJECT: TCP_RESET invalid for non-tcp
[ 1458.277165][T23789] FAULT_INJECTION: forcing a failure.
[ 1458.277165][T23789] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1458.290404][T23789] CPU: 1 UID: 0 PID: 23789 Comm: syz.4.5117 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1458.290433][T23789] Tainted: [L]=SOFTLOCKUP
[ 1458.290439][T23789] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1458.290450][T23789] Call Trace:
[ 1458.290456][T23789]  <TASK>
[ 1458.290463][T23789]  dump_stack_lvl+0x100/0x190
[ 1458.290489][T23789]  should_fail_ex.cold+0x5/0xa
[ 1458.290515][T23789]  _copy_from_user+0x2e/0xd0
[ 1458.290547][T23789]  kstrtouint_from_user+0xd6/0x1d0
[ 1458.290574][T23789]  ? __pfx_kstrtouint_from_user+0x10/0x10
[ 1458.290600][T23789]  ? __lock_acquire+0x4a5/0x2630
[ 1458.290628][T23789]  ? lock_acquire+0x1b1/0x370
[ 1458.290654][T23789]  proc_fail_nth_write+0x83/0x220
[ 1458.290675][T23789]  ? __pfx_proc_fail_nth_write+0x10/0x10
[ 1458.290702][T23789]  vfs_write+0x2aa/0x1070
[ 1458.290723][T23789]  ? __pfx_proc_fail_nth_write+0x10/0x10
[ 1458.290746][T23789]  ? __pfx_vfs_write+0x10/0x10
[ 1458.290765][T23789]  ? __fget_files+0x215/0x3d0
[ 1458.290793][T23789]  ? __fget_files+0x21f/0x3d0
[ 1458.290822][T23789]  ksys_write+0x12a/0x250
[ 1458.290841][T23789]  ? __pfx_ksys_write+0x10/0x10
[ 1458.290863][T23789]  ? rcu_is_watching+0x12/0xc0
[ 1458.290892][T23789]  do_syscall_64+0x115/0x870
[ 1458.290923][T23789]  ? clear_bhb_loop+0x40/0x90
[ 1458.290948][T23789]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1458.290966][T23789] RIP: 0033:0x7f30c4b5d68e
[ 1458.290982][T23789] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1458.290999][T23789] RSP: 002b:00007f30c5a19fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1458.291017][T23789] RAX: ffffffffffffffda RBX: 00007f30c5a1a6c0 RCX: 00007f30c4b5d68e
[ 1458.291028][T23789] RDX: 0000000000000001 RSI: 00007f30c5a1a0a0 RDI: 0000000000000005
[ 1458.291039][T23789] RBP: 00007f30c5a1a090 R08: 0000000000000000 R09: 0000000000000000
[ 1458.291049][T23789] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1458.291059][T23789] R13: 00007f30c4e16218 R14: 00007f30c4e16180 R15: 00007ffd34ac00b8
[ 1458.291083][T23789]  </TASK>
[ 1458.764873][T23793] fuse: fd is not a fuse device
[ 1458.774264][T23800] netlink: 'syz.2.5122': attribute type 11 has an invalid length.
[ 1458.937109][T23800] mac80211_hwsim hwsim19 wlan0: entered promiscuous mode
[ 1458.945089][T23800] mac80211_hwsim hwsim19 wlan0: entered allmulticast mode
[ 1458.962173][ T5718] IPVS: starting estimator thread 0...
[ 1459.107676][T23810] netlink: 104 bytes leftover after parsing attributes in process `syz.3.5126'.
[ 1459.119506][T23806] IPVS: using max 78 ests per chain, 187200 per kthread
[ 1459.343117][T23818] fuse: Bad value for 'fd'
[ 1459.900522][T21451] Bluetooth: hci1: unexpected event for opcode 0x007f
[ 1459.901626][T23819] netlink: 116 bytes leftover after parsing attributes in process `syz.4.5127'.
[ 1460.146609][T23829] lo speed is unknown, defaulting to 1000
[ 1461.336263][T23853] io-wq is not configured for unbound workers
[ 1461.731003][T23858] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5140'.
[ 1461.945481][T23863] fuse: Bad value for 'fd'
[ 1461.971434][T23865] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5143'.
[ 1462.174463][T23868] fuse: Bad value for 'fd'
[ 1463.157840][T23876] pim6reg: entered allmulticast mode
[ 1463.522088][T23881] overlayfs: failed to clone upperpath
[ 1465.031452][T23904] fuse: Bad value for 'fd'
[ 1465.423426][T23917] FAULT_INJECTION: forcing a failure.
[ 1465.423426][T23917] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1465.437815][T23917] CPU: 1 UID: 0 PID: 23917 Comm: syz.4.5160 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1465.437845][T23917] Tainted: [L]=SOFTLOCKUP
[ 1465.437851][T23917] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1465.437859][T23917] Call Trace:
[ 1465.437865][T23917]  <TASK>
[ 1465.437870][T23917]  dump_stack_lvl+0x100/0x190
[ 1465.437887][T23917]  should_fail_ex.cold+0x5/0xa
[ 1465.437903][T23917]  _copy_from_user+0x2e/0xd0
[ 1465.437918][T23917]  sctp_setsockopt+0x8cc/0xb370
[ 1465.437935][T23917]  ? __pfx_sctp_setsockopt+0x10/0x10
[ 1465.437947][T23917]  ? __fget_files+0x215/0x3d0
[ 1465.437962][T23917]  ? selinux_socket_setsockopt+0x6a/0x80
[ 1465.437977][T23917]  ? sock_common_setsockopt+0x2e/0xf0
[ 1465.437989][T23917]  ? __pfx_sock_common_setsockopt+0x10/0x10
[ 1465.438002][T23917]  do_sock_setsockopt+0xf3/0x1d0
[ 1465.438018][T23917]  __sys_setsockopt+0x195/0x220
[ 1465.438037][T23917]  __x64_sys_setsockopt+0xbd/0x160
[ 1465.438052][T23917]  ? do_syscall_64+0x90/0x870
[ 1465.438065][T23917]  ? lockdep_hardirqs_on+0x78/0x100
[ 1465.438079][T23917]  do_syscall_64+0x115/0x870
[ 1465.438092][T23917]  ? clear_bhb_loop+0x40/0x90
[ 1465.438106][T23917]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1465.438117][T23917] RIP: 0033:0x7f30c4b9ce59
[ 1465.438127][T23917] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1465.438137][T23917] RSP: 002b:00007f30c5a5c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1465.438149][T23917] RAX: ffffffffffffffda RBX: 00007f30c4e15fa0 RCX: 00007f30c4b9ce59
[ 1465.438158][T23917] RDX: 0000000000000009 RSI: 0000000000000084 RDI: 0000000000000003
[ 1465.438164][T23917] RBP: 00007f30c5a5c090 R08: 000000000000009c R09: 0000000000000000
[ 1465.438171][T23917] R10: 0000200000000580 R11: 0000000000000246 R12: 0000000000000001
[ 1465.438177][T23917] R13: 00007f30c4e16038 R14: 00007f30c4e15fa0 R15: 00007ffd34ac00b8
[ 1465.438191][T23917]  </TASK>
[ 1466.693670][   T30] audit: type=1400 audit(1779899937.163:906): avc:  denied  { shutdown } for  pid=23920 comm="syz.4.5162" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[ 1466.943743][T23929] overlayfs: failed to clone upperpath
[ 1467.648055][T23953] fuse: Bad value for 'fd'
[ 1467.719461][T23949] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1467.876876][T23957] lo speed is unknown, defaulting to 1000
[ 1467.958914][T23959] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1467.966256][T23959] bridge0: port 2(bridge_slave_1) entered listening state
[ 1467.973625][T23959] bridge0: port 1(
1¾x9ÿ) entered blocking state
[ 1467.980046][T23959] bridge0: port 1(
1¾x9ÿ) entered listening state
[ 1468.694989][   T30] audit: type=1400 audit(1779899939.163:907): avc:  denied  { block_suspend } for  pid=23966 comm="syz.1.5176" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[ 1468.740887][T23970] fuse: fd is not a fuse device
[ 1469.824560][T23997] lo speed is unknown, defaulting to 1000
[ 1470.973822][T24011] fuse: fd is not a fuse device
[ 1471.514591][T24018] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5192'.
[ 1471.628214][T24016] bond0: entered allmulticast mode
[ 1471.666374][T24016] bond_slave_0: entered allmulticast mode
[ 1471.673219][T24016] bond_slave_1: entered allmulticast mode
[ 1471.696938][T24018] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5192'.
[ 1471.706031][T24018] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1471.923553][T24016] netlink: 44 bytes leftover after parsing attributes in process `syz.1.5189'.
[ 1472.227305][ T5819] usb 5-1: new high-speed USB device number 119 using dummy_hcd
[ 1472.298632][T24036] netlink: 12 bytes leftover after parsing attributes in process `syz.5.5197'.
[ 1472.308805][T24036] netlink: 20 bytes leftover after parsing attributes in process `syz.5.5197'.
[ 1472.318727][T24036] netlink: 20 bytes leftover after parsing attributes in process `syz.5.5197'.
[ 1473.411134][ T5819] usb 5-1: Using ep0 maxpacket: 32
[ 1473.869263][T24082] netlink: 36 bytes leftover after parsing attributes in process `syz.3.5210'.
[ 1474.529464][ T5819] usb 5-1: config 155 has an invalid descriptor of length 0, skipping remainder of the config
[ 1474.539812][ T5819] usb 5-1: config 155 interface 0 altsetting 0 has an endpoint descriptor with address 0xE2, changing to 0x82
[ 1474.551465][ T5819] usb 5-1: config 155 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1474.562498][ T5819] usb 5-1: config 155 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 11
[ 1474.764675][   T30] audit: type=1400 audit(1779899945.223:908): avc:  denied  { mount } for  pid=24108 comm="syz.3.5221" name="/" dev="devtmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[ 1474.934376][T24111] netlink: 63503 bytes leftover after parsing attributes in process `syz.1.5219'.
[ 1475.037873][ T5819] usb 5-1: string descriptor 0 read error: -71
[ 1475.045239][ T5819] usb 5-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30
[ 1475.056039][ T5819] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1475.201351][ T5819] usb 5-1: can't set config #155, error -71
[ 1475.212304][ T5819] usb 5-1: USB disconnect, device number 119
[ 1475.365747][   T30] audit: type=1400 audit(1779899945.833:909): avc:  denied  { shutdown } for  pid=24107 comm="syz.4.5220" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 1475.444465][T24120] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5222'.
[ 1475.617105][   T30] audit: type=1400 audit(1779899945.983:910): avc:  denied  { read } for  pid=24107 comm="syz.4.5220" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 1475.921549][T24120] overlayfs: failed to clone upperpath
[ 1478.816882][T24154] FAULT_INJECTION: forcing a failure.
[ 1478.816882][T24154] name failslab, interval 1, probability 0, space 0, times 0
[ 1478.822127][   T30] audit: type=1400 audit(1779899949.283:911): avc:  denied  { watch watch_reads } for  pid=24155 comm="syz.1.5232" path="pipe:[52544]" dev="pipefs" ino=52544 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[ 1478.829503][T24154] CPU: 0 UID: 0 PID: 24154 Comm: syz.4.5231 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1478.829527][T24154] Tainted: [L]=SOFTLOCKUP
[ 1478.829533][T24154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1478.829542][T24154] Call Trace:
[ 1478.829549][T24154]  <TASK>
[ 1478.829554][T24154]  dump_stack_lvl+0x100/0x190
[ 1478.829578][T24154]  should_fail_ex.cold+0x5/0xa
[ 1478.829600][T24154]  ? tomoyo_encode2+0xfb/0x3c0
[ 1478.829623][T24154]  should_failslab+0xc2/0x120
[ 1478.829641][T24154]  __kmalloc_noprof+0xe0/0x850
[ 1478.829664][T24154]  ? d_absolute_path+0x136/0x1b0
[ 1478.829685][T24154]  tomoyo_encode2+0xfb/0x3c0
[ 1478.829711][T24154]  tomoyo_encode+0x29/0x50
[ 1478.829733][T24154]  tomoyo_realpath_from_path+0x18c/0x690
[ 1478.829761][T24154]  tomoyo_path_number_perm+0x23c/0x580
[ 1478.829781][T24154]  ? tomoyo_path_number_perm+0x22e/0x580
[ 1478.829803][T24154]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1478.829853][T24154]  ? find_held_lock+0x2b/0x80
[ 1478.829868][T24154]  ? __fget_files+0x215/0x3d0
[ 1478.829887][T24154]  ? hook_file_ioctl_common+0x149/0x410
[ 1478.829903][T24154]  ? __fget_files+0x215/0x3d0
[ 1478.829926][T24154]  ? __fget_files+0x21f/0x3d0
[ 1478.829948][T24154]  security_file_ioctl+0xd3/0x230
[ 1478.829972][T24154]  __x64_sys_ioctl+0xb7/0x210
[ 1478.829995][T24154]  do_syscall_64+0x115/0x870
[ 1478.830015][T24154]  ? clear_bhb_loop+0x40/0x90
[ 1478.830034][T24154]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1478.830049][T24154] RIP: 0033:0x7f30c4b9ce59
[ 1478.830063][T24154] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1478.830078][T24154] RSP: 002b:00007f30c5a5c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1478.830094][T24154] RAX: ffffffffffffffda RBX: 00007f30c4e15fa0 RCX: 00007f30c4b9ce59
[ 1478.830104][T24154] RDX: 0000200000000000 RSI: 0000000000005393 RDI: 0000000000000003
[ 1478.830113][T24154] RBP: 00007f30c5a5c090 R08: 0000000000000000 R09: 0000000000000000
[ 1478.830122][T24154] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1478.830131][T24154] R13: 00007f30c4e16038 R14: 00007f30c4e15fa0 R15: 00007ffd34ac00b8
[ 1478.830154][T24154]  </TASK>
[ 1478.830171][T24154] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1478.971222][T24157] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=35561 sclass=netlink_route_socket pid=24157 comm=syz.1.5232
[ 1479.941625][T24178] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5241'.
[ 1479.950739][T24178] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1479.974917][T24180] netlink: 16 bytes leftover after parsing attributes in process `syz.3.5242'.
[ 1480.463883][T24189] overlay: Unknown parameter 'uid<00000000000000060929'
[ 1480.481903][T24186] overlayfs: failed to clone upperpath
[ 1480.884512][T24191] ceph: No mds server is up or the cluster is laggy
[ 1480.891520][ T5718] libceph: connect (1)[c::]:6789 error -101
[ 1480.897691][ T5718] libceph: mon0 (1)[c::]:6789 connect error
[ 1481.123900][   T30] audit: type=1400 audit(1779899951.593:912): avc:  denied  { create } for  pid=24182 comm="syz.5.5243" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[ 1481.576709][T24207] overlayfs: failed to clone upperpath
[ 1481.671360][   T30] audit: type=1400 audit(1779899952.093:913): avc:  denied  { watch } for  pid=24192 comm="syz.1.5247" path="/384/bus/file1" dev="tmpfs" ino=2029 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[ 1482.110639][T24210] FAULT_INJECTION: forcing a failure.
[ 1482.110639][T24210] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1482.123906][T24210] CPU: 0 UID: 0 PID: 24210 Comm: syz.4.5248 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1482.123934][T24210] Tainted: [L]=SOFTLOCKUP
[ 1482.123939][T24210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1482.123949][T24210] Call Trace:
[ 1482.123957][T24210]  <TASK>
[ 1482.123965][T24210]  dump_stack_lvl+0x100/0x190
[ 1482.123988][T24210]  should_fail_ex.cold+0x5/0xa
[ 1482.124012][T24210]  _copy_from_user+0x2e/0xd0
[ 1482.124036][T24210]  kstrtouint_from_user+0xd6/0x1d0
[ 1482.124069][T24210]  ? __pfx_kstrtouint_from_user+0x10/0x10
[ 1482.124094][T24210]  ? __lock_acquire+0x4a5/0x2630
[ 1482.124115][T24210]  ? lock_acquire+0x1b1/0x370
[ 1482.124136][T24210]  proc_fail_nth_write+0x83/0x220
[ 1482.124154][T24210]  ? __pfx_proc_fail_nth_write+0x10/0x10
[ 1482.124176][T24210]  vfs_write+0x2aa/0x1070
[ 1482.124193][T24210]  ? __pfx_proc_fail_nth_write+0x10/0x10
[ 1482.124211][T24210]  ? __pfx_vfs_write+0x10/0x10
[ 1482.124226][T24210]  ? __fget_files+0x215/0x3d0
[ 1482.124251][T24210]  ? __fget_files+0x21f/0x3d0
[ 1482.124275][T24210]  ksys_write+0x12a/0x250
[ 1482.124292][T24210]  ? __pfx_ksys_write+0x10/0x10
[ 1482.124311][T24210]  ? rcu_is_watching+0x12/0xc0
[ 1482.124335][T24210]  do_syscall_64+0x115/0x870
[ 1482.124360][T24210]  ? clear_bhb_loop+0x40/0x90
[ 1482.124378][T24210]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1482.124393][T24210] RIP: 0033:0x7f30c4b5d68e
[ 1482.124407][T24210] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1482.124421][T24210] RSP: 002b:00007f30c5a19fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1482.124438][T24210] RAX: ffffffffffffffda RBX: 00007f30c5a1a6c0 RCX: 00007f30c4b5d68e
[ 1482.124449][T24210] RDX: 0000000000000001 RSI: 00007f30c5a1a0a0 RDI: 0000000000000006
[ 1482.124457][T24210] RBP: 00007f30c5a1a090 R08: 0000000000000000 R09: 0000000000000000
[ 1482.124466][T24210] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1482.124474][T24210] R13: 00007f30c4e16218 R14: 00007f30c4e16180 R15: 00007ffd34ac00b8
[ 1482.124495][T24210]  </TASK>
[ 1482.861795][T24221] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5253'.
[ 1482.897703][T24221] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5253'.
[ 1482.922612][T24221] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1483.073583][T24223] netlink: 20 bytes leftover after parsing attributes in process `syz.2.5255'.
[ 1483.134048][T24223] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5255'.
[ 1483.197387][T24223] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1483.212721][T24228] gretap1: entered promiscuous mode
[ 1483.390311][T21451] Bluetooth: hci1: ACL packet for unknown connection handle 201
[ 1483.583905][    C1] bridge0: port 1(
1¾x9ÿ) entered learning state
[ 1483.593613][    C1] bridge0: port 2(bridge_slave_1) entered learning state
[ 1484.133978][T24252] FAULT_INJECTION: forcing a failure.
[ 1484.133978][T24252] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1484.227330][ T1310] ieee802154 phy0 wpan0: encryption failed: -22
[ 1484.233798][ T1310] ieee802154 phy1 wpan1: encryption failed: -22
[ 1484.294365][T24250] netlink: 116 bytes leftover after parsing attributes in process `syz.5.5262'.
[ 1484.303522][T24252] CPU: 1 UID: 0 PID: 24252 Comm: syz.4.5263 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1484.303551][T24252] Tainted: [L]=SOFTLOCKUP
[ 1484.303557][T24252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1484.303566][T24252] Call Trace:
[ 1484.303572][T24252]  <TASK>
[ 1484.303578][T24252]  dump_stack_lvl+0x100/0x190
[ 1484.303602][T24252]  should_fail_ex.cold+0x5/0xa
[ 1484.303626][T24252]  _copy_from_user+0x2e/0xd0
[ 1484.303647][T24252]  copy_from_sockptr_offset.constprop.0+0x12c/0x150
[ 1484.303667][T24252]  ? __pfx_copy_from_sockptr_offset.constprop.0+0x10/0x10
[ 1484.303690][T24252]  do_sock_getsockopt+0x530/0x6e0
[ 1484.303705][T24252]  ? __lock_acquire+0x4a5/0x2630
[ 1484.303728][T24252]  ? __pfx_do_sock_getsockopt+0x10/0x10
[ 1484.303744][T24252]  ? find_held_lock+0x2b/0x80
[ 1484.303759][T24252]  ? ksys_write+0x190/0x250
[ 1484.303781][T24252]  ? find_held_lock+0x2b/0x80
[ 1484.303801][T24252]  ? __fget_files+0x21f/0x3d0
[ 1484.303828][T24252]  __sys_getsockopt+0x148/0x260
[ 1484.303861][T24252]  ? __x64_sys_getsockopt+0xbd/0x160
[ 1484.303885][T24252]  __x64_sys_getsockopt+0xbd/0x160
[ 1484.303908][T24252]  ? do_syscall_64+0x90/0x870
[ 1484.303929][T24252]  ? lockdep_hardirqs_on+0x78/0x100
[ 1484.303950][T24252]  do_syscall_64+0x115/0x870
[ 1484.303970][T24252]  ? clear_bhb_loop+0x40/0x90
[ 1484.303991][T24252]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1484.304007][T24252] RIP: 0033:0x7f30c4b9ce59
[ 1484.304022][T24252] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1484.304038][T24252] RSP: 002b:00007f30c5a5c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[ 1484.304054][T24252] RAX: ffffffffffffffda RBX: 00007f30c4e15fa0 RCX: 00007f30c4b9ce59
[ 1484.304065][T24252] RDX: 0000000000000003 RSI: 0000000000000012 RDI: 0000000000000004
[ 1484.304075][T24252] RBP: 00007f30c5a5c090 R08: 0000200000000080 R09: 0000000000000000
[ 1484.304085][T24252] R10: 0000200000000140 R11: 0000000000000246 R12: 0000000000000001
[ 1484.304096][T24252] R13: 00007f30c4e16038 R14: 00007f30c4e15fa0 R15: 00007ffd34ac00b8
[ 1484.304118][T24252]  </TASK>
[ 1484.922161][   T30] audit: type=1400 audit(1779899955.393:914): avc:  denied  { create } for  pid=24261 comm="syz.3.5265" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=appletalk_socket permissive=1
[ 1485.365799][T24275] netlink: 44 bytes leftover after parsing attributes in process `syz.3.5273'.
[ 1485.383633][T24275] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5273'.
[ 1485.410716][T24275] siw: device registration error -23
[ 1486.059092][   T30] audit: type=1400 audit(1779899956.473:915): avc:  denied  { wake_alarm } for  pid=24283 comm="syz.1.5276" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[ 1486.415128][T24294] netlink: 16 bytes leftover after parsing attributes in process `syz.5.5275'.
[ 1486.480447][T24297] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5282'.
[ 1486.551096][T24298] overlayfs: failed to clone upperpath
[ 1486.576796][T24297] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5282'.
[ 1486.593095][ T5718] usb 5-1: new high-speed USB device number 120 using dummy_hcd
[ 1486.618448][T24297] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1486.715267][T24303] fuse: Unknown parameter 'fo'
[ 1486.813207][ T5718] usb 5-1: Using ep0 maxpacket: 8
[ 1486.820128][ T5718] usb 5-1: too many endpoints for config 0 interface 0 altsetting 8: 41, using maximum allowed: 30
[ 1486.831838][ T5718] usb 5-1: config 0 interface 0 altsetting 8 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1486.843078][ T5718] usb 5-1: config 0 interface 0 altsetting 8 has 1 endpoint descriptor, different from the interface descriptor's value: 41
[ 1486.856183][ T5718] usb 5-1: config 0 interface 0 has no altsetting 0
[ 1486.862985][ T5718] usb 5-1: New USB device found, idVendor=0458, idProduct=5016, bcdDevice= 0.00
[ 1486.873714][ T5718] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1486.891583][ T5718] usb 5-1: config 0 descriptor??
[ 1487.313327][T24309] overlayfs: failed to resolve './file1': -2
[ 1487.362101][T24310] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5279'.
[ 1488.143571][T24329] netlink: 44 bytes leftover after parsing attributes in process `syz.2.5291'.
[ 1488.153294][T24329] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5291'.
[ 1488.173909][T24329] siw: device registration error -23
[ 1488.341101][ T5718] usbhid 5-1:0.0: can't add hid device: -71
[ 1488.347173][ T5718] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[ 1488.492676][ T5718] usb 5-1: USB disconnect, device number 120
[ 1488.533778][T24340] batadv_slave_0: entered promiscuous mode
[ 1488.546691][T24339] batadv_slave_0: left promiscuous mode
[ 1490.221196][T24361] FAULT_INJECTION: forcing a failure.
[ 1490.221196][T24361] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1490.358218][T24361] CPU: 0 UID: 0 PID: 24361 Comm: syz.4.5304 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1490.358249][T24361] Tainted: [L]=SOFTLOCKUP
[ 1490.358256][T24361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1490.358265][T24361] Call Trace:
[ 1490.358271][T24361]  <TASK>
[ 1490.358278][T24361]  dump_stack_lvl+0x100/0x190
[ 1490.358303][T24361]  should_fail_ex.cold+0x5/0xa
[ 1490.358327][T24361]  strncpy_from_user+0x3b/0x2d0
[ 1490.358353][T24361]  do_getname+0x78/0x390
[ 1490.358381][T24361]  __x64_sys_unlinkat+0xa0/0x130
[ 1490.358409][T24361]  do_syscall_64+0x115/0x870
[ 1490.358430][T24361]  ? clear_bhb_loop+0x40/0x90
[ 1490.358453][T24361]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1490.358471][T24361] RIP: 0033:0x7f30c4b9ce59
[ 1490.358487][T24361] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1490.358505][T24361] RSP: 002b:00007f30c5a5c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000107
[ 1490.358523][T24361] RAX: ffffffffffffffda RBX: 00007f30c4e15fa0 RCX: 00007f30c4b9ce59
[ 1490.358535][T24361] RDX: 0000000000000200 RSI: 0000200000000000 RDI: ffffffffffffff9c
[ 1490.358546][T24361] RBP: 00007f30c5a5c090 R08: 0000000000000000 R09: 0000000000000000
[ 1490.358557][T24361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1490.358567][T24361] R13: 00007f30c4e16038 R14: 00007f30c4e15fa0 R15: 00007ffd34ac00b8
[ 1490.358590][T24361]  </TASK>
[ 1490.804631][T24365] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5305'.
[ 1490.851913][T24370] FAULT_INJECTION: forcing a failure.
[ 1490.851913][T24370] name failslab, interval 1, probability 0, space 0, times 0
[ 1490.865886][T24370] CPU: 1 UID: 0 PID: 24370 Comm: syz.4.5307 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1490.865908][T24370] Tainted: [L]=SOFTLOCKUP
[ 1490.865912][T24370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1490.865918][T24370] Call Trace:
[ 1490.865922][T24370]  <TASK>
[ 1490.865927][T24370]  dump_stack_lvl+0x100/0x190
[ 1490.865944][T24370]  should_fail_ex.cold+0x5/0xa
[ 1490.865959][T24370]  ? bpf_test_init.isra.0+0x88/0x100
[ 1490.865974][T24370]  should_failslab+0xc2/0x120
[ 1490.865988][T24370]  __kmalloc_noprof+0xe0/0x850
[ 1490.866007][T24370]  bpf_test_init.isra.0+0x88/0x100
[ 1490.866020][T24370]  bpf_prog_test_run_skb+0x497/0x3540
[ 1490.866037][T24370]  ? find_held_lock+0x2b/0x80
[ 1490.866047][T24370]  ? __fget_files+0x131/0x3d0
[ 1490.866065][T24370]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[ 1490.866079][T24370]  ? fput+0x79/0x100
[ 1490.866096][T24370]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[ 1490.866108][T24370]  __sys_bpf+0x1725/0x4b90
[ 1490.866127][T24370]  ? __pfx___sys_bpf+0x10/0x10
[ 1490.866142][T24370]  ? proc_fail_nth_write+0x9f/0x220
[ 1490.866153][T24370]  ? find_held_lock+0x2b/0x80
[ 1490.866166][T24370]  ? find_held_lock+0x2b/0x80
[ 1490.866181][T24370]  ? ksys_write+0x190/0x250
[ 1490.866193][T24370]  ? ksys_write+0x190/0x250
[ 1490.866206][T24370]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[ 1490.866224][T24370]  ? kernel_write+0x6b3/0x6c0
[ 1490.866235][T24370]  ? __fget_files+0x215/0x3d0
[ 1490.866255][T24370]  ? fput+0x79/0x100
[ 1490.866269][T24370]  ? ksys_write+0x1ac/0x250
[ 1490.866281][T24370]  ? __pfx_ksys_write+0x10/0x10
[ 1490.866303][T24370]  __x64_sys_bpf+0x7b/0xc0
[ 1490.866312][T24370]  ? lockdep_hardirqs_on+0x78/0x100
[ 1490.866326][T24370]  do_syscall_64+0x115/0x870
[ 1490.866340][T24370]  ? clear_bhb_loop+0x40/0x90
[ 1490.866353][T24370]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1490.866364][T24370] RIP: 0033:0x7f30c4b9ce59
[ 1490.866374][T24370] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1490.866385][T24370] RSP: 002b:00007f30c5a5c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1490.866396][T24370] RAX: ffffffffffffffda RBX: 00007f30c4e15fa0 RCX: 00007f30c4b9ce59
[ 1490.866403][T24370] RDX: 0000000000000050 RSI: 0000200000000240 RDI: 000000000000000a
[ 1490.866409][T24370] RBP: 00007f30c5a5c090 R08: 0000000000000000 R09: 0000000000000000
[ 1490.866416][T24370] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1490.866422][T24370] R13: 00007f30c4e16038 R14: 00007f30c4e15fa0 R15: 00007ffd34ac00b8
[ 1490.866435][T24370]  </TASK>
[ 1492.187664][T24381] netlink: 16 bytes leftover after parsing attributes in process `syz.3.5311'.
[ 1492.605913][T24394] FAULT_INJECTION: forcing a failure.
[ 1492.605913][T24394] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1492.623682][T24394] CPU: 1 UID: 0 PID: 24394 Comm: syz.4.5314 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1492.623714][T24394] Tainted: [L]=SOFTLOCKUP
[ 1492.623721][T24394] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1492.623731][T24394] Call Trace:
[ 1492.623738][T24394]  <TASK>
[ 1492.623746][T24394]  dump_stack_lvl+0x100/0x190
[ 1492.623773][T24394]  should_fail_ex.cold+0x5/0xa
[ 1492.623799][T24394]  _copy_to_user+0x32/0xd0
[ 1492.623823][T24394]  simple_read_from_buffer+0xcb/0x170
[ 1492.623850][T24394]  proc_fail_nth_read+0x1af/0x230
[ 1492.623872][T24394]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1492.623894][T24394]  ? rw_verify_area+0xce/0x6d0
[ 1492.623911][T24394]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1492.623931][T24394]  vfs_read+0x1e4/0xb30
[ 1492.623955][T24394]  ? __pfx_vfs_read+0x10/0x10
[ 1492.623974][T24394]  ? __fget_files+0x215/0x3d0
[ 1492.624002][T24394]  ? __fget_files+0x21f/0x3d0
[ 1492.624031][T24394]  ksys_read+0x12a/0x250
[ 1492.624050][T24394]  ? __pfx_ksys_read+0x10/0x10
[ 1492.624071][T24394]  ? rcu_is_watching+0x12/0xc0
[ 1492.624101][T24394]  do_syscall_64+0x115/0x870
[ 1492.624124][T24394]  ? clear_bhb_loop+0x40/0x90
[ 1492.624152][T24394]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1492.624170][T24394] RIP: 0033:0x7f30c4b5d68e
[ 1492.624186][T24394] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1492.624203][T24394] RSP: 002b:00007f30c5a5bfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1492.624221][T24394] RAX: ffffffffffffffda RBX: 00007f30c5a5c6c0 RCX: 00007f30c4b5d68e
[ 1492.624233][T24394] RDX: 000000000000000f RSI: 00007f30c5a5c0a0 RDI: 0000000000000004
[ 1492.624244][T24394] RBP: 00007f30c5a5c090 R08: 0000000000000000 R09: 0000000000000000
[ 1492.624255][T24394] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1492.624265][T24394] R13: 00007f30c4e16038 R14: 00007f30c4e15fa0 R15: 00007ffd34ac00b8
[ 1492.624290][T24394]  </TASK>
[ 1492.957593][T24387] netlink: 'syz.5.5310': attribute type 1 has an invalid length.
[ 1492.965478][T24387] netlink: 'syz.5.5310': attribute type 2 has an invalid length.
[ 1493.180412][T24405] overlayfs: failed to clone upperpath
[ 1493.307023][T24403] netlink: 44 bytes leftover after parsing attributes in process `syz.4.5318'.
[ 1493.316604][T24403] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5318'.
[ 1493.719839][T24401] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5317'.
[ 1493.943392][T24406] siw: device registration error -23
[ 1494.335558][T24401] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5317'.
[ 1494.345429][T24401] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5317'.
[ 1494.357358][T24401] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5317'.
[ 1494.366419][T24401] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5317'.
[ 1495.762377][T24414] netlink: 20 bytes leftover after parsing attributes in process `syz.1.5319'.
[ 1495.919293][T24414] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5319'.
[ 1495.974772][T24414] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1496.596145][T24440] netlink: 'syz.2.5328': attribute type 1 has an invalid length.
[ 1496.751441][T24449] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5332'.
[ 1496.882228][T24457] netlink: 24 bytes leftover after parsing attributes in process `syz.5.5335'.
[ 1497.058376][T24460] netlink: 'syz.1.5334': attribute type 4 has an invalid length.
[ 1497.329610][T24465] lo speed is unknown, defaulting to 1000
[ 1498.052437][T24476] netlink: 'syz.3.5340': attribute type 1 has an invalid length.
[ 1498.483208][T24483] 
: renamed from bond_slave_0
[ 1498.960625][    C1] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1498.969548][    C1] bridge0: topology change detected, propagating
[ 1498.976282][    C1] bridge0: port 1(
1¾x9ÿ) entered forwarding state
[ 1498.982829][    C1] bridge0: topology change detected, propagating
[ 1499.067973][T24498] overlayfs: failed to clone upperpath
[ 1500.030689][T24507] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5349'.
[ 1500.390102][T21451] Bluetooth: hci0: unexpected event for opcode 0x1003
[ 1501.833424][T24524] lo speed is unknown, defaulting to 1000
[ 1501.899598][T24522] lo speed is unknown, defaulting to 1000
[ 1502.649972][T24538] fuse: fd is not a fuse device
[ 1502.655736][T24539] fuse: fd is not a fuse device
[ 1502.939454][T24551] netlink: 24 bytes leftover after parsing attributes in process `syz.3.5364'.
[ 1503.075716][ T9195] usb 5-1: new low-speed USB device number 121 using dummy_hcd
[ 1503.186881][T24554] lo speed is unknown, defaulting to 1000
[ 1503.389184][ T9195] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[ 1503.397907][ T9195] usb 5-1: config 0 has no interface number 0
[ 1503.571337][ T9195] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[ 1503.583024][ T9195] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[ 1503.594222][ T9195] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[ 1503.603571][ T9195] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1503.614109][ T9195] usb 5-1: config 0 descriptor??
[ 1503.632642][T24535] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1503.647797][ T9195] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[ 1504.073371][T24562] lo speed is unknown, defaulting to 1000
[ 1504.480906][T21451] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[ 1504.508460][T21451] Bluetooth: hci0: Injecting HCI hardware error event
[ 1504.518341][T21451] Bluetooth: hci0: hardware error 0x00
[ 1504.657623][ T5819] usb 5-1: USB disconnect, device number 121
[ 1504.692650][T24567] netlink: 68 bytes leftover after parsing attributes in process `syz.3.5368'.
[ 1505.058192][   T30] audit: type=1400 audit(1779899975.523:916): avc:  denied  { lock } for  pid=24571 comm="syz.1.5369" path="socket:[82127]" dev="sockfs" ino=82127 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_stream_socket permissive=1
[ 1505.920743][T24580] netlink: 24 bytes leftover after parsing attributes in process `syz.5.5370'.
[ 1505.956854][ T5819] lo speed is unknown, defaulting to 1000
[ 1506.553165][   T30] audit: type=1400 audit(1779899977.013:917): avc:  denied  { checkpoint_restore } for  pid=24588 comm="syz.1.5376" capability=40  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[ 1506.742956][T24608] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5383'.
[ 1506.759601][T24608] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5383'.
[ 1506.768475][T24608] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1506.887318][T21451] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 1506.965017][T24604] netlink: 116 bytes leftover after parsing attributes in process `syz.4.5372'.
[ 1508.743012][ T5718] usb 5-1: new high-speed USB device number 122 using dummy_hcd
[ 1508.948298][ T5718] usb 5-1: Using ep0 maxpacket: 16
[ 1508.968902][ T5718] usb 5-1: unable to get BOS descriptor or descriptor too short
[ 1508.982364][ T5718] usb 5-1: config 1 has an invalid interface number: 77 but max is 0
[ 1509.038721][ T5718] usb 5-1: config 1 has no interface number 0
[ 1509.053393][ T5718] usb 5-1: config 1 interface 77 has no altsetting 0
[ 1509.071722][ T5718] usb 5-1: New USB device found, idVendor=0bb4, idProduct=0a76, bcdDevice=cd.c5
[ 1509.090257][ T5718] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1509.106974][ T5718] usb 5-1: Product: syz
[ 1509.122548][ T5718] usb 5-1: Manufacturer: syz
[ 1509.187083][ T5718] usb 5-1: SerialNumber: syz
[ 1510.000028][T24655] netlink: 'syz.1.5396': attribute type 4 has an invalid length.
[ 1510.189774][T24660] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5398'.
[ 1511.568882][T24668] overlayfs: failed to clone upperpath
[ 1511.874815][ T5718] usb 5-1: USB disconnect, device number 122
[ 1512.059698][T21451] Bluetooth: hci3: unexpected event for opcode 0x1405
[ 1512.422933][ T5718] usb 5-1: new low-speed USB device number 123 using dummy_hcd
[ 1513.135283][ T5718] usb 5-1: config 0 has an invalid descriptor of length 67, skipping remainder of the config
[ 1513.145638][ T5718] usb 5-1: too many endpoints for config 0 interface 0 altsetting 94: 132, using maximum allowed: 30
[ 1513.156910][ T5718] usb 5-1: config 0 interface 0 altsetting 94 has 0 endpoint descriptors, different from the interface descriptor's value: 132
[ 1513.170339][ T5718] usb 5-1: config 0 interface 0 has no altsetting 0
[ 1513.177134][ T5718] usb 5-1: New USB device found, idVendor=5543, idProduct=0004, bcdDevice= 0.00
[ 1513.187723][ T5718] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1513.206198][ T5718] usb 5-1: config 0 descriptor??
[ 1513.442138][T24691] xt_hashlimit: max too large, truncated to 1048576
[ 1513.942443][T24709] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5403'.
[ 1514.074377][T24710] geneve2: left promiscuous mode
[ 1514.079450][T24710] geneve2: left allmulticast mode
[ 1514.098279][T24710] gretap1: left promiscuous mode
[ 1514.135892][T24710] batman_adv: batadv0: Interface activated: gretap1
[ 1514.151516][T24710] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1514.626364][ T5832] bridge2: port 1(veth3) entered blocking state
[ 1514.632762][ T5832] bridge2: port 1(veth3) entered forwarding state
[ 1514.719444][ T5832] bridge2: port 3(veth5) entered blocking state
[ 1514.725899][ T5832] bridge2: port 3(veth5) entered forwarding state
[ 1514.734207][ T5832] bridge3: port 1(veth7) entered blocking state
[ 1514.740553][ T5832] bridge3: port 1(veth7) entered forwarding state
[ 1514.749063][ T5832] bridge3: port 3(veth9) entered blocking state
[ 1514.755390][ T5832] bridge3: port 3(veth9) entered forwarding state
[ 1514.771954][   T30] audit: type=1400 audit(1779899985.233:918): avc:  denied  { write } for  pid=24715 comm="syz.2.5416" path="socket:[83463]" dev="sockfs" ino=83463 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[ 1514.812448][   T30] audit: type=1400 audit(1779899985.233:919): avc:  denied  { setopt } for  pid=24715 comm="syz.2.5416" lport=47806 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[ 1514.995896][T24725] lo speed is unknown, defaulting to 1000
[ 1515.392674][T24718] fuse: fd is not a fuse device
[ 1515.658749][   T30] audit: type=1400 audit(1779899986.103:920): avc:  denied  { getopt } for  pid=24729 comm="syz.5.5420" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[ 1515.679398][T24731] team0: entered promiscuous mode
[ 1516.032339][ T5819] usb 5-1: USB disconnect, device number 123
[ 1516.035674][T24731] team_slave_0: entered promiscuous mode
[ 1516.182312][T24743] netlink: 20 bytes leftover after parsing attributes in process `syz.5.5420'.
[ 1516.207169][T24733] fuse: Bad value for 'fd'
[ 1516.214265][T24731] team_slave_1: entered promiscuous mode
[ 1516.224868][T24731] team0: entered allmulticast mode
[ 1516.230137][T24731] team_slave_0: entered allmulticast mode
[ 1516.237591][T24731] team_slave_1: entered allmulticast mode
[ 1516.264839][T24740] lo speed is unknown, defaulting to 1000
[ 1516.716466][   T30] audit: type=1400 audit(1779899987.193:921): avc:  denied  { write } for  pid=24756 comm="syz.3.5428" name="/" dev="ocfs2_dlmfs" ino=82375 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 1516.717152][T24757] (syz.3.5428,24757,0):dlmfs_mkdir:421 ERROR: invalid domain name for directory.
[ 1516.749350][   T30] audit: type=1400 audit(1779899987.193:922): avc:  denied  { add_name } for  pid=24756 comm="syz.3.5428" name=131377C5FC35D41454D5D41D29AD1A6029598146E6BE166E41AD0DBD4054033C9F33BBDA8224A2F3D772E7636E48B33CBF708372E8F1B9933EC5127743BE2206209EF02DF9CBF2F6E880D338 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 1516.915303][   T30] audit: type=1400 audit(1779899987.193:923): avc:  denied  { create } for  pid=24756 comm="syz.3.5428" name=131377C5FC35D41454D5D41D29AD1A6029598146E6BE166E41AD0DBD4054033C9F33BBDA8224A2F3D772E7636E48B33CBF708372E8F1B9933EC5127743BE2206209EF02DF9CBF2F6E880D338 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[ 1516.982592][   T30] audit: type=1400 audit(1779899987.193:924): avc:  denied  { associate } for  pid=24756 comm="syz.3.5428" name=131377C5FC35D41454D5D41D29AD1A6029598146E6BE166E41AD0DBD4054033C9F33BBDA8224A2F3D772E7636E48B33CBF708372E8F1B9933EC5127743BE2206209EF02DF9CBF2F6E880D338 scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[ 1517.305148][T24766] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=24766 comm=syz.4.5431
[ 1517.354819][T24769] fuse: Bad value for 'fd'
[ 1518.042359][T24765] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5431'.
[ 1518.546677][T24772] netlink: 48 bytes leftover after parsing attributes in process `syz.3.5434'.
[ 1518.556807][T24772] openvswitch: netlink: Flow actions attr not present in new flow.
[ 1518.725286][T24779] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5436'.
[ 1519.126942][T24788] netlink: 20 bytes leftover after parsing attributes in process `syz.5.5439'.
[ 1519.152494][T24788] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5439'.
[ 1519.161428][T24788] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1519.290453][ T5806] usb 5-1: new high-speed USB device number 124 using dummy_hcd
[ 1519.763345][ T5806] usb 5-1: Using ep0 maxpacket: 16
[ 1519.772555][ T5806] usb 5-1: config 0 has an invalid descriptor of length 39, skipping remainder of the config
[ 1519.783327][ T5806] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1519.794416][ T5806] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[ 1519.960054][ T5806] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[ 1519.971548][ T5806] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1519.986182][ T5806] usb 5-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[ 1519.995851][ T5806] usb 5-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[ 1520.006178][ T5806] usb 5-1: Manufacturer: syz
[ 1520.072748][ T5806] usb 5-1: config 0 descriptor??
[ 1520.280611][T24799] lo speed is unknown, defaulting to 1000
[ 1520.862998][ T5806] rc_core: IR keymap rc-hauppauge not found
[ 1520.869552][ T5806] Registered IR keymap rc-empty
[ 1520.875054][ T5806] mceusb 5-1:0.0: Error: mce write submit urb error = -90
[ 1520.884107][ T5806] mceusb 5-1:0.0: Error: mce write submit urb error = -90
[ 1520.933799][ T5806] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/rc/rc0
[ 1520.960514][ T5806] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/rc/rc0/input111
[ 1521.093051][ T5806] mceusb 5-1:0.0: Error: mce write submit urb error = -90
[ 1521.143202][ T5806] mceusb 5-1:0.0: Error: mce write submit urb error = -90
[ 1521.253609][ T5806] mceusb 5-1:0.0: Error: mce write submit urb error = -90
[ 1521.293130][ T5806] mceusb 5-1:0.0: Error: mce write submit urb error = -90
[ 1521.461600][ T5806] mceusb 5-1:0.0: Error: mce write submit urb error = -90
[ 1521.508360][ T5806] mceusb 5-1:0.0: Error: mce write submit urb error = -90
[ 1521.546171][T24821] fuse: Bad value for 'fd'
[ 1521.554751][ T5806] mceusb 5-1:0.0: Error: mce write submit urb error = -90
[ 1521.749382][ T5806] mceusb 5-1:0.0: Error: mce write submit urb error = -90
[ 1521.770446][ T5806] mceusb 5-1:0.0: Error: mce write submit urb error = -90
[ 1521.885299][ T5806] mceusb 5-1:0.0: Error: mce write submit urb error = -90
[ 1522.287267][ T5806] mceusb 5-1:0.0: Registered 424242424242 with mce emulator interface version 1
[ 1522.334456][ T5806] mceusb 5-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[ 1522.571980][ T5806] usb 5-1: USB disconnect, device number 124
[ 1523.260973][T24836] overlayfs: failed to clone upperpath
[ 1523.530744][T10687] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1523.541599][T10687] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1523.580412][T10687] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1523.630675][T10687] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1523.640337][T10687] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1524.869217][T24852] lo speed is unknown, defaulting to 1000
[ 1525.511916][T24841] lo speed is unknown, defaulting to 1000
[ 1525.594748][T24873] fuse: fd is not a fuse device
[ 1525.755570][T24843] Bluetooth: hci4: command tx timeout
[ 1525.894486][T24843] Bluetooth: hci2: ACL packet for unknown connection handle 201
[ 1525.904402][T24879] fuse: Bad value for 'fd'
[ 1526.945282][T24841] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1526.952412][T24841] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1526.959621][T24841] bridge_slave_0: entered allmulticast mode
[ 1526.966935][T24841] bridge_slave_0: entered promiscuous mode
[ 1526.974653][T24841] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1526.981749][T24841] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1526.988937][T24841] bridge_slave_1: entered allmulticast mode
[ 1526.995917][T24841] bridge_slave_1: entered promiscuous mode
[ 1527.096243][T24841] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1527.107355][T24841] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1527.225141][T24841] team0: Port device team_slave_0 added
[ 1527.232228][T24841] team0: Port device team_slave_1 added
[ 1527.249724][T24841] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1527.256713][T24841] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1527.282904][T24841] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1527.294837][T24841] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1527.301794][T24841] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1527.397005][T24841] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1527.433836][T24841] hsr_slave_0: entered promiscuous mode
[ 1527.440491][T24841] hsr_slave_1: entered promiscuous mode
[ 1527.446508][T24841] debugfs: 'hsr0' already exists in 'hsr'
[ 1527.452245][T24841] Cannot create hsr debugfs directory
[ 1527.834941][T24843] Bluetooth: hci4: command tx timeout
[ 1529.267579][T24841] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1529.590806][T24913] fuse: Bad value for 'fd'
[ 1529.893170][T24843] Bluetooth: hci4: command tx timeout
[ 1530.758989][T24929] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5475'.
[ 1530.881106][T24841] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1531.435938][T24841] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1531.585926][T24841] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1531.750897][T11014] bridge_slave_1: left allmulticast mode
[ 1531.758438][T11014] bridge_slave_1: left promiscuous mode
[ 1531.776487][ T5718] usb 5-1: new high-speed USB device number 125 using dummy_hcd
[ 1531.784801][T11014] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1531.795894][T11014] ¾x9ÿ: left allmulticast mode
[ 1531.800849][T11014] ¾x9ÿ: left promiscuous mode
[ 1531.807519][T11014] bridge0: port 1(
1¾x9ÿ) entered disabled state
[ 1531.899771][T11014] veth5: left allmulticast mode
[ 1531.904728][T11014] veth5: left promiscuous mode
[ 1531.909767][T11014] bridge2: port 3(veth5) entered disabled state
[ 1531.921711][T11014] veth3: left allmulticast mode
[ 1531.927146][T11014] veth3: left promiscuous mode
[ 1531.932057][T11014] bridge2: port 1(veth3) entered disabled state
[ 1531.943313][T11014] veth9: left allmulticast mode
[ 1531.948250][T11014] veth9: left promiscuous mode
[ 1531.953254][T11014] bridge3: port 3(veth9) entered disabled state
[ 1531.960958][T11014] veth7: left allmulticast mode
[ 1531.966024][T11014] veth7: left promiscuous mode
[ 1531.970964][T11014] bridge3: port 1(veth7) entered disabled state
[ 1531.984960][T24843] Bluetooth: hci4: command tx timeout
[ 1532.001809][T11014] batman_adv: batadv0: Interface deactivated: gretap1
[ 1532.092399][ T5718] usb 5-1: config 1 has an invalid descriptor of length 9, skipping remainder of the config
[ 1532.104146][ T5718] usb 5-1: config 1 has 0 interfaces, different from the descriptor's value: 1
[ 1532.115847][ T5718] usb 5-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.00
[ 1532.125820][ T5718] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1532.152821][ T5718] usb 5-1: Product: syz
[ 1532.162581][ T5718] usb 5-1: Manufacturer: syz
[ 1532.174162][ T5718] usb 5-1: SerialNumber: syz
[ 1532.366013][T11014] erspan0 (unregistering): left promiscuous mode
[ 1532.404257][ T5718] usb 5-1: USB disconnect, device number 125
[ 1532.466584][T11014] gretap0 (unregistering): left promiscuous mode
[ 1532.490769][T11014] batman_adv: batadv0: Removing interface: gretap1
[ 1533.123313][T24951] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5483'.
[ 1533.441473][T24953] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5483'.
[ 1533.591387][T24953] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1535.190958][T11014] bond0 (unregistering): (slave 
3
0
): Releasing backup interface
[ 1535.200303][T11014] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1535.209703][T11014] bond0 (unregistering): Released all slaves
[ 1535.218596][T11014] bond1 (unregistering): Released all slaves
[ 1535.276193][T24841] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1535.550803][T24841] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1535.820233][T24841] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1535.925515][T24841] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1536.117360][T24977] binder: 24975:24977 ioctl c0306201 0 returned -14
[ 1536.162111][T24841] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1536.349758][T24841] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1536.364083][T24841] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1536.497584][T24841] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1536.721531][T24841] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1536.739636][T24841] 8021q: adding VLAN 0 to HW filter on device team0
[ 1536.752243][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1536.867834][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1536.931092][ T5830] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1536.938303][ T5830] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1538.034821][T25013] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5498'.
[ 1538.051118][T25013] overlayfs: failed to clone lowerpath
[ 1538.121148][T11014] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1538.141693][T11014] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1538.158781][T11014] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1538.199493][T11014] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1538.554038][T11014] veth1_macvtap: left promiscuous mode
[ 1538.560147][T11014] veth0_macvtap: left promiscuous mode
[ 1538.565795][T11014] veth1_vlan: left promiscuous mode
[ 1538.571098][T11014] veth0_vlan: left promiscuous mode
[ 1538.780823][ T9195] SELinux: failure in sel_netif_sid_slow(), invalid network interface (51)
[ 1538.796083][T11014] pim6reg (unregistering): left allmulticast mode
[ 1539.187015][T11014] team0 (unregistering): Port device team_slave_1 removed
[ 1539.199768][T11014] team0 (unregistering): Port device team_slave_0 removed
[ 1539.595970][T16099] usb 5-1: new high-speed USB device number 126 using dummy_hcd
[ 1539.659499][T24841] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1539.902816][T25041] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5501'.
[ 1540.461949][T25043] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5502'.
[ 1540.575198][T24841] veth0_vlan: entered promiscuous mode
[ 1540.656607][T25043] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5502'.
[ 1540.665180][T24841] veth1_vlan: entered promiscuous mode
[ 1540.815329][T24841] veth0_macvtap: entered promiscuous mode
[ 1540.823350][T24841] veth1_macvtap: entered promiscuous mode
[ 1540.843094][T24841] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1540.854670][T24841] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1540.866913][   T48] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1540.876431][   T48] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1540.886155][   T48] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1540.903858][   T48] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1541.250557][T16099] usb 5-1: Using ep0 maxpacket: 16
[ 1541.310944][ T1154] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1541.326603][ T1154] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1541.362392][ T5830] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1541.371900][ T5830] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1542.258354][T25065] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[ 1542.409042][T16099] usb 5-1: unable to read config index 0 descriptor/start: -71
[ 1542.416642][T16099] usb 5-1: can't read configurations, error -71
[ 1543.078903][T25085] netlink: 260 bytes leftover after parsing attributes in process `syz.2.5516'.
[ 1543.093513][T25085] netlink: 260 bytes leftover after parsing attributes in process `syz.2.5516'.
[ 1543.377308][T25088] syz.4.5514 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[ 1544.028545][T11014] IPVS: stop unused estimator thread 0...
[ 1544.119183][T25096] cgroup: name respecified
[ 1544.218755][T25099] fuse: fd is not a fuse device
[ 1544.290344][T25103] IPVS: sync thread started: state = MASTER, mcast_ifn = veth1_to_bridge, syncid = 32, id = 0
[ 1544.309811][T25102] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=25102 comm=syz.1.5523
[ 1544.429028][T16099] usb 5-1: new high-speed USB device number 127 using dummy_hcd
[ 1545.328342][T25114] ceph: No mds server is up or the cluster is laggy
[ 1545.352086][   T29] libceph: connect (1)[c::]:6789 error -101
[ 1545.380975][   T29] libceph: mon0 (1)[c::]:6789 connect error
[ 1545.763798][ T1310] ieee802154 phy0 wpan0: encryption failed: -22
[ 1545.770123][ T1310] ieee802154 phy1 wpan1: encryption failed: -22
[ 1546.965119][T25152] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5532'.
[ 1547.165531][T16099] usb 5-1: device descriptor read/all, error -71
[ 1547.172749][T16099] usb usb5-port1: attempt power cycle
[ 1548.355457][T25157] overlayfs: failed to clone upperpath
[ 1548.719647][T25170] input: syz0 as /devices/virtual/input/input112
[ 1548.881497][T25170] netlink: 140 bytes leftover after parsing attributes in process `syz.3.5541'.
[ 1549.298964][T25179] fuse: fd is not a fuse device
[ 1550.620460][T25169] veth0_macvtap: left promiscuous mode
[ 1553.275577][T25214] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5554'.
[ 1553.725322][T25217] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5554'.
[ 1553.736378][T25217] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1554.088909][   T30] audit: type=1400 audit(1779900024.523:925): avc:  denied  { write } for  pid=25212 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1777 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1554.635961][   T30] audit: type=1400 audit(1779900025.063:926): avc:  denied  { write } for  pid=25238 comm="rm" name="hook-state" dev="tmpfs" ino=1777 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1554.660586][   T29] usb 4-1: new high-speed USB device number 74 using dummy_hcd
[ 1554.875252][T25241] lo speed is unknown, defaulting to 1000
[ 1555.403661][ T5278] veth0_macvtap: entered promiscuous mode
[ 1555.449240][   T29] usb 4-1: unable to get BOS descriptor or descriptor too short
[ 1555.464369][   T29] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1555.479249][   T29] usb 4-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[ 1555.535813][   T29] usb 4-1: config 1 has no interface number 1
[ 1555.542133][   T29] usb 4-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[ 1555.555425][   T29] usb 4-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1555.569410][   T29] usb 4-1: New USB device found, idVendor=0582, idProduct=004c, bcdDevice= 0.40
[ 1555.580488][   T29] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1555.615201][   T29] usb 4-1: Product: syz
[ 1555.628334][   T29] usb 4-1: Manufacturer: syz
[ 1555.740350][   T29] usb 4-1: SerialNumber: syz
[ 1556.962996][   T30] audit: type=1800 audit(1779900027.353:927): pid=25254 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.5556" name="file0" dev="overlay" ino=84 res=0 errno=0
[ 1557.342642][T25260] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5559'.
[ 1557.351971][T25260] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1557.514598][   T30] audit: type=1400 audit(1779900027.943:928): avc:  denied  { write } for  pid=25246 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1777 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1557.723377][   T30] audit: type=1400 audit(1779900028.203:929): avc:  denied  { write } for  pid=25265 comm="rm" name="hook-state" dev="tmpfs" ino=1777 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1557.960253][   T30] audit: type=1400 audit(1779900028.203:930): avc:  denied  { map } for  pid=25264 comm="syz.2.5560" path="socket:[85596]" dev="sockfs" ino=85596 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 1558.143818][   T30] audit: type=1400 audit(1779900028.203:931): avc:  denied  { accept } for  pid=25264 comm="syz.2.5560" path="socket:[85596]" dev="sockfs" ino=85596 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 1558.991670][   T29] usb 4-1: 2:1 : invalid UAC_AS_GENERAL desc
[ 1559.132387][   T29] usb 4-1: USB disconnect, device number 74
[ 1559.413185][T24536] udevd[24536]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1559.555123][   T30] audit: type=1400 audit(1779900029.983:932): avc:  denied  { create } for  pid=25281 comm="syz.3.5564" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[ 1559.745579][T25279] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5565'.
[ 1559.757343][T25279] fuse: fd is not a fuse device
[ 1560.050636][T25293] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5570'.
[ 1560.090356][T25293] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1560.507360][T25305] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5573'.
[ 1561.186619][T25312] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5573'.
[ 1561.195702][T25312] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1561.330380][T25317] trusted_key: encrypted_key: master key parameter 'uefa' is invalid
[ 1561.339117][T25317] netlink: 40 bytes leftover after parsing attributes in process `syz.1.5577'.
[ 1561.483849][T25324] FAULT_INJECTION: forcing a failure.
[ 1561.483849][T25324] name failslab, interval 1, probability 0, space 0, times 0
[ 1561.496579][T25324] CPU: 0 UID: 0 PID: 25324 Comm: syz.4.5580 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1561.496605][T25324] Tainted: [L]=SOFTLOCKUP
[ 1561.496611][T25324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1561.496621][T25324] Call Trace:
[ 1561.496627][T25324]  <TASK>
[ 1561.496633][T25324]  dump_stack_lvl+0x100/0x190
[ 1561.496657][T25324]  should_fail_ex.cold+0x5/0xa
[ 1561.496680][T25324]  ? tomoyo_encode2+0xfb/0x3c0
[ 1561.496703][T25324]  should_failslab+0xc2/0x120
[ 1561.496719][T25324]  __kmalloc_noprof+0xe0/0x850
[ 1561.496734][T25324]  ? d_absolute_path+0x136/0x1b0
[ 1561.496749][T25324]  tomoyo_encode2+0xfb/0x3c0
[ 1561.496770][T25324]  tomoyo_encode+0x29/0x50
[ 1561.496786][T25324]  tomoyo_realpath_from_path+0x18c/0x690
[ 1561.496806][T25324]  tomoyo_path_number_perm+0x23c/0x580
[ 1561.496820][T25324]  ? tomoyo_path_number_perm+0x22e/0x580
[ 1561.496835][T25324]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1561.496863][T25324]  ? find_held_lock+0x2b/0x80
[ 1561.496873][T25324]  ? __fget_files+0x215/0x3d0
[ 1561.496885][T25324]  ? hook_file_ioctl_common+0x149/0x410
[ 1561.496897][T25324]  ? __fget_files+0x215/0x3d0
[ 1561.496912][T25324]  ? __fget_files+0x21f/0x3d0
[ 1561.496927][T25324]  security_file_ioctl+0xd3/0x230
[ 1561.496944][T25324]  __x64_sys_ioctl+0xb7/0x210
[ 1561.496957][T25324]  do_syscall_64+0x115/0x870
[ 1561.496970][T25324]  ? clear_bhb_loop+0x40/0x90
[ 1561.496988][T25324]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1561.496999][T25324] RIP: 0033:0x7f30c4b9ce59
[ 1561.497009][T25324] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1561.497020][T25324] RSP: 002b:00007f30c5a5c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1561.497031][T25324] RAX: ffffffffffffffda RBX: 00007f30c4e15fa0 RCX: 00007f30c4b9ce59
[ 1561.497038][T25324] RDX: 0000200000000300 RSI: 000000008010500c RDI: 0000000000000004
[ 1561.497045][T25324] RBP: 00007f30c5a5c090 R08: 0000000000000000 R09: 0000000000000000
[ 1561.497051][T25324] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1561.497057][T25324] R13: 00007f30c4e16038 R14: 00007f30c4e15fa0 R15: 00007ffd34ac00b8
[ 1561.497071][T25324]  </TASK>
[ 1561.497082][T25324] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1565.007471][T25358] netlink: 116 bytes leftover after parsing attributes in process `syz.3.5592'.
[ 1565.203184][T25370] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5593'.
[ 1565.212108][T25370] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1565.383720][   T30] audit: type=1400 audit(1779900035.863:933): avc:  denied  { write } for  pid=25356 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1777 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1565.527290][ T9195] usb 4-1: new high-speed USB device number 75 using dummy_hcd
[ 1565.528191][ T5819] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[ 1565.608212][   T30] audit: type=1400 audit(1779900036.043:934): avc:  denied  { write } for  pid=25381 comm="rm" name="hook-state" dev="tmpfs" ino=1777 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1565.813308][ T9195] usb 4-1: Using ep0 maxpacket: 8
[ 1565.847012][ T9195] usb 4-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c
[ 1565.864599][ T9195] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1566.636791][ T9195] usb 4-1: Product: syz
[ 1566.655689][ T9195] usb 4-1: Manufacturer: syz
[ 1566.670808][ T9195] usb 4-1: SerialNumber: syz
[ 1566.692705][ T9195] usb 4-1: config 0 descriptor??
[ 1566.729743][T25386] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5597'.
[ 1566.751733][T25386] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1566.768792][ T9195] gspca_main: se401-2.14.0 probing 047d:5003
[ 1567.076894][T25390] fuse: Bad value for 'fd'
[ 1567.266623][T25369] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1567.280552][T25369] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1567.376922][T25400] snd_dummy snd_dummy.0: control 6:65278:0:syz0:-259 is already present
[ 1567.464343][   T30] audit: type=1400 audit(1779900037.883:935): avc:  denied  { write } for  pid=25393 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1777 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1567.589700][T25408] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1567.650880][T25408] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1567.846936][   T30] audit: type=1400 audit(1779900038.303:936): avc:  denied  { write } for  pid=25412 comm="rm" name="hook-state" dev="tmpfs" ino=1777 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1568.073919][ T9195] usb 4-1: reset high-speed USB device number 75 using dummy_hcd
[ 1568.511483][ T9195] usb 4-1: device descriptor read/64, error -32
[ 1568.540089][ T5819] usb 5-1: Using ep0 maxpacket: 32
[ 1568.926139][ T9195] usb 4-1: reset high-speed USB device number 75 using dummy_hcd
[ 1569.116122][ T9195] usb 4-1: device descriptor read/64, error -32
[ 1569.178894][ T5819] usb 5-1: device descriptor read/all, error -71
[ 1569.438601][ T9195] usb 4-1: reset high-speed USB device number 75 using dummy_hcd
[ 1569.614961][ T9195] usb 4-1: device descriptor read/8, error -32
[ 1569.700213][T25439] netlink: 116 bytes leftover after parsing attributes in process `syz.1.5605'.
[ 1569.743460][T25441] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5607'.
[ 1569.819749][   T30] audit: type=1400 audit(1779900040.253:937): avc:  denied  { write } for  pid=25425 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1777 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1570.103943][T25442] siw: device registration error -23
[ 1570.574145][ T9195] gspca_se401: read req failed req 0x06 error -19
[ 1570.735135][ T9195] usb 4-1: USB disconnect, device number 75
[ 1572.116036][   T30] audit: type=1400 audit(1779900042.563:938): avc:  denied  { write } for  pid=25452 comm="rm" name="hook-state" dev="tmpfs" ino=1777 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1572.849479][T25470] fuse: Bad value for 'fd'
[ 1573.103250][   T30] audit: type=1400 audit(1779900043.573:939): avc:  denied  { ioctl } for  pid=25471 comm="syz.4.5613" path="/dev/cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[ 1573.128093][T25472] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5613'.
[ 1573.137352][   T30] audit: type=1400 audit(1779900043.573:940): avc:  denied  { write } for  pid=25457 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1777 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1574.000645][T25478] netlink: 200072 bytes leftover after parsing attributes in process `syz.4.5613'.
[ 1574.013691][   T30] audit: type=1400 audit(1779900044.453:941): avc:  denied  { write } for  pid=25477 comm="rm" name="hook-state" dev="tmpfs" ino=1777 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1576.581176][ T5819] usb 4-1: new full-speed USB device number 76 using dummy_hcd
[ 1576.680461][T25537] fuse: Bad value for 'fd'
[ 1576.864184][   T30] audit: type=1400 audit(1779900047.303:942): avc:  denied  { write } for  pid=25495 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1777 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1577.086580][T25542] syz_tun: entered allmulticast mode
[ 1577.736382][   T30] audit: type=1400 audit(1779900048.173:943): avc:  denied  { write } for  pid=25543 comm="rm" name="hook-state" dev="tmpfs" ino=1777 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1578.108879][T25552] overlay: filesystem on ./bus not supported as upperdir
[ 1578.129250][T25551] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5627'.
[ 1578.147813][T25551] fuse: fd is not a fuse device
[ 1578.174232][T25551] netlink: 200072 bytes leftover after parsing attributes in process `syz.1.5627'.
[ 1578.276199][T25556] netlink: 11 bytes leftover after parsing attributes in process `syz.2.5625'.
[ 1578.302797][T25556] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5625'.
[ 1578.342700][T25556] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5625'.
[ 1578.543824][   T30] audit: type=1400 audit(1779900049.013:944): avc:  denied  { create } for  pid=25566 comm="syz.1.5630" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1
[ 1578.563606][   T30] audit: type=1400 audit(1779900049.013:945): avc:  denied  { sys_admin } for  pid=25566 comm="syz.1.5630" capability=21  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1
[ 1578.739819][   T30] audit: type=1400 audit(1779900049.203:946): avc:  denied  { write } for  pid=25555 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1777 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1578.878183][T25574] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5631'.
[ 1578.887371][T25574] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1579.065098][T25581] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5633'.
[ 1579.076079][T25581] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1579.269419][ T5819] usb 4-1: device descriptor read/all, error -71
[ 1579.916143][   T30] audit: type=1400 audit(1779900050.353:947): avc:  denied  { write } for  pid=25582 comm="rm" name="hook-state" dev="tmpfs" ino=1777 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1581.090294][ T9195] libceph: connect (1)[c::]:6789 error -101
[ 1581.096506][ T9195] libceph: mon0 (1)[c::]:6789 connect error
[ 1581.620476][ T9195] libceph: connect (1)[c::]:6789 error -101
[ 1581.630873][ T9195] libceph: mon0 (1)[c::]:6789 connect error
[ 1581.634078][T25611] FAULT_INJECTION: forcing a failure.
[ 1581.634078][T25611] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1581.651405][T25611] CPU: 0 UID: 0 PID: 25611 Comm: syz.4.5638 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1581.651436][T25611] Tainted: [L]=SOFTLOCKUP
[ 1581.651441][T25611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1581.651450][T25611] Call Trace:
[ 1581.651456][T25611]  <TASK>
[ 1581.651463][T25611]  dump_stack_lvl+0x100/0x190
[ 1581.651488][T25611]  should_fail_ex.cold+0x5/0xa
[ 1581.651511][T25611]  _copy_to_user+0x32/0xd0
[ 1581.651535][T25611]  simple_read_from_buffer+0xcb/0x170
[ 1581.651557][T25611]  proc_fail_nth_read+0x1af/0x230
[ 1581.651573][T25611]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1581.651590][T25611]  ? rw_verify_area+0xce/0x6d0
[ 1581.651604][T25611]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1581.651618][T25611]  vfs_read+0x1e4/0xb30
[ 1581.651641][T25611]  ? __pfx_vfs_read+0x10/0x10
[ 1581.651655][T25611]  ? __fget_files+0x215/0x3d0
[ 1581.651677][T25611]  ? __fget_files+0x21f/0x3d0
[ 1581.651699][T25611]  ksys_read+0x12a/0x250
[ 1581.651714][T25611]  ? __pfx_ksys_read+0x10/0x10
[ 1581.651730][T25611]  ? rcu_is_watching+0x12/0xc0
[ 1581.651754][T25611]  do_syscall_64+0x115/0x870
[ 1581.651776][T25611]  ? clear_bhb_loop+0x40/0x90
[ 1581.651794][T25611]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1581.651814][T25611] RIP: 0033:0x7f30c4b5d68e
[ 1581.651826][T25611] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1581.651840][T25611] RSP: 002b:00007f30c5a5bfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1581.651854][T25611] RAX: ffffffffffffffda RBX: 00007f30c5a5c6c0 RCX: 00007f30c4b5d68e
[ 1581.651863][T25611] RDX: 000000000000000f RSI: 00007f30c5a5c0a0 RDI: 0000000000000003
[ 1581.651872][T25611] RBP: 00007f30c5a5c090 R08: 0000000000000000 R09: 0000000000000000
[ 1581.651880][T25611] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1581.651888][T25611] R13: 00007f30c4e16038 R14: 00007f30c4e15fa0 R15: 00007ffd34ac00b8
[ 1581.651907][T25611]  </TASK>
[ 1582.148932][ T5806] libceph: connect (1)[c::]:6789 error -101
[ 1582.162063][ T5806] libceph: mon0 (1)[c::]:6789 connect error
[ 1582.262609][T25615] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5639'.
[ 1582.279782][T25596] ceph: No mds server is up or the cluster is laggy
[ 1582.880387][ T9195] libceph: connect (1)[c::]:6789 error -101
[ 1582.892901][ T9195] libceph: mon0 (1)[c::]:6789 connect error
[ 1583.073130][T25618] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5639'.
[ 1583.102981][T25618] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1583.474824][T25624] lo speed is unknown, defaulting to 1000
[ 1583.805260][T25633] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5643'.
[ 1583.824817][T25633] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1584.564781][ T9195] libceph: connect (1)[c::]:6789 error -101
[ 1584.571660][ T9195] libceph: mon0 (1)[c::]:6789 connect error
[ 1584.588816][ T9195] libceph: connect (1)[c::]:6789 error -101
[ 1584.614042][ T9195] libceph: mon0 (1)[c::]:6789 connect error
[ 1585.443014][ T9195] libceph: connect (1)[c::]:6789 error -101
[ 1585.453224][ T9195] libceph: mon0 (1)[c::]:6789 connect error
[ 1586.413713][T25654] workqueue: Failed to create a rescuer kthread for wq "ceph-watch-notify": -EINTR
[ 1586.726351][T18069] kworker/1:3 (18069) used greatest stack depth: 18072 bytes left
[ 1587.146683][T25663] lo speed is unknown, defaulting to 1000
[ 1587.174136][   T30] audit: type=1400 audit(1779900057.583:948): avc:  denied  { accept } for  pid=25657 comm="syz.2.5651" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[ 1587.194688][   T30] audit: type=1400 audit(1779900057.583:949): avc:  denied  { getopt } for  pid=25657 comm="syz.2.5651" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[ 1588.016238][T25675] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5657'.
[ 1588.066767][T15401] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1588.085396][T15401] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1588.085458][T25675] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1588.218895][T15401] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1588.280510][T15401] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1588.392915][T15401] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1588.477647][T18698] syz_tun (unregistering): left allmulticast mode
[ 1588.613576][T25685] netlink: 40 bytes leftover after parsing attributes in process `syz.3.5660'.
[ 1589.670760][T25701] workqueue: Failed to create a rescuer kthread for wq "ceph-watch-notify": -EINTR
[ 1590.164633][T25678] lo speed is unknown, defaulting to 1000
[ 1590.560181][T15401] Bluetooth: hci5: command tx timeout
[ 1591.747852][T25678] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1591.755055][T25678] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1591.762339][T25678] bridge_slave_0: entered allmulticast mode
[ 1591.769756][T25678] bridge_slave_0: entered promiscuous mode
[ 1591.781379][T25678] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1591.788567][T25678] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1591.795801][T25678] bridge_slave_1: entered allmulticast mode
[ 1591.803605][T25678] bridge_slave_1: entered promiscuous mode
[ 1592.008677][T25678] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1592.020382][T25678] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1592.377776][  T803] usb 4-1: new high-speed USB device number 78 using dummy_hcd
[ 1592.385667][T25678] team0: Port device team_slave_0 added
[ 1592.393602][T25678] team0: Port device team_slave_1 added
[ 1592.418403][T25678] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1592.425367][T25678] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1592.451325][T25678] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1592.463377][T25678] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1592.470343][T25678] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1592.702136][  T803] usb 4-1: Using ep0 maxpacket: 16
[ 1592.714364][  T803] usb 4-1: unable to get BOS descriptor or descriptor too short
[ 1592.729202][  T803] usb 4-1: config 16 has an invalid descriptor of length 139, skipping remainder of the config
[ 1592.740018][  T803] usb 4-1: config 16 has 0 interfaces, different from the descriptor's value: 1
[ 1592.762962][  T803] usb 4-1: New USB device found, idVendor=0a2c, idProduct=0008, bcdDevice=1d.64
[ 1592.773244][  T803] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1592.784046][T15401] Bluetooth: hci5: command tx timeout
[ 1592.795567][T25678] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1592.828988][  T803] usb 4-1: Product: syz
[ 1592.836796][  T803] usb 4-1: Manufacturer: syz
[ 1592.847660][  T803] usb 4-1: SerialNumber: syz
[ 1593.096909][T25678] hsr_slave_0: entered promiscuous mode
[ 1593.103512][T25678] hsr_slave_1: entered promiscuous mode
[ 1593.110046][T25678] debugfs: 'hsr0' already exists in 'hsr'
[ 1593.133328][T25678] Cannot create hsr debugfs directory
[ 1593.630688][T25760] fuse: Bad value for 'fd'
[ 1593.999014][T25678] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1594.038696][T25678] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0
[ 1594.236879][  T803] usb 4-1: USB disconnect, device number 78
[ 1594.887683][T15401] Bluetooth: hci5: command tx timeout
[ 1595.069972][T25782] xt_l2tp: missing protocol rule (udp|l2tpip)
[ 1595.134246][   T30] audit: type=1400 audit(1779900065.583:950): avc:  denied  { getopt } for  pid=25779 comm="syz.3.5680" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[ 1595.273688][T25678] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1595.286569][T25678] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0
[ 1595.643142][T25678] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1595.659881][T25678] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0
[ 1596.002325][T25801] FAULT_INJECTION: forcing a failure.
[ 1596.002325][T25801] name failslab, interval 1, probability 0, space 0, times 0
[ 1596.008457][T25678] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1596.015034][T25801] CPU: 0 UID: 0 PID: 25801 Comm: syz.3.5687 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1596.015059][T25801] Tainted: [L]=SOFTLOCKUP
[ 1596.015066][T25801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1596.015076][T25801] Call Trace:
[ 1596.015082][T25801]  <TASK>
[ 1596.015089][T25801]  dump_stack_lvl+0x100/0x190
[ 1596.015113][T25801]  should_fail_ex.cold+0x5/0xa
[ 1596.015137][T25801]  should_failslab+0xc2/0x120
[ 1596.015157][T25801]  __kvmalloc_node_noprof+0xfa/0xa00
[ 1596.015184][T25801]  ? xt_alloc_table_info+0x44/0xa0
[ 1596.015213][T25801]  xt_alloc_table_info+0x44/0xa0
[ 1596.015236][T25801]  do_ipt_set_ctl+0x504/0xb90
[ 1596.015267][T25801]  ? find_held_lock+0x2b/0x80
[ 1596.015287][T25801]  ? __pfx_do_ipt_set_ctl+0x10/0x10
[ 1596.015312][T25801]  ? sockopt_release_sock+0x57/0x70
[ 1596.015338][T25801]  ? __local_bh_enable_ip+0x9e/0x120
[ 1596.015364][T25801]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1596.015399][T25801]  ? nf_sockopt_find.isra.0+0x222/0x290
[ 1596.015427][T25801]  nf_setsockopt+0x8d/0xf0
[ 1596.015453][T25801]  ip_setsockopt+0xcb/0xf0
[ 1596.015482][T25801]  tcp_setsockopt+0xa7/0x100
[ 1596.015500][T25801]  ? __pfx_sock_common_setsockopt+0x10/0x10
[ 1596.015521][T25801]  do_sock_setsockopt+0xf3/0x1d0
[ 1596.015542][T25801]  __sys_setsockopt+0x195/0x220
[ 1596.015571][T25801]  __x64_sys_setsockopt+0xbd/0x160
[ 1596.015594][T25801]  ? do_syscall_64+0x90/0x870
[ 1596.015615][T25801]  ? lockdep_hardirqs_on+0x78/0x100
[ 1596.015636][T25801]  do_syscall_64+0x115/0x870
[ 1596.015656][T25801]  ? clear_bhb_loop+0x40/0x90
[ 1596.015676][T25801]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1596.015694][T25801] RIP: 0033:0x7fa6a859ce59
[ 1596.015709][T25801] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1596.015726][T25801] RSP: 002b:00007fa6a93aa028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1596.015744][T25801] RAX: ffffffffffffffda RBX: 00007fa6a8815fa0 RCX: 00007fa6a859ce59
[ 1596.015755][T25801] RDX: 0000000000000040 RSI: 0004000000000000 RDI: 0000000000000003
[ 1596.015766][T25801] RBP: 00007fa6a93aa090 R08: 0000000000000578 R09: 0000000000000000
[ 1596.015777][T25801] R10: 0000200000000340 R11: 0000000000000246 R12: 0000000000000001
[ 1596.015787][T25801] R13: 00007fa6a8816038 R14: 00007fa6a8815fa0 R15: 00007ffe96f2c5b8
[ 1596.015811][T25801]  </TASK>
[ 1596.375341][T25804] fuse: Bad value for 'fd'
[ 1596.379926][   T30] audit: type=1400 audit(1779900066.823:951): avc:  denied  { mounton } for  pid=25797 comm="syz.4.5686" path="/432/file0/file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=file permissive=1
[ 1596.406468][T25678] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0
[ 1596.644855][T25807] xt_l2tp: missing protocol rule (udp|l2tpip)
[ 1597.250784][T15401] Bluetooth: hci5: command tx timeout
[ 1597.572141][T25678] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1597.629651][T25678] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1597.680492][T25815] fuse: fd is not a fuse device
[ 1597.686502][T25678] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1597.697610][T25815] x_tables: duplicate underflow at hook 1
[ 1597.717373][T25678] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1597.740381][T25678] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1597.881503][T25678] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1597.891744][T25678] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1597.901701][T25678] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1598.889635][T25678] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1599.007439][T25678] 8021q: adding VLAN 0 to HW filter on device team0
[ 1599.019010][T11016] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1599.026159][T11016] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1599.039570][T11016] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1599.046728][T11016] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1599.085112][T25678] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1599.095647][T25678] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1599.371046][    T9] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[ 1599.553616][T25678] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1599.581741][T25678] veth0_vlan: entered promiscuous mode
[ 1599.592863][T25678] veth1_vlan: entered promiscuous mode
[ 1599.613033][T25678] veth0_macvtap: entered promiscuous mode
[ 1599.621663][T25678] veth1_macvtap: entered promiscuous mode
[ 1599.751818][T25678] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1599.763354][T25678] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1599.797499][ T1154] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1599.817003][ T1154] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1599.921406][ T5832] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1599.931005][ T5832] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1599.931055][T25856] xt_l2tp: missing protocol rule (udp|l2tpip)
[ 1600.002136][   T30] audit: type=1326 audit(1779900070.443:952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25859 comm="syz.1.5701" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57e399ce59 code=0x7ffc0000
[ 1600.148150][   T30] audit: type=1326 audit(1779900070.443:953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25859 comm="syz.1.5701" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57e399ce59 code=0x7ffc0000
[ 1600.148208][   T30] audit: type=1326 audit(1779900070.443:954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25859 comm="syz.1.5701" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=152 compat=0 ip=0x7f57e399ce59 code=0x7ffc0000
[ 1600.148248][   T30] audit: type=1326 audit(1779900070.443:955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25859 comm="syz.1.5701" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57e399ce59 code=0x7ffc0000
[ 1600.148288][   T30] audit: type=1326 audit(1779900070.443:956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25859 comm="syz.1.5701" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57e399ce59 code=0x7ffc0000
[ 1600.411383][   T30] audit: type=1326 audit(1779900070.863:957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25859 comm="syz.1.5701" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f57e399ce59 code=0x7ffc0000
[ 1600.443503][   T48] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1600.451623][   T48] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1600.456946][   T30] audit: type=1326 audit(1779900070.863:958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25859 comm="syz.1.5701" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57e399ce59 code=0x7ffc0000
[ 1600.489551][   T30] audit: type=1326 audit(1779900070.863:959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25859 comm="syz.1.5701" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57e399ce59 code=0x7ffc0000
[ 1600.632242][   T48] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1600.640793][   T48] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1600.782522][    T9] usb 5-1: Using ep0 maxpacket: 32
[ 1601.194851][T25869] ptrace attach of "ci-upstream-kasan-gce-selinux-root/syz-executor exec"[25870] was attempted by "ci-upstream-kasan-gce-selinux-root/syz-executor exec"[25869]
[ 1601.265460][   T30] audit: type=1400 audit(1779900071.703:960): avc:  denied  { mounton } for  pid=25678 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[ 1601.375095][T25872] fuse: fd is not a fuse device
[ 1601.846767][T25879] lo speed is unknown, defaulting to 1000
[ 1602.146644][T25882] ptrace attach of "ci-upstream-kasan-gce-selinux-root/syz-executor exec"[25883] was attempted by "ci-upstream-kasan-gce-selinux-root/syz-executor exec"[25882]
[ 1602.402059][T25882] 9p: Bad value for 'rfdno'
[ 1603.116908][T25896] ptrace attach of "ci-upstream-kasan-gce-selinux-root/syz-executor exec"[25897] was attempted by "ci-upstream-kasan-gce-selinux-root/syz-executor exec"[25896]
[ 1603.308942][    T9] usb 5-1: unable to read config index 0 descriptor/all
[ 1603.316167][    T9] usb 5-1: can't read configurations, error -71
[ 1604.258935][    T9] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[ 1604.452904][T25909] netlink: 68 bytes leftover after parsing attributes in process `syz.3.5712'.
[ 1605.704413][T25923] ptrace attach of "ci-upstream-kasan-gce-selinux-root/syz-executor exec"[25925] was attempted by "ci-upstream-kasan-gce-selinux-root/syz-executor exec"[25923]
[ 1606.339051][T25937] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5718'.
[ 1606.746229][T25943] ptrace attach of "ci-upstream-kasan-gce-selinux-root/syz-executor exec"[25945] was attempted by "ci-upstream-kasan-gce-selinux-root/syz-executor exec"[25943]
[ 1606.876711][    T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1606.888499][    T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1607.300877][ T1310] ieee802154 phy0 wpan0: encryption failed: -22
[ 1607.307582][ T1310] ieee802154 phy1 wpan1: encryption failed: -22
[ 1607.537106][T25949] FAULT_INJECTION: forcing a failure.
[ 1607.537106][T25949] name failslab, interval 1, probability 0, space 0, times 0
[ 1607.552892][T25949] CPU: 1 UID: 0 PID: 25949 Comm: syz.3.5723 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1607.552922][T25949] Tainted: [L]=SOFTLOCKUP
[ 1607.552930][T25949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1607.552940][T25949] Call Trace:
[ 1607.552947][T25949]  <TASK>
[ 1607.552955][T25949]  dump_stack_lvl+0x100/0x190
[ 1607.552982][T25949]  should_fail_ex.cold+0x5/0xa
[ 1607.553007][T25949]  ? tomoyo_encode2+0xfb/0x3c0
[ 1607.553033][T25949]  should_failslab+0xc2/0x120
[ 1607.553054][T25949]  __kmalloc_noprof+0xe0/0x850
[ 1607.553080][T25949]  ? d_absolute_path+0x136/0x1b0
[ 1607.553106][T25949]  tomoyo_encode2+0xfb/0x3c0
[ 1607.553142][T25949]  tomoyo_encode+0x29/0x50
[ 1607.553168][T25949]  tomoyo_realpath_from_path+0x18c/0x690
[ 1607.553201][T25949]  tomoyo_path_number_perm+0x23c/0x580
[ 1607.553223][T25949]  ? tomoyo_path_number_perm+0x22e/0x580
[ 1607.553249][T25949]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1607.553298][T25949]  ? find_held_lock+0x2b/0x80
[ 1607.553315][T25949]  ? __fget_files+0x215/0x3d0
[ 1607.553336][T25949]  ? hook_file_ioctl_common+0x149/0x410
[ 1607.553355][T25949]  ? __fget_files+0x215/0x3d0
[ 1607.553381][T25949]  ? __fget_files+0x21f/0x3d0
[ 1607.553408][T25949]  security_file_ioctl+0xd3/0x230
[ 1607.553436][T25949]  __x64_sys_ioctl+0xb7/0x210
[ 1607.553458][T25949]  do_syscall_64+0x115/0x870
[ 1607.553480][T25949]  ? clear_bhb_loop+0x40/0x90
[ 1607.553502][T25949]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1607.553521][T25949] RIP: 0033:0x7fa6a859ce59
[ 1607.553537][T25949] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1607.553554][T25949] RSP: 002b:00007fa6a93aa028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1607.553573][T25949] RAX: ffffffffffffffda RBX: 00007fa6a8815fa0 RCX: 00007fa6a859ce59
[ 1607.553585][T25949] RDX: 0000200000000180 RSI: 000000004040534e RDI: 0000000000000003
[ 1607.553596][T25949] RBP: 00007fa6a93aa090 R08: 0000000000000000 R09: 0000000000000000
[ 1607.553607][T25949] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1607.553617][T25949] R13: 00007fa6a8816038 R14: 00007fa6a8815fa0 R15: 00007ffe96f2c5b8
[ 1607.553641][T25949]  </TASK>
[ 1607.553657][T25949] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1608.145959][    T9] usb 5-1: string descriptor 0 read error: -71
[ 1608.152201][    T9] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[ 1608.161243][    T9] usb 5-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[ 1608.175685][    T9] usb 5-1: config 0 descriptor??
[ 1608.341078][    T9] usb 5-1: can't set config #0, error -71
[ 1608.355348][    T9] usb 5-1: USB disconnect, device number 6
[ 1608.416002][T25962] netlink: 68 bytes leftover after parsing attributes in process `syz.1.5730'.
[ 1608.552910][T24843] Bluetooth: hci4: command 0x0406 tx timeout
[ 1608.974032][T25965] ptrace attach of "ci-upstream-kasan-gce-selinux-root/syz-executor exec"[25967] was attempted by "ci-upstream-kasan-gce-selinux-root/syz-executor exec"[25965]
[ 1609.012429][T25965] 9p: Bad value for 'rfdno'
[ 1609.285706][T25968] ceph: No mds server is up or the cluster is laggy
[ 1609.292779][   T29] libceph: connect (1)[c::]:6789 error -101
[ 1609.298937][   T29] libceph: mon0 (1)[c::]:6789 connect error
[ 1609.626638][   T29] libceph: connect (1)[c::]:6789 error -101
[ 1609.633297][   T29] libceph: mon0 (1)[c::]:6789 connect error
[ 1609.711230][T25977] lo speed is unknown, defaulting to 1000
[ 1610.254710][  T803] libceph: connect (1)[c::]:6789 error -101
[ 1610.262300][  T803] libceph: mon0 (1)[c::]:6789 connect error
[ 1611.461120][T25986] ptrace attach of "ci-upstream-kasan-gce-selinux-root/syz-executor exec"[25987] was attempted by "ci-upstream-kasan-gce-selinux-root/syz-executor exec"[25986]
[ 1611.830695][T25995] FAULT_INJECTION: forcing a failure.
[ 1611.830695][T25995] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1611.861417][T15401] Bluetooth: hci1: unexpected event for opcode 0x007f
[ 1611.884537][T25995] CPU: 0 UID: 0 PID: 25995 Comm: syz.4.5737 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1611.884569][T25995] Tainted: [L]=SOFTLOCKUP
[ 1611.884575][T25995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1611.884587][T25995] Call Trace:
[ 1611.884593][T25995]  <TASK>
[ 1611.884600][T25995]  dump_stack_lvl+0x100/0x190
[ 1611.884626][T25995]  should_fail_ex.cold+0x5/0xa
[ 1611.884652][T25995]  _copy_from_user+0x2e/0xd0
[ 1611.884675][T25995]  kstrtouint_from_user+0xd6/0x1d0
[ 1611.884702][T25995]  ? __pfx_kstrtouint_from_user+0x10/0x10
[ 1611.884728][T25995]  ? __lock_acquire+0x4a5/0x2630
[ 1611.884754][T25995]  ? lock_acquire+0x1b1/0x370
[ 1611.884781][T25995]  proc_fail_nth_write+0x83/0x220
[ 1611.884801][T25995]  ? __pfx_proc_fail_nth_write+0x10/0x10
[ 1611.884828][T25995]  vfs_write+0x2aa/0x1070
[ 1611.884849][T25995]  ? __pfx_proc_fail_nth_write+0x10/0x10
[ 1611.884872][T25995]  ? __pfx_vfs_write+0x10/0x10
[ 1611.884890][T25995]  ? __fget_files+0x215/0x3d0
[ 1611.884918][T25995]  ? __fget_files+0x21f/0x3d0
[ 1611.884947][T25995]  ksys_write+0x12a/0x250
[ 1611.884966][T25995]  ? __pfx_ksys_write+0x10/0x10
[ 1611.884988][T25995]  ? rcu_is_watching+0x12/0xc0
[ 1611.885017][T25995]  do_syscall_64+0x115/0x870
[ 1611.885039][T25995]  ? clear_bhb_loop+0x40/0x90
[ 1611.885061][T25995]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1611.885080][T25995] RIP: 0033:0x7f30c4b5d68e
[ 1611.885101][T25995] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1611.885118][T25995] RSP: 002b:00007f30c5a3afe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1611.885136][T25995] RAX: ffffffffffffffda RBX: 00007f30c5a3b6c0 RCX: 00007f30c4b5d68e
[ 1611.885148][T25995] RDX: 0000000000000001 RSI: 00007f30c5a3b0a0 RDI: 0000000000000007
[ 1611.885159][T25995] RBP: 00007f30c5a3b090 R08: 0000000000000000 R09: 0000000000000000
[ 1611.885169][T25995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1611.885180][T25995] R13: 00007f30c4e16128 R14: 00007f30c4e16090 R15: 00007ffd34ac00b8
[ 1611.885205][T25995]  </TASK>
[ 1614.337853][T26026] ptrace attach of "ci-upstream-kasan-gce-selinux-root/syz-executor exec"[26027] was attempted by "ci-upstream-kasan-gce-selinux-root/syz-executor exec"[26026]
[ 1614.364791][T26026] 9p: Bad value for 'rfdno'
[ 1620.192472][T26051] batadv_slave_1: entered promiscuous mode
[ 1620.764995][T26062] loop9: detected capacity change from 0 to 2640
[ 1620.982350][T26062] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1621.040446][T26062] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1621.060738][T26062] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1621.079040][T26062] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1621.094122][T26062] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1621.112399][T26062] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1621.130716][T26062] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1621.158897][T26062] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1621.186685][T26062] ldm_validate_partition_table(): Disk read failed.
[ 1621.207428][T26062] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1621.226226][T26062] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1621.244324][T26062] Dev loop9: unable to read RDB block 0
[ 1621.257310][T26062]  loop9: unable to read partition table
[ 1621.280188][T26062] loop_reread_partitions: partition scan of loop9 (3Ÿ¾‚³˜) failed (rc=-5)
[ 1621.891921][ T5725] usb 4-1: new high-speed USB device number 79 using dummy_hcd
[ 1621.942061][T26074] netlink: 6 bytes leftover after parsing attributes in process `syz.1.5759'.
[ 1622.553620][    T9] usb 3-1: new high-speed USB device number 70 using dummy_hcd
[ 1624.021439][    T9] usb 3-1: Using ep0 maxpacket: 16
[ 1625.192493][ T5725] usb 4-1: device descriptor read/all, error -71
[ 1625.352398][    T9] usb 3-1: unable to read config index 0 descriptor/start: -71
[ 1625.360171][    T9] usb 3-1: can't read configurations, error -71
[ 1626.247553][   T29] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[ 1626.332253][T26119] fuse: Bad value for 'fd'
[ 1626.765762][   T29] usb 5-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[ 1626.792606][   T29] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1626.822529][   T29] usb 5-1: Product: syz
[ 1626.828208][   T29] usb 5-1: Manufacturer: syz
[ 1626.850478][   T29] usb 5-1: SerialNumber: syz
[ 1627.051293][   T29] usb 5-1: config 0 descriptor??
[ 1627.428142][T26112] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5770'.
[ 1627.490036][T26112] netlink: 32 bytes leftover after parsing attributes in process `syz.4.5770'.
[ 1627.625082][T26128] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1627.656656][T26128] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1627.816448][T26087] usb 5-1: USB disconnect, device number 7
[ 1627.926305][T26131] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5777'.
[ 1628.198254][T26133] overlayfs: missing 'workdir'
[ 1629.092259][T26142] netlink: 116 bytes leftover after parsing attributes in process `syz.2.5780'.
[ 1629.156266][T26144] netlink: 'syz.2.5781': attribute type 8 has an invalid length.
[ 1629.667693][ T5725] usb 4-1: new high-speed USB device number 81 using dummy_hcd
[ 1630.065729][T26087] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[ 1630.439043][T26153] kAFS: No cell specified
[ 1631.047405][T26087] usb 5-1: Using ep0 maxpacket: 16
[ 1632.520967][ T5725] usb 4-1: unable to read config index 0 descriptor/all
[ 1632.527976][ T5725] usb 4-1: can't read configurations, error -71
[ 1632.708150][T26160] netlink: 'syz.5.5787': attribute type 8 has an invalid length.
[ 1633.291011][T26174] ptrace attach of "ci-upstream-kasan-gce-selinux-root/syz-executor exec"[26175] was attempted by "ci-upstream-kasan-gce-selinux-root/syz-executor exec"[26174]
[ 1633.367373][T26174] 9p: Bad value for 'rfdno'
[ 1633.744693][T26087] usb 5-1: unable to read config index 0 descriptor/all
[ 1633.751661][T26087] usb 5-1: can't read configurations, error -71
[ 1645.970627][T24843] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1645.982460][T24843] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1646.272111][T24843] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1646.280127][T24843] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1646.287684][T24843] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1651.121459][T15401] Bluetooth: hci3: command tx timeout
[ 1653.058033][T24843] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 1653.138917][T21451] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 1653.479087][T21451] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 1653.798955][T21451] Bluetooth: hci4: command 0x0406 tx timeout
[ 1653.805040][T21451] Bluetooth: hci3: command tx timeout
[ 1654.199481][T24843] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 1655.234168][T24843] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 1659.674958][T10687] Bluetooth: hci6: Opcode 0x0c16 failed: -110
[ 1659.700667][T24843] Bluetooth: hci7: Opcode 0x0c03 failed: -110
[ 1661.691287][T26189] lo speed is unknown, defaulting to 1000
[ 1662.924644][T26189] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1662.931803][T26189] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1662.939019][T26189] bridge_slave_0: entered allmulticast mode
[ 1662.946296][T26189] bridge_slave_0: entered promiscuous mode
[ 1662.954224][T26189] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1662.961364][T26189] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1662.968569][T26189] bridge_slave_1: entered allmulticast mode
[ 1662.975922][T26189] bridge_slave_1: entered promiscuous mode
[ 1663.250095][T26189] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1663.262076][T26189] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1663.294736][T26189] team0: Port device team_slave_0 added
[ 1663.556293][T26189] team0: Port device team_slave_1 added
[ 1666.632232][T21451] Bluetooth: hci8: Opcode 0x0c03 failed: -110
[ 1668.554230][ T1310] ieee802154 phy0 wpan0: encryption failed: -22
[ 1668.560671][ T1310] ieee802154 phy1 wpan1: encryption failed: -22
[ 1670.037243][T10687] Bluetooth: hci3: command tx timeout
[ 1670.047481][T26204] Bluetooth: hci6: Opcode 0x0c03 failed: -4
[ 1670.055559][T10687] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[ 1670.077836][T26212] Bluetooth: hci7: Opcode 0x0c03 failed: -4
[ 1670.099195][T26213] Bluetooth: hci8: Opcode 0x0c03 failed: -4
[ 1670.348524][T26231] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[ 1670.357430][T26231] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[ 1670.365372][T26231] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[ 1670.373139][T26231] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[ 1672.307343][T26231] Bluetooth: hci3: command tx timeout
[ 1673.275742][T21451] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1673.287286][T21451] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1673.296079][T21451] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1673.303914][T21451] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1673.311460][T21451] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1673.985046][T10687] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 1673.994640][T10687] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 1674.298579][T10687] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 1674.308602][T10687] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 1674.316472][T10687] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 1674.324073][T10687] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 1674.655734][T26247] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 1674.664664][T26247] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 1674.672476][T26247] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 1674.680277][T26249] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 1678.499513][T26189] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1678.506490][T26189] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1678.815692][T26189] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1679.493663][T15401] Bluetooth: hci6: command tx timeout
[ 1679.500289][T15401] Bluetooth: hci7: command tx timeout
[ 1679.506569][T15401] Bluetooth: hci0: command tx timeout
[ 1679.512871][T15401] Bluetooth: hci9: command tx timeout
[ 1681.701306][T26249] Bluetooth: hci9: command tx timeout
[ 1681.706739][T26249] Bluetooth: hci0: command tx timeout
[ 1681.712121][T26249] Bluetooth: hci7: command tx timeout
[ 1681.717511][T26249] Bluetooth: hci6: command tx timeout
[ 1684.048697][T15401] Bluetooth: hci6: command tx timeout
[ 1684.054114][T15401] Bluetooth: hci7: command tx timeout
[ 1684.059971][T15401] Bluetooth: hci0: command tx timeout
[ 1684.065413][T15401] Bluetooth: hci9: command tx timeout
[ 1686.446162][T26249] Bluetooth: hci9: command tx timeout
[ 1686.451603][T26249] Bluetooth: hci0: command tx timeout
[ 1686.456982][T26249] Bluetooth: hci7: command tx timeout
[ 1686.462369][T26249] Bluetooth: hci6: command tx timeout
[ 1698.967292][T26189] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1698.974347][T26189] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1699.000605][T26189] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1704.272022][T11016] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1706.091882][T26249] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1706.103158][T26249] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1706.111888][T26249] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1706.119720][T26249] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1706.127337][T26249] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1707.324572][T26275] lo speed is unknown, defaulting to 1000
[ 1708.204923][T26249] Bluetooth: hci1: command tx timeout
[ 1708.241032][T26275] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1708.248166][T26275] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1708.255382][T26275] bridge_slave_0: entered allmulticast mode
[ 1708.262808][T26275] bridge_slave_0: entered promiscuous mode
[ 1708.273951][T26275] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1708.281164][T26275] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1708.288828][T26275] bridge_slave_1: entered allmulticast mode
[ 1708.527595][T26275] bridge_slave_1: entered promiscuous mode
[ 1708.559403][T26275] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1708.571375][T26275] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1708.832394][T26275] team0: Port device team_slave_0 added
[ 1708.840622][T26275] team0: Port device team_slave_1 added
[ 1708.869664][T26275] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1708.876628][T26275] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1708.902504][T26275] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1709.204878][T26275] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1709.212201][T26275] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1709.477331][T26275] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1709.521533][T26275] hsr_slave_0: entered promiscuous mode
[ 1709.528154][T26275] hsr_slave_1: entered promiscuous mode
[ 1709.534785][T26275] debugfs: 'hsr0' already exists in 'hsr'
[ 1709.540707][T26275] Cannot create hsr debugfs directory
[ 1710.176768][T26275] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 1710.396994][T26249] Bluetooth: hci1: command tx timeout
[ 1710.417719][T26275] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1710.425563][T26275] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 1710.443276][T26275] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1710.451441][T26275] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 1710.466665][T26275] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1710.474679][T26275] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 1710.490676][T26275] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1710.755812][T26275] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1710.762950][T26275] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1710.770393][T26275] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1710.777496][T26275] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1711.095575][T26275] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1711.118549][T26275] 8021q: adding VLAN 0 to HW filter on device team0
[ 1712.591059][T15401] Bluetooth: hci1: command tx timeout
[ 1714.652184][T26249] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1714.663735][T26249] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1714.672522][T26249] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1714.680410][T26249] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1714.687968][T26249] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1714.948754][T26249] Bluetooth: hci1: command tx timeout
[ 1717.247638][T15401] Bluetooth: hci2: command tx timeout
[ 1719.562404][T15401] Bluetooth: hci2: command tx timeout
[ 1721.857439][T15401] Bluetooth: hci2: command tx timeout
[ 1724.154592][T15401] Bluetooth: hci2: command tx timeout
[ 1729.985217][ T1310] ieee802154 phy0 wpan0: encryption failed: -22
[ 1729.991546][ T1310] ieee802154 phy1 wpan1: encryption failed: -22
[ 1734.461468][T24843] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1734.472613][T24843] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1734.481503][T24843] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1734.489402][T24843] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1734.499917][T24843] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1735.397506][T15401] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1735.409194][T15401] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1735.417913][T15401] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1735.426110][T15401] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1735.433834][T15401] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1736.068627][T24843] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[ 1736.081002][T24843] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[ 1736.089962][T24843] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[ 1736.097760][T24843] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[ 1736.105305][T24843] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[ 1737.044707][T24843] Bluetooth: hci4: command tx timeout
[ 1737.658158][T24843] Bluetooth: hci5: command tx timeout
[ 1738.538589][T24843] Bluetooth: hci8: command tx timeout
[ 1739.408937][T24843] Bluetooth: hci4: command tx timeout
[ 1739.980290][T24843] Bluetooth: hci5: command tx timeout
[ 1740.910263][T24843] Bluetooth: hci8: command tx timeout
[ 1741.788049][T24843] Bluetooth: hci4: command tx timeout
[ 1742.077156][T15401] Bluetooth: hci5: command tx timeout
[ 1743.240770][T15401] Bluetooth: hci8: command tx timeout
[ 1744.108554][T15401] Bluetooth: hci4: command tx timeout
[ 1744.402915][T15401] Bluetooth: hci5: command tx timeout
[ 1745.552714][T15401] Bluetooth: hci8: command tx timeout
[ 1766.588244][T24843] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[ 1766.599632][T24843] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[ 1766.608367][T24843] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[ 1766.618793][T24843] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[ 1766.626515][T24843] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[ 1769.242031][T15401] Bluetooth: hci10: command tx timeout
[ 1771.534022][T24843] Bluetooth: hci10: command tx timeout
[ 1773.265647][T24843] Bluetooth: hci3: command 0x0406 tx timeout
[ 1773.817768][T15401] Bluetooth: hci10: command tx timeout
[ 1774.729385][T24843] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[ 1774.741143][T24843] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[ 1774.750308][T24843] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[ 1774.760349][T24843] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[ 1774.767956][T24843] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[ 1775.888187][T15401] Bluetooth: hci10: command tx timeout
[ 1777.315059][T15401] Bluetooth: hci11: command tx timeout
[ 1779.597077][T15401] Bluetooth: hci11: command tx timeout
[ 1781.621233][T15401] Bluetooth: hci11: command tx timeout
[ 1783.947156][T15401] Bluetooth: hci11: command tx timeout
[ 1791.453851][ T1310] ieee802154 phy0 wpan0: encryption failed: -22
[ 1791.460191][ T1310] ieee802154 phy1 wpan1: encryption failed: -22
[ 1795.231039][T24843] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1
[ 1795.258513][T24843] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9
[ 1795.270047][T26231] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9
[ 1795.278489][T26249] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1
[ 1795.512615][T26249] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9
[ 1795.522443][T26231] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9
[ 1795.530024][T26249] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4
[ 1795.538391][T26249] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4
[ 1795.545939][T26231] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2
[ 1795.554162][T26231] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2
[ 1796.169327][T15401] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1
[ 1796.181460][T15401] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9
[ 1796.190682][T15401] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9
[ 1796.198550][T15401] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4
[ 1796.206211][T15401] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2
[ 1797.651256][T15401] Bluetooth: hci13: command tx timeout
[ 1798.226810][T15401] Bluetooth: hci12: command tx timeout
[ 1798.816252][T15401] Bluetooth: hci14: command tx timeout
[ 1800.914919][T15401] Bluetooth: hci13: command tx timeout
[ 1800.920433][T15401] Bluetooth: hci12: command tx timeout
[ 1801.179217][T26231] Bluetooth: hci14: command tx timeout
[ 1802.991142][T26247] Bluetooth: hci12: command tx timeout
[ 1802.996683][T26247] Bluetooth: hci13: command tx timeout
[ 1803.291446][T26217] Bluetooth: hci14: command tx timeout
[ 1804.476125][T26217] Bluetooth: hci9: command 0x0406 tx timeout
[ 1804.482185][T26217] Bluetooth: hci0: command 0x0406 tx timeout
[ 1804.488189][T26217] Bluetooth: hci7: command 0x0406 tx timeout
[ 1804.494277][T26217] Bluetooth: hci6: command 0x0406 tx timeout
[ 1805.086521][T24843] Bluetooth: hci13: command tx timeout
[ 1805.092063][T24843] Bluetooth: hci12: command tx timeout
[ 1805.378231][T26249] Bluetooth: hci14: command tx timeout
[ 1826.818579][T26231] Bluetooth: hci15: unexpected cc 0x0c03 length: 249 > 1
[ 1826.830144][T26231] Bluetooth: hci15: unexpected cc 0x1003 length: 249 > 9
[ 1826.839323][T26231] Bluetooth: hci15: unexpected cc 0x1001 length: 249 > 9
[ 1826.847567][T26231] Bluetooth: hci15: unexpected cc 0x0c23 length: 249 > 4
[ 1827.086471][T26231] Bluetooth: hci15: unexpected cc 0x0c38 length: 249 > 2
[ 1829.394862][T26249] Bluetooth: hci15: command tx timeout
[ 1829.685717][T26249] Bluetooth: hci1: command 0x0406 tx timeout
[ 1831.686108][T26231] Bluetooth: hci15: command tx timeout
[ 1833.988544][T26231] Bluetooth: hci15: command tx timeout
[ 1835.205992][T26249] Bluetooth: hci16: unexpected cc 0x0c03 length: 249 > 1
[ 1835.218255][T26249] Bluetooth: hci16: unexpected cc 0x1003 length: 249 > 9
[ 1835.228996][T26249] Bluetooth: hci16: unexpected cc 0x1001 length: 249 > 9
[ 1835.236948][T26249] Bluetooth: hci16: unexpected cc 0x0c23 length: 249 > 4
[ 1835.244594][T26249] Bluetooth: hci16: unexpected cc 0x0c38 length: 249 > 2
[ 1836.121279][T26249] Bluetooth: hci15: command tx timeout
[ 1837.871212][T26231] Bluetooth: hci16: command tx timeout
[ 1839.875017][T26231] Bluetooth: hci2: command 0x0406 tx timeout
[ 1840.162347][T26231] Bluetooth: hci16: command tx timeout
[ 1842.173558][T26249] Bluetooth: hci16: command tx timeout
[ 1844.508344][T26249] Bluetooth: hci16: command tx timeout
[ 1849.970569][   T31] INFO: task kworker/u8:2:36 blocked for more than 143 seconds.
[ 1849.978247][   T31]       Tainted: G             L      syzkaller #0
[ 1849.984752][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1849.993418][   T31] task:kworker/u8:2    state:D stack:22856 pid:36    tgid:36    ppid:2      task_flags:0x4208060 flags:0x00080000
[ 1850.005438][   T31] Workqueue: events_unbound linkwatch_event
[ 1850.011348][   T31] Call Trace:
[ 1850.014621][   T31]  <TASK>
[ 1850.017578][   T31]  __schedule+0x1295/0x67a0
[ 1850.022103][   T31]  ? __pfx___schedule+0x10/0x10
[ 1850.026954][   T31]  ? find_held_lock+0x2b/0x80
[ 1850.031637][   T31]  ? schedule+0x2bf/0x390
[ 1850.036047][   T31]  schedule+0xdd/0x390
[ 1850.040128][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1850.045612][   T31]  __mutex_lock+0xced/0x1b10
[ 1850.050217][   T31]  ? linkwatch_event+0x51/0xc0
[ 1850.055005][   T31]  ? find_held_lock+0x2b/0x80
[ 1850.059788][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1850.064861][   T31]  ? linkwatch_event+0x51/0xc0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1851.507083][   T30] audit: type=1400 audit(1779900320.763:961): avc:  denied  { write } for  pid=5601 comm="syz-executor" path="pipe:[4476]" dev="pipefs" ino=4476 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[ 1851.811553][   T31]  linkwatch_event+0x51/0xc0
[ 1851.816196][   T31]  ? __pfx_linkwatch_event+0x10/0x10
[ 1851.821493][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1851.826273][   T31]  process_one_work+0xa0e/0x1980
[ 1851.831230][   T31]  ? __pfx_process_one_work+0x10/0x10
[ 1851.836616][   T31]  ? __pfx_linkwatch_event+0x10/0x10
[ 1851.841915][   T31]  worker_thread+0x5ef/0xe50
[ 1852.087268][   T31]  ? kthread+0x13a/0x450
[ 1852.091561][   T31]  ? __pfx_worker_thread+0x10/0x10
[ 1852.096688][   T31]  kthread+0x370/0x450
[ 1852.100768][   T31]  ? __pfx_kthread+0x10/0x10
[ 1852.105363][   T31]  ret_from_fork+0x72b/0xd50
[ 1852.109967][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1852.115080][   T31]  ? __switch_to+0x800/0x1100
[ 1852.119770][   T31]  ? __pfx_kthread+0x10/0x10
[ 1852.124381][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1852.129168][   T31]  </TASK>
[ 1852.132361][   T31] INFO: task kworker/u8:9:5829 blocked for more than 145 seconds.
[ 1852.140181][   T31]       Tainted: G             L      syzkaller #0
[ 1852.146765][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1852.389047][   T31] task:kworker/u8:9    state:D stack:21288 pid:5829  tgid:5829  ppid:2      task_flags:0x4208060 flags:0x00080000
[ 1852.401200][   T31] Workqueue: ipv6_addrconf addrconf_verify_work
[ 1852.407466][   T31] Call Trace:
[ 1852.410740][   T31]  <TASK>
[ 1852.413671][   T31]  __schedule+0x1295/0x67a0
[ 1852.418215][   T31]  ? __pfx___schedule+0x10/0x10
[ 1852.423152][   T31]  ? find_held_lock+0x2b/0x80
[ 1852.427837][   T31]  ? schedule+0x2bf/0x390
[ 1852.432204][   T31]  schedule+0xdd/0x390
[ 1852.436277][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1852.441739][   T31]  __mutex_lock+0xced/0x1b10
[ 1852.446332][   T31]  ? addrconf_verify_work+0x12/0x30
[ 1852.451570][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1852.456608][   T31]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1852.462826][   T31]  ? addrconf_verify_work+0x12/0x30
[ 1852.468046][   T31]  ? rtnl_lock+0x9/0x20
[ 1852.472209][   T31]  addrconf_verify_work+0x12/0x30
[ 1852.730117][   T31]  process_one_work+0xa0e/0x1980
[ 1852.735127][   T31]  ? __pfx_process_one_work+0x10/0x10
[ 1852.740521][   T31]  ? __pfx_addrconf_verify_work+0x10/0x10
[ 1852.746274][   T31]  worker_thread+0x5ef/0xe50
[ 1852.750884][   T31]  ? kthread+0x13a/0x450
[ 1852.755131][   T31]  ? __pfx_worker_thread+0x10/0x10
[ 1852.760306][   T31]  kthread+0x370/0x450
[ 1852.764797][   T31]  ? __pfx_kthread+0x10/0x10
[ 1852.769413][   T31]  ret_from_fork+0x72b/0xd50
[ 1852.774451][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1852.779629][   T31]  ? __switch_to+0x800/0x1100
[ 1852.784326][   T31]  ? __pfx_kthread+0x10/0x10
[ 1852.788924][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1852.793710][   T31]  </TASK>
[ 1852.796735][   T31] INFO: task kworker/u8:17:11016 blocked for more than 146 seconds.
[ 1853.072406][ T1310] ieee802154 phy0 wpan0: encryption failed: -22
[ 1853.078721][ T1310] ieee802154 phy1 wpan1: encryption failed: -22
[ 1853.090955][   T31]       Tainted: G             L      syzkaller #0
[ 1853.097480][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1853.106248][   T31] task:kworker/u8:17   state:D stack:22080 pid:11016 tgid:11016 ppid:2      task_flags:0x4208060 flags:0x00080000
[ 1853.118278][   T31] Workqueue: netns cleanup_net
[ 1853.123063][   T31] Call Trace:
[ 1853.366759][   T31]  <TASK>
[ 1853.369734][   T31]  __schedule+0x1295/0x67a0
[ 1853.374301][   T31]  ? __pfx___schedule+0x10/0x10
[ 1853.379169][   T31]  ? find_held_lock+0x2b/0x80
[ 1853.383858][   T31]  ? schedule+0x2bf/0x390
[ 1853.388196][   T31]  schedule+0xdd/0x390
[ 1853.392265][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1853.397727][   T31]  __mutex_lock+0xced/0x1b10
[ 1853.402344][   T31]  ? rtnl_net_dev_lock+0x146/0x360
[ 1853.407468][   T31]  ? __lock_acquire+0x4a5/0x2630
[ 1853.412416][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1853.417446][   T31]  ? mntput_no_expire_slowpath+0x54b/0xb00
[ 1853.423355][   T31]  ? find_held_lock+0x2b/0x80
[ 1853.428035][   T31]  ? rtnl_net_dev_lock+0x137/0x360
[ 1853.433155][   T31]  ? rtnl_net_dev_lock+0x137/0x360
[ 1853.438279][   T31]  ? rtnl_net_dev_lock+0x28/0x360
[ 1853.443311][   T31]  ? rtnl_net_dev_lock+0x146/0x360
[ 1853.448427][   T31]  ? rtnl_lock+0x9/0x20
[ 1853.452591][   T31]  rtnl_net_dev_lock+0x146/0x360
[ 1853.708193][   T31]  unregister_netdevice_notifier_dev_net+0x2c/0x2d0
[ 1853.714927][   T31]  nsim_destroy+0x124/0x970
[ 1853.719451][   T31]  ? nsim_dev_reload_destroy+0x40/0x4a0
[ 1853.724997][   T31]  ? nsim_dev_reload_destroy+0x10a/0x4a0
[ 1853.730634][   T31]  __nsim_dev_port_del+0x194/0x2b0
[ 1853.735755][   T31]  nsim_dev_reload_destroy+0x10a/0x4a0
[ 1853.741314][   T31]  nsim_dev_reload_down+0x66/0xd0
[ 1853.746344][   T31]  devlink_reload+0x1ae/0x7a0
[ 1853.751032][   T31]  ? __pfx_devlink_reload+0x10/0x10
[ 1853.756251][   T31]  devlink_pernet_pre_exit+0x247/0x370
[ 1853.761716][   T31]  ? __pfx_devlink_pernet_pre_exit+0x10/0x10
[ 1853.767702][   T31]  ? kobject_put+0xb9/0x640
[ 1853.772216][   T31]  ? __pfx_devlink_pernet_pre_exit+0x10/0x10
[ 1853.780483][   T31]  ops_undo_list+0x187/0xab0
[ 1854.024056][   T31]  ? __pfx_ops_undo_list+0x10/0x10
[ 1854.029215][   T31]  ? cleanup_net+0x332/0x920
[ 1854.033813][   T31]  ? cleanup_net+0x332/0x920
[ 1854.038407][   T31]  ? idr_destroy+0x62/0x2e0
[ 1854.042917][   T31]  cleanup_net+0x499/0x920
[ 1854.047340][   T31]  ? __pfx_cleanup_net+0x10/0x10
[ 1854.052280][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1854.057145][   T31]  process_one_work+0xa0e/0x1980
[ 1854.062107][   T31]  ? __pfx_process_one_work+0x10/0x10
[ 1854.067512][   T31]  ? __pfx_cleanup_net+0x10/0x10
[ 1854.072472][   T31]  worker_thread+0x5ef/0xe50
[ 1854.077088][   T31]  ? __pfx_worker_thread+0x10/0x10
[ 1854.082231][   T31]  ? kthread+0x13a/0x450
[ 1854.086475][   T31]  ? __pfx_worker_thread+0x10/0x10
[ 1854.091591][   T31]  kthread+0x370/0x450
[ 1854.095663][   T31]  ? __pfx_kthread+0x10/0x10
[ 1854.100256][   T31]  ret_from_fork+0x72b/0xd50
[ 1854.341011][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1854.346178][   T31]  ? __switch_to+0x800/0x1100
[ 1854.350882][   T31]  ? __pfx_kthread+0x10/0x10
[ 1854.355494][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1854.360280][   T31]  </TASK>
[ 1854.363629][   T31] INFO: task syz-executor:26189 blocked for more than 147 seconds.
[ 1854.371531][   T31]       Tainted: G             L      syzkaller #0
[ 1854.383251][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1854.391996][   T31] task:syz-executor    state:D stack:24616 pid:26189 tgid:26189 ppid:1      task_flags:0x400140 flags:0x00080002
[ 1854.403931][   T31] Call Trace:
[ 1854.407233][   T31]  <TASK>
[ 1854.410169][   T31]  __schedule+0x1295/0x67a0
[ 1854.415046][   T31]  ? __pfx___schedule+0x10/0x10
[ 1854.420005][   T31]  ? find_held_lock+0x2b/0x80
[ 1854.424695][   T31]  ? schedule+0x2bf/0x390
[ 1854.671277][   T31]  schedule+0xdd/0x390
[ 1854.675399][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1854.680869][   T31]  __mutex_lock+0xced/0x1b10
[ 1854.685477][   T31]  ? rtnl_newlink+0x8bb/0x2380
[ 1854.690253][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1854.695284][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1854.700057][   T31]  ? cap_capable+0x10b/0x440
[ 1854.704659][   T31]  ? ns_capable+0xd2/0xf0
[ 1854.708998][   T31]  ? rtnl_newlink+0x8bb/0x2380
[ 1854.713768][   T31]  rtnl_newlink+0x8bb/0x2380
[ 1854.718759][   T31]  ? __pfx_rtnl_newlink+0x10/0x10
[ 1854.723794][   T31]  ? find_held_lock+0x2b/0x80
[ 1854.728490][   T31]  ? avc_has_perm_noaudit+0x11e/0x3b0
[ 1854.733866][   T31]  ? avc_has_perm_noaudit+0x11e/0x3b0
[ 1854.739241][   T31]  ? avc_has_perm_noaudit+0x145/0x3b0
[ 1854.744736][   T31]  ? find_held_lock+0x2b/0x80
[ 1854.749422][   T31]  ? rtnetlink_rcv_msg+0x93a/0xe90
[ 1854.989861][   T31]  ? rtnetlink_rcv_msg+0x93a/0xe90
[ 1854.995020][   T31]  ? __pfx_rtnl_newlink+0x10/0x10
[ 1855.000054][   T31]  rtnetlink_rcv_msg+0x95e/0xe90
[ 1855.005080][   T31]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1855.010548][   T31]  ? __lock_acquire+0x4a5/0x2630
[ 1855.015506][   T31]  netlink_rcv_skb+0x159/0x420
[ 1855.020746][   T31]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1855.026233][   T31]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1855.031716][   T31]  ? netlink_deliver_tap+0x1ae/0xcc0
[ 1855.037038][   T31]  netlink_unicast+0x585/0x850
[ 1855.041843][   T31]  ? __pfx_netlink_unicast+0x10/0x10
[ 1855.047172][   T31]  netlink_sendmsg+0x8b0/0xda0
[ 1855.051948][   T31]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1855.057249][   T31]  __sys_sendto+0x468/0x4b0
[ 1855.061760][   T31]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1855.067163][   T31]  ? __pfx___sys_sendto+0x10/0x10
[ 1855.072321][   T31]  ? xfd_validate_state+0x129/0x190
[ 1855.329982][   T31]  __x64_sys_sendto+0xe0/0x1c0
[ 1855.335228][   T31]  ? do_syscall_64+0x90/0x870
[ 1855.339958][   T31]  ? lockdep_hardirqs_on+0x78/0x100
[ 1855.345266][   T31]  do_syscall_64+0x115/0x870
[ 1855.349866][   T31]  ? clear_bhb_loop+0x40/0x90
[ 1855.354548][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1855.360448][   T31] RIP: 0033:0x7ff36b35d68e
[ 1855.364876][   T31] RSP: 002b:00007ffd7c71a0d8 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[ 1855.373306][   T31] RAX: ffffffffffffffda RBX: 00005555769b6500 RCX: 00007ff36b35d68e
[ 1855.381634][   T31] RDX: 0000000000000054 RSI: 00007ff36c144670 RDI: 0000000000000003
[ 1855.389609][   T31] RBP: 0000000000000001 R08: 00007ffd7c71a154 R09: 000000000000000c
[ 1855.397603][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003
[ 1855.646838][   T31] R13: 0000000000000000 R14: 00007ff36c144670 R15: 0000000000000000
[ 1855.654900][   T31]  </TASK>
[ 1855.658018][   T31] INFO: task syz-executor:26216 blocked for more than 149 seconds.
[ 1855.665945][   T31]       Tainted: G             L      syzkaller #0
[ 1855.672440][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1855.681106][   T31] task:syz-executor    state:D stack:27528 pid:26216 tgid:26216 ppid:1      task_flags:0x400140 flags:0x00080002
[ 1855.693071][   T31] Call Trace:
[ 1855.696362][   T31]  <TASK>
[ 1855.699295][   T31]  __schedule+0x1295/0x67a0
[ 1855.703866][   T31]  ? __pfx___schedule+0x10/0x10
[ 1855.708723][   T31]  ? find_held_lock+0x2b/0x80
[ 1855.713400][   T31]  ? schedule+0x2bf/0x390
[ 1855.717752][   T31]  schedule+0xdd/0x390
[ 1855.721836][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1855.727300][   T31]  __mutex_lock+0xced/0x1b10
[ 1855.731902][   T31]  ? inet_rtm_newaddr+0x30c/0x18b0
[ 1855.978175][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1855.983258][   T31]  ? find_held_lock+0x2b/0x80
[ 1855.987950][   T31]  ? avc_has_perm_noaudit+0x11e/0x3b0
[ 1855.993337][   T31]  ? __nla_parse+0x40/0x60
[ 1855.997775][   T31]  ? inet_rtm_newaddr+0x30c/0x18b0
[ 1856.002913][   T31]  inet_rtm_newaddr+0x30c/0x18b0
[ 1856.007854][   T31]  ? __lock_acquire+0x4a5/0x2630
[ 1856.012804][   T31]  ? __pfx_inet_rtm_newaddr+0x10/0x10
[ 1856.018188][   T31]  ? rtnetlink_rcv_msg+0x93a/0xe90
[ 1856.023301][   T31]  ? rtnetlink_rcv_msg+0x93a/0xe90
[ 1856.028417][   T31]  ? __pfx_inet_rtm_newaddr+0x10/0x10
[ 1856.033801][   T31]  rtnetlink_rcv_msg+0x95e/0xe90
[ 1856.038740][   T31]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1856.044205][   T31]  ? __lock_acquire+0x4a5/0x2630
[ 1856.049517][   T31]  netlink_rcv_skb+0x159/0x420
[ 1856.054298][   T31]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1856.059790][   T31]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1856.304666][   T31]  ? netlink_deliver_tap+0x1ae/0xcc0
[ 1856.310012][   T31]  netlink_unicast+0x585/0x850
[ 1856.314799][   T31]  ? __pfx_netlink_unicast+0x10/0x10
[ 1856.320101][   T31]  netlink_sendmsg+0x8b0/0xda0
[ 1856.324901][   T31]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1856.330223][   T31]  __sys_sendto+0x468/0x4b0
[ 1856.334830][   T31]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1856.340195][   T31]  ? __pfx___sys_sendto+0x10/0x10
[ 1856.345252][   T31]  ? __pfx_fput_close_sync+0x10/0x10
[ 1856.350552][   T31]  __x64_sys_sendto+0xe0/0x1c0
[ 1856.355327][   T31]  ? do_syscall_64+0x90/0x870
[ 1856.360393][   T31]  ? lockdep_hardirqs_on+0x78/0x100
[ 1856.365608][   T31]  do_syscall_64+0x115/0x870
[ 1856.370377][   T31]  ? clear_bhb_loop+0x40/0x90
[ 1856.375066][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1856.380981][   T31] RIP: 0033:0x7f9d2675d68e
[ 1856.385400][   T31] RSP: 002b:00007fffd5f95a68 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[ 1856.644743][   T31] RAX: ffffffffffffffda RBX: 0000555570e04500 RCX: 00007f9d2675d68e
[ 1856.652777][   T31] RDX: 0000000000000028 RSI: 00007f9d27544670 RDI: 0000000000000003
[ 1856.660752][   T31] RBP: 0000000000000001 R08: 00007fffd5f95ae4 R09: 000000000000000c
[ 1856.669111][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003
[ 1856.677089][   T31] R13: 0000000000000000 R14: 00007f9d27544670 R15: 0000000000000000
[ 1856.685251][   T31]  </TASK>
[ 1856.688297][   T31] INFO: task syz-executor:26240 blocked for more than 150 seconds.
[ 1856.696184][   T31]       Tainted: G             L      syzkaller #0
[ 1856.702681][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1856.711348][   T31] task:syz-executor    state:D stack:27528 pid:26240 tgid:26240 ppid:1      task_flags:0x400140 flags:0x00080002
[ 1856.961551][   T31] Call Trace:
[ 1856.964874][   T31]  <TASK>
[ 1856.967828][   T31]  __schedule+0x1295/0x67a0
[ 1856.972694][   T31]  ? __pfx___schedule+0x10/0x10
[ 1856.977580][   T31]  ? find_held_lock+0x2b/0x80
[ 1856.982265][   T31]  ? schedule+0x2bf/0x390
[ 1856.986601][   T31]  schedule+0xdd/0x390
[ 1856.990674][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1856.996203][   T31]  __mutex_lock+0xced/0x1b10
[ 1857.000807][   T31]  ? inet_rtm_newaddr+0x30c/0x18b0
[ 1857.005930][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1857.010977][   T31]  ? find_held_lock+0x2b/0x80
[ 1857.015661][   T31]  ? avc_has_perm_noaudit+0x11e/0x3b0
[ 1857.021068][   T31]  ? __nla_parse+0x40/0x60
[ 1857.025491][   T31]  ? inet_rtm_newaddr+0x30c/0x18b0
[ 1857.030607][   T31]  inet_rtm_newaddr+0x30c/0x18b0
[ 1857.035635][   T31]  ? __lock_acquire+0x4a5/0x2630
[ 1857.040582][   T31]  ? __pfx_inet_rtm_newaddr+0x10/0x10
[ 1857.045965][   T31]  ? rtnetlink_rcv_msg+0x93a/0xe90
[ 1857.293787][   T31]  ? rtnetlink_rcv_msg+0x93a/0xe90
[ 1857.298986][   T31]  ? __pfx_inet_rtm_newaddr+0x10/0x10
[ 1857.304412][   T31]  rtnetlink_rcv_msg+0x95e/0xe90
[ 1857.309364][   T31]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1857.314838][   T31]  ? __lock_acquire+0x4a5/0x2630
[ 1857.319795][   T31]  netlink_rcv_skb+0x159/0x420
[ 1857.324654][   T31]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1857.330122][   T31]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1857.335508][   T31]  ? netlink_deliver_tap+0x1ae/0xcc0
[ 1857.340809][   T31]  netlink_unicast+0x585/0x850
[ 1857.345587][   T31]  ? __pfx_netlink_unicast+0x10/0x10
[ 1857.350885][   T31]  netlink_sendmsg+0x8b0/0xda0
[ 1857.355660][   T31]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1857.360985][   T31]  __sys_sendto+0x468/0x4b0
[ 1857.365497][   T31]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1857.370792][   T31]  ? __pfx___sys_sendto+0x10/0x10
[ 1857.375946][   T31]  ? __pfx_fput_close_sync+0x10/0x10
[ 1857.633854][   T31]  __x64_sys_sendto+0xe0/0x1c0
[ 1857.638681][   T31]  ? do_syscall_64+0x90/0x870
[ 1857.643375][   T31]  ? lockdep_hardirqs_on+0x78/0x100
[ 1857.648585][   T31]  do_syscall_64+0x115/0x870
[ 1857.653184][   T31]  ? clear_bhb_loop+0x40/0x90
[ 1857.657871][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1857.663797][   T31] RIP: 0033:0x7f805655d68e
[ 1857.668231][   T31] RSP: 002b:00007ffde65402c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[ 1857.676662][   T31] RAX: ffffffffffffffda RBX: 000055557effa500 RCX: 00007f805655d68e
[ 1857.684638][   T31] RDX: 0000000000000028 RSI: 00007f8057344670 RDI: 0000000000000003
[ 1857.693036][   T31] RBP: 0000000000000001 R08: 00007ffde6540344 R09: 000000000000000c
[ 1857.701027][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003
[ 1857.709001][   T31] R13: 0000000000000000 R14: 00007f8057344670 R15: 0000000000000000
[ 1857.966771][   T31]  </TASK>
[ 1857.969896][   T31] INFO: task syz-executor:26243 blocked for more than 151 seconds.
[ 1857.977880][   T31]       Tainted: G             L      syzkaller #0
[ 1857.984380][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1857.993066][   T31] task:syz-executor    state:D stack:27528 pid:26243 tgid:26243 ppid:1      task_flags:0x400140 flags:0x00080002
[ 1858.005509][   T31] Call Trace:
[ 1858.008793][   T31]  <TASK>
[ 1858.011725][   T31]  __schedule+0x1295/0x67a0
[ 1858.017528][   T31]  ? __pfx___schedule+0x10/0x10
[ 1858.022675][   T31]  ? find_held_lock+0x2b/0x80
[ 1858.027362][   T31]  ? schedule+0x2bf/0x390
[ 1858.031699][   T31]  schedule+0xdd/0x390
[ 1858.035771][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1858.041229][   T31]  __mutex_lock+0xced/0x1b10
[ 1858.926861][   T31]  ? inet_rtm_newaddr+0x30c/0x18b0
[ 1858.932035][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1858.937079][   T31]  ? find_held_lock+0x2b/0x80
[ 1858.941763][   T31]  ? avc_has_perm_noaudit+0x11e/0x3b0
[ 1858.947148][   T31]  ? __nla_parse+0x40/0x60
[ 1858.951652][   T31]  ? inet_rtm_newaddr+0x30c/0x18b0
[ 1858.956768][   T31]  inet_rtm_newaddr+0x30c/0x18b0
[ 1858.961707][   T31]  ? __lock_acquire+0x4a5/0x2630
[ 1858.966653][   T31]  ? __pfx_inet_rtm_newaddr+0x10/0x10
[ 1858.972033][   T31]  ? rtnetlink_rcv_msg+0x93a/0xe90
[ 1858.977233][   T31]  ? rtnetlink_rcv_msg+0x93a/0xe90
[ 1858.982355][   T31]  ? __pfx_inet_rtm_newaddr+0x10/0x10
[ 1858.987728][   T31]  rtnetlink_rcv_msg+0x95e/0xe90
[ 1858.992667][   T31]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1858.998216][   T31]  ? __lock_acquire+0x4a5/0x2630
[ 1859.003175][   T31]  netlink_rcv_skb+0x159/0x420
[ 1859.008057][   T31]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1859.314494][   T31]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1859.865332][   T31]  ? netlink_deliver_tap+0x1ae/0xcc0
[ 1859.870672][   T31]  netlink_unicast+0x585/0x850
[ 1859.875451][   T31]  ? __pfx_netlink_unicast+0x10/0x10
[ 1859.880749][   T31]  netlink_sendmsg+0x8b0/0xda0
[ 1859.885607][   T31]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1859.890909][   T31]  __sys_sendto+0x468/0x4b0
[ 1859.895428][   T31]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1859.900721][   T31]  ? __pfx___sys_sendto+0x10/0x10
[ 1859.905774][   T31]  ? __pfx_fput_close_sync+0x10/0x10
[ 1859.911075][   T31]  __x64_sys_sendto+0xe0/0x1c0
[ 1859.915849][   T31]  ? do_syscall_64+0x90/0x870
[ 1859.920532][   T31]  ? lockdep_hardirqs_on+0x78/0x100
[ 1859.925755][   T31]  do_syscall_64+0x115/0x870
[ 1859.930349][   T31]  ? clear_bhb_loop+0x40/0x90
[ 1859.935031][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1859.941328][   T31] RIP: 0033:0x7f538b35d68e