last executing test programs:

20.614926274s ago: executing program 3 (id=914):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_int(r1, 0x29, 0xcf, &(0x7f0000001040)=0x1f, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00'}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000006100000e00000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/udp6\x00')
sendmsg$nl_route(r3, 0x0, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0xffffffffffffffff, 0x0, &(0x7f00000000c0), &(0x7f0000000240), 0x800, r2}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x19, &(0x7f0000000800)={0x0, &(0x7f0000000840)=""/121, &(0x7f0000000680), &(0x7f0000000540), 0x6c, r2}, 0x38)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x3, 0x5, &(0x7f0000006680))
sysinfo(&(0x7f0000000340)=""/193)
r4 = fsopen(&(0x7f0000000080)='cifs\x00', 0x0)
keyctl$chown(0x4, 0x0, 0xee01, 0xee00)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f0000000200)='source', &(0x7f0000000000)='\\\\\xe9\x838\x9d<\f\x91\a\xd4$\xae$\x91&6n @\xf4M\xba\xf2<\xd6A\xdb\xd7\xbeY@g\xcc\xca\n@\x06\xa3\xfe%\x11\xc9\xc5\xc4\x96\xb7b\xa7\x15R.\xa3`fd\xdc\x8b\x18rBl{\x82\\\xbeA\x17\n\f\xcd=\'\x11\x1bZ\x8e\xb1\xc3j$v\xefw\x96\\\\\xa2\xfc\xe3\xb8\xc7\x0f\xaa\x01\x00\x00\x00;\xd5\xcd4g+\xbd\xd1\xe0R\x9d\x18\x19a:\xa2\xdf\xbe\x8b\x89\x81', 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdir(0x0, 0x18e)
syz_open_dev$vim2m(&(0x7f00000000c0), 0x9, 0x2)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000100)=<r6=>0x0)
getpgid(r6)

19.349677309s ago: executing program 3 (id=918):
r0 = openat$sysfs(0xffffff9c, &(0x7f0000000040)='/sys/kernel/notes', 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendfile(r1, r0, 0x0, 0x7ffff088)
openat$uinput(0xffffffffffffff9c, 0x0, 0x801, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = bpf$OBJ_GET_PROG(0x7, 0x0, 0x0)
pwritev(r2, 0x0, 0x0, 0x5, 0x1b)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000004c00)=""/102392, 0x18ff8)
r4 = syz_open_procfs(0x0, &(0x7f0000002140)='fdinfo\x00')
r5 = socket(0x10, 0x80002, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8b24, 0x0)
getdents64(r4, 0xffffffffffffffff, 0x18)
socket(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r6 = creat(0x0, 0x1)
write$binfmt_format(r6, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, r6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$qrtrtun(r6, &(0x7f0000000300)="ca0e808bb3", 0x5)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r8 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r8, &(0x7f0000000600)={0x0, 0xfffffffe, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000026008188040f80ec59acbc0413a1f8480d0000005e140604000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000007c0)=ANY=[@ANYBLOB="140000001000010000000000000000000a00000a74000000060a010400000000000000000200000048000480440001800a0001006d61746368000000340002800900010074696d65000000001c00030007682c020b7b37f27f5101007f51010049f4e34e860200eb08000240000000000900010073797a30000000000900020073797a32"], 0x9c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)

17.954851681s ago: executing program 3 (id=922):
syz_usb_connect$hid(0x6, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x200, 0x0, 0x0, 0x0, 0xff, 0xeef, 0x1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x4, 0x0, 0xd6, [{{0x9, 0x4, 0x0, 0xb, 0x1, 0x3, 0x1, 0x3, 0x2, {0x9, 0x21, 0xffff, 0x7, 0x1, {0x22, 0xf04}}, {{{0x9, 0x5, 0x81, 0x3, 0x8, 0x4, 0xff, 0x4}}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3)
socket$can_raw(0x1d, 0x3, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x4, 0x5}, 0x0)
ioctl$sock_bt_bnep_BNEPGETCONNINFO(0xffffffffffffffff, 0x800442d3, 0x0)
openat$nvram(0xffffffffffffff9c, 0x0, 0x14305, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
close(r0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000240)=0x100000001, 0x59)
connect$inet6(r2, &(0x7f0000000200)={0xa, 0xffff, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000040), 0x4)
r3 = socket(0xa, 0x5, 0x0)
setsockopt$inet_int(r3, 0x0, 0x15, &(0x7f00000000c0)=0x80000000, 0x4)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x2, &(0x7f0000000b80)=@gcm_256={{0x304}, "76f7bc3e4ae1c84c", "af193cff4810ba5ac120d096eb00b40752095b4285514ca312c52e3a08756735", '8\x00', "bc3a20b10f4ad11e"}, 0x38)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="e8000000000205000000000000000000020000025c00028006000340000300002c00018014000300ff0200000000000000000000000000011400040020000000000000000000000000000001060003400000000014000180080001000a010101080002000a0101000600034000020000080009400000"], 0xe8}, 0x1, 0x0, 0x0, 0x20048010}, 0x24000000)
r5 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$RTC_WKALM_SET(r5, 0x4028700f, &(0x7f0000000080)={0x1, 0x0, {0x23, 0x0, 0x1, 0x18, 0x0, 0x65, 0x1}})
io_uring_setup(0x79bf, &(0x7f0000000180))
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)

14.984775043s ago: executing program 3 (id=931):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f00000000c0)=@abs={0x0, 0x0, 0xc77}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000140), 0xf, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, 0x0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
r1 = syz_open_dev$ttys(0xc, 0x2, 0x0)
r2 = syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x103502)
ioctl$MON_IOCX_MFETCH(r2, 0xc0109207, &(0x7f00000001c0)={&(0x7f00000000c0), 0x0, 0x3})
dup3(r2, 0xffffffffffffffff, 0x0)
r3 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r3, &(0x7f0000000140)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x5, @random="f6811610c108"}, 0x10)
recvmmsg(r3, &(0x7f00000050c0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}, 0x4}], 0x2, 0x2, 0x0)
sendmmsg(r3, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000000)=0xe)
ioctl$TCSETS(r1, 0x80047456, 0x0)
sendto$inet6(r0, &(0x7f0000000040)='\x00', 0x1, 0x20000045, &(0x7f00000001c0)={0xa, 0x2, 0x396, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c)
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000000500)=ANY=[@ANYRES8], 0x1e0)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000300)='yeah\x00', 0x5)
unshare(0x68040200)
socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000440)=ANY=[@ANYBLOB="1c0000002100010000000000000000000200000000000000e8"], 0x1c}}, 0x44044)
syz_usb_connect$uac1(0x6, 0x71, &(0x7f0000000200)=ANY=[@ANYBLOB="12015002000000106b1d010140000102030109025f00030104c70128040000000101004741ef4f47f4d03c129a7dfe2e47a88a0d272b81446b8258f83e941d932cebcab08c315cd9314ea10e"], 0x0)
openat$dsp1(0xffffffffffffff9c, 0x0, 0x109801, 0x0)
socket$alg(0x26, 0x5, 0x0)
syz_clone(0x800000, &(0x7f0000000280), 0x0, &(0x7f0000000080), &(0x7f0000000380), &(0x7f00000003c0)="3230257fba12322ed5573507928e6f91d7a7b7142217cd771c90e685d7cdbcb9cdc61c3e02315a3616788e8e7b759d11d93a02c8")

12.391647327s ago: executing program 1 (id=937):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, &(0x7f00000000c0)={0x79, 0x0, 0x1d7})
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, &(0x7f0000000000)='source', 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10)
listen(0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8f}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = syz_open_procfs(0x0, 0x0)
r7 = msgget$private(0x0, 0x3ac)
msgrcv(r7, 0x0, 0x0, 0x3, 0x2000)
msgsnd(r7, &(0x7f0000000240)={0x3}, 0x8, 0x8fa2496c381b7ad5)
msgctl$IPC_SET(r7, 0x1, &(0x7f0000002840)={{0x3, 0x0, 0x0, 0x0, 0x0, 0x10, 0xd79e}, 0x0, 0x0, 0x2, 0x9, 0x1ff, 0xa, 0x5, 0x100, 0x9, 0x101})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000040)={'ip6tnl0\x00', &(0x7f0000000240)={'ip6gre0\x00', <r8=>0x0, 0x2f, 0x5, 0x2, 0x2, 0x0, @private1, @mcast2, 0x10, 0x8, 0x3, 0x7}})
r9 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f00000009c0)=ANY=[@ANYBLOB="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"], 0x0, 0x11b, 0x0, 0x0, 0x7ff}, 0x28)
r10 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=@bloom_filter={0x1e, 0x2, 0x5, 0x80000000, 0x1c, r6, 0xb74, '\x00', r8, r9, 0x0, 0x4, 0x1, 0xc}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0xa, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {{0x18, 0x1, 0x1, 0x0, r10}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}, {0x95, 0x0, 0x0, 0x700}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9, 0xfe00}, {0x6, 0x0, 0x6, 0x9, 0x0, 0x0, 0x3}, {0x3, 0x3, 0x6, 0xa, 0xa, 0xfff0, 0x50}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {0x7, 0x0, 0x6, 0x0}, {0x18, 0x9}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x6, 0x1, 0x5, 0x2}, {0x6, 0x0, 0x5, 0x8, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @fallback=0xd, 0x0, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
dup(r12)
ioctl$KVM_SET_USER_MEMORY_REGION(r12, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})

12.219221009s ago: executing program 2 (id=938):
openat$vnet(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
r1 = getpgrp(0xffffffffffffffff)
prlimit64(r1, 0xe, &(0x7f0000000140)={0x7, 0x40000000000000}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, 0x0, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r5, 0x3b81, &(0x7f00000003c0)={0xc, 0x0, <r6=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r5, 0x3ba0, &(0x7f0000000340)={0x48, 0x5, r6, 0x0, <r7=>0xffffffffffffffff, 0x1})
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r5, 0x3ba0, &(0x7f0000000400)={0x48, 0x7, r7, 0x0, 0x10000, 0x0, 0x9, 0x2a7345, 0x20d37})

10.781118587s ago: executing program 2 (id=940):
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000096c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=@newtaction={0x6c, 0x30, 0x9, 0x0, 0x0, {}, [{0x58, 0x1, [@m_vlan={0x54, 0x1, 0x0, 0x0, {{0x9}, {0x28, 0x2, 0x0, 0x1, [@TCA_VLAN_PARMS={0x1c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0x6c05}, 0x3}}, @TCA_VLAN_PUSH_VLAN_ID={0x6}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x6c}}, 0x0)

10.769200046s ago: executing program 1 (id=941):
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
openat$selinux_status(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f00000000c0)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prlimit64(0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sched_setscheduler(r0, 0x1, &(0x7f0000000180)=0x3)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@updsa={0x104, 0x1a, 0x1, 0x0, 0x0, {{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @in=@initdev={0xac, 0x1e, 0x0, 0x0}}, {@in=@empty, 0x0, 0x3c}, @in=@loopback, {}, {}, {0x0, 0x1ec}, 0x0, 0x0, 0xa, 0x2}, [@coaddr={0x14, 0xe, @in6=@private2}]}, 0x104}}, 0x0)

9.683771292s ago: executing program 0 (id=943):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x9}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xffd, 0x7}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r3}, 0x10)
sendmmsg$unix(r1, 0x0, 0x0, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB], 0x14}}, 0xc00)
ioctl$SNDCTL_DSP_SETFMT(0xffffffffffffffff, 0xc0045005, 0x0)
unlink(0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x10001})
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000c00)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b34, &(0x7f0000000000)={'wlan1\x00', @random="000300000020"})
io_uring_register$IORING_REGISTER_PBUF_RING(0xffffffffffffffff, 0x16, &(0x7f0000000400)={&(0x7f0000002000)={[{&(0x7f00000002c0)="1d3fcf72168b96e38f8a2357932e993378a49bdfc4256da22361ea2ef42da1ecd1636e3ec8430429a42e4be9b4f047f7b09f569c59a022df69aa0921d68e10917a692c1ad87a67abe76bd6b7b7c8397058541e4d03cafd83c8aca976a63b48ffbc24ae8da6fa8200c4b0b0e674ca94de051582afffa2dba239c532058df9ff73d863802332ce2df0671b7aae2e45c0ab1b09775bee7e96fbf9facf8295c295fc345a66017140f7e2a68368954b24210c8816484ea75ed6ce7327ab26bdcdcf6bd1368b91fe99e590eaeb281c78d9814379", 0xd1}, {&(0x7f0000000240)="601e1652aec68021b76f1ab9b3fe94ddcd8f9ee7b831af0de22eb2d3fd8585e065aa", 0x22, 0x1}]}, 0x2}, 0x1)
r5 = syz_open_dev$cec(&(0x7f0000000100), 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
ioctl$CEC_ADAP_S_LOG_ADDRS(r5, 0xc05c6104, &(0x7f00000001c0)={"f2efe21e", 0x0, 0x6, 0x4d, 0x0, 0x1ff, "2179d46fd08e3c0ced34c7d0c7e6d7", "7ca24a13", '\x00', "a2d1d4a2", ["1af0b1ba1cb8fd54c9c9b587", "bed0f3d6ce7a5f7389827f04", "33af343c60abc64f2fdc9ddf", "9b3842fc63849f62b6eb1c3c"]})
r6 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_RX_RING(r6, 0x11b, 0x2, &(0x7f0000000080), 0x4)

9.570228024s ago: executing program 1 (id=944):
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
connect$inet(r0, &(0x7f00000003c0)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x23}}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0xc004743e, 0x110e22fff6)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, 0x0, &(0x7f00002bf000)='GPL\x00', 0x4, 0xb7, &(0x7f0000000040)=""/183, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
r5 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r5, 0x89e0, &(0x7f0000000180)={r0, r4})
ioctl$sock_kcm_SIOCKCMCLONE(r5, 0x89e2, &(0x7f0000001380)={<r6=>0xffffffffffffffff})
syz_genetlink_get_family_id$batadv(&(0x7f0000000200), r6)
r7 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r7, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
lsetxattr$system_posix_acl(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='system.posix_acl_access\x00', &(0x7f00000002c0)={{}, {}, [], {}, [{}]}, 0x2c, 0x0)

8.212176282s ago: executing program 2 (id=945):
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
openat$selinux_status(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f00000000c0)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prlimit64(0x0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000140)={0x3, 0xffffffffffffffff}, 0x0)
sched_setscheduler(r0, 0x1, &(0x7f0000000180)=0x3)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@updsa={0x104, 0x1a, 0x1, 0x0, 0x0, {{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @in=@initdev={0xac, 0x1e, 0x0, 0x0}}, {@in=@empty, 0x0, 0x3c}, @in=@loopback, {}, {}, {0x0, 0x1ec}, 0x0, 0x0, 0xa, 0x2}, [@coaddr={0x14, 0xe, @in6=@private2}]}, 0x104}}, 0x0)

8.177197537s ago: executing program 0 (id=946):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="1400000002070300"/20], 0x14}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x2, 0x7}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x20000045)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000005580)=""/102392, 0x18ff8)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = dup(r2)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="640000000206030000000000fffff0000000000016000300686173683a6e65742c706f72742c6e6574000000050004000000000005000500020000000900020073797a3200000000050001000700000014000780080013400000000008001240"], 0x64}}, 0x0)
rseq(&(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x4, 0xfffffffffffffff7, 0x3, 0x4427}, 0xc}, 0x20, 0x0, 0x0)
r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_TIMER_IOCTL_START(r4, 0x54a0)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r3, 0x84, 0x6c, 0x0, 0x0)
r5 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r6 = openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x82)
open_by_handle_at(r6, &(0x7f00000003c0)=ANY=[@ANYBLOB="10000000020000000b"], 0xfe)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r5, 0x40345410, &(0x7f00000083c0)={{0x3, 0x7}})
ioctl$SNDRV_TIMER_IOCTL_START(r5, 0x54a0)
r7 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
ioctl$SNDCTL_DSP_GETOSPACE(r7, 0x8010500c, &(0x7f0000000040))
sendmsg$IPSET_CMD_DESTROY(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c0000000306010100000000000000000200000a0500f67122030000"], 0x1c}, 0x1, 0x0, 0x0, 0x40841}, 0x4)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newlink={0x38, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x137b}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x8, 0x2, 0x0, 0x1, [@IFLA_GENEVE_COLLECT_METADATA={0x1}]}}}]}, 0x38}}, 0x40800)

7.729383906s ago: executing program 4 (id=947):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x5)
syz_emit_ethernet(0x52, &(0x7f0000000140)={@random="cf599d3baed5", @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "f200", 0x1c, 0x2c, 0x0, @remote, @local, {[@routing={0x2b, 0x0, 0x2, 0x8}], {{0x2, 0x4e21, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x0, 0x1000, 0x0, 0x4}}}}}}}, 0x0)
syz_emit_ethernet(0x46, 0x0, 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)
r3 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x1, 0x1)
fchdir(r4)
r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x90)
getdents(r5, &(0x7f0000000300)=""/56, 0x38)

7.661670599s ago: executing program 1 (id=948):
syz_usb_connect$hid(0x6, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x200, 0x0, 0x0, 0x0, 0xff, 0xeef, 0x1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x4, 0x0, 0xd6, [{{0x9, 0x4, 0x0, 0xb, 0x1, 0x3, 0x1, 0x3, 0x2, {0x9, 0x21, 0xffff, 0x7, 0x1, {0x22, 0xf04}}, {{{0x9, 0x5, 0x81, 0x3, 0x8, 0x4, 0xff, 0x4}}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3)
socket$can_raw(0x1d, 0x3, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x4, 0x5}, 0x0)
ioctl$sock_bt_bnep_BNEPGETCONNINFO(0xffffffffffffffff, 0x800442d3, 0x0)
openat$nvram(0xffffffffffffff9c, 0x0, 0x14305, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
close(r0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000240)=0x100000001, 0x59)
connect$inet6(r2, &(0x7f0000000200)={0xa, 0xffff, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000040), 0x4)
r3 = socket(0xa, 0x5, 0x0)
setsockopt$inet_int(r3, 0x0, 0x15, &(0x7f00000000c0)=0x80000000, 0x4)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x2, &(0x7f0000000b80)=@gcm_256={{0x304}, "76f7bc3e4ae1c84c", "af193cff4810ba5ac120d096eb00b40752095b4285514ca312c52e3a08756735", '8\x00', "bc3a20b10f4ad11e"}, 0x38)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="e8000000000205000000000000000000020000025c00028006000340000300002c00018014000300ff0200000000000000000000000000011400040020000000000000000000000000000001060003400000000014000180080001000a010101080002000a010100060003400002000008000940000000054c000180140001800800010064010102080002000a01010106000340000000002c00018014000300ff02000000000000000000000000000114000400ff0200000000000000000000000000010c000280060003400004"], 0xe8}, 0x1, 0x0, 0x0, 0x20048010}, 0x24000000)
r5 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$RTC_WKALM_SET(r5, 0x4028700f, &(0x7f0000000080)={0x1, 0x0, {0x23, 0x0, 0x1, 0x18, 0x0, 0x65, 0x1}})
io_uring_setup(0x79bf, &(0x7f0000000180))
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)

6.731117683s ago: executing program 2 (id=949):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r0)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), r0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000}, 0x94)
ioctl$VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, 0x0)
fspick(0xffffffffffffff9c, 0x0, 0xf)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000440), 0x0)
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mkdir(0x0, 0x0)
sendmsg$NL802154_CMD_DEL_SEC_KEY(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400120}, 0xc, &(0x7f00000000c0)={&(0x7f0000000880)={0x344, r1, 0x8, 0x70bd29, 0x25dfdbff, {}, [@NL802154_ATTR_SEC_KEY={0x2c, 0x30, 0x0, 0x1, [@NL802154_KEY_ATTR_ID={0xc, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x2}]}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "c6a45e015e457eb010d3d886fee90b82"}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x24}]}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_SEC_KEY={0x1f0, 0x30, 0x0, 0x1, [@NL802154_KEY_ATTR_BYTES={0x14, 0x4, "74929d255eeac4115033d1cda9233ec8"}, @NL802154_KEY_ATTR_ID={0x48, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x44d8}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x3c, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x2}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x2}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0x300}}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xfffe}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x3}]}]}, @NL802154_KEY_ATTR_ID={0xa0, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0xf0a9}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x5}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x30, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0202}}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x2}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x2}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x2}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xffff}]}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x44, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0202}}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa3}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x1}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0102}}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x3}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa2}]}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x2}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x8}]}, @NL802154_KEY_ATTR_ID={0x84, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0xc79}, @NL802154_KEY_ID_ATTR_IMPLICIT={0xc, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x3}]}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x2}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x5}, @NL802154_KEY_ID_ATTR_MODE={0x8}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x2c, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_SHORT={0x6}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x2}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x2}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa0}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6}]}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}, @NL802154_KEY_ID_ATTR_INDEX={0x5}]}, @NL802154_KEY_ATTR_ID={0x6c, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x7}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x5c, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_PAN_ID={0x6}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0302}}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0202}}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x3}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xfffe}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x1}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x2}]}]}]}, @NL802154_ATTR_SEC_KEY={0xfc, 0x30, 0x0, 0x1, [@NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "398cbe1f57b6fc5525fcdd9d719e6c5c6f6ec43cf74d9a4a762b651778c581f1"}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x8}, @NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "020427493fdb05af2ac3f3fbe21cf2b6236061a979ad69e2d9621f703bc90b22"}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "d0cc807fbf490357f0a6e49c6655c0ef"}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x2}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "dba66dcd9e48305d0e9c36ca75b6dbf8"}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x9}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "648cb8a250d8ac9487bbd20c1d8ba6f3"}, @NL802154_KEY_ATTR_ID={0x38, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x1}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x9}, @NL802154_KEY_ID_ATTR_INDEX={0x5}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0xd}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x10, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_EXTENDED={0xc}]}]}, @NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "c6ab2b4a04c1c2292f4671bb055e740dbe23b3496357e17c2e7dcc9b0060b8fb"}]}]}, 0x344}, 0x1, 0x0, 0x0, 0x40}, 0x40000)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f0000000100)={0x3, 0x0, &(0x7f0000000000)={&(0x7f0000001180)=ANY=[@ANYBLOB="020200090d00000000000000000000000200081c08002000fd00000000000000020001000000000000000500000000a0030006000000000002000000ac1414ff0000000000000000030005000000000002000000000000000000000000000000010014009b71000000"], 0x68}, 0x1, 0x7}, 0x0)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCPKT(r6, 0x5420, &(0x7f0000000100)=0xcf5)
ioctl$TCSETS(r6, 0x40045431, &(0x7f0000000dc0)={0x0, 0x3, 0x0, 0x0, 0x0, "0062ba7d82000000000000000000f7ffffff00"})
r7 = syz_open_pts(r6, 0x121500)
ioctl$TIOCSTI(r7, 0x5412, &(0x7f0000000280)=0x3)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_usb_connect(0x0, 0x36, &(0x7f00000001c0)=ANY=[@ANYBLOB="12010000f751ae40510410341eef010203010902240001000000000904000002aa0f60000905040200000000e79a4bf2b2dce900090582020000000000"], 0x0)

6.557109472s ago: executing program 0 (id=950):
openat$vnet(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
r1 = getpgrp(0xffffffffffffffff)
prlimit64(r1, 0xe, &(0x7f0000000140)={0x7, 0x40000000000000}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r5 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r5, 0x3b81, &(0x7f00000003c0)={0xc, 0x0, <r6=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r5, 0x3ba0, &(0x7f0000000340)={0x48, 0x5, r6, 0x0, <r7=>0xffffffffffffffff, 0x1})
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r5, 0x3ba0, &(0x7f0000000400)={0x48, 0x7, r7, 0x0, 0x10000, 0x0, 0x9, 0x2a7345, 0x20d37})

5.448945591s ago: executing program 4 (id=951):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, &(0x7f00000000c0)={0x79, 0x0, 0x1d7})
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, &(0x7f0000000000)='source', 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10)
listen(0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8f}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = syz_open_procfs(0x0, 0x0)
r7 = msgget$private(0x0, 0x3ac)
msgrcv(r7, 0x0, 0x0, 0x3, 0x2000)
msgsnd(r7, &(0x7f0000000240)={0x3}, 0x8, 0x8fa2496c381b7ad5)
msgctl$IPC_SET(r7, 0x1, &(0x7f0000002840)={{0x3, 0x0, 0x0, 0x0, 0x0, 0x10, 0xd79e}, 0x0, 0x0, 0x2, 0x9, 0x1ff, 0xa, 0x5, 0x100, 0x9, 0x101})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000040)={'ip6tnl0\x00', &(0x7f0000000240)={'ip6gre0\x00', <r8=>0x0, 0x2f, 0x5, 0x2, 0x2, 0x0, @private1, @mcast2, 0x10, 0x8, 0x3, 0x7}})
r9 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f00000009c0)=ANY=[@ANYBLOB="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"], 0x0, 0x11b, 0x0, 0x0, 0x7ff}, 0x28)
r10 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=@bloom_filter={0x1e, 0x2, 0x5, 0x80000000, 0x1c, r6, 0xb74, '\x00', r8, r9, 0x0, 0x4, 0x1, 0xc}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0xa, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {{0x18, 0x1, 0x1, 0x0, r10}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}, {0x95, 0x0, 0x0, 0x700}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9, 0xfe00}, {0x6, 0x0, 0x6, 0x9, 0x0, 0x0, 0x3}, {0x3, 0x3, 0x6, 0xa, 0xa, 0xfff0, 0x50}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {0x7, 0x0, 0x6, 0x0}, {0x18, 0x9}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x6, 0x1, 0x5, 0x2}, {0x6, 0x0, 0x5, 0x8, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @fallback=0xd, 0x0, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
dup(r12)
ioctl$KVM_SET_USER_MEMORY_REGION(r12, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})

5.186439468s ago: executing program 0 (id=952):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, &(0x7f00000000c0)={0x79, 0x0, 0x1d7})
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, &(0x7f0000000000)='source', 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8f}, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
r7 = msgget$private(0x0, 0x3ac)
msgrcv(r7, 0x0, 0x0, 0x3, 0x2000)
msgsnd(r7, &(0x7f0000000240)={0x3}, 0x8, 0x8fa2496c381b7ad5)
mount$9p_fd(0x0, 0x0, &(0x7f0000000180), 0x4080, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r6}, 0x2c, {'wfdno', 0x3d, r6}})
r8 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f00000009c0)=ANY=[@ANYBLOB="9feb01001800000000000000fa000000fa000000070000000d0000000000000100000000320059020800000000fcffffff0d00000004000000ffffff7f0c00000002000000000000000d00000001000000ffff00000000000000000000030000000800000002000000060000000d00000000000012030000000600000002000004010000000700000001000000020000000e0000000200000000000000000000000300000d00000000630000000500000001000000030000000a000000000000000b0000000300000f0200000004000000010000000600000002000000000000001206000002000000faffffff02000000044009000000000000010000000035004703000000302e00002e000000000000000000000000000000002f18a787b4178279161c0cd77721510f3c3a8eac38aa5f180126b69c7da249c17d7598fbda5ad0bc07e06e6d6dffa7d847baab8d8e5438ef"], 0x0, 0x11b, 0x0, 0x0, 0x7ff}, 0x28)
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=@bloom_filter={0x1e, 0x2, 0x5, 0x80000000, 0x1c, r6, 0xb74, '\x00', 0x0, r8, 0x0, 0x4, 0x1, 0xc}, 0x50)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
dup(r10)
ioctl$KVM_SET_USER_MEMORY_REGION(r10, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})

4.85636853s ago: executing program 3 (id=953):
r0 = syz_open_dev$sndpcmc(&(0x7f0000004240), 0x0, 0x0)
r1 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000c00), 0x2, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x2)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000001a00)={0x8, {"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", 0x1000}}, 0x1006)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10)
r3 = getpgrp(0xffffffffffffffff)
prlimit64(r3, 0xe, &(0x7f0000000140)={0x7, 0x40000000000000}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r7 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r7, 0x3b81, &(0x7f00000003c0)={0xc})
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r7, 0x3ba0, &(0x7f0000000400)={0x48, 0x7, 0xffffffffffffffff, 0x0, 0x10000, 0x0, 0x9, 0x2a7345, 0x20d37})
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r7, 0x3ba0, &(0x7f0000000040)={0x48, 0x6, 0xffffffffffffffff, 0x334, 0x10000, 0x0, 0x8, 0x7de95, 0x2, 0xffffffffffffff7b})
ioctl$VHOST_SET_FEATURES(r1, 0x4008af00, &(0x7f0000000000)=0x200000000)
ioctl$SNDRV_PCM_IOCTL_STATUS64(r0, 0xc0884123, &(0x7f0000000480))
syz_usb_connect(0x0, 0x2d, &(0x7f0000000380)=ANY=[@ANYBLOB="12012002daf08d08981490a00f480102030109021b00010755e00109043a03024ed82c5c09050efd"], &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0})

4.822174539s ago: executing program 1 (id=954):
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps\x00')
socket$packet(0x11, 0x3, 0x300)
io_uring_register$IORING_REGISTER_BUFFERS2(0xffffffffffffffff, 0x14, &(0x7f0000003480)={0x4, 0x0, 0x4, &(0x7f00000001c0)=[{0x0}, {0x0}, {0x0}, {0x0}], 0x0}, 0x2)
io_uring_register$IORING_REGISTER_CLONE_BUFFERS(0xffffffffffffffff, 0x1e, &(0x7f0000000000), 0x1)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000700)=ANY=[], 0x0, 0x34}, 0x28)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000240)={{0x1, 0x1, 0x18, r0, {<r1=>r0}}, './file0\x00'})
sendmsg$IPCTNL_MSG_EXP_DELETE(r1, 0x0, 0x4004815)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/sysvipc/shm\x00', 0x0, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/disk', 0x169a82, 0x18c)
unshare(0x40400)
pselect6(0x40, &(0x7f0000000180)={0x1f, 0x0, 0x3ff, 0x0, 0x9}, 0x0, 0x0, 0x0, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f00000044c0)={0x2020}, 0x2020)
r3 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000200)='/proc/asound/card1/oss_mixer\x00', 0x400000, 0x0)
unshare(0x4c060d00)
openat$selinux_avc_cache_stats(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bind$802154_dgram(r3, &(0x7f00000001c0)={0x24, @long={0x3, 0x3, {0xaaaaaaaaaaaa0202}}}, 0x14)
eventfd(0x7)
getpeername$packet(0xffffffffffffffff, 0x0, &(0x7f0000000180))
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f00000000c0)={0x2020}, 0x2020)

4.257842925s ago: executing program 4 (id=955):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0xa7)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
r1 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x8801, 0x0)
writev(r1, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000001540)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000940)=@framed={{0x18, 0x7}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r5}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x100000}}]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x36, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mount$9p_rdma(&(0x7f00000013c0), &(0x7f0000001400)='.\x00', &(0x7f0000001440), 0x800, &(0x7f00000002c0)={'trans=rdma,', {'port', 0x3d, 0x4e24}, 0x2c, {[{@timeout={'timeout', 0x3d, 0xf9fdffff}}]}})
socket$nl_generic(0x10, 0x3, 0x10)
dup(0xffffffffffffffff)

3.336156201s ago: executing program 0 (id=956):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x9}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xffd, 0x7}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r3}, 0x10)
sendmmsg$unix(r1, 0x0, 0x0, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB], 0x14}}, 0xc00)
ioctl$SNDCTL_DSP_SETFMT(0xffffffffffffffff, 0xc0045005, 0x0)
unlink(0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x10001})
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000c00)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b34, &(0x7f0000000000)={'wlan1\x00', @random="000300000020"})
io_uring_register$IORING_REGISTER_PBUF_RING(0xffffffffffffffff, 0x16, &(0x7f0000000400)={&(0x7f0000002000)={[{&(0x7f00000002c0)="1d3fcf72168b96e38f8a2357932e993378a49bdfc4256da22361ea2ef42da1ecd1636e3ec8430429a42e4be9b4f047f7b09f569c59a022df69aa0921d68e10917a692c1ad87a67abe76bd6b7b7c8397058541e4d03cafd83c8aca976a63b48ffbc24ae8da6fa8200c4b0b0e674ca94de051582afffa2dba239c532058df9ff73d863802332ce2df0671b7aae2e45c0ab1b09775bee7e96fbf9facf8295c295fc345a66017140f7e2a68368954b24210c8816484ea75ed6ce7327ab26bdcdcf6bd1368b91fe99e590eaeb281c78d9814379", 0xd1}, {&(0x7f0000000240)="601e1652aec68021b76f1ab9b3fe94ddcd8f9ee7b831af0de22eb2d3fd8585e065aa", 0x22, 0x1}]}, 0x2}, 0x1)
r5 = syz_open_dev$cec(&(0x7f0000000100), 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
ioctl$CEC_ADAP_S_LOG_ADDRS(r5, 0xc05c6104, &(0x7f00000001c0)={"f2efe21e", 0x0, 0x6, 0x4d, 0x0, 0x1ff, "2179d46fd08e3c0ced34c7d0c7e6d7", "7ca24a13", '\x00', "a2d1d4a2", ["1af0b1ba1cb8fd54c9c9b587", "bed0f3d6ce7a5f7389827f04", "33af343c60abc64f2fdc9ddf", "9b3842fc63849f62b6eb1c3c"]})
r6 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_RX_RING(r6, 0x11b, 0x2, &(0x7f0000000080), 0x4)

3.294703323s ago: executing program 2 (id=957):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_ethernet(0x3e, 0x0, 0x0)
syz_emit_ethernet(0x2e, &(0x7f0000000380)=ANY=[@ANYBLOB="ffffffffff000000739070ac1414bbac141436c603f28606000000000000020000000000000000b2035c000000000000001fdd17d02f4a5194c6fb563487bc9e568c1e86b138bebd"], 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000080)={'erspan0\x00', &(0x7f00000002c0)={'syztnl1\x00', <r0=>0x0, 0x1, 0x8, 0xfffffbff, 0xff, {{0x19, 0x4, 0x2, 0x8, 0x64, 0x65, 0x0, 0x2, 0x4, 0x0, @private=0xa010101, @multicast1, {[@timestamp_prespec={0x44, 0x24, 0x88, 0x3, 0x4, [{@initdev={0xac, 0x1e, 0x1, 0x0}, 0x6}, {@private=0xa010102, 0x8c02}, {@empty, 0x40}, {@multicast1, 0x3}]}, @rr={0x7, 0x7, 0x81, [@remote]}, @ra={0x94, 0x4, 0xfffd}, @rr={0x7, 0xf, 0x6d, [@broadcast, @remote, @rand_addr=0x64010100]}, @timestamp_addr={0x44, 0xc, 0xc2, 0x1, 0x2, [{@private=0xa010101, 0x8}]}, @ra={0x94, 0x4}]}}}}})
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000000c0)={'syztnl2\x00', &(0x7f0000000440)={'syztnl1\x00', r0, 0x40, 0x8000, 0x5, 0x6, {{0x28, 0x4, 0x1, 0x4, 0xa0, 0x68, 0x0, 0x79, 0x4, 0x0, @empty, @multicast2, {[@timestamp_addr={0x44, 0x4, 0xe1, 0x1, 0x9}, @timestamp={0x44, 0x28, 0x9f, 0x0, 0x7, [0xffffffff, 0x1, 0x9, 0x4c1, 0x70, 0x100, 0x5, 0x6, 0x4c41]}, @cipso={0x86, 0x18, 0x1, [{0x0, 0x12, "f382bc0000006e8c0500000000000000"}]}, @timestamp_prespec={0x44, 0x4, 0xde, 0x3, 0xb}, @cipso={0x86, 0x29, 0x3, [{0x6, 0x11, "fb3421322a5b8b7ccb290ceb4c6ca6"}, {0x2, 0x12, "96c107331628f465be38732e37dba51f"}]}, @ssrr={0x89, 0x13, 0x74, [@initdev={0xac, 0x1e, 0x0, 0x0}, @local, @empty, @remote]}, @end, @noop, @ra={0x94, 0x4, 0x1}]}}}}})
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x3, 0x0, 0x9, 0x200000000000, 0xfffffe0000000001, 0xfa11, 0xfffffffd}, 0x0)
fsetxattr$security_capability(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1)
clock_adjtime(0x2, 0x0)
write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, 0x0, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
r1 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x80)
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901)
move_mount(r2, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r3, 0xffffffffffffffff, 0x0)

3.189116517s ago: executing program 4 (id=958):
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = dup(r1)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0xc000)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000500)=ANY=[@ANYRES64=r0], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x27, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e25}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={r4, 0xffffffffffffffff, 0x0, 0x0, 0x0}, 0x30)
preadv(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000a40)=""/4096, 0x1000}], 0x1, 0x141, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="500000000206030000000000000000000d0000000c000300686173683a69700005000400000000000900020073797a31000000000c000780080008400000005d05000500020000000500010006"], 0x50}}, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000380)=ANY=[@ANYBLOB="40000000090601020000000000000000000000000900020073797a3100000000050001000700000007800c00018008000140fffffffe05000300080000b28856225149f08907e8000000"], 0x40}, 0x1, 0x0, 0x0, 0x10000047}, 0x4000084)
r9 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r9, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(twofish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r9, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r10 = accept4(r9, 0x0, 0x0, 0x800)
sendmmsg$alg(r10, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x3, &(0x7f0000000380)=[@op={0x18}], 0x18}], 0x1, 0x81)
recvmsg(r10, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
mkdirat(r2, &(0x7f0000002040)='./file0\x00', 0x0)

3.071344675s ago: executing program 1 (id=959):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$EVIOCGRAB(0xffffffffffffffff, 0x40044590, &(0x7f00000001c0)=0x64)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = dup(r3)
ioctl$KVM_REGISTER_COALESCED_MMIO(r4, 0x4010ae67, &(0x7f00000000c0)={0x0, 0xc000})
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f00000001c0), 0x80280, 0x0)
open_tree(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x100)
r5 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r5, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000140)='syzkaller\x00', 0x6, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='rpc_buf_alloc\x00', r6, 0x0, 0x1}, 0x18)
r7 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r7, &(0x7f0000000040)={0x0, 0x2f, &(0x7f0000002580)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="140000002500010000000000f100000006"], 0x14}], 0x1, 0x0, 0x0, 0x400048c0}, 0x0)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r4, 0x4010ae68, &(0x7f0000000000)={0x2000})
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x1, 0x0, 0x0, 0x2)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)

1.775842001s ago: executing program 0 (id=960):
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000240)={0x2, 0x4e20, @multicast1}, 0x10)
connect$inet(r0, &(0x7f00000003c0)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x23}}, 0x10)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b703000000e00000850000001b000000b700000000fa000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18)
ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0xc004743e, 0x110e22fff6)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000001a00)=ANY=[@ANYBLOB="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"], &(0x7f00002bf000)='GPL\x00', 0x4, 0x436, &(0x7f0000000040)=""/183, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffc95}, 0x48)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f0000001380)={<r7=>0xffffffffffffffff})
syz_genetlink_get_family_id$batadv(&(0x7f0000000200), r7)
r8 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r8, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
lsetxattr$system_posix_acl(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='system.posix_acl_access\x00', &(0x7f00000002c0)={{}, {}, [], {}, [{}]}, 0x2c, 0x0)

1.581226561s ago: executing program 4 (id=961):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x5)
syz_emit_ethernet(0x52, &(0x7f0000000140)={@random="cf599d3baed5", @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "f200", 0x1c, 0x2c, 0x0, @remote, @local, {[@routing={0x2b, 0x0, 0x2, 0x8}], {{0x2, 0x4e21, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x0, 0x1000, 0x0, 0x4}}}}}}}, 0x0)
syz_emit_ethernet(0x46, 0x0, 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)
r3 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x1, 0x1)
fchdir(r4)
r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x90)
getdents(r5, &(0x7f0000000300)=""/56, 0x38)

471.393275ms ago: executing program 4 (id=962):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x103000, 0x10)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
io_uring_setup(0x108b, &(0x7f00000003c0)={0x0, 0x5241, 0x8, 0x2, 0x371, 0x0, r0})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r1, &(0x7f0000000280)={@val={0x6f01, 0x800}, @val={0x1, 0x0, 0x27, 0x0, 0x27}, @mpls={[], @ipv4=@tcp={{0x5, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x84, 0x0, @empty=0x3fffffff, @local}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x5, 0xa, 0x0, 0x0, 0x0, 0x28, {[@timestamp={0x5, 0xa, 0x0, 0x700}, @generic={0x0, 0x8, "d58838000391"}]}}}}}}, 0x4a)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$nl_xfrm(0x10, 0x3, 0x6)
mount(&(0x7f0000000140)=@md0, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000300)='xfs\x00', 0x2208004, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000280))
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)={0x18, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

95.774085ms ago: executing program 3 (id=963):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$EVIOCGRAB(0xffffffffffffffff, 0x40044590, &(0x7f00000001c0)=0x64)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = dup(r3)
prlimit64(0x0, 0xe, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f00000001c0), 0x80280, 0x0)
open_tree(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x100)
r5 = syz_open_dev$sndmidi(0x0, 0x2, 0x141102)
writev(r5, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000140)='syzkaller\x00', 0x6, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='rpc_buf_alloc\x00', r6, 0x0, 0x1}, 0x18)
r7 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r7, &(0x7f0000000040)={0x0, 0x2f, &(0x7f0000002580)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="140000002500010000000000f100000006"], 0x14}], 0x1, 0x0, 0x0, 0x400048c0}, 0x0)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r4, 0x4010ae68, &(0x7f0000000000)={0x2000})
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x1, 0x0, 0x0, 0x2)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)

0s ago: executing program 2 (id=964):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x103000, 0x10)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0), 0x48)
io_uring_setup(0x108b, &(0x7f00000003c0)={0x0, 0x5241, 0x8, 0x2, 0x371, 0x0, r0})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r1, &(0x7f0000000280)={@val={0x6f01, 0x800}, @val={0x1, 0x0, 0x27, 0x0, 0x27}, @mpls={[], @ipv4=@tcp={{0x5, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x84, 0x0, @empty=0x3fffffff, @local}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x5, 0xa, 0x0, 0x0, 0x0, 0x28, {[@timestamp={0x5, 0xa, 0x0, 0x700}, @generic={0x0, 0x8, "d58838000391"}]}}}}}}, 0x4a)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$nl_xfrm(0x10, 0x3, 0x6)
mount(&(0x7f0000000140)=@md0, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000300)='xfs\x00', 0x2208004, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000280))
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)={0x18, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

kernel console output (not intermixed with test programs):

 permissive=1
[  118.804908][   T30] audit: type=1400 audit(1757123092.194:243): avc:  denied  { bind } for  pid=6364 comm="syz.1.80" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  118.952438][ T6368] netlink: 10 bytes leftover after parsing attributes in process `syz.0.81'.
[  119.209971][   T30] audit: type=1400 audit(1757123092.194:244): avc:  denied  { connect } for  pid=6364 comm="syz.1.80" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  119.363252][ T5863] Bluetooth: hci1: command 0x0c1a tx timeout
[  120.093274][ T5863] Bluetooth: hci3: command 0x0c1a tx timeout
[  120.099326][ T5863] Bluetooth: hci2: command 0x0c1a tx timeout
[  120.105733][ T5860] Bluetooth: hci0: command 0x0c1a tx timeout
[  120.163980][ T5863] Bluetooth: hci4: command 0x0405 tx timeout
[  122.633809][ T6384] ptrace attach of "./syz-executor exec"[5858] was attempted by " ��      ��      �      ��      ��      ��      ��              ��      ��      ��                 ����                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    8             
�      \x09       
       
    ����  ����                                                                                                                                                                                                      �      \x0c               
                       "[6384]
[  123.591961][ T6392] netlink: 'syz.0.87': attribute type 10 has an invalid length.
[  123.712816][ T6392] team0: Port device wlan1 added
[  124.842154][ T6409] nfs: Unknown parameter 'smackfstransmute'
[  125.559290][ T6414] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  125.614645][   T30] audit: type=1400 audit(1757123099.224:245): avc:  denied  { write } for  pid=6407 comm="syz.4.91" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  125.655528][ T6414] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  125.834966][   T30] audit: type=1400 audit(1757123099.434:246): avc:  denied  { create } for  pid=6411 comm="syz.2.92" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1
[  125.904835][   T30] audit: type=1400 audit(1757123099.474:247): avc:  denied  { sys_admin } for  pid=6411 comm="syz.2.92" capability=21  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1
[  126.317330][ T6425] netlink: 212376 bytes leftover after parsing attributes in process `syz.3.93'.
[  127.310968][ T6436] netlink: 'syz.3.97': attribute type 10 has an invalid length.
[  127.483255][ T5853] Bluetooth: hci4: command 0x0405 tx timeout
[  129.955292][ T6447] netlink: 4 bytes leftover after parsing attributes in process `syz.3.98'.
[  131.463131][   T30] audit: type=1400 audit(1757123103.994:248): avc:  denied  { read } for  pid=6450 comm="syz.1.100" name="binder0" dev="binder" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  131.563120][   T30] audit: type=1400 audit(1757123103.994:249): avc:  denied  { open } for  pid=6450 comm="syz.1.100" path="/dev/binderfs/binder0" dev="binder" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  132.948440][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  132.963327][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  133.330195][ T6473] rdma_rxe: rxe_newlink: failed to add vxcan1
[  133.890320][ T6472] vlan2: entered promiscuous mode
[  134.421747][ T6472] bridge0: entered promiscuous mode
[  135.445786][ T6485] CIFS: VFS: Malformed UNC in devname
[  136.057199][   T30] audit: type=1400 audit(1757123109.394:250): avc:  denied  { accept } for  pid=6484 comm="syz.4.107" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  136.214951][   T30] audit: type=1400 audit(1757123109.394:251): avc:  denied  { write } for  pid=6484 comm="syz.4.107" path="socket:[10771]" dev="sockfs" ino=10771 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  136.253164][   T30] audit: type=1400 audit(1757123109.394:252): avc:  denied  { read } for  pid=6484 comm="syz.4.107" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  136.272994][   T30] audit: type=1400 audit(1757123109.394:253): avc:  denied  { append } for  pid=6484 comm="syz.4.107" name="comedi4" dev="devtmpfs" ino=1280 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  136.347569][ T6482] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  136.363509][ T6482] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  136.382334][ T6482] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  136.445669][ T6482] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  136.458177][ T6482] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  136.626487][ T6498] netlink: 'syz.3.108': attribute type 10 has an invalid length.
[  136.636883][   T30] audit: type=1400 audit(1757123110.244:254): avc:  denied  { write } for  pid=6494 comm="syz.4.109" name="raw6" dev="proc" ino=4026533102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  136.965238][   T30] audit: type=1400 audit(1757123110.414:255): avc:  denied  { execute } for  pid=6494 comm="syz.4.109" name="file0" dev="tmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  138.407848][ T5853] Bluetooth: hci1: command 0x0c1a tx timeout
[  138.419061][ T5853] Bluetooth: hci0: command 0x0c1a tx timeout
[  138.494712][ T5860] Bluetooth: hci4: command 0x0405 tx timeout
[  138.515955][ T6520] netlink: 4 bytes leftover after parsing attributes in process `syz.2.114'.
[  138.534163][ T5853] Bluetooth: hci3: command 0x0c1a tx timeout
[  138.534543][ T5174] Bluetooth: hci2: command 0x0c1a tx timeout
[  138.544978][ T6520] geneve2: entered promiscuous mode
[  138.551477][ T6520] geneve2: entered allmulticast mode
[  138.758397][ T6511] netlink: 10 bytes leftover after parsing attributes in process `syz.4.112'.
[  140.599259][ T5863] Bluetooth: hci4: command 0x0405 tx timeout
[  143.398053][ T5922] usb 2-1: Direct firmware load for ti_3410.fw failed with error -2
[  143.510016][ T5922] usb 2-1: Falling back to sysfs fallback for: ti_3410.fw
[  144.150805][ T6566] netlink: 'syz.3.123': attribute type 10 has an invalid length.
[  145.123086][ T6573] netlink: 4 bytes leftover after parsing attributes in process `syz.3.125'.
[  147.288256][ T6589] netlink: 4 bytes leftover after parsing attributes in process `syz.4.129'.
[  147.384548][ T6589] geneve2: entered promiscuous mode
[  147.389842][ T6589] geneve2: entered allmulticast mode
[  148.328429][ T6601] rdma_rxe: rxe_newlink: failed to add vxcan1
[  150.179710][ T6606] block nbd2: shutting down sockets
[  150.324598][ T6619] netlink: 'syz.3.135': attribute type 10 has an invalid length.
[  150.600712][ T6622] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  150.849366][ T6628] netlink: 212376 bytes leftover after parsing attributes in process `syz.1.136'.
[  151.463516][ T6622] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  151.895697][ T6622] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  152.301529][ T6636] netlink: 4 bytes leftover after parsing attributes in process `syz.1.138'.
[  152.384771][ T6636] geneve2: entered promiscuous mode
[  152.390011][ T6636] geneve2: entered allmulticast mode
[  152.623391][   T30] audit: type=1400 audit(1757123126.214:256): avc:  denied  { open } for  pid=6637 comm="syz.4.139" path="/dev/ptyqc" dev="devtmpfs" ino=131 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1
[  152.683768][   T30] audit: type=1400 audit(1757123126.214:257): avc:  denied  { read append } for  pid=6637 comm="syz.4.139" name="usbmon0" dev="devtmpfs" ino=716 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  152.707597][    C0] vkms_vblank_simulate: vblank timer overrun
[  152.813244][   T30] audit: type=1400 audit(1757123126.214:258): avc:  denied  { open } for  pid=6637 comm="syz.4.139" path="/dev/usbmon0" dev="devtmpfs" ino=716 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  152.838388][   T30] audit: type=1400 audit(1757123126.214:259): avc:  denied  { ioctl } for  pid=6637 comm="syz.4.139" path="/dev/usbmon0" dev="devtmpfs" ino=716 ioctlcmd=0x9207 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  152.864928][   T30] audit: type=1400 audit(1757123126.274:260): avc:  denied  { create } for  pid=6637 comm="syz.4.139" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  152.885525][   T30] audit: type=1400 audit(1757123126.274:261): avc:  denied  { connect } for  pid=6637 comm="syz.4.139" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  152.904894][    C0] vkms_vblank_simulate: vblank timer overrun
[  153.010802][ T6641] vxcan1 speed is unknown, defaulting to 1000
[  153.114590][   T30] audit: type=1400 audit(1757123126.334:262): avc:  denied  { read } for  pid=6637 comm="syz.4.139" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  153.134323][   T30] audit: type=1400 audit(1757123126.544:263): avc:  denied  { write } for  pid=6637 comm="syz.4.139" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  153.153809][   T30] audit: type=1400 audit(1757123126.584:264): avc:  denied  { ioctl } for  pid=6637 comm="syz.4.139" path="/dev/ptyqc" dev="devtmpfs" ino=131 ioctlcmd=0x5423 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1
[  153.178650][    C0] vkms_vblank_simulate: vblank timer overrun
[  155.933237][ T6672] netlink: 'syz.2.147': attribute type 10 has an invalid length.
[  155.989575][ T6672] team0: Port device wlan1 added
[  157.923356][ T5174] Bluetooth: hci4: command 0x0405 tx timeout
[  160.813521][ T5984] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  161.229821][ T5984] usb 3-1: config 0 has an invalid descriptor of length 154, skipping remainder of the config
[  161.263084][ T5984] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0
[  161.757408][ T5984] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 0
[  161.769916][ T5984] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  161.803876][ T5984] usb 3-1: New USB device found, idVendor=0451, idProduct=3410, bcdDevice=ef.1e
[  161.839168][ T5984] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  161.849353][ T5984] usb 3-1: Product: syz
[  161.853880][ T5984] usb 3-1: Manufacturer: syz
[  161.858625][ T5984] usb 3-1: SerialNumber: syz
[  161.866329][   T30] audit: type=1400 audit(1757123135.464:265): avc:  denied  { setopt } for  pid=6715 comm="syz.4.155" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  161.891999][ T5984] usb 3-1: config 0 descriptor??
[  161.914030][ T5984] ti_usb_3410_5052 3-1:0.0: TI USB 3410 1 port adapter converter detected
[  161.926208][ T5984] usb 3-1: Direct firmware load for ti_usb-v0451-p3410.fw failed with error -2
[  162.057693][ T5984] usb 3-1: Falling back to sysfs fallback for: ti_usb-v0451-p3410.fw
[  162.153617][ T6719] lo speed is unknown, defaulting to 1000
[  162.167670][ T6719] lo speed is unknown, defaulting to 1000
[  162.179300][ T6719] lo speed is unknown, defaulting to 1000
[  162.656137][   T30] audit: type=1400 audit(1757123135.754:266): avc:  denied  { ioctl } for  pid=6715 comm="syz.4.155" path="socket:[12200]" dev="sockfs" ino=12200 ioctlcmd=0x8943 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  162.864076][ T6719] infiniband s
z1: set active
[  162.868772][ T6719] infiniband s
z1: added lo
[  162.873701][ T6719] s
z1: rxe_create_cq: returned err = -12
[  162.879440][ T6719] infiniband s
z1: Couldn't create ib_mad CQ
[  162.885526][ T6719] infiniband s
z1: Couldn't open port 1
[  162.893722][ T5852] lo speed is unknown, defaulting to 1000
[  163.436358][ T6719] RDS/IB: s
z1: added
[  163.440421][ T6719] smc: adding ib device s
z1 with port count 1
[  163.446992][ T6719] smc:    ib device s
z1 port 1 has pnetid 
[  163.455280][ T6719] lo speed is unknown, defaulting to 1000
[  163.496227][ T5852] lo speed is unknown, defaulting to 1000
[  163.763669][ T6719] lo speed is unknown, defaulting to 1000
[  163.944011][ T6719] lo speed is unknown, defaulting to 1000
[  164.070677][ T6729] netlink: 'syz.1.158': attribute type 10 has an invalid length.
[  164.140924][ T6719] lo speed is unknown, defaulting to 1000
[  164.371617][ T6734] CIFS: VFS: Malformed UNC in devname
[  164.634443][ T6736] Zero length message leads to an empty skb
[  165.024092][ T6719] lo speed is unknown, defaulting to 1000
[  165.765838][ T6747] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=31 sclass=netlink_route_socket pid=6747 comm=syz.4.163
[  166.224156][   T10] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  166.472132][ T6738] vxcan1 speed is unknown, defaulting to 1000
[  166.553093][   T10] usb 4-1: Using ep0 maxpacket: 32
[  166.574946][   T10] usb 4-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f
[  166.596136][   T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  166.611371][   T10] usb 4-1: Product: syz
[  166.618341][   T10] usb 4-1: Manufacturer: syz
[  166.621046][   T30] audit: type=1400 audit(1757123140.214:267): avc:  denied  { ioctl } for  pid=6751 comm="syz.4.164" path="anon_inode:[userfaultfd]" dev="anon_inodefs" ino=12553 ioctlcmd=0xaa3f scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  166.990278][   T10] usb 4-1: SerialNumber: syz
[  167.044844][   T10] usb 4-1: config 0 descriptor??
[  167.103104][   T10] usb 4-1: can't set config #0, error -71
[  167.133345][   T30] audit: type=1400 audit(1757123140.724:268): avc:  denied  { connect } for  pid=6755 comm="syz.2.166" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  167.187227][   T10] usb 4-1: USB disconnect, device number 2
[  167.214364][ T6763] netlink: 36 bytes leftover after parsing attributes in process `syz.2.166'.
[  167.224414][   T30] audit: type=1400 audit(1757123140.764:269): avc:  denied  { create } for  pid=6755 comm="syz.2.166" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[  167.484846][ T5909] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  167.611457][   T30] audit: type=1400 audit(1757123140.824:270): avc:  denied  { write } for  pid=6755 comm="syz.2.166" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[  167.643305][   T30] audit: type=1400 audit(1757123140.884:271): avc:  denied  { read } for  pid=6755 comm="syz.2.166" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  167.753172][ T5909] usb 5-1: Using ep0 maxpacket: 16
[  167.769883][ T5909] usb 5-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6
[  167.782149][ T5909] usb 5-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[  167.825135][ T5909] usb 5-1: Product: syz
[  167.831317][ T5909] usb 5-1: Manufacturer: syz
[  167.847684][ T5909] usb 5-1: SerialNumber: syz
[  167.858709][ T6774] capability: warning: `syz.2.169' uses deprecated v2 capabilities in a way that may be insecure
[  167.911148][ T6738] lo speed is unknown, defaulting to 1000
[  168.000244][ T5909] usb 5-1: config 0 descriptor??
[  168.321063][ T6759] netlink: 8 bytes leftover after parsing attributes in process `syz.4.164'.
[  168.371936][ T6759] netlink: 24 bytes leftover after parsing attributes in process `syz.4.164'.
[  168.710538][   T30] audit: type=1400 audit(1757123142.314:272): avc:  denied  { create } for  pid=6773 comm="syz.2.169" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  168.943655][   T30] audit: type=1400 audit(1757123142.464:273): avc:  denied  { setopt } for  pid=6773 comm="syz.2.169" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  168.963465][   T30] audit: type=1400 audit(1757123142.504:274): avc:  denied  { create } for  pid=6782 comm="syz.0.172" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  169.881550][ T5968] usb 5-1: USB disconnect, device number 4
[  171.639964][   T30] audit: type=1400 audit(1757123145.074:275): avc:  denied  { read } for  pid=6800 comm="syz.3.176" name="rtc0" dev="devtmpfs" ino=921 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  171.770683][   T30] audit: type=1400 audit(1757123145.074:276): avc:  denied  { open } for  pid=6800 comm="syz.3.176" path="/dev/rtc0" dev="devtmpfs" ino=921 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  172.134800][   T30] audit: type=1400 audit(1757123145.074:277): avc:  denied  { ioctl } for  pid=6800 comm="syz.3.176" path="/dev/rtc0" dev="devtmpfs" ino=921 ioctlcmd=0x7009 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  172.314686][ T6815] syzkaller0: tun_chr_ioctl cmd 1074812117
[  172.324755][   T30] audit: type=1400 audit(1757123145.404:278): avc:  denied  { mounton } for  pid=6803 comm="syz.2.177" path="/file0" dev="ramfs" ino=13371 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=dir permissive=1
[  172.535192][ T6821] sock: sock_timestamping_bind_phc: sock not bind to device
[  176.092397][   T30] audit: type=1400 audit(1757123149.664:279): avc:  denied  { write } for  pid=6855 comm="syz.2.188" name="hwrng" dev="devtmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1
[  176.450835][   T30] audit: type=1400 audit(1757123149.694:280): avc:  denied  { read write } for  pid=6855 comm="syz.2.188" name="mouse0" dev="devtmpfs" ino=923 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  176.500450][   T30] audit: type=1400 audit(1757123149.694:281): avc:  denied  { open } for  pid=6855 comm="syz.2.188" path="/dev/input/mouse0" dev="devtmpfs" ino=923 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  176.754577][   T30] audit: type=1400 audit(1757123150.344:282): avc:  denied  { read write } for  pid=6864 comm="syz.1.189" name="raw-gadget" dev="devtmpfs" ino=820 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  177.202867][   T30] audit: type=1400 audit(1757123150.344:283): avc:  denied  { open } for  pid=6864 comm="syz.1.189" path="/dev/raw-gadget" dev="devtmpfs" ino=820 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  177.609705][   T30] audit: type=1400 audit(1757123150.344:284): avc:  denied  { ioctl } for  pid=6864 comm="syz.1.189" path="/dev/raw-gadget" dev="devtmpfs" ino=820 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  178.135247][ T6876] netlink: 212376 bytes leftover after parsing attributes in process `syz.3.192'.
[  182.119540][ T6911] netlink: 8 bytes leftover after parsing attributes in process `syz.0.201'.
[  182.657604][ T6919] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.203'.
[  184.501864][   T30] audit: type=1400 audit(1757123158.104:285): avc:  denied  { append } for  pid=6918 comm="syz.0.204" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  184.758293][   T30] audit: type=1400 audit(1757123158.364:286): avc:  denied  { setattr } for  pid=6936 comm="syz.4.209" path="/dev/snd/timer" dev="devtmpfs" ino=1284 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sound_device_t tclass=chr_file permissive=1
[  185.266584][   T30] audit: type=1400 audit(1757123158.514:287): avc:  denied  { name_bind } for  pid=6936 comm="syz.4.209" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[  185.717213][   T30] audit: type=1400 audit(1757123158.964:288): avc:  denied  { read } for  pid=6937 comm="syz.2.208" path="socket:[12947]" dev="sockfs" ino=12947 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  188.176571][ T5863] Bluetooth: hci2: ACL packet for unknown connection handle 1993
[  188.370639][ T6964] netlink: 8 bytes leftover after parsing attributes in process `syz.0.214'.
[  188.982678][ T6971] Device name cannot be null; rc = [-22]
[  188.994765][   T30] audit: type=1400 audit(1757123162.544:289): avc:  denied  { ioctl } for  pid=6965 comm="syz.2.215" path="/dev/vhost-net" dev="devtmpfs" ino=1274 ioctlcmd=0xaf01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  189.020012][    C1] vkms_vblank_simulate: vblank timer overrun
[  189.435569][   T30] audit: type=1400 audit(1757123162.604:290): avc:  denied  { wake_alarm } for  pid=6965 comm="syz.2.215" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  189.456555][    C1] vkms_vblank_simulate: vblank timer overrun
[  190.069968][   T30] audit: type=1400 audit(1757123163.664:291): avc:  denied  { bind } for  pid=6957 comm="syz.1.213" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  191.480294][ T7006] netlink: 212376 bytes leftover after parsing attributes in process `syz.4.222'.
[  191.888214][ T7002] Set syz1 is full, maxelem 6117 reached
[  192.080985][ T7008] netlink: 10 bytes leftover after parsing attributes in process `syz.1.225'.
[  192.511135][ T7018] netlink: 212376 bytes leftover after parsing attributes in process `syz.4.228'.
[  193.046144][ T7019] netlink: 'syz.1.227': attribute type 10 has an invalid length.
[  193.449504][   T30] audit: type=1400 audit(1757123167.054:292): avc:  denied  { create } for  pid=7023 comm="syz.4.230" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  193.991527][   T30] audit: type=1400 audit(1757123167.594:293): avc:  denied  { read write } for  pid=7023 comm="syz.4.230" name="uinput" dev="devtmpfs" ino=920 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  194.212268][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  194.223300][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  194.223855][   T30] audit: type=1400 audit(1757123167.594:294): avc:  denied  { open } for  pid=7023 comm="syz.4.230" path="/dev/uinput" dev="devtmpfs" ino=920 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  194.253162][    C0] vkms_vblank_simulate: vblank timer overrun
[  194.473474][   T30] audit: type=1400 audit(1757123167.594:295): avc:  denied  { ioctl } for  pid=7023 comm="syz.4.230" path="/dev/uinput" dev="devtmpfs" ino=920 ioctlcmd=0x556c scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  194.547286][   T30] audit: type=1400 audit(1757123167.904:296): avc:  denied  { read } for  pid=7023 comm="syz.4.230" lport=58 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  194.567268][    C0] vkms_vblank_simulate: vblank timer overrun
[  196.462665][ T7049] process 'syz.2.237' launched '/dev/fd/11' with NULL argv: empty string added
[  196.490760][   T30] audit: type=1400 audit(1757123170.084:297): avc:  denied  { nosuid_transition } for  pid=7048 comm="syz.2.237" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=process2 permissive=1
[  196.567087][   T30] audit: type=1400 audit(1757123170.084:298): avc:  denied  { transition } for  pid=7048 comm="syz.2.237" path=2F6D656D66643A5B0BDB58AE5B1AA9FDFAADD16D64C8854858A9250C1A65E0202864656C6574656429 dev="tmpfs" ino=1099 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=process permissive=1
[  196.597117][   T30] audit: type=1400 audit(1757123170.084:299): avc:  denied  { entrypoint } for  pid=7048 comm="syz.2.237" path=2F6D656D66643A5B0BDB58AE5B1AA9FDFAADD16D64C8854858A9250C1A65E0202864656C6574656429 dev="tmpfs" ino=1099 scontext=system_u:object_r:hugetlbfs_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  196.626548][    C0] vkms_vblank_simulate: vblank timer overrun
[  196.766162][ T7055] netlink: 10 bytes leftover after parsing attributes in process `syz.3.238'.
[  197.038926][   T30] audit: type=1400 audit(1757123170.084:300): avc:  denied  { noatsecure } for  pid=7048 comm="syz.2.237" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=process permissive=1
[  197.108590][   T30] audit: type=1400 audit(1757123170.694:301): avc:  denied  { setopt } for  pid=7056 comm="syz.1.239" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  198.024761][ T5852] usb 4-1: new full-speed USB device number 3 using dummy_hcd
[  198.246421][ T5852] usb 4-1: config 1 interface 0 has no altsetting 0
[  198.256995][ T5852] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  198.266192][ T5852] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  198.281677][ T5852] usb 4-1: Product: syz
[  198.286419][ T5852] usb 4-1: Manufacturer: syz
[  198.290998][ T5852] usb 4-1: SerialNumber: syz
[  199.174786][ T5852] usblp 4-1:1.0: usblp0: USB Unidirectional printer dev 3 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[  199.632726][   T30] audit: type=1400 audit(1757123173.234:302): avc:  denied  { read write } for  pid=7068 comm="syz.3.242" name="lp0" dev="devtmpfs" ino=2843 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:printer_device_t tclass=chr_file permissive=1
[  199.656208][    C0] vkms_vblank_simulate: vblank timer overrun
[  199.738477][ T7086] netlink: 212376 bytes leftover after parsing attributes in process `syz.0.246'.
[  200.186804][ T7085] netlink: 161716 bytes leftover after parsing attributes in process `syz.3.242'.
[  200.205590][ T7085] netlink: zone id is out of range
[  200.238660][ T7085] netlink: zone id is out of range
[  200.259837][   T30] audit: type=1400 audit(1757123173.234:303): avc:  denied  { open } for  pid=7068 comm="syz.3.242" path="/dev/usb/lp0" dev="devtmpfs" ino=2843 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:printer_device_t tclass=chr_file permissive=1
[  200.283648][    C0] vkms_vblank_simulate: vblank timer overrun
[  200.304523][ T7085] netlink: zone id is out of range
[  200.304832][ T7082] loop2: detected capacity change from 0 to 7
[  200.309659][ T7085] netlink: zone id is out of range
[  200.309689][ T7085] netlink: zone id is out of range
[  200.309837][ T7085] netlink: zone id is out of range
[  200.309845][ T7085] netlink: zone id is out of range
[  200.309853][ T7085] netlink: zone id is out of range
[  200.309860][ T7085] netlink: zone id is out of range
[  200.309955][ T7085] netlink: zone id is out of range
[  200.568986][ T5223] Dev loop2: unable to read RDB block 7
[  200.829264][ T5223]  loop2: unable to read partition table
[  200.835185][ T5223] loop2: partition table beyond EOD, truncated
[  200.973112][ T7082] Dev loop2: unable to read RDB block 7
[  200.981365][ T7082]  loop2: unable to read partition table
[  201.013305][ T7082] loop2: partition table beyond EOD, truncated
[  201.028184][ T7082] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[  201.071301][ T5223] Dev loop2: unable to read RDB block 7
[  201.079102][ T5223]  loop2: unable to read partition table
[  201.092650][ T5223] loop2: partition table beyond EOD, truncated
[  201.303814][ T5223] Dev loop2: unable to read RDB block 7
[  201.335755][ T5223]  loop2: unable to read partition table
[  201.375888][ T5223] loop2: partition table beyond EOD, truncated
[  203.233136][ T5852] usb 4-1: USB disconnect, device number 3
[  203.276070][   T30] audit: type=1400 audit(1757123176.884:304): avc:  denied  { bind } for  pid=7109 comm="syz.0.254" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  203.321192][ T5852] usblp0: removed
[  203.343109][   T30] audit: type=1400 audit(1757123176.904:305): avc:  denied  { create } for  pid=7109 comm="syz.0.254" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=atmsvc_socket permissive=1
[  204.431820][ T5969] usb 1-1: ti_download_firmware - firmware not found
[  204.445142][ T5922] usb 2-1: ti_download_firmware - firmware not found
[  204.453220][ T5969] ti_usb_3410_5052 1-1:0.0: probe with driver ti_usb_3410_5052 failed with error -2
[  204.463095][ T5922] ti_usb_3410_5052 2-1:0.0: probe with driver ti_usb_3410_5052 failed with error -2
[  204.486841][ T5969] usb 1-1: USB disconnect, device number 2
[  204.688921][ T5922] usb 2-1: USB disconnect, device number 4
[  206.505420][ T7143] vxcan1 speed is unknown, defaulting to 1000
[  207.049458][ T7152] netlink: 212376 bytes leftover after parsing attributes in process `syz.1.264'.
[  207.913890][ T7143] lo speed is unknown, defaulting to 1000
[  210.899660][ T5922] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  211.123317][ T5922] usb 4-1: Using ep0 maxpacket: 8
[  211.130287][ T5922] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  211.149008][ T5922] usb 4-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a
[  211.209063][ T7184] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.273'.
[  211.656748][ T5922] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  211.693570][ T5922] usb 4-1: config 0 descriptor??
[  211.778411][ T5922] gspca_main: vc032x-2.14.0 probing 046d:0892
[  212.520541][   T30] audit: type=1400 audit(1757123186.124:306): avc:  denied  { watch } for  pid=7188 comm="syz.4.275" path="/44/bus" dev="tmpfs" ino=253 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  212.902494][ T5922] gspca_vc032x: reg_w err -110
[  212.932109][ T5922] vc032x 4-1:0.0: probe with driver vc032x failed with error -110
[  212.949885][   T30] audit: type=1400 audit(1757123186.124:307): avc:  denied  { watch_sb watch_reads } for  pid=7188 comm="syz.4.275" path="/44/bus" dev="tmpfs" ino=253 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  213.158225][   T30] audit: type=1400 audit(1757123186.504:308): avc:  denied  { append } for  pid=7179 comm="syz.3.272" name="ppp" dev="devtmpfs" ino=709 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  213.605260][   T10] usb 4-1: USB disconnect, device number 4
[  213.878581][ T7211] netlink: 10 bytes leftover after parsing attributes in process `syz.2.280'.
[  217.520747][ T7221] netlink: 10 bytes leftover after parsing attributes in process `syz.4.283'.
[  217.623902][ T7249] netlink: 212376 bytes leftover after parsing attributes in process `syz.0.289'.
[  219.350276][ T7255] netlink: 212376 bytes leftover after parsing attributes in process `syz.4.291'.
[  219.710009][   T30] audit: type=1400 audit(1757123193.194:309): avc:  denied  { read write } for  pid=7257 comm="syz.1.294" name="uhid" dev="devtmpfs" ino=1273 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  220.169439][   T30] audit: type=1400 audit(1757123193.194:310): avc:  denied  { open } for  pid=7257 comm="syz.1.294" path="/dev/uhid" dev="devtmpfs" ino=1273 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  221.813011][ T5909] usb 5-1: new full-speed USB device number 5 using dummy_hcd
[  222.064993][ T5909] usb 5-1: config 0 has an invalid interface number: 109 but max is 0
[  222.153217][ T5909] usb 5-1: config 0 has no interface number 0
[  222.164543][ T5909] usb 5-1: config 0 interface 109 altsetting 0 has an endpoint descriptor with address 0xA1, changing to 0x81
[  222.694786][ T5852] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  222.702705][ T5909] usb 5-1: config 0 interface 109 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  222.712974][ T5909] usb 5-1: New USB device found, idVendor=100d, idProduct=cb01, bcdDevice=84.d1
[  222.723469][ T5909] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  222.734660][ T5909] usb 5-1: config 0 descriptor??
[  222.752364][ T5909] cxacru 5-1:0.109: cxacru_bind: interface has incorrect endpoints
[  222.793758][ T5909] cxacru 5-1:0.109: usbatm_usb_probe: bind failed: -19!
[  222.875038][ T5852] usb 4-1: Using ep0 maxpacket: 8
[  222.931243][ T5852] usb 4-1: unable to get BOS descriptor or descriptor too short
[  223.106202][ T5852] usb 4-1: config 7 has an invalid interface number: 58 but max is 0
[  223.135479][ T5852] usb 4-1: config 7 has no interface number 0
[  223.213591][ T5852] usb 4-1: config 7 interface 58 altsetting 3 endpoint 0xE has an invalid bInterval 0, changing to 7
[  223.303081][ T5852] usb 4-1: No eUSB2 isoc ep 14 companion for config 7 interface 58 altsetting 3
[  223.307958][ T7296] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  223.316325][ T5852] usb 4-1: config 7 interface 58 altsetting 3 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  223.341097][ T5852] usb 4-1: config 7 interface 58 has no altsetting 0
[  223.350509][ T5852] usb 4-1: New USB device found, idVendor=1498, idProduct=a090, bcdDevice=48.0f
[  223.355756][ T7296] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  223.392396][ T5852] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  223.401563][   T30] audit: type=1400 audit(1757123196.994:311): avc:  denied  { bind } for  pid=7297 comm="syz.1.303" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  223.437194][   T10] usb 5-1: USB disconnect, device number 5
[  223.442416][ T5852] usb 4-1: Product: syz
[  223.450069][ T5852] usb 4-1: Manufacturer: syz
[  223.458072][ T5852] usb 4-1: SerialNumber: syz
[  223.967439][ T5852] usb 4-1: USB disconnect, device number 5
[  224.294334][ T7308] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  224.393022][   T10] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  224.634300][   T30] audit: type=1400 audit(1757123198.234:312): avc:  denied  { ioctl } for  pid=7307 comm="syz.4.308" path="socket:[15719]" dev="sockfs" ino=15719 ioctlcmd=0x89f1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  224.780277][ T7315] vxcan1 speed is unknown, defaulting to 1000
[  224.866129][   T10] usb 2-1: config 0 interface 0 altsetting 251 endpoint 0x9 has an invalid bInterval 0, changing to 7
[  224.881447][   T10] usb 2-1: config 0 interface 0 has no altsetting 0
[  224.900748][ T5984] usb 3-1: Direct firmware load for ti_3410.fw failed with error -2
[  224.915209][   T10] usb 2-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  224.984116][   T10] usb 2-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  225.011894][ T5984] usb 3-1: Falling back to sysfs fallback for: ti_3410.fw
[  225.025436][   T10] usb 2-1: Product: syz
[  225.037589][   T10] usb 2-1: Manufacturer: syz
[  225.047484][   T10] usb 2-1: SerialNumber: syz
[  225.063268][   T10] usb 2-1: config 0 descriptor??
[  225.230069][ T7318] Bluetooth: MGMT ver 1.23
[  225.257080][   T30] audit: type=1400 audit(1757123198.754:313): avc:  denied  { write } for  pid=7303 comm="syz.2.305" name="card1" dev="devtmpfs" ino=628 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  225.282122][   T10] usb 2-1: selecting invalid altsetting 0
[  225.410478][   T30] audit: type=1400 audit(1757123198.834:314): avc:  denied  { write } for  pid=7303 comm="syz.2.305" path="socket:[15735]" dev="sockfs" ino=15735 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  229.012211][   T30] audit: type=1400 audit(1757123202.614:315): avc:  denied  { search } for  pid=7329 comm="syz.0.310" name="/" dev="configfs" ino=1125 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  229.037929][ T7315] lo speed is unknown, defaulting to 1000
[  229.282990][   T30] audit: type=1400 audit(1757123202.614:316): avc:  denied  { search } for  pid=7329 comm="syz.0.310" name="/" dev="configfs" ino=1125 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  229.305012][    C1] vkms_vblank_simulate: vblank timer overrun
[  229.615526][   T30] audit: type=1400 audit(1757123202.614:317): avc:  denied  { read open } for  pid=7329 comm="syz.0.310" path="/" dev="configfs" ino=1125 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  229.663058][   T24] usb 2-1: USB disconnect, device number 5
[  232.323350][   T10] usb 5-1: new full-speed USB device number 6 using dummy_hcd
[  232.484508][   T10] usb 5-1: config 1 interface 0 has no altsetting 0
[  232.492853][   T10] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  232.506309][   T10] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  232.521713][   T10] usb 5-1: Product: syz
[  232.552384][   T10] usb 5-1: Manufacturer: syz
[  232.564079][   T10] usb 5-1: SerialNumber: syz
[  233.061318][   T30] audit: type=1400 audit(1757123206.664:318): avc:  denied  { shutdown } for  pid=7359 comm="syz.1.318" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  233.088122][   T30] audit: type=1400 audit(1757123206.664:319): avc:  denied  { read } for  pid=7359 comm="syz.1.318" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  233.337242][   T10] usblp 5-1:1.0: usblp0: USB Unidirectional printer dev 6 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[  233.364534][ T7365] netlink: 8 bytes leftover after parsing attributes in process `syz.3.319'.
[  233.852560][ T7370] loop2: detected capacity change from 0 to 7
[  233.954642][ T7371] netlink: 212376 bytes leftover after parsing attributes in process `syz.0.320'.
[  234.325801][ T7370] Dev loop2: unable to read RDB block 7
[  234.335085][ T7372] netlink: 161716 bytes leftover after parsing attributes in process `syz.4.315'.
[  234.380267][ T7370]  loop2: unable to read partition table
[  234.380539][ T7372] netlink: zone id is out of range
[  234.433103][ T7372] netlink: zone id is out of range
[  234.433116][ T7372] netlink: zone id is out of range
[  234.448089][ T7372] netlink: zone id is out of range
[  234.448311][ T7370] loop2: partition table beyond EOD, 
[  234.455251][ T7372] netlink: zone id is out of range
[  234.455296][ T7370] truncated
[  234.460908][ T7372] netlink: zone id is out of range
[  234.475006][ T7372] netlink: zone id is out of range
[  234.480525][ T7372] netlink: zone id is out of range
[  234.480539][ T7370] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[  234.518491][   T30] audit: type=1400 audit(1757123208.124:320): avc:  denied  { bind } for  pid=7373 comm="syz.1.321" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  234.524331][ T7377] netlink: 12 bytes leftover after parsing attributes in process `syz.3.322'.
[  234.565624][ T7372] netlink: zone id is out of range
[  234.574164][ T7372] netlink: zone id is out of range
[  234.829671][ T7377] macvlan2: entered promiscuous mode
[  234.857830][ T7377] macvlan2: entered allmulticast mode
[  235.595568][ T7377] bond1: entered promiscuous mode
[  235.641416][ T7377] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  235.800841][ T7377] bond1: left promiscuous mode
[  236.351365][ T5223] Dev loop2: unable to read RDB block 7
[  236.364750][ T5223]  loop2: unable to read partition table
[  236.371318][ T5223] loop2: partition table beyond EOD, truncated
[  236.567591][ T7374] ipvlan1: entered promiscuous mode
[  237.281158][   T10] usb 5-1: USB disconnect, device number 6
[  237.420669][   T10] usblp0: removed
[  238.356849][ T7418] tipc: Started in network mode
[  238.361758][ T7418] tipc: Node identity 0612e5011032, cluster identity 4711
[  238.439065][ T7418] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  238.494629][ T7413] vxcan1 speed is unknown, defaulting to 1000
[  238.561574][ T7415] syzkaller0: entered promiscuous mode
[  238.615041][ T7415] syzkaller0: entered allmulticast mode
[  238.900834][ T7424] netlink: 8 bytes leftover after parsing attributes in process `syz.3.330'.
[  238.994932][ T7401] tipc: Resetting bearer <eth:syzkaller0>
[  239.076009][ T7424] Bluetooth: hci5: received HCILL_GO_TO_SLEEP_ACK in state 2
[  239.098833][   T12] Bluetooth: hci5: Frame reassembly failed (-84)
[  239.118883][   T12] Bluetooth: hci5: Frame reassembly failed (-84)
[  239.284484][ T7401] tipc: Disabling bearer <eth:syzkaller0>
[  239.414492][   T24] tipc: Node number set to 371254529
[  240.589450][ T7413] lo speed is unknown, defaulting to 1000
[  240.645904][ T7437] mmap: syz.4.332 (7437) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  241.132318][ T5863] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  244.032555][   T30] audit: type=1400 audit(1757123217.634:321): avc:  denied  { create } for  pid=7473 comm="syz.3.340" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  244.713276][ T7477] Bluetooth: MGMT ver 1.23
[  246.081541][ T7497] netlink: 212376 bytes leftover after parsing attributes in process `syz.0.347'.
[  249.398904][ T7523] netlink: 10 bytes leftover after parsing attributes in process `syz.2.351'.
[  252.108489][ T7550] netlink: 10 bytes leftover after parsing attributes in process `syz.0.358'.
[  252.516876][ T7551] netlink: 10 bytes leftover after parsing attributes in process `syz.3.359'.
[  253.854457][ T7578] netlink: 72 bytes leftover after parsing attributes in process `syz.3.366'.
[  253.941520][ T7578] netlink: 72 bytes leftover after parsing attributes in process `syz.3.366'.
[  255.306744][ T7599] veth0_to_bridge: entered promiscuous mode
[  255.314801][ T7598] veth0_to_bridge: left promiscuous mode
[  255.478550][   T30] audit: type=1400 audit(1757123229.084:322): avc:  denied  { getopt } for  pid=7595 comm="syz.1.371" laddr=::ffff:0.0.0.0 lport=20000 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  255.621177][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  255.627611][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  256.122288][ T7608] netlink: 8 bytes leftover after parsing attributes in process `syz.3.374'.
[  257.344280][   T10] usb 5-1: new full-speed USB device number 7 using dummy_hcd
[  257.604591][   T10] usb 5-1: config 1 interface 0 has no altsetting 0
[  257.653125][ T5852] usb 4-1: new full-speed USB device number 6 using dummy_hcd
[  257.670273][   T10] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  257.715557][   T10] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  257.755954][   T10] usb 5-1: Product: syz
[  257.761142][   T10] usb 5-1: Manufacturer: syz
[  257.915841][ T7629] netlink: 10 bytes leftover after parsing attributes in process `syz.2.380'.
[  258.021382][   T10] usb 5-1: SerialNumber: syz
[  258.076499][ T5852] usb 4-1: config 1 interface 0 has no altsetting 0
[  258.713324][   T10] usblp 5-1:1.0: usblp0: USB Unidirectional printer dev 7 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[  258.774088][ T5852] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  258.797616][ T5852] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  258.850711][ T5852] usb 4-1: Product: syz
[  258.883140][ T5852] usb 4-1: Manufacturer: syz
[  258.914827][ T5852] usb 4-1: SerialNumber: syz
[  259.184353][ T7639] loop2: detected capacity change from 0 to 7
[  259.198738][ T7639] Dev loop2: unable to read RDB block 7
[  259.204648][ T7639]  loop2: unable to read partition table
[  259.223483][ T7639] loop2: partition table beyond EOD, truncated
[  259.232608][ T7639] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[  259.326227][ T7641] netlink: 161716 bytes leftover after parsing attributes in process `syz.4.377'.
[  259.589759][ T7641] netlink: zone id is out of range
[  259.620729][ T7641] netlink: zone id is out of range
[  259.626372][ T7641] netlink: zone id is out of range
[  259.634512][ T7641] netlink: zone id is out of range
[  259.639851][ T7641] netlink: zone id is out of range
[  259.665407][ T7641] netlink: zone id is out of range
[  259.673016][ T7641] netlink: zone id is out of range
[  259.678577][ T7641] netlink: zone id is out of range
[  259.684767][ T7641] netlink: zone id is out of range
[  259.708454][ T7641] netlink: zone id is out of range
[  259.889120][ T7645] netlink: 8 bytes leftover after parsing attributes in process `syz.1.383'.
[  259.954213][ T7645] Bluetooth: hci5: received HCILL_GO_TO_SLEEP_ACK in state 2
[  260.223461][ T5852] usblp 4-1:1.0: usblp1: USB Unidirectional printer dev 6 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[  260.236675][ T3504] Bluetooth: hci5: Frame reassembly failed (-84)
[  260.277279][ T7647] netlink: 161716 bytes leftover after parsing attributes in process `syz.3.378'.
[  260.892174][   T10] usb 5-1: USB disconnect, device number 7
[  260.919290][   T10] usblp0: removed
[  261.378741][ T5223] Dev loop2: unable to read RDB block 7
[  261.394657][ T5223]  loop2: unable to read partition table
[  261.435353][ T5223] loop2: partition table beyond EOD, truncated
[  261.489735][ T5957] usb 4-1: USB disconnect, device number 6
[  261.551429][ T5957] usblp1: removed
[  262.243031][ T5863] Bluetooth: hci5: command 0x1003 tx timeout
[  262.247812][ T5174] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  263.813114][   T30] audit: type=1400 audit(1757123237.394:323): avc:  denied  { read write } for  pid=7683 comm="syz.0.394" name="file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[  263.961495][   T30] audit: type=1400 audit(1757123237.394:324): avc:  denied  { open } for  pid=7683 comm="syz.0.394" path="/90/file0/file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[  264.214175][   T30] audit: type=1400 audit(1757123237.754:325): avc:  denied  { ioctl } for  pid=7683 comm="syz.0.394" path="/90/file0/file0" dev="fuse" ino=0 ioctlcmd=0x5430 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[  264.465412][ T7693] netlink: 212408 bytes leftover after parsing attributes in process `syz.1.395'.
[  264.897925][ T5957] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  265.154058][ T5957] usb 1-1: Using ep0 maxpacket: 16
[  265.164603][ T5957] usb 1-1: New USB device found, idVendor=0458, idProduct=4018, bcdDevice= 0.00
[  265.174249][ T5957] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  265.214478][ T7697] netlink: 20 bytes leftover after parsing attributes in process `syz.2.396'.
[  265.321275][ T5957] usb 1-1: config 0 descriptor??
[  265.372524][   T30] audit: type=1400 audit(1757123238.954:326): avc:  denied  { bind } for  pid=7698 comm="syz.1.398" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  265.425045][   T30] audit: type=1400 audit(1757123239.034:327): avc:  denied  { create } for  pid=7698 comm="syz.1.398" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  266.504188][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  266.526006][   T10] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  266.750920][ T5957] kye 0003:0458:4018.0002: item fetching failed at offset 5/7
[  266.787325][ T5957] kye 0003:0458:4018.0002: parse failed
[  267.252414][ T5957] kye 0003:0458:4018.0002: probe with driver kye failed with error -22
[  267.310873][ T7705] fido_id[7705]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  267.419849][ T5957] usb 1-1: USB disconnect, device number 3
[  269.362461][ T7738] tmpfs: Bad value for 'mpol'
[  269.381665][   T30] audit: type=1400 audit(1757123242.964:328): avc:  denied  { mounton } for  pid=7734 comm="syz.1.405" path="/syzcgroup/unified/syz1" dev="cgroup2" ino=96 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[  269.446126][ T7738] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  269.693458][   T30] audit: type=1400 audit(1757123242.984:329): avc:  denied  { append } for  pid=7726 comm="syz.0.404" name="sg0" dev="devtmpfs" ino=752 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  269.735381][   T30] audit: type=1400 audit(1757123242.984:330): avc:  denied  { ioctl } for  pid=7726 comm="syz.0.404" path="/dev/sg0" dev="devtmpfs" ino=752 ioctlcmd=0x1273 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  271.892108][   T30] audit: type=1400 audit(1757123245.494:331): avc:  denied  { setopt } for  pid=7759 comm="syz.2.411" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  273.613003][ T5922] usb 2-1: new full-speed USB device number 6 using dummy_hcd
[  273.780092][ T5922] usb 2-1: config 1 interface 0 has no altsetting 0
[  273.802455][ T5922] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  273.811895][ T7783] CIFS: VFS: Malformed UNC in devname
[  273.819286][ T5922] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  273.831747][ T5922] usb 2-1: Product: syz
[  273.840302][ T5922] usb 2-1: Manufacturer: syz
[  273.859563][ T5922] usb 2-1: SerialNumber: syz
[  274.430706][   T30] audit: type=1400 audit(1757123247.564:332): avc:  denied  { getopt } for  pid=7780 comm="syz.4.417" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  275.106637][ T7799] netlink: 8 bytes leftover after parsing attributes in process `syz.2.421'.
[  275.213765][ T5922] usblp 2-1:1.0: usblp0: USB Unidirectional printer dev 6 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[  275.548459][   T30] audit: type=1400 audit(1757123249.134:333): avc:  denied  { ioctl } for  pid=7801 comm="syz.0.422" path="socket:[17876]" dev="sockfs" ino=17876 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  275.577632][ T7804] loop2: detected capacity change from 0 to 7
[  275.599003][ T7804] Dev loop2: unable to read RDB block 7
[  275.742224][ T7804]  loop2: unable to read partition table
[  275.778259][ T7804] loop2: partition table beyond EOD, truncated
[  275.784550][ T7804] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[  275.784733][ T7806] netlink: 161716 bytes leftover after parsing attributes in process `syz.1.414'.
[  276.309823][   T30] audit: type=1400 audit(1757123249.464:334): avc:  denied  { create } for  pid=7801 comm="syz.0.422" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  276.473696][   T30] audit: type=1400 audit(1757123249.464:335): avc:  denied  { write } for  pid=7801 comm="syz.0.422" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  276.494892][ T7806] net_ratelimit: 10 callbacks suppressed
[  276.494902][ T7806] netlink: zone id is out of range
[  276.523025][ T7806] netlink: zone id is out of range
[  276.533209][ T7806] netlink: zone id is out of range
[  276.538335][ T7806] netlink: zone id is out of range
[  276.583844][ T7806] netlink: zone id is out of range
[  276.613272][ T7806] netlink: zone id is out of range
[  276.621739][ T7806] netlink: zone id is out of range
[  276.629421][ T7806] netlink: zone id is out of range
[  276.637048][ T7806] netlink: zone id is out of range
[  276.667626][ T7806] netlink: zone id is out of range
[  276.896753][   T30] audit: type=1400 audit(1757123250.494:336): avc:  denied  { unmount } for  pid=5850 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  278.514570][ T5909] usb 2-1: USB disconnect, device number 6
[  278.524260][ T5909] usblp0: removed
[  279.584414][ T7824] netlink: 212408 bytes leftover after parsing attributes in process `syz.1.427'.
[  279.609249][   T30] audit: type=1400 audit(1757123253.164:337): avc:  denied  { execute } for  pid=7819 comm="syz.3.426" dev="hugetlbfs" ino=17962 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  279.705563][   T30] audit: type=1400 audit(1757123253.164:338): avc:  denied  { execute_no_trans } for  pid=7819 comm="syz.3.426" path=2F6D656D66643A5B0BDB58AE5B1AA9FDFAADD16D64C8854858A9250C1AF16437CB65E0202864656C6574656429 dev="hugetlbfs" ino=17962 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  280.219991][ T7840] CIFS: VFS: Malformed UNC in devname
[  281.451801][   T30] audit: type=1400 audit(1757123254.924:339): avc:  denied  { execute_no_trans } for  pid=7852 comm="syz.1.435" path="/87/file0" dev="tmpfs" ino=478 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  281.623059][ T5852] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  281.683118][ T5968] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  281.805662][ T5852] usb 5-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config
[  281.833083][ T5968] usb 1-1: Using ep0 maxpacket: 8
[  281.844620][ T5968] usb 1-1: unable to get BOS descriptor or descriptor too short
[  281.866094][ T5852] usb 5-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  281.875317][ T5968] usb 1-1: config 7 has an invalid interface number: 58 but max is 0
[  281.900757][ T5968] usb 1-1: config 7 has no interface number 0
[  281.931632][ T5968] usb 1-1: config 7 interface 58 altsetting 3 endpoint 0xE has an invalid bInterval 0, changing to 7
[  281.959426][ T5852] usb 5-1: config 1 has no interface number 1
[  282.107165][ T5852] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  282.125890][ T5852] usb 5-1: config 1 interface 2 altsetting 1 endpoint 0x6 has an invalid bInterval 255, changing to 7
[  282.137217][ T5852] usb 5-1: config 1 interface 2 altsetting 1 endpoint 0x6 has invalid maxpacket 59378, setting to 1024
[  282.713394][ T5968] usb 1-1: No eUSB2 isoc ep 14 companion for config 7 interface 58 altsetting 3
[  282.728184][ T5968] usb 1-1: config 7 interface 58 altsetting 3 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  282.741580][ T5968] usb 1-1: config 7 interface 58 has no altsetting 0
[  282.750789][ T5968] usb 1-1: New USB device found, idVendor=1498, idProduct=a090, bcdDevice=48.0f
[  282.784896][ T5968] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  282.786149][ T5852] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  282.793428][ T5968] usb 1-1: Product: syz
[  282.806902][ T5968] usb 1-1: Manufacturer: syz
[  282.812515][ T5968] usb 1-1: SerialNumber: syz
[  282.895320][ T5852] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  282.953092][ T5852] usb 5-1: Product: syz
[  282.957354][ T5852] usb 5-1: Manufacturer: syz
[  282.961953][ T5852] usb 5-1: SerialNumber: syz
[  283.012274][ T7848] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  285.062606][   T30] audit: type=1400 audit(1757123257.824:340): avc:  denied  { create } for  pid=7845 comm="syz.4.433" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  285.083536][   T30] audit: type=1400 audit(1757123257.914:341): avc:  denied  { append } for  pid=7845 comm="syz.4.433" name="comedi3" dev="devtmpfs" ino=1279 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  286.011043][ T5968] usb 1-1: USB disconnect, device number 4
[  286.195105][ T5852] usb 5-1: 2:1 : no or invalid class specific endpoint descriptor
[  286.224827][ T5852] usb 5-1: 2:1 : no or invalid class specific endpoint descriptor
[  286.323907][ T5852] usb 5-1: USB disconnect, device number 8
[  286.324635][ T5984] usb 3-1: ti_download_firmware - firmware not found
[  286.381695][ T5984] ti_usb_3410_5052 3-1:0.0: probe with driver ti_usb_3410_5052 failed with error -2
[  286.413204][   T30] audit: type=1400 audit(1757123260.004:342): avc:  denied  { create } for  pid=7885 comm="syz.0.444" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[  286.495201][ T5984] usb 3-1: USB disconnect, device number 2
[  286.496654][ T6026] udevd[6026]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  286.899561][ T7890] CIFS: VFS: Malformed UNC in devname
[  287.303331][ T5984] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  287.733077][   T30] audit: type=1400 audit(1757123261.304:343): avc:  denied  { connect } for  pid=7893 comm="syz.0.446" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  288.060612][ T7898] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.449'.
[  288.559787][ T5957] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.595792][ T5957] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  289.073656][   T30] audit: type=1400 audit(1757123262.684:344): avc:  denied  { listen } for  pid=7913 comm="syz.2.452" lport=53204 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  289.140175][   T30] audit: type=1400 audit(1757123262.704:345): avc:  denied  { write } for  pid=7899 comm="syz.4.448" name="hidraw0" dev="devtmpfs" ino=2915 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  289.273198][   T30] audit: type=1400 audit(1757123262.734:346): avc:  denied  { accept } for  pid=7913 comm="syz.2.452" lport=53204 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  289.426508][   T30] audit: type=1400 audit(1757123262.834:347): avc:  denied  { connect } for  pid=7913 comm="syz.2.452" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  289.823026][ T5909] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  289.915588][ T7936] netlink: 8 bytes leftover after parsing attributes in process `syz.0.456'.
[  289.924854][ T7936] netlink: 24 bytes leftover after parsing attributes in process `syz.0.456'.
[  289.962963][ T7936] FAULT_INJECTION: forcing a failure.
[  289.962963][ T7936] name failslab, interval 1, probability 0, space 0, times 1
[  289.976235][ T7936] CPU: 0 UID: 0 PID: 7936 Comm: syz.0.456 Not tainted syzkaller #0 PREEMPT(full) 
[  289.976262][ T7936] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  289.976277][ T7936] Call Trace:
[  289.976285][ T7936]  <TASK>
[  289.976292][ T7936]  dump_stack_lvl+0x16c/0x1f0
[  289.976326][ T7936]  should_fail_ex+0x512/0x640
[  289.976350][ T7936]  ? __kmalloc_noprof+0xbf/0x510
[  289.976372][ T7936]  ? sctp_auth_create_key+0x35/0xd0
[  289.976393][ T7936]  should_failslab+0xc2/0x120
[  289.976416][ T7936]  __kmalloc_noprof+0xd2/0x510
[  289.976443][ T7936]  sctp_auth_create_key+0x35/0xd0
[  289.976465][ T7936]  sctp_auth_set_key+0x2a9/0xb40
[  289.976495][ T7936]  sctp_setsockopt+0x9fd6/0xb870
[  289.976521][ T7936]  ? trace_irq_enable.constprop.0+0x2f/0x120
[  289.976550][ T7936]  ? __pfx_sctp_setsockopt+0x10/0x10
[  289.976580][ T7936]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  289.976611][ T7936]  ? sock_common_setsockopt+0x2e/0xf0
[  289.976637][ T7936]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  289.976666][ T7936]  do_sock_setsockopt+0xf3/0x1d0
[  289.976697][ T7936]  __sys_setsockopt+0x1a0/0x230
[  289.976724][ T7936]  __x64_sys_setsockopt+0xbd/0x160
[  289.976745][ T7936]  ? x64_sys_call+0x64d/0x1720
[  289.976770][ T7936]  do_syscall_64+0xcd/0x4c0
[  289.976797][ T7936]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  289.976818][ T7936] RIP: 0033:0x7f814998ebe9
[  289.976835][ T7936] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  289.976857][ T7936] RSP: 002b:00007f814a741038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  289.976876][ T7936] RAX: ffffffffffffffda RBX: 00007f8149bc6090 RCX: 00007f814998ebe9
[  289.976889][ T7936] RDX: 0000000000000017 RSI: 0000000000000084 RDI: 0000000000000009
[  289.976901][ T7936] RBP: 00007f814a741090 R08: 000000000000000a R09: 0000000000000000
[  289.976913][ T7936] R10: 0000200000000a40 R11: 0000000000000246 R12: 0000000000000001
[  289.976925][ T7936] R13: 00007f8149bc6128 R14: 00007f8149bc6090 R15: 00007ffd2fcb8438
[  289.976953][ T7936]  </TASK>
[  290.293406][ T5909] usb 3-1: Using ep0 maxpacket: 8
[  290.416529][ T5909] usb 3-1: unable to get BOS descriptor or descriptor too short
[  290.455038][ T5909] usb 3-1: config 7 has an invalid interface number: 58 but max is 0
[  290.485466][ T5909] usb 3-1: config 7 has no interface number 0
[  290.491720][ T5909] usb 3-1: config 7 interface 58 altsetting 3 endpoint 0xE has an invalid bInterval 0, changing to 7
[  290.591740][ T5909] usb 3-1: No eUSB2 isoc ep 14 companion for config 7 interface 58 altsetting 3
[  290.621241][ T5909] usb 3-1: config 7 interface 58 altsetting 3 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  290.743745][ T7942] CIFS: VFS: Malformed UNC in devname
[  290.871211][ T5909] usb 3-1: config 7 interface 58 has no altsetting 0
[  291.465754][ T5909] usb 3-1: New USB device found, idVendor=1498, idProduct=a090, bcdDevice=48.0f
[  291.478398][ T5909] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  291.488001][ T5909] usb 3-1: Product: syz
[  291.492179][ T5909] usb 3-1: Manufacturer: syz
[  291.499013][ T5909] usb 3-1: SerialNumber: syz
[  292.179180][   T30] audit: type=1400 audit(1757123265.624:348): avc:  denied  { firmware_load } for  pid=7945 comm="syz.3.459" path="/lib/firmware/regulatory.db" dev="sda1" ino=448 scontext=system_u:system_r:kernel_t tcontext=system_u:object_r:lib_t tclass=system permissive=1
[  292.492822][ T7952] syz.3.459 (7952) used greatest stack depth: 18856 bytes left
[  293.988447][ T7968] netlink: 212376 bytes leftover after parsing attributes in process `syz.1.462'.
[  294.545212][ T7970] netlink: 8 bytes leftover after parsing attributes in process `syz.3.463'.
[  294.784819][ T5863] Bluetooth: hci5: sending frame failed (-49)
[  294.933024][ T5174] Bluetooth: hci5: Opcode 0x1003 failed: -49
[  295.193802][   T30] audit: type=1400 audit(1757123268.804:349): avc:  denied  { setopt } for  pid=7971 comm="syz.1.464" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  295.334563][ T5909] usb 3-1: USB disconnect, device number 4
[  297.609085][   T30] audit: type=1400 audit(1757123271.164:350): avc:  denied  { write } for  pid=7996 comm="syz.1.472" name="nvram" dev="devtmpfs" ino=623 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  298.027802][   T30] audit: type=1400 audit(1757123271.164:351): avc:  denied  { open } for  pid=7996 comm="syz.1.472" path="/dev/nvram" dev="devtmpfs" ino=623 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  300.160981][ T8018] sg_write: data in/out 209/10 bytes for SCSI command 0xfd-- guessing data in;
[  300.160981][ T8018]    program syz.1.476 not setting count and/or reply_len properly
[  300.943411][ T5984] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  301.113120][ T5936] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  301.114633][ T5984] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  301.176660][ T5984] usb 3-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  301.189466][ T5984] usb 3-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  301.229432][ T5984] usb 3-1: Product: syz
[  301.241200][ T5984] usb 3-1: Manufacturer: syz
[  301.251780][ T5984] usb 3-1: SerialNumber: syz
[  301.280240][ T5984] usb 3-1: config 0 descriptor??
[  301.295500][ T5936] usb 4-1: Using ep0 maxpacket: 8
[  301.336607][ T5936] usb 4-1: unable to get BOS descriptor or descriptor too short
[  301.397710][ T5936] usb 4-1: config 7 has an invalid interface number: 58 but max is 0
[  301.412634][ T5984] snd-usb-audio 3-1:0.0: probe with driver snd-usb-audio failed with error -22
[  301.536755][ T5968] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  301.568209][ T5984] usb 3-1: USB disconnect, device number 5
[  302.042164][ T5936] usb 4-1: config 7 has no interface number 0
[  302.049576][ T5936] usb 4-1: config 7 interface 58 altsetting 3 endpoint 0xE has an invalid bInterval 0, changing to 7
[  302.066815][ T5936] usb 4-1: No eUSB2 isoc ep 14 companion for config 7 interface 58 altsetting 3
[  302.076079][ T5936] usb 4-1: config 7 interface 58 altsetting 3 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  302.098222][   T30] audit: type=1326 audit(1757123275.294:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8042 comm="syz.1.481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f703bd8ebe9 code=0x7ffc0000
[  302.143264][ T5968] usb 5-1: Using ep0 maxpacket: 32
[  302.149380][ T5868] udevd[5868]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  302.158995][ T5936] usb 4-1: config 7 interface 58 has no altsetting 0
[  302.207506][   T30] audit: type=1326 audit(1757123275.294:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8042 comm="syz.1.481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f703bd8ebe9 code=0x7ffc0000
[  302.230707][    C1] vkms_vblank_simulate: vblank timer overrun
[  302.240687][ T5968] usb 5-1: config 0 has an invalid interface number: 196 but max is 0
[  302.261637][ T5936] usb 4-1: New USB device found, idVendor=1498, idProduct=a090, bcdDevice=48.0f
[  302.271394][ T5968] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  302.296255][ T5936] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  302.307522][ T5968] usb 5-1: config 0 has no interface number 0
[  302.326314][ T5936] usb 4-1: Product: syz
[  302.435558][ T5968] usb 5-1: config 0 interface 196 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  302.451907][ T5968] usb 5-1: config 0 interface 196 has no altsetting 0
[  302.459723][   T30] audit: type=1326 audit(1757123275.294:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8042 comm="syz.1.481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=100 compat=0 ip=0x7f703bd8ebe9 code=0x7ffc0000
[  302.486147][ T5936] usb 4-1: Manufacturer: syz
[  302.490770][ T5936] usb 4-1: SerialNumber: syz
[  303.053002][   T30] audit: type=1326 audit(1757123275.294:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8042 comm="syz.1.481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f703bd8ebe9 code=0x7ffc0000
[  303.103030][ T5968] usb 5-1: New USB device found, idVendor=05ac, idProduct=77c2, bcdDevice=eb.3a
[  303.110353][ T8053] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  303.209631][ T5968] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  303.275851][ T5968] usb 5-1: Product: syz
[  303.284314][   T30] audit: type=1326 audit(1757123275.294:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8042 comm="syz.1.481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f703bd8ebe9 code=0x7ffc0000
[  303.327413][ T5968] usb 5-1: Manufacturer: syz
[  303.354085][ T5968] usb 5-1: SerialNumber: syz
[  303.406970][ T5968] usb 5-1: config 0 descriptor??
[  303.448886][ T5968] ipheth 5-1:0.196: Unable to find endpoints
[  303.458859][   T30] audit: type=1326 audit(1757123275.304:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8042 comm="syz.1.481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f703bd8ebe9 code=0x7ffc0000
[  303.618483][ T8063] netlink: 10 bytes leftover after parsing attributes in process `syz.2.484'.
[  303.922857][   T30] audit: type=1326 audit(1757123275.304:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8042 comm="syz.1.481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f703bd8ebe9 code=0x7ffc0000
[  304.049323][   T30] audit: type=1326 audit(1757123275.304:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8042 comm="syz.1.481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f703bd8ebe9 code=0x7ffc0000
[  304.156685][   T30] audit: type=1326 audit(1757123275.314:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8042 comm="syz.1.481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f703bd8ebe9 code=0x7ffc0000
[  304.372048][   T30] audit: type=1326 audit(1757123275.314:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8042 comm="syz.1.481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f703bd8ebe9 code=0x7ffc0000
[  304.614950][   T30] audit: type=1326 audit(1757123275.314:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8042 comm="syz.1.481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f703bd8ebe9 code=0x7ffc0000
[  305.493079][   T30] audit: type=1326 audit(1757123275.324:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8042 comm="syz.1.481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f703bd8ebe9 code=0x7ffc0000
[  305.530467][   T30] audit: type=1326 audit(1757123275.324:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8042 comm="syz.1.481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f703bd8ebe9 code=0x7ffc0000
[  306.121445][ T8086] netlink: 10 bytes leftover after parsing attributes in process `syz.2.487'.
[  306.365481][ T5922] usb 5-1: USB disconnect, device number 9
[  306.641245][ T5936] usb 4-1: USB disconnect, device number 7
[  309.607068][ T8124] netlink: 8 bytes leftover after parsing attributes in process `syz.4.495'.
[  309.919467][   T59] Bluetooth: hci5: Frame reassembly failed (-84)
[  311.925718][ T5174] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  311.952981][ T5936] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  312.216472][ T5936] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  312.243735][ T5936] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  312.253774][ T5936] usb 2-1: Product: syz
[  312.258911][ T5936] usb 2-1: Manufacturer: syz
[  312.274534][ T5936] usb 2-1: SerialNumber: syz
[  312.372146][ T5936] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  312.425032][   T54] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  312.453143][ T5909] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  312.745038][ T5909] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0
[  312.758101][ T5909] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 0
[  312.873282][ T5909] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  312.906460][ T5909] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  312.929086][ T5909] usb 1-1: New USB device found, idVendor=0451, idProduct=3410, bcdDevice=ef.1e
[  312.939409][ T5909] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  312.950800][ T5909] usb 1-1: Product: syz
[  312.957322][ T5909] usb 1-1: Manufacturer: syz
[  312.962161][ T5909] usb 1-1: SerialNumber: syz
[  313.045211][ T5909] usb 1-1: config 0 descriptor??
[  313.098917][ T5909] ti_usb_3410_5052 1-1:0.0: TI USB 3410 1 port adapter converter detected
[  314.046414][   T54] ath9k_htc 2-1:1.0: ath9k_htc: Target is unresponsive
[  314.069370][   T30] kauditd_printk_skb: 57 callbacks suppressed
[  314.069387][   T30] audit: type=1400 audit(1757123287.674:422): avc:  denied  { connect } for  pid=8151 comm="syz.0.502" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  314.097182][   T54] ath9k_htc: Failed to initialize the device
[  314.099033][   T30] audit: type=1400 audit(1757123287.704:423): avc:  denied  { write } for  pid=8151 comm="syz.0.502" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  314.128274][ T5909] usb 1-1: TI USB 3410 1 port adapter converter now attached to ttyUSB0
[  314.297524][   T54] usb 2-1: ath9k_htc: USB layer deinitialized
[  314.494651][ T5922] usb 1-1: USB disconnect, device number 5
[  314.603894][ T5922] ti_usb_3410_5052_1 ttyUSB0: TI USB 3410 1 port adapter converter now disconnected from ttyUSB0
[  314.759662][ T5922] ti_usb_3410_5052 1-1:0.0: device disconnected
[  315.729515][ T8173] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.505'.
[  316.003716][ T8175] netlink: 212376 bytes leftover after parsing attributes in process `syz.3.506'.
[  317.053658][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  317.060321][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  317.779600][ T8183] netlink: 212376 bytes leftover after parsing attributes in process `syz.0.508'.
[  321.731685][ T8215] tipc: Started in network mode
[  321.736774][ T8215] tipc: Node identity 4, cluster identity 4711
[  321.743116][ T8215] tipc: Node number set to 4
[  322.848501][ T8209] vxcan1 speed is unknown, defaulting to 1000
[  323.256524][ T5909] usb 2-1: USB disconnect, device number 7
[  326.799880][ T8209] lo speed is unknown, defaulting to 1000
[  329.197899][ T8269] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.527'.
[  330.081556][ T8276] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.529'.
[  331.007401][   T30] audit: type=1400 audit(1757123304.604:424): avc:  denied  { connect } for  pid=8280 comm="syz.2.532" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  331.103096][ T5922] usb 4-1: new full-speed USB device number 8 using dummy_hcd
[  331.173784][ T8285] netlink: 32 bytes leftover after parsing attributes in process `syz.2.533'.
[  331.268726][ T8286] netlink: 212376 bytes leftover after parsing attributes in process `syz.1.531'.
[  331.280508][ T5922] usb 4-1: config 1 interface 0 has no altsetting 0
[  331.295226][ T5922] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  331.305787][ T5922] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  331.359882][ T5922] usb 4-1: Product: syz
[  331.365252][ T5922] usb 4-1: Manufacturer: syz
[  331.369997][ T5922] usb 4-1: SerialNumber: syz
[  332.055454][ T5922] usblp 4-1:1.0: usblp0: USB Unidirectional printer dev 8 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[  332.373134][ T8296] netlink: 'syz.1.535': attribute type 10 has an invalid length.
[  332.757948][ T8299] loop2: detected capacity change from 0 to 7
[  332.785789][ T8299] Dev loop2: unable to read RDB block 7
[  332.796827][ T8299]  loop2: unable to read partition table
[  332.828752][ T8299] loop2: partition table beyond EOD, truncated
[  332.846060][ T8299] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[  332.856189][ T8301] netlink: 161716 bytes leftover after parsing attributes in process `syz.3.530'.
[  332.959213][ T8301] netlink: zone id is out of range
[  333.202439][ T5223] Dev loop2: unable to read RDB block 7
[  333.219461][ T5223]  loop2: unable to read partition table
[  333.257150][ T5223] loop2: partition table beyond EOD, truncated
[  333.271492][ T8301] netlink: zone id is out of range
[  333.287476][ T8301] netlink: zone id is out of range
[  333.293245][ T8301] netlink: zone id is out of range
[  333.298733][ T8301] netlink: zone id is out of range
[  333.306369][ T8301] netlink: zone id is out of range
[  333.311527][ T8301] netlink: zone id is out of range
[  333.316879][ T8301] netlink: zone id is out of range
[  333.322004][ T8301] netlink: zone id is out of range
[  333.332101][ T8301] netlink: zone id is out of range
[  334.122960][ T5223] Dev loop2: unable to read RDB block 7
[  334.128551][ T5223]  loop2: unable to read partition table
[  334.143183][ T5223] loop2: partition table beyond EOD, truncated
[  334.366710][ T8315] sg_write: data in/out 209/10 bytes for SCSI command 0xfd-- guessing data in;
[  334.366710][ T8315]    program syz.2.539 not setting count and/or reply_len properly
[  334.582380][ T8308] netlink: 10 bytes leftover after parsing attributes in process `syz.1.537'.
[  334.716216][ T5223] Dev loop2: unable to read RDB block 7
[  334.728026][ T5223]  loop2: unable to read partition table
[  334.740997][ T5223] loop2: partition table beyond EOD, truncated
[  335.651124][   T54] usb 4-1: USB disconnect, device number 8
[  335.677253][   T54] usblp0: removed
[  335.730672][ T8324] netlink: 12 bytes leftover after parsing attributes in process `syz.3.543'.
[  336.215963][   T30] audit: type=1400 audit(1757123309.734:425): avc:  denied  { create } for  pid=8327 comm="syz.0.545" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  336.279389][   T30] audit: type=1400 audit(1757123309.814:426): avc:  denied  { bind } for  pid=8327 comm="syz.0.545" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  337.340324][ T8351] netlink: 'syz.0.548': attribute type 10 has an invalid length.
[  337.362327][ T5968] usb 4-1: new full-speed USB device number 9 using dummy_hcd
[  338.024942][   T30] audit: type=1400 audit(1757123311.634:427): avc:  denied  { read append } for  pid=8354 comm="syz.2.550" name="nvram" dev="devtmpfs" ino=623 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  338.080939][ T5968] usb 4-1: config 1 interface 0 has no altsetting 0
[  338.113136][   T30] audit: type=1400 audit(1757123311.634:428): avc:  denied  { ioctl } for  pid=8354 comm="syz.2.550" path="/dev/nvram" dev="devtmpfs" ino=623 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  338.137961][ T5968] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  338.147407][ T5968] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  338.156196][ T5968] usb 4-1: Product: syz
[  338.160463][ T5968] usb 4-1: Manufacturer: syz
[  338.165666][ T5968] usb 4-1: SerialNumber: syz
[  338.303005][   T54] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  338.462981][   T54] usb 3-1: Using ep0 maxpacket: 16
[  338.470196][   T54] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  338.484940][   T54] usb 3-1: too many endpoints for config 1 interface 0 altsetting 0: 255, using maximum allowed: 30
[  338.502741][   T54] usb 3-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[  338.522130][   T54] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  338.531583][   T54] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  338.541683][   T54] usb 3-1: SerialNumber: syz
[  338.553228][ T5936] usb 2-1: new full-speed USB device number 8 using dummy_hcd
[  338.570588][   T54] cdc_acm 3-1:1.0: Control and data interfaces are not separated!
[  338.580238][   T54] cdc_acm 3-1:1.0: This needs exactly 3 endpoints
[  338.589388][   T54] cdc_acm 3-1:1.0: probe with driver cdc_acm failed with error -22
[  338.754584][ T5936] usb 2-1: config 1 interface 0 has no altsetting 0
[  338.763473][ T5936] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  338.778202][ T5936] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  338.793177][ T5936] usb 2-1: Product: syz
[  338.803456][ T5936] usb 2-1: Manufacturer: syz
[  338.809039][ T5936] usb 2-1: SerialNumber: syz
[  338.857350][ T5968] usblp 4-1:1.0: usblp0: USB Unidirectional printer dev 9 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[  338.962213][ T5968] usb 3-1: USB disconnect, device number 6
[  339.348982][ T8367] loop2: detected capacity change from 0 to 7
[  339.388530][ T8367] Dev loop2: unable to read RDB block 7
[  339.395113][ T8367]  loop2: unable to read partition table
[  339.401589][ T8368] netlink: 161716 bytes leftover after parsing attributes in process `syz.3.547'.
[  339.403270][ T8367] loop2: partition table beyond EOD, truncated
[  339.412485][ T8368] netlink: zone id is out of range
[  339.438062][ T8368] netlink: zone id is out of range
[  339.438060][ T8367] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[  339.438095][ T8368] netlink: zone id is out of range
[  339.438103][ T8368] netlink: zone id is out of range
[  339.476726][ T5936] usblp 2-1:1.0: usblp1: USB Unidirectional printer dev 8 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[  339.488597][ T8368] netlink: zone id is out of range
[  339.503154][ T8368] netlink: zone id is out of range
[  339.518577][ T8368] netlink: zone id is out of range
[  339.524510][ T5223] Dev loop2: unable to read RDB block 7
[  339.530558][ T8368] netlink: zone id is out of range
[  339.539178][ T8368] netlink: zone id is out of range
[  339.547276][ T5223]  loop2: unable to read partition table
[  339.555786][ T8368] netlink: zone id is out of range
[  339.582792][ T5223] loop2: partition table beyond EOD, truncated
[  340.727432][   T54] usb 4-1: USB disconnect, device number 9
[  340.734863][   T54] usblp0: removed
[  340.753863][ T8380] loop2: detected capacity change from 0 to 7
[  340.761419][ T8380] Dev loop2: unable to read RDB block 7
[  340.770804][ T8380]  loop2: unable to read partition table
[  340.809809][ T8380] loop2: partition table beyond EOD, truncated
[  340.932471][ T8380] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[  340.955083][ T8387] netlink: 161716 bytes leftover after parsing attributes in process `syz.1.552'.
[  341.462728][ T5223] Dev loop2: unable to read RDB block 7
[  341.469234][ T5223]  loop2: unable to read partition table
[  341.479624][ T5223] loop2: partition table beyond EOD, truncated
[  342.630520][   T54] usb 2-1: USB disconnect, device number 8
[  342.683612][   T54] usblp1: removed
[  344.334639][   T30] audit: type=1400 audit(1757123317.934:429): avc:  denied  { write } for  pid=8419 comm="syz.4.568" name="ptp0" dev="devtmpfs" ino=1265 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  346.379541][ T8446] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.572'.
[  346.625776][ T8449] serio: Serial port ptm0
[  346.713447][ T8450] netlink: 9 bytes leftover after parsing attributes in process `syz.1.573'.
[  346.727543][ T8450] gretap0: entered promiscuous mode
[  346.759894][ T8449] netlink: 5 bytes leftover after parsing attributes in process `syz.1.573'.
[  346.769484][ T8449] 0��{X��: renamed from gretap0
[  346.787602][ T8449] 0��{X��: left promiscuous mode
[  346.792781][ T8449] 0��{X��: entered allmulticast mode
[  346.808165][ T8449] net_ratelimit: 10 callbacks suppressed
[  346.814126][ T8449] A link change request failed with some changes committed already. Interface 
30��{X�� may have been left with an inconsistent configuration, please check.
[  347.085662][   T30] audit: type=1400 audit(1757123320.314:430): avc:  denied  { getopt } for  pid=8443 comm="syz.1.573" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  348.932840][   T30] audit: type=1400 audit(1757123322.534:431): avc:  denied  { write } for  pid=8475 comm="syz.1.581" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  350.046740][   T30] audit: type=1400 audit(1757123323.654:432): avc:  denied  { ioctl } for  pid=8484 comm="syz.1.584" path="socket:[22744]" dev="sockfs" ino=22744 ioctlcmd=0x8982 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  351.826491][ T8510] netlink: 24 bytes leftover after parsing attributes in process `syz.4.592'.
[  352.716585][ T8517] netlink: 'syz.4.593': attribute type 4 has an invalid length.
[  352.753931][ T8517] netlink: 'syz.4.593': attribute type 4 has an invalid length.
[  352.813212][   T54] lo speed is unknown, defaulting to 1000
[  352.971427][ T5968] usb 1-1: new full-speed USB device number 6 using dummy_hcd
[  353.124819][   T54] lo speed is unknown, defaulting to 1000
[  353.252779][ T5936] lo speed is unknown, defaulting to 1000
[  353.332062][ T5968] usb 1-1: config 1 interface 0 has no altsetting 0
[  353.358819][ T5968] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  353.813687][ T5968] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  353.821719][ T5968] usb 1-1: Product: syz
[  353.847909][ T5968] usb 1-1: Manufacturer: syz
[  353.852554][ T5968] usb 1-1: SerialNumber: syz
[  353.892048][   T54] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  353.923023][   T30] audit: type=1326 audit(1757123327.524:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8523 comm="syz.2.597" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2adf18ebe9 code=0x0
[  353.967312][   T54] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  354.243058][ T5936] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  354.311826][ T8531] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(12)
[  354.318623][ T8531] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  354.381913][ T8531] vhci_hcd vhci_hcd.0: Device attached
[  354.427068][ T5936] usb 3-1: config index 0 descriptor too short (expected 7768, got 18)
[  354.436568][ T5936] usb 3-1: config 0 has an invalid interface number: 97 but max is 0
[  354.460348][ T5936] usb 3-1: config 0 has no interface number 0
[  354.473576][ T5936] usb 3-1: New USB device found, idVendor=0483, idProduct=3747, bcdDevice=52.4d
[  354.505943][ T5936] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  354.516457][ T5968] usblp 1-1:1.0: usblp0: USB Unidirectional printer dev 6 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[  354.525681][ T5936] usb 3-1: config 0 descriptor??
[  354.540657][ T5936] ftdi_sio 3-1:0.97: FTDI USB Serial Device converter detected
[  354.564616][ T5936] ftdi_sio ttyUSB0: unknown device type: 0x524d
[  354.613422][   T54] usb 41-1: new low-speed USB device number 2 using vhci_hcd
[  354.621581][ T5852] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  354.790819][ T5852] usb 5-1: Using ep0 maxpacket: 16
[  354.804216][ T5852] usb 5-1: config 0 has no interfaces?
[  354.810813][ T5852] usb 5-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  354.832204][ T5852] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  354.854811][ T5852] usb 5-1: config 0 descriptor??
[  355.602087][ T8543] loop2: detected capacity change from 0 to 7
[  355.657925][ T8543] Dev loop2: unable to read RDB block 7
[  355.673109][ T8543]  loop2: unable to read partition table
[  355.683544][ T8543] loop2: partition table beyond EOD, truncated
[  355.704641][ T8543] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[  355.756076][ T8543] netlink: 161716 bytes leftover after parsing attributes in process `syz.0.594'.
[  355.763121][   T54] usb 41-1: device descriptor read/64, error -71
[  355.802341][ T8543] netlink: zone id is out of range
[  355.810528][ T8543] netlink: zone id is out of range
[  355.817193][ T8543] netlink: zone id is out of range
[  355.822584][ T8543] netlink: zone id is out of range
[  355.828031][ T8543] netlink: zone id is out of range
[  355.926331][ T8543] netlink: zone id is out of range
[  355.957674][ T8543] netlink: zone id is out of range
[  355.963920][ T8543] netlink: zone id is out of range
[  355.970477][ T8543] netlink: zone id is out of range
[  355.998301][ T8543] netlink: zone id is out of range
[  356.043110][   T54] usb 41-1: new low-speed USB device number 3 using vhci_hcd
[  356.969294][ T5936] usb 3-1: USB disconnect, device number 7
[  357.004577][ T5936] ftdi_sio 3-1:0.97: device disconnected
[  357.052503][ T5223] Dev loop2: unable to read RDB block 7
[  357.065200][ T5223]  loop2: unable to read partition table
[  357.071121][ T5223] loop2: partition table beyond EOD, truncated
[  357.206110][ T5909] usb 1-1: USB disconnect, device number 6
[  357.257838][ T5909] usblp0: removed
[  358.553835][   T30] audit: type=1400 audit(1757123332.144:434): avc:  denied  { bind } for  pid=8567 comm="syz.3.605" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  358.616503][ T5909] usb 5-1: USB disconnect, device number 10
[  358.626585][ T8532] vhci_hcd: connection closed
[  358.631573][   T36] vhci_hcd: stop threads
[  358.662514][   T36] vhci_hcd: release socket
[  358.672968][   T36] vhci_hcd: disconnect device
[  359.527740][ T8595] netlink: 44 bytes leftover after parsing attributes in process `syz.1.610'.
[  359.538298][ T8595] netlink: 43 bytes leftover after parsing attributes in process `syz.1.610'.
[  359.547690][ T8595] netlink: 'syz.1.610': attribute type 6 has an invalid length.
[  359.556858][ T8595] netlink: 'syz.1.610': attribute type 5 has an invalid length.
[  359.564800][ T8595] netlink: 43 bytes leftover after parsing attributes in process `syz.1.610'.
[  359.868217][ T5936] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  359.937978][ T5936] hid-generic 0000:0000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  361.193217][   T54] vhci_hcd: vhci_device speed not set
[  361.933437][   T30] audit: type=1400 audit(1757123335.484:435): avc:  denied  { bind } for  pid=8636 comm="syz.4.617" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  361.974344][ T8640] netlink: 20 bytes leftover after parsing attributes in process `syz.3.616'.
[  362.023747][ T8641] netlink: 40 bytes leftover after parsing attributes in process `syz.4.617'.
[  362.065340][ T8641] netlink: 40 bytes leftover after parsing attributes in process `syz.4.617'.
[  362.075823][ T8641] netlink: 40 bytes leftover after parsing attributes in process `syz.4.617'.
[  362.319964][   T30] audit: type=1400 audit(1757123335.544:436): avc:  denied  { write } for  pid=8636 comm="syz.4.617" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  362.927043][ T8654] netlink: 212376 bytes leftover after parsing attributes in process `syz.0.618'.
[  366.263586][   T30] audit: type=1326 audit(1757123339.864:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8690 comm="syz.0.626" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f814998ebe9 code=0x0
[  367.409694][ T8714] fuse: Unknown parameter '���t�­A�h�!��٬�0x000000000000000a'
[  367.965418][ T8720] sg_write: data in/out 209/10 bytes for SCSI command 0xfd-- guessing data in;
[  367.965418][ T8720]    program syz.3.630 not setting count and/or reply_len properly
[  368.441514][ T8732] netlink: 212376 bytes leftover after parsing attributes in process `syz.0.633'.
[  373.943953][ T8785] netlink: 'syz.3.642': attribute type 10 has an invalid length.
[  375.903494][ T8801] netlink: 24 bytes leftover after parsing attributes in process `syz.3.645'.
[  377.229906][ T8822] vxcan1 speed is unknown, defaulting to 1000
[  378.004760][ T8822] lo speed is unknown, defaulting to 1000
[  378.513689][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  378.521027][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  384.530132][ T8887] netlink: 'syz.2.662': attribute type 1 has an invalid length.
[  384.548359][ T8887] netlink: 228 bytes leftover after parsing attributes in process `syz.2.662'.
[  384.742595][ T8892] netdevsim netdevsim3: Direct firmware load for lookup_extent_enter failed with error -2
[  384.754153][ T8892] netdevsim netdevsim3: Falling back to sysfs fallback for: lookup_extent_enter
[  384.957220][ T8894] sg_write: data in/out 209/10 bytes for SCSI command 0xfd-- guessing data in;
[  384.957220][ T8894]    program syz.1.664 not setting count and/or reply_len properly
[  385.234895][   T24] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  385.789616][   T24] usb 3-1: Using ep0 maxpacket: 8
[  385.979951][   T24] usb 3-1: unable to get BOS descriptor or descriptor too short
[  386.006200][   T24] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xEE, changing to 0x8E
[  386.019038][   T24] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8E has an invalid bInterval 0, changing to 7
[  386.039422][   T24] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  386.746032][   T24] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0xC has invalid maxpacket 1
[  386.765825][   T24] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xF has invalid wMaxPacketSize 0
[  386.797005][   T24] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 114
[  386.824819][   T24] usb 3-1: New USB device found, idVendor=0763, idProduct=1002, bcdDevice=5f.84
[  386.957568][   T24] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  387.024413][   T24] usb 3-1: Product: syz
[  387.181426][   T24] usb 3-1: Manufacturer: syz
[  387.188577][   T24] usb 3-1: SerialNumber: syz
[  387.202096][   T24] usb 3-1: config 0 descriptor??
[  387.242930][ T8891] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  387.643282][ T8891] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  387.748838][   T24] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[  389.870212][   T24] usb 3-1: USB disconnect, device number 8
[  392.280604][ T8961] netlink: 212376 bytes leftover after parsing attributes in process `syz.0.680'.
[  393.956409][   T54] usb 1-1: new full-speed USB device number 7 using dummy_hcd
[  394.905516][   T54] usb 1-1: config 1 interface 0 has no altsetting 0
[  394.922499][   T54] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  394.934140][   T54] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  394.945175][   T54] usb 1-1: Product: syz
[  394.949441][   T54] usb 1-1: Manufacturer: syz
[  394.955021][   T54] usb 1-1: SerialNumber: syz
[  395.572073][ T8991] netlink: 24 bytes leftover after parsing attributes in process `syz.3.687'.
[  395.904424][   T54] usblp 1-1:1.0: usblp0: USB Unidirectional printer dev 7 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[  398.782138][   T10] usb 1-1: USB disconnect, device number 7
[  398.798691][   T10] usblp0: removed
[  399.938572][ T9023] netlink: 212376 bytes leftover after parsing attributes in process `syz.0.694'.
[  400.492028][ T9030] =======================================================
[  400.492028][ T9030] WARNING: The mand mount option has been deprecated and
[  400.492028][ T9030]          and is ignored by this kernel. Remove the mand
[  400.492028][ T9030]          option from the mount to silence this warning.
[  400.492028][ T9030] =======================================================
[  400.526978][    C0] vkms_vblank_simulate: vblank timer overrun
[  400.603173][   T30] audit: type=1400 audit(1757123374.184:438): avc:  denied  { mount } for  pid=9026 comm="syz.3.696" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  400.842413][   T30] audit: type=1400 audit(1757123374.414:439): avc:  denied  { mounton } for  pid=9026 comm="syz.3.696" path="/149/file0" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=dir permissive=1
[  400.913419][   T30] audit: type=1400 audit(1757123374.414:440): avc:  denied  { mount } for  pid=9026 comm="syz.3.696" name="/" dev="overlay" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  400.935177][    C0] vkms_vblank_simulate: vblank timer overrun
[  401.115028][ T9036] netlink: 10 bytes leftover after parsing attributes in process `syz.2.698'.
[  401.541054][ T9044] netlink: 24 bytes leftover after parsing attributes in process `syz.4.700'.
[  402.028171][   T30] audit: type=1400 audit(1757123375.634:441): avc:  denied  { unmount } for  pid=5850 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  402.655169][   T10] usb 5-1: new full-speed USB device number 11 using dummy_hcd
[  402.848776][   T10] usb 5-1: config 1 interface 0 has no altsetting 0
[  402.862432][   T10] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  402.884136][   T10] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  402.922750][   T10] usb 5-1: Product: syz
[  402.966737][   T10] usb 5-1: Manufacturer: syz
[  402.991089][   T10] usb 5-1: SerialNumber: syz
[  403.743494][   T10] usblp 5-1:1.0: usblp0: USB Unidirectional printer dev 11 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[  404.925165][ T9076] loop2: detected capacity change from 0 to 7
[  405.068737][ T9078] netlink: 161716 bytes leftover after parsing attributes in process `syz.4.702'.
[  405.236960][ T9078] netlink: zone id is out of range
[  405.242116][ T9078] netlink: zone id is out of range
[  405.680030][ T9078] netlink: zone id is out of range
[  405.685314][ T9078] netlink: zone id is out of range
[  405.690559][ T9078] netlink: zone id is out of range
[  405.690751][ T9076] Dev loop2: unable to read RDB block 7
[  405.728727][ T9078] netlink: zone id is out of range
[  405.895274][ T9078] netlink: zone id is out of range
[  405.895368][ T9076]  loop2: unable to read partition table
[  405.906261][ T9078] netlink: zone id is out of range
[  405.906460][ T9076] loop2: partition table beyond EOD, 
[  405.911404][ T9078] netlink: zone id is out of range
[  405.911510][ T9078] netlink: zone id is out of range
[  406.411677][ T9076] truncated
[  406.431028][ T9076] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[  406.953410][   T10] usb 5-1: USB disconnect, device number 11
[  406.965549][   T10] usblp0: removed
[  407.958561][ T9102] netlink: 24 bytes leftover after parsing attributes in process `syz.0.714'.
[  409.232152][ T9109] netlink: 10 bytes leftover after parsing attributes in process `syz.0.717'.
[  409.460164][ T9116] netlink: 24 bytes leftover after parsing attributes in process `syz.3.719'.
[  414.173999][ T5922] usb 3-1: new full-speed USB device number 9 using dummy_hcd
[  414.861868][ T5922] usb 3-1: config 1 interface 0 has no altsetting 0
[  414.995569][ T5922] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  415.016109][ T5922] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  415.035405][ T5922] usb 3-1: Product: syz
[  415.044045][ T5922] usb 3-1: Manufacturer: syz
[  415.059619][ T5922] usb 3-1: SerialNumber: syz
[  415.302981][ T9155] netlink: 10 bytes leftover after parsing attributes in process `syz.4.726'.
[  416.062950][   T54] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  416.153888][ T5922] usblp 3-1:1.0: usblp0: USB Unidirectional printer dev 9 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[  416.232924][   T54] usb 1-1: Using ep0 maxpacket: 16
[  416.242397][   T54] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xD has an invalid bInterval 0, changing to 7
[  416.323118][   T54] usb 1-1: New USB device found, idVendor=4752, idProduct=0011, bcdDevice=32.4f
[  416.352162][   T54] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  416.375361][   T54] usb 1-1: Product: syz
[  416.379801][   T54] usb 1-1: Manufacturer: syz
[  416.412995][   T54] usb 1-1: SerialNumber: syz
[  416.434128][   T54] usb 1-1: config 0 descriptor??
[  416.442322][   T54] hub 1-1:0.0: bad descriptor, ignoring hub
[  416.452385][   T54] hub 1-1:0.0: probe with driver hub failed with error -5
[  416.547505][   T54] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[  417.053936][ T9170] loop2: detected capacity change from 0 to 7
[  417.080249][ T9170] Dev loop2: unable to read RDB block 7
[  417.104322][ T9170]  loop2: unable to read partition table
[  417.104903][ T9172] netlink: 161716 bytes leftover after parsing attributes in process `syz.2.725'.
[  417.183603][ T9160] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  417.314383][ T9172] netlink: zone id is out of range
[  417.314480][ T9170] loop2: partition table beyond EOD, truncated
[  417.319585][ T9172] netlink: zone id is out of range
[  417.333444][ T9160] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  417.396913][ T9177] netlink: 24 bytes leftover after parsing attributes in process `syz.1.732'.
[  417.907418][ T9170] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[  418.026337][ T9172] netlink: zone id is out of range
[  418.031615][ T9172] netlink: zone id is out of range
[  418.038383][ T9172] netlink: zone id is out of range
[  418.045508][ T9172] netlink: zone id is out of range
[  418.050725][ T9172] netlink: zone id is out of range
[  418.055993][ T9172] netlink: zone id is out of range
[  418.061224][ T9172] netlink: zone id is out of range
[  418.067383][ T9172] netlink: zone id is out of range
[  418.232530][ T9182] loop9: detected capacity change from 0 to 7
[  418.247672][ T9182] Buffer I/O error on dev loop9, logical block 0, async page read
[  418.257711][ T9182] Buffer I/O error on dev loop9, logical block 0, async page read
[  418.267408][ T9182] Buffer I/O error on dev loop9, logical block 0, async page read
[  418.276847][ T9182] Buffer I/O error on dev loop9, logical block 0, async page read
[  418.287358][ T9182] Buffer I/O error on dev loop9, logical block 0, async page read
[  418.297440][ T9182] Buffer I/O error on dev loop9, logical block 0, async page read
[  418.306955][ T9182] Buffer I/O error on dev loop9, logical block 0, async page read
[  418.315938][ T9182] ldm_validate_partition_table(): Disk read failed.
[  418.323502][ T9182] Buffer I/O error on dev loop9, logical block 0, async page read
[  418.333739][ T9182] Buffer I/O error on dev loop9, logical block 0, async page read
[  418.343464][ T9182] Buffer I/O error on dev loop9, logical block 0, async page read
[  418.354790][ T9182] Dev loop9: unable to read RDB block 0
[  418.363777][ T9182]  loop9: unable to read partition table
[  418.372041][ T9182] loop9: partition table beyond EOD, truncated
[  418.378589][ T9182] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  418.378589][ T9182] 
) failed (rc=-5)
[  418.828883][   T10] usb 3-1: USB disconnect, device number 9
[  419.274450][   T10] usblp0: removed
[  419.492964][ T5936] usb 1-1: USB disconnect, device number 8
[  419.637190][ T9193] netlink: 10 bytes leftover after parsing attributes in process `syz.4.735'.
[  420.023498][ T9200] netlink: 'syz.2.736': attribute type 10 has an invalid length.
[  420.962926][ T9208] netlink: 24 bytes leftover after parsing attributes in process `syz.3.737'.
[  421.794679][ T9213] netlink: 24 bytes leftover after parsing attributes in process `syz.3.741'.
[  423.893591][ T9235] netlink: 212376 bytes leftover after parsing attributes in process `syz.4.746'.
[  424.662999][   T24] usb 3-1: new full-speed USB device number 10 using dummy_hcd
[  425.314688][   T24] usb 3-1: config 1 interface 0 has no altsetting 0
[  425.323902][   T24] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  425.333664][   T24] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  425.459733][   T24] usb 3-1: Product: syz
[  425.464226][   T24] usb 3-1: Manufacturer: syz
[  425.471674][   T24] usb 3-1: SerialNumber: syz
[  425.874286][ T9255] sg_write: data in/out 209/10 bytes for SCSI command 0xfd-- guessing data in;
[  425.874286][ T9255]    program syz.3.750 not setting count and/or reply_len properly
[  426.150080][   T24] usblp 3-1:1.0: usblp0: USB Unidirectional printer dev 10 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[  426.472100][ T9259] netlink: 10 bytes leftover after parsing attributes in process `syz.3.751'.
[  426.785556][ T9262] loop2: detected capacity change from 0 to 7
[  426.802246][ T9262] Dev loop2: unable to read RDB block 7
[  426.817475][ T9262]  loop2: unable to read partition table
[  426.824670][ T9262] loop2: partition table beyond EOD, truncated
[  427.004287][ T9262] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[  427.462127][ T9267] netlink: 161716 bytes leftover after parsing attributes in process `syz.2.747'.
[  427.540247][ T9267] netlink: zone id is out of range
[  427.549657][ T9267] netlink: zone id is out of range
[  427.557375][ T9267] netlink: zone id is out of range
[  427.567377][ T9267] netlink: zone id is out of range
[  427.572969][ T9267] netlink: zone id is out of range
[  427.579548][ T9267] netlink: zone id is out of range
[  427.588076][ T9267] netlink: zone id is out of range
[  427.595343][ T9267] netlink: zone id is out of range
[  427.602949][ T9267] netlink: zone id is out of range
[  427.821304][ T9267] netlink: zone id is out of range
[  428.192655][   T30] audit: type=1400 audit(1757123401.794:442): avc:  denied  { read } for  pid=9264 comm="syz.3.753" name="fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  428.192713][   T30] audit: type=1400 audit(1757123401.794:443): avc:  denied  { open } for  pid=9264 comm="syz.3.753" path="/dev/fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  428.192755][   T30] audit: type=1400 audit(1757123401.794:444): avc:  denied  { ioctl } for  pid=9264 comm="syz.3.753" path="/dev/fb0" dev="devtmpfs" ino=629 ioctlcmd=0x4601 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  428.983853][    C0] vkms_vblank_simulate: vblank timer overrun
[  429.170110][ T5969] usb 3-1: USB disconnect, device number 10
[  429.175338][ T5969] usblp0: removed
[  431.349807][ T9303] sg_write: data in/out 209/10 bytes for SCSI command 0xfd-- guessing data in;
[  431.349807][ T9303]    program syz.4.761 not setting count and/or reply_len properly
[  434.517412][   T54] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  435.652979][   T54] usb 2-1: Using ep0 maxpacket: 8
[  435.687443][   T54] usb 2-1: device descriptor read/all, error -71
[  436.119282][ T9338] [U] v�3��f��"S��/��4:�XTz�W�t��lW��=
[  436.940025][ T9335] [U] J"�e:��"


[  439.645595][ T9365] vxcan1 speed is unknown, defaulting to 1000
[  439.734300][ T9372] [U] v�3��f��"S��/��4:�XTz�W�t��lW��=
[  440.293674][ T9370] [U] J"�e:��"


[  440.409622][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  440.436608][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  440.802183][ T9389] netlink: 212376 bytes leftover after parsing attributes in process `syz.3.781'.
[  441.349379][ T9393] [U] v�3��f��"S��/��4:�XTz�W�t��lW��=
[  442.195479][ T9392] [U] J"�e:��"


[  444.053773][ T9365] lo speed is unknown, defaulting to 1000
[  444.066017][ T9410] vxcan1 speed is unknown, defaulting to 1000
[  445.985121][ T9433] netlink: 10 bytes leftover after parsing attributes in process `syz.3.791'.
[  446.694814][ T9410] lo speed is unknown, defaulting to 1000
[  447.632989][   T24] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  447.794578][   T24] usb 4-1: Using ep0 maxpacket: 8
[  447.826806][   T24] usb 4-1: unable to get BOS descriptor or descriptor too short
[  447.860098][   T24] usb 4-1: config 7 has an invalid interface number: 58 but max is 0
[  447.895490][   T24] usb 4-1: config 7 has no interface number 0
[  447.922483][   T24] usb 4-1: config 7 interface 58 altsetting 3 endpoint 0xE has an invalid bInterval 0, changing to 7
[  447.977368][   T24] usb 4-1: No eUSB2 isoc ep 14 companion for config 7 interface 58 altsetting 3
[  448.016496][   T24] usb 4-1: config 7 interface 58 altsetting 3 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  448.168103][   T24] usb 4-1: config 7 interface 58 has no altsetting 0
[  448.197806][   T24] usb 4-1: New USB device found, idVendor=1498, idProduct=a090, bcdDevice=48.0f
[  448.291186][ T9453] netlink: 212376 bytes leftover after parsing attributes in process `syz.1.796'.
[  449.032349][   T24] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  449.207976][   T24] usb 4-1: Product: syz
[  449.236429][   T24] usb 4-1: Manufacturer: syz
[  449.241062][   T24] usb 4-1: SerialNumber: syz
[  450.119734][ T9461] netlink: 212376 bytes leftover after parsing attributes in process `syz.1.798'.
[  452.195899][   T24] usb 4-1: USB disconnect, device number 10
[  453.931975][ T9496] netlink: 24 bytes leftover after parsing attributes in process `syz.3.807'.
[  456.303025][ T5969] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  456.573001][ T5969] usb 5-1: Using ep0 maxpacket: 8
[  456.587432][ T5969] usb 5-1: unable to get BOS descriptor or descriptor too short
[  456.609168][ T9510] vxcan1 speed is unknown, defaulting to 1000
[  456.619811][ T5969] usb 5-1: config 7 has an invalid interface number: 58 but max is 0
[  457.077008][ T5969] usb 5-1: config 7 has no interface number 0
[  457.089206][ T5969] usb 5-1: config 7 interface 58 altsetting 3 endpoint 0xE has an invalid bInterval 0, changing to 7
[  457.133622][ T5969] usb 5-1: No eUSB2 isoc ep 14 companion for config 7 interface 58 altsetting 3
[  457.159916][ T9524] [U] v�3��f��"S��/��4:�XTz�W�t��lW��=
[  457.166084][ T5969] usb 5-1: config 7 interface 58 altsetting 3 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  457.285233][ T5909] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  457.286648][ T5969] usb 5-1: config 7 interface 58 has no altsetting 0
[  457.394990][ T5969] usb 5-1: New USB device found, idVendor=1498, idProduct=a090, bcdDevice=48.0f
[  457.405690][ T5969] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  457.414078][ T5969] usb 5-1: Product: syz
[  457.418919][ T5969] usb 5-1: Manufacturer: syz
[  457.790417][ T5969] usb 5-1: SerialNumber: syz
[  457.810522][ T5909] usb 1-1: Using ep0 maxpacket: 8
[  457.819401][ T5909] usb 1-1: unable to get BOS descriptor or descriptor too short
[  457.832355][ T5909] usb 1-1: config 7 has an invalid interface number: 58 but max is 0
[  457.859834][ T5909] usb 1-1: config 7 has no interface number 0
[  457.940316][ T5909] usb 1-1: config 7 interface 58 altsetting 3 endpoint 0xE has an invalid bInterval 0, changing to 7
[  457.961420][ T9522] [U] J"�e:��"


[  457.986257][ T5909] usb 1-1: No eUSB2 isoc ep 14 companion for config 7 interface 58 altsetting 3
[  457.996076][ T5909] usb 1-1: config 7 interface 58 altsetting 3 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  458.022911][ T5909] usb 1-1: config 7 interface 58 has no altsetting 0
[  458.074433][ T9510] lo speed is unknown, defaulting to 1000
[  458.384537][ T5909] usb 1-1: New USB device found, idVendor=1498, idProduct=a090, bcdDevice=48.0f
[  458.398896][ T5909] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  458.412529][ T5909] usb 1-1: Product: syz
[  458.420015][ T5909] usb 1-1: Manufacturer: syz
[  458.425560][ T5909] usb 1-1: SerialNumber: syz
[  459.541694][ T5969] usb 5-1: USB disconnect, device number 12
[  460.067022][ T5909] usb 1-1: USB disconnect, device number 9
[  461.287846][ T9563] sg_write: data in/out 209/10 bytes for SCSI command 0xfd-- guessing data in;
[  461.287846][ T9563]    program syz.0.823 not setting count and/or reply_len properly
[  462.642340][ T9580] netlink: 24 bytes leftover after parsing attributes in process `syz.2.826'.
[  463.037001][ T9581] netlink: 'syz.4.824': attribute type 10 has an invalid length.
[  463.226183][ T9584] sg_write: data in/out 209/10 bytes for SCSI command 0xfd-- guessing data in;
[  463.226183][ T9584]    program syz.1.827 not setting count and/or reply_len properly
[  464.208914][ T9595] netdevsim netdevsim1: Direct firmware load for lookup_extent_enter failed with error -2
[  464.226627][ T9595] netdevsim netdevsim1: Falling back to sysfs fallback for: lookup_extent_enter
[  464.305507][ T9599] vxcan1 speed is unknown, defaulting to 1000
[  465.426984][ T9599] lo speed is unknown, defaulting to 1000
[  467.521697][ T9623] netlink: 10 bytes leftover after parsing attributes in process `syz.1.838'.
[  468.353433][ T9636] netlink: 112 bytes leftover after parsing attributes in process `syz.3.839'.
[  469.464323][ T9650] netlink: 24 bytes leftover after parsing attributes in process `syz.1.844'.
[  469.662026][ T9654] netlink: 'syz.2.845': attribute type 10 has an invalid length.
[  469.885102][ T9659] netlink: 24 bytes leftover after parsing attributes in process `syz.3.846'.
[  471.583245][ T5909] usb 1-1: new full-speed USB device number 10 using dummy_hcd
[  471.695324][ T5957] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  471.784762][ T5909] usb 1-1: config 1 interface 0 has no altsetting 0
[  472.529206][ T5909] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  472.542727][ T5909] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  472.551523][ T5909] usb 1-1: Product: syz
[  472.557775][ T5957] usb 2-1: config 2 has an invalid descriptor of length 48, skipping remainder of the config
[  472.568311][ T5909] usb 1-1: Manufacturer: syz
[  472.578625][ T5957] usb 2-1: config 2 interface 0 altsetting 178 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  472.591813][ T5909] usb 1-1: SerialNumber: syz
[  472.615819][ T5957] usb 2-1: config 2 interface 0 has no altsetting 0
[  472.628466][ T5957] usb 2-1: New USB device found, idVendor=04d8, idProduct=0083, bcdDevice=da.47
[  472.637899][ T5957] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  472.646244][ T5957] usb 2-1: Product: syz
[  472.651215][ T5957] usb 2-1: Manufacturer: syz
[  472.656547][ T5957] usb 2-1: SerialNumber: syz
[  473.214022][   T30] audit: type=1400 audit(1757123446.764:445): avc:  denied  { ioctl } for  pid=9669 comm="syz.1.850" path="socket:[29154]" dev="sockfs" ino=29154 ioctlcmd=0x8b32 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  473.295978][ T9670] overlayfs: missing 'lowerdir'
[  473.343440][ T9685] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  473.354785][ T9685] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  473.364641][ T5909] usblp 1-1:1.0: usblp0: USB Unidirectional printer dev 10 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[  473.418590][ T5957] ims_pcu 2-1:2.0: probe with driver ims_pcu failed with error -22
[  473.460519][ T5957] usb 2-1: USB disconnect, device number 11
[  473.484691][ T9688] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  473.562290][ T9692] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  473.634324][ T9688] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  473.770879][ T9695] loop2: detected capacity change from 0 to 7
[  473.777701][ T9695] Dev loop2: unable to read RDB block 7
[  473.784203][ T9695]  loop2: unable to read partition table
[  473.789957][ T9695] loop2: partition table beyond EOD, truncated
[  473.848675][ T9695] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[  473.856179][ T9696] netlink: 161716 bytes leftover after parsing attributes in process `syz.0.849'.
[  473.962160][ T9696] netlink: zone id is out of range
[  473.987136][ T9696] netlink: zone id is out of range
[  474.065816][ T9696] netlink: zone id is out of range
[  474.439282][ T9696] netlink: zone id is out of range
[  474.449938][ T9696] netlink: zone id is out of range
[  474.805179][ T9703] netlink: 24 bytes leftover after parsing attributes in process `syz.1.858'.
[  475.372029][ T9696] netlink: zone id is out of range
[  475.382386][ T9696] netlink: zone id is out of range
[  475.388797][ T9696] netlink: zone id is out of range
[  475.394745][ T9696] netlink: zone id is out of range
[  475.475777][ T9696] netlink: zone id is out of range
[  475.540176][   T24] usb 1-1: USB disconnect, device number 10
[  475.550671][   T24] usblp0: removed
[  477.650227][ T9725] sg_write: data in/out 209/10 bytes for SCSI command 0xfd-- guessing data in;
[  477.650227][ T9725]    program syz.1.863 not setting count and/or reply_len properly
[  480.314829][ T9752] netlink: 24 bytes leftover after parsing attributes in process `syz.2.869'.
[  481.945886][ T9765] netlink: 10 bytes leftover after parsing attributes in process `syz.3.873'.
[  483.855270][ T9780] sg_write: data in/out 209/10 bytes for SCSI command 0xfd-- guessing data in;
[  483.855270][ T9780]    program syz.0.877 not setting count and/or reply_len properly
[  490.083832][ T9851] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  490.110289][ T9851] CIFS: Unable to determine destination address
[  493.222701][ T9878] netlink: 24 bytes leftover after parsing attributes in process `syz.2.902'.
[  496.360610][ T9921] netlink: 4 bytes leftover after parsing attributes in process `syz.2.911'.
[  497.043487][ T9931] sg_write: data in/out 209/10 bytes for SCSI command 0xfd-- guessing data in;
[  497.043487][ T9931]    program syz.4.912 not setting count and/or reply_len properly
[  497.784035][ T9939] CIFS: Unable to determine destination address
[  498.465986][ T9949] netlink: 24 bytes leftover after parsing attributes in process `syz.0.917'.
[  499.732540][ T9956] netlink: 10 bytes leftover after parsing attributes in process `syz.3.918'.
[  500.412529][ T9981] netlink: 112 bytes leftover after parsing attributes in process `syz.3.922'.
[  501.186957][   T30] audit: type=1400 audit(1757123474.374:446): avc:  denied  { ioctl } for  pid=9978 comm="syz.4.920" path="socket:[31867]" dev="sockfs" ino=31867 ioctlcmd=0x890b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  501.377090][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  501.383565][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  502.082971][   T30] audit: type=1400 audit(1757123474.374:447): avc:  denied  { connect } for  pid=9978 comm="syz.4.920" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  504.273400][T10018] netlink: 24 bytes leftover after parsing attributes in process `syz.2.933'.
[  504.549665][T10013] vxcan1 speed is unknown, defaulting to 1000
[  504.842909][T10024] netlink: 212376 bytes leftover after parsing attributes in process `syz.4.928'.
[  505.167504][T10013] lo speed is unknown, defaulting to 1000
[  507.364516][ T5969] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  507.744743][T10057] netlink: 24 bytes leftover after parsing attributes in process `syz.0.942'.
[  508.196418][ T5969] usb 5-1: config 0 has an invalid descriptor of length 154, skipping remainder of the config
[  508.495574][ T5969] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0
[  508.505606][ T5969] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 0
[  508.516198][ T5969] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  508.535463][ T5969] usb 5-1: New USB device found, idVendor=0451, idProduct=3410, bcdDevice=ef.1e
[  508.552981][ T5969] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  508.561006][ T5969] usb 5-1: Product: syz
[  508.590455][ T5969] usb 5-1: Manufacturer: syz
[  509.591765][ T5969] usb 5-1: SerialNumber: syz
[  509.899401][ T5969] usb 5-1: config 0 descriptor??
[  509.908690][ T5969] usb 5-1: can't set config #0, error -71
[  510.436132][ T5969] usb 5-1: USB disconnect, device number 13
[  511.230021][T10078] netlink: 4 bytes leftover after parsing attributes in process `syz.0.946'.
[  511.382266][T10078] geneve2: entered promiscuous mode
[  511.387848][T10078] geneve2: entered allmulticast mode
[  512.431581][T10090] netlink: 24 bytes leftover after parsing attributes in process `syz.1.948'.
[  512.822957][ T5909] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  513.005614][ T5909] usb 3-1: config 0 has an invalid descriptor of length 154, skipping remainder of the config
[  513.048640][ T5909] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0
[  513.062426][ T5909] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 0
[  513.078661][ T5909] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  513.098280][ T5909] usb 3-1: New USB device found, idVendor=0451, idProduct=3410, bcdDevice=ef.1e
[  513.107882][ T5909] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  513.129105][ T5909] usb 3-1: Product: syz
[  513.136596][ T5909] usb 3-1: Manufacturer: syz
[  513.141600][ T5909] usb 3-1: SerialNumber: syz
[  513.151588][ T5909] usb 3-1: config 0 descriptor??
[  513.161189][ T5909] ti_usb_3410_5052 3-1:0.0: TI USB 3410 1 port adapter converter detected
[  513.191732][ T5909] usb 3-1: Direct firmware load for ti_usb-v0451-p3410.fw failed with error -2
[  513.208588][ T5909] usb 3-1: Falling back to sysfs fallback for: ti_usb-v0451-p3410.fw
[  514.853001][ T5984] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  515.722923][ T5984] usb 4-1: Using ep0 maxpacket: 8
[  515.730922][ T5984] usb 4-1: unable to get BOS descriptor or descriptor too short
[  515.808809][ T5984] usb 4-1: config 7 has an invalid interface number: 58 but max is 0
[  515.844783][T10124] netlink: 24 bytes leftover after parsing attributes in process `syz.4.958'.
[  516.313701][ T5984] usb 4-1: config 7 has no interface number 0
[  516.327237][ T5984] usb 4-1: config 7 interface 58 altsetting 3 endpoint 0xE has an invalid bInterval 0, changing to 7
[  516.359054][ T5984] usb 4-1: No eUSB2 isoc ep 14 companion for config 7 interface 58 altsetting 3
[  516.486345][ T5984] usb 4-1: config 7 interface 58 altsetting 3 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  516.500303][ T5984] usb 4-1: config 7 interface 58 has no altsetting 0
[  516.511522][ T5984] usb 4-1: New USB device found, idVendor=1498, idProduct=a090, bcdDevice=48.0f
[  516.536083][ T5984] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  516.561736][ T5984] usb 4-1: Product: syz
[  516.572154][ T5984] usb 4-1: Manufacturer: syz
[  516.589507][ T5984] usb 4-1: SerialNumber: syz
[  518.096442][ T5984] usb 4-1: USB disconnect, device number 11
[  518.121847][T10118] page: refcount:514 mapcount:0 mapping:ffff888022eeafb0 index:0x0 pfn:0x44e00
[  518.131507][T10118] head: order:9 mapcount:1 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[  518.140009][T10118] aops:hugetlbfs_aops ino:7bbe dentry name(?):"anon_hugepage"
[  518.147467][T10118] flags: 0xfff00000000041(locked|head|node=0|zone=1|lastcpupid=0x7ff)
[  518.155625][T10118] page_type: f4(hugetlb)
[  518.159873][T10118] raw: 00fff00000000041 ffffffff9ae7dce0 ffffea00010d8008 ffff888022eeafb0
[  518.168457][T10118] raw: 0000000000000000 0000000000000002 00000202f4000000 0000000000000000
[  518.177036][T10118] head: 00fff00000000041 ffffffff9ae7dce0 ffffea00010d8008 ffff888022eeafb0
[  518.185696][T10118] head: 0000000000000000 0000000000000002 00000202f4000000 0000000000000000
[  518.194366][T10118] head: 00fff00000000009 ffffea0001138001 0000000000000000 0000000000000000
[  518.203022][T10118] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000200
[  518.211671][T10118] page dumped because: VM_BUG_ON_FOLIO(folio_mapped(folio))
[  518.218942][T10118] page_owner tracks the page as allocated
[  518.225044][T10118] page last allocated via order 9, migratetype Movable, gfp_mask 0x146cca(GFP_HIGHUSER_MOVABLE|__GFP_NOWARN|__GFP_RETRY_MAYFAIL|__GFP_COMP), pid 9973, tgid 9971 (syz.2.921), ts 501951908063, free_ts 497501300689
[  518.245535][T10118]  post_alloc_hook+0x1c0/0x230
[  518.250306][T10118]  get_page_from_freelist+0x132b/0x38e0
[  518.255843][T10118]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  518.261723][T10118]  alloc_surplus_hugetlb_folio+0x1ad/0x4a0
[  518.267522][T10118]  alloc_hugetlb_folio+0xed4/0x1560
[  518.272710][T10118]  hugetlb_fault+0x1bce/0x2f40
[  518.277495][T10118]  handle_mm_fault+0xbfa/0xd10
[  518.282255][T10118]  __get_user_pages+0x551/0x34a0
[  518.287217][T10118]  populate_vma_page_range+0x267/0x3f0
[  518.292689][T10118]  __mm_populate+0x1d8/0x380
[  518.297286][T10118]  vm_mmap_pgoff+0x37f/0x470
[  518.301869][T10118]  ksys_mmap_pgoff+0x1c8/0x5c0
[  518.306620][T10118]  __x64_sys_mmap+0x125/0x190
[  518.311310][T10118]  do_syscall_64+0xcd/0x4c0
[  518.315811][T10118]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  518.321732][T10118] page last free pid 9885 tgid 9875 stack trace:
[  518.328043][T10118]  free_unref_folios+0xa61/0x16b0
[  518.333061][T10118]  folios_put_refs+0x56f/0x740
[  518.337815][T10118]  free_pages_and_swap_cache+0x3f0/0x4a0
[  518.343443][T10118]  __tlb_batch_free_encoded_pages+0xf9/0x290
[  518.349415][T10118]  tlb_flush_mmu+0xe9/0x5a0
[  518.353908][T10118]  unmap_page_range+0x1f43/0x42c0
[  518.358922][T10118]  unmap_single_vma.constprop.0+0x153/0x240
[  518.364805][T10118]  unmap_vmas+0x218/0x470
[  518.369124][T10118]  exit_mmap+0x1b9/0xb90
[  518.373356][T10118]  __mmput+0x12a/0x410
[  518.377415][T10118]  mmput+0x62/0x70
[  518.381124][T10118]  do_exit+0x7c7/0x2bf0
[  518.385278][T10118]  do_group_exit+0xd3/0x2a0
[  518.389795][T10118]  get_signal+0x2673/0x26d0
[  518.394297][T10118]  arch_do_signal_or_restart+0x8f/0x7d0
[  518.399847][T10118]  exit_to_user_mode_loop+0x84/0x110
[  518.405286][T10118] ------------[ cut here ]------------
[  518.410733][T10118] kernel BUG at mm/filemap.c:154!
[  518.415772][T10118] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI
[  518.422175][T10118] CPU: 1 UID: 0 PID: 10118 Comm: syz.1.959 Not tainted syzkaller #0 PREEMPT(full) 
[  518.431442][T10118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  518.441479][T10118] RIP: 0010:filemap_unaccount_folio+0xef/0x8c0
[  518.447635][T10118] Code: 17 1f c9 ff 89 ee 31 ff 4c 8d 6b 30 e8 4a 1a c9 ff 85 ed 7e 17 e8 01 1f c9 ff 48 c7 c6 40 1d b9 8b 48 89 df e8 72 cf 11 00 90 <0f> 0b e8 ea 1e c9 ff 4c 89 ea 48 b8 00 00 00 00 00 fc ff df 48 c1
[  518.467229][T10118] RSP: 0018:ffffc9000592f310 EFLAGS: 00010046
[  518.473286][T10118] RAX: 0000000000080000 RBX: ffffea0001138000 RCX: ffffc90005032000
[  518.481240][T10118] RDX: 0000000000080000 RSI: ffffffff81f26f3e RDI: ffff88802eda0444
[  518.489196][T10118] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[  518.497163][T10118] R10: 0000000000000001 R11: 0000000000000001 R12: ffff888022eeafb0
[  518.505125][T10118] R13: ffffea0001138030 R14: 00000000000002d0 R15: ffffea0001138000
[  518.513102][T10118] FS:  00007f703cc336c0(0000) GS:ffff8881247b6000(0000) knlGS:0000000000000000
[  518.522015][T10118] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  518.528593][T10118] CR2: 00005555658d6608 CR3: 000000003061e000 CR4: 00000000003526f0
[  518.536550][T10118] Call Trace:
[  518.539811][T10118]  <TASK>
[  518.542733][T10118]  filemap_remove_folio+0xf1/0x250
[  518.547836][T10118]  remove_inode_hugepages+0x74a/0xed0
[  518.553197][T10118]  ? __schedule+0x11a3/0x5de0
[  518.557866][T10118]  ? __pfx_remove_inode_hugepages+0x10/0x10
[  518.563741][T10118]  ? __pfx___schedule+0x10/0x10
[  518.568581][T10118]  ? __pfx_try_to_wake_up+0x10/0x10
[  518.573777][T10118]  ? up_write+0x209/0x520
[  518.578089][T10118]  hugetlbfs_fallocate+0xf3f/0x12e0
[  518.583281][T10118]  ? __pfx_hugetlbfs_fallocate+0x10/0x10
[  518.588914][T10118]  ? __pfx_hugetlbfs_fallocate+0x10/0x10
[  518.594531][T10118]  ? vfs_fallocate+0x5b4/0x10e0
[  518.599367][T10118]  vfs_fallocate+0x5b4/0x10e0
[  518.604030][T10118]  ? __pfx_vfs_fallocate+0x10/0x10
[  518.609127][T10118]  ? madvise_vma_behavior+0x2b20/0x2d60
[  518.614663][T10118]  madvise_vma_behavior+0x2ad7/0x2d60
[  518.620028][T10118]  ? mas_prev_setup.constprop.0+0xb6/0x9d0
[  518.625827][T10118]  ? __pfx_madvise_vma_behavior+0x10/0x10
[  518.631542][T10118]  ? __pfx_mas_prev+0x10/0x10
[  518.636209][T10118]  ? find_vma_prev+0xda/0x160
[  518.640874][T10118]  ? find_held_lock+0x2b/0x80
[  518.645539][T10118]  ? __pfx_find_vma_prev+0x10/0x10
[  518.650637][T10118]  ? futex_unqueue+0x133/0x2c0
[  518.655396][T10118]  ? __futex_wait+0x24c/0x2f0
[  518.660060][T10118]  madvise_walk_vmas+0x31f/0x9c0
[  518.664990][T10118]  ? __pfx_madvise_walk_vmas+0x10/0x10
[  518.670441][T10118]  madvise_do_behavior+0x1e2/0x530
[  518.675538][T10118]  ? futex_private_hash_put+0x18a/0x300
[  518.681077][T10118]  ? __pfx_madvise_do_behavior+0x10/0x10
[  518.686699][T10118]  ? down_read+0x13d/0x480
[  518.691112][T10118]  do_madvise+0x176/0x240
[  518.695428][T10118]  ? __pfx_do_madvise+0x10/0x10
[  518.700263][T10118]  ? do_futex+0x122/0x350
[  518.704585][T10118]  ? __pfx___might_resched+0x10/0x10
[  518.709867][T10118]  ? xfd_validate_state+0x61/0x180
[  518.714977][T10118]  __x64_sys_madvise+0xa9/0x110
[  518.719824][T10118]  ? lockdep_hardirqs_on+0x7c/0x110
[  518.725017][T10118]  do_syscall_64+0xcd/0x4c0
[  518.729511][T10118]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  518.735414][T10118] RIP: 0033:0x7f703bd8ebe9
[  518.739815][T10118] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  518.759417][T10118] RSP: 002b:00007f703cc33038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  518.767817][T10118] RAX: ffffffffffffffda RBX: 00007f703bfc5fa0 RCX: 00007f703bd8ebe9
[  518.775777][T10118] RDX: 0000000000000009 RSI: 0000000000600002 RDI: 0000200000000000
[  518.783730][T10118] RBP: 00007f703be11e19 R08: 0000000000000000 R09: 0000000000000000
[  518.791682][T10118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  518.799636][T10118] R13: 00007f703bfc6038 R14: 00007f703bfc5fa0 R15: 00007ffdf9040b78
[  518.807610][T10118]  </TASK>
[  518.810607][T10118] Modules linked in:
[  518.814497][T10118] ---[ end trace 0000000000000000 ]---
[  518.819928][T10118] RIP: 0010:filemap_unaccount_folio+0xef/0x8c0
[  518.826089][T10118] Code: 17 1f c9 ff 89 ee 31 ff 4c 8d 6b 30 e8 4a 1a c9 ff 85 ed 7e 17 e8 01 1f c9 ff 48 c7 c6 40 1d b9 8b 48 89 df e8 72 cf 11 00 90 <0f> 0b e8 ea 1e c9 ff 4c 89 ea 48 b8 00 00 00 00 00 fc ff df 48 c1
[  518.845701][T10118] RSP: 0018:ffffc9000592f310 EFLAGS: 00010046
[  518.851761][T10118] RAX: 0000000000080000 RBX: ffffea0001138000 RCX: ffffc90005032000
[  518.859733][T10118] RDX: 0000000000080000 RSI: ffffffff81f26f3e RDI: ffff88802eda0444
[  518.867705][T10118] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[  518.875664][T10118] R10: 0000000000000001 R11: 0000000000000001 R12: ffff888022eeafb0
[  518.883620][T10118] R13: ffffea0001138030 R14: 00000000000002d0 R15: ffffea0001138000
[  518.891572][T10118] FS:  00007f703cc336c0(0000) GS:ffff8881247b6000(0000) knlGS:0000000000000000
[  518.900485][T10118] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  518.907060][T10118] CR2: 00005555658d6608 CR3: 000000003061e000 CR4: 00000000003526f0
[  518.915019][T10118] Kernel panic - not syncing: Fatal exception
[  518.921278][T10118] Kernel Offset: disabled
[  518.925576][T10118] Rebooting in 86400 seconds..